last executing test programs:

9.293751175s ago: executing program 2 (id=1434):
mmap$auto(0x2000000000000000, 0x9, 0x4000000001df, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x1, 0x106)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000100), 0x80001, 0x0)
socket(0x11, 0x3, 0x9)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r1 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
bind$auto(r1, &(0x7f0000000040)=@hci={0x1f, 0xffffffffffffffff}, 0x6a)
sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, 0x0, 0x4000004)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f0000000440)={[0x1ff, 0x87, 0x8, 0x1, 0x948b, 0x5, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x400, 0x5d8, 0x1000000000000009, 0x7, 0x8]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000008007, 0x800000000000004, 0x1000000000000bc3, 0x800, 0x3, 0xff, 0x10001, 0x2, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x80000000, 0x4, 0xe05a, 0x4]}, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000001c40), 0xffffffffffffffff)
r4 = syz_clone(0x411, 0x0, 0x5a, 0x0, 0x0, 0x0)
kcmp$auto_KCMP_FILE(r4, r4, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
getpid()
sendmsg$auto_OVS_FLOW_CMD_NEW(r2, &(0x7f0000005e80)={0x0, 0x0, &(0x7f0000005e40)={&(0x7f0000001c80)={0x14, r3, 0x10, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x40000, 0x0)
close_range$auto(0x2, 0x8, 0x0)

9.113931992s ago: executing program 0 (id=1435):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x82, 0x0)
socket(0x2, 0x1, 0x0)
socket(0x2, 0x5, 0x0)
r0 = epoll_create$auto(0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r1, 0x0)
capset$auto(0x0, 0x0)
epoll_ctl$auto(0x5, 0x3, r1, 0x0)
epoll_wait$auto(r0, 0x0, 0xe007, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x80064, 0x9)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/stat/synproxy\x00', 0xc0a00, 0x0)
pread64$auto(r2, &(0x7f0000000040)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\x8d\xa8\xcfM9\\\xd6\xcfUq\x05#\xed\x1c\xd1G\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xbasG\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1', 0x3ff, 0x9)
madvise$auto(0x0, 0x200007, 0x19)
r3 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(0x0, r3)
sendmsg$auto_NL80211_CMD_SET_CHANNEL(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0x24, r5, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0x7}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x4044005}, 0x4800)
r6 = geteuid()
r7 = ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f00000001c0)=0x5)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'wg1\x00', <r9=>0x0})
sendmsg$auto_NL80211_CMD_SET_PMK(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000780)={&(0x7f0000000200)={0x570, r5, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0xfff}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x8}, @NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8, 0x40, 0x5}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x430, 0x84, 0x0, 0x1, [@nested={0x4f, 0x31, 0x0, 0x1, [@generic="3ec1fa34f81237a8043e1f9cc9f5080355755f8cf3b32b9e94b1bd0c1ace327bc1049c96e6f7f8349c584336e07c32beb2488f3629a608d466fe58", @nested={0xfffffffffffffdda, 0x15c}, @nested={0x4, 0x20}, @typed={0x8, 0x3e, 0x0, 0x0, @ipv4=@empty}]}, @typed={0x8, 0x137, 0x0, 0x0, @u32=0x6}, @nested={0xde, 0x145, 0x0, 0x1, [@typed={0x24, 0x110, 0x0, 0x0, @binary="5a24c3e5bec7a9ab1fda426e8e346ac0780948d34eeacfd6b2abbf5a14368691"}, @nested={0x4, 0xde}, @typed={0x5, 0x30, 0x0, 0x0, @str='\x00'}, @generic="5696c54b0ba2c2accd249c14f716b4d0a9951da632f794b7d1dfd3f518608dba692469aa9defd4872b8b8cb219b72e3e0de428244075e10c98015a4d633741b02147bb9df703127b205982d27de8a38abd3d14a33b917b82b2372e5c4b805e0288d603b512d3b14dc5974c88bd53c1c68f0baf3c5f28bb2e470678fdc33be3abb25023b9d8d15978c561ab385024dac1066c89212bb2a76a5965017956d8494e74ff988b11ed9c15b0ed"]}, @nested={0xf0, 0x55, 0x0, 0x1, [@generic="bb67b799b0c58dd24bda4c57005276077be765423d6e6a41b11cc45a1c8f1e5fc4ee2d31ca5aff3d20cf8f45452be3bd0a2dd7929651fb9e36a6da0642d58fef2c79addab082e4538a44a9dd", @typed={0x14, 0xe1, 0x0, 0x0, @ipv6=@loopback}, @nested={0x4, 0x3f}, @generic="c00e33337ccb1c62d3e4ddc9e5e5fedd8cbf1e7f3fb8a90404e5febc530d32ea555bf7a0aeb78dd4c55f89ba54c048ef6a36bddd4b3f1735bebed4249263479aaf78b8480bcf87c41f7f63de780586071265962bdd19acbfd5af23a8e5ad9e1f0878b7e8febe97ad679b29b41fbc7184bdb78279971ca10987feb6c6", @typed={0x8, 0x141, 0x0, 0x0, @uid=r6}, @typed={0x4, 0x64}]}, @generic="352d4b829ce4ea58620d1d087480542b6751cf7ad894974f146b03191314bf8c4a268aa411c4e9c48df9593f33ed3414c9f2446308df1ee524ca92f028d49a0686d5acd184f2cd016d5607162adbd6094673305f3b281f39227e1be9c592701fa33223fd1131cf67abcce781863d7c501a0631aa9789893ffa35641eb08d662a17a786fdc034ae77efa37134e44d3fe57bc2cb0229ee2944b0f24601fb09e8ee01c303e35ae81ca918174444", @nested={0x156, 0xf7, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @pid=r7}, @generic="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", @generic="38248d4f93b6486503cf234a366047685863e2be5f87d0eedafd0513ec8b4ec6925c5a15724217633107ddad852c92ed14", @nested={0x4, 0x63}, @generic="8696111e6487c1320bcfff9e051b5619aaf9c542e6c44a"]}, @generic]}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_PMKR0_NAME={0xfe, 0x102, "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"}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x570}, 0x1, 0x0, 0x0, 0x40000}, 0x20000010)

8.813569092s ago: executing program 0 (id=1436):
r0 = openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/current_tracer\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000080)='/sys/kernel/config/target/dbroot\x00', 0x3)
bind$auto(0xffffffffffffffff, 0x0, 0x69)
r1 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, 0x0, 0x6a)
r2 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'veth1_to_batadv\x00', <r3=>0x0})
sendmsg$auto_IEEE802154_LLSEC_GETPARAMS(r1, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)={0x40, r2, 0x300, 0x70bd28, 0x25dfdbfe, {}, [@IEEE802154_ATTR_BAT_EXT={0x5, 0x1a, 0x91}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x1}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, 0x2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x7}]}, 0x40}, 0x1, 0x0, 0x0, 0x40044}, 0x10)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x15, 0x5, 0x0)
bind$auto(0x3, 0x0, 0x6a)
r4 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/kernel/config/target/dbroot\x00', 0x189002, 0x0)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf2503000000080003000002000006000700", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a0001"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
open(&(0x7f0000000000)='X))\x00', 0x44042, 0x1d0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0xa, 0x2, 0x73)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16, @ANYBLOB="2f212cbd7000fcdbdf2531"], 0x48}}, 0x4000000)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
write$auto(r4, &(0x7f0000000640)='/sys/devices/virtual/bdi/43:352/stric\x06_limit\x00', 0x4)

8.159524681s ago: executing program 2 (id=1438):
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0xa47da1a16663b846}, 0x4000804)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1, 0x9, 0x63, 0x0, 0x0, 0x0, 0x0, 0x400000000011, 0x1000, 0xfffffffffffffffd, 0x7ffffffb, 0x9, 0xffffffff7ffffffc, 0x100000000, 0x400000000007, 0x200000100103})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
kexec_load$auto(0x5, 0xd, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4)
mmap$auto(0x4, 0x2, 0x3, 0x1d, 0xffffffffffffffff, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyr5\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x1, 0x0)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
ioctl$auto(r0, 0x80085610, r0)
mmap$auto(0x2000000000000000, 0x20009, 0x4000000001df, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x1, 0x106)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x11, 0x3, 0x9)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
socket(0x28, 0x5, 0x0)
sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, 0x0, 0x4000004)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f0000000440)={[0x1ff, 0x7, 0x8, 0x1, 0x948b, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x400, 0x5d8, 0x1000000000000009, 0x7, 0x6]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x800, 0x3, 0xff, 0x10001, 0x400000000003, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x80000000, 0x4, 0xe05a, 0x4]}, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000001c40), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_NEW(r2, &(0x7f0000005e80)={0x0, 0x0, &(0x7f0000005e40)={&(0x7f0000000580)={0x20, r3, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@OVS_FLOW_ATTR_ACTIONS={0x3}, @OVS_FLOW_ATTR_KEY={0x4}, @OVS_FLOW_ATTR_ACTIONS={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x40000, 0x0)

7.79733817s ago: executing program 0 (id=1439):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="23eef00667c63b4b8811b3df7c084e963c98287965f1055fa5eaac6ebf5076ae258548073e34a7ca8e39bd259ac78a94670b77469100c726b0cf5466038ca4a60f", @ANYRESOCT=r0, @ANYRES16=r0], 0x2c}, 0x1, 0x0, 0x0, 0x48000}, 0x440400c4)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042cbd7000fb3d89cb809172a3320003008000400088"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000)

7.535911139s ago: executing program 0 (id=1440):
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0xa47da1a16663b846}, 0x4000804) (async)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0xa47da1a16663b846}, 0x4000804)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1, 0x9, 0x63, 0x0, 0x0, 0x0, 0x0, 0x400000000011, 0x1000, 0xfffffffffffffffd, 0x7ffffffb, 0x9, 0xffffffff7ffffffc, 0x100000000, 0x400000000007, 0x200000100103})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9) (async)
set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
kexec_load$auto(0x5, 0xd, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4)
mmap$auto(0x5, 0x7, 0x3, 0x1d, 0xffffffffffffffff, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x9, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ram5\x00', 0x6aa02, 0x0)
r0 = open(0x0, 0x56042, 0xe1d2b27bdc14aabc)
fallocate$auto(r0, 0x0, 0x7, 0x4cbd5d) (async)
fallocate$auto(r0, 0x0, 0x7, 0x4cbd5d)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_ipv6\x00', 0x1401, 0x0)
pwrite64$auto(r1, &(0x7f0000000040)='\vX\xb5n\x91p\xe6\x1eRN8\x99C\x05s\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2y\x1f\xee\xeeE\x18A\x14\xc6\xaa\x19\x9d\x17\xcf\x9e3!\x97\xe8X\xa3,a\xd5\x14\xb9\xa9\xb3\xf7\x19\xe5\xa6\x81\xbb 3\xc3\xec\x12\xef\xfbs\x9e}\xb0\xc9\x16I\x14\xbc\x01\xf0\x93O\xf0\x9byg\xb2\xdcZ\xf8g[\xf5\x97\x16\x0fm3\xcc\xc9\xaa\x812\b\x12\xffQq\xd5\xfc\xc5\xaf\xcd:1\xef\xca\xf3\xc7\xa4\xebS\x17\x99\x0f\xa3\x83\xb9\xbe\xa0u\x90(\xd2\xa5\xbe\xaf9a\x10K&\xf7N\xb8\xf5\x19\x12\x95\x1ex\xe3\x89\x9eU\xb5\x80\x0e\xfb\xe2\xd61\b\t\xa4H*v\x9a`%\xb4)\xa0\xb6\x11\xc3\xb4\xaa^\x02\xc5E\na\x03\xd3\xf2j\xa4Ly\xfa\xfcX.\xa1\xcfU\xcc\xec\x8b\x057\xda,v\x1br\xd3\xc1\xcc\xb4p\xff\x8c\x17YW\xc2\x92\xaf\xa8\x9c\x9dX]\xa4\x9a\x1a\xd5\x80B\x10\xd1\xd5\xca\x85\x9e)FT0\xe3\xb4\x19\x9dR\xc5\xdf\xb3\x9e\xea+2\x94\xba\x8c\xbe79\xba\x92\xcb\xd5\x87kB\xbd\xda\xf9\xb6)\xb3R\"\xe5A\xcfi\xd1\xf6\xa9\x86\x00\x88\x86\x05@d\xbc\xca\xd0v\xa07\xd9\x01Z\x89\xec\xce[J\xfeM\xfc\x1f\xe7j)\xe8\xdb\xfa\xa57\xe71\x9b\xbc\xf5|\xc6\xc8\xe7N\xd3i.|\xdd\xc0h\xd6', 0x8001, 0x20000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000)
syz_genetlink_get_family_id$auto_nl802154(0x0, r0)
fsconfig$auto_XFS_DAX_NEVER(0xffffffffffffffff, 0x6, &(0x7f0000000340)='/dev/snd/midiC2D0\x00', 0x0, 0x2)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ram2\x00', 0x58ac0, 0x0)
sendfile$auto(0x3, r2, 0x0, 0x400000000006) (async)
sendfile$auto(0x3, r2, 0x0, 0x400000000006)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyr5\x00', 0x0, 0x0)
ioctl$auto_TIOCSWINSZ2(r3, 0x5414, 0x0) (async)
ioctl$auto_TIOCSWINSZ2(r3, 0x5414, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
socket(0x2b, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

6.553870359s ago: executing program 2 (id=1443):
setitimer$auto(0x1, &(0x7f0000000000)={{0x802, 0x1000007f}, {0x800100004, 0x3}}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, 0x0)

6.13805717s ago: executing program 0 (id=1445):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
r1 = socket(0xf, 0x2, 0x2)
mmap$auto(0x0, 0x810004, 0xffa, 0x8000000008011, r0, 0x8000)
r2 = openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/options/fields\x00', 0x2, 0x0)
sendmsg$auto_NL80211_CMD_ASSOC_MLO_RECONF(r1, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x128, 0x0, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_FILS_NONCES={0x4}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x7}, @NL80211_ATTR_CNTDWN_OFFS_BEACON={0xad, 0xba, "bd67c532b84ac6559263d9e2773d9deab6be34910035911e3d3ef697603ab45124538c6b6365b352bf8422cdae73c83a41dfe7d8b50167b5c3f5dd05a1e137459ca8484a09da8f75886fd08e7e347c72bba772d8f2247b57f296780c857b9a96163ccc8e2f65fd2d54ff029f3d21113118d3b834c2ca45f8b9ee7cce03b69eea5796793585639eb017774030054e548415ea0e1e81efa8ba1948b8e87140dfec2a3aa342b51b4952f4"}, @NL80211_ATTR_CIPHER_SUITE_GROUP={0x8, 0x4a, 0x4}, @NL80211_ATTR_SAR_SPEC={0x44, 0x12c, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS={0x40, 0x2, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x656b}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x97}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x400}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x2}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0xfff}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x40}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x3}]}]}]}, @NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x80}]}, 0x128}, 0x1, 0x0, 0x0, 0x200000c0}, 0x4)
write$auto(r2, &(0x7f00000005c0)='1\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xa4\xbc^Zo\xf4\xaf:\x00\x00\x00\x00\x00\x00*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d\xbcc!\x01\xff<?\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xc4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xda\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xf7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85HC /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\x9bA\xac\x9c\x8e\r(\x1d\x98\x84\x98\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6=9\x91\xb6\xf7\xa1=\x96\x11\xf11\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\x86\xa8\x84u\x80\xd1d\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xc9e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbds\x11\x98}\x8d\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2Ln\xafQ~L\xac', 0x1)
fdatasync$auto(r0)
madvise$auto(0x0, 0x400053, 0x9)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000500)='/dev/sequencer\x00', 0x80102, 0x0)
futex_wait$auto(0x0, 0x80000000, 0x21b1, 0x80, 0x0, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
pwrite64$auto(r1, &(0x7f0000000040)='/dev/sequencer\x00', 0x7, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
setresuid$auto(0x0, 0x8, 0x8000)
utimensat$auto(0x2, &(0x7f0000000100)='\x00', 0x0, 0x1000)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtdblock0\x00', 0xc2f02, 0x0)
mmap$auto(0xffffffffffffffff, 0x810003, 0xffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x123002, 0x0)
preadv2$auto(r3, &(0x7f0000000080)={0x0, 0x80000003}, 0x800000000000007, 0x1, 0x8000000000000, 0x102f)
r4 = getpid()
process_vm_readv$auto(r4, 0x0, 0x4, 0x0, 0x6, 0x0)
socket(0xa, 0x2, 0x3a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
futex$auto(&(0x7f00000000c0)=0x1, 0x8c, 0x1, 0x0, 0x0, 0x1)
mmap$auto(0x0, 0x20400002020008, 0x3, 0x1d5, 0xffffffffffffffff, 0x8000)
openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0)

6.065708241s ago: executing program 1 (id=1446):
r0 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto_HDIO_GETGEO(r1, 0x301, 0x0)
r2 = fcntl$getown(r0, 0x9)
sched_getaffinity$auto(r2, 0x4, &(0x7f00000000c0)=0xffff)
pipe2$auto(0x0, 0x80)
setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x8)
socketpair$auto(0xf, 0x3, 0x3e3, &(0x7f0000000140)=0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
r3 = socket(0x18, 0x2, 0x1)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/stat/rt_cache\x00', 0x1, 0x0)
connect$auto(r3, &(0x7f0000000340)=@in={0x2, 0x4e27, @private=0xa010102}, 0x26)
getrandom$auto(&(0x7f0000000080)='[$[-/\xad\x00', 0x0, 0xfffffff4)
listen$auto(0x3, 0x81)

6.009720443s ago: executing program 2 (id=1447):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
fanotify_init$auto(0x65, 0x4d)
socket(0x1d, 0x2, 0x2)
socket(0x10, 0x3, 0x6)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/hugepages/hugepages-2048kB/nr_overcommit_hugepages\x00', 0x1c9282, 0x0)
pipe$auto(0x0)
fanotify_init$auto(0x5, 0x200)
socketpair$auto(0x1e, 0x4, 0x3, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x16e)
r0 = openat$auto_stats_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
write$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffffff, &(0x7f0000000300)="234751a0cc0bafad59f83847854e875d850a4d197ec4b029fba4d9ea9aee6b48844ea09e2bbf5fd0fd3bb02ffd2773db9383c7153478f9420e66317eed986a03b01f4e05863965", 0x47)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, r0, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
bpf$auto_BPF_MAP_CREATE(0x0, 0x0, 0xc)
r1 = open$dir(&(0x7f0000000180)='./file0\x00', 0x400, 0x88)
fspick$auto(r1, &(0x7f0000000280)='./file0\x00', 0x0)
madvise$auto(0x0, 0x200007, 0x19)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)

5.614383065s ago: executing program 1 (id=1449):
mmap$auto(0x2000000000000000, 0x9, 0x4000000001df, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x1, 0x106)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000100), 0x80001, 0x0)
socket(0x11, 0x3, 0x9)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r1 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
bind$auto(r1, &(0x7f0000000040)=@hci={0x1f, 0xffffffffffffffff}, 0x6a)
sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, 0x0, 0x4000004)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f0000000440)={[0x1ff, 0x87, 0x8, 0x1, 0x948b, 0x5, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x400, 0x5d8, 0x1000000000000009, 0x7, 0x8]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000008007, 0x800000000000004, 0x1000000000000bc3, 0x800, 0x3, 0xff, 0x10001, 0x2, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x80000000, 0x4, 0xe05a, 0x4]}, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_flow(0x0, 0xffffffffffffffff)
r4 = syz_clone(0x411, 0x0, 0x5a, 0x0, 0x0, 0x0)
kcmp$auto_KCMP_FILE(r4, r4, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_NEW(r2, &(0x7f0000005e80)={0x0, 0x0, &(0x7f0000005e40)={&(0x7f0000001c80)={0x8fc, r3, 0x10, 0x70bd2b, 0x25dfdbfe, {}, [@OVS_FLOW_ATTR_ACTIONS={0x4}, @OVS_FLOW_ATTR_MASK={0x708, 0x7, 0x0, 0x1, [@generic="4e882c3916452324f84be9c096c2a7b208d967a396b414aeb548cc94a8bbf4528c2ea617e8d14a4191c6190bf1fa0406ebaf27ab7247990691d1f16b9ef671d6fa315caec62e8ea0cf9cca9e2c779fbcb66aaaac3c09245adece05d087dae88054263e0863458f789fd978a312eb3678a92b5b6f", @generic="16d489d7d2548050a57f26aa816b32bec3d73f0bac63de67612b830af75813cdb12905b01090a432d5803ce57b318e31132624e51386075b68230682a0cdf1f3e605145b7c9c47621ed1fdb62337349a8d4593ae36911d8faef96731", @typed={0xc, 0x9c, 0x0, 0x0, @str='$$\\\x9f,^^\x00'}, @typed={0x8, 0xab, 0x0, 0x0, @u32=0x200}, @generic="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"]}, @OVS_FLOW_ATTR_ACTIONS={0x1d6, 0x2, 0x0, 0x1, [@generic="5c16eae057bfbafaf3b87d66cbaf94072fc30555196945be2b10a78df6ac0feda21713c606fb65da9282a647aa98103321440ec79770ac4d603c7ccf7d15a6cb8ad2f74e70c68f29adfa9ed6d180b72aba0dcff85056ff90bfdb8ed110faeb170ac7e50fb55b90e0fa66f15bb66f2286ffcea7a0541ba48e80f5edc91877e6722a7d5fedaa3f2174685a72005295099f4e64b6861daa06d61d85b2fcec740de11cf63153879f003387ea742060bb027eeef9ffd0a05ce16bbe0662b8459aa0b8cf6c60c961caff617bbf7cd7589f5f67290d194e", @typed={0x4, 0x83}, @nested={0xbc, 0x7c, 0x0, 0x1, [@typed={0xb6, 0x148, 0x0, 0x0, @binary="5f81a87f55a95d1b082ac220148cbc1521c0fd4d110bf0d4b4e650241a39b8d42e845d83f303c3e7f413ea4d7edf7f3244bc3625c17edd23d8f7d7131095439f29defefb668631e40dcacaeeab0f255750f05882ee3c3baa821b5c9e7a7c08ebb6691a3f87949ee4927ac183eb8a6399f2a5ce613d741d7049898cd05a3d7523705731b5679b7375629e594b889b7b69fb61c69fa385c859537959cd7a4cd903891800ac9d6dc1d4f43d8a954f711cdaa5fc"}, @generic]}, @generic="19386327c35f068fa6d58bcf55d2d51f9685fed66cb87d60db16d719e897e0ab81d031d7ae30c00118d5fbb6af595271496b11b96c074962b84d808c75cb"]}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x8fc}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x40000, 0x0)
close_range$auto(0x2, 0x8, 0x0)

4.99014036s ago: executing program 0 (id=1450):
mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/wlan1/forwarding\x00', 0x202, 0x0)
sendfile$auto(r2, r2, 0x0, 0x7fffe000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1)
set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x5d6, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
userfaultfd$auto(0x1)
close_range$auto(0x2, 0x8, 0x0)
msgctl$auto_MSG_INFO(0xc3, 0xc, 0x0)
bind$auto(0x3, 0x0, 0x6a)
mmap$auto(0xfffffffffffffffd, 0x9, 0xa2, 0x8000008b71, 0xffffffffffffffff, 0x8000)
futex$auto(0x0, 0x0, 0x2948, 0x0, 0x0, 0x5)
socket(0x2, 0x80802, 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="13fd2bbd14c7323c91bb1844000008000300", @ANYRES32=r3], 0x24}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x82, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x6, 0x0)

4.8902916s ago: executing program 3 (id=1451):
r0 = socket(0x2, 0x1, 0x84)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
write$auto(r0, &(0x7f00000001c0)='nl80211\x00', 0x1fff8)
shutdown$auto(0x200000003, 0x2)
r1 = socket(0x2, 0x3, 0xa)
getsockopt$auto(r1, 0x0, 0x30, 0x0, &(0x7f0000000040)=0xdbb)
r2 = socket(0x2, 0x1, 0x20106)
ioctl$auto(0xffffffffffffffff, 0x5608, r2)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/block/mtdblock0/hctx0/cpu1/read_rq_list\x00', 0x4040, 0x0)

4.278172539s ago: executing program 3 (id=1452):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)
madvise$auto(0x8000, 0xffffffffffff0000, 0x17)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x6065c0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x1, 0x0)
timer_create$auto(0x8, &(0x7f0000000000)={@sival_int=0xccea, @inferred, 0x1}, &(0x7f0000000040)=0x200)
timer_settime$auto(0x0, 0x8, &(0x7f0000000040)={{0x0, 0xd3}, {0x1002}}, &(0x7f0000000100)={{0xa04, 0x4}, {0x9000, 0x7ff}})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'vlan0\x00'})
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x20004005)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001080)='/proc/sys/kernel/random/boot_id\x00', 0x0, 0x0)
r1 = io_uring_setup$auto(0x6, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000140), 0x20, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
socket(0x28, 0x5, 0x0)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x7, 0xc86, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x7]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x7ff, 0x3, 0xff, 0x10001, 0x400000000003, 0x3, 0x8001, 0xfffffffffffffffe, 0x80000000, 0x335b0eef, 0xffffdfffffffff81, 0x4]}, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = socket(0xa, 0x3, 0x3b)
getsockopt$auto(r3, 0x29, 0x16, 0x0, 0x0)
ioctl$auto_BTRFS_IOC_SNAP_CREATE(r1, 0x50009401, &(0x7f0000001900)={@inferred=r3, "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"})
close_range$auto(0x2, 0x8, 0x0)
socket(0x28, 0x1, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto_SO_SNDTIMEO_OLD(r4, 0x1, 0x15, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.4/usb5/descriptors\x00', 0x9)

4.227976294s ago: executing program 1 (id=1453):
mmap$auto(0x2000000000000000, 0x9, 0x4000000001df, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x11, 0x3, 0x9)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x10b142, 0x0)
sendfile$auto(r0, r0, 0x0, 0x200)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xffffffffffffffff, 0x8000)
openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, 0x0, 0x2202, 0x0)
write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, 0x0, 0x0)
pwrite64$auto(0xc8, 0x0, 0xe, 0x4)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x8f00, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)

3.71624034s ago: executing program 1 (id=1454):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
keyctl$auto(0xe, 0x2, 0x16efae4c, 0x8000005092, 0x61f93bdb)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)="bdcda609d0dd307ad1695e8740fefb7f2c", 0x11)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/loop5/queue/discard_max_bytes\x00', 0x2, 0x0)
pwrite64$auto(r1, &(0x7f00000000c0)='/dev/virtual_nci\x00', 0x7, 0xc)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000440)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06\x00', &(0x7f0000000480)='\x00\x00\x00\x00\x00\x00\x00\x00', 0x10000, 0x0)
pwrite64$auto(r2, &(0x7f00000001c0)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x00\x00\x00\x00\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x4)
mmap$auto(0x0, 0x810004, 0x400000000fff, 0x8000000008011, 0x3, 0x8000)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram1\x00', 0x20001, 0x0)
ioctl$auto_BLKRRPART(r3, 0x801070cf, 0x700000000000000)
r4 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/members\x00', 0x0, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/platform/vivid.0/media10/uevent\x00', 0x410283, 0x0)
write$auto_ocfs2_control_fops_stack_user(r5, &(0x7f0000003900)='\t', 0x1)
fchown$auto(r4, 0x0, 0x0)
msgctl$auto_IPC_INFO(0x5, 0x3, &(0x7f00000002c0)={{0x7f, 0xffffffffffffffff, <r6=>0xee01, 0xca00, 0x7fffffff, 0x4, 0x9}, &(0x7f0000000240)=0x6, &(0x7f0000000280)=0x40, 0x3, 0x7, 0xfff, 0x9, 0x5, 0x6, 0x6, 0xe3})
stat$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000340)={0x3, 0x9, 0x6, 0x40b, 0x0, r6, 0x0, 0xd, 0x431, 0x4, 0x2, 0x7, 0xd, 0xfff, 0x9, 0x2, 0x4})
fcntl$auto_F_GETFD(r0, 0x1, 0x6)
r7 = socket(0xa, 0x3, 0x3a)
close$auto(r7)
io_uring_register$auto(r7, 0x8, 0x0, 0x0)
epoll_pwait2$auto(0x3, 0x0, 0x4, &(0x7f0000000040)={0x400000001, 0x7ffffffffffffffe}, 0x0, 0x7ff6)
write$auto(0x3, 0x0, 0xfffffdef)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
madvise$auto(0x801, 0x4f46, 0x6)

3.573062426s ago: executing program 3 (id=1455):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x82, 0x0)
socket(0x2, 0x1, 0x0)
socket(0x2, 0x5, 0x0)
r0 = epoll_create$auto(0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r1, 0x0)
capset$auto(0x0, 0x0)
epoll_ctl$auto(0x5, 0x3, r1, 0x0)
epoll_wait$auto(r0, 0x0, 0xe007, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x80064, 0x9)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/stat/synproxy\x00', 0xc0a00, 0x0)
pread64$auto(r2, &(0x7f0000000040)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\x8d\xa8\xcfM9\\\xd6\xcfUq\x05#\xed\x1c\xd1G\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xbasG\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1', 0x3ff, 0x9)
madvise$auto(0x0, 0x200007, 0x19)
r3 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(0x0, r3)
sendmsg$auto_NL80211_CMD_SET_CHANNEL(r4, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044005}, 0x4800)
r6 = geteuid()
r7 = ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f00000001c0)=0x5)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'wg1\x00', <r9=>0x0})
sendmsg$auto_NL80211_CMD_SET_PMK(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000780)={&(0x7f0000000200)={0x570, r5, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0xfff}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x8}, @NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8, 0x40, 0x5}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x430, 0x84, 0x0, 0x1, [@nested={0x4f, 0x31, 0x0, 0x1, [@generic="3ec1fa34f81237a8043e1f9cc9f5080355755f8cf3b32b9e94b1bd0c1ace327bc1049c96e6f7f8349c584336e07c32beb2488f3629a608d466fe58", @nested={0xfffffffffffffdda, 0x15c}, @nested={0x4, 0x20}, @typed={0x8, 0x3e, 0x0, 0x0, @ipv4=@empty}]}, @typed={0x8, 0x137, 0x0, 0x0, @u32=0x6}, @nested={0xde, 0x145, 0x0, 0x1, [@typed={0x24, 0x110, 0x0, 0x0, @binary="5a24c3e5bec7a9ab1fda426e8e346ac0780948d34eeacfd6b2abbf5a14368691"}, @nested={0x4, 0xde}, @typed={0x5, 0x30, 0x0, 0x0, @str='\x00'}, @generic="5696c54b0ba2c2accd249c14f716b4d0a9951da632f794b7d1dfd3f518608dba692469aa9defd4872b8b8cb219b72e3e0de428244075e10c98015a4d633741b02147bb9df703127b205982d27de8a38abd3d14a33b917b82b2372e5c4b805e0288d603b512d3b14dc5974c88bd53c1c68f0baf3c5f28bb2e470678fdc33be3abb25023b9d8d15978c561ab385024dac1066c89212bb2a76a5965017956d8494e74ff988b11ed9c15b0ed"]}, @nested={0xf0, 0x55, 0x0, 0x1, [@generic="bb67b799b0c58dd24bda4c57005276077be765423d6e6a41b11cc45a1c8f1e5fc4ee2d31ca5aff3d20cf8f45452be3bd0a2dd7929651fb9e36a6da0642d58fef2c79addab082e4538a44a9dd", @typed={0x14, 0xe1, 0x0, 0x0, @ipv6=@loopback}, @nested={0x4, 0x3f}, @generic="c00e33337ccb1c62d3e4ddc9e5e5fedd8cbf1e7f3fb8a90404e5febc530d32ea555bf7a0aeb78dd4c55f89ba54c048ef6a36bddd4b3f1735bebed4249263479aaf78b8480bcf87c41f7f63de780586071265962bdd19acbfd5af23a8e5ad9e1f0878b7e8febe97ad679b29b41fbc7184bdb78279971ca10987feb6c6", @typed={0x8, 0x141, 0x0, 0x0, @uid=r6}, @typed={0x4, 0x64}]}, @generic="352d4b829ce4ea58620d1d087480542b6751cf7ad894974f146b03191314bf8c4a268aa411c4e9c48df9593f33ed3414c9f2446308df1ee524ca92f028d49a0686d5acd184f2cd016d5607162adbd6094673305f3b281f39227e1be9c592701fa33223fd1131cf67abcce781863d7c501a0631aa9789893ffa35641eb08d662a17a786fdc034ae77efa37134e44d3fe57bc2cb0229ee2944b0f24601fb09e8ee01c303e35ae81ca918174444", @nested={0x156, 0xf7, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @pid=r7}, @generic="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", @generic="38248d4f93b6486503cf234a366047685863e2be5f87d0eedafd0513ec8b4ec6925c5a15724217633107ddad852c92ed14", @nested={0x4, 0x63}, @generic="8696111e6487c1320bcfff9e051b5619aaf9c542e6c44a"]}, @generic]}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_PMKR0_NAME={0xfe, 0x102, "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"}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x570}, 0x1, 0x0, 0x0, 0x40000}, 0x20000010)

3.073325511s ago: executing program 3 (id=1456):
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6d)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x3, 0x8, 0xfff)
prctl$auto(0x8, 0x1, 0x0, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
ioctl$auto(0x4000000000000c8, 0x400454cc, 0x6f)
r1 = socket(0xa, 0x5, 0x84)
r2 = getsockopt$auto(r1, 0x84, 0x1f, 0x0, &(0x7f0000000080)=0x49b)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="0100546309a81597d83445194800", @ANYRES8=r2, @ANYBLOB="1b0025bd7000f9dbdf2503000000040008001400038010000c800c00098008003b00ac1e000112000100898771f1c19f17790485908286dd00000400028004000800"], 0x48}, 0x1, 0x0, 0x0, 0x40080d0}, 0x400c880)
write$auto(0x3, 0x0, 0xfffffdef)
setresuid$auto(0x0, 0x0, 0xee01)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_bdi_debug_stats_fops_(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
bind$auto(0xffffffffffffffff, 0x0, 0x6b)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0x100000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)

2.863734995s ago: executing program 2 (id=1457):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r0 = gettid()
rt_sigqueueinfo$auto_SIGCONT(r0, 0x12, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000200), 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x2020009, 0x3, 0x13, 0xfffffffffffffffa, 0x8000)
sendto$auto(0x3, 0x0, 0xfffffffffffffdef, 0x101, 0x0, 0x1c)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
open(0x0, 0x22240, 0x147)
sendmsg$auto_IEEE802154_LLSEC_ADD_DEVKEY(r1, 0x0, 0x0)
ioctl$auto(0x3, 0x541b, 0x38)
r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r2, 0x0, 0x1f40)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x802, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0)
r3 = getpgrp(0xffffffffffffffff)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
write$auto_mousedev_fops_mousedev(0xffffffffffffffff, 0x0, 0x0)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
r4 = epoll_create$auto(0x5)
epoll_ctl$auto(r4, 0x1, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/tty/ttyq4/power/autosuspend_delay_ms\x00', 0x20241, 0x0)
close_range$auto(0x2, 0x8, 0x0)
prctl$auto(0x4, 0x20008021, r3, 0x5, 0x2)

832.453022ms ago: executing program 3 (id=1458):
mprotect$auto(0x110c238000, 0x1, 0x3)
mmap$auto(0x6, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x20)
process_vm_writev$auto(0x0, &(0x7f00000011c0)={&(0x7f00000001c0)="42777dd1330b458d0b5c44ca32e94fc00cfbce962ee7d8f31c0f90c327830f55adfdceafcc0f7b5a21ea23bdf5344d47d49d60218e57bb33118d04fdd37f5fd17f96a318132a5dd282784244bd58b9a0c8adc60d2f8535b3", 0x8}, 0x7, 0x0, 0x7, 0xb5)
r0 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
socket(0x2d, 0x2, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto(0x3, 0x89e2, 0x91)
sendmmsg$auto(r0, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)="4c0300000000000000a3677337f9eca9075f6bba441b", 0x49}, 0x5, 0x0, 0x8, 0x1}, 0x5}, 0x2, 0x100)
mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0)
process_vm_writev$auto(0x1, &(0x7f0000002980)={0x0, 0x4}, 0x3, &(0x7f0000002a40)={0x0, 0x7}, 0x4, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000040), 0x8804, 0x0)

752.669937ms ago: executing program 1 (id=1459):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x204880, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101200, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = socketcall$auto(0x100000a, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1)
ioctl$auto(r0, 0x3, r1)
sendmsg$auto_NL80211_CMD_SET_PMK(r1, &(0x7f0000000780)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000740)={&(0x7f0000000300)={0x428, r2, 0x1, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_IE_ASSOC_RESP={0x302, 0x80, "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"}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x1}, @NL80211_ATTR_COLOR_CHANGE_ELEMS={0xf8, 0x131, 0x0, 0x1, [@NL80211_ATTR_FRAME_MATCH={0xce, 0x5b, "9a78512bf1c90a9c4c45718a3c408349a22a3088cc1c4d58a08e8aeebe9c8df3248aadd60f8c72f9e5501ef153366588a8b3a74826ce16be637028248394fe57fe6f0873da85c7c1f2462fd6fb66ea5b9d7bd9572be327c610708142e1f2955aeb065e7c6c14cdf1cb4dbd0f763b24dc836b46fd82abf7e0b81d93c08688b5f4234282442253844a6d5afb9adfec3753f3e4e917b8e6ded7f8e2472501c4d866f1a32ffd37bfbf152035d6103b24154de04532534f5673d6ce70bb5976a95edaa87be27d1b98c348404c"}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x80}, @NL80211_ATTR_FILS_ERP_USERNAME={0x14, 0xf9, "268759ae069c54b62a069ae672330515"}, @NL80211_ATTR_WIPHY_NAME={0x6, 0x2, '+\x00'}]}, @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x70}, @NL80211_ATTR_TDLS_OPERATION={0x5, 0x8a, 0x9}]}, 0x428}, 0x1, 0x0, 0x0, 0x81}, 0x8811)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
statx$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x3, &(0x7f0000000200)={0x5, 0x9, 0x80, 0x4, 0xee00, 0xffffffffffffffff, 0xa267, 0xf801, 0x3, 0x4, 0x8000401, 0x0, {0x4, 0x400}, {0x5, 0xefd7}, {0x5, 0x8}, {0x1, 0x249}, 0x30000, 0x6, 0x80000008, 0x100, 0xfffffffffffffffd, 0xb42, 0xffff, 0x7, 0x5, 0x2, 0x58, 0x0, [0x6, 0x6, 0x9, 0xffffffff, 0x8, 0x10000, 0x80000000000100, 0x10, 0x4]})
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae90, &(0x7f0000000000)={0x75})

348.802739ms ago: executing program 3 (id=1460):
r0 = openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/current_tracer\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000080)='/sys/kernel/config/target/dbroot\x00', 0x3)
bind$auto(0xffffffffffffffff, 0x0, 0x69)
r1 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, 0x0, 0x6a)
r2 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'veth1_to_batadv\x00', <r3=>0x0})
sendmsg$auto_IEEE802154_LLSEC_GETPARAMS(r1, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)={0xb8, r2, 0x300, 0x70bd28, 0x25dfdbfe, {}, [@IEEE802154_ATTR_BAT_EXT={0x5, 0x1a, 0x91}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x1}, @IEEE802154_ATTR_CHANNEL_PAGE_LIST={0x84, 0x1e, "c789b646df5789fff1d878510b909b227346bb44d243a7b248e5d40f931bbb96fe6f7debab3eda5b606c070423817c04633c61ecd59343b7974fae6b23b0bb0171f833d31add36a80def44302b97f728449398c51a187b2f3e46a4754eea735fb66525198a9180ac6d39a2e129bcb01e4eab19290246443c27e90de6e805928b"}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x7}]}, 0xb8}, 0x1, 0x0, 0x0, 0x40044}, 0x10)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x15, 0x5, 0x0)
bind$auto(0x3, 0x0, 0x6a)
r4 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/kernel/config/target/dbroot\x00', 0x189002, 0x0)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf2503000000080003000002000006000700", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a0001"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
open(&(0x7f0000000000)='X))\x00', 0x44042, 0x1d0)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0xa, 0x2, 0x73)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16, @ANYBLOB="2f212cbd7000fcdbdf2531"], 0x48}}, 0x4000000)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
write$auto(r4, &(0x7f0000000640)='/sys/devices/virtual/bdi/43:352/stric\x06_limit\x00', 0x4)

271.507969ms ago: executing program 2 (id=1461):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x100000000000038, 0x0)
r0 = signalfd$auto(0xffffffffffffffff, 0x0, 0xda)
r1 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, 0x0, 0xa2540, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
io_uring_setup$auto(0x86, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001280)='/dev/v4l-subdev0\x00', 0x101000, 0x0)
ioctl$auto(r0, 0xc0205647, r1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
mbind$auto(0x8000000000000002, 0x100000004, 0x100000000, 0x0, 0x9, 0x2)
madvise$auto(0x0, 0x20499d, 0x9)
mmap$auto(0x0, 0xe000000000000000, 0xe2, 0x2000000009b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x200000000004008, 0xb, 0x5d7, 0x401, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
r2 = socket(0xa, 0x3, 0x3a)
bind$auto(0x3, &(0x7f0000000040)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x43, 0x1, 0x1}}, 0x6a)
r3 = getpid()
mmap$auto(0x0, 0x2020009, 0x126, 0xf8, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
syz_genetlink_get_family_id$auto_net_dm(&(0x7f0000000080), r2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
rt_sigpending$auto(0x0, 0x8)
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000040), 0xffffffff}, 0x6, 0x0)
madvise$auto(0x2, 0x99c5, 0xc)

0s ago: executing program 1 (id=1462):
bpf$auto(0x0, &(0x7f00000004c0)=@bpf_attr_4={0x22, 0xffffffffffffffff, 0x5}, 0xd)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/block/nbd11/queue/add_random\x00', 0x143262, 0x0)
write$auto(r0, &(0x7f00000000c0)='1\x00\xc7k\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00j(=\xd1<\xf9\x96\x10>\xb9\x05\xbe\xc8v\x81-ILplM\x98\x88J\xfd\x17\xc8K\xdd\x89;T@d\xa3_\xfcb8\x7fA\x11\xba\xefL\xe1L\x8aE}\xa7\x05\b\xd7\xe2\xae\xfek\xbbw\x8c\x88\x1emW-\xf5\x94\xdak\x81\xe4\x1e\x1dS\xf2~>\xb1\xc6\xd1\xee\xc8\x19e\xc1w\xf05%\xd76]\x0f\v\x01\xa4(\xec\xd3\xca\a\x15&nv\xc1}\xfcD', 0x81) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4d4ec8bdd106341}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48010}, 0x20004800)
r1 = io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ustat$auto(0x801, 0x0) (async)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x10, 0x0, 0x4000000003, 0x0, 0x4, 0x7}, 0xfff}, 0x6, 0x18000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) (async)
timer_gettime$auto(0x0, 0x0)
r2 = openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/saved_tgids\x00', 0x8000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) (async)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) (async)
open(&(0x7f0000001bc0)='./file0\x00', 0x4142, 0x1)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty57\x00', 0x40741, 0x0)
ioctl$auto(0x3, 0x402c542d, r3) (async)
write$auto(0x3, 0x0, 0xfffffdef) (async)
ioctl$auto(0x3, 0x541b, 0x74) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, 0x0, 0x7, 0x0, 0x200000004, 0xb}, 0x8}, 0x5, 0x7fffffff) (async)
ioctl$auto_VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000080)={0x200, r2}) (async)
bpf$auto_BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)=@task_fd_query={0xffffffffffffffff, r1, 0x7, 0xaa, 0x8, 0xc, 0xffffffffffffffff, 0xd, 0x8}, 0xffffffff)
openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000180), 0x200, 0x0) (async)
r4 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000001140)='/sys/kernel/debug/ieee80211/phy3/netdev:wlan0/tsf\x00', 0x80000, 0x0)
read$auto(r4, &(0x7f0000001200)='\x00', 0x4)

kernel console output (not intermixed with test programs):

8.992426][ T5633] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.004919][ T5627] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.020241][ T5632] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.027492][ T5632] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.034764][ T5632] bridge_slave_0: entered allmulticast mode
[   89.041861][ T5632] bridge_slave_0: entered promiscuous mode
[   89.052135][ T5633] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.081826][ T5632] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.089482][ T5632] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.096755][ T5632] bridge_slave_1: entered allmulticast mode
[   89.104029][ T5632] bridge_slave_1: entered promiscuous mode
[   89.165040][ T5627] team0: Port device team_slave_0 added
[   89.170842][ T5631] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.178284][ T5631] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.185549][ T5631] bridge_slave_0: entered allmulticast mode
[   89.192626][ T5631] bridge_slave_0: entered promiscuous mode
[   89.212398][ T5633] team0: Port device team_slave_0 added
[   89.220248][ T5627] team0: Port device team_slave_1 added
[   89.236289][ T5631] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.243552][ T5631] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.250695][ T5631] bridge_slave_1: entered allmulticast mode
[   89.258145][ T5631] bridge_slave_1: entered promiscuous mode
[   89.267566][ T5632] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.278945][ T5633] team0: Port device team_slave_1 added
[   89.319749][ T5632] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.340475][ T5627] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.347581][ T5627] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.373865][ T5627] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.406950][ T5633] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.414147][ T5633] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.440174][ T5633] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.452135][ T5627] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.459331][ T5627] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.486027][ T5627] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.507070][ T5631] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.528248][ T5633] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.535325][ T5633] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.561421][ T5633] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.586920][ T5631] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.598066][ T5632] team0: Port device team_slave_0 added
[   89.607801][ T5632] team0: Port device team_slave_1 added
[   89.701926][ T5631] team0: Port device team_slave_0 added
[   89.708414][ T5632] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.715669][ T5632] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.742140][ T5632] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.761205][ T5627] hsr_slave_0: entered promiscuous mode
[   89.767672][ T5627] hsr_slave_1: entered promiscuous mode
[   89.780498][ T5633] hsr_slave_0: entered promiscuous mode
[   89.786855][ T5633] hsr_slave_1: entered promiscuous mode
[   89.792890][ T5633] debugfs: 'hsr0' already exists in 'hsr'
[   89.798934][ T5633] Cannot create hsr debugfs directory
[   89.806543][ T5631] team0: Port device team_slave_1 added
[   89.812762][ T5632] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.819920][ T5632] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.846156][ T5632] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.916782][ T5631] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.923905][ T5631] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.949988][ T5631] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.004431][ T5631] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.011606][ T5631] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   90.037996][ T5631] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.093574][ T5632] hsr_slave_0: entered promiscuous mode
[   90.100406][ T5632] hsr_slave_1: entered promiscuous mode
[   90.108103][ T5632] debugfs: 'hsr0' already exists in 'hsr'
[   90.115964][ T5632] Cannot create hsr debugfs directory
[   90.218747][ T5631] hsr_slave_0: entered promiscuous mode
[   90.225239][ T5631] hsr_slave_1: entered promiscuous mode
[   90.231334][ T5631] debugfs: 'hsr0' already exists in 'hsr'
[   90.237125][ T5631] Cannot create hsr debugfs directory
[   90.599053][ T5627] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   90.611642][ T5627] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   90.620151][ T5627] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   90.630760][ T5627] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   90.653365][ T5627] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   90.663692][ T5627] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   90.672101][ T5627] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   90.685090][ T5627] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   90.754225][ T5633] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   90.764421][ T5633] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   90.772402][ T5633] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   90.782204][ T5633] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   90.794232][ T5633] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   90.804537][ T5633] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   90.826430][ T5633] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   90.836828][ T5633] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   90.903637][ T5632] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   90.915774][ T5632] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   90.923794][ T5644] Bluetooth: hci3: command tx timeout
[   90.931535][ T5632] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   90.941840][ T5632] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   90.950390][ T5632] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   90.960881][ T5632] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   90.990554][ T5632] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   91.001215][ T5632] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   91.014076][ T5628] Bluetooth: hci0: command tx timeout
[   91.019965][ T5634] Bluetooth: hci2: command tx timeout
[   91.027363][ T5644] Bluetooth: hci1: command tx timeout
[   91.115643][ T5631] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   91.126452][ T5631] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   91.135260][ T5631] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   91.145648][ T5631] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   91.154929][ T5631] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   91.165474][ T5631] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   91.175203][ T5631] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   91.185521][ T5631] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   91.277661][ T5627] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.312303][ T5633] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.345259][ T5627] 8021q: adding VLAN 0 to HW filter on device team0
[   91.376537][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.383983][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.401683][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.408813][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.430587][ T5633] 8021q: adding VLAN 0 to HW filter on device team0
[   91.447531][ T5632] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.479048][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.486206][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.509735][   T48] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.516896][   T48] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.552138][ T5632] 8021q: adding VLAN 0 to HW filter on device team0
[   91.590284][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.597466][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.625337][   T48] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.632477][   T48] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.678871][ T5631] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.776500][ T5631] 8021q: adding VLAN 0 to HW filter on device team0
[   91.827759][  T229] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.835019][  T229] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.869295][  T144] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.876547][  T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.218152][   T24] cfg80211: failed to load regulatory.db
[   92.939283][ T5627] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.977896][ T5633] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.999193][ T5632] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.006341][ T5644] Bluetooth: hci3: command tx timeout
[   93.093415][ T5628] Bluetooth: hci0: command tx timeout
[   93.098913][ T5634] Bluetooth: hci2: command tx timeout
[   93.104787][ T5644] Bluetooth: hci1: command tx timeout
[   93.157388][ T5631] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.198678][ T5633] veth0_vlan: entered promiscuous mode
[   93.209167][ T5627] veth0_vlan: entered promiscuous mode
[   93.234298][ T5632] veth0_vlan: entered promiscuous mode
[   93.252126][ T5633] veth1_vlan: entered promiscuous mode
[   93.261186][ T5627] veth1_vlan: entered promiscuous mode
[   93.282937][ T5632] veth1_vlan: entered promiscuous mode
[   93.369305][ T5631] veth0_vlan: entered promiscuous mode
[   93.375645][ T5632] veth0_macvtap: entered promiscuous mode
[   93.399978][ T5627] veth0_macvtap: entered promiscuous mode
[   93.410588][ T5633] veth0_macvtap: entered promiscuous mode
[   93.420572][ T5632] veth1_macvtap: entered promiscuous mode
[   93.432661][ T5627] veth1_macvtap: entered promiscuous mode
[   93.450031][ T5633] veth1_macvtap: entered promiscuous mode
[   93.458603][ T5631] veth1_vlan: entered promiscuous mode
[   93.495441][ T5632] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.518679][ T5627] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.530005][ T5633] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.543957][ T5632] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.562347][ T5633] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.581042][ T5627] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.607243][   T48] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.618076][   T48] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.640353][   T48] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.650462][   T48] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.674430][   T48] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.683482][   T48] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.700796][   T48] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.710090][   T48] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.732449][   T48] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.744507][   T48] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.756576][   T48] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.766380][   T48] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.781093][ T5631] veth0_macvtap: entered promiscuous mode
[   93.808964][ T5631] veth1_macvtap: entered promiscuous mode
[   93.921057][ T5631] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.951366][ T5631] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.964228][ T3355] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.975450][ T3355] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.011382][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.022490][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.031762][   T48] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.040924][   T48] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.071289][   T48] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.081925][   T48] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.106012][  T229] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.121401][  T229] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.154369][ T3355] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.169923][ T3355] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.239775][ T3355] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.254477][ T3355] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.294750][ T5632] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   94.325584][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.336520][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.429141][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.460451][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.546883][ T3355] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.579428][ T3355] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.083804][ T5634] Bluetooth: hci3: command tx timeout
[   95.164188][ T5628] Bluetooth: hci2: command tx timeout
[   95.164221][ T5644] Bluetooth: hci0: command tx timeout
[   95.170197][ T5634] Bluetooth: hci1: command tx timeout
[   96.072802][ T5807] futex_wake_op: syz.3.6 tries to shift op by -2048; fix this program
[   96.099398][ T5807] futex_wake_op: syz.3.6 tries to shift op by -2048; fix this program
[   96.564287][ T5820] netlink: 20 bytes leftover after parsing attributes in process `syz.1.9'.
[   97.616571][ T5820] Zero length message leads to an empty skb
[  100.812607][ T5872] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  104.174469][ T5905] block2mtd: error: cannot open device �inX�����±��jFB�B>U�;߸�Ilk�
[  104.270983][ T5912] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  104.612023][   T29] audit: type=1800 audit(1782521519.382:2): pid=5913 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.25" name="dbroot" dev="configfs" ino=9235 res=0 errno=0
[  104.705182][ T5913] netlink: 'syz.1.25': attribute type 5 has an invalid length.
[  104.725202][ T5913] netlink: 4 bytes leftover after parsing attributes in process `syz.1.25'.
[  105.665842][ T5928] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  107.757254][ T5941] FAULT_INJECTION: forcing a failure.
[  107.757254][ T5941] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  107.827937][ T5941] CPU: 0 UID: 0 PID: 5941 Comm: syz.2.31 Not tainted syzkaller #0 PREEMPT(full) 
[  107.827963][ T5941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  107.827973][ T5941] Call Trace:
[  107.827980][ T5941]  <TASK>
[  107.827988][ T5941]  dump_stack_lvl+0x100/0x190
[  107.828016][ T5941]  should_fail_ex.cold+0x5/0xa
[  107.828037][ T5941]  ? prepare_alloc_pages+0x16d/0x5f0
[  107.828066][ T5941]  should_fail_alloc_page+0xeb/0x140
[  107.828094][ T5941]  prepare_alloc_pages+0x1f0/0x5f0
[  107.828124][ T5941]  __alloc_frozen_pages_noprof+0x1af/0x2dc0
[  107.828149][ T5941]  ? rcu_is_watching+0x12/0xc0
[  107.828171][ T5941]  ? trace_mm_page_alloc+0x164/0x1c0
[  107.828198][ T5941]  ? __alloc_frozen_pages_noprof+0x2d1/0x2dc0
[  107.828220][ T5941]  ? __pfx_stack_trace_save+0x10/0x10
[  107.828245][ T5941]  ? __kernel_text_address+0xd/0x30
[  107.828272][ T5941]  ? unwind_get_return_address+0x59/0xa0
[  107.828300][ T5941]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  107.828328][ T5941]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  107.828350][ T5941]  ? stack_trace_save+0x8e/0xc0
[  107.828375][ T5941]  ? __pfx_stack_trace_save+0x10/0x10
[  107.828403][ T5941]  ? __lock_acquire+0x49f/0x1a40
[  107.828434][ T5941]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  107.828463][ T5941]  ? policy_nodemask+0xed/0x4f0
[  107.828491][ T5941]  alloc_pages_mpol+0x1fb/0x540
[  107.828518][ T5941]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  107.828550][ T5941]  ___kmalloc_large_node+0xe5/0x120
[  107.828579][ T5941]  __kmalloc_large_node_noprof+0x1c/0x70
[  107.828608][ T5941]  __kmalloc_noprof+0x5a1/0x820
[  107.828629][ T5941]  ? rcu_is_watching+0x12/0xc0
[  107.828651][ T5941]  ? trace_kmalloc+0xeb/0x110
[  107.828682][ T5941]  ? vhost_dev_set_owner+0x3b2/0xa30
[  107.828716][ T5941]  vhost_dev_set_owner+0x3b2/0xa30
[  107.828750][ T5941]  vhost_net_ioctl+0xfa3/0x1910
[  107.828776][ T5941]  ? do_vfs_ioctl+0x226/0x13e0
[  107.828802][ T5941]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  107.828828][ T5941]  ? __pfx_vhost_net_ioctl+0x10/0x10
[  107.828859][ T5941]  ? find_held_lock+0x2b/0x80
[  107.828882][ T5941]  ? __fget_files+0x215/0x3d0
[  107.828898][ T5941]  ? hook_file_ioctl_common+0x140/0x440
[  107.828923][ T5941]  ? __fget_files+0x21f/0x3d0
[  107.828943][ T5941]  ? __pfx_vhost_net_ioctl+0x10/0x10
[  107.828971][ T5941]  __x64_sys_ioctl+0x18e/0x210
[  107.828999][ T5941]  do_syscall_64+0x115/0x840
[  107.829024][ T5941]  ? clear_bhb_loop+0x40/0x90
[  107.829048][ T5941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.829067][ T5941] RIP: 0033:0x7f18e199ce59
[  107.829085][ T5941] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  107.829103][ T5941] RSP: 002b:00007f18e28e1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  107.829121][ T5941] RAX: ffffffffffffffda RBX: 00007f18e1c15fa0 RCX: 00007f18e199ce59
[  107.829133][ T5941] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000004
[  107.829146][ T5941] RBP: 00007f18e1a32e6f R08: 0000000000000000 R09: 0000000000000000
[  107.829156][ T5941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  107.829166][ T5941] R13: 00007f18e1c16038 R14: 00007f18e1c15fa0 R15: 00007fff93ba8048
[  107.829191][ T5941]  </TASK>
[  111.596260][ T6021] sysfs_service_op_store: Client not running :-5:
[  111.678756][ T6024] netlink: 16 bytes leftover after parsing attributes in process `syz.0.43'.
[  112.153801][ T6024] netlink: 186 bytes leftover after parsing attributes in process `syz.0.43'.
[  112.221588][ T6024] netlink: 186 bytes leftover after parsing attributes in process `syz.0.43'.
[  112.923811][    C0] vcan0: j1939_tp_rxtimer: 0xffff88807a7fac00: rx timeout, send abort
[  113.433168][    C0] vcan0: j1939_tp_rxtimer: 0xffff88807a7fac00: abort rx timeout. Force session deactivation
[  114.477537][ T6081] futex_wake_op: syz.1.51 tries to shift op by -2048; fix this program
[  114.493904][ T6081] futex_wake_op: syz.1.51 tries to shift op by -2048; fix this program
[  114.542285][ T6084] 0x000000000001-0x000000020000 : ""
[  114.721652][ T6084] ftl_cs: FTL header corrupt!
[  115.134287][ T6079] process 'syz.2.50' launched './file0' with NULL argv: empty string added
[  116.222720][   T29] audit: type=1800 audit(1782521530.992:3): pid=6099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.55" name="trigger" dev="tracefs" ino=19680823 res=0 errno=0
[  117.539171][ T6114] futex_wake_op: syz.3.56 tries to shift op by -2048; fix this program
[  117.598581][ T6114] futex_wake_op: syz.3.56 tries to shift op by -2048; fix this program
[  117.659606][ T6115] 0x000000000001-0x000000020000 : ""
[  117.768767][ T6115] ftl_cs: FTL header corrupt!
[  118.588903][ T6099] Process accounting resumed
[  119.210201][ T6133] syz.2.59 uses obsolete (PF_INET,SOCK_PACKET)
[  124.888493][ T6147] Process accounting resumed
[  129.318874][ T6224] futex_wake_op: syz.3.73 tries to shift op by -2048; fix this program
[  129.387019][ T6224] futex_wake_op: syz.3.73 tries to shift op by -2048; fix this program
[  129.427010][ T6225] 0x000000000001-0x000000020000 : ""
[  129.525435][ T6225] ftl_cs: FTL header corrupt!
[  130.454324][ T6237] netlink: 28 bytes leftover after parsing attributes in process `syz.1.76'.
[  130.577975][ T6245] netlink: 28 bytes leftover after parsing attributes in process `syz.0.78'.
[  131.002773][ T6254] netlink: 252 bytes leftover after parsing attributes in process `syz.0.81'.
[  131.035278][ T6254] netlink: 252 bytes leftover after parsing attributes in process `syz.0.81'.
[  132.544362][ T6272] futex_wake_op: syz.0.83 tries to shift op by -2048; fix this program
[  132.604363][ T6272] futex_wake_op: syz.0.83 tries to shift op by -2048; fix this program
[  132.648102][ T6274] 0x000000000001-0x000000020000 : ""
[  132.714182][ T6274] ftl_cs: FTL header corrupt!
[  133.166331][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  133.175531][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  133.392232][ T6286] futex_wake_op: syz.1.87 tries to shift op by -2048; fix this program
[  133.423852][ T6286] futex_wake_op: syz.1.87 tries to shift op by -2048; fix this program
[  133.456922][ T6286] 0x000000000001-0x000000020000 : ""
[  133.552574][ T6291] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  133.567084][ T6286] ftl_cs: FTL header corrupt!
[  133.637662][ T6289] smpboot: CPU 1 is now offline
[  136.124758][ T6299] syz.0.88 (6299) used greatest stack depth: 18736 bytes left
[  137.222189][ T6341] futex_wake_op: syz.3.99 tries to shift op by -2048; fix this program
[  137.330809][ T6341] futex_wake_op: syz.3.99 tries to shift op by -2048; fix this program
[  138.382782][ T6358] netlink: 'syz.3.103': attribute type 5 has an invalid length.
[  138.421340][ T6358] netlink: 4 bytes leftover after parsing attributes in process `syz.3.103'.
[  138.477267][ T6358] netlink: 'syz.3.103': attribute type 5 has an invalid length.
[  138.512247][ T6358] netlink: 4 bytes leftover after parsing attributes in process `syz.3.103'.
[  138.693939][ T5634] Bluetooth: hci1: unexpected event 0x03 length: 123 > 11
[  140.712357][ T6387] netlink: 146 bytes leftover after parsing attributes in process `syz.0.109'.
[  140.822193][ T6386] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  140.958278][ T6392] netlink: 'syz.3.111': attribute type 1 has an invalid length.
[  145.397782][ T6447] nbd: must specify at least one socket
[  146.954329][ T6470] netlink: 338 bytes leftover after parsing attributes in process `syz.0.126'.
[  147.536144][ T6476] FAULT_INJECTION: forcing a failure.
[  147.536144][ T6476] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  147.636551][ T6476] CPU: 0 UID: 0 PID: 6476 Comm: syz.0.128 Not tainted syzkaller #0 PREEMPT(full) 
[  147.636577][ T6476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  147.636588][ T6476] Call Trace:
[  147.636594][ T6476]  <TASK>
[  147.636601][ T6476]  dump_stack_lvl+0x100/0x190
[  147.636628][ T6476]  should_fail_ex.cold+0x5/0xa
[  147.636651][ T6476]  _copy_from_iter+0x43a/0x1690
[  147.636680][ T6476]  ? __pfx__copy_from_iter+0x10/0x10
[  147.636702][ T6476]  ? __kvmalloc_node_noprof+0x36d/0x970
[  147.636726][ T6476]  ? __asan_memset+0x23/0x50
[  147.636745][ T6476]  ? __build_skb_around+0x278/0x390
[  147.636773][ T6476]  ? is_vmalloc_addr+0x86/0xa0
[  147.636794][ T6476]  netlink_sendmsg+0x808/0xda0
[  147.636824][ T6476]  ? __pfx_netlink_sendmsg+0x10/0x10
[  147.636852][ T6476]  ? apparmor_socket_sendmsg+0x15b/0x270
[  147.636883][ T6476]  ____sys_sendmsg+0xa4d/0xbe0
[  147.636906][ T6476]  ? __pfx_netlink_sendmsg+0x10/0x10
[  147.636933][ T6476]  ? __pfx_____sys_sendmsg+0x10/0x10
[  147.636960][ T6476]  ? __pfx__kstrtoull+0x10/0x10
[  147.636992][ T6476]  ___sys_sendmsg+0x190/0x1e0
[  147.637018][ T6476]  ? __pfx____sys_sendmsg+0x10/0x10
[  147.637053][ T6476]  ? find_held_lock+0x2b/0x80
[  147.637089][ T6476]  __sys_sendmmsg+0x20c/0x440
[  147.637111][ T6476]  ? __pfx___sys_sendmmsg+0x10/0x10
[  147.637128][ T6476]  ? ksys_write+0x190/0x250
[  147.637160][ T6476]  ? fput+0x79/0x100
[  147.637181][ T6476]  ? ksys_write+0x1ac/0x250
[  147.637197][ T6476]  ? __pfx_ksys_write+0x10/0x10
[  147.637217][ T6476]  __x64_sys_sendmmsg+0x9c/0x100
[  147.637236][ T6476]  ? lockdep_hardirqs_on+0x78/0x100
[  147.637261][ T6476]  do_syscall_64+0x115/0x840
[  147.637286][ T6476]  ? clear_bhb_loop+0x40/0x90
[  147.637308][ T6476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.637327][ T6476] RIP: 0033:0x7fb8b7d9ce59
[  147.637342][ T6476] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  147.637359][ T6476] RSP: 002b:00007fb8b8c72028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  147.637377][ T6476] RAX: ffffffffffffffda RBX: 00007fb8b8015fa0 RCX: 00007fb8b7d9ce59
[  147.637389][ T6476] RDX: 000000000000000c RSI: 0000200000000200 RDI: 0000000000000004
[  147.637399][ T6476] RBP: 00007fb8b8c72090 R08: 0000000000000000 R09: 0000000000000000
[  147.637410][ T6476] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[  147.637420][ T6476] R13: 00007fb8b8016038 R14: 00007fb8b8015fa0 R15: 00007ffcb14a5468
[  147.637442][ T6476]  </TASK>
[  152.659296][ T6488] Process accounting paused
[  153.970526][   T29] audit: type=1804 audit(1782521568.742:4): pid=6557 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.142" name="/newroot/29/file0" dev="tmpfs" ino=170 res=1 errno=0
[  155.392313][ T6542] Process accounting paused
[  156.934879][ T6595] netlink: 338 bytes leftover after parsing attributes in process `syz.2.153'.
[  159.759208][ T6628] FAULT_INJECTION: forcing a failure.
[  159.759208][ T6628] name failslab, interval 1, probability 0, space 0, times 1
[  159.777973][   T29] audit: type=1800 audit(1782521574.552:5): pid=6627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.161" name="lu_gp_id" dev="configfs" ino=11777 res=0 errno=0
[  159.837822][ T6628] CPU: 0 UID: 0 PID: 6628 Comm: syz.0.162 Not tainted syzkaller #0 PREEMPT(full) 
[  159.837848][ T6628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  159.837858][ T6628] Call Trace:
[  159.837864][ T6628]  <TASK>
[  159.837872][ T6628]  dump_stack_lvl+0x100/0x190
[  159.837903][ T6628]  should_fail_ex.cold+0x5/0xa
[  159.837926][ T6628]  should_failslab+0xc2/0x120
[  159.837953][ T6628]  kmem_cache_alloc_noprof+0x91/0x6a0
[  159.837976][ T6628]  ? trace_kmem_cache_alloc+0xdd/0x100
[  159.838002][ T6628]  ? security_file_alloc+0x34/0x2c0
[  159.838026][ T6628]  security_file_alloc+0x34/0x2c0
[  159.838046][ T6628]  init_file+0x95/0x480
[  159.838068][ T6628]  alloc_empty_file+0x79/0x1c0
[  159.838093][ T6628]  alloc_file_pseudo+0x183/0x290
[  159.838117][ T6628]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  159.838139][ T6628]  ? inode_init_always_gfp+0xc98/0xfb0
[  159.838163][ T6628]  sock_alloc_file+0x50/0x210
[  159.838183][ T6628]  do_accept+0x242/0x530
[  159.838209][ T6628]  ? do_raw_spin_lock+0x128/0x260
[  159.838231][ T6628]  ? __pfx_do_accept+0x10/0x10
[  159.838271][ T6628]  __sys_accept4+0x108/0x200
[  159.838298][ T6628]  ? __pfx___sys_accept4+0x10/0x10
[  159.838330][ T6628]  __x64_sys_accept+0x74/0xb0
[  159.838365][ T6628]  ? lockdep_hardirqs_on+0x78/0x100
[  159.838389][ T6628]  do_syscall_64+0x115/0x840
[  159.838413][ T6628]  ? clear_bhb_loop+0x40/0x90
[  159.838436][ T6628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.838454][ T6628] RIP: 0033:0x7fb8b7d9ce59
[  159.838471][ T6628] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  159.838487][ T6628] RSP: 002b:00007fb8b8c51028 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  159.838505][ T6628] RAX: ffffffffffffffda RBX: 00007fb8b8016090 RCX: 00007fb8b7d9ce59
[  159.838517][ T6628] RDX: ffffffffffffffff RSI: ffffffffffffffff RDI: 0000000000000003
[  159.838528][ T6628] RBP: 00007fb8b7e32e6f R08: 0000000000000000 R09: 0000000000000000
[  159.838538][ T6628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  159.838548][ T6628] R13: 00007fb8b8016128 R14: 00007fb8b8016090 R15: 00007ffcb14a5468
[  159.838570][ T6628]  </TASK>
[  162.059064][ T6652] FAULT_INJECTION: forcing a failure.
[  162.059064][ T6652] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.136921][ T6652] CPU: 0 UID: 0 PID: 6652 Comm: syz.2.168 Not tainted syzkaller #0 PREEMPT(full) 
[  162.136948][ T6652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  162.136959][ T6652] Call Trace:
[  162.136965][ T6652]  <TASK>
[  162.136972][ T6652]  dump_stack_lvl+0x100/0x190
[  162.136999][ T6652]  should_fail_ex.cold+0x5/0xa
[  162.137023][ T6652]  _copy_from_user+0x2e/0xd0
[  162.137047][ T6652]  snd_rawmidi_kernel_write1+0x390/0x7c0
[  162.137082][ T6652]  snd_rawmidi_write+0x2dc/0xc60
[  162.137114][ T6652]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  162.137143][ T6652]  ? __pfx_default_wake_function+0x10/0x10
[  162.137166][ T6652]  ? bpf_lsm_file_permission+0x9/0x10
[  162.137184][ T6652]  ? security_file_permission+0x76/0x210
[  162.137206][ T6652]  ? rw_verify_area+0xce/0x6d0
[  162.137234][ T6652]  vfs_write+0x2aa/0x1050
[  162.137251][ T6652]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  162.137282][ T6652]  ? __pfx_vfs_write+0x10/0x10
[  162.137297][ T6652]  ? find_held_lock+0x2b/0x80
[  162.137318][ T6652]  ? __fget_files+0x215/0x3d0
[  162.137335][ T6652]  ? __fget_files+0x215/0x3d0
[  162.137354][ T6652]  ? __fget_files+0x21f/0x3d0
[  162.137376][ T6652]  ksys_write+0x1f8/0x250
[  162.137392][ T6652]  ? __pfx_ksys_write+0x10/0x10
[  162.137415][ T6652]  do_syscall_64+0x115/0x840
[  162.137447][ T6652]  ? clear_bhb_loop+0x40/0x90
[  162.137470][ T6652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.137489][ T6652] RIP: 0033:0x7f18e199ce59
[  162.137505][ T6652] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  162.137522][ T6652] RSP: 002b:00007f18e28e1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  162.137539][ T6652] RAX: ffffffffffffffda RBX: 00007f18e1c15fa0 RCX: 00007f18e199ce59
[  162.137551][ T6652] RDX: 000004100000a3d7 RSI: 0000200000001380 RDI: 0000000000000005
[  162.137562][ T6652] RBP: 00007f18e1a32e6f R08: 0000000000000000 R09: 0000000000000000
[  162.137573][ T6652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  162.137583][ T6652] R13: 00007f18e1c16038 R14: 00007f18e1c15fa0 R15: 00007fff93ba8048
[  162.137612][ T6652]  </TASK>
[  163.031719][ T6658] No such timeout policy ""
[  167.476751][ T6697] Process accounting resumed
[  172.315072][ T6758] netlink: 8 bytes leftover after parsing attributes in process `syz.2.187'.
[  172.887054][ T6766] FAULT_INJECTION: forcing a failure.
[  172.887054][ T6766] name failslab, interval 1, probability 0, space 0, times 0
[  173.145980][ T6766] CPU: 0 UID: 0 PID: 6766 Comm: syz.2.187 Not tainted syzkaller #0 PREEMPT(full) 
[  173.146007][ T6766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  173.146016][ T6766] Call Trace:
[  173.146023][ T6766]  <TASK>
[  173.146030][ T6766]  dump_stack_lvl+0x100/0x190
[  173.146057][ T6766]  should_fail_ex.cold+0x5/0xa
[  173.146081][ T6766]  should_failslab+0xc2/0x120
[  173.146107][ T6766]  kmem_cache_alloc_lru_noprof+0x8d/0x6a0
[  173.146133][ T6766]  ? alloc_inode+0x68/0x250
[  173.146158][ T6766]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  173.146183][ T6766]  alloc_inode+0x68/0x250
[  173.146213][ T6766]  new_inode+0x22/0x1c0
[  173.146239][ T6766]  __debugfs_create_file+0x105/0x4f0
[  173.146271][ T6766]  debugfs_create_file_full+0x41/0x60
[  173.146299][ T6766]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  173.146325][ T6766]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  173.146348][ T6766]  ? ida_alloc_range+0x70d/0x830
[  173.146391][ T6766]  ? kasan_save_track+0x14/0x30
[  173.146413][ T6766]  ? __kasan_kmalloc+0xaa/0xb0
[  173.146436][ T6766]  ? lockdep_init_map_type+0x5c/0x250
[  173.146457][ T6766]  preinit_net.part.0+0x252/0x920
[  173.146479][ T6766]  copy_net_ns+0x339/0x7c0
[  173.146503][ T6766]  create_new_namespaces+0x3ea/0xac0
[  173.146528][ T6766]  unshare_nsproxy_namespaces+0xf2/0x220
[  173.146551][ T6766]  ksys_unshare+0x438/0xab0
[  173.146576][ T6766]  ? __pfx_ksys_unshare+0x10/0x10
[  173.146608][ T6766]  __x64_sys_unshare+0x31/0x40
[  173.146631][ T6766]  do_syscall_64+0x115/0x840
[  173.146657][ T6766]  ? clear_bhb_loop+0x40/0x90
[  173.146679][ T6766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.146697][ T6766] RIP: 0033:0x7f18e199ce59
[  173.146713][ T6766] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  173.146730][ T6766] RSP: 002b:00007f18e289f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  173.146747][ T6766] RAX: ffffffffffffffda RBX: 00007f18e1c16180 RCX: 00007f18e199ce59
[  173.146758][ T6766] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  173.146769][ T6766] RBP: 00007f18e1a32e6f R08: 0000000000000000 R09: 0000000000000000
[  173.146779][ T6766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  173.146789][ T6766] R13: 00007f18e1c16218 R14: 00007f18e1c16180 R15: 00007fff93ba8048
[  173.146812][ T6766]  </TASK>
[  173.660903][ T6766] debugfs: out of free dentries, can not create file 'net_refcnt@ffff888053f35100'
[  173.703150][   T29] audit: type=1800 audit(1782521588.232:6): pid=6775 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.192" name="dbroot" dev="configfs" ino=12705 res=0 errno=0
[  176.660614][ T6801] netlink: 4394 bytes leftover after parsing attributes in process `syz.1.195'.
[  177.674871][ T6813] batadv_slave_1: entered promiscuous mode
[  177.772015][ T6813] batadv_slave_1: left promiscuous mode
[  180.415139][ T5634] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  180.415166][ T5634] Bluetooth: hci3: unexpected subevent 0x06 length: 725 > 10
[  182.443491][ T5634] Bluetooth: hci3: command tx timeout
[  183.000890][ T6837] Process accounting resumed
[  183.073274][ T6872] netlink: 346 bytes leftover after parsing attributes in process `syz.3.210'.
[  185.842917][ T5634] Bluetooth: hci0: unexpected event 0x0f length: 7 > 4
[  186.008894][ T6892] Process accounting resumed
[  188.477318][ T6947] netlink: 334 bytes leftover after parsing attributes in process `syz.2.224'.
[  194.606599][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  194.619705][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  194.750908][ T7014] netlink: 'syz.1.237': attribute type 23 has an invalid length.
[  195.384709][ T7023] netlink: 146 bytes leftover after parsing attributes in process `syz.3.240'.
[  199.511849][ T7026] Process accounting paused
[  201.568707][ T7063] hub 1-0:1.0: USB hub found
[  201.706191][ T7063] hub 1-0:1.0: 1 port detected
[  203.308642][ T7101] dyndbg: bad flag-op h, at start of h

[  203.369062][ T7101] dyndbg: flags parse failed
[  204.447083][ T7112] netlink: 'syz.3.258': attribute type 1 has an invalid length.
[  205.151237][ T7119] netlink: 4 bytes leftover after parsing attributes in process `syz.3.261'.
[  205.386892][ T7119] HfR: entered promiscuous mode
[  205.483466][ T7125] netlink: 16 bytes leftover after parsing attributes in process `syz.3.261'.
[  205.745126][ T7125] HfR: left promiscuous mode
[  206.379891][ T7107] netlink: 4 bytes leftover after parsing attributes in process `syz.0.257'.
[  207.393595][ T7144] vivid-007: =================  START STATUS  =================
[  207.528400][ T7144] vivid-007: Enable Output Cropping: true grabbed
[  207.685873][ T7144] vivid-007: Enable Output Composing: true grabbed
[  207.871820][ T7144] vivid-007: Enable Output Scaler: true grabbed
[  208.084494][ T7144] vivid-007: Tx RGB Quantization Range: Automatic grabbed
[  208.278486][ T7144] vivid-007: Transmit Mode: HDMI grabbed
[  208.384257][ T7144] vivid-007: Hotplug Present: 0x00000000
[  208.548698][ T7144] vivid-007: RxSense Present: 0x00000000
[  208.715941][ T7144] vivid-007: EDID Present: 0x00000000
[  208.826107][ T7144] vivid-007: ==================  END STATUS  ==================
[  211.256383][ T7171] netlink: 28 bytes leftover after parsing attributes in process `syz.0.268'.
[  211.430249][ T7171] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  211.522315][ T7171] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  211.640997][ T7171] bond0 (unregistering): Released all slaves
[  212.048884][ T5641] Bluetooth: hci3: command 0x0406 tx timeout
[  212.055227][   T50] Bluetooth: hci1: command 0x0406 tx timeout
[  212.061260][   T50] Bluetooth: hci2: command 0x0406 tx timeout
[  212.067341][ T4945] Bluetooth: hci0: command 0x0406 tx timeout
[  213.154807][ T7182] Process accounting paused
[  213.427586][ T7191] FAULT_INJECTION: forcing a failure.
[  213.427586][ T7191] name failslab, interval 1, probability 0, space 0, times 0
[  213.505924][ T7191] CPU: 0 UID: 0 PID: 7191 Comm: syz.1.271 Not tainted syzkaller #0 PREEMPT(full) 
[  213.505951][ T7191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  213.505961][ T7191] Call Trace:
[  213.505968][ T7191]  <TASK>
[  213.505974][ T7191]  dump_stack_lvl+0x100/0x190
[  213.506001][ T7191]  should_fail_ex.cold+0x5/0xa
[  213.506025][ T7191]  should_failslab+0xc2/0x120
[  213.506051][ T7191]  kmem_cache_alloc_lru_noprof+0x8d/0x6a0
[  213.506076][ T7191]  ? xas_split_alloc+0x11c/0x4a0
[  213.506107][ T7191]  xas_split_alloc+0x11c/0x4a0
[  213.506140][ T7191]  __folio_split+0x5e7/0x1610
[  213.506165][ T7191]  ? find_held_lock+0x2b/0x80
[  213.506188][ T7191]  ? __pfx___folio_split+0x10/0x10
[  213.506205][ T7191]  ? folio_alloc_swap+0xca3/0x2220
[  213.506238][ T7191]  ? folio_alloc_swap+0x4ee/0x2220
[  213.506265][ T7191]  shmem_writeout+0x79f/0x1a90
[  213.506289][ T7191]  ? __pfx_shmem_writeout+0x10/0x10
[  213.506307][ T7191]  ? __pfx_try_to_unmap+0x10/0x10
[  213.506324][ T7191]  ? find_held_lock+0x2b/0x80
[  213.506348][ T7191]  ? inode_to_bdi+0x9e/0x160
[  213.506370][ T7191]  ? folio_clear_dirty_for_io+0x178/0x960
[  213.506395][ T7191]  shrink_folio_list+0x3bbd/0x60a0
[  213.506431][ T7191]  ? __lock_acquire+0x49f/0x1a40
[  213.506460][ T7191]  ? __pfx_shrink_folio_list+0x10/0x10
[  213.506498][ T7191]  ? is_bpf_text_address+0x8a/0x1a0
[  213.506525][ T7191]  ? bpf_ksym_find+0x124/0x1c0
[  213.506566][ T7191]  ? __lock_acquire+0x49f/0x1a40
[  213.506593][ T7191]  ? __css_rstat_updated+0x1ce/0x5a0
[  213.506622][ T7191]  ? __pfx___css_rstat_updated+0x10/0x10
[  213.506654][ T7191]  reclaim_folio_list+0xdc/0x5d0
[  213.506685][ T7191]  ? __pfx_reclaim_folio_list+0x10/0x10
[  213.506713][ T7191]  ? __mod_memcg_lruvec_state+0x18c/0x5b0
[  213.506743][ T7191]  ? lru_gen_update_size+0x431/0xe20
[  213.506775][ T7191]  ? lru_gen_del_folio+0x382/0x5f0
[  213.506811][ T7191]  reclaim_pages+0x428/0x5e0
[  213.506830][ T7191]  ? __pfx_reclaim_pages+0x10/0x10
[  213.506846][ T7191]  ? madvise_cold_or_pageout_pte_range+0x2177/0x2620
[  213.506876][ T7191]  ? folio_isolate_lru+0xd6/0xe90
[  213.506897][ T7191]  madvise_cold_or_pageout_pte_range+0x14c9/0x2620
[  213.506934][ T7191]  ? rcu_read_unlock+0x17/0x60
[  213.506962][ T7191]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  213.506992][ T7191]  ? __mod_zone_page_state+0xe2/0x190
[  213.507028][ T7191]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  213.507058][ T7191]  walk_pgd_range+0xc1a/0x1dd0
[  213.507084][ T7191]  ? find_held_lock+0x2b/0x80
[  213.507115][ T7191]  ? __pfx_walk_pgd_range+0x10/0x10
[  213.507138][ T7191]  ? __pfx_folio_batch_move_lru+0x10/0x10
[  213.507160][ T7191]  __walk_page_range+0x171/0x850
[  213.507191][ T7191]  walk_page_range_vma_unsafe+0x209/0x8f0
[  213.507217][ T7191]  ? __pfx_walk_page_range_vma_unsafe+0x10/0x10
[  213.507244][ T7191]  ? find_held_lock+0x2b/0x80
[  213.507265][ T7191]  ? mlock_drain_local+0x254/0x4e0
[  213.507285][ T7191]  ? mlock_drain_local+0x254/0x4e0
[  213.507308][ T7191]  walk_page_range_vma+0x63/0x90
[  213.507332][ T7191]  madvise_pageout+0x259/0x540
[  213.507360][ T7191]  ? __pfx_madvise_pageout+0x10/0x10
[  213.507391][ T7191]  ? rcu_is_watching+0x12/0xc0
[  213.507423][ T7191]  ? mtree_range_walk+0x72b/0xb70
[  213.507450][ T7191]  madvise_vma_behavior+0x452/0x2240
[  213.507481][ T7191]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  213.507516][ T7191]  ? find_vma_prev+0xd8/0x150
[  213.507542][ T7191]  ? __pfx_find_vma_prev+0x10/0x10
[  213.507573][ T7191]  ? __futex_wait+0x256/0x300
[  213.507602][ T7191]  madvise_walk_vmas+0x2fe/0xa90
[  213.507634][ T7191]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  213.507669][ T7191]  madvise_do_behavior+0x1ea/0x510
[  213.507700][ T7191]  ? __pfx_madvise_do_behavior+0x10/0x10
[  213.507730][ T7191]  ? down_read+0x13b/0x4c0
[  213.507755][ T7191]  ? __pfx_futex_wait+0x10/0x10
[  213.507789][ T7191]  do_madvise+0x238/0x290
[  213.507822][ T7191]  ? __pfx_do_madvise+0x10/0x10
[  213.507849][ T7191]  ? do_futex+0x190/0x440
[  213.507872][ T7191]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  213.507909][ T7191]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  213.507944][ T7191]  __x64_sys_madvise+0xa9/0x110
[  213.507972][ T7191]  ? lockdep_hardirqs_on+0x78/0x100
[  213.507998][ T7191]  do_syscall_64+0x115/0x840
[  213.508022][ T7191]  ? clear_bhb_loop+0x40/0x90
[  213.508044][ T7191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.508063][ T7191] RIP: 0033:0x7f9414d9ce59
[  213.508078][ T7191] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  213.508095][ T7191] RSP: 002b:00007f9412fcd028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  213.508113][ T7191] RAX: ffffffffffffffda RBX: 00007f9415016090 RCX: 00007f9414d9ce59
[  213.508124][ T7191] RDX: 0000000000000015 RSI: 00000000002003f2 RDI: 0000000000000000
[  213.508134][ T7191] RBP: 00007f9414e32e6f R08: 0000000000000000 R09: 0000000000000000
[  213.508144][ T7191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  213.508154][ T7191] R13: 00007f9415016128 R14: 00007f9415016090 R15: 00007fff119ab8e8
[  213.508177][ T7191]  </TASK>
[  214.037810][ T7194] [U] ^R
[  214.530219][   T29] audit: type=1800 audit(1782521629.302:7): pid=7203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.274" name="members" dev="configfs" ino=14754 res=0 errno=0
[  215.791511][ T7221] futex_wake_op: syz.0.278 tries to shift op by -2048; fix this program
[  215.924889][ T7219] capability: warning: `syz.1.277' uses deprecated v2 capabilities in a way that may be insecure
[  216.043766][ T7213] netlink: 12 bytes leftover after parsing attributes in process `syz.3.276'.
[  216.318289][ T7203] Process accounting paused
[  217.872988][ T7253] Process accounting resumed
[  218.912135][ T7268] netlink: 28 bytes leftover after parsing attributes in process `syz.2.288'.
[  219.038958][ T7268] ipvlan1: entered promiscuous mode
[  219.068133][ T7268] ipvlan1: entered allmulticast mode
[  219.098997][ T7268] veth0_vlan: entered allmulticast mode
[  219.641417][ T7285] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  219.718691][ T7285] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  219.958558][ T7285] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  219.990120][ T7285] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  220.044305][ T7285] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  220.082700][ T7285] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  220.156702][ T7295] netlink: 28 bytes leftover after parsing attributes in process `syz.0.295'.
[  220.193498][ T7285] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  220.226477][ T7285] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  221.643518][ T5638] Bluetooth: hci0: command 0x0406 tx timeout
[  221.963511][ T5638] Bluetooth: hci1: command 0x0406 tx timeout
[  222.043215][ T5638] Bluetooth: hci3: command 0x0406 tx timeout
[  222.203259][ T5638] Bluetooth: hci2: command 0x0406 tx timeout
[  223.723341][ T5638] Bluetooth: hci0: command 0x0406 tx timeout
[  224.043150][ T5638] Bluetooth: hci1: command 0x0406 tx timeout
[  224.123187][ T5638] Bluetooth: hci3: command 0x0406 tx timeout
[  224.285160][ T5638] Bluetooth: hci2: command 0x0406 tx timeout
[  228.182641][ T7411] netlink: 342 bytes leftover after parsing attributes in process `syz.0.311'.
[  229.157886][ T7421] zswap: compressor  not available
[  231.405624][ T7433] Process accounting resumed
[  233.366815][ T7493] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma?
[  237.136160][ T7546] netlink: 'syz.0.340': attribute type 1 has an invalid length.
[  239.045806][ T7580] netlink: 28 bytes leftover after parsing attributes in process `syz.2.346'.
[  239.518370][ T7558] Process accounting resumed
[  240.969513][ T7593] futex_wake_op: syz.0.349 tries to shift op by -2048; fix this program
[  242.646097][ T7624] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  243.196333][ T7631] Process accounting resumed
[  247.931836][ T7697] Process accounting paused
[  248.272754][ T7714] netlink: 8 bytes leftover after parsing attributes in process `syz.2.372'.
[  249.704506][ T7735] netlink: 28 bytes leftover after parsing attributes in process `syz.1.377'.
[  249.848889][ T7735] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  249.968052][ T7735] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  250.091898][ T7735] bond0 (unregistering): Released all slaves
[  250.165818][ T7739] netlink: 342 bytes leftover after parsing attributes in process `syz.0.378'.
[  250.238600][ T7739] netlink: 342 bytes leftover after parsing attributes in process `syz.0.378'.
[  252.243618][ T7775] netlink: 'syz.3.384': attribute type 11 has an invalid length.
[  252.392049][ T7775] netlink: 'syz.3.384': attribute type 11 has an invalid length.
[  252.538676][ T7775] netlink: 'syz.3.384': attribute type 11 has an invalid length.
[  252.687818][ T7775] netlink: 'syz.3.384': attribute type 11 has an invalid length.
[  252.730560][ T7769] hub 1-0:1.0: USB hub found
[  252.803481][ T7769] hub 1-0:1.0: 1 port detected
[  256.045325][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  256.054963][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  256.289731][   T29] audit: type=1800 audit(1782521671.062:8): pid=7845 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.396" name="members" dev="configfs" ino=18072 res=0 errno=0
[  257.389080][ T7850] can: request_module (can-proto-5) failed.
[  259.208388][ T7875] netlink: 28 bytes leftover after parsing attributes in process `syz.0.402'.
[  259.379315][ T7874] bond0: invalid ARP target specified
[  261.162854][ T7903] netlink: 28 bytes leftover after parsing attributes in process `syz.0.408'.
[  262.982943][ T7931] netlink: 4 bytes leftover after parsing attributes in process `syz.3.413'.
[  263.059438][ T7931] HfR: entered promiscuous mode
[  263.231432][ T7931] netlink: 16 bytes leftover after parsing attributes in process `syz.3.413'.
[  263.331676][ T7931] HfR: left promiscuous mode
[  264.661195][   T29] audit: type=1800 audit(1782521679.432:9): pid=7963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.415" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  265.450214][ T7985] vivid-007: =================  START STATUS  =================
[  265.519983][ T7985] vivid-007: Enable Output Cropping: true grabbed
[  265.599393][ T7985] vivid-007: Enable Output Composing: true grabbed
[  265.685665][ T7985] vivid-007: Enable Output Scaler: true grabbed
[  265.769514][ T7985] vivid-007: Tx RGB Quantization Range: Automatic grabbed
[  265.898601][ T7985] vivid-007: Transmit Mode: HDMI grabbed
[  265.985659][ T7985] vivid-007: Hotplug Present: 0x00000000
[  266.099166][ T7985] vivid-007: RxSense Present: 0x00000000
[  266.247174][ T7985] vivid-007: EDID Present: 0x00000000
[  266.328613][ T7985] vivid-007: ==================  END STATUS  ==================
[  267.331551][ T8008] FAULT_INJECTION: forcing a failure.
[  267.331551][ T8008] name failslab, interval 1, probability 0, space 0, times 0
[  267.431827][ T8008] CPU: 0 UID: 0 PID: 8008 Comm: syz.0.427 Not tainted syzkaller #0 PREEMPT(full) 
[  267.431854][ T8008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  267.431867][ T8008] Call Trace:
[  267.431880][ T8008]  <TASK>
[  267.431887][ T8008]  dump_stack_lvl+0x100/0x190
[  267.431914][ T8008]  should_fail_ex.cold+0x5/0xa
[  267.431938][ T8008]  should_failslab+0xc2/0x120
[  267.431964][ T8008]  kmem_cache_alloc_noprof+0x91/0x6a0
[  267.431987][ T8008]  ? kernfs_add_one+0x611/0xaa0
[  267.432005][ T8008]  ? kernfs_add_one+0x611/0xaa0
[  267.432021][ T8008]  ? __kernfs_new_node+0xd2/0xa10
[  267.432055][ T8008]  __kernfs_new_node+0xd2/0xa10
[  267.432086][ T8008]  ? kernfs_add_one+0x214/0xaa0
[  267.432103][ T8008]  ? __pfx___kernfs_new_node+0x10/0x10
[  267.432138][ T8008]  ? find_held_lock+0x2b/0x80
[  267.432161][ T8008]  ? kernfs_root+0xee/0x2a0
[  267.432186][ T8008]  ? kernfs_root+0xee/0x2a0
[  267.432217][ T8008]  kernfs_new_node+0x117/0x150
[  267.432239][ T8008]  kernfs_create_link+0xcc/0x240
[  267.432263][ T8008]  sysfs_do_create_link_sd+0x90/0x140
[  267.432292][ T8008]  sysfs_create_link+0x61/0xc0
[  267.432318][ T8008]  device_add+0x553/0x1970
[  267.432344][ T8008]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  267.432371][ T8008]  ? __pfx_device_add+0x10/0x10
[  267.432395][ T8008]  ? lockdep_init_map_type+0x5c/0x250
[  267.432413][ T8008]  ? __init_waitqueue_head+0xca/0x150
[  267.432438][ T8008]  netdev_register_kobject+0x1a9/0x3d0
[  267.432466][ T8008]  register_netdevice+0x15b6/0x25a0
[  267.432492][ T8008]  ? __pfx_register_netdevice+0x10/0x10
[  267.432518][ T8008]  __ip_tunnel_create+0x52b/0x670
[  267.432544][ T8008]  ? __pfx___ip_tunnel_create+0x10/0x10
[  267.432567][ T8008]  ? net_generic+0xea/0x2a0
[  267.432597][ T8008]  ip_tunnel_init_net+0x230/0x780
[  267.432625][ T8008]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  267.432661][ T8008]  ? __pfx_ipip_init_net+0x10/0x10
[  267.432687][ T8008]  ops_init+0x1e2/0x5f0
[  267.432709][ T8008]  setup_net+0x118/0x3a0
[  267.432728][ T8008]  ? __pfx_setup_net+0x10/0x10
[  267.432747][ T8008]  ? mutex_init_lockdep+0xf1/0x120
[  267.432769][ T8008]  copy_net_ns+0x46f/0x7c0
[  267.432792][ T8008]  create_new_namespaces+0x3ea/0xac0
[  267.432818][ T8008]  unshare_nsproxy_namespaces+0xf2/0x220
[  267.432840][ T8008]  ksys_unshare+0x438/0xab0
[  267.432865][ T8008]  ? __pfx_ksys_unshare+0x10/0x10
[  267.432903][ T8008]  __x64_sys_unshare+0x31/0x40
[  267.432926][ T8008]  do_syscall_64+0x115/0x840
[  267.432951][ T8008]  ? clear_bhb_loop+0x40/0x90
[  267.432972][ T8008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.432991][ T8008] RIP: 0033:0x7fb8b7d9ce59
[  267.433007][ T8008] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  267.433024][ T8008] RSP: 002b:00007fb8b8c72028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  267.433041][ T8008] RAX: ffffffffffffffda RBX: 00007fb8b8015fa0 RCX: 00007fb8b7d9ce59
[  267.433053][ T8008] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  267.433063][ T8008] RBP: 00007fb8b7e32e6f R08: 0000000000000000 R09: 0000000000000000
[  267.433073][ T8008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  267.433083][ T8008] R13: 00007fb8b8016038 R14: 00007fb8b8015fa0 R15: 00007ffcb14a5468
[  267.433106][ T8008]  </TASK>
[  269.937622][ T8011] Process accounting paused
[  270.382009][   T29] audit: type=1800 audit(1782521685.152:10): pid=8043 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.433" name="dbroot" dev="configfs" ino=18924 res=0 errno=0
[  272.613726][   T29] audit: type=1800 audit(1782521687.382:11): pid=8072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.438" name="members" dev="configfs" ino=19086 res=0 errno=0
[  274.246482][ T8084] futex_wake_op: syz.0.442 tries to shift op by -2048; fix this program
[  274.780174][ T8034] Process accounting paused
[  275.468497][   T29] audit: type=1800 audit(1782521690.242:12): pid=8096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.444" name="dbroot" dev="configfs" ino=19184 res=0 errno=0
[  277.788103][   T29] audit: type=1800 audit(1782521692.562:13): pid=8125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.449" name="dbroot" dev="configfs" ino=19250 res=0 errno=0
[  279.410868][ T8054] Process accounting resumed
[  282.396905][ T8172] futex_wake_op: syz.1.458 tries to shift op by -2048; fix this program
[  282.508036][ T8176] netlink: 16 bytes leftover after parsing attributes in process `syz.1.458'.
[  282.552183][ T8172] futex_wake_op: syz.1.458 tries to shift op by -2048; fix this program
[  283.681413][ T5782] hid-generic 0000:0000:93BA8989.0001: unknown main item tag 0x0
[  283.736105][ T5782] hid-generic 0000:0000:93BA8989.0001: unknown main item tag 0x0
[  283.773164][ T5782] hid-generic 0000:0000:93BA8989.0001: unknown main item tag 0x0
[  283.822744][ T5782] hid-generic 0000:0000:93BA8989.0001: unknown main item tag 0x0
[  283.849968][ T8168] Process accounting resumed
[  283.865780][ T5782] hid-generic 0000:0000:93BA8989.0001: unknown main item tag 0x0
[  283.928882][ T5782] hid-generic 0000:0000:93BA8989.0001: unknown main item tag 0x0
[  283.983263][ T5782] hid-generic 0000:0000:93BA8989.0001: unknown main item tag 0x0
[  284.019991][ T5782] hid-generic 0000:0000:93BA8989.0001: unknown main item tag 0x0
[  284.062023][ T5782] hid-generic 0000:0000:93BA8989.0001: unknown main item tag 0x0
[  284.098619][ T5782] hid-generic 0000:0000:93BA8989.0001: unknown main item tag 0x0
[  284.209863][ T5782] hid-generic 0000:0000:93BA8989.0001: hidraw0: <UNKNOWN> HID v7f.ff Device [] on 
[  284.601095][ T8196] fido_id[8196]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  287.861509][ T8234] capability: warning: `syz.3.470' uses 32-bit capabilities (legacy support in use)
[  288.280147][ T8188] Process accounting resumed
[  288.693909][   T29] audit: type=1800 audit(1782521703.462:14): pid=8248 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.472" name="members" dev="configfs" ino=19905 res=0 errno=0
[  290.999093][ T8275] netlink: 28 bytes leftover after parsing attributes in process `syz.1.479'.
[  292.197705][ T8289] netlink: 4 bytes leftover after parsing attributes in process `syz.1.483'.
[  292.470210][ T8296] netlink: 16 bytes leftover after parsing attributes in process `syz.1.483'.
[  292.540480][ T8289] HfR: entered promiscuous mode
[  292.642190][ T8296] HfR: left promiscuous mode
[  295.210075][ T8312] futex_wake_op: syz.0.489 tries to shift op by -2048; fix this program
[  299.886226][ T5638] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  305.421448][ T8408] netlink: 8 bytes leftover after parsing attributes in process `syz.0.509'.
[  306.090812][ T5782] hid_parser_main: 10 callbacks suppressed
[  306.090833][ T5782] hid-generic 0000:0000:B14A5DA9.0002: unknown main item tag 0x0
[  306.179928][ T5782] hid-generic 0000:0000:B14A5DA9.0002: unknown main item tag 0x0
[  306.210059][ T5782] hid-generic 0000:0000:B14A5DA9.0002: unknown main item tag 0x0
[  306.256629][ T5782] hid-generic 0000:0000:B14A5DA9.0002: unknown main item tag 0x0
[  306.300219][ T5782] hid-generic 0000:0000:B14A5DA9.0002: unknown main item tag 0x0
[  306.344430][ T5782] hid-generic 0000:0000:B14A5DA9.0002: unknown main item tag 0x0
[  306.390759][ T5782] hid-generic 0000:0000:B14A5DA9.0002: unknown main item tag 0x0
[  306.440097][ T5782] hid-generic 0000:0000:B14A5DA9.0002: unknown main item tag 0x0
[  306.509263][ T5782] hid-generic 0000:0000:B14A5DA9.0002: unknown main item tag 0x0
[  306.567229][ T5782] hid-generic 0000:0000:B14A5DA9.0002: unknown main item tag 0x0
[  306.609604][ T5782] hid-generic 0000:0000:B14A5DA9.0002: item fetching failed at offset 22/25
[  306.647896][ T5782] hid-generic 0000:0000:B14A5DA9.0002: probe with driver hid-generic failed with error -22
[  307.188250][ T8424] netlink: 346 bytes leftover after parsing attributes in process `syz.1.513'.
[  307.833229][   T29] audit: type=1800 audit(1782521722.602:15): pid=8443 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.518" name="dbroot" dev="configfs" ino=20754 res=0 errno=0
[  310.002346][ T8469] netlink: 28 bytes leftover after parsing attributes in process `syz.0.522'.
[  310.134293][ T8426] Process accounting paused
[  310.684783][ T8452] Process accounting resumed
[  311.372892][   T29] audit: type=1800 audit(1782521726.142:16): pid=8492 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.528" name="dbroot" dev="configfs" ino=21059 res=0 errno=0
[  313.437574][ T8527] netlink: 28 bytes leftover after parsing attributes in process `syz.1.536'.
[  313.504816][ T8527] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  313.547658][ T8527] batman_adv: batadv0: Removing interface: batadv_slave_0
[  313.629171][ T8527] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  313.680396][ T8527] batman_adv: batadv0: Removing interface: batadv_slave_1
[  314.170100][ T8539] netlink: 'syz.1.538': attribute type 1 has an invalid length.
[  314.220688][ T8539] netlink: 9 bytes leftover after parsing attributes in process `syz.1.538'.
[  315.292597][ T8542] Process accounting paused
[  315.400190][   T29] audit: type=1800 audit(1782521730.172:17): pid=8558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.540" name="dbroot" dev="configfs" ino=21235 res=0 errno=0
[  315.540475][   T29] audit: type=1800 audit(1782521730.222:18): pid=8560 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.541" name="members" dev="configfs" ino=21244 res=0 errno=0
[  316.958445][   T11] hid_parser_main: 10 callbacks suppressed
[  316.958466][   T11] hid-generic 0000:0000:119AC229.0003: unknown main item tag 0x0
[  317.051357][   T11] hid-generic 0000:0000:119AC229.0003: unknown main item tag 0x0
[  317.116189][   T11] hid-generic 0000:0000:119AC229.0003: unknown main item tag 0x0
[  317.172019][   T11] hid-generic 0000:0000:119AC229.0003: unknown main item tag 0x0
[  317.220576][   T11] hid-generic 0000:0000:119AC229.0003: unknown main item tag 0x0
[  317.270292][   T11] hid-generic 0000:0000:119AC229.0003: unknown main item tag 0x0
[  317.317221][   T11] hid-generic 0000:0000:119AC229.0003: unknown main item tag 0x0
[  317.378977][   T11] hid-generic 0000:0000:119AC229.0003: unknown main item tag 0x0
[  317.419478][   T11] hid-generic 0000:0000:119AC229.0003: unknown main item tag 0x0
[  317.455031][   T11] hid-generic 0000:0000:119AC229.0003: unknown main item tag 0x0
[  317.492448][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  317.500613][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  317.529420][   T11] hid-generic 0000:0000:119AC229.0003: reserved main item tag 0xe
[  317.581029][   T11] hid-generic 0000:0000:119AC229.0003: item fetching failed at offset 22/25
[  317.635852][   T11] hid-generic 0000:0000:119AC229.0003: probe with driver hid-generic failed with error -22
[  317.921013][ T8603] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  317.957843][ T8603] vhci_hcd vhci_hcd.1: invalid port number 47
[  318.003167][ T8603] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub
[  318.789324][ T8631] futex_wake_op: syz.2.558 tries to shift op by -2048; fix this program
[  318.865122][ T8631] futex_wake_op: syz.2.558 tries to shift op by -2048; fix this program
[  318.925485][ T8625] 0x000000000001-0x000000020000 : ""
[  319.103896][ T8625] ftl_cs: FTL header corrupt!
[  322.218506][ T8671] Process accounting resumed
[  322.487374][ T5745] hid_parser_main: 10 callbacks suppressed
[  322.487393][ T5745] hid-generic 0000:0000:93BA8989.0004: unknown main item tag 0x0
[  322.578175][ T5745] hid-generic 0000:0000:93BA8989.0004: unknown main item tag 0x0
[  322.644914][ T5745] hid-generic 0000:0000:93BA8989.0004: unknown main item tag 0x0
[  322.689114][ T5745] hid-generic 0000:0000:93BA8989.0004: unknown main item tag 0x0
[  322.740042][ T5745] hid-generic 0000:0000:93BA8989.0004: unknown main item tag 0x0
[  322.783174][ T5745] hid-generic 0000:0000:93BA8989.0004: unknown main item tag 0x0
[  322.821426][ T5745] hid-generic 0000:0000:93BA8989.0004: unknown main item tag 0x0
[  322.857886][ T5745] hid-generic 0000:0000:93BA8989.0004: unknown main item tag 0x0
[  322.896833][ T5745] hid-generic 0000:0000:93BA8989.0004: unknown main item tag 0x0
[  322.932960][ T5745] hid-generic 0000:0000:93BA8989.0004: unknown main item tag 0x0
[  323.016292][ T5745] hid-generic 0000:0000:93BA8989.0004: hidraw0: <UNKNOWN> HID v7f.ff Device [] on 
[  323.125479][ T5745] hid-generic 0000:0000:119AC229.0005: reserved main item tag 0xe
[  323.172426][ T5745] hid-generic 0000:0000:119AC229.0005: item fetching failed at offset 22/25
[  323.215068][ T8689] fido_id[8689]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  323.240754][ T5745] hid-generic 0000:0000:119AC229.0005: probe with driver hid-generic failed with error -22
[  325.089352][ T8706] zswap: compressor  not available
[  326.476759][ T8720] FAULT_INJECTION: forcing a failure.
[  326.476759][ T8720] name fail_futex, interval 1, probability 0, space 0, times 1
[  326.802591][ T8720] CPU: 0 UID: 0 PID: 8720 Comm: syz.1.574 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  326.802621][ T8720] Tainted: [L]=SOFTLOCKUP
[  326.802627][ T8720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  326.802637][ T8720] Call Trace:
[  326.802644][ T8720]  <TASK>
[  326.802651][ T8720]  dump_stack_lvl+0x100/0x190
[  326.802679][ T8720]  should_fail_ex.cold+0x5/0xa
[  326.802703][ T8720]  should_fail_futex+0x4c/0x60
[  326.802722][ T8720]  __x64_sys_futex+0x1f0/0x4d0
[  326.802745][ T8720]  ? __pfx___x64_sys_futex+0x10/0x10
[  326.802775][ T8720]  do_syscall_64+0x115/0x840
[  326.802801][ T8720]  ? clear_bhb_loop+0x40/0x90
[  326.802823][ T8720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.802842][ T8720] RIP: 0033:0x7f9414d9ce59
[  326.802858][ T8720] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  326.802875][ T8720] RSP: 002b:00007fff119aba48 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  326.802893][ T8720] RAX: ffffffffffffffda RBX: 000000000004fb03 RCX: 00007f9414d9ce59
[  326.802905][ T8720] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f941501618c
[  326.802915][ T8720] RBP: 0000000000000032 R08: 0000000000000001 R09: 0000000000000000
[  326.802925][ T8720] R10: 00007fff119abb50 R11: 0000000000000246 R12: 00007fff119abb70
[  326.802936][ T8720] R13: 00007f941501618c R14: 000000000004fb35 R15: 00007fff119abb50
[  326.802958][ T8720]  </TASK>
[  327.424542][ T8747] netlink: 28 bytes leftover after parsing attributes in process `syz.3.580'.
[  327.484180][ T8747] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  327.536461][ T8747] batman_adv: batadv0: Removing interface: batadv_slave_0
[  327.576078][ T8747] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  327.605505][ T8747] batman_adv: batadv0: Removing interface: batadv_slave_1
[  327.851121][   T29] audit: type=1800 audit(1782521742.622:19): pid=8753 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.581" name="dbroot" dev="configfs" ino=22069 res=0 errno=0
[  330.208329][   T29] audit: type=1800 audit(1782521744.972:20): pid=8786 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.591" name="members" dev="configfs" ino=22217 res=0 errno=0
[  333.078736][ T8827] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  333.085942][ T8827] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  333.190957][ T8830] netlink: 16 bytes leftover after parsing attributes in process `syz.0.601'.
[  333.271739][ T8825] netlink: 20 bytes leftover after parsing attributes in process `syz.2.600'.
[  333.618792][ T8825] hsr_slave_0: left promiscuous mode
[  333.681519][ T8825] hsr_slave_1: left promiscuous mode
[  335.294562][   T29] audit: type=1800 audit(1782521750.062:21): pid=8854 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.607" name="members" dev="configfs" ino=22463 res=0 errno=0
[  342.179990][ T8916] Process accounting paused
[  344.143328][ T8953] netlink: 4 bytes leftover after parsing attributes in process `syz.1.632'.
[  344.191162][ T8925] kexec: Could not allocate control_code_buffer
[  344.218456][ T8953] HfR: entered promiscuous mode
[  344.452875][ T8956] netlink: 16 bytes leftover after parsing attributes in process `syz.1.632'.
[  344.567398][ T8956] HfR: left promiscuous mode
[  345.149398][   T29] audit: type=1800 audit(1782521759.922:22): pid=8970 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.635" name="members" dev="configfs" ino=22861 res=0 errno=0
[  346.991693][ T8977] Process accounting resumed
[  348.335232][   T29] audit: type=1800 audit(1782521763.112:23): pid=9018 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.645" name="dbroot" dev="configfs" ino=23156 res=0 errno=0
[  348.671006][ T9024] netlink: 4 bytes leftover after parsing attributes in process `syz.1.649'.
[  348.729088][ T9024] HfR: entered promiscuous mode
[  348.890437][ T9031] netlink: 16 bytes leftover after parsing attributes in process `syz.1.649'.
[  348.952560][ T9031] HfR: left promiscuous mode
[  352.164033][   T29] audit: type=1800 audit(1782521766.922:24): pid=9084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.661" name="members" dev="configfs" ino=23452 res=0 errno=0
[  352.285348][ T9087] random: crng reseeded on system resumption
[  352.359155][ T9089] rnbd_client L202: map_device: Unknown parameter or missing value '0�="�/�'
[  352.483287][ T9095] netlink: 350 bytes leftover after parsing attributes in process `syz.3.664'.
[  353.278020][ T9083] Process accounting paused
[  353.822467][ T9119] futex_wake_op: syz.2.668 tries to shift op by -2048; fix this program
[  354.075427][ T9117] 0x004100000001-0x004500000004 : ""
[  354.098606][ T9117] mtd: partition "" is out of reach -- disabled
[  354.137063][ T9117] ftl_cs: FTL header not found.
[  354.866737][ T9136] [U] ^B^@
[  355.026862][ T9142] futex_wake_op: syz.1.675 tries to shift op by -2048; fix this program
[  355.079711][ T9142] futex_wake_op: syz.1.675 tries to shift op by -2048; fix this program
[  355.132536][ T9142] 0x000000000001-0x000000020000 : ""
[  355.187871][ T9142] ftl_cs: FTL header corrupt!
[  355.325147][   T29] audit: type=1800 audit(1782521770.102:25): pid=9155 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.677" name="members" dev="configfs" ino=23821 res=0 errno=0
[  356.210595][ T9172] netlink: 28 bytes leftover after parsing attributes in process `syz.0.681'.
[  357.666460][ T9188] netlink: 28 bytes leftover after parsing attributes in process `syz.1.687'.
[  357.826445][ T9188] bridge0: port 1(bridge_slave_0) entered disabled state
[  358.028188][ T9188] bridge_slave_0 (unregistering): left allmulticast mode
[  358.096476][ T9188] bridge_slave_0 (unregistering): left promiscuous mode
[  358.158588][ T9198] netlink: 4 bytes leftover after parsing attributes in process `syz.0.689'.
[  358.170241][ T9188] bridge0: port 1(bridge_slave_0) entered disabled state
[  358.352564][ T9198] HfR: entered promiscuous mode
[  358.584197][ T9186] Process accounting resumed
[  358.771899][ T9198] netlink: 16 bytes leftover after parsing attributes in process `syz.0.689'.
[  358.848156][ T9198] HfR: left promiscuous mode
[  359.275413][ T9208] zswap: compressor  not available
[  363.675879][   T29] audit: type=1800 audit(1782521778.452:26): pid=9259 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.700" name="dbroot" dev="configfs" ino=24329 res=0 errno=0
[  365.815841][ T9292] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  365.917034][   T29] audit: type=1800 audit(1782521780.692:27): pid=9293 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.707" name="features" dev="configfs" ino=24493 res=0 errno=0
[  365.962695][ T9292] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  371.481105][   T29] audit: type=1800 audit(1782521786.252:28): pid=9352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.717" name="members" dev="configfs" ino=24662 res=0 errno=0
[  372.641799][ T9368] Process accounting resumed
[  374.160468][   T11] hid_parser_main: 30 callbacks suppressed
[  374.161508][   T11] hid-generic 0000:0000:119AC229.0006: unknown main item tag 0x0
[  374.252797][   T11] hid-generic 0000:0000:119AC229.0006: unknown main item tag 0x0
[  374.302391][   T11] hid-generic 0000:0000:119AC229.0006: unknown main item tag 0x0
[  374.344632][   T11] hid-generic 0000:0000:119AC229.0006: unknown main item tag 0x0
[  374.386694][   T11] hid-generic 0000:0000:119AC229.0006: unknown main item tag 0x0
[  374.435588][   T11] hid-generic 0000:0000:119AC229.0006: unknown main item tag 0x0
[  374.492220][   T11] hid-generic 0000:0000:119AC229.0006: unknown main item tag 0x0
[  374.537431][   T11] hid-generic 0000:0000:119AC229.0006: unknown main item tag 0x0
[  374.582821][   T11] hid-generic 0000:0000:119AC229.0006: unknown main item tag 0x0
[  374.624702][   T11] hid-generic 0000:0000:119AC229.0006: unknown main item tag 0x0
[  374.671088][   T11] hid-generic 0000:0000:119AC229.0006: reserved main item tag 0xe
[  374.714265][   T11] hid-generic 0000:0000:119AC229.0006: item fetching failed at offset 22/25
[  374.763546][   T11] hid-generic 0000:0000:119AC229.0006: probe with driver hid-generic failed with error -22
[  376.696059][ T9421] netlink: 338 bytes leftover after parsing attributes in process `syz.1.731'.
[  377.490921][ T9424] Process accounting paused
[  378.929020][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  378.939285][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  381.113486][   T29] audit: type=1800 audit(1782521795.882:29): pid=9491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.743" name="members" dev="configfs" ino=25063 res=0 errno=0
[  381.251769][ T9493] netlink: 8 bytes leftover after parsing attributes in process `syz.2.744'.
[  382.302982][ T9503] netlink: 28 bytes leftover after parsing attributes in process `syz.2.747'.
[  382.407650][ T9503] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  382.485546][ T9503] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  382.541426][ T9503] bond0 (unregistering): Released all slaves
[  385.666502][ T9532] zswap: compressor  not available
[  388.465328][ T9559] FAULT_INJECTION: forcing a failure.
[  388.465328][ T9559] name failslab, interval 1, probability 0, space 0, times 0
[  388.557255][ T9559] CPU: 0 UID: 0 PID: 9559 Comm: syz.2.759 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  388.557288][ T9559] Tainted: [L]=SOFTLOCKUP
[  388.557310][ T9559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  388.557321][ T9559] Call Trace:
[  388.557374][ T9559]  <TASK>
[  388.557383][ T9559]  dump_stack_lvl+0x100/0x190
[  388.557427][ T9559]  should_fail_ex.cold+0x5/0xa
[  388.557464][ T9559]  should_failslab+0xc2/0x120
[  388.557499][ T9559]  __kmalloc_noprof+0xfc/0x820
[  388.557522][ T9559]  ? get_callchain_buffers+0x123/0x380
[  388.557551][ T9559]  get_callchain_buffers+0x123/0x380
[  388.557575][ T9559]  ? bpf_lsm_capable+0x9/0x10
[  388.557594][ T9559]  ? security_capable+0x80/0x260
[  388.557662][ T9559]  stack_map_alloc+0x316/0x610
[  388.557685][ T9559]  map_create+0x874/0x3120
[  388.557724][ T9559]  ? __lock_acquire+0x49f/0x1a40
[  388.557766][ T9559]  ? __pfx_map_create+0x10/0x10
[  388.557801][ T9559]  ? __might_fault+0xc5/0x140
[  388.557829][ T9559]  __sys_bpf+0x2a6e/0x4e80
[  388.557855][ T9559]  ? __pfx___sys_bpf+0x10/0x10
[  388.557873][ T9559]  ? __pfx_futex_hash+0x10/0x10
[  388.557903][ T9559]  ? futex_wait+0x11e/0x370
[  388.557927][ T9559]  ? __pfx_futex_wait+0x10/0x10
[  388.557956][ T9559]  ? rcu_read_lock_any_held+0x6a/0xa0
[  388.558002][ T9559]  ? __x64_sys_futex+0x34f/0x4d0
[  388.558021][ T9559]  ? __x64_sys_futex+0x358/0x4d0
[  388.558046][ T9559]  ? xfd_validate_state+0x129/0x190
[  388.558071][ T9559]  ? __x64_sys_bpf+0xce/0x140
[  388.558090][ T9559]  __x64_sys_bpf+0xce/0x140
[  388.558110][ T9559]  ? do_syscall_64+0x90/0x840
[  388.558156][ T9559]  do_syscall_64+0x115/0x840
[  388.558180][ T9559]  ? clear_bhb_loop+0x40/0x90
[  388.558208][ T9559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.558227][ T9559] RIP: 0033:0x7f18e199ce59
[  388.558244][ T9559] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  388.558261][ T9559] RSP: 002b:00007f18e28c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  388.558279][ T9559] RAX: ffffffffffffffda RBX: 00007f18e1c16090 RCX: 00007f18e199ce59
[  388.558290][ T9559] RDX: 00000000000006f4 RSI: 0000200000000580 RDI: 0000000000000000
[  388.558320][ T9559] RBP: 00007f18e1a32e6f R08: 0000000000000000 R09: 0000000000000000
[  388.558330][ T9559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  388.558340][ T9559] R13: 00007f18e1c16128 R14: 00007f18e1c16090 R15: 00007fff93ba8048
[  388.558363][ T9559]  </TASK>
[  390.361877][ T9584] netlink: 330 bytes leftover after parsing attributes in process `syz.2.765'.
[  391.148601][ T9597] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input7
[  391.521212][ T9605] =======================================================
[  391.521212][ T9605] WARNING: The mand mount option has been deprecated and
[  391.521212][ T9605]          and is ignored by this kernel. Remove the mand
[  391.521212][ T9605]          option from the mount to silence this warning.
[  391.521212][ T9605] =======================================================
[  394.977628][ T5745] hid_parser_main: 10 callbacks suppressed
[  394.977648][ T5745] hid-generic 0000:0000:93BA8989.0007: unknown main item tag 0x0
[  395.044753][ T5745] hid-generic 0000:0000:93BA8989.0007: unknown main item tag 0x0
[  395.079201][ T5745] hid-generic 0000:0000:93BA8989.0007: unknown main item tag 0x0
[  395.119943][ T5745] hid-generic 0000:0000:93BA8989.0007: unknown main item tag 0x0
[  395.169717][ T5745] hid-generic 0000:0000:93BA8989.0007: unknown main item tag 0x0
[  395.219303][ T5745] hid-generic 0000:0000:93BA8989.0007: unknown main item tag 0x0
[  395.281692][ T5745] hid-generic 0000:0000:93BA8989.0007: unknown main item tag 0x0
[  395.336187][ T5745] hid-generic 0000:0000:93BA8989.0007: unknown main item tag 0x0
[  395.389769][ T5745] hid-generic 0000:0000:93BA8989.0007: unknown main item tag 0x0
[  395.400618][ T9650] netlink: 338 bytes leftover after parsing attributes in process `syz.1.779'.
[  395.445599][ T5745] hid-generic 0000:0000:93BA8989.0007: unknown main item tag 0x0
[  395.517318][ T5745] hid-generic 0000:0000:93BA8989.0007: hidraw0: <UNKNOWN> HID v7f.ff Device [] on 
[  395.808403][ T9665] fido_id[9665]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  398.074423][ T5785] hid-generic 0000:0000:B14A5DA9.0008: item fetching failed at offset 22/25
[  398.131029][ T5785] hid-generic 0000:0000:B14A5DA9.0008: probe with driver hid-generic failed with error -22
[  399.099380][ T9714] zswap: compressor  not available
[  399.808802][ T9727] random: crng reseeded on system resumption
[  402.066569][ T5745] hid_parser_main: 30 callbacks suppressed
[  402.066590][ T5745] hid-generic 0000:0000:93BA8989.0009: unknown main item tag 0x0
[  402.112192][ T5745] hid-generic 0000:0000:93BA8989.0009: unknown main item tag 0x0
[  402.131470][ T5745] hid-generic 0000:0000:93BA8989.0009: unknown main item tag 0x0
[  402.146568][ T5745] hid-generic 0000:0000:93BA8989.0009: unknown main item tag 0x0
[  402.179026][ T5745] hid-generic 0000:0000:93BA8989.0009: unknown main item tag 0x0
[  402.218314][ T5745] hid-generic 0000:0000:93BA8989.0009: unknown main item tag 0x0
[  402.244675][ T5745] hid-generic 0000:0000:93BA8989.0009: unknown main item tag 0x0
[  402.270149][ T5745] hid-generic 0000:0000:93BA8989.0009: unknown main item tag 0x0
[  402.296683][ T5745] hid-generic 0000:0000:93BA8989.0009: unknown main item tag 0x0
[  402.326891][ T5745] hid-generic 0000:0000:93BA8989.0009: unknown main item tag 0x0
[  402.382114][ T5745] hid-generic 0000:0000:93BA8989.0009: hidraw0: <UNKNOWN> HID v7f.ff Device [] on 
[  402.597288][ T9752] fido_id[9752]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  403.469300][ T9753] Process accounting paused
[  403.841639][ T5745] hid-generic 0000:0000:119AC229.000A: reserved main item tag 0xe
[  403.909242][ T5745] hid-generic 0000:0000:119AC229.000A: item fetching failed at offset 22/25
[  403.986763][ T5745] hid-generic 0000:0000:119AC229.000A: probe with driver hid-generic failed with error -22
[  405.380871][ T9774] Process accounting resumed
[  405.716169][ T9803] FAULT_INJECTION: forcing a failure.
[  405.716169][ T9803] name failslab, interval 1, probability 0, space 0, times 0
[  405.870749][ T9803] CPU: 0 UID: 0 PID: 9803 Comm: syz.1.812 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  405.870782][ T9803] Tainted: [L]=SOFTLOCKUP
[  405.870788][ T9803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  405.870798][ T9803] Call Trace:
[  405.870805][ T9803]  <TASK>
[  405.870811][ T9803]  dump_stack_lvl+0x100/0x190
[  405.870840][ T9803]  should_fail_ex.cold+0x5/0xa
[  405.870865][ T9803]  should_failslab+0xc2/0x120
[  405.870891][ T9803]  __kmalloc_noprof+0xfc/0x820
[  405.870914][ T9803]  ? rcu_is_watching+0x12/0xc0
[  405.870936][ T9803]  ? tomoyo_realpath_from_path+0xb6/0x690
[  405.871017][ T9803]  tomoyo_realpath_from_path+0xb6/0x690
[  405.871045][ T9803]  tomoyo_check_open_permission+0x2af/0x3c0
[  405.871066][ T9803]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  405.871093][ T9803]  ? hook_file_open+0x24f/0x8f0
[  405.871150][ T9803]  ? path_get+0x61/0x80
[  405.871173][ T9803]  tomoyo_file_open+0x6b/0x90
[  405.871199][ T9803]  security_file_open+0xb5/0x1e0
[  405.871234][ T9803]  do_dentry_open+0x588/0x14d0
[  405.871258][ T9803]  vfs_open+0x82/0x3f0
[  405.871284][ T9803]  path_openat+0x2873/0x4280
[  405.871311][ T9803]  ? __pfx_path_openat+0x10/0x10
[  405.871336][ T9803]  do_file_open+0x20e/0x430
[  405.871356][ T9803]  ? __pfx_do_file_open+0x10/0x10
[  405.871390][ T9803]  ? alloc_fd+0x471/0x7a0
[  405.871416][ T9803]  ? do_getname+0x191/0x390
[  405.871441][ T9803]  do_sys_openat2+0x10f/0x1e0
[  405.871465][ T9803]  ? __pfx_do_sys_openat2+0x10/0x10
[  405.871490][ T9803]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  405.871524][ T9803]  __x64_sys_openat+0x12d/0x210
[  405.871549][ T9803]  ? __pfx___x64_sys_openat+0x10/0x10
[  405.871582][ T9803]  do_syscall_64+0x115/0x840
[  405.871607][ T9803]  ? clear_bhb_loop+0x40/0x90
[  405.871629][ T9803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.871647][ T9803] RIP: 0033:0x7f9414d9ce59
[  405.871663][ T9803] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  405.871680][ T9803] RSP: 002b:00007f9412fcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  405.871698][ T9803] RAX: ffffffffffffffda RBX: 00007f9415016090 RCX: 00007f9414d9ce59
[  405.871710][ T9803] RDX: 000000000004c280 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  405.871721][ T9803] RBP: 00007f9414e32e6f R08: 0000000000000000 R09: 0000000000000000
[  405.871732][ T9803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  405.871742][ T9803] R13: 00007f9415016128 R14: 00007f9415016090 R15: 00007fff119ab8e8
[  405.871764][ T9803]  </TASK>
[  405.871772][ T9803] ERROR: Out of memory at tomoyo_realpath_from_path.
[  407.788056][ T9818] Process accounting resumed
[  410.121379][ T9862] netlink: 8 bytes leftover after parsing attributes in process `syz.1.824'.
[  410.591059][   T11] hid_parser_main: 30 callbacks suppressed
[  410.591101][   T11] hid-generic 0000:0000:93BA8989.000B: unknown main item tag 0x0
[  410.649313][   T11] hid-generic 0000:0000:93BA8989.000B: unknown main item tag 0x0
[  410.664917][ T9878] netlink: 28 bytes leftover after parsing attributes in process `syz.0.828'.
[  410.689519][   T11] hid-generic 0000:0000:93BA8989.000B: unknown main item tag 0x0
[  410.734964][   T11] hid-generic 0000:0000:93BA8989.000B: unknown main item tag 0x0
[  410.772549][   T11] hid-generic 0000:0000:93BA8989.000B: unknown main item tag 0x0
[  410.807691][   T11] hid-generic 0000:0000:93BA8989.000B: unknown main item tag 0x0
[  410.855278][   T11] hid-generic 0000:0000:93BA8989.000B: unknown main item tag 0x0
[  410.892621][   T11] hid-generic 0000:0000:93BA8989.000B: unknown main item tag 0x0
[  410.926974][   T11] hid-generic 0000:0000:93BA8989.000B: unknown main item tag 0x0
[  410.963607][   T11] hid-generic 0000:0000:93BA8989.000B: unknown main item tag 0x0
[  411.006772][   T11] hid-generic 0000:0000:93BA8989.000B: hidraw0: <UNKNOWN> HID v7f.ff Device [] on 
[  411.284475][ T9882] fido_id[9882]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  413.198155][ T9927] FAULT_INJECTION: forcing a failure.
[  413.198155][ T9927] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  413.280065][ T9927] CPU: 0 UID: 0 PID: 9927 Comm: syz.1.838 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  413.280096][ T9927] Tainted: [L]=SOFTLOCKUP
[  413.280103][ T9927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  413.280113][ T9927] Call Trace:
[  413.280119][ T9927]  <TASK>
[  413.280127][ T9927]  dump_stack_lvl+0x100/0x190
[  413.280154][ T9927]  should_fail_ex.cold+0x5/0xa
[  413.280178][ T9927]  _copy_from_user+0x2e/0xd0
[  413.280268][ T9927]  restore_altstack+0x98/0x170
[  413.280302][ T9927]  ? __pfx_restore_altstack+0x10/0x10
[  413.280329][ T9927]  ? _raw_spin_unlock_irq+0x23/0x50
[  413.280352][ T9927]  ? lockdep_hardirqs_on+0x78/0x100
[  413.280376][ T9927]  ? _raw_spin_unlock_irq+0x2e/0x50
[  413.280400][ T9927]  __do_sys_rt_sigreturn+0x1ab/0x2c0
[  413.280424][ T9927]  ? __pfx___ia32_sys_rt_sigreturn+0x10/0x10
[  413.280450][ T9927]  do_syscall_64+0x115/0x840
[  413.280474][ T9927]  ? clear_bhb_loop+0x40/0x90
[  413.280495][ T9927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  413.280514][ T9927] RIP: 0033:0x7f9414d3e1d9
[  413.280530][ T9927] Code: 11 06 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 0c 25
[  413.280547][ T9927] RSP: 002b:00007f9412feda80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[  413.280565][ T9927] RAX: ffffffffffffffda RBX: 00007f9415015fa0 RCX: 00007f9414d3e1d9
[  413.280576][ T9927] RDX: 00007f9412feda80 RSI: 00007f9412fedbb0 RDI: 0000000000000021
[  413.280587][ T9927] RBP: 00007f9414e32e6f R08: 0000000000000000 R09: 0000000000000000
[  413.280597][ T9927] R10: 0000200000000340 R11: 0000000000000202 R12: 0000000000000000
[  413.280607][ T9927] R13: 00007f9415016038 R14: 00007f9415015fa0 R15: 00007fff119ab8e8
[  413.280629][ T9927]  </TASK>
[  414.737050][ T9932] netlink: 338 bytes leftover after parsing attributes in process `syz.2.839'.
[  414.865664][ T9936] netlink: 330 bytes leftover after parsing attributes in process `syz.1.840'.
[  414.970672][ T9937] netlink: 330 bytes leftover after parsing attributes in process `syz.1.840'.
[  416.261902][ T9959] netlink: 338 bytes leftover after parsing attributes in process `syz.2.844'.
[  417.533915][ T9975] netlink: 28 bytes leftover after parsing attributes in process `syz.3.849'.
[  417.761336][ T9976] netlink: 28 bytes leftover after parsing attributes in process `syz.2.848'.
[  417.900840][ T9975] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  418.063282][ T9975] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  418.185980][ T9975] bond0 (unregistering): Released all slaves
[  419.374022][   T29] audit: type=1800 audit(1782521834.152:30): pid=9997 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.854" name="members" dev="configfs" ino=27704 res=0 errno=0
[  423.996488][   T29] audit: type=1800 audit(1782521838.762:31): pid=10045 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.863" name="members" dev="configfs" ino=27823 res=0 errno=0
[  424.030433][ T5638] Bluetooth: hci2: unexpected event 0x14 length: 16 > 6
[  426.709907][ T5785] hid_parser_main: 10 callbacks suppressed
[  426.709929][ T5785] hid-generic 0000:0000:119AC229.000C: unknown main item tag 0x0
[  426.796272][ T5785] hid-generic 0000:0000:119AC229.000C: unknown main item tag 0x0
[  426.839329][ T5785] hid-generic 0000:0000:119AC229.000C: unknown main item tag 0x0
[  426.863653][ T5785] hid-generic 0000:0000:119AC229.000C: unknown main item tag 0x0
[  426.892921][ T5785] hid-generic 0000:0000:119AC229.000C: unknown main item tag 0x0
[  426.921434][ T5785] hid-generic 0000:0000:119AC229.000C: unknown main item tag 0x0
[  426.959434][ T5785] hid-generic 0000:0000:119AC229.000C: unknown main item tag 0x0
[  426.994918][ T5785] hid-generic 0000:0000:119AC229.000C: unknown main item tag 0x0
[  427.028288][ T5785] hid-generic 0000:0000:119AC229.000C: unknown main item tag 0x0
[  427.078148][ T5785] hid-generic 0000:0000:119AC229.000C: unknown main item tag 0x0
[  427.125778][ T5785] hid-generic 0000:0000:119AC229.000C: reserved main item tag 0xe
[  427.162176][ T5785] hid-generic 0000:0000:119AC229.000C: item fetching failed at offset 22/25
[  427.203632][ T5785] hid-generic 0000:0000:119AC229.000C: probe with driver hid-generic failed with error -22
[  428.019862][T10097] FAULT_INJECTION: forcing a failure.
[  428.019862][T10097] name failslab, interval 1, probability 0, space 0, times 0
[  428.104861][T10097] CPU: 0 UID: 0 PID: 10097 Comm: syz.2.875 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  428.104893][T10097] Tainted: [L]=SOFTLOCKUP
[  428.104899][T10097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  428.104910][T10097] Call Trace:
[  428.104916][T10097]  <TASK>
[  428.104923][T10097]  dump_stack_lvl+0x100/0x190
[  428.104952][T10097]  should_fail_ex.cold+0x5/0xa
[  428.104976][T10097]  should_failslab+0xc2/0x120
[  428.105006][T10097]  __kmalloc_cache_noprof+0x91/0x6c0
[  428.105024][T10097]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  428.105052][T10097]  ? snd_card_file_add+0x52/0x320
[  428.105168][T10097]  ? __pfx_snd_ctl_open+0x10/0x10
[  428.105186][T10097]  snd_card_file_add+0x52/0x320
[  428.105209][T10097]  ? __pfx_snd_ctl_open+0x10/0x10
[  428.105227][T10097]  ? __pfx_snd_ctl_open+0x10/0x10
[  428.105244][T10097]  snd_ctl_open+0x9d/0x5c0
[  428.105264][T10097]  ? __pfx_snd_ctl_open+0x10/0x10
[  428.105282][T10097]  snd_open+0x201/0x450
[  428.105304][T10097]  ? __pfx_snd_open+0x10/0x10
[  428.105331][T10097]  chrdev_open+0x234/0x6a0
[  428.105350][T10097]  ? __pfx_apparmor_file_open+0x10/0x10
[  428.105408][T10097]  ? __pfx_chrdev_open+0x10/0x10
[  428.105428][T10097]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  428.105464][T10097]  do_dentry_open+0x6ab/0x14d0
[  428.105483][T10097]  ? __pfx_chrdev_open+0x10/0x10
[  428.105507][T10097]  vfs_open+0x82/0x3f0
[  428.105533][T10097]  path_openat+0x2873/0x4280
[  428.105561][T10097]  ? __pfx_path_openat+0x10/0x10
[  428.105585][T10097]  do_file_open+0x20e/0x430
[  428.105606][T10097]  ? __pfx_do_file_open+0x10/0x10
[  428.105640][T10097]  ? alloc_fd+0x471/0x7a0
[  428.105659][T10097]  ? do_getname+0x191/0x390
[  428.105684][T10097]  do_sys_openat2+0x10f/0x1e0
[  428.105708][T10097]  ? __pfx_do_sys_openat2+0x10/0x10
[  428.105733][T10097]  ? do_raw_spin_lock+0x128/0x260
[  428.105759][T10097]  __x64_sys_openat+0x12d/0x210
[  428.105783][T10097]  ? __pfx___x64_sys_openat+0x10/0x10
[  428.105816][T10097]  do_syscall_64+0x115/0x840
[  428.105841][T10097]  ? clear_bhb_loop+0x40/0x90
[  428.105863][T10097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  428.105881][T10097] RIP: 0033:0x7f18e199ce59
[  428.105896][T10097] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  428.105913][T10097] RSP: 002b:00007f18e28c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  428.105931][T10097] RAX: ffffffffffffffda RBX: 00007f18e1c16090 RCX: 00007f18e199ce59
[  428.105942][T10097] RDX: 0000000000000080 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  428.105952][T10097] RBP: 00007f18e1a32e6f R08: 0000000000000000 R09: 0000000000000000
[  428.105962][T10097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  428.105972][T10097] R13: 00007f18e1c16128 R14: 00007f18e1c16090 R15: 00007fff93ba8048
[  428.105995][T10097]  </TASK>
[  430.071726][   T29] audit: type=1800 audit(1782521844.842:32): pid=10122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.878" name="dbroot" dev="configfs" ino=28088 res=0 errno=0
[  432.237272][    C0] sd 0:0:1:0: [sda] tag#7558 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  432.247825][    C0] sd 0:0:1:0: [sda] tag#7558 CDB: Write(6) 0a 00 00 00 0b 00 00 00 00 00 00 00
[  433.296954][T10154] Process accounting resumed
[  433.659798][T10179] netlink: 28 bytes leftover after parsing attributes in process `syz.0.889'.
[  433.813757][T10168] Process accounting resumed
[  434.437232][ T5785] hid_parser_main: 10 callbacks suppressed
[  434.437251][ T5785] hid-generic 0000:0000:119AC229.000D: unknown main item tag 0x0
[  434.510750][ T5785] hid-generic 0000:0000:119AC229.000D: unknown main item tag 0x0
[  434.545286][ T5785] hid-generic 0000:0000:119AC229.000D: unknown main item tag 0x0
[  434.584305][ T5785] hid-generic 0000:0000:119AC229.000D: unknown main item tag 0x0
[  434.625972][ T5785] hid-generic 0000:0000:119AC229.000D: unknown main item tag 0x0
[  434.649388][ T5785] hid-generic 0000:0000:119AC229.000D: unknown main item tag 0x0
[  434.687220][ T5785] hid-generic 0000:0000:119AC229.000D: unknown main item tag 0x0
[  434.717518][ T5785] hid-generic 0000:0000:119AC229.000D: unknown main item tag 0x0
[  434.751657][ T5785] hid-generic 0000:0000:119AC229.000D: unknown main item tag 0x0
[  434.786057][ T5785] hid-generic 0000:0000:119AC229.000D: unknown main item tag 0x0
[  434.824728][ T5785] hid-generic 0000:0000:119AC229.000D: reserved main item tag 0xe
[  434.866594][ T5785] hid-generic 0000:0000:119AC229.000D: item fetching failed at offset 22/25
[  434.896279][ T5785] hid-generic 0000:0000:119AC229.000D: probe with driver hid-generic failed with error -22
[  437.007844][T10185] Process accounting paused
[  440.106222][T10287] netlink: 16 bytes leftover after parsing attributes in process `syz.0.915'.
[  440.367913][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  440.378521][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  440.480147][T10297] netlink: 4 bytes leftover after parsing attributes in process `syz.3.914'.
[  440.722842][T10297] HfR: entered promiscuous mode
[  441.286102][T10297] netlink: 16 bytes leftover after parsing attributes in process `syz.3.914'.
[  441.447266][T10297] HfR: left promiscuous mode
[  442.272864][T10324] binder_alloc: binder_alloc_mmap_handler: 10319 0-4001000 already mapped failed -16
[  442.456909][T10324] futex_wake_op: syz.1.921 tries to shift op by -2048; fix this program
[  442.526141][T10324] futex_wake_op: syz.1.921 tries to shift op by -2048; fix this program
[  443.870130][T10331] kexec: Could not allocate control_code_buffer
[  444.038033][ T5745] hid_parser_main: 10 callbacks suppressed
[  444.038052][ T5745] hid-generic 0000:0000:B14A5DA9.000E: unknown main item tag 0x0
[  444.125158][ T5745] hid-generic 0000:0000:B14A5DA9.000E: unknown main item tag 0x0
[  444.176568][ T5745] hid-generic 0000:0000:B14A5DA9.000E: unknown main item tag 0x0
[  444.224526][ T5745] hid-generic 0000:0000:B14A5DA9.000E: unknown main item tag 0x0
[  444.271949][ T5745] hid-generic 0000:0000:B14A5DA9.000E: unknown main item tag 0x0
[  444.321332][ T5745] hid-generic 0000:0000:B14A5DA9.000E: unknown main item tag 0x0
[  444.370941][ T5745] hid-generic 0000:0000:B14A5DA9.000E: unknown main item tag 0x0
[  444.429335][ T5745] hid-generic 0000:0000:B14A5DA9.000E: unknown main item tag 0x0
[  444.483597][ T5745] hid-generic 0000:0000:B14A5DA9.000E: unknown main item tag 0x0
[  444.536438][ T5745] hid-generic 0000:0000:B14A5DA9.000E: unknown main item tag 0x0
[  444.596406][ T5745] hid-generic 0000:0000:B14A5DA9.000E: item fetching failed at offset 22/25
[  444.627116][ T5785] hid-generic 0000:0000:119AC229.000F: reserved main item tag 0xe
[  444.680025][ T5745] hid-generic 0000:0000:B14A5DA9.000E: probe with driver hid-generic failed with error -22
[  444.702648][ T5785] hid-generic 0000:0000:119AC229.000F: item fetching failed at offset 22/25
[  444.779764][ T5785] hid-generic 0000:0000:119AC229.000F: probe with driver hid-generic failed with error -22
[  445.772792][T10386] netlink: 330 bytes leftover after parsing attributes in process `syz.2.933'.
[  446.112037][   T29] audit: type=1800 audit(1782521860.882:33): pid=10392 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.934" name="members" dev="configfs" ino=29514 res=0 errno=0
[  446.745664][T10404] nfs: Unknown parameter 'nl802154'
[  447.955424][   T29] audit: type=1800 audit(1782521862.732:34): pid=10429 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.944" name="dbroot" dev="configfs" ino=29687 res=0 errno=0
[  449.515863][   T29] audit: type=1800 audit(1782521864.282:35): pid=10463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.950" name="members" dev="configfs" ino=29821 res=0 errno=0
[  450.461486][T10474] FAULT_INJECTION: forcing a failure.
[  450.461486][T10474] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  450.526598][T10474] CPU: 0 UID: 0 PID: 10474 Comm: syz.1.954 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  450.526629][T10474] Tainted: [L]=SOFTLOCKUP
[  450.526635][T10474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  450.526645][T10474] Call Trace:
[  450.526651][T10474]  <TASK>
[  450.526658][T10474]  dump_stack_lvl+0x100/0x190
[  450.526690][T10474]  should_fail_ex.cold+0x5/0xa
[  450.526715][T10474]  _copy_from_user+0x2e/0xd0
[  450.526742][T10474]  uhid_char_write+0x16d/0xfe0
[  450.526856][T10474]  vfs_write+0x2aa/0x1050
[  450.526876][T10474]  ? __pfx_uhid_char_write+0x10/0x10
[  450.526905][T10474]  ? __pfx_vfs_write+0x10/0x10
[  450.526920][T10474]  ? find_held_lock+0x2b/0x80
[  450.526950][T10474]  ? __fget_files+0x215/0x3d0
[  450.526967][T10474]  ? __fget_files+0x215/0x3d0
[  450.526987][T10474]  ? __fget_files+0x21f/0x3d0
[  450.527009][T10474]  ksys_write+0x1f8/0x250
[  450.527026][T10474]  ? __pfx_ksys_write+0x10/0x10
[  450.527049][T10474]  do_syscall_64+0x115/0x840
[  450.527075][T10474]  ? clear_bhb_loop+0x40/0x90
[  450.527098][T10474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.527116][T10474] RIP: 0033:0x7f9414d9ce59
[  450.527132][T10474] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  450.527149][T10474] RSP: 002b:00007f9412fee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  450.527167][T10474] RAX: ffffffffffffffda RBX: 00007f9415015fa0 RCX: 00007f9414d9ce59
[  450.527178][T10474] RDX: 000000000000fccd RSI: 0000000000000000 RDI: 0000000000000006
[  450.527189][T10474] RBP: 00007f9412fee090 R08: 0000000000000000 R09: 0000000000000000
[  450.527199][T10474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  450.527209][T10474] R13: 00007f9415016038 R14: 00007f9415015fa0 R15: 00007fff119ab8e8
[  450.527232][T10474]  </TASK>
[  451.156799][ T5785] hid_parser_main: 30 callbacks suppressed
[  451.156820][ T5785] hid-generic 0000:0000:119AC229.0010: unknown main item tag 0x0
[  451.205321][ T5785] hid-generic 0000:0000:119AC229.0010: unknown main item tag 0x0
[  451.234941][ T5785] hid-generic 0000:0000:119AC229.0010: unknown main item tag 0x0
[  451.286051][ T5785] hid-generic 0000:0000:119AC229.0010: unknown main item tag 0x0
[  451.331953][ T5785] hid-generic 0000:0000:119AC229.0010: unknown main item tag 0x0
[  451.381729][ T5785] hid-generic 0000:0000:119AC229.0010: unknown main item tag 0x0
[  451.418712][ T5785] hid-generic 0000:0000:119AC229.0010: unknown main item tag 0x0
[  451.436377][ T5785] hid-generic 0000:0000:119AC229.0010: unknown main item tag 0x0
[  451.455567][ T5785] hid-generic 0000:0000:119AC229.0010: unknown main item tag 0x0
[  451.472270][ T5785] hid-generic 0000:0000:119AC229.0010: unknown main item tag 0x0
[  451.492119][ T5785] hid-generic 0000:0000:119AC229.0010: reserved main item tag 0xe
[  451.508905][ T5785] hid-generic 0000:0000:119AC229.0010: item fetching failed at offset 22/25
[  451.527562][ T5785] hid-generic 0000:0000:119AC229.0010: probe with driver hid-generic failed with error -22
[  454.999404][T10546] netlink: 4 bytes leftover after parsing attributes in process `syz.3.967'.
[  455.075007][T10546] HfR: entered promiscuous mode
[  455.201070][T10546] netlink: 16 bytes leftover after parsing attributes in process `syz.3.967'.
[  455.256451][T10546] HfR: left promiscuous mode
[  455.711006][T10566] netlink: 'syz.3.971': attribute type 1 has an invalid length.
[  458.967101][   T29] audit: type=1800 audit(1782521873.742:36): pid=10619 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.983" name="members" dev="configfs" ino=30450 res=0 errno=0
[  460.047447][ T5638] Bluetooth: hci2: unexpected event for opcode 0x7c89
[  463.089894][    T9] hid_parser_main: 10 callbacks suppressed
[  463.089916][    T9] hid-generic 0000:0000:93BA8989.0011: unknown main item tag 0x0
[  463.181061][    T9] hid-generic 0000:0000:93BA8989.0011: unknown main item tag 0x0
[  463.239675][    T9] hid-generic 0000:0000:93BA8989.0011: unknown main item tag 0x0
[  463.297296][    T9] hid-generic 0000:0000:93BA8989.0011: unknown main item tag 0x0
[  463.352313][    T9] hid-generic 0000:0000:93BA8989.0011: unknown main item tag 0x0
[  463.401135][    T9] hid-generic 0000:0000:93BA8989.0011: unknown main item tag 0x0
[  463.453283][    T9] hid-generic 0000:0000:93BA8989.0011: unknown main item tag 0x0
[  463.515237][    T9] hid-generic 0000:0000:93BA8989.0011: unknown main item tag 0x0
[  463.558163][    T9] hid-generic 0000:0000:93BA8989.0011: unknown main item tag 0x0
[  463.624835][    T9] hid-generic 0000:0000:93BA8989.0011: unknown main item tag 0x0
[  463.708248][    T9] hid-generic 0000:0000:93BA8989.0011: hidraw0: <UNKNOWN> HID v7f.ff Device [] on 
[  463.941255][T10669] fido_id[10669]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  464.352426][T10682] Process accounting paused
[  464.811288][T10672] Process accounting paused
[  465.657263][T10703] netlink: 4 bytes leftover after parsing attributes in process `syz.3.999'.
[  467.869538][T10728] Process accounting resumed
[  472.211883][T10794] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1013'.
[  472.512833][T10789] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  472.552239][T10789] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  472.581017][T10789] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  472.617273][T10789] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  472.656645][T10789] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  473.964323][ T5638] Bluetooth: hci0: command 0x0406 tx timeout
[  474.524285][T10814] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  474.546761][T10814] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  474.591104][T10814] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  474.638346][T10814] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  474.677966][T10814] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  475.282351][T10826] netlink: 34 bytes leftover after parsing attributes in process `syz.2.1022'.
[  475.490641][T10831] program syz.2.1023 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  476.603133][ T5638] Bluetooth: hci3: command 0x0406 tx timeout
[  476.609994][ T5644] Bluetooth: hci1: command 0x0406 tx timeout
[  476.616654][ T5628] Bluetooth: hci0: command 0x0406 tx timeout
[  476.684740][ T5638] Bluetooth: hci2: command 0x0406 tx timeout
[  477.343193][   T29] audit: type=1800 audit(1782521892.112:37): pid=10854 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1028" name="dbroot" dev="configfs" ino=31466 res=0 errno=0
[  478.763270][ T5638] Bluetooth: hci2: command 0x0406 tx timeout
[  480.843089][ T5638] Bluetooth: hci2: command 0x0406 tx timeout
[  480.851675][   T29] audit: type=1800 audit(1782521895.612:38): pid=10909 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1039" name="members" dev="configfs" ino=31608 res=0 errno=0
[  482.416112][T10933] syz.2.1044 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  486.150061][T11010] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1059'.
[  486.956028][T11016] futex_wake_op: syz.0.1060 tries to shift op by -2048; fix this program
[  487.109542][T11016] futex_wake_op: syz.0.1060 tries to shift op by -2048; fix this program
[  489.331615][T11068] binder: 11067:11068 ioctl c018620b 0 returned -14
[  494.916384][T11127] Process accounting resumed
[  495.565019][T11180] Process accounting resumed
[  497.878845][T11230] random: crng reseeded on system resumption
[  500.897637][T11285] random: crng reseeded on system resumption
[  501.811090][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  501.819719][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  504.556133][   T29] audit: type=1800 audit(1782521919.322:39): pid=11313 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1121" name="members" dev="configfs" ino=33556 res=0 errno=0
[  504.613761][T11314] usb usb21: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  505.237758][T11325] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1124'.
[  505.570415][   T29] audit: type=1800 audit(1782521920.342:40): pid=11330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1125" name="dbroot" dev="configfs" ino=33610 res=0 errno=0
[  506.680545][T11342] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1128'.
[  506.878716][T11342] HfR: entered promiscuous mode
[  507.025166][T11342] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1128'.
[  507.205804][T11342] HfR: left promiscuous mode
[  509.793336][T11370] futex_wake_op: syz.0.1135 tries to shift op by -2048; fix this program
[  510.717571][T11370] 0x000000000001-0x000000020000 : ""
[  510.794279][T11370] ftl_cs: FTL header corrupt!
[  511.470813][   T29] audit: type=1800 audit(1782521926.242:41): pid=11416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1142" name="members" dev="configfs" ino=34019 res=0 errno=0
[  511.591151][T11418] FAULT_INJECTION: forcing a failure.
[  511.591151][T11418] name failslab, interval 1, probability 0, space 0, times 0
[  511.767836][T11418] CPU: 0 UID: 0 PID: 11418 Comm: syz.1.1143 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  511.767867][T11418] Tainted: [L]=SOFTLOCKUP
[  511.767874][T11418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  511.767884][T11418] Call Trace:
[  511.767891][T11418]  <TASK>
[  511.767897][T11418]  dump_stack_lvl+0x100/0x190
[  511.767926][T11418]  should_fail_ex.cold+0x5/0xa
[  511.767950][T11418]  should_failslab+0xc2/0x120
[  511.767978][T11418]  kmem_cache_alloc_noprof+0x91/0x6a0
[  511.768001][T11418]  ? __pfx_vma_merge_new_range+0x10/0x10
[  511.768021][T11418]  ? vm_area_dup+0x27/0x8e0
[  511.768041][T11418]  vm_area_dup+0x27/0x8e0
[  511.768060][T11418]  copy_vma+0x643/0xac0
[  511.768083][T11418]  ? __pfx_copy_vma+0x10/0x10
[  511.768128][T11418]  copy_vma_and_data+0x1cf/0x7c0
[  511.768151][T11418]  ? __pfx_copy_vma_and_data+0x10/0x10
[  511.768180][T11418]  ? __vma_start_write+0x17f/0x280
[  511.768209][T11418]  ? __pfx___vma_start_write+0x10/0x10
[  511.768244][T11418]  move_vma+0x574/0x1920
[  511.768267][T11418]  ? __pfx_move_vma+0x10/0x10
[  511.768288][T11418]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[  511.768315][T11418]  ? cap_mmap_addr+0x4b/0x120
[  511.768394][T11418]  ? bpf_lsm_mmap_addr+0x9/0x30
[  511.768412][T11418]  ? security_mmap_addr+0x71/0x1e0
[  511.768433][T11418]  ? __get_unmapped_area+0x255/0x3e0
[  511.768462][T11418]  ? vrm_set_new_addr+0x204/0x290
[  511.768484][T11418]  mremap_to+0x234/0x4c0
[  511.768502][T11418]  ? mas_walk+0x6ef/0x9b0
[  511.768559][T11418]  ? __pfx_mremap_to+0x10/0x10
[  511.768578][T11418]  ? check_prep_vma+0x912/0xe60
[  511.768609][T11418]  __do_sys_mremap+0x88c/0x1850
[  511.768637][T11418]  ? __pfx___do_sys_mremap+0x10/0x10
[  511.768664][T11418]  ? __pfx_do_futex+0x10/0x10
[  511.768691][T11418]  ? __x64_sys_futex+0x34f/0x4d0
[  511.768725][T11418]  do_syscall_64+0x115/0x840
[  511.768750][T11418]  ? clear_bhb_loop+0x40/0x90
[  511.768773][T11418]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  511.768793][T11418] RIP: 0033:0x7f9414d9ce59
[  511.768809][T11418] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  511.768826][T11418] RSP: 002b:00007f9412fcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  511.768844][T11418] RAX: ffffffffffffffda RBX: 00007f9415016090 RCX: 00007f9414d9ce59
[  511.768856][T11418] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200001000000
[  511.768866][T11418] RBP: 00007f9414e32e6f R08: 0000000100000000 R09: 0000000000000000
[  511.768876][T11418] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  511.768886][T11418] R13: 00007f9415016128 R14: 00007f9415016090 R15: 00007fff119ab8e8
[  511.768908][T11418]  </TASK>
[  518.311806][ T5638] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  518.311834][ T5638] Bluetooth: hci0: unexpected subevent 0x0e length: 725 > 15
[  518.329020][ T5638] Bluetooth: hci0: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  522.201638][    T9] hid_parser_main: 10 callbacks suppressed
[  522.201659][    T9] hid-generic 0000:0000:B14A5DA9.0012: unknown main item tag 0x0
[  522.274362][    T9] hid-generic 0000:0000:B14A5DA9.0012: unknown main item tag 0x0
[  522.317559][    T9] hid-generic 0000:0000:B14A5DA9.0012: unknown main item tag 0x0
[  522.364773][    T9] hid-generic 0000:0000:B14A5DA9.0012: unknown main item tag 0x0
[  522.407491][    T9] hid-generic 0000:0000:B14A5DA9.0012: unknown main item tag 0x0
[  522.447996][    T9] hid-generic 0000:0000:B14A5DA9.0012: unknown main item tag 0x0
[  522.492079][    T9] hid-generic 0000:0000:B14A5DA9.0012: unknown main item tag 0x0
[  522.536536][    T9] hid-generic 0000:0000:B14A5DA9.0012: unknown main item tag 0x0
[  522.576620][    T9] hid-generic 0000:0000:B14A5DA9.0012: unknown main item tag 0x0
[  522.623171][    T9] hid-generic 0000:0000:B14A5DA9.0012: unknown main item tag 0x0
[  522.665612][    T9] hid-generic 0000:0000:B14A5DA9.0012: item fetching failed at offset 22/25
[  522.712389][    T9] hid-generic 0000:0000:B14A5DA9.0012: probe with driver hid-generic failed with error -22
[  525.791177][T11553] Process accounting paused
[  525.896431][T11558] Process accounting paused
[  526.283020][ T5638] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  526.843213][T11596] zswap: compressor  not available
[  528.588007][T11618] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1183'.
[  529.444676][T11625] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1185'.
[  536.938019][ T5745] hid_parser_main: 10 callbacks suppressed
[  536.938039][ T5745] hid-generic 0000:0000:119AC229.0013: unknown main item tag 0x0
[  537.035707][ T5745] hid-generic 0000:0000:119AC229.0013: unknown main item tag 0x0
[  537.081823][ T5745] hid-generic 0000:0000:119AC229.0013: unknown main item tag 0x0
[  537.121877][ T5745] hid-generic 0000:0000:119AC229.0013: unknown main item tag 0x0
[  537.169389][ T5745] hid-generic 0000:0000:119AC229.0013: unknown main item tag 0x0
[  537.216587][ T5745] hid-generic 0000:0000:119AC229.0013: unknown main item tag 0x0
[  537.266618][ T5745] hid-generic 0000:0000:119AC229.0013: unknown main item tag 0x0
[  537.305629][ T5745] hid-generic 0000:0000:119AC229.0013: unknown main item tag 0x0
[  537.348130][ T5745] hid-generic 0000:0000:119AC229.0013: unknown main item tag 0x0
[  537.402804][ T5745] hid-generic 0000:0000:119AC229.0013: unknown main item tag 0x0
[  537.454686][ T5745] hid-generic 0000:0000:119AC229.0013: reserved main item tag 0xe
[  537.519447][ T5745] hid-generic 0000:0000:119AC229.0013: item fetching failed at offset 22/25
[  537.558282][ T5745] hid-generic 0000:0000:119AC229.0013: probe with driver hid-generic failed with error -22
[  538.529459][T11713] vivid-007: =================  START STATUS  =================
[  538.604406][T11713] vivid-007: Generate PTS: true
[  538.673119][T11713] vivid-007: Generate SCR: true
[  538.727109][T11713] tpg source WxH: 320x240 (Y'CbCr)
[  538.783991][T11713] tpg field: 1
[  538.808966][T11713] tpg crop: (0,0)/320x240
[  538.831902][T11713] tpg compose: (0,0)/320x240
[  538.860928][T11713] tpg colorspace: 8
[  538.891711][   T29] audit: type=1800 audit(1782521953.662:42): pid=11730 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1208" name="members" dev="configfs" ino=35342 res=0 errno=0
[  538.922035][T11713] tpg transfer function: 0/0
[  538.971959][T11713] tpg Y'CbCr encoding: 0/0
[  538.991140][T11713] tpg quantization: 0/0
[  539.019625][T11713] tpg RGB range: 0/2
[  539.048332][T11713] vivid-007: ==================  END STATUS  ==================
[  544.017067][T11790] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1220'.
[  544.313910][T11790] HfR: entered promiscuous mode
[  544.470422][T11802] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1224'.
[  544.616997][T11802] HfR: entered promiscuous mode
[  544.948923][T11802] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1224'.
[  545.166216][T11802] HfR: left promiscuous mode
[  546.136500][T11790] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1220'.
[  546.296571][T11790] HfR: left promiscuous mode
[  553.948545][    T9] hid_parser_main: 10 callbacks suppressed
[  553.948574][    T9] hid-generic 0000:0000:93BA8989.0014: unknown main item tag 0x0
[  553.992884][    T9] hid-generic 0000:0000:93BA8989.0014: unknown main item tag 0x0
[  554.012351][    T9] hid-generic 0000:0000:93BA8989.0014: unknown main item tag 0x0
[  554.045919][    T9] hid-generic 0000:0000:93BA8989.0014: unknown main item tag 0x0
[  554.083924][    T9] hid-generic 0000:0000:93BA8989.0014: unknown main item tag 0x0
[  554.134029][    T9] hid-generic 0000:0000:93BA8989.0014: unknown main item tag 0x0
[  554.165222][    T9] hid-generic 0000:0000:93BA8989.0014: unknown main item tag 0x0
[  554.201317][    T9] hid-generic 0000:0000:93BA8989.0014: unknown main item tag 0x0
[  554.229324][    T9] hid-generic 0000:0000:93BA8989.0014: unknown main item tag 0x0
[  554.251557][    T9] hid-generic 0000:0000:93BA8989.0014: unknown main item tag 0x0
[  554.301539][    T9] hid-generic 0000:0000:93BA8989.0014: hidraw0: <UNKNOWN> HID v7f.ff Device [] on 
[  554.568561][T11964] fido_id[11964]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  556.130096][T11989] FAULT_INJECTION: forcing a failure.
[  556.130096][T11989] name failslab, interval 1, probability 0, space 0, times 0
[  556.219545][T11963] Process accounting resumed
[  556.267751][ T5638] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  556.347885][T11989] CPU: 0 UID: 0 PID: 11989 Comm: syz.0.1262 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  556.347925][T11989] Tainted: [L]=SOFTLOCKUP
[  556.347932][T11989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  556.347943][T11989] Call Trace:
[  556.347949][T11989]  <TASK>
[  556.347956][T11989]  dump_stack_lvl+0x100/0x190
[  556.347986][T11989]  should_fail_ex.cold+0x5/0xa
[  556.348010][T11989]  should_failslab+0xc2/0x120
[  556.348037][T11989]  __kmalloc_noprof+0xfc/0x820
[  556.348060][T11989]  ? string_escape_mem+0x746/0xe00
[  556.348087][T11989]  ? kstrdup_quotable+0xc2/0x190
[  556.348117][T11989]  kstrdup_quotable+0xc2/0x190
[  556.348143][T11989]  ? __pfx_kstrdup_quotable+0x10/0x10
[  556.348170][T11989]  ? get_cmdline+0x86/0x360
[  556.348198][T11989]  kstrdup_quotable_cmdline+0x127/0x210
[  556.348228][T11989]  __report_access+0x77/0x230
[  556.348301][T11989]  ? _raw_spin_unlock_irq+0x23/0x50
[  556.348328][T11989]  task_work_run+0x150/0x240
[  556.348357][T11989]  ? __pfx_task_work_run+0x10/0x10
[  556.348390][T11989]  exit_to_user_mode_loop+0x1d8/0x6f0
[  556.348412][T11989]  ? rcu_is_watching+0x12/0xc0
[  556.348437][T11989]  do_syscall_64+0x652/0x840
[  556.348462][T11989]  ? clear_bhb_loop+0x40/0x90
[  556.348484][T11989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.348502][T11989] RIP: 0033:0x7fb8b7d9ce59
[  556.348517][T11989] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  556.348534][T11989] RSP: 002b:00007fb8b8c51028 EFLAGS: 00000246 ORIG_RAX: 0000000000000065
[  556.348552][T11989] RAX: ffffffffffffffff RBX: 00007fb8b8016090 RCX: 00007fb8b7d9ce59
[  556.348563][T11989] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000004206
[  556.348573][T11989] RBP: 00007fb8b7e32e6f R08: 0000000000000000 R09: 0000000000000000
[  556.348584][T11989] R10: 0000000000200005 R11: 0000000000000246 R12: 0000000000000000
[  556.348594][T11989] R13: 00007fb8b8016128 R14: 00007fb8b8016090 R15: 00007ffcb14a5468
[  556.348616][T11989]  </TASK>
[  556.348771][T11989] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5631] was attempted by "(null)"[11989]
[  557.966342][T11989] Process accounting resumed
[  559.530207][T12037] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5633] was attempted by "ci-qemu-gce-upstream-auto/syz-executor exec"[12037]
[  559.715704][T12037] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1272'.
[  559.782275][T12037] veth0_macvtap: left promiscuous mode
[  559.816938][T12037] macvtap0: entered promiscuous mode
[  559.835551][T12037] macvtap0: entered allmulticast mode
[  561.368014][   T29] audit: type=1800 audit(1782521976.143:43): pid=12068 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1278" name="members" dev="configfs" ino=36569 res=0 errno=0
[  563.243277][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  563.250905][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  570.240595][T12158] Invalid ELF header magic: != ELF
[  570.288517][T12157] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1293'.
[  571.131601][T12177] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1298'.
[  571.487544][T12178] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1297'.
[  571.640692][T12178] HfR: entered promiscuous mode
[  571.730552][T12178] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1297'.
[  571.898580][T12178] HfR: left promiscuous mode
[  575.168741][T12207] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  575.254011][T12207] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  575.323527][T12207] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  575.421298][T12207] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  575.508786][T12207] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  575.851062][T12221] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1307'.
[  576.017244][T12226] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1307'.
[  576.225157][T12221] HfR: entered promiscuous mode
[  576.268216][T12226] HfR: left promiscuous mode
[  576.671269][   T29] audit: type=1800 audit(1782521991.450:44): pid=12236 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1309" name="lu_gp_id" dev="configfs" ino=37338 res=0 errno=0
[  576.915023][ T5638] Bluetooth: hci0: command 0x0406 tx timeout
[  577.315108][ T5638] Bluetooth: hci1: command 0x0406 tx timeout
[  577.396762][ T5638] Bluetooth: hci3: command 0x0406 tx timeout
[  577.477442][ T5638] Bluetooth: hci2: command 0x0406 tx timeout
[  577.765840][T12246] random: crng reseeded on system resumption
[  579.553065][ T5638] Bluetooth: hci2: command 0x0406 tx timeout
[  579.904113][   T29] audit: type=1800 audit(1782521994.682:45): pid=12292 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1321" name="members" dev="configfs" ino=37538 res=0 errno=0
[  583.377683][T12340] zswap: compressor  not available
[  586.399167][T12383] Process accounting paused
[  588.087592][T12415] bridge0: port 3(team0) entered blocking state
[  588.147097][T12415] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  588.200560][T12415] bridge0: port 3(team0) entered disabled state
[  588.265368][T12415] team0: entered allmulticast mode
[  588.326719][T12415] team_slave_0: entered allmulticast mode
[  588.357559][T12415] team_slave_1: entered allmulticast mode
[  588.373509][T12432] Process accounting paused
[  588.403398][T12415] team0: entered promiscuous mode
[  588.441712][T12415] team_slave_0: entered promiscuous mode
[  588.467913][T12415] team_slave_1: entered promiscuous mode
[  588.501743][T12415] bridge0: port 3(team0) entered blocking state
[  588.508219][T12415] bridge0: port 3(team0) entered forwarding state
[  590.001666][T12469] zswap: compressor  not available
[  593.074483][T12521] HfR: entered promiscuous mode
[  593.492927][T12515] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1363'.
[  593.721233][T12515] HfR: left promiscuous mode
[  599.115161][T12585] NFSD: Failed to start, no listeners configured.
[  600.489301][T12600] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1380'.
[  601.245420][T12616] FAULT_INJECTION: forcing a failure.
[  601.245420][T12616] name fail_futex, interval 1, probability 0, space 0, times 0
[  601.300874][T12616] CPU: 0 UID: 0 PID: 12616 Comm: syz.0.1384 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  601.300904][T12616] Tainted: [L]=SOFTLOCKUP
[  601.300911][T12616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  601.300921][T12616] Call Trace:
[  601.300928][T12616]  <TASK>
[  601.300935][T12616]  dump_stack_lvl+0x100/0x190
[  601.300974][T12616]  should_fail_ex.cold+0x5/0xa
[  601.301000][T12616]  get_futex_key+0x1d2/0x14f0
[  601.301032][T12616]  ? __pfx_get_futex_key+0x10/0x10
[  601.301058][T12616]  futex_wake+0xf4/0x5e0
[  601.301089][T12616]  ? __pfx_futex_wake+0x10/0x10
[  601.301117][T12616]  ? vfs_write+0x911/0x1050
[  601.301138][T12616]  ? vfs_write+0x15d/0x1050
[  601.301157][T12616]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  601.301284][T12616]  do_futex+0x2b2/0x440
[  601.301306][T12616]  ? __pfx_do_futex+0x10/0x10
[  601.301333][T12616]  __x64_sys_futex+0x34f/0x4d0
[  601.301366][T12616]  ? fput+0x79/0x100
[  601.301387][T12616]  ? __pfx___x64_sys_futex+0x10/0x10
[  601.301409][T12616]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  601.301434][T12616]  do_syscall_64+0x115/0x840
[  601.301464][T12616]  ? clear_bhb_loop+0x40/0x90
[  601.301488][T12616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  601.301510][T12616] RIP: 0033:0x7fb8b7d9ce59
[  601.301531][T12616] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  601.301549][T12616] RSP: 002b:00007fb8b8c720e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  601.301568][T12616] RAX: ffffffffffffffda RBX: 00007fb8b8015fa8 RCX: 00007fb8b7d9ce59
[  601.301579][T12616] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb8b8015fac
[  601.301590][T12616] RBP: 00007fb8b8015fa0 R08: 0000000000000001 R09: 0000000000000000
[  601.301601][T12616] R10: 000000000000003c R11: 0000000000000246 R12: 0000000000000000
[  601.301611][T12616] R13: 00007fb8b8016038 R14: 00007ffcb14a5380 R15: 00007ffcb14a5468
[  601.301633][T12616]  </TASK>
[  601.496702][T12616] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1384'.
[  604.483868][   T29] audit: type=1800 audit(1782522019.274:46): pid=12658 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1392" name="members" dev="configfs" ino=38800 res=0 errno=0
[  604.813159][   T29] audit: type=1800 audit(1782522019.605:47): pid=12664 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1393" name="members" dev="configfs" ino=38821 res=0 errno=0
[  605.505999][T12676] ptrace attach of ""[12677] was attempted by "ci-qemu-gce-upstream-auto/syz-executor exec"[12676]
[  608.121144][T12714] netlink: 299 bytes leftover after parsing attributes in process `syz.0.1402'.
[  608.153176][T12697] kexec: Could not allocate control_code_buffer
[  608.473968][   T29] audit: type=1800 audit(1782522023.266:48): pid=12722 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1403" name="members" dev="configfs" ino=38952 res=0 errno=0
[  609.247886][T12744] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1408'.
[  609.352882][T12743] HfR: entered promiscuous mode
[  609.387892][T12744] HfR: left promiscuous mode
[  610.019074][T12699] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5627] was attempted by ""[12699]
[  610.214780][T12707] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1401'.
[  611.772583][   T29] audit: type=1800 audit(1782522026.558:49): pid=12772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1414" name="members" dev="configfs" ino=39158 res=0 errno=0
[  613.523629][T12791] zswap: compressor  not available
[  615.429432][T12808] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1421'.
[  616.484397][T12788] Process accounting resumed
[  618.398867][   T29] audit: type=1800 audit(1782522033.201:50): pid=12883 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1436" name="dbroot" dev="configfs" ino=39705 res=0 errno=0
[  619.177052][T12879] Process accounting resumed
[  619.316001][T12893] netlink: 206 bytes leftover after parsing attributes in process `syz.0.1439'.
[  619.638255][T12902] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  623.668508][   T29] audit: type=1800 audit(1782522038.464:51): pid=12971 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1454" name="members" dev="configfs" ino=40136 res=0 errno=0
[  624.652726][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  624.661735][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  626.311200][T12996] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5633] was attempted by ""[12996]
[  627.381662][ T7971] ------------[ cut here ]------------
[  627.387202][ T7971] wlan0: Failed check-sdata-in-driver check, flags: 0x0
[  627.394255][ T7971] WARNING: net/mac80211/driver-ops.c:255 at drv_get_tsf+0x33f/0x760, CPU#0: kworker/u8:18/7971
[  627.404752][ T7971] Modules linked in:
[  627.409885][ T7971] CPU: 0 UID: 0 PID: 7971 Comm: kworker/u8:18 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  627.421091][ T7971] Tainted: [L]=SOFTLOCKUP
[  627.425417][ T7971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  627.435565][ T7971] Workqueue: events_unbound cfg80211_wiphy_work
[  627.442455][ T7971] RIP: 0010:drv_get_tsf+0x345/0x760
[  627.448270][ T7971] Code: 0a 00 00 4d 85 ed 0f 84 23 03 00 00 e8 e4 ad 02 f7 49 81 c5 20 01 00 00 e8 d8 ad 02 f7 48 8d 3d 21 bc e6 05 44 89 f2 4c 89 ee <67> 48 0f b9 3a e9 a6 fd ff ff e8 bc ad 02 f7 65 44 8b 25 28 f2 0c
[  627.468376][ T7971] RSP: 0018:ffffc9000364fb78 EFLAGS: 00010293
[  627.474516][ T7971] RAX: 0000000000000000 RBX: ffff888059708ec0 RCX: ffffffff8b063d97
[  627.482575][ T7971] RDX: 0000000000000000 RSI: ffff888059708120 RDI: ffffffff90ecfa10
[  627.490723][ T7971] RBP: ffff888059750f40 R08: 0000000000000005 R09: 0000000000000000
[  627.498798][ T7971] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888059709988
[  627.506877][ T7971] R13: ffff888059708120 R14: 0000000000000000 R15: ffff8880597506d8
[  627.514925][ T7971] FS:  0000000000000000(0000) GS:ffff8881242ed000(0000) knlGS:0000000000000000
[  627.523911][ T7971] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  627.530557][ T7971] CR2: 0000000000018000 CR3: 000000003bb3a000 CR4: 00000000003526f0
[  627.538538][ T7971] Call Trace:
[  627.541848][ T7971]  <TASK>
[  627.544803][ T7971]  ieee80211_if_fmt_tsf+0x42/0x70
[  627.550539][ T7971]  ? __pfx_ieee80211_if_read_sdata_handler+0x10/0x10
[  627.557286][ T7971]  wiphy_locked_debugfs_read_work+0xe6/0x1c0
[  627.563651][ T7971]  ? trace_wiphy_work_run+0x73/0x220
[  627.568991][ T7971]  cfg80211_wiphy_work+0x2b7/0x550
[  627.574116][ T7971]  process_one_work+0xa23/0x1940
[  627.579124][ T7971]  ? __pfx_process_one_work+0x10/0x10
[  627.584531][ T7971]  ? __pfx_cfg80211_wiphy_work+0x10/0x10
[  627.590230][ T7971]  worker_thread+0x5ef/0xe50
[  627.594868][ T7971]  ? kthread+0x13a/0x450
[  627.599143][ T7971]  ? __pfx_worker_thread+0x10/0x10
[  627.604279][ T7971]  kthread+0x370/0x450
[  627.608359][ T7971]  ? __pfx_kthread+0x10/0x10
[  627.613006][ T7971]  ret_from_fork+0x72b/0xd50
[  627.617619][ T7971]  ? __pfx_ret_from_fork+0x10/0x10
[  627.622791][ T7971]  ? __switch_to+0x800/0x10f0
[  627.627492][ T7971]  ? __switch_to_asm+0x39/0x70
[  627.632332][ T7971]  ? __pfx_kthread+0x10/0x10
[  627.636954][ T7971]  ret_from_fork_asm+0x1a/0x30
[  627.641823][ T7971]  </TASK>
[  627.644907][ T7971] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  627.652201][ T7971] CPU: 0 UID: 0 PID: 7971 Comm: kworker/u8:18 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  627.663327][ T7971] Tainted: [L]=SOFTLOCKUP
[  627.667650][ T7971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  627.677712][ T7971] Workqueue: events_unbound cfg80211_wiphy_work
[  627.683997][ T7971] Call Trace:
[  627.687293][ T7971]  <TASK>
[  627.690227][ T7971]  dump_stack_lvl+0x100/0x190
[  627.694922][ T7971]  vpanic+0x552/0x970
[  627.698931][ T7971]  ? __pfx_vpanic+0x10/0x10
[  627.703446][ T7971]  panic+0xd1/0xe0
[  627.707231][ T7971]  ? __pfx_panic+0x10/0x10
[  627.711656][ T7971]  ? check_panic_on_warn+0x1f/0x90
[  627.716796][ T7971]  check_panic_on_warn.cold+0x19/0x34
[  627.722173][ T7971]  ? drv_get_tsf+0x33f/0x760
[  627.726793][ T7971]  __warn.cold+0x191/0x318
[  627.731241][ T7971]  __report_bug+0x30f/0x440
[  627.735843][ T7971]  ? drv_get_tsf+0x33f/0x760
[  627.740460][ T7971]  ? __pfx___report_bug+0x10/0x10
[  627.745510][ T7971]  ? drv_get_tsf+0x2e7/0x760
[  627.750145][ T7971]  report_bug_entry+0xe1/0x290
[  627.754938][ T7971]  ? drv_get_tsf+0x345/0x760
[  627.759558][ T7971]  handle_bug+0x1cd/0x2a0
[  627.763928][ T7971]  exc_invalid_op+0x17/0x50
[  627.768453][ T7971]  asm_exc_invalid_op+0x1a/0x20
[  627.773313][ T7971] RIP: 0010:drv_get_tsf+0x345/0x760
[  627.778533][ T7971] Code: 0a 00 00 4d 85 ed 0f 84 23 03 00 00 e8 e4 ad 02 f7 49 81 c5 20 01 00 00 e8 d8 ad 02 f7 48 8d 3d 21 bc e6 05 44 89 f2 4c 89 ee <67> 48 0f b9 3a e9 a6 fd ff ff e8 bc ad 02 f7 65 44 8b 25 28 f2 0c
[  627.798172][ T7971] RSP: 0018:ffffc9000364fb78 EFLAGS: 00010293
[  627.804269][ T7971] RAX: 0000000000000000 RBX: ffff888059708ec0 RCX: ffffffff8b063d97
[  627.812242][ T7971] RDX: 0000000000000000 RSI: ffff888059708120 RDI: ffffffff90ecfa10
[  627.820232][ T7971] RBP: ffff888059750f40 R08: 0000000000000005 R09: 0000000000000000
[  627.828205][ T7971] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888059709988
[  627.836193][ T7971] R13: ffff888059708120 R14: 0000000000000000 R15: ffff8880597506d8
[  627.844207][ T7971]  ? drv_get_tsf+0x2e7/0x760
[  627.848827][ T7971]  ? drv_get_tsf+0x338/0x760
[  627.853442][ T7971]  ieee80211_if_fmt_tsf+0x42/0x70
[  627.858497][ T7971]  ? __pfx_ieee80211_if_read_sdata_handler+0x10/0x10
[  627.865290][ T7971]  wiphy_locked_debugfs_read_work+0xe6/0x1c0
[  627.871302][ T7971]  ? trace_wiphy_work_run+0x73/0x220
[  627.876597][ T7971]  cfg80211_wiphy_work+0x2b7/0x550
[  627.881717][ T7971]  process_one_work+0xa23/0x1940
[  627.886691][ T7971]  ? __pfx_process_one_work+0x10/0x10
[  627.892097][ T7971]  ? __pfx_cfg80211_wiphy_work+0x10/0x10
[  627.897748][ T7971]  worker_thread+0x5ef/0xe50
[  627.902370][ T7971]  ? kthread+0x13a/0x450
[  627.906620][ T7971]  ? __pfx_worker_thread+0x10/0x10
[  627.911754][ T7971]  kthread+0x370/0x450
[  627.915831][ T7971]  ? __pfx_kthread+0x10/0x10
[  627.920471][ T7971]  ret_from_fork+0x72b/0xd50
[  627.925084][ T7971]  ? __pfx_ret_from_fork+0x10/0x10
[  627.930239][ T7971]  ? __switch_to+0x800/0x10f0
[  627.934946][ T7971]  ? __switch_to_asm+0x39/0x70
[  627.939725][ T7971]  ? __pfx_kthread+0x10/0x10
[  627.944336][ T7971]  ret_from_fork_asm+0x1a/0x30
[  627.949124][ T7971]  </TASK>
[  627.952212][ T7971] Kernel Offset: disabled
[  627.956538][ T7971] Rebooting in 86400 seconds..