last executing test programs:

2m47.914108094s ago: executing program 3 (id=3930):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfdef)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="8b632abd7000fedbdf250e000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000080}, 0x40000)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
socket(0x2, 0x2, 0x88)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x41000, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r3 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
poll$auto(&(0x7f0000000180)={<r4=>r3, 0xfff7, 0x9816}, 0x7f, 0x9)
ioctl$auto(r4, 0x4008af24, r3)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0)
socket(0x6, 0x1, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r6, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\a\x00'/21, 0x100000002, 0x100000001)

2m46.633207403s ago: executing program 3 (id=3935):
mmap$auto(0x0, 0x2020009, 0x400000000003, 0xcb1, 0xffffffffffffffff, 0xf)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfdef)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x100000001, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="8b632abd7000fedbdf250e000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000080}, 0x40000)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
socket(0x2, 0x2, 0x88)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x4000000000280, 0x8, 0x800015)
madvise$auto(0xb39, 0x20000200007, 0x9)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x41000, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r3 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
poll$auto(&(0x7f0000000180)={<r4=>r3, 0xfff7, 0x9816}, 0x7f, 0x9)
ioctl$auto(r4, 0x4008af24, r3)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x96302, 0x0)
socket(0x6, 0x1, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000200), 0x389f02, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r6, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

2m43.27605762s ago: executing program 3 (id=3942):
r0 = socket(0x11, 0x3, 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000340)={0x7fffffff, 0xd, 0x2, 0x4, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
io_uring_enter$auto(0x3, 0x5, 0xfffffffb, 0x3, 0x0, 0x2)
write$auto(r1, &(0x7f0000000080)='/dev/audio1\x00', 0x100000a3d9)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TCP_METRICS_CMD_GET(r3, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000040)={0x14, r2, 0x89c1beb01534ff9b, 0x70bd29, 0x25dfd3f9}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
unshare$auto(0x40000080)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x80883, 0x0)
select$auto(0xf, 0x0, &(0x7f0000002400)={[0x1, 0x400, 0x0, 0x8, 0x200000000000027f, 0xe0d3, 0x4, 0x17c750d60, 0xfffffffffffffac1, 0x106, 0x8000, 0x8000000000000000, 0x0, 0x10001, 0x2, 0x24f]}, &(0x7f0000002480)={[0xf, 0x5, 0x8, 0x4, 0x6, 0xffffffffffffff7a, 0x8, 0x45f6c183, 0xaeb, 0x3, 0x3, 0x8, 0x8000, 0x2, 0x8000000000000001, 0xfffffffffffffffc]}, 0x0)
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x200005ac, &(0x7f0000000480)={&(0x7f0000000240)="4c0c580000000000090000000000000007a4bac083077e", 0x49}, 0x4, &(0x7f00000003c0)="cdc576166b8d", 0x7, 0x11}, 0x5}, 0x2, 0x100)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
setsockopt$auto(0xffffffffffffffff, 0x0, 0x20, 0x0, 0x8)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
settimeofday$auto(&(0x7f0000000180)={0x100000001, 0x1}, 0x0)
clock_gettime$auto(0x0, 0x0)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001840), r6)
sendmsg$auto_NL80211_CMD_DEL_NAN_FUNCTION(r0, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x64, 0x0, 0x20, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x4}, @NL80211_ATTR_UNSOL_BCAST_PROBE_RESP={0xc, 0x127, 0x0, 0x1, [@NL80211_UNSOL_BCAST_PROBE_RESP_ATTR_INT={0x8, 0x1, 0x2}]}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MESH_ID={0x18, 0x18, "cec00f4dc66cb9390c2b15e619dcdbfd50da1418"}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0xfc00}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x1}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6}]}, 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x96)
sendmsg$auto_MACSEC_CMD_UPD_TXSA(r6, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000018c0)={0x24, r7, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@MACSEC_ATTR_SA_CONFIG={0x8, 0x3, 0x0, 0x1, [@typed={0x4, 0x1}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x200480c7}, 0x80)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vidtv.0/i2c-0/delete_device\x00', 0x1, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x28, r5, 0x1, 0x70bd2b, 0x25dfdc03, {}, [@HWSIM_ATTR_PMSR_SUPPORT={0x14, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0x10, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5}]}]}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x48894}, 0x4)

2m40.972951723s ago: executing program 3 (id=3946):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x103040, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0)
mbind$auto(0x0, 0x2091d1, 0x1, 0x0, 0x4ec5, 0x2)

2m40.585838388s ago: executing program 3 (id=3950):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x2000040080000004, 0xe)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D1\x00', 0x581402, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_PAUSE2(r1, 0x40044145, &(0x7f0000000080)=0x3)
waitid$auto_P_ALL(0x0, 0x3b000, &(0x7f0000000280)={@siginfo_0_0={0x200, 0x0, 0x6, @_rt={0xffffffffffffffff, 0xee00, @sival_ptr=&(0x7f0000000200)="d6d36a9264dc4e5dc34083c1e1737f8d450996c3"}}}, 0x3, &(0x7f0000000300)={{0xda0000000000000, 0xf0}, {0x2, 0x6}, 0x8000000000000000, 0xa, 0x8, 0x9, 0xb871, 0x6, 0xa000, 0xffffffffffffffff, 0x3, 0xf8c5, 0x1000, 0x81, 0x9, 0xd})
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55)
shutdown$auto(0x200000003, 0x2)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0)
madvise$auto(0x0, 0x200007, 0x1d)
syslog$auto(0x3, 0x0, 0x1013)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/034/001\x00', 0x80202, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000040)={0x20, 0xc, 0x4, 0x0, 0x2, 0x8000004, &(0x7f00000000c0)})
pwrite64$auto(0xc8, &(0x7f0000000380)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\t\x00\x00\x00X\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\xa2\x01\x88\v\xae\xa9\xe98W\xe5\x00!\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*6\x9b\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbb\x9e\x93H\xdan\x1d\x00\xeb]B\xa0\x99\xb0R\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1uO\x8fL\"\xact\xee\x04\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa4_\x85\xf0k\xe0\"*^o\x83-\xc2\xcc\xa6\x12\x96\xe7\xef3\xcay\xfcl:Du9U\xf6\x1f&F\xa8\xe0\x0f\xd0\x04\xa2*\x17\x81\x85\xf3p7Oq\xd6\x97-\xb7CFKU\xf0\x7f1Qg\xe12\x84\xbfl \x06aq \x04\xd3\x15\x0f\nn\xf3\xf5\xe3\x1a\xad;\x8d\x80\x86\xec6Xm>\xd8,YhS\xf3\xac\xd1)\xa3\x9b\xd4\xd2\x86?\fH\xfaa()\xd1A\x9b\xabZ54i\x95\xac\x1a\xf2\xff\x19\xc7.\xfe\x06i\xcfAy\t)\xf3m\x93_\xe0I\x99\x89\xcb\xb7.\xa2\xd8\x97.\xbfH\x9bP\xaf{\x1c_\xfa6\f\a\x84\xc6\xa0\xe7\x00\x00\x00', 0xfded, 0x6)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000580)='1\x01\\\xa0\x03i\xb7\xa9\xc8iA\x04|\x03<Q\xcb\x12\xfa\b\x1c]O\x9c>J\xb6{\xbb\xf9\xf4\x00M^a?\x03\x9c\xce\xf02\x86\xaa,\xe7eH\x9f\xee\x9a\xdf\x9b\x89tt\xe4\xd1\x918$\xfa\xfeT\xa4imqS\x1e\xda\x1aw\x16\x95\xacd', 0x81)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0)
open(&(0x7f0000000040)='./cgroup\x00', 0x80, 0xb5d1af1605322de0)

2m40.383775624s ago: executing program 3 (id=3951):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kpageflags\x00', 0x2, 0x0)
mmap$auto(0x0, 0x477, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/max_vfs\x00', 0x260e42, 0x0)
write$auto(r1, 0x0, 0x1)
r2 = socket(0x11, 0x80003, 0x0)
mmap$auto(0x400000000000002, 0x2a, 0xdf, 0x12, 0x1000, 0x28000)
mmap$auto(0x0, 0x200000000000004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
semctl$auto(0x8cfd, 0x2, 0xccb, 0x108024)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
setsockopt$auto(r2, 0x107, 0xd, 0x0, 0x8000)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0xffffffffffffffff, r0, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82942, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0xe2bc3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = socketcall$auto(0x8000, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r4)
ioctl$auto_KVM_GET_MSRS(r3, 0x4008ae89, &(0x7f0000000380)={0x5, 0x0, [{0x40000002, 0x9, 0x3b0}]})
r6 = socketcall$auto(0x48000, 0x0)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, r6)
ioctl$auto(0x3, 0x40a0ae49, 0x38)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x10004010)

2m25.384048076s ago: executing program 32 (id=3951):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kpageflags\x00', 0x2, 0x0)
mmap$auto(0x0, 0x477, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/max_vfs\x00', 0x260e42, 0x0)
write$auto(r1, 0x0, 0x1)
r2 = socket(0x11, 0x80003, 0x0)
mmap$auto(0x400000000000002, 0x2a, 0xdf, 0x12, 0x1000, 0x28000)
mmap$auto(0x0, 0x200000000000004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
semctl$auto(0x8cfd, 0x2, 0xccb, 0x108024)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
setsockopt$auto(r2, 0x107, 0xd, 0x0, 0x8000)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0xffffffffffffffff, r0, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82942, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0xe2bc3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = socketcall$auto(0x8000, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r4)
ioctl$auto_KVM_GET_MSRS(r3, 0x4008ae89, &(0x7f0000000380)={0x5, 0x0, [{0x40000002, 0x9, 0x3b0}]})
r6 = socketcall$auto(0x48000, 0x0)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, r6)
ioctl$auto(0x3, 0x40a0ae49, 0x38)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x10004010)

1m52.884228174s ago: executing program 0 (id=4101):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
select$auto(0x7, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xffffffffffffffff, 0x3})
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/vlan1/addr_gen_mode\x00', 0x202, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)=""/155, 0x9b)
sendfile$auto(r1, r0, 0x0, 0x48)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)

1m52.652187815s ago: executing program 0 (id=4102):
r0 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)
timer_create$auto_CLOCK_REALTIME(0x0, &(0x7f0000000000)={@sival_ptr=0x0, @raw=0x100, 0x4, @_tid=r0}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000006c0)={'batadv0\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r5=>0x0})
r6 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/uid_map\x00', 0xc0102, 0x0)
bpf$auto_BPF_PROG_BIND_MAP(0x23, &(0x7f0000000340)=@link_create={@map_fd=r6, @target_ifindex=r5, 0x3, 0xab37, @tcx={@relative_id=0x24, 0xb83c}}, 0x1)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)={0x24, r3, 0xb11, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4001}, 0x9800)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r7 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_PVERSION(r7, 0x80045400, &(0x7f0000000040)=0x6)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000001c00), r8)
sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(r8, &(0x7f0000001d00)={0x0, 0x0, &(0x7f0000001cc0)={&(0x7f0000000000)={0x1c, r9, 0xa2d601c1e7b11e31, 0x70bd27, 0x25dfdbfd, {}, [@IOAM6_ATTR_NS_ID={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r9, 0x800, 0x70bd2c, 0x25dfdbfc, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x140018c4}, 0x880)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_fops_u64_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/psample/out_tc_occ_max\x00', 0x2, 0x0)
r10 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0)
read$auto(r10, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)
r11 = openat$auto_stats_fops_2(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0)
fcntl$auto_F_CREATED_QUERY(r11, 0x404, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r12 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r12, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0x100082)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)

1m51.524647545s ago: executing program 0 (id=4106):
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x80502, 0x0)
mmap$auto(0x4, 0x0, 0x9, 0x15, 0xffffffffffffffff, 0xce9)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socketpair$auto(0x4, 0x2, 0x10, 0x0)
mmap$auto(0x0, 0xaa, 0xdf, 0x15, 0x40000000000a5, 0x7ffc)
madvise$auto(0x100000000002, 0x2000040080000004, 0xe)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
renameat$auto(r1, 0x0, 0x5, 0x0)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000000)={0x6})
poll$auto(0x0, 0x7f, 0x9)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x3)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
r4 = socket(0x1d, 0x2, 0x7)
r5 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r6=>0x0})
bind$auto(r4, &(0x7f0000000000)=@can={0x1d, <r7=>r6}, 0x6a)
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r7}, 0x18)

1m49.870105116s ago: executing program 0 (id=4110):
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000a00000008000200", @ANYRES32=0x0, @ANYBLOB="080140"], 0x68}, 0x1, 0x0, 0x0, 0x18a64d47ddeca1f0}, 0x40090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x9, 0x9}, 0x7}, 0x3, 0x0)

1m49.121982283s ago: executing program 0 (id=4112):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f00000000c0)=@link_update={r0, @new_map_fd, 0xa, @old_map_fd=r1}, 0x10)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000002340), 0xffffffffffffffff)
sendmsg$auto_SMC_PNETID_GET(r2, 0x0, 0x2004)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x1a, 0x1, 0xfffffffe)
mknod$auto(&(0x7f0000000080)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x1081, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40002, 0x300)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
madvise$auto(0x0, 0xf663, 0x15)
mmap$auto(0x0, 0x8, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6)
tkill$auto(0x1, 0x7)
madvise$auto(0x0, 0x20499d, 0x9)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
semctl$auto(0x2, 0x1, 0x2, 0x4)

1m46.691110322s ago: executing program 0 (id=4118):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xf658, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1, 0xa, 0x2)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x200, 0x0, 0x9)
r0 = socket(0xa, 0x1, 0x84)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/loop13/queue/max_sectors_kb\x00', 0x109206, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)='-', 0x1)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24048810}, 0x4)
r2 = openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event_pid\x00', 0x840, 0x0)
lseek$auto(r2, 0x48f, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000001ec0), 0x40000, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r4 = socket(0x29, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r0)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r5, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40049c4}, 0x200000d0)
ioctl$auto(r4, 0x8923, 0x24)
readv$auto(r3, &(0x7f0000000140)={&(0x7f0000000280), 0xfdef}, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xebf, 0xfffffffffffffffa, 0x8000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mlockall$auto(0x3ff)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder1\x00', 0x66082, 0x0)
r6 = openat$auto_transactions_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x101600, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000380)='/dev/binderfs/binder1\x00', 0x20000, 0x0)
read$auto_transactions_fops_(r6, &(0x7f0000000080)=""/18, 0x12)
landlock_restrict_self$auto(0xffffffffffffffff, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYRESOCT=0x0, @ANYRES16=r7, @ANYBLOB="04002bbd0100000001000000000004004600"], 0x18}, 0x1, 0x0, 0x0, 0x4040}, 0x1)

1m45.909996413s ago: executing program 33 (id=4118):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xf658, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1, 0xa, 0x2)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x200, 0x0, 0x9)
r0 = socket(0xa, 0x1, 0x84)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/loop13/queue/max_sectors_kb\x00', 0x109206, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)='-', 0x1)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24048810}, 0x4)
r2 = openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event_pid\x00', 0x840, 0x0)
lseek$auto(r2, 0x48f, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000001ec0), 0x40000, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r4 = socket(0x29, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r0)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r5, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40049c4}, 0x200000d0)
ioctl$auto(r4, 0x8923, 0x24)
readv$auto(r3, &(0x7f0000000140)={&(0x7f0000000280), 0xfdef}, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xebf, 0xfffffffffffffffa, 0x8000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mlockall$auto(0x3ff)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder1\x00', 0x66082, 0x0)
r6 = openat$auto_transactions_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x101600, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000380)='/dev/binderfs/binder1\x00', 0x20000, 0x0)
read$auto_transactions_fops_(r6, &(0x7f0000000080)=""/18, 0x12)
landlock_restrict_self$auto(0xffffffffffffffff, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYRESOCT=0x0, @ANYRES16=r7, @ANYBLOB="04002bbd0100000001000000000004004600"], 0x18}, 0x1, 0x0, 0x0, 0x4040}, 0x1)

10.976024863s ago: executing program 1 (id=4393):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
mmap$auto(0x0, 0x400005, 0x80000000df, 0x9b72, 0x2, 0x7fff)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, &(0x7f0000001f00)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001ec0)={&(0x7f0000000780)={0x1710, 0x0, 0x0, 0x70bd25, 0x25dfdbfb, {}, [@MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_SA_CONFIG={0x28, 0x3, 0x0, 0x1, [@nested={0x23, 0x71, 0x0, 0x1, [@typed={0x8, 0xe3, 0x0, 0x0, @uid}, @nested={0x4, 0xdc}, @generic="53ed88c815c54b1033c2716668d03a", @nested={0x4, 0xad}]}]}, @MACSEC_ATTR_OFFLOAD={0x1547, 0x9, 0x0, 0x1, [@nested={0x1156, 0xec, 0x0, 0x1, [@generic="7210f0a7150be7dc25b8e2a1a42a7225a5412aad4396a455f3ee6e015afe04cd805d90fb0abee8fe346f83a3f735db0081beef4fb88b72e63574f8d63196bc364994341f9b247ad6a53a985b2ac0ddaf23e03844d7b5c3a74a6a79701c5996b9a3c1d4d8bbd8ccc20a0e1a4f0488b28bc218ceb7a8bd1d454cd93b5ca33c801fd103218b607a8160d765b3549fe3ce9843194fc83ca0fc051e91ddbda6e62001b62973e5362c13f94b6ade715da5619e1e741b50665926b5879e4880fa508df9543bc6f0f0aaa6974a6421ea990858b76cdb88a76ab3f89b441b89917c383d69216ac257f427da", @generic="dbbb02ed9432b4c26b0289789d918cdc4255d2cfa00d79942fca1c8d8c97f9717a401fc6f7f5f9c1d599426f247c78fae89fe136ba453ad28c4765baa42269cdfff68ed4da150139e6b7713c072935b3db4fc54f5fee659aa56868299153359cc656f4db7accb6d8ad23bd", @generic="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"]}, @generic="98de59063669d5c7cf429181fc95350ee8c025b7212204a42f23857d7b0bde08bf8bc42723d38dd75fca78ffc24fb40e741a653a275c6691cd683b65673ecdc83af68b4a4e4f4dac5eeb688a64d7ac24512c367495c112b65d836aa5671715c826ca919ecd0ef40851df7e49507eaf1e412fb3d2b3e547457c75e3bc611a9f942c8ad1524c157cce4a057c1ab8a0d29ad508b994fc60c7ddc8f40813dacae4782cd406fcd86762aafc08a80dbc0901b4dea058dc3495cca686edd38b243870dfb94ae1e76849c2acbebdea53b350f188e87cf64151d107507b8b9bf5f1441f2b123f47e962d1894c7f3755b2ca06e8d574371e", @typed={0x9, 0x74, 0x0, 0x0, @str=':*@$\x00'}, @nested={0x4, 0x144}, @typed={0x8, 0x132, 0x0, 0x0, @pid}, @typed={0x8, 0x13d, 0x0, 0x0, @u32=0x3}, @nested={0x298, 0xb, 0x0, 0x1, [@typed={0x14, 0x10, 0x0, 0x0, @ipv6=@private0}, @generic="bfa18fb34be6f1b3fefdf984a36baa0c00fb509501b3a9b42fb8a4fa90bc7b7f92e5290354739b9e3b21e78caf3056c2090b7c564653e56f0ba71ac4e4dcedf2bee08569d504f524f47b635f098f198ed94a2e1b67519620eaa232200b6e8331d56a6283393c93d5545499f6dd680ab5f8825d23c47560c29f83c9c5aba276b8a032effc614f1df9d7edcd95b3ea2344fae9600a15f256652454823292b99973b021e803ad090b729c408155709b6c80d126ee3a291a8f87f42bfa0730e88eefd68e8d5942", @typed={0x8, 0x4c, 0x0, 0x0, @pid}, @typed={0x8, 0xeb, 0x0, 0x0, @u32=0xfffffff5}, @typed={0xc, 0x5, 0x0, 0x0, @u64=0xfffffffeffffffff}, @generic="c624c3154239b800084d2f144a0427634df9d4ad636f60c7d7619fe610d4b53dcf4d715e017d6c3ed75581d3610b8541a57d227d79d84dba9ca87971e9debf086da83766066780f0834637c3750da0219f81d378e7a319fd7cf04f57c460cc45340de4d8c4d15378a5401a0e1828b0b4276b45bcecf347c0f1ad7b975640611802ff0cdd9c4cf4cd4769975fc8bd5d4dfac9ba50bf61c69ef29b23a8f92af7afd05fe298c86b722df5f197e90515ba97f00c928031f8516dca38ae531204ad92d8f0d4d54d015e95", @nested={0x4, 0x13}, @typed={0x8, 0x4e, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x3e}}, @generic="ca6ae3889563879521fe6dc7b64c0856cddc468bc14fc6ecb03eaa3febf8cd1216effd935ad82632575a97fdb690a5ce7e9b8cd69a6d72b1672864a23d0d4f8b6e96a9a1c9bbee2cc8129da5764fc4ccd3a756625c71811ee2eb4b3e97ef494ff35f629dddbd02f14ca31013687c401947eb6c293c58c69a128ff36735fe277f45c3f2629bed2cc0bc152e86da5ff4fb876df3883457cfeb5022a9dfb227455a837f8c7a35dd7b62099cf62b263efc62d0e9f6e8a8007f1ad429d4f136310076d45f3cce7e4b48", @nested={0x4, 0xe2}]}, @typed={0x8, 0x2b, 0x0, 0x0, @uid}, @typed={0x8, 0xc, 0x0, 0x0, @uid}, @typed={0x2e, 0x90, 0x0, 0x0, @binary="dc32b10fd2aeedcdbc49d9160dee5d6ce4ad6b66a4e2c6078edcc81370ca6f2e92ef948c8a529a4776ff"}]}, @MACSEC_ATTR_SA_CONFIG={0x17b, 0x3, 0x0, 0x1, [@generic="3a9e1fbe939ac5b1b576cfe87979c9d9d5f268c9faf7994ed0becb6d5e4c83a286b2c81003771ba985342645f6970947815293bccceeefb22250cd98c00814b3582d9f021cf6f60835a527ce35fa7ddcaaa672a4283dab8a31d85ef03ed223de9a6c4b400bee5f42b18ed6", @nested={0xc8, 0x10b, 0x0, 0x1, [@typed={0xae, 0x112, 0x0, 0x0, @binary="c93b660e4f31cf11f5fbb5016dccf00ff801deca687d88b4acdff0561df80276d6dd915e16c1e477f7680848cedb80a62502a92631f6c2b0af0c287dd3d05b22db96bfc1346452aa5e68890e871c1c938256b7799f725f137168f401d6bf5e2c78fc35d2e31f044c6a7807448cd73a209f8c9358b93f480bbb698901fe3cb9c2ac183d617e99ce5d0ff761648d9803b0bc6409ea8a7e881e264bd6ea4bf8b7deb40792e7e39ec41e2e0b"}, @nested={0x4, 0x63}, @typed={0x8, 0xc8, 0x0, 0x0, @uid}, @nested={0x4, 0x117}, @nested={0x4, 0x3e}]}, @generic="edc5faf01c06d7acc99829f9fafc2cd5221f3ed1a81c3aa7b40ccc296034904f38de53d827937ffaf0637e6c3cde1de4cb55fc00", @typed={0x8, 0xaf, 0x0, 0x0, @fd}, @typed={0x8, 0xab, 0x0, 0x0, @uid=0xee01}]}]}, 0x1710}}, 0x20004010)
ioctl$auto_RTC_IRQP_READ(r1, 0x8008700b, 0x0)
openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/cmdline\x00', 0x0, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10b80c2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00', @ANYRESDEC=r3, @ANYRESOCT=r3], 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, 0x0, 0x55)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
fcntl$auto(0xffffffffffffffff, 0x402, 0x2)
r4 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002640)='/sys/kernel/debug/tracing/set_event\x00', 0x40800, 0x0)
pread64$auto(r4, &(0x7f0000002680)='/dev/snapshot\x00', 0x73528428, 0x3)

10.070839082s ago: executing program 1 (id=4395):
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x1)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="9059062e4b765cca78d6f4d2bb6bd98f72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='V'], 0x1ac}}, 0x40000)
r0 = socket(0x10, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="54eb157a", @ANYRES16=r2, @ANYBLOB="010025bd7000f7dbdf250100003f0600020001000000050007005800000008000a000800000014001f000000000000000000000000000000000114002000fe8000000000000000000000000000bb"], 0x54}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
syz_genetlink_get_family_id$auto_ovs_vport(0xfffffffffffffffe, 0xffffffffffffffff)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket(0x2c, 0x3, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec2\x00', 0x300, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
sendmsg$auto_L2TP_CMD_SESSION_DELETE(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)={0xf8, r2, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @local}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @local}, @L2TP_ATTR_NONE={0x95, 0x0, "0591b98172a56e962dae3aa9630a2682768215754fbb4020b3a8b79e27523784d0fd11d1c66671b7c2d4f4432e96936dd7c84c3f039543d947a3992f8e1bdc59b2f7f55b0395a2e61ea0bda525900ed4bb711e58e2babc2280e43622e1fbb78f5d7d8bdda0b3ea9a925e80a6dbdebbf4fba25998700756d06afa6179518cf839507af258c4620d28f84cec45327197e095"}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e22}, @L2TP_ATTR_IP_SADDR={0x8}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0xf3}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x7}]}, 0xf8}, 0x1, 0x0, 0x0, 0x1}, 0x40041)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xfffffffc, &(0x7f0000000100)={0x0, 0xfbe}, 0x8, 0x0, 0x7}, 0x880}, 0x7, 0x4008)

9.852662328s ago: executing program 1 (id=4397):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
mmap$auto(0x0, 0x400005, 0x80000000df, 0x9b72, 0x2, 0x7fff)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, &(0x7f0000001f00)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001ec0)={&(0x7f0000000780)={0x1488, 0x0, 0x0, 0x70bd25, 0x25dfdbfb, {}, [@MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_SA_CONFIG={0x28, 0x3, 0x0, 0x1, [@nested={0x23, 0x71, 0x0, 0x1, [@typed={0x8, 0xe3, 0x0, 0x0, @uid}, @nested={0x4, 0xdc}, @generic="53ed88c815c54b1033c2716668d03a", @nested={0x4, 0xad}]}]}, @MACSEC_ATTR_OFFLOAD={0x12b3, 0x9, 0x0, 0x1, [@nested={0x1156, 0xec, 0x0, 0x1, [@generic="7210f0a7150be7dc25b8e2a1a42a7225a5412aad4396a455f3ee6e015afe04cd805d90fb0abee8fe346f83a3f735db0081beef4fb88b72e63574f8d63196bc364994341f9b247ad6a53a985b2ac0ddaf23e03844d7b5c3a74a6a79701c5996b9a3c1d4d8bbd8ccc20a0e1a4f0488b28bc218ceb7a8bd1d454cd93b5ca33c801fd103218b607a8160d765b3549fe3ce9843194fc83ca0fc051e91ddbda6e62001b62973e5362c13f94b6ade715da5619e1e741b50665926b5879e4880fa508df9543bc6f0f0aaa6974a6421ea990858b76cdb88a76ab3f89b441b89917c383d69216ac257f427da", @generic="dbbb02ed9432b4c26b0289789d918cdc4255d2cfa00d79942fca1c8d8c97f9717a401fc6f7f5f9c1d599426f247c78fae89fe136ba453ad28c4765baa42269cdfff68ed4da150139e6b7713c072935b3db4fc54f5fee659aa56868299153359cc656f4db7accb6d8ad23bd", @generic="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"]}, @generic="98de59063669d5c7cf429181fc95350ee8c025b7212204a42f23857d7b0bde08bf8bc42723d38dd75fca78ffc24fb40e741a653a275c6691cd683b65673ecdc83af68b4a4e4f4dac5eeb688a64d7ac24512c367495c112b65d836aa5671715c826ca919ecd0ef40851df7e49507eaf1e412fb3d2b3e547457c75e3bc611a9f942c8ad1524c157cce4a057c1ab8a0d29ad508b994fc60c7ddc8f40813dacae4782cd406fcd86762aafc08a80dbc0901b4dea058dc3495cca686edd38b243870dfb94ae1e76849c2acbebdea53b350f188e87cf64151d107507b8b9bf5f1441f2b123f47e962d1894c7f3755b2ca06e8d574371e", @typed={0x9, 0x74, 0x0, 0x0, @str=':*@$\x00'}, @nested={0x4, 0x144}, @typed={0x8, 0x132, 0x0, 0x0, @pid}, @typed={0x8, 0x13d, 0x0, 0x0, @u32=0x3}, @nested={0x4, 0xb}, @typed={0x8, 0x2b, 0x0, 0x0, @uid}, @typed={0x8, 0xc, 0x0, 0x0, @uid}, @typed={0x2e, 0x90, 0x0, 0x0, @binary="dc32b10fd2aeedcdbc49d9160dee5d6ce4ad6b66a4e2c6078edcc81370ca6f2e92ef948c8a529a4776ff"}]}, @MACSEC_ATTR_SA_CONFIG={0x186, 0x3, 0x0, 0x1, [@generic="3a9e1fbe939ac5b1b576cfe87979c9d9d5f268c9faf7994ed0becb6d5e4c83a286b2c81003771ba985342645f6970947815293bccceeefb22250cd98c00814b3582d9f021cf6f60835a527ce35fa7ddcaaa672a4283dab8a31d85ef03ed223de9a6c4b400bee5f42b18ed6", @nested={0xcc, 0x10b, 0x0, 0x1, [@typed={0xae, 0x112, 0x0, 0x0, @binary="c93b660e4f31cf11f5fbb5016dccf00ff801deca687d88b4acdff0561df80276d6dd915e16c1e477f7680848cedb80a62502a92631f6c2b0af0c287dd3d05b22db96bfc1346452aa5e68890e871c1c938256b7799f725f137168f401d6bf5e2c78fc35d2e31f044c6a7807448cd73a209f8c9358b93f480bbb698901fe3cb9c2ac183d617e99ce5d0ff761648d9803b0bc6409ea8a7e881e264bd6ea4bf8b7deb40792e7e39ec41e2e0b"}, @nested={0x4, 0x63}, @typed={0x8, 0xc8, 0x0, 0x0, @uid}, @nested={0x4, 0x117}, @nested={0x4, 0x4b}, @nested={0x4, 0x3e}]}, @generic="edc5faf01c06d7acc99829f9fafc2cd5221f3ed1a81c3aa7b40ccc296034904f38de53d827937ffaf0637e6c3cde1de4cb55fc00c8f9cdde2ef242", @typed={0x8, 0xaf, 0x0, 0x0, @fd}, @typed={0x8, 0xab, 0x0, 0x0, @uid=0xee01}]}]}, 0x1488}}, 0x20004010)
ioctl$auto_RTC_IRQP_READ(r1, 0x8008700b, 0x0)
openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/cmdline\x00', 0x0, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10b80c2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00', @ANYRESDEC=r3, @ANYRESOCT=r3], 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, 0x0, 0x55)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
fcntl$auto(0xffffffffffffffff, 0x402, 0x2)
r4 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002640)='/sys/kernel/debug/tracing/set_event\x00', 0x40800, 0x0)
pread64$auto(r4, &(0x7f0000002680)='/dev/snapshot\x00', 0x73528428, 0x3)

8.449126434s ago: executing program 1 (id=4400):
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0x4, 0x80000001, 0x8}, 0x6f4) (async)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0)
select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) (async)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) (async)
write$auto(0x3, 0x0, 0xfffffdef)
openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x2, 0x0) (async, rerun: 32)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r3 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r2, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000000440)={0x34, r3, 0x201, 0x70bd2c, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x1c, 0x1, 0x0, 0x1, [@nested={0x15, 0x139, 0x0, 0x1, [@nested={0x4, 0xeb}, @typed={0x8, 0x2d, 0x0, 0x0, @fd}, @generic="5ecb8698ec"]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x4000048) (async)
sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, 0x0, 0x1) (async, rerun: 32)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x60d80, 0x0) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f00000004c0)={0x1054, 0x0, 0x300, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_SMPS_MODE={0x5, 0xd5, 0x2}, @NL80211_ATTR_P2P_OPPPS={0x5, 0xa3, 0x20}, @NL80211_ATTR_MNTR_FLAGS={0x1004, 0x17, "7c17d95f346a5d736a427974673a92f52b1c2ed1128cdfec66ce8cb77c8a9e4f24da8360f0db60a096d457b0a097977e532ec7a49e59cdecf6ef290d39bad677ac0e2717f72874250c41fdbc243994f5eed7dbde95f3d7e331c26c91113f2008f132c7b2137b974284d36bf2541d6dfdbec9239b9c890a23da0406868f54b29368ea4b479ca05d31b5708dfe30b22538adf874d0b8edd2e7f882ac2b89e27b630ab0e8120ff70ab1e225441d5515f34618d5ca5a932a30e263e408b6147ba8e640419fd55c417f8fa5e9839a50d1ff99750fe8031eacf571e5c30760d6c95d9f8ddd53d72730f6d0188f7b5b410d64c04f0a4c370f5f7b76eb101c8a0c7b1c22e63ce91f91cde13d39f0868029ddda588b0ba3f16b19c4c077375024bc872658c6d6a0c1837a1c5bb0c1ccaec55c52640c3633740f4e94e375eece74525bff1b8e256586e0b61ce8c63ec570daebc28bd31b75f7d9441c03685d116bf0a0df3c129881cf729b12f6649c51dc028589cb48a8b07a836c405f79f723c45983e8c0c5e2641714cb5c2c1a4c2d4c6cad69b7be1c61f1e0ffd5ad73db0b2319299b81b7bf63311314079d2d5956b1d9269d99089934d08f181b5d0b1c2a5d6c6d612e6ca569cddec97baaaaedf557678172ca15ffd1385ed647760594e107b3662d8d7a34b04ee56b4661ea57e9b1500d1bcc358b915a4e3fbe2d9d03ba811c3e81ed7fc7b6667f67c805cbff9fd943e60b0e963c10b90363c19f8a395514600d3368dd4c357331940ed2e1b089845938b284aba626dde5e9f3c0732c10179f97c651d0e93ccf01a9cec0d8296db605553b870164d01b3b4b89e6508f84e7488e5f3ea3ac7aaa6237b88745e1d179a683960a584069945c518779c4f053ce67a1d5aea5cb09a156e40dd734d0a7c45cf1023cef8c860370e1b7531b43596607432415c5e63459195425e1ee71972f5dad1f8a58939df924ebf7386099ea68f1f92e8ecbcf4c474b275a9f31760e7f7ada6a1ff88f410656e9ec56aeb07485ab1a15dbb561466ed8bc07fce6939211bad89fda86ef05693bb7523fe497837393cc70267c1e9da15159f0a052e12110970f8499c249214a90af4a2bead4b6b454ebcd4c5035116dfb82f366880dd4a5e55fa6a878c54f53202705f496e9115f4eb7d74062ff7e4d0ddbb90c4fee8852240357165b1d214c2f7d20b9d1f5b47a31227722c4eb8362e91d89c3d6d610adc523e7eb49469de6c426f82fbf96068e00cddb5de1f902ed0f78ad373a919f182bb905e1e4d84019f0eac883c50345f9205b0c9161541267b98dca7e91e1b43452c9cff7313bde0d9e36588e3fffdd88d03ce93122da630f9436e15cd4b176ecee7ac476377c4ad0b48c86d496543b6803639a2f025da655d1b31506a2dcfde03215d1d4f81752266dae697ad8f1b7ac3b565a5799e920187d42547f983a495c99316678bfb0ef2dba6cb6fbbc7d3e8d7ef83ef03f2c1700130c5af518df2b1d35c7b6e34b226d704342f8f9fb6a15870b13ec21dd281434be6688f04b809a626d69830dcbf359cd8ccc08560f0a70a490a5f0d7dd1283a0b4f882ecb970cef7613d310e5ed4a486c6aabc13fc2cea70baf88bc4377ebacf7ad2f9d9e0481a5fc6b251870407d7e7d6023920644aa83eaff10bd6cb21a841c3beaaa0ac33b94b4f5be20ef532704eb243741a0e15c8fcc3b20772a4abe5404556be9e701179830b674742718c6ebf611bafa64c2880dd8ec4296942401ea0b4c164baa53e189759069f8abc886017378906314afc420424562b96ba2c716c7b939058ec702114595ae0b3ea36e34403757bb41982a33a55c8c032480bf83a54150be772cbfdb967e817368080326ee9ff6208a68c64d7374ba36b449290462c4a3fdf8d8e7bd060abee7310e39250eb11a56c88cff32e2ede8f002c6895aa267d6d5b38311b07b4153eb220ff5c1450ff236cc06f2522e22e8a82446f419f09b9114521d0d1d0cf61a1038a86d2daf680c690c2f1a868179ef2b3868255e5c28f0f890fec9ccc41070766f3ec6ed8bee3777b9660adeb6ec77da7f97994596b3b064bf01ec28d1faa9d51b94291a9673d867d34769f7951e7c4293c73797e370e53e937eb40ab9794a60e42825a0e8a7c4429bdeb3838f3669701dfcfef1aa501089712ff3095cef44e5cd2983a0fa3d421cf58c9f8f250438b038d4e46777ae5d150668f6f91b51a3ff7ae93dbadc7daeaa23cae34011c0218199327d60421ff0605e5a36d96ec091f9b8396b8fef595c517d1443ab626ba02885c31fc109340903ea7d12b8d6095574fb11b964f16dc782ad977be99fff3057ddf38ff7020aaf43c4cec8d5aea9811d5a4b2df85e202b30caf3658dde4bc827f2c9fbb91417e7012105d5315d29aacbea7df4fe2b1cbe61f947f912d7232dee578778d22d041cf30ec64580e289fd5db7b9e005b04284f0377db8f7d86ab6fd4d074110c7c601666c64ed6662ca26ec831135b4f80712fb733e02af09ca26a712feac41dcc341df15d76368794d6748d344f1ea25d191b16acdbfbf347d666f207b7d87f66617292e1d14d04599886fd8ffc0da8932a8b1e78e66dfd56de848138cd33906e2b958fe154468e07bc8cd5a2f43f0d8d2830510128a892ed18a0d9c7f403349285edb187f2589411066eedbf3f7600860ef5aac04a0c815520c79f5ba956ea6522c3ebf5d6302682172a86fe11a6e97083b39ac9b0c3c5a68d04566835f80ccf21e2409b2b07b988d22f9362bfefa7a2e7eaf9e1048b82f3619ad9273d8a755f1e261e50af864542b0e5ffe4d58bdd21f3ae90a011873b3db222194bbd3e0a14156e70d448ac5fde28affa5ba24e078c43f0d9586eb7ed051f56f54b86f81ddf8ffa3ea3d0ad6cf7a4095e5d9ec2830044b0b3520a62a44f117d6e07c9a98ade64640c356f691b9ee427203599613fbceddfa609804a9eeb1dc2c271087a45b6e613c20ab9910491fcecc60492dbbd0db355527a198d39f49ebe6ba5920ee40f95bf435032bd77863b7472720104a608b455457b80e4a9d79c09fc3b05b7f1e5575f5c392fdcc19b9517763237561ec54fc5ff992ad74d289a30beadd415c8e87688983e3646b0cec52887ed2034eda29439b384d5e12d748b5a8cc45ecf83e7332592ca0c91eb184bb14bf4bd8ca151d848ff950f488639472ec437e446ab88162ffa7c2d6c71d44f88c7cc2a43200dc7221da72c25901b60a7dc9916338f85fd550136ac848988b1ddfed59a69a9e9c5ae8ebd34fd1f9ed68982d5ebc092c5d0749c18aa198a4425edf90c0724aeb22d67dbe8c4ecf0c60db8f79446a5dea0d353a5f5dfe776415ae6f3d5cc57fbb6e69d47a335a92ea7fc6d1cb1c8afa7f22aa5b2c9b1a12210692cf2bbc3356cfd2bac6c1f4b25044ded2e7c2a4a816a087a463617c9843e425d9999f848ad4b1b7076d742a72d33a01f17504366c7c5495adea654dfb8df09b570d3b2ece2a3f019c78ac0e6c933c86e9ff07cf055c6739046c1a5dd6af234e27819cc3b5e5592dddde6ddd68ee70cdfea0cf54ba7f1c415c33ed6c635ca9d63ce2cd6deceb62f3bb0f8ab40f212ffd8a5f0fdc4361242ef08bd48aee5ae624bf4099b89bed67670f63705c22f78eb238a043b5f10c9c80fe3ff3e447a3fd084d56e5760c8e286736015ada0e6573d673f38b74a1139c3209e3b239423ca187607149ae34e322191adab14adcdec95984f317aceea368bb124411750a1a1d3b05acbba734bafeca2def7bc2b56f0338dd733bb654e13d06137e1db8867c3e8740d63158c8a3d57e8214fb76168705c041f0aa1738e64312e338190d4acbe2f8de61be21e24d4799eac59c0e219ac7dc7211566c1d0f138b05c18bc7e5e4f6f3de111f280975d7ac8d6c2418a87418f3edeb31f842c43adf1391715ba98297c23551d434c696d4189155d68ad135d65ce217b01eca6b62db8d4ee2ff2f1c0d82860931131b2d8a77ca28d932adb5939bdd8b9686a0ca6099c03c14496ae47c39d6f7fc2c80061a1110f790e86cab387fe480d539d0c50f8b66edd421a12baa6c62e0b63fa6a1e01e63e466849243f2bbf52a12ace72d32f7792e4589837569e739624cbe378d3fc3a40e275146f40775d3330b67b06107f613ff6a2d6b69a162187e33be0130141383d20a5c8782ed1a16ca2aaba6a2a11ab8d172f9fd7a9cb42f7f5d6f96e444acf76d6b63a0353bb9da997e392c616ff1f51760b61042915aabadcd99b2ece1ce51c7b64e282ab3d9eb90b5c73eaa0d8c1ffed8bc6c9c99f28d7d7fccdcf47b423c87cbe42ed3849947499840b11b3c71f306a3d208d1c13d6a2d368e49097d0f54295d5f926ba2f7818dc8366f82669ee3d486bfd1c103cb1d7a5f4c6c09f83e782e097d27eba26aeaa64cb69bac477654fe53f43516816552b1feb21543b8ca9af1a1d342c11934cb62bd0990dad0e09a386f44ef8878b1fc8ed2ae9a4e94426af97a6871123792978d284dbac40e3e0397e26ef5440c44dcc8a917f5e8d84e076ed97892df30255593f2e4d19d721e07361b4c89390a4d8b50785f8ed8bbbbe57a2c4fd8b6d421b7471c3c030f9f56f108d2657dbd6041568640b2e42b2b9de170ea1615238b7eddd764227aeff3054c6f804cba66b204b01ce97e6b14288fa10b64ef33725cdbe33794a8a320076e7a559516a011cc52faf56b7a8e08b527479f04c56cd0ae434ec089539d5c9472d0dff13334995f710890b5d1bc473ef3fb07fd3f23fac4e1a65f629200a6d90bdfe989a30fcfbde7ccceeb035d7fb4e8cc3b89352a1b73738d12d0c92d881f36197df0c0ff50539f4dfc85d8372b529b09737b1d0a7314463d83057378fae8547e7f32e55ced4c0e8a93a9a843d4e52f2594705f1a3db3f0d5a1f289dd05643f2bdb807a943d4ba3060bc39996c1abd6026dcaad908bf4ff67ae0d5f8cc1c024ea2af3bfc532ae1d93f40553c942c34365185a29697533437451fe0123fc213f9d5bae457fc68593ed119565528f0376d746cc17df9770c8dedac890111c3ed16114055269d0268c5b40a72b8cf7ccfecbd5b9355bebcb96fc792e87ebfe0aaa3ea84525180e3b59e11c5a3c307f2ae64a971e296df8633b01be67f48bb9d34ee2c3b459cbbded525f162c4f868be915939bddb8768458f521550f9c2e89e1b7ef600d8206fb48ed90c39119c29a87636f76dd832c9247d52d1632f56a9dba367f90235cee0e3e31c08cdf718d6129608277fc6ad0ff4836a4d74a45449b5b4a1d8988b575ab9316b2c45417dd95d00f30cdaec34bad721715c305647467a2460e71b2aa26093de18e3a5c97ae11042b1e649364c1fcd5459abc41c027d770d6db47875f6d65ca100c2d69e3e9fc3a289e66c43124bfebeb37dff66702c4ad0abce2935540d9d50c29473a4768dcc8245b8d63de194df1ddc3778cba3b2c5ecdf7ae3b36f2cc3d221d4d2c12b3179bec2b18ce6a58a37d0931553ed52c33747745dad3c8801ffd1357eb3cd318a449745a57a2f7cc1899d089e3bedf6f9dfa636b38b27dca32e753ea9ccf8da4e3a13946e4356a62b54e87ae1a173e76571d583360aa121c8c034075d2e7ef4c9981b53e6ccf4747a2efe491232ee018567cf94a0c2afc2a8ee704f58fda97b4f9742775a6ceb2c0e91f2029838d719fecdbe98d219eae13af4cb0039b9b3c9fc702bbb9898ebd1d4a5f6b7493bdc582967582aa5149f0521dfb6fd9345485950cf6a66b5b96a18d11669fb1feb"}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x8}, @NL80211_ATTR_4ADDR={0x5, 0x53, 0x43}, @NL80211_ATTR_FILS_ERP_USERNAME={0xb, 0xf9, "135d94caa3696b"}, @NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x7}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x9}]}, 0x1054}, 0x1, 0x0, 0x0, 0x8000}, 0x4000090) (async)
ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(0xffffffffffffffff, 0x1, &(0x7f0000000480)="8cd045e6704c6d28c52e04cfa4ad48b02fb1388b9982873b5fad9aa0a43d5fd205ccfae6bf63329065acf2f8bd0f21074e760e7f55bc1c67c549aa39e5602401a0f3e7bc51fc6dea4a7d944c43b5ada76b485a7e54b24234c46100c67dfea658d946a8a3104d85cef9372aee71bafc6cc17a25116595084fc8fd35a8aedf0dff2927983131bdca9e1a4c6001a56f612e9dbb1a8fe3eb64312f3691764b8bbaf96359f34669db1f14fded3e2e17a59fa9a88bb0a1bc4d58d0053bcc3ca82e0371dcc5e0022fe689669f4de32f6bfa2964d3d713bd81d1911000d1166772961d6f98") (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/fib_trie\x00', 0x0, 0x0) (async)
r4 = open(&(0x7f0000000100)='./bus\x00', 0x4c27e, 0x0)
copy_file_range$auto(r4, 0x0, r4, 0x0, 0x2, 0x0)

7.966811193s ago: executing program 1 (id=4403):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000300), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0xa, 0x0)
io_uring_register$auto(0x2, 0x2, &(0x7f0000000000), 0xfffffffe)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
ioctl$auto_UBI_IOCDET(r0, 0x40046f41, &(0x7f0000000180)=0x4)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
capget$auto(0x0, 0xfffffffffffffffe)

7.903210597s ago: executing program 5 (id=4405):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfdef)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="8b632abd7000fedbdf250e000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000080}, 0x40000)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
socket(0x2, 0x2, 0x88)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x41000, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r3 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
poll$auto(&(0x7f0000000180)={<r4=>r3, 0xfff7, 0x9816}, 0x7f, 0x9)
ioctl$auto(r4, 0x4008af24, r3)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0)
socket(0x6, 0x1, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r6, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

6.622699439s ago: executing program 4 (id=4406):
r0 = socket(0x11, 0x3, 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000340)={0x7fffffff, 0xd, 0x2, 0x4, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
io_uring_enter$auto(0x3, 0x5, 0xfffffffb, 0x3, 0x0, 0x2)
write$auto(r1, &(0x7f0000000080)='/dev/audio1\x00', 0x100000a3d9)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TCP_METRICS_CMD_GET(r3, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000040)={0x14, r2, 0x89c1beb01534ff9b, 0x70bd29, 0x25dfd3f9}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
unshare$auto(0x40000080)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x80883, 0x0)
select$auto(0xf, 0x0, &(0x7f0000002400)={[0x1, 0x400, 0x0, 0x8, 0x200000000000027f, 0xe0d3, 0x4, 0x17c750d60, 0xfffffffffffffac1, 0x106, 0x8000, 0x8000000000000000, 0x0, 0x10001, 0x2, 0x24f]}, &(0x7f0000002480)={[0xf, 0x5, 0x8, 0x4, 0x6, 0xffffffffffffff7a, 0x8, 0x45f6c183, 0xaeb, 0x3, 0x3, 0x8, 0x8000, 0x2, 0x8000000000000001, 0xfffffffffffffffc]}, 0x0)
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x200005ac, &(0x7f0000000480)={&(0x7f0000000240)="4c0c580000000000090000000000000007a4bac083077e", 0x49}, 0x4, &(0x7f00000003c0)="cdc576166b8d", 0x7, 0x11}, 0x5}, 0x2, 0x100)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
setsockopt$auto(0xffffffffffffffff, 0x0, 0x20, 0x0, 0x8)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
settimeofday$auto(&(0x7f0000000180)={0x100000001, 0x1}, 0x0)
clock_gettime$auto(0x0, 0x0)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001840), r6)
sendmsg$auto_NL80211_CMD_DEL_NAN_FUNCTION(r0, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x78, 0x0, 0x20, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x4}, @NL80211_ATTR_UNSOL_BCAST_PROBE_RESP={0xc, 0x127, 0x0, 0x1, [@NL80211_UNSOL_BCAST_PROBE_RESP_ATTR_INT={0x8, 0x1, 0x2}]}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x16, 0x13, "f411c2dd7d780703597f020f1720cb34d2ad"}, @NL80211_ATTR_MESH_ID={0x18, 0x18, "cec00f4dc66cb9390c2b15e619dcdbfd50da1418"}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0xfc00}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x1}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6}]}, 0x78}, 0x1, 0x0, 0x0, 0x4}, 0x96)
sendmsg$auto_MACSEC_CMD_UPD_TXSA(r6, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000018c0)={0x1c, r7, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@MACSEC_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200480c7}, 0x80)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vidtv.0/i2c-0/delete_device\x00', 0x1, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x28, r5, 0x1, 0x70bd2b, 0x25dfdc03, {}, [@HWSIM_ATTR_PMSR_SUPPORT={0x14, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0x10, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5}]}]}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x48894}, 0x4)

6.187513608s ago: executing program 5 (id=4408):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
mmap$auto(0x0, 0x400005, 0x80000000df, 0x9b72, 0x2, 0x7fff)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, &(0x7f0000001f00)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001ec0)={&(0x7f0000000780)={0x1488, 0x0, 0x0, 0x70bd25, 0x25dfdbfb, {}, [@MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_SA_CONFIG={0x28, 0x3, 0x0, 0x1, [@nested={0x23, 0x71, 0x0, 0x1, [@typed={0x8, 0xe3, 0x0, 0x0, @uid}, @nested={0x4, 0xdc}, @generic="53ed88c815c54b1033c2716668d03a", @nested={0x4, 0xad}]}]}, @MACSEC_ATTR_OFFLOAD={0x12b3, 0x9, 0x0, 0x1, [@nested={0x1156, 0xec, 0x0, 0x1, [@generic="7210f0a7150be7dc25b8e2a1a42a7225a5412aad4396a455f3ee6e015afe04cd805d90fb0abee8fe346f83a3f735db0081beef4fb88b72e63574f8d63196bc364994341f9b247ad6a53a985b2ac0ddaf23e03844d7b5c3a74a6a79701c5996b9a3c1d4d8bbd8ccc20a0e1a4f0488b28bc218ceb7a8bd1d454cd93b5ca33c801fd103218b607a8160d765b3549fe3ce9843194fc83ca0fc051e91ddbda6e62001b62973e5362c13f94b6ade715da5619e1e741b50665926b5879e4880fa508df9543bc6f0f0aaa6974a6421ea990858b76cdb88a76ab3f89b441b89917c383d69216ac257f427da", @generic="dbbb02ed9432b4c26b0289789d918cdc4255d2cfa00d79942fca1c8d8c97f9717a401fc6f7f5f9c1d599426f247c78fae89fe136ba453ad28c4765baa42269cdfff68ed4da150139e6b7713c072935b3db4fc54f5fee659aa56868299153359cc656f4db7accb6d8ad23bd", @generic="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"]}, @generic="98de59063669d5c7cf429181fc95350ee8c025b7212204a42f23857d7b0bde08bf8bc42723d38dd75fca78ffc24fb40e741a653a275c6691cd683b65673ecdc83af68b4a4e4f4dac5eeb688a64d7ac24512c367495c112b65d836aa5671715c826ca919ecd0ef40851df7e49507eaf1e412fb3d2b3e547457c75e3bc611a9f942c8ad1524c157cce4a057c1ab8a0d29ad508b994fc60c7ddc8f40813dacae4782cd406fcd86762aafc08a80dbc0901b4dea058dc3495cca686edd38b243870dfb94ae1e76849c2acbebdea53b350f188e87cf64151d107507b8b9bf5f1441f2b123f47e962d1894c7f3755b2ca06e8d574371e", @typed={0x9, 0x74, 0x0, 0x0, @str=':*@$\x00'}, @nested={0x4, 0x144}, @typed={0x8, 0x132, 0x0, 0x0, @pid}, @typed={0x8, 0x13d, 0x0, 0x0, @u32=0x3}, @nested={0x4, 0xb}, @typed={0x8, 0x2b, 0x0, 0x0, @uid}, @typed={0x8, 0xc, 0x0, 0x0, @uid}, @typed={0x2e, 0x90, 0x0, 0x0, @binary="dc32b10fd2aeedcdbc49d9160dee5d6ce4ad6b66a4e2c6078edcc81370ca6f2e92ef948c8a529a4776ff"}]}, @MACSEC_ATTR_SA_CONFIG={0x186, 0x3, 0x0, 0x1, [@generic="3a9e1fbe939ac5b1b576cfe87979c9d9d5f268c9faf7994ed0becb6d5e4c83a286b2c81003771ba985342645f6970947815293bccceeefb22250cd98c00814b3582d9f021cf6f60835a527ce35fa7ddcaaa672a4283dab8a31d85ef03ed223de9a6c4b400bee5f42b18ed6", @nested={0xcc, 0x10b, 0x0, 0x1, [@typed={0xae, 0x112, 0x0, 0x0, @binary="c93b660e4f31cf11f5fbb5016dccf00ff801deca687d88b4acdff0561df80276d6dd915e16c1e477f7680848cedb80a62502a92631f6c2b0af0c287dd3d05b22db96bfc1346452aa5e68890e871c1c938256b7799f725f137168f401d6bf5e2c78fc35d2e31f044c6a7807448cd73a209f8c9358b93f480bbb698901fe3cb9c2ac183d617e99ce5d0ff761648d9803b0bc6409ea8a7e881e264bd6ea4bf8b7deb40792e7e39ec41e2e0b"}, @nested={0x4, 0x63}, @typed={0x8, 0xc8, 0x0, 0x0, @uid}, @nested={0x4, 0x117}, @nested={0x4, 0x4b}, @nested={0x4, 0x3e}]}, @generic="edc5faf01c06d7acc99829f9fafc2cd5221f3ed1a81c3aa7b40ccc296034904f38de53d827937ffaf0637e6c3cde1de4cb55fc00c8f9cdde2ef242", @typed={0x8, 0xaf, 0x0, 0x0, @fd}, @typed={0x8, 0xab, 0x0, 0x0, @uid=0xee01}]}]}, 0x1488}}, 0x20004010)
ioctl$auto_RTC_IRQP_READ(r1, 0x8008700b, 0x0)
openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/cmdline\x00', 0x0, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10b80c2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB='\x00\x00', @ANYRESDEC=r3, @ANYRESOCT=r3], 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, 0x0, 0x55)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
fcntl$auto(0xffffffffffffffff, 0x402, 0x2)
r4 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002640)='/sys/kernel/debug/tracing/set_event\x00', 0x40800, 0x0)
pread64$auto(r4, &(0x7f0000002680)='/dev/snapshot\x00', 0x73528428, 0x3)

4.965430066s ago: executing program 4 (id=4412):
openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/projid_map\x00', 0x101002, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
r0 = socket(0x2, 0x1, 0x106)
r1 = getsockopt$auto(r0, 0x6, 0x6, 0xfffffffffffffffc, 0x0)
syz_genetlink_get_family_id$auto_hsr(&(0x7f0000000040), r1)
r2 = openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event_pid\x00', 0x0, 0x0) (async)
sendmsg$auto_NL80211_CMD_SET_BSS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x100, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_PUNCT_BITMAP={0x8, 0x142, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x841}, 0x48080)
lseek$auto(r2, 0x48f, 0x0)
write$auto(0x3, 0x0, 0xfdef)

4.179475852s ago: executing program 2 (id=4413):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x12d981, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r1, 0x4c09, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(r0, 0xa, 0x6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.1/usb2/idProduct\x00', 0x100000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
setsockopt$auto_SO_PASSPIDFD(r2, 0xec0, 0x4c, &(0x7f00000000c0)='/dev/kvm\x00', 0xedb2)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/pid_for_children\x00')
ioctl$auto(r3, 0x9004b70b, 0xffffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/mm/numa/demotion_enabled\x00', 0xa001, 0x0)
write$auto(r4, &(0x7f0000000040)='\x1a\xf8)\a\x93\xff\x01\xab\xf1\x90\xb4\xd9\x82#\xb7\xd4\xb7\x00\xfb&\xe84\xc0nB3^h(CBWX\xa4\v\x98\xdf\\\xe7\x0f\xd8Ft\xbb\xbf', 0xd4d0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r6 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP_SET_WEDGE(r6, 0x4004550f, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
rseq$auto(&(0x7f0000000340)={0xe, 0x401, 0x0, 0x806, 0xffffffff, 0x2}, 0x8000, 0x0, 0x8000006)
socket(0x23, 0x80805, 0x0)
listen$auto(0x3, 0x83)
listen$auto(0x3, 0x81)
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aab4)

4.173662375s ago: executing program 5 (id=4414):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
bpf$auto(0x0, 0x0, 0x4f4)
capset$auto(0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
ioctl$auto_BLKTRACESETUP2(r1, 0xc0481273, &(0x7f00000000c0)={"67b005c1c2760bd1eeb6eb479d03912acfb5074ad05689c042577e4d145c43b5", 0x4, 0xfff, 0x7fffffff, 0x9, 0xa00})
io_uring_setup$auto(0x6, 0x0)
r2 = prctl$auto(0xaf6d, 0x1, 0x0, 0xffffffffffffffff, 0x5)
ioctl$auto(r1, 0x4b41, r2)
socket(0x25, 0x2, 0x73)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x80900, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/net/rt_cache\x00', 0x2000, 0x0)
select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0xd3e, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x62, 0x80000001, 0x50a7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x1, 0x948f, 0x1005, 0x206, 0x7, 0xfffffffffffffff6, 0x7, 0x9, 0x79d, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0xf]}, 0x0)
r3 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/usb/usbmon/33u\x00', 0x20202, 0x0)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0x101, 0x4, &(0x7f0000000400)={0x0, 0x8000000000000000})
pread64$auto(r3, 0x0, 0xfffe, 0x9)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
write$auto_tty_fops_tty_io(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto(0xffffffffffffffff, 0x8912, 0x38)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
madvise$auto(0x3, 0x402003f0, 0x15)

3.800331186s ago: executing program 2 (id=4415):
memfd_secret$auto(0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
socket(0x1a, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
socket(0x2b, 0x1, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mlock$auto(0x112, 0x80006)
mlockall$auto(0x800000000000005)
madvise$auto(0x0, 0x200007, 0x19)
msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r3, &(0x7f0000000000)="4c91f2c388274610e12c861bb2bfd9800e9b394b", 0x14)
msgsnd$auto(0x0, &(0x7f0000000000)={0x40, 0x5}, 0x8, 0x9)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r4 = socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(r4, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
unshare$auto(0xc84f)
socket$nl_generic(0x10, 0x3, 0x10)

3.799375372s ago: executing program 1 (id=4423):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000300), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0xa, 0x0)
io_uring_register$auto(0x2, 0x2, &(0x7f0000000000), 0xfffffffe)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
ioctl$auto_UBI_IOCDET(r0, 0x40046f41, &(0x7f0000000180)=0x4)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
capget$auto(0x0, 0xfffffffffffffffe)

3.437756681s ago: executing program 4 (id=4416):
r0 = socket(0xa, 0x1, 0x100)
close_range$auto(0x2, 0x8, 0x8da)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_GTP_CMD_DELPDP(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)={0x14, r3, 0x1, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r3, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [@GTPA_PEER_ADDRESS={0x8, 0x4, @multicast2}, @GTPA_FLOW={0x6, 0x6, 0xdc}]}, 0x24}, 0x1, 0x0, 0x0, 0x8048}, 0x20401)
r4 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/block/loop9/hctx0/sched_tags_bitmap\x00', 0x101a00, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r4, &(0x7f0000000340)=""/179, 0xb3)
ioctl$auto(0x3, 0xae78, r0)

3.01965135s ago: executing program 4 (id=4417):
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40000, 0x300)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x64e000, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x500, 0x0)
mmap$auto(0x0, 0x2020009, 0x8000000007, 0x11, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd12/queue/nr_requests\x00', 0x129102, 0x0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45)
fanotify_mark$auto(0x0, 0x55, 0x9, r2, 0x0)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000100), r2)
write$auto_proc_projid_map_operations_base(r2, &(0x7f0000000040)="34b225899f8b10fe5d579a29e0bdb5da4e92bf395918c2bb2c131df2bd6e842cf4cf907491fbe897523eaef4ecf7b8787a3fbc3f15ba5dcd6e69e8b277cf9c887616e0480e6f742cca409700119e31f0dc97faf9c69e8afeddd0a025b7883d25bd006fc48ea98d00c3b18edc7dbd70660a1330031f330019ab3397650268fae8067a36ba084a07af3da577681f2e2358b41f1a9f2e21175279167ba939a293c37d07286ae0ac181663b3067d374603677981812995e7dfa8b5261cbff3a6018008ea23d36935b4d7eb82468c57a82e7d089b703fa7f0e78c7768ad04a3b623cc7435", 0xe2)
read$auto(r0, 0x0, 0x4000000013)
write$auto(r1, 0x0, 0xfdef)

2.854402959s ago: executing program 5 (id=4418):
r0 = socket(0x11, 0x3, 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000340)={0x7fffffff, 0xd, 0x2, 0x4, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
io_uring_enter$auto(0x3, 0x5, 0xfffffffb, 0x3, 0x0, 0x2)
write$auto(r1, &(0x7f0000000080)='/dev/audio1\x00', 0x100000a3d9)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TCP_METRICS_CMD_GET(r3, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000040)={0x14, r2, 0x89c1beb01534ff9b, 0x70bd29, 0x25dfd3f9}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
unshare$auto(0x40000080)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x80883, 0x0)
select$auto(0xf, 0x0, &(0x7f0000002400)={[0x1, 0x400, 0x0, 0x8, 0x200000000000027f, 0xe0d3, 0x4, 0x17c750d60, 0xfffffffffffffac1, 0x106, 0x8000, 0x8000000000000000, 0x0, 0x10001, 0x2, 0x24f]}, &(0x7f0000002480)={[0xf, 0x5, 0x8, 0x4, 0x6, 0xffffffffffffff7a, 0x8, 0x45f6c183, 0xaeb, 0x3, 0x3, 0x8, 0x8000, 0x2, 0x8000000000000001, 0xfffffffffffffffc]}, 0x0)
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x200005ac, &(0x7f0000000480)={&(0x7f0000000240)="4c0c580000000000090000000000000007a4bac083077e", 0x49}, 0x4, &(0x7f00000003c0)="cdc576166b8d", 0x7, 0x11}, 0x5}, 0x2, 0x100)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
setsockopt$auto(0xffffffffffffffff, 0x0, 0x20, 0x0, 0x8)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
settimeofday$auto(&(0x7f0000000180)={0x100000001, 0x1}, 0x0)
clock_gettime$auto(0x0, 0x0)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001840), r6)
sendmsg$auto_NL80211_CMD_DEL_NAN_FUNCTION(r0, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x78, 0x0, 0x20, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x4}, @NL80211_ATTR_UNSOL_BCAST_PROBE_RESP={0xc, 0x127, 0x0, 0x1, [@NL80211_UNSOL_BCAST_PROBE_RESP_ATTR_INT={0x8, 0x1, 0x2}]}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x16, 0x13, "f411c2dd7d780703597f020f1720cb34d2ad"}, @NL80211_ATTR_MESH_ID={0x18, 0x18, "cec00f4dc66cb9390c2b15e619dcdbfd50da1418"}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0xfc00}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x1}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6}]}, 0x78}, 0x1, 0x0, 0x0, 0x4}, 0x96)
sendmsg$auto_MACSEC_CMD_UPD_TXSA(r6, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000018c0)={0x1c, r7, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@MACSEC_ATTR_SA_CONFIG={0x8, 0x3, 0x0, 0x1, [@typed={0x4, 0x1}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200480c7}, 0x80)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vidtv.0/i2c-0/delete_device\x00', 0x1, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x28, r5, 0x1, 0x70bd2b, 0x25dfdc03, {}, [@HWSIM_ATTR_PMSR_SUPPORT={0x14, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0x10, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5}]}]}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x48894}, 0x4)

2.739495086s ago: executing program 4 (id=4419):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = socket(0xa, 0x3, 0x3b)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x400000003)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'erspan0\x00'})
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x40010}, 0x20048004)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x14, r5, 0x1, 0x70bd2c, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x700000000000000, 0x8000}, 0x8000)
fanotify_init$auto(0x602, 0x1)
r6 = open(&(0x7f0000000000)='./bus\x00', 0x1652c2, 0xe1d2b27bdc14aa98)
fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, r6, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000002c0)={{&(0x7f0000000040)="6a77f1383665ccc098736967fe7745215b8645e598e7ac2286bbf7131f0a78a9018b8bfe1abbee5128014d012163d14e95f5af180db78019e22d0cb20d7b954461bda7567bcce1e156f0dd816dd37fe045", 0xfffffc00, &(0x7f0000000180)={&(0x7f00000000c0)="383703c37b6a478abdb3562cbcc7a8c4cccdde8053b92ebcfbfc79da1f84163c191861922c01fc363553454d875433db24d013993c1544b8f50f07af8bc36f2dfb248a82e39bb7cf4fc53d808d42758ee242a91fcb5047d87735659eef3ce0ba4ecc622e8419d345efe2f966d93304cd742d73668eb9b440bb80d0955d6e1b3ea691f77781e3b7303825006fd52b5716861bfb1b2f838604f95410c34b0b29bfa30e9cef70f5cf5ffdaaf1b3", 0xcf0a}, 0x12, &(0x7f00000001c0)="459d8a5dd9b69e74ca9190722488f3532a6cfa1f2aa81785863b04ce73dccfae616a648b74f936d216f49da2e1098dfa95a87e7a5f1213073ab35eeba5318f11e349f99bb944675ae6d8c8828e4884053da1fc107c3b694b46ff76a856b2a8b0a73ad4ead2c963a247fc4b4a7a2e564b4babca7695c4cfba8496cc1d813098c002645f9ee5325726a0825dd30948477892dae11e5a76268841d2718ae0914e7bf59528ed5c8fe80ecd37a1dfbc6e0ceca029342aa365d5f4d2d8c34cd8558bcf83", 0x4, 0x5}, 0x7}, 0x4, 0x0)
fanotify_mark$auto(0x0, 0x451, 0xa, 0xffffffffffffffff, 0x0)
prctl$auto(0x4e, 0x1, 0x0, 0x0, 0x0)

2.025292186s ago: executing program 2 (id=4420):
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x66) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/dev\x00', 0x40b00, 0x0)
pread64$auto(r0, 0x0, 0xf469, 0xbc3ab41) (async)
setresuid$auto(0x0, 0x8, 0x0) (async)
setfsuid$auto(0x0) (async)
setresuid$auto(0x8, 0x8, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
faccessat2$auto(0x1, &(0x7f00000000c0)='\x00', 0x2, 0x1000) (async)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x70)
sendmsg$auto_NL80211_CMD_DEL_TX_TS(r1, &(0x7f00000005c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000580)={&(0x7f0000000440)={0x108, 0x0, 0x300, 0x70bd27, 0x25dfdbfb, {}, [@NL80211_ATTR_PMKID={0xf3, 0x55, "fef6b59364cf32d843337994aac5cdafeea6ff4c4dca6fbcf085eea0e258556c3cd72d321575042bab72fe67ce30fba1b297e9a4694303e67478d0a74a227b42905aa1c6355447b37cc30890531987b85334163fa51041ef2e653ad03214b59fa1f2d5dd0675d795fd9c04139078aa9a00cdc6d199e1f9450d08389868a1d38817631481e8f0b03f38f23533283cd9c834d11ce85e383ad392ab111be6ea0b351c9aaf884c9e0ac6cd55d5a370a42641684ec1f3fce8aa25282be7ad6a27af24cc6cb49604ee85ae2c81c774cc26cb1a8052ee857ce898476da40e6091b6a9ba83bb5c61195525aacabdd2cf21c133"}]}, 0x108}}, 0x40008011)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = fanotify_init$auto(0xba, 0x0)
setfsuid$auto(0xee00) (async)
fanotify_mark$auto(r2, 0x205, 0x100002, 0x4, 0x0) (async)
ioctl$auto_FUSE_DEV_IOC_BACKING_OPEN(r1, 0x4010e501, &(0x7f00000000c0)={r0, 0x10000})

1.899443137s ago: executing program 4 (id=4421):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/mpls/platform_labels\x00', 0x202, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/adsp1\x00', 0x103502, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x9, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x2000008000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
fsconfig$auto_SHMEM_HUGE_FORCE(0xffffffffffffffff, 0x7, &(0x7f0000000100)='@+\\!\x00', 0x0, 0xfffffffffffffffe)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_seg6(0x0, 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040080}, 0x8840)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D1\x00', 0x280801, 0x0)
epoll_ctl$auto(r0, 0x4, 0xffffffffffffffff, &(0x7f0000000240)={0x8, 0x7fffffff})
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/dev/audio1\x00', 0x100000a3d9)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x696b}, 0xed7138c}, 0x2, 0x9)
socket(0x2, 0x2, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)

1.56568035s ago: executing program 2 (id=4422):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x109001, 0x0)
fstatfs$auto(0x3, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
socket(0x2, 0x1, 0x106)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
shmctl$auto_IPC_INFO(0x23a60b20, 0x3, &(0x7f0000000100)={{0x9, 0x0, <r0=>0x0, 0x1, 0x3ff, 0x5, 0x2}, 0x5, 0x4, 0x4, 0x1, @inferred=0xffffffffffffffff, @raw=0x10000, 0x8, 0x0, &(0x7f0000000000)="66895697f4276d7edba95366f95b1c70b3aeae4eb60e23c3", &(0x7f0000000040)="1d05edba3393664f0bd57cfda2c174bac6cc8c09bee9ae54b5bc0abdc4df5f9bb97a4d27d4d659996aebbe32602e1ff87e25f4c89dda00ca6f6f630b1f2dbe0b1b2e3ad107872e1595e8231072df40fc42eca5de3e44c6e3f7acee3fa85ba40e26ceae9a2bb09d1f4d7dbed472a8897b3f169309186444b03aa78abf03bee1e887556560e2a3e5f407ecab8d1bf09034207f033f899f1c49924097413e1a"})
setresgid$auto(0x0, 0x6, r0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
ioctl$auto(0x3, 0xff09, 0x0)

1.521569247s ago: executing program 5 (id=4424):
mmap$auto(0x2, 0x400008, 0xdf, 0x17, 0x2, 0xb3a)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x10000002)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xebf, 0x401, 0x40000008000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ustat$auto(0x801, 0x0)
keyctl$auto(0x1d, 0xfffffffffffffffd, 0x2, 0x628, 0xfffffffffffffffd)
openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/platform/dummy_udc.5/power/control\x00', 0x840c0, 0x0)
mmap$auto(0x0, 0x4b6, 0x9, 0x9b70, 0xffffffffffffffff, 0x1)
read$auto(r1, 0x0, 0xe8)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0)
init_module$auto(0x0, 0xffff9, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xd, 0x0, 0x0, 0x0, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
pselect6$auto(0x5, &(0x7f0000000080)={[0xc, 0x5, 0x2, 0x0, 0x2, 0x1000, 0x8, 0xffffffff, 0xdbda, 0x3, 0x2, 0x68, 0xfffffffffffffffc, 0xf0f, 0x4, 0x7]}, &(0x7f0000000140)={[0x3, 0x1, 0x10, 0x7, 0xffffffff, 0xfffffffffffffffe, 0xb, 0x8, 0x8, 0x200, 0x1, 0x3ff, 0xd, 0x0, 0x8000, 0x4]}, &(0x7f00000001c0)={[0x8, 0x1000, 0x9, 0x401, 0x100000000, 0xb, 0xb, 0x7fffffffffffffff, 0x3122, 0x8, 0xfffffffffffffff7, 0x9, 0x461, 0x3ff, 0x4, 0xd7f]}, &(0x7f0000000240)={0x4, 0x1}, &(0x7f00000002c0)="905f544c80688f8a02e8265268f3429f14dd34f9475ce3f3531b283630997b6919ce8552eed83a115470af88c3c6d10a8cb3ea2da2f4de1aea9e1b3d3e56a69fd705e36e491692aa7de8612d10060a2a9a80397a1e54d773faaaea0705d918884d216c6240ef020d2f4a321f296135e31c3bb8fdc3893a3136b7c48e0bf21164499fa6037669ec5767ecb672a756800534d8")
mlockall$auto(0x5)
rt_sigprocmask$auto(0x5, 0x0, 0xffffffffffffffff, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0xe, 0x0, 0x8, 0x0)
socket(0x11, 0xa, 0x300)
pread64$auto(0xffffffffffffffff, 0x0, 0x101fb, 0x8800000005)
r2 = socket(0x2, 0x1, 0x0)
ppoll$auto(&(0x7f0000000000)={<r3=>r2, 0x4, 0x5}, 0x7, 0x0, 0x0, 0x8)
setsockopt$auto(r3, 0x6, 0x13, &(0x7f0000000040)=')[\x00', 0x9)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x42, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0)

327.874649ms ago: executing program 2 (id=4425):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 64)
write$auto(r0, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) (async, rerun: 64)
r1 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/filter\x00', 0x2e0140, 0x0)
read$auto_ftrace_event_filter_fops_trace_events(r1, 0x0, 0x0)
r2 = getpid()
process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0x5}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000240)="d73ad0f0df3a09eecd03dcd7fcb33173198d283504974429d51e25f20c83cbba920582eccdf880073bc65e249e69c2748020400e4ff4fc8ad699e28104fe3d6eff266f4e5a57d75e", 0x40000000001243}, 0xa, 0x0) (async)
ioctl$auto(0x3, 0x400454ca, 0x38) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/dummy0/addr_gen_mode\x00', 0x1, 0x0) (async)
r3 = socket(0x10, 0x2, 0x0) (async, rerun: 64)
writev$auto(0xffffffffffffffff, 0x0, 0x40000009) (async, rerun: 64)
close_range$auto(0xffffffffffffffff, 0x8, 0x0) (async)
mmap$auto(0x0, 0x4020009, 0xdc, 0xeb1, 0xffffffffffffffff, 0x8000)
pwritev$auto(r3, &(0x7f0000000100)={&(0x7f0000000080)="99d053649de56b5c7d62a77ff09818be6a9456b6cb564f26c8e0678ed00272f4360b928e674183d83581957e192a6050f157fbd8c3b9c9853e366309df22b13562a4453467b15e5959", 0x5}, 0x80000001, 0x3, 0x9) (async, rerun: 64)
mmap$auto(0x0, 0xffffffff, 0xdf, 0x10, 0x2, 0x200008000) (async, rerun: 64)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/rose7/queues/rx-0/rps_cpus\x00', 0x1c1002, 0x0) (async)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x85b01, 0x0) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_MON_GET(r4, 0x0, 0x4000) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/tty49\x00', 0x490000, 0x0) (async)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x48041, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r5, 0x0, 0x0) (async, rerun: 64)
unshare$auto(0x40000080) (rerun: 64)
socket(0xa, 0x3, 0x84)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

180.072362ms ago: executing program 5 (id=4426):
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mtd0\x00', 0x0, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x8000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/ptp/ptp0/clock_name\x00', 0x800, 0x0)
read$auto(r1, 0x0, 0x4)
read$auto(r0, 0x0, 0x20)
close_range$auto(0x0, r0, 0x4000000000002)
socket(0x2, 0x801, 0x106)
socketpair$auto(0x1a, 0x9, 0x8000000000000000, 0x0)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtd0ro\x00', 0x0, 0x0)
ioctl$auto_BLKPG2(r2, 0x1269, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x7)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0)
sendfile$auto(r3, r4, 0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)

0s ago: executing program 2 (id=4427):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
bpf$auto(0x0, 0x0, 0x4f4)
capset$auto(0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
ioctl$auto_BLKTRACESETUP2(r1, 0xc0481273, &(0x7f00000000c0)={"67b005c1c2760bd1eeb6eb479d03912acfb5074ad05689c042577e4d145c43b5", 0x4, 0xfff, 0x7fffffff, 0x9, 0xa00})
io_uring_setup$auto(0x6, 0x0)
r2 = prctl$auto(0xaf6d, 0x1, 0x0, 0xffffffffffffffff, 0x5)
ioctl$auto(r1, 0x4b41, r2)
socket(0x25, 0x2, 0x73)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x80900, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/net/rt_cache\x00', 0x2000, 0x0)
select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0xd3e, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x62, 0x80000001, 0x50a7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x1, 0x948f, 0x1005, 0x206, 0x7, 0xfffffffffffffff6, 0x7, 0x9, 0x79d, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0xf]}, 0x0)
r3 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/usb/usbmon/33u\x00', 0x20202, 0x0)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0x101, 0x4, &(0x7f0000000400)={0x0, 0x8000000000000000})
pread64$auto(r3, 0x0, 0xfffe, 0x9)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
write$auto_tty_fops_tty_io(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto(0xffffffffffffffff, 0x8912, 0x38)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
madvise$auto(0x3, 0x402003f0, 0x15)

kernel console output (not intermixed with test programs):

90
[ 1132.990655][T21950]  __sys_sendmsg+0x16d/0x220
[ 1132.990678][T21950]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1132.990719][T21950]  do_syscall_64+0xcd/0xfa0
[ 1132.990747][T21950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1132.990772][T21950] RIP: 0033:0x7f3bb618efc9
[ 1132.990790][T21950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1132.990814][T21950] RSP: 002b:00007f3bb709c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1132.990836][T21950] RAX: ffffffffffffffda RBX: 00007f3bb63e5fa0 RCX: 00007f3bb618efc9
[ 1132.990873][T21950] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1132.990888][T21950] RBP: 00007f3bb709c090 R08: 0000000000000000 R09: 0000000000000000
[ 1132.990902][T21950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1132.990917][T21950] R13: 00007f3bb63e6038 R14: 00007f3bb63e5fa0 R15: 00007ffcafdfedd8
[ 1132.990947][T21950]  </TASK>
[ 1133.156529][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1133.257784][T21952] FAULT_INJECTION: forcing a failure.
[ 1133.257784][T21952] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1133.371489][T21952] CPU: 1 UID: 0 PID: 21952 Comm: syz.1.3348 Not tainted syzkaller #0 PREEMPT(full) 
[ 1133.371534][T21952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1133.371549][T21952] Call Trace:
[ 1133.371557][T21952]  <TASK>
[ 1133.371567][T21952]  dump_stack_lvl+0x16c/0x1f0
[ 1133.371597][T21952]  should_fail_ex+0x512/0x640
[ 1133.371638][T21952]  _copy_to_user+0x32/0xd0
[ 1133.371679][T21952]  simple_read_from_buffer+0xcb/0x170
[ 1133.371719][T21952]  proc_fail_nth_read+0x197/0x240
[ 1133.371746][T21952]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1133.371773][T21952]  ? rw_verify_area+0x18c/0x6c0
[ 1133.371797][T21952]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1133.371824][T21952]  vfs_read+0x1e4/0xcf0
[ 1133.371854][T21952]  ? __pfx___mutex_lock+0x10/0x10
[ 1133.371882][T21952]  ? __pfx_vfs_read+0x10/0x10
[ 1133.371915][T21952]  ? __fget_files+0x20e/0x3c0
[ 1133.371947][T21952]  ksys_read+0x12a/0x250
[ 1133.371972][T21952]  ? __pfx_ksys_read+0x10/0x10
[ 1133.372006][T21952]  do_syscall_64+0xcd/0xfa0
[ 1133.372034][T21952]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1133.372063][T21952] RIP: 0033:0x7facc5b8d9dc
[ 1133.372082][T21952] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1133.372105][T21952] RSP: 002b:00007facc694c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1133.372127][T21952] RAX: ffffffffffffffda RBX: 00007facc5de5fa0 RCX: 00007facc5b8d9dc
[ 1133.372143][T21952] RDX: 000000000000000f RSI: 00007facc694c0a0 RDI: 0000000000000004
[ 1133.372158][T21952] RBP: 00007facc694c090 R08: 0000000000000000 R09: 0000000000000000
[ 1133.372172][T21952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1133.372186][T21952] R13: 00007facc5de6038 R14: 00007facc5de5fa0 R15: 00007ffd03ac93c8
[ 1133.372221][T21952]  </TASK>
[ 1133.859911][T21964] FAULT_INJECTION: forcing a failure.
[ 1133.859911][T21964] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1133.971612][T21964] CPU: 0 UID: 0 PID: 21964 Comm: syz.3.3352 Not tainted syzkaller #0 PREEMPT(full) 
[ 1133.971654][T21964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1133.971669][T21964] Call Trace:
[ 1133.971677][T21964]  <TASK>
[ 1133.971686][T21964]  dump_stack_lvl+0x16c/0x1f0
[ 1133.971718][T21964]  should_fail_ex+0x512/0x640
[ 1133.971759][T21964]  _copy_to_user+0x32/0xd0
[ 1133.971799][T21964]  simple_read_from_buffer+0xcb/0x170
[ 1133.971839][T21964]  proc_fail_nth_read+0x197/0x240
[ 1133.971866][T21964]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1133.971894][T21964]  ? rw_verify_area+0xcf/0x6c0
[ 1133.971916][T21964]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1133.971948][T21964]  vfs_read+0x1e4/0xcf0
[ 1133.971977][T21964]  ? __pfx___mutex_lock+0x10/0x10
[ 1133.972006][T21964]  ? __pfx_vfs_read+0x10/0x10
[ 1133.972039][T21964]  ? __fget_files+0x20e/0x3c0
[ 1133.972072][T21964]  ksys_read+0x12a/0x250
[ 1133.972096][T21964]  ? __pfx_ksys_read+0x10/0x10
[ 1133.972122][T21964]  ? fput+0x9b/0xd0
[ 1133.972158][T21964]  do_syscall_64+0xcd/0xfa0
[ 1133.972186][T21964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1133.972211][T21964] RIP: 0033:0x7f3bb618d9dc
[ 1133.972229][T21964] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1133.972253][T21964] RSP: 002b:00007f3bb709c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1133.972275][T21964] RAX: ffffffffffffffda RBX: 00007f3bb63e5fa0 RCX: 00007f3bb618d9dc
[ 1133.972291][T21964] RDX: 000000000000000f RSI: 00007f3bb709c0a0 RDI: 0000000000000004
[ 1133.972306][T21964] RBP: 00007f3bb709c090 R08: 0000000000000000 R09: 0000000000000000
[ 1133.972320][T21964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1133.972334][T21964] R13: 00007f3bb63e6038 R14: 00007f3bb63e5fa0 R15: 00007ffcafdfedd8
[ 1133.972365][T21964]  </TASK>
[ 1134.163982][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1135.005690][T21972] zero sized request
[ 1135.358676][T21983] FAULT_INJECTION: forcing a failure.
[ 1135.358676][T21983] name failslab, interval 1, probability 0, space 0, times 0
[ 1135.394859][T21983] CPU: 1 UID: 0 PID: 21983 Comm: syz.2.3357 Not tainted syzkaller #0 PREEMPT(full) 
[ 1135.394909][T21983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1135.394932][T21983] Call Trace:
[ 1135.394950][T21983]  <TASK>
[ 1135.394965][T21983]  dump_stack_lvl+0x16c/0x1f0
[ 1135.395009][T21983]  should_fail_ex+0x512/0x640
[ 1135.395063][T21983]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[ 1135.395114][T21983]  should_failslab+0xc2/0x120
[ 1135.395163][T21983]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[ 1135.395210][T21983]  ? kasprintf+0xc7/0x100
[ 1135.395251][T21983]  ? kvasprintf+0xbc/0x160
[ 1135.395282][T21983]  kvasprintf+0xbc/0x160
[ 1135.395315][T21983]  ? __pfx_kvasprintf+0x10/0x10
[ 1135.395353][T21983]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1135.395389][T21983]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1135.395429][T21983]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1135.395472][T21983]  kasprintf+0xc7/0x100
[ 1135.395504][T21983]  ? __pfx_kasprintf+0x10/0x10
[ 1135.395547][T21983]  ? __pfx_sta_info_cleanup+0x10/0x10
[ 1135.395591][T21983]  ieee80211_alloc_led_names+0x1b0/0x420
[ 1135.395643][T21983]  ieee80211_alloc_hw_nm+0x197c/0x22b0
[ 1135.395696][T21983]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1135.395754][T21983]  ? __asan_memset+0x23/0x50
[ 1135.395794][T21983]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1135.395878][T21983]  hwsim_new_radio_nl+0xba2/0x1330
[ 1135.395922][T21983]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1135.395975][T21983]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1135.396022][T21983]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1135.396078][T21983]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1135.396127][T21983]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1135.396186][T21983]  ? bpf_lsm_capable+0x9/0x10
[ 1135.396234][T21983]  ? security_capable+0x7e/0x260
[ 1135.396285][T21983]  ? ns_capable+0xd7/0x110
[ 1135.396326][T21983]  genl_rcv_msg+0x55c/0x800
[ 1135.396375][T21983]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1135.396419][T21983]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1135.396472][T21983]  netlink_rcv_skb+0x158/0x420
[ 1135.396510][T21983]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1135.396554][T21983]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1135.396610][T21983]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1135.396652][T21983]  genl_rcv+0x28/0x40
[ 1135.396690][T21983]  netlink_unicast+0x5aa/0x870
[ 1135.396733][T21983]  ? __pfx_netlink_unicast+0x10/0x10
[ 1135.396786][T21983]  netlink_sendmsg+0x8c8/0xdd0
[ 1135.396831][T21983]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1135.396882][T21983]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1135.396945][T21983]  ____sys_sendmsg+0xa98/0xc70
[ 1135.396991][T21983]  ? copy_msghdr_from_user+0x10a/0x160
[ 1135.397025][T21983]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1135.397091][T21983]  ___sys_sendmsg+0x134/0x1d0
[ 1135.397122][T21983]  ? futex_private_hash_put+0x176/0x300
[ 1135.397170][T21983]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1135.397201][T21983]  ? __lock_acquire+0x622/0x1c90
[ 1135.397304][T21983]  __sys_sendmsg+0x16d/0x220
[ 1135.397339][T21983]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1135.397373][T21983]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1135.397448][T21983]  do_syscall_64+0xcd/0xfa0
[ 1135.397492][T21983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1135.397529][T21983] RIP: 0033:0x7f9d5ef8efc9
[ 1135.397558][T21983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1135.397594][T21983] RSP: 002b:00007f9d5fd81038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1135.397630][T21983] RAX: ffffffffffffffda RBX: 00007f9d5f1e5fa0 RCX: 00007f9d5ef8efc9
[ 1135.397654][T21983] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1135.397677][T21983] RBP: 00007f9d5f011f91 R08: 0000000000000000 R09: 0000000000000000
[ 1135.397699][T21983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1135.397721][T21983] R13: 00007f9d5f1e6038 R14: 00007f9d5f1e5fa0 R15: 00007fff34396d78
[ 1135.397769][T21983]  </TASK>
[ 1139.983833][T22046] netlink: 'syz.0.3371': attribute type 1 has an invalid length.
[ 1142.934012][T22091] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3381'.
[ 1143.186723][   T30] audit: type=1326 audit(4294967300.245:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22092 comm="syz.0.3384" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe0c9b8efc9 code=0x0
[ 1144.060462][T22105] netlink: 'syz.1.3386': attribute type 1 has an invalid length.
[ 1144.222607][T22110] binder: 22109:22110 ioctl c0306201 200000000440 returned -11
[ 1145.965830][T22127] zero sized request
[ 1147.250693][T22147] MTRR 1 not used
[ 1147.885597][T22163] random: crng reseeded on system resumption
[ 1147.936744][T22158] netlink: 'syz.3.3397': attribute type 1 has an invalid length.
[ 1148.823455][T22178] FAULT_INJECTION: forcing a failure.
[ 1148.823455][T22178] name failslab, interval 1, probability 0, space 0, times 0
[ 1148.926378][T22178] CPU: 1 UID: 0 PID: 22178 Comm: syz.0.3409 Not tainted syzkaller #0 PREEMPT(full) 
[ 1148.926412][T22178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1148.926428][T22178] Call Trace:
[ 1148.926436][T22178]  <TASK>
[ 1148.926446][T22178]  dump_stack_lvl+0x16c/0x1f0
[ 1148.926480][T22178]  should_fail_ex+0x512/0x640
[ 1148.926518][T22178]  ? __kmalloc_cache_noprof+0x5f/0x780
[ 1148.926563][T22178]  should_failslab+0xc2/0x120
[ 1148.926597][T22178]  __kmalloc_cache_noprof+0x72/0x780
[ 1148.926638][T22178]  ? drm_atomic_helper_setup_commit+0x8d7/0x15d0
[ 1148.926680][T22178]  ? drm_atomic_helper_setup_commit+0x8d7/0x15d0
[ 1148.926715][T22178]  drm_atomic_helper_setup_commit+0x8d7/0x15d0
[ 1148.926764][T22178]  drm_atomic_helper_commit+0xa9/0x380
[ 1148.926801][T22178]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[ 1148.926838][T22178]  drm_atomic_commit+0x234/0x300
[ 1148.926874][T22178]  ? __pfx_drm_atomic_commit+0x10/0x10
[ 1148.926909][T22178]  ? __pfx___drm_printfn_info+0x10/0x10
[ 1148.926939][T22178]  ? drm_client_rotation+0x4da/0x6a0
[ 1148.926980][T22178]  drm_client_modeset_commit_atomic+0x69d/0x7e0
[ 1148.927036][T22178]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[ 1148.927077][T22178]  ? rcu_is_watching+0x12/0xc0
[ 1148.927141][T22178]  drm_client_modeset_commit_locked+0x14d/0x580
[ 1148.927186][T22178]  drm_client_modeset_commit+0x4f/0x80
[ 1148.927225][T22178]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[ 1148.927265][T22178]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[ 1148.927296][T22178]  drm_fbdev_client_restore+0x2c/0x40
[ 1148.927325][T22178]  drm_client_dev_restore+0x1f6/0x2a0
[ 1148.927368][T22178]  drm_release+0x2c4/0x360
[ 1148.927404][T22178]  ? __pfx_drm_release+0x10/0x10
[ 1148.927437][T22178]  __fput+0x402/0xb70
[ 1148.927479][T22178]  task_work_run+0x150/0x240
[ 1148.927519][T22178]  ? __pfx_task_work_run+0x10/0x10
[ 1148.927559][T22178]  ? __pfx___do_sys_close_range+0x10/0x10
[ 1148.927594][T22178]  exit_to_user_mode_loop+0xec/0x130
[ 1148.927634][T22178]  do_syscall_64+0x426/0xfa0
[ 1148.927665][T22178]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1148.927691][T22178] RIP: 0033:0x7fe0c9b8efc9
[ 1148.927713][T22178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1148.927737][T22178] RSP: 002b:00007fe0ca9ed038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1148.927760][T22178] RAX: 0000000000000000 RBX: 00007fe0c9de5fa0 RCX: 00007fe0c9b8efc9
[ 1148.927777][T22178] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 1148.927792][T22178] RBP: 00007fe0c9c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1148.927807][T22178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1148.927821][T22178] R13: 00007fe0c9de6038 R14: 00007fe0c9de5fa0 R15: 00007ffdb2dde648
[ 1148.927854][T22178]  </TASK>
[ 1149.427482][T22189] netlink: 'syz.1.3401': attribute type 1 has an invalid length.
[ 1151.725409][   T30] audit: type=1326 audit(4294967299.290:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22225 comm="syz.3.3412" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3bb618efc9 code=0x0
[ 1153.192555][T22260] netlink: 'syz.2.3414': attribute type 1 has an invalid length.
[ 1153.232630][T22259] netlink: 'syz.0.3416': attribute type 1 has an invalid length.
[ 1154.806885][T22288] FAULT_INJECTION: forcing a failure.
[ 1154.806885][T22288] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1154.825932][T22288] CPU: 0 UID: 0 PID: 22288 Comm: syz.2.3420 Not tainted syzkaller #0 PREEMPT(full) 
[ 1154.825965][T22288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1154.825980][T22288] Call Trace:
[ 1154.825988][T22288]  <TASK>
[ 1154.826006][T22288]  dump_stack_lvl+0x16c/0x1f0
[ 1154.826037][T22288]  should_fail_ex+0x512/0x640
[ 1154.826078][T22288]  _copy_from_iter+0x29f/0x1720
[ 1154.826119][T22288]  ? __alloc_skb+0x200/0x380
[ 1154.826157][T22288]  ? __pfx__copy_from_iter+0x10/0x10
[ 1154.826194][T22288]  ? netlink_autobind.isra.0+0x158/0x370
[ 1154.826247][T22288]  netlink_sendmsg+0x820/0xdd0
[ 1154.826277][T22288]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1154.826307][T22288]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1154.826347][T22288]  ____sys_sendmsg+0xa98/0xc70
[ 1154.826377][T22288]  ? copy_msghdr_from_user+0x10a/0x160
[ 1154.826400][T22288]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1154.826443][T22288]  ___sys_sendmsg+0x134/0x1d0
[ 1154.826467][T22288]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1154.826487][T22288]  ? __lock_acquire+0x622/0x1c90
[ 1154.826561][T22288]  __sys_sendmsg+0x16d/0x220
[ 1154.826584][T22288]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1154.826625][T22288]  do_syscall_64+0xcd/0xfa0
[ 1154.826654][T22288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1154.826679][T22288] RIP: 0033:0x7f9d5ef8efc9
[ 1154.826698][T22288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1154.826722][T22288] RSP: 002b:00007f9d5fd81038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1154.826744][T22288] RAX: ffffffffffffffda RBX: 00007f9d5f1e5fa0 RCX: 00007f9d5ef8efc9
[ 1154.826760][T22288] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1154.826775][T22288] RBP: 00007f9d5fd81090 R08: 0000000000000000 R09: 0000000000000000
[ 1154.826791][T22288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1154.826807][T22288] R13: 00007f9d5f1e6038 R14: 00007f9d5f1e5fa0 R15: 00007fff34396d78
[ 1154.826842][T22288]  </TASK>
[ 1155.031267][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1155.381158][T22291] random: crng reseeded on system resumption
[ 1155.430623][T22291] MTRR 1 not used
[ 1155.795242][   T30] audit: type=1326 audit(4294967299.572:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22290 comm="syz.1.3422" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7facc5b8efc9 code=0x0
[ 1156.327449][T22320] FAULT_INJECTION: forcing a failure.
[ 1156.327449][T22320] name failslab, interval 1, probability 0, space 0, times 0
[ 1156.346946][T22320] CPU: 1 UID: 0 PID: 22320 Comm: syz.3.3427 Not tainted syzkaller #0 PREEMPT(full) 
[ 1156.346990][T22320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1156.347011][T22320] Call Trace:
[ 1156.347023][T22320]  <TASK>
[ 1156.347037][T22320]  dump_stack_lvl+0x16c/0x1f0
[ 1156.347081][T22320]  should_fail_ex+0x512/0x640
[ 1156.347132][T22320]  ? __kvmalloc_node_noprof+0x12e/0x9c0
[ 1156.347178][T22320]  should_failslab+0xc2/0x120
[ 1156.347221][T22320]  __kvmalloc_node_noprof+0x141/0x9c0
[ 1156.347265][T22320]  ? bucket_table_alloc.isra.0+0x88/0x460
[ 1156.347318][T22320]  ? bucket_table_alloc.isra.0+0x88/0x460
[ 1156.347361][T22320]  bucket_table_alloc.isra.0+0x88/0x460
[ 1156.347412][T22320]  rhashtable_init_noprof+0x41a/0x7e0
[ 1156.347458][T22320]  ? __init_waitqueue_head+0xca/0x150
[ 1156.347518][T22320]  rhltable_init_noprof+0x20/0x60
[ 1156.347566][T22320]  sta_info_init+0x5f/0x160
[ 1156.347602][T22320]  ieee80211_alloc_hw_nm+0x87b/0x22b0
[ 1156.347644][T22320]  ? __local_bh_enable_ip+0xa4/0x120
[ 1156.347699][T22320]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1156.347757][T22320]  ? __asan_memset+0x23/0x50
[ 1156.347794][T22320]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1156.347844][T22320]  hwsim_new_radio_nl+0xba2/0x1330
[ 1156.347884][T22320]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1156.347935][T22320]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1156.347980][T22320]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1156.348035][T22320]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1156.348082][T22320]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1156.348140][T22320]  ? bpf_lsm_capable+0x9/0x10
[ 1156.348185][T22320]  ? security_capable+0x7e/0x260
[ 1156.348233][T22320]  ? ns_capable+0xd7/0x110
[ 1156.348273][T22320]  genl_rcv_msg+0x55c/0x800
[ 1156.348320][T22320]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1156.348363][T22320]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1156.348416][T22320]  netlink_rcv_skb+0x158/0x420
[ 1156.348452][T22320]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1156.348494][T22320]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1156.348545][T22320]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1156.348582][T22320]  genl_rcv+0x28/0x40
[ 1156.348616][T22320]  netlink_unicast+0x5aa/0x870
[ 1156.348657][T22320]  ? __pfx_netlink_unicast+0x10/0x10
[ 1156.348718][T22320]  netlink_sendmsg+0x8c8/0xdd0
[ 1156.348763][T22320]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1156.348806][T22320]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1156.348865][T22320]  ____sys_sendmsg+0xa98/0xc70
[ 1156.348910][T22320]  ? copy_msghdr_from_user+0x10a/0x160
[ 1156.348943][T22320]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1156.348998][T22320]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1156.349059][T22320]  ___sys_sendmsg+0x134/0x1d0
[ 1156.349088][T22320]  ? futex_private_hash_put+0x176/0x300
[ 1156.349135][T22320]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1156.349165][T22320]  ? __lock_acquire+0x622/0x1c90
[ 1156.349270][T22320]  __sys_sendmsg+0x16d/0x220
[ 1156.349305][T22320]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1156.349338][T22320]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1156.349412][T22320]  do_syscall_64+0xcd/0xfa0
[ 1156.349456][T22320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1156.349491][T22320] RIP: 0033:0x7f3bb618efc9
[ 1156.349518][T22320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1156.349553][T22320] RSP: 002b:00007f3bb709c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1156.349586][T22320] RAX: ffffffffffffffda RBX: 00007f3bb63e5fa0 RCX: 00007f3bb618efc9
[ 1156.349609][T22320] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1156.349632][T22320] RBP: 00007f3bb6211f91 R08: 0000000000000000 R09: 0000000000000000
[ 1156.349653][T22320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1156.349682][T22320] R13: 00007f3bb63e6038 R14: 00007f3bb63e5fa0 R15: 00007ffcafdfedd8
[ 1156.349730][T22320]  </TASK>
[ 1157.157114][T22332] random: crng reseeded on system resumption
[ 1158.980820][T22363] netlink: 'syz.3.3434': attribute type 1 has an invalid length.
[ 1159.186151][T22366] FAULT_INJECTION: forcing a failure.
[ 1159.186151][T22366] name failslab, interval 1, probability 0, space 0, times 0
[ 1159.198988][T22366] CPU: 0 UID: 0 PID: 22366 Comm: syz.0.3436 Not tainted syzkaller #0 PREEMPT(full) 
[ 1159.199033][T22366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1159.199053][T22366] Call Trace:
[ 1159.199064][T22366]  <TASK>
[ 1159.199077][T22366]  dump_stack_lvl+0x16c/0x1f0
[ 1159.199127][T22366]  should_fail_ex+0x512/0x640
[ 1159.199177][T22366]  ? __kmalloc_cache_noprof+0x5f/0x780
[ 1159.199234][T22366]  should_failslab+0xc2/0x120
[ 1159.199276][T22366]  __kmalloc_cache_noprof+0x72/0x780
[ 1159.199329][T22366]  ? drm_atomic_helper_setup_commit+0x8d7/0x15d0
[ 1159.199384][T22366]  ? drm_atomic_helper_setup_commit+0x8d7/0x15d0
[ 1159.199429][T22366]  drm_atomic_helper_setup_commit+0x8d7/0x15d0
[ 1159.199491][T22366]  drm_atomic_helper_commit+0xa9/0x380
[ 1159.199537][T22366]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[ 1159.199584][T22366]  drm_atomic_commit+0x234/0x300
[ 1159.199630][T22366]  ? __pfx_drm_atomic_commit+0x10/0x10
[ 1159.199675][T22366]  ? __pfx___drm_printfn_info+0x10/0x10
[ 1159.199714][T22366]  ? drm_client_rotation+0x4da/0x6a0
[ 1159.199766][T22366]  drm_client_modeset_commit_atomic+0x69d/0x7e0
[ 1159.199828][T22366]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[ 1159.199878][T22366]  ? rcu_is_watching+0x12/0xc0
[ 1159.199947][T22366]  drm_client_modeset_commit_locked+0x14d/0x580
[ 1159.200004][T22366]  drm_client_modeset_commit+0x4f/0x80
[ 1159.200053][T22366]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[ 1159.200112][T22366]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[ 1159.200156][T22366]  drm_fbdev_client_restore+0x2c/0x40
[ 1159.200196][T22366]  drm_client_dev_restore+0x1f6/0x2a0
[ 1159.200250][T22366]  drm_release+0x2c4/0x360
[ 1159.200295][T22366]  ? __pfx_drm_release+0x10/0x10
[ 1159.200337][T22366]  __fput+0x402/0xb70
[ 1159.200391][T22366]  task_work_run+0x150/0x240
[ 1159.200443][T22366]  ? __pfx_task_work_run+0x10/0x10
[ 1159.200494][T22366]  ? __pfx___do_sys_close_range+0x10/0x10
[ 1159.200538][T22366]  exit_to_user_mode_loop+0xec/0x130
[ 1159.200588][T22366]  do_syscall_64+0x426/0xfa0
[ 1159.200627][T22366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1159.200661][T22366] RIP: 0033:0x7fe0c9b8efc9
[ 1159.200688][T22366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1159.200720][T22366] RSP: 002b:00007fe0ca9ed038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1159.200750][T22366] RAX: 0000000000000000 RBX: 00007fe0c9de5fa0 RCX: 00007fe0c9b8efc9
[ 1159.200772][T22366] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 1159.200791][T22366] RBP: 00007fe0c9c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1159.200809][T22366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1159.200827][T22366] R13: 00007fe0c9de6038 R14: 00007fe0c9de5fa0 R15: 00007ffdb2dde648
[ 1159.200869][T22366]  </TASK>
[ 1159.876717][T22372] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 1159.920945][   T30] audit: type=1326 audit(4294967297.974:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22367 comm="syz.2.3437" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9d5ef8efc9 code=0x0
[ 1161.141715][T22390] random: crng reseeded on system resumption
[ 1162.870485][T22420] FAULT_INJECTION: forcing a failure.
[ 1162.870485][T22420] name failslab, interval 1, probability 0, space 0, times 0
[ 1162.935340][T22420] CPU: 0 UID: 0 PID: 22420 Comm: syz.0.3447 Not tainted syzkaller #0 PREEMPT(full) 
[ 1162.935387][T22420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1162.935409][T22420] Call Trace:
[ 1162.935421][T22420]  <TASK>
[ 1162.935434][T22420]  dump_stack_lvl+0x16c/0x1f0
[ 1162.935478][T22420]  should_fail_ex+0x512/0x640
[ 1162.935530][T22420]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[ 1162.935571][T22420]  should_failslab+0xc2/0x120
[ 1162.935616][T22420]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[ 1162.935650][T22420]  ? __pfx___might_resched+0x10/0x10
[ 1162.935687][T22420]  ? sock_alloc_inode+0x25/0x1c0
[ 1162.935734][T22420]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1162.935771][T22420]  ? sock_alloc_inode+0x25/0x1c0
[ 1162.935808][T22420]  sock_alloc_inode+0x25/0x1c0
[ 1162.935846][T22420]  alloc_inode+0x64/0x240
[ 1162.935890][T22420]  sock_alloc+0x40/0x280
[ 1162.935925][T22420]  __sock_create+0xc1/0x8d0
[ 1162.935976][T22420]  __sys_socket+0x14d/0x260
[ 1162.936019][T22420]  ? __pfx___sys_socket+0x10/0x10
[ 1162.936070][T22420]  ? xfd_validate_state+0x61/0x180
[ 1162.936128][T22420]  __x64_sys_socket+0x72/0xb0
[ 1162.936170][T22420]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1162.936208][T22420]  do_syscall_64+0xcd/0xfa0
[ 1162.936249][T22420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1162.936283][T22420] RIP: 0033:0x7fe0c9b8efc9
[ 1162.936309][T22420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1162.936343][T22420] RSP: 002b:00007fe0ca9ed038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1162.936375][T22420] RAX: ffffffffffffffda RBX: 00007fe0c9de5fa0 RCX: 00007fe0c9b8efc9
[ 1162.936398][T22420] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[ 1162.936419][T22420] RBP: 00007fe0c9c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1162.936440][T22420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1162.936461][T22420] R13: 00007fe0c9de6038 R14: 00007fe0c9de5fa0 R15: 00007ffdb2dde648
[ 1162.936506][T22420]  </TASK>
[ 1162.941905][T22420] socket: no more sockets
[ 1163.175369][T22421] netlink: 'syz.1.3445': attribute type 1 has an invalid length.
[ 1163.455283][T22432] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1163.487701][T22432] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1163.800534][T22428] netlink: 'syz.3.3449': attribute type 1 has an invalid length.
[ 1164.276958][T22443] FAULT_INJECTION: forcing a failure.
[ 1164.276958][T22443] name failslab, interval 1, probability 0, space 0, times 0
[ 1164.417568][T22443] CPU: 1 UID: 0 PID: 22443 Comm: syz.1.3452 Not tainted syzkaller #0 PREEMPT(full) 
[ 1164.417611][T22443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1164.417631][T22443] Call Trace:
[ 1164.417642][T22443]  <TASK>
[ 1164.417656][T22443]  dump_stack_lvl+0x16c/0x1f0
[ 1164.417697][T22443]  should_fail_ex+0x512/0x640
[ 1164.417744][T22443]  ? __kmalloc_cache_noprof+0x5f/0x780
[ 1164.417811][T22443]  should_failslab+0xc2/0x120
[ 1164.417856][T22443]  __kmalloc_cache_noprof+0x72/0x780
[ 1164.417911][T22443]  ? drm_atomic_state_alloc+0xb8/0x120
[ 1164.417967][T22443]  ? drm_atomic_state_alloc+0xb8/0x120
[ 1164.418016][T22443]  drm_atomic_state_alloc+0xb8/0x120
[ 1164.418066][T22443]  drm_client_modeset_commit_atomic+0xcc/0x7e0
[ 1164.418116][T22443]  ? __pfx___might_resched+0x10/0x10
[ 1164.418164][T22443]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[ 1164.418217][T22443]  ? __mutex_lock+0x1c5/0x1060
[ 1164.418254][T22443]  ? rcu_is_watching+0x12/0xc0
[ 1164.418331][T22443]  drm_client_modeset_commit_locked+0x14d/0x580
[ 1164.418390][T22443]  drm_client_modeset_commit+0x4f/0x80
[ 1164.418442][T22443]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[ 1164.418494][T22443]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[ 1164.418535][T22443]  drm_fbdev_client_restore+0x2c/0x40
[ 1164.418574][T22443]  drm_client_dev_restore+0x1f6/0x2a0
[ 1164.418631][T22443]  drm_release+0x2c4/0x360
[ 1164.418679][T22443]  ? __pfx_drm_release+0x10/0x10
[ 1164.418720][T22443]  __fput+0x402/0xb70
[ 1164.418775][T22443]  task_work_run+0x150/0x240
[ 1164.418842][T22443]  ? __pfx_task_work_run+0x10/0x10
[ 1164.418895][T22443]  ? __pfx___do_sys_close_range+0x10/0x10
[ 1164.418942][T22443]  exit_to_user_mode_loop+0xec/0x130
[ 1164.418995][T22443]  do_syscall_64+0x426/0xfa0
[ 1164.419036][T22443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1164.419071][T22443] RIP: 0033:0x7facc5b8efc9
[ 1164.419097][T22443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1164.419129][T22443] RSP: 002b:00007facc694c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1164.419160][T22443] RAX: 0000000000000000 RBX: 00007facc5de5fa0 RCX: 00007facc5b8efc9
[ 1164.419182][T22443] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 1164.419201][T22443] RBP: 00007facc694c090 R08: 0000000000000000 R09: 0000000000000000
[ 1164.419222][T22443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1164.419243][T22443] R13: 00007facc5de6038 R14: 00007facc5de5fa0 R15: 00007ffd03ac93c8
[ 1164.419291][T22443]  </TASK>
[ 1167.657895][T22481] FAULT_INJECTION: forcing a failure.
[ 1167.657895][T22481] name failslab, interval 1, probability 0, space 0, times 0
[ 1167.692253][T22481] CPU: 0 UID: 0 PID: 22481 Comm: syz.2.3459 Not tainted syzkaller #0 PREEMPT(full) 
[ 1167.692297][T22481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1167.692317][T22481] Call Trace:
[ 1167.692328][T22481]  <TASK>
[ 1167.692341][T22481]  dump_stack_lvl+0x16c/0x1f0
[ 1167.692383][T22481]  should_fail_ex+0x512/0x640
[ 1167.692432][T22481]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1167.692488][T22481]  should_failslab+0xc2/0x120
[ 1167.692534][T22481]  kmem_cache_alloc_noprof+0x75/0x6e0
[ 1167.692569][T22481]  ? skb_clone+0x190/0x3f0
[ 1167.692608][T22481]  ? skb_clone+0x190/0x3f0
[ 1167.692637][T22481]  skb_clone+0x190/0x3f0
[ 1167.692670][T22481]  netlink_deliver_tap+0xabd/0xd30
[ 1167.692711][T22481]  netlink_unicast+0x64c/0x870
[ 1167.692757][T22481]  ? __pfx_netlink_unicast+0x10/0x10
[ 1167.692808][T22481]  netlink_sendmsg+0x8c8/0xdd0
[ 1167.692850][T22481]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1167.692889][T22481]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1167.692946][T22481]  ____sys_sendmsg+0xa98/0xc70
[ 1167.692988][T22481]  ? copy_msghdr_from_user+0x10a/0x160
[ 1167.693019][T22481]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1167.693081][T22481]  ___sys_sendmsg+0x134/0x1d0
[ 1167.693115][T22481]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1167.693143][T22481]  ? __lock_acquire+0x622/0x1c90
[ 1167.693246][T22481]  __sys_sendmsg+0x16d/0x220
[ 1167.693280][T22481]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1167.693339][T22481]  do_syscall_64+0xcd/0xfa0
[ 1167.693379][T22481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1167.693412][T22481] RIP: 0033:0x7f9d5ef8efc9
[ 1167.693437][T22481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1167.693471][T22481] RSP: 002b:00007f9d5fd81038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1167.693503][T22481] RAX: ffffffffffffffda RBX: 00007f9d5f1e5fa0 RCX: 00007f9d5ef8efc9
[ 1167.693526][T22481] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1167.693547][T22481] RBP: 00007f9d5fd81090 R08: 0000000000000000 R09: 0000000000000000
[ 1167.693568][T22481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1167.693589][T22481] R13: 00007f9d5f1e6038 R14: 00007f9d5f1e5fa0 R15: 00007fff34396d78
[ 1167.693635][T22481]  </TASK>
[ 1167.937633][T22484] zero sized request
[ 1168.555493][T22492] FAULT_INJECTION: forcing a failure.
[ 1168.555493][T22492] name failslab, interval 1, probability 0, space 0, times 0
[ 1168.627259][T22492] CPU: 1 UID: 0 PID: 22492 Comm: syz.2.3461 Not tainted syzkaller #0 PREEMPT(full) 
[ 1168.627306][T22492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1168.627328][T22492] Call Trace:
[ 1168.627341][T22492]  <TASK>
[ 1168.627355][T22492]  dump_stack_lvl+0x16c/0x1f0
[ 1168.627408][T22492]  should_fail_ex+0x512/0x640
[ 1168.627466][T22492]  ? __kvmalloc_node_noprof+0x12e/0x9c0
[ 1168.627513][T22492]  should_failslab+0xc2/0x120
[ 1168.627561][T22492]  __kvmalloc_node_noprof+0x141/0x9c0
[ 1168.627606][T22492]  ? bucket_table_alloc.isra.0+0x88/0x460
[ 1168.627666][T22492]  ? bucket_table_alloc.isra.0+0x88/0x460
[ 1168.627713][T22492]  bucket_table_alloc.isra.0+0x88/0x460
[ 1168.627770][T22492]  rhashtable_init_noprof+0x41a/0x7e0
[ 1168.627818][T22492]  ? __init_waitqueue_head+0xca/0x150
[ 1168.627881][T22492]  rhltable_init_noprof+0x20/0x60
[ 1168.627933][T22492]  sta_info_init+0x5f/0x160
[ 1168.627971][T22492]  ieee80211_alloc_hw_nm+0x87b/0x22b0
[ 1168.628015][T22492]  ? __local_bh_enable_ip+0xa4/0x120
[ 1168.628063][T22492]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1168.628122][T22492]  ? __asan_memset+0x23/0x50
[ 1168.628160][T22492]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1168.628212][T22492]  hwsim_new_radio_nl+0xba2/0x1330
[ 1168.628254][T22492]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1168.628305][T22492]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1168.628353][T22492]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1168.628416][T22492]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1168.628465][T22492]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1168.628524][T22492]  ? bpf_lsm_capable+0x9/0x10
[ 1168.628571][T22492]  ? security_capable+0x7e/0x260
[ 1168.628620][T22492]  ? ns_capable+0xd7/0x110
[ 1168.628660][T22492]  genl_rcv_msg+0x55c/0x800
[ 1168.628708][T22492]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1168.628753][T22492]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1168.628806][T22492]  netlink_rcv_skb+0x158/0x420
[ 1168.628842][T22492]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1168.628887][T22492]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1168.628943][T22492]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1168.629010][T22492]  genl_rcv+0x28/0x40
[ 1168.629048][T22492]  netlink_unicast+0x5aa/0x870
[ 1168.629093][T22492]  ? __pfx_netlink_unicast+0x10/0x10
[ 1168.629148][T22492]  netlink_sendmsg+0x8c8/0xdd0
[ 1168.629193][T22492]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1168.629235][T22492]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1168.629294][T22492]  ____sys_sendmsg+0xa98/0xc70
[ 1168.629340][T22492]  ? copy_msghdr_from_user+0x10a/0x160
[ 1168.629379][T22492]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1168.629444][T22492]  ___sys_sendmsg+0x134/0x1d0
[ 1168.629474][T22492]  ? futex_private_hash_put+0x176/0x300
[ 1168.629521][T22492]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1168.629552][T22492]  ? __lock_acquire+0x622/0x1c90
[ 1168.629655][T22492]  __sys_sendmsg+0x16d/0x220
[ 1168.629691][T22492]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1168.629724][T22492]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1168.629799][T22492]  do_syscall_64+0xcd/0xfa0
[ 1168.629841][T22492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1168.629876][T22492] RIP: 0033:0x7f9d5ef8efc9
[ 1168.629906][T22492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1168.629939][T22492] RSP: 002b:00007f9d5fd81038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1168.629973][T22492] RAX: ffffffffffffffda RBX: 00007f9d5f1e5fa0 RCX: 00007f9d5ef8efc9
[ 1168.629997][T22492] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1168.630019][T22492] RBP: 00007f9d5f011f91 R08: 0000000000000000 R09: 0000000000000000
[ 1168.630041][T22492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1168.630063][T22492] R13: 00007f9d5f1e6038 R14: 00007f9d5f1e5fa0 R15: 00007fff34396d78
[ 1168.630112][T22492]  </TASK>
[ 1170.003270][T22504] netlink: 'syz.0.3463': attribute type 1 has an invalid length.
[ 1170.678289][T22513] netlink: 'syz.2.3465': attribute type 1 has an invalid length.
[ 1171.507773][T22522] MTRR 1 not used
[ 1172.919431][T22548] FAULT_INJECTION: forcing a failure.
[ 1172.919431][T22548] name failslab, interval 1, probability 0, space 0, times 0
[ 1172.937331][T22548] CPU: 1 UID: 0 PID: 22548 Comm: syz.2.3472 Not tainted syzkaller #0 PREEMPT(full) 
[ 1172.937376][T22548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1172.937396][T22548] Call Trace:
[ 1172.937407][T22548]  <TASK>
[ 1172.937419][T22548]  dump_stack_lvl+0x16c/0x1f0
[ 1172.937462][T22548]  should_fail_ex+0x512/0x640
[ 1172.937510][T22548]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[ 1172.937557][T22548]  should_failslab+0xc2/0x120
[ 1172.937604][T22548]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[ 1172.937648][T22548]  ? kasprintf+0xc7/0x100
[ 1172.937683][T22548]  ? kvasprintf+0xbc/0x160
[ 1172.937705][T22548]  kvasprintf+0xbc/0x160
[ 1172.937727][T22548]  ? __pfx_kvasprintf+0x10/0x10
[ 1172.937753][T22548]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1172.937778][T22548]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1172.937805][T22548]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1172.937834][T22548]  kasprintf+0xc7/0x100
[ 1172.937855][T22548]  ? __pfx_kasprintf+0x10/0x10
[ 1172.937899][T22548]  ? __pfx_sta_info_cleanup+0x10/0x10
[ 1172.937930][T22548]  ieee80211_alloc_led_names+0x1b0/0x420
[ 1172.937976][T22548]  ieee80211_alloc_hw_nm+0x197c/0x22b0
[ 1172.938020][T22548]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1172.938062][T22548]  ? __asan_memset+0x23/0x50
[ 1172.938089][T22548]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1172.938125][T22548]  hwsim_new_radio_nl+0xba2/0x1330
[ 1172.938155][T22548]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1172.938191][T22548]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1172.938225][T22548]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1172.938265][T22548]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1172.938299][T22548]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1172.938340][T22548]  ? bpf_lsm_capable+0x9/0x10
[ 1172.938374][T22548]  ? security_capable+0x7e/0x260
[ 1172.938410][T22548]  ? ns_capable+0xd7/0x110
[ 1172.938444][T22548]  genl_rcv_msg+0x55c/0x800
[ 1172.938478][T22548]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1172.938510][T22548]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1172.938547][T22548]  netlink_rcv_skb+0x158/0x420
[ 1172.938573][T22548]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1172.938605][T22548]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1172.938645][T22548]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1172.938674][T22548]  genl_rcv+0x28/0x40
[ 1172.938709][T22548]  netlink_unicast+0x5aa/0x870
[ 1172.938740][T22548]  ? __pfx_netlink_unicast+0x10/0x10
[ 1172.938779][T22548]  netlink_sendmsg+0x8c8/0xdd0
[ 1172.938811][T22548]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1172.938841][T22548]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1172.938884][T22548]  ____sys_sendmsg+0xa98/0xc70
[ 1172.938917][T22548]  ? copy_msghdr_from_user+0x10a/0x160
[ 1172.938943][T22548]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1172.938993][T22548]  ___sys_sendmsg+0x134/0x1d0
[ 1172.939015][T22548]  ? futex_private_hash_put+0x176/0x300
[ 1172.939050][T22548]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1172.939071][T22548]  ? __lock_acquire+0x622/0x1c90
[ 1172.939144][T22548]  __sys_sendmsg+0x16d/0x220
[ 1172.939168][T22548]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1172.939192][T22548]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1172.939245][T22548]  do_syscall_64+0xcd/0xfa0
[ 1172.939275][T22548]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1172.939301][T22548] RIP: 0033:0x7f9d5ef8efc9
[ 1172.939322][T22548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1172.939348][T22548] RSP: 002b:00007f9d5fd81038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1172.939371][T22548] RAX: ffffffffffffffda RBX: 00007f9d5f1e5fa0 RCX: 00007f9d5ef8efc9
[ 1172.939389][T22548] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1172.939405][T22548] RBP: 00007f9d5f011f91 R08: 0000000000000000 R09: 0000000000000000
[ 1172.939420][T22548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1172.939436][T22548] R13: 00007f9d5f1e6038 R14: 00007f9d5f1e5fa0 R15: 00007fff34396d78
[ 1172.939471][T22548]  </TASK>
[ 1173.353710][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1173.722209][T22555] FAULT_INJECTION: forcing a failure.
[ 1173.722209][T22555] name failslab, interval 1, probability 0, space 0, times 0
[ 1173.806787][T22555] CPU: 1 UID: 0 PID: 22555 Comm: syz.0.3473 Not tainted syzkaller #0 PREEMPT(full) 
[ 1173.806823][T22555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1173.806839][T22555] Call Trace:
[ 1173.806849][T22555]  <TASK>
[ 1173.806858][T22555]  dump_stack_lvl+0x16c/0x1f0
[ 1173.806891][T22555]  should_fail_ex+0x512/0x640
[ 1173.806930][T22555]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[ 1173.806967][T22555]  should_failslab+0xc2/0x120
[ 1173.807001][T22555]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[ 1173.807034][T22555]  ? kasprintf+0xc7/0x100
[ 1173.807063][T22555]  ? kvasprintf+0xbc/0x160
[ 1173.807084][T22555]  kvasprintf+0xbc/0x160
[ 1173.807107][T22555]  ? __pfx_kvasprintf+0x10/0x10
[ 1173.807133][T22555]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1173.807159][T22555]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1173.807186][T22555]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1173.807216][T22555]  kasprintf+0xc7/0x100
[ 1173.807239][T22555]  ? __pfx_kasprintf+0x10/0x10
[ 1173.807269][T22555]  ? __pfx_sta_info_cleanup+0x10/0x10
[ 1173.807300][T22555]  ieee80211_alloc_led_names+0x86/0x420
[ 1173.807343][T22555]  ieee80211_alloc_hw_nm+0x197c/0x22b0
[ 1173.807392][T22555]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1173.807434][T22555]  ? __asan_memset+0x23/0x50
[ 1173.807461][T22555]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1173.807497][T22555]  hwsim_new_radio_nl+0xba2/0x1330
[ 1173.807527][T22555]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1173.807564][T22555]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1173.807609][T22555]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1173.807650][T22555]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1173.807685][T22555]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1173.807727][T22555]  ? bpf_lsm_capable+0x9/0x10
[ 1173.807761][T22555]  ? security_capable+0x7e/0x260
[ 1173.807796][T22555]  ? ns_capable+0xd7/0x110
[ 1173.807826][T22555]  genl_rcv_msg+0x55c/0x800
[ 1173.807863][T22555]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1173.807894][T22555]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1173.807932][T22555]  netlink_rcv_skb+0x158/0x420
[ 1173.807958][T22555]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1173.807991][T22555]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1173.808046][T22555]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1173.808087][T22555]  genl_rcv+0x28/0x40
[ 1173.808123][T22555]  netlink_unicast+0x5aa/0x870
[ 1173.808166][T22555]  ? __pfx_netlink_unicast+0x10/0x10
[ 1173.808217][T22555]  netlink_sendmsg+0x8c8/0xdd0
[ 1173.808261][T22555]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1173.808303][T22555]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1173.808362][T22555]  ____sys_sendmsg+0xa98/0xc70
[ 1173.808407][T22555]  ? copy_msghdr_from_user+0x10a/0x160
[ 1173.808462][T22555]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1173.808511][T22555]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1173.808557][T22555]  ___sys_sendmsg+0x134/0x1d0
[ 1173.808579][T22555]  ? futex_private_hash_put+0x176/0x300
[ 1173.808618][T22555]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1173.808640][T22555]  ? __lock_acquire+0x622/0x1c90
[ 1173.808713][T22555]  __sys_sendmsg+0x16d/0x220
[ 1173.808738][T22555]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1173.808762][T22555]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1173.808815][T22555]  do_syscall_64+0xcd/0xfa0
[ 1173.808847][T22555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1173.808873][T22555] RIP: 0033:0x7fe0c9b8efc9
[ 1173.808893][T22555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1173.808919][T22555] RSP: 002b:00007fe0ca9ed038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1173.808943][T22555] RAX: ffffffffffffffda RBX: 00007fe0c9de5fa0 RCX: 00007fe0c9b8efc9
[ 1173.808960][T22555] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1173.808977][T22555] RBP: 00007fe0c9c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1173.808993][T22555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1173.809008][T22555] R13: 00007fe0c9de6038 R14: 00007fe0c9de5fa0 R15: 00007ffdb2dde648
[ 1173.809042][T22555]  </TASK>
[ 1173.879497][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1174.222606][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1176.188858][T22576] netlink: 'syz.0.3478': attribute type 1 has an invalid length.
[ 1177.857951][T22611] FAULT_INJECTION: forcing a failure.
[ 1177.857951][T22611] name failslab, interval 1, probability 0, space 0, times 0
[ 1177.871154][T22611] CPU: 1 UID: 0 PID: 22611 Comm: syz.1.3485 Not tainted syzkaller #0 PREEMPT(full) 
[ 1177.871198][T22611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1177.871218][T22611] Call Trace:
[ 1177.871229][T22611]  <TASK>
[ 1177.871242][T22611]  dump_stack_lvl+0x16c/0x1f0
[ 1177.871288][T22611]  should_fail_ex+0x512/0x640
[ 1177.871328][T22611]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[ 1177.871363][T22611]  should_failslab+0xc2/0x120
[ 1177.871396][T22611]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[ 1177.871438][T22611]  ? kasprintf+0xc7/0x100
[ 1177.871467][T22611]  ? kvasprintf+0xbc/0x160
[ 1177.871488][T22611]  kvasprintf+0xbc/0x160
[ 1177.871511][T22611]  ? __pfx_kvasprintf+0x10/0x10
[ 1177.871537][T22611]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1177.871562][T22611]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1177.871588][T22611]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1177.871617][T22611]  kasprintf+0xc7/0x100
[ 1177.871639][T22611]  ? __pfx_kasprintf+0x10/0x10
[ 1177.871667][T22611]  ? __pfx_sta_info_cleanup+0x10/0x10
[ 1177.871697][T22611]  ieee80211_alloc_led_names+0x86/0x420
[ 1177.871732][T22611]  ieee80211_alloc_hw_nm+0x197c/0x22b0
[ 1177.871769][T22611]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1177.871827][T22611]  ? __asan_memset+0x23/0x50
[ 1177.871853][T22611]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1177.871889][T22611]  hwsim_new_radio_nl+0xba2/0x1330
[ 1177.871917][T22611]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1177.871953][T22611]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1177.871987][T22611]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1177.872025][T22611]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1177.872059][T22611]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1177.872099][T22611]  ? bpf_lsm_capable+0x9/0x10
[ 1177.872131][T22611]  ? security_capable+0x7e/0x260
[ 1177.872166][T22611]  ? ns_capable+0xd7/0x110
[ 1177.872195][T22611]  genl_rcv_msg+0x55c/0x800
[ 1177.872228][T22611]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1177.872259][T22611]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1177.872295][T22611]  netlink_rcv_skb+0x158/0x420
[ 1177.872320][T22611]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1177.872351][T22611]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1177.872389][T22611]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1177.872424][T22611]  genl_rcv+0x28/0x40
[ 1177.872449][T22611]  netlink_unicast+0x5aa/0x870
[ 1177.872479][T22611]  ? __pfx_netlink_unicast+0x10/0x10
[ 1177.872516][T22611]  netlink_sendmsg+0x8c8/0xdd0
[ 1177.872547][T22611]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1177.872577][T22611]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1177.872618][T22611]  ____sys_sendmsg+0xa98/0xc70
[ 1177.872650][T22611]  ? copy_msghdr_from_user+0x10a/0x160
[ 1177.872674][T22611]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1177.872711][T22611]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1177.872755][T22611]  ___sys_sendmsg+0x134/0x1d0
[ 1177.872776][T22611]  ? futex_private_hash_put+0x176/0x300
[ 1177.872808][T22611]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1177.872829][T22611]  ? __lock_acquire+0x622/0x1c90
[ 1177.872898][T22611]  __sys_sendmsg+0x16d/0x220
[ 1177.872922][T22611]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1177.872944][T22611]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1177.872995][T22611]  do_syscall_64+0xcd/0xfa0
[ 1177.873024][T22611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1177.873067][T22611] RIP: 0033:0x7facc5b8efc9
[ 1177.873087][T22611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1177.873111][T22611] RSP: 002b:00007facc694c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1177.873134][T22611] RAX: ffffffffffffffda RBX: 00007facc5de5fa0 RCX: 00007facc5b8efc9
[ 1177.873150][T22611] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1177.873166][T22611] RBP: 00007facc5c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1177.873186][T22611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1177.873200][T22611] R13: 00007facc5de6038 R14: 00007facc5de5fa0 R15: 00007ffd03ac93c8
[ 1177.873233][T22611]  </TASK>
[ 1178.601527][T22621] zero sized request
[ 1178.733728][T22625] FAULT_INJECTION: forcing a failure.
[ 1178.733728][T22625] name failslab, interval 1, probability 0, space 0, times 0
[ 1178.746769][T22625] CPU: 1 UID: 0 PID: 22625 Comm: syz.3.3497 Not tainted syzkaller #0 PREEMPT(full) 
[ 1178.746815][T22625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1178.746836][T22625] Call Trace:
[ 1178.746848][T22625]  <TASK>
[ 1178.746861][T22625]  dump_stack_lvl+0x16c/0x1f0
[ 1178.746904][T22625]  should_fail_ex+0x512/0x640
[ 1178.746945][T22625]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[ 1178.746981][T22625]  should_failslab+0xc2/0x120
[ 1178.747014][T22625]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[ 1178.747046][T22625]  ? kasprintf+0xc7/0x100
[ 1178.747127][T22625]  ? kvasprintf+0xbc/0x160
[ 1178.747148][T22625]  kvasprintf+0xbc/0x160
[ 1178.747171][T22625]  ? __pfx_kvasprintf+0x10/0x10
[ 1178.747196][T22625]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1178.747222][T22625]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1178.747251][T22625]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1178.747279][T22625]  kasprintf+0xc7/0x100
[ 1178.747302][T22625]  ? __pfx_kasprintf+0x10/0x10
[ 1178.747333][T22625]  ? __pfx_sta_info_cleanup+0x10/0x10
[ 1178.747363][T22625]  ieee80211_alloc_led_names+0x86/0x420
[ 1178.747398][T22625]  ieee80211_alloc_hw_nm+0x197c/0x22b0
[ 1178.747435][T22625]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1178.747474][T22625]  ? __asan_memset+0x23/0x50
[ 1178.747501][T22625]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1178.747537][T22625]  hwsim_new_radio_nl+0xba2/0x1330
[ 1178.747575][T22625]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1178.747622][T22625]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1178.747668][T22625]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1178.747722][T22625]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1178.747784][T22625]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1178.747843][T22625]  ? bpf_lsm_capable+0x9/0x10
[ 1178.747889][T22625]  ? security_capable+0x7e/0x260
[ 1178.747960][T22625]  ? ns_capable+0xd7/0x110
[ 1178.748001][T22625]  genl_rcv_msg+0x55c/0x800
[ 1178.748049][T22625]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1178.748101][T22625]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1178.748154][T22625]  netlink_rcv_skb+0x158/0x420
[ 1178.748192][T22625]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1178.748236][T22625]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1178.748302][T22625]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1178.748343][T22625]  genl_rcv+0x28/0x40
[ 1178.748373][T22625]  netlink_unicast+0x5aa/0x870
[ 1178.748404][T22625]  ? __pfx_netlink_unicast+0x10/0x10
[ 1178.748455][T22625]  netlink_sendmsg+0x8c8/0xdd0
[ 1178.748499][T22625]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1178.748541][T22625]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1178.748593][T22625]  ____sys_sendmsg+0xa98/0xc70
[ 1178.748626][T22625]  ? copy_msghdr_from_user+0x10a/0x160
[ 1178.748649][T22625]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1178.748694][T22625]  ___sys_sendmsg+0x134/0x1d0
[ 1178.748715][T22625]  ? futex_private_hash_put+0x176/0x300
[ 1178.748748][T22625]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1178.748769][T22625]  ? __lock_acquire+0x622/0x1c90
[ 1178.748840][T22625]  __sys_sendmsg+0x16d/0x220
[ 1178.748864][T22625]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1178.748887][T22625]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1178.748939][T22625]  do_syscall_64+0xcd/0xfa0
[ 1178.748969][T22625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1178.748994][T22625] RIP: 0033:0x7f3bb618efc9
[ 1178.749013][T22625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1178.749038][T22625] RSP: 002b:00007f3bb709c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1178.749061][T22625] RAX: ffffffffffffffda RBX: 00007f3bb63e5fa0 RCX: 00007f3bb618efc9
[ 1178.749086][T22625] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1178.749102][T22625] RBP: 00007f3bb6211f91 R08: 0000000000000000 R09: 0000000000000000
[ 1178.749117][T22625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1178.749131][T22625] R13: 00007f3bb63e6038 R14: 00007f3bb63e5fa0 R15: 00007ffcafdfedd8
[ 1178.749165][T22625]  </TASK>
[ 1179.847915][T22641] FAULT_INJECTION: forcing a failure.
[ 1179.847915][T22641] name failslab, interval 1, probability 0, space 0, times 0
[ 1179.896775][T22641] CPU: 0 UID: 0 PID: 22641 Comm: syz.3.3490 Not tainted syzkaller #0 PREEMPT(full) 
[ 1179.896818][T22641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1179.896837][T22641] Call Trace:
[ 1179.896848][T22641]  <TASK>
[ 1179.896861][T22641]  dump_stack_lvl+0x16c/0x1f0
[ 1179.896900][T22641]  should_fail_ex+0x512/0x640
[ 1179.896949][T22641]  ? __kmalloc_noprof+0xca/0x880
[ 1179.897003][T22641]  should_failslab+0xc2/0x120
[ 1179.897047][T22641]  __kmalloc_noprof+0xdd/0x880
[ 1179.897096][T22641]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1179.897145][T22641]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[ 1179.897200][T22641]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[ 1179.897290][T22641]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[ 1179.897337][T22641]  ? __mutex_lock+0x1c5/0x1060
[ 1179.897384][T22641]  genl_family_rcv_msg_doit+0xbf/0x2f0
[ 1179.897431][T22641]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1179.897489][T22641]  ? bpf_lsm_capable+0x9/0x10
[ 1179.897533][T22641]  ? security_capable+0x7e/0x260
[ 1179.897581][T22641]  ? ns_capable+0xd7/0x110
[ 1179.897621][T22641]  genl_rcv_msg+0x55c/0x800
[ 1179.897668][T22641]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1179.897710][T22641]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1179.897761][T22641]  netlink_rcv_skb+0x158/0x420
[ 1179.897797][T22641]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1179.897840][T22641]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1179.897894][T22641]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1179.897933][T22641]  genl_rcv+0x28/0x40
[ 1179.897969][T22641]  netlink_unicast+0x5aa/0x870
[ 1179.898011][T22641]  ? __pfx_netlink_unicast+0x10/0x10
[ 1179.898061][T22641]  netlink_sendmsg+0x8c8/0xdd0
[ 1179.898103][T22641]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1179.898142][T22641]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1179.898198][T22641]  ____sys_sendmsg+0xa98/0xc70
[ 1179.898248][T22641]  ? copy_msghdr_from_user+0x10a/0x160
[ 1179.898279][T22641]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1179.898335][T22641]  ___sys_sendmsg+0x134/0x1d0
[ 1179.898365][T22641]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1179.898390][T22641]  ? __lock_acquire+0x622/0x1c90
[ 1179.898480][T22641]  __sys_sendmsg+0x16d/0x220
[ 1179.898514][T22641]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1179.898575][T22641]  do_syscall_64+0xcd/0xfa0
[ 1179.898612][T22641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1179.898645][T22641] RIP: 0033:0x7f3bb618efc9
[ 1179.898671][T22641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1179.898704][T22641] RSP: 002b:00007f3bb709c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1179.898733][T22641] RAX: ffffffffffffffda RBX: 00007f3bb63e5fa0 RCX: 00007f3bb618efc9
[ 1179.898755][T22641] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1179.898775][T22641] RBP: 00007f3bb709c090 R08: 0000000000000000 R09: 0000000000000000
[ 1179.898796][T22641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1179.898816][T22641] R13: 00007f3bb63e6038 R14: 00007f3bb63e5fa0 R15: 00007ffcafdfedd8
[ 1179.898863][T22641]  </TASK>
[ 1180.576512][T22647] MTRR 1 not used
[ 1180.749269][T22657] MTRR 1 not used
[ 1181.626583][T22671] Invalid ELF header magic: != ELF
[ 1181.643724][T22674] Invalid ELF header magic: != ELF
[ 1183.086278][T22705] netlink: 25 bytes leftover after parsing attributes in process `syz.3.3504'.
[ 1183.142351][T22702] netlink: 'syz.2.3502': attribute type 1 has an invalid length.
[ 1184.474139][T22729] MTRR 1 not used
[ 1184.476908][T22730] FAULT_INJECTION: forcing a failure.
[ 1184.476908][T22730] name failslab, interval 1, probability 0, space 0, times 0
[ 1184.503386][T22730] CPU: 0 UID: 0 PID: 22730 Comm: syz.3.3507 Not tainted syzkaller #0 PREEMPT(full) 
[ 1184.503430][T22730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1184.503449][T22730] Call Trace:
[ 1184.503460][T22730]  <TASK>
[ 1184.503473][T22730]  dump_stack_lvl+0x16c/0x1f0
[ 1184.503513][T22730]  should_fail_ex+0x512/0x640
[ 1184.503562][T22730]  ? __kmalloc_noprof+0xca/0x880
[ 1184.503617][T22730]  should_failslab+0xc2/0x120
[ 1184.503660][T22730]  __kmalloc_noprof+0xdd/0x880
[ 1184.503710][T22730]  ? rfkill_alloc+0xac/0x330
[ 1184.503764][T22730]  ? rfkill_alloc+0xac/0x330
[ 1184.503821][T22730]  rfkill_alloc+0xac/0x330
[ 1184.503876][T22730]  wiphy_new_nm+0x136a/0x2190
[ 1184.503921][T22730]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[ 1184.503968][T22730]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[ 1184.504012][T22730]  ieee80211_alloc_hw_nm+0x1bb5/0x22b0
[ 1184.504055][T22730]  ? __local_bh_enable_ip+0xa4/0x120
[ 1184.504101][T22730]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1184.504157][T22730]  ? __asan_memset+0x23/0x50
[ 1184.504193][T22730]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1184.504243][T22730]  hwsim_new_radio_nl+0xba2/0x1330
[ 1184.504283][T22730]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1184.504331][T22730]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1184.504378][T22730]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1184.504431][T22730]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1184.504476][T22730]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1184.504532][T22730]  ? bpf_lsm_capable+0x9/0x10
[ 1184.504573][T22730]  ? security_capable+0x7e/0x260
[ 1184.504616][T22730]  ? ns_capable+0xd7/0x110
[ 1184.504656][T22730]  genl_rcv_msg+0x55c/0x800
[ 1184.504703][T22730]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1184.504746][T22730]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1184.504797][T22730]  netlink_rcv_skb+0x158/0x420
[ 1184.504840][T22730]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1184.504884][T22730]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1184.504937][T22730]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1184.504978][T22730]  genl_rcv+0x28/0x40
[ 1184.505013][T22730]  netlink_unicast+0x5aa/0x870
[ 1184.505054][T22730]  ? __pfx_netlink_unicast+0x10/0x10
[ 1184.505106][T22730]  netlink_sendmsg+0x8c8/0xdd0
[ 1184.505149][T22730]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1184.505191][T22730]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1184.505248][T22730]  ____sys_sendmsg+0xa98/0xc70
[ 1184.505292][T22730]  ? copy_msghdr_from_user+0x10a/0x160
[ 1184.505324][T22730]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1184.505388][T22730]  ___sys_sendmsg+0x134/0x1d0
[ 1184.505417][T22730]  ? futex_private_hash_put+0x176/0x300
[ 1184.505462][T22730]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1184.505494][T22730]  ? futex_private_hash_put+0x18a/0x300
[ 1184.505574][T22730]  ? do_futex+0x122/0x350
[ 1184.505628][T22730]  __sys_sendmsg+0x16d/0x220
[ 1184.505661][T22730]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1184.505692][T22730]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1184.505766][T22730]  do_syscall_64+0xcd/0xfa0
[ 1184.505814][T22730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1184.505848][T22730] RIP: 0033:0x7f3bb618efc9
[ 1184.505877][T22730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1184.505914][T22730] RSP: 002b:00007f3bb707b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1184.505947][T22730] RAX: ffffffffffffffda RBX: 00007f3bb63e6090 RCX: 00007f3bb618efc9
[ 1184.505970][T22730] RDX: 0000000004008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1184.505991][T22730] RBP: 00007f3bb6211f91 R08: 0000000000000000 R09: 0000000000000000
[ 1184.506012][T22730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1184.506034][T22730] R13: 00007f3bb63e6128 R14: 00007f3bb63e6090 R15: 00007ffcafdfedd8
[ 1184.506076][T22730]  </TASK>
[ 1185.531636][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1185.539558][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1185.771952][T22741] netlink: 'syz.1.3509': attribute type 1 has an invalid length.
[ 1188.355316][T22777] mmap: syz.2.3519 (22777): VmData 45883392 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[ 1188.427281][T22778] MTRR 1 not used
[ 1189.094728][T22792] FAULT_INJECTION: forcing a failure.
[ 1189.094728][T22792] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1189.287411][T22792] CPU: 1 UID: 0 PID: 22792 Comm: syz.2.3524 Not tainted syzkaller #0 PREEMPT(full) 
[ 1189.287454][T22792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1189.287475][T22792] Call Trace:
[ 1189.287486][T22792]  <TASK>
[ 1189.287499][T22792]  dump_stack_lvl+0x16c/0x1f0
[ 1189.287542][T22792]  should_fail_ex+0x512/0x640
[ 1189.287599][T22792]  should_fail_alloc_page+0xe7/0x130
[ 1189.287648][T22792]  prepare_alloc_pages+0x3c2/0x610
[ 1189.287692][T22792]  ? arch_stack_walk+0xa6/0x100
[ 1189.287731][T22792]  __alloc_frozen_pages_noprof+0x18b/0x2470
[ 1189.287768][T22792]  ? __lock_acquire+0x622/0x1c90
[ 1189.287824][T22792]  ? __lock_acquire+0x622/0x1c90
[ 1189.287874][T22792]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1189.287938][T22792]  ? find_held_lock+0x2b/0x80
[ 1189.287975][T22792]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1189.288033][T22792]  ? policy_nodemask+0xea/0x4e0
[ 1189.288088][T22792]  alloc_pages_mpol+0x1fb/0x550
[ 1189.288137][T22792]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1189.288194][T22792]  ? arch_stack_walk+0xa6/0x100
[ 1189.288229][T22792]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[ 1189.288263][T22792]  ___kmalloc_large_node+0xed/0x160
[ 1189.288316][T22792]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[ 1189.288373][T22792]  __kmalloc_large_node_noprof+0x1c/0x70
[ 1189.288424][T22792]  __kmalloc_noprof.cold+0xc/0x62
[ 1189.288468][T22792]  ? stack_depot_save_flags+0x29/0x9c0
[ 1189.288504][T22792]  ? __pfx_stack_trace_save+0x10/0x10
[ 1189.288531][T22792]  ? wiphy_new_nm+0x701/0x2190
[ 1189.288568][T22792]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[ 1189.288600][T22792]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[ 1189.288633][T22792]  ? wiphy_new_nm+0x701/0x2190
[ 1189.288658][T22792]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1189.288694][T22792]  wiphy_new_nm+0x701/0x2190
[ 1189.288723][T22792]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[ 1189.288755][T22792]  ? __pfx_ieee80211_emulate_remove_chanctx+0x10/0x10
[ 1189.288786][T22792]  ieee80211_alloc_hw_nm+0x1bb5/0x22b0
[ 1189.288816][T22792]  ? __local_bh_enable_ip+0xa4/0x120
[ 1189.288848][T22792]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1189.288888][T22792]  ? __asan_memset+0x23/0x50
[ 1189.288913][T22792]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1189.288948][T22792]  hwsim_new_radio_nl+0xba2/0x1330
[ 1189.288976][T22792]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1189.289010][T22792]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1189.289049][T22792]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1189.289106][T22792]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1189.289138][T22792]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1189.289178][T22792]  ? bpf_lsm_capable+0x9/0x10
[ 1189.289209][T22792]  ? security_capable+0x7e/0x260
[ 1189.289243][T22792]  ? ns_capable+0xd7/0x110
[ 1189.289270][T22792]  genl_rcv_msg+0x55c/0x800
[ 1189.289305][T22792]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1189.289335][T22792]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1189.289370][T22792]  netlink_rcv_skb+0x158/0x420
[ 1189.289401][T22792]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1189.289443][T22792]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1189.289491][T22792]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1189.289519][T22792]  genl_rcv+0x28/0x40
[ 1189.289544][T22792]  netlink_unicast+0x5aa/0x870
[ 1189.289573][T22792]  ? __pfx_netlink_unicast+0x10/0x10
[ 1189.289609][T22792]  netlink_sendmsg+0x8c8/0xdd0
[ 1189.289639][T22792]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1189.289668][T22792]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1189.289708][T22792]  ____sys_sendmsg+0xa98/0xc70
[ 1189.289740][T22792]  ? copy_msghdr_from_user+0x10a/0x160
[ 1189.289762][T22792]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1189.289806][T22792]  ___sys_sendmsg+0x134/0x1d0
[ 1189.289830][T22792]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1189.289850][T22792]  ? __lock_acquire+0x622/0x1c90
[ 1189.289918][T22792]  __sys_sendmsg+0x16d/0x220
[ 1189.289942][T22792]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1189.289984][T22792]  do_syscall_64+0xcd/0xfa0
[ 1189.290013][T22792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1189.290037][T22792] RIP: 0033:0x7f9d5ef8efc9
[ 1189.290063][T22792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1189.290087][T22792] RSP: 002b:00007f9d5fd81038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1189.290109][T22792] RAX: ffffffffffffffda RBX: 00007f9d5f1e5fa0 RCX: 00007f9d5ef8efc9
[ 1189.290125][T22792] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1189.290140][T22792] RBP: 00007f9d5fd81090 R08: 0000000000000000 R09: 0000000000000000
[ 1189.290154][T22792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1189.290168][T22792] R13: 00007f9d5f1e6038 R14: 00007f9d5f1e5fa0 R15: 00007fff34396d78
[ 1189.290200][T22792]  </TASK>
[ 1189.751661][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1191.138565][T22827] MTRR 1 not used
[ 1193.436612][T22850] netlink: 'syz.0.3535': attribute type 1 has an invalid length.
[ 1193.905662][T22859] netlink: 'syz.1.3536': attribute type 1 has an invalid length.
[ 1195.066248][T22872] FAULT_INJECTION: forcing a failure.
[ 1195.066248][T22872] name failslab, interval 1, probability 0, space 0, times 0
[ 1195.106082][T22872] CPU: 1 UID: 0 PID: 22872 Comm: syz.1.3539 Not tainted syzkaller #0 PREEMPT(full) 
[ 1195.106127][T22872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1195.106147][T22872] Call Trace:
[ 1195.106159][T22872]  <TASK>
[ 1195.106173][T22872]  dump_stack_lvl+0x16c/0x1f0
[ 1195.106216][T22872]  should_fail_ex+0x512/0x640
[ 1195.106288][T22872]  ? fs_reclaim_acquire+0xae/0x150
[ 1195.106339][T22872]  should_failslab+0xc2/0x120
[ 1195.106383][T22872]  __kmalloc_cache_noprof+0x72/0x780
[ 1195.106803][T22872]  ? tomoyo_init_log+0x197/0x2140
[ 1195.106840][T22872]  ? format_decode+0x1ad/0xd40
[ 1195.106914][T22872]  ? tomoyo_init_log+0x197/0x2140
[ 1195.106952][T22872]  tomoyo_init_log+0x197/0x2140
[ 1195.106988][T22872]  ? __kasan_slab_free+0x5f/0x80
[ 1195.107033][T22872]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1195.107105][T22872]  ? __pfx_tomoyo_init_log+0x10/0x10
[ 1195.107142][T22872]  ? tomoyo_profile+0x47/0x60
[ 1195.107184][T22872]  ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0
[ 1195.107244][T22872]  tomoyo_supervisor+0x302/0x13b0
[ 1195.107298][T22872]  ? __pfx_tomoyo_supervisor+0x10/0x10
[ 1195.107354][T22872]  ? __pfx_vsnprintf+0x10/0x10
[ 1195.107417][T22872]  ? tomoyo_encode+0x31/0x50
[ 1195.107465][T22872]  tomoyo_path_number_perm+0x448/0x580
[ 1195.107524][T22872]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1195.107625][T22872]  ? find_held_lock+0x2b/0x80
[ 1195.107662][T22872]  ? hook_file_ioctl_common+0x145/0x410
[ 1195.107720][T22872]  ? __fget_files+0x20e/0x3c0
[ 1195.107763][T22872]  security_file_ioctl+0x9b/0x240
[ 1195.107800][T22872]  __x64_sys_ioctl+0xb7/0x210
[ 1195.107857][T22872]  do_syscall_64+0xcd/0xfa0
[ 1195.107900][T22872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1195.107936][T22872] RIP: 0033:0x7facc5b8efc9
[ 1195.107964][T22872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1195.108000][T22872] RSP: 002b:00007facc694c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1195.108034][T22872] RAX: ffffffffffffffda RBX: 00007facc5de5fa0 RCX: 00007facc5b8efc9
[ 1195.108057][T22872] RDX: 0000000000000009 RSI: 0000000000005460 RDI: 0000000000000005
[ 1195.108080][T22872] RBP: 00007facc5c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1195.108102][T22872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1195.108125][T22872] R13: 00007facc5de6038 R14: 00007facc5de5fa0 R15: 00007ffd03ac93c8
[ 1195.108173][T22872]  </TASK>
[ 1195.863312][T22882] FAULT_INJECTION: forcing a failure.
[ 1195.863312][T22882] name failslab, interval 1, probability 0, space 0, times 0
[ 1195.877822][T22882] CPU: 1 UID: 0 PID: 22882 Comm: syz.1.3541 Not tainted syzkaller #0 PREEMPT(full) 
[ 1195.877868][T22882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1195.877888][T22882] Call Trace:
[ 1195.877899][T22882]  <TASK>
[ 1195.877912][T22882]  dump_stack_lvl+0x16c/0x1f0
[ 1195.877947][T22882]  should_fail_ex+0x512/0x640
[ 1195.877985][T22882]  ? __kvmalloc_node_noprof+0x12e/0x9c0
[ 1195.878019][T22882]  should_failslab+0xc2/0x120
[ 1195.878053][T22882]  __kvmalloc_node_noprof+0x141/0x9c0
[ 1195.878085][T22882]  ? bucket_table_alloc.isra.0+0x88/0x460
[ 1195.878126][T22882]  ? bucket_table_alloc.isra.0+0x88/0x460
[ 1195.878160][T22882]  bucket_table_alloc.isra.0+0x88/0x460
[ 1195.878197][T22882]  rhashtable_init_noprof+0x41a/0x7e0
[ 1195.878231][T22882]  ? __init_waitqueue_head+0xca/0x150
[ 1195.878274][T22882]  rhltable_init_noprof+0x20/0x60
[ 1195.878309][T22882]  sta_info_init+0x5f/0x160
[ 1195.878336][T22882]  ieee80211_alloc_hw_nm+0x87b/0x22b0
[ 1195.878367][T22882]  ? __local_bh_enable_ip+0xa4/0x120
[ 1195.878401][T22882]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1195.878441][T22882]  ? __asan_memset+0x23/0x50
[ 1195.878467][T22882]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1195.878503][T22882]  hwsim_new_radio_nl+0xba2/0x1330
[ 1195.878531][T22882]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1195.878566][T22882]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1195.878599][T22882]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1195.878647][T22882]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1195.878681][T22882]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1195.878722][T22882]  ? bpf_lsm_capable+0x9/0x10
[ 1195.878755][T22882]  ? security_capable+0x7e/0x260
[ 1195.878790][T22882]  ? ns_capable+0xd7/0x110
[ 1195.878818][T22882]  genl_rcv_msg+0x55c/0x800
[ 1195.878851][T22882]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1195.878883][T22882]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1195.878919][T22882]  netlink_rcv_skb+0x158/0x420
[ 1195.878944][T22882]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1195.878975][T22882]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1195.879023][T22882]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1195.879053][T22882]  genl_rcv+0x28/0x40
[ 1195.879078][T22882]  netlink_unicast+0x5aa/0x870
[ 1195.879108][T22882]  ? __pfx_netlink_unicast+0x10/0x10
[ 1195.879145][T22882]  netlink_sendmsg+0x8c8/0xdd0
[ 1195.879176][T22882]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1195.879206][T22882]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1195.879247][T22882]  ____sys_sendmsg+0xa98/0xc70
[ 1195.879279][T22882]  ? copy_msghdr_from_user+0x10a/0x160
[ 1195.879302][T22882]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1195.879340][T22882]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1195.879390][T22882]  ___sys_sendmsg+0x134/0x1d0
[ 1195.879418][T22882]  ? futex_private_hash_put+0x176/0x300
[ 1195.879461][T22882]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1195.879489][T22882]  ? __lock_acquire+0x622/0x1c90
[ 1195.879561][T22882]  __sys_sendmsg+0x16d/0x220
[ 1195.879585][T22882]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1195.879607][T22882]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1195.879664][T22882]  do_syscall_64+0xcd/0xfa0
[ 1195.879695][T22882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1195.879721][T22882] RIP: 0033:0x7facc5b8efc9
[ 1195.879742][T22882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1195.879766][T22882] RSP: 002b:00007facc694c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1195.879789][T22882] RAX: ffffffffffffffda RBX: 00007facc5de5fa0 RCX: 00007facc5b8efc9
[ 1195.879806][T22882] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1195.879821][T22882] RBP: 00007facc5c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1195.879836][T22882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1195.879850][T22882] R13: 00007facc5de6038 R14: 00007facc5de5fa0 R15: 00007ffd03ac93c8
[ 1195.879901][T22882]  </TASK>
[ 1197.609976][T22901] FAULT_INJECTION: forcing a failure.
[ 1197.609976][T22901] name failslab, interval 1, probability 0, space 0, times 0
[ 1197.643389][T22901] CPU: 1 UID: 0 PID: 22901 Comm: syz.2.3546 Not tainted syzkaller #0 PREEMPT(full) 
[ 1197.643430][T22901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1197.643444][T22901] Call Trace:
[ 1197.643453][T22901]  <TASK>
[ 1197.643463][T22901]  dump_stack_lvl+0x16c/0x1f0
[ 1197.643493][T22901]  should_fail_ex+0x512/0x640
[ 1197.643531][T22901]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[ 1197.643566][T22901]  should_failslab+0xc2/0x120
[ 1197.643599][T22901]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[ 1197.643630][T22901]  ? kasprintf+0xc7/0x100
[ 1197.643658][T22901]  ? kvasprintf+0xbc/0x160
[ 1197.643679][T22901]  kvasprintf+0xbc/0x160
[ 1197.643700][T22901]  ? __pfx_kvasprintf+0x10/0x10
[ 1197.643725][T22901]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1197.643750][T22901]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1197.643777][T22901]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1197.643805][T22901]  kasprintf+0xc7/0x100
[ 1197.643827][T22901]  ? __pfx_kasprintf+0x10/0x10
[ 1197.643856][T22901]  ? __pfx_sta_info_cleanup+0x10/0x10
[ 1197.643886][T22901]  ieee80211_alloc_led_names+0x11b/0x420
[ 1197.643921][T22901]  ieee80211_alloc_hw_nm+0x197c/0x22b0
[ 1197.643957][T22901]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1197.643997][T22901]  ? __asan_memset+0x23/0x50
[ 1197.644023][T22901]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1197.644058][T22901]  hwsim_new_radio_nl+0xba2/0x1330
[ 1197.644086][T22901]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1197.644121][T22901]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1197.644163][T22901]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1197.644202][T22901]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1197.644239][T22901]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1197.644280][T22901]  ? bpf_lsm_capable+0x9/0x10
[ 1197.644312][T22901]  ? security_capable+0x7e/0x260
[ 1197.644347][T22901]  ? ns_capable+0xd7/0x110
[ 1197.644375][T22901]  genl_rcv_msg+0x55c/0x800
[ 1197.644413][T22901]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1197.644444][T22901]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1197.644480][T22901]  netlink_rcv_skb+0x158/0x420
[ 1197.644505][T22901]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1197.644536][T22901]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1197.644575][T22901]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1197.644603][T22901]  genl_rcv+0x28/0x40
[ 1197.644629][T22901]  netlink_unicast+0x5aa/0x870
[ 1197.644659][T22901]  ? __pfx_netlink_unicast+0x10/0x10
[ 1197.644695][T22901]  netlink_sendmsg+0x8c8/0xdd0
[ 1197.644726][T22901]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1197.644756][T22901]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1197.644796][T22901]  ____sys_sendmsg+0xa98/0xc70
[ 1197.644828][T22901]  ? copy_msghdr_from_user+0x10a/0x160
[ 1197.644851][T22901]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1197.644895][T22901]  ___sys_sendmsg+0x134/0x1d0
[ 1197.644915][T22901]  ? futex_private_hash_put+0x176/0x300
[ 1197.644948][T22901]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1197.644969][T22901]  ? __lock_acquire+0x622/0x1c90
[ 1197.645039][T22901]  __sys_sendmsg+0x16d/0x220
[ 1197.645063][T22901]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1197.645085][T22901]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1197.645141][T22901]  do_syscall_64+0xcd/0xfa0
[ 1197.645172][T22901]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1197.645197][T22901] RIP: 0033:0x7f9d5ef8efc9
[ 1197.645217][T22901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1197.645241][T22901] RSP: 002b:00007f9d5fd81038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1197.645264][T22901] RAX: ffffffffffffffda RBX: 00007f9d5f1e5fa0 RCX: 00007f9d5ef8efc9
[ 1197.645280][T22901] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1197.645295][T22901] RBP: 00007f9d5f011f91 R08: 0000000000000000 R09: 0000000000000000
[ 1197.645310][T22901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1197.645325][T22901] R13: 00007f9d5f1e6038 R14: 00007f9d5f1e5fa0 R15: 00007fff34396d78
[ 1197.645357][T22901]  </TASK>
[ 1198.491215][T22911] FAULT_INJECTION: forcing a failure.
[ 1198.491215][T22911] name failslab, interval 1, probability 0, space 0, times 0
[ 1198.585668][T22911] CPU: 1 UID: 0 PID: 22911 Comm: syz.1.3547 Not tainted syzkaller #0 PREEMPT(full) 
[ 1198.585716][T22911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1198.585736][T22911] Call Trace:
[ 1198.585748][T22911]  <TASK>
[ 1198.585761][T22911]  dump_stack_lvl+0x16c/0x1f0
[ 1198.585805][T22911]  should_fail_ex+0x512/0x640
[ 1198.585855][T22911]  ? __kmalloc_cache_noprof+0x5f/0x780
[ 1198.585941][T22911]  should_failslab+0xc2/0x120
[ 1198.585985][T22911]  __kmalloc_cache_noprof+0x72/0x780
[ 1198.586041][T22911]  ? drm_atomic_helper_setup_commit+0x8d7/0x15d0
[ 1198.586108][T22911]  ? drm_atomic_helper_setup_commit+0x8d7/0x15d0
[ 1198.586155][T22911]  drm_atomic_helper_setup_commit+0x8d7/0x15d0
[ 1198.586223][T22911]  drm_atomic_helper_commit+0xa9/0x380
[ 1198.586273][T22911]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[ 1198.586322][T22911]  drm_atomic_commit+0x234/0x300
[ 1198.586371][T22911]  ? __pfx_drm_atomic_commit+0x10/0x10
[ 1198.586416][T22911]  ? __pfx___drm_printfn_info+0x10/0x10
[ 1198.586478][T22911]  ? drm_client_rotation+0x4da/0x6a0
[ 1198.586542][T22911]  drm_client_modeset_commit_atomic+0x69d/0x7e0
[ 1198.586609][T22911]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[ 1198.586667][T22911]  ? rcu_is_watching+0x12/0xc0
[ 1198.586749][T22911]  drm_client_modeset_commit_locked+0x14d/0x580
[ 1198.586810][T22911]  drm_client_modeset_commit+0x4f/0x80
[ 1198.586863][T22911]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[ 1198.586914][T22911]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[ 1198.586955][T22911]  drm_fbdev_client_restore+0x2c/0x40
[ 1198.586994][T22911]  drm_client_dev_restore+0x1f6/0x2a0
[ 1198.587051][T22911]  drm_release+0x2c4/0x360
[ 1198.587117][T22911]  ? __pfx_drm_release+0x10/0x10
[ 1198.587163][T22911]  __fput+0x402/0xb70
[ 1198.587221][T22911]  task_work_run+0x150/0x240
[ 1198.587275][T22911]  ? __pfx_task_work_run+0x10/0x10
[ 1198.587330][T22911]  ? __pfx___do_sys_close_range+0x10/0x10
[ 1198.587378][T22911]  exit_to_user_mode_loop+0xec/0x130
[ 1198.587431][T22911]  do_syscall_64+0x426/0xfa0
[ 1198.587471][T22911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1198.587506][T22911] RIP: 0033:0x7facc5b8efc9
[ 1198.587534][T22911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1198.587567][T22911] RSP: 002b:00007facc694c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1198.587601][T22911] RAX: 0000000000000000 RBX: 00007facc5de5fa0 RCX: 00007facc5b8efc9
[ 1198.587622][T22911] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 1198.587643][T22911] RBP: 00007facc5c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1198.587664][T22911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1198.587685][T22911] R13: 00007facc5de6038 R14: 00007facc5de5fa0 R15: 00007ffd03ac93c8
[ 1198.587732][T22911]  </TASK>
[ 1199.239488][T22921] netlink: 'syz.2.3549': attribute type 1 has an invalid length.
[ 1200.294597][T22936] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3554'.
[ 1203.476259][T22988] netlink: 'syz.2.3564': attribute type 1 has an invalid length.
[ 1206.006446][T23039] netlink: 'syz.3.3581': attribute type 1 has an invalid length.
[ 1208.686749][T23088] netlink: 'syz.1.3595': attribute type 1 has an invalid length.
[ 1210.024481][T23130] netlink: 'syz.3.3607': attribute type 1 has an invalid length.
[ 1210.657990][T23145] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3611'.
[ 1210.782205][T23150] netlink: 'syz.3.3612': attribute type 1 has an invalid length.
[ 1211.102112][T23145] team0 (unregistering): Port device team_slave_0 removed
[ 1211.126173][T23145] team0 (unregistering): Port device team_slave_1 removed
[ 1211.916162][T23172] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3620'.
[ 1212.285948][T23181] netlink: 'syz.0.3621': attribute type 1 has an invalid length.
[ 1213.726801][T23215] netlink: 'syz.3.3631': attribute type 1 has an invalid length.
[ 1216.040432][T23273] netlink: 'syz.0.3649': attribute type 1 has an invalid length.
[ 1216.678820][T23282] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3653'.
[ 1217.144902][T23292] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[ 1217.279884][T23282] team0 (unregistering): Port device team_slave_0 removed
[ 1217.304058][T23282] team0 (unregistering): Port device team_slave_1 removed
[ 1217.708296][T23306] netlink: 'syz.0.3657': attribute type 1 has an invalid length.
[ 1218.868989][T23326] netlink: 'syz.1.3663': attribute type 1 has an invalid length.
[ 1221.367683][T23371] netlink: 'syz.3.3677': attribute type 1 has an invalid length.
[ 1223.018554][T23402] netlink: zone id is out of range
[ 1223.025249][T23402] netlink: zone id is out of range
[ 1223.030456][T23402] netlink: zone id is out of range
[ 1223.036160][T23402] netlink: zone id is out of range
[ 1223.041594][T23402] netlink: zone id is out of range
[ 1223.061111][T23402] netlink: zone id is out of range
[ 1223.067925][T23402] netlink: zone id is out of range
[ 1223.073526][T23402] netlink: zone id is out of range
[ 1223.079096][T23402] netlink: zone id is out of range
[ 1223.085142][T23402] netlink: zone id is out of range
[ 1225.988624][T23467] netlink: 'syz.0.3708': attribute type 1 has an invalid length.
[ 1228.133668][T23522] netlink: 'syz.2.3722': attribute type 1 has an invalid length.
[ 1229.233366][   T30] audit: type=1804 audit(4294967298.064:29): pid=23538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3727" name="file0" dev="tmpfs" ino=959 res=1 errno=0
[ 1229.272912][   T30] audit: type=1804 audit(4294967298.064:30): pid=23541 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.3727" name="file0" dev="tmpfs" ino=959 res=1 errno=0
[ 1229.941101][T23558] netlink: 'syz.1.3731': attribute type 1 has an invalid length.
[ 1231.877122][T23589] netlink: 'syz.3.3741': attribute type 1 has an invalid length.
[ 1236.762429][T23666] netlink: 'syz.2.3760': attribute type 1 has an invalid length.
[ 1241.924916][T23735] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3780'.
[ 1241.954963][T23735] ipvlan0: entered promiscuous mode
[ 1241.960236][T23735] ipvlan0: entered allmulticast mode
[ 1246.680364][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1246.687687][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1248.964649][T23840] Invalid ELF header magic: != ELF
[ 1250.436144][T23862] Invalid ELF header magic: != ELF
[ 1251.648741][   T30] audit: type=1326 audit(4294967311.959:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23894 comm="syz.2.3824" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9d5ef8efc9 code=0x0
[ 1255.992355][T23956] netlink: 'syz.1.3839': attribute type 1 has an invalid length.
[ 1259.649766][T24019] netlink: 'syz.3.3854': attribute type 1 has an invalid length.
[ 1264.996802][T24074] netlink: 'syz.2.3867': attribute type 1 has an invalid length.
[ 1265.628234][T24084] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3868'.
[ 1266.616034][T24108] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3874'.
[ 1267.859097][T24124] netlink: 206 bytes leftover after parsing attributes in process `syz.2.3880'.
[ 1269.331609][T24146] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3883'.
[ 1270.160166][T24160] netlink: 'syz.0.3884': attribute type 1 has an invalid length.
[ 1272.259078][T24203] can: request_module (can-proto-0) failed.
[ 1272.619052][T24210] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3897'.
[ 1273.506643][T24230] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3903'.
[ 1274.140094][T24242] netlink: 'syz.0.3905': attribute type 1 has an invalid length.
[ 1274.527105][T24251] cgroup: fork rejected by pids controller in /syz2
[ 1277.601135][T24354] netlink: 'syz.2.3918': attribute type 1 has an invalid length.
[ 1281.182657][T24423] netlink: 'syz.1.3932': attribute type 1 has an invalid length.
[ 1285.887205][T24476] netlink: 'syz.3.3942': attribute type 1 has an invalid length.
[ 1289.734153][T24521] netlink: 'syz.1.3955': attribute type 1 has an invalid length.
[ 1292.413741][T24555] net_ratelimit: 36 callbacks suppressed
[ 1292.413769][T24555] netlink: set zone limit has 8 unknown bytes
[ 1293.315272][T24581] netlink: 'syz.2.3968': attribute type 1 has an invalid length.
[ 1303.128822][T24611] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1303.142252][ T5833] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1303.152826][ T5833] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1303.161768][ T5833] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1303.169919][ T5833] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1303.434532][T24609] chnl_net:caif_netlink_parms(): no params data found
[ 1303.550702][T24609] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1303.558914][T24609] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1303.566802][T24609] bridge_slave_0: entered allmulticast mode
[ 1303.574953][T24609] bridge_slave_0: entered promiscuous mode
[ 1303.590161][T24609] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1303.598266][T24609] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1303.606415][T24609] bridge_slave_1: entered allmulticast mode
[ 1303.614766][T24609] bridge_slave_1: entered promiscuous mode
[ 1303.661474][T24609] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1303.675546][T24609] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1303.726739][T24609] team0: Port device team_slave_0 added
[ 1303.736722][T24609] team0: Port device team_slave_1 added
[ 1303.842888][T24609] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1303.860063][T24609] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1303.985809][T24625] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3981'.
[ 1304.130605][T24609] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1304.198416][    C1] vcan0: j1939_session_tx_dat: 0xffff88802843ec00: queue data error: -100
[ 1304.466106][T24609] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1304.477552][T24609] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1304.507582][T24609] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1304.808509][T24609] hsr_slave_0: entered promiscuous mode
[ 1304.829824][T24645] netlink: 'syz.2.3983': attribute type 1 has an invalid length.
[ 1304.859248][T24609] hsr_slave_1: entered promiscuous mode
[ 1304.865707][T24609] debugfs: 'hsr0' already exists in 'hsr'
[ 1304.893397][T24609] Cannot create hsr debugfs directory
[ 1305.197689][ T5833] Bluetooth: hci4: command tx timeout
[ 1306.115488][T24609] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1306.202325][T24609] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1306.237920][T24609] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1306.313383][T24609] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1306.942471][T24609] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1307.030867][T24609] 8021q: adding VLAN 0 to HW filter on device team0
[ 1307.070377][T24294] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1307.077680][T24294] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1307.125913][T24294] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1307.133166][T24294] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1307.270194][ T5833] Bluetooth: hci4: command tx timeout
[ 1307.834821][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1307.841209][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1307.956727][T24709] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3999'.
[ 1308.549018][T24609] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1309.398763][ T5833] Bluetooth: hci4: command tx timeout
[ 1309.820048][T24609] veth0_vlan: entered promiscuous mode
[ 1309.882687][T24609] veth1_vlan: entered promiscuous mode
[ 1310.336864][T24609] veth0_macvtap: entered promiscuous mode
[ 1310.389193][T24609] veth1_macvtap: entered promiscuous mode
[ 1310.525337][T24609] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1310.586334][T24609] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1310.629335][ T9692] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1310.648484][ T9692] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1310.688679][ T9692] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1310.721090][ T9692] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1311.133613][T24286] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1311.177974][T24286] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1311.406365][ T5833] Bluetooth: hci4: command tx timeout
[ 1311.726301][T24292] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1311.757583][T24292] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1313.098851][T24817] netlink: 'syz.1.4024': attribute type 1 has an invalid length.
[ 1313.630660][T24791] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1316.478353][T24873] netlink: 'syz.4.4038': attribute type 1 has an invalid length.
[ 1317.893827][T24896] random: crng reseeded on system resumption
[ 1317.970511][T24897] Restarting kernel threads ...
[ 1317.992700][T24897] Done restarting kernel threads.
[ 1318.065556][T24896] hub 1-0:1.0: USB hub found
[ 1318.087635][T24896] hub 1-0:1.0: 1 port detected
[ 1320.248372][   T30] audit: type=1800 audit(4294967300.809:32): pid=24927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4050" name="dbroot" dev="configfs" ino=134686 res=0 errno=0
[ 1321.507733][T24957] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4058'.
[ 1321.516958][T24957] nbd: must specify a size in bytes for the device
[ 1321.565448][T24952] netlink: 'syz.2.4057': attribute type 1 has an invalid length.
[ 1323.828763][T24971] zswap: compressor  not available
[ 1325.159012][T25002] netlink: 'syz.1.4068': attribute type 1 has an invalid length.
[ 1329.578804][T25065] netlink: 'syz.4.4083': attribute type 1 has an invalid length.
[ 1330.658825][T25083] FAULT_INJECTION: forcing a failure.
[ 1330.658825][T25083] name failslab, interval 1, probability 0, space 0, times 0
[ 1330.671823][T25083] CPU: 0 UID: 0 PID: 25083 Comm: syz.4.4086 Not tainted syzkaller #0 PREEMPT(full) 
[ 1330.671855][T25083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1330.671870][T25083] Call Trace:
[ 1330.671878][T25083]  <TASK>
[ 1330.671888][T25083]  dump_stack_lvl+0x16c/0x1f0
[ 1330.671920][T25083]  should_fail_ex+0x512/0x640
[ 1330.671957][T25083]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[ 1330.671992][T25083]  should_failslab+0xc2/0x120
[ 1330.672025][T25083]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[ 1330.672057][T25083]  ? kasprintf+0xc7/0x100
[ 1330.672085][T25083]  ? kvasprintf+0xbc/0x160
[ 1330.672106][T25083]  kvasprintf+0xbc/0x160
[ 1330.672128][T25083]  ? __pfx_kvasprintf+0x10/0x10
[ 1330.672153][T25083]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1330.672178][T25083]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1330.672204][T25083]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1330.672233][T25083]  kasprintf+0xc7/0x100
[ 1330.672255][T25083]  ? __pfx_kasprintf+0x10/0x10
[ 1330.672283][T25083]  ? __pfx_sta_info_cleanup+0x10/0x10
[ 1330.672338][T25083]  ieee80211_alloc_led_names+0x243/0x420
[ 1330.672373][T25083]  ieee80211_alloc_hw_nm+0x197c/0x22b0
[ 1330.672410][T25083]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1330.672450][T25083]  ? __asan_memset+0x23/0x50
[ 1330.672475][T25083]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1330.672511][T25083]  hwsim_new_radio_nl+0xba2/0x1330
[ 1330.672539][T25083]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1330.672574][T25083]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1330.672608][T25083]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1330.672646][T25083]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1330.672679][T25083]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1330.672719][T25083]  ? bpf_lsm_capable+0x9/0x10
[ 1330.672757][T25083]  ? security_capable+0x7e/0x260
[ 1330.672792][T25083]  ? ns_capable+0xd7/0x110
[ 1330.672821][T25083]  genl_rcv_msg+0x55c/0x800
[ 1330.672853][T25083]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1330.672884][T25083]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1330.672920][T25083]  netlink_rcv_skb+0x158/0x420
[ 1330.672945][T25083]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1330.672977][T25083]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1330.673014][T25083]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1330.673042][T25083]  genl_rcv+0x28/0x40
[ 1330.673067][T25083]  netlink_unicast+0x5aa/0x870
[ 1330.673097][T25083]  ? __pfx_netlink_unicast+0x10/0x10
[ 1330.673133][T25083]  netlink_sendmsg+0x8c8/0xdd0
[ 1330.673164][T25083]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1330.673193][T25083]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1330.673234][T25083]  ____sys_sendmsg+0xa98/0xc70
[ 1330.673265][T25083]  ? copy_msghdr_from_user+0x10a/0x160
[ 1330.673288][T25083]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1330.673332][T25083]  ___sys_sendmsg+0x134/0x1d0
[ 1330.673353][T25083]  ? futex_private_hash_put+0x176/0x300
[ 1330.673385][T25083]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1330.673406][T25083]  ? __lock_acquire+0x622/0x1c90
[ 1330.673475][T25083]  __sys_sendmsg+0x16d/0x220
[ 1330.673498][T25083]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1330.673521][T25083]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1330.673571][T25083]  do_syscall_64+0xcd/0xfa0
[ 1330.673600][T25083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1330.673626][T25083] RIP: 0033:0x7feda138efc9
[ 1330.673646][T25083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1330.673670][T25083] RSP: 002b:00007feda21ea038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1330.673693][T25083] RAX: ffffffffffffffda RBX: 00007feda15e5fa0 RCX: 00007feda138efc9
[ 1330.673709][T25083] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1330.673725][T25083] RBP: 00007feda1411f91 R08: 0000000000000000 R09: 0000000000000000
[ 1330.673745][T25083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1330.673759][T25083] R13: 00007feda15e6038 R14: 00007feda15e5fa0 R15: 00007fff1f1b6468
[ 1330.673792][T25083]  </TASK>
[ 1334.393401][T25125] netlink: 'syz.4.4095': attribute type 1 has an invalid length.
[ 1338.799436][T25186] netlink: 'syz.0.4110': attribute type 64 has an invalid length.
[ 1338.829129][T25186] netlink: 74 bytes leftover after parsing attributes in process `syz.0.4110'.
[ 1341.640812][T24290] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1341.896109][T24290] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1342.189723][T24290] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1342.388307][T24290] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1343.269210][T15178] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1343.290579][T15178] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1343.302149][T15178] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1343.310514][T15178] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1343.322589][T24290] bridge_slave_1: left allmulticast mode
[ 1343.328280][T24290] bridge_slave_1: left promiscuous mode
[ 1343.334074][T15178] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1343.354848][T24290] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1343.441183][T24290] bridge_slave_0: left allmulticast mode
[ 1343.452451][T24290] bridge_slave_0: left promiscuous mode
[ 1343.458397][T24290] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1345.389577][ T5833] Bluetooth: hci1: command tx timeout
[ 1345.519348][T24290] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1345.602840][T24290] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1345.645118][T24290] bond0 (unregistering): Released all slaves
[ 1346.097314][T25269] netlink: 'syz.1.4129': attribute type 1 has an invalid length.
[ 1347.459321][ T5833] Bluetooth: hci1: command tx timeout
[ 1348.105940][T25228] chnl_net:caif_netlink_parms(): no params data found
[ 1349.042474][T25228] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1349.058374][T25228] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1349.090691][T25228] bridge_slave_0: entered allmulticast mode
[ 1349.130914][T25228] bridge_slave_0: entered promiscuous mode
[ 1349.145437][T25322] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4136'.
[ 1349.199930][T25228] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1349.241384][T25228] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1349.249576][T25228] bridge_slave_1: entered allmulticast mode
[ 1349.257102][T25228] bridge_slave_1: entered promiscuous mode
[ 1349.537139][ T5833] Bluetooth: hci1: command tx timeout
[ 1349.931121][T25228] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1349.987113][T25228] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1350.433833][T25228] team0: Port device team_slave_0 added
[ 1350.479961][T25228] team0: Port device team_slave_1 added
[ 1350.645630][T25341] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4139'.
[ 1350.808186][T25228] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1350.817738][T25228] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1350.871294][T25228] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1350.935052][T25228] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1350.956573][T25228] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1351.059925][T25228] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1351.561462][T25228] hsr_slave_0: entered promiscuous mode
[ 1351.568871][T25228] hsr_slave_1: entered promiscuous mode
[ 1351.575378][T25228] debugfs: 'hsr0' already exists in 'hsr'
[ 1351.581669][T25228] Cannot create hsr debugfs directory
[ 1351.610275][ T5833] Bluetooth: hci1: command tx timeout
[ 1352.386298][T25370] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4146'.
[ 1353.945710][T25228] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1353.963158][T25228] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1354.081965][T25228] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1354.158935][T25228] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1354.712051][T25421] futex_wake_op: syz.1.4153 tries to shift op by -2048; fix this program
[ 1355.133965][T25228] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1355.345313][T25228] 8021q: adding VLAN 0 to HW filter on device team0
[ 1355.475358][T24294] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1355.482603][T24294] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1355.717134][T24294] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1355.724311][T24294] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1356.058602][T25434] netlink: 'syz.2.4155': attribute type 1 has an invalid length.
[ 1357.438714][ T5833] Bluetooth: hci4: unexpected event 0x36 length: 123 > 7
[ 1359.034542][T25228] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1360.465772][T25228] veth0_vlan: entered promiscuous mode
[ 1360.575384][T25228] veth1_vlan: entered promiscuous mode
[ 1360.829368][T25228] veth0_macvtap: entered promiscuous mode
[ 1360.853423][T25228] veth1_macvtap: entered promiscuous mode
[ 1361.179568][T25228] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1361.233039][T25228] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1361.445669][T24286] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1361.465643][T24286] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1361.517158][T24286] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1361.541310][T24286] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1361.751051][T24290] hsr_slave_0: left promiscuous mode
[ 1361.767379][T24290] hsr_slave_1: left promiscuous mode
[ 1361.798080][T24290] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1361.814131][T24290] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1361.824884][T24290] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1361.834741][T24290] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1361.894873][T24290] veth1_macvtap: left promiscuous mode
[ 1361.928772][T24290] veth0_macvtap: left promiscuous mode
[ 1361.961085][T24290] veth1_vlan: left promiscuous mode
[ 1363.596099][T25536] FAULT_INJECTION: forcing a failure.
[ 1363.596099][T25536] name failslab, interval 1, probability 0, space 0, times 0
[ 1363.609764][T25536] CPU: 1 UID: 0 PID: 25536 Comm: syz.4.4173 Not tainted syzkaller #0 PREEMPT(full) 
[ 1363.609806][T25536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1363.609827][T25536] Call Trace:
[ 1363.609839][T25536]  <TASK>
[ 1363.609852][T25536]  dump_stack_lvl+0x16c/0x1f0
[ 1363.609896][T25536]  should_fail_ex+0x512/0x640
[ 1363.609949][T25536]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[ 1363.609998][T25536]  should_failslab+0xc2/0x120
[ 1363.610042][T25536]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[ 1363.610096][T25536]  ? kasprintf+0xc7/0x100
[ 1363.610134][T25536]  ? kvasprintf+0xbc/0x160
[ 1363.610163][T25536]  kvasprintf+0xbc/0x160
[ 1363.610192][T25536]  ? __pfx_kvasprintf+0x10/0x10
[ 1363.610227][T25536]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1363.610260][T25536]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1363.610296][T25536]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1363.610336][T25536]  kasprintf+0xc7/0x100
[ 1363.610366][T25536]  ? __pfx_kasprintf+0x10/0x10
[ 1363.610403][T25536]  ? __pfx_sta_info_cleanup+0x10/0x10
[ 1363.610443][T25536]  ieee80211_alloc_led_names+0x11b/0x420
[ 1363.610490][T25536]  ieee80211_alloc_hw_nm+0x197c/0x22b0
[ 1363.610538][T25536]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[ 1363.610591][T25536]  ? __asan_memset+0x23/0x50
[ 1363.610625][T25536]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1363.610672][T25536]  hwsim_new_radio_nl+0xba2/0x1330
[ 1363.610714][T25536]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1363.610760][T25536]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1363.610804][T25536]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1363.610856][T25536]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1363.610900][T25536]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1363.610954][T25536]  ? bpf_lsm_capable+0x9/0x10
[ 1363.610996][T25536]  ? security_capable+0x7e/0x260
[ 1363.611041][T25536]  ? ns_capable+0xd7/0x110
[ 1363.611129][T25536]  genl_rcv_msg+0x55c/0x800
[ 1363.611174][T25536]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1363.611215][T25536]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1363.611264][T25536]  netlink_rcv_skb+0x158/0x420
[ 1363.611299][T25536]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1363.611339][T25536]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1363.611390][T25536]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1363.611428][T25536]  genl_rcv+0x28/0x40
[ 1363.611461][T25536]  netlink_unicast+0x5aa/0x870
[ 1363.611501][T25536]  ? __pfx_netlink_unicast+0x10/0x10
[ 1363.611549][T25536]  netlink_sendmsg+0x8c8/0xdd0
[ 1363.611590][T25536]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1363.611629][T25536]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1363.611683][T25536]  ____sys_sendmsg+0xa98/0xc70
[ 1363.611725][T25536]  ? copy_msghdr_from_user+0x10a/0x160
[ 1363.611755][T25536]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1363.611805][T25536]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1363.611862][T25536]  ___sys_sendmsg+0x134/0x1d0
[ 1363.611890][T25536]  ? futex_private_hash_put+0x176/0x300
[ 1363.611932][T25536]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1363.611960][T25536]  ? __lock_acquire+0x622/0x1c90
[ 1363.612055][T25536]  __sys_sendmsg+0x16d/0x220
[ 1363.612094][T25536]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1363.612125][T25536]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1363.612195][T25536]  do_syscall_64+0xcd/0xfa0
[ 1363.612234][T25536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1363.612267][T25536] RIP: 0033:0x7feda138efc9
[ 1363.612292][T25536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1363.612325][T25536] RSP: 002b:00007feda21ea038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1363.612356][T25536] RAX: ffffffffffffffda RBX: 00007feda15e5fa0 RCX: 00007feda138efc9
[ 1363.612377][T25536] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[ 1363.612399][T25536] RBP: 00007feda1411f91 R08: 0000000000000000 R09: 0000000000000000
[ 1363.612420][T25536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1363.612440][T25536] R13: 00007feda15e6038 R14: 00007feda15e5fa0 R15: 00007fff1f1b6468
[ 1363.612485][T25536]  </TASK>
[ 1365.377718][T24294] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1365.408581][T24294] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1365.600961][T24294] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1365.630461][T24294] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1366.956294][T25567] netlink: 'syz.5.4180': attribute type 1 has an invalid length.
[ 1369.017070][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1369.065192][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1376.157404][T25767] netlink: 'syz.4.4210': attribute type 1 has an invalid length.
[ 1377.239127][T25762] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1381.007597][T25847] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4227'.
[ 1382.423543][T25860] nfs: Bad value for 'source'
[ 1384.737145][T25898] netlink: 334 bytes leftover after parsing attributes in process `syz.1.4239'.
[ 1387.752235][T25938] FAULT_INJECTION: forcing a failure.
[ 1387.752235][T25938] name failslab, interval 1, probability 0, space 0, times 0
[ 1387.807574][T25938] CPU: 0 UID: 0 PID: 25938 Comm: syz.5.4247 Not tainted syzkaller #0 PREEMPT(full) 
[ 1387.807631][T25938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1387.807653][T25938] Call Trace:
[ 1387.807665][T25938]  <TASK>
[ 1387.807679][T25938]  dump_stack_lvl+0x16c/0x1f0
[ 1387.807724][T25938]  should_fail_ex+0x512/0x640
[ 1387.807775][T25938]  ? __kmalloc_cache_noprof+0x5f/0x780
[ 1387.807835][T25938]  should_failslab+0xc2/0x120
[ 1387.807880][T25938]  __kmalloc_cache_noprof+0x72/0x780
[ 1387.807934][T25938]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1387.807973][T25938]  ? vim2m_open+0xad/0x890
[ 1387.808021][T25938]  ? vim2m_open+0xad/0x890
[ 1387.808062][T25938]  vim2m_open+0xad/0x890
[ 1387.808109][T25938]  v4l2_open+0x1d2/0x5e0
[ 1387.808147][T25938]  ? __pfx_v4l2_open+0x10/0x10
[ 1387.808183][T25938]  chrdev_open+0x234/0x6a0
[ 1387.808222][T25938]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1387.808271][T25938]  ? __pfx_chrdev_open+0x10/0x10
[ 1387.808313][T25938]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[ 1387.808359][T25938]  do_dentry_open+0x982/0x1530
[ 1387.808400][T25938]  ? __pfx_chrdev_open+0x10/0x10
[ 1387.808450][T25938]  vfs_open+0x82/0x3f0
[ 1387.808503][T25938]  path_openat+0x1de4/0x2cb0
[ 1387.808554][T25938]  ? __pfx_path_openat+0x10/0x10
[ 1387.808599][T25938]  ? __lock_acquire+0xb8a/0x1c90
[ 1387.808651][T25938]  do_filp_open+0x20b/0x470
[ 1387.808693][T25938]  ? __pfx_do_filp_open+0x10/0x10
[ 1387.808758][T25938]  ? alloc_fd+0x471/0x7d0
[ 1387.808802][T25938]  do_sys_openat2+0x11b/0x1d0
[ 1387.808850][T25938]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1387.808916][T25938]  __x64_sys_openat+0x174/0x210
[ 1387.808966][T25938]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1387.809035][T25938]  do_syscall_64+0xcd/0xfa0
[ 1387.809076][T25938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1387.809110][T25938] RIP: 0033:0x7f349b58efc9
[ 1387.809136][T25938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1387.809169][T25938] RSP: 002b:00007f349c36b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1387.809201][T25938] RAX: ffffffffffffffda RBX: 00007f349b7e5fa0 RCX: 00007f349b58efc9
[ 1387.809223][T25938] RDX: 000000000002aa81 RSI: 0000200000000180 RDI: ffffffffffffff9c
[ 1387.809245][T25938] RBP: 00007f349b611f91 R08: 0000000000000000 R09: 0000000000000000
[ 1387.809266][T25938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1387.809287][T25938] R13: 00007f349b7e6038 R14: 00007f349b7e5fa0 R15: 00007ffe49cb6d08
[ 1387.809333][T25938]  </TASK>
[ 1388.762212][T25946] netlink: 'syz.5.4250': attribute type 4 has an invalid length.
[ 1388.793702][T25946] netlink: 314 bytes leftover after parsing attributes in process `syz.5.4250'.
[ 1389.145934][T25951] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4252'.
[ 1391.129011][T25976] zswap: compressor  not available
[ 1391.432640][T25976] zswap: compressor  not available
[ 1391.563795][T25976] zswap: compressor  not available
[ 1395.387816][T26059] random: crng reseeded on system resumption
[ 1395.634855][T26063] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4275'.
[ 1395.672516][T26063] netlink: 146 bytes leftover after parsing attributes in process `syz.1.4275'.
[ 1400.667084][T26147] random: crng reseeded on system resumption
[ 1402.286419][T26135] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1412.213312][T26276] kafs: addr_prefs: Invalid Command
[ 1414.495582][T26313] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4326'.
[ 1414.505298][T26313] netlink: 13 bytes leftover after parsing attributes in process `syz.5.4326'.
[ 1423.448640][T26418] netlink: 504 bytes leftover after parsing attributes in process `syz.4.4351'.
[ 1424.863050][ T5833] Bluetooth: hci1: Received unexpected HCI Event 0x00
[ 1426.518885][T26453] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input19
[ 1427.072757][T15178] Bluetooth: hci4: command 0x0406 tx timeout
[ 1428.143815][T26476] __vm_enough_memory: pid: 26476, comm: syz.2.4364, bytes: 4398046511104 not enough memory for the allocation
[ 1429.185199][T26491] netlink: 330 bytes leftover after parsing attributes in process `syz.1.4369'.
[ 1429.631857][T26501] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4371'.
[ 1430.085746][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1430.092490][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1432.346141][T26538] FAULT_INJECTION: forcing a failure.
[ 1432.346141][T26538] name failslab, interval 1, probability 0, space 0, times 0
[ 1432.399840][T26538] CPU: 0 UID: 0 PID: 26538 Comm: syz.5.4378 Not tainted syzkaller #0 PREEMPT(full) 
[ 1432.399885][T26538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1432.399906][T26538] Call Trace:
[ 1432.399916][T26538]  <TASK>
[ 1432.399930][T26538]  dump_stack_lvl+0x16c/0x1f0
[ 1432.399972][T26538]  should_fail_ex+0x512/0x640
[ 1432.400021][T26538]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[ 1432.400061][T26538]  should_failslab+0xc2/0x120
[ 1432.400106][T26538]  kmem_cache_alloc_noprof+0x75/0x6e0
[ 1432.400140][T26538]  ? acpi_ut_create_control_state+0x6a/0x100
[ 1432.400201][T26538]  ? acpi_ut_create_control_state+0x6a/0x100
[ 1432.400260][T26538]  acpi_ut_create_control_state+0x6a/0x100
[ 1432.400313][T26538]  acpi_ds_exec_begin_control_op+0x180/0x520
[ 1432.400355][T26538]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1432.400413][T26538]  acpi_ds_exec_begin_op+0x209/0x9c0
[ 1432.400468][T26538]  acpi_ps_create_op+0x7cb/0xd30
[ 1432.400522][T26538]  ? __pfx_acpi_ps_create_op+0x10/0x10
[ 1432.400573][T26538]  ? __pfx_acpi_ut_trace_ptr+0x10/0x10
[ 1432.400605][T26538]  ? acpi_ut_value_exit+0xff/0x180
[ 1432.400668][T26538]  acpi_ps_parse_loop+0xf06/0x2470
[ 1432.400726][T26538]  ? acpi_ns_get_normalized_pathname+0x95/0x250
[ 1432.400770][T26538]  ? __pfx_acpi_ps_parse_loop+0x10/0x10
[ 1432.400819][T26538]  ? acpi_ut_status_exit+0x103/0x1c0
[ 1432.400853][T26538]  ? acpi_ds_call_control_method+0x435/0xab0
[ 1432.400908][T26538]  acpi_ps_parse_aml+0x817/0x1170
[ 1432.400969][T26538]  acpi_ps_execute_method+0x5c4/0xe90
[ 1432.401013][T26538]  acpi_ns_evaluate+0x98c/0x16d0
[ 1432.401058][T26538]  acpi_evaluate_object+0x4ca/0xdf0
[ 1432.401114][T26538]  ? __pfx_acpi_evaluate_object+0x10/0x10
[ 1432.401163][T26538]  ? __mutex_trylock_common+0xe9/0x250
[ 1432.401219][T26538]  acpi_evaluate_integer+0xdd/0x200
[ 1432.401266][T26538]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[ 1432.401325][T26538]  ? __pfx_status_show+0x10/0x10
[ 1432.401369][T26538]  status_show+0xa0/0x120
[ 1432.401415][T26538]  ? __pfx_status_show+0x10/0x10
[ 1432.401471][T26538]  dev_attr_show+0x56/0xe0
[ 1432.401521][T26538]  ? __pfx_dev_attr_show+0x10/0x10
[ 1432.401567][T26538]  sysfs_kf_seq_show+0x216/0x3e0
[ 1432.401612][T26538]  seq_read_iter+0x50e/0x12d0
[ 1432.401681][T26538]  kernfs_fop_read_iter+0x46c/0x610
[ 1432.401714][T26538]  ? rw_verify_area+0xcf/0x6c0
[ 1432.401748][T26538]  vfs_read+0x8bf/0xcf0
[ 1432.401791][T26538]  ? __pfx___mutex_lock+0x10/0x10
[ 1432.401831][T26538]  ? __pfx_vfs_read+0x10/0x10
[ 1432.401922][T26538]  ksys_read+0x12a/0x250
[ 1432.401957][T26538]  ? __pfx_ksys_read+0x10/0x10
[ 1432.402005][T26538]  do_syscall_64+0xcd/0xfa0
[ 1432.402045][T26538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1432.402078][T26538] RIP: 0033:0x7f349b58efc9
[ 1432.402103][T26538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1432.402136][T26538] RSP: 002b:00007f349c36b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1432.402169][T26538] RAX: ffffffffffffffda RBX: 00007f349b7e5fa0 RCX: 00007f349b58efc9
[ 1432.402191][T26538] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000005
[ 1432.402212][T26538] RBP: 00007f349b611f91 R08: 0000000000000000 R09: 0000000000000000
[ 1432.402233][T26538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1432.402260][T26538] R13: 00007f349b7e6038 R14: 00007f349b7e5fa0 R15: 00007ffe49cb6d08
[ 1432.402307][T26538]  </TASK>
[ 1432.750534][T26538] ACPI Error: Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20250807/psparse-529)
[ 1432.774210][T26538] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20250807/psparse-529)
[ 1433.285578][T26535] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1433.301008][T26535] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1433.332704][T26535] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1433.356640][T26535] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1433.393107][T26535] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1433.554276][T26535] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1433.571076][T26535] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1433.766839][T26535] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1435.106139][T26571] FAULT_INJECTION: forcing a failure.
[ 1435.106139][T26571] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1435.129897][T26571] CPU: 1 UID: 0 PID: 26571 Comm: syz.5.4396 Not tainted syzkaller #0 PREEMPT(full) 
[ 1435.129946][T26571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1435.129968][T26571] Call Trace:
[ 1435.129980][T26571]  <TASK>
[ 1435.129993][T26571]  dump_stack_lvl+0x16c/0x1f0
[ 1435.130039][T26571]  should_fail_ex+0x512/0x640
[ 1435.130098][T26571]  get_futex_key+0x1d0/0x1560
[ 1435.130142][T26571]  ? stack_trace_save+0x8e/0xc0
[ 1435.130181][T26571]  ? __pfx_get_futex_key+0x10/0x10
[ 1435.130222][T26571]  ? stack_depot_save_flags+0x29/0x9c0
[ 1435.130286][T26571]  futex_wait_setup+0x9d/0x550
[ 1435.130351][T26571]  __futex_wait+0x193/0x2f0
[ 1435.130404][T26571]  ? __pfx___futex_wait+0x10/0x10
[ 1435.130462][T26571]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1435.130521][T26571]  ? futex_private_hash_put+0x176/0x300
[ 1435.130569][T26571]  ? futex_private_hash_put+0x18a/0x300
[ 1435.130615][T26571]  futex_wait+0xe8/0x380
[ 1435.130645][T26571]  ? __pfx_futex_wait+0x10/0x10
[ 1435.130704][T26571]  ? lockdep_init_map_type+0x5c/0x280
[ 1435.130769][T26571]  do_futex+0x229/0x350
[ 1435.130815][T26571]  ? __pfx_do_futex+0x10/0x10
[ 1435.130872][T26571]  __x64_sys_futex+0x1e0/0x4c0
[ 1435.130925][T26571]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1435.130972][T26571]  ? fd_install+0x244/0x750
[ 1435.131018][T26571]  do_syscall_64+0xcd/0xfa0
[ 1435.131058][T26571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1435.131092][T26571] RIP: 0033:0x7f349b58efc9
[ 1435.131120][T26571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1435.131156][T26571] RSP: 002b:00007f349c36b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1435.131189][T26571] RAX: ffffffffffffffda RBX: 00007f349b7e5fa8 RCX: 00007f349b58efc9
[ 1435.131212][T26571] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f349b7e5fa8
[ 1435.131234][T26571] RBP: 00007f349b7e5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1435.131255][T26571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1435.131276][T26571] R13: 00007f349b7e6038 R14: 00007ffe49cb6c20 R15: 00007ffe49cb6d08
[ 1435.131322][T26571]  </TASK>
[ 1435.345896][ T5833] Bluetooth: hci3: command 0x0406 tx timeout
[ 1435.352816][ T5833] Bluetooth: hci0: command 0x0406 tx timeout
[ 1435.440288][T15178] Bluetooth: hci4: command 0x0406 tx timeout
[ 1435.451114][T15178] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1435.560649][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1435.935050][T26576] zswap: compressor  not available
[ 1436.504180][T26580] zswap: compressor  not available
[ 1437.490765][ T5833] Bluetooth: hci4: command 0x0406 tx timeout
[ 1437.629952][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1438.840539][T26619] FAULT_INJECTION: forcing a failure.
[ 1438.840539][T26619] name failslab, interval 1, probability 0, space 0, times 0
[ 1438.888642][T26619] CPU: 1 UID: 0 PID: 26619 Comm: syz.5.4399 Not tainted syzkaller #0 PREEMPT(full) 
[ 1438.888686][T26619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1438.888707][T26619] Call Trace:
[ 1438.888718][T26619]  <TASK>
[ 1438.888732][T26619]  dump_stack_lvl+0x16c/0x1f0
[ 1438.888774][T26619]  should_fail_ex+0x512/0x640
[ 1438.888825][T26619]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[ 1438.888866][T26619]  should_failslab+0xc2/0x120
[ 1438.888910][T26619]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[ 1438.888948][T26619]  ? shmem_alloc_inode+0x25/0x50
[ 1438.888998][T26619]  ? __pfx_shmem_alloc_inode+0x10/0x10
[ 1438.889041][T26619]  ? shmem_alloc_inode+0x25/0x50
[ 1438.889081][T26619]  shmem_alloc_inode+0x25/0x50
[ 1438.889122][T26619]  alloc_inode+0x64/0x240
[ 1438.889168][T26619]  new_inode+0x22/0x1c0
[ 1438.889216][T26619]  shmem_get_inode+0x19a/0xfb0
[ 1438.889263][T26619]  shmem_mknod+0x1a8/0x450
[ 1438.889311][T26619]  ? __pfx_shmem_create+0x10/0x10
[ 1438.889364][T26619]  lookup_open.isra.0+0x11d3/0x1580
[ 1438.889430][T26619]  ? __pfx_lookup_open.isra.0+0x10/0x10
[ 1438.889492][T26619]  ? find_held_lock+0x2b/0x80
[ 1438.889536][T26619]  ? __pfx_down_write+0x10/0x10
[ 1438.889591][T26619]  path_openat+0x893/0x2cb0
[ 1438.889640][T26619]  ? __pfx_path_openat+0x10/0x10
[ 1438.889687][T26619]  do_filp_open+0x20b/0x470
[ 1438.889725][T26619]  ? __pfx_do_filp_open+0x10/0x10
[ 1438.889793][T26619]  ? _raw_spin_unlock+0x28/0x50
[ 1438.889824][T26619]  ? alloc_fd+0x471/0x7d0
[ 1438.889869][T26619]  do_sys_openat2+0x11b/0x1d0
[ 1438.889919][T26619]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1438.889987][T26619]  __x64_sys_open+0x153/0x1e0
[ 1438.890038][T26619]  ? __pfx___x64_sys_open+0x10/0x10
[ 1438.890099][T26619]  ? rcu_is_watching+0x12/0xc0
[ 1438.890140][T26619]  do_syscall_64+0xcd/0xfa0
[ 1438.890180][T26619]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1438.890216][T26619] RIP: 0033:0x7f349b58efc9
[ 1438.890243][T26619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1438.890279][T26619] RSP: 002b:00007f349c36b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1438.890311][T26619] RAX: ffffffffffffffda RBX: 00007f349b7e5fa0 RCX: 00007f349b58efc9
[ 1438.890334][T26619] RDX: e1d2b27bdc14aa98 RSI: 00000000001652c2 RDI: 0000200000000000
[ 1438.890365][T26619] RBP: 00007f349b611f91 R08: 0000000000000000 R09: 0000000000000000
[ 1438.890386][T26619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1438.890406][T26619] R13: 00007f349b7e6038 R14: 00007f349b7e5fa0 R15: 00007ffe49cb6d08
[ 1438.890451][T26619]  </TASK>
[ 1439.698954][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1439.911883][T26625] netlink: zone id is out of range
[ 1442.796288][T26666] netlink: 280 bytes leftover after parsing attributes in process `syz.2.4410'.
[ 1445.601106][T26703] FAULT_INJECTION: forcing a failure.
[ 1445.601106][T26703] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1445.652982][T26703] CPU: 0 UID: 0 PID: 26703 Comm: syz.4.4419 Not tainted syzkaller #0 PREEMPT(full) 
[ 1445.653032][T26703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1445.653053][T26703] Call Trace:
[ 1445.653065][T26703]  <TASK>
[ 1445.653079][T26703]  dump_stack_lvl+0x16c/0x1f0
[ 1445.653123][T26703]  should_fail_ex+0x512/0x640
[ 1445.653181][T26703]  strncpy_from_user+0x3b/0x2e0
[ 1445.653233][T26703]  getname_flags.part.0+0x8f/0x550
[ 1445.653289][T26703]  getname_flags+0x93/0xf0
[ 1445.653322][T26703]  do_sys_openat2+0xb8/0x1d0
[ 1445.653370][T26703]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1445.653434][T26703]  __x64_sys_open+0x153/0x1e0
[ 1445.653484][T26703]  ? __pfx___x64_sys_open+0x10/0x10
[ 1445.653542][T26703]  ? rcu_is_watching+0x12/0xc0
[ 1445.653581][T26703]  do_syscall_64+0xcd/0xfa0
[ 1445.653620][T26703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1445.653653][T26703] RIP: 0033:0x7feda138efc9
[ 1445.653680][T26703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1445.653715][T26703] RSP: 002b:00007feda21ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1445.653748][T26703] RAX: ffffffffffffffda RBX: 00007feda15e5fa0 RCX: 00007feda138efc9
[ 1445.653771][T26703] RDX: e1d2b27bdc14aa98 RSI: 00000000001652c2 RDI: 0000200000000000
[ 1445.653794][T26703] RBP: 00007feda1411f91 R08: 0000000000000000 R09: 0000000000000000
[ 1445.653815][T26703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1445.653836][T26703] R13: 00007feda15e6038 R14: 00007feda15e5fa0 R15: 00007fff1f1b6468
[ 1445.653881][T26703]  </TASK>
[ 1446.974646][T26723] Invalid ELF header magic: != ELF
[ 1448.132105][T26736] 0x000200000001-0xa29656a63616329 : ""
[ 1448.155004][T26736] mtd: partition "" is out of reach -- disabled
[ 1448.244324][T26736] ftl_cs: FTL header not found.
[ 1448.257416][T26737] ==================================================================
[ 1448.257435][T26737] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0xa03/0xc70
[ 1448.257479][T26737] Read of size 256 at addr ffff888028adbc60 by task syz.5.4426/26737
[ 1448.257500][T26737] 
[ 1448.257511][T26737] CPU: 1 UID: 0 PID: 26737 Comm: syz.5.4426 Not tainted syzkaller #0 PREEMPT(full) 
[ 1448.257539][T26737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1448.257554][T26737] Call Trace:
[ 1448.257562][T26737]  <TASK>
[ 1448.257572][T26737]  dump_stack_lvl+0x116/0x1f0
[ 1448.257599][T26737]  print_report+0xcd/0x630
[ 1448.257631][T26737]  ? __virt_addr_valid+0x81/0x610
[ 1448.257662][T26737]  ? __phys_addr+0xe8/0x180
[ 1448.257699][T26737]  ? fbcon_prepare_logo+0xa03/0xc70
[ 1448.257733][T26737]  kasan_report+0xe0/0x110
[ 1448.257765][T26737]  ? fbcon_prepare_logo+0xa03/0xc70
[ 1448.257804][T26737]  kasan_check_range+0x100/0x1b0
[ 1448.257841][T26737]  __asan_memcpy+0x23/0x60
[ 1448.257866][T26737]  fbcon_prepare_logo+0xa03/0xc70
[ 1448.257907][T26737]  fbcon_init+0xd77/0x1900
[ 1448.257945][T26737]  visual_init+0x320/0x620
[ 1448.257981][T26737]  do_bind_con_driver.isra.0+0x57a/0xbf0
[ 1448.258011][T26737]  store_bind+0x61d/0x760
[ 1448.258035][T26737]  ? sysfs_file_kobj+0xe4/0x290
[ 1448.258062][T26737]  ? __pfx_store_bind+0x10/0x10
[ 1448.258085][T26737]  dev_attr_store+0x58/0x80
[ 1448.258118][T26737]  ? __pfx_dev_attr_store+0x10/0x10
[ 1448.258152][T26737]  sysfs_kf_write+0xf2/0x150
[ 1448.258179][T26737]  kernfs_fop_write_iter+0x3af/0x570
[ 1448.258216][T26737]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1448.258244][T26737]  iter_file_splice_write+0xa24/0x12e0
[ 1448.258278][T26737]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1448.258306][T26737]  ? __pfx_copy_splice_read+0x10/0x10
[ 1448.258353][T26737]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1448.258381][T26737]  direct_splice_actor+0x192/0x6c0
[ 1448.258407][T26737]  splice_direct_to_actor+0x345/0xa30
[ 1448.258431][T26737]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1448.258457][T26737]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1448.258485][T26737]  do_splice_direct+0x174/0x240
[ 1448.258508][T26737]  ? __pfx_do_splice_direct+0x10/0x10
[ 1448.258532][T26737]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1448.258573][T26737]  ? rw_verify_area+0xcf/0x6c0
[ 1448.258596][T26737]  do_sendfile+0xb06/0xe50
[ 1448.258622][T26737]  ? __pfx_do_sendfile+0x10/0x10
[ 1448.258649][T26737]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1448.258682][T26737]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1448.258723][T26737]  __x64_sys_sendfile64+0x1d8/0x220
[ 1448.258756][T26737]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1448.258793][T26737]  do_syscall_64+0xcd/0xfa0
[ 1448.258820][T26737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1448.258846][T26737] RIP: 0033:0x7f349b58efc9
[ 1448.258864][T26737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1448.258889][T26737] RSP: 002b:00007f349c34a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1448.258911][T26737] RAX: ffffffffffffffda RBX: 00007f349b7e6090 RCX: 00007f349b58efc9
[ 1448.258928][T26737] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000006
[ 1448.258942][T26737] RBP: 00007f349b611f91 R08: 0000000000000000 R09: 0000000000000000
[ 1448.258958][T26737] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 1448.258973][T26737] R13: 00007f349b7e6128 R14: 00007f349b7e6090 R15: 00007ffe49cb6d08
[ 1448.258998][T26737]  </TASK>
[ 1448.259006][T26737] 
[ 1448.259013][T26737] Allocated by task 19918:
[ 1448.259025][T26737]  kasan_save_stack+0x33/0x60
[ 1448.259051][T26737]  kasan_save_track+0x14/0x30
[ 1448.259077][T26737]  __kasan_kmalloc+0xaa/0xb0
[ 1448.259102][T26737]  __kmalloc_noprof+0x32f/0x880
[ 1448.259139][T26737]  fib_create_info+0x53f/0x46b0
[ 1448.259173][T26737]  fib_table_insert+0x177/0x1c40
[ 1448.259195][T26737]  fib_magic+0x4d4/0x5c0
[ 1448.259220][T26737]  fib_add_ifaddr+0x4d2/0x580
[ 1448.259249][T26737]  fib_netdev_event+0x38a/0x710
[ 1448.259278][T26737]  notifier_call_chain+0xbc/0x410
[ 1448.259309][T26737]  call_netdevice_notifiers_info+0xbe/0x140
[ 1448.259338][T26737]  __dev_notify_flags+0x12c/0x2e0
[ 1448.259374][T26737]  netif_change_flags+0x108/0x160
[ 1448.259394][T26737]  do_setlink.constprop.0+0xb53/0x4380
[ 1448.259418][T26737]  rtnl_newlink+0x1446/0x2000
[ 1448.259439][T26737]  rtnetlink_rcv_msg+0x95e/0xe90
[ 1448.259461][T26737]  netlink_rcv_skb+0x158/0x420
[ 1448.259484][T26737]  netlink_unicast+0x5aa/0x870
[ 1448.259505][T26737]  netlink_sendmsg+0x8c8/0xdd0
[ 1448.259527][T26737]  __sys_sendto+0x4a3/0x520
[ 1448.259560][T26737]  __x64_sys_sendto+0xe0/0x1c0
[ 1448.259593][T26737]  do_syscall_64+0xcd/0xfa0
[ 1448.259616][T26737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1448.259639][T26737] 
[ 1448.259645][T26737] The buggy address belongs to the object at ffff888028adbc00
[ 1448.259645][T26737]  which belongs to the cache kmalloc-256 of size 256
[ 1448.259664][T26737] The buggy address is located 96 bytes inside of
[ 1448.259664][T26737]  allocated 248-byte region [ffff888028adbc00, ffff888028adbcf8)
[ 1448.259695][T26737] 
[ 1448.259701][T26737] The buggy address belongs to the physical page:
[ 1448.259717][T26737] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x28ada
[ 1448.259739][T26737] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1448.259758][T26737] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1448.259785][T26737] page_type: f5(slab)
[ 1448.259814][T26737] raw: 00fff00000000040 ffff88813ffa6b40 ffffea0001d11d00 dead000000000005
[ 1448.259845][T26737] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[ 1448.259876][T26737] head: 00fff00000000040 ffff88813ffa6b40 ffffea0001d11d00 dead000000000005
[ 1448.259904][T26737] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[ 1448.259934][T26737] head: 00fff00000000001 ffffea0000a2b681 00000000ffffffff 00000000ffffffff
[ 1448.259963][T26737] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[ 1448.259983][T26737] page dumped because: kasan: bad access detected
[ 1448.260004][T26737] page_owner tracks the page as allocated
[ 1448.260015][T26737] page last allocated via order 1, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 13, tgid 13 (kworker/u8:1), ts 19571733858, free_ts 0
[ 1448.260124][T26737]  post_alloc_hook+0x1c0/0x230
[ 1448.260165][T26737]  get_page_from_freelist+0x10a3/0x3a30
[ 1448.260187][T26737]  __alloc_frozen_pages_noprof+0x25f/0x2470
[ 1448.260224][T26737]  new_slab+0xa5/0x360
[ 1448.260259][T26737]  ___slab_alloc+0xdae/0x1a60
[ 1448.260294][T26737]  __slab_alloc.constprop.0+0x63/0x110
[ 1448.260331][T26737]  __kmalloc_cache_node_noprof+0x453/0x7a0
[ 1448.260358][T26737]  blk_mq_init_tags+0x87/0x320
[ 1448.260388][T26737]  blk_mq_alloc_map_and_rqs+0x222/0xeb0
[ 1448.260415][T26737]  blk_mq_alloc_sched_tags+0x1de/0x350
[ 1448.260437][T26737]  elevator_change+0x476/0x5d0
[ 1448.260471][T26737]  elevator_set_default+0x2e9/0x380
[ 1448.260507][T26737]  blk_register_queue+0x384/0x4e0
[ 1448.260539][T26737]  __add_disk+0x74a/0xf00
[ 1448.260565][T26737]  add_disk_fwnode+0x13f/0x5d0
[ 1448.260592][T26737]  sd_probe+0xa86/0x1000
[ 1448.260617][T26737] page_owner free stack trace missing
[ 1448.260626][T26737] 
[ 1448.260631][T26737] Memory state around the buggy address:
[ 1448.260643][T26737]  ffff888028adbb80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1448.260661][T26737]  ffff888028adbc00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1448.260678][T26737] >ffff888028adbc80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc
[ 1448.260709][T26737]                                                                 ^
[ 1448.260724][T26737]  ffff888028adbd00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1448.260742][T26737]  ffff888028adbd80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1448.260756][T26737] ==================================================================
[ 1448.292938][T26737] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1448.292960][T26737] CPU: 1 UID: 0 PID: 26737 Comm: syz.5.4426 Not tainted syzkaller #0 PREEMPT(full) 
[ 1448.292989][T26737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1448.293005][T26737] Call Trace:
[ 1448.293013][T26737]  <TASK>
[ 1448.293023][T26737]  dump_stack_lvl+0x3d/0x1f0
[ 1448.293054][T26737]  vpanic+0x640/0x6f0
[ 1448.293090][T26737]  panic+0xca/0xd0
[ 1448.293130][T26737]  ? __pfx_panic+0x10/0x10
[ 1448.293174][T26737]  ? fbcon_prepare_logo+0xa03/0xc70
[ 1448.293221][T26737]  ? preempt_schedule_common+0x44/0xc0
[ 1448.293258][T26737]  ? preempt_schedule_thunk+0x16/0x30
[ 1448.293308][T26737]  check_panic_on_warn+0xab/0xb0
[ 1448.293357][T26737]  end_report+0x107/0x170
[ 1448.293401][T26737]  kasan_report+0xee/0x110
[ 1448.293446][T26737]  ? fbcon_prepare_logo+0xa03/0xc70
[ 1448.293501][T26737]  kasan_check_range+0x100/0x1b0
[ 1448.293546][T26737]  __asan_memcpy+0x23/0x60
[ 1448.293571][T26737]  fbcon_prepare_logo+0xa03/0xc70
[ 1448.293612][T26737]  fbcon_init+0xd77/0x1900
[ 1448.293649][T26737]  visual_init+0x320/0x620
[ 1448.293693][T26737]  do_bind_con_driver.isra.0+0x57a/0xbf0
[ 1448.293723][T26737]  store_bind+0x61d/0x760
[ 1448.293748][T26737]  ? sysfs_file_kobj+0xe4/0x290
[ 1448.293775][T26737]  ? __pfx_store_bind+0x10/0x10
[ 1448.293798][T26737]  dev_attr_store+0x58/0x80
[ 1448.293832][T26737]  ? __pfx_dev_attr_store+0x10/0x10
[ 1448.293867][T26737]  sysfs_kf_write+0xf2/0x150
[ 1448.293894][T26737]  kernfs_fop_write_iter+0x3af/0x570
[ 1448.293932][T26737]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1448.293959][T26737]  iter_file_splice_write+0xa24/0x12e0
[ 1448.293994][T26737]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1448.294022][T26737]  ? __pfx_copy_splice_read+0x10/0x10
[ 1448.294069][T26737]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1448.294096][T26737]  direct_splice_actor+0x192/0x6c0
[ 1448.294121][T26737]  splice_direct_to_actor+0x345/0xa30
[ 1448.294150][T26737]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1448.294181][T26737]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1448.294218][T26737]  do_splice_direct+0x174/0x240
[ 1448.294251][T26737]  ? __pfx_do_splice_direct+0x10/0x10
[ 1448.294283][T26737]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1448.294340][T26737]  ? rw_verify_area+0xcf/0x6c0
[ 1448.294372][T26737]  do_sendfile+0xb06/0xe50
[ 1448.294408][T26737]  ? __pfx_do_sendfile+0x10/0x10
[ 1448.294444][T26737]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1448.294490][T26737]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1448.294651][T26737]  __x64_sys_sendfile64+0x1d8/0x220
[ 1448.294686][T26737]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1448.294723][T26737]  do_syscall_64+0xcd/0xfa0
[ 1448.294751][T26737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1448.294777][T26737] RIP: 0033:0x7f349b58efc9
[ 1448.294797][T26737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1448.294821][T26737] RSP: 002b:00007f349c34a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1448.294844][T26737] RAX: ffffffffffffffda RBX: 00007f349b7e6090 RCX: 00007f349b58efc9
[ 1448.294861][T26737] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000006
[ 1448.294877][T26737] RBP: 00007f349b611f91 R08: 0000000000000000 R09: 0000000000000000
[ 1448.294892][T26737] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 1448.294922][T26737] R13: 00007f349b7e6128 R14: 00007f349b7e6090 R15: 00007ffe49cb6d08
[ 1448.294947][T26737]  </TASK>
[ 1448.295431][T26737] Kernel Offset: disabled