last executing test programs:

2m34.910149341s ago: executing program 3 (id=1056):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x0, 0x0, 0x0, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0)
ioctl$auto_SNDCTL_DSP_GETTRIGGER(r2, 0x80045010, &(0x7f0000004440))
mmap$auto(0x0, 0x9, 0xdf, 0x9b75, r1, 0x8000)
r3 = open_by_handle_at$auto(r1, &(0x7f00000002c0)={0x1a, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b"}, 0x7d)
setsockopt$auto(r3, 0x1, 0x1021, 0x0, 0xd)
mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, 0xffffffffffffffff, 0x8000)
r4 = geteuid()
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001a80)={&(0x7f0000000500)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4040840}, 0x200000c0)
mmap$auto(0x100000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000)
msgctl$auto(0x7, 0xa3, &(0x7f0000000240)={{0x8, r4, 0xee01, 0x5, 0xa, 0x6, 0xfe01}, 0x0, 0x0, 0x1, 0xa, 0x400000000005, 0x31f4, 0x51c, 0x3, 0xfff5, 0x3, @inferred=0xffffffffffffffff, @raw=0x8})
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0x1002}, 0x1, &(0x7f0000000280)={0x0, 0x401}, 0x6, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x48802, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/mm/transparent_hugepage/hugepages-2048kB/enabled\x00', 0x22b42, 0x0)
sendfile$auto(r9, r9, 0x0, 0x6)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001b00)=ANY=[@ANYBLOB="20010000", @ANYRES16=r7, @ANYBLOB="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"], 0x120}, 0x1, 0x68, 0x0, 0x24000000}, 0x140)
sendmsg$auto_NL80211_CMD_GET_KEY(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRESDEC=r2, @ANYRESOCT=r6], 0x1c}, 0x1, 0x0, 0x0, 0x21}, 0x51)

2m33.852941083s ago: executing program 3 (id=1060):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
mbind$auto(0x0, 0x800605, 0x1, &(0x7f0000000500)=0xffff, 0xa, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy1/user_power\x00', 0x60a40, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x805, 0x0)
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
socket(0x1e, 0x1, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x11, 0x3, 0x9)
syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000080), 0xffffffffffffffff)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0x2, 0xd, 0x9, 0x948b, 0x8, 0x15f4da0a, 0x2, 0x3, 0x62, 0x80000005, 0xa, 0x5, 0xd, 0xfffffffffffffffd, 0xd]}, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x2000000000006]}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x12, 0x401, 0x8000)
r1 = open(0x0, 0x22240, 0x154)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x68182, 0x0)
writev$auto(r3, &(0x7f0000000280)={0x0, 0x45}, 0xb)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
ioctl$auto(r4, 0x40045431, r1)
r5 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ILA_CMD_ADD(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010028bd7000"], 0x1c}}, 0x40000)
sendmsg$auto_ILA_CMD_FLUSH(r2, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000240)={0x14, r5, 0x1, 0x2, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4855}, 0x40844)
futex_wake$auto(0x0, 0x5, 0x4, 0xa)

2m32.661255618s ago: executing program 3 (id=1065):
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0x8, 0x9b72, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
socket(0x2b, 0x1, 0x1)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
openat$auto_stats_fops_2(0xffffffffffffff9c, 0x0, 0xc8202, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x8)
unshare$auto(0x40000080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0)
sendto$auto(0x3, 0x0, 0x100000000, 0x40000008, 0x0, 0x19)

2m31.394020288s ago: executing program 3 (id=1072):
mmap$auto(0x0, 0xe984, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8004)
close_range$auto(0x2, 0x8000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/vim2m.0/media2/power/runtime_suspended_time\x00', 0xa001, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x41180, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
write$auto(r1, &(0x7f0000000780)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92\x90|l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00'/507, 0x3)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r2 = socket(0x15, 0x5, 0x0)
bpf$auto(0x703, &(0x7f0000000340)=@bpf_attr_11={0x9, 0x686, 0x2, 0x9, 0x9, 0x7, 0x9, r0}, 0x2)
setsockopt$auto(r2, 0x114, 0x6, 0x0, 0x8000002)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
write$auto_ftrace_enable_fops_trace_events(0xffffffffffffffff, &(0x7f0000000000)="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", 0x28f)
mount$auto(0x0, &(0x7f0000001500)='./file0\x00', &(0x7f0000001540)='cifs\x00', 0x8002, &(0x7f00000001c0))
socket(0xa, 0x1, 0x84)
r3 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x8, 0x10000000000df, 0xeb2, 0x401, 0x100)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf2503000000080003000002000006000700008002004e9837b46c5211bc58489ce2ada200c0d63c1a63604d4df84ea818d30d2f38b60c3a9fbdd5de8d6fbf1b9cc334580cb71fd4f1964b6bc016f2266174", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000600060087ad00000a0001000000000000000000060007000500000008000300050000000a0001000180c20000030000"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="17"], 0x1ac}, 0x1, 0x0, 0x0, 0x4}, 0x1004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x3, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x8, 0x9}, 0x7}, 0x3, 0x0)
capset$auto(0x0, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
pwrite64$auto(0xc8, &(0x7f0000000340)='\vX\xc9\xb3\xbc\x8c\x1dga08\x90\x86\xdde\x1cJ\x99\x00\x11:\x14\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xfe\x80\x12\x00\x00\x00\x00\x00\x0fo\x84\xfc\x89\x01\x97.\x03\x11\xc1\xbaS\x1c\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd8\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1t\xee\xc9:\xcfE\x87Z&i\xd4\x00\x00\x00\x00\x00', 0xedef, 0x3)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xa73, 0xd, 0x801, 0x958b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x40008000001f, 0x7, 0x6d3e, 0x6, 0x2, 0x10000]}, 0x0)

2m31.003921876s ago: executing program 3 (id=1074):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mseal$auto(0x0, 0x7dda, 0x80) (async)
madvise$auto(0x0, 0x20000a, 0x4) (async)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/oom_adj\x00', 0x2000, 0x0)
mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x1, 0x0) (async)
socket(0x23, 0x2, 0x0) (async)
ioctl$auto(0x8000000000000001, 0x89ee, 0x9)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x101100, 0x0) (async)
r1 = geteuid() (async)
r2 = setfsgid$auto(0xee01)
fchown$auto(r0, r1, r2)
r3 = wait4$auto(0xffffffffffffffff, &(0x7f0000000040)=0x8000, 0x8, &(0x7f0000000080)={{0x3, 0x2}, {0x5, 0x1}, 0x1, 0xe, 0x1, 0x7fffffff, 0xc96e, 0x3, 0xffffffffffffffff, 0x0, 0xd913, 0x8, 0x7fffffff, 0x53, 0x7f, 0x7fffffffffffffff}) (async, rerun: 32)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0) (rerun: 32)
write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000080)='7', 0x1)
fsopen$auto(&(0x7f0000000040)='/sys/power/wakeup_count\x00', 0x6)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r0, 0xc1105511, &(0x7f0000000140)={{@inferred, 0x2, 0x2, 0x0, "4c032f470763b51ba975227e0b7e3f7d6e50431140e5bbcd51ba576366a36efa8af02b9c100d3c0d93d3c948", @raw=0x9}, 0x80, 0x4, 0x1, @inferred=r3, @reserved="e6e94e6cc59997a7ebe0788c409cdfab80249241a503f8d99d369a9f6fa95f1e4f4af821442643c586ee241ac2bb1fc56d78f9222b3f49e8815218889b9383cf0b8ccd736745240dfa93194569eb26425aa4abb411c3f6163e157da5422195cd3874b6ac6b2639089ebb905c27daa1c09dd011aa7c55d5bcfa0c0a56bbe0ef98", "87b655e5f79dac4cf183afe2b2f0ff92275bc7bc245d377da349a5ac713c34012769c69934caffb8da978c2b47b5f58631779fb532ee69c338385184148c6c9e"})

2m30.618979935s ago: executing program 3 (id=1077):
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x84c43, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/class/firmware/timeout\x00', 0x1a1942, 0x0)
write$auto(r0, &(0x7f0000000000)='-\x00d1L\xff\x15\xba\xa17=(\xc1\xf8\xff\xff\v\xb5^\xa1/[', 0x4)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop12\x00', 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000240)={"ef65ce7cb454168d6c0000000000002713dfffffffff2900000000000a00", 0x3, 0x10000, 0xffff, 0x401003, 0xfffffffffffffffe})
ioctl$auto_BLKTRACETEARDOWN(r1, 0x1276, 0x0)
futex$auto(&(0x7f0000000200)=0x3ff, 0x9, 0x100, &(0x7f00000002c0)={0x40, 0xfffffffffffffffe}, &(0x7f0000000300), 0x10)
prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0)
prctl$auto(0x41, 0xc73, 0x0, 0x0, 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x28, 0x801, 0x0)
socket(0xf, 0x3, 0x2)
setsockopt$auto(r3, 0xe3, 0x3, &(0x7f0000000180)='/sys/class/firmware/timeout\x00', 0x7)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x101001, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x4, 0x0, 0x0, &(0x7f0000000440)={[0x1f8, 0x8, 0x80004, 0xfffffffffffffffa, 0x107c0e, 0x9, 0xfffffffffffffffe, 0x8010, 0x23, 0x80000001, 0x80000022, 0xfffffffffffffffe, 0x7, 0x7fff, 0xfffffffffffff7f4, 0x9]}, 0x0)
r5 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0)
ioctl$auto_SG_GET_PACK_ID(r5, 0x227c, &(0x7f00000000c0))
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/pcrypt/pencrypt/serial_cpumask\x00', 0xa001, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_STOP_P2P_DEVICE(r2, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB='` b\x00', @ANYRES16=r7], 0x60}}, 0x0)
write$auto(r6, &(0x7f0000000040)=',\x00^\xa2\x02\x00\x05\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xb2s\x83\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4zG\x01[{\x17\x05I\xe0\xb1d)\x06z8L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2\xec\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a', 0x1000)
r8 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
write$auto_bm_register_operations_binfmt_misc(r8, &(0x7f00000005c0)="c29b593fe0d228cdd7e3e361d276e3707abb09b7444f7a18ebcb829902d07d36564cc91ab514150ba0788ba4974fd5ef0bfc077b444f16f8c24d8c", 0x3b)
madvise$auto(0xb, 0x7, 0xa)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
read$auto(r9, &(0x7f000000be80)='batadv0\x00', 0xf)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f000000c180), 0xffffffffffffffff)

2m15.437558621s ago: executing program 32 (id=1077):
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x84c43, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/class/firmware/timeout\x00', 0x1a1942, 0x0)
write$auto(r0, &(0x7f0000000000)='-\x00d1L\xff\x15\xba\xa17=(\xc1\xf8\xff\xff\v\xb5^\xa1/[', 0x4)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop12\x00', 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000240)={"ef65ce7cb454168d6c0000000000002713dfffffffff2900000000000a00", 0x3, 0x10000, 0xffff, 0x401003, 0xfffffffffffffffe})
ioctl$auto_BLKTRACETEARDOWN(r1, 0x1276, 0x0)
futex$auto(&(0x7f0000000200)=0x3ff, 0x9, 0x100, &(0x7f00000002c0)={0x40, 0xfffffffffffffffe}, &(0x7f0000000300), 0x10)
prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0)
prctl$auto(0x41, 0xc73, 0x0, 0x0, 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x28, 0x801, 0x0)
socket(0xf, 0x3, 0x2)
setsockopt$auto(r3, 0xe3, 0x3, &(0x7f0000000180)='/sys/class/firmware/timeout\x00', 0x7)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x101001, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x4, 0x0, 0x0, &(0x7f0000000440)={[0x1f8, 0x8, 0x80004, 0xfffffffffffffffa, 0x107c0e, 0x9, 0xfffffffffffffffe, 0x8010, 0x23, 0x80000001, 0x80000022, 0xfffffffffffffffe, 0x7, 0x7fff, 0xfffffffffffff7f4, 0x9]}, 0x0)
r5 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0)
ioctl$auto_SG_GET_PACK_ID(r5, 0x227c, &(0x7f00000000c0))
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/pcrypt/pencrypt/serial_cpumask\x00', 0xa001, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_STOP_P2P_DEVICE(r2, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB='` b\x00', @ANYRES16=r7], 0x60}}, 0x0)
write$auto(r6, &(0x7f0000000040)=',\x00^\xa2\x02\x00\x05\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xb2s\x83\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4zG\x01[{\x17\x05I\xe0\xb1d)\x06z8L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2\xec\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a', 0x1000)
r8 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
write$auto_bm_register_operations_binfmt_misc(r8, &(0x7f00000005c0)="c29b593fe0d228cdd7e3e361d276e3707abb09b7444f7a18ebcb829902d07d36564cc91ab514150ba0788ba4974fd5ef0bfc077b444f16f8c24d8c", 0x3b)
madvise$auto(0xb, 0x7, 0xa)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
read$auto(r9, &(0x7f000000be80)='batadv0\x00', 0xf)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f000000c180), 0xffffffffffffffff)

9.404466522s ago: executing program 2 (id=1398):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x5603, r1)
r2 = socket(0x11, 0x2, 0x9)
capset$auto(0x0, 0x0)
sendmmsg$auto(r2, 0x0, 0x2, 0x100)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x0, 0x0)
r3 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x5, 0x3, 0x0, 0xffffff7ffffffffd, 0x82)
r4 = socket(0x10, 0x4, 0x100)
io_uring_register$auto_IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x16, &(0x7f00000002c0)="d05d6f2f716f74230faba010656e878f1af86cd29108de4bf8bb61f80c2d38d4a7038ba0c7c51f76e06d4a15ba90d087513109136561924733c1d54fc9a8f5ee48b052879f664c3f8328365e88c643d7de7d513c46d805b35a6cae38c311835bed572cd39d6b1a5bbf0d8d56cb1076a94e85efd3508e8bd8def432f349860acb37d323f298ec9b4feb8b7ac48f397930a1fcf4f29bff8a8b28ac893866859ec288ac1b44d22ba0ec052a304f187342c3f6129dd96052217f549f3c71105d481a399a8262df0fd090807cdbb56033bbe801", 0x5)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/machinecheck/machinecheck1/check_interval\x00', 0x2062, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000002c0)={'veth1_to_bond\x00'})
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_DEAUTHENTICATE(r3, &(0x7f0000000480)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB='<F\a\x00', @ANYRES16=r4, @ANYBLOB="000427bd7000fddbdf252700000051004901e54f9ef2db7c515aae384f3246226aaa55584f191a0076389e0e904dd96babc94375ddf48fa16ca1ad31951871a7da114a0d4d8ec4b09d2cb615a7bfd871e62e48f3fd5557d268cd243ddc1e120000000400d800"], 0x6c}, 0x1, 0x0, 0x0, 0x404c045}, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
lsm_get_self_attr$auto(0x64, 0x0, &(0x7f0000002440)=0x1ff, 0x1)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r7, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000700)=ANY=[@ANYRES16=r4, @ANYRES16=0x0, @ANYBLOB="020026bd7000fedbdf250a00000008000300000000000800020099730bab00dce94e90a3b12132670a000043322925814f18e06daa21eaeadff04f99f341dde90af1b574820c6fc2211816d53a3335364d95259f3d3f9539699c888648a3086a9727e56d3ad050a3138c26beec18f3d0591440111bc2a27cfe43826813d6efafe7a4316a8a8c1688915539194b61d8040004f50eadabddd8b5bc0c716166973b9b951b9bfa40ec93ec8bd3732802615a9efd1265e8ecce80b51d1b16a36bc2672f9f3b93cec06aa1913908d12177be9aeee384b6d6dc81151d8719cae4787f95ada6a41fe57c3e14c442c21f01245a78f543c536cd4dd55460edfa4b74c7661c65a4cdd07d89accdc86ff8b19271c8fb0942ba18dc633969b1852140456dc8bedaa4d791fdb8e07f87ddf35fa42681eb830a97bf20880110f903654539e4cbbd92db2ea2a9449437c647fd519b9638ace2c933833c7995dce5fe24772e4d3a7ef3c53abe1be9e6f359a247", @ANYRES32=r1, @ANYBLOB="0800010000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x48850}, 0x44950)
write$auto(r6, &(0x7f00000005c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k@\xf4\xc4\xa0\xe3\x10\xef\xaa\xeeP\xa3\xe1\xee\xaf\x88\x99J\x11\x99\xa4\x91\xd6dh\xca`\xeeL\x00\xd7\x87+yd\xa4WO\xf6\fC<j\x12\xc55\xcc\x0f\xc7\xd4\xbf\xd1\x03\x9fl\xdc\x05\xfd\f\x82(\xb0\xce\xcf\xc4\xe7l\xe4\x7f\x88\xa4\x17\xd0\x13\xb6\xc4\x1bh\xdd\xa0^3\x9d\xbcRd\xb0\xd0{1\x14\xb3\na^w\xd6{\x9c\xac\xb5\x8b\xc6b\x13\xc1hx\xda\xaeA\xce\x82\r\\\r\x8ex\xdfC&\x861!\x06\f\xe0\xbd\x80j\x11\x96\xe1$r\xd7L\xb5\rNm\x14pbPp\x1a\x8b\x16\xb6uOa\x02\xd8\x81\x9c\x8b\xd6\xb5\xfca\x89\xce\xa7\xdb\b\x8d)\x00\x94\x9b\xd5\xa9\xf4\x82\xcfi\xbbYn\xa3\xe9\x81\xc7$QI\x83V\xc8h\x95\x91Hk:\r\xa1\xb8\xbb\xdcH\xc7\xb0j\x92eN\xc7\x88\xcb\xe8-\x80\x88c\'*\xe7E\t\x12%\xcb\x05T\xc9\xfes\x15/:\xe4\xbd\x91\xd1\xc4\xec\x9d', 0x9bd)
read$auto_proc_pid_set_timerslack_ns_operations_base(r3, &(0x7f0000000180)=""/182, 0xb6)

7.330880572s ago: executing program 2 (id=1399):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/workqueue/scsi_tmf_0/power/autosuspend_delay_ms\x00', 0x8000, 0x0)
openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ib_srp/parameters/reconnect_delay\x00', 0x20681, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)='-7', 0x2)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mq_timedreceive$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000002c00)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000002bc0)={&(0x7f0000004280)=ANY=[@ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="9800cd8004007e809000dc8008003c00030000001e000d8096573a9a8c873369b0dc6a6ef8edaa69c328f3ef5f8a9db01a8200001400828dfc00000000000000000000000000000150001d80aa9fd3c808a91c36118ab8a53a69355811310b2ea03dde7205fd370fa6eae002165e2ba33cb0d1d9bf637654651c61825e8479f867dd2b9df72aa5e508001400ffffffff04004f8004007b8014008d00fc0000000000000000000000000000011000258004003e8008009500", @ANYRES32=0x0, @ANYBLOB="08000900e80000000500020081000000050007000900000005000600140000000500060001000000"], 0x660}, 0x1, 0x0, 0x0, 0x5}, 0xc000)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r3 = syz_genetlink_get_family_id$auto_nfc(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_NFC_CMD_VENDOR(r2, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x3c, r3, 0x800, 0x70bd26, 0xe0000000, {}, [@NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x10000}, @NFC_ATTR_FIRMWARE_NAME={0x7, 0x14, ':)/'}, @NFC_ATTR_RF_MODE={0x5, 0xb, 0x7f}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0xbcb}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4800}, 0x80)
write$auto(0xffffffffffffffff, 0x0, 0x5)
write$auto(r1, &(0x7f0000000180)='/dev/snd/midiC2D0\x00', 0x400)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
io_uring_setup$auto(0x85, 0x0)
r5 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000140), 0x382, 0x0)
openat2$auto(0xffffffffffffff9c, 0x0, 0x0, 0xf6)
write$auto_rfkill_fops_core(r5, 0x0, 0x700)
ptrace$auto_PTRACE_SET_THREAD_AREA(0x1a, r4, 0x4, 0x8)
ptrace$auto_PTRACE_PEEKSIGINFO(0x4209, r4, 0x2, 0x20a)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x109500, 0x0)
pread64$auto(r6, 0x0, 0x8, 0xffff)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/free_buffer\x00', 0x20103, 0x0)
r7 = getpid()
process_vm_readv$auto(r7, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={0x0, 0xffffffff}, 0x4, 0x0)

7.316019314s ago: executing program 1 (id=1401):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0)
sched_getscheduler$auto(0x0) (async)
bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, r0, 0x454f, 0x5f, 0x0, 0x0, r0, 0x80000001}, 0x6d4) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) (async)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000) (async)
socket(0x2, 0x3, 0x6) (async)
r1 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r2, 0x0, 0x0) (async)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0) (async)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/module/psmouse/parameters/proto\x00', 0x20a42, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, 0x0, 0x0) (async)
r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000580), 0x2802, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffff7effffd05, &(0x7f00000001c0))
r5 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/apparmor/prev\x00', 0x1, 0x0)
socketpair$auto(0x1e, 0x3, 0xffffff00, 0x0)
io_uring_enter$auto(r5, 0x800, 0x5, 0x2, &(0x7f0000000180)="578a60d212255c6190891851f5bc2bf9ffb0dd82e2053c488eda09334b3032b28a4161bf833c58c29de0198b4efdaa0d1893f849fea0fc37bd9c20ee03f2b69e0d110244a2a6e21d1bd2835d3e028da18a1fed65c54811", 0x9) (async)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x3}, 0x7}, 0x3, 0xcad7)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async)
write$auto(0x3, 0x0, 0x100085)

6.606808692s ago: executing program 1 (id=1402):
r0 = socket(0x2, 0x1, 0x106)
getsockopt$auto_SO_NOFCS(r0, 0x6, 0x2b, 0x0, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0x7fc, 0x400)
mmap$auto(0x8, 0x5f, 0xa, 0xeb1, r0, 0x7ffd)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0xffffffffffffffff, 0x28000)
ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, 0x0)
socket(0xa, 0x3, 0x3b)
semctl$auto(0x2, 0x9, 0x939, 0x6)
clone3$auto(0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000240), 0x100, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

6.443876821s ago: executing program 4 (id=1403):
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
mount$auto(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0x2000000efb, 0x8000000008011, r0, 0x8000)
mmap$auto(0x7ff, 0x1ff, 0x7fff, 0x10011, r0, 0xabd9)
madvise$auto(0x2000, 0xffffffffffff0001, 0x9)

5.783562338s ago: executing program 4 (id=1405):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(r0, 0x1, 0x7, &(0x7f0000000180)='\x00', 0xff) (async)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/pci0000:00/0000:00:04.0/revision\x00', 0x58b080, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000005c0)=""/4087, 0xff7) (async)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x9842, 0x0)
name_to_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x0, 0x0, 0x1) (async)
getrlimit$auto(0x9, 0x0) (async)
r2 = fanotify_init$auto(0x800000, 0x9)
connect$auto(r2, &(0x7f00000001c0)=@isdn={0x22, 0x4, 0x4, 0x3, 0xff}, 0x3)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/rose7/flags\x00', 0x2262, 0x0)
write$auto(r3, &(0x7f0000000100)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\xfc\xb2\x00\x00\x00\x00y\x113!\x05\xa7\xd6M\xce\xd6\'\xdf@\x9f\xf5 \x8b_hw\x8em\xd0\b\xe7~O5\x9dv\xb2H', 0x81)
write$auto(r3, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nullb0/inflight\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000380)=""/166, 0xa6)
syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58) (async)
fcntl$auto_F_DUPFD_CLOEXEC(r3, 0x406, r4)
mmap$auto(0x9, 0x20011, 0x9e, 0xebd, r4, 0xfd) (async)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/bus/platform/drivers/dln2-gpio/bind\x00', 0x20a42, 0x0)
write$auto(r5, &(0x7f0000000080)='/\xe4ev/auYio\x00', 0x4) (async)
close_range$auto(0x0, 0x5, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/usb4-port1/quirks\x00', 0x2, 0x0)
write$auto(r6, &(0x7f0000000040)='\xea:%+/%^\x00', 0xffffffff) (async)
pipe$auto(0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/waiting_for_supplier\x00', 0x80800, 0x0) (async)
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x1e, 0x4, 0x3, 0x8}, 0x6f4) (async)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sda\x00', 0x60742, 0x0)

5.539285199s ago: executing program 0 (id=1406):
r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, 0x0, 0xc0b02, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
poll$auto(0x0, 0x5, 0x108)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setns(0xffffffffffffffff, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="ea12e528ded30ff1309c8b1613007984cb"], 0x14}}, 0x4000080)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
bpf$auto_BPF_MAP_CREATE(0x0, &(0x7f00000000c0)=@link_create={@map_fd=<r2=>r1, @target_ifindex, 0x81, 0x530, @perf_event={0x80}}, 0x9)
r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETFAMILY(r2, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0x24, r3, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0xd}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/hid_cougar/parameters/g6_is_space\x00', 0x129102, 0x0)
write$auto(r4, &(0x7f0000000000)='y\x8c', 0x2)
get_mempolicy$auto(&(0x7f0000000180)=0x6, &(0x7f0000000280)=0x5, 0xa6, 0xfff, 0x3)
write$auto(r0, 0x0, 0xc70)

5.495371546s ago: executing program 1 (id=1408):
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
r1 = io_uring_setup$auto(0x55, &(0x7f0000000080)={0xe47, 0xd, 0x10400, 0x1000e, 0x4, 0x80000000, r0, [0x0, 0xfffffffd, 0x10000003], {0x5, 0x6, 0xc, 0x2, 0xd, 0x7ffffffb, 0x100101, 0x6, 0x9340}, {0x8, 0x1, 0x2, 0x1, 0x9, 0x0, 0x76c5, 0x789a, 0x9}})
move_pages$auto(0x0, 0x8, 0x0, 0x0, 0x0, 0xb)
setsockopt$auto(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x401)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cmdline\x00', 0x1c8c2, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x10000, 0xae)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r3, 0x0, 0xc801)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
execve$auto(0x0, 0x0, &(0x7f0000000100)=0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x43a081, 0x0)
r5 = prctl$auto(0x1d, 0xfffffffffffffffb, 0x8, 0x384, 0x6cfa)
clock_nanosleep$auto(0x7, 0x7fff, &(0x7f0000000000)={0x5, 0x5}, 0x0)
write$auto(0x4, 0x0, 0x100082)
unshare$auto(0x7)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x82802, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0)
ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, &(0x7f0000000280)={0x8000000000000000, @raw=0x3, @inferred, 0x1, 0xfffffffffffffff7, '\x00', {0x8d5c, 0x76e4, 0x1000, 0xffffffffffffffff, 0xffffffffffffffff, 0x8, 0x9, 0x8, {0x1, 0xffffffff}, {0x10000, 0x4}, {0x1, 0x8}, 0x3, 0x101, 0x200, 0x200, 0x0, 0x401, 0xfff, 0x10, 0x0, 0x2, '\x00', 0x0, 0x7840, 0xe5, 0x1}})
setgroups$auto(0x10000, &(0x7f0000000040)=0x7fff)
close_range$auto(r1, 0x8, 0x3)
write$auto(r4, 0x0, 0x81)
r6 = openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/mounts\x00', 0xaa080, 0x0)
pread64$auto(r6, 0x0, 0x3c02, 0x100007)
waitid$auto_P_PIDFD(0x3, r5, &(0x7f0000000240)={@_si_pad}, 0x31d6, &(0x7f00000002c0)={{0x6, 0xf}, {0xf4d, 0x9}, 0x7f, 0xc, 0x3, 0x0, 0x2, 0x10000, 0xe40, 0x0, 0x1, 0xfffffffffffffffa, 0xfffffffffffffffe, 0x6713, 0x0, 0x8})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x400000003, 0x0, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

4.962781321s ago: executing program 4 (id=1410):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x4, 0x84)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_CONFIG(r0, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010026bd7000fddbdf250c000000080004"], 0x1c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r2 = socket(0x1a, 0x1, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0xffffffffffffffff, 0x28000)
r4 = socket(0xa, 0x2, 0x0)
fadvise64$auto_POSIX_FADV_WILLNEED(r2, 0x7fff, 0x0, 0x3)
setsockopt$auto(r4, 0x0, 0x30, 0x0, 0x568)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), r4)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000006900)={&(0x7f0000001700)={0x134, r6, 0x1, 0x70bd29, 0x25dfdbff, {}, [@HWSIM_ATTR_PMSR_RESULT={0x120, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x70, 0x5, 0x0, 0x1, [{0x6c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0x4}, @NL80211_PMSR_PEER_ATTR_ADDR={0x47, 0x1, "15498343c724307734086992dc1e25a2a9103e4bf48686438120218fc18eb8d92081607cef938d982b98b2ffabb3d4697d0e992a1ea9d3b471e918ae07e413f97503f8"}, @NL80211_PMSR_PEER_ATTR_RESP={0x4}, @NL80211_PMSR_PEER_ATTR_RESP={0x8, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_FINAL={0x4}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x10, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x9}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0xac, 0x5, 0x0, 0x1, [{0xa8, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0x30, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0xfffff7f7}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_DATA={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc, 0xf, 0x5cbb}]}]}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x73, 0x1, "133545fe144249383690d25836a9e1b8e5920d3c13713ee7305edf6be0471098cc202f4a67a0e31975104f0fcf28f0a91d60c491bafd662d5189ef66eca755c87e31fce4c3eaf65f8c4e22dceea70c0fddb7f3123af0530dafcc4115e99b12f090fec7ea0b83a4e11075905f4e0b5e"}]}]}]}]}, 0x134}, 0x1, 0x0, 0x0, 0x24000841}, 0x800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x88400, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r7, &(0x7f0000000040)=""/209, 0xd1)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x8)
socket(0x2, 0x1, 0x0)
unshare$auto(0x80000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r8, &(0x7f0000000080)={0x0, 0x1000}, 0x3)
close_range$auto(0x2, 0x8, 0x0)
socket(0x28, 0x5, 0x0)

4.960600454s ago: executing program 2 (id=1418):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x12, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x9, 0xd, 0x8fd6, 0x948f, 0x803, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000480)='/Eev/audio1\x00VI\xa3\x93\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xe3\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\a\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\xd4m\xbf\xc7\x15\xbew\"(6\xa0\f`\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xaf\xfd\xbaP\xbb\xca\xc7\x0f\x83\xcf\xc5D\xcc?S\x86s\xb4\x86\x99%\x14p\xae9\x80phn\x11\xfd6\xfa\xf8\xbd\x0e7\xa2QF+Y\xe1\x83}\a\x00\xfcTVTy\xcf\xa7D\xda\xbc\x91\xa9t\xeb\xb2b\xbb\xef\xc6*\xdc\x7f\xe9\xb7\x00'/228, 0x4)
mmap$auto(0x40, 0x6, 0xdf, 0x9b72, 0xffffffffffffffff, 0xc200)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0)
ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
sysinfo$auto(&(0x7f0000000300)={0x6, [0x4, 0xc, 0x923], 0xfffffffffffffffc, 0xd5, 0x0, 0x6, 0x6, 0x1, 0x7f, 0x0, 0x100000000, 0x7, 0x6})
openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000740), 0x101001, 0x0)
writev$auto(r2, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
r4 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_GETTRIGGER(r5, 0x80045010, &(0x7f0000004440))
ioctl$auto_VHOST_SET_LOG_FD2(0xffffffffffffffff, 0x4004af07, &(0x7f00000001c0)=<r6=>0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r6, 0x8000)
r7 = open_by_handle_at$auto(r1, &(0x7f00000002c0)={0x1a, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b"}, 0x7d)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(r7, &(0x7f0000000400)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000780)={0x764, 0x0, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_HE_CAPABILITY={0xa, 0x10d, "af37b95bf482"}, @NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0x6}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0xd8}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "3147ac1e202cb9e97f6e4fec"}, @NL80211_ATTR_IE_ASSOC_RESP={0x720, 0x80, "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"}, @NL80211_ATTR_FREQ_FIXED={0x4}]}, 0x764}, 0x1, 0x0, 0x0, 0x40080}, 0x240000c4)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x63af, 0x63, 0x0, 0x0, 0x0, 0x0, 0x8, 0x80000008000000a, 0x40000402, 0x6, 0x7, 0xffffffff80000004, 0x8000000002009, 0x6, 0x2400001000ff})
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
r8 = socket(0x10, 0x2, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13", @ANYRES64=r5, @ANYRES64=r8, @ANYRES8=r4, @ANYRES16=r5], 0x1ac}}, 0x48000)

4.311580911s ago: executing program 1 (id=1411):
close_range$auto(0x2, 0x8, 0x3)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x40000010, 0x400, 0x2}]})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000580)='/dev/mtd0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, r2, 0x10008000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x752502, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r4)
ioctl$auto_KVM_GET_MSRS(r3, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x40000100, 0x400, 0x2}]})
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x0)
shutdown$auto(0x200000003, 0x2)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
eventfd$auto(0x6)

4.155633011s ago: executing program 0 (id=1412):
mmap$auto(0x0, 0x4020009, 0x765, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
fanotify_init$auto(0x5, 0x2)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x400000, 0x0)
sendmsg$auto_IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x20040804)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x40400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xb7cc00000, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0xffffffffffffffff, 0x9, 0x80000005, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x482, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
removexattr$auto(0x0, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x85)
mprotect$auto(0x5, 0x8000000000000004, 0x5)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, 0x0, 0x40)
set_mempolicy$auto(0x2, &(0x7f0000000200)=0x3, 0x21)
ioctl$auto_MEMREADOOB64(0xffffffffffffffff, 0xc0184d16, &(0x7f0000002300)={0xffffffffffffff5c, 0x0, 0x309, 0x7})
mmap$auto(0x0, 0x2000f, 0x7, 0x7fffffff, 0x404, 0x1000c000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/midiC2D0\x00', 0x800, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dri/card1\x00', 0x80802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_dma_heap_fops_dma_heap(0xffffffffffffffff, 0xfffffffffffffc00, &(0x7f0000000100)="a2b36d0449473b7bcbcd6d7f6186e9de29e708c62b9db37658c96e1ed364c5d867daa7438de65e6d2aa369df7e32e2c897c4")
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
keyctl$auto(0xe, 0x1, 0x1, 0x4, 0x6)
keyctl$auto(0xe, 0x1, 0x1, 0x4, 0x6)
read$auto(r1, 0x0, 0x20)
mq_open$auto(&(0x7f0000000200)='\\\x00\xa9A\x00', 0x83, 0x7, 0x0)

3.875731941s ago: executing program 0 (id=1413):
socket(0x2, 0x3, 0xa)
sendmsg$auto_IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000004bc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000800}, 0x4000801)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x4)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
msgrcv$auto(0xb, 0x0, 0x0, 0x6e2d, 0xfffffffb)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x40009, 0xb, 0x9b72, r0, 0x5)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)
select$auto(0x80000001, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x48, 0x15, 0x1000, 0x100000001, 0xc, 0xf, 0x0, 0x0, 0xe, 0xd59, 0x103, 0xff, 0x9, 0x6]}, 0x0, 0x0)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x9, &(0x7f0000000280)={&(0x7f00000000c0), 0xffffffff}, 0x6, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0)
ioctl$auto(0x3, 0xc0585605, 0x38)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x9, 0xfffffffefffffffd, 0x10003, 0xebf, 0xffffffffffffffff, 0x8003)
ioctl$auto_USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f00000000c0)={0x80000001, 0x8000, &(0x7f0000000000)="5f051435192770f8afd451d34314db1f836ea672ac18dc44b8d270dfc4d7ce5ab238bb411c60a266229f4663520061"})
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r3 = prctl$auto(0x16, 0x7, 0x2, 0x7, 0x100)
r4 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000100), 0x40800, 0x0)
ioctl$auto_SW_SYNC_GET_DEADLINE(r4, 0xc0105702, &(0x7f0000000140)={0x3, 0x0, r3})
ioctl$auto_TIOCNOTTY(r2, 0x5422, &(0x7f0000000180)="adf43fd7e39e03fc622c6f5527c1bd4353750c0e19588fdf1f0e169ed9c369328c17")
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x40000008000)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
unshare$auto(0x40000080)
unshare$auto(0x17d0)
semctl$auto_SETVAL(0x328, 0xd77, 0x10, 0x9)

3.591705583s ago: executing program 2 (id=1414):
mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000)
r0 = socket(0x10, 0x2, 0x0)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00')
r2 = socket(0x2, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48090}, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20009, 0xffffffffffffffff, 0x100000eb1, 0x40000000000a1, 0x8000)
socket(0x1, 0x5, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r3, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000000300)=ANY=[@ANYRES64=r1, @ANYRES8=r2, @ANYRESHEX], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r3)
read$auto(r3, &(0x7f0000000100)='nl80211\x00', 0xbe62)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1800"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00)
r4 = openat$auto_supply_map_fops_(0xffffffffffffff9c, &(0x7f00000000c0), 0x440500, 0x0)
io_uring_setup$auto(0x7d4, &(0x7f0000000000)={0xbe2, 0x7ad, 0xd, 0x8, 0x9a, 0x9, r4, [0x10001, 0x31f, 0xa], {0xb2, 0x4, 0x8, 0x98e, 0x1, 0x39, 0x101, 0x1, 0xd}, {0xfffffffc, 0x3, 0x0, 0x3, 0x2, 0x1000, 0x7fff, 0x0, 0xfffffffffffffffb}})
open(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x1c5)
mprotect$auto(0x110c230000, 0x136, 0x2)

2.982852749s ago: executing program 0 (id=1415):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) (async)
mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x39b8e1, 0x0)
ioctl$auto(r1, 0x3b9d, r0)

2.659045631s ago: executing program 0 (id=1416):
r0 = socket(0x1b, 0x3, 0x1)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r1, &(0x7f0000000380)='\x00\x00\x00\x00\xa1\xcf\xd8\\2\xbb\xd0\na\x98j\x8a@\xb4%\xb5\xb9\x839\xee\x9f\x88\xadp\xf3\xfd\xdeI_B\xf8QZ_\x80\a2lC\xfd\xb7$\xa1\xd5\xc1\x13\x96;\x8b\xff\x9cu\xb5`\a\x9b\x88L\x188\x03V\xc1\xdc2y\xe0\xa0\xffy7w\x9e\xdaq\x025_\x81s\x96\xd6\xe3E\x04!|+\xfd}}23S\xd2\x9f\rMD\x8b\x8e\xad\x1e\xb9#\xb8\x91\xb9$\xf3\xff\x84y\x1a\x0e=<\x0e\xc1\xd1\xc0\xd56tI&\x8at\x82\xbb\x8a\xdd\xd3hV,\x9f-FC2}*@{X\xf6m\xef\x1e\x04\xee\"1;\xb4q\x98\xa8\xf4\xfa\xc4\xfa\x18\x00\x00\x00\x00\x00\x00{!\x86]\xf2\xde\xd0\bW\x83\r\x03\xe4', 0x7)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$auto_ILA_CMD_ADD(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES8=0x0, @ANYBLOB="010026bd7004feb1df25010000000c000300060000000000000044544c277b851a207336181df9183f916cbcb6e4c5cb7c2faef597a8bdd6403ef8210a1f24a5a75ff6ffb52520c0d3f8079c9fe678120833e7bd456e397c7bd302c4da2174bd9c26050d25b5016f05e2ec1405f9ad6b69fb04792e3c924661244aab28a2866e9903152639ac2102fa46e3362d5a76d849b29ff10c76412461fd2a5ea272f4c222c5942a1bcf684829854047f7b59a9b032b7030a009e749603060b9095fdf3fcd21fed0f2e971bdcbb2faea81d7a9ead382ed1666a59bf55c"], 0x20}, 0x1, 0x0, 0x0, 0x20040880}, 0x4)
syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0)
readv$auto(0x3, 0x0, 0x1)
socket(0x5, 0x80000, 0x8002000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
r3 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
ptrace$auto(0x4206, r3, 0x0, 0xa)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x7fffffe, r3, 0xa5, 0x6)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

2.658916712s ago: executing program 1 (id=1417):
r0 = socket(0x2, 0x1, 0x106)
getsockopt$auto_SO_NOFCS(r0, 0x6, 0x2b, 0x0, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0x7fc, 0x400)
mmap$auto(0x8, 0x5f, 0xa, 0xeb1, r0, 0x7ffd)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0xffffffffffffffff, 0x28000)
ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, 0x0)
socket(0xa, 0x3, 0x3b)
semctl$auto(0x2, 0x9, 0x939, 0x6)
clone3$auto(0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000240), 0x100, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

2.518008042s ago: executing program 4 (id=1419):
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x8)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1/file0\x00', 0x840, 0xc)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone(0x201d5091, 0x0, 0xfc52, 0x0, 0x0, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x0, 0x0)
open$auto(&(0x7f0000000040)='./file0\x00', 0x5, 0xc53)
fcntl$auto(0x3, 0x4, 0xa553)
read$auto(0x3, 0x0, 0x7fffffff)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7)
ioctl$auto(0x3, 0x402c542b, 0x38)
ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
fsopen$auto(0x0, 0x1)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_flow(0x0, 0xffffffffffffffff)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/pagemap\x00', 0x80800, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xffffdffd}, 0x6, 0x400000000000008, 0x5)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
sendmsg$auto_OVS_FLOW_CMD_SET(r1, 0x0, 0x0)
ioctl$auto_TIOCSTI2(0xffffffffffffffff, 0x5412, &(0x7f0000000840))

1.638257049s ago: executing program 1 (id=1420):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000007380)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x109041, 0x0)
write$auto(r0, &(0x7f0000008d40)='($}-)#@\x00', 0x3)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x10cc3, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x8, 0x3a02, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008)
r1 = socket(0xf, 0xa, 0xf)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x902, 0x0)
write$auto_snd_pcm_oss_f_reg_pcm_oss(r2, &(0x7f0000000080)="c2", 0x1)
setsockopt$auto(r1, 0x1, 0xc, 0x0, 0x7fffffff)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x154)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00')
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189082, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/kernel/kexec_load_disabled\x00', 0x202, 0x0)

1.637962077s ago: executing program 2 (id=1421):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x0, 0x0, 0x0, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0)
ioctl$auto_SNDCTL_DSP_GETTRIGGER(r2, 0x80045010, &(0x7f0000004440))
ioctl$auto_VHOST_SET_LOG_FD2(0xffffffffffffffff, 0x4004af07, &(0x7f00000001c0)=<r3=>0xffffffffffffffff)
mmap$auto(0x0, 0x9, 0xdf, 0x9b75, r1, 0x8000)
open_by_handle_at$auto(r1, &(0x7f00000002c0)={0x1a, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b"}, 0x7d)
mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, 0xffffffffffffffff, 0x8000)
r4 = geteuid()
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001a80)={&(0x7f0000000500)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4040840}, 0x200000c0)
mmap$auto(0x100000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000)
msgctl$auto(0x7, 0xa3, &(0x7f0000000240)={{0x8, r4, 0xee01, 0x5, 0xa, 0x6, 0xfe01}, 0x0, 0x0, 0x1, 0xa, 0x400000000005, 0x31f4, 0x51c, 0x3, 0xfff5, 0x3, @inferred=0xffffffffffffffff, @raw=0x8})
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0x1002}, 0x1, &(0x7f0000000280)={0x0, 0x401}, 0x6, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x48802, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/mm/transparent_hugepage/hugepages-2048kB/enabled\x00', 0x22b42, 0x0)
sendfile$auto(r9, r9, 0x0, 0x6)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001b00)=ANY=[@ANYBLOB="20010000", @ANYRES16=r7, @ANYBLOB="010025bd7000fedbdf257e000000000066004e21000000002680000002000400000000000200000000000000010009000000000001000400000000000200070000000000980006000000000014010f000000000007001f5198dea666bad033b7aea5d7529adf1ae5607ef3d022c60a57cd1649952c00000080004dec6ee46088e64587adba9ba7537f79f056fbd60490f11a3498560bfa783badf6fa39e3aa9815705e629beb9573271a53f5c4ee3859bf0313d7dad665a019c4e908768bb5b896533bbd3b39e4768150289646864a302e8ded90a5b83ada85575e6657023fb727d3723ff97af53540e2fbc15e85a0c6a5644432b997ba3bdc423b0be181bf0d501cf098551e7b2ce99ac721bf9145ebc91fe7c9230b30f9b88ac5b2c404ddfac531ea9fcaf6d514daf8c13a9f382059488c3280a13754303b49d3eddff53520086a38cbb1075e09f556c208c26f727717e52ad91b929b37df820ffca5a077087bc540d3c30fa84b5986b17605e72c7af63bd4264355ec1e043e6ae397fd5b925bc6ee277f7e42b305fbe861e8e9974efb062206bd7fef4b13f19f926c090b1367e4599ea549d1e97c1c2b214d06c5de3e7dc0bae99b9030f72ae011f303fa7ea798a612fd252f9e9c238f07ccc755d8c4aff22798a08e567e0b8f3975fc1b30522f1b82ed37fecc8927a2f8265cb2423f4272359a5b097f54bdb65f51f0911ca880641493cce6f3f00edfefe3d7f007bc5c57214dde959740b9e0a70b28d191e10eb5c3eccfdf045407c80e026f4e9fe766eca822b77df002210db69f60480ae2e21fced2bf22dde077e0ccbe2e05f58ba0db3d9f6469382574a23009202a928c2e7a67623eeeb3976036936871d6056bca11541ed5d795853e233149c9ea3e3d478b5e35cf5e551002a79ac8a33d81b60fde70ccbf125c4b4243160db218068b7a2db851b3dfad23f584b6db1b9ec1428635f27d4bb08cb9b0d4d9c725595fbd59622038dc6cb2f70282ae273c9927dfc884b8e99578c897e90ffeec2c4f3b1e4c5cadc23ff40dd06e618b0f798c0d4a87c7728de7b03a7a8021dcdbd1f4c8b29ea50d2130cf3099a8b37a4d894a5020bc583feaf86c00b8d917567b988f875af819935a325517e76850262d5558ff1fcf9f5b7b26a9645bb26d20104227757359a6e52317edbdd2fde26c3b3f26ee6e2714d9668cfafe1f1c83c24d7e3b55127b38315b1b9053d3ed9561c14e0cf3b173f89e739337a63e5d13fb97466b9b36556adb4af4e9b18d4778c369692333cb70c72d968aff999fe3f08690fdc345eceedb90782bc907b20d4a06867f2930ebb553494aeceabf2f33f1295753241986835af90226970a126a27d9c1f3a04f9b917fa57524fb70f161e619ab83cff4edceef04362c497dc4804af7e7837a4b4241521a2cb28a08fe7001ce941a8cf3f2a4266dbc5fd02c56a5a16fe2a0af334673588ea9b161c65b7ab9a67e4808f1e8c6cf55641a97082348e1e31ed07154364d1fb134e988d32277a2c5224985ab2e3b518c927af3338cfeab947dc38466b8e58f40402d97417a895d335dcd5ccf6ed33ba8a54c80ea0cfe0c66993e86f8b2699d860ff1b2d00db394a18a92e0ed026737e46d52978bae076c156be5e6530222fe8c93c8e4ecd29bfd1823b2730515eb3e99ecb867e0117fafafb495f34fe5c82c7af4e163ef7c543d5327b011b65e661db58838a0821f66c65a9b2d598fe497d778ced9bb1c48369c70a3ab32dd9626f0b575d47a0b7398fcaebce8048504cc3ebcc4498894bf079758aa008906c570f9a4ce0c5faefd8326dde933dccf7a2896a3b86ceb8add2b7f69943b006c8ca893916b156458c9dd28e1e21770e7ba6d7fb8ebdde22ff23346cd0f6d0c90a093fae2f128f759418402b13fae56d033f6adde7442b46db3aedb8665718b37055df3b0710f5e31ea2e04abbca71d7c8cc71325a1124d38c4245587ff29c5e0f1cbfdf7b865099a395dd9c2f7e29200bda2c2b20b17b7f33e1c277c57925b59aca80821a48085b7eab507385849a0e22c2ac4a526e7b786fd9442fd2df0eb05cb1df98795853536dc12b6fea234a4c32a57059049c0dedee032615da106c88fe54e73226cb88b4863c1f905dac6dffd4e5e53873f746e19ee631e8cab802ef174df5cb6e88e513aa10a0e1dd7d43075bc19b94491b9cb8fe1efac7d300e4c6253d42198c94f76fef50405405c348b9bfe0c4e09b6668655baaff6d464b20c5db5aa72b6e5345aa6af3c2b2e508ab94ed2f3ae27947c30f6c9435396cccca249745963693d456f0b13551ebd2714a5d2aa5eec9d61d2d6b9aba3d482f4c49906435b1d783f381a7180a5077358717dfc2e117d31e141382b11db23fb0c7d8ec13b0e2e542cfe4b44f2e9b0a440dcf9143f3be9494f3bc2004047e86405b4190fb667d269f2a7d1c48509fbdc3bb3e99d6f68a309ffff000006007347b9c70c7a48913b05957bbb9826fc681df1b98ace4a88eebe405b8400e41aa87a86c1aca27323448d0dfed2b28ecfa7d65c7264311080712e8fa3874f7ee38b02120b885602b84d954479702f51ac45a331dfe2ef76c45014c84415189885b9c9613c2acb7a41c6ace876ee5af4fc50407fc3361a128a2e59e60f11b47277c9a5f3cbe0424d3886a3a3a0f40c5ef46d2b331ca3d83f2f444bc6998d06926c6a1cb162ef14fb7ab2ee731fdc7f0fc553a3c07226a2160d350ed7f30000360103e17d2b53cce133a6674f5b8600a49a8403c6bdfd3e0c464ed8a2fe254a5939fb09cb1dc350c9230c189febda65557207893e11deb595e622008d945c914692afa24b99bf04b003881b9fc35a628e8a1f7dd36490920c7ce2dbffcf61124f39b5329db3d8f56f48af0b3b31b588771b14d045e0ea69404cf54596db22abd3d35b4f3d484faa4ac1eca1bbbe82ed861aee4715f465c010e98899929b521dea88b03c97f8d005000000987004d3b262d91b7e4b6d005ebb201517953c89225c186080b4836ccb358d624f4b134a11c7ec39e49d80d2c40312c250508a0e8c0969f1fe6830e50c3f2623b31882a5409300737b3fe096e8da90fa050194db696c605c6f82e18f9fc334aa232483df49ed13478a9bd48a"], 0x120}, 0x1, 0x68, 0x0, 0x24000000}, 0x140)
sendmsg$auto_NL80211_CMD_GET_KEY(r3, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRESDEC=r2, @ANYRESOCT=r6], 0x1c}, 0x1, 0x0, 0x0, 0x21}, 0x51)

1.462121339s ago: executing program 4 (id=1422):
r0 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)
timer_create$auto_CLOCK_REALTIME(0x0, &(0x7f0000000000)={@sival_ptr=0x0, @raw=0x100, 0x4, @_tid=r0}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000006c0)={'batadv0\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r5=>0x0})
mmap$auto(0x7, 0x22, 0xab77, 0x325a8219, r1, 0x3)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)={0x24, r3, 0xb11, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4001}, 0x9800)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r6 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_PVERSION(r6, 0x80045400, &(0x7f0000000040)=0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000001c00), r7)
sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(r7, &(0x7f0000001d00)={0x0, 0x0, &(0x7f0000001cc0)={&(0x7f0000000000)={0x1c, r8, 0xa2d601c1e7b11e31, 0x70bd27, 0x25dfdbfd, {}, [@IOAM6_ATTR_NS_ID={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x3, 0x2)
socket(0x21, 0x2, 0xa)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
getsockopt$auto(0x6, 0x110, 0x6, 0xffffffffffffffff, 0x0)
sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r8, 0x800, 0x70bd2c, 0x25dfdbfc, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x140018c4}, 0x880)

51.355955ms ago: executing program 4 (id=1423):
r0 = gettid()
ustat$auto(0x801, 0x0)
socket(0x18, 0x80003, 0x1)
io_uring_setup$auto(0x6, 0x0)
r1 = socket(0x2, 0x3, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x5, 0x0, 0x9)
sendto$auto(r1, 0x0, 0x8, 0xe, &(0x7f0000000000), 0x1c)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket(0xa, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6d)
listen$auto(0x3, 0x81)
accept$auto(0x3, 0x0, 0x0)
mmap$auto(0x0, 0x2020209, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
sendmmsg$auto(r2, &(0x7f0000000000)={{&(0x7f0000000080), 0x10, 0x0, 0x3, 0x0, 0x7fff, 0x1}, 0x80000b}, 0x5, 0x20000000)
kexec_load$auto(0x5, 0x2, 0x0, 0x4)
kill$auto(r0, 0x7)
syz_clone3(&(0x7f0000000380)={0x4081080, 0x0, 0x0, 0x0, {0x37}, 0x0, 0x0, 0x0, 0x0}, 0x58)

50.385213ms ago: executing program 0 (id=1431):
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000080)=0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20540, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4)
lstat$auto(&(0x7f0000000200)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0)
r1 = getpgid$auto(0x0)
timer_create$auto(0xfffffffe, &(0x7f0000000000)={@sival_int=0x4, @raw=0x2, 0x4, @_tid=r1}, &(0x7f0000000040)=0x9)
ioctl$auto(0x3, 0x5420, 0x38)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x28200, 0x0)
ioctl$auto_EVIOCGEFFECTS(r2, 0x80044584, 0x0)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
ioctl$auto(0x3, 0x80045430, 0x38)
ioctl$auto(0x3, 0x402c542b, 0x38)
readv$auto(0xffffffffffffffff, &(0x7f0000000a80)={0x0, 0x10003}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0xe981, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
socketpair$auto(0xfffffffe, 0x1, 0x8000000000000000, 0x0)
pipe$auto(&(0x7f0000000040)=<r3=>0xffffffffffffffff)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000000c0)=""/4096, 0x1000)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "000c9700"}, 0x58)
read$auto_cachefiles_daemon_fops_internal(r3, &(0x7f0000001100)=""/89, 0x59)
close_range$auto(0x2, 0xa, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mlock$auto(0xfbe8, 0x4)
munlock$auto(0xffff, 0x1)
getrandom$auto(0x0, 0x6000000, 0x3)

0s ago: executing program 2 (id=1424):
mmap$auto(0x0, 0xe983, 0xa3, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0\x00', 0x1902, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x8000, 0x0)
read$auto(r0, 0x0, 0x20)
close_range$auto(0x0, r0, 0x4000000000002)
socket(0x2, 0x801, 0x106)
socketpair$auto(0x1a, 0x9, 0x8000000000000000, 0x0)
r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtd0ro\x00', 0x0, 0x0)
ioctl$auto_BLKPG2(r1, 0x1269, 0x0)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
socket(0xa, 0x2, 0x0)
setsockopt$auto(0x400000000000003, 0x29, 0x17, 0x0, 0x56b)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0)
r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r4, 0x0, 0x1f42)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f00000001c0)={0x0, 0x9}, 0x3)
io_uring_register$auto_IORING_UNREGISTER_NAPI(r3, 0x1c, 0x0, 0x8)
io_uring_setup$auto(0x3, &(0x7f0000000280)={0x6, 0xf085, 0x0, 0x3841, 0xfffffffe, 0x5, r4, [0x8000000, 0xc37, 0x6], {0x4, 0x5, 0xfffff5d3, 0x2, 0x2, 0x2, 0x7ff, 0x8, 0x80000000}, {0x8, 0x9, 0x7, 0x7, 0xe4ae, 0x95, 0x7ff, 0x8, 0x3}})
io_uring_setup$auto(0x8a1, &(0x7f0000000200)={0x7, 0x541180b8, 0x7ceb, 0x3, 0x8000, 0x8, 0xffffffffffffffff, [0x0, 0x135, 0x5], {0x2, 0x1, 0x7fff, 0x8000, 0x5, 0x7, 0x2, 0x800}, {0x9, 0x0, 0x5, 0xd, 0x2, 0x9, 0x7f, 0x6, 0x4}})
ioctl$auto(0x3, 0xae60, 0x10000000000402)

kernel console output (not intermixed with test programs):

][ T8579] netlink: 268 bytes leftover after parsing attributes in process `syz.0.532'.
[  294.936852][ T8601] HSR: entered promiscuous mode
[  295.189717][ T8609] FAULT_INJECTION: forcing a failure.
[  295.189717][ T8609] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  295.203294][ T8609] CPU: 0 UID: 0 PID: 8609 Comm: syz.3.542 Not tainted syzkaller #0 PREEMPT(full) 
[  295.203335][ T8609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  295.203353][ T8609] Call Trace:
[  295.203363][ T8609]  <TASK>
[  295.203375][ T8609]  dump_stack_lvl+0x16c/0x1f0
[  295.203432][ T8609]  should_fail_ex+0x512/0x640
[  295.203466][ T8609]  _copy_from_user+0x2e/0xd0
[  295.203497][ T8609]  copy_msghdr_from_user+0x98/0x160
[  295.203525][ T8609]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  295.203559][ T8609]  ? __lock_acquire+0x62e/0x1ce0
[  295.203597][ T8609]  ___sys_recvmsg+0xdb/0x1a0
[  295.203624][ T8609]  ? __pfx____sys_recvmsg+0x10/0x10
[  295.203654][ T8609]  ? find_held_lock+0x2b/0x80
[  295.203697][ T8609]  do_recvmmsg+0x2fe/0x750
[  295.203728][ T8609]  ? __pfx_do_recvmmsg+0x10/0x10
[  295.203761][ T8609]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  295.203800][ T8609]  ? __fget_files+0x20e/0x3c0
[  295.203830][ T8609]  __x64_sys_recvmmsg+0x22a/0x280
[  295.203862][ T8609]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  295.203900][ T8609]  do_syscall_64+0xcd/0xfa0
[  295.203929][ T8609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.203953][ T8609] RIP: 0033:0x7fa59078eec9
[  295.203971][ T8609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.203993][ T8609] RSP: 002b:00007fa59169f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  295.204013][ T8609] RAX: ffffffffffffffda RBX: 00007fa5909e6090 RCX: 00007fa59078eec9
[  295.204028][ T8609] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000004
[  295.204041][ T8609] RBP: 00007fa59169f090 R08: 0000000000000000 R09: 0000000000000000
[  295.204055][ T8609] R10: 000000000000000e R11: 0000000000000246 R12: 0000000000000001
[  295.204068][ T8609] R13: 00007fa5909e6128 R14: 00007fa5909e6090 R15: 00007ffc652c21b8
[  295.204105][ T8609]  </TASK>
[  295.399903][    C0] vkms_vblank_simulate: vblank timer overrun
[  296.298179][ T8621] netlink: 268 bytes leftover after parsing attributes in process `syz.3.544'.
[  297.866434][ T8639] netlink: 268 bytes leftover after parsing attributes in process `syz.0.546'.
[  299.154984][ T8659] netlink: 268 bytes leftover after parsing attributes in process `syz.0.553'.
[  300.808424][ T8678] netlink: 268 bytes leftover after parsing attributes in process `syz.0.556'.
[  301.445902][ T8685] netlink: 268 bytes leftover after parsing attributes in process `syz.2.557'.
[  302.039870][ T8694] netlink: 268 bytes leftover after parsing attributes in process `syz.3.559'.
[  302.536213][ T8708] netlink: 268 bytes leftover after parsing attributes in process `syz.0.570'.
[  303.165574][ T8712] netlink: 268 bytes leftover after parsing attributes in process `syz.2.561'.
[  305.338053][ T8749] netlink: 268 bytes leftover after parsing attributes in process `syz.0.571'.
[  308.069093][ T8788] zswap: compressor  not available
[  308.350591][ T8795] bond0: option peer_notif_delay: invalid value ()
[  308.360986][ T8795] bond0: option peer_notif_delay: allowed values 0 - 300000
[  308.385387][ T8794] bond0: option peer_notif_delay: invalid value ()
[  308.392162][ T8794] bond0: option peer_notif_delay: allowed values 0 - 300000
[  308.952802][ T8806] net_ratelimit: 60 callbacks suppressed
[  308.952821][ T8806] netlink: zone id is out of range
[  316.186933][ T8909] netlink: 268 bytes leftover after parsing attributes in process `syz.0.603'.
[  316.270444][ T8913] syz.3.605 (8913) used obsolete PPPIOCDETACH ioctl
[  316.604804][ T8918] netlink: 268 bytes leftover after parsing attributes in process `syz.1.606'.
[  317.394293][ T8928] netlink: 268 bytes leftover after parsing attributes in process `syz.0.608'.
[  320.770823][ T8984] netlink: 268 bytes leftover after parsing attributes in process `syz.1.618'.
[  321.253191][ T8990] netlink: zone id is out of range
[  323.425774][ T9027] netlink: 268 bytes leftover after parsing attributes in process `syz.0.627'.
[  323.519534][ T9028] netlink: 268 bytes leftover after parsing attributes in process `syz.1.626'.
[  326.090170][ T9059] netlink: zone id is out of range
[  326.738447][ T9069] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  326.957742][ T9070] netlink: 4 bytes leftover after parsing attributes in process `syz.1.635'.
[  327.021888][ T9066] netlink: 268 bytes leftover after parsing attributes in process `syz.0.634'.
[  327.558734][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  327.572512][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  328.346990][ T9091] netlink: 28 bytes leftover after parsing attributes in process `syz.1.640'.
[  328.475853][ T9097] netlink: 268 bytes leftover after parsing attributes in process `syz.2.647'.
[  328.680074][ T9085] netlink: 268 bytes leftover after parsing attributes in process `syz.0.638'.
[  329.581408][ T9116] __vm_enough_memory: pid: 9116, comm: syz.0.643, bytes: 4398046511104 not enough memory for the allocation
[  332.081886][ T9137] netlink: 268 bytes leftover after parsing attributes in process `syz.3.648'.
[  332.712597][ T9157] netlink: 268 bytes leftover after parsing attributes in process `syz.1.651'.
[  332.849946][ T9162] netlink: 268 bytes leftover after parsing attributes in process `syz.2.652'.
[  333.259679][ T9162] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  333.316337][ T9162] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  333.383340][ T9162] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  336.255782][ T9215] netlink: 268 bytes leftover after parsing attributes in process `syz.0.662'.
[  337.068340][ T9225] netlink: 28 bytes leftover after parsing attributes in process `syz.3.664'.
[  338.458139][ T9249] netlink: 268 bytes leftover after parsing attributes in process `syz.1.677'.
[  339.907032][ T5835] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  340.373488][ T9259] netlink: 268 bytes leftover after parsing attributes in process `syz.1.673'.
[  340.715594][ T9277] random: crng reseeded on system resumption
[  341.565177][ T9288] netlink: 268 bytes leftover after parsing attributes in process `syz.1.678'.
[  341.988187][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout
[  343.024504][ T9315] ucma_write: process 721 (syz.2.686) changed security contexts after opening file descriptor, this is not allowed.
[  343.279026][ T9320] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input35
[  344.251880][ T9330] netlink: 268 bytes leftover after parsing attributes in process `syz.3.682'.
[  344.430675][ T9340] netlink: zone id is out of range
[  346.626862][ T9364] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  348.203941][ T9384] netlink: 268 bytes leftover after parsing attributes in process `syz.2.699'.
[  348.859129][ T9400] random: crng reseeded on system resumption
[  350.659269][ T9419] netlink: 268 bytes leftover after parsing attributes in process `syz.3.707'.
[  351.102937][ T9436] Invalid ELF header magic: != ELF
[  351.484634][ T9442] nbd: must specify an index to disconnect
[  353.064337][ T9450] netlink: 268 bytes leftover after parsing attributes in process `syz.0.713'.
[  353.615039][ T9466] netlink: 268 bytes leftover after parsing attributes in process `syz.3.716'.
[  354.831557][ T9488] netlink: 268 bytes leftover after parsing attributes in process `syz.3.720'.
[  355.024002][ T9496] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  356.268166][ T9522] netlink: 268 bytes leftover after parsing attributes in process `syz.2.729'.
[  357.865711][ T9544] netlink: 268 bytes leftover after parsing attributes in process `syz.1.734'.
[  359.393257][ T9559] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  359.413283][ T9559] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  359.435100][ T9559] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  359.494532][ T9559] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  359.521074][ T9559] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  359.553374][ T9559] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  359.986694][ T9586] netlink: 8 bytes leftover after parsing attributes in process `syz.1.743'.
[  360.399722][ T9578] netlink: 268 bytes leftover after parsing attributes in process `syz.0.742'.
[  360.594442][ T9596] futex_wake_op: syz.3.744 tries to shift op by -9; fix this program
[  361.314742][ T5835] Bluetooth: hci0: command 0x0c1a tx timeout
[  361.473663][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout
[  361.557926][ T5841] Bluetooth: hci2: command 0x0c1a tx timeout
[  361.564759][ T5835] Bluetooth: hci3: command 0x0c1a tx timeout
[  361.748748][ T9630] netlink: 268 bytes leftover after parsing attributes in process `syz.2.747'.
[  363.553292][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout
[  363.633292][ T5835] Bluetooth: hci3: command 0x0c1a tx timeout
[  364.464390][ T9699] netlink: 8 bytes leftover after parsing attributes in process `syz.0.755'.
[  365.283203][ T9706] futex_wake_op: syz.1.756 tries to shift op by -9; fix this program
[  366.154292][ T9715] ima: policy update failed
[  366.276890][   T31] audit: type=1802 audit(4294967375.810:3): pid=9715 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.760" res=0 errno=0
[  369.150683][ T9763] netlink: 268 bytes leftover after parsing attributes in process `syz.2.770'.
[  369.927938][ T9775] netlink: 268 bytes leftover after parsing attributes in process `syz.0.774'.
[  370.738239][ T9768] random: crng reseeded on system resumption
[  370.888676][ T9794] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2)
[  371.685565][ T9804] netlink: 268 bytes leftover after parsing attributes in process `syz.1.779'.
[  371.961383][ T9792] writing to auto_msgmni has no effect
[  372.680879][ T9818] netlink: 268 bytes leftover after parsing attributes in process `syz.0.781'.
[  373.400695][ T9832] netlink: 268 bytes leftover after parsing attributes in process `syz.1.782'.
[  375.717973][ T9877] FAULT_INJECTION: forcing a failure.
[  375.717973][ T9877] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  375.795854][ T9877] CPU: 1 UID: 0 PID: 9877 Comm: syz.1.792 Not tainted syzkaller #0 PREEMPT(full) 
[  375.795898][ T9877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  375.795918][ T9877] Call Trace:
[  375.795928][ T9877]  <TASK>
[  375.795941][ T9877]  dump_stack_lvl+0x16c/0x1f0
[  375.795975][ T9877]  should_fail_ex+0x512/0x640
[  375.796009][ T9877]  should_fail_alloc_page+0xe7/0x130
[  375.796043][ T9877]  prepare_alloc_pages+0x3c2/0x610
[  375.796075][ T9877]  ? arch_stack_walk+0xa6/0x100
[  375.796102][ T9877]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  375.796135][ T9877]  ? stack_trace_save+0x8e/0xc0
[  375.796162][ T9877]  ? __pfx_stack_trace_save+0x10/0x10
[  375.796191][ T9877]  ? stack_depot_save_flags+0x29/0x9c0
[  375.796231][ T9877]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  375.796258][ T9877]  ? kasan_save_stack+0x42/0x60
[  375.796283][ T9877]  ? kasan_save_stack+0x33/0x60
[  375.796308][ T9877]  ? kasan_save_track+0x14/0x30
[  375.796334][ T9877]  ? __kasan_slab_alloc+0x89/0x90
[  375.796362][ T9877]  ? kmem_cache_alloc_noprof+0x250/0x6e0
[  375.796384][ T9877]  ? security_inode_alloc+0x3b/0x2b0
[  375.796417][ T9877]  ? inode_init_always_gfp+0xce4/0x1030
[  375.796443][ T9877]  ? do_syscall_64+0xcd/0xfa0
[  375.796470][ T9877]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.796501][ T9877]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  375.796543][ T9877]  ? policy_nodemask+0xea/0x4e0
[  375.796577][ T9877]  alloc_pages_mpol+0x1fb/0x550
[  375.796610][ T9877]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  375.796650][ T9877]  ___kmalloc_large_node+0xed/0x160
[  375.796687][ T9877]  __kmalloc_large_node_noprof+0x1c/0x70
[  375.796724][ T9877]  __kmalloc_noprof.cold+0xc/0x62
[  375.796760][ T9877]  ? sk_prot_alloc+0x1a8/0x2a0
[  375.796798][ T9877]  ? sk_prot_alloc+0x1a8/0x2a0
[  375.796829][ T9877]  sk_prot_alloc+0x1a8/0x2a0
[  375.796865][ T9877]  sk_alloc+0x36/0xc20
[  375.796890][ T9877]  can_create+0x1e5/0x630
[  375.796922][ T9877]  __sock_create+0x338/0x8d0
[  375.796963][ T9877]  __sys_socket+0x14d/0x260
[  375.797006][ T9877]  ? __pfx___sys_socket+0x10/0x10
[  375.797043][ T9877]  ? xfd_validate_state+0x61/0x180
[  375.797076][ T9877]  ? __pfx_ksys_write+0x10/0x10
[  375.797108][ T9877]  __x64_sys_socket+0x72/0xb0
[  375.797144][ T9877]  ? lockdep_hardirqs_on+0x7c/0x110
[  375.797171][ T9877]  do_syscall_64+0xcd/0xfa0
[  375.797200][ T9877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.797229][ T9877] RIP: 0033:0x7f5812d8eec9
[  375.797248][ T9877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  375.797270][ T9877] RSP: 002b:00007f5813c1b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  375.797292][ T9877] RAX: ffffffffffffffda RBX: 00007f5812fe6180 RCX: 00007f5812d8eec9
[  375.797307][ T9877] RDX: 0000000000000006 RSI: 0000000000000002 RDI: 000000000000001d
[  375.797320][ T9877] RBP: 00007f5812e11f91 R08: 0000000000000000 R09: 0000000000000000
[  375.797334][ T9877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  375.797348][ T9877] R13: 00007f5812fe6218 R14: 00007f5812fe6180 R15: 00007fff8d99d9b8
[  375.797379][ T9877]  </TASK>
[  375.802016][ T9877] IPVS: length: 7562853 != 24
[  376.521166][ T9875] netlink: 268 bytes leftover after parsing attributes in process `syz.2.793'.
[  380.522471][   T31] audit: type=1326 audit(4294967390.070:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.2.805" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f34ffd8eec9 code=0x0
[  381.972311][ T9980] FAULT_INJECTION: forcing a failure.
[  381.972311][ T9980] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  381.987497][ T9980] CPU: 1 UID: 0 PID: 9980 Comm: syz.3.810 Not tainted syzkaller #0 PREEMPT(full) 
[  381.987527][ T9980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  381.987541][ T9980] Call Trace:
[  381.987548][ T9980]  <TASK>
[  381.987557][ T9980]  dump_stack_lvl+0x16c/0x1f0
[  381.987588][ T9980]  should_fail_ex+0x512/0x640
[  381.987621][ T9980]  _copy_to_user+0x32/0xd0
[  381.987654][ T9980]  simple_read_from_buffer+0xcb/0x170
[  381.987693][ T9980]  proc_fail_nth_read+0x197/0x240
[  381.987719][ T9980]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  381.987746][ T9980]  ? rw_verify_area+0xcf/0x6c0
[  381.987767][ T9980]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  381.987791][ T9980]  vfs_read+0x1e1/0xcf0
[  381.987820][ T9980]  ? __pfx___mutex_lock+0x10/0x10
[  381.987850][ T9980]  ? __pfx_vfs_read+0x10/0x10
[  381.987884][ T9980]  ? __fget_files+0x20e/0x3c0
[  381.987929][ T9980]  ksys_read+0x12a/0x250
[  381.987953][ T9980]  ? __pfx_ksys_read+0x10/0x10
[  381.987978][ T9980]  ? fput+0x9b/0xd0
[  381.988013][ T9980]  do_syscall_64+0xcd/0xfa0
[  381.988042][ T9980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.988066][ T9980] RIP: 0033:0x7fa59078d8dc
[  381.988084][ T9980] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  381.988111][ T9980] RSP: 002b:00007fa5916c0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  381.988132][ T9980] RAX: ffffffffffffffda RBX: 00007fa5909e5fa0 RCX: 00007fa59078d8dc
[  381.988147][ T9980] RDX: 000000000000000f RSI: 00007fa5916c00a0 RDI: 0000000000000004
[  381.988160][ T9980] RBP: 00007fa5916c0090 R08: 0000000000000000 R09: 0000000000000000
[  381.988174][ T9980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  381.988187][ T9980] R13: 00007fa5909e6038 R14: 00007fa5909e5fa0 R15: 00007ffc652c21b8
[  381.988218][ T9980]  </TASK>
[  382.203107][ T9981] FAULT_INJECTION: forcing a failure.
[  382.203107][ T9981] name fail_futex, interval 1, probability 0, space 0, times 0
[  382.308066][ T9981] CPU: 0 UID: 0 PID: 9981 Comm: syz.1.811 Not tainted syzkaller #0 PREEMPT(full) 
[  382.308107][ T9981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  382.308126][ T9981] Call Trace:
[  382.308136][ T9981]  <TASK>
[  382.308148][ T9981]  dump_stack_lvl+0x16c/0x1f0
[  382.308191][ T9981]  should_fail_ex+0x512/0x640
[  382.308236][ T9981]  get_futex_key+0xff0/0x1560
[  382.308284][ T9981]  ? __pfx_get_futex_key+0x10/0x10
[  382.308326][ T9981]  ? __mutex_trylock_common+0xe9/0x250
[  382.308384][ T9981]  futex_wake+0xea/0x530
[  382.308441][ T9981]  ? __pfx_futex_wake+0x10/0x10
[  382.308512][ T9981]  do_futex+0x1e3/0x350
[  382.308558][ T9981]  ? __pfx_do_futex+0x10/0x10
[  382.308598][ T9981]  ? __might_fault+0xe3/0x190
[  382.308642][ T9981]  mm_release+0x24e/0x300
[  382.308679][ T9981]  do_exit+0x68e/0x2bf0
[  382.308733][ T9981]  ? __pfx_do_exit+0x10/0x10
[  382.308777][ T9981]  ? do_raw_spin_lock+0x12c/0x2b0
[  382.308835][ T9981]  ? find_held_lock+0x2b/0x80
[  382.308877][ T9981]  do_group_exit+0xd3/0x2a0
[  382.308926][ T9981]  get_signal+0x2671/0x26d0
[  382.308968][ T9981]  ? __lock_acquire+0x62e/0x1ce0
[  382.309021][ T9981]  ? __pfx_get_signal+0x10/0x10
[  382.309058][ T9981]  ? do_futex+0x122/0x350
[  382.309102][ T9981]  ? __pfx_do_futex+0x10/0x10
[  382.309151][ T9981]  arch_do_signal_or_restart+0x8f/0x790
[  382.309194][ T9981]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  382.309260][ T9981]  exit_to_user_mode_loop+0x85/0x130
[  382.309314][ T9981]  do_syscall_64+0x426/0xfa0
[  382.309356][ T9981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.309389][ T9981] RIP: 0033:0x7f5812d8eec9
[  382.309414][ T9981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.309445][ T9981] RSP: 002b:00007f5813c5d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  382.309474][ T9981] RAX: fffffffffffffe00 RBX: 00007f5812fe5fa8 RCX: 00007f5812d8eec9
[  382.309494][ T9981] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5812fe5fa8
[  382.309513][ T9981] RBP: 00007f5812fe5fa0 R08: 0000000000000000 R09: 0000000000000000
[  382.309532][ T9981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  382.309550][ T9981] R13: 00007f5812fe6038 R14: 00007fff8d99d8d0 R15: 00007fff8d99d9b8
[  382.309594][ T9981]  </TASK>
[  382.639085][ T9973] netlink: 268 bytes leftover after parsing attributes in process `syz.2.807'.
[  384.518596][T10030] blktrace: Concurrent blktraces are not allowed on loop2
[  384.578840][T10026] FAULT_INJECTION: forcing a failure.
[  384.578840][T10026] name failslab, interval 1, probability 0, space 0, times 0
[  384.630902][T10015] netlink: 268 bytes leftover after parsing attributes in process `syz.2.816'.
[  384.654269][T10026] CPU: 1 UID: 0 PID: 10026 Comm: syz.1.819 Not tainted syzkaller #0 PREEMPT(full) 
[  384.654314][T10026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  384.654334][T10026] Call Trace:
[  384.654345][T10026]  <TASK>
[  384.654357][T10026]  dump_stack_lvl+0x16c/0x1f0
[  384.654401][T10026]  should_fail_ex+0x512/0x640
[  384.654440][T10026]  ? __kmalloc_noprof+0xca/0x880
[  384.654496][T10026]  should_failslab+0xc2/0x120
[  384.654539][T10026]  __kmalloc_noprof+0xdd/0x880
[  384.654592][T10026]  ? slhc_init+0x3dd/0x570
[  384.654638][T10026]  ? slhc_init+0x3dd/0x570
[  384.654675][T10026]  slhc_init+0x3dd/0x570
[  384.654712][T10026]  ? kasan_save_track+0x14/0x30
[  384.654755][T10026]  slip_open+0x8ee/0x1150
[  384.654795][T10026]  ? __pfx_n_tty_close+0x10/0x10
[  384.654833][T10026]  ? __pfx_slip_open+0x10/0x10
[  384.654891][T10026]  ? down_write+0x14d/0x200
[  384.654941][T10026]  ? __pfx_slip_open+0x10/0x10
[  384.654979][T10026]  tty_ldisc_open+0x9c/0x120
[  384.655025][T10026]  tty_set_ldisc+0x32b/0x780
[  384.655077][T10026]  tty_ioctl+0xc2d/0x1680
[  384.655129][T10026]  ? __pfx_tty_ioctl+0x10/0x10
[  384.655194][T10026]  ? find_held_lock+0x2b/0x80
[  384.655229][T10026]  ? hook_file_ioctl_common+0x145/0x410
[  384.655295][T10026]  ? __fget_files+0x20e/0x3c0
[  384.655336][T10026]  ? __pfx_tty_ioctl+0x10/0x10
[  384.655389][T10026]  __x64_sys_ioctl+0x18b/0x210
[  384.655442][T10026]  do_syscall_64+0xcd/0xfa0
[  384.655483][T10026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.655515][T10026] RIP: 0033:0x7f5812d8eec9
[  384.655541][T10026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  384.655572][T10026] RSP: 002b:00007f5813c5d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  384.655601][T10026] RAX: ffffffffffffffda RBX: 00007f5812fe5fa0 RCX: 00007f5812d8eec9
[  384.655623][T10026] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 000000000000000a
[  384.655644][T10026] RBP: 00007f5812e11f91 R08: 0000000000000000 R09: 0000000000000000
[  384.655664][T10026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  384.655684][T10026] R13: 00007f5812fe6038 R14: 00007f5812fe5fa0 R15: 00007fff8d99d9b8
[  384.655731][T10026]  </TASK>
[  385.248735][T10015] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  385.263604][T10015] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  385.275301][T10015] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  386.607428][   T31] audit: type=1806 audit(4294967396.160:5): xattr="" res=-22
[  387.478283][T10067] netlink: 330 bytes leftover after parsing attributes in process `syz.3.828'.
[  388.311570][T10071] FAULT_INJECTION: forcing a failure.
[  388.311570][T10071] name failslab, interval 1, probability 0, space 0, times 0
[  388.329360][T10071] CPU: 0 UID: 0 PID: 10071 Comm: syz.2.830 Not tainted syzkaller #0 PREEMPT(full) 
[  388.329406][T10071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  388.329436][T10071] Call Trace:
[  388.329448][T10071]  <TASK>
[  388.329460][T10071]  dump_stack_lvl+0x16c/0x1f0
[  388.329507][T10071]  should_fail_ex+0x512/0x640
[  388.329549][T10071]  ? __kmalloc_cache_noprof+0x5f/0x780
[  388.329609][T10071]  should_failslab+0xc2/0x120
[  388.329654][T10071]  __kmalloc_cache_noprof+0x72/0x780
[  388.329708][T10071]  ? alloc_netdev_mqs+0xed3/0x1550
[  388.329756][T10071]  ? alloc_netdev_mqs+0xed3/0x1550
[  388.329796][T10071]  alloc_netdev_mqs+0xed3/0x1550
[  388.329847][T10071]  slip_open+0x35c/0x1150
[  388.329888][T10071]  ? __pfx___might_resched+0x10/0x10
[  388.329925][T10071]  ? __pfx_n_tty_close+0x10/0x10
[  388.329959][T10071]  ? find_held_lock+0x2b/0x80
[  388.329990][T10071]  ? __pfx_slip_open+0x10/0x10
[  388.330016][T10071]  ? down_write+0x14d/0x200
[  388.330051][T10071]  ? __pfx_slip_open+0x10/0x10
[  388.330078][T10071]  tty_ldisc_open+0x9c/0x120
[  388.330111][T10071]  tty_set_ldisc+0x32b/0x780
[  388.330147][T10071]  tty_ioctl+0xc2d/0x1680
[  388.330184][T10071]  ? __pfx_tty_ioctl+0x10/0x10
[  388.330230][T10071]  ? find_held_lock+0x2b/0x80
[  388.330253][T10071]  ? hook_file_ioctl_common+0x145/0x410
[  388.330314][T10071]  ? __fget_files+0x20e/0x3c0
[  388.330355][T10071]  ? __pfx_tty_ioctl+0x10/0x10
[  388.330408][T10071]  __x64_sys_ioctl+0x18b/0x210
[  388.330486][T10071]  do_syscall_64+0xcd/0xfa0
[  388.330527][T10071]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.330552][T10071] RIP: 0033:0x7f34ffd8eec9
[  388.330570][T10071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.330593][T10071] RSP: 002b:00007f3500b70038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  388.330614][T10071] RAX: ffffffffffffffda RBX: 00007f34fffe5fa0 RCX: 00007f34ffd8eec9
[  388.330630][T10071] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 000000000000000a
[  388.330643][T10071] RBP: 00007f34ffe11f91 R08: 0000000000000000 R09: 0000000000000000
[  388.330657][T10071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  388.330671][T10071] R13: 00007f34fffe6038 R14: 00007f34fffe5fa0 R15: 00007ffe1a29a8f8
[  388.330705][T10071]  </TASK>
[  388.977318][T10079] netlink: 268 bytes leftover after parsing attributes in process `syz.1.831'.
[  389.000567][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  389.007367][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  389.198594][T10085] netlink: 268 bytes leftover after parsing attributes in process `syz.0.832'.
[  389.721312][T10097] netlink: 28 bytes leftover after parsing attributes in process `syz.1.834'.
[  389.753205][T10097] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  390.036380][T10092] netlink: 268 bytes leftover after parsing attributes in process `syz.3.833'.
[  390.124723][T10097] batman_adv: batadv0: Removing interface: batadv_slave_1
[  391.574863][T10114] netlink: 268 bytes leftover after parsing attributes in process `syz.1.836'.
[  394.844911][T10173] 0x000200000001-0xa29656a63616329 : ""
[  394.858267][T10173] mtd: partition "" is out of reach -- disabled
[  394.882026][T10173] ftl_cs: FTL header not found.
[  395.255999][T10173] FAULT_INJECTION: forcing a failure.
[  395.255999][T10173] name fail_futex, interval 1, probability 0, space 0, times 0
[  395.274479][T10173] CPU: 1 UID: 0 PID: 10173 Comm: syz.3.850 Not tainted syzkaller #0 PREEMPT(full) 
[  395.274518][T10173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  395.274536][T10173] Call Trace:
[  395.274547][T10173]  <TASK>
[  395.274558][T10173]  dump_stack_lvl+0x16c/0x1f0
[  395.274599][T10173]  should_fail_ex+0x512/0x640
[  395.274645][T10173]  get_futex_key+0xff0/0x1560
[  395.274693][T10173]  ? __pfx_get_futex_key+0x10/0x10
[  395.274733][T10173]  ? __mutex_trylock_common+0xe9/0x250
[  395.274790][T10173]  futex_wake+0xea/0x530
[  395.274844][T10173]  ? __pfx_futex_wake+0x10/0x10
[  395.274914][T10173]  do_futex+0x1e3/0x350
[  395.274956][T10173]  ? __pfx_do_futex+0x10/0x10
[  395.274994][T10173]  ? __might_fault+0xe3/0x190
[  395.275034][T10173]  mm_release+0x24e/0x300
[  395.275071][T10173]  do_exit+0x68e/0x2bf0
[  395.275122][T10173]  ? __pfx_do_exit+0x10/0x10
[  395.275175][T10173]  ? do_raw_spin_lock+0x12c/0x2b0
[  395.275223][T10173]  ? find_held_lock+0x2b/0x80
[  395.275263][T10173]  do_group_exit+0xd3/0x2a0
[  395.275310][T10173]  get_signal+0x2671/0x26d0
[  395.275356][T10173]  ? do_vfs_ioctl+0x128/0x14f0
[  395.275404][T10173]  ? __pfx_get_signal+0x10/0x10
[  395.275439][T10173]  ? do_futex+0x122/0x350
[  395.275482][T10173]  ? __pfx_do_futex+0x10/0x10
[  395.275527][T10173]  arch_do_signal_or_restart+0x8f/0x790
[  395.275571][T10173]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  395.275636][T10173]  exit_to_user_mode_loop+0x85/0x130
[  395.275687][T10173]  do_syscall_64+0x426/0xfa0
[  395.275728][T10173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  395.275758][T10173] RIP: 0033:0x7fa59078eec9
[  395.275783][T10173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  395.275813][T10173] RSP: 002b:00007fa5916c00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  395.275842][T10173] RAX: fffffffffffffe00 RBX: 00007fa5909e5fa8 RCX: 00007fa59078eec9
[  395.275863][T10173] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5909e5fa8
[  395.275882][T10173] RBP: 00007fa5909e5fa0 R08: 0000000000000000 R09: 0000000000000000
[  395.275900][T10173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  395.275918][T10173] R13: 00007fa5909e6038 R14: 00007ffc652c20d0 R15: 00007ffc652c21b8
[  395.275962][T10173]  </TASK>
[  395.598154][T10169] FAULT_INJECTION: forcing a failure.
[  395.598154][T10169] name fail_futex, interval 1, probability 0, space 0, times 0
[  395.648290][T10169] CPU: 1 UID: 0 PID: 10169 Comm: syz.1.849 Not tainted syzkaller #0 PREEMPT(full) 
[  395.648332][T10169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  395.648351][T10169] Call Trace:
[  395.648362][T10169]  <TASK>
[  395.648374][T10169]  dump_stack_lvl+0x16c/0x1f0
[  395.648417][T10169]  should_fail_ex+0x512/0x640
[  395.648463][T10169]  get_futex_key+0x293/0x1560
[  395.648511][T10169]  ? __pfx_get_futex_key+0x10/0x10
[  395.648552][T10169]  ? __mutex_trylock_common+0xe9/0x250
[  395.648610][T10169]  futex_wake+0xea/0x530
[  395.648664][T10169]  ? __pfx_futex_wake+0x10/0x10
[  395.648734][T10169]  do_futex+0x1e3/0x350
[  395.648778][T10169]  ? __pfx_do_futex+0x10/0x10
[  395.648819][T10169]  ? __might_fault+0xe3/0x190
[  395.648861][T10169]  mm_release+0x24e/0x300
[  395.648898][T10169]  do_exit+0x68e/0x2bf0
[  395.649025][T10169]  ? __pfx_do_exit+0x10/0x10
[  395.649069][T10169]  ? do_raw_spin_lock+0x12c/0x2b0
[  395.649118][T10169]  ? find_held_lock+0x2b/0x80
[  395.649158][T10169]  do_group_exit+0xd3/0x2a0
[  395.649271][T10169]  get_signal+0x2671/0x26d0
[  395.649329][T10169]  ? __pfx_get_signal+0x10/0x10
[  395.649394][T10169]  ? do_futex+0x122/0x350
[  395.649440][T10169]  ? __pfx_do_futex+0x10/0x10
[  395.649490][T10169]  arch_do_signal_or_restart+0x8f/0x790
[  395.649534][T10169]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  395.649587][T10169]  ? __pfx_do_pwritev+0x10/0x10
[  395.649627][T10169]  exit_to_user_mode_loop+0x85/0x130
[  395.649676][T10169]  do_syscall_64+0x426/0xfa0
[  395.649715][T10169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  395.649747][T10169] RIP: 0033:0x7f5812d8eec9
[  395.649773][T10169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  395.649804][T10169] RSP: 002b:00007f5813c5d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  395.649833][T10169] RAX: fffffffffffffe00 RBX: 00007f5812fe5fa8 RCX: 00007f5812d8eec9
[  395.649853][T10169] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5812fe5fa8
[  395.649951][T10169] RBP: 00007f5812fe5fa0 R08: 0000000000000000 R09: 0000000000000000
[  395.649969][T10169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  395.649989][T10169] R13: 00007f5812fe6038 R14: 00007fff8d99d8d0 R15: 00007fff8d99d9b8
[  395.650032][T10169]  </TASK>
[  396.681288][T10191] netlink: 28 bytes leftover after parsing attributes in process `syz.2.855'.
[  396.690723][T10191] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  396.725575][T10186] netlink: 268 bytes leftover after parsing attributes in process `syz.0.852'.
[  396.819784][T10191] batman_adv: batadv0: Removing interface: batadv_slave_1
[  397.079736][T10186] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  397.093324][T10186] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  397.109083][T10186] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  397.972921][T10201] netlink: 268 bytes leftover after parsing attributes in process `syz.3.856'.
[  399.333936][T10221] netlink: 186 bytes leftover after parsing attributes in process `syz.1.859'.
[  400.797238][T10233] netlink: 268 bytes leftover after parsing attributes in process `syz.2.860'.
[  401.382357][T10245] FAULT_INJECTION: forcing a failure.
[  401.382357][T10245] name failslab, interval 1, probability 0, space 0, times 0
[  401.395505][T10245] CPU: 1 UID: 0 PID: 10245 Comm: syz.2.865 Not tainted syzkaller #0 PREEMPT(full) 
[  401.395556][T10245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  401.395575][T10245] Call Trace:
[  401.395586][T10245]  <TASK>
[  401.395598][T10245]  dump_stack_lvl+0x16c/0x1f0
[  401.395642][T10245]  should_fail_ex+0x512/0x640
[  401.395691][T10245]  should_failslab+0xc2/0x120
[  401.395737][T10245]  kmem_cache_alloc_node_noprof+0x78/0x770
[  401.395772][T10245]  ? __alloc_skb+0x2b2/0x380
[  401.395817][T10245]  ? __alloc_skb+0x2b2/0x380
[  401.395849][T10245]  __alloc_skb+0x2b2/0x380
[  401.395885][T10245]  ? __pfx___alloc_skb+0x10/0x10
[  401.395938][T10245]  new_skb+0x21/0x230
[  401.395990][T10245]  aoecmd_cfg+0x21c/0x7d0
[  401.396026][T10245]  ? __pfx_aoecmd_cfg+0x10/0x10
[  401.396071][T10245]  ? common_file_perm+0x1a9/0x340
[  401.396134][T10245]  ? __pfx_aoechr_write+0x10/0x10
[  401.396186][T10245]  ? aoechr_write+0x120/0x160
[  401.396236][T10245]  aoechr_write+0x120/0x160
[  401.396289][T10245]  vfs_writev+0x5dc/0xde0
[  401.396334][T10245]  ? __pfx_vfs_writev+0x10/0x10
[  401.396368][T10245]  ? kmem_cache_free+0x2d4/0x6c0
[  401.396402][T10245]  ? putname+0x154/0x1a0
[  401.396493][T10245]  ? do_writev+0x132/0x340
[  401.396531][T10245]  do_writev+0x132/0x340
[  401.396565][T10245]  ? __pfx_do_writev+0x10/0x10
[  401.396613][T10245]  do_syscall_64+0xcd/0xfa0
[  401.396656][T10245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.396690][T10245] RIP: 0033:0x7f34ffd8eec9
[  401.396717][T10245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.396749][T10245] RSP: 002b:00007f3500b70038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  401.396781][T10245] RAX: ffffffffffffffda RBX: 00007f34fffe5fa0 RCX: 00007f34ffd8eec9
[  401.396802][T10245] RDX: 0000000000000004 RSI: 0000200000000140 RDI: 0000000000000006
[  401.396823][T10245] RBP: 00007f34ffe11f91 R08: 0000000000000000 R09: 0000000000000000
[  401.396843][T10245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  401.396863][T10245] R13: 00007f34fffe6038 R14: 00007f34fffe5fa0 R15: 00007ffe1a29a8f8
[  401.396908][T10245]  </TASK>
[  401.397018][T10245] aoe: skb alloc failure
[  401.666514][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  401.688032][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  402.897038][T10275] svc: failed to register nfsdv3 RPC service (errno 111).
[  402.907444][T10275] svc: failed to register nfsaclv3 RPC service (errno 111).
[  404.606854][T10295] netlink: 268 bytes leftover after parsing attributes in process `syz.3.875'.
[  405.652353][T10310] netlink: 186 bytes leftover after parsing attributes in process `syz.3.879'.
[  406.183988][T10303] netlink: 268 bytes leftover after parsing attributes in process `syz.1.876'.
[  408.983944][T10345] netlink: 268 bytes leftover after parsing attributes in process `syz.3.887'.
[  409.147009][T10347] netlink: 4 bytes leftover after parsing attributes in process `syz.2.888'.
[  409.557624][T10353] netlink: 252 bytes leftover after parsing attributes in process `syz.2.890'.
[  409.618445][T10358] random: crng reseeded on system resumption
[  409.622913][T10353] netlink: 252 bytes leftover after parsing attributes in process `syz.2.890'.
[  410.552110][T10359] netlink: 16 bytes leftover after parsing attributes in process `syz.0.891'.
[  410.754602][T10372] netlink: 186 bytes leftover after parsing attributes in process `syz.2.892'.

syzkaller
syzkaller login: [  413.017110][T10415] netlink: 268 bytes leftover after parsing attributes in process `syz.0.900'.
[  413.625789][T10425] netlink: 186 bytes leftover after parsing attributes in process `syz.0.904'.
[  413.834224][T10436] netlink: 206 bytes leftover after parsing attributes in process `syz.2.906'.
[  416.058514][T10492] zswap: compressor  not available
[  417.550138][T10508] kexec: Could not allocate control_code_buffer
[  418.064939][T10525] could not allocate digest TFM handle 
[  419.204562][T10562] netlink: 32 bytes leftover after parsing attributes in process `syz.2.930'.
[  419.213786][T10551] netlink: 32 bytes leftover after parsing attributes in process `syz.2.930'.
[  420.322659][T10576] FAULT_INJECTION: forcing a failure.
[  420.322659][T10576] name failslab, interval 1, probability 0, space 0, times 0
[  420.401475][T10576] CPU: 0 UID: 0 PID: 10576 Comm: syz.3.935 Not tainted syzkaller #0 PREEMPT(full) 
[  420.401519][T10576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  420.401538][T10576] Call Trace:
[  420.401548][T10576]  <TASK>
[  420.401560][T10576]  dump_stack_lvl+0x16c/0x1f0
[  420.401608][T10576]  should_fail_ex+0x512/0x640
[  420.401651][T10576]  ? __kmalloc_cache_noprof+0x5f/0x780
[  420.401711][T10576]  should_failslab+0xc2/0x120
[  420.401758][T10576]  __kmalloc_cache_noprof+0x72/0x780
[  420.401814][T10576]  ? resv_map_alloc+0x7e/0x400
[  420.401867][T10576]  ? resv_map_alloc+0x7e/0x400
[  420.401911][T10576]  resv_map_alloc+0x7e/0x400
[  420.401960][T10576]  hugetlbfs_get_inode+0x33f/0x730
[  420.401994][T10576]  ? security_capable+0x7e/0x260
[  420.402045][T10576]  hugetlb_file_setup+0x38d/0x620
[  420.402087][T10576]  newseg+0xa74/0xe60
[  420.402126][T10576]  ? __pfx_newseg+0x10/0x10
[  420.402155][T10576]  ? find_held_lock+0x2b/0x80
[  420.402200][T10576]  ? ipcget+0xa98/0xfa0
[  420.402241][T10576]  ipcget+0xaf0/0xfa0
[  420.402294][T10576]  ? __pfx___might_resched+0x10/0x10
[  420.402329][T10576]  ? __pfx_ipcget+0x10/0x10
[  420.402366][T10576]  ? __x64_sys_futex+0x1e0/0x4c0
[  420.402409][T10576]  ? __x64_sys_futex+0x1e9/0x4c0
[  420.402463][T10576]  __x64_sys_shmget+0x13b/0x1b0
[  420.402499][T10576]  ? __pfx___x64_sys_shmget+0x10/0x10
[  420.402540][T10576]  ? rcu_is_watching+0x12/0xc0
[  420.402581][T10576]  do_syscall_64+0xcd/0xfa0
[  420.402624][T10576]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.402657][T10576] RIP: 0033:0x7fa59078eec9
[  420.402684][T10576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.402716][T10576] RSP: 002b:00007fa59169f038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d
[  420.402748][T10576] RAX: ffffffffffffffda RBX: 00007fa5909e6090 RCX: 00007fa59078eec9
[  420.402769][T10576] RDX: 000000000000ffff RSI: 0000000000000006 RDI: 0000000000000004
[  420.402795][T10576] RBP: 00007fa590811f91 R08: 0000000000000000 R09: 0000000000000000
[  420.402815][T10576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  420.402835][T10576] R13: 00007fa5909e6128 R14: 00007fa5909e6090 R15: 00007ffc652c21b8
[  420.402882][T10576]  </TASK>
[  421.324529][T10589] deleting an unspecified loop device is not supported.
[  421.722494][T10595] vivid-003: =================  START STATUS  =================
[  421.732594][T10595] vivid-003: Radio HW Seek Mode: Bounded
[  421.763136][T10595] vivid-003: Radio Programmable HW Seek: false
[  421.769473][T10595] vivid-003: RDS Rx I/O Mode: Block I/O
[  421.783082][T10595] vivid-003: Generate RBDS Instead of RDS: false
[  421.844658][T10595] vivid-003: RDS Reception: true
[  421.850133][T10595] vivid-003: RDS Program Type: 0 inactive
[  421.904557][T10595] vivid-003: RDS PS Name:  inactive
[  421.909952][T10595] vivid-003: RDS Radio Text:  inactive
[  421.952170][T10595] vivid-003: RDS Traffic Announcement: false inactive
[  421.962398][T10595] vivid-003: RDS Traffic Program: false inactive
[  421.969761][T10595] vivid-003: RDS Music: false inactive
[  421.975723][T10595] vivid-003: ==================  END STATUS  ==================
[  422.122933][ T5835] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  422.364795][T10605] netlink: 334 bytes leftover after parsing attributes in process `syz.3.942'.
[  422.728786][T10598] netlink: 268 bytes leftover after parsing attributes in process `syz.1.940'.
[  424.207930][T10604] Bluetooth: hci3: command 0x0c1a tx timeout
[  425.091479][T10637] netlink: 28 bytes leftover after parsing attributes in process `syz.2.949'.
[  425.296156][T10645] vhci_hcd: invalid port number 255
[  427.231588][T10679] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff81646c1a (__mcheck_cpu_init_prepare_banks+0x18a/0x380)
[  427.247380][T10679] Call Trace:
[  427.250667][T10679]  <TASK>
[  427.253619][T10679]  ? __pfx___mcheck_cpu_init_prepare_banks+0x10/0x10
[  427.260326][T10679]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  427.266247][T10679]  ? __pfx_call_function_single_prep_ipi+0x10/0x10
[  427.272782][T10679]  mce_cpu_restart+0xd9/0x1f0
[  427.277480][T10679]  ? __pfx_mce_cpu_restart+0x10/0x10
[  427.282790][T10679]  smp_call_function_many_cond+0x122a/0x1600
[  427.288806][T10679]  ? __pfx_mce_cpu_restart+0x10/0x10
[  427.294178][T10679]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  427.300038][T10679]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  427.306421][T10679]  ? __pfx___try_to_del_timer_sync+0x10/0x10
[  427.312569][T10679]  ? __pfx_mce_cpu_restart+0x10/0x10
[  427.317924][T10679]  on_each_cpu_cond_mask+0x40/0x90
[  427.323075][T10679]  set_bank+0x240/0x3a0
[  427.327267][T10679]  ? __pfx_set_bank+0x10/0x10
[  427.331982][T10679]  ? find_held_lock+0x2b/0x80
[  427.336751][T10679]  ? __pfx_set_bank+0x10/0x10
[  427.341462][T10679]  dev_attr_store+0x58/0x80
[  427.346006][T10679]  ? __pfx_dev_attr_store+0x10/0x10
[  427.351239][T10679]  sysfs_kf_write+0xf2/0x150
[  427.355864][T10679]  kernfs_fop_write_iter+0x3af/0x570
[  427.361201][T10679]  ? __pfx_sysfs_kf_write+0x10/0x10
[  427.366438][T10679]  vfs_write+0x7d3/0x11d0
[  427.370799][T10679]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  427.376649][T10679]  ? __pfx___mutex_lock+0x10/0x10
[  427.381702][T10679]  ? __pfx_vfs_write+0x10/0x10
[  427.386534][T10679]  ksys_write+0x12a/0x250
[  427.390894][T10679]  ? __pfx_ksys_write+0x10/0x10
[  427.395791][T10679]  do_syscall_64+0xcd/0xfa0
[  427.400334][T10679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.406250][T10679] RIP: 0033:0x7fa59078eec9
[  427.410688][T10679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  427.430322][T10679] RSP: 002b:00007fa59169f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  427.438763][T10679] RAX: ffffffffffffffda RBX: 00007fa5909e6090 RCX: 00007fa59078eec9
[  427.446758][T10679] RDX: 0000000000000003 RSI: 0000200000000240 RDI: 0000000000000003
[  427.454841][T10679] RBP: 00007fa590811f91 R08: 0000000000000000 R09: 0000000000000000
[  427.462846][T10679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  427.470841][T10679] R13: 00007fa5909e6128 R14: 00007fa5909e6090 R15: 00007ffc652c21b8
[  427.478860][T10679]  </TASK>
[  428.193282][T10690] mkiss: ax0: crc mode is auto.
[  428.285228][T10694] netlink: 'syz.2.957': attribute type 11 has an invalid length.
[  428.332134][T10695] ptp ptp0: new virtual clock ptp1
[  428.362337][T10694] netlink: 'syz.2.957': attribute type 11 has an invalid length.
[  428.395486][T10695] ptp ptp0: new virtual clock ptp2
[  428.428715][T10695] ptp ptp0: new virtual clock ptp3
[  428.453180][T10694] netlink: 'syz.2.957': attribute type 11 has an invalid length.
[  428.473520][T10695] ptp ptp0: guarantee physical clock free running
[  428.670226][T10698] netlink: 268 bytes leftover after parsing attributes in process `syz.3.958'.
[  429.030708][T10698] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  429.084116][T10698] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  429.097625][T10698] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  429.215111][T10706] netlink: 268 bytes leftover after parsing attributes in process `syz.0.959'.
[  429.981584][T10730] netlink: 4 bytes leftover after parsing attributes in process `syz.0.965'.
[  429.995308][T10730] random: crng reseeded on system resumption
[  430.832974][T10750] FAULT_INJECTION: forcing a failure.
[  430.832974][T10750] name fail_futex, interval 1, probability 0, space 0, times 0
[  430.857460][T10750] CPU: 0 UID: 0 PID: 10750 Comm: syz.2.969 Not tainted syzkaller #0 PREEMPT(full) 
[  430.857500][T10750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  430.857518][T10750] Call Trace:
[  430.857527][T10750]  <TASK>
[  430.857539][T10750]  dump_stack_lvl+0x16c/0x1f0
[  430.857579][T10750]  should_fail_ex+0x512/0x640
[  430.857626][T10750]  get_futex_key+0x1d0/0x1560
[  430.857672][T10750]  ? __pfx_get_futex_key+0x10/0x10
[  430.857738][T10750]  futex_wake+0xea/0x530
[  430.857786][T10750]  ? trace_kmem_cache_alloc+0x28/0xc0
[  430.857836][T10750]  ? __pfx_futex_wake+0x10/0x10
[  430.857892][T10750]  ? errseq_sample+0x53/0x70
[  430.857932][T10750]  ? file_init_path+0x4fe/0x760
[  430.857979][T10750]  do_futex+0x1e3/0x350
[  430.858019][T10750]  ? __pfx_do_futex+0x10/0x10
[  430.858061][T10750]  ? fd_install+0x225/0x750
[  430.858100][T10750]  __x64_sys_futex+0x1e0/0x4c0
[  430.858145][T10750]  ? __sys_socket+0xac/0x260
[  430.858195][T10750]  ? __pfx___x64_sys_futex+0x10/0x10
[  430.858239][T10750]  ? xfd_validate_state+0x61/0x180
[  430.858282][T10750]  ? __pfx_do_writev+0x10/0x10
[  430.858326][T10750]  do_syscall_64+0xcd/0xfa0
[  430.858367][T10750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  430.858399][T10750] RIP: 0033:0x7f34ffd8eec9
[  430.858424][T10750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  430.858453][T10750] RSP: 002b:00007f3500b4f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  430.858482][T10750] RAX: ffffffffffffffda RBX: 00007f34fffe6098 RCX: 00007f34ffd8eec9
[  430.858502][T10750] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f34fffe609c
[  430.858520][T10750] RBP: 00007f34fffe6090 R08: 00007f3500b71000 R09: 0000000000000000
[  430.858540][T10750] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000000
[  430.858557][T10750] R13: 00007f34fffe6128 R14: 00007ffe1a29a810 R15: 00007ffe1a29a8f8
[  430.858601][T10750]  </TASK>

getty: ttyS0: read error: Resource temporarily unavailable
[  437.688169][T10604] Bluetooth: hci3: Unable to find connection for big 0xd2
[  437.719317][T10876] netlink: 268 bytes leftover after parsing attributes in process `syz.0.993'.
[  438.555389][T10900] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  440.637576][T10936] input: f¬
 as /devices/virtual/input/input36
[  441.835224][T10950] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1009'.
[  442.024207][T10959] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1010'.
[  442.999112][T10976] capability: warning: `' uses 32-bit capabilities (legacy support in use)
[  443.590574][T10962] zswap: compressor  not available
[  443.836039][T10991] FAULT_INJECTION: forcing a failure.
[  443.836039][T10991] name failslab, interval 1, probability 0, space 0, times 0
[  443.887279][T10991] CPU: 0 UID: 0 PID: 10991 Comm: syz.1.1017 Not tainted syzkaller #0 PREEMPT(full) 
[  443.887311][T10991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  443.887325][T10991] Call Trace:
[  443.887332][T10991]  <TASK>
[  443.887341][T10991]  dump_stack_lvl+0x16c/0x1f0
[  443.887374][T10991]  should_fail_ex+0x512/0x640
[  443.887402][T10991]  ? fs_reclaim_acquire+0xae/0x150
[  443.887436][T10991]  should_failslab+0xc2/0x120
[  443.887468][T10991]  kmem_cache_alloc_noprof+0x75/0x6e0
[  443.887492][T10991]  ? __kernfs_new_node+0xd2/0x8e0
[  443.887531][T10991]  ? __kernfs_new_node+0xd2/0x8e0
[  443.887558][T10991]  __kernfs_new_node+0xd2/0x8e0
[  443.887599][T10991]  ? __pfx___kernfs_new_node+0x10/0x10
[  443.887638][T10991]  ? find_held_lock+0x2b/0x80
[  443.887664][T10991]  ? kernfs_root+0xee/0x2a0
[  443.887700][T10991]  kernfs_new_node+0x13c/0x1e0
[  443.887740][T10991]  __kernfs_create_file+0x53/0x350
[  443.887768][T10991]  sysfs_add_file_mode_ns+0x207/0x3c0
[  443.887804][T10991]  internal_create_group+0x578/0xf30
[  443.887847][T10991]  ? __pfx_internal_create_group+0x10/0x10
[  443.887884][T10991]  ? kernfs_create_link+0x1bd/0x240
[  443.887912][T10991]  internal_create_groups+0x9d/0x150
[  443.887947][T10991]  device_add+0x731/0x1aa0
[  443.887981][T10991]  ? __pfx_device_add+0x10/0x10
[  443.888008][T10991]  ? __pfx___might_resched+0x10/0x10
[  443.888033][T10991]  ? is_dynamic_key+0xb4/0x160
[  443.888076][T10991]  __add_disk+0x457/0xf00
[  443.888111][T10991]  add_disk_fwnode+0x13f/0x5d0
[  443.888144][T10991]  nbd_dev_add+0x783/0xbb0
[  443.888171][T10991]  ? __pfx_nbd_dev_add+0x10/0x10
[  443.888215][T10991]  ? bpf_lsm_capable+0x9/0x10
[  443.888248][T10991]  ? __radix_tree_lookup+0x21f/0x2c0
[  443.888277][T10991]  nbd_genl_connect+0x8b0/0x1c60
[  443.888311][T10991]  ? __pfx_nbd_genl_connect+0x10/0x10
[  443.888340][T10991]  ? __nla_parse+0x40/0x60
[  443.888379][T10991]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  443.888417][T10991]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  443.888462][T10991]  genl_family_rcv_msg_doit+0x209/0x2f0
[  443.888501][T10991]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  443.888537][T10991]  ? genl_get_cmd+0x194/0x580
[  443.888584][T10991]  ? __radix_tree_lookup+0x21f/0x2c0
[  443.888612][T10991]  genl_rcv_msg+0x55c/0x800
[  443.888650][T10991]  ? __pfx_genl_rcv_msg+0x10/0x10
[  443.888686][T10991]  ? __pfx_nbd_genl_connect+0x10/0x10
[  443.888726][T10991]  netlink_rcv_skb+0x158/0x420
[  443.888756][T10991]  ? __pfx_genl_rcv_msg+0x10/0x10
[  443.888792][T10991]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  443.888835][T10991]  ? netlink_deliver_tap+0x1ae/0xd30
[  443.888868][T10991]  genl_rcv+0x28/0x40
[  443.888897][T10991]  netlink_unicast+0x5a7/0x870
[  443.888932][T10991]  ? __pfx_netlink_unicast+0x10/0x10
[  443.888978][T10991]  netlink_sendmsg+0x8c8/0xdd0
[  443.889014][T10991]  ? __pfx_netlink_sendmsg+0x10/0x10
[  443.889048][T10991]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  443.889087][T10991]  ____sys_sendmsg+0xa98/0xc70
[  443.889123][T10991]  ? copy_msghdr_from_user+0x10a/0x160
[  443.889151][T10991]  ? __pfx_____sys_sendmsg+0x10/0x10
[  443.889194][T10991]  ? __pfx_futex_wake_mark+0x10/0x10
[  443.889237][T10991]  ___sys_sendmsg+0x134/0x1d0
[  443.889267][T10991]  ? __pfx____sys_sendmsg+0x10/0x10
[  443.889335][T10991]  __sys_sendmsg+0x16d/0x220
[  443.889363][T10991]  ? __pfx___sys_sendmsg+0x10/0x10
[  443.889390][T10991]  ? __x64_sys_futex+0x1e0/0x4c0
[  443.889442][T10991]  do_syscall_64+0xcd/0xfa0
[  443.889472][T10991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  443.889496][T10991] RIP: 0033:0x7f5812d8eec9
[  443.889514][T10991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  443.889537][T10991] RSP: 002b:00007f5813c5d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  443.889558][T10991] RAX: ffffffffffffffda RBX: 00007f5812fe5fa0 RCX: 00007f5812d8eec9
[  443.889578][T10991] RDX: 0000000020040000 RSI: 0000200000000500 RDI: 0000000000000005
[  443.889592][T10991] RBP: 00007f5812e11f91 R08: 0000000000000000 R09: 0000000000000000
[  443.889605][T10991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  443.889619][T10991] R13: 00007f5812fe6038 R14: 00007f5812fe5fa0 R15: 00007fff8d99d9b8
[  443.889651][T10991]  </TASK>
[  444.340638][T11000] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  444.541128][T11004] __vm_enough_memory: pid: 11004, comm: syz.2.1019, bytes: 4398046511104 not enough memory for the allocation
[  444.679676][T10991] nbd: failed to add new device

syzkaller
syzkaller login: [  445.170174][T11014] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1020'.
[  445.462943][T11027] FAULT_INJECTION: forcing a failure.
[  445.462943][T11027] name failslab, interval 1, probability 0, space 0, times 0
[  445.579999][T11027] CPU: 1 UID: 0 PID: 11027 Comm: syz.1.1024 Not tainted syzkaller #0 PREEMPT(full) 
[  445.580042][T11027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  445.580056][T11027] Call Trace:
[  445.580064][T11027]  <TASK>
[  445.580073][T11027]  dump_stack_lvl+0x16c/0x1f0
[  445.580105][T11027]  should_fail_ex+0x512/0x640
[  445.580134][T11027]  ? __kmalloc_cache_noprof+0x5f/0x780
[  445.580176][T11027]  should_failslab+0xc2/0x120
[  445.580209][T11027]  __kmalloc_cache_noprof+0x72/0x780
[  445.580248][T11027]  ? __request_region+0x5c/0xf0
[  445.580287][T11027]  ? __request_region+0x5c/0xf0
[  445.580319][T11027]  __request_region+0x5c/0xf0
[  445.580355][T11027]  serial8250_request_std_resource+0x226/0x360
[  445.580401][T11027]  serial8250_config_port+0x7c/0x5040
[  445.580430][T11027]  ? free_resource.part.0+0x2bb/0x350
[  445.580465][T11027]  ? __release_region+0x1d1/0x3a0
[  445.580499][T11027]  ? __pfx_serial8250_config_port+0x10/0x10
[  445.580524][T11027]  ? __pfx___release_region+0x10/0x10
[  445.580565][T11027]  univ8250_config_port+0x276/0x3b0
[  445.580599][T11027]  ? serial8250_release_std_resource+0x204/0x2e0
[  445.580643][T11027]  uart_ioctl+0xfd5/0x3080
[  445.580695][T11027]  ? __pfx_uart_ioctl+0x10/0x10
[  445.580732][T11027]  ? tomoyo_path_number_perm+0x18d/0x580
[  445.580776][T11027]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  445.580819][T11027]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  445.580863][T11027]  ? __pfx_uart_ioctl+0x10/0x10
[  445.580902][T11027]  tty_ioctl+0x661/0x1680
[  445.580940][T11027]  ? __pfx_tty_ioctl+0x10/0x10
[  445.580985][T11027]  ? find_held_lock+0x2b/0x80
[  445.581009][T11027]  ? hook_file_ioctl_common+0x145/0x410
[  445.581055][T11027]  ? __fget_files+0x20e/0x3c0
[  445.581089][T11027]  ? __pfx_tty_ioctl+0x10/0x10
[  445.581139][T11027]  __x64_sys_ioctl+0x18b/0x210
[  445.581191][T11027]  do_syscall_64+0xcd/0xfa0
[  445.581233][T11027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.581268][T11027] RIP: 0033:0x7f5812d8eec9
[  445.581294][T11027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  445.581327][T11027] RSP: 002b:00007f5813c5d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  445.581359][T11027] RAX: ffffffffffffffda RBX: 00007f5812fe5fa0 RCX: 00007f5812d8eec9
[  445.581380][T11027] RDX: 0000000000000000 RSI: 0000000000005453 RDI: 0000000000000006
[  445.581400][T11027] RBP: 00007f5812e11f91 R08: 0000000000000000 R09: 0000000000000000
[  445.581416][T11027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  445.581434][T11027] R13: 00007f5812fe6038 R14: 00007f5812fe5fa0 R15: 00007fff8d99d9b8
[  445.581481][T11027]  </TASK>
[  447.764933][T11075] svc: failed to register nfsdv3 RPC service (errno 111).
[  447.809793][T11075] svc: failed to register nfsaclv3 RPC service (errno 111).
[  448.469808][T10604] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  450.437895][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  450.437988][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  451.045006][T11125] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1044'.
[  451.762133][T11131] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1045'.
[  452.150507][T11131] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  452.217402][T11131] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  452.240266][T11131] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  452.763862][T11152] FAULT_INJECTION: forcing a failure.
[  452.763862][T11152] name failslab, interval 1, probability 0, space 0, times 0
[  452.797274][T11152] CPU: 1 UID: 0 PID: 11152 Comm: syz.0.1049 Not tainted syzkaller #0 PREEMPT(full) 
[  452.797319][T11152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  452.797338][T11152] Call Trace:
[  452.797349][T11152]  <TASK>
[  452.797362][T11152]  dump_stack_lvl+0x16c/0x1f0
[  452.797407][T11152]  should_fail_ex+0x512/0x640
[  452.797450][T11152]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  452.797490][T11152]  should_failslab+0xc2/0x120
[  452.797535][T11152]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  452.797572][T11152]  ? shmem_alloc_inode+0x25/0x50
[  452.797622][T11152]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  452.797661][T11152]  ? shmem_alloc_inode+0x25/0x50
[  452.797701][T11152]  shmem_alloc_inode+0x25/0x50
[  452.797741][T11152]  alloc_inode+0x61/0x240
[  452.797787][T11152]  new_inode+0x22/0x1c0
[  452.797827][T11152]  ? trace_cap_capable+0x18d/0x200
[  452.797874][T11152]  shmem_get_inode+0x19a/0xfb0
[  452.797921][T11152]  ? __vm_enough_memory+0x184/0x3f0
[  452.797967][T11152]  __shmem_file_setup+0x279/0x330
[  452.798024][T11152]  shmem_zero_setup+0x93/0x1a0
[  452.798063][T11152]  __mmap_region+0x2076/0x27a0
[  452.798103][T11152]  ? __pfx___mmap_region+0x10/0x10
[  452.798133][T11152]  ? finish_task_switch.isra.0+0x21c/0xc10
[  452.798180][T11152]  ? rcu_is_watching+0x12/0xc0
[  452.798215][T11152]  ? finish_task_switch.isra.0+0x221/0xc10
[  452.798250][T11152]  ? lockdep_hardirqs_on+0x7c/0x110
[  452.798289][T11152]  ? finish_task_switch.isra.0+0x221/0xc10
[  452.798364][T11152]  ? __pfx___schedule+0x10/0x10
[  452.798448][T11152]  ? trace_cap_capable+0x18d/0x200
[  452.798508][T11152]  mmap_region+0x1ab/0x3f0
[  452.798540][T11152]  ? __get_unmapped_area+0x267/0x440
[  452.798588][T11152]  do_mmap+0xa3e/0x1210
[  452.798639][T11152]  ? __pfx_do_mmap+0x10/0x10
[  452.798682][T11152]  ? __pfx_down_write_killable+0x10/0x10
[  452.798737][T11152]  vm_mmap_pgoff+0x29e/0x470
[  452.798787][T11152]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  452.798831][T11152]  ? ksys_shmdt+0x560/0x700
[  452.798891][T11152]  ? __x64_sys_futex+0x1e0/0x4c0
[  452.798938][T11152]  ? __x64_sys_futex+0x1e9/0x4c0
[  452.798991][T11152]  ksys_mmap_pgoff+0x7d/0x5c0
[  452.799032][T11152]  ? xfd_validate_state+0x61/0x180
[  452.799087][T11152]  __x64_sys_mmap+0x125/0x190
[  452.799142][T11152]  do_syscall_64+0xcd/0xfa0
[  452.799190][T11152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.799223][T11152] RIP: 0033:0x7f01d4b8eec9
[  452.799250][T11152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  452.799282][T11152] RSP: 002b:00007f01d5a01038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  452.799314][T11152] RAX: ffffffffffffffda RBX: 00007f01d4de6090 RCX: 00007f01d4b8eec9
[  452.799335][T11152] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000
[  452.799355][T11152] RBP: 00007f01d4c11f91 R08: 0000000000000401 R09: 0000000000008000
[  452.799375][T11152] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  452.799395][T11152] R13: 00007f01d4de6128 R14: 00007f01d4de6090 R15: 00007fff7f463ab8
[  452.799440][T11152]  </TASK>
[  453.609455][T11159] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1050'.
[  453.712302][T11156] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1050'.
[  453.759655][T11156] bridge0: port 2(bridge_slave_1) entered disabled state
[  453.837062][T11156] bridge_slave_1 (unregistering): left allmulticast mode
[  453.873513][T11156] bridge_slave_1 (unregistering): left promiscuous mode
[  453.880731][T11156] bridge0: port 2(bridge_slave_1) entered disabled state
[  454.502533][T11172] random: crng reseeded on system resumption
[  454.960962][T11176] Console: switching to colour VGA+ 80x25
[  455.346946][T11184] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1056'.
[  457.471333][T10604] Bluetooth: hci1: Malformed LE Event: 0x1d
[  457.838005][T11252] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  457.863275][T11252] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  458.168613][T11252] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  458.215054][T11252] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  458.242102][T11252] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  458.274731][T11270] cifs: Unknown parameter 'T.ŸÜÛæ¨Å¼c[ŸÐê€$â��æµÈ)ü±UóÑnEó-Ê™¾l®öÚ-ºŒ	�-¾_€™¯Ôåáª5Zäoåé¢mžÐfwYÍhº*/ÿxD
lÝ©Š×ígÕkÇ�Aí³ùÏ7ÍØØ9’�ôXöa/fê_ÿAR£ˆ™�‘ÈxM	‚v¬—pÿ±$^;ôØq‡3±«£n졵-
6�©+e„k�„¾ñÇ<°kœcÔ)n.üeMÍ÷Na¨�t®ÐSMÎÆ1,'
[  458.326617][T11252] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  459.604478][T11289] hub 8-0:1.0: USB hub found
[  459.621353][T11289] hub 8-0:1.0: 1 port detected
[  459.873129][T10604] Bluetooth: hci0: command 0x0c1a tx timeout
[  460.193140][T10604] Bluetooth: hci1: command 0x0c1a tx timeout
[  460.273250][T10604] Bluetooth: hci3: command 0x0c1a tx timeout
[  460.280254][T10604] Bluetooth: hci2: command 0x0c1a tx timeout
[  460.382217][T11301] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1078'.
[  461.963027][T10604] Bluetooth: hci0: command 0x0c1a tx timeout
[  462.353115][T10604] Bluetooth: hci3: command 0x0c1a tx timeout
[  465.094159][T11345] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1087'.
[  469.982923][T11410] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1102'.
[  472.273926][T11446] random: crng reseeded on system resumption
[  473.557695][T11460] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1112'.
[  475.075892][ T5841] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  475.088164][ T5841] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  475.097192][ T5841] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  475.108656][ T5841] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  475.116952][ T5841] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  476.547321][T11493] chnl_net:caif_netlink_parms(): no params data found
[  477.233954][T10604] Bluetooth: hci4: command tx timeout
[  478.486503][T11493] bridge0: port 1(bridge_slave_0) entered blocking state
[  478.500614][T11493] bridge0: port 1(bridge_slave_0) entered disabled state
[  478.519242][T11493] bridge_slave_0: entered allmulticast mode
[  478.563213][T11493] bridge_slave_0: entered promiscuous mode
[  478.615382][T11493] bridge0: port 2(bridge_slave_1) entered blocking state
[  478.622590][T11493] bridge0: port 2(bridge_slave_1) entered disabled state
[  478.668713][T11493] bridge_slave_1: entered allmulticast mode
[  478.713247][T11493] bridge_slave_1: entered promiscuous mode
[  479.281045][T11493] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  479.324725][T10604] Bluetooth: hci4: command tx timeout
[  479.343322][T11493] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  479.777434][T11531] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1124'.
[  480.570300][T11493] team0: Port device team_slave_0 added
[  480.599757][T11493] team0: Port device team_slave_1 added
[  480.623749][T11531] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  480.668736][T11531] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  480.683214][T11531] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  481.093786][T11493] batman_adv: batadv0: Adding interface: batadv_slave_0
[  481.111595][T11493] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  481.193031][T11493] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  481.231402][T11546] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1128'.
[  481.245990][T11493] batman_adv: batadv0: Adding interface: batadv_slave_1
[  481.301869][T11493] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  481.396371][T10604] Bluetooth: hci4: command tx timeout
[  481.414935][T11493] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  481.996571][T11493] hsr_slave_0: entered promiscuous mode
[  482.037663][T11493] hsr_slave_1: entered promiscuous mode
[  482.059698][T11493] debugfs: 'hsr0' already exists in 'hsr'
[  482.109082][T11493] Cannot create hsr debugfs directory
[  482.626190][T11553] netlink: 346 bytes leftover after parsing attributes in process `syz.1.1129'.
[  483.205772][T11556] random: crng reseeded on system resumption
[  483.473230][T10604] Bluetooth: hci4: command tx timeout
[  485.608938][T11493] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  485.679329][T11493] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  485.790327][T11493] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  485.864201][T11493] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  486.468022][T11493] 8021q: adding VLAN 0 to HW filter on device bond0
[  486.727698][T11493] 8021q: adding VLAN 0 to HW filter on device team0
[  486.854898][ T7811] bridge0: port 1(bridge_slave_0) entered blocking state
[  486.862252][ T7811] bridge0: port 1(bridge_slave_0) entered forwarding state
[  486.938658][ T7811] bridge0: port 2(bridge_slave_1) entered blocking state
[  486.945950][ T7811] bridge0: port 2(bridge_slave_1) entered forwarding state
[  487.420601][T11493] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  489.112196][T11493] 8021q: adding VLAN 0 to HW filter on device batadv0
[  490.508012][T11649] FAULT_INJECTION: forcing a failure.
[  490.508012][T11649] name failslab, interval 1, probability 0, space 0, times 0
[  490.644677][T11649] CPU: 1 UID: 0 PID: 11649 Comm: syz.0.1145 Not tainted syzkaller #0 PREEMPT(full) 
[  490.644721][T11649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  490.644742][T11649] Call Trace:
[  490.644752][T11649]  <TASK>
[  490.644764][T11649]  dump_stack_lvl+0x16c/0x1f0
[  490.644809][T11649]  should_fail_ex+0x512/0x640
[  490.644849][T11649]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  490.644889][T11649]  should_failslab+0xc2/0x120
[  490.644934][T11649]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  490.644972][T11649]  ? __d_alloc+0x32/0xae0
[  490.645016][T11649]  ? __d_alloc+0x32/0xae0
[  490.645052][T11649]  __d_alloc+0x32/0xae0
[  490.645094][T11649]  d_alloc_pseudo+0x1c/0xc0
[  490.645140][T11649]  alloc_file_pseudo+0xcf/0x230
[  490.645191][T11649]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  490.645243][T11649]  ? do_raw_spin_unlock+0x172/0x230
[  490.645304][T11649]  __anon_inode_getfile+0xe8/0x280
[  490.645350][T11649]  anon_inode_getfile_fmode+0x37/0xa0
[  490.645394][T11649]  do_eventfd+0x19b/0x2c0
[  490.645438][T11649]  ? rcu_is_watching+0x12/0xc0
[  490.645475][T11649]  __x64_sys_eventfd+0x32/0x50
[  490.645532][T11649]  do_syscall_64+0xcd/0xfa0
[  490.645575][T11649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.645608][T11649] RIP: 0033:0x7f01d4b8eec9
[  490.645635][T11649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  490.645668][T11649] RSP: 002b:00007f01d5a01038 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  490.645700][T11649] RAX: ffffffffffffffda RBX: 00007f01d4de6090 RCX: 00007f01d4b8eec9
[  490.645723][T11649] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  490.645743][T11649] RBP: 00007f01d4c11f91 R08: 0000000000000000 R09: 0000000000000000
[  490.645763][T11649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  490.645783][T11649] R13: 00007f01d4de6128 R14: 00007f01d4de6090 R15: 00007fff7f463ab8
[  490.645828][T11649]  </TASK>
[  490.848912][T11493] veth0_vlan: entered promiscuous mode
[  491.046200][T11493] veth1_vlan: entered promiscuous mode
[  491.274984][T11493] veth0_macvtap: entered promiscuous mode
[  491.375470][T11493] veth1_macvtap: entered promiscuous mode
[  491.755076][T11493] batman_adv: batadv0: Interface activated: batadv_slave_0
[  491.801300][T11493] batman_adv: batadv0: Interface activated: batadv_slave_1
[  491.891849][T10671] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  491.964367][T10671] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  492.014270][T10671] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  492.044324][T10671] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  492.748074][T10671] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  492.778972][T10671] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  493.003123][ T7811] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  493.011004][ T7811] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  493.608364][T11682] netlink: 338 bytes leftover after parsing attributes in process `syz.4.1116'.
[  493.618440][T11682] vxcan1: entered promiscuous mode
[  494.649424][T11706] random: crng reseeded on system resumption
[  494.690862][T11686] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1153'.
[  495.079153][T11696] svc: failed to register nfsdv3 RPC service (errno 101).
[  495.093420][T11696] svc: failed to register nfsaclv3 RPC service (errno 101).
[  496.389211][T11729] FAULT_INJECTION: forcing a failure.
[  496.389211][T11729] name failslab, interval 1, probability 0, space 0, times 0
[  496.473243][T11729] CPU: 1 UID: 0 PID: 11729 Comm: syz.1.1159 Not tainted syzkaller #0 PREEMPT(full) 
[  496.473276][T11729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  496.473290][T11729] Call Trace:
[  496.473298][T11729]  <TASK>
[  496.473307][T11729]  dump_stack_lvl+0x16c/0x1f0
[  496.473339][T11729]  should_fail_ex+0x512/0x640
[  496.473369][T11729]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  496.473396][T11729]  should_failslab+0xc2/0x120
[  496.473428][T11729]  kmem_cache_alloc_noprof+0x75/0x6e0
[  496.473452][T11729]  ? __proc_create+0x2ce/0x8e0
[  496.473497][T11729]  ? __proc_create+0x2ce/0x8e0
[  496.473529][T11729]  __proc_create+0x2ce/0x8e0
[  496.473563][T11729]  ? __pfx___proc_create+0x10/0x10
[  496.473602][T11729]  ? _raw_write_unlock+0x28/0x50
[  496.473627][T11729]  ? proc_register+0x559/0x8b0
[  496.473666][T11729]  proc_create_reg+0x7d/0x180
[  496.473703][T11729]  ? __pfx_rt_acct_proc_show+0x10/0x10
[  496.473740][T11729]  proc_create_single_data+0x86/0x130
[  496.473779][T11729]  ? __pfx_proc_create_single_data+0x10/0x10
[  496.473817][T11729]  ? __pfx_nl_fib_input+0x10/0x10
[  496.473869][T11729]  ? __pfx_ip_rt_do_proc_init+0x10/0x10
[  496.473905][T11729]  ip_rt_do_proc_init+0xf4/0x1b0
[  496.473940][T11729]  ops_init+0x1df/0x5f0
[  496.473974][T11729]  setup_net+0x100/0x390
[  496.474004][T11729]  ? __pfx_setup_net+0x10/0x10
[  496.474034][T11729]  ? debug_mutex_init+0x37/0x70
[  496.474071][T11729]  copy_net_ns+0x2f8/0x690
[  496.474108][T11729]  create_new_namespaces+0x3ea/0xa90
[  496.474144][T11729]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  496.474174][T11729]  ksys_unshare+0x45b/0xa40
[  496.474207][T11729]  ? __pfx_ksys_unshare+0x10/0x10
[  496.474240][T11729]  ? xfd_validate_state+0x61/0x180
[  496.474284][T11729]  __x64_sys_unshare+0x31/0x40
[  496.474316][T11729]  do_syscall_64+0xcd/0xfa0
[  496.474345][T11729]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  496.474370][T11729] RIP: 0033:0x7f5812d8eec9
[  496.474389][T11729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  496.474412][T11729] RSP: 002b:00007f5813c3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  496.474435][T11729] RAX: ffffffffffffffda RBX: 00007f5812fe6090 RCX: 00007f5812d8eec9
[  496.474450][T11729] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  496.474465][T11729] RBP: 00007f5812e11f91 R08: 0000000000000000 R09: 0000000000000000
[  496.474479][T11729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  496.474493][T11729] R13: 00007f5812fe6128 R14: 00007f5812fe6090 R15: 00007fff8d99d9b8
[  496.474525][T11729]  </TASK>
[  498.156958][T11741] kvm: vcpu 4: requested lapic timer restore with starting count register 0x390=3295607649 (210918889536 ns) > initial count (73622709376 ns). Using initial count to start timer.
[  498.340915][T11744] random: crng reseeded on system resumption
[  500.413602][T11755] workqueue: Failed to create a rescuer kthread for wq "nfc9_nci_tx_wq": -EINTR
[  500.831189][T10604] Bluetooth: hci2: unexpected event 0x20 length: 123 > 7
[  500.834251][T11801] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1170'.
[  500.897016][T11801] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1170'.
[  502.506803][   T31] audit: type=1800 audit(4294967512.050:6): pid=11819 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1174" name="dbroot" dev="configfs" ino=36920 res=0 errno=0
[  502.550873][T11819] db_root: not a directory: /dev/audio1
[  503.497428][T11835] Invalid ELF header magic: != ELF
[  504.176888][T11848] ptrace attach of "./syz-executor exec"[5834] was attempted by ""[11848]
[  504.839598][T11851] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  507.463205][T11871] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.1.1184: bg 1: bad block bitmap checksum
[  507.488052][T11871] EXT4-fs error (device sda1) in ext4_mb_clear_bb:6667: Filesystem failed CRC
[  507.568689][T11879] FAULT_INJECTION: forcing a failure.
[  507.568689][T11879] name failslab, interval 1, probability 0, space 0, times 0
[  507.621466][T11879] CPU: 1 UID: 0 PID: 11879 Comm: syz.2.1186 Not tainted syzkaller #0 PREEMPT(full) 
[  507.621510][T11879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  507.621530][T11879] Call Trace:
[  507.621541][T11879]  <TASK>
[  507.621555][T11879]  dump_stack_lvl+0x16c/0x1f0
[  507.621599][T11879]  should_fail_ex+0x512/0x640
[  507.621641][T11879]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[  507.621690][T11879]  should_failslab+0xc2/0x120
[  507.621735][T11879]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[  507.621779][T11879]  ? find_held_lock+0x2b/0x80
[  507.621811][T11879]  ? snd_pcm_hw_rule_add+0x40a/0x590
[  507.621869][T11879]  ? krealloc_node_align_noprof+0x2c5/0x470
[  507.621909][T11879]  krealloc_node_align_noprof+0x2c5/0x470
[  507.621950][T11879]  ? __split_page_owner+0x245/0x3b0
[  507.621992][T11879]  snd_pcm_hw_rule_add+0x40a/0x590
[  507.622041][T11879]  ? __pfx_snd_pcm_hw_rule_format+0x10/0x10
[  507.622089][T11879]  ? __pfx_snd_pcm_hw_rule_add+0x10/0x10
[  507.622141][T11879]  ? lockdep_init_map_type+0x5c/0x280
[  507.622192][T11879]  ? debug_mutex_init+0x37/0x70
[  507.622226][T11879]  ? snd_pcm_attach_substream+0x89d/0xd60
[  507.622277][T11879]  snd_pcm_open_substream+0x534/0x17f0
[  507.622321][T11879]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[  507.622358][T11879]  ? lockdep_init_map_type+0x5c/0x280
[  507.622410][T11879]  ? lockdep_init_map_type+0x5c/0x280
[  507.622497][T11879]  snd_pcm_oss_open+0x735/0x1400
[  507.622568][T11879]  ? __pfx_snd_pcm_oss_open+0x10/0x10
[  507.622620][T11879]  ? __lock_acquire+0xb97/0x1ce0
[  507.622668][T11879]  ? __pfx_default_wake_function+0x10/0x10
[  507.622706][T11879]  ? __lock_acquire+0xb97/0x1ce0
[  507.622763][T11879]  ? do_raw_spin_lock+0x12c/0x2b0
[  507.622821][T11879]  ? soundcore_open+0x35a/0x580
[  507.622870][T11879]  ? __pfx_snd_pcm_oss_open+0x10/0x10
[  507.622923][T11879]  soundcore_open+0x409/0x580
[  507.622975][T11879]  ? __pfx_soundcore_open+0x10/0x10
[  507.623019][T11879]  chrdev_open+0x234/0x6a0
[  507.623056][T11879]  ? __pfx_apparmor_file_open+0x10/0x10
[  507.623109][T11879]  ? __pfx_chrdev_open+0x10/0x10
[  507.623151][T11879]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  507.623195][T11879]  do_dentry_open+0x982/0x1530
[  507.623235][T11879]  ? __pfx_chrdev_open+0x10/0x10
[  507.623292][T11879]  vfs_open+0x82/0x3f0
[  507.623346][T11879]  path_openat+0x1de4/0x2cb0
[  507.623397][T11879]  ? __pfx_path_openat+0x10/0x10
[  507.623444][T11879]  do_filp_open+0x20b/0x470
[  507.623481][T11879]  ? __pfx_do_filp_open+0x10/0x10
[  507.623548][T11879]  ? alloc_fd+0x471/0x7d0
[  507.623592][T11879]  do_sys_openat2+0x11b/0x1d0
[  507.623640][T11879]  ? __pfx_do_sys_openat2+0x10/0x10
[  507.623691][T11879]  ? __pfx___might_resched+0x10/0x10
[  507.623737][T11879]  __x64_sys_openat+0x174/0x210
[  507.623788][T11879]  ? __pfx___x64_sys_openat+0x10/0x10
[  507.623853][T11879]  do_syscall_64+0xcd/0xfa0
[  507.623894][T11879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.623925][T11879] RIP: 0033:0x7f34ffd8eec9
[  507.623949][T11879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  507.623982][T11879] RSP: 002b:00007f3500b70038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  507.624015][T11879] RAX: ffffffffffffffda RBX: 00007f34fffe5fa0 RCX: 00007f34ffd8eec9
[  507.624036][T11879] RDX: 0000000000000102 RSI: 0000200000004000 RDI: ffffffffffffff9c
[  507.624056][T11879] RBP: 00007f34ffe11f91 R08: 0000000000000000 R09: 0000000000000000
[  507.624087][T11879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  507.624107][T11879] R13: 00007f34fffe6038 R14: 00007f34fffe5fa0 R15: 00007ffe1a29a8f8
[  507.624151][T11879]  </TASK>
[  509.196094][T11890] FAULT_INJECTION: forcing a failure.
[  509.196094][T11890] name failslab, interval 1, probability 0, space 0, times 0
[  509.256679][T11890] CPU: 1 UID: 0 PID: 11890 Comm: syz.4.1188 Not tainted syzkaller #0 PREEMPT(full) 
[  509.256709][T11890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  509.256724][T11890] Call Trace:
[  509.256731][T11890]  <TASK>
[  509.256739][T11890]  dump_stack_lvl+0x16c/0x1f0
[  509.256771][T11890]  should_fail_ex+0x512/0x640
[  509.256799][T11890]  ? fs_reclaim_acquire+0xae/0x150
[  509.256831][T11890]  should_failslab+0xc2/0x120
[  509.256862][T11890]  kmem_cache_alloc_noprof+0x75/0x6e0
[  509.256885][T11890]  ? __pfx_map_id_range_down+0x10/0x10
[  509.256923][T11890]  ? security_inode_alloc+0x3b/0x2b0
[  509.256964][T11890]  ? security_inode_alloc+0x3b/0x2b0
[  509.256995][T11890]  security_inode_alloc+0x3b/0x2b0
[  509.257037][T11890]  inode_init_always_gfp+0xce4/0x1030
[  509.257067][T11890]  alloc_inode+0x86/0x240
[  509.257099][T11890]  iget_locked+0x2fa/0x860
[  509.257133][T11890]  ? __pfx_iget_locked+0x10/0x10
[  509.257167][T11890]  ? find_held_lock+0x2b/0x80
[  509.257192][T11890]  ? kernfs_root+0xee/0x2a0
[  509.257227][T11890]  kernfs_get_inode+0x48/0x460
[  509.257257][T11890]  kernfs_iop_lookup+0x1a7/0x2d0
[  509.257291][T11890]  __lookup_slow+0x251/0x460
[  509.257325][T11890]  ? __pfx___lookup_slow+0x10/0x10
[  509.257379][T11890]  ? lookup_fast+0x156/0x610
[  509.257413][T11890]  ? __pfx_kernfs_iop_permission+0x10/0x10
[  509.257446][T11890]  walk_component+0x353/0x5b0
[  509.257470][T11890]  link_path_walk+0x627/0xe20
[  509.257503][T11890]  path_openat+0x1b0/0x2cb0
[  509.257538][T11890]  ? __pfx_path_openat+0x10/0x10
[  509.257571][T11890]  do_filp_open+0x20b/0x470
[  509.257597][T11890]  ? __pfx_do_filp_open+0x10/0x10
[  509.257645][T11890]  ? alloc_fd+0x471/0x7d0
[  509.257676][T11890]  do_sys_openat2+0x11b/0x1d0
[  509.257711][T11890]  ? __pfx_do_sys_openat2+0x10/0x10
[  509.257743][T11890]  ? __sock_release+0x20b/0x270
[  509.257784][T11890]  __x64_sys_openat+0x174/0x210
[  509.257819][T11890]  ? __pfx___x64_sys_openat+0x10/0x10
[  509.257867][T11890]  do_syscall_64+0xcd/0xfa0
[  509.257896][T11890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  509.257919][T11890] RIP: 0033:0x7f23e478eec9
[  509.257937][T11890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  509.257959][T11890] RSP: 002b:00007f23e29ac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  509.257981][T11890] RAX: ffffffffffffffda RBX: 00007f23e49e6180 RCX: 00007f23e478eec9
[  509.258004][T11890] RDX: 000000000010b042 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  509.258023][T11890] RBP: 00007f23e4811f91 R08: 0000000000000000 R09: 0000000000000000
[  509.258037][T11890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  509.258051][T11890] R13: 00007f23e49e6218 R14: 00007f23e49e6180 R15: 00007ffdccb25788
[  509.258083][T11890]  </TASK>
[  509.716405][T11894] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  509.971610][T11903] FAULT_INJECTION: forcing a failure.
[  509.971610][T11903] name failslab, interval 1, probability 0, space 0, times 0
[  510.069973][T11903] CPU: 1 UID: 0 PID: 11903 Comm: syz.0.1191 Not tainted syzkaller #0 PREEMPT(full) 
[  510.070019][T11903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  510.070039][T11903] Call Trace:
[  510.070050][T11903]  <TASK>
[  510.070062][T11903]  dump_stack_lvl+0x16c/0x1f0
[  510.070107][T11903]  should_fail_ex+0x512/0x640
[  510.070148][T11903]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  510.070190][T11903]  should_failslab+0xc2/0x120
[  510.070245][T11903]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  510.070285][T11903]  ? alloc_inode+0x61/0x240
[  510.070337][T11903]  ? __pfx_rpc_alloc_inode+0x10/0x10
[  510.070384][T11903]  ? alloc_inode+0x61/0x240
[  510.070426][T11903]  alloc_inode+0x61/0x240
[  510.070470][T11903]  new_inode+0x22/0x1c0
[  510.070518][T11903]  rpc_new_dir+0xa1/0x440
[  510.070573][T11903]  rpc_populate.constprop.0+0x51/0x1d0
[  510.070627][T11903]  ? d_instantiate+0x77/0x90
[  510.070668][T11903]  ? __pfx_rpc_fill_super+0x10/0x10
[  510.070699][T11903]  rpc_fill_super+0x2b9/0x4f0
[  510.070731][T11903]  ? __pfx_rpc_fill_super+0x10/0x10
[  510.070760][T11903]  get_tree_keyed+0x10e/0x1d0
[  510.070797][T11903]  vfs_get_tree+0x8e/0x340
[  510.070847][T11903]  vfs_cmd_create+0xd7/0x2a0
[  510.070892][T11903]  __do_sys_fsconfig+0x7b8/0xbe0
[  510.070941][T11903]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  510.070996][T11903]  ? anon_inode_getfd+0x81/0xb0
[  510.071045][T11903]  do_syscall_64+0xcd/0xfa0
[  510.071088][T11903]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  510.071123][T11903] RIP: 0033:0x7f01d4b8eec9
[  510.071150][T11903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  510.071183][T11903] RSP: 002b:00007f01d5a22038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  510.071216][T11903] RAX: ffffffffffffffda RBX: 00007f01d4de5fa0 RCX: 00007f01d4b8eec9
[  510.071246][T11903] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000b
[  510.071266][T11903] RBP: 00007f01d4c11f91 R08: 0000000000000000 R09: 0000000000000000
[  510.071287][T11903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  510.071307][T11903] R13: 00007f01d4de6038 R14: 00007f01d4de5fa0 R15: 00007fff7f463ab8
[  510.071355][T11903]  </TASK>
[  510.303628][T11903] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[  511.731946][T11923] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1195'.
[  511.878791][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  511.885295][ T1301] ieee802154 phy1 wpan1: encryption failed: -22

syzkaller
syzkaller log[  512.378709][T11917] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
in: [  513.255419][T11951] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  513.802198][T11962] input: f¬
 as /devices/virtual/input/input38
[  514.201601][ T5820] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  514.221847][ T5820] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  514.233303][ T5820] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm udevd: iget: checksum invalid
[  515.656675][T11985] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  518.644827][T12024] netlink: 268 bytes leftover after parsing attributes in process `syz.4.1219'.
[  519.746534][T12056] perf: Dynamic interrupt throttling disabled, can hang your system!
[  519.811592][T12057] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  519.910548][T12058] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.1), cmd(1)
[  520.438723][T12069] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  520.741195][T12046] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  521.508956][T12084] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  521.660567][T12088] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  522.106926][T12096] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  523.490210][T12110] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  523.544333][T12115] queue_state_write: operation too long
[  523.550298][T12115] queue_state_write: use 'run', 'start' or 'kick'
[  523.811714][   T31] audit: type=1806 audit(4294967533.350:7): xattr="." res=0
[  524.389945][T12113] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1233'.
[  525.088741][T12127] random: crng reseeded on system resumption
[  525.203867][T12126] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1235'.
[  530.797613][T12156] FAULT_INJECTION: forcing a failure.
[  530.797613][T12156] name failslab, interval 1, probability 0, space 0, times 0
[  530.818650][T12156] CPU: 1 UID: 0 PID: 12156 Comm: syz.4.1242 Not tainted syzkaller #0 PREEMPT(full) 
[  530.818682][T12156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  530.818696][T12156] Call Trace:
[  530.818703][T12156]  <TASK>
[  530.818712][T12156]  dump_stack_lvl+0x16c/0x1f0
[  530.818744][T12156]  should_fail_ex+0x512/0x640
[  530.818772][T12156]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  530.818800][T12156]  should_failslab+0xc2/0x120
[  530.818831][T12156]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  530.818856][T12156]  ? __d_alloc+0x32/0xae0
[  530.818888][T12156]  ? __d_alloc+0x32/0xae0
[  530.818912][T12156]  __d_alloc+0x32/0xae0
[  530.818942][T12156]  d_alloc_parallel+0x111/0x1480
[  530.818989][T12156]  ? __pfx_d_alloc_parallel+0x10/0x10
[  530.819026][T12156]  ? lockdep_init_map_type+0x5c/0x280
[  530.819062][T12156]  ? lockdep_init_map_type+0x5c/0x280
[  530.819101][T12156]  __lookup_slow+0x193/0x460
[  530.819135][T12156]  ? __pfx___lookup_slow+0x10/0x10
[  530.819173][T12156]  ? wb_init+0x160/0x750
[  530.819206][T12156]  ? wb_init+0x160/0x750
[  530.819230][T12156]  ? d_lookup+0xe7/0x190
[  530.819269][T12156]  lookup_noperm+0xe1/0x110
[  530.819303][T12156]  simple_start_creating+0xd1/0x1b0
[  530.819345][T12156]  debugfs_start_creating.part.0+0x82/0x190
[  530.819384][T12156]  __debugfs_create_file+0xa7/0x6b0
[  530.819425][T12156]  debugfs_create_file_full+0x41/0x60
[  530.819466][T12156]  ref_tracker_dir_debugfs+0x19d/0x290
[  530.819509][T12156]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  530.819569][T12156]  ? lockdep_init_map_type+0x5c/0x280
[  530.819607][T12156]  preinit_net.part.0+0x437/0x8a0
[  530.819639][T12156]  copy_net_ns+0x3ba/0x690
[  530.819674][T12156]  create_new_namespaces+0x3ea/0xa90
[  530.819709][T12156]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  530.819739][T12156]  ksys_unshare+0x45b/0xa40
[  530.819772][T12156]  ? __pfx_ksys_unshare+0x10/0x10
[  530.819805][T12156]  ? xfd_validate_state+0x61/0x180
[  530.819849][T12156]  __x64_sys_unshare+0x31/0x40
[  530.819880][T12156]  do_syscall_64+0xcd/0xfa0
[  530.819910][T12156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  530.819933][T12156] RIP: 0033:0x7f23e478eec9
[  530.819951][T12156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  530.819974][T12156] RSP: 002b:00007f23e29ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  530.819995][T12156] RAX: ffffffffffffffda RBX: 00007f23e49e5fa0 RCX: 00007f23e478eec9
[  530.820012][T12156] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  530.820025][T12156] RBP: 00007f23e4811f91 R08: 0000000000000000 R09: 0000000000000000
[  530.820039][T12156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  530.820053][T12156] R13: 00007f23e49e6038 R14: 00007f23e49e5fa0 R15: 00007ffdccb25788
[  530.820084][T12156]  </TASK>
[  531.639799][T12167] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  531.730877][T12162] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  531.914780][T12169] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  533.414345][T12180] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1245'.
[  534.217841][T12195] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1248'.
[  534.589090][T12197] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  534.704310][T12203] FAULT_INJECTION: forcing a failure.
[  534.704310][T12203] name failslab, interval 1, probability 0, space 0, times 0
[  534.839340][T12203] CPU: 1 UID: 0 PID: 12203 Comm: syz.0.1251 Not tainted syzkaller #0 PREEMPT(full) 
[  534.839385][T12203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  534.839405][T12203] Call Trace:
[  534.839416][T12203]  <TASK>
[  534.839428][T12203]  dump_stack_lvl+0x16c/0x1f0
[  534.839472][T12203]  should_fail_ex+0x512/0x640
[  534.839512][T12203]  ? __kmalloc_cache_noprof+0x5f/0x780
[  534.839586][T12203]  should_failslab+0xc2/0x120
[  534.839630][T12203]  __kmalloc_cache_noprof+0x72/0x780
[  534.839685][T12203]  ? snd_midi_event_new+0x6f/0x210
[  534.839740][T12203]  ? snd_midi_event_new+0x6f/0x210
[  534.839781][T12203]  ? kasan_save_track+0x14/0x30
[  534.839817][T12203]  snd_midi_event_new+0x6f/0x210
[  534.839863][T12203]  snd_virmidi_output_open+0x106/0x670
[  534.839918][T12203]  open_substream+0x47d/0x990
[  534.839958][T12203]  rawmidi_open_priv+0x543/0x6e0
[  534.840003][T12203]  snd_rawmidi_open+0x4cb/0xbf0
[  534.840049][T12203]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  534.840090][T12203]  ? __pfx_default_wake_function+0x10/0x10
[  534.840131][T12203]  ? kobject_get_unless_zero+0x156/0x1e0
[  534.840181][T12203]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  534.840219][T12203]  snd_open+0x22d/0x4c0
[  534.840268][T12203]  ? __pfx_snd_open+0x10/0x10
[  534.840315][T12203]  chrdev_open+0x234/0x6a0
[  534.840401][T12203]  ? __pfx_apparmor_file_open+0x10/0x10
[  534.840450][T12203]  ? __pfx_chrdev_open+0x10/0x10
[  534.840494][T12203]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  534.840549][T12203]  do_dentry_open+0x982/0x1530
[  534.840590][T12203]  ? __pfx_chrdev_open+0x10/0x10
[  534.840641][T12203]  vfs_open+0x82/0x3f0
[  534.840696][T12203]  path_openat+0x1de4/0x2cb0
[  534.840749][T12203]  ? __pfx_path_openat+0x10/0x10
[  534.840799][T12203]  do_filp_open+0x20b/0x470
[  534.840837][T12203]  ? __pfx_do_filp_open+0x10/0x10
[  534.840908][T12203]  ? alloc_fd+0x471/0x7d0
[  534.840955][T12203]  do_sys_openat2+0x11b/0x1d0
[  534.841006][T12203]  ? __pfx_do_sys_openat2+0x10/0x10
[  534.841075][T12203]  __x64_sys_openat+0x174/0x210
[  534.841125][T12203]  ? __pfx___x64_sys_openat+0x10/0x10
[  534.841195][T12203]  do_syscall_64+0xcd/0xfa0
[  534.841239][T12203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.841274][T12203] RIP: 0033:0x7f01d4b8eec9
[  534.841303][T12203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  534.841337][T12203] RSP: 002b:00007f01d5a01038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  534.841371][T12203] RAX: ffffffffffffffda RBX: 00007f01d4de6090 RCX: 00007f01d4b8eec9
[  534.841394][T12203] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  534.841416][T12203] RBP: 00007f01d4c11f91 R08: 0000000000000000 R09: 0000000000000000
[  534.841437][T12203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  534.841458][T12203] R13: 00007f01d4de6128 R14: 00007f01d4de6090 R15: 00007fff7f463ab8
[  534.841505][T12203]  </TASK>
[  536.928266][T12225] ptp ptp0: delete virtual clock ptp3
[  537.242751][T12225] ptp ptp0: delete virtual clock ptp2
[  537.289169][T12225] ptp ptp0: delete virtual clock ptp1
[  537.358568][T12225] ptp ptp0: only physical clock in use now
[  538.216049][T12239] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1258'.
[  538.350402][T12236] netlink: 93 bytes leftover after parsing attributes in process `syz.2.1258'.
[  540.053678][T12263] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  540.779943][T12282] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  540.832308][T12287] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  542.716518][T12311] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  542.741910][T12303] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  542.822455][T12312] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  542.976615][T12308] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1135: comm modprobe: iget: checksum invalid
[  543.229962][T12317] mtrr: base(0x7961000) is not aligned on a size(0x0000) boundary
[  545.493454][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  545.535126][T12356] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:28: iget: checksum invalid
[  545.556201][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  545.609115][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  545.624743][T12362] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:30: iget: checksum invalid
[  545.667301][T12360] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:28: iget: checksum invalid
[  545.754125][T12364] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:30: iget: checksum invalid
[  545.835617][T12361] zswap: compressor 1 not available
[  546.071664][T12367] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:22: iget: checksum invalid
[  546.111951][T12369] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:30: iget: checksum invalid
[  547.697653][T12389] openvswitch: netlink: Missing valid actions attribute.
[  549.293794][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  549.538448][T12408] netlink: 266 bytes leftover after parsing attributes in process `syz.1.1287'.
[  549.562258][T12408] IPv6: NLM_F_CREATE should be specified when creating new route
[  550.517515][T12435] EXT4-fs error: 9 callbacks suppressed
[  550.517538][T12435] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:5: iget: checksum invalid
[  550.741146][T12436] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:5: iget: checksum invalid
[  550.844774][T12441] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:41: iget: checksum invalid
[  551.008548][T12443] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:41: iget: checksum invalid
[  551.123888][T12445] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:5: iget: checksum invalid
[  551.198363][T12447] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:5: iget: checksum invalid
[  551.301738][T12449] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:5: iget: checksum invalid
[  551.379777][T12450] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:33: iget: checksum invalid
[  551.932776][T12458] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:5: iget: checksum invalid
[  552.587981][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  553.985658][T12478] delete_channel: no stack
[  555.956491][ T5199] EXT4-fs error: 2 callbacks suppressed
[  555.956515][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  556.048100][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  556.063615][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  558.040244][T12529] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  558.608195][T12541] netlink: 186 bytes leftover after parsing attributes in process `syz.4.1307'.
[  559.398975][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  559.483664][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  559.535334][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  559.559750][T12552] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:0: iget: checksum invalid
[  559.630746][T12556] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:0: iget: checksum invalid
[  559.705414][T12562] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:0: iget: checksum invalid
[  560.275565][T12571] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  560.307779][T12571] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  560.337297][T12571] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  560.425876][T12571] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  560.432339][T12571] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  560.448622][T12571] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  560.930624][T12571] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  560.935431][T12564] netlink: 268 bytes leftover after parsing attributes in process `syz.4.1313'.
[  562.080514][T12591] random: crng reseeded on system resumption
[  562.363139][T10604] Bluetooth: hci0: command 0x0c1a tx timeout
[  562.433255][T10604] Bluetooth: hci2: command 0x0c1a tx timeout
[  562.433880][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout
[  562.513084][ T5841] Bluetooth: hci4: command 0x0c1a tx timeout
[  562.523315][ T5841] Bluetooth: hci3: command 0x0c1a tx timeout
[  562.542336][T11287] syz.3.1077: vmalloc error: size 8388608, failed to allocated page array size 16384, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  562.583035][T11287] CPU: 0 UID: 0 PID: 11287 Comm: syz.3.1077 Not tainted syzkaller #0 PREEMPT(full) 
[  562.583082][T11287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  562.583102][T11287] Call Trace:
[  562.583112][T11287]  <TASK>
[  562.583125][T11287]  dump_stack_lvl+0x16c/0x1f0
[  562.583179][T11287]  warn_alloc+0x248/0x3a0
[  562.583214][T11287]  ? __pfx_warn_alloc+0x10/0x10
[  562.583263][T11287]  ? relay_open_buf.part.0+0x194/0xc40
[  562.583301][T11287]  ? __vmalloc_node_noprof+0xad/0xf0
[  562.583341][T11287]  __vmalloc_node_range_noprof+0xfe2/0x1480
[  562.583387][T11287]  ? relay_open_buf.part.0+0x194/0xc40
[  562.583429][T11287]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  562.583470][T11287]  ? ___kmalloc_large_node+0xed/0x160
[  562.583509][T11287]  __kvmalloc_node_noprof+0x431/0x9c0
[  562.583545][T11287]  ? relay_open_buf.part.0+0x194/0xc40
[  562.583579][T11287]  ? trace_kmalloc+0x2b/0xd0
[  562.583607][T11287]  ? __kmalloc_noprof.cold+0x5d/0x62
[  562.583642][T11287]  ? relay_open_buf.part.0+0x194/0xc40
[  562.583675][T11287]  ? relay_open_buf.part.0+0xf9/0xc40
[  562.583715][T11287]  ? relay_open_buf.part.0+0x194/0xc40
[  562.583747][T11287]  relay_open_buf.part.0+0x194/0xc40
[  562.583793][T11287]  relay_open+0x653/0xad0
[  562.583827][T11287]  ? debugfs_create_file_full+0x41/0x60
[  562.583871][T11287]  do_blk_trace_setup+0x4c5/0xb00
[  562.583906][T11287]  blk_trace_setup+0xed/0x1b0
[  562.583937][T11287]  ? __pfx_blk_trace_setup+0x10/0x10
[  562.583967][T11287]  ? __pfx_snprintf+0x10/0x10
[  562.583999][T11287]  ? do_vfs_ioctl+0x128/0x14f0
[  562.584038][T11287]  blk_trace_ioctl+0x146/0x280
[  562.584070][T11287]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  562.584107][T11287]  ? find_held_lock+0x2b/0x80
[  562.584131][T11287]  ? hook_file_ioctl_common+0x145/0x410
[  562.584175][T11287]  blkdev_ioctl+0x108/0x6d0
[  562.584199][T11287]  ? __pfx_blkdev_ioctl+0x10/0x10
[  562.584232][T11287]  ? __pfx_blkdev_ioctl+0x10/0x10
[  562.584266][T11287]  __x64_sys_ioctl+0x18b/0x210
[  562.584327][T11287]  do_syscall_64+0xcd/0xfa0
[  562.584373][T11287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.584407][T11287] RIP: 0033:0x7fa59078eec9
[  562.584441][T11287] Code: Unable to access opcode bytes at 0x7fa59078ee9f.
[  562.584455][T11287] RSP: 002b:00007fa5916c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  562.584486][T11287] RAX: ffffffffffffffda RBX: 00007fa5909e5fa0 RCX: 00007fa59078eec9
[  562.584509][T11287] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 0000000000000004
[  562.584536][T11287] RBP: 00007fa590811f91 R08: 0000000000000000 R09: 0000000000000000
[  562.584556][T11287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  562.584576][T11287] R13: 00007fa5909e6038 R14: 00007fa5909e5fa0 R15: 00007ffc652c21b8
[  562.584625][T11287]  </TASK>
[  562.587616][T11287] Mem-Info:
[  562.607212][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  562.607794][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  562.974027][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  562.988669][T11287] active_anon:16515 inactive_anon:53 isolated_anon:0
[  562.988669][T11287]  active_file:15410 inactive_file:798 isolated_file:0
[  562.988669][T11287]  unevictable:768 dirty:531 writeback:0
[  562.988669][T11287]  slab_reclaimable:7685 slab_unreclaimable:96954
[  562.988669][T11287]  mapped:38139 shmem:14366 pagetables:3649
[  562.988669][T11287]  sec_pagetables:0 bounce:0
[  562.988669][T11287]  kernel_misc_reclaimable:0
[  562.988669][T11287]  free:139246 free_pcp:29916 free_cma:0
[  563.035348][T11287] Node 0 active_anon:4116kB inactive_anon:36kB active_file:44kB inactive_file:188kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:118860kB dirty:48kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12304kB pagetables:4424kB sec_pagetables:0kB all_unreclaimable? yes Balloon:0kB
[  563.163037][T11287] Node 1 active_anon:65360kB inactive_anon:176kB active_file:61596kB inactive_file:3004kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:37072kB dirty:2076kB writeback:0kB shmem:59648kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:792kB pagetables:10276kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  563.268338][T11287] Node 0 DMA free:10044kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:192kB local_pcp:76kB free_cma:0kB
[  563.360996][T11287] lowmem_reserve[]: 0 2484 2485 2485 2485
[  563.394795][T11287] Node 0 DMA32 free:38872kB boost:0kB min:34352kB low:42940kB high:51528kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4116kB inactive_anon:36kB active_file:44kB inactive_file:188kB unevictable:1536kB writepending:48kB zspages:0kB present:3129332kB managed:2543664kB mlocked:0kB bounce:0kB free_pcp:14724kB local_pcp:9380kB free_cma:0kB
[  563.513158][T11287] lowmem_reserve[]: 0 0 1 1 1
[  563.518060][T11287] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  563.621008][T11287] lowmem_reserve[]: 0 0 0 0 0
[  563.648293][T11287] Node 1 Normal free:513132kB boost:0kB min:55524kB low:69404kB high:83284kB reserved_highatomic:0KB free_highatomic:0KB active_anon:78756kB inactive_anon:176kB active_file:61596kB inactive_file:3004kB unevictable:1536kB writepending:2076kB zspages:5196kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:87044kB local_pcp:68036kB free_cma:0kB
[  563.822057][T11287] lowmem_reserve[]: 0 0 0 0 0
[  563.868181][T11287] Node 0 DMA: 1*4kB (U) 1*8kB (U) 1*16kB (U) 1*32kB (U) 0*64kB 0*128kB 1*256kB (U) 1*512kB (U) 1*1024kB (U) 2*2048kB (UM) 1*4096kB (M) = 10044kB
[  563.944186][T11287] Node 0 DMA32: 4*4kB (E) 53*8kB (ME) 52*16kB (E) 79*32kB (UE) 116*64kB (UME) 94*128kB (UME) 43*256kB (UME) 7*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 38872kB
[  564.166666][T11287] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  564.216539][T11287] Node 1 Normal: 2*4kB (ME) 0*8kB 2*16kB (UM) 2*32kB (UE) 3*64kB (UME) 3*128kB (UME) 3*256kB (UME) 0*512kB 21*1024kB (UME) 4*2048kB (M) 117*4096kB (M) = 510376kB
[  564.303233][T11287] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  564.312845][T11287] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  564.385017][T11287] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  564.454836][T11287] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  564.476098][T11287] 39425 total pagecache pages
[  564.480898][T11287] 1007 pages in swap cache
[  564.487128][T11287] Free swap  = 94512kB
[  564.491356][T11287] Total swap = 124996kB
[  564.496267][T11287] 2097051 pages RAM
[  564.500239][T11287] 0 pages HighMem/MovableOnly
[  564.505512][T11287] 429045 pages reserved
[  564.509995][T11287] 0 pages cma reserved
[  564.596261][ T5841] Bluetooth: hci4: command 0x0c1a tx timeout
[  566.459389][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  566.511639][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  566.526165][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  566.646540][T12628] netlink: 354 bytes leftover after parsing attributes in process `syz.4.1326'.
[  566.662474][T12628] netlink: 354 bytes leftover after parsing attributes in process `syz.4.1326'.
[  566.673991][ T5841] Bluetooth: hci4: command 0x0c1a tx timeout
[  568.715694][T12635] sctp: [Deprecated]: syz.2.1329 (pid 12635) Use of struct sctp_assoc_value in delayed_ack socket option.
[  568.715694][T12635] Use struct sctp_sack_info instead
[  569.051570][T12655] overlayfs: "check_copy_up" module option is obsolete
[  569.719281][T12661] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1332'.
[  570.254560][T12661] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  570.313141][T12661] batman_adv: batadv0: Removing interface: batadv_slave_0
[  570.837566][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  570.863155][T12654] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  570.871441][T12654] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  570.893496][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  570.908731][T12654] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  570.925316][T12654] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  570.931530][T12654] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  570.974487][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  572.203070][ T5841] Bluetooth: hci0: command 0x0c1a tx timeout
[  572.465936][T12690] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:33: iget: checksum invalid
[  572.546966][T12691] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:33: iget: checksum invalid
[  572.777321][T12694] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:11: iget: checksum invalid
[  572.913236][ T5841] Bluetooth: hci2: command 0x0c1a tx timeout
[  572.919458][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout
[  573.000625][ T5841] Bluetooth: hci4: command 0x0c1a tx timeout
[  573.006772][T10604] Bluetooth: hci3: command 0x0c1a tx timeout
[  573.146205][T12680] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1336'.
[  573.317255][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  573.323688][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  574.109465][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  574.183778][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  574.264401][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  574.276867][T12704] snd_aloop snd_aloop.0: control 1:262152:7:ª¸è:0 is already present
[  574.765769][T12706] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1341'.
[  575.606161][   T31] audit: type=1804 audit(4294967585.160:8): pid=12718 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1344" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  575.644296][T12720] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:0: iget: checksum invalid
[  576.788753][T12735] FAULT_INJECTION: forcing a failure.
[  576.788753][T12735] name failslab, interval 1, probability 0, space 0, times 0
[  576.833067][T12735] CPU: 0 UID: 0 PID: 12735 Comm: syz.4.1348 Not tainted syzkaller #0 PREEMPT(full) 
[  576.833111][T12735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  576.833131][T12735] Call Trace:
[  576.833141][T12735]  <TASK>
[  576.833154][T12735]  dump_stack_lvl+0x16c/0x1f0
[  576.833198][T12735]  should_fail_ex+0x512/0x640
[  576.833239][T12735]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  576.833281][T12735]  should_failslab+0xc2/0x120
[  576.833327][T12735]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  576.833364][T12735]  ? hugetlbfs_alloc_inode+0x8c/0x1d0
[  576.833406][T12735]  ? hugetlbfs_alloc_inode+0x8c/0x1d0
[  576.833436][T12735]  hugetlbfs_alloc_inode+0x8c/0x1d0
[  576.833468][T12735]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[  576.833503][T12735]  alloc_inode+0x61/0x240
[  576.833549][T12735]  new_inode+0x22/0x1c0
[  576.833607][T12735]  hugetlbfs_get_inode+0x354/0x730
[  576.833652][T12735]  hugetlb_file_setup+0x15b/0x620
[  576.833694][T12735]  ksys_mmap_pgoff+0x189/0x5c0
[  576.833745][T12735]  __x64_sys_mmap+0x125/0x190
[  576.833802][T12735]  do_syscall_64+0xcd/0xfa0
[  576.833844][T12735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.833878][T12735] RIP: 0033:0x7f23e478eec9
[  576.833904][T12735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  576.833938][T12735] RSP: 002b:00007f23e29ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  576.833970][T12735] RAX: ffffffffffffffda RBX: 00007f23e49e5fa0 RCX: 00007f23e478eec9
[  576.833992][T12735] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000
[  576.834013][T12735] RBP: 00007f23e4811f91 R08: 0000000000000401 R09: 0000300000000000
[  576.834035][T12735] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  576.834055][T12735] R13: 00007f23e49e6038 R14: 00007f23e49e5fa0 R15: 00007ffdccb25788
[  576.834101][T12735]  </TASK>
[  577.537712][T12740] EXT4-fs error: 1 callbacks suppressed
[  577.537736][T12740] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:0: iget: checksum invalid
[  578.047013][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  578.080541][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  578.122477][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  578.476667][T12749] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:11: iget: checksum invalid
[  579.866126][T12754] bond0: Unable to set peer notification delay as MII monitoring is disabled
[  580.475557][T12761] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1353'.
[  580.497238][T12759] sctp: [Deprecated]: syz.0.1351 (pid 12759) Use of struct sctp_assoc_value in delayed_ack socket option.
[  580.497238][T12759] Use struct sctp_sack_info instead
[  580.861115][T12767] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:11: iget: checksum invalid
[  580.883980][T12766] can: request_module (can-proto-5) failed.
[  581.200581][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  581.284656][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  581.303396][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  582.302725][T12781] random: crng reseeded on system resumption
[  583.878642][T12804] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:5: iget: checksum invalid
[  584.018352][T12792] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1358'.
[  584.831837][T12811] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:42: iget: checksum invalid
[  584.864065][T12812] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:42: iget: checksum invalid
[  584.891977][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  584.965425][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  585.037437][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  585.342827][T12821] FAULT_INJECTION: forcing a failure.
[  585.342827][T12821] name failslab, interval 1, probability 0, space 0, times 0
[  585.426350][T12821] CPU: 1 UID: 0 PID: 12821 Comm: syz.2.1363 Not tainted syzkaller #0 PREEMPT(full) 
[  585.426397][T12821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  585.426418][T12821] Call Trace:
[  585.426430][T12821]  <TASK>
[  585.426442][T12821]  dump_stack_lvl+0x16c/0x1f0
[  585.426488][T12821]  should_fail_ex+0x512/0x640
[  585.426534][T12821]  ? __kmalloc_noprof+0xca/0x880
[  585.426591][T12821]  should_failslab+0xc2/0x120
[  585.426637][T12821]  __kmalloc_noprof+0xdd/0x880
[  585.426698][T12821]  ? snd_pcm_plugin_build+0x64/0x650
[  585.426741][T12821]  ? snd_pcm_plugin_build+0x64/0x650
[  585.426782][T12821]  snd_pcm_plugin_build+0x64/0x650
[  585.426823][T12821]  snd_pcm_plugin_build_io+0x207/0x5f0
[  585.426862][T12821]  ? __pfx_snd_pcm_plugin_build_io+0x10/0x10
[  585.426902][T12821]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  585.426973][T12821]  snd_pcm_oss_change_params_locked+0x2e67/0x3a30
[  585.427051][T12821]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  585.427145][T12821]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  585.427208][T12821]  snd_pcm_oss_ioctl+0x2212/0x37c0
[  585.427266][T12821]  ? hook_file_ioctl_common+0x145/0x410
[  585.427324][T12821]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  585.427384][T12821]  ? __fget_files+0x20e/0x3c0
[  585.427425][T12821]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  585.427494][T12821]  __x64_sys_ioctl+0x18b/0x210
[  585.427548][T12821]  do_syscall_64+0xcd/0xfa0
[  585.427591][T12821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  585.427626][T12821] RIP: 0033:0x7f34ffd8eec9
[  585.427653][T12821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  585.427686][T12821] RSP: 002b:00007f3500b70038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  585.427719][T12821] RAX: ffffffffffffffda RBX: 00007f34fffe5fa0 RCX: 00007f34ffd8eec9
[  585.427741][T12821] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000006
[  585.427766][T12821] RBP: 00007f34ffe11f91 R08: 0000000000000000 R09: 0000000000000000
[  585.427787][T12821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  585.427808][T12821] R13: 00007f34fffe6038 R14: 00007f34fffe5fa0 R15: 00007ffe1a29a8f8
[  585.427855][T12821]  </TASK>
[  586.296650][T12830] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:42: iget: checksum invalid
[  586.315775][T12832] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:42: iget: checksum invalid
[  586.422728][T12834] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:41: iget: checksum invalid
[  587.810036][T12813] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.0.1362: bg 4: bad block bitmap checksum
[  587.822917][T12813] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 74
[  587.841562][T12813] EXT4-fs (sda1): This should not happen!! Data will be lost
[  587.841562][T12813] 
[  588.246245][T12838] sctp: [Deprecated]: syz.1.1365 (pid 12838) Use of struct sctp_assoc_value in delayed_ack socket option.
[  588.246245][T12838] Use struct sctp_sack_info instead
[  589.077215][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  589.203539][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  589.254221][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  590.113849][T12871] random: crng reseeded on system resumption
[  590.611044][T12866] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1379'.
[  590.877791][T12866] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  590.924110][T12866] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  590.934438][T12866] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  591.657422][T12889] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:33: iget: checksum invalid
[  592.235999][T12886] netlink: 268 bytes leftover after parsing attributes in process `syz.4.1372'.
[  592.721571][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  592.774985][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  592.801642][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  593.569996][T12910] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1387'.
[  594.052745][T12922] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:33: iget: checksum invalid
[  594.144274][T12926] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:33: iget: checksum invalid
[  596.290574][T12943] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1385'.
[  596.583355][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  596.717096][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  596.729041][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  597.035537][T12950] netlink: 252 bytes leftover after parsing attributes in process `syz.4.1386'.
[  597.094490][T12950] netlink: 252 bytes leftover after parsing attributes in process `syz.4.1386'.
[  597.399945][T12962] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:34: iget: checksum invalid
[  597.472192][T12968] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:33: iget: checksum invalid
[  597.525811][T12972] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:0: iget: checksum invalid
[  597.627884][T12976] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:33: iget: checksum invalid
[  597.906326][T12978] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:34: iget: checksum invalid
[  597.972215][T12981] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:34: iget: checksum invalid
[  598.563100][T12980] svc: failed to register nfsdv3 RPC service (errno 111).
[  598.564648][T12980] svc: failed to register nfsaclv3 RPC service (errno 111).
[  598.698726][ T5841] Bluetooth: hci0: unexpected event 0x3e length: 509 > 260
[  598.698771][ T5841] Bluetooth: hci0: unexpected subevent 0x02 length: 508 > 260
[  598.698798][ T5841] Bluetooth: hci0: Dropping invalid advertising data
[  598.734953][T12957] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  599.484468][T12995] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:34: iget: checksum invalid
[  599.582727][T12998] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:0: iget: checksum invalid
[  599.773204][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  599.803714][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  599.815041][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  602.333661][T13028] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  602.896291][T13040] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:41: iget: checksum invalid
[  603.069834][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  603.081410][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  603.105302][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  604.294766][T13055] cougar: G6 mapped to space
[  604.317053][ T5820] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  604.389495][T13057] udevd[13057]: failed to execute '/lib/udev/scsi_id' 'scsi_id --export --whitelisted -d /dev/sda': Bad message
[  604.983183][T13065] EXT4-fs error: 1 callbacks suppressed
[  604.983207][T13065] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:34: iget: checksum invalid
[  605.004943][T13066] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:34: iget: checksum invalid
[  606.431002][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  606.493482][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  606.578152][ T5199] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1222: comm udevd: iget: checksum invalid
[  606.959336][T13093] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:33: iget: checksum invalid
[  607.421333][T13104] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:41: iget: checksum invalid
[  607.505627][T13105] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:5: iget: checksum invalid
[  607.548340][T13106] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:5: iget: checksum invalid
[  607.635440][T13108] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1259: comm kworker/u8:5: iget: checksum invalid
[  608.726033][T13120] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1421'.
[  609.689458][T13127] 0x000200000001-0xa29656a63616329 : ""
[  609.727080][T13127] mtd: partition "" is out of reach -- disabled
[  609.868066][T13127] ftl_cs: FTL header not found.
[  609.948887][T13135] udevd[13135]: failed to execute '/lib/udev/mtd_probe' 'mtd_probe /dev/mtd2ro': Bad message
[  610.344042][T13136] FAULT_INJECTION: forcing a failure.
[  610.344042][T13136] name failslab, interval 1, probability 0, space 0, times 0
[  610.482996][T13136] CPU: 0 UID: 0 PID: 13136 Comm: syz.2.1424 Not tainted syzkaller #0 PREEMPT(full) 
[  610.483036][T13136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  610.483054][T13136] Call Trace:
[  610.483064][T13136]  <TASK>
[  610.483075][T13136]  dump_stack_lvl+0x16c/0x1f0
[  610.483119][T13136]  should_fail_ex+0x512/0x640
[  610.483157][T13136]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  610.483194][T13136]  should_failslab+0xc2/0x120
[  610.483243][T13136]  kmem_cache_alloc_noprof+0x75/0x6e0
[  610.483276][T13136]  ? taskstats_exit+0x654/0xbe0
[  610.483335][T13136]  ? taskstats_exit+0x654/0xbe0
[  610.483382][T13136]  ? acct_update_integrals+0x2ce/0x4a0
[  610.483411][T13136]  taskstats_exit+0x654/0xbe0
[  610.483466][T13136]  ? __pfx_taskstats_exit+0x10/0x10
[  610.483523][T13136]  ? exit_signals+0x38e/0xb40
[  610.483585][T13136]  do_exit+0x5dc/0x2bf0
[  610.483639][T13136]  ? __pfx_do_exit+0x10/0x10
[  610.483692][T13136]  ? do_raw_spin_lock+0x12c/0x2b0
[  610.483751][T13136]  ? find_held_lock+0x2b/0x80
[  610.483791][T13136]  do_group_exit+0xd3/0x2a0
[  610.483839][T13136]  get_signal+0x2671/0x26d0
[  610.483891][T13136]  ? __pfx_get_signal+0x10/0x10
[  610.483929][T13136]  ? do_futex+0x122/0x350
[  610.483982][T13136]  ? __pfx_do_futex+0x10/0x10
[  610.484029][T13136]  arch_do_signal_or_restart+0x8f/0x790
[  610.484073][T13136]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  610.484139][T13136]  exit_to_user_mode_loop+0x85/0x130
[  610.484191][T13136]  do_syscall_64+0x426/0xfa0
[  610.484240][T13136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  610.484273][T13136] RIP: 0033:0x7f34ffd8eec9
[  610.484300][T13136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  610.484332][T13136] RSP: 002b:00007f34fdbd30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  610.484362][T13136] RAX: fffffffffffffe00 RBX: 00007f34fffe6278 RCX: 00007f34ffd8eec9
[  610.484384][T13136] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f34fffe6278
[  610.484403][T13136] RBP: 00007f34fffe6270 R08: 0000000000000000 R09: 0000000000000000
[  610.484423][T13136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  610.484442][T13136] R13: 00007f34fffe6308 R14: 00007ffe1a29a810 R15: 00007ffe1a29a8f8
[  610.484487][T13136]  </TASK>
[  611.074263][   T32] INFO: task syz.3.1077:11290 blocked for more than 143 seconds.
[  611.092419][   T32]       Not tainted syzkaller #0
[  611.097921][   T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  611.106946][   T32] task:syz.3.1077      state:D stack:29096 pid:11290 tgid:11285 ppid:5833   task_flags:0x400040 flags:0x00080002
[  611.122263][   T32] Call Trace:
[  611.127167][   T32]  <TASK>
[  611.131345][   T32]  __schedule+0x1190/0x5de0
[  611.137234][   T32]  ? __pfx___schedule+0x10/0x10
[  611.144679][   T32]  ? find_held_lock+0x2b/0x80
[  611.158974][   T32]  ? schedule+0x2d7/0x3a0
[  611.168153][   T32]  ? blk_trace_ioctl+0x23a/0x280
[  611.181287][   T32]  schedule+0xe7/0x3a0
[  611.192783][   T32]  schedule_preempt_disabled+0x13/0x30
[  611.212969][   T32]  __mutex_lock+0x818/0x1060
[  611.232443][   T32]  ? blk_trace_ioctl+0x23a/0x280
[  611.252769][   T32]  ? __pfx___mutex_lock+0x10/0x10
[  611.262567][   T32]  ? blk_trace_ioctl+0x23a/0x280
[  611.276574][   T32]  blk_trace_ioctl+0x23a/0x280
[  611.290390][   T32]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  611.310490][   T32]  blkdev_common_ioctl+0xf29/0x2470
[  611.322994][   T32]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  611.339812][   T32]  ? __handle_mm_fault+0x5a8/0x2aa0
[  611.357683][   T32]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  611.372594][   T32]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  611.386615][   T32]  ? do_vfs_ioctl+0x128/0x14f0
[  611.407388][   T32]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  611.423881][   T32]  ? find_held_lock+0x2b/0x80
[  611.436577][   T32]  blkdev_ioctl+0x1cb/0x6d0
[  611.445802][   T32]  ? __pfx_blkdev_ioctl+0x10/0x10
[  611.463425][   T32]  ? __pfx_blkdev_ioctl+0x10/0x10
[  611.488870][   T32]  __x64_sys_ioctl+0x18b/0x210
[  611.503517][   T32]  do_syscall_64+0xcd/0xfa0
[  611.516128][   T32]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  611.536814][   T32] RIP: 0033:0x7fa59078eec9
[  611.550301][   T32] RSP: 002b:00007fa59169f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  611.592044][   T32] RAX: ffffffffffffffda RBX: 00007fa5909e6090 RCX: 00007fa59078eec9
[  611.608857][T13137] kexec: Could not allocate control_code_buffer
[  611.615426][   T32] RDX: 0000000000000000 RSI: 0000000000001276 RDI: 0000000000000004
[  611.632513][   T32] RBP: 00007fa590811f91 R08: 0000000000000000 R09: 0000000000000000
[  611.666250][   T32] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  611.696216][   T32] R13: 00007fa5909e6128 R14: 00007fa5909e6090 R15: 00007ffc652c21b8
[  611.722595][   T32]  </TASK>
[  611.731740][   T32] 
[  611.731740][   T32] Showing all locks held in the system:
[  611.763773][   T32] 3 locks held by kworker/0:0/9:
[  611.787600][   T32]  #0: ffff8880b843a4d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  611.830988][   T32]  #1: ffff8880761ca018 (&pid_list->lock){-.-.}-{2:2}, at: trace_pid_list_is_set+0x4c/0x150
[  611.863080][   T32]  #2: ffff8880b8425b18 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x127/0x1d0
[  611.883465][   T32] 1 lock held by khungtaskd/32:
[  611.888477][   T32]  #0: ffffffff8e3c4320 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  611.899696][   T32] 2 locks held by syz.3.1077/11287:
[  611.905257][   T32] 1 lock held by syz.3.1077/11290:
[  611.910516][   T32]  #0: ffff888142fab068 (&q->debugfs_mutex){+.+.}-{4:4}, at: blk_trace_ioctl+0x23a/0x280
[  611.922825][   T32] 2 locks held by getty/11931:
[  611.927955][   T32]  #0: ffff888034d1a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  611.949774][   T32]  #1: ffffc90002f362f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  611.967588][   T32] 1 lock held by syz.4.1395/13017:
[  611.977367][   T32] 3 locks held by syz.0.1416/13111:
[  611.991685][   T32] 3 locks held by syz.0.1431/13128:
[  612.006855][   T32] 
[  612.013850][   T32] =============================================
[  612.013850][   T32] 
[  612.036119][   T32] NMI backtrace for cpu 1
[  612.036142][   T32] CPU: 1 UID: 0 PID: 32 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  612.036176][   T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  612.036195][   T32] Call Trace:
[  612.036204][   T32]  <TASK>
[  612.036216][   T32]  dump_stack_lvl+0x116/0x1f0
[  612.036258][   T32]  nmi_cpu_backtrace+0x27b/0x390
[  612.036306][   T32]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  612.036359][   T32]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  612.036411][   T32]  watchdog+0xf3f/0x1170
[  612.036449][   T32]  ? rcu_is_watching+0x12/0xc0
[  612.036483][   T32]  ? __pfx_watchdog+0x10/0x10
[  612.036510][   T32]  ? lockdep_hardirqs_on+0x7c/0x110
[  612.036550][   T32]  ? __kthread_parkme+0x19e/0x250
[  612.036592][   T32]  ? __pfx_watchdog+0x10/0x10
[  612.036615][   T32]  kthread+0x3c2/0x780
[  612.036649][   T32]  ? __pfx_kthread+0x10/0x10
[  612.036685][   T32]  ? rcu_is_watching+0x12/0xc0
[  612.036709][   T32]  ? __pfx_kthread+0x10/0x10
[  612.036744][   T32]  ret_from_fork+0x675/0x7d0
[  612.036778][   T32]  ? __pfx_kthread+0x10/0x10
[  612.036812][   T32]  ret_from_fork_asm+0x1a/0x30
[  612.036852][   T32]  </TASK>
[  612.036881][   T32] Sending NMI from CPU 1 to CPUs 0:
[  612.158795][    C0] NMI backtrace for cpu 0
[  612.158815][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) 
[  612.158844][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  612.158860][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  612.158896][    C0] Code: a7 78 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 73 15 28 00 fb f4 <e9> 0c 0a 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  612.158922][    C0] RSP: 0018:ffffffff8e007df8 EFLAGS: 000002c2
[  612.158942][    C0] RAX: 000000000075aefd RBX: 0000000000000000 RCX: ffffffff8b6202d9
[  612.158960][    C0] RDX: 0000000000000000 RSI: ffffffff8daffab9 RDI: ffffffff8bf1d740
[  612.158976][    C0] RBP: fffffbfff1c12f40 R08: 0000000000000001 R09: ffffed1017086655
[  612.158993][    C0] R10: ffff8880b84332ab R11: 0000000000000000 R12: 0000000000000000
[  612.159009][    C0] R13: ffffffff8e097a00 R14: ffffffff90835ed0 R15: 0000000000000000
[  612.159026][    C0] FS:  0000000000000000(0000) GS:ffff8881249e6000(0000) knlGS:0000000000000000
[  612.159050][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  612.159067][    C0] CR2: 0000001b312bbff8 CR3: 0000000075b82000 CR4: 00000000003526f0
[  612.159084][    C0] Call Trace:
[  612.159093][    C0]  <TASK>
[  612.159101][    C0]  default_idle+0x13/0x20
[  612.159142][    C0]  default_idle_call+0x6c/0xb0
[  612.159177][    C0]  do_idle+0x38d/0x500
[  612.159205][    C0]  ? __pfx_do_idle+0x10/0x10
[  612.159231][    C0]  ? trace_sched_exit_tp+0x2f/0x120
[  612.159277][    C0]  cpu_startup_entry+0x4f/0x60
[  612.159304][    C0]  rest_init+0x16b/0x2b0
[  612.159340][    C0]  ? acpi_subsystem_init+0x133/0x180
[  612.159380][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  612.159407][    C0]  start_kernel+0x3f3/0x4e0
[  612.159450][    C0]  x86_64_start_reservations+0x18/0x30
[  612.159475][    C0]  x86_64_start_kernel+0x130/0x190
[  612.159499][    C0]  common_startup_64+0x13e/0x148
[  612.159537][    C0]  </TASK>
[  612.161208][   T32] Kernel panic - not syncing: hung_task: blocked tasks
[  612.358514][   T32] CPU: 1 UID: 0 PID: 32 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  612.367649][   T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  612.377736][   T32] Call Trace:
[  612.381119][   T32]  <TASK>
[  612.384067][   T32]  dump_stack_lvl+0x3d/0x1f0
[  612.388693][   T32]  vpanic+0x640/0x6f0
[  612.392714][   T32]  panic+0xca/0xd0
[  612.396470][   T32]  ? __pfx_panic+0x10/0x10
[  612.400920][   T32]  ? preempt_schedule_thunk+0x16/0x30
[  612.406323][   T32]  ? nmi_trigger_cpumask_backtrace+0x1b1/0x300
[  612.412515][   T32]  ? watchdog+0xe48/0x1170
[  612.416976][   T32]  ? watchdog+0xe3b/0x1170
[  612.421433][   T32]  watchdog+0xe59/0x1170
[  612.425705][   T32]  ? rcu_is_watching+0x12/0xc0
[  612.430493][   T32]  ? __pfx_watchdog+0x10/0x10
[  612.435186][   T32]  ? lockdep_hardirqs_on+0x7c/0x110
[  612.440417][   T32]  ? __kthread_parkme+0x19e/0x250
[  612.445482][   T32]  ? __pfx_watchdog+0x10/0x10
[  612.450192][   T32]  kthread+0x3c2/0x780
[  612.454305][   T32]  ? __pfx_kthread+0x10/0x10
[  612.459063][   T32]  ? rcu_is_watching+0x12/0xc0
[  612.463865][   T32]  ? __pfx_kthread+0x10/0x10
[  612.468578][   T32]  ret_from_fork+0x675/0x7d0
[  612.473203][   T32]  ? __pfx_kthread+0x10/0x10
[  612.477917][   T32]  ret_from_fork_asm+0x1a/0x30
[  612.482726][   T32]  </TASK>
[  612.486022][   T32] Kernel Offset: disabled
[  612.490377][   T32] Rebooting in 86400 seconds..