last executing test programs:

7.845899862s ago: executing program 3 (id=2828):
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
r0 = socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r1=>0x0})
sendto$auto(0x3, 0x0, 0x13, 0xfffffff9, &(0x7f0000000440)=@xdp={0x2c, 0xdd86, r1, 0x10}, 0x22)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x200, 0x1)
fanotify_mark$auto(0x0, 0x305, 0x8009, 0xffffffffffffffff, 0x0)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)
write$auto(r2, &(0x7f0000000200)='\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 0xa3d9)

7.367283568s ago: executing program 3 (id=2829):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x5, 0x3, 0x17, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0x203, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
ioprio_set$auto(0x2, 0x0, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010026bd7020f8dbdf250100000008000200", @ANYRES32=0x4, @ANYBLOB="080001004866520008000200", @ANYRES32=0x9, @ANYBLOB="0800070005ee02c8424152b0a24baf54bd980f000010"], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x80)
r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01009b64c23ef155546b0104000008000900", @ANYBLOB="080005000600000008000200", @ANYRES32=0x0, @ANYBLOB="0c00010069"], 0x8d}, 0x1, 0x0, 0x0, 0x10}, 0x2000000)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r4, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80)
r5 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$auto_VHOST_SET_FEATURES(r5, 0x4008af00, &(0x7f0000000000)=0x200000000)
read$auto(r5, 0x0, 0x3ff)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000200), 0x200, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/amidi2\x00', 0x200001, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r6 = openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x7c582, 0x0)
close_range$auto(r6, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

7.117776674s ago: executing program 0 (id=2831):
ioctl$auto(0xffffffffffffffff, 0x6, 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000600)='/dev/snd/controlC1\x00', 0x82200, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, 0x0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x15, 0x5, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop8\x00', 0x20041, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0xa0681, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0)
setsockopt$auto_SO_PREFER_BUSY_POLL(r0, 0xfffffff2, 0x45, &(0x7f0000000040)='MJC802154_HWSIM\x00\xcb\x0fX\xc7\xfdx!\xf7\xb5T\x04\xad\x96\xf4\xbc\xca\xa52UWT1\a\x00\x00\x00\x00\x00\x007\xc9\xa6\x8a', 0x7fffffff)
read$auto(r2, &(0x7f0000000080)='MJC802154_HWSIM\x00\xcb\x0fX\xc7\xfdx!\xf7\xb5T\x04\xad\x96\xf4\xbc\xca\xa52UWT1\a\x00\x00\x00\x00\x00\x007\xc9\xa6\x8a', 0x1060)
r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
ioctl$auto_UI_DEV_SETUP(r3, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})
ioctl$auto_UI_DEV_CREATE(r3, 0x5501, 0x0)
writev$auto(r3, &(0x7f0000000340)={0x0, 0x18}, 0x8)
ioctl$auto_UI_SET_FFBIT(r3, 0x4004556b, &(0x7f0000000140)=0xc0000)
read$auto_snapshot_fops_user(0xffffffffffffffff, &(0x7f0000000380)=""/218, 0xda)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000600), 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x6)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000001c0), r2)
socket(0xa, 0x1, 0x100)
ioctl$auto_BLKFINISHZONE(0xffffffffffffffff, 0x40101288, &(0x7f0000000280)={0x0, 0x6})
prctl$auto_PR_RISCV_V_GET_CONTROL(0x46, 0x3, 0x81, 0x7, 0x1ff)
keyctl$auto(0x8, 0xfffffffffffffffd, 0xffffffffffffffff, 0x5092, 0x2)

7.057056947s ago: executing program 2 (id=2832):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptys5\x00', 0x0, 0x0)
ioctl$auto_TIOCGPGRP2(r0, 0x540f, &(0x7f0000000080))
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0xb9f, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf25030000000400080010"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000200bd7000fedbdf250200000800130001"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
madvise$auto(0x0, 0x8, 0xe)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

6.492928827s ago: executing program 2 (id=2833):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="04"], 0x14}, 0x1, 0x0, 0x0, 0x48891}, 0x20)
setsockopt$auto(0x3, 0x1, 0x19, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
rt_sigsuspend$auto(0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto_EVIOCGMASK(r3, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x105})
ioctl$auto(0x3, 0x80004509, 0x10000000000402)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', <r4=>0x0})
sendmsg$auto_NET_SHAPER_CMD_GROUP(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000200)={0x38, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_HANDLE={0xc, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x1}]}, @NET_SHAPER_A_LEAVES={0x10, 0xa, 0x0, 0x1, [@NET_SHAPER_A_HANDLE={0xc, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x2}]}]}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r4}]}, 0x38}, 0x1, 0x0, 0x0, 0x44000}, 0x14)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000380), r5)
sendmsg$auto_MACSEC_CMD_UPD_OFFLOAD(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000640)={0x24, r6, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@MACSEC_ATTR_OFFLOAD={0x8, 0x9, 0x0, 0x1, [@typed={0x4, 0x1}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40400c1}, 0x40080)

6.439728103s ago: executing program 1 (id=2834):
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/ext4/sda1/mb_groups\x00', 0x109180, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2, 0x80000000df, 0x14, 0x401, 0x8000)
r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x147)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(r1, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x4}, 0x1000000000028, 0x0, 0x1, 0x3e0}, 0x800}, 0x4, 0x4008)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r3 = socket(0x23, 0x80805, 0x0)
ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x37, 0xa, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x7, 0x3, 0x800, 0x80000023, 0x200000000000007, 0x6d42, 0xc, 0x2495dae0, 0x6]}, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x16240, 0x0)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000600)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\x00\x00/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a(\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8L\x84j\x8c\xec\xdf\x1a\xbd\xc5\x94\xb9\xb7\xd5\xa4\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12\x16\xb8*\xa9\xc9\xe81\x9d\x06\xbbC\x17\xbb\xe6|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x874\xab?\xc8\x82\xe5\x8f\xb7\x91\xc2\xbe\xb2\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5')
listen$auto(0x3, 0x81)
write$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000040)="20ed20d1027e0dc0023af10e9bfa1babfa3a3753ca9a20370a", 0x19)
pread64$auto(r0, 0x0, 0x9, 0x3)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000001100)={0x102c, 0x0, 0x102, 0x70bd27, 0x25dfdbfb, {}, [@HWSIM_ATTR_FRAME={0x4e, 0x3, "8f09d48c4dd80c13f12479c4717daf7f4358fdc6e94e9610cbb2a1eaeb89321162b7667f24bd3c9f97a8eb3dd8526930b815dde722b85dfa622071c0f2c8e7e86dea93dd50a0b29ad9dd"}, @HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x5}, @HWSIM_ATTR_PMSR_SUPPORT={0x120, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x5c, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x101}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x80}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}]}]}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x8}, @NL80211_PMSR_ATTR_TYPE_CAPA={0xa4, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x780b}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x6}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x587f}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x200000}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xffff}]}]}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x2}, @NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}, @NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}]}, @HWSIM_ATTR_TX_INFO_FLAGS={0x100, 0x15, "d8a96834e428085e383e0279bafe47749812a1ad22ad56c4206157c6047cd047a281f3391fa51044724fbd70648b3276748774d9eda843ab3b5ea370b7c716ec4d2b9485703ac97658bc609456d6abf73fa304bce9ddbacea2f0cc640697ad0afaf7ba016695fa29b9f52a8838b69edd9538e57d39100067ca4c6965292ff8d2a9147c6f5d1dc44c3af7ffb1f3a4788b635c4d6c530b5a884335f1e106924b0fcdb49a2f804604eca088fbc9809aa3323d8ced0843ab5bd0f4e4e799d1ffdc70a38fd99657ec7f8152407d17d9c84de739bec089c057b7a4be6b57033097abe40c1e2eaf4e33f3967055d3ed7af05dc8744f9cf855306198f499eb44"}, @HWSIM_ATTR_PMSR_RESULT={0xd88, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x8c0, 0x5, 0x0, 0x1, [{0x94, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0x60, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x3ff}, @NL80211_PMSR_RESP_ATTR_DATA={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x79}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0xc, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0xfb}]}]}]}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x9}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x1}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x2f, 0x1, "69e0479eefbe3dc56ac99bbd7c4dc2ea6c22e1a539a75aad878bb76e210f33eed9f55323a7bda5a918aa91"}]}, {0x2c4, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x8b, 0x1, "1d1435625532023a18e89f20b30836a2d111192e5792a9e4fd73c510cf514b9c9c467cdaffd1636920e206b74f79a1a11bec810103a0802f2c7b943c76174b28b096b59d10c4b28ac0491bdfba8191346d72e1354ab8987a23a5ea3645fa25f6946f8178742e8cbc29c3b5ab5fe63a916730eeb850476590d1c49d4db4324b2df22f0fdba54c5e"}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa1, 0x1, "b57215d3858c1dfd892e8b5b17d311bb5d94a3751262379fa8ddcac5e4896a49649a27a7ee035f213ccfe834423dce8474b1d31e845d67352fdef11855e4119d18164a28a6bc4a614116be34b32dd88c8d9d631020958b6f466c051fcfb5248cc7f2eaacf6171deb16eae49697a8c7c79d96cee31c4819d072a885c44e9a4f9f35ee95e0d975c9b92cddfa79bbec5b0991c30445c2dd7d34ef3fb3def5"}, @NL80211_PMSR_PEER_ATTR_RESP={0x138, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x81}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x7}, @NL80211_PMSR_RESP_ATTR_DATA={0xac, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x3ff}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x9448}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0xc, 0x14, '-.[/\xac@(:'}]}, @NL80211_PMSR_TYPE_FTM={0x54, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x9e}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0x1}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0xa, 0x13, '{.[,\xd0*'}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x1c, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0xff}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x10}, @HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0x2}]}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0x1}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x3}]}]}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x5}, @NL80211_PMSR_RESP_ATTR_DATA={0x5c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x1ae}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x24, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0xc}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x40}, @HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0x1}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x5}]}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x2000}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x1}]}]}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0xf}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x58, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x2}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x10}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0xd8}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x3}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x3ff}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x9}]}]}, {0x458, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x53, 0x1, "e30162968aa60b1bb64535497b08822ed641a7a6c448d22cf38d930fc1a53032db5709541096414f735a9a2abb0d8a520e66f9565d692d64cd5dc78ddf63bc14d89ceae92dddb7caaae5b3a5a373d5"}, @NL80211_PMSR_PEER_ATTR_RESP={0x1c0, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x7fff}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x8}, @NL80211_PMSR_RESP_ATTR_DATA={0x17c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x54, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x3}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x2}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x68}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x31}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x86}, @HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0x6}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x4}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x1}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x1}]}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0xff}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0xf8}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x34, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0x5}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0xdb}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5}, @HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0xd7}, @HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0x10}, @HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0x4}]}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x10000}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x7}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0xff}]}, @NL80211_PMSR_TYPE_FTM={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0x27, 0x14, '/dev/audio1\x00\x02\xd6\xa49\'.\xda&\xc2\x01\xb7|\xbb\xaa\xa4\xa5\x12i/(b\x91\xbb'}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0xa, 0x14, '%$\xf3(-,'}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x4d}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0xf0000000}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0xb}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x9}]}]}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x3ff}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0xb}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x3}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0xf93}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x3c, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x2}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x5}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x1}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x2}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x1af02409}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x204, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x8}, @NL80211_PMSR_RESP_ATTR_DATA={0x1c8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x4c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x400}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x24, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x83}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x2}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x6}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x7}]}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x8000}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x120000000000}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0xed7c}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0xc, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0xf9}]}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x54, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0xb}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0xffffffffffffffff}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0x3ff}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x7fffffff}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0xa8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0xf, 0x14, '/dev/ttyS2\x00'}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0xf}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0xb}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x14, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x8}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x3}]}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x3c, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0x8}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x8}, @HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0x5}, @HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0x5}, @HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0x4}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x7a}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x2e}]}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0xcb}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0xe, 0x14, '/dev/nbd1\x00'}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0xffff8000}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x24, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x5}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x2}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x8}, @HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0xb0}]}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0xd0}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x5}]}]}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x3}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x1}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x83}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0xffff0000}]}]}, {0x10c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x17, 0x1, "64ba97c17cda0e155bf857d8f2b7fc9f89f8f2"}, @NL80211_PMSR_PEER_ATTR_ADDR={0xd3, 0x1, "54d2075fdaeb93600a41cd736b4fd242d51df77b2ab951d456cb55f77da57f76e4738c89bf2722c1adc7494f534503b970533436c3bfcebde647ddeff204abff30dcfffec4fe61f91431aec81301625d4f20c7f35ffe1c5b97b20a6e3eb84e969cb956bf7a1680a1db49ddae24ff28758c98be202b9e850ac1ac5efeee1e4b00372a331638509a7fd717fe3d4c50fd1f50e489177905cb25bbc36066acf6b2e898873a37881a154209057d2be741ca78ebff59e7d655fa82f4b774d98ab1f47433c25b41af5d7104447c523cadad01"}, @NL80211_PMSR_PEER_ATTR_RESP={0x1c, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x9}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x9}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x4c4, 0x5, 0x0, 0x1, [{0x4c0, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0x10, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x6}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xe2, 0x1, "8ffcf075b508424f0bd136129b27b64302e4a9d53221144719b47c0d0b22bd78d9d6e0b759af92d7dfe74505429e1a3ad8876e2416355df99b74774652b201713b61e9c46daa77733d67d7132889263f54f2c2f4ef12d549e96e6668e703d5c2366a2274d1a3544ae45f57e70a7da17605c6dd5d2fc0d8f836483f2aa708977edeaf0680d6c22c50378fcd9fa85e5e9b998bd94d1572821bc5f77cd5d7a5ff27176d4080d44887e6ea5601d3d52ed6fc63c23de580b79b662db491476b6fa8fbc3f92b5ae98482e9f2098ad05f456ad3bc127f775c6179b79566388c42be"}, @NL80211_PMSR_PEER_ATTR_RESP={0x10, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0xf5}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x2c0, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x800}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0xf}, @NL80211_PMSR_RESP_ATTR_DATA={0x29c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x88, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x4c, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x8}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x7}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x8}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0xff}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x4}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x9}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x2}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0xe}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0xb}]}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0x1e, 0x13, '\'-+\x00\x10\xa4#\x92`\xdb\xafL\x0f\xfbUV\xa6KH]Cv\xbf\xf2a\v'}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0xd4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x8000000000000000}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0xa4}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0xb}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x80000001}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x1c, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x9}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x7}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x5}]}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0x956}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0xc, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_DCM={0x5}]}]}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x98, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x10}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x3c, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0x3}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x4}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x8}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x1}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x6}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x77}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x68}]}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0xc}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0xb, 0x14, '[$\\-\\#!'}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x8000000000000001}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x46}]}, @NL80211_PMSR_TYPE_FTM={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0xd5}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x40}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0x7, 0x13, ')[*'}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0xc7}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0x64, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0xc, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x5}]}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0xffffffff}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x100}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0xfffffcba}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0xc, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0xf752}]}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0xfff}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0xf, 0x13, '/dev/ttyS2\x00'}]}]}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x56, 0x1, "f0762a6910ff6602bba7c95c8c083eb6ff5576139241b47bee1c915f4a90f437dea5f18c5742a1a26131372afd422b523d281d768b7cbc1e5f66f85548f674ae9ca186360a6be3ee4c2513371cf82b7630d3"}, @NL80211_PMSR_PEER_ATTR_ADDR={0x9d, 0x1, "e8146bc352839772b52112df2d4daf740e0bd16d73dbd16d3c757ca5afacc452eab63ce09225171009fba2ad73b233cc939abddcb3d00eec048ce9eb520b72f7da887e9e4114c1c3288429efb51ab20f25083747b3b80abbd1164e477f149f07575539b75dac3c527f3dfbcca1e65274334093d9f70f92aa05e9d1fbc4b4d6ca211c4d66091223e7abac2236b43b95a54f115fb5763e303471"}]}]}]}, @HWSIM_ATTR_PMSR_SUPPORT={0x14, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8}, @NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}]}, @HWSIM_ATTR_MLO_SUPPORT={0x4}]}, 0x102c}}, 0x0)

6.359242209s ago: executing program 3 (id=2835):
r0 = socket(0x15, 0x5, 0x0)
write$auto(r0, 0x0, 0x8)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/controlC0\x00', 0x222101, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x9, 0x200007, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x103003, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @inferred, 0x0, @_sigev_thread={0x0, 0x0}})
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)

6.046236221s ago: executing program 0 (id=2836):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x222101, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x9, 0x200007, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x103003, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, 0x0, 0x100000002, 0x100000001)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @inferred, 0x0, @_sigev_thread={0x0, 0x0}})
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_timedsend$auto(0xffffffffffffffff, 0x0, 0x2, 0x9, 0x0)

5.005944677s ago: executing program 2 (id=2837):
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x15, 0x5, 0x0)
close_range$auto(r0, r0, 0x0)
clock_settime$auto(0x14, &(0x7f0000000000)={0x9, 0x20000000000004})
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
getcwd$auto(0x0, 0x7)
r1 = socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x15, 0x800009, 0x404, 0x18, 0xffffffffffffffff, 0x3)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x80, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001080)='/proc/sys/kernel/random/boot_id\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0xf3, 0x4, 0x8000000000000000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyp6\x00', 0xa0102, 0x0)
read$auto(r2, 0x0, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
timer_create$auto(0x9, 0x0, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r3, 0x4b47, 0x1)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x4d, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0x400c804)
socket(0xa, 0x5, 0x84)

4.177109087s ago: executing program 3 (id=2838):
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/ext4/sda1/mb_groups\x00', 0x109180, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2, 0x80000000df, 0x14, 0x401, 0x8000)
r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x147)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(r1, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x4}, 0x1000000000028, 0x0, 0x1, 0x3e0}, 0x800}, 0x4, 0x4008)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r3 = socket(0x23, 0x80805, 0x0)
ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x37, 0xa, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x7, 0x3, 0x800, 0x80000023, 0x200000000000007, 0x6d42, 0xc, 0x2495dae0, 0x6]}, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x16240, 0x0)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000600)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\x00\x00/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a(\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8L\x84j\x8c\xec\xdf\x1a\xbd\xc5\x94\xb9\xb7\xd5\xa4\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12\x16\xb8*\xa9\xc9\xe81\x9d\x06\xbbC\x17\xbb\xe6|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x874\xab?\xc8\x82\xe5\x8f\xb7\x91\xc2\xbe\xb2\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5')
listen$auto(0x3, 0x81)
write$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000040)="20ed20d1027e0dc0023af10e9bfa1babfa3a3753ca9a20370a", 0x19)
pread64$auto(r0, 0x0, 0x9, 0x3)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000001100)={0x102c, 0x0, 0x102, 0x70bd27, 0x25dfdbfb, {}, [@HWSIM_ATTR_FRAME={0x4e, 0x3, "8f09d48c4dd80c13f12479c4717daf7f4358fdc6e94e9610cbb2a1eaeb89321162b7667f24bd3c9f97a8eb3dd8526930b815dde722b85dfa622071c0f2c8e7e86dea93dd50a0b29ad9dd"}, @HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x5}, @HWSIM_ATTR_PMSR_SUPPORT={0x120, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x5c, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x101}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x80}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}]}]}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x8}, @NL80211_PMSR_ATTR_TYPE_CAPA={0xa4, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x780b}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x6}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x587f}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x9}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x200000}, @NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xffff}]}]}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x2}, @NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}, @NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR={0x4}]}, @HWSIM_ATTR_TX_INFO_FLAGS={0x100, 0x15, "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"}, @HWSIM_ATTR_PMSR_RESULT={0xd88, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x8c0, 0x5, 0x0, 0x1, [{0x94, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0x60, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x3ff}, @NL80211_PMSR_RESP_ATTR_DATA={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x79}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0xc, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0xfb}]}]}]}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x9}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x1}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x2f, 0x1, "69e0479eefbe3dc56ac99bbd7c4dc2ea6c22e1a539a75aad878bb76e210f33eed9f55323a7bda5a918aa91"}]}, {0x2c4, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x8b, 0x1, "1d1435625532023a18e89f20b30836a2d111192e5792a9e4fd73c510cf514b9c9c467cdaffd1636920e206b74f79a1a11bec810103a0802f2c7b943c76174b28b096b59d10c4b28ac0491bdfba8191346d72e1354ab8987a23a5ea3645fa25f6946f8178742e8cbc29c3b5ab5fe63a916730eeb850476590d1c49d4db4324b2df22f0fdba54c5e"}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa1, 0x1, "b57215d3858c1dfd892e8b5b17d311bb5d94a3751262379fa8ddcac5e4896a49649a27a7ee035f213ccfe834423dce8474b1d31e845d67352fdef11855e4119d18164a28a6bc4a614116be34b32dd88c8d9d631020958b6f466c051fcfb5248cc7f2eaacf6171deb16eae49697a8c7c79d96cee31c4819d072a885c44e9a4f9f35ee95e0d975c9b92cddfa79bbec5b0991c30445c2dd7d34ef3fb3def5"}, @NL80211_PMSR_PEER_ATTR_RESP={0x138, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x81}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x7}, @NL80211_PMSR_RESP_ATTR_DATA={0xac, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x3ff}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x9448}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0xc, 0x14, '-.[/\xac@(:'}]}, @NL80211_PMSR_TYPE_FTM={0x54, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x9e}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0x1}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0xa, 0x13, '{.[,\xd0*'}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x1c, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0xff}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x10}, @HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0x2}]}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0x1}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x3}]}]}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x5}, @NL80211_PMSR_RESP_ATTR_DATA={0x5c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x1ae}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x3}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x24, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0xc}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x40}, @HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0x1}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x5}]}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x2000}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x1}]}]}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0xf}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x58, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x2}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x10}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0xd8}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x3}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x3ff}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x9}]}]}, {0x458, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x53, 0x1, "e30162968aa60b1bb64535497b08822ed641a7a6c448d22cf38d930fc1a53032db5709541096414f735a9a2abb0d8a520e66f9565d692d64cd5dc78ddf63bc14d89ceae92dddb7caaae5b3a5a373d5"}, @NL80211_PMSR_PEER_ATTR_RESP={0x1c0, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x7fff}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x8}, @NL80211_PMSR_RESP_ATTR_DATA={0x17c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x54, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x3}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x2}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x68}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x31}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x86}, @HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0x6}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x4}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x1}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x1}]}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0xff}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0xf8}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x34, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0x5}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0xdb}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5}, @HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0xd7}, @HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0x10}, @HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0x4}]}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x10000}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x7}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0xff}]}, @NL80211_PMSR_TYPE_FTM={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0x27, 0x14, '/dev/audio1\x00\x02\xd6\xa49\'.\xda&\xc2\x01\xb7|\xbb\xaa\xa4\xa5\x12i/(b\x91\xbb'}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0xa, 0x14, '%$\xf3(-,'}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x4d}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0xf0000000}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0xb}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x9}]}]}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x3ff}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0xb}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x3}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0xf93}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x3c, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x2}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x5}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x1}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x2}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x1af02409}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x204, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x8}, @NL80211_PMSR_RESP_ATTR_DATA={0x1c8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x4c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x400}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x24, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x83}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x2}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x6}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x7}]}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x8000}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x120000000000}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0xed7c}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0xc, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0xf9}]}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x54, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0xb}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0xffffffffffffffff}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0x3ff}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x7fffffff}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0xa8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0xf, 0x14, '/dev/ttyS2\x00'}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0xf}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0xb}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x14, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x8}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x3}]}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x3c, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0x8}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x8}, @HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0x5}, @HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0x5}, @HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0x4}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x7a}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x2e}]}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0xcb}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0xe, 0x14, '/dev/nbd1\x00'}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0xffff8000}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x24, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x5}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x2}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x8}, @HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0xb0}]}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0xd0}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x5}]}]}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x3}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x1}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x83}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0xffff0000}]}]}, {0x10c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x17, 0x1, "64ba97c17cda0e155bf857d8f2b7fc9f89f8f2"}, @NL80211_PMSR_PEER_ATTR_ADDR={0xd3, 0x1, "54d2075fdaeb93600a41cd736b4fd242d51df77b2ab951d456cb55f77da57f76e4738c89bf2722c1adc7494f534503b970533436c3bfcebde647ddeff204abff30dcfffec4fe61f91431aec81301625d4f20c7f35ffe1c5b97b20a6e3eb84e969cb956bf7a1680a1db49ddae24ff28758c98be202b9e850ac1ac5efeee1e4b00372a331638509a7fd717fe3d4c50fd1f50e489177905cb25bbc36066acf6b2e898873a37881a154209057d2be741ca78ebff59e7d655fa82f4b774d98ab1f47433c25b41af5d7104447c523cadad01"}, @NL80211_PMSR_PEER_ATTR_RESP={0x1c, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x9}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x9}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x4c4, 0x5, 0x0, 0x1, [{0x4c0, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0x10, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x6}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xe2, 0x1, "8ffcf075b508424f0bd136129b27b64302e4a9d53221144719b47c0d0b22bd78d9d6e0b759af92d7dfe74505429e1a3ad8876e2416355df99b74774652b201713b61e9c46daa77733d67d7132889263f54f2c2f4ef12d549e96e6668e703d5c2366a2274d1a3544ae45f57e70a7da17605c6dd5d2fc0d8f836483f2aa708977edeaf0680d6c22c50378fcd9fa85e5e9b998bd94d1572821bc5f77cd5d7a5ff27176d4080d44887e6ea5601d3d52ed6fc63c23de580b79b662db491476b6fa8fbc3f92b5ae98482e9f2098ad05f456ad3bc127f775c6179b79566388c42be"}, @NL80211_PMSR_PEER_ATTR_RESP={0x10, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0xf5}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x2c0, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x800}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0xf}, @NL80211_PMSR_RESP_ATTR_DATA={0x29c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x88, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x4c, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x8}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x7}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x8}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0xff}, @HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC={0x5, 0xb, 0x4}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x9}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x2}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0xe}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0xb}]}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0x1e, 0x13, '\'-+\x00\x10\xa4#\x92`\xdb\xafL\x0f\xfbUV\xa6KH]Cv\xbf\xf2a\v'}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0xd4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x8000000000000000}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0xa4}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG={0x8, 0x9, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0xb}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x80000001}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x1c, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x9}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x7}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x5}]}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0x956}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0xc, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_DCM={0x5}]}]}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x98, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x10}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0x3c, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0x3}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x4}, @HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC={0x5, 0x8, 0x8}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x1}, @HWSIM_RATE_INFO_ATTR_MCS={0x5, 0x2, 0x6}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x77}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5, 0xa, 0x68}]}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0xc}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG={0xc, 0x10, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0xb, 0x14, '[$\\-\\#!'}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x8000000000000001}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0x46}]}, @NL80211_PMSR_TYPE_FTM={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0xd5}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x40}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0x7, 0x13, ')[*'}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0xc7}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0x64, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0xc, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x5}]}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0xffffffff}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x100}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0xfffffcba}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0xc, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0xf752}]}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0xfff}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0xf, 0x13, '/dev/ttyS2\x00'}]}]}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x56, 0x1, "f0762a6910ff6602bba7c95c8c083eb6ff5576139241b47bee1c915f4a90f437dea5f18c5742a1a26131372afd422b523d281d768b7cbc1e5f66f85548f674ae9ca186360a6be3ee4c2513371cf82b7630d3"}, @NL80211_PMSR_PEER_ATTR_ADDR={0x9d, 0x1, "e8146bc352839772b52112df2d4daf740e0bd16d73dbd16d3c757ca5afacc452eab63ce09225171009fba2ad73b233cc939abddcb3d00eec048ce9eb520b72f7da887e9e4114c1c3288429efb51ab20f25083747b3b80abbd1164e477f149f07575539b75dac3c527f3dfbcca1e65274334093d9f70f92aa05e9d1fbc4b4d6ca211c4d66091223e7abac2236b43b95a54f115fb5763e303471"}]}]}]}, @HWSIM_ATTR_PMSR_SUPPORT={0x14, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}, @NL80211_PMSR_ATTR_MAX_PEERS={0x8}, @NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}]}, @HWSIM_ATTR_MLO_SUPPORT={0x4}]}, 0x102c}}, 0x0)

4.170474951s ago: executing program 1 (id=2846):
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x20020000)
r0 = socket(0xa, 0x5, 0x0)
r1 = socket(0x2, 0x3, 0x2)
setsockopt$auto(r1, 0x0, 0xc9, 0xfffffffffffffffc, 0x9)
getsockopt$auto(r0, 0x84, 0xe, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
r3 = waitid$auto_P_PGID(0x2, 0xffffffffffffffff, &(0x7f0000001080)={@siginfo_0_0={0xc928, 0x6, 0x3, @_sigsys={&(0x7f0000000080)="280563240468f5d4cb9e940dca245cb81cd9ffcac7cc2fc1b99f572755ae05b0832ba5bdf896eb9059f87b82d32dcbec75bb800888f695aa7b6ae7b5afc6077dec6cdf8454c559d3d413eb5db0ad03a83407d9ec1c8bf34bf5addb26b49d7a570ea2601c4c115f20a432204c4fb594874a660362dff6597006209997ef28a0fea0c5b138b905ea90e65e2df69422acf3878e8993c2865c027e0afdd3514fd3a64babc9d9dfbef0f9a27f02a8f29d23e687345167de0db81eacb52e6581a3546121dfd4ef85e3f06ff1b66e9fa619568b2a30bf182aa0d4a4219fc59e736bff2ebed47871ca96048ca7270b959b9b20adf199955d63cc1123bb6fe52f66c3f566672263823f42ea42d9825fb178d07f3e986e170cfab4329c4451ee7bbc835f7db0d557958ced221f4dd1283db805aa9dc7fe1e778c48c148f9853af144086a8de85273557073429d326c0872063668622d3aad9a6b00bb38a35656b819bd5ab28af8118a3d7aff9e1397f418391a1ffd19a47ce2b0cc1bf523fc4f745acd4f5c35818117f359edc1a24dfac6cd49fe97b2b79c80a63351f7fba0fbbe54410fcb16e62ea861fc46596ac1a82f2e6fbebe2ff86194e6d5ac73aa6179f09123c91f981f22e7d4d9cccead9c5d4d889a1cbc9d09c6a1331042d1d17dab74d7dacd8af0e495332f2de82700c14242451f71f56528a98171deb18d4238790583b7b18211bb0ac1bfc112aa294c33b80e8bee43f2cb08745e50385fad183817308a14b92e5d46ab1efebbfd0afbd7996e340e5d21a6ec5cfaa487cef3fd47b37971ee26e70a41cedea8b30083d6da1859b41248a360dda66c6846d819530f696866fc9067915fb10261d587d7386420dd7575768c89c3d8576d3cb83e6bbf4ac63ecba228bf6274789b5d75ed9f7f22a125bac517b5890a0d8903682c8a02a98dd5c7ea03923cf146ff06260be7fdac6c58ea44d3efd34a3454473b0746e75dcda9c6cc618f14aea545f550a5cbaec9a625ab14859c8202de2e4ad3ef46344d762998bd824f417fa71ea12830fe733f9784cd5419797757b98c2f6631fd95949219c5bda02f01893f62d8540c44e06ca2a79e39b76323e8ce78dfbf6057b2b55b63ed1023c6ba8e574fc029161cb7de3086163ee9ee76704bf3a3dc9dd0994b046e62cc329917b7f3ff312ef6ff92e24e9a1fe0bf7d68a59bf0cb6f6f690541db4e1b7a6a06e21ce956ab205a78058739e8a495ff7f9d596635fd19d9c6b420a33df2264ce31e50c67a8d898a67a8784f70dc93a14737eebd39e456fa2891c32b0cb2a3178b0bfa7d502635d434fc08e0f537f425b02da8f10238a97d619f1769c60a743de47a11c433f25bd3fc5e2178eca6e071dd71c57ac13b194df53f0896f581e09506b3755bcbefec20e90d019675c14b751ed0e7b2f9159dc82cbdc881a74fe43b4721d953ffe69a27da2dc40350d7f4b502c3e75eecd583b58534728f6cc63758da4bf7c29a468d5cbea53b4f781f8b19e968ee9f992091a7c1918fb8fe1006237f21a69e341aa39ee012df6a7663c8f5dc1b8995a48c73676f04159a001d319bc93e2866ae9bf5bba32114cdca920d46727a406d21b65939939035124da2d2f3452bbb5721320714b05f2254b19b13cc384019f44d488186d11a22e93e97c49de2151597703a682dd440eb783e545603f5327762c4283f89e49d656fdc869f8584622f0ac68910e1e1817d8cdf3d96fd00bdd17f00eb31c793462460438ecfa0d352ea61d83628b9cc18e12e51ba99951f11c1ff5f341b7622929ad75d60c4deb20f16e7b8202184c6d829206beb23d30f92552d9b3aede10f38fa6dca1c3884cab0692d543c7a4e644fdb973b804bd3dadd29250c6e35d4900b1b65e835a2da5a68100c40c2508f1a0128138653297f9ad6da32ce9a4ca13374a5f8303303f7f7655aeb6df899b747dca7bc393ad494beb20da0466dfb4c6e587c77badab6d40000d28f2d4bcc75f171c1bc288c8cc069b677affbfdd0d8aefb6490b77ecdade4ef3319257c3e8019b469bc091e56420687b10662e0a9d133161c3993b9bf5ce5121bce0ee483b88e6cd64e1372851f22ddc86407e062d6950225ba7f05897a1c50834b0c8a75986f0b96953cd62f16d7c20f24462f30504b9043eee0f4d224a0198e122595094f732b73900f5185750b5a01191f629d8224dd41f02bdf28074d20568820f70ee93f31b0e613ab8d16f68f2b2a686e8a6f8e6ce6d0191b1552875039f415f98e1fe192a1912634abc0aa421b0922de8a7d4de382d0636b8e71a1732ada1968c226cef877f5d025e906bbdfc446c0f0ae1eecb96b13837192afe0b674a8e7d3c9b9f1a9a7f49746f4a03defa06bafbff28e07802abfcc2faf0be20f54abc99e9cb0eb8d66dbf37f73a9c86d85d7a599e3ae852e4f6ad93bba1f812eee5fa1589c4cf247e3e7cca1ff31d725803d85671d1649c37e24f0e665cb4bde35e9970ff51335b856d75593d2c2bb3645d1938d1047b292f5d42c0174122ced59805eae5c05913608824337f7c757187c523b651eededd89a5016aed70ad73b64c8a230447f04a169202dc2dd29c51f9f577452bea1306491f475e34b6169e0f1036191275687709a378bb2b13463494f98293070b0b27b69fff1ea125dd0c129d42a436351557603edbb863e9d03f6a1c5150749d25fc965421209a9b3b6240c19833a3f126dc751a693ce456d8c09dc80161da759c50d0e902a39204f094dfbe12d004f0d8f3094b112f6ae49e2bc4222461540d0249086960ef7776b0f2358f3d03f512b8a2ceb88a4aed078d18ecf34cd9da40aa46fbf9ec283750032a9b4ad8951dd0e880a7fa7b07ca6cf81c28d30e768e7a30f9a480e552340b6b2ee4f6b4dd20e29fb1b4efef283437a99ddf3bc60077f8f1bad709c3b0294dcda73e78a37be1ead5ac427adc29ccefae79fa06ca80506da812a5ce926b73cfa7a486aace1eaea2dacc6facecaa5f923237904373291e273e6cb5e7b2b5dd7524ef25b752d3280e3db250b7851775f1eb8d1da4937c7c5872e96662ecde48e8cbe5a7fc2bd23f189040faf79eda0209f43e14e75870daacd7f53986ac2a821ccbec5fef279a43c88ec679e34c4d5facb9124571dbfb87d9cf01100f71ca1684fbd0c975c8b093c0ec89c8656bbf8fd324ad36a18e47e5d3de4f63f6ff9365db02f4537b607965796b44c6456e4b623b2efd215646c7ce0e48fb2c94cd6608888ded56e57cf8318d23175753c8dc9cd092438c6f504318193584a85283aaca2c5a9873d9514fc5472d7ff953d3d3a336b015ab06cf254d56771d8e91793286819d81d89387c9d193c92d801b27cf87af730bf19fe39f2319cc0a19a26d03fb725107cf963e58f9774aaef4da1b323252f6aca4497db4c206ebc76752227298137591c997d797b47ca2998b794f1aa0d53ab5eb2f4147bc421ed9503255c3901898034e4af07af64323d198b241d73dd85160d5e2723ea55ee045566901fd632ca8dbbf981612209d312f4ffbb7e5b3e6c465fd2ac63d5dc9cd72ddf985f65abb45656ecee532390cb05369dd23e3ea4e9b90cc64dd4aff01ca3c2dc8e9005052cffeab34365bb8970152464dc4385aa6a4521f8b46c0f533d63b70c84340534dc2c7d2b9634555c0cc044d329d60a25745378bc0b32b907f9e1969d57c0b33a6615b6083abed0635d71f08099943af7e9dc664e70a0634128d6dbe657d5bcaf2de67f2a66d1481c2cb80ea08da914ba500304395a6a651fb3221a8c88a447ffffa252557c55f9f97a32e32338bef52369d7fa8941838056c8f48681dd4c2ea4879b160a94deffa971e8e764ceca565c2403856c1741e9224bfd9c95b681f5c52b7772838c5aa3cd31140fcdb8077ff5eb9c6805304926aa386a7923cc9f0de7fdc6c6228fd0545ee0ab87a7cc387f05ef95a5cc74fbfef10f1f9ea1607b5f0b62afb8fe40f21038dc8342f7a0648ad09751570873fbe3587a81151c817dacd46877dd7d83bea91e1bdae90dc87c32377fb097960f1592934003ffb3cc6033ba55ba8a2fc4a2894fbb4545ec810de4662a382a1b75b69fb4f3103b3d56fa1dc3d6bf4abd1ef4b836729d4c187421a2c6d465ac752f9753dc74773d36da394cd963d840994d57bfd7f6b2b758c9c3d8b2015a53bf48d02b616a531bfbb760270ffb86603205df9cbce8a1f538fed6c626d546b5144486109b6912820e340e817b6da1fde852a6d95dcd3a4b3e48daa72430f6bc095ed87a1289a78931f5e188b64e0735e57fac90f0d4d1210e1476ad60935b79ba370a95764b76afac03053a0985247a55d32360312f29aac2bed359e4226f0ddf212a47ff3c32ead2167797555d524ad8699605b66a6e81d19adcbc181bc74989e1589a45f649b9816d2d28e68ed59d85ea33a55d9977a1d2f10b041d746180d8037392a6f37e22d47d8613106614ec6d8131400fca17741781dca48809f8b8ff2a2d48f69a2aaad04d79567ff3519043a985f45f9cb94a670ce45fc02cdc944ccc065fb8b98c4f0e187dfd3ec8b8628d7d183488d25bd3b58ff25810eb61d5d1d26920c593c4874d0dba85f30c55711ce68ca33d5377b20fb848c8d27e71db5753b7c68c80e7c6d3e28fd9a6c6834c385f58d2f5446dcbc1f0ea04f18d48917769ff0259e55a53ff5a421b34fca9660d9836b4065e33da7e7759625e0d0b909196bd46ab2fcbbf6144b399855c94f3993ac5f878134b00a3d9966c82f2c5577b2190403e21e4914d71a7c4b9dee1ead95a36b67bf17df085baed32177c34a21181e824b57d3818014e511767cc2d60c1ca13ab6f2a3676c2390857aa62bd1c60696489ba90df33f6952db10cffe6763bbdd34c64d08338724d80b1d52f8ae7a0583b1934639c6c17c8409fb47bb70b58ee56561afefe79d11cfde32777f2d3d7431ccd28990e992aafacb62ed0361ef3c58ba09363dfddfc6eaf815959b9caa1b4396817b491ae8c4905212caabf0b28af128fbc3e37409097ba42db01194294098ab93c486068822217fa0078ee7b965706bcebfada9251d52168f17bb1beaa94a8d21d18e1420f8df8d5cf000af3e2386f1b13e67a0a083bebd7c97c189d5171b4d7821f9d7df585624dbb8a27abd727b281140f43f2a6c41e085715579b22e4efad02f1a12af48bf4f7b83bf6897535e11954df28fbd6d5a73639d7da0d81ec1113e8a215088d39d05db5fcad9586f66f1bf32812b0ced25145ccd449705794571942ad8905a59f756640aacd0fd1d3fe99b3ac046e5e23cd5e1415fc8f0ecc81fd499920d3f6582f0d493c64605408832c973f0e251a065434bf27883549210e813abd0db02a76c42f74abe9fd7427a89905d1fff9bb71a8c64e083f0bd72f0ecb48498e46590d94f90a9363a6c0ac3d128c981c16f7757a28e5624ebf4d0078cb50b08228a00c5b157446edcda43737e62695cbf1fa5855ca5440db62479afefc9bfbad4eec9815929e4dc850fda944aa1cefeb5e6ee08954da031b9f15d72a0b666f62424ce8e05204017b65345998f50c36cc1fa24eed5304c3cc8720337c8d491f9f89408a6e2c92cdca734747e48a2634a2b8e223a6534f7b5428b71636ad3cd7ba5f2176960b24adbf22ca8e4ad30bc09d0fc093d28de2744ddf90b9f8b416ebc406bcaf3a342a4175bd592278f0277f0fe30cfeafda700659c4cab9923ebc767304bb48b76034a69dc4f21c6d7252bdf57ffdaa28995efe928955af40ddfca13d16c1fb115c41", 0x8, 0x6}}}, 0x7, &(0x7f0000001100)={{0x4, 0x2}, {0x8, 0x7}, 0xeaaf, 0x10000, 0xee82, 0x8001, 0x4a, 0x0, 0x900, 0x5, 0x9, 0x9, 0x8, 0x0, 0x10000, 0x7})
r4 = openat$auto_force_suspend_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000011c0)='/sys/kernel/debug/bluetooth/hci5/force_suspend\x00', 0x801, 0x0)
sendmsg$auto_TIPC_NL_NET_SET(r0, &(0x7f0000001740)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001700)={&(0x7f0000001200)={0x4f4, r2, 0x8, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_UNSPEC={0x45, 0x0, "58521165192364f61b2994415ed21a752e68e431004dc9e9a6a2df01b21234579b0b19d4fc896cff1e97f40c604d74a7a5e8fed71b4dbbf317563a51eeaeb53ef8"}, @TIPC_NLA_MON={0x46c, 0x9, 0x0, 0x1, [@nested={0xc, 0x7a, 0x0, 0x1, [@typed={0x8, 0xbd, 0x0, 0x0, @u32=0x80000000}]}, @nested={0x35b, 0x99, 0x0, 0x1, [@generic="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", @generic, @typed={0x8, 0xdd, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="a732150658dbe0fd977f64038c00c402977d6a03576c9bd3e2b207898b38cb8e792dfff277f93c4c18f98f0ae77c20fbc4e10786b56d97c92e4f176488f623a924eac243d8a26de57f27d11d5619b0c3c687977bbcfecf238f11cc78cfef79591da7136665321ec5f40ed0aa638c44faf5dcacb7690ce591296e9bbe8e6700389eea3891cb3703a0d18f89c5e7271ca9ce8eddbfce898bf74d5ba9f2fff15484b9eb8ccb0391b302d843515cead46ea3c3b13c8fbc86ce25c0bc44e88037fe33835f89e84083d5c209f6047e70c053e0473c29effd4093288c1345c09506a1c4d15de7a22038c7d3ed3dd5b011", @generic="692e5600c847fe5a0bc9d2c382fe5c87cf567355e5245d015629397fb12cc7be954c1b14dd73299bf1aed59f547bae7a418fe8497498b2c36c0d3e86aab4d5c2ad0f28d5bfc48b8757a0ac6f2b1d06be1ade6345f48f850e71f24b01a8e3271d1557104f61782ab6d8be6fdcf3d2d16de204308402b66ed599d12416752b6d7ef6", @generic="0680a3131ca4fa47e8b68d7c6c241235b072e4166a1e3a9fb7d76f9647522ab5af6f8d55c7aa561d6a51caf15fec75470a09a647097de5275d7550d338a605877ecb699f1c74bfd35a24d85c1345fe36b8a132aed22cfa45b5916e0bb5f0e587f64d17a1a335ca70d2ed9e6ce156c0661c28d5bdd0753cf591498b9fd2145efa410360f061d779e5", @generic="520cc29f1ad457e6eec10cb633d6d47bb4919f740d7c36e52511e4f3081d4b1a211caa085030aa5211e58ef65d444c0ab30fd24a06ede390d46f89ded24512a8d5b0caa66f8650e7aeb83a21f7b97d95c12656", @typed={0xc, 0x6b, 0x0, 0x0, @u64=0x1}]}, @typed={0x14, 0x10d, 0x0, 0x0, @ipv6=@private0}, @typed={0xe2, 0x7c, 0x0, 0x0, @binary="d08142cdbb0cacaee1c409b1515e73abc7a2473c12658282c296da819480099603581d540d7d99c7ad371b149079f7673146d92d3659d5f6b417d6cf6d7a4c0d6bba9d915eadec1e225f9f1fce39bffc68429e325b1d6eeb88acb6ca0df5ee82b1bffaede9302cfbb298ee966cfbbf168ff0a71f221879683ce7e6cd448a5ee0618cf4063834b33364ba6573170348525ba0a27ca7ab05f5376ad408ff131a88b59151f9ee1c166264c9712b625d45990590c4d2df242b4e8b63e610dc11f6756b3eb5b77e124439f0c4d793120406cb6eb785aaf2778bfea3f516046518"}, @typed={0x8, 0xcd, 0x0, 0x0, @pid=r3}]}, @TIPC_NLA_NAME_TABLE={0x2c, 0x8, 0x0, 0x1, [@typed={0x4, 0x105}, @typed={0x14, 0xa2, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @typed={0x8, 0xc7, 0x0, 0x0, @fd=r4}, @nested={0x8, 0x41, 0x0, 0x1, [@typed={0x4, 0x89}]}]}]}, 0x4f4}, 0x1, 0x0, 0x0, 0x20008000}, 0x820)
pwrite64$auto(0xc8, 0x0, 0xfdf0, 0x39)
mmap$auto(0x0, 0x2020009, 0x7, 0x2000000000000eb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x10000000000000, 0xffffffffffff0005, 0x19)
setgid$auto(0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysinfo$auto(0x0)

4.009519989s ago: executing program 2 (id=2839):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/controlC0\x00', 0x222101, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r2, 0x0, 0x100000002, 0x100000001)

3.743274701s ago: executing program 0 (id=2840):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/controlC0\x00', 0x222101, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x9, 0x200007, 0x800)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @inferred, 0x0, @_sigev_thread={0x0, 0x0}})
mq_open$auto(0x0, 0x7e, 0x9, 0x0)
mq_timedsend$auto(r2, 0x0, 0x2, 0x9, 0x0)

2.752731147s ago: executing program 3 (id=2841):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/controlC0\x00', 0x222101, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x9, 0x200007, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x103003, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x00\x81\x00'/21, 0x100000002, 0x100000001)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @inferred, 0x0, @_sigev_thread={0x0, 0x0}})
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_timedsend$auto(r2, 0x0, 0x2, 0x9, 0x0)

2.57833053s ago: executing program 1 (id=2842):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptys5\x00', 0x0, 0x0)
ioctl$auto_TIOCGPGRP2(r0, 0x540f, &(0x7f0000000080))
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0xb9f, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf25030000000400080010"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000200bd7000fedbdf250200000800130001"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
madvise$auto(0x0, 0x8, 0xe)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

2.308860748s ago: executing program 0 (id=2843):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/controlC0\x00', 0x222101, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
r2 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x10, 0x2, 0xc)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$nci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
io_uring_setup$auto(0x85, 0x0)
open(&(0x7f00009e1000)='./file0\x00', 0xc162, 0x0)
socket(0x10, 0x2, 0xf)
io_uring_setup$auto(0x85, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000001a00)='/dev/binderfs/binder0\x00', 0x0, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x2a801, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5t\x03\x00\x00\x00\x00\x00\x00\x00\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2\x1d\xeb\x11wQ\x7fE\x82\xb5l\xa0\x04\xea\x02\xb6/\xc1\xe7\xb9\xce^\xf0)\x02\x1b2\x04\xb9X#u\xd4\x85M4<\xbe\x95\xc5b=\xc9\xb5$\x14*\x8fe?v]TZ\xb26_\x16[\xfa\xb5\xa1\xf6\xcf1\xadV\xdb8\x1azv7\x84]\xedE\xf7\xc9\x11[>\xa5[\x9f6\xba\xde-D\xef\x8b+\x82My\xb0\xdfo{YY~\x81\xc7\xd5\x0fp\x10F9\x04/\xcc\xa2\xdf\x01)\xaf\xd6Bm\xce\xac\xd9\xd7\xe5n/r\xde\xda\x9c\xae\t\xea\xbd\xc8|\xad\xa3\x9b\xd1t\xb9\xa3\x86\x98\xe5\xae\xf3\xe9\x19\xe6\xa3er4g\x95\x92\x90\x18ET\xda6\x0e\xda\xa8\x10\x86h|\b\xe5\xeb+\x82= \x85i\xd1)\x11\x875H\x1a8\xbbd\xb2w\x95\xb0\xa2HSA\xbf\xb3:\x03\x9b\xdc\xf4f|=\xb7m5^\xad\x9b\x19\xd8<\xa8\xac!\x10\va\xc7\xeb\xf7\x8a\xf5\"\xee\xf3\\\xe5\xb1\xf0C\x04\xa5\x8c\xd3\x9b/U\x17\x88\x9f\xe6\x12_\x0e\xdb\xc6\xeb\xc7\\\x1c\x9c\xa9fsQk\xce\x1dPg\xd1\xb7\x12\x9b\x16n\x9d(\xe6k\x13\x8c\xca\x1f\xe1d%{\x83N\x97\xe4\xcdZ\xbe[j\xdd\xe3\xca\xf3\x1e\x06}\xa5\x03iT=\xcc\xc6}@s', 0x5)
statmount$auto(&(0x7f0000000040)={0x800, @inferred=r3, 0x9, 0x25c7, 0x8}, &(0x7f0000000300)={0x2, 0xfffffff8, 0x3, 0x9, 0x9, 0x4, 0xf, 0x8, 0x9, 0x9, 0x101, 0x7, 0x4, 0x1, 0xffffffff, 0x1, 0x7f, 0xa7a2cb8, 0x75f, 0x1, 0x0, 0x7fff, 0x2, 0x0, 0xe, 0xffc00000, 0x2, 0xb, 0xa48, 0x6, 0x6, [0x8, 0x1ff, 0x6, 0x7, 0x18000000000000, 0xab1, 0x2, 0x9, 0xc5, 0x1fc000000, 0x3, 0x437, 0x7fffffff, 0x7, 0x5, 0x5, 0x2, 0x6, 0x9, 0x2, 0xc2, 0x3, 0xa, 0x4, 0xde, 0x6, 0x2, 0x8, 0x2, 0x97f, 0xfff, 0xffffffffffffffff, 0x1, 0x9, 0x9, 0x4, 0x7fffffff, 0x9, 0x1d, 0x1, 0x636, 0x3, 0x2], "fb15f584367155abe8e3f77153e00ae34050987095f12be15750237e4d7cddd905ed6aaf0a9b69338074d949531358de868372cbd8191e36043bcf85e37cf954677b522881aa40511fb8dd801242518f1648"}, 0x3e, 0xf)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
r4 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r4, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef)

2.10055049s ago: executing program 1 (id=2844):
bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f0000000480)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x6, 0x6, <r0=>0xffffffffffffffff, @relative_fd, 0xfffffffffffffff7}, 0x6)
ioctl$auto(0xffffffffffffffff, 0x6, r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x82200, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r2, 0xc4c85512, 0x0)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x15, 0x5, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop8\x00', 0x20041, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/024/001\x00', 0x0, 0x0)
setsockopt$auto_SO_PREFER_BUSY_POLL(r1, 0xfffffff2, 0x45, &(0x7f0000000040)='MJC802154_HWSIM\x00\xcb\x0fX\xc7\xfdx!\xf7\xb5T\x04\xad\x96\xf4\xbc\xca\xa52UWT1\a\x00\x00\x00\x00\x00\x007\xc9\xa6\x8a', 0x7fffffff)
read$auto(r3, &(0x7f0000000080)='MJC802154_HWSIM\x00\xcb\x0fX\xc7\xfdx!\xf7\xb5T\x04\xad\x96\xf4\xbc\xca\xa52UWT1\a\x00\x00\x00\x00\x00\x007\xc9\xa6\x8a', 0x1060)
r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
ioctl$auto_UI_DEV_SETUP(r4, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})
ioctl$auto_UI_DEV_CREATE(r4, 0x5501, 0x0)
writev$auto(r4, &(0x7f0000000340)={0x0, 0x18}, 0x8) (fail_nth: 9)
ioctl$auto_UI_SET_FFBIT(r4, 0x4004556b, &(0x7f0000000140)=0xc0000)
read$auto_snapshot_fops_user(0xffffffffffffffff, &(0x7f0000000380)=""/218, 0xda)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000600), 0xffffffffffffffff)
socket(0xa, 0x1, 0x100)
prctl$auto_PR_RISCV_V_GET_CONTROL(0x46, 0x3, 0x81, 0x7, 0x1ff)
keyctl$auto(0x8, 0xfffffffffffffffd, 0xffffffffffffffff, 0x5092, 0x2)

1.656158917s ago: executing program 2 (id=2845):
mmap$auto(0x0, 0x7, 0x8004000080000db, 0x40ef2, 0x401, 0x300000000000)
socket(0x11, 0x3, 0x2)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
move_pages$auto(0x0, 0x5, 0x0, &(0x7f00000003c0)=0x1, 0x0, 0x2)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000300)={0x400, 0x1, {0x3, 0x8cf, 0xe, {0x9, 0xfffd}, {0x7ff, 0xff}, @rumble={0x2, 0xb7}}, {0x7, 0x8, 0x8, {0x1, 0x5}, {0x2, 0x3}, @periodic={0xff0f, 0x4, 0x69, 0x3, 0x1, {0x30, 0x4, 0x0, 0x800}, 0xac53, 0x0}}})
r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x1eb082, 0x0)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
quotactl_fd$auto(0x0, 0x80000201, 0x0, 0xfffffffffffffffd)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r2, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000100)={0x3, 0x0, [{0x639, 0x10, 0x1}]})
select$auto(0x10, &(0x7f0000000080)={[0x5, 0x1, 0xfff, 0xf9, 0x6, 0x2, 0x5, 0x4, 0x3, 0x1000, 0x8, 0xa3, 0x8000, 0x6, 0x5]}, &(0x7f0000000100)={[0x3fe0000000, 0x7fffffffffffffff, 0xffffffff, 0x2, 0xffffffff, 0x5, 0x5, 0xc, 0x100000000, 0xf, 0x9, 0x0, 0x8, 0x3, 0x8, 0x200]}, &(0x7f0000000180)={[0x7ff, 0x800, 0xb3, 0x6, 0xb, 0x4, 0x9, 0x2, 0x0, 0x0, 0xffffffff80000001, 0x44, 0x0, 0x1, 0x80, 0x4]}, &(0x7f0000000200)={0x2, 0xf})
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0xffffffffffffffff, 0x28000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='./cgroup.cpu/memory.numa_stat\x00', 0xe2080, 0x0)
landlock_add_rule$auto_LANDLOCK_RULE_PATH_BENEATH(r2, 0x1, &(0x7f0000000540)="c1eb67b95bbf719cdf862d9b5fa6a580f63dce252446d286502bd3b61d8b1440238c0fba80639e139ce294558843bd066f77d313fa5d2d618a46337da26583dc61dab0ecbd1f885d2a6ee36da17db79ccc42e3effb5ace21801633b4bbdf7adc2724df75ea977d346815e6a325f7b4838a60cb423f980f8c064675482c994efd6e1f8ea3526bd9e14c4d747f81bdf75229cbe98d6f711e3e0be315bb7688e766829fe1f04d9d10f33274663e34d6254b30199350cf43b1a6c9cd1be99fd48419eae7a8ae4c5d52aa5e0b1db0287032d14d0c5cb1168fca", 0xcf)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x2001, 0x0)
ioctl$auto_BLKPG2(r1, 0x1269, 0x0)

1.631956579s ago: executing program 0 (id=2847):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x222101, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x9, 0x200007, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x103003, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, 0x0, 0x100000002, 0x100000001)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @inferred, 0x0, @_sigev_thread={0x0, 0x0}})
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_timedsend$auto(0xffffffffffffffff, 0x0, 0x2, 0x9, 0x0)

878.188944ms ago: executing program 1 (id=2848):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r0 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r4 = eventfd$auto(0x8c)
write$auto_bm_register_operations_binfmt_misc(r4, 0x0, 0x0)
write$auto(0x3, 0x0, 0x5c8)
mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0)
ioctl$auto_SNDCTL_DSP_GETFMTS(r3, 0x8004500b, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="01002dbd0900fedbdf257e"], 0x14}, 0x1, 0x68, 0x0, 0x24000000}, 0xd0)
sendmsg$auto_NL80211_CMD_STOP_P2P_DEVICE(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000040)={&(0x7f0000000340)={0x1228, r2, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_IE_PROBE_RESP={0x101, 0x7f, "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"}, @NL80211_ATTR_CQM={0x1020, 0x5e, 0x0, 0x1, [@nested={0x1014, 0x2e, 0x0, 0x1, [@nested={0x4, 0x112}, @generic="3b7bb7bf3907d514bdb2c1ed840303b0ea20acd45b306adb10bc0c675caefc2b61dca4c034ab2aa01b0b14464316fd84ae71d1787e4ce7620ce0b578e1a16ed22bd812add6d5e5ecc293ac318f6bcb247ee5a5343c452501f493ada8925d16afe4b6261d5697bb1b3bb65a6ebc2a7ba8fb36612f0a875cb1a5de674d59c504e99082048cfdd0950a1e734b45f2a57b1babe473ec012d1206ffb573276a47b0d30f0454a65263b75c788c1b209968f97ac3b97acc2d3ceceef9af00890bcad19759306e1d8d7280d869e925f55f2974a33c6b3976f328aabb0b8947bbca3c4d73d9176e9b325a6f9a0e8a3a1f3680166611b804bc9d4be9cc0ee8dd2bece683773cd65fb7fff75d18ce224fa33ca5f65a8634f3b9cabb9bb836dd56f32162af23927c1ba504584379440b50cc5c5db4c88f9a3b8d59806dadc39231047bd3e8c6d0a96359af6000c3a0ab40f5e27deeee5e798bf6db8c3662c23c4f7221c0a75ddc71ad83d740cfbb7653a1285e06a4b3a8b45aa1479db7eea9f40f748bf8b39b5fe09df138d6681a2b4a8cf2ac00f4edf43364f804032f37850592ff71cbc646613b444c79b225f57031180e1eb61fbfd848502e79367f90613377de685f1285b5af8b552c9d19a1cafb57f4ab97b0e25ae15d0e36363130190673cb0e5f88305d19c5bd0beca686e2d5281ffc90cb815dd2efabdb854c36dafb44c094cba37e13e298668b8a81ca95dded573249ec128c0c64661415f12d8a204ce829728be6e7274c4e71b77dea31e7acd7717a4ab185b3dcca774b90e12fc0d4386f3c23499d4c9f3c0b5778d36187bf211817d1c7622e6dc8c921d0db4068a8f6588f3f296a1638c5fdb0a0f3158429d4752470917e884509b3411cdf7782bbfed75a3106904c748e4d723ed2fabe3a538a887c620d30581b3d203974fae1c26d941bd220c507e03bcdeaeff2cb3137216b3df0452b077081929eb31a881dd9aa6b35660375fe65a6c53552ba46bca23409e4080dbc17df96dd894ebf7f3248b0b9af8140655e6e5bdfcc4050a3654c6670897b3414d106c7ea1ef3a53b55fc9267ac63da86b278410e93e1c5c2f61bde298e4566388eaec5a277797b799567f82103e04542fa2af2d894ed5a17b016ab129e16c752209d40761c73887479a27613beed24c8f44f0f25e6e59e6c69e00ab885a33502a2083d88f52387bb3eb3ac079c8f0e9ec2e66dbf27399efe900ce59b4feac55e5ecf02809968d7d16b784a362548020d992d4a61f7bb60ebc84f175b8c22c0a0cbd9ce0eba1f01652bc2b626734f4d0c708a087b3ee3da203bd6a5eb8209319951febbc7034cb22e1ba358e1139acdb6d98a47c161592a6e2a4637b010e90eb7cf9fad447d23fbaf56302d2cbc7f67ed5a08176c45a37a090c24f4b1ae9c7673ca56735e0f04c5553665bd3237cfdd70591d7f79101363d654641b49866c3c22d6e0f2788e2443f839d5843e3c14fb16c3e3da63bc194376d0891290d1e53a279f09612909c507618a7b240b9bcf74e118dda82d1da2565e9c989e06df404af6b8a02b94721dc099b12a74d65c04b6179a0894c809bfb965a996e5f5f3ae1b1b0228fa82b154c4bf4b7936582736d1ecabac41bafe839abe7d42e9c581d6ceb6ea63a595f1d8ea21bf00be537fd6c00c4007e525878e8188254ddbcdf73ab27c793853294c1a2443c9312f352aab7447d116fb6b68f7613658ef197d52a51855fce33e89dd41d1ac29281e92e216795a2c5eed1f82501db9e9a9bbb6a91f8d9845754637a6ba9e5bcc79b80f83ce627d5405235d4e01cff78c57d1fa237cfae5e0daaf1e2d2b9c81b0fed051af89e13a877da528cb486aff9b6dde684649d112f659c064b27b9975bf8143c111124a9895fae82d6959696dadf1ecae87cfe445e8dfc7c621c3deab5b2eff4b6ab9c7fd6ff9aebe7637dfb6b58f54031bc33c44c660ab0c4185384ecca2b7e8d539f01645f5018f700c6b74d6f68bd56eef88f189eb235e2d87f81360f456a7b2a69fc306f9888c7b90455401cab944f6b5d863157d90da490e4ac03cd254775c06d97462e7f87a63eb18b44fafcd7f1fef0ad216d49795d43fc8cdafa3263fc655b3b283464435443e2c99fb4084aab5a2b64434fa6ca73f83b6497ca0cf2f06f62bfe224df0841b80dbda3271653a19b467b37b0fcc27aa0030eb9be439e595f032d46f289b11785799c6c8e8afe03abd41b0da35c1234bc6f7c130c99a9be8ae372b1b0dc606082d85a59ab332f15e888614ee0859f8312faf9fd36a24237d65403d636859d8da84993210767885b7a6dc9ddd62723ce2b930198c39cd901717daff28a0c4682585fc08d7df3289ce1060901fa61e0b54776df6f0fb0226a5e3d0a0ce3219400083e594acfffa35e8fd9d5763318efba93b2af67f76a01548accc736ba9459a990374f35621c848257721dc9d5d69a9cf27aa642e8608f4b5f0dcb57f588e95196ffd46109868a815940c9d1629db360e2f5fec9aba93038175aff64c1920f435c00cdc97576dc76ab872a53775773c9e3fc3a40b62a78fe68dfc39ca777b351e0c3788dbb5628c8aae462fb7aeb279524a04c2efe67a91f6b3186d0ec75443736980e16aec8043bb75467da061456cc0a788511f52c3b6c0c106da191266a7f901273bf6a56547a0784a20171386860376064a31e0c7270f99e1641a838a3d854db9cb876aa214dae829d059e80576e4befbbb8a1ba1449b18a8f58a08d48865bde51ae8dca989f68928b88096f93a03de2f41c3ac4b65efaffa0d5112ef043289f2e085d37abcd985f192d417b5871fd15140950d0a9d81168e67d19fecd9b63b9c815bb95c77e33ee265a1a2b6bb1c11825e3a67401a4eb55812979fb556c7538461b753ff8ab859d8c474dcf36a037f8048aeebcec9ce432dd48c2ff0db28b7f31354d9e2c67ff160120d620d5074e7dae62b01f428e13d60ca75fce4f6b87ee4000373912f34adf74c687b6f93c72ab3fd813a1c8639e67368ca91e660ed9b81bbc3848ddc6b287582e9e63a10a82aedc220308afb37d24dba49b324ffde9c3dce32e0c102e45149bb99dca6d6047d0eea9521068ac2111445de1fef0da36963966ebc0dffcc212d97fde40106b8145cb8850c0026ef36c68c20d96fd4be9d113fb83b32020bcc4dd76fc44fd2be62a27e19536391d4b38519339880db0d1bda291fc797d8ade1a6ae0ef0ab415123328c7c5de0015ab4dfb198bae2b73f02a62f5d349d2817eb0cbb43259a5f92f14a03d85869483785cc446eba768d6d7773d66a7634f441ef1fcb32f6d9bf02d31c219a5cce97b75ba6e06b9bf726bf722deb7e94aa09bdedda76f35032f226186b7ebb977612a5e3a44465886fa554d4064a54ef02863eab8caade42ce859fb1408c1e6b14746a67613ffa651c581cdfb2c87782bc14aa7e010468fb2d7749e25f2cb5ac72b7b5fdbf5882ed1f1a40855f79d71564c1ff088eb4a6238cafb52cbb83e93273cdc1d2fc47aa648bfa08df50535deb53a09f3957de9fa75f724ac5e742208062429bec30685afa01d420782d29e9bb683e7afd83de02390f649a09d66544c10c33f156d731b7e27810fe363e1a6925e7d68a836d5f4892f4e6966e4369dba8998dd812f95ecd332acce885d1d0d6521542cd2818a15c2442965fbeb708e47414b50acf56f16a1fd08ffb9f5477dbf6d4b1d699c147822257143841d06752bfaef8bf15007215a9a7fa46aa7922d1ba212f6c7da8192159f27325d41db43623b8d0c96c8019dace1df63d93c5946600329366cb7a6ea207b59140f7c6deca6cab9e510a4877014cf2e5f62ee3629f46dca665ad4927d4f181e744f382e1b3f39c9ea8737059468d84794b36e87f07770fdef63654e52ee4743424f5a27184e7e78b73ecf3a091c4a73d0f88931a22e1824793e5a7ca4401d006522e63c24aef462a4f8f4362fdf147b3cefe9f452151c1d8551feed515b8e831255befc327694cd60c510f8d38b766b383a7aefba50eaba55926e968221d06e82e8a04eb233ae4e9f653414c3adcff4fb23ae8d7d07b4dc297b07d64e1156021b32d2bd0d5bbf72e66b54a5a0265da9616de712e9cefe8c6e4cbd14397af093aeb90ae517a3b0358b439c216d398e75fea98ab872a6a18fac0e937b20fb48e20c959b55ff13498e9ef0cabe60a992d74036ee244727475688c2c813bc8333f19fd61ac9ef91559818a09f1aeb04496d5bb4a3ed7d0b679da4a341e4f9c1412242a8bc306ea1beb7a4658754e4b4a3d9113d7bd19f440fb910974f05c9cbf3bf1206eb448c794993744523e2ab7641b108bb1a83ad8afb14632dd44ea8689a1fce08a818878951f82aa51679839a1b2f01076af4daf7a09eb10642faf359829b1786beacf7b08504792898e446323f126615bb3eda78b785fe77a31448549419a58899f2c99dcae3e186ee134475a265f58f14795f5bd9282b1d31592ecf74b71055a484dd6367dc0d8dd2a9f77c27bf1bfbd6184a48f7dd181cdda1e3b152e461ea2a18ffc3f2022ca17dba1d2df4389bf1dd09156c6e66e83b0542d0861ae66b6d4d53404216d357d8c9e97e56f2d86c377847e591b45c5ff32221208a2b7bbaad8ff74fb89864346ca4df81db90b4fb8ef2029061caf5145c0c6175500db7d88d9b688859fdf4d9c51ecf1a88fa4311f03d1538ea33bffe48e7a121b394c60040e925c2d744d59b9a3378a770b03ec32c90989ff877316b8ff37957cadd5d7e6b2e8333496057cd70305c174dcd638390c850cb0fe50e32d3a53d346332a4455c41efeddedb6c8ee2adc2f35ccfd0f98f7cec17e5ab5035e0744f7ec308b4cbb48b46efe41949fd3c1614d4a53abcf18b356ed5b82dcd6e6c2464cbc7dabaa7cc3a985bf88787424c21914fb3b65e081067a720b4a01b7d3487bbdb73201f6b6ebeea54c4ef44c24ce0a5693e3f7c54427027224ece851004ed03647eeaa191771c9ffb95c73f9fec149f6abef02a154566029de1383462d7e7d5cacacdad4a86e4f125e9e069e5ef0a6d1b18374dfeb6a1e29fcfb076b7a1d8db425e8a8a293cba2ca69e725c508d63d2a57b20f07aa42e56212a74f978dd7f3d39f8a2f2e78f6cff4a4eb01b96e2e4d82e0b93fe9afa3ccdc7430270ff1c85fa180b0cdf7a7ee544ca14a3595366b640b386144b5f5fdfef6ae8e33e9a5321462b9d6c9dd991a8046569edc6055c59f7d989f219cc26a9563e9082da403037096e67305243a0382d1f5abc96e607506a970aea30c0530b1501038e760ee55079f5e3cd5bd6a2033134fba881a26b57dc317dd925ae8fe80e362ded0a6203961f74edf54fc1f8c75d9a9a1adc02f2aed47f8c3df69d778f66d8e372df4c6d8e0840bd9362143f5e55d69ff364e5d081f4f3cf0359af279ffa5d8440d8a4fb31eaf3260e92ab4c19f234b693085f818b57224536f6c1a1749fbe6aead24f72be945cd0e6eb9e0aab7e0ec99eb9662dbd0108daad9e81e991fd610543d477a3546a382bc36c8c3652b527c537ec361ddba083125e1ecfa7841e3efdd491a23b17e804584c249c388592c6bfbe8ed8dddbc8b6dbcc2fca6a3a37fcecab4945f8c5a1b2b6d77074eaa9dcafaef8504a808c4e573bdac3e30bf0f33d0458ff6a8b3484cdd9af2f9d0242e8f3ec700d58aca853c6c5b4c6db538e2b26d04bee7216bac69f4a3294da29c6d7f25f77ea4678187ab4bf9ae6db07579d05b857794827677a9c5a36d5c2d80fdb6f507ab51b7e0ec", @nested={0x4, 0xe}, @nested={0x4, 0x68}, @nested={0x4, 0xcf}]}, @typed={0x5, 0xee, 0x0, 0x0, @str='\x00'}]}, @NL80211_ATTR_SPLIT_WIPHY_DUMP={0x4}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, "e640229435d0b0c20f41d496f46fe01814df377cbc677f82566d"}, @NL80211_ATTR_MLO_TTLM_DLINK={0x9f, 0x148, "372006f827f69c2232e18f284e84bef8e1ee92e0f1d9c875b89d43abcb15a252f160dcd532548c6d8ba9eb6cd4ba9375c480b05b159deb3bf27697486ad08322c3ac0e3bd56a5626ab1a8711fb21fe76cd08aa459540b4532c840cb17d05dbc6620cbf80ae214fe8f6cf1bdc1e72b0a6079e2d3e133538e687357f38504a6413acc0e84509153fecb838005687529b81a7d8186e1f501de8703347"}, @NL80211_ATTR_FILS_ERP_RRK={0xe, 0xfc, "1fe75868af738cdfd10e"}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x5256}, @NL80211_ATTR_KEY_SEQ={0x14, 0xa, "ddbf139dddb41598cfea06c4812ac474"}]}, 0x1228}, 0x1, 0x0, 0x0, 0x4010}, 0x4000800)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x5, 0x0)
setsockopt$auto(0x4, 0x0, 0x485, 0xfffffffffffffffe, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x2, 0x1d2c, 0x3, 0x4, 0x15f4da0e, 0x6, 0x9, 0x100000000000000c, 0x8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00,\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t,\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/242, 0xfdf0, 0x39)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
poll$auto(&(0x7f0000000240)={r0, 0x3, 0x9}, 0x3, 0x8)
socket(0x2c, 0x1, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
timer_create$auto(0x9, &(0x7f0000000100)={@sival_ptr=0x0, @inferred, 0x1, @_tid=0xffffffffffffffff}, 0x0)

783.183825ms ago: executing program 3 (id=2849):
mmap$auto(0x0, 0x7, 0x8004000080000db, 0x40ef2, 0x401, 0x300000000000)
socket(0x11, 0x3, 0x2)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
move_pages$auto(0x0, 0x5, 0x0, &(0x7f00000003c0)=0x1, 0x0, 0x2)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000000300)={0x400, 0x1, {0x3, 0x8cf, 0xe, {0x9, 0xfffd}, {0x7ff, 0xff}, @rumble={0x2, 0xb7}}, {0x7, 0x8, 0x8, {0x1, 0x5}, {0x2, 0x3}, @periodic={0xff0f, 0x4, 0x69, 0x3, 0x1, {0x30, 0x4, 0x0, 0x800}, 0xac53, 0x0}}})
r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x1eb082, 0x0)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
quotactl_fd$auto(0x0, 0x80000201, 0x0, 0xfffffffffffffffd)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r2, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000100)={0x3, 0x0, [{0x639, 0x10, 0x1}]})
select$auto(0x10, &(0x7f0000000080)={[0x5, 0x1, 0xfff, 0xf9, 0x6, 0x2, 0x5, 0x4, 0x3, 0x1000, 0x8, 0xa3, 0x8000, 0x6, 0x5]}, &(0x7f0000000100)={[0x3fe0000000, 0x7fffffffffffffff, 0xffffffff, 0x2, 0xffffffff, 0x5, 0x5, 0xc, 0x100000000, 0xf, 0x9, 0x0, 0x8, 0x3, 0x8, 0x200]}, &(0x7f0000000180)={[0x7ff, 0x800, 0xb3, 0x6, 0xb, 0x4, 0x9, 0x2, 0x0, 0x0, 0xffffffff80000001, 0x44, 0x0, 0x1, 0x80, 0x4]}, &(0x7f0000000200)={0x2, 0xf})
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0xffffffffffffffff, 0x28000)
read$auto(0xffffffffffffffff, 0x0, 0x20)
landlock_add_rule$auto_LANDLOCK_RULE_PATH_BENEATH(r2, 0x1, &(0x7f0000000540)="c1eb67b95bbf719cdf862d9b5fa6a580f63dce252446d286502bd3b61d8b1440238c0fba80639e139ce294558843bd066f77d313fa5d2d618a46337da26583dc61dab0ecbd1f885d2a6ee36da17db79ccc42e3effb5ace21801633b4bbdf7adc2724df75ea977d346815e6a325f7b4838a60cb423f980f8c064675482c994efd6e1f8ea3526bd9e14c4d747f81bdf75229cbe98d6f711e3e0be315bb7688e766829fe1f04d9d10f33274663e34d6254b30199350cf43b1a6c9cd1be99fd48419eae7a8ae4c5d52aa5e0b1db0287032d14d0c5cb1168fca", 0xcf)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x2001, 0x0)
ioctl$auto_BLKPG2(r1, 0x1269, 0x0)

260.848859ms ago: executing program 0 (id=2850):
getpgrp(0x0) (async)
getpgrp(0x0)
mmap$auto(0x100, 0x8, 0x6, 0xeb5, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/oom_adj\x00', 0x8402, 0x0)
read$auto(r0, 0x0, 0x10) (async)
read$auto(r0, 0x0, 0x10)
write$auto_cpu_latency_qos_fops_qos(0xffffffffffffffff, &(0x7f0000000100)="7c332c9e949f437d1b02886820167cb90c67fe688bd2e9ff07f16364aa0b27427c26fd6b564b88611e9cb3ddbb801511ae6bc6d238a10479ff36aa47555ddad3089d8e", 0x43)
mmap$auto(0x0, 0x21009, 0x4000000000df, 0x100eb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r1 = pipe$auto(0x0)
r2 = getpid()
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027b4839f3015398d3b", @ANYRES32, @ANYRES32, @ANYRES64], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
socket(0x18, 0xa, 0x1) (async)
r3 = socket(0x18, 0xa, 0x1)
connect$auto(r3, &(0x7f0000000000)=@in={0x2, 0x100}, 0x26)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00'})
process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0x91f5}, 0x800000001, &(0x7f0000001080)={&(0x7f00000010c0)="837c43558323d5db424689e7e6cb5c40ad091e4374c10000000025", 0x1ffffffff}, 0x2, 0x0)
kexec_load$auto(0x80000000, 0x1, &(0x7f0000000200)={@kbuf=&(0x7f0000000840)="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", 0x9, 0x6ec2, 0x2}, 0x100) (async)
kexec_load$auto(0x80000000, 0x1, &(0x7f0000000200)={@kbuf=&(0x7f0000000840)="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", 0x9, 0x6ec2, 0x2}, 0x100)
r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r4, &(0x7f0000000000)="c80d1b5d399b3c", 0xfdef) (async)
write$auto_console_fops_tty_io(r4, &(0x7f0000000000)="c80d1b5d399b3c", 0xfdef)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0x4040ae79, r5) (async)
ioctl$auto(0x3, 0x4040ae79, r5)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe\x00', 0x109100, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
socket(0xa, 0x801, 0x6)
mmap$auto(0x0, 0x2000a, 0x7e, 0xeb2, 0x401, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)

581.893µs ago: executing program 1 (id=2851):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x222101, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
madvise$auto(0x9, 0x200007, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x103003, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, 0x0, 0x100000002, 0x100000001)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @inferred, 0x0, @_sigev_thread={0x0, 0x0}})
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_timedsend$auto(0xffffffffffffffff, 0x0, 0x2, 0x9, 0x0)

0s ago: executing program 2 (id=2852):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptys5\x00', 0x0, 0x0)
ioctl$auto_TIOCGPGRP2(r0, 0x540f, &(0x7f0000000080))
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0xb9f, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf25030000000400080010"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000200bd7000fedbdf250200000800130001"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
madvise$auto(0x0, 0x8, 0xe)
mincore$auto(0x1000, 0x8001, 0x0)

kernel console output (not intermixed with test programs):

arsing attributes in process `syz.2.844'.
[  298.071374][T10219] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input175
[  298.794090][T10239] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input176
[  299.464732][T10251] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input177
[  299.612746][T10255] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input178
[  299.638493][T10253] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input179
[  300.508157][T10274] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input180
[  300.550205][T10268] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input181
[  301.263636][T10280] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input182
[  301.499831][T10284] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input183
[  301.525301][T10287] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input184
[  301.785947][T10292] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input185
[  303.043179][T10310] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input186
[  303.068716][T10311] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input187
[  303.473067][T10317] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input188
[  303.519586][T10319] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input189
[  303.992669][T10330] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input190
[  304.011208][T10335] netlink: 4 bytes leftover after parsing attributes in process `syz.0.873'.
[  304.802143][T10346] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input191
[  305.813228][T10361] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input192
[  306.666629][T10376] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input193
[  307.466345][T10391] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input194
[  308.521623][T10409] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input195
[  309.721192][T10425] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input196
[  309.807779][T10430] netlink: 'syz.2.894': attribute type 1 has an invalid length.
[  310.196634][T10437] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input197
[  310.598823][T10442] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input198
[  310.682216][T10444] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input199
[  310.782128][T10447] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input200
[  311.710603][T10458] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input201
[  312.437304][T10473] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input202
[  312.700357][T10475] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input203
[  312.886828][T10480] netlink: 'syz.1.907': attribute type 1 has an invalid length.
[  313.302380][T10488] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input204
[  313.848778][T10492] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input205
[  313.913770][T10497] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input206
[  315.683123][T10521] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input207
[  316.098548][T10536] netlink: 'syz.3.920': attribute type 1 has an invalid length.
[  316.950113][T10550] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input208
[  317.196488][T10548] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input209
[  317.286020][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  317.292869][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  317.838350][T10559] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input210
[  317.962323][T10558] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input211
[  318.062539][T10565] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input212
[  318.599666][T10573] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input213
[  319.106846][T10587] netlink: 'syz.1.932': attribute type 1 has an invalid length.
[  320.376843][T10604] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input214
[  321.548217][T10623] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input215
[  321.660351][T10625] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input216
[  322.349292][T10640] netlink: 'syz.3.944': attribute type 1 has an invalid length.
[  322.583929][T10647] netlink: 4 bytes leftover after parsing attributes in process `syz.2.945'.
[  322.667617][T10632] netlink: 'syz.2.945': attribute type 1 has an invalid length.
[  322.690211][T10632] netlink: 13 bytes leftover after parsing attributes in process `syz.2.945'.
[  323.184792][T10657] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input218
[  323.479870][T10663] FAULT_INJECTION: forcing a failure.
[  323.479870][T10663] name failslab, interval 1, probability 0, space 0, times 0
[  323.579769][T10663] CPU: 0 UID: 0 PID: 10663 Comm: syz.0.951 Not tainted syzkaller #0 PREEMPT(full) 
[  323.579790][T10663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  323.579802][T10663] Call Trace:
[  323.579807][T10663]  <TASK>
[  323.579813][T10663]  dump_stack_lvl+0x100/0x190
[  323.579839][T10663]  should_fail_ex.cold+0x5/0xa
[  323.579856][T10663]  should_failslab+0xc2/0x120
[  323.579877][T10663]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  323.579896][T10663]  ? __alloc_skb+0x140/0x710
[  323.579916][T10663]  __alloc_skb+0x140/0x710
[  323.579931][T10663]  ? __alloc_skb+0x5b7/0x710
[  323.579946][T10663]  ? __pfx___alloc_skb+0x10/0x10
[  323.579963][T10663]  ? idr_get_next+0xec/0x150
[  323.579980][T10663]  ? __pfx_idr_get_next+0x10/0x10
[  323.579999][T10663]  ctrl_build_family_msg+0x36/0xa0
[  323.580024][T10663]  ctrl_getfamily+0x361/0x550
[  323.580045][T10663]  ? __pfx_ctrl_getfamily+0x10/0x10
[  323.580067][T10663]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  323.580089][T10663]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  323.580114][T10663]  genl_family_rcv_msg_doit+0x214/0x300
[  323.580137][T10663]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  323.580158][T10663]  ? genl_get_cmd+0x3ef/0x720
[  323.580182][T10663]  ? __dev_queue_xmit+0x7fd/0x4750
[  323.580196][T10663]  ? __radix_tree_lookup+0x217/0x2b0
[  323.580215][T10663]  genl_rcv_msg+0x560/0x800
[  323.580238][T10663]  ? __pfx_genl_rcv_msg+0x10/0x10
[  323.580259][T10663]  ? __pfx_ctrl_getfamily+0x10/0x10
[  323.580287][T10663]  netlink_rcv_skb+0x159/0x420
[  323.580306][T10663]  ? __pfx_genl_rcv_msg+0x10/0x10
[  323.580328][T10663]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  323.580354][T10663]  ? netlink_deliver_tap+0x1ae/0xcc0
[  323.580375][T10663]  genl_rcv+0x28/0x40
[  323.580393][T10663]  netlink_unicast+0x5aa/0x870
[  323.580415][T10663]  ? __pfx_netlink_unicast+0x10/0x10
[  323.580441][T10663]  netlink_sendmsg+0x8b0/0xda0
[  323.580463][T10663]  ? __pfx_netlink_sendmsg+0x10/0x10
[  323.580484][T10663]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  323.580510][T10663]  __sys_sendto+0x4aa/0x520
[  323.580534][T10663]  ? __pfx___sys_sendto+0x10/0x10
[  323.580556][T10663]  ? fd_install+0x223/0x580
[  323.580582][T10663]  ? __pfx___sys_socket+0x10/0x10
[  323.580600][T10663]  __x64_sys_sendto+0xe0/0x1c0
[  323.580617][T10663]  ? do_syscall_64+0x95/0xf80
[  323.580635][T10663]  ? lockdep_hardirqs_on+0x78/0x100
[  323.580652][T10663]  do_syscall_64+0x106/0xf80
[  323.580669][T10663]  ? clear_bhb_loop+0x40/0x90
[  323.580686][T10663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.580700][T10663] RIP: 0033:0x7fcbe335c84e
[  323.580714][T10663] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  323.580726][T10663] RSP: 002b:00007fcbe425fe88 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  323.580744][T10663] RAX: ffffffffffffffda RBX: 00007fcbe42616c0 RCX: 00007fcbe335c84e
[  323.580753][T10663] RDX: 0000000000000020 RSI: 00007fcbe4260000 RDI: 0000000000000008
[  323.580761][T10663] RBP: 0000000000000000 R08: 00007fcbe425ff04 R09: 000000000000000c
[  323.580769][T10663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008
[  323.580777][T10663] R13: 00007fcbe425ff58 R14: 00007fcbe4260000 R15: 0000000000000000
[  323.580795][T10663]  </TASK>
[  324.393714][T10687] netlink: 4 bytes leftover after parsing attributes in process `syz.0.955'.
[  324.436899][T10686] netlink: 'syz.0.955': attribute type 1 has an invalid length.
[  324.487884][T10686] netlink: 13 bytes leftover after parsing attributes in process `syz.0.955'.
[  325.094145][T10706] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input219
[  325.524633][T10717] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input220
[  326.977287][T10737] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input222
[  327.261167][T10742] netlink: 'syz.1.966': attribute type 4 has an invalid length.
[  327.312291][T10746] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input223
[  327.630096][T10754] netlink: 'syz.2.971': attribute type 21 has an invalid length.
[  327.684259][T10754] netlink: 334 bytes leftover after parsing attributes in process `syz.2.971'.
[  327.960083][T10755] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input224
[  328.895318][T10772] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input225
[  328.960764][T10775] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input226
[  329.912431][T10782] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input228
[  330.076683][T10793] netlink: 'syz.3.980': attribute type 1 has an invalid length.
[  330.812007][T10806] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input229
[  330.993077][T10810] netlink: 4 bytes leftover after parsing attributes in process `syz.3.985'.
[  331.060186][T10799] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input230
[  331.086709][T10812] netlink: 25 bytes leftover after parsing attributes in process `syz.3.985'.
[  331.864568][T10821] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input231
[  331.983562][T10826] netlink: 'syz.3.986': attribute type 1 has an invalid length.
[  333.615251][T10850] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input232
[  334.060080][T10859] netlink: 206 bytes leftover after parsing attributes in process `syz.1.996'.
[  334.106879][T10859] netlink: 206 bytes leftover after parsing attributes in process `syz.1.996'.
[  334.172822][T10859] netlink: 16 bytes leftover after parsing attributes in process `syz.1.996'.
[  334.222786][T10859] dummy0: entered promiscuous mode
[  334.248068][T10859] dummy0: entered allmulticast mode
[  334.310233][T10860] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input233
[  334.647439][T10864] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input234
[  334.656401][T10868] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input235
[  335.218737][T10875] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input236
[  338.039574][T10924] netlink: 'syz.0.1016': attribute type 1 has an invalid length.
[  338.482716][T10929] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input238
[  338.740026][T10931] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input239
[  339.146854][T10940] netlink: 'syz.1.1010': attribute type 1 has an invalid length.
[  340.027977][T10949] netlink: 'syz.2.1015': attribute type 1 has an invalid length.
[  340.435734][T10951] netlink: 206 bytes leftover after parsing attributes in process `syz.3.1017'.
[  340.491370][T10951] netlink: 206 bytes leftover after parsing attributes in process `syz.3.1017'.
[  340.608876][T10958] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1017'.
[  340.669622][T10958] dummy0: entered promiscuous mode
[  340.699359][T10958] dummy0: entered allmulticast mode
[  340.928542][T10969] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1018'.
[  341.530912][T10977] netlink: 'syz.3.1022': attribute type 1 has an invalid length.
[  342.254235][T10980] netlink: 'syz.2.1023': attribute type 1 has an invalid length.
[  343.131225][T11002] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input240
[  345.778117][T11029] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1035'.
[  346.764179][T11059] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input241
[  347.432430][T11064] netlink: 'syz.3.1042': attribute type 1 has an invalid length.
[  348.044750][T11068] netlink: 'syz.1.1044': attribute type 1 has an invalid length.
[  348.557497][T11084] FAULT_INJECTION: forcing a failure.
[  348.557497][T11084] name failslab, interval 1, probability 0, space 0, times 0
[  348.711802][T11085] FAULT_INJECTION: forcing a failure.
[  348.711802][T11085] name fail_futex, interval 1, probability 0, space 0, times 1
[  348.783359][T11084] CPU: 0 UID: 0 PID: 11084 Comm: syz.1.1048 Not tainted syzkaller #0 PREEMPT(full) 
[  348.783384][T11084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  348.783393][T11084] Call Trace:
[  348.783398][T11084]  <TASK>
[  348.783405][T11084]  dump_stack_lvl+0x100/0x190
[  348.783432][T11084]  should_fail_ex.cold+0x5/0xa
[  348.783459][T11084]  ? lsm_blob_alloc+0x68/0x90
[  348.783480][T11084]  should_failslab+0xc2/0x120
[  348.783504][T11084]  __kmalloc_noprof+0xe0/0x850
[  348.783528][T11084]  ? trace_kmem_cache_alloc+0xf3/0x120
[  348.783552][T11084]  lsm_blob_alloc+0x68/0x90
[  348.783573][T11084]  security_prepare_creds+0x2d/0x290
[  348.783595][T11084]  prepare_creds+0x5d6/0x950
[  348.783617][T11084]  set_current_groups+0x15/0xd0
[  348.783641][T11084]  __do_sys_setgroups+0x3e2/0x4f0
[  348.783663][T11084]  do_syscall_64+0x106/0xf80
[  348.783681][T11084]  ? clear_bhb_loop+0x40/0x90
[  348.783699][T11084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.783714][T11084] RIP: 0033:0x7fc37b19bf79
[  348.783727][T11084] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  348.783742][T11084] RSP: 002b:00007fc37c144028 EFLAGS: 00000246 ORIG_RAX: 0000000000000074
[  348.783757][T11084] RAX: ffffffffffffffda RBX: 00007fc37b415fa0 RCX: 00007fc37b19bf79
[  348.783766][T11084] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000008
[  348.783775][T11084] RBP: 00007fc37b2327e0 R08: 0000000000000000 R09: 0000000000000000
[  348.783784][T11084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  348.783792][T11084] R13: 00007fc37b416038 R14: 00007fc37b415fa0 R15: 00007fff10e22288
[  348.783811][T11084]  </TASK>
[  349.037088][T11085] CPU: 0 UID: 0 PID: 11085 Comm: syz.1.1048 Not tainted syzkaller #0 PREEMPT(full) 
[  349.037111][T11085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  349.037120][T11085] Call Trace:
[  349.037126][T11085]  <TASK>
[  349.037133][T11085]  dump_stack_lvl+0x100/0x190
[  349.037160][T11085]  should_fail_ex.cold+0x5/0xa
[  349.037179][T11085]  get_futex_key+0x1d2/0x1620
[  349.037198][T11085]  ? __pfx_get_futex_key+0x10/0x10
[  349.037220][T11085]  futex_wake+0xea/0x530
[  349.037249][T11085]  ? __pfx_futex_wake+0x10/0x10
[  349.037269][T11085]  ? __sys_sendmmsg+0x367/0x430
[  349.037291][T11085]  ? __pfx___sys_sendmmsg+0x10/0x10
[  349.037312][T11085]  do_futex+0x32b/0x350
[  349.037330][T11085]  ? __pfx_do_futex+0x10/0x10
[  349.037353][T11085]  __x64_sys_futex+0x34f/0x4d0
[  349.037373][T11085]  ? __pfx___x64_sys_futex+0x10/0x10
[  349.037399][T11085]  do_syscall_64+0x106/0xf80
[  349.037417][T11085]  ? clear_bhb_loop+0x40/0x90
[  349.037435][T11085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.037450][T11085] RIP: 0033:0x7fc37b19bf79
[  349.037463][T11085] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  349.037478][T11085] RSP: 002b:00007fc37c1230e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  349.037493][T11085] RAX: ffffffffffffffda RBX: 00007fc37b416098 RCX: 00007fc37b19bf79
[  349.037503][T11085] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc37b41609c
[  349.037512][T11085] RBP: 00007fc37b416090 R08: 0000000000000000 R09: 0000000000000000
[  349.037520][T11085] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  349.037529][T11085] R13: 00007fc37b416128 R14: 00007fff10e221a0 R15: 00007fff10e22288
[  349.037548][T11085]  </TASK>
[  349.495647][T11094] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input242
[  349.702369][T11095] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input243
[  351.657386][T11112] netlink: 'syz.2.1055': attribute type 1 has an invalid length.
[  352.798310][T11140] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input247
[  356.357657][T11191] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input251
[  356.655901][T11199] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input252
[  359.016992][T11224] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input253
[  360.845404][T11258] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input254
[  361.135714][T11268] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input255
[  361.580573][T11270] netlink: 'syz.3.1093': attribute type 1 has an invalid length.
[  362.307162][T11287] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input256
[  362.470185][T11289] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input257
[  364.711423][T11321] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input258
[  366.050047][T11340] netlink: 'syz.0.1109': attribute type 1 has an invalid length.
[  368.853413][T11386] netlink: 'syz.1.1118': attribute type 1 has an invalid length.
[  370.166450][T11406] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input259
[  371.410897][T11425] netlink: 'syz.3.1129': attribute type 1 has an invalid length.
[  371.842320][T11429] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input260
[  372.173627][T11445] netlink: 'syz.2.1132': attribute type 1 has an invalid length.
[  372.547339][T11449] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input261
[  373.490782][T11466] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input262
[  373.807207][T11470] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input263
[  374.705662][T11490] netlink: 'syz.1.1144': attribute type 1 has an invalid length.
[  375.459578][T11500] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input264
[  375.965881][T11509] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input265
[  376.661075][T11528] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1161'.
[  376.755925][T11532] netlink: 'syz.1.1161': attribute type 1 has an invalid length.
[  376.814820][T11532] netlink: 13 bytes leftover after parsing attributes in process `syz.1.1161'.
[  378.596441][T11556] netlink: 'syz.2.1158': attribute type 1 has an invalid length.
[  378.724263][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  378.730962][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  379.397007][T11570] input: jJǸ-����ji����l��Q�	J86�� as /devices/virtual/input/input266
[  379.740211][T11573] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input267
[  380.898793][T11609] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input268
[  381.471142][T11621] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1170'.
[  381.527038][T11624] FAULT_INJECTION: forcing a failure.
[  381.527038][T11624] name failslab, interval 1, probability 0, space 0, times 0
[  381.600378][T11624] CPU: 0 UID: 0 PID: 11624 Comm: syz.3.1170 Not tainted syzkaller #0 PREEMPT(full) 
[  381.600402][T11624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  381.600411][T11624] Call Trace:
[  381.600417][T11624]  <TASK>
[  381.600423][T11624]  dump_stack_lvl+0x100/0x190
[  381.600451][T11624]  should_fail_ex.cold+0x5/0xa
[  381.600467][T11624]  should_failslab+0xc2/0x120
[  381.600489][T11624]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  381.600507][T11624]  ? skb_clone+0x190/0x400
[  381.600531][T11624]  skb_clone+0x190/0x400
[  381.600550][T11624]  netlink_deliver_tap+0xaed/0xcc0
[  381.600572][T11624]  netlink_unicast+0x650/0x870
[  381.600598][T11624]  ? __pfx_netlink_unicast+0x10/0x10
[  381.600615][T11624]  ? __asan_memset+0x23/0x50
[  381.600631][T11624]  ? __build_skb_around+0x278/0x390
[  381.600647][T11624]  ? is_vmalloc_addr+0x86/0xa0
[  381.600666][T11624]  netlink_sendmsg+0x8b0/0xda0
[  381.600688][T11624]  ? __pfx_netlink_sendmsg+0x10/0x10
[  381.600709][T11624]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  381.600735][T11624]  sock_write_iter+0x566/0x610
[  381.600757][T11624]  ? __pfx_sock_write_iter+0x10/0x10
[  381.600784][T11624]  ? bpf_lsm_file_permission+0x9/0x10
[  381.600803][T11624]  ? security_file_permission+0x76/0x210
[  381.600821][T11624]  ? rw_verify_area+0xce/0x6d0
[  381.600840][T11624]  vfs_write+0x6ac/0x1070
[  381.600859][T11624]  ? __pfx_sock_write_iter+0x10/0x10
[  381.600881][T11624]  ? __pfx_vfs_write+0x10/0x10
[  381.600898][T11624]  ? find_held_lock+0x2b/0x80
[  381.600931][T11624]  ksys_write+0x1f8/0x250
[  381.600949][T11624]  ? __pfx_ksys_write+0x10/0x10
[  381.600973][T11624]  do_syscall_64+0x106/0xf80
[  381.600991][T11624]  ? clear_bhb_loop+0x40/0x90
[  381.601007][T11624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.601021][T11624] RIP: 0033:0x7f871839bf79
[  381.601034][T11624] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  381.601048][T11624] RSP: 002b:00007f87191ad028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  381.601061][T11624] RAX: ffffffffffffffda RBX: 00007f8718616180 RCX: 00007f871839bf79
[  381.601071][T11624] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000002
[  381.601079][T11624] RBP: 00007f87191ad090 R08: 0000000000000000 R09: 0000000000000000
[  381.601087][T11624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  381.601095][T11624] R13: 00007f8718616218 R14: 00007f8718616180 R15: 00007ffefbee44f8
[  381.601114][T11624]  </TASK>
[  381.601153][T11624] netlink: 'syz.3.1170': attribute type 1 has an invalid length.
[  382.058336][T11629] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input269
[  382.082223][T11624] netlink: 13 bytes leftover after parsing attributes in process `syz.3.1170'.
[  384.557667][T11665] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input270
[  384.632740][T11664] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input271
[  385.716949][T11674] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input272
[  386.024907][T11687] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input273
[  386.823148][T11691] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input274
[  386.974242][T11696] netlink: 'syz.0.1190': attribute type 11 has an invalid length.
[  387.001429][T11696] netlink: 'syz.0.1190': attribute type 11 has an invalid length.
[  387.030142][T11696] netlink: 'syz.0.1190': attribute type 11 has an invalid length.
[  387.058165][T11696] netlink: 'syz.0.1190': attribute type 11 has an invalid length.
[  387.946863][T11712] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input275
[  388.169364][T11719] netlink: 'syz.0.1192': attribute type 1 has an invalid length.
[  388.711475][T11729] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1195'.
[  388.803007][T11732] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1195'.
[  389.110350][T11737] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input276
[  389.169575][T11733] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input277
[  389.493625][T11740] netlink: 'syz.1.1198': attribute type 1 has an invalid length.
[  389.889503][T11748] netlink: 'syz.2.1199': attribute type 1 has an invalid length.
[  393.418832][T11805] netlink: 'syz.2.1207': attribute type 1 has an invalid length.
[  393.674461][T11802] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input278
[  394.810646][T11822] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input279
[  398.834502][T11875] netlink: 'syz.3.1221': attribute type 1 has an invalid length.
[  398.913329][T11876] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input280
[  399.551637][T11880] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input281
[  399.746233][T11888] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input282
[  401.170112][T11909] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input283
[  401.741541][T11913] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input284
[  404.520346][T11959] netlink: 'syz.2.1240': attribute type 1 has an invalid length.
[  405.077247][T11962] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input286
[  405.523492][T11972] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input287
[  405.653114][T11971] netlink: 'syz.3.1243': attribute type 1 has an invalid length.
[  408.951983][T12028] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input288
[  413.628426][T12087] netlink: 'syz.0.1271': attribute type 1 has an invalid length.
[  414.352838][T12091] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input289
[  417.220089][T12137] netlink: 'syz.0.1269': attribute type 1 has an invalid length.
[  419.995340][T12171] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input290
[  421.279117][T12196] netlink: 'syz.3.1283': attribute type 1 has an invalid length.
[  421.421174][T12198] netlink: 'syz.2.1282': attribute type 1 has an invalid length.
[  424.968297][T12243] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input291
[  425.878926][T12256] netlink: 'syz.2.1296': attribute type 1 has an invalid length.
[  425.928311][T12254] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input292
[  426.459511][T12264] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input293
[  427.048032][T12273] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input294
[  428.417403][T12295] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input295
[  429.869235][T12310] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input296
[  431.184712][T12326] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input297
[  431.477127][T12333] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input298
[  432.487640][T12343] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input299
[  434.205543][T12373] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input301
[  434.396999][T12379] netlink: 'syz.3.1321': attribute type 1 has an invalid length.
[  434.988862][T12383] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input302
[  437.826840][T12429] netlink: 'syz.1.1334': attribute type 1 has an invalid length.
[  439.401162][T12446] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input303
[  440.165284][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  440.174234][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  441.911318][T12482] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input305
[  443.108368][T12504] netlink: 'syz.1.1349': attribute type 1 has an invalid length.
[  445.316392][T12533] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input307
[  450.181889][T12602] netlink: 'syz.1.1371': attribute type 1 has an invalid length.
[  450.850704][T12605] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input309
[  451.216424][T12613] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input310
[  457.250110][T12690] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input311
[  462.461597][T12753] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input312
[  465.276259][T12796] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input313
[  465.599168][T12799] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input314
[  479.924134][T12955] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input315
[  482.912190][T12998] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input316
[  483.681225][T13012] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input317
[  483.836172][T13013] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input318
[  484.922176][T13032] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input319
[  488.284177][T13070] netlink: 'syz.2.1464': attribute type 1 has an invalid length.
[  489.293872][T13089] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input320
[  491.680009][T13125] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input321
[  494.426220][T13151] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input322
[  495.505770][T13169] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input323
[  495.940990][T13180] netlink: 'syz.2.1484': attribute type 1 has an invalid length.
[  498.596778][T13220] netlink: 'syz.0.1491': attribute type 1 has an invalid length.
[  500.465610][T13242] netlink: 'syz.3.1495': attribute type 1 has an invalid length.
[  501.607061][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  501.615024][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  502.266038][T13264] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input324
[  510.951933][T13359] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input325
[  510.972351][T13363] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input326
[  517.327699][T13435] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input328
[  518.820781][T13444] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input329
[  520.086095][T13466] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input330
[  520.519024][T13473] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input331
[  521.000222][T13482] netlink: 'syz.1.1539': attribute type 1 has an invalid length.
[  522.803152][T13510] netlink: 'syz.2.1546': attribute type 1 has an invalid length.
[  524.450694][T13520] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input332
[  525.068653][T13539] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input333
[  526.048251][T13547] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input334
[  527.314849][T13569] netlink: 'syz.1.1558': attribute type 1 has an invalid length.
[  528.760264][T13584] netlink: 'syz.1.1562': attribute type 1 has an invalid length.
[  529.281275][T13592] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input335
[  530.424583][T13611] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input336
[  531.568044][T13621] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input337
[  533.684283][T13649] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input338
[  534.563880][T13660] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input339
[  534.709019][T13667] netlink: 'syz.2.1578': attribute type 1 has an invalid length.
[  535.564121][T13674] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input340
[  539.751420][T13729] netlink: 'syz.3.1594': attribute type 1 has an invalid length.
[  546.575982][T13809] netlink: 'syz.2.1608': attribute type 1 has an invalid length.
[  547.869159][T13829] netlink: 'syz.2.1613': attribute type 1 has an invalid length.
[  548.765050][T13843] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input341
[  551.299791][T13881] netlink: 'syz.1.1623': attribute type 1 has an invalid length.
[  551.946166][T13895] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input342
[  552.064663][T13899] netlink: 'syz.0.1626': attribute type 1 has an invalid length.
[  556.393032][T13959] netlink: 'syz.2.1637': attribute type 1 has an invalid length.
[  560.583977][T14015] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input343
[  563.050523][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  563.056828][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  563.588081][T14053] netlink: 'syz.1.1653': attribute type 1 has an invalid length.
[  565.384125][T14073] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input344
[  565.588381][T14071] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input345
[  566.402033][T14094] netlink: 'syz.1.1662': attribute type 1 has an invalid length.
[  568.069787][T14119] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input346
[  568.251074][T14122] netlink: 'syz.0.1667': attribute type 1 has an invalid length.
[  569.645034][T14144] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input347
[  571.936037][T14175] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input348
[  572.901900][T14186] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input349
[  573.004394][T14196] netlink: 'syz.1.1681': attribute type 1 has an invalid length.
[  574.066190][T14205] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input350
[  576.978053][T14239] netlink: 'syz.1.1691': attribute type 1 has an invalid length.
[  577.573972][T14251] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input351
[  577.908631][T14257] netlink: 'syz.2.1694': attribute type 1 has an invalid length.
[  578.157718][T14262] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input352
[  578.658269][T14267] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input353
[  579.607631][T14287] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input354
[  581.954950][T14313] netlink: 'syz.0.1704': attribute type 1 has an invalid length.
[  582.164873][T14319] netlink: 'syz.2.1705': attribute type 1 has an invalid length.
[  582.291068][T14323] netlink: 'syz.1.1713': attribute type 1 has an invalid length.
[  582.691190][T14328] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input355
[  589.786383][T14417] netlink: 'syz.0.1724': attribute type 1 has an invalid length.
[  589.915333][T14419] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input356
[  589.926481][T14420] netlink: 'syz.3.1725': attribute type 1 has an invalid length.
[  590.947656][T14443] netlink: 'syz.2.1727': attribute type 1 has an invalid length.
[  591.662411][T14454] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input357
[  595.046324][T14496] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input358
[  596.093778][T14510] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input359
[  596.698107][T14514] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input360
[  598.192539][T14542] netlink: 'syz.0.1749': attribute type 1 has an invalid length.
[  601.148715][T14584] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input361
[  610.844960][T14703] netlink: 'syz.2.1778': attribute type 1 has an invalid length.
[  612.723572][T14730] netlink: 'syz.1.1782': attribute type 1 has an invalid length.
[  614.140980][T14750] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input362
[  614.264528][T14758] netlink: 'syz.1.1785': attribute type 1 has an invalid length.
[  614.928092][T14765] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input363
[  615.022478][T14767] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input364
[  615.340523][T14764] netlink: 'syz.1.1790': attribute type 1 has an invalid length.
[  618.162498][T14807] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input365
[  618.174593][T14811] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input366
[  618.186258][T14810] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input367
[  619.282294][T14829] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input368
[  619.439695][T14834] netlink: 'syz.1.1803': attribute type 1 has an invalid length.
[  621.848478][T14860] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input369
[  622.503078][T14875] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input370
[  623.861970][T14903] netlink: 'syz.0.1815': attribute type 1 has an invalid length.
[  624.482946][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  624.497473][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  627.270291][T14944] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input371
[  627.422252][T14943] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input372
[  636.237213][T15043] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input373
[  640.936739][T15097] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input374
[  643.377227][T15136] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input375
[  643.521255][T15134] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input376
[  645.276511][T15163] netlink: 'syz.3.1866': attribute type 1 has an invalid length.
[  646.108550][T15173] netlink: 'syz.0.1868': attribute type 1 has an invalid length.
[  647.816625][T15192] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input377
[  647.904752][T15199] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input378
[  650.049578][T15233] netlink: 'syz.1.1878': attribute type 1 has an invalid length.
[  652.939748][T15260] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input379
[  660.812648][T15353] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input380
[  665.010553][T15412] netlink: 'syz.3.1913': attribute type 1 has an invalid length.
[  668.524325][T15452] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input381
[  670.100562][T15479] netlink: 'syz.1.1926': attribute type 1 has an invalid length.
[  673.424678][T15517] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input382
[  673.500261][T15524] netlink: 'syz.3.1933': attribute type 1 has an invalid length.
[  677.974762][T15556] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input383
[  681.360473][T15592] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input384
[  683.079882][T15620] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input385
[  685.922447][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  685.928988][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  686.291199][T15661] netlink: 'syz.2.1960': attribute type 1 has an invalid length.
[  687.903339][T15691] netlink: 'syz.2.1964': attribute type 1 has an invalid length.
[  690.747015][T15720] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input386
[  693.833365][T15769] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input387
[  695.956078][T15804] netlink: 'syz.0.1983': attribute type 1 has an invalid length.
[  696.945335][T15820] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input388
[  697.911906][T15835] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input389
[  702.928443][T15895] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input390
[  704.565220][T15920] netlink: 'syz.0.2009': attribute type 1 has an invalid length.
[  706.250085][T15948] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input391
[  710.200436][T16003] netlink: 'syz.2.2024': attribute type 1 has an invalid length.
[  710.517559][T16006] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input392
[  718.323321][T16055] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input393
[  721.183598][T16080] netlink: 'syz.3.2038': attribute type 1 has an invalid length.
[  725.235449][T16133] netlink: 'syz.0.2051': attribute type 1 has an invalid length.
[  732.063013][T16190] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input394
[  736.206757][T16231] netlink: 'syz.0.2070': attribute type 1 has an invalid length.
[  737.440042][T16254] netlink: 'syz.3.2073': attribute type 1 has an invalid length.
[  738.590624][T16275] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input395
[  738.947725][T16282] netlink: 'syz.2.2078': attribute type 1 has an invalid length.
[  740.529367][T16304] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input396
[  743.396766][T16334] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input397
[  744.148020][T16351] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input398
[  747.368276][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  747.385800][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  754.468659][T16463] netlink: 'syz.2.2113': attribute type 1 has an invalid length.
[  757.870628][T16483] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input399
[  759.119480][T16507] netlink: 'syz.3.2119': attribute type 1 has an invalid length.
[  761.803719][T16538] netlink: 'syz.2.2126': attribute type 1 has an invalid length.
[  763.374984][T16554] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input400
[  765.527120][T16583] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input401
[  770.382181][T16646] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input402
[  773.377752][T16685] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input403
[  773.736804][T16682] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input404
[  776.424509][T16707] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input405
[  776.902857][T16714] netlink: 'syz.3.2161': attribute type 1 has an invalid length.
[  779.125890][T16739] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input406
[  779.942453][T16755] netlink: 'syz.3.2168': attribute type 1 has an invalid length.
[  781.888853][T16781] netlink: 'syz.1.2175': attribute type 1 has an invalid length.
[  788.331166][T16833] netlink: 'syz.2.2182': attribute type 1 has an invalid length.
[  790.089490][T16856] netlink: 'syz.1.2189': attribute type 1 has an invalid length.
[  790.610301][T16863] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input407
[  794.365386][T16924] netlink: 'syz.3.2201': attribute type 1 has an invalid length.
[  795.047207][T16926] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input408
[  795.222022][T16932] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input409
[  798.465419][T16983] netlink: 'syz.1.2217': attribute type 1 has an invalid length.
[  798.980373][T16985] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input410
[  807.406983][T17038] netlink: 'syz.0.2227': attribute type 1 has an invalid length.
[  808.800761][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  808.807121][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  810.172009][T17075] netlink: 'syz.0.2236': attribute type 1 has an invalid length.
[  812.956241][T17103] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input411
[  813.790348][T17127] netlink: 'syz.2.2246': attribute type 1 has an invalid length.
[  815.201103][T17146] netlink: 'syz.2.2249': attribute type 1 has an invalid length.
[  816.764005][T17166] netlink: 'syz.0.2252': attribute type 1 has an invalid length.
[  818.416581][T17194] netlink: 'syz.1.2258': attribute type 1 has an invalid length.
[  818.985201][T17200] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input412
[  819.101142][T17201] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input413
[  821.797843][T17240] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input414
[  822.711604][T17249] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input415
[  823.330285][T17268] netlink: 'syz.3.2270': attribute type 1 has an invalid length.
[  828.871608][T17299] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input416
[  830.157540][T17317] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input417
[  835.496884][T17387] netlink: 'syz.1.2291': attribute type 1 has an invalid length.
[  838.158269][T17418] netlink: 'syz.2.2297': attribute type 1 has an invalid length.
[  850.686434][T17574] netlink: 'syz.1.2324': attribute type 1 has an invalid length.
[  852.210140][T17592] netlink: 'syz.1.2327': attribute type 1 has an invalid length.
[  853.276847][T17604] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input418
[  853.581662][T17607] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input419
[  854.647336][T17628] netlink: 'syz.1.2335': attribute type 1 has an invalid length.
[  856.136222][T17654] netlink: 'syz.3.2341': attribute type 1 has an invalid length.
[  857.569161][T17668] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input420
[  858.424738][T17678] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input421
[  859.916813][T17698] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  859.925426][T17698] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  859.933854][T17698] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  859.942830][T17698] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  859.950549][T17698] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  860.554200][ T7085] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  860.734588][ T7085] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  860.963250][ T7085] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  861.112648][ T7085] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  861.340399][T17696] chnl_net:caif_netlink_parms(): no params data found
[  861.372581][T17715] netlink: 'syz.3.2351': attribute type 1 has an invalid length.
[  861.645521][ T7085] bridge_slave_1: left allmulticast mode
[  861.671690][ T7085] bridge_slave_1: left promiscuous mode
[  861.719155][ T7085] bridge0: port 2(bridge_slave_1) entered disabled state
[  861.764621][ T7085] bridge_slave_0: left allmulticast mode
[  861.791783][ T7085] bridge_slave_0: left promiscuous mode
[  861.833164][ T7085] bridge0: port 1(bridge_slave_0) entered disabled state
[  861.998752][ T5826] Bluetooth: hci4: command tx timeout
[  862.585160][ T7085] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  862.674622][ T7085] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  862.728831][ T7085] bond0 (unregistering): Released all slaves
[  862.961395][T17696] bridge0: port 1(bridge_slave_0) entered blocking state
[  863.009263][T17696] bridge0: port 1(bridge_slave_0) entered disabled state
[  863.016553][T17696] bridge_slave_0: entered allmulticast mode
[  863.079330][T17696] bridge_slave_0: entered promiscuous mode
[  863.276941][T17696] bridge0: port 2(bridge_slave_1) entered blocking state
[  863.299196][T17696] bridge0: port 2(bridge_slave_1) entered disabled state
[  863.330100][T17696] bridge_slave_1: entered allmulticast mode
[  863.358679][T17696] bridge_slave_1: entered promiscuous mode
[  863.370456][T17756] netlink: 'syz.0.2355': attribute type 1 has an invalid length.
[  863.502175][T17696] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  863.633684][T17696] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  863.780255][ T7085] hsr_slave_0: left promiscuous mode
[  863.817755][ T7085] hsr_slave_1: left promiscuous mode
[  863.832183][ T7085] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  864.003016][ T7085] batman_adv: batadv0: Removing interface: batadv_slave_0
[  864.026681][ T7085] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  864.047131][ T7085] batman_adv: batadv0: Removing interface: batadv_slave_1
[  864.077944][ T5826] Bluetooth: hci4: command tx timeout
[  864.136149][ T7085] veth1_macvtap: left promiscuous mode
[  864.155541][ T7085] veth0_macvtap: left promiscuous mode
[  864.174984][ T7085] veth1_vlan: left promiscuous mode
[  864.195177][ T7085] veth0_vlan: left promiscuous mode
[  864.742974][ T7085] team0 (unregistering): Port device team_slave_1 removed
[  864.759884][ T7085] team0 (unregistering): Port device team_slave_0 removed
[  864.918505][T17696] team0: Port device team_slave_0 added
[  864.940552][T17696] team0: Port device team_slave_1 added
[  865.162393][T17696] batman_adv: batadv0: Adding interface: batadv_slave_0
[  865.180920][T17696] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  865.251688][T17696] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  865.451416][T17696] batman_adv: batadv0: Adding interface: batadv_slave_1
[  865.475337][T17696] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  865.620208][T17696] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  865.883596][T17696] hsr_slave_0: entered promiscuous mode
[  865.930789][T17696] hsr_slave_1: entered promiscuous mode
[  865.968048][T17696] debugfs: 'hsr0' already exists in 'hsr'
[  866.002246][T17696] Cannot create hsr debugfs directory
[  866.158397][ T5826] Bluetooth: hci4: command tx timeout
[  868.237934][ T5826] Bluetooth: hci4: command tx timeout
[  868.330113][T17828] netlink: 'syz.0.2363': attribute type 1 has an invalid length.
[  868.545382][T17696] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  868.600285][T17696] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  868.661359][T17696] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  868.717373][T17696] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  869.012344][T17696] 8021q: adding VLAN 0 to HW filter on device bond0
[  869.098585][T17696] 8021q: adding VLAN 0 to HW filter on device team0
[  869.131859][T17853] netlink: 'syz.1.2365': attribute type 1 has an invalid length.
[  869.154694][ T7085] bridge0: port 1(bridge_slave_0) entered blocking state
[  869.161889][ T7085] bridge0: port 1(bridge_slave_0) entered forwarding state
[  869.363861][ T7090] bridge0: port 2(bridge_slave_1) entered blocking state
[  869.371124][ T7090] bridge0: port 2(bridge_slave_1) entered forwarding state
[  869.686466][T17696] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  870.261267][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  870.272905][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  870.487714][T17696] 8021q: adding VLAN 0 to HW filter on device batadv0
[  870.716740][T17696] veth0_vlan: entered promiscuous mode
[  870.797125][T17696] veth1_vlan: entered promiscuous mode
[  870.931069][T17696] veth0_macvtap: entered promiscuous mode
[  870.991036][T17696] veth1_macvtap: entered promiscuous mode
[  871.078983][T17696] batman_adv: batadv0: Interface activated: batadv_slave_0
[  871.139705][T17696] batman_adv: batadv0: Interface activated: batadv_slave_1
[  871.237436][ T7088] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  871.511748][ T7088] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  871.568046][ T7088] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  871.576768][ T7088] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  872.430487][ T7086] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  872.458305][ T7086] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  872.646043][ T7088] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  872.699124][ T7088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  873.879790][T17952] netlink: 'syz.2.2349': attribute type 1 has an invalid length.
[  883.148075][T18073] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input424
[  883.443510][T17698] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  883.455151][T17698] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  883.463694][T17698] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  883.472166][T17698] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  883.486479][T17698] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  884.453703][ T7087] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  884.822888][ T7087] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  885.244821][ T7087] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  885.451509][ T7087] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  885.521394][T17698] Bluetooth: hci3: command tx timeout
[  885.689831][T18083] chnl_net:caif_netlink_parms(): no params data found
[  886.016676][ T7087] bridge_slave_1: left allmulticast mode
[  886.052131][ T7087] bridge_slave_1: left promiscuous mode
[  886.088083][ T7087] bridge0: port 2(bridge_slave_1) entered disabled state
[  886.168505][ T7087] bridge_slave_0: left allmulticast mode
[  886.218001][ T7087] bridge_slave_0: left promiscuous mode
[  886.223791][ T7087] bridge0: port 1(bridge_slave_0) entered disabled state
[  887.024470][ T7087] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  887.094904][ T7087] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  887.166444][ T7087] bond0 (unregistering): Released all slaves
[  887.324271][ T7087] �: left promiscuous mode
[  887.600117][T17698] Bluetooth: hci3: command tx timeout
[  887.709639][T18083] bridge0: port 1(bridge_slave_0) entered blocking state
[  887.733752][T18083] bridge0: port 1(bridge_slave_0) entered disabled state
[  887.761397][T18083] bridge_slave_0: entered allmulticast mode
[  887.793506][T18083] bridge_slave_0: entered promiscuous mode
[  887.867329][T18083] bridge0: port 2(bridge_slave_1) entered blocking state
[  887.893446][T18083] bridge0: port 2(bridge_slave_1) entered disabled state
[  887.915004][T18083] bridge_slave_1: entered allmulticast mode
[  887.976712][T18083] bridge_slave_1: entered promiscuous mode
[  888.117503][T18083] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  888.166148][T18083] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  888.453561][ T7087] hsr_slave_0: left promiscuous mode
[  888.473192][ T7087] hsr_slave_1: left promiscuous mode
[  888.496362][ T7087] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  888.528064][ T7087] batman_adv: batadv0: Removing interface: batadv_slave_0
[  888.551747][ T7087] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  888.580160][ T7087] batman_adv: batadv0: Removing interface: batadv_slave_1
[  888.615153][ T7087] veth1_macvtap: left promiscuous mode
[  888.636563][ T7087] veth0_macvtap: left promiscuous mode
[  888.657963][ T7087] veth1_vlan: left promiscuous mode
[  888.663403][ T7087] veth0_vlan: left promiscuous mode
[  888.891415][ T7087] pim6reg (unregistering): left allmulticast mode
[  889.277775][ T7087] team0 (unregistering): Port device team_slave_0 removed
[  889.406411][T18083] team0: Port device team_slave_0 added
[  889.521743][T18083] team0: Port device team_slave_1 added
[  889.687406][T17698] Bluetooth: hci3: command tx timeout
[  889.694989][T18083] batman_adv: batadv0: Adding interface: batadv_slave_0
[  889.735759][T18083] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  889.856206][T18083] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  889.920084][T18083] batman_adv: batadv0: Adding interface: batadv_slave_1
[  889.990497][T18083] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  890.150824][T18083] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  890.913883][T18083] hsr_slave_0: entered promiscuous mode
[  890.951841][T18083] hsr_slave_1: entered promiscuous mode
[  890.974783][T18083] debugfs: 'hsr0' already exists in 'hsr'
[  891.000303][T18083] Cannot create hsr debugfs directory
[  891.761585][T17698] Bluetooth: hci3: command tx timeout
[  892.666603][T18083] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  892.748515][T18083] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  892.838629][T18083] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  893.061276][T18083] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  894.080765][T18083] 8021q: adding VLAN 0 to HW filter on device bond0
[  894.330449][T18083] 8021q: adding VLAN 0 to HW filter on device team0
[  894.527577][ T7087] bridge0: port 1(bridge_slave_0) entered blocking state
[  894.534747][ T7087] bridge0: port 1(bridge_slave_0) entered forwarding state
[  894.749864][ T7085] bridge0: port 2(bridge_slave_1) entered blocking state
[  894.757002][ T7085] bridge0: port 2(bridge_slave_1) entered forwarding state
[  895.430495][T18083] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  897.604206][T18083] 8021q: adding VLAN 0 to HW filter on device batadv0
[  898.609988][T18083] veth0_vlan: entered promiscuous mode
[  898.821866][T18083] veth1_vlan: entered promiscuous mode
[  899.325819][T18083] veth0_macvtap: entered promiscuous mode
[  899.604671][T18083] veth1_macvtap: entered promiscuous mode
[  899.709783][T18083] batman_adv: batadv0: Interface activated: batadv_slave_0
[  899.772664][T18083] batman_adv: batadv0: Interface activated: batadv_slave_1
[  899.870835][ T7082] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  899.905396][ T7082] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  899.993300][ T7082] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  900.202202][ T7082] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  900.605868][ T7090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  900.653840][ T7090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  900.779623][ T7086] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  900.816725][ T7086] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  901.828700][ T5826] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  901.837520][ T5826] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  901.846417][ T5826] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  901.854325][ T5826] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  901.862012][ T5826] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  902.610719][T17901] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  902.928749][T17901] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  903.076884][T17901] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  903.146260][T18385] chnl_net:caif_netlink_parms(): no params data found
[  903.266674][T18401] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input425
[  903.395356][T17901] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  903.918224][ T5826] Bluetooth: hci1: command tx timeout
[  904.518876][T17901] team0: left allmulticast mode
[  904.528013][T17901] team_slave_0: left allmulticast mode
[  904.533555][T17901] team0: left promiscuous mode
[  904.584051][T17901] team_slave_0: left promiscuous mode
[  904.620505][T17901] bridge0: port 3(team0) entered disabled state
[  904.804382][T17901] bridge_slave_0: left allmulticast mode
[  904.842793][T17901] bridge_slave_0: left promiscuous mode
[  904.878750][T17901] bridge0: port 1(bridge_slave_0) entered disabled state
[  905.666239][T17901] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  905.759290][T17901] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  905.822737][T17901] bond0 (unregistering): Released all slaves
[  905.889024][T18385] bridge0: port 1(bridge_slave_0) entered blocking state
[  905.925124][T18385] bridge0: port 1(bridge_slave_0) entered disabled state
[  905.974172][T18385] bridge_slave_0: entered allmulticast mode
[  905.998022][ T5826] Bluetooth: hci1: command tx timeout
[  906.014036][T18385] bridge_slave_0: entered promiscuous mode
[  906.066072][T18385] bridge0: port 2(bridge_slave_1) entered blocking state
[  906.101415][T18385] bridge0: port 2(bridge_slave_1) entered disabled state
[  906.130205][T18385] bridge_slave_1: entered allmulticast mode
[  906.157722][T18385] bridge_slave_1: entered promiscuous mode
[  906.382578][T18385] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  906.410632][T18385] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  906.601627][T18385] team0: Port device team_slave_0 added
[  906.778986][T18385] team0: Port device team_slave_1 added
[  906.983496][T18385] batman_adv: batadv0: Adding interface: batadv_slave_0
[  907.013888][T18385] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  907.145933][T18385] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  907.401645][T18385] batman_adv: batadv0: Adding interface: batadv_slave_1
[  907.454691][T18385] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  907.603342][T18385] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  907.808751][T17901] hsr_slave_0: left promiscuous mode
[  907.825480][T17901] hsr_slave_1: left promiscuous mode
[  907.835289][T17901] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  907.860360][T17901] batman_adv: batadv0: Removing interface: batadv_slave_0
[  907.886788][T17901] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  907.915691][T17901] batman_adv: batadv0: Removing interface: batadv_slave_1
[  907.945450][T17901] veth1_macvtap: left promiscuous mode
[  907.963012][T17901] veth0_macvtap: left promiscuous mode
[  907.974824][T17901] veth1_vlan: left promiscuous mode
[  907.989948][T17901] veth0_vlan: left promiscuous mode
[  908.078605][ T5826] Bluetooth: hci1: command tx timeout
[  908.316241][T17901] team0 (unregistering): Port device team_slave_0 removed
[  908.596948][T18385] hsr_slave_0: entered promiscuous mode
[  908.624137][T18385] hsr_slave_1: entered promiscuous mode
[  910.162476][ T5826] Bluetooth: hci1: command tx timeout
[  910.964910][T18385] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  911.072400][T18385] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  911.214295][T18385] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  911.279195][T18385] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  912.174838][T18385] 8021q: adding VLAN 0 to HW filter on device bond0
[  912.374967][T18385] 8021q: adding VLAN 0 to HW filter on device team0
[  912.449793][ T7090] bridge0: port 1(bridge_slave_0) entered blocking state
[  912.457031][ T7090] bridge0: port 1(bridge_slave_0) entered forwarding state
[  912.546951][ T7090] bridge0: port 2(bridge_slave_1) entered blocking state
[  912.554142][ T7090] bridge0: port 2(bridge_slave_1) entered forwarding state
[  912.715943][T18385] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  912.971034][T18385] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  913.883369][T18385] 8021q: adding VLAN 0 to HW filter on device batadv0
[  914.284440][T18385] veth0_vlan: entered promiscuous mode
[  914.470387][T18385] veth1_vlan: entered promiscuous mode
[  914.904054][T18385] veth0_macvtap: entered promiscuous mode
[  915.034496][T18385] veth1_macvtap: entered promiscuous mode
[  915.177035][T18385] batman_adv: batadv0: Interface activated: batadv_slave_0
[  915.280573][T18385] batman_adv: batadv0: Interface activated: batadv_slave_1
[  915.371601][ T7082] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  915.414394][ T7082] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  915.617919][ T7082] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  915.688863][ T7082] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  916.077379][ T7087] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  916.107009][ T7087] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  916.220443][ T7087] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  916.251899][ T7087] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  918.398304][T18646] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input426
[  919.303728][T17698] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  919.324196][T17698] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  919.334783][T17698] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  919.342731][T17698] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  919.354638][T17698] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  920.072896][ T7090] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  920.326981][ T7090] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  920.529040][ T7090] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  920.671981][ T7090] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  920.745547][T18656] chnl_net:caif_netlink_parms(): no params data found
[  921.226091][ T7090] bridge_slave_0: left allmulticast mode
[  921.259725][ T7090] bridge_slave_0: left promiscuous mode
[  921.299011][ T7090] bridge0: port 1(bridge_slave_0) entered disabled state
[  921.440902][T17698] Bluetooth: hci0: command tx timeout
[  922.074879][ T7090] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  922.131439][ T7090] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  922.206498][ T7090] bond0 (unregistering): Released all slaves
[  922.235978][T18656] bridge0: port 1(bridge_slave_0) entered blocking state
[  922.284919][T18656] bridge0: port 1(bridge_slave_0) entered disabled state
[  922.347380][T18656] bridge_slave_0: entered allmulticast mode
[  922.405828][T18656] bridge_slave_0: entered promiscuous mode
[  922.443536][T18656] bridge0: port 2(bridge_slave_1) entered blocking state
[  922.510752][T18656] bridge0: port 2(bridge_slave_1) entered disabled state
[  922.550242][T18656] bridge_slave_1: entered allmulticast mode
[  922.600606][T18656] bridge_slave_1: entered promiscuous mode
[  922.882137][T18656] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  923.007274][T18656] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  923.147247][ T7090] hsr_slave_0: left promiscuous mode
[  923.183868][ T7090] hsr_slave_1: left promiscuous mode
[  923.210768][ T7090] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  923.244175][ T7090] batman_adv: batadv0: Removing interface: batadv_slave_0
[  923.285295][ T7090] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  923.325876][ T7090] batman_adv: batadv0: Removing interface: batadv_slave_1
[  923.380389][ T7090] veth1_macvtap: left promiscuous mode
[  923.386017][ T7090] veth0_macvtap: left promiscuous mode
[  923.431805][ T7090] veth1_vlan: left promiscuous mode
[  923.437116][ T7090] veth0_vlan: left promiscuous mode
[  923.520023][ T5826] Bluetooth: hci0: command tx timeout
[  924.189483][ T7090] team0 (unregistering): Port device team_slave_0 removed
[  924.603421][T18656] team0: Port device team_slave_0 added
[  924.655260][T18656] team0: Port device team_slave_1 added
[  924.767313][T18656] batman_adv: batadv0: Adding interface: batadv_slave_0
[  924.796691][T18656] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  924.904643][T18656] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  924.983185][T18656] batman_adv: batadv0: Adding interface: batadv_slave_1
[  925.016089][T18656] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  925.099657][T18656] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  925.334086][T18656] hsr_slave_0: entered promiscuous mode
[  925.379480][T18656] hsr_slave_1: entered promiscuous mode
[  925.385496][T18656] debugfs: 'hsr0' already exists in 'hsr'
[  925.433726][T18656] Cannot create hsr debugfs directory
[  925.603083][ T5826] Bluetooth: hci0: command tx timeout
[  926.830960][T18656] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  926.899511][T18656] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  926.939258][T18656] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  927.002567][T18656] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  927.373367][T18656] 8021q: adding VLAN 0 to HW filter on device bond0
[  927.480791][T18656] 8021q: adding VLAN 0 to HW filter on device team0
[  927.535048][ T7085] bridge0: port 1(bridge_slave_0) entered blocking state
[  927.542252][ T7085] bridge0: port 1(bridge_slave_0) entered forwarding state
[  927.646424][ T7085] bridge0: port 2(bridge_slave_1) entered blocking state
[  927.653582][ T7085] bridge0: port 2(bridge_slave_1) entered forwarding state
[  927.679256][ T5826] Bluetooth: hci0: command tx timeout
[  928.466302][T18656] 8021q: adding VLAN 0 to HW filter on device batadv0
[  928.669110][T18656] veth0_vlan: entered promiscuous mode
[  928.729066][T18656] veth1_vlan: entered promiscuous mode
[  928.847473][T18656] veth0_macvtap: entered promiscuous mode
[  928.912038][T18656] veth1_macvtap: entered promiscuous mode
[  929.043883][T18656] batman_adv: batadv0: Interface activated: batadv_slave_0
[  929.095446][T18656] batman_adv: batadv0: Interface activated: batadv_slave_1
[  929.127359][T18816] ubi0: attaching mtd0
[  929.205016][ T7086] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  929.222509][T18816] ubi0: scanning is finished
[  929.246944][ T7086] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  929.343826][T18816] ubi0: empty MTD device detected
[  929.349570][ T7086] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  929.412487][ T7086] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  929.654414][T17901] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  929.698059][T17901] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  929.822865][ T7085] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  929.895719][ T7085] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  930.011223][T18816] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4
[  931.688269][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  931.694630][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  943.979790][T19056] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2505'.
[  944.002072][T19038] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2504'.
[  944.028852][T19049] netlink: 'syz.0.2505': attribute type 1 has an invalid length.
[  944.101218][T19049] netlink: 13 bytes leftover after parsing attributes in process `syz.0.2505'.
[  944.601649][T19067] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2506'.
[  944.722446][T19065] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2506'.
[  944.789271][T19065] FAULT_INJECTION: forcing a failure.
[  944.789271][T19065] name failslab, interval 1, probability 0, space 0, times 0
[  944.884939][T19065] CPU: 0 UID: 0 PID: 19065 Comm: syz.2.2506 Not tainted syzkaller #0 PREEMPT(full) 
[  944.884961][T19065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  944.884970][T19065] Call Trace:
[  944.884976][T19065]  <TASK>
[  944.884982][T19065]  dump_stack_lvl+0x100/0x190
[  944.885007][T19065]  should_fail_ex.cold+0x5/0xa
[  944.885024][T19065]  should_failslab+0xc2/0x120
[  944.885045][T19065]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  944.885064][T19065]  ? __alloc_skb+0x140/0x710
[  944.885085][T19065]  __alloc_skb+0x140/0x710
[  944.885099][T19065]  ? __alloc_skb+0x5b7/0x710
[  944.885114][T19065]  ? __pfx___alloc_skb+0x10/0x10
[  944.885136][T19065]  netlink_ack+0x117/0xb80
[  944.885161][T19065]  netlink_rcv_skb+0x333/0x420
[  944.885179][T19065]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  944.885196][T19065]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  944.885223][T19065]  ? ns_capable+0xd2/0xf0
[  944.885246][T19065]  nfnetlink_rcv+0x1b3/0x440
[  944.885261][T19065]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  944.885274][T19065]  ? netlink_deliver_tap+0x1ae/0xcc0
[  944.885296][T19065]  netlink_unicast+0x5aa/0x870
[  944.885317][T19065]  ? __pfx_netlink_unicast+0x10/0x10
[  944.885335][T19065]  ? __asan_memset+0x23/0x50
[  944.885351][T19065]  ? __build_skb_around+0x278/0x390
[  944.885366][T19065]  ? is_vmalloc_addr+0x86/0xa0
[  944.885385][T19065]  netlink_sendmsg+0x8b0/0xda0
[  944.885407][T19065]  ? __pfx_netlink_sendmsg+0x10/0x10
[  944.885428][T19065]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  944.885453][T19065]  sock_write_iter+0x566/0x610
[  944.885475][T19065]  ? __pfx_sock_write_iter+0x10/0x10
[  944.885503][T19065]  ? bpf_lsm_file_permission+0x9/0x10
[  944.885522][T19065]  ? security_file_permission+0x76/0x210
[  944.885541][T19065]  ? rw_verify_area+0xce/0x6d0
[  944.885560][T19065]  vfs_write+0x6ac/0x1070
[  944.885580][T19065]  ? __pfx_sock_write_iter+0x10/0x10
[  944.885602][T19065]  ? __pfx_vfs_write+0x10/0x10
[  944.885625][T19065]  ? find_held_lock+0x2b/0x80
[  944.885658][T19065]  ksys_write+0x1f8/0x250
[  944.885676][T19065]  ? __pfx_ksys_write+0x10/0x10
[  944.885700][T19065]  do_syscall_64+0x106/0xf80
[  944.885717][T19065]  ? clear_bhb_loop+0x40/0x90
[  944.885734][T19065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  944.885749][T19065] RIP: 0033:0x7f7ddd19bf79
[  944.885762][T19065] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  944.885776][T19065] RSP: 002b:00007f7dde087028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  944.885791][T19065] RAX: ffffffffffffffda RBX: 00007f7ddd416090 RCX: 00007f7ddd19bf79
[  944.885800][T19065] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000002
[  944.885809][T19065] RBP: 00007f7dde087090 R08: 0000000000000000 R09: 0000000000000000
[  944.885817][T19065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  944.885825][T19065] R13: 00007f7ddd416128 R14: 00007f7ddd416090 R15: 00007ffc3ded6228
[  944.885844][T19065]  </TASK>
[  945.970759][T19084] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input427
[  946.504232][T19096] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input428
[  946.538534][T19096] FAULT_INJECTION: forcing a failure.
[  946.538534][T19096] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  946.616260][T19096] CPU: 0 UID: 0 PID: 19096 Comm: syz.3.2513 Not tainted syzkaller #0 PREEMPT(full) 
[  946.616281][T19096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  946.616290][T19096] Call Trace:
[  946.616295][T19096]  <TASK>
[  946.616301][T19096]  dump_stack_lvl+0x100/0x190
[  946.616327][T19096]  should_fail_ex.cold+0x5/0xa
[  946.616344][T19096]  _copy_from_user+0x2e/0xd0
[  946.616362][T19096]  input_event_from_user+0xb9/0x290
[  946.616450][T19096]  ? __pfx_input_event_from_user+0x10/0x10
[  946.616472][T19096]  ? __pfx___might_resched+0x10/0x10
[  946.616496][T19096]  uinput_write+0xb9f/0xf60
[  946.616514][T19096]  ? common_file_perm+0x1ab/0x4f0
[  946.616531][T19096]  ? __pfx_uinput_write+0x10/0x10
[  946.616547][T19096]  ? bpf_lsm_file_permission+0x9/0x10
[  946.616566][T19096]  ? security_file_permission+0x76/0x210
[  946.616584][T19096]  ? iov_iter_advance+0xac/0x6d0
[  946.616599][T19096]  ? rw_verify_area+0xce/0x6d0
[  946.616622][T19096]  ? __pfx_uinput_write+0x10/0x10
[  946.616635][T19096]  vfs_writev+0x5ea/0xe10
[  946.616658][T19096]  ? __pfx_vfs_writev+0x10/0x10
[  946.616677][T19096]  ? find_held_lock+0x2b/0x80
[  946.616710][T19096]  ? __fget_files+0x21f/0x3d0
[  946.616733][T19096]  ? do_writev+0x28a/0x340
[  946.616750][T19096]  do_writev+0x28a/0x340
[  946.616768][T19096]  ? __pfx_do_writev+0x10/0x10
[  946.616790][T19096]  do_syscall_64+0x106/0xf80
[  946.616809][T19096]  ? clear_bhb_loop+0x40/0x90
[  946.616826][T19096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  946.616841][T19096] RIP: 0033:0x7f596a99bf79
[  946.616854][T19096] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  946.616867][T19096] RSP: 002b:00007f596b7b6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  946.616882][T19096] RAX: ffffffffffffffda RBX: 00007f596ac16090 RCX: 00007f596a99bf79
[  946.616891][T19096] RDX: 0000000000000008 RSI: 0000200000000340 RDI: 0000000000000009
[  946.616900][T19096] RBP: 00007f596b7b6090 R08: 0000000000000000 R09: 0000000000000000
[  946.616908][T19096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  946.616916][T19096] R13: 00007f596ac16128 R14: 00007f596ac16090 R15: 00007fff445eadb8
[  946.616935][T19096]  </TASK>
[  946.967944][T19104] binder: 19103:19104 ioctl c018620c 0 returned -1
[  949.619676][T19153] delete_channel: no stack
[  951.408892][T19192] zswap: compressor  not available
[  953.361620][T19230] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input429
[  954.277189][T19241] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2541'.
[  957.409231][T19282] FAULT_INJECTION: forcing a failure.
[  957.409231][T19282] name failslab, interval 1, probability 0, space 0, times 0
[  957.695283][T19282] CPU: 0 UID: 0 PID: 19282 Comm: syz.0.2547 Not tainted syzkaller #0 PREEMPT(full) 
[  957.695306][T19282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  957.695315][T19282] Call Trace:
[  957.695323][T19282]  <TASK>
[  957.695330][T19282]  dump_stack_lvl+0x100/0x190
[  957.695355][T19282]  should_fail_ex.cold+0x5/0xa
[  957.695372][T19282]  ? tomoyo_realpath_from_path+0xb6/0x690
[  957.695391][T19282]  should_failslab+0xc2/0x120
[  957.695411][T19282]  __kmalloc_noprof+0xe0/0x850
[  957.695440][T19282]  tomoyo_realpath_from_path+0xb6/0x690
[  957.695463][T19282]  tomoyo_path_number_perm+0x23c/0x580
[  957.695479][T19282]  ? tomoyo_path_number_perm+0x22e/0x580
[  957.695496][T19282]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  957.695531][T19282]  ? find_held_lock+0x2b/0x80
[  957.695551][T19282]  ? __fget_files+0x215/0x3d0
[  957.695569][T19282]  ? hook_file_ioctl_common+0x146/0x410
[  957.695590][T19282]  ? __fget_files+0x21f/0x3d0
[  957.695612][T19282]  security_file_ioctl+0xd3/0x230
[  957.695629][T19282]  __x64_sys_ioctl+0xb7/0x210
[  957.695648][T19282]  do_syscall_64+0x106/0xf80
[  957.695665][T19282]  ? clear_bhb_loop+0x40/0x90
[  957.695683][T19282]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  957.695698][T19282] RIP: 0033:0x7f0596d9bf79
[  957.695710][T19282] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  957.695729][T19282] RSP: 002b:00007f0597c1b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  957.695744][T19282] RAX: ffffffffffffffda RBX: 00007f0597016270 RCX: 00007f0596d9bf79
[  957.695753][T19282] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000004
[  957.695761][T19282] RBP: 00007f0597c1b090 R08: 0000000000000000 R09: 0000000000000000
[  957.695769][T19282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  957.695777][T19282] R13: 00007f0597016308 R14: 00007f0597016270 R15: 00007ffd282b2898
[  957.695796][T19282]  </TASK>
[  957.891732][T19282] ERROR: Out of memory at tomoyo_realpath_from_path.
[  958.868002][T19295] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input430
[  958.899812][T19295] FAULT_INJECTION: forcing a failure.
[  958.899812][T19295] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  958.939125][T19295] CPU: 0 UID: 0 PID: 19295 Comm: syz.2.2550 Not tainted syzkaller #0 PREEMPT(full) 
[  958.939147][T19295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  958.939155][T19295] Call Trace:
[  958.939160][T19295]  <TASK>
[  958.939166][T19295]  dump_stack_lvl+0x100/0x190
[  958.939191][T19295]  should_fail_ex.cold+0x5/0xa
[  958.939209][T19295]  _copy_from_user+0x2e/0xd0
[  958.939227][T19295]  input_event_from_user+0xb9/0x290
[  958.939249][T19295]  ? __pfx_input_event_from_user+0x10/0x10
[  958.939282][T19295]  uinput_write+0xb9f/0xf60
[  958.939300][T19295]  ? common_file_perm+0x1ab/0x4f0
[  958.939317][T19295]  ? __pfx_uinput_write+0x10/0x10
[  958.939332][T19295]  ? bpf_lsm_file_permission+0x9/0x10
[  958.939351][T19295]  ? security_file_permission+0x76/0x210
[  958.939370][T19295]  ? rw_verify_area+0xce/0x6d0
[  958.939389][T19295]  ? __pfx_uinput_write+0x10/0x10
[  958.939402][T19295]  vfs_writev+0x5ea/0xe10
[  958.939424][T19295]  ? __pfx_vfs_writev+0x10/0x10
[  958.939443][T19295]  ? find_held_lock+0x2b/0x80
[  958.939475][T19295]  ? __fget_files+0x21f/0x3d0
[  958.939500][T19295]  ? do_writev+0x28a/0x340
[  958.939516][T19295]  do_writev+0x28a/0x340
[  958.939534][T19295]  ? __pfx_do_writev+0x10/0x10
[  958.939557][T19295]  do_syscall_64+0x106/0xf80
[  958.939575][T19295]  ? clear_bhb_loop+0x40/0x90
[  958.939592][T19295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  958.939606][T19295] RIP: 0033:0x7f7ddd19bf79
[  958.939619][T19295] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  958.939633][T19295] RSP: 002b:00007f7dde066028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  958.939647][T19295] RAX: ffffffffffffffda RBX: 00007f7ddd416180 RCX: 00007f7ddd19bf79
[  958.939657][T19295] RDX: 0000000000000008 RSI: 0000200000000340 RDI: 000000000000000c
[  958.939666][T19295] RBP: 00007f7dde066090 R08: 0000000000000000 R09: 0000000000000000
[  958.939674][T19295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  958.939682][T19295] R13: 00007f7ddd416218 R14: 00007f7ddd416180 R15: 00007ffc3ded6228
[  958.939701][T19295]  </TASK>
[  959.604629][T19300] FAULT_INJECTION: forcing a failure.
[  959.604629][T19300] name fail_futex, interval 1, probability 0, space 0, times 0
[  959.637969][T19300] CPU: 0 UID: 0 PID: 19300 Comm: syz.1.2551 Not tainted syzkaller #0 PREEMPT(full) 
[  959.637993][T19300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  959.638003][T19300] Call Trace:
[  959.638009][T19300]  <TASK>
[  959.638016][T19300]  dump_stack_lvl+0x100/0x190
[  959.638042][T19300]  should_fail_ex.cold+0x5/0xa
[  959.638061][T19300]  get_futex_key+0x1d2/0x1620
[  959.638080][T19300]  ? __pfx_get_futex_key+0x10/0x10
[  959.638103][T19300]  futex_wake+0xea/0x530
[  959.638125][T19300]  ? __pfx_futex_wake+0x10/0x10
[  959.638154][T19300]  do_futex+0x32b/0x350
[  959.638171][T19300]  ? __pfx_do_futex+0x10/0x10
[  959.638194][T19300]  __x64_sys_futex+0x34f/0x4d0
[  959.638224][T19300]  ? __pfx___x64_sys_futex+0x10/0x10
[  959.638241][T19300]  ? set_cred_ucounts+0x10f/0x200
[  959.638271][T19300]  do_syscall_64+0x106/0xf80
[  959.638289][T19300]  ? clear_bhb_loop+0x40/0x90
[  959.638307][T19300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  959.638323][T19300] RIP: 0033:0x7fb13d59bf79
[  959.638337][T19300] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  959.638352][T19300] RSP: 002b:00007fb13e4770e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  959.638367][T19300] RAX: ffffffffffffffda RBX: 00007fb13d816098 RCX: 00007fb13d59bf79
[  959.638376][T19300] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb13d81609c
[  959.638385][T19300] RBP: 00007fb13d816090 R08: 0000000000000000 R09: 0000000000000000
[  959.638394][T19300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  959.638402][T19300] R13: 00007fb13d816128 R14: 00007ffeb74c7150 R15: 00007ffeb74c7238
[  959.638422][T19300]  </TASK>
[  960.130438][T19303] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input431
[  962.251294][T19341] binder: 19332:19341 ioctl 1269 0 returned -22
[  965.509979][T19396] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  966.598405][T19413] Device name cannot be null; rc = [-22]
[  967.045169][T19420] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2575'.
[  969.298045][   T29] audit: type=1800 audit(1771177932.695:10): pid=19440 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2581" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  971.008772][T19456] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  971.261227][T19466] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  971.654192][T19471] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input433
[  972.001374][T19468] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2588'.
[  973.569068][   T29] audit: type=1800 audit(1771177936.955:11): pid=19587 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2594" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  974.984728][T19629] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2599'.
[  975.045363][T19632] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2599'.
[  976.290019][T19652] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input434
[  978.269583][T19673] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2607'.
[  978.300263][T19673] netlink: 'syz.3.2607': attribute type 1 has an invalid length.
[  978.349005][T19673] netlink: 13 bytes leftover after parsing attributes in process `syz.3.2607'.
[  979.101478][T19679] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input435
[  979.505799][T19691] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input436
[  979.544097][T19693] netlink: 'syz.3.2612': attribute type 11 has an invalid length.
[  979.553427][T19691] FAULT_INJECTION: forcing a failure.
[  979.553427][T19691] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  979.592745][T19693] netlink: 'syz.3.2612': attribute type 11 has an invalid length.
[  979.614350][T19691] CPU: 0 UID: 0 PID: 19691 Comm: syz.1.2611 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  979.614374][T19691] Tainted: [L]=SOFTLOCKUP
[  979.614380][T19691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  979.614389][T19691] Call Trace:
[  979.614394][T19691]  <TASK>
[  979.614400][T19691]  dump_stack_lvl+0x100/0x190
[  979.614425][T19691]  should_fail_ex.cold+0x5/0xa
[  979.614450][T19691]  _copy_from_user+0x2e/0xd0
[  979.614468][T19691]  input_event_from_user+0xb9/0x290
[  979.614491][T19691]  ? __pfx_input_event_from_user+0x10/0x10
[  979.614512][T19691]  ? __pfx___might_resched+0x10/0x10
[  979.614536][T19691]  uinput_write+0xb9f/0xf60
[  979.614553][T19691]  ? common_file_perm+0x1ab/0x4f0
[  979.614570][T19691]  ? __pfx_uinput_write+0x10/0x10
[  979.614585][T19691]  ? bpf_lsm_file_permission+0x9/0x10
[  979.614604][T19691]  ? security_file_permission+0x76/0x210
[  979.614622][T19691]  ? iov_iter_advance+0xac/0x6d0
[  979.614637][T19691]  ? rw_verify_area+0xce/0x6d0
[  979.614656][T19691]  ? __pfx_uinput_write+0x10/0x10
[  979.614669][T19691]  vfs_writev+0x5ea/0xe10
[  979.614692][T19691]  ? __pfx_vfs_writev+0x10/0x10
[  979.614710][T19691]  ? find_held_lock+0x2b/0x80
[  979.614743][T19691]  ? __fget_files+0x21f/0x3d0
[  979.614767][T19691]  ? do_writev+0x28a/0x340
[  979.614783][T19691]  do_writev+0x28a/0x340
[  979.614801][T19691]  ? __pfx_do_writev+0x10/0x10
[  979.614824][T19691]  do_syscall_64+0x106/0xf80
[  979.614841][T19691]  ? clear_bhb_loop+0x40/0x90
[  979.614859][T19691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  979.614873][T19691] RIP: 0033:0x7fb13d59bf79
[  979.614886][T19691] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  979.614899][T19691] RSP: 002b:00007fb13e477028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  979.614914][T19691] RAX: ffffffffffffffda RBX: 00007fb13d816090 RCX: 00007fb13d59bf79
[  979.614923][T19691] RDX: 0000000000000008 RSI: 0000200000000340 RDI: 000000000000000c
[  979.614931][T19691] RBP: 00007fb13e477090 R08: 0000000000000000 R09: 0000000000000000
[  979.614940][T19691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  979.614947][T19691] R13: 00007fb13d816128 R14: 00007fb13d816090 R15: 00007ffeb74c7238
[  979.614966][T19691]  </TASK>
[  980.201799][T19703] FAULT_INJECTION: forcing a failure.
[  980.201799][T19703] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  980.392737][T19703] CPU: 0 UID: 0 PID: 19703 Comm: syz.3.2614 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  980.392763][T19703] Tainted: [L]=SOFTLOCKUP
[  980.392768][T19703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  980.392776][T19703] Call Trace:
[  980.392781][T19703]  <TASK>
[  980.392787][T19703]  dump_stack_lvl+0x100/0x190
[  980.392812][T19703]  should_fail_ex.cold+0x5/0xa
[  980.392825][T19703]  ? prepare_alloc_pages+0x16d/0x5f0
[  980.392850][T19703]  should_fail_alloc_page+0xeb/0x140
[  980.392872][T19703]  prepare_alloc_pages+0x1f0/0x5f0
[  980.392893][T19703]  ? is_bpf_text_address+0x8a/0x1a0
[  980.392915][T19703]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  980.392936][T19703]  ? __lock_acquire+0x4a5/0x2630
[  980.392954][T19703]  ? look_up_lock_class+0x55/0x120
[  980.392973][T19703]  ? look_up_lock_class+0x55/0x120
[  980.392992][T19703]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  980.393012][T19703]  ? find_held_lock+0x2b/0x80
[  980.393033][T19703]  ? __flush_work+0xa38/0xcb0
[  980.393051][T19703]  ? __flush_work+0xa38/0xcb0
[  980.393072][T19703]  ? __lock_acquire+0x4a5/0x2630
[  980.393092][T19703]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  980.393114][T19703]  ? policy_nodemask+0xed/0x4f0
[  980.393137][T19703]  alloc_pages_mpol+0x1fb/0x550
[  980.393158][T19703]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  980.393180][T19703]  ? find_held_lock+0x2b/0x80
[  980.393203][T19703]  alloc_pages_noprof+0x131/0x390
[  980.393227][T19703]  ? __pfx___pollwait+0x10/0x10
[  980.393245][T19703]  get_free_pages_noprof+0x10/0xb0
[  980.393264][T19703]  ? __fget_files+0x21f/0x3d0
[  980.393282][T19703]  __pollwait+0x29a/0x470
[  980.393300][T19703]  ? __pfx___pollwait+0x10/0x10
[  980.393317][T19703]  io_uring_poll+0xcb/0x390
[  980.393342][T19703]  ? __pfx_io_uring_poll+0x10/0x10
[  980.393359][T19703]  do_select+0xd54/0x1850
[  980.393390][T19703]  ? __pfx_do_select+0x10/0x10
[  980.393409][T19703]  ? __pfx___pollwait+0x10/0x10
[  980.393429][T19703]  ? __pfx_pollwake+0x10/0x10
[  980.393448][T19703]  ? __pfx_pollwake+0x10/0x10
[  980.393467][T19703]  ? __pfx_pollwake+0x10/0x10
[  980.393485][T19703]  ? __pfx_pollwake+0x10/0x10
[  980.393504][T19703]  ? __pfx_pollwake+0x10/0x10
[  980.393523][T19703]  ? __pfx_pollwake+0x10/0x10
[  980.393542][T19703]  ? __pfx_pollwake+0x10/0x10
[  980.393561][T19703]  ? __pfx_pollwake+0x10/0x10
[  980.393580][T19703]  ? __pfx_pollwake+0x10/0x10
[  980.393598][T19703]  ? find_held_lock+0x2b/0x80
[  980.393618][T19703]  ? __might_fault+0xc5/0x140
[  980.393634][T19703]  ? __might_fault+0xc5/0x140
[  980.393657][T19703]  ? core_sys_select+0x55b/0xbb0
[  980.393674][T19703]  core_sys_select+0x55b/0xbb0
[  980.393696][T19703]  ? __pfx_core_sys_select+0x10/0x10
[  980.393714][T19703]  ? get_pid_task+0xfc/0x250
[  980.393734][T19703]  ? get_pid_task+0x106/0x250
[  980.393762][T19703]  ? __mutex_unlock_slowpath+0x15c/0x790
[  980.393781][T19703]  ? __fget_files+0x215/0x3d0
[  980.393800][T19703]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  980.393822][T19703]  kern_select+0x20c/0x270
[  980.393841][T19703]  ? __pfx_kern_select+0x10/0x10
[  980.393862][T19703]  ? __pfx_ksys_write+0x10/0x10
[  980.393884][T19703]  __x64_sys_select+0xbd/0x160
[  980.393902][T19703]  ? do_syscall_64+0x95/0xf80
[  980.393919][T19703]  ? lockdep_hardirqs_on+0x78/0x100
[  980.393936][T19703]  do_syscall_64+0x106/0xf80
[  980.393952][T19703]  ? clear_bhb_loop+0x40/0x90
[  980.393970][T19703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  980.393984][T19703] RIP: 0033:0x7f596a99bf79
[  980.393997][T19703] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  980.394011][T19703] RSP: 002b:00007f596b7b6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  980.394025][T19703] RAX: ffffffffffffffda RBX: 00007f596ac16090 RCX: 00007f596a99bf79
[  980.394035][T19703] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000010
[  980.394042][T19703] RBP: 00007f596b7b6090 R08: 0000000000000000 R09: 0000000000000000
[  980.394050][T19703] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001
[  980.394059][T19703] R13: 00007f596ac16128 R14: 00007f596ac16090 R15: 00007fff445eadb8
[  980.394077][T19703]  </TASK>
[  981.355285][T19712] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE�r��҄y�*�"�l-���y–��
[  983.998805][T19764] FAULT_INJECTION: forcing a failure.
[  983.998805][T19764] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  984.066066][T19764] CPU: 0 UID: 0 PID: 19764 Comm: syz.3.2629 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  984.066092][T19764] Tainted: [L]=SOFTLOCKUP
[  984.066097][T19764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  984.066105][T19764] Call Trace:
[  984.066110][T19764]  <TASK>
[  984.066116][T19764]  dump_stack_lvl+0x100/0x190
[  984.066142][T19764]  should_fail_ex.cold+0x5/0xa
[  984.066156][T19764]  ? prepare_alloc_pages+0x16d/0x5f0
[  984.066180][T19764]  should_fail_alloc_page+0xeb/0x140
[  984.066202][T19764]  prepare_alloc_pages+0x1f0/0x5f0
[  984.066223][T19764]  ? kernel_text_address+0x8d/0x100
[  984.066245][T19764]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  984.066270][T19764]  ? copy_splice_read+0x1a3/0xb90
[  984.066288][T19764]  ? stack_trace_save+0x8e/0xc0
[  984.066310][T19764]  ? __pfx_stack_trace_save+0x10/0x10
[  984.066332][T19764]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  984.066352][T19764]  ? copy_splice_read+0x1a3/0xb90
[  984.066370][T19764]  ? kasan_save_stack+0x3f/0x50
[  984.066387][T19764]  ? kasan_save_stack+0x30/0x50
[  984.066403][T19764]  ? kasan_save_track+0x14/0x30
[  984.066420][T19764]  ? __kasan_kmalloc+0xaa/0xb0
[  984.066437][T19764]  ? __kmalloc_noprof+0x301/0x850
[  984.066453][T19764]  ? copy_splice_read+0x1a3/0xb90
[  984.066470][T19764]  ? do_splice_read+0x285/0x370
[  984.066501][T19764]  alloc_pages_bulk_noprof+0x782/0x1490
[  984.066526][T19764]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  984.066549][T19764]  ? __kmalloc_noprof+0x320/0x850
[  984.066570][T19764]  copy_splice_read+0x1e1/0xb90
[  984.066590][T19764]  ? pipe_lock+0x69/0x80
[  984.066610][T19764]  ? __pfx_copy_splice_read+0x10/0x10
[  984.066637][T19764]  ? __fget_files+0x215/0x3d0
[  984.066658][T19764]  ? __pfx_copy_splice_read+0x10/0x10
[  984.066676][T19764]  do_splice_read+0x285/0x370
[  984.066697][T19764]  splice_file_to_pipe+0x82/0x120
[  984.066719][T19764]  do_sendfile+0x366/0xe20
[  984.066742][T19764]  ? __pfx_do_sendfile+0x10/0x10
[  984.066760][T19764]  ? __fget_files+0x21f/0x3d0
[  984.066783][T19764]  __x64_sys_sendfile64+0x1d8/0x220
[  984.066804][T19764]  ? ksys_write+0x1ac/0x250
[  984.066822][T19764]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  984.066849][T19764]  do_syscall_64+0x106/0xf80
[  984.066866][T19764]  ? clear_bhb_loop+0x40/0x90
[  984.066883][T19764]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  984.066897][T19764] RIP: 0033:0x7f596a99bf79
[  984.066910][T19764] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  984.066924][T19764] RSP: 002b:00007f596b7d7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  984.066938][T19764] RAX: ffffffffffffffda RBX: 00007f596ac15fa0 RCX: 00007f596a99bf79
[  984.066948][T19764] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001
[  984.066955][T19764] RBP: 00007f596b7d7090 R08: 0000000000000000 R09: 0000000000000000
[  984.066964][T19764] R10: 0000000000000c01 R11: 0000000000000246 R12: 0000000000000001
[  984.066972][T19764] R13: 00007f596ac16038 R14: 00007f596ac15fa0 R15: 00007fff445eadb8
[  984.066995][T19764]  </TASK>
[  985.014977][T17698] Bluetooth: hci4: command 0x0406 tx timeout
[  985.309835][T19783] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2632'.
[  985.364587][T19784] netlink: 'syz.2.2632': attribute type 1 has an invalid length.
[  985.466700][T19784] netlink: 13 bytes leftover after parsing attributes in process `syz.2.2632'.
[  991.170222][T19863] warning: `syz.3.2647' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  991.257166][T19863] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2647'.
[  991.362596][T19870] FAULT_INJECTION: forcing a failure.
[  991.362596][T19870] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  991.444390][T19870] CPU: 0 UID: 0 PID: 19870 Comm: syz.0.2649 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  991.444415][T19870] Tainted: [L]=SOFTLOCKUP
[  991.444420][T19870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  991.444429][T19870] Call Trace:
[  991.444433][T19870]  <TASK>
[  991.444439][T19870]  dump_stack_lvl+0x100/0x190
[  991.444465][T19870]  should_fail_ex.cold+0x5/0xa
[  991.444482][T19870]  _copy_to_user+0x32/0xd0
[  991.444501][T19870]  simple_read_from_buffer+0xcb/0x170
[  991.444521][T19870]  proc_fail_nth_read+0x1af/0x230
[  991.444543][T19870]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  991.444568][T19870]  ? rw_verify_area+0xce/0x6d0
[  991.444585][T19870]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  991.444605][T19870]  vfs_read+0x1e4/0xb30
[  991.444626][T19870]  ? __pfx_vfs_read+0x10/0x10
[  991.444644][T19870]  ? __fget_files+0x215/0x3d0
[  991.444667][T19870]  ? __fget_files+0x21f/0x3d0
[  991.444691][T19870]  ksys_read+0x12a/0x250
[  991.444709][T19870]  ? __pfx_ksys_read+0x10/0x10
[  991.444732][T19870]  do_syscall_64+0x106/0xf80
[  991.444750][T19870]  ? clear_bhb_loop+0x40/0x90
[  991.444767][T19870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  991.444781][T19870] RIP: 0033:0x7f0596d5c84e
[  991.444795][T19870] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  991.444809][T19870] RSP: 002b:00007f0597c7dfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  991.444824][T19870] RAX: ffffffffffffffda RBX: 00007f0597c7e6c0 RCX: 00007f0596d5c84e
[  991.444833][T19870] RDX: 000000000000000f RSI: 00007f0597c7e0a0 RDI: 0000000000000004
[  991.444841][T19870] RBP: 00007f0597c7e090 R08: 0000000000000000 R09: 0000000000000000
[  991.444849][T19870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  991.444857][T19870] R13: 00007f0597016038 R14: 00007f0597015fa0 R15: 00007ffd282b2898
[  991.444876][T19870]  </TASK>
[  991.845751][T19878] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2650'.
[  993.144722][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  993.151242][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  994.326708][T19916] FAULT_INJECTION: forcing a failure.
[  994.326708][T19916] name failslab, interval 1, probability 0, space 0, times 0
[  994.403939][T19916] CPU: 0 UID: 0 PID: 19916 Comm: syz.2.2657 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  994.403965][T19916] Tainted: [L]=SOFTLOCKUP
[  994.403970][T19916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  994.403978][T19916] Call Trace:
[  994.403984][T19916]  <TASK>
[  994.403989][T19916]  dump_stack_lvl+0x100/0x190
[  994.404015][T19916]  should_fail_ex.cold+0x5/0xa
[  994.404032][T19916]  should_failslab+0xc2/0x120
[  994.404060][T19916]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  994.404079][T19916]  ? xas_split_alloc+0x11c/0x4a0
[  994.404102][T19916]  xas_split_alloc+0x11c/0x4a0
[  994.404125][T19916]  __folio_split+0x739/0x1b60
[  994.404148][T19916]  ? __pfx___folio_split+0x10/0x10
[  994.404162][T19916]  ? folio_alloc_swap+0xbb0/0x1aa0
[  994.404182][T19916]  ? folio_alloc_swap+0xbb0/0x1aa0
[  994.404204][T19916]  ? folio_alloc_swap+0x1238/0x1aa0
[  994.404228][T19916]  shmem_writeout+0x798/0x1a00
[  994.404250][T19916]  ? __pfx_shmem_writeout+0x10/0x10
[  994.404266][T19916]  ? __pfx_try_to_unmap+0x10/0x10
[  994.404283][T19916]  ? find_held_lock+0x2b/0x80
[  994.404305][T19916]  ? inode_to_bdi+0x9e/0x160
[  994.404325][T19916]  ? folio_clear_dirty_for_io+0x178/0x820
[  994.404351][T19916]  shrink_folio_list+0x3b72/0x6060
[  994.404375][T19916]  ? __pfx_shrink_folio_list+0x10/0x10
[  994.404392][T19916]  ? __lock_acquire+0x4a5/0x2630
[  994.404410][T19916]  ? lock_acquire+0x1cf/0x380
[  994.404430][T19916]  ? lock_acquire+0x1cf/0x380
[  994.404446][T19916]  ? find_held_lock+0x2b/0x80
[  994.404466][T19916]  ? is_bpf_text_address+0x8a/0x1a0
[  994.404485][T19916]  ? is_bpf_text_address+0x8a/0x1a0
[  994.404524][T19916]  reclaim_folio_list+0xdc/0x600
[  994.404542][T19916]  ? __lock_acquire+0x4a5/0x2630
[  994.404558][T19916]  ? __pfx_reclaim_folio_list+0x10/0x10
[  994.404582][T19916]  ? lru_gen_update_size+0x431/0xe40
[  994.404602][T19916]  ? lru_gen_del_folio+0x382/0x5f0
[  994.404618][T19916]  reclaim_pages+0x428/0x5e0
[  994.404637][T19916]  ? __pfx_reclaim_pages+0x10/0x10
[  994.404652][T19916]  ? madvise_cold_or_pageout_pte_range+0x2247/0x2720
[  994.404677][T19916]  ? folio_isolate_lru+0xd5/0xaa0
[  994.404696][T19916]  madvise_cold_or_pageout_pte_range+0x14e2/0x2720
[  994.404724][T19916]  ? __lock_acquire+0x4a5/0x2630
[  994.404742][T19916]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  994.404765][T19916]  ? tomoyo_check_open_permission+0x1a2/0x3c0
[  994.404785][T19916]  ? css_rstat_updated+0x1ce/0x5a0
[  994.404801][T19916]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  994.404825][T19916]  walk_pgd_range+0xc04/0x1eb0
[  994.404856][T19916]  ? __pfx_walk_pgd_range+0x10/0x10
[  994.404875][T19916]  ? folios_put_refs+0x66d/0x840
[  994.404896][T19916]  __walk_page_range+0x163/0x820
[  994.404923][T19916]  walk_page_range_vma_unsafe+0x209/0x8f0
[  994.404945][T19916]  ? __pfx_walk_page_range_vma_unsafe+0x10/0x10
[  994.404968][T19916]  ? find_held_lock+0x2b/0x80
[  994.404987][T19916]  ? mlock_drain_local+0x254/0x4e0
[  994.405004][T19916]  ? mlock_drain_local+0x254/0x4e0
[  994.405024][T19916]  walk_page_range_vma+0x63/0x90
[  994.405049][T19916]  madvise_pageout+0x259/0x540
[  994.405071][T19916]  ? __pfx_madvise_pageout+0x10/0x10
[  994.405102][T19916]  ? mtree_range_walk+0x6ce/0xcd0
[  994.405120][T19916]  madvise_vma_behavior+0x3d8/0x2ec0
[  994.405143][T19916]  ? mas_prev_setup.constprop.0+0xb6/0x9c0
[  994.405162][T19916]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  994.405184][T19916]  ? mas_prev+0x9b/0xf0
[  994.405202][T19916]  ? __pfx_mas_prev+0x10/0x10
[  994.405226][T19916]  ? find_vma_prev+0xd8/0x150
[  994.405245][T19916]  ? _kstrtoull+0x13c/0x1f0
[  994.405265][T19916]  ? __pfx_find_vma_prev+0x10/0x10
[  994.405297][T19916]  madvise_walk_vmas+0x2fe/0xa90
[  994.405314][T19916]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  994.405332][T19916]  madvise_do_behavior+0x1ea/0x510
[  994.405348][T19916]  ? __pfx_madvise_do_behavior+0x10/0x10
[  994.405362][T19916]  ? down_read+0x13b/0x460
[  994.405391][T19916]  do_madvise+0x195/0x240
[  994.405404][T19916]  ? __pfx_do_madvise+0x10/0x10
[  994.405416][T19916]  ? __mutex_unlock_slowpath+0x15c/0x790
[  994.405447][T19916]  ? ksys_write+0x1ac/0x250
[  994.405466][T19916]  ? __pfx_ksys_write+0x10/0x10
[  994.405484][T19916]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  994.405504][T19916]  __x64_sys_madvise+0xa9/0x110
[  994.405517][T19916]  ? lockdep_hardirqs_on+0x78/0x100
[  994.405535][T19916]  do_syscall_64+0x106/0xf80
[  994.405552][T19916]  ? clear_bhb_loop+0x40/0x90
[  994.405569][T19916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  994.405583][T19916] RIP: 0033:0x7f7ddd19bf79
[  994.405596][T19916] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  994.405609][T19916] RSP: 002b:00007f7dde066028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  994.405623][T19916] RAX: ffffffffffffffda RBX: 00007f7ddd416180 RCX: 00007f7ddd19bf79
[  994.405632][T19916] RDX: 0000000000000015 RSI: 00000000002003f2 RDI: 0000000000000000
[  994.405640][T19916] RBP: 00007f7dde066090 R08: 0000000000000000 R09: 0000000000000000
[  994.405648][T19916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  994.405656][T19916] R13: 00007f7ddd416218 R14: 00007f7ddd416180 R15: 00007ffc3ded6228
[  994.405675][T19916]  </TASK>
[  995.480552][T19917] syz.3.2658 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  995.986125][T19925] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input439
[ 1001.849627][   T29] audit: type=1800 audit(1771177965.245:12): pid=20008 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2673" name="dbroot" dev="configfs" ino=91900 res=0 errno=0
[ 1004.423546][T20049] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2680'.
[ 1004.471997][T20049] netlink: 'syz.0.2680': attribute type 1 has an invalid length.
[ 1004.514633][T20049] netlink: 13 bytes leftover after parsing attributes in process `syz.0.2680'.
[ 1007.437100][T20087] FAULT_INJECTION: forcing a failure.
[ 1007.437100][T20087] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1007.482538][T20087] CPU: 0 UID: 0 PID: 20087 Comm: syz.0.2688 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1007.482565][T20087] Tainted: [L]=SOFTLOCKUP
[ 1007.482570][T20087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1007.482582][T20087] Call Trace:
[ 1007.482587][T20087]  <TASK>
[ 1007.482593][T20087]  dump_stack_lvl+0x100/0x190
[ 1007.482618][T20087]  should_fail_ex.cold+0x5/0xa
[ 1007.482635][T20087]  get_futex_key+0x106f/0x1620
[ 1007.482652][T20087]  ? __pfx_get_futex_key+0x10/0x10
[ 1007.482667][T20087]  ? find_held_lock+0x2b/0x80
[ 1007.482688][T20087]  ? get_pid_task+0xfc/0x250
[ 1007.482703][T20087]  ? get_pid_task+0xfc/0x250
[ 1007.482723][T20087]  futex_wake+0xea/0x530
[ 1007.482741][T20087]  ? proc_fail_nth_write+0x9f/0x220
[ 1007.482762][T20087]  ? find_held_lock+0x2b/0x80
[ 1007.482785][T20087]  ? __pfx_futex_wake+0x10/0x10
[ 1007.482806][T20087]  ? ksys_write+0x190/0x250
[ 1007.482826][T20087]  ? ksys_write+0x190/0x250
[ 1007.482850][T20087]  do_futex+0x32b/0x350
[ 1007.482866][T20087]  ? __pfx_do_futex+0x10/0x10
[ 1007.482887][T20087]  __x64_sys_futex+0x34f/0x4d0
[ 1007.482904][T20087]  ? fput+0x79/0x100
[ 1007.482917][T20087]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1007.482932][T20087]  ? ksys_write+0x1ac/0x250
[ 1007.482950][T20087]  ? __pfx_ksys_write+0x10/0x10
[ 1007.482974][T20087]  do_syscall_64+0x106/0xf80
[ 1007.482995][T20087]  ? clear_bhb_loop+0x40/0x90
[ 1007.483012][T20087]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1007.483027][T20087] RIP: 0033:0x7f0596d9bf79
[ 1007.483072][T20087] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1007.483086][T20087] RSP: 002b:00007f0597c5d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1007.483100][T20087] RAX: ffffffffffffffda RBX: 00007f0597016090 RCX: 00007f0596d9bf79
[ 1007.483110][T20087] RDX: 0000000000000f3b RSI: 000000000000000a RDI: 0000200000000080
[ 1007.483118][T20087] RBP: 00007f0597c5d090 R08: 0000000000000000 R09: 00000000440a48ce
[ 1007.483126][T20087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1007.483134][T20087] R13: 00007f0597016128 R14: 00007f0597016090 R15: 00007ffd282b2898
[ 1007.483154][T20087]  </TASK>
[ 1010.559976][T17698] Bluetooth: hci3: command 0x0406 tx timeout
[ 1012.664888][T20143] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1012.671583][T20143] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1013.037442][T20145] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2696'.
[ 1015.381588][T20185] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input442
[ 1017.004942][T20203] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1017.011433][T20203] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1017.038395][T20196] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input443
[ 1017.425021][T20207] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2708'.
[ 1017.841737][T20223] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2710'.
[ 1019.869325][T20246] binder: 20241:20246 ioctl 1269 0 returned -22
[ 1020.104437][T20249] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2723'.
[ 1020.854784][T20263] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input445
[ 1021.684814][T20273] ptrace attach of "./syz-executor exec"[18385] was attempted by "./syz-executor exec"[20273]
[ 1021.741861][T20273] FAULT_INJECTION: forcing a failure.
[ 1021.741861][T20273] name failslab, interval 1, probability 0, space 0, times 0
[ 1021.797389][T20273] CPU: 0 UID: 0 PID: 20273 Comm: syz.0.2718 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1021.797416][T20273] Tainted: [L]=SOFTLOCKUP
[ 1021.797422][T20273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1021.797431][T20273] Call Trace:
[ 1021.797437][T20273]  <TASK>
[ 1021.797443][T20273]  dump_stack_lvl+0x100/0x190
[ 1021.797470][T20273]  should_fail_ex.cold+0x5/0xa
[ 1021.797489][T20273]  should_failslab+0xc2/0x120
[ 1021.797511][T20273]  __kmalloc_cache_node_noprof+0x7d/0x770
[ 1021.797532][T20273]  ? do_kmem_cache_create+0x16d/0x540
[ 1021.797554][T20273]  ? __raw_spin_lock_init+0x3a/0x110
[ 1021.797577][T20273]  do_kmem_cache_create+0x16d/0x540
[ 1021.797601][T20273]  __kmem_cache_create_args+0x386/0x420
[ 1021.797624][T20273]  mon_text_open+0x333/0x510
[ 1021.797649][T20273]  ? __pfx_mon_text_open+0x10/0x10
[ 1021.797666][T20273]  ? __pfx_mon_text_ctor+0x10/0x10
[ 1021.797682][T20273]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1021.797697][T20273]  ? lockdown_is_locked_down+0x3d/0x140
[ 1021.797719][T20273]  ? bpf_lsm_locked_down+0x9/0x10
[ 1021.797744][T20273]  ? __pfx_mon_text_open+0x10/0x10
[ 1021.797757][T20273]  full_proxy_open_regular+0x1b6/0x370
[ 1021.797782][T20273]  do_dentry_open+0x6d8/0x1660
[ 1021.797806][T20273]  ? __pfx_full_proxy_open_regular+0x10/0x10
[ 1021.797856][T20273]  vfs_open+0x82/0x3f0
[ 1021.797874][T20273]  path_openat+0x208c/0x31a0
[ 1021.797904][T20273]  ? __pfx_path_openat+0x10/0x10
[ 1021.797933][T20273]  do_file_open+0x20e/0x430
[ 1021.797956][T20273]  ? __pfx_do_file_open+0x10/0x10
[ 1021.797991][T20273]  ? alloc_fd+0x476/0x790
[ 1021.798013][T20273]  ? do_getname+0x191/0x390
[ 1021.798030][T20273]  do_sys_openat2+0x10d/0x1e0
[ 1021.798046][T20273]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1021.798063][T20273]  ? blkcg_maybe_throttle_current+0x5df/0xeb0
[ 1021.798089][T20273]  __x64_sys_openat+0x12d/0x210
[ 1021.798105][T20273]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1021.798129][T20273]  do_syscall_64+0x106/0xf80
[ 1021.798148][T20273]  ? clear_bhb_loop+0x40/0x90
[ 1021.798166][T20273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1021.798181][T20273] RIP: 0033:0x7f0596d9bf79
[ 1021.798197][T20273] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1021.798212][T20273] RSP: 002b:00007f0597c7e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1021.798227][T20273] RAX: ffffffffffffffda RBX: 00007f0597015fa0 RCX: 00007f0596d9bf79
[ 1021.798237][T20273] RDX: 0000000000040000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1021.798247][T20273] RBP: 00007f0596e327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1021.798257][T20273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1021.798266][T20273] R13: 00007f0597016038 R14: 00007f0597015fa0 R15: 00007ffd282b2898
[ 1021.798287][T20273]  </TASK>
[ 1023.024738][T20287] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input446
[ 1023.192010][T20273] __kmem_cache_create_args(mon_text_ffff88807d39b800) failed with error -22
[ 1023.242588][T20273] CPU: 0 UID: 0 PID: 20273 Comm: syz.0.2718 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1023.242616][T20273] Tainted: [L]=SOFTLOCKUP
[ 1023.242622][T20273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1023.242631][T20273] Call Trace:
[ 1023.242637][T20273]  <TASK>
[ 1023.242644][T20273]  dump_stack_lvl+0x100/0x190
[ 1023.242671][T20273]  __kmem_cache_create_args.cold+0x33/0x6e
[ 1023.242695][T20273]  mon_text_open+0x333/0x510
[ 1023.242711][T20273]  ? __pfx_mon_text_open+0x10/0x10
[ 1023.242727][T20273]  ? __pfx_mon_text_ctor+0x10/0x10
[ 1023.242743][T20273]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1023.242758][T20273]  ? lockdown_is_locked_down+0x3d/0x140
[ 1023.242779][T20273]  ? bpf_lsm_locked_down+0x9/0x10
[ 1023.242804][T20273]  ? __pfx_mon_text_open+0x10/0x10
[ 1023.242817][T20273]  full_proxy_open_regular+0x1b6/0x370
[ 1023.242842][T20273]  do_dentry_open+0x6d8/0x1660
[ 1023.242862][T20273]  ? __pfx_full_proxy_open_regular+0x10/0x10
[ 1023.242890][T20273]  vfs_open+0x82/0x3f0
[ 1023.242907][T20273]  path_openat+0x208c/0x31a0
[ 1023.242934][T20273]  ? __pfx_path_openat+0x10/0x10
[ 1023.242962][T20273]  do_file_open+0x20e/0x430
[ 1023.242985][T20273]  ? __pfx_do_file_open+0x10/0x10
[ 1023.243019][T20273]  ? alloc_fd+0x476/0x790
[ 1023.243041][T20273]  ? do_getname+0x191/0x390
[ 1023.243057][T20273]  do_sys_openat2+0x10d/0x1e0
[ 1023.243073][T20273]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1023.243090][T20273]  ? blkcg_maybe_throttle_current+0x5df/0xeb0
[ 1023.243117][T20273]  __x64_sys_openat+0x12d/0x210
[ 1023.243133][T20273]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1023.243157][T20273]  do_syscall_64+0x106/0xf80
[ 1023.243175][T20273]  ? clear_bhb_loop+0x40/0x90
[ 1023.243194][T20273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1023.243210][T20273] RIP: 0033:0x7f0596d9bf79
[ 1023.243224][T20273] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1023.243239][T20273] RSP: 002b:00007f0597c7e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1023.243255][T20273] RAX: ffffffffffffffda RBX: 00007f0597015fa0 RCX: 00007f0596d9bf79
[ 1023.243264][T20273] RDX: 0000000000040000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1023.243274][T20273] RBP: 00007f0596e327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1023.243283][T20273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1023.243292][T20273] R13: 00007f0597016038 R14: 00007f0597015fa0 R15: 00007ffd282b2898
[ 1023.243312][T20273]  </TASK>
[ 1024.906608][T20312] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2726'.
[ 1025.598357][ T5830] Bluetooth: hci3: unexpected event 0x01 length: 4 > 1
[ 1025.920911][ T5830] Bluetooth: hci1: command 0x0406 tx timeout
[ 1026.073678][T20326] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input448
[ 1026.589858][T20329] binder: 20328:20329 ioctl 1269 0 returned -22
[ 1027.321145][T20353] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input451
[ 1027.382131][T20352] netlink: Conntrack attr has 16 unknown bytes
[ 1027.864918][T20359] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2738'.
[ 1028.000478][T20357] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input452
[ 1028.041322][T20357] FAULT_INJECTION: forcing a failure.
[ 1028.041322][T20357] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1028.115508][T20357] CPU: 0 UID: 0 PID: 20357 Comm: syz.3.2739 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1028.115532][T20357] Tainted: [L]=SOFTLOCKUP
[ 1028.115537][T20357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1028.115545][T20357] Call Trace:
[ 1028.115550][T20357]  <TASK>
[ 1028.115556][T20357]  dump_stack_lvl+0x100/0x190
[ 1028.115581][T20357]  should_fail_ex.cold+0x5/0xa
[ 1028.115598][T20357]  _copy_from_user+0x2e/0xd0
[ 1028.115616][T20357]  input_event_from_user+0xb9/0x290
[ 1028.115638][T20357]  ? __pfx_input_event_from_user+0x10/0x10
[ 1028.115659][T20357]  ? __pfx___might_resched+0x10/0x10
[ 1028.115679][T20357]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1028.115697][T20357]  ? input_event+0xbb/0xd0
[ 1028.115717][T20357]  uinput_write+0xb9f/0xf60
[ 1028.115735][T20357]  ? common_file_perm+0x1ab/0x4f0
[ 1028.115752][T20357]  ? __pfx_uinput_write+0x10/0x10
[ 1028.115767][T20357]  ? bpf_lsm_file_permission+0x9/0x10
[ 1028.115786][T20357]  ? security_file_permission+0x76/0x210
[ 1028.115804][T20357]  ? iov_iter_advance+0xac/0x6d0
[ 1028.115819][T20357]  ? rw_verify_area+0xce/0x6d0
[ 1028.115838][T20357]  ? __pfx_uinput_write+0x10/0x10
[ 1028.115851][T20357]  vfs_writev+0x5ea/0xe10
[ 1028.115874][T20357]  ? __pfx_vfs_writev+0x10/0x10
[ 1028.115892][T20357]  ? find_held_lock+0x2b/0x80
[ 1028.115935][T20357]  ? __fget_files+0x21f/0x3d0
[ 1028.115959][T20357]  ? do_writev+0x28a/0x340
[ 1028.115975][T20357]  do_writev+0x28a/0x340
[ 1028.115993][T20357]  ? __pfx_do_writev+0x10/0x10
[ 1028.116015][T20357]  do_syscall_64+0x106/0xf80
[ 1028.116033][T20357]  ? clear_bhb_loop+0x40/0x90
[ 1028.116050][T20357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1028.116064][T20357] RIP: 0033:0x7f596a99bf79
[ 1028.116077][T20357] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1028.116091][T20357] RSP: 002b:00007f596b7d7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1028.116104][T20357] RAX: ffffffffffffffda RBX: 00007f596ac15fa0 RCX: 00007f596a99bf79
[ 1028.116114][T20357] RDX: 0000000000000008 RSI: 0000200000000340 RDI: 000000000000000c
[ 1028.116122][T20357] RBP: 00007f596b7d7090 R08: 0000000000000000 R09: 0000000000000000
[ 1028.116130][T20357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1028.116138][T20357] R13: 00007f596ac16038 R14: 00007f596ac15fa0 R15: 00007fff445eadb8
[ 1028.116157][T20357]  </TASK>
[ 1030.478725][T20403] binder: 20392:20403 ioctl 1269 0 returned -22
[ 1031.490413][T20417] binder: 20409:20417 ioctl 1269 0 returned -22
[ 1031.501345][T20414] netlink: 354 bytes leftover after parsing attributes in process `syz.1.2746'.
[ 1034.240417][T20460] binder: 20452:20460 ioctl 1269 0 returned -22
[ 1037.561535][T20500] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2774'.
[ 1037.847258][T20509] program syz.1.2767 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1038.598311][T20521] netlink: 'syz.2.2768': attribute type 1 has an invalid length.
[ 1038.790663][T20526] binder: 20523:20526 ioctl 1269 0 returned -22
[ 1039.168794][T20531] binder: 20529:20531 ioctl 1269 0 returned -22
[ 1040.559818][T20556] netlink: 'syz.0.2777': attribute type 1 has an invalid length.
[ 1040.608482][T20556] netlink: 9 bytes leftover after parsing attributes in process `syz.0.2777'.
[ 1042.982619][T20588] binder: 20584:20588 ioctl 1269 0 returned -22
[ 1043.500191][T20596] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input459
[ 1045.985188][T20641] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2796'.
[ 1046.399568][ T5826] Bluetooth: hci0: command 0x0406 tx timeout
[ 1046.697024][T20648] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input460
[ 1049.168825][T20667] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2802'.
[ 1049.464332][T20667] i: entered promiscuous mode
[ 1049.636676][T20673] HfR: entered promiscuous mode
[ 1050.838657][T20699] binder: 20696:20699 ioctl 1269 0 returned -22
[ 1053.252367][T20736] netlink: 'syz.1.2819': attribute type 1 has an invalid length.
[ 1054.563834][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.570424][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.323746][T20756] binder: 20754:20756 ioctl 1269 0 returned -22
[ 1056.034724][T20772] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1057.469287][T20788] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2823'.
[ 1059.614520][T20824] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2832'.
[ 1059.675334][T20813] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2829'.
[ 1059.809166][T20813] i: entered promiscuous mode
[ 1059.849469][T20815] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2830'.
[ 1059.871290][T20820] HfR: entered promiscuous mode
[ 1059.903728][T20815] netlink: 'syz.1.2830': attribute type 1 has an invalid length.
[ 1059.932227][T20815] netlink: 13 bytes leftover after parsing attributes in process `syz.1.2830'.
[ 1059.943649][T20825] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input463
[ 1060.091752][T20825] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2831'.
[ 1061.030430][T20850] netlink: 'syz.2.2833': attribute type 1 has an invalid length.
[ 1064.056309][T20883] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2842'.
[ 1064.648489][T20897] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2843'.
[ 1064.715384][T20897] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2843'.
[ 1064.758830][T20894] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input464
[ 1064.826924][T20896] FAULT_INJECTION: forcing a failure.
[ 1064.826924][T20896] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1064.933358][T20896] CPU: 0 UID: 0 PID: 20896 Comm: syz.1.2844 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1064.933383][T20896] Tainted: [L]=SOFTLOCKUP
[ 1064.933388][T20896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1064.933396][T20896] Call Trace:
[ 1064.933401][T20896]  <TASK>
[ 1064.933407][T20896]  dump_stack_lvl+0x100/0x190
[ 1064.933431][T20896]  should_fail_ex.cold+0x5/0xa
[ 1064.933449][T20896]  _copy_from_user+0x2e/0xd0
[ 1064.933467][T20896]  input_event_from_user+0xb9/0x290
[ 1064.933489][T20896]  ? __pfx_input_event_from_user+0x10/0x10
[ 1064.933510][T20896]  ? __pfx___might_resched+0x10/0x10
[ 1064.933529][T20896]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1064.933547][T20896]  ? input_event+0xbb/0xd0
[ 1064.933567][T20896]  uinput_write+0xb9f/0xf60
[ 1064.933585][T20896]  ? common_file_perm+0x1ab/0x4f0
[ 1064.933609][T20896]  ? __pfx_uinput_write+0x10/0x10
[ 1064.933624][T20896]  ? bpf_lsm_file_permission+0x9/0x10
[ 1064.933647][T20896]  ? security_file_permission+0x76/0x210
[ 1064.933665][T20896]  ? iov_iter_advance+0xac/0x6d0
[ 1064.933680][T20896]  ? rw_verify_area+0xce/0x6d0
[ 1064.933700][T20896]  ? __pfx_uinput_write+0x10/0x10
[ 1064.933712][T20896]  vfs_writev+0x5ea/0xe10
[ 1064.933735][T20896]  ? __pfx_vfs_writev+0x10/0x10
[ 1064.933753][T20896]  ? find_held_lock+0x2b/0x80
[ 1064.933785][T20896]  ? __fget_files+0x21f/0x3d0
[ 1064.933809][T20896]  ? do_writev+0x28a/0x340
[ 1064.933825][T20896]  do_writev+0x28a/0x340
[ 1064.933844][T20896]  ? __pfx_do_writev+0x10/0x10
[ 1064.933866][T20896]  do_syscall_64+0x106/0xf80
[ 1064.933884][T20896]  ? clear_bhb_loop+0x40/0x90
[ 1064.933901][T20896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1064.933916][T20896] RIP: 0033:0x7fb13d59bf79
[ 1064.933929][T20896] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1064.933942][T20896] RSP: 002b:00007fb13e477028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1064.933957][T20896] RAX: ffffffffffffffda RBX: 00007fb13d816090 RCX: 00007fb13d59bf79
[ 1064.933966][T20896] RDX: 0000000000000008 RSI: 0000200000000340 RDI: 000000000000000a
[ 1064.933974][T20896] RBP: 00007fb13e477090 R08: 0000000000000000 R09: 0000000000000000
[ 1064.933982][T20896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1064.933991][T20896] R13: 00007fb13d816128 R14: 00007fb13d816090 R15: 00007ffeb74c7238
[ 1064.934010][T20896]  </TASK>
[ 1065.729075][T20906] binder: 20901:20906 ioctl 1269 0 returned -22
[ 1066.507171][T20911] syz.1.2848 (20911) used greatest stack depth: 19672 bytes left
[ 1066.648004][T20921] ==================================================================
[ 1066.648025][T20921] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x19fb/0x1d60
[ 1066.648059][T20921] Write of size 8 at addr ffffc900040f9160 by task syz.0.2850/20921
[ 1066.648072][T20921] 
[ 1066.648082][T20921] CPU: 0 UID: 0 PID: 20921 Comm: syz.0.2850 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1066.648102][T20921] Tainted: [L]=SOFTLOCKUP
[ 1066.648107][T20921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1066.648116][T20921] Call Trace:
[ 1066.648121][T20921]  <TASK>
[ 1066.648127][T20921]  dump_stack_lvl+0x100/0x190
[ 1066.648147][T20921]  print_report+0x156/0x4c9
[ 1066.648167][T20921]  ? _raw_spin_lock_irqsave+0x52/0x60
[ 1066.648183][T20921]  ? __virt_addr_valid+0x81/0x620
[ 1066.648201][T20921]  ? sys_imageblit+0x19fb/0x1d60
[ 1066.648220][T20921]  kasan_report+0xdf/0x1e0
[ 1066.648240][T20921]  ? sys_imageblit+0x19fb/0x1d60
[ 1066.648261][T20921]  sys_imageblit+0x19fb/0x1d60
[ 1066.648283][T20921]  ? __pfx_sys_imageblit+0x10/0x10
[ 1066.648302][T20921]  ? prb_read_valid+0x78/0xa0
[ 1066.648319][T20921]  ? __pfx_prb_read_valid+0x10/0x10
[ 1066.648337][T20921]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[ 1066.648372][T20921]  soft_cursor+0x524/0xa10
[ 1066.648390][T20921]  ? fb_get_color_depth+0x120/0x250
[ 1066.648406][T20921]  bit_cursor+0xe58/0x16f0
[ 1066.648424][T20921]  ? __pfx_bit_cursor+0x10/0x10
[ 1066.648439][T20921]  ? __lock_acquire+0x4a5/0x2630
[ 1066.648457][T20921]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1066.648478][T20921]  ? get_color+0x1da/0x450
[ 1066.648492][T20921]  ? __pfx_bit_cursor+0x10/0x10
[ 1066.648507][T20921]  fbcon_cursor+0x43c/0x5e0
[ 1066.648520][T20921]  ? add_softcursor+0x1c0/0x290
[ 1066.648538][T20921]  set_cursor+0x1db/0x250
[ 1066.648555][T20921]  con_write+0x89/0xb0
[ 1066.648574][T20921]  n_tty_write+0x44f/0x12d0
[ 1066.648593][T20921]  ? __pfx_n_tty_write+0x10/0x10
[ 1066.648607][T20921]  ? __pfx_woken_wake_function+0x10/0x10
[ 1066.648633][T20921]  ? __pfx___might_resched+0x10/0x10
[ 1066.648653][T20921]  ? __pfx_n_tty_write+0x10/0x10
[ 1066.648667][T20921]  file_tty_write.isra.0+0x4d2/0x890
[ 1066.648689][T20921]  redirected_tty_write+0xd4/0x120
[ 1066.648709][T20921]  vfs_write+0x6ac/0x1070
[ 1066.648728][T20921]  ? __pfx_redirected_tty_write+0x10/0x10
[ 1066.648748][T20921]  ? __pfx_vfs_write+0x10/0x10
[ 1066.648765][T20921]  ? do_futex+0x192/0x350
[ 1066.648783][T20921]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1066.648800][T20921]  ? __x64_sys_futex+0x34f/0x4d0
[ 1066.648815][T20921]  ? __x64_sys_futex+0x358/0x4d0
[ 1066.648831][T20921]  ksys_write+0x12a/0x250
[ 1066.648849][T20921]  ? __pfx_ksys_write+0x10/0x10
[ 1066.648869][T20921]  do_syscall_64+0x106/0xf80
[ 1066.648886][T20921]  ? clear_bhb_loop+0x40/0x90
[ 1066.648901][T20921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1066.648915][T20921] RIP: 0033:0x7f0596d9bf79
[ 1066.648927][T20921] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1066.648941][T20921] RSP: 002b:00007f0597c7e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1066.648956][T20921] RAX: ffffffffffffffda RBX: 00007f0597015fa0 RCX: 00007f0596d9bf79
[ 1066.648966][T20921] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003
[ 1066.648974][T20921] RBP: 00007f0596e327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1066.648983][T20921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1066.648991][T20921] R13: 00007f0597016038 R14: 00007f0597015fa0 R15: 00007ffd282b2898
[ 1066.649004][T20921]  </TASK>
[ 1066.649009][T20921] 
[ 1066.649013][T20921] The buggy address belongs to a vmalloc virtual mapping
[ 1066.649025][T20921] Memory state around the buggy address:
[ 1066.649032][T20921]  ffffc900040f9000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1066.649048][T20921]  ffffc900040f9080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1066.649058][T20921] >ffffc900040f9100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1066.649065][T20921]                                                        ^
[ 1066.649073][T20921]  ffffc900040f9180: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1066.649082][T20921]  ffffc900040f9200: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1066.649090][T20921] ==================================================================
[ 1066.649116][T20921] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1066.649127][T20921] CPU: 0 UID: 0 PID: 20921 Comm: syz.0.2850 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1066.649147][T20921] Tainted: [L]=SOFTLOCKUP
[ 1066.649152][T20921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1066.649159][T20921] Call Trace:
[ 1066.649164][T20921]  <TASK>
[ 1066.649169][T20921]  dump_stack_lvl+0x100/0x190
[ 1066.649188][T20921]  vpanic+0x552/0x970
[ 1066.649201][T20921]  ? __pfx_vpanic+0x10/0x10
[ 1066.649215][T20921]  ? mark_held_locks+0x40/0x70
[ 1066.649231][T20921]  ? sys_imageblit+0x19fb/0x1d60
[ 1066.649250][T20921]  panic+0xd1/0xe0
[ 1066.649262][T20921]  ? __pfx_panic+0x10/0x10
[ 1066.649278][T20921]  ? check_panic_on_warn+0x1f/0x90
[ 1066.649297][T20921]  check_panic_on_warn.cold+0x19/0x34
[ 1066.649312][T20921]  end_report.part.0+0x3a/0x90
[ 1066.649330][T20921]  kasan_report.cold+0xe/0x18
[ 1066.649356][T20921]  ? sys_imageblit+0x19fb/0x1d60
[ 1066.649377][T20921]  sys_imageblit+0x19fb/0x1d60
[ 1066.649399][T20921]  ? __pfx_sys_imageblit+0x10/0x10
[ 1066.649419][T20921]  ? prb_read_valid+0x78/0xa0
[ 1066.649435][T20921]  ? __pfx_prb_read_valid+0x10/0x10
[ 1066.649453][T20921]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[ 1066.649476][T20921]  soft_cursor+0x524/0xa10
[ 1066.649493][T20921]  ? fb_get_color_depth+0x120/0x250
[ 1066.649509][T20921]  bit_cursor+0xe58/0x16f0
[ 1066.649527][T20921]  ? __pfx_bit_cursor+0x10/0x10
[ 1066.649543][T20921]  ? __lock_acquire+0x4a5/0x2630
[ 1066.649560][T20921]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1066.649580][T20921]  ? get_color+0x1da/0x450
[ 1066.649594][T20921]  ? __pfx_bit_cursor+0x10/0x10
[ 1066.649609][T20921]  fbcon_cursor+0x43c/0x5e0
[ 1066.649623][T20921]  ? add_softcursor+0x1c0/0x290
[ 1066.649641][T20921]  set_cursor+0x1db/0x250
[ 1066.649657][T20921]  con_write+0x89/0xb0
[ 1066.649677][T20921]  n_tty_write+0x44f/0x12d0
[ 1066.649695][T20921]  ? __pfx_n_tty_write+0x10/0x10
[ 1066.649709][T20921]  ? __pfx_woken_wake_function+0x10/0x10
[ 1066.649729][T20921]  ? __pfx___might_resched+0x10/0x10
[ 1066.649748][T20921]  ? __pfx_n_tty_write+0x10/0x10
[ 1066.649762][T20921]  file_tty_write.isra.0+0x4d2/0x890
[ 1066.649785][T20921]  redirected_tty_write+0xd4/0x120
[ 1066.649805][T20921]  vfs_write+0x6ac/0x1070
[ 1066.649822][T20921]  ? __pfx_redirected_tty_write+0x10/0x10
[ 1066.649843][T20921]  ? __pfx_vfs_write+0x10/0x10
[ 1066.649860][T20921]  ? do_futex+0x192/0x350
[ 1066.649875][T20921]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1066.649892][T20921]  ? __x64_sys_futex+0x34f/0x4d0
[ 1066.649907][T20921]  ? __x64_sys_futex+0x358/0x4d0
[ 1066.649923][T20921]  ksys_write+0x12a/0x250
[ 1066.649941][T20921]  ? __pfx_ksys_write+0x10/0x10
[ 1066.649961][T20921]  do_syscall_64+0x106/0xf80
[ 1066.649978][T20921]  ? clear_bhb_loop+0x40/0x90
[ 1066.649993][T20921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1066.650007][T20921] RIP: 0033:0x7f0596d9bf79
[ 1066.650018][T20921] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1066.650031][T20921] RSP: 002b:00007f0597c7e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1066.650044][T20921] RAX: ffffffffffffffda RBX: 00007f0597015fa0 RCX: 00007f0596d9bf79
[ 1066.650053][T20921] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003
[ 1066.650062][T20921] RBP: 00007f0596e327e0 R08: 0000000000000000 R09: 0000000000000000
[ 1066.650071][T20921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1066.650079][T20921] R13: 00007f0597016038 R14: 00007f0597015fa0 R15: 00007ffd282b2898
[ 1066.650093][T20921]  </TASK>
[ 1066.650156][T20921] Kernel Offset: disabled