last executing test programs:

56.524329629s ago: executing program 1 (id=2269):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x31, 0x8000, 0x1ffde, 0x1, 0x2, 0x1, 0x9, 0x3, 0x5, 0x8, 0x3002, 0x9, 0xb, 0x80010002, 0x80, 0xd8f9, 0x6, 0x7, 0x2, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x800, 0x0, [0x0, 0x0, 0x0, 0x0, 0xd, 0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xeff, 0x0, 0xffffffffffffffff, 0x0, 0x1000, 0x4]}, 0x1fe, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000)
munmap$auto(0x20001000, 0x7fb3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xfc, &(0x7f0000000100)={0x0, 0xfc6}, 0x2, 0x0, 0x7, 0x3}, 0x800}, 0x7, 0x4008)

56.434842745s ago: executing program 1 (id=2270):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/controlC2\x00', 0x80, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
socket(0x2, 0x1, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x3a)
ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f00000001c0)={0x1ff, 0x4, 0xfffe000000, 0x1, 0x21d})
r0 = socket(0x2, 0x2, 0x0)
bpf$auto(0x0, &(0x7f0000000100)=@raw_tracepoint={0x5548, r0, 0x0, 0xbc43}, 0x7f4)
socket(0x11, 0x3, 0x80000001)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8002, 0x0)
select$auto(0x401, 0x0, 0x0, 0x0, 0x0)
select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x1, 0x100000001, 0x9, 0x6, 0x20000000000001ff, 0x6, 0x5, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x4, 0x5, 0xe7, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0x10000000ce})
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x44845}, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x311)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x104, 0x6, 0x3}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
statmount$auto(0x0, &(0x7f0000000400)={0x8, 0x1, 0x9, 0x3, 0xb, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x3, 0x4, 0xb0, 0x7, 0x6, 0x3, 0x5, 0x7}, 0x1fe, 0x81)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8)

55.284797632s ago: executing program 1 (id=2278):
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/state\x00', 0x102, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0xffffffff, 0x12f3, 0x4800000, 0x0)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000040))
fcntl$auto(r2, 0x402, 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_DEL_TXSA(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000005680)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="2bb22bbd7000fcdbdf250500000008000100", @ANYRES32=0x0, @ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x20000050}, 0x40094)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/fail-nth\x00', 0x200, 0x0)
mmap$auto(0x0, 0x2000a, 0x4000000000df, 0xeb1, 0x4, 0x8000)
connect$auto(0x4, 0x0, 0x10)
read$auto(0x4, 0x0, 0xfdef)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000080), 0x101, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x100000400008, 0x5ebe, 0x9b70, r3, 0x40000007fff)
mmap$auto(0xffffffffffffffff, 0x2020009, 0x80000001, 0x10000000000eb1, r0, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r5 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'bond0\x00', <r7=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r7, r6, 0x4, 0x1ff, r5, @relative_id=0x13, 0xe600}, 0xf)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)

55.035640283s ago: executing program 1 (id=2279):
r0 = socket(0x37, 0x4, 0xa) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r1 = epoll_create$auto(0x8ca0d1a)
epoll_pwait2$auto(r1, 0x0, 0x9, &(0x7f0000000100)={0x0, 0x7f}, &(0x7f0000000140)={0x7}, 0x8) (async)
read$auto_autofs_root_operations_autofs_i(r1, &(0x7f0000000300)=""/216, 0xd8)
r2 = prctl$auto(0x3d, 0xfff, 0xffffffffffffffff, 0x1, 0x0) (async)
mmap$auto(0x6, 0xe986, 0x6, 0x18, 0xffffffffffffffff, 0x8000) (async)
recvmmsg$auto(r0, 0x0, 0x400fffd, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/hugepages-64kB/stats/swpout_fallback\x00', 0x341200, 0x0) (async)
semctl$auto(0x0, 0xe3, 0x0, 0x5) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="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"], 0x48}, 0x1, 0x0, 0x0, 0x4048080}, 0x400c004)
r6 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
lseek$auto(r6, 0x7fd, 0x1) (async)
socket$nl_generic(0x10, 0x3, 0x10)
truncate$auto(0x0, 0xc0ce) (async)
lsm_set_self_attr$auto(0x1, 0x0, 0x7, 0x6)
getsockname$auto(r3, &(0x7f0000000000)=@ax25={0x3, @default}, &(0x7f0000000040)=0x6)
sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x7, 0xffff, 0x0, 0x8}, 0xf) (async)
bpf$auto(0x3, &(0x7f00000001c0)=@iter_create={r2, 0x4}, 0xc) (async)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
ioctl$auto_TCSBRK2(0xffffffffffffffff, 0x5409, 0x0) (async)
mmap$auto(0x0, 0xfffffffffffffffb, 0xdf, 0xeb4, 0x401, 0x6d9) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
fsopen$auto(0x0, 0x0)

54.880547148s ago: executing program 1 (id=2280):
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)
r0 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/buffer_percent\x00', 0xc042, 0x0)
ioctl$auto(r0, 0x40000009, r0)
r1 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x12a382, 0x0)
fadvise64$auto_POSIX_FADV_NORMAL(r1, 0xd, 0x3, 0x0)
openat$auto_proc_page_owner_threshold_(0xffffffffffffff9c, &(0x7f0000000080), 0x90002, 0x0)
write$auto_split_huge_pages_fops_huge_memory(r1, &(0x7f0000000100)='1', 0x1)

50.071564285s ago: executing program 1 (id=2299):
mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x40008000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
r0 = openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/mac80211_hwsim/hwsim15\x00', 0x10100, 0x0)
sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="fe00004510c2d285387e38dece100a6cc9355755e2f6c26f1a14dda0304845245a811aadf5d8b4dfd492cd03af473239093922269869d6bf64ec956c90abb2a20beffa3aea993cfda7d035473594e235bcc9717f44957caacac19bbd31580fcdf82d814108f78aa8ad4cbb01522ad47e630eb812621af7dd1882c0c49c7b94f8", @ANYRES16=0x0, @ANYBLOB="040029bd7000fddbdf25150000001e0034000774e261bcff873503257eddcb8862b3650049f177c6e7f994e40000a8002280952f0d8cc43cac9b48048611a806f900ea3424be672abb5edc4f273d90753d00642095278fecc95b00fe718e47545e28713e16c3c7e85b0d6d734831806c3abe80cefcfd8c98b950532023d3a9fcfbd38b37a665cdea51377e25ad86fb10d35bd3a6b51f2fa8f30e19fd1246dd82a06f0b0675758fd5cadbc4ff9dc154e3eb7bf64771616c5e1e4263b7937421b2bcc843ef312e043a4e05ddb8da61e4d79f385cbd0b820600950004000000"], 0xe4}, 0x1, 0x0, 0x0, 0x4000040}, 0x4084)
r1 = waitid$auto(0x4, 0xffffffffffffffff, &(0x7f0000000600)={@_si_pad}, 0x0, &(0x7f0000000680)={{0xd39, 0xffffffffffffdc01}, {0x6, 0x4}, 0x8000000000000000, 0x1000, 0x9, 0x3, 0x0, 0x6, 0x1, 0x7, 0x10001, 0x7, 0x8, 0x80000001, 0x3, 0x7a})
ioctl$auto_XFS_IOC_FREESP(r0, 0x4030580b, &(0x7f0000000740)={0x0, 0x6, 0x2, 0x3f4, 0x2d17, r1})
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0x5c, 0xdf, 0xeb1, 0x401, 0x100000000008000)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0)
mmap$auto(0x2000, 0x80009, 0xb, 0x8000000008011, r2, 0x0)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)
mmap$auto(0x20000000000000, 0x3, 0x9741, 0x8000eb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x4, 0x7)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
mlockall$auto(0x7)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x2, 0x88)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0)
r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x208800, 0x0)
ioctl$auto_UI_SET_ABSBIT(r3, 0x40045567, &(0x7f0000000100)=0x406a)
socket(0x1e, 0x2, 0x7)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x40009a6, 0x0)
mmap$auto(0x0, 0x2000000004, 0x4, 0x40eb5, 0x401, 0x300000000000)
prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100)

34.766568028s ago: executing program 32 (id=2299):
mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x40008000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
r0 = openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/mac80211_hwsim/hwsim15\x00', 0x10100, 0x0)
sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="fe00004510c2d285387e38dece100a6cc9355755e2f6c26f1a14dda0304845245a811aadf5d8b4dfd492cd03af473239093922269869d6bf64ec956c90abb2a20beffa3aea993cfda7d035473594e235bcc9717f44957caacac19bbd31580fcdf82d814108f78aa8ad4cbb01522ad47e630eb812621af7dd1882c0c49c7b94f8", @ANYRES16=0x0, @ANYBLOB="040029bd7000fddbdf25150000001e0034000774e261bcff873503257eddcb8862b3650049f177c6e7f994e40000a8002280952f0d8cc43cac9b48048611a806f900ea3424be672abb5edc4f273d90753d00642095278fecc95b00fe718e47545e28713e16c3c7e85b0d6d734831806c3abe80cefcfd8c98b950532023d3a9fcfbd38b37a665cdea51377e25ad86fb10d35bd3a6b51f2fa8f30e19fd1246dd82a06f0b0675758fd5cadbc4ff9dc154e3eb7bf64771616c5e1e4263b7937421b2bcc843ef312e043a4e05ddb8da61e4d79f385cbd0b820600950004000000"], 0xe4}, 0x1, 0x0, 0x0, 0x4000040}, 0x4084)
r1 = waitid$auto(0x4, 0xffffffffffffffff, &(0x7f0000000600)={@_si_pad}, 0x0, &(0x7f0000000680)={{0xd39, 0xffffffffffffdc01}, {0x6, 0x4}, 0x8000000000000000, 0x1000, 0x9, 0x3, 0x0, 0x6, 0x1, 0x7, 0x10001, 0x7, 0x8, 0x80000001, 0x3, 0x7a})
ioctl$auto_XFS_IOC_FREESP(r0, 0x4030580b, &(0x7f0000000740)={0x0, 0x6, 0x2, 0x3f4, 0x2d17, r1})
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0x5c, 0xdf, 0xeb1, 0x401, 0x100000000008000)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0)
mmap$auto(0x2000, 0x80009, 0xb, 0x8000000008011, r2, 0x0)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)
mmap$auto(0x20000000000000, 0x3, 0x9741, 0x8000eb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x4, 0x7)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
mlockall$auto(0x7)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x2, 0x88)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0)
r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x208800, 0x0)
ioctl$auto_UI_SET_ABSBIT(r3, 0x40045567, &(0x7f0000000100)=0x406a)
socket(0x1e, 0x2, 0x7)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x40009a6, 0x0)
mmap$auto(0x0, 0x2000000004, 0x4, 0x40eb5, 0x401, 0x300000000000)
prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100)

9.669184569s ago: executing program 2 (id=2409):
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
sendmsg$auto_TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x24004044}, 0x10000000)
io_uring_register$auto(0x2, 0x22, &(0x7f0000000100), 0x1)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1e, 0x4, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
ioctl$auto_TCFLSH2(r0, 0x540b, 0xfffffffffffffffd)
socket(0x1d, 0x2, 0x7)
setsockopt$auto(0x3, 0x6b, 0x3, 0x0, 0x4)
socket(0x10, 0x2, 0x9)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r1 = open(0x0, 0x261c2, 0x84)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0xa, 0x2, 0x88)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'team0\x00', <r5=>0x0})
bpf$auto(0x0, &(0x7f0000000280)=@bpf_attr_5={@target_ifindex=r5, r4, 0x8, 0x1, 0xffffffffffffffff, @relative_fd=r2, 0xe600}, 0xf)
capset$auto(0x0, 0x0)
bpf$auto(0x2, &(0x7f0000000340)=@raw_tracepoint={0x5, r1, 0x0, 0x2}, 0xc)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
select$auto(0x7, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x4, 0x15, 0x1000, 0x47, 0xc, 0xf, 0x0, 0x0, 0xe, 0xd59, 0x101, 0xff, 0x2, 0x3]}, 0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000)

9.50158143s ago: executing program 2 (id=2410):
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) (async)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) (async)
r0 = socket(0x29, 0x2, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
setsockopt$auto(0x400000000000003, 0x29, 0x1e, 0x0, 0x56b) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[], 0x664}, 0x1, 0x0, 0x0, 0x8040}, 0x4048010) (async)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
write$auto(r1, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9)
r3 = getpid()
mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) (async)
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xbff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
ioctl$auto(0x3, 0x400454ca, 0x38)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
prctl$auto(0x1, 0x6, r3, 0xb117, 0x9) (async)
mmap$auto(0x200000000000, 0x810004, 0x40000000000ffb, 0x8000000008012, 0x3, 0x48000) (async)
read$auto_fragmentation_threshold_ops_(r2, &(0x7f00000000c0)=""/118, 0x76) (async)
r4 = io_uring_setup$auto(0x6, 0x0) (async)
madvise$auto(0x0, 0x401, 0x15) (async)
r5 = openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f00000002c0), 0x480, 0x0)
pread64$auto(r5, 0x0, 0xd56c, 0xa84) (async)
socket$nl_generic(0x10, 0x3, 0x10)
read$auto_proc_pid_set_timerslack_ns_operations_base(r4, &(0x7f0000000440)=""/242, 0xf2) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)

9.104621774s ago: executing program 2 (id=2411):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$auto_TCSBRK2(0xffffffffffffffff, 0x5409, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000f7, 0x3, 0x1)
set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0)
r0 = socket(0x2a, 0x2, 0x1)
write$auto(0x3, 0x0, 0xffd8)
setsockopt$auto(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000000)='\x00', 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mseal$auto(0x0, 0x7dda, 0x0)
madvise$auto(0xfffffffffffffffe, 0x2003f3, 0x80000000)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x62a002, 0x0)
mmap$auto(0x0, 0x200006, 0x2, 0x40ebd, r0, 0x8000300000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0)
ioctl$auto(r1, 0x8924, r1)
ioctl$auto(0xffffffffffffffff, 0x9210642d, 0xc5)
r2 = dup$auto(0xffffffffffffffff)
unshare$auto(0x40000080)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
readv$auto(r3, 0x0, 0x19)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r4 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f00000000c0), r2)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x2c, r4, 0x400, 0x70bd27, 0x25dfdbff, {}, [@IEEE802154_ATTR_CCA_ED_LEVEL={0x8, 0x24, 0x2}, @IEEE802154_ATTR_BAT_EXT={0x5, 0x1a, 0x2}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24048804}, 0x0)

8.063639248s ago: executing program 2 (id=2415):
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000b80), r0)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0xa0)
mount$auto(&(0x7f0000000180), &(0x7f0000000140)='./file0\x00', &(0x7f00000000c0)='hfs\x00', 0x10, 0x0)
mmap$auto(0x0, 0x20009, 0x12, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x59, &(0x7f00000003c0)={0x4, 0xd, 0x20000005, 0x80000001, 0x7, 0x8, 0xffffffffffffffff, [0x0, 0x0, 0xefffffff], {0x7f, 0x6, 0x8, 0x29f, 0x100, 0x8, 0x101, 0x6, 0xffffffff80000000}, {0x101, 0x1, 0x52, 0x5, 0x1e, 0x40, 0x76c5, 0x8, 0x100000000}})
r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/pagemap\x00', 0x0, 0x0)
readv$auto(r2, &(0x7f0000000400)={0x0, 0x40}, 0x6)
sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r0, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010029bd7000fbe1df25050000000800040003000000"], 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x40040)
io_uring_setup$auto(0x1, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
msgrcv$auto(0x4, &(0x7f0000000080)={0x8, 0xc}, 0xd94, 0x2, 0x401)
r4 = socket(0x2, 0x1, 0x106)
getsockopt$auto(r4, 0x6, 0x6, 0xfffffffffffffffc, 0x0)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
writev$auto(0x8000, &(0x7f0000000040)={0x0, 0x2}, 0x1000002bf)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x2, &(0x7f0000000040), 0x3)
close_range$auto(0x2, 0x8000, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0x4188aec6, r3)

7.299278661s ago: executing program 0 (id=2417):
rseq$auto(&(0x7f00000001c0)={0xe, 0x20401, 0x5fc, 0x10000006, 0xffffffff, 0x6}, 0x8000, 0x0, 0x6) (async)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) (async, rerun: 32)
io_cancel$auto(0x6, 0x0, 0x0) (async, rerun: 32)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) (async)
read$auto(0xffffffffffffffff, 0x0, 0x23)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3)
unshare$auto(0x40000080) (async)
lstat$auto(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000240)={0x2, 0x384, 0xffffffffffffffff, 0xa8, <r1=>0xee01, 0xee00, 0x0, 0x1, 0x5, 0x0, 0xbdc, 0x3, 0x8, 0x7, 0xe, 0x8, 0x6}) (async)
r2 = getegid()
lstat$auto(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000300)={0x1, 0x4, 0x6, 0x9, r1, r2, 0x0, 0xffffffff, 0x9, 0xca, 0x975, 0x8, 0x9, 0xffffffffffffffc4, 0x0, 0x7, 0xbeb}) (async)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card1/pcm0p/sub1/status\x00', 0x400, 0x0) (async)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
readahead$auto(r3, 0x9, 0x7fffffffffffffff)

6.843148818s ago: executing program 2 (id=2420):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
r0 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r0, 0x1, 0xd, &(0x7f0000000000)='\'-+\x00\x10\xa4#\x92`\xdb\xafL\x0f\xfbUV\xa6KH]Cv\xbf\xf2a\v', 0x9)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r1, &(0x7f0000001bc0)="9b42657291", 0x5)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
unshare$auto(0x5000000000000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
open(&(0x7f00000001c0)='./cgroup\x00', 0x0, 0x6f)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
r3 = socket(0xa, 0x2, 0x88)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'sit0\x00', <r6=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r6, r5, 0x4, 0x1ff, r3, @relative_id=0x13, 0xe600}, 0xf)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r2, 0x0, 0x3}, 0xc)
bpf$auto(0x3, &(0x7f00000001c0)=@bpf_attr_11={0x5, 0x81, 0xfffffffc, 0x161f, 0xf870e9f, 0xa4ea, 0x7}, 0x9)

6.842674572s ago: executing program 4 (id=2421):
r0 = socket(0x10, 0x3, 0x6)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, r1, 0x8ae36f82a2442f77, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4048000}, 0x80)
socket(0x15, 0x5, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@l2tp={0x2, 0x0, @broadcast, 0x4}, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
timer_settime$auto(0xffffffff, 0x9, &(0x7f0000000140)={{0x7, 0x4}, {0x10}}, 0x0)
mmap$auto(0x0, 0x400008, 0xff, 0x10, 0x2, 0xc000)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
mremap$auto(0x1fc000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)

6.780689125s ago: executing program 0 (id=2422):
migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0))
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop11/queue/nr_requests\x00', 0x200, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
write$auto(0x3, 0x0, 0x100082)

6.77423487s ago: executing program 4 (id=2423):
inotify_init1$auto(0x3000000000000)
r0 = socket(0x23, 0x80805, 0x0)
poll$auto(&(0x7f0000000000)={<r1=>r0, 0x1, 0x8}, 0x5, 0x400)
setsockopt$auto(r1, 0x113, 0x4, 0x0, 0x1)
unshare$auto(0x40000080)
socket(0xa, 0x3, 0x3a)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd0\x00', 0x24000, 0x0)
ioctl$auto(r2, 0xab03, 0xffffffffffffffff)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000340)="001100")
io_uring_register$auto_IORING_UNREGISTER_NAPI(r3, 0x1c, &(0x7f0000000000)="1b23549e6c2185270ecd0322e2dbefd6fbd7a8482f7f5e37952dda9967709d312188bb9698682a20361caa8a59c1a77b4a8a383342d014b8685994c5d058ba1493c16ba2df6d21d6e932e0db4bbc410ecee421fbfc1ed446befbff14329e0743005212ad54a2d1cc17e95fbacf20c6e8e474a69ed18f951cccc496e32257d09b9fe867b392fc29bc58f854311b112d1aa3794127cc79d396a004b356a937", 0x9)

6.270359115s ago: executing program 3 (id=2424):
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r0 = setfsuid$auto(0xee01)
socket(0xa, 0x3, 0x3a)
setresuid$auto(0x2, 0x7, 0x8080)
setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x565)
r1 = setfsuid$auto(0xee00)
setreuid$auto(r1, 0x0)
r2 = getegid()
r3 = waitid$auto_P_PGID(0x2, 0x0, &(0x7f0000000280)={@_si_pad}, 0x3, &(0x7f0000000440)={{0x8, 0x6}, {0x8, 0xc5e}, 0x100000001, 0x3, 0x1, 0xf9, 0xfffffffffffffffc, 0x5, 0x6274, 0x9, 0x0, 0xb, 0x35d, 0x439c, 0x9, 0x7})
shmctl$auto_SHM_STAT_ANY(0x0, 0xf, &(0x7f00000006c0)={{0x7, r1, <r4=>r2, 0x4, 0x6, 0x81, 0x48d}, 0x1, 0x5, 0x8, 0x2, @inferred=r3, @raw=0x5, 0x5, 0x0, &(0x7f0000000500)="4f98c640887224e1536d4e40a39d3c81a9c6e8ae66bc479f7d92b6c649f07587e8084d4fd558d54a2ddca9c318eb050342e0fbb295dd58250b8d185616881413c9b3a8bbc9cb6f3059624b9d64d81f5b347672273ff0eac474a4fce025de7972a1b178c920727aab101d7741be7f42a7acc5ee4675ca2c96a2d08ca9a74b323f548afca84b63a71fb65c71061963f9693b6afa898480b20dc6d2e4f35f2381eabde6ac3f3b34948a7014878f346459ef0a11d7cb4fe7732d8d9e95d0cc7450914c2b63b9054c10080ba951b8f095adaead86e8bf209f5a9ecef565321572507c2b71c3a04fe37344218ffc325a27547ba7f31f1edb3ba545", &(0x7f0000000600)="3b4aab5baf7b70279f51554278b9b2497af28d2f68748361dda23b269d8b59ff913dc2ce2f41389066481eb9ea5492d38b5b950569f4d785c41fe5d0ab02234a66c5d804108051813044b3235a4b452ff0c51b938f2f5440d9ecee6cfad16d8271c93fa2488f5af21c4361fca3799a20b53b6f0c6c3b19b35a674aec24b246c982d5f007b2ecde6cab52699af3b1e94e1a42d4e44b022d7d64730dd5127ccd9f02f7590e93c2c7d8eb6e44"})
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0x10ffffffff}, 0x6, 0x0)
msgctl$auto_IPC_STAT(0x2, 0x2, &(0x7f0000000200)={{0x10, r0, r4, 0x80000000, 0x8, 0x0, 0x6}, &(0x7f0000000000)=0x9b, &(0x7f00000000c0)=0x5, 0x1, 0x101, 0x4, 0x2, 0x80, 0xac, 0x0, 0x200, @raw, @raw=0x18})
migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b)
r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x2a000, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r6, 0xc0045006, &(0x7f00000001c0))
r7 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r7, 0x5001, 0x0)
write$auto(r7, 0x0, 0x8000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000026d00)='/dev/dri/card1\x00', 0x2000, 0x0)
ioctl$auto(r8, 0x64c9, r8)
r9 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001fc, 0x7, 0xd3e, 0x1, 0x9687, 0x100000000000003, 0x95f4da0a, 0x6, 0x3, 0x62, 0x5, 0x5, 0x6d3f, 0x7, 0x6, 0x6]}, 0x0)
write$auto(r9, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40010}, 0x2)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xfc2, 0xd, 0x1, 0x4000000000000004, 0x3, 0x3, 0x3, 0x3, 0xa, 0x7ffffffffffffffe, 0x2000175f, 0x8, 0x8000003, 0x2, 0x8000000000000006]}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

6.140932197s ago: executing program 4 (id=2425):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r2, 0x4068aea3, &(0x7f0000000080)={0xdc})
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x1, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @my=0x0}, 0x55)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @hyper}, 0x55)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000040)={0x40, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@OVS_DP_ATTR_IFINDEX={0x8}, @OVS_DP_ATTR_IFINDEX={0x8}, @OVS_DP_ATTR_NAME={0x11, 0x1, 'ovs_\x12\xff\xfe\x02\xff\xfe\x00\x00\x02'}, @OVS_DP_ATTR_UPCALL_PID={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000)

6.087935138s ago: executing program 3 (id=2426):
sendmsg$auto_NL80211_CMD_SET_COALESCE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000005304"], 0x5f}}, 0x844)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/afs/stats\x00', 0x400000, 0x0)
mprotect$auto(0x110c230000, 0xa588, 0x6)
mremap$auto(0x110c231000, 0xfffffffffffffffc, 0x101, 0x3, 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages$auto(r0, 0x1002, 0x0, 0x0, 0x0, 0x2)
readv$auto(0x3, 0x0, 0x7)
ioctl$auto(0x3, 0x402c542b, 0x38)
r1 = socket(0xa, 0x3, 0x3a)
r2 = getsockopt$auto(r1, 0x29, 0xd0, 0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000000)='-\x00', 0x2fb)
fchmodat2$auto(r2, &(0x7f0000000100)='./file0\x00', 0xfffa, 0x5)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000080)={"562762f657470c8d1016685aeb3537f1066ec33ca028ff14c403f473a1b28a61", 0x6, 0xa, 0xfffffffe, 0xfffffffffffffff7, 0x7fffffffffffffff, <r3=>0x0})
ptrace$auto_PTRACE_SINGLEBLOCK(0x21, r3, 0x5, 0xfffffffffffffff9)

5.762108126s ago: executing program 4 (id=2427):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
process_madvise$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, &(0x7f0000000140)={&(0x7f0000000000), 0x55}, 0x3fb, 0x2, 0x0)
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/fs/cifs/smbd_max_receive_size\x00', 0x2, 0x0)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
mremap$auto(0x0, 0x6, 0x3fd6, 0x0, 0x1ffffffe)
connect$auto(0x3, 0x0, 0x54)
open(0x0, 0x2a4c0, 0x40)
execve$auto(0x0, 0x0, 0x0)

5.660544781s ago: executing program 3 (id=2428):
mmap$auto(0x0, 0x400008, 0xe3, 0xbb72, 0x2, 0x8000)
socket(0xa, 0x801, 0x106) (async)
socket(0xa, 0x801, 0x106)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x2)
setsockopt$auto(0x3, 0x0, 0x13, 0x0, 0xb)
readv$auto(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f0000000000)="49cea871e6ceb37665a0d4597ddbcd0544c88a0deba4718cec8176e2fc894b077a24a490e9699321e39a", 0xfffffffffffffffb}, 0x34) (async)
readv$auto(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f0000000000)="49cea871e6ceb37665a0d4597ddbcd0544c88a0deba4718cec8176e2fc894b077a24a490e9699321e39a", 0xfffffffffffffffb}, 0x34)

5.414466593s ago: executing program 2 (id=2429):
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82942, 0x0)
r0 = syz_clone(0x100, &(0x7f0000000040), 0x0, &(0x7f0000000040), &(0x7f0000000100), &(0x7f0000000140)="02e9eb9391a4861b7bd67d1d8443e831640b837c4156149aefd85568ae0c109a4cda2970765cd46f51534c95a8728951b79b5a")
rt_sigqueueinfo$auto(r0, 0x400, &(0x7f0000000240)={@_si_pad})
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0xa0801, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = socketcall$auto(0x8000, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, r2)
lstat$auto(0x0, &(0x7f0000000180)={0x11, 0x2, 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfa98, 0xfffffffffffffffb, 0x7fffffffffffffff, 0x4, 0x100000007ffffffe, 0x7fffffffffff7ffb, 0x5f3, 0x7, 0x4, 0x6})
ioctl$auto_KVM_GET_MSRS(r1, 0x4400ae8f, &(0x7f00000000c0)={0xdd})
close_range$auto(0x0, 0xfffffffffffff000, 0x0)

5.30231397s ago: executing program 0 (id=2430):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x18b800, 0x0)
mmap$auto(0x9, 0x20009, 0xe2, 0xeb1, 0xf6f6, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto(0x3, 0x0, 0x80)
socket(0x23, 0x1, 0x8)
socket(0x11, 0x800000003, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/misc/hw_random/rng_quality\x00', 0x8a801, 0x0)
write$auto(r0, &(0x7f0000000040)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\xba\xe3\x15\xdd5\x12\xf7R\xdb\xc7\xab\xc5xG\xda\x05\b\xb3\re\x1c\xc7k', 0x81)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
r1 = socket(0x10, 0x2, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'dummy0\x00'})
socket(0xa, 0x801, 0x84)
r3 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(r3, 0x0, 0x5f)
setsockopt$auto(0x3, 0x10000000084, 0x83, 0x0, 0x8)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00')
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x2404c000)
write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3, 0x1, 0x0, 0x6, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0xa)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x109401, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x180b03, 0x0)
ioperm$auto(0x1, 0x3, 0x2)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)

5.040804623s ago: executing program 3 (id=2431):
r0 = fcntl$auto(0xffffffffffffffff, 0xffff, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
mbind$auto(0x0, 0x2091d2, 0x1, 0x0, 0x2, 0x2) (async)
madvise$auto(0x0, 0x2003f0, 0x18) (async, rerun: 32)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, r0, 0x8000) (async, rerun: 32)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x8}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"}) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket(0x10, 0xa, 0x4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
clone$auto(0x1000020003b49, 0x1, 0x0, 0x0, 0x2)
r2 = socket(0x15, 0x5, 0x0)
setsockopt$auto(r2, 0x114, 0xa, 0x0, 0x6) (async)
socket(0x11, 0x3, 0xfffff958) (async)
ioctl$auto_SNDRV_TIMER_IOCTL_STATUS32(r1, 0x80585414, &(0x7f0000000000)={0x675d529c, 0x9f7d, 0xfffffff1, 0x101, 0x6, 0x4, "1ec4c2336d0d5d8a5db102d8cd84eca696782c75e0cb2d4b8c400f6fdc12a84264800d00000035a29c7c1ebbdcd2fe5c88e17422928a5110f6e9fef8cac28588"}) (async)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) (async)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/icmp/ratemask\x00', 0xa0202, 0x0)
sendfile$auto(r4, r4, 0x0, 0x2) (async)
r5 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0)
sendfile$auto(r5, r5, 0x0, 0x10000800000003) (async)
fcntl$auto(0x3, 0x4, 0xa553)
write$auto(r3, &(0x7f00000000c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (async, rerun: 64)
r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/kernel/threads-max\x00', 0x40001, 0x0) (rerun: 64)
write$auto_proc_sys_file_operations_proc_sysctl(r6, 0x0, 0x0) (async)
syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000000), r0)
r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/neigh/ipvlan1/retrans_time\x00', 0x2242, 0x0)
sendfile$auto(r7, r7, 0x0, 0x200)

4.628720863s ago: executing program 4 (id=2433):
socket(0x26, 0x3, 0x9)
rseq$auto(0x0, 0x8000, 0x0, 0x6) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
setresuid$auto(0x0, 0x8, 0x0) (async)
setfsuid$auto(0x0)
setresuid$auto(0x8, 0x8, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
faccessat2$auto(0x1, &(0x7f00000000c0)='\x00', 0x2, 0x1000) (async)
syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000000), r0) (async)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
r2 = fsopen$auto(0x0, 0x1)
fsconfig$auto_JFFS2_COMPR_MODE_NONE(r2, 0x4, &(0x7f0000000100)='/dev/fuse\x00', &(0x7f0000000180)="0706001b70a4287a30b830b38aed6a8c607eeeb0442e4252c02a6155836194", 0x0) (async)
ioctl$auto_RNDADDENTROPY2(r2, 0x40085203, &(0x7f0000000080)=[0x2, 0x4])
close_range$auto(0x2, r0, 0x0) (async)
r3 = socket(0x80000000000000a, 0x2, 0x0)
r4 = socket(0xa, 0x801, 0x84) (async)
close_range$auto(r1, 0x8, 0x0) (async)
r5 = io_uring_setup$auto(0x3, 0x0) (async)
r6 = socket(0x2, 0x80000, 0x0)
openat$auto_bridges_fops_(0xffffffffffffff9c, 0x0, 0x84941, 0x0) (async)
close_range$auto(r5, r3, 0x0) (async)
socket(0x2, 0x80002, 0x73) (async)
socket(0x2, 0x1, 0x84) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) (async)
sendmmsg$auto(r6, &(0x7f0000000140)={{&(0x7f00000001c0)="ae2f7078d880dcabf65ef0b729d52b14c33e625bfed37adee6f116acce1d116352c6c466005a75a3449c5c228efa9a0378f60494d06e2ef1dd58d2978c9c3550d5f694568bd0f807b762609148373edffdca6e00b31cbf48e4fb97f7192b60e12ede6b10d1124949612bc86ccb9e1e1ef7cfd4e2b96d727c6065b69b0a2ef3ae79d2e7214ad89ee17ebae9997e4f947f2a65222fe352cf329efd18ec7eec038a", 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x6, 0x0, 0x3, 0xb}, 0xfff}, 0x5, 0x5) (async)
getsockopt$auto(r4, 0x84, 0x71, 0x0, 0x0) (async)
clone3$auto(0x0, 0x4)
kill$auto_SIGCONT(0xffffffffffffffff, 0x12)

4.160377006s ago: executing program 4 (id=2434):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x11, 0x3, 0x9)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/bluetooth/hci0/hci0:201/power/runtime_active_time\x00', 0x569800, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f00000005c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000600)={&(0x7f0000000840)=ANY=[@ANYRESDEC=0x0, @ANYRESOCT=0x0, @ANYRESOCT, @ANYRES32=0x0, @ANYRESDEC, @ANYRES32=0x0, @ANYBLOB, @ANYRESOCT=r0, @ANYRESOCT=r1, @ANYRES16=r1, @ANYRES64=<r3=>r2, @ANYRES16], 0xb4}}, 0x20000054)
write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0xfff)
write$auto(r2, 0x0, 0x98c7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x4, 0x15)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r4, &(0x7f0000001bc0)="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", 0x930)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_register$auto(0x2, 0xe, 0x0, 0x20)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r5 = io_uring_setup$auto(0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
clock_nanosleep$auto(0x2, 0x6, 0x0, 0x0)
sysfs$auto(0x7, 0xe636, 0x3)
sendmsg$auto_TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000640)={&(0x7f0000005480)=ANY=[@ANYRES8=r3, @ANYRES16=0x0, @ANYBLOB="02002bbd70006e0d000009000000ae0103800c0007000e000000000000007601b751cf68c6520f7fe75906600a13d6064adde0aa668f284af7d70df23344095720de726fa3a3630ebad2440df5e5469f3d1ceaa58d101fd43f3f3bd5e2d4e80a6e2b27ca5db508bb5a5682262e9352bde5238e94f04e3940d0c1b40af9db095845226fbeffd65a1deb7d21d21e4445dee6f78051ec70c2716fcab58a08008000", @ANYRES16=r5, @ANYBLOB="1400cf00fc00000000000000000000000000000046c8021f17b0ce27fdd6f776b184557a09957748e03f18cffd97fa3a81f05a3b7e76717649a30448d8885e9cd23df5211e616972857fe1456679183719f91cabc5be819065b823f1aa67446145a14a0740e3360e4a08b1ce5c9de776b559137f99e55f821a6bd457a3758419e0329ff8ce3360122149ba6fa3484c8f45271e158c8ca850a72989e3fadd6f5d30d6c2efe5361cd5771352cf9cff289282189c1646e48032d97f8d1d69c79aaacde7c45c34415921fb56f1c2307f96afb1ee6016eef1cbf8395b01dbf620aec5b8787a842ebd4b543f74ef9ac41ee134b0f06f474d83d718051ab7b6bd646b21eb95f8baa8edd02d08008c8004007b8008003900", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYRES16, @ANYRES32, @ANYBLOB="00006802048013fe28a1e8f7508513c38976f569e1d2ffa936d4198e9b3f661abe0045ac7109bfce419abfff479c6623655c57452c2751b0a4bc2b05d7e54a22fdf6457d9007db5987c1507f8adecc38d57ee6496d05d024dc9fecf734754cad3d4728531c68259cf1aac97cc124dd17da76c77f43a32f7945fd1b0dfb9ca59ba3f4778f7a26c1c5137f444a31f229626b19b522bd380abbf5a4adad4be430c16341e5874c8e8affcf122717d315a904822aeda615e76511d3e80fe6d4d41dbade7b1f6108002d00", @ANYRES32, @ANYRESHEX, @ANYRES32=0x0, @ANYBLOB="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"], 0x2f68}, 0x1, 0x0, 0x0, 0x80}, 0x4000)
fchdir$auto(0xffffffffffffffff)

3.012388301s ago: executing program 3 (id=2435):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/filter\x00', 0x2, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/pci/drivers/lpc_ich/remove_id\x00', 0x58edf45e45e4d83, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0xa, 0x0)
r2 = socket(0x2, 0x3, 0x6)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e)
ioctl$sock_SIOCGIFINDEX(r2, 0x401c5820, 0x0)
r4 = open(&(0x7f0000000280)='./file0\x00', 0x143242, 0x164)
read$auto(r0, 0x0, 0x20)
ioctl$auto_NS_GET_PID_IN_PIDNS(0xffffffffffffffff, 0x8004b708, &(0x7f0000000300)=0x8001)
read$auto(r1, &(0x7f0000000040)='\x00', 0x10000)
r5 = syz_genetlink_get_family_id$auto_seg6(&(0x7f00000000c0), r4)
sendmsg$auto_SEG6_CMD_DUMPHMAC(r3, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x54, r5, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x10}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x4}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x5e04197d}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x4}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0xf9}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0xfb}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x2}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x8}]}, 0x54}, 0x1, 0x0, 0x0, 0x40200c0}, 0x1)
write$auto(0x3, 0x0, 0x5c8)

669.302923ms ago: executing program 0 (id=2436):
select$auto(0xf, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0x7, 0x2a, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x7, 0x40, 0x3, 0x1, 0x5, 0x8d, 0xffffffdffffffffe]}, 0x0)
r0 = socket(0xa, 0x2, 0x0)
sendto$auto(r0, 0x0, 0x402, 0xacf8, &(0x7f0000000040)=@generic={0xa, "e2e18340cba82001001000"}, 0x1c)

337.571761ms ago: executing program 0 (id=2437):
statmount$auto(0x0, &(0x7f0000000180)={0x4, 0x1, 0x401bf, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0xd)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) (async)
r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x101440, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0xffffffff, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"})
ioctl$auto_SNDRV_TIMER_IOCTL_STATUS64(r0, 0x80605414, &(0x7f0000000000)={0x8, 0x3, 0x4, 0xba44, 0x2, 0xc, "e000265b7222b141ecb9fb5793abe8fdffdbcd2c02d3c293fa98882f5336d79fc5b8202cb37f6b6d22c42432352deb58e78afdbae76900"})
r1 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r1, 0x29, 0x30, 0x0, 0x56b)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x28b42, 0x0) (async, rerun: 64)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/transparent_hugepage/enabled\x00', 0x501, 0x0) (rerun: 64)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000200)="34ae", 0x2) (async)
sendfile$auto(r2, r2, 0x0, 0x1ff) (async)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) (async, rerun: 32)
sendmsg$auto_ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, 0x0, 0x4000840) (async, rerun: 32)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
io_uring_setup$auto(0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
open(0x0, 0x22240, 0x155) (async)
setpriority$auto_PRIO_USER(0x2, 0x0, 0xfffff8b0) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async)
connect$auto(0x4, 0x0, 0x10) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async, rerun: 64)
setsockopt$auto(r1, 0x9, 0x0, &(0x7f0000000080)='/sys/kernel/mm/transparent_hugepage/enabled\x00', 0x5) (async)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES8=r1], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8040) (async)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x2, 0x3, 0x100)
socket(0x1d, 0x2, 0x7)
socket(0x2, 0x1, 0x0)

124.628253ms ago: executing program 3 (id=2438):
socket(0xa, 0x2, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20b42, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x2, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x208000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
r2 = clone$auto(0x4, 0x0, 0x0, 0x0, 0x8)
kcmp$auto(r2, 0x0, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff)
r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(0xffffffffffffffff, 0x541c, r3)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0xd332, 0x3, 0x95f4da0a, 0x10001, 0x0, 0x62, 0x80000001, 0x7, 0x2, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0x11, 0x0, 0x0, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/irq/2/name\x00', 0x800, 0x0)
read$auto(r4, 0x0, 0x1)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x9, 0x1f, 0x940, 0x1ffde, 0x3, 0x6, 0x8000003, 0x9, 0x5, 0x0, 0x4, 0xb0, 0x7, 0x200, 0x3, 0x205, 0x7, 0x0, 0x3ffff, 0x0, 0x3, 0x7069, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x8, 0x5, 0x8000004, 0x0, 0x100000000000000, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x100000000, 0x0, 0x8000000000000001, 0x0, 0x1, 0x0, 0x0, 0xfff, 0x4, 0x0, 0x0, 0x2000000000000000]}, 0x203, 0x7d)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)

0s ago: executing program 0 (id=2439):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
madvise$auto(0x0, 0x2000040080000004, 0xe)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D1\x00', 0x581402, 0x0) (async)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D1\x00', 0x581402, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
waitid$auto_P_ALL(0x0, 0x3b000, &(0x7f0000000280)={@siginfo_0_0={0x200, 0x0, 0x6, @_rt={0xffffffffffffffff, 0xee00, @sival_ptr=&(0x7f0000000200)="d6d36a9264dc4e5dc34083c1e1737f8d450996c3"}}}, 0x3, &(0x7f0000000300)={{0xda0000000000000, 0xf0}, {0x2, 0x6}, 0x8000000000000000, 0xa, 0x8, 0x9, 0xb871, 0x6, 0xa000, 0xffffffffffffffff, 0x3, 0xf8c5, 0x1000, 0x81, 0x9, 0xd})
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x1d) (async)
madvise$auto(0x0, 0x200007, 0x1d)
pwrite64$auto(0xc8, &(0x7f0000000380)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\t\x00\x00\x00X\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\xa2\x01\x88\v\xae\xa9\xe98W\xe5\x00!\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*6\x9b\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbb\x9e\x93H\xdan\x1d\x00\xeb]B\xa0\x99\xb0R\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1uO\x8fL\"\xact\xee\x04\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa4_\x85\xf0k\xe0\"*^o\x83-\xc2\xcc\xa6\x12\x96\xe7\xef3\xcay\xfcl:Du9U\xf6\x1f&F\xa8\xe0\x0f\xd0\x04\xa2*\x17\x81\x85\xf3p7Oq\xd6\x97-\xb7CFKU\xf0\x7f1Qg\xe12\x84\xbfl \x06aq \x04\xd3\x15\x0f\nn\xf3\xf5\xe3\x1a\xad;\x8d\x80\x86\xec6Xm>\xd8,YhS\xf3\xac\xd1)\xa3\x9b\xd4\xd2\x86?\fH\xfaa()\xd1A\x9b\xabZ54i\x95\xac\x1a\xf2\xff\x19\xc7.\xfe\x06i\xcfAy\t)\xf3m\x93_\xe0I\x99\x89\xcb\xb7.\xa2\xd8\x97.\xbfH\x9bP\xaf{\x1c_\xfa6\f\a\x84\xc6\xa0\xe7\x00\x00\x00', 0xfded, 0x6) (async)
pwrite64$auto(0xc8, &(0x7f0000000380)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\t\x00\x00\x00X\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\xa2\x01\x88\v\xae\xa9\xe98W\xe5\x00!\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*6\x9b\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbb\x9e\x93H\xdan\x1d\x00\xeb]B\xa0\x99\xb0R\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1uO\x8fL\"\xact\xee\x04\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa4_\x85\xf0k\xe0\"*^o\x83-\xc2\xcc\xa6\x12\x96\xe7\xef3\xcay\xfcl:Du9U\xf6\x1f&F\xa8\xe0\x0f\xd0\x04\xa2*\x17\x81\x85\xf3p7Oq\xd6\x97-\xb7CFKU\xf0\x7f1Qg\xe12\x84\xbfl \x06aq \x04\xd3\x15\x0f\nn\xf3\xf5\xe3\x1a\xad;\x8d\x80\x86\xec6Xm>\xd8,YhS\xf3\xac\xd1)\xa3\x9b\xd4\xd2\x86?\fH\xfaa()\xd1A\x9b\xabZ54i\x95\xac\x1a\xf2\xff\x19\xc7.\xfe\x06i\xcfAy\t)\xf3m\x93_\xe0I\x99\x89\xcb\xb7.\xa2\xd8\x97.\xbfH\x9bP\xaf{\x1c_\xfa6\f\a\x84\xc6\xa0\xe7\x00\x00\x00', 0xfded, 0x6)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0) (async)
socket(0x29, 0x5, 0x0)
open(&(0x7f0000000040)='./cgroup\x00', 0x80, 0xb5d1af1605322de0) (async)
open(&(0x7f0000000040)='./cgroup\x00', 0x80, 0xb5d1af1605322de0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) (async)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000016c0)='/sys/kernel/cpu_byteorder\x00', 0x80000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x81) (async)
socket(0x2, 0x3, 0x81)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0x20f34)
write$auto(0x3, 0x0, 0xfffffdf2)
read$auto(r2, 0x0, 0x790) (async)
read$auto(r2, 0x0, 0x790)

kernel console output (not intermixed with test programs):

4.236462][ T7029] R13: 00007fc0c4de6128 R14: 00007fc0c4de6090 R15: 00007ffd45585088
[  144.236481][ T7029]  </TASK>
[  146.478179][ T7074] netlink: 28 bytes leftover after parsing attributes in process `syz.0.254'.
[  147.269102][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802726d400: rx timeout, send abort
[  147.278899][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802726f800: rx timeout, send abort
[  147.288158][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88802726d400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  147.303720][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88802726f800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  147.649899][ T7101] vhci_hcd: invalid port number 16
[  147.655086][ T7101] vhci_hcd: invalid port number 16
[  148.131876][ T7105] mkiss: ax0: crc mode is auto.
[  148.409896][ T7102] syz.2.264 (7102) used greatest stack depth: 19720 bytes left
[  149.820801][ T7136] zswap: compressor - not available
[  150.403087][ T7159] vhci_hcd: invalid port number 16
[  150.417943][ T7159] vhci_hcd: invalid port number 16
[  150.848061][ T7170] Invalid ELF header magic: != ELF
[  151.266644][ T7183] program syz.0.278 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  152.199169][ T7203] nbd: must specify a size in bytes for the device
[  152.271206][ T7203] netlink: 62 bytes leftover after parsing attributes in process `syz.0.284'.
[  152.281994][ T7203] netlink: 62 bytes leftover after parsing attributes in process `syz.0.284'.
[  152.312216][ T7203] netlink: 62 bytes leftover after parsing attributes in process `syz.0.284'.
[  152.377310][ T7203] netlink: 62 bytes leftover after parsing attributes in process `syz.0.284'.
[  152.435619][ T7203] netlink: 62 bytes leftover after parsing attributes in process `syz.0.284'.
[  152.493826][ T7203] netlink: 62 bytes leftover after parsing attributes in process `syz.0.284'.
[  152.576291][ T7203] netlink: 62 bytes leftover after parsing attributes in process `syz.0.284'.
[  152.657092][ T7203] netlink: 62 bytes leftover after parsing attributes in process `syz.0.284'.
[  152.657368][ T7203] netlink: 62 bytes leftover after parsing attributes in process `syz.0.284'.
[  152.657599][ T7203] netlink: 62 bytes leftover after parsing attributes in process `syz.0.284'.
[  153.286043][ T7227] can: request_module (can-proto-4) failed.
[  156.897647][ T7283] zswap: compressor  not available
[  156.946749][ T7284] zswap: compressor  not available
[  157.788049][ T7299] bond0: option packets_per_slave: invalid value (Xµn‘pæ)
[  157.850281][ T7299] bond0: option packets_per_slave: allowed values 0 - 65535
[  158.220600][ T7326] __nla_validate_parse: 16 callbacks suppressed
[  158.220622][ T7326] netlink: 28 bytes leftover after parsing attributes in process `syz.0.314'.
[  158.702571][ T7337] netlink: 4 bytes leftover after parsing attributes in process `syz.2.316'.
[  160.805435][ T7394] zswap: compressor  not available
[  162.271905][ T7434] random: crng reseeded on system resumption
[  162.373190][ T7437] nfs: Unknown parameter 'w¾Ã`_…à‚ûÏI+;ýá�	ÑöHYø º†»·«ÏLuõ>>ËÕuh�*àéC<+°ðÀÛ'
[  162.416418][ T7431] zswap: compressor - not available
[  163.094255][ T7450] zswap: compressor  not available
[  163.508427][ T7463] : Can't lookup blockdev
[  163.913765][ T7476] Invalid ELF header magic: != ELF
[  164.865791][ T7496] netlink: 28 bytes leftover after parsing attributes in process `syz.2.354'.
[  164.932977][ T7494] FAULT_INJECTION: forcing a failure.
[  164.932977][ T7494] name failslab, interval 1, probability 0, space 0, times 0
[  164.976775][ T7498] ICMPv6: process `syz.3.353' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  165.031908][ T7494] CPU: 0 UID: 0 PID: 7494 Comm: syz.3.353 Not tainted syzkaller #0 PREEMPT(full) 
[  165.031942][ T7494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  165.031955][ T7494] Call Trace:
[  165.031963][ T7494]  <TASK>
[  165.031972][ T7494]  dump_stack_lvl+0x16c/0x1f0
[  165.032008][ T7494]  should_fail_ex+0x512/0x640
[  165.032042][ T7494]  ? __kmalloc_noprof+0xca/0x880
[  165.032084][ T7494]  should_failslab+0xc2/0x120
[  165.032118][ T7494]  __kmalloc_noprof+0xdd/0x880
[  165.032153][ T7494]  ? splice_from_pipe_next+0x1f7/0x5d0
[  165.032177][ T7494]  ? copy_splice_read+0x1a8/0xc20
[  165.032205][ T7494]  ? copy_splice_read+0x1a8/0xc20
[  165.032226][ T7494]  copy_splice_read+0x1a8/0xc20
[  165.032249][ T7494]  ? __pfx_pipe_to_null+0x10/0x10
[  165.032285][ T7494]  ? __pfx_copy_splice_read+0x10/0x10
[  165.032308][ T7494]  ? pipe_unlock+0x4a/0x70
[  165.032337][ T7494]  ? __pfx_splice_from_pipe+0x10/0x10
[  165.032370][ T7494]  ? find_held_lock+0x2b/0x80
[  165.032397][ T7494]  ? __pfx_copy_splice_read+0x10/0x10
[  165.032419][ T7494]  do_splice_read+0x285/0x370
[  165.032449][ T7494]  splice_direct_to_actor+0x2a1/0xa30
[  165.032477][ T7494]  ? __pfx_direct_splice_actor+0x10/0x10
[  165.032510][ T7494]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  165.032547][ T7494]  do_splice_direct+0x174/0x240
[  165.032573][ T7494]  ? __pfx_do_splice_direct+0x10/0x10
[  165.032598][ T7494]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  165.032638][ T7494]  ? bpf_lsm_file_permission+0x9/0x10
[  165.032675][ T7494]  ? security_file_permission+0x71/0x210
[  165.032706][ T7494]  ? rw_verify_area+0xcf/0x6c0
[  165.032734][ T7494]  do_sendfile+0xb06/0xe50
[  165.032766][ T7494]  ? __pfx_do_sendfile+0x10/0x10
[  165.032791][ T7494]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  165.032830][ T7494]  ? __x64_sys_futex+0x1e0/0x4c0
[  165.032861][ T7494]  ? __x64_sys_futex+0x1e9/0x4c0
[  165.032898][ T7494]  __x64_sys_sendfile64+0x1d8/0x220
[  165.032932][ T7494]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  165.032975][ T7494]  do_syscall_64+0xcd/0xfa0
[  165.033008][ T7494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.033033][ T7494] RIP: 0033:0x7fc0c4b8f6c9
[  165.033060][ T7494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.033084][ T7494] RSP: 002b:00007fc0c5ace038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  165.033108][ T7494] RAX: ffffffffffffffda RBX: 00007fc0c4de5fa0 RCX: 00007fc0c4b8f6c9
[  165.033125][ T7494] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000009
[  165.033140][ T7494] RBP: 00007fc0c4c11f91 R08: 0000000000000000 R09: 0000000000000000
[  165.033155][ T7494] R10: 0010000800000003 R11: 0000000000000246 R12: 0000000000000000
[  165.033170][ T7494] R13: 00007fc0c4de6038 R14: 00007fc0c4de5fa0 R15: 00007ffd45585088
[  165.033207][ T7494]  </TASK>
[  165.424785][ T7496] sd 0:0:1:0: PR command failed: 1026
[  165.488371][ T7496] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  165.581493][ T7496] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  167.904554][ T7550] netlink: 8 bytes leftover after parsing attributes in process `syz.2.366'.
[  169.505533][ T7603] netlink: 342 bytes leftover after parsing attributes in process `syz.0.376'.
[  169.548974][ T7605] FAULT_INJECTION: forcing a failure.
[  169.548974][ T7605] name failslab, interval 1, probability 0, space 0, times 0
[  169.561863][ T7605] CPU: 1 UID: 0 PID: 7605 Comm: syz.3.377 Not tainted syzkaller #0 PREEMPT(full) 
[  169.561898][ T7605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  169.561914][ T7605] Call Trace:
[  169.561922][ T7605]  <TASK>
[  169.561932][ T7605]  dump_stack_lvl+0x16c/0x1f0
[  169.561969][ T7605]  should_fail_ex+0x512/0x640
[  169.562006][ T7605]  ? __kmalloc_noprof+0xca/0x880
[  169.562058][ T7605]  should_failslab+0xc2/0x120
[  169.562093][ T7605]  __kmalloc_noprof+0xdd/0x880
[  169.562132][ T7605]  ? __register_sysctl_table+0xb3/0x1900
[  169.562175][ T7605]  ? __register_sysctl_table+0xb3/0x1900
[  169.562209][ T7605]  __register_sysctl_table+0xb3/0x1900
[  169.562247][ T7605]  ? rcu_is_watching+0x12/0xc0
[  169.562275][ T7605]  ? __kmalloc_node_track_caller_noprof+0x362/0x8a0
[  169.562308][ T7605]  ? __pfx___register_sysctl_table+0x10/0x10
[  169.562352][ T7605]  ? __asan_memcpy+0x3c/0x60
[  169.562382][ T7605]  setup_mq_sysctls+0x13d/0x230
[  169.562425][ T7605]  copy_ipcs+0x3dc/0x550
[  169.562467][ T7605]  create_new_namespaces+0x20a/0xa90
[  169.562494][ T7605]  ? security_capable+0x7e/0x260
[  169.562530][ T7605]  copy_namespaces+0x468/0x560
[  169.562558][ T7605]  copy_process+0x2828/0x76a0
[  169.562600][ T7605]  ? __pfx_copy_process+0x10/0x10
[  169.562638][ T7605]  ? _copy_from_user+0x59/0xd0
[  169.562682][ T7605]  kernel_clone+0xfc/0x930
[  169.562712][ T7605]  ? __pfx_kernel_clone+0x10/0x10
[  169.562736][ T7605]  ? futex_private_hash_put+0xd5/0x190
[  169.562765][ T7605]  ? __pfx_futex_wait+0x10/0x10
[  169.562789][ T7605]  __do_sys_clone3+0x212/0x290
[  169.562813][ T7605]  ? __pfx___do_sys_clone3+0x10/0x10
[  169.562848][ T7605]  ? find_held_lock+0x2b/0x80
[  169.562889][ T7605]  do_syscall_64+0xcd/0xfa0
[  169.562914][ T7605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.562934][ T7605] RIP: 0033:0x7fc0c4b8f6c9
[  169.562951][ T7605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.562968][ T7605] RSP: 002b:00007fc0c5acdf08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  169.562987][ T7605] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fc0c4b8f6c9
[  169.563011][ T7605] RDX: 00007fc0c5acdf20 RSI: 0000000000000058 RDI: 00007fc0c5acdf20
[  169.563030][ T7605] RBP: 00007fc0c4c11f91 R08: 0000000000000000 R09: 0000000000000058
[  169.563043][ T7605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  169.563055][ T7605] R13: 00007fc0c4de6038 R14: 00007fc0c4de5fa0 R15: 00007ffd45585088
[  169.563083][ T7605]  </TASK>
[  170.124023][ T7613] FAULT_INJECTION: forcing a failure.
[  170.124023][ T7613] name failslab, interval 1, probability 0, space 0, times 0
[  170.170884][ T7613] CPU: 0 UID: 0 PID: 7613 Comm: syz.3.380 Not tainted syzkaller #0 PREEMPT(full) 
[  170.170908][ T7613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  170.170917][ T7613] Call Trace:
[  170.170922][ T7613]  <TASK>
[  170.170928][ T7613]  dump_stack_lvl+0x16c/0x1f0
[  170.170951][ T7613]  should_fail_ex+0x512/0x640
[  170.170972][ T7613]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  170.170990][ T7613]  should_failslab+0xc2/0x120
[  170.171011][ T7613]  kmem_cache_alloc_noprof+0x75/0x6e0
[  170.171025][ T7613]  ? __pmd_alloc+0xbf/0x8b0
[  170.171047][ T7613]  ? __pmd_alloc+0xbf/0x8b0
[  170.171104][ T7613]  __pmd_alloc+0xbf/0x8b0
[  170.171124][ T7613]  __handle_mm_fault+0xada/0x2aa0
[  170.171149][ T7613]  ? mt_find+0x3e2/0xa20
[  170.171168][ T7613]  ? __pfx___handle_mm_fault+0x10/0x10
[  170.171188][ T7613]  ? __pfx_mt_find+0x10/0x10
[  170.171217][ T7613]  ? find_vma+0xbf/0x140
[  170.171232][ T7613]  ? __pfx_find_vma+0x10/0x10
[  170.171250][ T7613]  handle_mm_fault+0x589/0xd10
[  170.171271][ T7613]  ? __pkru_allows_pkey+0x21/0xb0
[  170.171294][ T7613]  do_user_addr_fault+0x7a6/0x1370
[  170.171310][ T7613]  ? rcu_is_watching+0x12/0xc0
[  170.171327][ T7613]  exc_page_fault+0x64/0xc0
[  170.171344][ T7613]  asm_exc_page_fault+0x26/0x30
[  170.171358][ T7613] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  170.171379][ T7613] Code: 3c 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  170.171392][ T7613] RSP: 0018:ffffc90004947cf8 EFLAGS: 00050206
[  170.171404][ T7613] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000fd0
[  170.171413][ T7613] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888040e6e030
[  170.171421][ T7613] RBP: 0000000000000fd0 R08: 0000000000000001 R09: ffffed10081cddff
[  170.171429][ T7613] R10: ffff888040e6efff R11: 0000000000000000 R12: 0000000000000000
[  170.171437][ T7613] R13: ffff888040e6e030 R14: dffffc0000000000 R15: ffff888032f39500
[  170.171456][ T7613]  _copy_from_user+0x98/0xd0
[  170.171479][ T7613]  load_msg+0x19e/0x4a0
[  170.171499][ T7613]  do_msgrcv+0x202/0x16c0
[  170.171515][ T7613]  ? do_futex+0x122/0x350
[  170.171533][ T7613]  ? __pfx_do_msg_fill+0x10/0x10
[  170.171555][ T7613]  ? __pfx_do_msgrcv+0x10/0x10
[  170.171571][ T7613]  ? __x64_sys_futex+0x1e0/0x4c0
[  170.171590][ T7613]  ? fput+0x9b/0xd0
[  170.171609][ T7613]  ? xfd_validate_state+0x61/0x180
[  170.171627][ T7613]  ? __pfx_ksys_write+0x10/0x10
[  170.171647][ T7613]  ? do_syscall_64+0xcd/0xfa0
[  170.171662][ T7613]  do_syscall_64+0xcd/0xfa0
[  170.171680][ T7613]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.171693][ T7613] RIP: 0033:0x7fc0c4b8f6c9
[  170.171705][ T7613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.171717][ T7613] RSP: 002b:00007fc0c5aad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000046
[  170.171729][ T7613] RAX: ffffffffffffffda RBX: 00007fc0c4de6090 RCX: 00007fc0c4b8f6c9
[  170.171738][ T7613] RDX: 0000002400000000 RSI: 0000000000000000 RDI: 00000000000000ff
[  170.171746][ T7613] RBP: 00007fc0c4c11f91 R08: 000000006bc2cc7d R09: 0000000000000000
[  170.171754][ T7613] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[  170.171762][ T7613] R13: 00007fc0c4de6128 R14: 00007fc0c4de6090 R15: 00007ffd45585088
[  170.171781][ T7613]  </TASK>
[  171.158185][ T7639] nbd: illegal input index 65536
[  171.225792][ T7639] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  171.312872][ T7646] vhci_hcd: invalid port number 16
[  171.318123][ T7646] vhci_hcd: invalid port number 16
[  172.065990][ T7681] netlink: 4 bytes leftover after parsing attributes in process `syz.2.397'.
[  172.314459][ T7691] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  172.389721][ T7692] vhci_hcd: invalid port number 16
[  172.394949][ T7692] vhci_hcd: invalid port number 16
[  173.593600][ T7719] zswap: compressor Ø not available
[  173.739304][ T7732] FAULT_INJECTION: forcing a failure.
[  173.739304][ T7732] name failslab, interval 1, probability 0, space 0, times 0
[  173.752252][ T7732] CPU: 1 UID: 0 PID: 7732 Comm: syz.3.408 Not tainted syzkaller #0 PREEMPT(full) 
[  173.752286][ T7732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  173.752301][ T7732] Call Trace:
[  173.752309][ T7732]  <TASK>
[  173.752319][ T7732]  dump_stack_lvl+0x116/0x1f0
[  173.752355][ T7732]  should_fail_ex+0x512/0x640
[  173.752398][ T7732]  should_failslab+0xc2/0x120
[  173.752432][ T7732]  kmem_cache_alloc_noprof+0x75/0x6e0
[  173.752460][ T7732]  ? __send_signal_locked+0x159/0x12c0
[  173.752506][ T7732]  ? __send_signal_locked+0x159/0x12c0
[  173.752543][ T7732]  __send_signal_locked+0x159/0x12c0
[  173.752590][ T7732]  group_send_sig_info+0x2a4/0x300
[  173.752623][ T7732]  ? __pfx_group_send_sig_info+0x10/0x10
[  173.752661][ T7732]  ? kill_pid_info_type+0x1a/0x2a0
[  173.752686][ T7732]  kill_pid_info_type+0x92/0x2a0
[  173.752713][ T7732]  kill_proc_info+0x6f/0x1b0
[  173.752734][ T7732]  kill_something_info+0x2a2/0x310
[  173.752750][ T7732]  ? __task_pid_nr_ns+0x1ff/0x500
[  173.752771][ T7732]  __x64_sys_kill+0xd7/0x140
[  173.752789][ T7732]  ? __pfx___x64_sys_kill+0x10/0x10
[  173.752806][ T7732]  ? __pfx___x64_sys_futex+0x10/0x10
[  173.752830][ T7732]  ? rcu_is_watching+0x12/0xc0
[  173.752846][ T7732]  do_syscall_64+0xcd/0xfa0
[  173.752864][ T7732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.752879][ T7732] RIP: 0033:0x7fc0c4b8f6c9
[  173.752891][ T7732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.752904][ T7732] RSP: 002b:00007fc0c5ace038 EFLAGS: 00000246 ORIG_RAX: 000000000000003e
[  173.752917][ T7732] RAX: ffffffffffffffda RBX: 00007fc0c4de5fa0 RCX: 00007fc0c4b8f6c9
[  173.752926][ T7732] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000197
[  173.752934][ T7732] RBP: 00007fc0c4c11f91 R08: 0000000000000000 R09: 0000000000000000
[  173.752942][ T7732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  173.752950][ T7732] R13: 00007fc0c4de6038 R14: 00007fc0c4de5fa0 R15: 00007ffd45585088
[  173.752977][ T7732]  </TASK>
[  176.243888][ T7763] Invalid ELF header magic: != ELF
[  176.475576][ T7767] netlink: 342 bytes leftover after parsing attributes in process `syz.0.415'.
[  177.578263][ T7792] openvswitch: netlink: Geneve option length err (len 256, max 255).
[  177.615975][ T7793] openvswitch: netlink: Geneve option length err (len 256, max 255).
[  178.408225][   T30] audit: type=1800 audit(4294967363.071:5): pid=7811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.427" name="lu_gp_id" dev="configfs" ino=16370 res=0 errno=0
[  178.473694][ T7811] mkiss: ax0: crc mode is auto.
[  180.640975][ T5837] Bluetooth: hci0: Malformed Event: 0x02
[  181.676907][ T7882] vivid-003: =================  START STATUS  =================
[  181.695279][ T7882] vivid-003: Radio HW Seek Mode: Bounded
[  181.701270][ T7882] vivid-003: Radio Programmable HW Seek: false
[  181.791196][ T7882] vivid-003: RDS Rx I/O Mode: Block I/O
[  181.841638][ T7882] vivid-003: Generate RBDS Instead of RDS: false
[  181.871785][ T7882] vivid-003: RDS Reception: true
[  181.899832][ T7882] vivid-003: RDS Program Type: 0 inactive
[  181.913759][ T7882] vivid-003: RDS PS Name:  inactive
[  181.950031][ T7882] vivid-003: RDS Radio Text:  inactive
[  181.969766][ T7882] vivid-003: RDS Traffic Announcement: false inactive
[  181.977250][ T7882] vivid-003: RDS Traffic Program: false inactive
[  181.985064][ T7882] vivid-003: RDS Music: false inactive
[  181.990742][ T7882] vivid-003: ==================  END STATUS  ==================
[  183.298659][ T7935] netlink: 342 bytes leftover after parsing attributes in process `syz.3.458'.
[  183.808948][ T7948] netlink: 4 bytes leftover after parsing attributes in process `syz.1.460'.
[  183.829631][ T7948] netlink: 25 bytes leftover after parsing attributes in process `syz.1.460'.
[  185.506254][ T7988] netlink: 'syz.1.470': attribute type 11 has an invalid length.
[  185.520583][ T7988] netlink: 'syz.1.470': attribute type 11 has an invalid length.
[  185.528491][ T7988] netlink: 'syz.1.470': attribute type 11 has an invalid length.
[  186.046081][ T8006] netlink: 52 bytes leftover after parsing attributes in process `syz.2.474'.
[  186.640355][ T8018] binder: 8014:8018 ioctl 5380 2000000000c0 returned -22
[  186.664637][ T8018] sd 0:0:1:0: PR command failed: 1026
[  186.709923][ T8018] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  186.745098][ T8021] netlink: 'syz.1.478': attribute type 1 has an invalid length.
[  186.759725][ T8018] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  186.767024][ T8021] nbd: error processing sock list
[  189.405781][ T8082] random: crng reseeded on system resumption
[  190.354260][ T8108] netlink: 12 bytes leftover after parsing attributes in process `syz.1.500'.
[  190.779608][ T8120] ubi0: attaching mtd0
[  190.786183][ T8120] ubi0: scanning is finished
[  190.791363][ T8120] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  191.230482][ T8140] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma?
[  191.256455][ T8120] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  192.135521][ T8161] ima: policy update failed
[  192.147007][   T30] audit: type=1802 audit(4294967376.818:6): pid=8161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.510" res=0 errno=0
[  192.613513][ T8177] netlink: 8 bytes leftover after parsing attributes in process `syz.0.514'.
[  192.842991][ T8183] netlink: 338 bytes leftover after parsing attributes in process `syz.3.516'.
[  192.884602][ T8182] vhci_hcd: invalid port number 16
[  192.890050][ T8182] vhci_hcd: invalid port number 16
[  194.409287][ T5837] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  194.409326][ T5837] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260
[  194.426473][ T5837] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[  194.426533][ T5837] Bluetooth: hci3: adv larger than maximum supported
[  194.433838][ T5837] Bluetooth: hci3: Malformed LE Event: 0x0d
[  195.103301][ T8224] netlink: 28 bytes leftover after parsing attributes in process `syz.2.525'.
[  195.546618][ T8241] delete_channel: no stack
[  195.587938][ T8246] Line length is too long: Should be less than 4094
[  195.777902][ T8250] netlink: 4 bytes leftover after parsing attributes in process `syz.0.533'.
[  196.555901][ T8271] FAULT_INJECTION: forcing a failure.
[  196.555901][ T8271] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  196.585641][ T8271] CPU: 1 UID: 0 PID: 8271 Comm: syz.3.538 Not tainted syzkaller #0 PREEMPT(full) 
[  196.585676][ T8271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  196.585690][ T8271] Call Trace:
[  196.585699][ T8271]  <TASK>
[  196.585708][ T8271]  dump_stack_lvl+0x16c/0x1f0
[  196.585742][ T8271]  should_fail_ex+0x512/0x640
[  196.585785][ T8271]  should_fail_alloc_page+0xe7/0x130
[  196.585819][ T8271]  prepare_alloc_pages+0x3c2/0x610
[  196.585856][ T8271]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  196.585880][ T8271]  ? __pfx___might_resched+0x10/0x10
[  196.585908][ T8271]  ? find_held_lock+0x2b/0x80
[  196.585934][ T8271]  ? process_measurement+0x4a6/0x23e0
[  196.585966][ T8271]  ? css_rstat_updated+0x1c2/0x510
[  196.586002][ T8271]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  196.586042][ T8271]  ? __lock_acquire+0x622/0x1c90
[  196.586083][ T8271]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  196.586126][ T8271]  ? policy_nodemask+0xea/0x4e0
[  196.586172][ T8271]  alloc_pages_mpol+0x1fb/0x550
[  196.586209][ T8271]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  196.586254][ T8271]  alloc_pages_noprof+0x131/0x390
[  196.586291][ T8271]  __pmd_alloc+0x3b/0x8b0
[  196.586329][ T8271]  __handle_mm_fault+0xada/0x2aa0
[  196.586371][ T8271]  ? mt_find+0x3e2/0xa20
[  196.586404][ T8271]  ? __pfx___handle_mm_fault+0x10/0x10
[  196.586439][ T8271]  ? __pfx_mt_find+0x10/0x10
[  196.586492][ T8271]  ? find_vma+0xbf/0x140
[  196.586519][ T8271]  ? __pfx_find_vma+0x10/0x10
[  196.586556][ T8271]  handle_mm_fault+0x589/0xd10
[  196.586595][ T8271]  ? __pkru_allows_pkey+0x21/0xb0
[  196.586637][ T8271]  do_user_addr_fault+0x7a6/0x1370
[  196.586667][ T8271]  ? rcu_is_watching+0x12/0xc0
[  196.586698][ T8271]  exc_page_fault+0x64/0xc0
[  196.586729][ T8271]  asm_exc_page_fault+0x26/0x30
[  196.586753][ T8271] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  196.586792][ T8271] Code: 3c 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  196.586814][ T8271] RSP: 0018:ffffc900047a7cf8 EFLAGS: 00050206
[  196.586835][ T8271] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000fd0
[  196.586850][ T8271] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88802d354030
[  196.586865][ T8271] RBP: 0000000000000fd0 R08: 0000000000000001 R09: ffffed1005a6a9ff
[  196.586881][ T8271] R10: ffff88802d354fff R11: 0000000000000000 R12: 0000000000000000
[  196.586895][ T8271] R13: ffff88802d354030 R14: dffffc0000000000 R15: ffff88802d2d6e80
[  196.586932][ T8271]  _copy_from_user+0x98/0xd0
[  196.586972][ T8271]  load_msg+0x19e/0x4a0
[  196.587008][ T8271]  do_msgrcv+0x202/0x16c0
[  196.587037][ T8271]  ? do_futex+0x122/0x350
[  196.587070][ T8271]  ? __pfx_do_msg_fill+0x10/0x10
[  196.587111][ T8271]  ? __pfx_do_msgrcv+0x10/0x10
[  196.587146][ T8271]  ? __x64_sys_futex+0x1e0/0x4c0
[  196.587182][ T8271]  ? fput+0x9b/0xd0
[  196.587218][ T8271]  ? xfd_validate_state+0x61/0x180
[  196.587251][ T8271]  ? __pfx_ksys_write+0x10/0x10
[  196.587289][ T8271]  ? do_syscall_64+0xcd/0xfa0
[  196.587317][ T8271]  do_syscall_64+0xcd/0xfa0
[  196.587349][ T8271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.587374][ T8271] RIP: 0033:0x7fc0c4b8f6c9
[  196.587393][ T8271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.587415][ T8271] RSP: 002b:00007fc0c5aad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000046
[  196.587438][ T8271] RAX: ffffffffffffffda RBX: 00007fc0c4de6090 RCX: 00007fc0c4b8f6c9
[  196.587455][ T8271] RDX: 0000002400000000 RSI: 0000000000000000 RDI: 00000000000000ff
[  196.587470][ T8271] RBP: 00007fc0c4c11f91 R08: 000000006bc2cc7d R09: 0000000000000000
[  196.587486][ T8271] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[  196.587501][ T8271] R13: 00007fc0c4de6128 R14: 00007fc0c4de6090 R15: 00007ffd45585088
[  196.587538][ T8271]  </TASK>
[  197.207195][ T8273] netlink: 25 bytes leftover after parsing attributes in process `syz.1.539'.
[  197.800681][ T5837] Bluetooth: hci0: unexpected event 0x3e length: 728 > 260
[  197.800717][ T5837] Bluetooth: hci0: unexpected subevent 0x0c length: 727 > 5
[  198.557229][ T8293] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  198.616700][ T8293] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  198.623025][ T8293] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  198.637408][ T8293] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  198.725080][ T8311] vhci_hcd: invalid port number 16
[  198.743304][ T8311] vhci_hcd: invalid port number 16
[  200.082933][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout
[  200.642692][ T5148] Bluetooth: hci2: command 0x0c1a tx timeout
[  200.649395][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  200.656161][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout
[  201.501798][ T8365] netlink: 4 bytes leftover after parsing attributes in process `syz.2.561'.
[  202.123955][ T5837] Bluetooth: hci1: unexpected subevent 0x03 length: 253 > 9
[  202.584178][ T8392] [U]  
[  202.587211][ T8392] [U] 
[  202.589899][ T8392] [U] 
[  202.592613][ T8392] [U] 
[  202.622441][ T8392] [U] 
[  202.625229][ T8392] [U] 
[  202.627928][ T8392] [U] 
[  202.630640][ T8392] [U] 
[  202.703471][ T8392] [U] 
[  202.706219][ T8392] [U] 
[  202.708946][ T8392] [U] 
[  202.711690][ T8392] [U] 
[  202.767089][ T8392] [U] 
[  202.769864][ T8392] [U] vœå4(ga4ªz…9´Xˆœêõâ°¼Û]èGì>…â|òï¨6mÅâ–æÔËä\
[  202.789616][ T8392] [U] KªJ³¾ñy›“e^5ï`ÂópħwÊ€ÒG¦¬Í!íìê+
[  202.795561][ T8392] [U] ²Óäw=ïƒI¹g;.veF
[  202.802388][ T8392] [U] chèÿì0ø!.öA”�D¨¹ë·žÛ¹ŠávÂ/^W‹0å4íÝmÓ:±Æf1‚
[  202.827617][ T8392] [U] 	ÝT¸þ‹
ƒB"F)UÌúxëKÍ䀰e M/Õóº,Lýs~ý0¬¤‰@ø?€<Ø*>ܹ>àj�¢o¯ô„[£=ifóq^u:‰~OhŸ3Þ&IÒÚD ¤2’®S·÷š…±ý"íF™A¨¨^Úi­Å&ÿZÏ�ˆš÷¹“ËûãuԺϹ~
[  202.911899][ T8392] [U] òt¡ Ÿž„ôƉGݺ"{Åcsìcû8¬ªQ#†j“$QjÙnÖíÍ<flˆ@›� ûU'öAôœ¤A•ÏSoTºs¡ÃÛþâ	á¼R�±�T²q6÷£nr’K›k²Q;�¥cõ…¼$B&溘šœ–Õ-nA·�}³®#zÓùúéÙz>Íd6<‘ÕF,5ÄÑ/+�WÜ–¥ê}²
[  202.928103][ T8392] [U] �áÂhLûP`4cĪÆ!P!sÀ×.�At­¢5†æ²¯"¬¹ª
[  203.067019][ T8392] [U] éšr
[  203.070026][ T8392] [U] 9‘œóS»Wž;fWñ: K Hh'DG3Ï‹V�ôvü€«(浟±¡Bî¤kµ×hU
[  203.077406][ T8392] [U] Ý[üÀ¥Š¡žŸ@R*À¬üsZeÕ]Œ4²VöŸyF�‘
[  203.092460][ T8392] [U] xá.1n†�L@8âK-Ð¥Hãd#{¬¾uT¥ŽËEvãb™úw¸ŒÒ°ªpÈ_Üíc.ž7yZ	V$J—ã
[  203.126560][ T8392] [U] ‡äfÖm8L÷ÃÏÍZl¶GpYÍSy¼ 
[  203.133030][ T8392] [U] Câ[Šdùp#PÉ
ÁLõä\mƒÒ–~.¦×cøˆDiÞvnC†sh•¾ÐÖŽ�KöÙp¯’„û?mÐF:qHIWmT~6céK	Gî›ùµÝÜù4Ñ�R-œW×Ð…«
[  203.198958][ T8392] [U] ÔÑÂúÖÛ[É¢Þs•c.Ñk§X
[  203.247366][ T8392] [U] kΦóòe�³ºª=ó°žL[´-îTHÏ!Ì¥ 13•l_6	Iè‡;+­äy7"ÊúyáGÂ+@‰Ñ/
!:­A÷ÁöÎæ6ÜüçSõ0áòŽš�,LŒÛü™ûW7ó­ÏcWE
[  203.280178][ T8392] [U] ”f ñeKZN¼ÇZÿÇ·}ü:ƒ(÷Oh
3tuë¶7£y¼•ûCåÈ©<+›M7l…$æ£7‰ý–
[  203.290332][ T8392] [U] t'MýÕˆ§Ì­ÊóuÜ¿z�ððÂÂä¥uºW·ûå²´›¶7€Ë7ìÍ©”x‡Ù_'÷‚3Üÿ!%MïÛü¡‰ñÓ´4a4*ÚÊ
[  203.301991][ T8392] [U] FˆFŸ² ÒøÕÐi›@‚T‘ॢRæ[<ƒ8y§ï@©0úg-ÚÓ¤ùü‡ð]S˜þàÞXžÙE%x³	ï¥,P#p;Š�>ôXÇŸ 3Jý×:ºÄ;~³·ébúÙƒÙ+Mà–Œ(^MË4šÉ/}S±O ¥àhþB
[  204.876717][ T8456] netlink: 25 bytes leftover after parsing attributes in process `syz.1.582'.
[  204.964780][ T8470] netlink: 342 bytes leftover after parsing attributes in process `syz.3.584'.
[  206.052292][ T8506] ovs_ÿþÿþ?: entered promiscuous mode
[  207.598697][ T8551] FAULT_INJECTION: forcing a failure.
[  207.598697][ T8551] name failslab, interval 1, probability 0, space 0, times 0
[  207.613476][ T8551] CPU: 1 UID: 0 PID: 8551 Comm: syz.3.604 Not tainted syzkaller #0 PREEMPT(full) 
[  207.613512][ T8551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  207.613532][ T8551] Call Trace:
[  207.613540][ T8551]  <TASK>
[  207.613550][ T8551]  dump_stack_lvl+0x16c/0x1f0
[  207.613588][ T8551]  should_fail_ex+0x512/0x640
[  207.613628][ T8551]  ? __kmalloc_cache_noprof+0x5f/0x780
[  207.613658][ T8551]  should_failslab+0xc2/0x120
[  207.613694][ T8551]  __kmalloc_cache_noprof+0x72/0x780
[  207.613720][ T8551]  ? __pfx_trace_seq_printf+0x10/0x10
[  207.613749][ T8551]  ? tracing_log_err+0x4bc/0x6d0
[  207.613796][ T8551]  ? tracing_log_err+0x4bc/0x6d0
[  207.613830][ T8551]  tracing_log_err+0x4bc/0x6d0
[  207.613879][ T8551]  append_filter_err+0x399/0x610
[  207.613920][ T8551]  apply_subsystem_event_filter+0x75a/0x17e0
[  207.613972][ T8551]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  207.614020][ T8551]  ? _copy_from_user+0x59/0xd0
[  207.614062][ T8551]  subsystem_filter_write+0x95/0x120
[  207.614104][ T8551]  ? __pfx_subsystem_filter_write+0x10/0x10
[  207.614141][ T8551]  vfs_write+0x2a0/0x11d0
[  207.614175][ T8551]  ? __pfx___mutex_lock+0x10/0x10
[  207.614211][ T8551]  ? __pfx_vfs_write+0x10/0x10
[  207.614273][ T8551]  ? __fget_files+0x20e/0x3c0
[  207.614318][ T8551]  ksys_write+0x12a/0x250
[  207.614346][ T8551]  ? __pfx_ksys_write+0x10/0x10
[  207.614385][ T8551]  do_syscall_64+0xcd/0xfa0
[  207.614418][ T8551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.614444][ T8551] RIP: 0033:0x7fc0c4b8f6c9
[  207.614465][ T8551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.614488][ T8551] RSP: 002b:00007fc0c5ace038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  207.614512][ T8551] RAX: ffffffffffffffda RBX: 00007fc0c4de5fa0 RCX: 00007fc0c4b8f6c9
[  207.614530][ T8551] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000009
[  207.614544][ T8551] RBP: 00007fc0c4c11f91 R08: 0000000000000000 R09: 0000000000000000
[  207.614559][ T8551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  207.614574][ T8551] R13: 00007fc0c4de6038 R14: 00007fc0c4de5fa0 R15: 00007ffd45585088
[  207.614612][ T8551]  </TASK>
[  213.940285][ T8649] kexec: Could not allocate control_code_buffer
[  214.269926][ T8681] erspan0: entered allmulticast mode
[  214.610957][ T8690] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  214.825003][ T8687] zswap: compressor  not available
[  215.423196][ T8711] binder: 8706:8711 ioctl c018620c 0 returned -22
[  215.491909][ T8683] Invalid ELF header magic: != ELF
[  217.553059][ T8748] netlink: 8 bytes leftover after parsing attributes in process `syz.1.652'.

syzkaller
syzkaller login: [  218.340379][ T8771] netlink: 8 bytes leftover after parsing attributes in process `syz.0.655'.
[  220.797670][ T8843] __vm_enough_memory: pid: 8843, comm: syz.3.670, bytes: 4398046511104 not enough memory for the allocation
[  221.081150][ T8840] netlink: 338 bytes leftover after parsing attributes in process `syz.0.671'.
[  221.091654][ T8840] netlink: 338 bytes leftover after parsing attributes in process `syz.0.671'.
[  222.503814][ T8892] Process accounting resumed
[  222.925507][ T8900] netlink: 4 bytes leftover after parsing attributes in process `syz.0.682'.
[  223.659153][ T8908] netlink: 8 bytes leftover after parsing attributes in process `syz.1.684'.
[  225.059815][ T8921] zswap: compressor  not available
[  229.368749][ T9008] netlink: 326 bytes leftover after parsing attributes in process `syz.0.699'.
[  229.389523][ T9008] veth1_macvtap: left promiscuous mode
[  230.545406][ T9028] Process accounting resumed
[  231.034713][ T9045] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬	Up†µÌ¢{´¼V]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhî
é”'
[  231.048420][ T9045] openvswitch: netlink: Message has 4 unknown bytes.
[  233.514817][ T9094] futex_wake_op: syz.1.723 tries to shift op by -2048; fix this program
[  233.524394][ T9094] futex_wake_op: syz.1.723 tries to shift op by -2048; fix this program
[  233.555361][ T9094] ubi1: attaching mtd0
[  233.561615][ T9094] ubi1: scanning is finished
[  233.566351][ T9094] ubi1 error: ubi_read_volume_table: the layout volume was not found
[  234.062151][ T9094] ubi1 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  235.191199][ T9130] netlink: 334 bytes leftover after parsing attributes in process `syz.3.731'.
[  235.361478][ T9130] netlink: 334 bytes leftover after parsing attributes in process `syz.3.731'.
[  235.455780][ T9111] kexec: Could not allocate control_code_buffer
[  236.816182][ T9154] syz.3.737: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  236.841382][ T9154] CPU: 0 UID: 0 PID: 9154 Comm: syz.3.737 Not tainted syzkaller #0 PREEMPT(full) 
[  236.841413][ T9154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  236.841425][ T9154] Call Trace:
[  236.841432][ T9154]  <TASK>
[  236.841441][ T9154]  dump_stack_lvl+0x16c/0x1f0
[  236.841474][ T9154]  warn_alloc+0x248/0x3a0
[  236.841500][ T9154]  ? __pfx_warn_alloc+0x10/0x10
[  236.841545][ T9154]  ? dvb_dvr_do_ioctl+0x15d/0x290
[  236.841574][ T9154]  __vmalloc_node_range_noprof+0xfbc/0x1480
[  236.841609][ T9154]  ? __pfx___might_resched+0x10/0x10
[  236.841635][ T9154]  ? rcu_is_watching+0x12/0xc0
[  236.841659][ T9154]  ? trace_contention_end+0xdd/0x130
[  236.841691][ T9154]  ? dvb_dvr_do_ioctl+0x15d/0x290
[  236.841721][ T9154]  ? tomoyo_path_number_perm+0x295/0x580
[  236.841761][ T9154]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  236.841791][ T9154]  ? __pfx___mutex_lock+0x10/0x10
[  236.841823][ T9154]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  236.841864][ T9154]  ? dvb_dvr_do_ioctl+0x15d/0x290
[  236.841893][ T9154]  __vmalloc_node_noprof+0xad/0xf0
[  236.841924][ T9154]  ? dvb_dvr_do_ioctl+0x15d/0x290
[  236.841959][ T9154]  dvb_dvr_do_ioctl+0x15d/0x290
[  236.841995][ T9154]  dvb_usercopy+0x167/0x340
[  236.842023][ T9154]  ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[  236.842053][ T9154]  ? __pfx_dvb_usercopy+0x10/0x10
[  236.842089][ T9154]  ? __fget_files+0x20e/0x3c0
[  236.842113][ T9154]  dvb_dvr_ioctl+0x29/0x40
[  236.842137][ T9154]  ? __pfx_dvb_dvr_ioctl+0x10/0x10
[  236.842174][ T9154]  __x64_sys_ioctl+0x18e/0x210
[  236.842209][ T9154]  do_syscall_64+0xcd/0xfa0
[  236.842239][ T9154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.842261][ T9154] RIP: 0033:0x7fc0c4b8f6c9
[  236.842281][ T9154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.842301][ T9154] RSP: 002b:00007fc0c5aad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  236.842324][ T9154] RAX: ffffffffffffffda RBX: 00007fc0c4de6090 RCX: 00007fc0c4b8f6c9
[  236.842340][ T9154] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000029
[  236.842354][ T9154] RBP: 00007fc0c4c11f91 R08: 0000000000000000 R09: 0000000000000000
[  236.842368][ T9154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  236.842382][ T9154] R13: 00007fc0c4de6128 R14: 00007fc0c4de6090 R15: 00007ffd45585088
[  236.842416][ T9154]  </TASK>
[  236.842425][ T9154] Mem-Info:
[  237.084754][ T9154] active_anon:57915 inactive_anon:0 isolated_anon:0
[  237.084754][ T9154]  active_file:10460 inactive_file:48165 isolated_file:0
[  237.084754][ T9154]  unevictable:768 dirty:414 writeback:0
[  237.084754][ T9154]  slab_reclaimable:11482 slab_unreclaimable:94463
[  237.084754][ T9154]  mapped:37330 shmem:44654 pagetables:1394
[  237.084754][ T9154]  sec_pagetables:0 bounce:0
[  237.084754][ T9154]  kernel_misc_reclaimable:0
[  237.084754][ T9154]  free:1240914 free_pcp:37574 free_cma:0
[  237.131278][ T9154] Node 0 active_anon:228060kB inactive_anon:0kB active_file:41840kB inactive_file:192512kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:149308kB dirty:1652kB writeback:0kB shmem:173480kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11888kB pagetables:5436kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  237.167481][ T9154] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:148kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:12kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  237.224336][ T9154] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  237.321906][ T9154] lowmem_reserve[]: 0 2485 2487 2487 2487
[  237.343948][ T9154] Node 0 DMA32 free:1110288kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB free_highatomic:0KB active_anon:218344kB inactive_anon:0kB active_file:41840kB inactive_file:192512kB unevictable:1536kB writepending:1676kB zspages:600kB present:3129332kB managed:2545072kB mlocked:0kB bounce:0kB free_pcp:90240kB local_pcp:35764kB free_cma:0kB
[  237.386445][ T9154] lowmem_reserve[]: 0 0 1 1 1
[  237.395504][ T9154] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  237.426871][ T9154] lowmem_reserve[]: 0 0 0 0 0
[  237.439185][ T9154] Node 1 Normal free:3855432kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:148kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:55692kB local_pcp:25784kB free_cma:0kB
[  237.480141][ T9154] lowmem_reserve[]: 0 0 0 0 0
[  237.542502][ T9154] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  237.571264][ T9154] Node 0 DMA32: 8317*4kB (UME) 2210*8kB (UME) 993*16kB (UM) 497*32kB (UM) 392*64kB (UM) 179*128kB (UME) 88*256kB (UME) 41*512kB (UM) 17*1024kB (UME) 3*2048kB (UM) 223*4096kB (UM) = 1111220kB
[  237.616114][ T9154] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  237.844951][ T9154] Node 1 Normal: 186*4kB (UM) 60*8kB (UME) 42*16kB (UE) 37*32kB (UM) 17*64kB (UM) 8*128kB (UME) 8*256kB (UME) 8*512kB (UME) 4*1024kB (UM) 1*2048kB (E) 937*4096kB (M) = 3855432kB
[  237.863008][ T9154] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  237.872992][ T9154] Node 0 hugepages_total=4 hugepages_free=3 hugepages_surp=1 hugepages_size=2048kB
[  237.882743][ T9154] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  237.892680][ T9154] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  237.935498][ T9154] 98312 total pagecache pages
[  237.942813][ T9154] 33 pages in swap cache
[  237.947385][ T9154] Free swap  = 124676kB
[  237.951650][ T9154] Total swap = 124996kB
[  237.987902][ T9154] 2097051 pages RAM
[  237.999083][ T9154] 0 pages HighMem/MovableOnly
[  238.031181][ T9154] 428693 pages reserved
[  238.036762][ T9154] 0 pages cma reserved
[  238.650702][    C1] sd 0:0:1:0: [sda] tag#7428 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  238.661211][    C1] sd 0:0:1:0: [sda] tag#7428 CDB: Read(6) 08 00 00 00 10 00 00 00 00 00 00 00
[  238.675055][ T9197] netlink: 4 bytes leftover after parsing attributes in process `syz.3.746'.
[  238.685074][ T9197] netlink: 'syz.3.746': attribute type 1 has an invalid length.
[  238.692745][ T9197] netlink: 'syz.3.746': attribute type 6 has an invalid length.
[  238.744007][ T9189] random: crng reseeded on system resumption
[  240.217904][ T9224] random: crng reseeded on system resumption
[  240.283705][ T9217] netlink: 'syz.3.751': attribute type 1 has an invalid length.
[  240.292837][ T9217] netlink: 'syz.3.751': attribute type 1 has an invalid length.
[  240.300600][ T9217] netlink: 124 bytes leftover after parsing attributes in process `syz.3.751'.
[  240.366231][ T9217] netlink: 100 bytes leftover after parsing attributes in process `syz.3.751'.
[  241.225869][ T9244] ovs_ÿþ: entered promiscuous mode
[  241.281131][ T9246] vhci_hcd: invalid port number 16
[  241.286728][ T9246] vhci_hcd: invalid port number 16
[  246.161756][ T9340] openvswitch: netlink: Key type 29 is not supported
[  246.795367][ T9360] FAULT_INJECTION: forcing a failure.
[  246.795367][ T9360] name failslab, interval 1, probability 0, space 0, times 0
[  246.813198][ T9360] CPU: 1 UID: 0 PID: 9360 Comm: syz.3.788 Not tainted syzkaller #0 PREEMPT(full) 
[  246.813236][ T9360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  246.813256][ T9360] Call Trace:
[  246.813266][ T9360]  <TASK>
[  246.813276][ T9360]  dump_stack_lvl+0x16c/0x1f0
[  246.813315][ T9360]  should_fail_ex+0x512/0x640
[  246.813352][ T9360]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  246.813394][ T9360]  should_failslab+0xc2/0x120
[  246.813430][ T9360]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  246.813456][ T9360]  ? __dquot_initialize+0x299/0xd50
[  246.813488][ T9360]  ? __d_alloc+0x32/0xae0
[  246.813523][ T9360]  ? __d_alloc+0x32/0xae0
[  246.813549][ T9360]  __d_alloc+0x32/0xae0
[  246.813582][ T9360]  d_alloc_pseudo+0x1c/0xc0
[  246.813617][ T9360]  alloc_file_pseudo+0xcf/0x230
[  246.813654][ T9360]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  246.813700][ T9360]  __shmem_file_setup+0x1a3/0x330
[  246.813742][ T9360]  shmem_zero_setup+0x93/0x1a0
[  246.813773][ T9360]  __mmap_region+0x2076/0x27a0
[  246.813799][ T9360]  ? find_held_lock+0x2b/0x80
[  246.813825][ T9360]  ? __pfx___mmap_region+0x10/0x10
[  246.813848][ T9360]  ? finish_task_switch.isra.0+0x21c/0xc10
[  246.813877][ T9360]  ? rcu_is_watching+0x12/0xc0
[  246.813910][ T9360]  ? finish_task_switch.isra.0+0x221/0xc10
[  246.813937][ T9360]  ? lockdep_hardirqs_on+0x7c/0x110
[  246.813969][ T9360]  ? finish_task_switch.isra.0+0x221/0xc10
[  246.814029][ T9360]  ? __pfx___schedule+0x10/0x10
[  246.814105][ T9360]  ? trace_cap_capable+0x18d/0x200
[  246.814153][ T9360]  mmap_region+0x1ab/0x3f0
[  246.814179][ T9360]  ? __get_unmapped_area+0x267/0x440
[  246.814216][ T9360]  do_mmap+0xa3e/0x1210
[  246.814255][ T9360]  ? __pfx_do_mmap+0x10/0x10
[  246.814287][ T9360]  ? __pfx_down_write_killable+0x10/0x10
[  246.814328][ T9360]  vm_mmap_pgoff+0x29e/0x470
[  246.814368][ T9360]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  246.814417][ T9360]  ? __x64_sys_futex+0x1e0/0x4c0
[  246.814451][ T9360]  ? __x64_sys_futex+0x1e9/0x4c0
[  246.814490][ T9360]  ksys_mmap_pgoff+0x7d/0x5c0
[  246.814520][ T9360]  ? xfd_validate_state+0x61/0x180
[  246.814555][ T9360]  ? __pfx_ksys_write+0x10/0x10
[  246.814586][ T9360]  __x64_sys_mmap+0x125/0x190
[  246.814625][ T9360]  do_syscall_64+0xcd/0xfa0
[  246.814659][ T9360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.814684][ T9360] RIP: 0033:0x7fc0c4b8f6c9
[  246.814705][ T9360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  246.814729][ T9360] RSP: 002b:00007fc0c5ace038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  246.814754][ T9360] RAX: ffffffffffffffda RBX: 00007fc0c4de5fa0 RCX: 00007fc0c4b8f6c9
[  246.814771][ T9360] RDX: 00000000000000df RSI: 0000000004020009 RDI: 0000000000000000
[  246.814787][ T9360] RBP: 00007fc0c4c11f91 R08: ffffffffffffffff R09: 0000000000008000
[  246.814803][ T9360] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  246.814818][ T9360] R13: 00007fc0c4de6038 R14: 00007fc0c4de5fa0 R15: 00007ffd45585088
[  246.814856][ T9360]  </TASK>
[  247.185750][ T9360] ptp ptp0: new virtual clock ptp1
[  247.205931][ T9360] ptp ptp0: guarantee physical clock free running
[  247.484857][ T9368] Console: switching to colour VGA+ 80x25
[  249.517792][ T9418] serio: Serial port ttyS2
[  250.215507][ T9435] Process accounting resumed
[  250.630866][ T9444] size and base must be multiples of 4 kiB
[  250.636827][ T9444] CPU: 0 UID: 0 PID: 9444 Comm: syz.1.808 Not tainted syzkaller #0 PREEMPT(full) 
[  250.636867][ T9444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  250.636882][ T9444] Call Trace:
[  250.636891][ T9444]  <TASK>
[  250.636901][ T9444]  dump_stack_lvl+0x16c/0x1f0
[  250.636940][ T9444]  mtrr_del+0xd1/0x110
[  250.636974][ T9444]  mtrr_ioctl+0x922/0xcf0
[  250.637010][ T9444]  ? __pfx_mtrr_ioctl+0x10/0x10
[  250.637051][ T9444]  ? find_held_lock+0x2b/0x80
[  250.637087][ T9444]  ? __fget_files+0x20e/0x3c0
[  250.637114][ T9444]  ? __pfx_mtrr_ioctl+0x10/0x10
[  250.637148][ T9444]  proc_reg_unlocked_ioctl+0x229/0x320
[  250.637182][ T9444]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  250.637219][ T9444]  __x64_sys_ioctl+0x18e/0x210
[  250.637264][ T9444]  do_syscall_64+0xcd/0xfa0
[  250.637299][ T9444]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.637324][ T9444] RIP: 0033:0x7f7ab058f6c9
[  250.637352][ T9444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.637377][ T9444] RSP: 002b:00007f7ab150b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  250.637402][ T9444] RAX: ffffffffffffffda RBX: 00007f7ab07e5fa0 RCX: 00007f7ab058f6c9
[  250.637420][ T9444] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000005
[  250.637436][ T9444] RBP: 00007f7ab0611f91 R08: 0000000000000000 R09: 0000000000000000
[  250.637451][ T9444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  250.637468][ T9444] R13: 00007f7ab07e6038 R14: 00007f7ab07e5fa0 R15: 00007ffdcf131ff8
[  250.637501][ T9444]  </TASK>

syzkaller
syzkaller login: [  253.600050][ T9498] vhci_hcd: invalid port number 16
[  253.605197][ T9498] vhci_hcd: invalid port number 16
[  253.726749][ T9500] netlink: 8 bytes leftover after parsing attributes in process `syz.0.817'.
[  255.477899][ T9547] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  256.925503][ T9581] openvswitch: netlink: IP tunnel dst address not specified
[  257.295001][ T9596] netlink: 25 bytes leftover after parsing attributes in process `syz.3.842'.
[  258.242199][ T9632] binder: 9631:9632 ioctl c00c6211 0 returned -14
[  258.795130][   T30] audit: type=1800 audit(4294967443.501:7): pid=9643 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.851" name="trace_pipe" dev="tracefs" ino=1062 res=0 errno=0
[  259.286707][ T9640] FAULT_INJECTION: forcing a failure.
[  259.286707][ T9640] name fail_futex, interval 1, probability 0, space 0, times 0
[  259.303292][ T9640] CPU: 0 UID: 0 PID: 9640 Comm: syz.3.847 Not tainted syzkaller #0 PREEMPT(full) 
[  259.303324][ T9640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  259.303336][ T9640] Call Trace:
[  259.303344][ T9640]  <TASK>
[  259.303353][ T9640]  dump_stack_lvl+0x16c/0x1f0
[  259.303388][ T9640]  should_fail_ex+0x512/0x640
[  259.303428][ T9640]  get_futex_key+0xff0/0x1560
[  259.303464][ T9640]  ? __pfx_get_futex_key+0x10/0x10
[  259.303494][ T9640]  ? __mutex_trylock_common+0xe9/0x250
[  259.303532][ T9640]  futex_wake+0xea/0x530
[  259.303570][ T9640]  ? __pfx_futex_wake+0x10/0x10
[  259.303600][ T9640]  ? __lock_acquire+0xb8a/0x1c90
[  259.303646][ T9640]  do_futex+0x1e3/0x350
[  259.303678][ T9640]  ? __pfx_do_futex+0x10/0x10
[  259.303706][ T9640]  ? __might_fault+0xe3/0x190
[  259.303740][ T9640]  mm_release+0x24e/0x300
[  259.303880][ T9640]  do_exit+0x68e/0x2bf0
[  259.303929][ T9640]  ? __pfx_do_exit+0x10/0x10
[  259.303961][ T9640]  ? do_raw_spin_lock+0x12c/0x2b0
[  259.303996][ T9640]  ? find_held_lock+0x2b/0x80
[  259.304027][ T9640]  do_group_exit+0xd3/0x2a0
[  259.304061][ T9640]  get_signal+0x2671/0x26d0
[  259.304103][ T9640]  ? __pfx_get_signal+0x10/0x10
[  259.304127][ T9640]  ? do_futex+0x122/0x350
[  259.304157][ T9640]  ? __pfx_do_futex+0x10/0x10
[  259.304188][ T9640]  arch_do_signal_or_restart+0x8f/0x790
[  259.304218][ T9640]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  259.304257][ T9640]  ? xfd_validate_state+0x61/0x180
[  259.304288][ T9640]  ? __pfx_ksys_write+0x10/0x10
[  259.304323][ T9640]  exit_to_user_mode_loop+0x85/0x130
[  259.304360][ T9640]  do_syscall_64+0x426/0xfa0
[  259.304392][ T9640]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.304417][ T9640] RIP: 0033:0x7fc0c4b8f6c9
[  259.304437][ T9640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.304470][ T9640] RSP: 002b:00007fc0c5a6b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  259.304493][ T9640] RAX: fffffffffffffe00 RBX: 00007fc0c4de6278 RCX: 00007fc0c4b8f6c9
[  259.304509][ T9640] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc0c4de6278
[  259.304523][ T9640] RBP: 00007fc0c4de6270 R08: 0000000000000000 R09: 0000000000000000
[  259.304537][ T9640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  259.304551][ T9640] R13: 00007fc0c4de6308 R14: 00007ffd45584fa0 R15: 00007ffd45585088
[  259.304586][ T9640]  </TASK>
[  260.207906][ T9675] device-mapper: ioctl: Invalid ioctl structure: name þÿÿÿÿÿÿÿ, dev 4
[  260.461919][ T9683] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(13)
[  260.678090][ T9693] vhci_hcd: invalid port number 16
[  260.697050][ T9693] vhci_hcd: invalid port number 16
[  261.214166][ T9708] netlink: 40 bytes leftover after parsing attributes in process `syz.1.868'.
[  261.421892][ T9723] random: crng reseeded on system resumption
[  261.489856][ T9711] zswap: compressor  not available
[  261.505532][ T9720] Setting dangerous option i915.mitigations - tainting kernel
[  261.701401][ T9734] vhci_hcd: invalid port number 16
[  261.708727][ T9734] vhci_hcd: invalid port number 16
[  262.961566][ T9770] random: crng reseeded on system resumption
[  264.371092][ T9617] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  264.541072][ T9818] netlink: zone id is out of range
[  264.666095][ T9826] openvswitch: ovs_ÿþÿþ?: Dropping previously announced user features
[  264.731857][ T9818] netlink: del zone limit has 4 unknown bytes
[  264.966498][ T9822] netlink: set zone limit has 8 unknown bytes
[  266.152283][ T9886] program syz.3.904 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  266.453434][ T9602] Bluetooth: hci3: command 0x0c1a tx timeout
[  267.872002][ T9931] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  267.916820][ T9931] bridge0: port 3(team0) entered blocking state
[  267.927738][ T9931] bridge0: port 3(team0) entered disabled state
[  267.937620][ T9931] team0: entered allmulticast mode
[  267.943213][ T9931] team_slave_0: entered allmulticast mode
[  267.950832][ T9931] team_slave_1: entered allmulticast mode
[  267.962561][ T9931] team0: entered promiscuous mode
[  267.978713][ T9931] team_slave_0: entered promiscuous mode
[  267.989637][ T9931] team_slave_1: entered promiscuous mode
[  267.991251][ T9944] random: crng reseeded on system resumption
[  268.005195][ T9931] bridge0: port 3(team0) entered blocking state
[  268.011775][ T9931] bridge0: port 3(team0) entered listening state
[  269.988839][ T9998] zero sized request
[  270.138217][T10006] netlink: 8 bytes leftover after parsing attributes in process `syz.3.925'.
[  270.221635][T10004] netlink: 'syz.2.928': attribute type 11 has an invalid length.
[  271.250110][T10031] Process accounting resumed
[  271.773143][T10037] Invalid ELF header magic: != ELF
[  271.841880][T10046] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬	Up†µÌ¢{´¼V]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhî
é”'
[  272.092140][T10051] vhci_hcd: invalid port number 16
[  272.099093][T10051] vhci_hcd: invalid port number 16
[  274.823834][T10089] vhci_hcd: invalid port number 16
[  274.829104][T10089] vhci_hcd: invalid port number 16
[  274.932220][T10091] Process accounting resumed
[  276.127366][T10099] vivid-007: =================  START STATUS  =================
[  276.167818][T10099] vivid-007: Generate PTS: true
[  276.173030][T10099] vivid-007: Generate SCR: true
[  276.197840][T10099] tpg source WxH: 320x240 (Y'CbCr)
[  276.203016][T10099] tpg field: 1
[  276.206487][T10099] tpg crop: (0,0)/320x240
[  276.240881][T10099] tpg compose: (0,0)/320x240
[  276.245533][T10099] tpg colorspace: 8
[  276.249459][T10099] tpg transfer function: 0/0
[  276.254056][T10099] tpg Y'CbCr encoding: 0/0
[  276.259031][T10099] tpg quantization: 0/0
[  276.263199][T10099] tpg RGB range: 0/2
[  276.267154][T10099] vivid-007: ==================  END STATUS  ==================
[  278.341070][T10150] program syz.3.964 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  283.248465][    C1] bridge0: port 3(team0) entered learning state
[  283.418498][T10240] netlink: 330 bytes leftover after parsing attributes in process `syz.1.989'.
[  284.079234][T10258] netlink: 28 bytes leftover after parsing attributes in process `syz.2.994'.
[  284.451818][ T9667] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  284.479152][ T9667] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  284.507853][ T9667] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  284.516815][ T9667] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  285.697957][   T30] audit: type=1806 audit(4294967470.386:8): xattr="." res=0
[  286.484204][T10293] binder: 10292:10293 ioctl c018620c 0 returned -22
[  286.577382][T10293] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1003'.
[  286.630139][T10297] sd 0:0:1:0: PR command failed: 1026
[  286.636849][T10297] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  286.648113][T10297] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  288.270145][T10328] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  288.276624][T10328] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  288.288687][T10328] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  288.294972][T10328] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  288.308581][T10328] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  288.392362][ T9602] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7
[  288.605013][T10352] zswap: compressor - not available
[  288.761895][T10356] FAULT_INJECTION: forcing a failure.
[  288.761895][T10356] name failslab, interval 1, probability 0, space 0, times 0
[  288.837862][T10356] CPU: 1 UID: 0 PID: 10356 Comm: syz.3.1015 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  288.837905][T10356] Tainted: [U]=USER
[  288.837913][T10356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  288.837930][T10356] Call Trace:
[  288.837938][T10356]  <TASK>
[  288.837948][T10356]  dump_stack_lvl+0x16c/0x1f0
[  288.837984][T10356]  should_fail_ex+0x512/0x640
[  288.838023][T10356]  ? __kmalloc_noprof+0xca/0x880
[  288.838066][T10356]  should_failslab+0xc2/0x120
[  288.838106][T10356]  __kmalloc_noprof+0xdd/0x880
[  288.838147][T10356]  ? __register_sysctl_table+0xea2/0x1900
[  288.838191][T10356]  ? __register_sysctl_table+0xea2/0x1900
[  288.838227][T10356]  __register_sysctl_table+0xea2/0x1900
[  288.838271][T10356]  ? __pfx___register_sysctl_table+0x10/0x10
[  288.838304][T10356]  ? is_module_address+0x69/0xf0
[  288.838347][T10356]  ? register_net_sysctl_sz+0x228/0x3e0
[  288.838391][T10356]  __devinet_sysctl_register+0x1b9/0x360
[  288.838425][T10356]  ? rcu_is_watching+0x12/0xc0
[  288.838450][T10356]  ? __pfx___devinet_sysctl_register+0x10/0x10
[  288.838481][T10356]  ? __kmalloc_node_track_caller_noprof+0x362/0x8a0
[  288.838520][T10356]  ? __asan_memcpy+0x3c/0x60
[  288.838550][T10356]  devinet_init_net+0x347/0x910
[  288.838582][T10356]  ? __pfx_devinet_init_net+0x10/0x10
[  288.838612][T10356]  ops_init+0x1e2/0x5f0
[  288.838641][T10356]  setup_net+0x100/0x390
[  288.838667][T10356]  ? __pfx_setup_net+0x10/0x10
[  288.838695][T10356]  ? debug_mutex_init+0x37/0x70
[  288.838724][T10356]  copy_net_ns+0x2f8/0x690
[  288.838756][T10356]  create_new_namespaces+0x3ea/0xa90
[  288.838793][T10356]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  288.838822][T10356]  ksys_unshare+0x45b/0xa40
[  288.838855][T10356]  ? __pfx_ksys_unshare+0x10/0x10
[  288.838888][T10356]  ? xfd_validate_state+0x61/0x180
[  288.838933][T10356]  __x64_sys_unshare+0x31/0x40
[  288.838970][T10356]  do_syscall_64+0xcd/0xfa0
[  288.839009][T10356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.839034][T10356] RIP: 0033:0x7fc0c4b8f6c9
[  288.839054][T10356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.839078][T10356] RSP: 002b:00007fc0c5aad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  288.839102][T10356] RAX: ffffffffffffffda RBX: 00007fc0c4de6090 RCX: 00007fc0c4b8f6c9
[  288.839120][T10356] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  288.839136][T10356] RBP: 00007fc0c4c11f91 R08: 0000000000000000 R09: 0000000000000000
[  288.839152][T10356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  288.839167][T10356] R13: 00007fc0c4de6128 R14: 00007fc0c4de6090 R15: 00007ffd45585088
[  288.839204][T10356]  </TASK>
[  288.839215][T10356] sysctl could not get directory: /net/ipv4/conf/default -12
[  289.576917][ T9602] Bluetooth: hci0: command 0x0c1a tx timeout
[  290.111508][T10406] random: crng reseeded on system resumption
[  290.292113][ T9602] Bluetooth: hci1: command 0x0c1a tx timeout
[  290.367784][ T9602] Bluetooth: hci3: command 0x0c1a tx timeout
[  290.367823][ T9602] Bluetooth: hci2: command 0x0c1a tx timeout
[  290.688699][T10418] [U] 
[  291.471193][   T30] audit: type=1800 audit(4294967476.176:9): pid=10433 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1033" name="file0" dev="tmpfs" ino=1275 res=0 errno=0
[  291.781542][T10442] can: request_module (can-proto-0) failed.
[  292.452441][ T9823] Bluetooth: hci3: command 0x0c1a tx timeout
[  293.915998][T10494] vhci_hcd: invalid port number 16
[  293.922990][T10494] vhci_hcd: invalid port number 16
[  294.652415][T10508] netlink: 252 bytes leftover after parsing attributes in process `syz.0.1054'.
[  297.016157][T10579] netlink: 'syz.0.1069': attribute type 1 has an invalid length.
[  297.614343][T10587] netlink: set zone limit has 8 unknown bytes
[  298.077759][T10602] qrtr: Invalid version 0
[  298.618977][    C1] bridge0: port 3(team0) entered forwarding state
[  298.625520][    C1] bridge0: topology change detected, propagating
[  299.692880][T10641] Invalid ELF header magic: != ELF
[  302.389085][T10686] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8
[  304.464329][T10764] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1120'.
[  305.942179][T10788] Process accounting resumed
[  306.430309][T10796] zswap: compressor  not available
[  306.433237][T10810] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1131'.
[  306.664528][T10805] zswap: compressor 600 not available
[  309.119946][T10869] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  311.351594][T10909] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1157'.
[  312.933711][T10961] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10
[  313.545841][T10961] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11
[  315.333099][T11005] workqueue: Failed to create a rescuer kthread for wq "nfc20_nci_tx_wq": -EINTR
[  316.411759][T11109] vhci_hcd: invalid port number 16
[  316.417041][T11109] vhci_hcd: invalid port number 16
[  318.113692][T11146] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1200'.
[  318.137709][T11146] openvswitch: netlink: Flow actions attr not present in new flow.
[  318.191181][T11157] random: crng reseeded on system resumption
[  318.604174][T11161] usb usb36: usbfs: process 11161 (syz.1.1204) did not claim interface 0 before use
[  320.452648][T11190] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1211'.
[  321.270292][T11201] random: crng reseeded on system resumption
[  323.309866][ T5160] Trying to write to read-only block-device sda1
[  325.104445][T11280] delete_channel: no stack
[  325.321607][T11296] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  325.369513][T11317] kAFS: No cell specified
[  325.374856][T11296] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  325.438384][T11296] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  325.444751][T11296] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  326.438516][T11331] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  327.253392][ T9823] Bluetooth: hci0: command 0x0c1a tx timeout
[  327.410814][ T9823] Bluetooth: hci1: command 0x0c1a tx timeout
[  327.493164][ T9823] Bluetooth: hci3: command 0x0c1a tx timeout
[  327.499413][ T9602] Bluetooth: hci2: command 0x0c1a tx timeout
[  330.732983][T11417] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1256'.
[  330.946627][ T9601] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  330.969364][ T9601] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  331.164405][ T9601] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  331.175066][ T9601] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  333.230892][T11489] queue_state_write: operation too long
[  333.237140][T11489] queue_state_write: use 'run', 'start' or 'kick'
[  334.009274][T11510] can: request_module (can-proto-0) failed.
[  338.690883][T11624] vhci_hcd: invalid port number 16
[  338.696156][T11624] vhci_hcd: invalid port number 16
[  338.887666][T11621] binder: 11620:11621 ioctl 5380 2000000000c0 returned -22
[  338.916027][T11621] sd 0:0:1:0: PR command failed: 1026
[  338.952152][T11621] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  338.975064][T11621] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  339.188100][T11614] kexec: Could not allocate control_code_buffer
[  339.488291][T11634] ptrace attach of "./syz-executor exec"[5830] was attempted by ""[11634]
[  341.289254][T11676] block2mtd: Using custom MTD label '' for dev 
[  341.295778][T11676] block2mtd: error: cannot open device 
[  342.601213][T11717] netlink: 'syz.1.1332': attribute type 1 has an invalid length.
[  342.926703][   T30] audit: type=1800 audit(4294967527.616:10): pid=11725 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1335" name="lu_gp_id" dev="configfs" ino=35211 res=0 errno=0
[  343.304204][T11742] ovs_ÿþÿþ: entered promiscuous mode
[  344.011823][T11762] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1347'.
[  345.080836][T11804] bridge0: port 3(team0) entered blocking state
[  345.087356][T11804] bridge0: port 3(team0) entered disabled state
[  345.093823][T11804] team0: entered allmulticast mode
[  345.099894][T11804] team_slave_0: entered allmulticast mode
[  345.105640][T11804] team_slave_1: entered allmulticast mode
[  345.112758][T11804] team0: entered promiscuous mode
[  345.117910][T11804] team_slave_0: entered promiscuous mode
[  345.128048][T11804] team_slave_1: entered promiscuous mode
[  345.202511][T11804] bridge0: port 3(team0) entered blocking state
[  345.208896][T11804] bridge0: port 3(team0) entered forwarding state
[  345.471688][T11785] netlink: 'syz.3.1353': attribute type 1 has an invalid length.
[  345.531789][T11785] netlink: 33 bytes leftover after parsing attributes in process `syz.3.1353'.
[  350.818660][T11898] vhci_hcd: invalid port number 16
[  350.835100][T11898] vhci_hcd: invalid port number 16
[  351.977212][T11922] netlink: 'syz.0.1389': attribute type 4 has an invalid length.
[  351.985541][T11922] netlink: 314 bytes leftover after parsing attributes in process `syz.0.1389'.
[  352.912640][T11946] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1394'.
[  352.923718][T11946] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1394'.
[  353.061231][T11949] vhci_hcd: invalid port number 16
[  353.066394][T11949] vhci_hcd: invalid port number 16
[  353.661905][T11957] Process accounting resumed
[  355.927871][T12042] svc: failed to register nfsdv3 RPC service (errno 101).
[  356.040071][T12042] svc: failed to register nfsaclv3 RPC service (errno 101).
[  356.489364][T12048] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1417'.
[  362.800341][T12167] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1453'.
[  364.296411][T12202] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[  364.395713][T12207] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  364.491578][T12207] svc: failed to register nfsdv3 RPC service (errno 101).
[  364.526833][T12207] svc: failed to register nfsaclv3 RPC service (errno 101).
[  365.337574][T12248] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1474'.
[  365.421586][T12252] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1474'.
[  365.486187][T12253] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1477'.
[  367.405749][T12312] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1491'.
[  367.444113][T12313] netlink: 93 bytes leftover after parsing attributes in process `syz.0.1491'.
[  368.442501][T12330] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1496'.
[  369.815527][T12363] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1505'.
[  370.520251][T12387] vhci_hcd: invalid port number 16
[  370.525464][T12387] vhci_hcd: invalid port number 16
[  371.695043][T12418] zswap: compressor  not available
[  372.424561][   T30] audit: type=1800 audit(4294967557.126:11): pid=12443 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1527" name="features" dev="configfs" ino=38006 res=0 errno=0
[  373.643703][T12488] futex_wake_op: syz.3.1537 tries to shift op by -2048; fix this program
[  373.664081][T12478] erspan0: entered allmulticast mode
[  374.034007][T12500] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1542'.
[  374.288945][T12224] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.332737][T12224] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.393324][T12224] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.456477][T12224] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  376.259775][T12584] vhci_hcd: invalid port number 16
[  376.295486][T12584] vhci_hcd: invalid port number 16
[  376.727422][T12596] aoe: could not set interface list: too many interfaces
[  378.616845][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  378.634160][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  378.978961][T12647] binder: BINDER_SET_CONTEXT_MGR already set
[  378.984960][T12647] binder: 12638:12647 ioctl 4018620d 9 returned -16
[  381.383081][T12686] bond0: no command found in slaves file - use +ifname or -ifname
[  382.364801][   T30] audit: type=1804 audit(4294967567.026:12): pid=12716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1597" name="/newroot/402/file0" dev="tmpfs" ino=2124 res=1 errno=0
[  382.441513][   T30] audit: type=1804 audit(4294967567.106:13): pid=12720 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1597" name="/newroot/402/file0" dev="tmpfs" ino=2124 res=1 errno=0
[  382.494701][T12708] Invalid ELF header magic: != ELF
[  382.668108][T12735] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1599'.
[  383.129194][T12739] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1600'.
[  384.400185][T12785] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1609'.
[  384.453430][T12785] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1609'.
[  384.837531][T12793] netlink: 290 bytes leftover after parsing attributes in process `syz.3.1609'.
[  386.108814][T12839] vhci_hcd: invalid port number 16
[  386.113992][T12839] vhci_hcd: invalid port number 16
[  389.498596][T12965] input: f¬
 as /devices/virtual/input/input15
[  390.701690][T12984] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1648'.
[  392.367827][T13028] random: crng reseeded on system resumption
[  393.126518][T13050] queue_state_write: operation too long
[  393.142652][T13050] queue_state_write: use 'run', 'start' or 'kick'
[  393.595944][T13058] can: request_module (can-proto-4) failed.
[  393.923441][T13067] cgroup: fork rejected by pids controller in /syz3
[  393.938357][T13084] random: crng reseeded on system resumption
[  394.731828][T13127] vhci_hcd: invalid port number 16
[  394.737052][T13127] vhci_hcd: invalid port number 16
[  395.377822][T13128] random: crng reseeded on system resumption
[  398.400475][T13224] PM: Enabling pm_trace changes system date and time during resume.
[  398.400475][T13224] PM: Correct system time has to be restored manually after resume.
[  398.816397][T13245] can: request_module (can-proto-0) failed.
[  399.122831][T13261] Invalid ELF header magic: != ELF
[  400.543206][T13275] delete_channel: no stack
[  400.705998][T13302] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1725'.
[  401.580069][T13323] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  401.591534][T13320] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1733'.
[  404.251537][T13379] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[  405.664237][ T9823] Bluetooth: hci0: unexpected subevent 0x03 length: 253 > 9
[  407.122893][T13453] vhci_hcd: invalid port number 16
[  407.128277][T13453] vhci_hcd: invalid port number 16
[  410.511677][   T30] audit: type=1800 audit(4294967315.099:14): pid=13504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1782" name="version" dev="configfs" ino=41690 res=0 errno=0
[  410.624782][T13508] hub 1-0:1.0: USB hub found
[  410.633185][T13508] hub 1-0:1.0: 1 port detected
[  411.016230][T13517] random: crng reseeded on system resumption
[  413.578652][   T30] audit: type=1107 audit(4294967318.159:15): pid=13580 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='ÿø'
[  413.647377][   T30] audit: type=1107 audit(4294967318.159:16): pid=13580 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='ÿøµë»Ñ¿CGáD-Q�1HÞ ÈŠçãùù'
[  415.364379][ T9823] Bluetooth: hci2: unexpected event 0x35 length: 13 > 6
[  415.398308][T13650] netlink: 11 bytes leftover after parsing attributes in process `syz.3.1817'.
[  415.668871][T13645] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1815'.
[  416.291048][T13680] ubi31: attaching mtd0
[  416.316104][T13680] ubi31: scanning is finished
[  416.363258][T13680] ubi31 error: ubi_read_volume_table: the layout volume was not found
[  416.771809][T13680] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  416.989598][T13699] delete_channel: no stack
[  417.038807][T13701] vhci_hcd: invalid port number 16
[  417.043974][T13701] vhci_hcd: invalid port number 16
[  417.461435][T13702] usb usb13: usbfs: process 13702 (syz.1.1830) did not claim interface 0 before use
[  418.215284][T13738] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1839'.
[  418.608436][T13748] vhci_hcd: invalid port number 18
[  418.613657][T13748] vhci_hcd: default hub control req: a340 v0018 i0012 l2052
[  418.743718][T13731] kexec: Could not allocate control_code_buffer
[  419.230950][T13764] page: refcount:8 mapcount:0 mapping:0000000000000000 index:0xffff88807800a000 pfn:0x78008
[  419.293612][T13764] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  419.393046][T13765] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1847'.
[  419.402355][T13764] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  419.410059][T13764] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000
[  419.472338][T13764] raw: ffff88807800a000 0000000000000000 00000008ffffffff 0000000000000000
[  419.503014][T13764] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000
[  419.516414][T13764] head: ffff88807800a000 0000000000000000 00000008ffffffff 0000000000000000
[  419.532322][T13764] head: 00fff00000000003 ffffea0001e00201 00000000ffffffff 00000000ffffffff
[  419.597257][T13764] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  419.634003][ T9823] Bluetooth: hci1: unexpected event 0x3c length: 728 > 7
[  419.650444][T13764] page dumped because: unmovable page
[  419.663775][T13764] page_owner tracks the page as allocated
[  419.698803][T13764] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5810, tgid 5810 (sftp-server), ts 72485158713, free_ts 66985065930
[  419.741866][T13764]  post_alloc_hook+0x1af/0x220
[  419.746807][T13764]  get_page_from_freelist+0x10a3/0x3a30
[  419.817696][T13764]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  419.827888][T13764]  alloc_pages_mpol+0x1fb/0x550
[  419.849335][T13764]  alloc_pages_noprof+0x131/0x390
[  419.861125][T13764]  skb_page_frag_refill+0x186/0x5c0
[  419.873270][T13764]  try_fill_recv+0x7e4/0x2930
[  419.880051][T13764]  virtnet_poll+0x18d5/0x3e10
[  419.884877][T13764]  __napi_poll.constprop.0+0xba/0x550
[  419.892140][T13764]  net_rx_action+0x97f/0xef0
[  419.899300][T13764]  handle_softirqs+0x219/0x8e0
[  419.905918][T13764]  __irq_exit_rcu+0x109/0x170
[  419.915474][T13764]  irq_exit_rcu+0x9/0x30
[  419.920965][T13764]  common_interrupt+0xbf/0xe0
[  419.928688][T13764]  asm_common_interrupt+0x26/0x40
[  419.934174][T13764] page last free pid 5673 tgid 5673 stack trace:
[  419.943020][T13764]  __free_frozen_pages+0x7df/0x1160
[  419.949654][T13764]  qlist_free_all+0x4d/0x120
[  419.957396][T13764]  kasan_quarantine_reduce+0x195/0x1e0
[  419.976462][T13764]  __kasan_slab_alloc+0x69/0x90
[  419.982799][T13764]  kmem_cache_alloc_noprof+0x250/0x6e0
[  419.989598][T13764]  getname_flags.part.0+0x4c/0x550
[  419.996043][T13764]  getname_flags+0x93/0xf0
[  420.008546][T13764]  vfs_fstatat+0xe1/0xf0
[  420.014351][T13764]  __do_sys_newfstatat+0x97/0x120
[  420.025668][T13764]  do_syscall_64+0xcd/0xfa0
[  420.032411][T13764]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.065067][ T9823] Bluetooth: hci2: unexpected event 0x02 length: 726 > 260
[  420.086273][T13780] netlink: 'syz.3.1851': attribute type 33 has an invalid length.
[  421.672962][T13832] Invalid ELF header magic: != ELF
[  423.242050][ T9823] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  423.242078][ T9823] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  423.258625][ T9823] Bluetooth: hci3: Dropping invalid advertising data
[  423.265346][ T9823] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  423.265370][ T9823] Bluetooth: hci3: Dropping invalid advertising data
[  423.279497][ T9823] Bluetooth: hci3: unknown advertising packet type: 0x10
[  423.279515][ T9823] Bluetooth: hci3: Malformed LE Event: 0x02
[  423.682053][T13871] cgroup: fork rejected by pids controller in /syz0
[  424.413426][T13926] Debayer A: =================  START STATUS  =================
[  424.472916][T13926] Debayer A: Debayer Mean Window Size: 3
[  424.537766][T13926] Debayer A: ==================  END STATUS  ==================
[  424.542283][T13869] Invalid ELF header magic: != ELF
[  424.893374][T13944] binder: 13942:13944 ioctl 40046210 0 returned -14
[  424.917811][T13949] binder: 13942:13949 ioctl 40046210 0 returned -14
[  425.105993][T13975] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1882'.
[  427.775394][T14000] netlink: 'syz.2.1887': attribute type 1 has an invalid length.
[  428.041365][T14005] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  428.051250][T14005] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  429.913350][T14038] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1897'.
[  429.936112][T14044] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1898'.
[  430.989116][T14055] Invalid ELF header magic: != ELF
[  431.079784][T14069] vhci_hcd: invalid port number 16
[  431.648424][   T30] audit: type=1107 audit(4294967336.229:17): pid=14079 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  431.700361][   T30] audit: type=1107 audit(4294967336.269:18): pid=14079 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  432.601808][T14087] Invalid ELF header magic: != ELF
[  432.824900][ T9823] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5
[  432.825109][ T9823] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5
[  432.985836][T14100] HfR: entered promiscuous mode
[  433.115595][T14106] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17
[  434.688875][T14128] mmap: syz.3.1920 (14128): VmData 45883392 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  435.221599][T14140] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub
[  436.559810][T14169] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1934'.
[  437.354586][T14193] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1942'.
[  437.373323][T14193] IPv6: NLM_F_CREATE should be specified when creating new route
[  437.385920][T14193] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  437.394093][T14193] IPv6: NLM_F_CREATE should be set when creating new route
[  437.401418][T14193] IPv6: NLM_F_CREATE should be set when creating new route
[  437.414996][T14193] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1942'.
[  438.082559][T14212] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1947'.
[  438.092077][T14215] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1947'.
[  439.010174][T14240] nbd: must specify at least one socket
[  440.060152][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  440.066471][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  440.330086][T14251] Invalid ELF header magic: != ELF
[  440.405449][T14253] kexec: Could not allocate control_code_buffer
[  440.762914][T14272] mkiss: ax0: crc mode is auto.
[  442.175993][   T30] audit: type=1800 audit(4294967346.759:19): pid=14314 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1969" name="features" dev="configfs" ino=45517 res=0 errno=0
[  443.037142][T14329] 
[  445.934815][T14411] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1997'.
[  445.976770][T14418] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1998'.
[  447.260154][T14440] mkiss: ax0: crc mode is auto.
[  448.265539][T14455] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2007'.
[  449.141128][T14476] WARNING! power/level is deprecated; use power/control instead
[  449.573242][T14489] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  449.627674][T14489] CIFS mount error: No usable UNC path provided in device string!
[  449.627674][T14489] 
[  449.658055][T14489] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  450.028060][T14496] ubi31: attaching mtd0
[  451.066010][T14507] nbd: socks must be embedded in a SOCK_ITEM attr
[  451.260728][T14495] kexec: Could not allocate control_code_buffer
[  452.686878][T14546] could not allocate digest TFM handle 
[  454.272642][ T9823] Bluetooth: hci1: unexpected event 0x3e length: 508 > 260
[  454.272683][ T9823] Bluetooth: hci1: unexpected subevent 0x02 length: 507 > 260
[  454.298009][ T9823] Bluetooth: hci1: Dropping invalid advertising data
[  454.313286][ T9823] Bluetooth: hci1: unknown advertising packet type: 0xe9
[  454.313319][ T9823] Bluetooth: hci1: unknown advertising packet type: 0x12
[  454.322601][ T9823] Bluetooth: hci1: Dropping invalid advertising data
[  454.336542][ T9823] Bluetooth: hci1: Malformed LE Event: 0x02
[  454.414279][T14607] netlink: 206 bytes leftover after parsing attributes in process `syz.3.2047'.
[  454.592969][T14611] random: crng reseeded on system resumption
[  454.694715][T14611] hub 1-0:1.0: USB hub found
[  454.788672][T14611] hub 1-0:1.0: 1 port detected
[  454.805768][T14616] Restarting kernel threads ...
[  454.843682][T14616] Done restarting kernel threads.
[  454.988429][T14613] zero sized request
[  456.944222][T14661] HfR: entered promiscuous mode
[  457.777808][T14685] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2065'.
[  457.815498][T14685] macvtap0: entered promiscuous mode
[  459.175223][T14728] Console: switching to colour frame buffer device 128x48
[  459.549937][T14744] Line length is too long: Should be less than 4094
[  459.704925][T14752] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2086'.
[  460.312332][T14771] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2088'.
[  460.706758][T14794] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2094'.
[  460.718864][T14794] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2094'.
[  465.571828][T14926] hub 1-0:1.0: USB hub found
[  465.573797][T14926] hub 1-0:1.0: 1 port detected
[  465.614961][T14926] hub 1-0:1.0: USB hub found
[  465.618384][T14926] hub 1-0:1.0: 1 port detected
[  466.064253][T14937] binder: 14934:14937 unknown command 384
[  466.084751][T14937] binder: 14934:14937 ioctl c0306201 2000000000c0 returned -22
[  466.176590][T14942] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2133'.
[  466.189876][T14942] bridge0: port 2(bridge_slave_1) entered disabled state
[  466.307568][T14942] bridge_slave_1 (unregistering): left allmulticast mode
[  466.332605][T14942] bridge_slave_1 (unregistering): left promiscuous mode
[  466.359743][T14942] bridge0: port 2(bridge_slave_1) entered disabled state
[  466.771013][T14959] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2138'.
[  467.826141][T14994] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2149'.
[  468.421231][T15003] netlink: 138 bytes leftover after parsing attributes in process `syz.2.2151'.
[  470.659263][T15044] vivid-007: =================  START STATUS  =================
[  470.744195][T15044] vivid-007: Enable Output Cropping: true
[  470.766833][T15048] ksmbd: Unknown IPC event: 14, ignore.
[  470.829687][T15044] vivid-007: Enable Output Composing: true
[  470.881294][T15044] vivid-007: Enable Output Scaler: true
[  470.887053][T15044] vivid-007: Tx RGB Quantization Range: Automatic
[  470.893590][T15044] vivid-007: Transmit Mode: HDMI
[  470.898739][T15044] vivid-007: Hotplug Present: 0x00000000
[  470.904595][T15044] vivid-007: RxSense Present: 0x00000000
[  470.915261][T15044] vivid-007: EDID Present: 0x00000000
[  470.920883][T15044] vivid-007: ==================  END STATUS  ==================
[  471.135847][T15052] can: request_module (can-proto-0) failed.
[  471.246213][T15054] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2165'.
[  471.539272][T15054] bond0: (slave bond_slave_0): Releasing backup interface
[  473.648628][T15133] bridge0: port 3(veth0_to_bridge) entered blocking state
[  473.662132][T15133] bridge0: port 3(veth0_to_bridge) entered disabled state
[  473.672443][T15133] veth0_to_bridge: entered allmulticast mode
[  473.680808][T15133] veth0_to_bridge: entered promiscuous mode
[  473.689156][T15133] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  473.703616][T15133] bridge0: port 3(veth0_to_bridge) entered blocking state
[  473.710927][T15133] bridge0: port 3(veth0_to_bridge) entered forwarding state
[  475.733754][T15193] Invalid ELF header magic: != ELF

syzkaller
syzkaller login: [  477.091687][ T9823] Bluetooth: hci1: unexpected event 0x3e length: 509 > 260
[  477.091724][ T9823] Bluetooth: hci1: unexpected subevent 0x02 length: 508 > 260
[  477.138143][ T9823] Bluetooth: hci1: Dropping invalid advertising data
[  477.158349][ T9823] Bluetooth: hci1: unknown advertising packet type: 0xe9
[  477.229865][ T9823] Bluetooth: hci1: Dropping invalid advertising data
[  477.412791][ T9823] Bluetooth: hci1: Malformed LE Event: 0x02
[  477.783076][T15238] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed.
[  478.020722][T15245] bond0: option resend_igmp: invalid value (@ìêPUœ‚‘º«§.:ž)
[  478.039111][T15245] bond0: option resend_igmp: allowed values 0 - 255
[  478.231492][T15262] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2214'.
[  479.603135][T15304] : Can't lookup blockdev
[  479.814569][T15308] netlink: 302 bytes leftover after parsing attributes in process `syz.3.2229'.
[  479.921816][T15311] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[15311]
[  480.881332][T15356] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2242'.
[  481.620551][T15376] ksmbd: Unknown IPC event: 16, ignore.
[  481.974172][T15384] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2251'.
[  482.105140][T15391] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2254'.
[  482.116076][T15391] netlink: 'syz.1.2254': attribute type 3 has an invalid length.
[  482.407721][T15402] netlink: 'syz.1.2256': attribute type 1 has an invalid length.
[  482.429898][T15402] netlink: 322 bytes leftover after parsing attributes in process `syz.1.2256'.
[  484.674972][T15440] netlink: 206 bytes leftover after parsing attributes in process `syz.2.2264'.
[  485.056575][T15460] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2269'.
[  485.337754][T15455] Invalid ELF header magic: != ELF
[  485.783678][T15481] netlink: 'syz.2.2275': attribute type 1 has an invalid length.
[  487.123380][ T9602] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  487.148196][ T9602] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  487.163342][ T9602] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  487.171338][ T9602] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  487.182811][ T9602] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  487.352721][T15506] nvme_fcloop: unknown parameter or missing value '0'
[  488.032733][T15503] chnl_net:caif_netlink_parms(): no params data found
[  488.573477][T15503] bridge0: port 1(bridge_slave_0) entered blocking state
[  488.580766][T15503] bridge0: port 1(bridge_slave_0) entered disabled state
[  488.598218][T15503] bridge_slave_0: entered allmulticast mode
[  488.613521][T15503] bridge_slave_0: entered promiscuous mode
[  488.638563][T15503] bridge0: port 2(bridge_slave_1) entered blocking state
[  488.652964][T15503] bridge0: port 2(bridge_slave_1) entered disabled state
[  488.668665][T15503] bridge_slave_1: entered allmulticast mode
[  488.684619][T15503] bridge_slave_1: entered promiscuous mode
[  488.899586][T15503] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  488.935548][T15503] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  489.218411][T12225] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  489.250192][ T9602] Bluetooth: hci4: command tx timeout
[  489.429103][T12225] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  489.469491][T15503] team0: Port device team_slave_0 added
[  489.516935][T15503] team0: Port device team_slave_1 added
[  489.633955][T12225] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  489.713007][T15503] batman_adv: batadv0: Adding interface: batadv_slave_0
[  489.738110][T15503] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  489.800881][T15503] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  489.952995][T12225] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  490.022878][T15503] batman_adv: batadv0: Adding interface: batadv_slave_1
[  490.076656][T15503] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  490.139121][T15503] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  490.351051][T15503] hsr_slave_0: entered promiscuous mode
[  490.378653][T15503] hsr_slave_1: entered promiscuous mode
[  490.386850][T15503] debugfs: 'hsr0' already exists in 'hsr'
[  490.393814][T15503] Cannot create hsr debugfs directory
[  490.771079][T12225] bridge_slave_0: left allmulticast mode
[  490.782625][T12225] bridge_slave_0: left promiscuous mode
[  490.809900][T12225] bridge0: port 1(bridge_slave_0) entered disabled state
[  490.933783][T15549] Invalid ELF header magic: != ELF
[  491.327856][ T9602] Bluetooth: hci4: command tx timeout
[  491.630692][T15586] delete_channel: no stack
[  492.165526][T12225] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  492.233738][T12225] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  492.281653][T12225] bond0 (unregistering): Released all slaves
[  492.458595][T12225] ovs_ÿþÿþ: left promiscuous mode
[  492.549962][T12225] HfR: left promiscuous mode
[  493.156092][T15599] vhci_hcd: invalid port number 16
[  493.162811][T15599] vhci_hcd: invalid port number 16
[  493.407691][ T9602] Bluetooth: hci4: command tx timeout
[  494.359525][T15503] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  494.522123][T15503] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  494.556598][T15503] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  494.723626][T15503] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  495.488692][ T9602] Bluetooth: hci4: command tx timeout
[  495.881550][T12225] hsr_slave_0: left promiscuous mode
[  495.937771][T12225] hsr_slave_1: left promiscuous mode
[  495.946787][T12225] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  495.967058][T12225] batman_adv: batadv0: Removing interface: batadv_slave_0
[  495.996367][T12225] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  496.012891][T12225] batman_adv: batadv0: Removing interface: batadv_slave_1
[  496.084192][T12225] veth0_macvtap: left promiscuous mode
[  496.100657][T12225] veth1_vlan: left promiscuous mode
[  496.117767][T12225] veth0_vlan: left promiscuous mode
[  498.669280][T12225] team0 (unregistering): Port device team_slave_1 removed
[  499.102985][T12225] team0 (unregistering): Port device team_slave_0 removed
[  501.492515][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  501.498988][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  501.522637][T15503] 8021q: adding VLAN 0 to HW filter on device bond0
[  501.612778][T15503] 8021q: adding VLAN 0 to HW filter on device team0
[  501.640932][T12220] bridge0: port 1(bridge_slave_0) entered blocking state
[  501.648144][T12220] bridge0: port 1(bridge_slave_0) entered forwarding state
[  501.707362][T12220] bridge0: port 2(bridge_slave_1) entered blocking state
[  501.714544][T12220] bridge0: port 2(bridge_slave_1) entered forwarding state
[  501.973601][T15709] netlink: 268 bytes leftover after parsing attributes in process `syz.3.2315'.
[  502.386615][T15503] 8021q: adding VLAN 0 to HW filter on device batadv0
[  502.536234][T15503] veth0_vlan: entered promiscuous mode
[  502.560280][T15718] : Can't lookup blockdev
[  502.669009][T15503] veth1_vlan: entered promiscuous mode
[  502.790774][T15503] veth0_macvtap: entered promiscuous mode
[  502.817751][T15503] veth1_macvtap: entered promiscuous mode
[  502.979732][T15503] batman_adv: batadv0: Interface activated: batadv_slave_0
[  503.071282][T15503] batman_adv: batadv0: Interface activated: batadv_slave_1
[  503.106913][T15726] tc_dump_action: action bad kind
[  503.113615][T12225] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  503.124133][T12225] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  503.149903][T12225] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  503.165522][T12225] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  503.501987][T12225] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  503.526734][T12225] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  503.676060][T12220] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  503.686648][T12220] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  503.920600][T15735] FAULT_INJECTION: forcing a failure.
[  503.920600][T15735] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  503.987721][T15735] CPU: 1 UID: 0 PID: 15735 Comm: syz.0.2277 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  503.987762][T15735] Tainted: [U]=USER
[  503.987770][T15735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  503.987784][T15735] Call Trace:
[  503.987793][T15735]  <TASK>
[  503.987802][T15735]  dump_stack_lvl+0x16c/0x1f0
[  503.987839][T15735]  should_fail_ex+0x512/0x640
[  503.987879][T15735]  _copy_from_user+0x2e/0xd0
[  503.987915][T15735]  snd_seq_oss_write+0x397/0x7d0
[  503.987954][T15735]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  503.987988][T15735]  ? common_file_perm+0x1a9/0x340
[  503.988011][T15735]  ? bpf_lsm_file_permission+0x9/0x10
[  503.988042][T15735]  ? __pfx_odev_write+0x10/0x10
[  503.988069][T15735]  odev_write+0x51/0xa0
[  503.988097][T15735]  vfs_write+0x2a0/0x11d0
[  503.988132][T15735]  ? __pfx_vfs_write+0x10/0x10
[  503.988156][T15735]  ? find_held_lock+0x2b/0x80
[  503.988184][T15735]  ? __fget_files+0x204/0x3c0
[  503.988213][T15735]  ? __fget_files+0x20e/0x3c0
[  503.988246][T15735]  ksys_write+0x12a/0x250
[  503.988272][T15735]  ? __pfx_ksys_write+0x10/0x10
[  503.988310][T15735]  do_syscall_64+0xcd/0xfa0
[  503.988343][T15735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  503.988368][T15735] RIP: 0033:0x7f217f38f6c9
[  503.988389][T15735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  503.988413][T15735] RSP: 002b:00007f217d5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  503.988444][T15735] RAX: ffffffffffffffda RBX: 00007f217f5e5fa0 RCX: 00007f217f38f6c9
[  503.988461][T15735] RDX: 00000000000002f8 RSI: 0000200000000040 RDI: 0000000000000002
[  503.988477][T15735] RBP: 00007f217f411f91 R08: 0000000000000000 R09: 0000000000000000
[  503.988491][T15735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  503.988504][T15735] R13: 00007f217f5e6038 R14: 00007f217f5e5fa0 R15: 00007ffe09c9fc78
[  503.988538][T15735]  </TASK>
[  504.718517][ T9823] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  504.732253][ T9823] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  504.741068][ T9823] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  504.752759][ T9823] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  504.763472][ T9823] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  505.115629][T15749] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2324'.
[  505.197196][T15749] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2324'.
[  505.310964][T15749] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2324'.
[  505.546390][T15749] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2324'.
[  505.602620][T15749] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2324'.
[  505.804739][T15749] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2324'.
[  505.818340][T15749] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2324'.
[  505.834988][T15742] chnl_net:caif_netlink_parms(): no params data found
[  505.870717][T15749] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2324'.
[  506.498986][T15742] bridge0: port 1(bridge_slave_0) entered blocking state
[  506.535755][T15742] bridge0: port 1(bridge_slave_0) entered disabled state
[  506.641284][T15742] bridge_slave_0: entered allmulticast mode
[  506.655050][T15742] bridge_slave_0: entered promiscuous mode
[  506.806749][T15742] bridge0: port 2(bridge_slave_1) entered blocking state
[  506.849352][ T9823] Bluetooth: hci1: command tx timeout
[  506.861597][T15742] bridge0: port 2(bridge_slave_1) entered disabled state
[  507.076867][T15742] bridge_slave_1: entered allmulticast mode
[  507.085400][T15742] bridge_slave_1: entered promiscuous mode
[  507.224122][T15742] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  507.224678][T15786] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2332'.
[  507.489458][T15742] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  507.810624][T15742] team0: Port device team_slave_0 added
[  507.828469][T15742] team0: Port device team_slave_1 added
[  507.891584][T15791] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2333'.
[  508.076884][ T9602] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  508.090496][ T9602] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  508.099091][ T9602] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  508.108399][ T9602] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  508.116306][ T9602] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  508.124830][T15797] zero sized request
[  508.438171][T15742] batman_adv: batadv0: Adding interface: batadv_slave_0
[  508.445162][T15742] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  508.538147][T15742] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  508.559842][T15742] batman_adv: batadv0: Adding interface: batadv_slave_1
[  508.566880][T15742] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  508.946129][ T9823] Bluetooth: hci1: command tx timeout
[  508.997591][T15742] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  509.335739][T15742] hsr_slave_0: entered promiscuous mode
[  509.378798][T15742] hsr_slave_1: entered promiscuous mode
[  509.385233][T15742] debugfs: 'hsr0' already exists in 'hsr'
[  509.417145][T15742] Cannot create hsr debugfs directory
[  509.913289][T12224] team0: left allmulticast mode
[  509.982177][T12224] team_slave_0: left allmulticast mode
[  510.011025][T12224] team_slave_1: left allmulticast mode
[  510.047894][T12224] team0: left promiscuous mode
[  510.052867][T12224] team_slave_0: left promiscuous mode
[  510.070667][T12224] team_slave_1: left promiscuous mode
[  510.108141][T12224] bridge0: port 3(team0) entered disabled state
[  510.143827][T12224] bridge_slave_1: left allmulticast mode
[  510.169797][T12224] bridge_slave_1: left promiscuous mode
[  510.190802][T12224] bridge0: port 2(bridge_slave_1) entered disabled state
[  510.213122][ T9823] Bluetooth: hci2: command tx timeout
[  510.239890][T12224] bridge_slave_0: left allmulticast mode
[  510.245592][T12224] bridge_slave_0: left promiscuous mode
[  510.251513][T12224] bridge0: port 1(bridge_slave_0) entered disabled state
[  511.015788][ T9823] Bluetooth: hci1: command tx timeout
[  511.070279][T12224] erspan0 (unregistering): left allmulticast mode
[  511.359451][T15826] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2337'.
[  511.402094][T15826] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2337'.
[  511.836368][T12224] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  511.871201][T12224] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  511.908591][T12224] bond0 (unregistering): Released all slaves
[  512.287748][ T9823] Bluetooth: hci2: command tx timeout
[  513.089306][ T9823] Bluetooth: hci1: command tx timeout
[  513.484556][T15794] chnl_net:caif_netlink_parms(): no params data found
[  513.813010][T12224] hsr_slave_0: left promiscuous mode
[  513.864078][T12224] hsr_slave_1: left promiscuous mode
[  513.870727][T12224] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  513.887616][T12224] batman_adv: batadv0: Removing interface: batadv_slave_0
[  514.079357][T12224] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  514.087774][T12224] batman_adv: batadv0: Removing interface: batadv_slave_1
[  514.149520][T12224] veth1_macvtap: left promiscuous mode
[  514.166038][T12224] veth0_macvtap: left promiscuous mode
[  514.175189][T12224] veth1_vlan: left promiscuous mode
[  514.188382][T12224] veth0_vlan: left promiscuous mode
[  514.368663][ T9823] Bluetooth: hci2: command tx timeout
[  514.800576][T15885] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2351'.
[  515.549357][T12224] team0 (unregistering): Port device team_slave_1 removed
[  515.670177][T12224] team0 (unregistering): Port device team_slave_0 removed
[  515.886154][T15894] zram0: detected capacity change from 0 to 8
[  515.906522][   T30] audit: type=1107 audit(4294967420.489:20): pid=15893 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='f/f'
[  515.984708][   T30] audit: type=1107 audit(4294967420.489:21): pid=15893 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='f/fail-nth'
[  516.337329][T15901] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  516.380493][T15901] netlink: 146 bytes leftover after parsing attributes in process `syz.0.2356'.
[  516.454505][ T9823] Bluetooth: hci2: command tx timeout
[  516.568636][T15903] openvswitch: netlink: ct_state flags aa1414ac unsupported
[  516.783369][T15905] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2358'.
[  517.162797][T15885] mac80211_hwsim hwsim7 wlan1: entered promiscuous mode
[  517.172048][T15885] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  517.189445][T15905] ipvlan1: entered allmulticast mode
[  517.197761][T15905] veth0_vlan: entered allmulticast mode
[  517.592979][T15794] bridge0: port 1(bridge_slave_0) entered blocking state
[  517.625861][T15794] bridge0: port 1(bridge_slave_0) entered disabled state
[  517.646999][T15794] bridge_slave_0: entered allmulticast mode
[  517.674240][T15794] bridge_slave_0: entered promiscuous mode
[  517.702698][T15794] bridge0: port 2(bridge_slave_1) entered blocking state
[  517.717878][T15794] bridge0: port 2(bridge_slave_1) entered disabled state
[  517.737862][T15794] bridge_slave_1: entered allmulticast mode
[  517.753629][T15794] bridge_slave_1: entered promiscuous mode
[  518.149749][T15794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  518.212893][T15794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  518.515578][T15794] team0: Port device team_slave_0 added
[  518.735206][T15794] team0: Port device team_slave_1 added
[  519.010417][T15946] zswap: compressor 000 not available
[  519.103534][T15794] batman_adv: batadv0: Adding interface: batadv_slave_0
[  519.123742][T15794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  519.235369][T15794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  519.289833][T15794] batman_adv: batadv0: Adding interface: batadv_slave_1
[  519.296822][T15794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  519.397585][T15794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  519.441240][T15742] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  519.496719][T15742] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  519.647800][T15742] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  519.676758][T15794] hsr_slave_0: entered promiscuous mode
[  519.718727][T15794] hsr_slave_1: entered promiscuous mode
[  519.768631][T15794] debugfs: 'hsr0' already exists in 'hsr'
[  519.777928][T15794] Cannot create hsr debugfs directory
[  519.802066][T15742] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  521.012020][T15742] 8021q: adding VLAN 0 to HW filter on device bond0
[  521.253585][T15742] 8021q: adding VLAN 0 to HW filter on device team0
[  521.372212][T12225] bridge0: port 1(bridge_slave_0) entered blocking state
[  521.379435][T12225] bridge0: port 1(bridge_slave_0) entered forwarding state
[  521.510830][T12225] bridge0: port 2(bridge_slave_1) entered blocking state
[  521.517994][T12225] bridge0: port 2(bridge_slave_1) entered forwarding state
[  522.016711][T15794] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  522.108984][T15794] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  522.401832][T15742] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  522.455493][T15742] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  522.582438][T15794] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  522.648205][T15794] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  522.662737][T15998] FAULT_INJECTION: forcing a failure.
[  522.662737][T15998] name failslab, interval 1, probability 0, space 0, times 0
[  522.678865][T15998] CPU: 0 UID: 0 PID: 15998 Comm: syz.0.2369 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  522.678892][T15998] Tainted: [U]=USER
[  522.678897][T15998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  522.678906][T15998] Call Trace:
[  522.678911][T15998]  <TASK>
[  522.678917][T15998]  dump_stack_lvl+0x16c/0x1f0
[  522.678941][T15998]  should_fail_ex+0x512/0x640
[  522.678963][T15998]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  522.678982][T15998]  should_failslab+0xc2/0x120
[  522.679002][T15998]  kmem_cache_alloc_noprof+0x75/0x6e0
[  522.679016][T15998]  ? ptlock_alloc+0x1f/0x70
[  522.679041][T15998]  ? ptlock_alloc+0x1f/0x70
[  522.679059][T15998]  ptlock_alloc+0x1f/0x70
[  522.679079][T15998]  pte_alloc_one+0x84/0x350
[  522.679096][T15998]  __pte_alloc+0x6d/0x380
[  522.679112][T15998]  ? __pfx___pte_alloc+0x10/0x10
[  522.679129][T15998]  ? _raw_spin_unlock+0x28/0x50
[  522.679144][T15998]  ? __pmd_alloc+0x64f/0x8b0
[  522.679164][T15998]  copy_page_range+0x44a1/0x6930
[  522.679219][T15998]  ? __pfx_copy_page_range+0x10/0x10
[  522.679244][T15998]  ? mas_store+0x860/0x1030
[  522.679262][T15998]  ? __pfx___might_resched+0x10/0x10
[  522.679279][T15998]  ? find_held_lock+0x2b/0x80
[  522.679296][T15998]  ? __pfx_mas_store+0x10/0x10
[  522.679314][T15998]  ? __vma_enter_locked+0x163/0x3f0
[  522.679346][T15998]  dup_mmap+0xe80/0x2280
[  522.679373][T15998]  ? __pfx_dup_mmap+0x10/0x10
[  522.679405][T15998]  copy_process+0x3f0c/0x76a0
[  522.679422][T15998]  ? preempt_schedule_thunk+0x16/0x30
[  522.679452][T15998]  ? __pfx_copy_process+0x10/0x10
[  522.679475][T15998]  ? find_held_lock+0x2b/0x80
[  522.679493][T15998]  ? futex_private_hash_put+0xd5/0x190
[  522.679516][T15998]  kernel_clone+0xfc/0x930
[  522.679533][T15998]  ? __pfx_futex_wake+0x10/0x10
[  522.679554][T15998]  ? __pfx_kernel_clone+0x10/0x10
[  522.679583][T15998]  __do_sys_clone+0xce/0x120
[  522.679599][T15998]  ? __pfx___do_sys_clone+0x10/0x10
[  522.679616][T15998]  ? __sys_sendmsg+0x18c/0x220
[  522.679639][T15998]  ? xfd_validate_state+0x61/0x180
[  522.679669][T15998]  do_syscall_64+0xcd/0xfa0
[  522.679688][T15998]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  522.679703][T15998] RIP: 0033:0x7f217f38f6c9
[  522.679715][T15998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  522.679729][T15998] RSP: 002b:00007f217c94afe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  522.679743][T15998] RAX: ffffffffffffffda RBX: 00007f217f5e6450 RCX: 00007f217f38f6c9
[  522.679753][T15998] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  522.679761][T15998] RBP: 00007f217f411f91 R08: 0000000000000000 R09: 0000000000000000
[  522.679770][T15998] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  522.679778][T15998] R13: 00007f217f5e64e8 R14: 00007f217f5e6450 R15: 00007ffe09c9fc78
[  522.679799][T15998]  </TASK>
[  523.809226][T15742] 8021q: adding VLAN 0 to HW filter on device batadv0
[  524.192440][T15742] veth0_vlan: entered promiscuous mode
[  524.255498][T15742] veth1_vlan: entered promiscuous mode
[  524.358943][T15794] 8021q: adding VLAN 0 to HW filter on device bond0
[  524.426893][T15742] veth0_macvtap: entered promiscuous mode
[  524.476604][T15742] veth1_macvtap: entered promiscuous mode
[  524.524403][T15794] 8021q: adding VLAN 0 to HW filter on device team0
[  524.575788][T15742] batman_adv: batadv0: Interface activated: batadv_slave_0
[  524.592161][ T9615] bridge0: port 1(bridge_slave_0) entered blocking state
[  524.599391][ T9615] bridge0: port 1(bridge_slave_0) entered forwarding state
[  524.634195][T15742] batman_adv: batadv0: Interface activated: batadv_slave_1
[  524.657139][ T9615] bridge0: port 2(bridge_slave_1) entered blocking state
[  524.664385][ T9615] bridge0: port 2(bridge_slave_1) entered forwarding state
[  524.719995][T12225] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  524.857219][T12225] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  524.872952][T16016] ptrace attach of "./syz-executor exec"[15503] was attempted by "./syz-executor exec"[16016]
[  524.906730][T12225] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  524.928290][T12225] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  525.049491][T12225] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  525.057376][T12225] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  525.197810][T12225] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  525.205641][T12225] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  525.504769][T15794] 8021q: adding VLAN 0 to HW filter on device batadv0
[  526.350970][T15794] veth0_vlan: entered promiscuous mode
[  526.420857][T15794] veth1_vlan: entered promiscuous mode
[  526.512907][T15794] veth0_macvtap: entered promiscuous mode
[  526.560985][T15794] veth1_macvtap: entered promiscuous mode
[  526.660486][T15794] batman_adv: batadv0: Interface activated: batadv_slave_0
[  526.698954][T15794] batman_adv: batadv0: Interface activated: batadv_slave_1
[  526.748687][T12225] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  526.769671][T12225] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  526.823749][T12225] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  526.851992][T12225] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  527.073957][ T9615] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  527.127714][ T9615] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  527.300853][T16060] phram: not enough arguments
[  527.317944][T12225] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  527.339816][T12225] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  529.462404][T16105] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2397'.
[  529.575636][ T9823] Bluetooth: hci4: ISO packet too small
[  529.770879][   T30] audit: type=1107 audit(4294969482.343:22): pid=16106 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  529.811706][   T30] audit: type=1107 audit(4294969482.343:23): pid=16106 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  530.231854][T16124] FAULT_INJECTION: forcing a failure.
[  530.231854][T16124] name failslab, interval 1, probability 0, space 0, times 0
[  530.245216][T16124] CPU: 1 UID: 0 PID: 16124 Comm: syz.4.2401 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  530.245258][T16124] Tainted: [U]=USER
[  530.245266][T16124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  530.245282][T16124] Call Trace:
[  530.245291][T16124]  <TASK>
[  530.245301][T16124]  dump_stack_lvl+0x16c/0x1f0
[  530.245339][T16124]  should_fail_ex+0x512/0x640
[  530.245374][T16124]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  530.245406][T16124]  should_failslab+0xc2/0x120
[  530.245440][T16124]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  530.245465][T16124]  ? __dquot_initialize+0x299/0xd50
[  530.245498][T16124]  ? __d_alloc+0x32/0xae0
[  530.245532][T16124]  ? __d_alloc+0x32/0xae0
[  530.245557][T16124]  __d_alloc+0x32/0xae0
[  530.245590][T16124]  d_alloc_pseudo+0x1c/0xc0
[  530.245634][T16124]  alloc_file_pseudo+0xcf/0x230
[  530.245677][T16124]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  530.245724][T16124]  __shmem_file_setup+0x1a3/0x330
[  530.245769][T16124]  shmem_zero_setup+0x93/0x1a0
[  530.245798][T16124]  __mmap_region+0x2076/0x27a0
[  530.245829][T16124]  ? __pfx___mmap_region+0x10/0x10
[  530.245853][T16124]  ? finish_task_switch.isra.0+0x21c/0xc10
[  530.245882][T16124]  ? rcu_is_watching+0x12/0xc0
[  530.245908][T16124]  ? finish_task_switch.isra.0+0x221/0xc10
[  530.245934][T16124]  ? lockdep_hardirqs_on+0x7c/0x110
[  530.245964][T16124]  ? finish_task_switch.isra.0+0x221/0xc10
[  530.246019][T16124]  ? __pfx___schedule+0x10/0x10
[  530.246086][T16124]  ? trace_cap_capable+0x18d/0x200
[  530.246132][T16124]  mmap_region+0x1ab/0x3f0
[  530.246158][T16124]  ? __get_unmapped_area+0x267/0x440
[  530.246193][T16124]  do_mmap+0xa3e/0x1210
[  530.246232][T16124]  ? __pfx_do_mmap+0x10/0x10
[  530.246263][T16124]  ? __pfx_down_write_killable+0x10/0x10
[  530.246304][T16124]  vm_mmap_pgoff+0x29e/0x470
[  530.246343][T16124]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  530.246383][T16124]  ? __x64_sys_futex+0x1e0/0x4c0
[  530.246415][T16124]  ? __x64_sys_futex+0x1e9/0x4c0
[  530.246453][T16124]  ksys_mmap_pgoff+0x7d/0x5c0
[  530.246482][T16124]  ? xfd_validate_state+0x61/0x180
[  530.246516][T16124]  ? __pfx_do_writev+0x10/0x10
[  530.246545][T16124]  __x64_sys_mmap+0x125/0x190
[  530.246585][T16124]  do_syscall_64+0xcd/0xfa0
[  530.246619][T16124]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  530.246653][T16124] RIP: 0033:0x7f465838f6c9
[  530.246674][T16124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  530.246699][T16124] RSP: 002b:00007f4659260038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  530.246724][T16124] RAX: ffffffffffffffda RBX: 00007f46585e5fa0 RCX: 00007f465838f6c9
[  530.246742][T16124] RDX: 00000000000000df RSI: 000000000002000c RDI: 0000000000000000
[  530.246757][T16124] RBP: 00007f4658411f91 R08: 00040000000000a5 R09: 0000000000008000
[  530.246774][T16124] R10: 0000000000020eb1 R11: 0000000000000246 R12: 0000000000000000
[  530.246789][T16124] R13: 00007f46585e6038 R14: 00007f46585e5fa0 R15: 00007ffd2a3b4558
[  530.246823][T16124]  </TASK>
[  531.089651][T16130] __vm_enough_memory: pid: 16130, comm: syz.3.2402, bytes: 4398046511104 not enough memory for the allocation
[  531.983217][T16149] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  532.128355][T16144] serio: Serial port pty6
[  533.493352][T16178] random: crng reseeded on system resumption
[  533.750953][T16178] : Can't lookup blockdev
[  533.903218][T16182] openvswitch: netlink: Flow actions attr not present in new flow.
[  534.495475][T16196] __vm_enough_memory: pid: 16196, comm: syz.3.2418, bytes: 4398046511104 not enough memory for the allocation
[  536.919180][T16235] ICMPv6: process `syz.3.2431' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  538.862046][T16255] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19
[  587.467340][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  587.483485][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  618.781131][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  618.793472][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  618.806393][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  618.818742][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  618.831508][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  618.843769][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  618.856636][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  618.868990][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  618.881882][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  618.894201][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  623.757787][    C0] net_ratelimit: 10254 callbacks suppressed
[  623.757809][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  623.775951][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  623.788771][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  623.800982][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  623.813876][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  623.826119][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  623.838841][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  623.851107][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  623.863984][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  623.876271][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  628.741784][    C0] net_ratelimit: 9710 callbacks suppressed
[  628.741801][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  628.759865][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  628.773137][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  628.785478][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  628.798288][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  628.810538][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  628.823437][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  628.835677][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  628.848921][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  628.861179][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  633.725659][    C0] net_ratelimit: 9879 callbacks suppressed
[  633.725676][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  633.744287][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  633.756489][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  633.769266][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  633.781466][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  633.794191][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  633.806457][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  633.819190][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  633.831400][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  633.844296][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  638.709797][    C0] net_ratelimit: 10133 callbacks suppressed
[  638.709814][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  638.727999][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  638.740814][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  638.753082][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  638.765893][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  638.778102][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  638.790904][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  638.803120][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  638.815921][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  638.828155][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  643.693922][    C0] net_ratelimit: 9764 callbacks suppressed
[  643.693940][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  643.712000][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  643.724736][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  643.736934][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  643.749687][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  643.761940][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  643.774730][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  643.786926][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  643.799689][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  643.812021][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  648.678307][    C0] net_ratelimit: 9594 callbacks suppressed
[  648.678324][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  648.696409][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  648.709240][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  648.721458][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  648.734312][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  648.746522][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  648.759333][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  648.771575][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  648.784377][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  648.796697][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  649.234811][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  649.241789][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P16277/1:b.el
[  649.250229][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=68017, q=1370 ncpus=2)
[  649.258108][    C0] task:syz.3.2438      state:R  running task     stack:29096 pid:16277 tgid:16268 ppid:15742  task_flags:0x400040 flags:0x00080003
[  649.272824][    C0] Call Trace:
[  649.276103][    C0]  <TASK>
[  649.279023][    C0]  __schedule+0x1190/0x5de0
[  649.283533][    C0]  ? __pfx___schedule+0x10/0x10
[  649.288378][    C0]  ? mark_held_locks+0x49/0x80
[  649.293135][    C0]  preempt_schedule_irq+0x51/0x90
[  649.298149][    C0]  irqentry_exit+0x36/0x90
[  649.302559][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  649.308529][    C0] RIP: 0010:lock_acquire+0x62/0x350
[  649.313741][    C0] Code: dd 08 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 a2 f7 e9 0e 0f 82 74 02 00 00 8b 35 fa 27 ea 0e 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 b9 dc 08 12 0f 85 c7 02 00 00 48 83 c4
[  649.333332][    C0] RSP: 0018:ffffc9000b9476e8 EFLAGS: 00000206
[  649.339390][    C0] RAX: 0000000000000046 RBX: ffffffff8e3c45e0 RCX: 00000000f49c096d
[  649.347362][    C0] RDX: 0000000000000000 RSI: ffffffff8da037dc RDI: ffffffff8bf078c0
[  649.355429][    C0] RBP: 0000000000000002 R08: 013a57b93cc7384f R09: 0000000000000000
[  649.363409][    C0] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  649.371406][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  649.379382][    C0]  ? unwind_next_frame+0x3f4/0x20a0
[  649.384577][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  649.390723][    C0]  unwind_next_frame+0xd1/0x20a0
[  649.395645][    C0]  ? unwind_next_frame+0xbd/0x20a0
[  649.400744][    C0]  ? __free_frozen_pages+0x7df/0x1160
[  649.406195][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  649.412343][    C0]  arch_stack_walk+0x94/0x100
[  649.417033][    C0]  ? __free_frozen_pages+0x7df/0x1160
[  649.422419][    C0]  stack_trace_save+0x8e/0xc0
[  649.427103][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  649.432469][    C0]  ? __lock_acquire+0x622/0x1c90
[  649.437412][    C0]  save_stack+0x160/0x1f0
[  649.441739][    C0]  ? __pfx_save_stack+0x10/0x10
[  649.446581][    C0]  ? __free_frozen_pages+0x7df/0x1160
[  649.451953][    C0]  ? page_ext_put+0x3e/0xd0
[  649.456446][    C0]  __reset_page_owner+0x84/0x1a0
[  649.461373][    C0]  __free_frozen_pages+0x7df/0x1160
[  649.466578][    C0]  qlist_free_all+0x4d/0x120
[  649.471162][    C0]  kasan_quarantine_reduce+0x195/0x1e0
[  649.476611][    C0]  __kasan_kmalloc+0x8a/0xb0
[  649.481202][    C0]  __kmalloc_noprof+0x32f/0x880
[  649.486047][    C0]  ? find_held_lock+0x2b/0x80
[  649.490714][    C0]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  649.496427][    C0]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  649.502135][    C0]  tomoyo_realpath_from_path+0xc2/0x6e0
[  649.507672][    C0]  ? tomoyo_profile+0x47/0x60
[  649.512342][    C0]  tomoyo_path_number_perm+0x245/0x580
[  649.517796][    C0]  ? tomoyo_path_number_perm+0x237/0x580
[  649.523430][    C0]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  649.529410][    C0]  ? __handle_mm_fault+0x5a8/0x2aa0
[  649.534620][    C0]  ? find_held_lock+0x2b/0x80
[  649.539291][    C0]  ? hook_file_ioctl_common+0x145/0x410
[  649.544830][    C0]  ? __fget_files+0x20e/0x3c0
[  649.549499][    C0]  security_file_ioctl+0x9b/0x240
[  649.554512][    C0]  __x64_sys_ioctl+0xb7/0x210
[  649.559184][    C0]  do_syscall_64+0xcd/0xfa0
[  649.563676][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  649.569554][    C0] RIP: 0033:0x7f16aaf8f6c9
[  649.573955][    C0] RSP: 002b:00007f16abe8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  649.582351][    C0] RAX: ffffffffffffffda RBX: 00007f16ab1e6270 RCX: 00007f16aaf8f6c9
[  649.590313][    C0] RDX: 0000000000000000 RSI: 0000000000008933 RDI: 0000000000000000
[  649.598277][    C0] RBP: 00007f16ab011f91 R08: 0000000000000000 R09: 0000000000000000
[  649.606234][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  649.614192][    C0] R13: 00007f16ab1e6308 R14: 00007f16ab1e6270 R15: 00007ffc12da8828
[  649.622163][    C0]  </TASK>
[  649.625171][    C0] rcu: rcu_preempt kthread starved for 4741 jiffies! g68017 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  649.636262][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  649.646214][    C0] rcu: RCU grace-period kthread stack dump:
[  649.652081][    C0] task:rcu_preempt     state:R  running task     stack:28440 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
[  649.665566][    C0] Call Trace:
[  649.668925][    C0]  <TASK>
[  649.671843][    C0]  __schedule+0x1190/0x5de0
[  649.676346][    C0]  ? __lock_acquire+0x622/0x1c90
[  649.681279][    C0]  ? __pfx___schedule+0x10/0x10
[  649.686124][    C0]  ? find_held_lock+0x2b/0x80
[  649.690786][    C0]  ? schedule+0x2d7/0x3a0
[  649.695104][    C0]  schedule+0xe7/0x3a0
[  649.699167][    C0]  schedule_timeout+0x123/0x290
[  649.704004][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  649.709361][    C0]  ? __pfx_process_timeout+0x10/0x10
[  649.714634][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  649.720514][    C0]  ? prepare_to_swait_event+0xf5/0x480
[  649.725966][    C0]  rcu_gp_fqs_loop+0x1ea/0xaf0
[  649.730731][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  649.736010][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  649.741197][    C0]  ? __pfx_rcu_gp_init+0x10/0x10
[  649.746137][    C0]  ? rcu_gp_cleanup+0x7c1/0xd90
[  649.750984][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  649.756783][    C0]  rcu_gp_kthread+0x26d/0x380
[  649.761455][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  649.766650][    C0]  ? rcu_is_watching+0x12/0xc0
[  649.771399][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  649.776586][    C0]  ? __kthread_parkme+0x19e/0x250
[  649.781599][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  649.786793][    C0]  kthread+0x3c5/0x780
[  649.790861][    C0]  ? __pfx_kthread+0x10/0x10
[  649.795444][    C0]  ? rcu_is_watching+0x12/0xc0
[  649.800192][    C0]  ? __pfx_kthread+0x10/0x10
[  649.804778][    C0]  ret_from_fork+0x675/0x7d0
[  649.809359][    C0]  ? __pfx_kthread+0x10/0x10
[  649.813940][    C0]  ret_from_fork_asm+0x1a/0x30
[  649.818715][    C0]  </TASK>
[  649.821716][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  649.828032][    C0] Sending NMI from CPU 0 to CPUs 1:
[  649.833240][    C1] NMI backtrace for cpu 1
[  649.833264][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  649.833298][    C1] Tainted: [U]=USER
[  649.833306][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  649.833320][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  649.833353][    C1] Code: 87 6f 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 23 94 2c 00 fb f4 <e9> 3c 0a 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  649.833376][    C1] RSP: 0018:ffffc90000197de8 EFLAGS: 000002c6
[  649.833394][    C1] RAX: 00000000002c779d RBX: 0000000000000001 RCX: ffffffff8b5d92a9
[  649.833410][    C1] RDX: 0000000000000000 RSI: ffffffff8da2917b RDI: ffffffff8bf078c0
[  649.833425][    C1] RBP: ffffed1003a59b58 R08: 0000000000000001 R09: ffffed10170a6655
[  649.833441][    C1] R10: ffff8880b85332ab R11: 0000000000000001 R12: 0000000000000001
[  649.833456][    C1] R13: ffff88801d2cdac0 R14: ffffffff90824ad0 R15: 0000000000000000
[  649.833471][    C1] FS:  0000000000000000(0000) GS:ffff888124b0d000(0000) knlGS:0000000000000000
[  649.833493][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  649.833509][    C1] CR2: 00007f0e2915d449 CR3: 000000004d034000 CR4: 00000000003526f0
[  649.833525][    C1] Call Trace:
[  649.833532][    C1]  <TASK>
[  649.833540][    C1]  default_idle+0x13/0x20
[  649.833572][    C1]  default_idle_call+0x6c/0xb0
[  649.833604][    C1]  do_idle+0x38d/0x500
[  649.833630][    C1]  ? __pfx_do_idle+0x10/0x10
[  649.833653][    C1]  ? trace_sched_exit_tp+0x2f/0x120
[  649.833693][    C1]  cpu_startup_entry+0x4f/0x60
[  649.833740][    C1]  start_secondary+0x21d/0x2b0
[  649.833771][    C1]  ? __pfx_start_secondary+0x10/0x10
[  649.833805][    C1]  common_startup_64+0x13e/0x148
[  649.833839][    C1]  </TASK>
[  650.100941][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  650.107284][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  653.661937][    C0] net_ratelimit: 7897 callbacks suppressed
[  653.661954][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  653.680570][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  653.693134][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  653.705966][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  653.718179][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  653.730983][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  653.743225][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  653.756021][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  653.768567][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  653.781450][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  658.646613][    C0] net_ratelimit: 9491 callbacks suppressed
[  658.646630][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  658.664675][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  658.677458][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  658.689703][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  658.702500][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  658.714706][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  658.727510][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  658.739720][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  658.752498][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  658.764729][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)