last executing test programs:

13.815166438s ago: executing program 2 (id=857):
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/mm/transparent_hugepage/hugepages-2048kB/enabled\x00', 0x22b42, 0x0)
sendfile$auto(r0, r0, 0x0, 0x6)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x1000000d, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x7, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x2, 0x62, 0x80000000, 0x6, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
getpid()
mlockall$auto(0x5)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r2)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001e40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010027bd7000fbdbdf2504000000080017000800000004001e00"], 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0)
mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x4, 0x0, 0x400, 0x7)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket(0x2, 0x80002, 0x73)
io_uring_setup$auto(0x40a, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
getrandom$auto(0x0, 0x5ffffde, 0x47)
sendmsg$auto_NL80211_CMD_LEAVE_MESH(r4, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="05006b25bd7000ff4901dbdf25450008007e00748e000004"], 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x1)
socket(0x18, 0x2, 0x4000000)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46)

11.165919068s ago: executing program 2 (id=864):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
epoll_ctl$auto_EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f0000000080)={0x9, 0xfffffffffffffb70})
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x2c, 0x940, 0x7ff, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x1fe, 0x7)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r0 = socket(0x11, 0x80003, 0x300)
setsockopt$auto_SO_SNDBUF(r0, 0x2, 0x7, 0x0, 0x6)
open(0x0, 0x261c2, 0x84)
close_range$auto(0x2, 0x8000, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x26dc2, 0x84)
io_uring_setup$auto(0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
r3 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0xe2d)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000280)={'wg0\x00', <r5=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r5, r4, 0x4, 0x401, r3, @relative_id=0x13, 0xe600}, 0xf)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r1, 0x0, 0x3}, 0xc)
bpf$auto(0x2, &(0x7f0000000500)=@bpf_attr_11={0x5, 0x200ffffffff, 0x9, 0x5, 0xf870e9f, 0x7, 0x8}, 0x9)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r6 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r6, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

9.603365551s ago: executing program 2 (id=869):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0x100000a3d9)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x24281, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000001a00)='/dev/binderfs/binder0\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/netdevsim3/proxy_arp\x00', 0x88542, 0x0)
write$auto(r2, 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/oss\x00', 0x8042, 0x0)
mmap$auto(0x4, 0x81, 0x3, 0x19, r1, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000001840)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="010326bd7000fedbdf2501000000"], 0x14}, 0x1, 0xf0ffff, 0x0, 0x4005}, 0x28044004)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0x200007, 0x8)
select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0xd3e, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x62, 0x80000001, 0x50a7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x8000000000000001, 0x948f, 0x1005, 0x3, 0x7, 0xfffffffffffffff2, 0x7, 0x5, 0x79d, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0xf]}, 0x0)

8.914279041s ago: executing program 1 (id=872):
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0)
mmap$auto(0x0, 0x9, 0x800000000df, 0x9b72, 0xea8a, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_USBDEVFS_REAPURB(0xffffffffffffffff, 0x4008550c, &(0x7f0000000100)=&(0x7f0000001ac0)="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")
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x400000b7, 0x400, 0x2}]})
mincore$auto(0x0, 0x8000000000005a, 0x0)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
capset$auto(0x0, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000)
io_uring_setup$auto(0x7, 0x0)
prctl$auto(0x23, 0x200000000000009, 0x7fffffffefff, 0x0, 0x0)
r2 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/cmdline\x00', 0x60502, 0x0)
read$auto_proc_pid_cmdline_ops_base(r2, &(0x7f0000000040)=""/159, 0x9f)

8.429655702s ago: executing program 3 (id=874):
r0 = io_uring_setup$auto(0x1d48, &(0x7f0000000340)={0x7fffffff, 0x10, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x8, 0x1, 0x80000000, 0x100, 0x83, 0x101, 0x6, 0x8000000000000001}, {0x100, 0x1, 0x52, 0x5, 0x11, 0x101, 0x876c5, 0xc9, 0x3}})
mmap$auto(0x0, 0x200, 0xffffffff, 0xeb1, r0, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
socket(0x23, 0x2, 0x0)
socket(0x21, 0x3, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, 0x0, 0x3)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), r3)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r5=>0x0})
sendmsg$auto_BATADV_CMD_GET_HARDIF(r2, &(0x7f0000000980)={0x0, 0xf000, &(0x7f0000000940)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="f38327b97000fedbdf250500000008000300", @ANYRES32=r5], 0x1c}}, 0x4008000)
sendmsg$auto_BATADV_CMD_GET_GATEWAYS(r1, 0x0, 0x4004000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0)
pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9)
read$auto(0x3, 0x0, 0xf34)
write$auto(0x3, 0x0, 0xffd8)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0p/oss\x00', 0xaa102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/sunrpc/parameters/udp_slot_table_entries\x00', 0x80302, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty29\x00', 0x200, 0x0)

8.295656885s ago: executing program 2 (id=875):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0)
ioctl$auto(0x3, 0x4020565a, 0x38)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder0\x00', 0x800, 0x0)
socket(0xa, 0x1, 0x100)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
socket(0x1e, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x101, 0x0)
r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x10303f, 0x0)
ioctl$auto_SNAPSHOT_ATOMIC_RESTORE(r1, 0x3304, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x1, 0x84)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5)
r3 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/environ\x00', 0x420901, 0x0)
read$auto_proc_environ_operations_base(r3, &(0x7f0000000240)=""/235, 0xeb)
ioctl$auto_VHOST_SET_VRING_ERR(r2, 0x4008af22, &(0x7f0000000000)={0x1})
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0)
openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

7.151702195s ago: executing program 0 (id=876):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0xfffd, 0x8000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0)
socket(0x18, 0x3, 0x2)
sched_get_priority_min$auto(0x40)
openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, 0x0, 0xb49dc2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000002140)='/proc/sys/fs/file-nr\x00', 0x0, 0x0)
socket(0x6, 0x2, 0x80000000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24008062}, 0x4000845)
sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x10084)
sendmmsg$auto(0x3, 0x0, 0x2, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
bpf$auto(0x0, &(0x7f0000000340)=@bpf_attr_5={@target_fd=0x5, 0x7f, 0x9c, 0x7b2, 0x1, @relative_id=0xfa, 0x80}, 0x96)
r1 = open(0x0, 0x80842, 0x91)
write$auto_proc_clear_refs_operations_internal(r1, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0xc)
setsockopt$auto(0x5, 0x104000000000010e, 0x2, 0x0, 0x16)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0xa04c0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)

7.151419043s ago: executing program 3 (id=877):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x24281, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000001a00)='/dev/binderfs/binder0\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/netdevsim3/proxy_arp\x00', 0x88542, 0x0)
write$auto(r2, 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/oss\x00', 0x8042, 0x0)
mmap$auto(0x4, 0x81, 0x3, 0x19, r1, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000001840)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="010326bd7000fedbdf2501000000"], 0x14}, 0x1, 0xf0ffff, 0x0, 0x4005}, 0x28044004)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0x200007, 0x8)
select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0xd3e, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x62, 0x80000001, 0x50a7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x8000000000000001, 0x948f, 0x1005, 0x3, 0x7, 0xfffffffffffffff2, 0x7, 0x5, 0x79d, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0xf]}, 0x0)

6.889305731s ago: executing program 2 (id=878):
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0x4, 0x80000001, 0x8}, 0x6f4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0)
select$auto(0x9, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb})
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0xfffffdef)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000003c0), 0x109080, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000000440)={0x24c, r3, 0x201, 0x70bd2c, 0x25dfdc02, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x234, 0x1, 0x0, 0x1, [@nested={0x22d, 0x139, 0x0, 0x1, [@nested={0x21b, 0xeb, 0x0, 0x1, [@generic="4540411dc202cca7c3000938b0c18de4cfac1203a8319dc7b96f0e2a79334de3be28009e292ede89fa03", @typed={0x8, 0xdd, 0x0, 0x0, @pid}, @generic="6930d90e6909e2b8e7eb7fce61b1c025380ce4702699d87c1fed3cf9f146b4ded92ce82ffe7fa2ac72640f557a845a28a0e484eab4c323b7a631c0e9ea7cd1623d365b31ac8f93d7b7ba1fe0dc38aac8423995fbf05cefbfcc2cf976cdb77a84b14a852fa07c112b31360ea6913f2214d52fd4fdc9d70f5d00ae063c4b369b11a363e0a6f5f9edfc8b527c68e2f43e321c006a2034c49e67e56ab2060bccbadae47f135e9370e4143639388d590430c25637db9a1f372b131aed9326e3db4a6bc9080db86a4649bc6bf77993ab", @nested={0x70, 0xe8, 0x0, 0x1, [@generic="b43e00104808a69ceefccdc7208d795692755d48b7d3eaf37da135891ae1764cf2fdac302d49af25e1cfedfa7d2ea160f99e24961c2a3f75338a77437119afaf3c16c367d73289398b08635cccbd637a44a7e458", @generic="151410cb8e5e702b6c00f1ace487751a9e174acb", @generic="197d6a76"]}, @nested={0x4, 0x12d}, @nested={0x9c, 0x109, 0x0, 0x1, [@generic="18dd0047f071cf26f71d7c3e0953a7b809f180b71a907ce8eee916b786c12bef043849f161b88cbb4f01bf22d7564404244d4a13c3a6386f14ef3c114ccaa122e838b4e7a335dea8cbe3bcec519afde9f5c23303b82c57b41f730b3046db635a18dd6ae8e02e7eecc84472f0833c6a03b2d8ab0f34a797c4cc4a02f9775150e42001e3c49e4af528b3a41699", @typed={0xc, 0xf0, 0x0, 0x0, @u64=0x4}]}, @typed={0x8, 0x50, 0x0, 0x0, @uid}]}, @typed={0x8, 0x2d, 0x0, 0x0, @fd}, @generic="5ecb8698ec"]}]}]}, 0x24c}, 0x1, 0x0, 0x0, 0x44000}, 0x4000048)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r0)
sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)={0x28, r4, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x5}, @NL80211_ATTR_HE_BSS_COLOR={0xc, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x1)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x60d80, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/fib_trie\x00', 0x0, 0x0)

6.55109944s ago: executing program 1 (id=879):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080)
mmap$auto(0x33, 0x2020009, 0x3, 0x16, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, &(0x7f00000001c0)=0x6, &(0x7f0000000200)=0x1, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf})
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x8)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
r1 = socketcall$auto(0x8000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001300)={'batadv_slave_0\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r2)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r2, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000040)={0x28, r4, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x2}]}, 0x28}, 0x1, 0x100000000000000, 0x0, 0x9dfefc5e47f5c72f}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0)
sendfile$auto(r6, r6, 0x0, 0x3)
ioctl$auto(0x3, 0xae41, r1)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0)
ioctl$auto(r7, 0x540a, 0x0)
close_range$auto(0x2, 0x8, 0xcea8)
msgrcv$auto(0x9, 0x0, 0xfffffffffffffffd, 0x6, 0x80008)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x0)

6.420266753s ago: executing program 0 (id=880):
mmap$auto(0x0, 0xc, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x3002, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x104, 0x6, 0x3}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
statmount$auto(0x0, &(0x7f0000000400)={0x8, 0x1, 0x9, 0x3, 0xb, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x3, 0x4, 0x5, 0x7, 0x6, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0x81)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/netdevsim2/hop_limit\x00', 0x5014c0, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/zram-control/hot_remove\x00', 0x8001, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv6/conf/tunl0/disable_policy\x00', 0xd02, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x44, 0x0)
fsopen$auto(0x0, 0x1)
sendfile$auto(r0, r1, 0x0, 0x800048)
close_range$auto(r1, 0x8, 0x0)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001180)='/dev/input/mice\x00', 0x1a1382, 0x0)
r2 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x11}, 0xc0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
tee$auto(r3, r3, 0x6, 0x0)
socket(0x2, 0x3, 0x6)
r4 = socket(0x2, 0x1, 0x0)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
socket(0x2, 0x801, 0x100)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmmsg$auto(r2, &(0x7f0000000240)={{0x0, 0x1c83, &(0x7f00000002c0)={0x0, 0xc8}, 0xb, 0x0, 0x0, 0x9}, 0x7f}, 0xfffffc00, 0x0)

5.72261897s ago: executing program 0 (id=881):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
memfd_create$auto(0x0, 0x9)
socket(0x1a, 0x6, 0x968c)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
sendmsg$auto_NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, 0x0, 0x51)
mmap$auto(0x7c, 0x20009, 0xffffffffffffffc0, 0xeb1, 0x401, 0x10001)
statmount$auto(0x0, 0x0, 0x1fe, 0x10081)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x0, 0xa503}, 0x800}, 0x7, 0x4008)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='\xce*+#\x00', 0x80)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.7/usb8/bConfigurationValue\x00', 0x10b042, 0x0)
sendfile$auto(r2, r2, 0x0, 0x2)
socket(0x1d, 0x2, 0x6)
mmap$auto(0x0, 0x40009, 0xde, 0x9b72, 0x7, 0x28000)
capset$auto(0x0, 0x0)
bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, 0x0, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcbaL\x8d\x12\x18I', 0x81)
unshare$auto(0x20000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$auto(0xf, 0x0, 0xf)
write$auto(0x3, 0x0, 0xfffffdef)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)

5.675390842s ago: executing program 3 (id=882):
mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0x11, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
io_uring_setup$auto(0x6, 0x0)
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x4604, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x4c3982, 0x0)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4)
read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/178, 0xb2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
r2 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000), 0x40002, 0x0)
write$auto(r2, 0x0, 0x2)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
mmap$auto(0x0, 0x7, 0x3, 0xeb2, 0xffffffffffffffff, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x80805, 0x0)
shmget$auto(0xffffffffffffffff, 0xb0d, 0xa7db6ba)
unshare$auto(0x8000400)

4.785832691s ago: executing program 1 (id=883):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfdef)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
socket(0x2, 0x2, 0x88)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x41000, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
poll$auto(&(0x7f0000000180)={<r2=>r1, 0xfff7, 0x9816}, 0x7f, 0x9)
ioctl$auto(r2, 0x4008af24, r1)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0)
socket(0x25, 0x5, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

3.72177373s ago: executing program 0 (id=884):
r0 = io_uring_setup$auto(0x1d48, &(0x7f0000000340)={0x7fffffff, 0x10, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x8, 0x1, 0x80000000, 0x100, 0x83, 0x101, 0x6, 0x8000000000000001}, {0x100, 0x1, 0x52, 0x5, 0x11, 0x101, 0x876c5, 0xc9, 0x3}})
mmap$auto(0x0, 0x200, 0xffffffff, 0xeb1, r0, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
socket(0x23, 0x2, 0x0)
socket(0x21, 0x3, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, 0x0, 0x3)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), r3)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r5=>0x0})
sendmsg$auto_BATADV_CMD_GET_HARDIF(r2, &(0x7f0000000980)={0x0, 0xf000, &(0x7f0000000940)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="f38327b97000fedbdf250500000008000300", @ANYRES32=r5], 0x1c}}, 0x4008000)
sendmsg$auto_BATADV_CMD_GET_GATEWAYS(r1, 0x0, 0x4004000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0)
pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9)
read$auto(0x3, 0x0, 0xf34)
write$auto(0x3, 0x0, 0xffd8)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0p/oss\x00', 0xaa102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/sunrpc/parameters/udp_slot_table_entries\x00', 0x80302, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty29\x00', 0x200, 0x0)

3.721124702s ago: executing program 3 (id=885):
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0)
mmap$auto(0x0, 0x9, 0x800000000df, 0x9b72, 0xea8a, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_USBDEVFS_REAPURB(0xffffffffffffffff, 0x4008550c, &(0x7f0000000100)=&(0x7f0000001ac0)="bb1c0275543a8d4904858fad76de7e200b87ed58dcbe46cddfd2fa6504b413ab50506d2497e485a0a7ac50c6e65a34aebd41fbd54ec788e316e8ed02b97646237d316806c4d5477f05867b57719ac466edcad14aad7b8b2f978762162f946126875efc38143808d92af72cc903fba7ddce2e164e86d37fb5a5985b6962deec257b5013ecb9859057ad6f9306d1631e75bdfabc1b9c5c71f837e774dc7027f43a4d9665c3b017d159d68a96e0b89458ab0de0736c288bce81688d0d4b94920ac9b416fec3ec531b2a6400ca4664ea7ed27beea9adee4b61d424fea7272e35e3e7b8559b75f0219a8160eb285f44a66b184804df4a103fbfa8225c9be8aa710e508b86ec2687c6523363955e8a74dfc965f07c924b8f6e33130ad289c804ba8eaea607f10d6f94f0636e188446243d70829b39b22b1e5dd34a684083f86ab7929214f259661efc5a67396e02e23ec52d11a9fcf62a950f1269f6c9795999a4768162ba5da9eb7bdd0bdab9411705b6af990594ab139c7fd25b927b0df5215936ce7c7113eef2a0f34f103b73d03faf9913e8723b7fe9d78d8e394a315a4133cf02d2a1040411a4d1cc031a23bb9fbd20929ac0519cefb93740526754db24b600e869dabcb98a7a5f44254e9f8b792e086d79ab1acfb5af89520567448ae3e518390b0750e512b9d37abec8ac9b2e62544bf4bd6d888b51c4ff9c233263e6d68f4d5969bc9d8e24fa0c24731c35d42e7e323007baf6011eb9499f650be8d1ba7a837d9c77d6549ff962f7e3782298d89524bea7ebd4659c822d1629190ed08e1206f04d9b516788de86f7ddedfbdcdb250198789b66fef84dd9135d392d531200e82eab724a64225816ef8576f03717c48209501339683249bcded51e46cc1961ffe972b943f821207a08e342f4505507f30f784761b67a840a37fe3e2c4785d216455179ff5431569315b5a2a2f40699bccca3ecb17f9dd468536630525000e3a7f096f865d5f89262377f3057d6cc93ce167f28428c092f04dc81b8026a665384be8c98d455450736c2996d16ee015ad633c723ec4283b10b6233a51cc3239ca1e25a811da05dab9b8a3303ebf73f829d2dcdd6e4285ca5639a32beb0c8dff733482fcba64a1c481d4a69ab70d24f8cf572264a6622b6741d609e0aa7587cbf4e79591ddbf5001de3183f885eb43ba65a0ad097ac90263101e393c5986cea2cb087849f232c502cb16f71e7ae0d1c78f165c0f702b8983663e9794e7babc6c66b89fb5e82ce5895b7d5621b43833d9bfd389c9ed8a0cb6c88ba8bdbacace3e71ce569de655e10e2bd7939e07cf274977c133b7b0e0f669a4d5c8f0e3c476a88fc772a4dd72c5da8af21957d3508ff9ae83c9caa94e5a85425dd457552b10c9a0f3f296e1be3805840405051f8b103793cf6f90b81ace3d44081f4f3ae49bd042d7837cc34911450b52585ee44d9e4b6366234f771d6d89dfd03de0e28a1f827ec77ea86605e87a0cbb13abe38dfd04d70df63ff8055d36e4d858ff48f56eb8997fcc20c5c1ff63033e60c3a3909acc8b40be7e2a82dbaffba074ba26f35448900c4c76d25d08b335674ffc89ac6eb1c5cb8417ba141e59acc167b5ab86888a0f58ddc974ca2b2fa2d46629be65440ea841275cfc31f5086abe1ef70ecd296438c4bd4ed05607f526366a886b787d1e47f9581cfdc5eabe9f51ab267348ef25dc5288686e031677d8ad2d37f46530bed914d8b63b5097519878440db4a4e6afe845bf6dfa2b605225c082039c5a7b900aa87878b2495678a903f7e7d997e841abf8d6ff960b30277eaf52497e7b4e37ad1d164e94bd2657ca41b55d73e45bd8ca6cd5b9acc69693bd47d3336e5f434c63e6ca02c136a8e8c7d4c6a3c289e32540bfd773755c55c0931e7f2a5e391b1c2bc5f1fae4fdfd10192668b29fd5da54eaa0f8c058305d8558aee0a369aaeb7e1b7ce9aab958276eecd8933b0917abd1e658c83e8c5bd8903e436c2eb2d08f57d121cd742b90217cf5bcc5109f362148e64de2f50c5c33d349eeb694e252879f14e5ce3807e2c928136f62c40f3a2b3816c0435a4fb2d8b5c59670260755107e4c2851f883f7867ca6703204e2b0d1a76768dab0d320e9f2defe9a0835f87ea683720f9ce806e238edde7e3cce6a98ed5e61465ece934782503c920fa6f0e15002dfa087e08c74d50d3790460de523cdff1fb1e3c15a87b149e39998be03ddfa6c94277f07f74bd8e191af285e7f28f440668dabc1093c2cfccce9e63ee2c186e4b0509f9e3389a9d8a25daa1eea095de3af42b543f633086271855cf03e214dcb0de06fddc5ba3d65868fd33d792d6a359a154fb0a1d2341a008476b8f61c72efdc88b033e992cd788732a514119918c7ad5283362b0334ab568078b12a02bc99a4bc1d87e80c3f83be98dd98369b27ab515ca0850095fe8f535bfc706debf1039ae7fd6e6e1c75772d4c2bbc9fdf1fd719f1c6c2af1739511c99e07a36bf79e89eb5d6f2d82954a0ede5a8d56f5cb76b30b0eff2fffc186f5856d9b54b78e0e6b68e3424a941e6d3fb6315489626bdb29b481e9af7044d823a7f94bb4e93fce2c7d5fd4468bc20299df15e3da4b3c6301bf221aa7859619963954b82da1f33acb8df3fe52781e520e4a4b37e17346d7fcbaff69ace6af8493aebcc256d11a66af9fde7726a5e0d4a17df09314c06ebba90c78d367459678538c9fe3280c59150fface686599a9a18e0b457009c2b6d32b7500e1c99aa25dbe7a180de3f2db4eec9a83771333b2c6b1419105e8b8eed6d8265144de56d54de6462028883a4b694850c1608bc6f82d7228e65041c4fd249dbd9645946fe4ab8d35bfefc3be7b031948e2d66f41c0ce6262d3926ab7fa5c7db93c22326ab73335782c7fb5cfe61ad3968b8c2bc180f77d21c6613e0738fa12a10ddf6fd6f077d44216a6a590462e60483cc062173bacdb44f52458ce60b65cd78a91e2e5b8b2eb3963746bc5b37383fb8ea289ca1474007a053a62bb77d94e317add33ca9d221c2e45ba46f77474d105390730fa3683fe980f9a1592b10c61cddcf320a1ba7e0d3b09d1d1f36737fe21fcf84824d4af92461287d5b8505f7deab6defb2768766f2c6e339c213101d9356ee31964382d82991b07ae78d0164318eec3da43b9d9df061095e7fd949fb4df242da0812c2eb6e379f7ba5edea50b9c4bcc7dae089936ba9476b209f3fbed28c1d4dec1466c1fb8870108554bf5d9417c4486a28c763669ede533958094a83e91baa2f662f21dc351afe968499c309e9fdc968baa762d3de8cd40fd1872a89277f3c1372d634c97fde0a4968db7cd7db566b1d5ad4c767a4b9990506de9a2b947b8147730c79046c6b969373c677e91fabda24b5109f96e1659f1f0cae2423273c5725137ddd84e82ce1db1d29d2853eee97875d25a2af7e4c3835561de89c1a1227fe3a3535d221fe31c0d5669f7203ca47ddf3e6ae9e6ff3f28c8f21ced70e808561a7a76c0ba6450a6e3f92dbcd89f1bcac9e8cbdc3f5c71d9c8df80b5218f1569bb185b56cf99255555b83eac2db38b7337fa80bb56c6a2031374eea0d905b165265096a47b2a9d3868dc1f70ed0a8a6f811e05e737c66af3e4a337905cb9907738693db7c86ed69e216b59bbf9837011784449383debd9ea34d291edf2fe2ba38fb81c9f148e2a923d22b5303ed70b63a5e2bb990b86c09e1f9aa700b05424a872a40fae490cb6508aaceba2dedc7922cbab663fbdc57c88505110fe0a1e267f2243cf2bc0d054612aeadc834f11e39b62c90c1feff4285e63e033e665135000b322ad9e201c3c92e40bbeb61452840838958f8dc1978aa8d081da6485c2c66e92533ee5ef2161fb9fa2404d674e1bd2f43c97a40575aa481b57cb32f5e0d015014de763ebd971048bd5414e9115afb6233925965fa06a18bd8cb660a826fbb047e78dc7cedd9c5a5473f1d856b800d9ce9cbfc313aec7bf6a6ab554dfd123efa7aea19e033f75e3c4fae7507e2094d430124844c85d55d333c12038df2623f13ea7fb2cb235a638c9dadd2e39be7bdaab28eed7338a4033853810def113b6cca9120173200c8f15e91573e87df4dac734e9db799b2e3f4bd11e542a34997e7085bdc92a906dafe5d2ed82ae9ee6b5b12a99710c138d10527a9d926ffb43d31ac9c615a31ccf99bfec1baeb19bccc526aeff9827e9b9ac8dffcdad77fdcc66fc39ff25d5537a01c2e438ff6c5f426411c09b4dadfb491251c582e473c12dc06d0ad114e527d4925c1bb8801e21de5845e75b78de48af5dc766695e02f0b494935a779748b543bd786f2683d69d4ca4daeeb1d074c60e06644d706162c15f0f1b53445d7a286355aab897268ef3fa9cedd8728be0fa75183dc244b008df948a4fec8b6918ddedb3aa8b726d4eeb6b995aecbe6251f35539baacb77ab633ea24a22a42cc6901d1c3a90fa4a9fee87c8237ebaefa393a8b0074b921a5d0a20e6b133072a1a4e771cc61b72ad94dada4aaf7b5cef607166a58e4b763da74adc989446a4738859a3d1f4d7530cdd14706a678fd845f202adc6db859931c5e05bf7438cbbdade1349f0a363aea708c5377ef32a89f3ee39bd0035114f4360a8a85c287558fc60d7e50aa3c3ca2063485a5c8233617f003da4f32f63d4e9ee53272df0b6795f999fb854141d2241f735474bdcc28ea0458e040ec8ef94a8b089863bb362d2d97bf952709a5078dbdc8b0dd320357ebe963f0d3ab700283ca1b6ec30f9d3bbfd677ba6c7aa4130493421e8f4aad891222c9b94806703741d21674e71be0427985312f8faf8d2e9d90d16f34c3f23fea05df18c9902d14c5f988cf0c6b29e68d4dfd78af6ec46ea07224f137e29c2579b669013d44ff23d863b974d196e99fb0fba93dbca321be9492133229a3356c581e6c10db71a586850ebee4fdd3508bfef8802dbaf257cecd7c9952df86a921a637491074ebdb558e15a526d2e774f071cacf514ab5d53f96a3d5f13f37ec20c69bda9a8ea325d9cf11017858bf91ea4bba0cd2730e1f12ebff39b1f7988d0a00bde352a712400f809c1d3fbb71f6cc4ec058d3e102d1c6f9b6ea4bfc757bd17ada9208a778ce27ec007ff5714a3dd46cd01037832fc62982a2ecfac609f7f8b39e1e261733e10d720683f6b222a525215bd70c77c17696bb17706218c1099212ed4b3f35f4fcfe8f0052317e4f17379d642e436e7349c53a53ec826bfa439c716e487391ed31091ea951b87b86cf288f929457b5e8d07290264e240e2c82a70102effe76774fd9394bc5fd57cbce7739c21f3dd38580493084f73a6734bfff8538320b2e2eac79739e1fa7bef3b71bc24a1fbbddd6a3052fdcc24ad1ca9c43e679e039a92e6c38190a509e7b84a133594c3618badc1855a7a058081fd0bd15496ce4e9402b68b22e4904f9262f634bb8e1f2835dde4c2b800def942eed19960a315c29d63216c6fd0341700d84cb0a988758e3b3e4b5712d218624be948154c56faa5f6a796c15c767d45ed9d1718cf24c99a3675806052de55bf8b47f4a8f2a7a3b17f905bac021c3b0d41e4fef3629d2827348dbfc8abc57b02f6481a70220015401efdf75cd9056c1b09209350273e828b4ed3500359d60c7e1032910e14a584bdd5e26201144a79b3640ee6efc2d33317fad04a5ed6a0abafac1490bb87d19dbe8ce01994642b85303a5901b4c4c82b1e17af29c4deb978f")
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x400000b7, 0x400, 0x2}]})
mincore$auto(0x0, 0x8000000000005a, 0x0)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
capset$auto(0x0, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000)
io_uring_setup$auto(0x7, 0x0)
prctl$auto(0x23, 0x200000000000009, 0x7fffffffefff, 0x0, 0x0)
r2 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/cmdline\x00', 0x60502, 0x0)
read$auto_proc_pid_cmdline_ops_base(r2, &(0x7f0000000040)=""/159, 0x9f)

2.908951333s ago: executing program 2 (id=886):
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0)
mmap$auto(0x0, 0x9, 0x800000000df, 0x9b72, 0xea8a, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_USBDEVFS_REAPURB(0xffffffffffffffff, 0x4008550c, &(0x7f0000000100)=&(0x7f0000001ac0)="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")
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x400000b7, 0x400, 0x2}]})
mincore$auto(0x0, 0x8000000000005a, 0x0)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
capset$auto(0x0, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000)
io_uring_setup$auto(0x7, 0x0)
prctl$auto(0x23, 0x200000000000009, 0x7fffffffefff, 0x0, 0x0)
r2 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/cmdline\x00', 0x60502, 0x0)
read$auto_proc_pid_cmdline_ops_base(r2, &(0x7f0000000040)=""/159, 0x9f)

2.558431125s ago: executing program 0 (id=887):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0x100000a3d9)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x24281, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000001a00)='/dev/binderfs/binder0\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/netdevsim3/proxy_arp\x00', 0x88542, 0x0)
write$auto(r2, 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/oss\x00', 0x8042, 0x0)
mmap$auto(0x4, 0x81, 0x3, 0x19, r1, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000001840)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="010326bd7000fedbdf2501000000"], 0x14}, 0x1, 0xf0ffff, 0x0, 0x4005}, 0x28044004)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0x200007, 0x8)
select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0xd3e, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x62, 0x80000001, 0x50a7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x8000000000000001, 0x948f, 0x1005, 0x3, 0x7, 0xfffffffffffffff2, 0x7, 0x5, 0x79d, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0xf]}, 0x0)

2.020949533s ago: executing program 1 (id=888):
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0)
ioctl$auto(0x3, 0x4020565a, 0x38)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder0\x00', 0x800, 0x0)
socket(0xa, 0x1, 0x100)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
socket(0x1e, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x101, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x10303f, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x1, 0x84)
r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5)
r2 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/environ\x00', 0x420901, 0x0)
read$auto_proc_environ_operations_base(r2, &(0x7f0000000240)=""/235, 0xeb)
ioctl$auto_VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f0000000000)={0x1})
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

1.549882637s ago: executing program 0 (id=889):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mprotect$auto(0x1000, 0x400000, 0x4)
unshare$auto(0x40000080)
unshare$auto(0x21)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0xfff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
bpf$auto(0x0, &(0x7f0000000580)=@task_fd_query={0x7, 0x4, 0x200, 0x37e, 0x0, 0xf, 0xffffffffffffffff, 0x2, 0x5}, 0x6f4)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='/dev/audio1\x00', 0x100000a3d9)
listmount$auto(0x0, &(0x7f00000001c0)=0x4, 0x4, 0x101)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
pidfd_open$auto(0x1, 0x0)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc6900, 0x0)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x1842, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d39, 0x5, 0x2, 0x1]}, 0x0)
init_module$auto(0x0, 0xffff9, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r2)
openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
setgroups$auto(0xe32, 0x0)

1.103847625s ago: executing program 3 (id=890):
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0)
ioctl$auto(0x3, 0x4020565a, r0)
inotify_init1$auto(0x3000000000000)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
socket(0x1e, 0x1, 0x0)
timer_create$auto(0x80, 0x0, &(0x7f0000000180)=0xfffffc01)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000480)={'dummy0\x00', <r3=>0x0})
sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000e80)={0x20, r2, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_MODULE_FW_FLASH_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}, 0x1, 0x1000000}, 0x400c080)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80302, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0x1, 0x8fd6, 0x948b, 0x3, 0x3392, 0x4, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0)
semget$auto(0x80000000, 0x13c, 0x3ff)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x7f, 0x1, 0xeb1, 0x401, 0x8000)

963.61882ms ago: executing program 1 (id=891):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
setsockopt$auto(0x3, 0x1, 0x8, 0x0, 0x89)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)={0x14, r1, 0xd0d58b333228212f, 0x70bd2c, 0x25dfdbfd}, 0x14}}, 0x20000040)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/tcp_fastopen_key\x00', 0x181081, 0x0)
pwrite64$auto(r3, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01H\x01\x00\x00\x0fo\x84\xfc\x89\v\xea\b\x00\x00\x00\x00\x00\x00\x00\x01\x88\v\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dG\x9f`\xb8Q\xf0BFWI\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00\\0 \xa2\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\b\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xeeI\x00'/232, 0xfdea, 0x23)
read$auto(r2, 0x0, 0x20)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/lo/mtu\x00', 0x2062, 0x0)
read$auto(0xffffffffffffffff, &(0x7f0000003040)='veth1_to_team\x00', 0x9)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x4)
ioctl$auto_FIDEDUPERANGE(r2, 0xc0189436, 0x8000)
chdir$auto(&(0x7f0000000040)='./file0\x00')
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000600)='/proc/sys/net/ipv4/vs/est_cpulist\x00', 0x2, 0x0)
socket(0x2, 0x1, 0x0)
setsockopt$auto(0x3, 0x0, 0x18, 0x0, 0x0)
write$auto(r5, 0x0, 0x9)
mprotect$auto(0x200000000000, 0x806121, 0x8)
sysfs$auto(0x2, 0x11, 0x0)
fsopen$auto(0x0, 0x1)
r6 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r6, 0x8, 0x0, 0x0, 0x0)

50.105437ms ago: executing program 3 (id=892):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x24281, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000001a00)='/dev/binderfs/binder0\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
write$auto(0xffffffffffffffff, 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8042, 0x0)
mmap$auto(0x4, 0x81, 0x3, 0x19, r1, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000001840)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="010326bd7000fedbdf2501000000"], 0x14}, 0x1, 0xf0ffff, 0x0, 0x4005}, 0x28044004)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0x200007, 0x8)
select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0xd3e, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x62, 0x80000001, 0x50a7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x8000000000000001, 0x948f, 0x1005, 0x3, 0x7, 0xfffffffffffffff2, 0x7, 0x5, 0x79d, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0xf]}, 0x0)

0s ago: executing program 1 (id=893):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000)
ustat$auto(0x801, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000d, 0x3ff, 0x1000000000012, 0xffffffffffffffff, 0xf4e)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000840)="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", 0xd4f)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0xe, 0x0, 0x20)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0\x00', 0x940, 0x0)
ioctl$auto_MEMGETBADBLOCK(r2, 0x40084d0b, &(0x7f0000000040)=0x7)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001680), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r4, &(0x7f0000002300)={0x0, 0x0, &(0x7f00000022c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="110325bd7000fedbdf2501"], 0x14}}, 0x10040)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000000), r4)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r4)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.201' (ED25519) to the list of known hosts.
[   98.766921][ T5819] cgroup: Unknown subsys name 'net'
[   98.920100][ T5819] cgroup: Unknown subsys name 'cpuset'
[   98.929559][ T5819] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  100.806584][ T5819] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  102.219060][    T9] cfg80211: failed to load regulatory.db
[  103.145995][   T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  103.154602][   T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  103.162458][   T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  103.171617][   T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  103.179493][   T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  103.196331][ T5152] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  103.204989][   T52] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  103.216146][   T52] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  103.224788][   T52] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  103.233038][   T52] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  103.259059][ T5840] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  103.267582][ T5840] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  103.276974][ T5840] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  103.284910][ T5837] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  103.293404][ T5837] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  103.301280][ T5837] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  103.313066][ T5837] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  103.336345][ T5837] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  103.344220][ T5837] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  103.359498][ T5847] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  103.693003][ T5836] chnl_net:caif_netlink_parms(): no params data found
[  103.871813][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.879191][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.887308][ T5836] bridge_slave_0: entered allmulticast mode
[  103.894870][ T5836] bridge_slave_0: entered promiscuous mode
[  103.933267][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.940617][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.948161][ T5836] bridge_slave_1: entered allmulticast mode
[  103.957857][ T5836] bridge_slave_1: entered promiscuous mode
[  104.059587][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.082347][ T5839] chnl_net:caif_netlink_parms(): no params data found
[  104.119148][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.240405][ T5836] team0: Port device team_slave_0 added
[  104.250214][ T5836] team0: Port device team_slave_1 added
[  104.257171][ T5844] chnl_net:caif_netlink_parms(): no params data found
[  104.337461][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.345254][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.352540][ T5839] bridge_slave_0: entered allmulticast mode
[  104.360102][ T5839] bridge_slave_0: entered promiscuous mode
[  104.380289][ T5843] chnl_net:caif_netlink_parms(): no params data found
[  104.393203][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.400256][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.426379][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.458185][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.465415][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.472920][ T5839] bridge_slave_1: entered allmulticast mode
[  104.480696][ T5839] bridge_slave_1: entered promiscuous mode
[  104.494477][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.501837][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.528099][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.634544][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.668133][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.708992][ T5844] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.716434][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.723632][ T5844] bridge_slave_0: entered allmulticast mode
[  104.731224][ T5844] bridge_slave_0: entered promiscuous mode
[  104.778503][ T5844] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.786786][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.794034][ T5844] bridge_slave_1: entered allmulticast mode
[  104.801689][ T5844] bridge_slave_1: entered promiscuous mode
[  104.828902][ T5836] hsr_slave_0: entered promiscuous mode
[  104.835715][ T5836] hsr_slave_1: entered promiscuous mode
[  104.842522][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.849947][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.857472][ T5843] bridge_slave_0: entered allmulticast mode
[  104.864842][ T5843] bridge_slave_0: entered promiscuous mode
[  104.887855][ T5839] team0: Port device team_slave_0 added
[  104.910831][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.918133][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.925437][ T5843] bridge_slave_1: entered allmulticast mode
[  104.933560][ T5843] bridge_slave_1: entered promiscuous mode
[  104.956681][ T5839] team0: Port device team_slave_1 added
[  104.965268][ T5844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.018889][ T5844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.052375][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.076089][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.083061][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.109582][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.149889][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.159865][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.167077][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.193106][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.206630][ T5844] team0: Port device team_slave_0 added
[  105.241092][ T5844] team0: Port device team_slave_1 added
[  105.256559][ T5847] Bluetooth: hci1: command tx timeout
[  105.262411][ T5152] Bluetooth: hci0: command tx timeout
[  105.273323][ T5843] team0: Port device team_slave_0 added
[  105.282567][ T5843] team0: Port device team_slave_1 added
[  105.321157][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.328285][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.355230][ T5844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.368814][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.375837][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.402143][ T5844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.416407][ T5152] Bluetooth: hci2: command tx timeout
[  105.417636][ T5847] Bluetooth: hci3: command tx timeout
[  105.524057][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.531401][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.557441][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.580569][ T5839] hsr_slave_0: entered promiscuous mode
[  105.587640][ T5839] hsr_slave_1: entered promiscuous mode
[  105.593891][ T5839] debugfs: 'hsr0' already exists in 'hsr'
[  105.599853][ T5839] Cannot create hsr debugfs directory
[  105.612352][ T5844] hsr_slave_0: entered promiscuous mode
[  105.619433][ T5844] hsr_slave_1: entered promiscuous mode
[  105.625655][ T5844] debugfs: 'hsr0' already exists in 'hsr'
[  105.631437][ T5844] Cannot create hsr debugfs directory
[  105.637815][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.644816][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.671212][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.863696][ T5843] hsr_slave_0: entered promiscuous mode
[  105.871386][ T5843] hsr_slave_1: entered promiscuous mode
[  105.877847][ T5843] debugfs: 'hsr0' already exists in 'hsr'
[  105.883605][ T5843] Cannot create hsr debugfs directory
[  106.153678][ T5836] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  106.168433][ T5836] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  106.193495][ T5836] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  106.221330][ T5836] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  106.298429][ T5839] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  106.328371][ T5839] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  106.340713][ T5839] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  106.351652][ T5839] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  106.436393][ T5844] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  106.463497][ T5844] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  106.476530][ T5844] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  106.509232][ T5844] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  106.552858][ T5843] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  106.563792][ T5843] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  106.574936][ T5843] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  106.593503][ T5843] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  106.664278][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.717517][ T5836] 8021q: adding VLAN 0 to HW filter on device team0
[  106.744902][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.752233][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.811267][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.822842][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.830143][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.922665][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.933791][ T5839] 8021q: adding VLAN 0 to HW filter on device team0
[  106.945132][ T5844] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.979933][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.987180][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.021204][  T146] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.028412][  T146] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.046645][ T5844] 8021q: adding VLAN 0 to HW filter on device team0
[  107.056382][ T5843] 8021q: adding VLAN 0 to HW filter on device team0
[  107.088440][  T146] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.095666][  T146] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.111047][  T146] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.118305][  T146] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.142921][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.150134][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.195581][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.202818][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.337138][ T5847] Bluetooth: hci0: command tx timeout
[  107.342607][ T5847] Bluetooth: hci1: command tx timeout
[  107.344567][ T5844] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  107.476842][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.501018][ T5847] Bluetooth: hci2: command tx timeout
[  107.501172][ T5152] Bluetooth: hci3: command tx timeout
[  107.623491][ T5836] veth0_vlan: entered promiscuous mode
[  107.669171][ T5836] veth1_vlan: entered promiscuous mode
[  107.771378][ T5836] veth0_macvtap: entered promiscuous mode
[  107.806708][ T5836] veth1_macvtap: entered promiscuous mode
[  107.872110][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0
[  107.903635][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1
[  107.934688][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.944560][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.966025][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.979590][ T5844] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.993158][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.039100][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.068087][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.162504][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.181337][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.231550][ T5844] veth0_vlan: entered promiscuous mode
[  108.243762][ T5843] veth0_vlan: entered promiscuous mode
[  108.253211][   T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.264621][   T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.283263][ T5844] veth1_vlan: entered promiscuous mode
[  108.301780][ T5839] veth0_vlan: entered promiscuous mode
[  108.313852][ T5843] veth1_vlan: entered promiscuous mode
[  108.360638][ T5839] veth1_vlan: entered promiscuous mode
[  108.374710][ T5836] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  108.412847][ T5844] veth0_macvtap: entered promiscuous mode
[  108.441014][ T5844] veth1_macvtap: entered promiscuous mode
[  108.455194][ T5839] veth0_macvtap: entered promiscuous mode
[  108.489507][ T5843] veth0_macvtap: entered promiscuous mode
[  108.509228][ T5839] veth1_macvtap: entered promiscuous mode
[  108.540115][ T5843] veth1_macvtap: entered promiscuous mode
[  108.552698][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.593165][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.614767][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.635134][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.660210][ T3459] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.669177][ T3459] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.680270][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.699501][ T3459] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.708648][ T3459] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.734164][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.773202][ T3459] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.797885][ T3459] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.807825][ T1159] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.830600][ T1159] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.839860][ T1159] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.873255][ T1159] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.883162][ T1159] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.935308][ T1159] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.139022][   T37] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.154064][   T37] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.282405][ T1159] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.306235][ T1159] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.354946][ T3459] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.373490][ T3459] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.402236][   T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.416692][ T5847] Bluetooth: hci0: command tx timeout
[  109.416702][ T5152] Bluetooth: hci1: command tx timeout
[  109.436016][   T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.492727][   T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.506839][   T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.575890][ T5847] Bluetooth: hci2: command tx timeout
[  109.576030][ T5152] Bluetooth: hci3: command tx timeout
[  109.718999][   T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.739674][   T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.475796][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  110.684485][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  110.792835][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  110.816466][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  110.999929][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  111.063604][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  111.102968][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  111.275610][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[  111.373426][ T5954] XFS: Clearing xfsstats
[  111.498746][ T5152] Bluetooth: hci1: command tx timeout
[  111.499675][ T5847] Bluetooth: hci0: command tx timeout
[  111.656855][ T5847] Bluetooth: hci3: command tx timeout
[  111.657065][ T5152] Bluetooth: hci2: command tx timeout
[  111.837899][ T5964] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  111.966208][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  112.368944][ T5967] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  112.392953][ T5967] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13'.
[  112.477471][ T5967] Zero length message leads to an empty skb
[  112.506395][    T0] NOHZ tick-stop error: local softirq work is pending, handler #280!!!
[  114.207193][ T5994] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  115.667136][ T6009] netlink: 16 bytes leftover after parsing attributes in process `syz.3.21'.
[  115.759291][ T6009] netlink: 93 bytes leftover after parsing attributes in process `syz.3.21'.
[  115.871146][ T6009] kfence: disabled
[  116.946550][ T6028] binder: 6027:6028 ioctl c018620c 0 returned -1
[  116.966887][ T6028] netlink: 28 bytes leftover after parsing attributes in process `syz.0.25'.
[  120.920273][ T6072] capability: warning: `syz.2.32' uses 32-bit capabilities (legacy support in use)
[  124.220030][ T6109] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  126.384542][ T6128] kexec: Could not allocate control_code_buffer
[  128.206127][ T6151] mmap: syz.1.50 (6151) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  132.088868][ T6185] ptrace attach of "./syz-executor exec"[5843] was attempted by "\x22u����_uh�J�MlXS{�/�b:�JY�\x0b+�h5p�qd zp|ʦd���\x0c��cҁ� ! ��dg���*ßH򤝎�\x1b�򦈇T����\x1b�T���ft\x0d5i�\x22�42E
��]���\x0cq����/C2�+��(��\x0d�5/�z4�?90�ucu��C�`\x09iaRwޑrD�o��ȅ26�q�+�w��lCE�\x0a�0m���=�\x076v���\x0c\x0d�x<K���:<c�d����b���A�oO������T�8�y��c+�q\x0a��rI�8���p���ӦWȣhS�D�A���������
I|�nޣ�:Dt�浩�z3����/�����H��S�0u���4�T޲l}��������<Z�G���+�z \x07�+��Ěy��n�\x07�a6�2���}�_iW��uR��L��%�ٰ�F�o�5{-��܅��+><
�h�L:,.�
g��w%;�u�ɚ�g���6��'~��E�!�\x0d�5�(�⠚x���?8�?�[4&)�4�q�y�#�b5zmy���N��=\x0d���(,�9< �E\x0b�b�����QKϨ��;S2�qs2�j�@�����'�T:;~Ŋ��̟��\x0c�s�\x0a#\x22�A\x0c.������D����=��Y��V^TU��bGw�[��`�h�
�����QGJ�y�������`3� U� úJi���q$da�|a�\x07`)�^Y6�����c�����-�\x0b)\x07�CV�2�<�E�s��>\x0a�w��L\x1b�:��-C�'=���������~�W�2������i\x09�\x0b\x0cu�)\x5c�p�����#���\x09jB�}\x07LP���n��}-X\x0c�_^��A^��d=sZ�S�s����qV\x0aCe���jX�w7L�2K
[  136.243706][ T6252] device-mapper: ioctl: Invalid ioctl structure: name ��������, dev 4
[  137.937305][ T6246] kexec: Could not allocate control_code_buffer
[  138.477118][ T6270] netlink: 8 bytes leftover after parsing attributes in process `syz.0.75'.
[  142.296519][ T6307] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  143.193553][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  143.200342][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  144.246925][ T6325] random: crng reseeded on system resumption
[  144.252486][ T6325] FAULT_INJECTION: forcing a failure.
[  144.252486][ T6325] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  144.252580][ T6325] CPU: 0 UID: 0 PID: 6325 Comm: syz.3.85 Not tainted syzkaller #0 PREEMPT(full) 
[  144.252617][ T6325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  144.252636][ T6325] Call Trace:
[  144.252646][ T6325]  <TASK>
[  144.252658][ T6325]  dump_stack_lvl+0x16c/0x1f0
[  144.252702][ T6325]  should_fail_ex+0x512/0x640
[  144.252758][ T6325]  should_fail_alloc_page+0xe7/0x130
[  144.252806][ T6325]  prepare_alloc_pages+0x3c2/0x610
[  144.252849][ T6325]  ? __kernel_text_address+0xd/0x40
[  144.252891][ T6325]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  144.252926][ T6325]  ? do_raw_spin_lock+0x12c/0x2b0
[  144.252979][ T6325]  ? find_held_lock+0x2b/0x80
[  144.253015][ T6325]  ? mark_held_locks+0x49/0x80
[  144.253057][ T6325]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  144.253090][ T6325]  ? lockdep_hardirqs_on+0x7c/0x110
[  144.253126][ T6325]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  144.253159][ T6325]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  144.253201][ T6325]  ? kasan_save_stack+0x42/0x60
[  144.253236][ T6325]  ? kasan_save_stack+0x33/0x60
[  144.253277][ T6325]  ? misc_open+0x26d/0x450
[  144.253323][ T6325]  ? chrdev_open+0x234/0x6a0
[  144.253358][ T6325]  ? do_dentry_open+0x982/0x1530
[  144.253392][ T6325]  ? vfs_open+0x82/0x3f0
[  144.253433][ T6325]  ? path_openat+0x1de4/0x2cb0
[  144.253466][ T6325]  ? do_filp_open+0x20b/0x470
[  144.253496][ T6325]  ? do_sys_openat2+0x11b/0x1d0
[  144.253541][ T6325]  ? __x64_sys_openat+0x174/0x210
[  144.253587][ T6325]  ? do_syscall_64+0xcd/0xfa0
[  144.253618][ T6325]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.253651][ T6325]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  144.253706][ T6325]  ? policy_nodemask+0xea/0x4e0
[  144.253752][ T6325]  alloc_pages_mpol+0x1fb/0x550
[  144.253797][ T6325]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  144.253856][ T6325]  alloc_pages_noprof+0x131/0x390
[  144.253911][ T6325]  get_zeroed_page_noprof+0x18/0xb0
[  144.253953][ T6325]  get_image_page+0x18/0x190
[  144.253988][ T6325]  chain_alloc+0x8c/0xd0
[  144.254024][ T6325]  memory_bm_create+0x30f/0x810
[  144.254076][ T6325]  create_basic_memory_bitmaps+0x10b/0x320
[  144.254122][ T6325]  snapshot_open+0x235/0x2b0
[  144.254164][ T6325]  ? __pfx_snapshot_open+0x10/0x10
[  144.254207][ T6325]  misc_open+0x26d/0x450
[  144.254255][ T6325]  ? __pfx_misc_open+0x10/0x10
[  144.254302][ T6325]  chrdev_open+0x234/0x6a0
[  144.254343][ T6325]  ? __pfx_chrdev_open+0x10/0x10
[  144.254383][ T6325]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  144.254428][ T6325]  do_dentry_open+0x982/0x1530
[  144.254467][ T6325]  ? __pfx_chrdev_open+0x10/0x10
[  144.254516][ T6325]  vfs_open+0x82/0x3f0
[  144.254567][ T6325]  path_openat+0x1de4/0x2cb0
[  144.254618][ T6325]  ? __pfx_path_openat+0x10/0x10
[  144.254656][ T6325]  ? __lock_acquire+0xb8a/0x1c90
[  144.254704][ T6325]  do_filp_open+0x20b/0x470
[  144.254740][ T6325]  ? __pfx_do_filp_open+0x10/0x10
[  144.254807][ T6325]  ? alloc_fd+0x471/0x7d0
[  144.254853][ T6325]  do_sys_openat2+0x11b/0x1d0
[  144.254910][ T6325]  ? __pfx_do_sys_openat2+0x10/0x10
[  144.254974][ T6325]  __x64_sys_openat+0x174/0x210
[  144.255023][ T6325]  ? __pfx___x64_sys_openat+0x10/0x10
[  144.255092][ T6325]  do_syscall_64+0xcd/0xfa0
[  144.255133][ T6325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.255165][ T6325] RIP: 0033:0x7ff05c98efc9
[  144.255191][ T6325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.255222][ T6325] RSP: 002b:00007ff05d84a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  144.255253][ T6325] RAX: ffffffffffffffda RBX: 00007ff05cbe6180 RCX: 00007ff05c98efc9
[  144.255273][ T6325] RDX: 00000000001438bf RSI: 0000200000000000 RDI: ffffffffffffff9c
[  144.255294][ T6325] RBP: 00007ff05ca11f91 R08: 0000000000000000 R09: 0000000000000000
[  144.255314][ T6325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  144.255332][ T6325] R13: 00007ff05cbe6218 R14: 00007ff05cbe6180 R15: 00007ffdf2437748
[  144.255377][ T6325]  </TASK>
[  145.023411][ T6321] kexec: Could not allocate control_code_buffer
[  145.231943][ T5152] Bluetooth: hci1: SCO packet for unknown connection handle 0
[  145.307456][ T6322] tty tty36: ldisc open failed (-12), clearing slot 35
[  146.684123][ T6336] netlink: 20 bytes leftover after parsing attributes in process `syz.2.88'.
[  146.810987][ T6336] netlink: 20 bytes leftover after parsing attributes in process `syz.2.88'.
[  150.416900][ T6386] binder: BINDER_SET_CONTEXT_MGR already set
[  150.427895][ T6386] binder: 6385:6386 ioctl 4018620d 9 returned -16
[  151.706241][ T5152] Bluetooth: hci3: SCO packet for unknown connection handle 0
[  152.809465][ T6423] FAULT_INJECTION: forcing a failure.
[  152.809465][ T6423] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  152.875722][ T6423] CPU: 1 UID: 0 PID: 6423 Comm: syz.3.104 Not tainted syzkaller #0 PREEMPT(full) 
[  152.875763][ T6423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  152.875781][ T6423] Call Trace:
[  152.875790][ T6423]  <TASK>
[  152.875801][ T6423]  dump_stack_lvl+0x16c/0x1f0
[  152.875847][ T6423]  should_fail_ex+0x512/0x640
[  152.875897][ T6423]  should_fail_alloc_page+0xe7/0x130
[  152.875939][ T6423]  prepare_alloc_pages+0x3c2/0x610
[  152.875976][ T6423]  ? rcu_is_watching+0x12/0xc0
[  152.876009][ T6423]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  152.876048][ T6423]  ? __lock_acquire+0x622/0x1c90
[  152.876091][ T6423]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  152.876135][ T6423]  ? __lock_acquire+0x622/0x1c90
[  152.876178][ T6423]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  152.876227][ T6423]  ? policy_nodemask+0xea/0x4e0
[  152.876267][ T6423]  alloc_pages_mpol+0x1fb/0x550
[  152.876306][ T6423]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  152.876353][ T6423]  folio_alloc_mpol_noprof+0x36/0x2f0
[  152.876400][ T6423]  vma_alloc_folio_noprof+0xed/0x1e0
[  152.876444][ T6423]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  152.876499][ T6423]  do_pte_missing+0x2202/0x3ba0
[  152.876546][ T6423]  ? find_held_lock+0x2b/0x80
[  152.876585][ T6423]  __handle_mm_fault+0x1556/0x2aa0
[  152.876641][ T6423]  ? __pfx___handle_mm_fault+0x10/0x10
[  152.876686][ T6423]  ? __pte_offset_map_lock+0x174/0x310
[  152.876721][ T6423]  ? find_held_lock+0x2b/0x80
[  152.876759][ T6423]  ? follow_page_pte+0x5cf/0x1390
[  152.876805][ T6423]  handle_mm_fault+0x589/0xd10
[  152.876867][ T6423]  __get_user_pages+0x54e/0x3530
[  152.876921][ T6423]  ? __pfx___get_user_pages+0x10/0x10
[  152.876969][ T6423]  populate_vma_page_range+0x267/0x3f0
[  152.877012][ T6423]  ? __pfx_populate_vma_page_range+0x10/0x10
[  152.877051][ T6423]  ? __pfx_find_vma_intersection+0x10/0x10
[  152.877098][ T6423]  __mm_populate+0x1d8/0x380
[  152.877141][ T6423]  ? __pfx___mm_populate+0x10/0x10
[  152.877182][ T6423]  ? up_write+0x209/0x520
[  152.877227][ T6423]  vm_mmap_pgoff+0x37f/0x470
[  152.877267][ T6423]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  152.877312][ T6423]  ? __x64_sys_futex+0x1e0/0x4c0
[  152.877348][ T6423]  ? __x64_sys_futex+0x1e9/0x4c0
[  152.877390][ T6423]  ksys_mmap_pgoff+0x7d/0x5c0
[  152.877425][ T6423]  ? xfd_validate_state+0x61/0x180
[  152.877462][ T6423]  ? __pfx_do_writev+0x10/0x10
[  152.877493][ T6423]  __x64_sys_mmap+0x125/0x190
[  152.877537][ T6423]  do_syscall_64+0xcd/0xfa0
[  152.877571][ T6423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.877600][ T6423] RIP: 0033:0x7ff05c98efc9
[  152.877623][ T6423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.877650][ T6423] RSP: 002b:00007ff05d84a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  152.877676][ T6423] RAX: ffffffffffffffda RBX: 00007ff05cbe6180 RCX: 00007ff05c98efc9
[  152.877695][ T6423] RDX: 0000000000000007 RSI: 0000000000040009 RDI: 0000000000000000
[  152.877711][ T6423] RBP: 00007ff05ca11f91 R08: 0000000000000007 R09: 0000000000028000
[  152.877728][ T6423] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  152.877744][ T6423] R13: 00007ff05cbe6218 R14: 00007ff05cbe6180 R15: 00007ffdf2437748
[  152.877782][ T6423]  </TASK>

syzkaller
syzkaller login: [  155.132558][ T6436] random: crng reseeded on system resumption

syzkaller
syzkaller login: [  159.083455][ T6459] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  160.630335][ T6502] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  161.326798][ T6514] random: crng reseeded on system resumption
[  161.889694][ T6521] netlink: 4 bytes leftover after parsing attributes in process `syz.3.125'.
[  161.919526][ T6521] netlink: 354 bytes leftover after parsing attributes in process `syz.3.125'.
[  163.882839][ T6545] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed.
[  165.575740][ T6576] process 'syz.3.136' launched './file0' with NULL argv: empty string added
[  166.222476][ T6588] FAULT_INJECTION: forcing a failure.
[  166.222476][ T6588] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  166.261852][ T6588] CPU: 0 UID: 0 PID: 6588 Comm: syz.0.138 Not tainted syzkaller #0 PREEMPT(full) 
[  166.261898][ T6588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  166.261917][ T6588] Call Trace:
[  166.261929][ T6588]  <TASK>
[  166.261942][ T6588]  dump_stack_lvl+0x16c/0x1f0
[  166.261983][ T6588]  should_fail_ex+0x512/0x640
[  166.262039][ T6588]  should_fail_alloc_page+0xe7/0x130
[  166.262086][ T6588]  prepare_alloc_pages+0x3c2/0x610
[  166.262130][ T6588]  ? rcu_is_watching+0x12/0xc0
[  166.262169][ T6588]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  166.262216][ T6588]  ? __lock_acquire+0x622/0x1c90
[  166.262267][ T6588]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  166.262320][ T6588]  ? __lock_acquire+0x622/0x1c90
[  166.262370][ T6588]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  166.262427][ T6588]  ? policy_nodemask+0xea/0x4e0
[  166.262476][ T6588]  alloc_pages_mpol+0x1fb/0x550
[  166.262522][ T6588]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  166.262578][ T6588]  folio_alloc_mpol_noprof+0x36/0x2f0
[  166.262638][ T6588]  vma_alloc_folio_noprof+0xed/0x1e0
[  166.262688][ T6588]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  166.262752][ T6588]  do_pte_missing+0x2202/0x3ba0
[  166.262804][ T6588]  ? find_held_lock+0x2b/0x80
[  166.262850][ T6588]  __handle_mm_fault+0x1556/0x2aa0
[  166.262914][ T6588]  ? __pfx___handle_mm_fault+0x10/0x10
[  166.262969][ T6588]  ? __pte_offset_map_lock+0x174/0x310
[  166.263012][ T6588]  ? find_held_lock+0x2b/0x80
[  166.263059][ T6588]  ? follow_page_pte+0x5cf/0x1390
[  166.263111][ T6588]  handle_mm_fault+0x589/0xd10
[  166.263171][ T6588]  __get_user_pages+0x54e/0x3530
[  166.263235][ T6588]  ? __pfx___get_user_pages+0x10/0x10
[  166.263294][ T6588]  populate_vma_page_range+0x267/0x3f0
[  166.263345][ T6588]  ? __pfx_populate_vma_page_range+0x10/0x10
[  166.263394][ T6588]  ? __pfx_find_vma_intersection+0x10/0x10
[  166.263439][ T6588]  ? do_mmap+0x69c/0x1210
[  166.263486][ T6588]  __mm_populate+0x1d8/0x380
[  166.263536][ T6588]  ? __pfx___mm_populate+0x10/0x10
[  166.263587][ T6588]  ? up_write+0x1b2/0x520
[  166.263648][ T6588]  vm_mmap_pgoff+0x37f/0x470
[  166.263696][ T6588]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  166.263748][ T6588]  ? __x64_sys_futex+0x1e0/0x4c0
[  166.263792][ T6588]  ? __x64_sys_futex+0x1e9/0x4c0
[  166.263843][ T6588]  ksys_mmap_pgoff+0x7d/0x5c0
[  166.263884][ T6588]  ? xfd_validate_state+0x61/0x180
[  166.263930][ T6588]  ? __pfx_do_writev+0x10/0x10
[  166.263968][ T6588]  __x64_sys_mmap+0x125/0x190
[  166.264023][ T6588]  do_syscall_64+0xcd/0xfa0
[  166.264063][ T6588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.264096][ T6588] RIP: 0033:0x7ff68f18efc9
[  166.264122][ T6588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.264154][ T6588] RSP: 002b:00007ff690007038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  166.264185][ T6588] RAX: ffffffffffffffda RBX: 00007ff68f3e6090 RCX: 00007ff68f18efc9
[  166.264207][ T6588] RDX: 0000000000000007 RSI: 0000000000040009 RDI: 0000000000000000
[  166.264226][ T6588] RBP: 00007ff68f211f91 R08: 0000000000000007 R09: 0000000000028000
[  166.264246][ T6588] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  166.264265][ T6588] R13: 00007ff68f3e6128 R14: 00007ff68f3e6090 R15: 00007ffc2f346ae8
[  166.264310][ T6588]  </TASK>
[  167.209523][ T6598] device-mapper: ioctl: Invalid ioctl structure: name ��������, dev 4
[  169.226310][ T6605] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  169.233713][ T6605] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  169.256849][ T6605] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  169.280315][ T6605] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  169.288798][ T6605] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  169.301528][ T6605] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  169.314347][ T6605] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  169.330568][ T6605] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  169.344493][ T6605] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  169.373541][ T6605] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  169.380155][ T6605] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  169.405411][ T6605] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  169.658293][ T5152] Bluetooth: hci0: command 0x0c1a tx timeout
[  169.707097][ T6632] FAULT_INJECTION: forcing a failure.
[  169.707097][ T6632] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  169.783486][ T6632] CPU: 1 UID: 0 PID: 6632 Comm: syz.2.146 Not tainted syzkaller #0 PREEMPT(full) 
[  169.783532][ T6632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  169.783552][ T6632] Call Trace:
[  169.783563][ T6632]  <TASK>
[  169.783576][ T6632]  dump_stack_lvl+0x16c/0x1f0
[  169.783620][ T6632]  should_fail_ex+0x512/0x640
[  169.783677][ T6632]  should_fail_alloc_page+0xe7/0x130
[  169.783724][ T6632]  prepare_alloc_pages+0x3c2/0x610
[  169.783767][ T6632]  ? rcu_is_watching+0x12/0xc0
[  169.783806][ T6632]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  169.783852][ T6632]  ? __lock_acquire+0x622/0x1c90
[  169.783899][ T6632]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  169.783949][ T6632]  ? __lock_acquire+0x622/0x1c90
[  169.783997][ T6632]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  169.784053][ T6632]  ? policy_nodemask+0xea/0x4e0
[  169.784105][ T6632]  alloc_pages_mpol+0x1fb/0x550
[  169.784162][ T6632]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  169.784218][ T6632]  folio_alloc_mpol_noprof+0x36/0x2f0
[  169.784271][ T6632]  vma_alloc_folio_noprof+0xed/0x1e0
[  169.784325][ T6632]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  169.784391][ T6632]  do_pte_missing+0x2202/0x3ba0
[  169.784444][ T6632]  ? find_held_lock+0x2b/0x80
[  169.784490][ T6632]  __handle_mm_fault+0x1556/0x2aa0
[  169.784554][ T6632]  ? __pfx___handle_mm_fault+0x10/0x10
[  169.784609][ T6632]  ? __pte_offset_map_lock+0x174/0x310
[  169.784649][ T6632]  ? find_held_lock+0x2b/0x80
[  169.784695][ T6632]  ? follow_page_pte+0x5cf/0x1390
[  169.784747][ T6632]  handle_mm_fault+0x589/0xd10
[  169.784808][ T6632]  __get_user_pages+0x54e/0x3530
[  169.784870][ T6632]  ? __pfx___get_user_pages+0x10/0x10
[  169.784926][ T6632]  populate_vma_page_range+0x267/0x3f0
[  169.784978][ T6632]  ? __pfx_populate_vma_page_range+0x10/0x10
[  169.785025][ T6632]  ? __pfx_find_vma_intersection+0x10/0x10
[  169.785070][ T6632]  ? do_mmap+0x69c/0x1210
[  169.785115][ T6632]  __mm_populate+0x1d8/0x380
[  169.785172][ T6632]  ? __pfx___mm_populate+0x10/0x10
[  169.785221][ T6632]  ? up_write+0x1b2/0x520
[  169.785274][ T6632]  vm_mmap_pgoff+0x37f/0x470
[  169.785320][ T6632]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  169.785371][ T6632]  ? __x64_sys_futex+0x1e0/0x4c0
[  169.785415][ T6632]  ? __x64_sys_futex+0x1e9/0x4c0
[  169.785464][ T6632]  ksys_mmap_pgoff+0x7d/0x5c0
[  169.785501][ T6632]  ? xfd_validate_state+0x61/0x180
[  169.785544][ T6632]  ? __pfx_do_writev+0x10/0x10
[  169.785582][ T6632]  __x64_sys_mmap+0x125/0x190
[  169.785636][ T6632]  do_syscall_64+0xcd/0xfa0
[  169.785675][ T6632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.785708][ T6632] RIP: 0033:0x7fb756b8efc9
[  169.785734][ T6632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.785764][ T6632] RSP: 002b:00007fb757a09038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  169.785795][ T6632] RAX: ffffffffffffffda RBX: 00007fb756de6180 RCX: 00007fb756b8efc9
[  169.785816][ T6632] RDX: 0000000000000007 RSI: 0000000000040009 RDI: 0000000000000000
[  169.785834][ T6632] RBP: 00007fb756c11f91 R08: 0000000000000007 R09: 0000000000028000
[  169.785854][ T6632] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  169.785873][ T6632] R13: 00007fb756de6218 R14: 00007fb756de6180 R15: 00007ffd821f0f88
[  169.785917][ T6632]  </TASK>
[  171.337376][ T5152] Bluetooth: hci3: command 0x0c1a tx timeout
[  171.343479][ T5152] Bluetooth: hci1: command 0x0c1a tx timeout
[  171.415620][ T5152] Bluetooth: hci2: command 0x0c1a tx timeout
[  171.735726][ T5152] Bluetooth: hci0: command 0x0c1a tx timeout

syzkaller
syzkaller login: [  173.302948][ T6677] device-mapper: ioctl: Invalid ioctl structure: name ��������, dev 4
[  173.415670][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  173.421909][ T5152] Bluetooth: hci1: command 0x0c1a tx timeout
[  173.495818][ T5152] Bluetooth: hci2: command 0x0c1a tx timeout
[  173.815674][ T5152] Bluetooth: hci0: command 0x0c1a tx timeout
[  175.508513][ T5152] Bluetooth: hci1: command 0x0c1a tx timeout
[  175.516792][ T5152] Bluetooth: hci3: command 0x0c1a tx timeout
[  175.575787][ T5152] Bluetooth: hci2: command 0x0c1a tx timeout
[  177.037772][ T6715] syz.3.166 (6715) used greatest stack depth: 19720 bytes left
[  182.435233][ T6789] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  188.701722][ T6883] netlink: 220 bytes leftover after parsing attributes in process `syz.1.202'.
[  190.678690][ T6908] program syz.0.208 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  195.061752][ T6956] random: crng reseeded on system resumption
[  199.395372][ T7003] FAULT_INJECTION: forcing a failure.
[  199.395372][ T7003] name failslab, interval 1, probability 0, space 0, times 0
[  199.425720][ T7003] CPU: 1 UID: 0 PID: 7003 Comm: syz.2.225 Not tainted syzkaller #0 PREEMPT(full) 
[  199.425765][ T7003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  199.425784][ T7003] Call Trace:
[  199.425794][ T7003]  <TASK>
[  199.425807][ T7003]  dump_stack_lvl+0x16c/0x1f0
[  199.425849][ T7003]  should_fail_ex+0x512/0x640
[  199.425895][ T7003]  ? __kmalloc_node_noprof+0xcd/0x8a0
[  199.425938][ T7003]  should_failslab+0xc2/0x120
[  199.425982][ T7003]  __kmalloc_node_noprof+0xe0/0x8a0
[  199.426019][ T7003]  ? __get_vm_area_node+0x1dc/0x330
[  199.426063][ T7003]  ? __vmalloc_node_range_noprof+0x3e5/0x1480
[  199.426121][ T7003]  ? __vmalloc_node_range_noprof+0x3e5/0x1480
[  199.426168][ T7003]  __vmalloc_node_range_noprof+0x3e5/0x1480
[  199.426231][ T7003]  ? n_tty_open+0x1a/0x170
[  199.426286][ T7003]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  199.426339][ T7003]  ? find_held_lock+0x2b/0x80
[  199.426373][ T7003]  ? n_tty_open+0x12b/0x170
[  199.426417][ T7003]  ? n_tty_open+0x1a/0x170
[  199.426457][ T7003]  __vmalloc_node_noprof+0xad/0xf0
[  199.426502][ T7003]  ? n_tty_open+0x1a/0x170
[  199.426542][ T7003]  ? __pfx_n_tty_open+0x10/0x10
[  199.426594][ T7003]  n_tty_open+0x1a/0x170
[  199.426635][ T7003]  ? __pfx_n_tty_open+0x10/0x10
[  199.426675][ T7003]  tty_ldisc_open+0x9f/0x120
[  199.426728][ T7003]  tty_ldisc_setup+0x87/0x100
[  199.426760][ T7003]  tty_init_dev.part.0+0x1ec/0x500
[  199.426803][ T7003]  tty_init_dev+0x60/0x80
[  199.426841][ T7003]  ? __pfx_ptmx_open+0x10/0x10
[  199.426885][ T7003]  ptmx_open+0x10d/0x360
[  199.426931][ T7003]  ? __pfx_ptmx_open+0x10/0x10
[  199.426977][ T7003]  chrdev_open+0x234/0x6a0
[  199.427014][ T7003]  ? __pfx_apparmor_file_open+0x10/0x10
[  199.427059][ T7003]  ? __pfx_chrdev_open+0x10/0x10
[  199.427101][ T7003]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  199.427146][ T7003]  do_dentry_open+0x982/0x1530
[  199.427185][ T7003]  ? __pfx_chrdev_open+0x10/0x10
[  199.427233][ T7003]  vfs_open+0x82/0x3f0
[  199.427286][ T7003]  path_openat+0x1de4/0x2cb0
[  199.427337][ T7003]  ? __pfx_path_openat+0x10/0x10
[  199.427376][ T7003]  ? __lock_acquire+0xb8a/0x1c90
[  199.427428][ T7003]  do_filp_open+0x20b/0x470
[  199.427465][ T7003]  ? __pfx_do_filp_open+0x10/0x10
[  199.427534][ T7003]  ? alloc_fd+0x471/0x7d0
[  199.427586][ T7003]  do_sys_openat2+0x11b/0x1d0
[  199.427636][ T7003]  ? __pfx_do_sys_openat2+0x10/0x10
[  199.427702][ T7003]  __x64_sys_openat+0x174/0x210
[  199.427750][ T7003]  ? __pfx___x64_sys_openat+0x10/0x10
[  199.427817][ T7003]  do_syscall_64+0xcd/0xfa0
[  199.427856][ T7003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.427888][ T7003] RIP: 0033:0x7fb756b8efc9
[  199.427913][ T7003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.427943][ T7003] RSP: 002b:00007fb757a4b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  199.427983][ T7003] RAX: ffffffffffffffda RBX: 00007fb756de5fa0 RCX: 00007fb756b8efc9
[  199.428004][ T7003] RDX: 0000000000040001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  199.428024][ T7003] RBP: 00007fb756c11f91 R08: 0000000000000000 R09: 0000000000000000
[  199.428044][ T7003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  199.428063][ T7003] R13: 00007fb756de6038 R14: 00007fb756de5fa0 R15: 00007ffd821f0f88
[  199.428109][ T7003]  </TASK>
[  199.428318][ T7003] syz.2.225: vmalloc error: size 12288, failed to allocated page array size 24, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null)
[  199.752267][ T7007] netlink: 8 bytes leftover after parsing attributes in process `syz.2.225'.
[  199.982467][ T7003] ,cpuset=/,mems_allowed=0-1
[  199.995110][ T7003] CPU: 0 UID: 0 PID: 7003 Comm: syz.2.225 Not tainted syzkaller #0 PREEMPT(full) 
[  199.995143][ T7003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  199.995157][ T7003] Call Trace:
[  199.995166][ T7003]  <TASK>
[  199.995176][ T7003]  dump_stack_lvl+0x16c/0x1f0
[  199.995208][ T7003]  warn_alloc+0x248/0x3a0
[  199.995232][ T7003]  ? __pfx_warn_alloc+0x10/0x10
[  199.995253][ T7003]  ? lockdep_hardirqs_on+0x7c/0x110
[  199.995282][ T7003]  ? should_fail_ex+0x354/0x640
[  199.995323][ T7003]  ? rcu_is_watching+0x12/0xc0
[  199.995349][ T7003]  ? trace_kmalloc+0x2b/0xd0
[  199.995378][ T7003]  ? __kmalloc_node_noprof+0x364/0x8a0
[  199.995406][ T7003]  ? __get_vm_area_node+0x1dc/0x330
[  199.995496][ T7003]  ? __vmalloc_node_range_noprof+0x3e5/0x1480
[  199.995553][ T7003]  __vmalloc_node_range_noprof+0xfe2/0x1480
[  199.995605][ T7003]  ? n_tty_open+0x1a/0x170
[  199.995651][ T7003]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  199.995693][ T7003]  ? find_held_lock+0x2b/0x80
[  199.995720][ T7003]  ? n_tty_open+0x12b/0x170
[  199.995752][ T7003]  ? n_tty_open+0x1a/0x170
[  199.995781][ T7003]  __vmalloc_node_noprof+0xad/0xf0
[  199.995816][ T7003]  ? n_tty_open+0x1a/0x170
[  199.995846][ T7003]  ? __pfx_n_tty_open+0x10/0x10
[  199.995879][ T7003]  n_tty_open+0x1a/0x170
[  199.995909][ T7003]  ? __pfx_n_tty_open+0x10/0x10
[  199.995939][ T7003]  tty_ldisc_open+0x9f/0x120
[  199.995979][ T7003]  tty_ldisc_setup+0x87/0x100
[  199.996003][ T7003]  tty_init_dev.part.0+0x1ec/0x500
[  199.996035][ T7003]  tty_init_dev+0x60/0x80
[  199.996063][ T7003]  ? __pfx_ptmx_open+0x10/0x10
[  199.996098][ T7003]  ptmx_open+0x10d/0x360
[  199.996135][ T7003]  ? __pfx_ptmx_open+0x10/0x10
[  199.996172][ T7003]  chrdev_open+0x234/0x6a0
[  199.996201][ T7003]  ? __pfx_apparmor_file_open+0x10/0x10
[  199.996237][ T7003]  ? __pfx_chrdev_open+0x10/0x10
[  199.996268][ T7003]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  199.996301][ T7003]  do_dentry_open+0x982/0x1530
[  199.996330][ T7003]  ? __pfx_chrdev_open+0x10/0x10
[  199.996365][ T7003]  vfs_open+0x82/0x3f0
[  199.996404][ T7003]  path_openat+0x1de4/0x2cb0
[  199.996445][ T7003]  ? __pfx_path_openat+0x10/0x10
[  199.996474][ T7003]  ? __lock_acquire+0xb8a/0x1c90
[  199.996510][ T7003]  do_filp_open+0x20b/0x470
[  199.996537][ T7003]  ? __pfx_do_filp_open+0x10/0x10
[  199.996586][ T7003]  ? alloc_fd+0x471/0x7d0
[  199.996618][ T7003]  do_sys_openat2+0x11b/0x1d0
[  199.996653][ T7003]  ? __pfx_do_sys_openat2+0x10/0x10
[  199.996702][ T7003]  __x64_sys_openat+0x174/0x210
[  199.996739][ T7003]  ? __pfx___x64_sys_openat+0x10/0x10
[  199.996788][ T7003]  do_syscall_64+0xcd/0xfa0
[  199.996818][ T7003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.996842][ T7003] RIP: 0033:0x7fb756b8efc9
[  199.996874][ T7003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.996895][ T7003] RSP: 002b:00007fb757a4b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  199.996917][ T7003] RAX: ffffffffffffffda RBX: 00007fb756de5fa0 RCX: 00007fb756b8efc9
[  199.996932][ T7003] RDX: 0000000000040001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  199.996947][ T7003] RBP: 00007fb756c11f91 R08: 0000000000000000 R09: 0000000000000000
[  199.996960][ T7003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  199.996974][ T7003] R13: 00007fb756de6038 R14: 00007fb756de5fa0 R15: 00007ffd821f0f88
[  199.997004][ T7003]  </TASK>
[  200.335721][ T7003] Mem-Info:
[  200.338910][ T7003] active_anon:4693 inactive_anon:8665 isolated_anon:0
[  200.338910][ T7003]  active_file:20098 inactive_file:38004 isolated_file:0
[  200.338910][ T7003]  unevictable:768 dirty:909 writeback:0
[  200.338910][ T7003]  slab_reclaimable:10510 slab_unreclaimable:91674
[  200.338910][ T7003]  mapped:25195 shmem:9261 pagetables:1069
[  200.338910][ T7003]  sec_pagetables:0 bounce:0
[  200.338910][ T7003]  kernel_misc_reclaimable:0
[  200.338910][ T7003]  free:1311502 free_pcp:27354 free_cma:0
[  200.535239][ T7003] Node 0 active_anon:18772kB inactive_anon:39060kB active_file:80388kB inactive_file:151884kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:100780kB dirty:3636kB writeback:0kB shmem:33308kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11464kB pagetables:4120kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  200.725836][ T7003] Node 1 active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:156kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  201.024315][ T7003] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  201.135665][ T7003] lowmem_reserve[]: 0 2485 2487 2487 2487
[  201.141741][ T7003] Node 0 DMA32 free:1361332kB boost:0kB min:34364kB low:42952kB high:51540kB reserved_highatomic:0KB free_highatomic:0KB active_anon:18772kB inactive_anon:10432kB active_file:80388kB inactive_file:151884kB unevictable:1536kB writepending:3636kB zspages:0kB present:3129332kB managed:2545104kB mlocked:0kB bounce:0kB free_pcp:87428kB local_pcp:55416kB free_cma:0kB
[  201.297764][ T7003] lowmem_reserve[]: 0 0 1 1 1
[  201.304795][ T7003] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  201.356304][ T7003] lowmem_reserve[]: 0 0 0 0 0
[  201.361117][ T7003] Node 1 Normal free:3890412kB boost:0kB min:55512kB low:69388kB high:83264kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:132kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:24384kB local_pcp:14096kB free_cma:0kB
[  201.438228][ T7003] lowmem_reserve[]: 0 0 0 0 0
[  201.443060][ T7003] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  201.488233][ T7003] Node 0 DMA32: 570*4kB (UM) 583*8kB (UME) 748*16kB (UME) 1419*32kB (UME) 545*64kB (UME) 201*128kB (UME) 138*256kB (UME) 79*512kB (UM) 42*1024kB (UME) 9*2048kB (UME) 269*4096kB (M) = 1363968kB
[  201.521117][ T7003] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  201.559807][ T7003] Node 1 Normal: 129*4kB (UM) 39*8kB (UME) 17*16kB (UM) 53*32kB (UME) 20*64kB (UME) 10*128kB (UME) 4*256kB (UME) 2*512kB (UE) 2*1024kB (UE) 1*2048kB (E) 947*4096kB (M) = 3890412kB
[  201.583981][ T7003] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  201.603895][ T7003] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  201.647720][ T7003] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  201.665834][ T7003] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  201.685936][ T7003] 59479 total pagecache pages
[  201.712907][ T7003] 0 pages in swap cache
[  201.717967][ T7003] Free swap  = 124996kB
[  201.723796][ T7003] Total swap = 124996kB
[  201.744225][ T7003] 2097051 pages RAM
[  201.748606][ T7003] 0 pages HighMem/MovableOnly
[  201.754403][ T7003] 428685 pages reserved
[  201.758883][ T7003] 0 pages cma reserved
[  201.764771][ T7003] ptm ptm0: ldisc open failed (-12), clearing slot 0
[  204.621192][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  204.627709][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  205.668670][ T7074] netlink: 334 bytes leftover after parsing attributes in process `syz.2.239'.
[  206.876471][ T7097] random: crng reseeded on system resumption
[  209.931052][ T7126] random: crng reseeded on system resumption
[  212.591081][ T7161] random: crng reseeded on system resumption
[  217.131020][ T7216] FAULT_INJECTION: forcing a failure.
[  217.131020][ T7216] name failslab, interval 1, probability 0, space 0, times 0
[  217.187248][ T7216] CPU: 0 UID: 0 PID: 7216 Comm: syz.2.269 Not tainted syzkaller #0 PREEMPT(full) 
[  217.187284][ T7216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  217.187298][ T7216] Call Trace:
[  217.187306][ T7216]  <TASK>
[  217.187314][ T7216]  dump_stack_lvl+0x16c/0x1f0
[  217.187346][ T7216]  should_fail_ex+0x512/0x640
[  217.187382][ T7216]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  217.187410][ T7216]  should_failslab+0xc2/0x120
[  217.187443][ T7216]  kmem_cache_alloc_noprof+0x75/0x6e0
[  217.187467][ T7216]  ? __kernfs_new_node+0xd2/0x8e0
[  217.187504][ T7216]  ? __kernfs_new_node+0xd2/0x8e0
[  217.187535][ T7216]  __kernfs_new_node+0xd2/0x8e0
[  217.187569][ T7216]  ? __pfx___kernfs_new_node+0x10/0x10
[  217.187608][ T7216]  ? find_held_lock+0x2b/0x80
[  217.187633][ T7216]  ? kernfs_root+0xee/0x2a0
[  217.187670][ T7216]  kernfs_new_node+0x13c/0x1e0
[  217.187710][ T7216]  kernfs_create_link+0xcc/0x240
[  217.187738][ T7216]  sysfs_do_create_link_sd+0x90/0x140
[  217.187777][ T7216]  sysfs_create_link+0x61/0xc0
[  217.187807][ T7216]  device_add+0x591/0x1aa0
[  217.187849][ T7216]  ? __pfx_device_add+0x10/0x10
[  217.187886][ T7216]  ? lockdep_init_map_type+0x5c/0x280
[  217.187921][ T7216]  ? __init_waitqueue_head+0xca/0x150
[  217.187968][ T7216]  rfkill_register+0x1ad/0xb40
[  217.188009][ T7216]  nfc_register_device+0x11f/0x3c0
[  217.188040][ T7216]  nci_register_device+0x7f1/0xb80
[  217.188079][ T7216]  ? __pfx_nci_register_device+0x10/0x10
[  217.188130][ T7216]  ? lockdep_init_map_type+0x5c/0x280
[  217.188170][ T7216]  virtual_ncidev_open+0x141/0x220
[  217.188197][ T7216]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  217.188223][ T7216]  misc_open+0x26d/0x450
[  217.188260][ T7216]  ? __pfx_misc_open+0x10/0x10
[  217.188296][ T7216]  chrdev_open+0x234/0x6a0
[  217.188325][ T7216]  ? __pfx_apparmor_file_open+0x10/0x10
[  217.188361][ T7216]  ? __pfx_chrdev_open+0x10/0x10
[  217.188392][ T7216]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  217.188425][ T7216]  do_dentry_open+0x982/0x1530
[  217.188453][ T7216]  ? __pfx_chrdev_open+0x10/0x10
[  217.188489][ T7216]  vfs_open+0x82/0x3f0
[  217.188528][ T7216]  path_openat+0x1de4/0x2cb0
[  217.188567][ T7216]  ? __pfx_path_openat+0x10/0x10
[  217.188595][ T7216]  ? __lock_acquire+0xb8a/0x1c90
[  217.188631][ T7216]  do_filp_open+0x20b/0x470
[  217.188658][ T7216]  ? __pfx_do_filp_open+0x10/0x10
[  217.188706][ T7216]  ? alloc_fd+0x471/0x7d0
[  217.188738][ T7216]  do_sys_openat2+0x11b/0x1d0
[  217.188779][ T7216]  ? __pfx_do_sys_openat2+0x10/0x10
[  217.188827][ T7216]  __x64_sys_openat+0x174/0x210
[  217.188864][ T7216]  ? __pfx___x64_sys_openat+0x10/0x10
[  217.188914][ T7216]  do_syscall_64+0xcd/0xfa0
[  217.188943][ T7216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.188968][ T7216] RIP: 0033:0x7fb756b8efc9
[  217.188986][ T7216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.189009][ T7216] RSP: 002b:00007fb757a4b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  217.189031][ T7216] RAX: ffffffffffffffda RBX: 00007fb756de5fa0 RCX: 00007fb756b8efc9
[  217.189047][ T7216] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  217.189062][ T7216] RBP: 00007fb756c11f91 R08: 0000000000000000 R09: 0000000000000000
[  217.189076][ T7216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  217.189090][ T7216] R13: 00007fb756de6038 R14: 00007fb756de5fa0 R15: 00007ffd821f0f88
[  217.189123][ T7216]  </TASK>
[  221.183066][ T7262] random: crng reseeded on system resumption
[  224.172786][ T7296] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  224.181012][ T7296] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  224.346923][ T7295] futex_wake_op: syz.1.281 tries to shift op by -2048; fix this program
[  225.014242][ T7306] random: crng reseeded on system resumption
[  226.170927][ T7319] netlink: 28 bytes leftover after parsing attributes in process `syz.3.290'.
[  226.235846][ T7319] bridge_slave_1: left allmulticast mode
[  226.241664][ T7319] bridge_slave_1: left promiscuous mode
[  226.249665][ T7319] bridge0: port 2(bridge_slave_1) entered disabled state
[  226.283733][ T7319] bridge_slave_0: left allmulticast mode
[  226.292897][ T7319] bridge_slave_0: left promiscuous mode
[  226.397254][ T7319] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.053183][ T7339] syz.3.293 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  227.446551][ T7339] HfR: entered promiscuous mode
[  227.749642][ T7336] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  227.773958][ T7336] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  227.811074][ T7336] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  227.824910][ T7336] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  228.810848][ T7351] netlink: 5 bytes leftover after parsing attributes in process `syz.3.294'.
[  229.575632][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout
[  229.815615][ T5152] Bluetooth: hci1: command 0x0c1a tx timeout
[  229.905662][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  229.911774][ T5152] Bluetooth: hci2: command 0x0c1a tx timeout
[  232.961116][ T7388] random: crng reseeded on system resumption
[  236.744049][ T7432] HfR: entered promiscuous mode
[  237.419185][ T7431] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  237.426546][ T7431] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  237.432853][ T7431] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  237.439655][ T7431] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  237.596285][ T7445] random: crng reseeded on system resumption
[  239.015605][ T5152] Bluetooth: hci0: command 0x0c1a tx timeout
[  239.495663][ T5152] Bluetooth: hci2: command 0x0c1a tx timeout
[  239.502453][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  239.502467][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  242.893400][ T7510] netlink: 28 bytes leftover after parsing attributes in process `syz.1.330'.
[  244.250185][ T7532] random: crng reseeded on system resumption
[  245.709739][ T7556] random: crng reseeded on system resumption
[  246.495684][   T37] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:3: bg 1: bad block bitmap checksum
[  246.545253][   T37] EXT4-fs (sda1): Delayed block allocation failed for inode 2034 at logical offset 1382 with max blocks 9 with error 74
[  246.580443][   T37] EXT4-fs (sda1): This should not happen!! Data will be lost
[  246.580443][   T37] 
[  246.928359][ T7565] binder: 7562:7565 ioctl c018620c 0 returned -1
[  246.947114][ T7573] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  248.925238][ T7600] netlink: 28 bytes leftover after parsing attributes in process `syz.3.350'.
[  249.022256][ T7602] random: crng reseeded on system resumption
[  249.886269][ T7604] delete_channel: no stack
[  250.599064][ T7625] netlink: 28 bytes leftover after parsing attributes in process `syz.3.355'.
[  252.838558][ T7654] random: crng reseeded on system resumption
[  253.806061][ T7669] netlink: 28 bytes leftover after parsing attributes in process `syz.0.364'.
[  255.324087][ T7694] random: crng reseeded on system resumption
[  257.207758][ T7705] Console: switching to colour VGA+ 80x25
[  257.500313][ T7705] Console: switching to colour frame buffer device 128x48
[  259.160205][ T7734] random: crng reseeded on system resumption
[  260.840717][ T7756] HfR: entered promiscuous mode
[  262.267487][ T7782] netlink: 28 bytes leftover after parsing attributes in process `syz.2.387'.
[  265.381274][ T7811] random: crng reseeded on system resumption
[  266.076827][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  266.083239][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  269.724469][ T5847] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  270.289277][ T7857] FAULT_INJECTION: forcing a failure.
[  270.289277][ T7857] name failslab, interval 1, probability 0, space 0, times 0
[  270.400526][ T7857] CPU: 1 UID: 0 PID: 7857 Comm: syz.2.404 Not tainted syzkaller #0 PREEMPT(full) 
[  270.400570][ T7857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  270.400588][ T7857] Call Trace:
[  270.400600][ T7857]  <TASK>
[  270.400616][ T7857]  dump_stack_lvl+0x16c/0x1f0
[  270.400660][ T7857]  should_fail_ex+0x512/0x640
[  270.400710][ T7857]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[  270.400759][ T7857]  should_failslab+0xc2/0x120
[  270.400804][ T7857]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[  270.400846][ T7857]  ? register_ip_vs_app+0x17a/0x370
[  270.400908][ T7857]  ? kmemdup_noprof+0x29/0x60
[  270.400943][ T7857]  kmemdup_noprof+0x29/0x60
[  270.400976][ T7857]  register_ip_vs_app+0x17a/0x370
[  270.401037][ T7857]  __ip_vs_ftp_init+0x60/0x220
[  270.401073][ T7857]  ? __ip_vs_lblcr_init+0x189/0x330
[  270.401126][ T7857]  ? __pfx___ip_vs_ftp_init+0x10/0x10
[  270.401161][ T7857]  ops_init+0x1e2/0x5f0
[  270.401198][ T7857]  setup_net+0x100/0x390
[  270.401232][ T7857]  ? __pfx_setup_net+0x10/0x10
[  270.401267][ T7857]  ? debug_mutex_init+0x37/0x70
[  270.401306][ T7857]  copy_net_ns+0x2f8/0x690
[  270.401349][ T7857]  create_new_namespaces+0x3ea/0xa90
[  270.401408][ T7857]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  270.401452][ T7857]  ksys_unshare+0x45b/0xa40
[  270.401496][ T7857]  ? __pfx_ksys_unshare+0x10/0x10
[  270.401543][ T7857]  ? xfd_validate_state+0x61/0x180
[  270.401604][ T7857]  __x64_sys_unshare+0x31/0x40
[  270.401647][ T7857]  do_syscall_64+0xcd/0xfa0
[  270.401687][ T7857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.401720][ T7857] RIP: 0033:0x7fb756b8efc9
[  270.401745][ T7857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  270.401776][ T7857] RSP: 002b:00007fb757a4b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  270.401807][ T7857] RAX: ffffffffffffffda RBX: 00007fb756de5fa0 RCX: 00007fb756b8efc9
[  270.401828][ T7857] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  270.401847][ T7857] RBP: 00007fb756c11f91 R08: 0000000000000000 R09: 0000000000000000
[  270.401866][ T7857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  270.401885][ T7857] R13: 00007fb756de6038 R14: 00007fb756de5fa0 R15: 00007ffd821f0f88
[  270.401930][ T7857]  </TASK>
[  271.069633][ T7867] random: crng reseeded on system resumption
[  273.615113][ T7899] [U]  
[  273.618247][ T7899] [U] 
[  273.621019][ T7899] [U] 
[  273.623775][ T7899] [U] 
[  273.696918][ T7899] [U] 
[  273.699700][ T7899] [U] 
[  273.702415][ T7899] [U] 
[  273.705123][ T7899] [U] 
[  273.780270][ T7899] [U] 
[  273.783070][ T7899] [U] 
[  273.785826][ T7899] [U] 
[  273.788580][ T7899] [U] 
[  273.813671][ T7903] random: crng reseeded on system resumption
[  273.916742][ T7899] [U] 
[  273.919466][ T7899] [U] �����yJ2��v蟖���U��r5�~���׆f��C|[�]�*�)���ܶC�b(�������	��O-�J><��ח�}��Z��I>
u?��w���g���D:\���8�cE���:�:(yx��S�27��,��C�
[  273.934763][ T7899] [U] 8���On�"K&>���l�Z*��0
[  273.939713][ T7899] [U] ��v_�s�8
[  273.943264][ T7899] [U] (*��H�>ﶬ;����U3
[  273.947795][ T7899] [U] �2Y�d�f�Mխ_�J=����a橂�x�	����rVR80�5[����)������V�M����rI=&Xx����aED�.����_�\h��A���j�ZѶDf7~���q8�T(�[j�A�8� �?���	��|�lf�V;��K��[�w:���9	��
[  273.964222][ T7899] [U] �t%]#���.ʔi�/���I��{&�������D
��
[  273.970404][ T7899] [U] �b��
H��;�s����dv{��ϊ(�hk�M;��ׄu��`NOK�P��]���Gdot8��^|�3Z�:<����<�L9d��٤���b�ލؔ�1���h���;��QO8�@uښ�KD�pw����h��,n�㱯�A��;�݈T��F����e�U.�|�6�@�h�
[  273.988057][ T7899] [U] �aq0{ vP�P�<M�t�ɧ�ް��j-�òI�f%	��55b�,f�g��KI�.��&�~)���3��B�=���?�����Z��|�_�k�E˅{X�74�H4�-��]�w����j��$�/!O]�+��"ǗY�7�����X
[  274.004075][ T7899] [U] �`9������kݔt� �o����S{b&�	�."?�n��S����z�O����=~�O'�>���Z
[  274.012252][ T7899] [U] �o)
[  274.015203][ T7899] [U] ъGþ�
[  274.018413][ T7899] [U] �ZyR=��q$H._3R���Y�����������>O���Pa1<�v��ӧ$�Mc�%UP�n�Mo�o'��O)�8�#y�[�,X~�%�޹�)/6������Bb#	:;�:F���\	̫!V��)��aẋRU
[  274.087396][ T7899] [U] �k��x�[s�|�υ׽CG�Ub�����>[�{#���Ý�	c�m�
[  274.094360][ T7899] [U] 
[  274.097120][ T7899] [U] 
[  274.099880][ T7899] [U] 
[  274.103277][ T7899] [U] 
[  274.106043][ T7899] [U] 
[  274.108793][ T7899] [U] 
[  274.111541][ T7899] [U] 
[  274.115163][ T7899] [U] 
[  274.117943][ T7899] [U] 
[  274.120704][ T7899] [U] 
[  274.123457][ T7899] [U] 
[  274.126638][ T7899] [U] 
[  274.129393][ T7899] [U] 
[  274.132132][ T7899] [U] 
[  274.134879][ T7899] [U] 
[  274.138001][ T7899] [U] 
[  274.140762][ T7899] [U] 
[  274.143510][ T7899] [U] 
[  274.146260][ T7899] [U] 
[  274.149215][ T7899] [U] 
[  274.151960][ T7899] [U] 
[  274.154680][ T7899] [U] 
[  274.157387][ T7899] [U] 
[  274.357360][ T7899] [U] 
[  275.678625][ T7921] random: crng reseeded on system resumption
[  276.939110][ T7941] netlink: 28 bytes leftover after parsing attributes in process `syz.2.422'.
[  278.759869][ T7958] random: crng reseeded on system resumption
[  282.726534][ T8009] random: crng reseeded on system resumption
[  282.764473][ T8009] FAULT_INJECTION: forcing a failure.
[  282.764473][ T8009] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  282.778177][ T8009] CPU: 1 UID: 0 PID: 8009 Comm: syz.2.437 Not tainted syzkaller #0 PREEMPT(full) 
[  282.778229][ T8009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  282.778248][ T8009] Call Trace:
[  282.778259][ T8009]  <TASK>
[  282.778271][ T8009]  dump_stack_lvl+0x16c/0x1f0
[  282.778311][ T8009]  should_fail_ex+0x512/0x640
[  282.778365][ T8009]  should_fail_alloc_page+0xe7/0x130
[  282.778412][ T8009]  prepare_alloc_pages+0x3c2/0x610
[  282.778456][ T8009]  ? rcu_is_watching+0x12/0xc0
[  282.778496][ T8009]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  282.778532][ T8009]  ? rcu_is_watching+0x12/0xc0
[  282.778567][ T8009]  ? trace_sched_exit_tp+0xd1/0x120
[  282.778618][ T8009]  ? __schedule+0x11a3/0x5de0
[  282.778648][ T8009]  ? __schedule+0x11a3/0x5de0
[  282.778693][ T8009]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  282.778736][ T8009]  ? __pfx___schedule+0x10/0x10
[  282.778785][ T8009]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  282.778843][ T8009]  ? policy_nodemask+0xea/0x4e0
[  282.778890][ T8009]  alloc_pages_mpol+0x1fb/0x550
[  282.778938][ T8009]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  282.778986][ T8009]  ? alloc_pages_noprof+0x40/0x390
[  282.779037][ T8009]  alloc_pages_noprof+0x131/0x390
[  282.779085][ T8009]  relay_open_buf.part.0+0x262/0xc40
[  282.779147][ T8009]  relay_open+0x653/0xad0
[  282.779207][ T8009]  ? debugfs_create_file_full+0x41/0x60
[  282.779245][ T8009]  do_blk_trace_setup+0x4c5/0xb00
[  282.779302][ T8009]  blk_trace_setup+0xed/0x1b0
[  282.779348][ T8009]  ? __pfx_blk_trace_setup+0x10/0x10
[  282.779396][ T8009]  ? __pfx_snprintf+0x10/0x10
[  282.779440][ T8009]  ? do_vfs_ioctl+0x128/0x14f0
[  282.779497][ T8009]  blk_trace_ioctl+0x146/0x280
[  282.779551][ T8009]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  282.779604][ T8009]  ? find_held_lock+0x2b/0x80
[  282.779638][ T8009]  ? hook_file_ioctl_common+0x145/0x410
[  282.779675][ T8009]  blkdev_ioctl+0x108/0x6d0
[  282.779709][ T8009]  ? __pfx_blkdev_ioctl+0x10/0x10
[  282.779750][ T8009]  ? __pfx_blkdev_ioctl+0x10/0x10
[  282.779786][ T8009]  __x64_sys_ioctl+0x18e/0x210
[  282.779839][ T8009]  do_syscall_64+0xcd/0xfa0
[  282.779879][ T8009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.779912][ T8009] RIP: 0033:0x7fb756b8efc9
[  282.779937][ T8009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.779969][ T8009] RSP: 002b:00007fb757a09038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  282.780001][ T8009] RAX: ffffffffffffffda RBX: 00007fb756de6180 RCX: 00007fb756b8efc9
[  282.780023][ T8009] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 000000000000000a
[  282.780044][ T8009] RBP: 00007fb756c11f91 R08: 0000000000000000 R09: 0000000000000000
[  282.780063][ T8009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  282.780082][ T8009] R13: 00007fb756de6218 R14: 00007fb756de6180 R15: 00007ffd821f0f88
[  282.780142][ T8009]  </TASK>
[  282.785841][ T5152] Bluetooth: hci2: unexpected event 0x3d length: 726 > 14
[  283.617936][ T8015] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  285.967101][ T8045] bond0: invalid ARP target specified
[  286.388626][ T8037] FAULT_INJECTION: forcing a failure.
[  286.388626][ T8037] name failslab, interval 1, probability 0, space 0, times 0
[  286.585700][ T8037] CPU: 1 UID: 0 PID: 8037 Comm: syz.1.441 Not tainted syzkaller #0 PREEMPT(full) 
[  286.585731][ T8037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  286.585747][ T8037] Call Trace:
[  286.585756][ T8037]  <TASK>
[  286.585768][ T8037]  dump_stack_lvl+0x16c/0x1f0
[  286.585809][ T8037]  should_fail_ex+0x512/0x640
[  286.585856][ T8037]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  286.585891][ T8037]  should_failslab+0xc2/0x120
[  286.585933][ T8037]  kmem_cache_alloc_noprof+0x75/0x6e0
[  286.585962][ T8037]  ? __proc_create+0x2ce/0x8e0
[  286.586015][ T8037]  ? __proc_create+0x2ce/0x8e0
[  286.586060][ T8037]  __proc_create+0x2ce/0x8e0
[  286.586109][ T8037]  ? __pfx___proc_create+0x10/0x10
[  286.586173][ T8037]  ? __lock_acquire+0x622/0x1c90
[  286.586232][ T8037]  proc_create_reg+0x7d/0x180
[  286.586317][ T8037]  proc_create_net_data+0x8e/0x1c0
[  286.586368][ T8037]  ? __pfx_proc_create_net_data+0x10/0x10
[  286.586421][ T8037]  ? lockdep_init_map_type+0x5c/0x280
[  286.586476][ T8037]  nfnl_log_net_init+0xe1/0x1c0
[  286.586521][ T8037]  ? __pfx_nfnl_log_net_init+0x10/0x10
[  286.586551][ T8037]  ops_init+0x1e2/0x5f0
[  286.586590][ T8037]  setup_net+0x100/0x390
[  286.586625][ T8037]  ? __pfx_setup_net+0x10/0x10
[  286.586661][ T8037]  ? debug_mutex_init+0x37/0x70
[  286.586701][ T8037]  copy_net_ns+0x2f8/0x690
[  286.586742][ T8037]  create_new_namespaces+0x3ea/0xa90
[  286.586791][ T8037]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  286.586832][ T8037]  ksys_unshare+0x45b/0xa40
[  286.586874][ T8037]  ? __pfx_ksys_unshare+0x10/0x10
[  286.586919][ T8037]  ? xfd_validate_state+0x61/0x180
[  286.586978][ T8037]  __x64_sys_unshare+0x31/0x40
[  286.587022][ T8037]  do_syscall_64+0xcd/0xfa0
[  286.587062][ T8037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.587094][ T8037] RIP: 0033:0x7f436758efc9
[  286.587121][ T8037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  286.587151][ T8037] RSP: 002b:00007f4368411038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  286.587184][ T8037] RAX: ffffffffffffffda RBX: 00007f43677e5fa0 RCX: 00007f436758efc9
[  286.587206][ T8037] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  286.587226][ T8037] RBP: 00007f4367611f91 R08: 0000000000000000 R09: 0000000000000000
[  286.587246][ T8037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  286.587265][ T8037] R13: 00007f43677e6038 R14: 00007f43677e5fa0 R15: 00007ffecfb24528
[  286.587315][ T8037]  </TASK>
[  287.763544][ T5152] Bluetooth: hci0: unexpected event 0x02 length: 726 > 260
[  288.767304][ T8090] netlink: zone id is out of range
[  289.242391][ T8085] netlink: set zone limit has 8 unknown bytes
[  291.597281][ T8131] random: crng reseeded on system resumption
[  295.360251][ T8195] random: crng reseeded on system resumption
[  296.388927][ T8218] syz.3.467 uses obsolete (PF_INET,SOCK_PACKET)
[  298.398719][ T8205] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  300.558777][ T8255] random: crng reseeded on system resumption
[  301.006073][ T8262] random: crng reseeded on system resumption
[  301.796810][ T8273] random: crng reseeded on system resumption
[  301.807668][ T8275] netlink: zone id is out of range
[  302.089909][ T8271] netlink: set zone limit has 8 unknown bytes
[  302.642854][ T5152] Bluetooth: hci1: unexpected event 0x02 length: 726 > 260
[  309.310820][ T8339] netlink: 28 bytes leftover after parsing attributes in process `syz.1.494'.
[  312.961139][ T8372] netlink: 28 bytes leftover after parsing attributes in process `syz.0.499'.
[  317.507529][   T30] audit: type=1800 audit(6056919564.297:2): pid=8422 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.511" name="dbroot" dev="configfs" ino=21258 res=0 errno=0
[  317.869070][ T8426] random: crng reseeded on system resumption
[  319.679723][ T8440] netlink: 330 bytes leftover after parsing attributes in process `syz.2.515'.
[  319.928418][ T8440] mac80211_hwsim hwsim4 �: renamed from wlan0 (while UP)
[  322.252595][ T8458] erspan0: entered allmulticast mode
[  323.978241][ T8475] netlink: 268 bytes leftover after parsing attributes in process `syz.1.522'.
[  325.857228][ T8501] netlink: 28 bytes leftover after parsing attributes in process `syz.3.528'.
[  327.501748][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  327.508152][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  327.688409][ T8523] netlink: 28 bytes leftover after parsing attributes in process `syz.2.532'.
[  328.779306][ T8532] random: crng reseeded on system resumption
[  332.955992][ T8540] kexec: Could not allocate control_code_buffer
[  333.007660][ T8561] random: crng reseeded on system resumption
[  333.033650][ T8558] ptrace attach of "./syz-executor exec"[5843] was attempted by "[�^�G�Y:9i`�d�����-6��e���D��R�\x1b䓟���=�N �{��:ep඿ϧ�1���Z���K�̅hX�<�l�?���\x0dS��e�s}�/X%�2�W�eR�����3�%e4�L���q�&�����B+��\x0b���䄒�/?Ÿ7��;�(������;����T%�k�YuGkN�d{=��ƫg���q�����J$�\x0c�9����&Xv?q^�i�S���=�-���O��!v���╗}�\x5c�����;�`j���8U����s�\x09�>�S���32���T#���׿����8�G�;�}�֛&&�Y(ܮ̌~��L�$ڣ%dևH�yQN���� �&��ƾ�@�J�\x07��~�\x5c ш����xcjG6 ZY�Y�@;�M8�t?)\x5c����M��1�[�=I �7<yTkӾ��8�r�3�x�w�$w���T\x07|$,��1�G�C��2��%m���BQ9�����>�O*�����C����#nN��z�ܷ<��Q��F����h���7����L`N:(��\x1b:L:P��Wd�k���>��Mτ���#�G%l
b}x�1 �\x5c����a�MDG�����J܄\x0a�;j W���8\x07%/M'Z1`'����0\x0c���.�D��\x5c5�%���f���z��@5ZY�t�0�a!ߒ�ޱ4�m~�L���l>0\x09n\x0bb}i��r�����&zbZԭ�Ћ�?o����@By���q�>_��Cq�a�KWkP�\x07ف�f��\x1bL�Ė�3\x1bM���-tŸ��:��󊐻�����m�ƶ�ܷ;�.p�� I�؈�>���\x07c�\x0d9t*Y���ITeV�҆��}|1'�G�2r�|�<�C�ZI�a����B0\x1b�M�J�*�%.)��:�X�\x0di�%�LIDx��
[  333.536300][ T8565] netlink: 28 bytes leftover after parsing attributes in process `syz.0.540'.
[  334.910973][ T8575] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations!
[  337.838804][ T8375] syz.0.499 (8375) used greatest stack depth: 18648 bytes left
[  338.389331][ T8614] netlink: 28 bytes leftover after parsing attributes in process `syz.1.550'.
[  339.069792][ T8620] netlink: 28 bytes leftover after parsing attributes in process `syz.3.552'.
[  340.476927][ T8631] random: crng reseeded on system resumption
[  342.434658][ T8656] netlink: 28 bytes leftover after parsing attributes in process `syz.1.560'.
[  347.198413][ T8685] netlink: 28 bytes leftover after parsing attributes in process `syz.0.565'.
[  347.361978][ T8688] random: crng reseeded on system resumption
[  348.397964][ T8706] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  348.431171][ T8708] netlink: 330 bytes leftover after parsing attributes in process `syz.3.569'.
[  348.735587][ T8708] mac80211_hwsim hwsim6 �: renamed from wlan0 (while UP)
[  350.544394][ T8718] random: crng reseeded on system resumption
[  352.179430][ T8731] netlink: 28 bytes leftover after parsing attributes in process `syz.2.575'.
[  354.738183][ T8759] netlink: 28 bytes leftover after parsing attributes in process `syz.2.581'.
[  360.108866][ T8806] netlink: 28 bytes leftover after parsing attributes in process `syz.3.591'.
[  360.450186][ T8807] futex_wake_op: syz.1.588 tries to shift op by -2048; fix this program
[  361.104997][   T30] audit: type=1800 audit(6056919607.917:3): pid=8816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.593" name="SYSV00010001" dev="tmpfs" ino=0 res=0 errno=0
[  366.645243][ T8859] random: crng reseeded on system resumption
[  368.928199][ T8887] netlink: 28 bytes leftover after parsing attributes in process `syz.3.608'.
[  369.364240][ T8894] random: crng reseeded on system resumption
[  370.575862][ T8913] random: crng reseeded on system resumption
[  371.535483][ T8907] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  371.586238][ T8907] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  371.597039][ T8907] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  371.632002][ T8907] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  371.644604][ T8907] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  372.928505][ T8936] netlink: 28 bytes leftover after parsing attributes in process `syz.1.620'.
[  373.586643][ T5152] Bluetooth: hci0: command 0x0c1a tx timeout
[  373.666604][ T5152] Bluetooth: hci2: command 0x0c1a tx timeout
[  373.666656][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  373.672667][ T5152] Bluetooth: hci1: command 0x0c1a tx timeout
[  374.686618][ T8948] mkiss: ax0: crc mode is auto.
[  374.954846][ T8965] netlink: 4 bytes leftover after parsing attributes in process `syz.2.626'.
[  375.746840][ T5152] Bluetooth: hci1: command 0x0c1a tx timeout
[  376.446518][ T8975] netlink: 28 bytes leftover after parsing attributes in process `syz.0.629'.
[  377.277622][ T8985] netlink: 28 bytes leftover after parsing attributes in process `syz.0.630'.
[  377.295990][ T8985] bridge0: entered allmulticast mode
[  378.826002][ T9001] netlink: 28 bytes leftover after parsing attributes in process `syz.3.635'.
[  381.072648][ T9035] random: crng reseeded on system resumption

syzkaller
syzkaller login: [  382.630206][ T9048] netlink: 20 bytes leftover after parsing attributes in process `syz.3.646'.
[  382.661197][ T9050] random: crng reseeded on system resumption
[  383.534144][ T9058] netlink: 28 bytes leftover after parsing attributes in process `syz.2.648'.
[  387.182296][ T9086] netlink: 28 bytes leftover after parsing attributes in process `syz.0.653'.
[  388.945182][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  388.951772][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  389.550116][ T9097] netlink: 28 bytes leftover after parsing attributes in process `syz.0.656'.
[  390.503190][ T9109] FAULT_INJECTION: forcing a failure.
[  390.503190][ T9109] name failslab, interval 1, probability 0, space 0, times 0
[  390.629564][ T9109] CPU: 1 UID: 0 PID: 9109 Comm: syz.0.659 Not tainted syzkaller #0 PREEMPT(full) 
[  390.629609][ T9109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  390.629627][ T9109] Call Trace:
[  390.629636][ T9109]  <TASK>
[  390.629648][ T9109]  dump_stack_lvl+0x16c/0x1f0
[  390.629688][ T9109]  should_fail_ex+0x512/0x640
[  390.629737][ T9109]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  390.629774][ T9109]  should_failslab+0xc2/0x120
[  390.629820][ T9109]  kmem_cache_alloc_noprof+0x75/0x6e0
[  390.629852][ T9109]  ? sk_prot_alloc+0x60/0x2a0
[  390.629898][ T9109]  ? sk_prot_alloc+0x60/0x2a0
[  390.629932][ T9109]  ? find_held_lock+0x2b/0x80
[  390.629961][ T9109]  sk_prot_alloc+0x60/0x2a0
[  390.630001][ T9109]  sk_alloc+0x36/0xc20
[  390.630051][ T9109]  inet_create+0x3a1/0x1040
[  390.630098][ T9109]  ? inet_create+0x93/0x1040
[  390.630149][ T9109]  __sock_create+0x338/0x8d0
[  390.630196][ T9109]  mptcp_subflow_create_socket+0xec/0xa10
[  390.630243][ T9109]  ? __pfx_mptcp_subflow_create_socket+0x10/0x10
[  390.630298][ T9109]  __mptcp_nmpc_sk+0x182/0x890
[  390.630346][ T9109]  ? __pfx___mptcp_nmpc_sk+0x10/0x10
[  390.630396][ T9109]  ? __local_bh_enable_ip+0xa4/0x120
[  390.630437][ T9109]  mptcp_bind+0xa3/0x1e0
[  390.630486][ T9109]  __sys_bind+0x1a7/0x260
[  390.630528][ T9109]  ? __pfx___sys_bind+0x10/0x10
[  390.630594][ T9109]  ? xfd_validate_state+0x61/0x180
[  390.630638][ T9109]  ? __pfx_do_writev+0x10/0x10
[  390.630696][ T9109]  __x64_sys_bind+0x72/0xb0
[  390.630737][ T9109]  ? lockdep_hardirqs_on+0x7c/0x110
[  390.630773][ T9109]  do_syscall_64+0xcd/0xfa0
[  390.630813][ T9109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.630845][ T9109] RIP: 0033:0x7ff68f18efc9
[  390.630872][ T9109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.630903][ T9109] RSP: 002b:00007ff690028038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  390.630935][ T9109] RAX: ffffffffffffffda RBX: 00007ff68f3e5fa0 RCX: 00007ff68f18efc9
[  390.630956][ T9109] RDX: 000000000000006a RSI: 0000000000000000 RDI: 0000000000000003
[  390.630974][ T9109] RBP: 00007ff68f211f91 R08: 0000000000000000 R09: 0000000000000000
[  390.630993][ T9109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  390.631011][ T9109] R13: 00007ff68f3e6038 R14: 00007ff68f3e5fa0 R15: 00007ffc2f346ae8
[  390.631055][ T9109]  </TASK>
[  391.661810][ T9127] netlink: 28 bytes leftover after parsing attributes in process `syz.3.662'.
[  392.142636][ T9133] netlink: 28 bytes leftover after parsing attributes in process `syz.1.664'.
[  395.730088][ T9153] futex_wake_op: syz.3.663 tries to shift op by -2048; fix this program
[  397.802204][ T9168] netlink: 28 bytes leftover after parsing attributes in process `syz.2.671'.
[  398.217945][ T9174] netlink: 28 bytes leftover after parsing attributes in process `syz.2.672'.

syzkaller
syzkaller login: [  402.522299][ T9211] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  404.658047][ T9236] block nbd9: NBD_DISCONNECT
[  405.601191][ T9244] netlink: 28 bytes leftover after parsing attributes in process `syz.1.689'.
[  406.884684][ T9256] netlink: 28 bytes leftover after parsing attributes in process `syz.3.692'.
[  407.706477][ T9268] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  414.349938][ T9319] netlink: 28 bytes leftover after parsing attributes in process `syz.2.704'.
[  415.066391][ T9329] binder: 9322:9329 ioctl c0306201 200000000000 returned -14
[  417.970516][ T9352] FAULT_INJECTION: forcing a failure.
[  417.970516][ T9352] name failslab, interval 1, probability 0, space 0, times 0
[  417.984261][ T9352] CPU: 1 UID: 0 PID: 9352 Comm: syz.0.712 Not tainted syzkaller #0 PREEMPT(full) 
[  417.984302][ T9352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  417.984320][ T9352] Call Trace:
[  417.984331][ T9352]  <TASK>
[  417.984343][ T9352]  dump_stack_lvl+0x16c/0x1f0
[  417.984385][ T9352]  should_fail_ex+0x512/0x640
[  417.984443][ T9352]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  417.984484][ T9352]  should_failslab+0xc2/0x120
[  417.984527][ T9352]  kmem_cache_alloc_node_noprof+0x78/0x770
[  417.984562][ T9352]  ? __alloc_skb+0x2b2/0x380
[  417.984619][ T9352]  ? __alloc_skb+0x2b2/0x380
[  417.984663][ T9352]  __alloc_skb+0x2b2/0x380
[  417.984713][ T9352]  ? __pfx___alloc_skb+0x10/0x10
[  417.984770][ T9352]  ? __pfx___register_sysctl_table+0x10/0x10
[  417.984817][ T9352]  ? is_module_address+0x69/0xf0
[  417.984870][ T9352]  mpls_netconf_notify_devconf+0x4a/0x110
[  417.984910][ T9352]  mpls_dev_sysctl_register+0x1c9/0x2a0
[  417.984943][ T9352]  ? pcpu_alloc_noprof+0x1f5/0x14c0
[  417.984975][ T9352]  ? __pfx_mpls_dev_sysctl_register+0x10/0x10
[  417.985028][ T9352]  mpls_dev_notify+0x4ab/0xa20
[  417.985069][ T9352]  notifier_call_chain+0xbc/0x410
[  417.985124][ T9352]  ? __pfx_mpls_dev_notify+0x10/0x10
[  417.985167][ T9352]  call_netdevice_notifiers_info+0xbe/0x140
[  417.985231][ T9352]  register_netdevice+0x182e/0x2270
[  417.985276][ T9352]  ? __pfx_register_netdevice+0x10/0x10
[  417.985327][ T9352]  __ip_tunnel_create+0x540/0x6e0
[  417.985370][ T9352]  ? __pfx___ip_tunnel_create+0x10/0x10
[  417.985434][ T9352]  ip_tunnel_init_net+0x22f/0x7d0
[  417.985481][ T9352]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  417.985532][ T9352]  ? ops_init+0x77/0x5f0
[  417.985567][ T9352]  ? __pfx_ipgre_init_net+0x10/0x10
[  417.985598][ T9352]  ops_init+0x1e2/0x5f0
[  417.985632][ T9352]  setup_net+0x100/0x390
[  417.985664][ T9352]  ? __pfx_setup_net+0x10/0x10
[  417.985697][ T9352]  ? debug_mutex_init+0x37/0x70
[  417.985734][ T9352]  copy_net_ns+0x2f8/0x690
[  417.985773][ T9352]  create_new_namespaces+0x3ea/0xa90
[  417.985820][ T9352]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  417.985860][ T9352]  ksys_unshare+0x45b/0xa40
[  417.985904][ T9352]  ? __pfx_ksys_unshare+0x10/0x10
[  417.985948][ T9352]  ? xfd_validate_state+0x61/0x180
[  417.986006][ T9352]  __x64_sys_unshare+0x31/0x40
[  417.986048][ T9352]  do_syscall_64+0xcd/0xfa0
[  417.986086][ T9352]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.986118][ T9352] RIP: 0033:0x7ff68f18efc9
[  417.986142][ T9352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.986173][ T9352] RSP: 002b:00007ff690028038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  417.986202][ T9352] RAX: ffffffffffffffda RBX: 00007ff68f3e5fa0 RCX: 00007ff68f18efc9
[  417.986223][ T9352] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  417.986242][ T9352] RBP: 00007ff68f211f91 R08: 0000000000000000 R09: 0000000000000000
[  417.986261][ T9352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  417.986288][ T9352] R13: 00007ff68f3e6038 R14: 00007ff68f3e5fa0 R15: 00007ffc2f346ae8
[  417.986332][ T9352]  </TASK>
[  420.841468][ T9381] netlink: 28 bytes leftover after parsing attributes in process `syz.0.717'.
[  421.203522][ T9391] netlink: 28 bytes leftover after parsing attributes in process `syz.0.720'.
[  421.558570][ T9397] random: crng reseeded on system resumption
[  423.218402][ T9412] random: crng reseeded on system resumption
[  424.496305][ T9421] FAULT_INJECTION: forcing a failure.
[  424.496305][ T9421] name failslab, interval 1, probability 0, space 0, times 0
[  424.525742][ T9421] CPU: 1 UID: 0 PID: 9421 Comm: syz.1.726 Not tainted syzkaller #0 PREEMPT(full) 
[  424.525775][ T9421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  424.525788][ T9421] Call Trace:
[  424.525796][ T9421]  <TASK>
[  424.525804][ T9421]  dump_stack_lvl+0x16c/0x1f0
[  424.525834][ T9421]  should_fail_ex+0x512/0x640
[  424.525870][ T9421]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  424.525904][ T9421]  should_failslab+0xc2/0x120
[  424.525936][ T9421]  kmem_cache_alloc_noprof+0x75/0x6e0
[  424.525959][ T9421]  ? sk_prot_alloc+0x60/0x2a0
[  424.525991][ T9421]  ? sk_prot_alloc+0x60/0x2a0
[  424.526016][ T9421]  ? find_held_lock+0x2b/0x80
[  424.526038][ T9421]  sk_prot_alloc+0x60/0x2a0
[  424.526067][ T9421]  sk_alloc+0x36/0xc20
[  424.526104][ T9421]  inet_create+0x3a1/0x1040
[  424.526139][ T9421]  ? inet_create+0x93/0x1040
[  424.526177][ T9421]  __sock_create+0x338/0x8d0
[  424.526211][ T9421]  mptcp_subflow_create_socket+0xec/0xa10
[  424.526247][ T9421]  ? __pfx_mptcp_subflow_create_socket+0x10/0x10
[  424.526296][ T9421]  __mptcp_nmpc_sk+0x182/0x890
[  424.526331][ T9421]  ? __pfx___mptcp_nmpc_sk+0x10/0x10
[  424.526368][ T9421]  ? __local_bh_enable_ip+0xa4/0x120
[  424.526399][ T9421]  mptcp_bind+0xa3/0x1e0
[  424.526433][ T9421]  __sys_bind+0x1a7/0x260
[  424.526465][ T9421]  ? __pfx___sys_bind+0x10/0x10
[  424.526507][ T9421]  ? xfd_validate_state+0x61/0x180
[  424.526539][ T9421]  ? __pfx_do_writev+0x10/0x10
[  424.526568][ T9421]  __x64_sys_bind+0x72/0xb0
[  424.526598][ T9421]  ? lockdep_hardirqs_on+0x7c/0x110
[  424.526642][ T9421]  do_syscall_64+0xcd/0xfa0
[  424.526671][ T9421]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  424.526695][ T9421] RIP: 0033:0x7f436758efc9
[  424.526713][ T9421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  424.526736][ T9421] RSP: 002b:00007f4368411038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  424.526757][ T9421] RAX: ffffffffffffffda RBX: 00007f43677e5fa0 RCX: 00007f436758efc9
[  424.526773][ T9421] RDX: 000000000000006a RSI: 0000000000000000 RDI: 0000000000000003
[  424.526787][ T9421] RBP: 00007f4367611f91 R08: 0000000000000000 R09: 0000000000000000
[  424.526801][ T9421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  424.526815][ T9421] R13: 00007f43677e6038 R14: 00007f43677e5fa0 R15: 00007ffecfb24528
[  424.526847][ T9421]  </TASK>
[  425.304430][ T9434] FAULT_INJECTION: forcing a failure.
[  425.304430][ T9434] name failslab, interval 1, probability 0, space 0, times 0
[  425.325145][ T9434] CPU: 0 UID: 0 PID: 9434 Comm: syz.1.727 Not tainted syzkaller #0 PREEMPT(full) 
[  425.325191][ T9434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  425.325223][ T9434] Call Trace:
[  425.325235][ T9434]  <TASK>
[  425.325248][ T9434]  dump_stack_lvl+0x16c/0x1f0
[  425.325291][ T9434]  should_fail_ex+0x512/0x640
[  425.325342][ T9434]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  425.325384][ T9434]  should_failslab+0xc2/0x120
[  425.325427][ T9434]  kmem_cache_alloc_node_noprof+0x78/0x770
[  425.325461][ T9434]  ? reciprocal_value+0x3a/0x90
[  425.325502][ T9434]  ? do_kmem_cache_create+0x25b/0x740
[  425.325553][ T9434]  ? do_kmem_cache_create+0x25b/0x740
[  425.325603][ T9434]  do_kmem_cache_create+0x25b/0x740
[  425.325654][ T9434]  __kmem_cache_create_args+0x202/0x3c0
[  425.325715][ T9434]  mon_text_open+0x333/0x510
[  425.325753][ T9434]  ? __pfx_mon_text_open+0x10/0x10
[  425.325799][ T9434]  ? __pfx_mon_text_ctor+0x10/0x10
[  425.325836][ T9434]  ? __pfx_apparmor_file_open+0x10/0x10
[  425.325885][ T9434]  ? lockdown_is_locked_down+0x3f/0x130
[  425.325928][ T9434]  ? bpf_lsm_locked_down+0x9/0x10
[  425.325977][ T9434]  ? __pfx_mon_text_open+0x10/0x10
[  425.326010][ T9434]  full_proxy_open_regular+0x1b9/0x360
[  425.326063][ T9434]  do_dentry_open+0x982/0x1530
[  425.326100][ T9434]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  425.326157][ T9434]  vfs_open+0x82/0x3f0
[  425.326210][ T9434]  path_openat+0x1de4/0x2cb0
[  425.326260][ T9434]  ? __pfx_path_openat+0x10/0x10
[  425.326298][ T9434]  ? __lock_acquire+0xb8a/0x1c90
[  425.326351][ T9434]  do_filp_open+0x20b/0x470
[  425.326387][ T9434]  ? __pfx_do_filp_open+0x10/0x10
[  425.326455][ T9434]  ? alloc_fd+0x471/0x7d0
[  425.326499][ T9434]  do_sys_openat2+0x11b/0x1d0
[  425.326548][ T9434]  ? __pfx_do_sys_openat2+0x10/0x10
[  425.326608][ T9434]  ? find_held_lock+0x2b/0x80
[  425.326653][ T9434]  __x64_sys_openat+0x174/0x210
[  425.326706][ T9434]  ? __pfx___x64_sys_openat+0x10/0x10
[  425.326773][ T9434]  do_syscall_64+0xcd/0xfa0
[  425.326814][ T9434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.326849][ T9434] RIP: 0033:0x7f436758efc9
[  425.326875][ T9434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  425.326906][ T9434] RSP: 002b:00007f43683f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  425.326937][ T9434] RAX: ffffffffffffffda RBX: 00007f43677e6090 RCX: 00007f436758efc9
[  425.326959][ T9434] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  425.326979][ T9434] RBP: 00007f4367611f91 R08: 0000000000000000 R09: 0000000000000000
[  425.326998][ T9434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  425.327017][ T9434] R13: 00007f43677e6128 R14: 00007f43677e6090 R15: 00007ffecfb24528
[  425.327062][ T9434]  </TASK>
[  425.637141][ T9434] __kmem_cache_create_args(mon_text_ffff88805cfa0400) failed with error -22
[  425.955583][ T9434] CPU: 1 UID: 0 PID: 9434 Comm: syz.1.727 Not tainted syzkaller #0 PREEMPT(full) 
[  425.955617][ T9434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  425.955632][ T9434] Call Trace:
[  425.955640][ T9434]  <TASK>
[  425.955649][ T9434]  dump_stack_lvl+0x16c/0x1f0
[  425.955679][ T9434]  __kmem_cache_create_args+0x128/0x3c0
[  425.955739][ T9434]  mon_text_open+0x333/0x510
[  425.955768][ T9434]  ? __pfx_mon_text_open+0x10/0x10
[  425.955797][ T9434]  ? __pfx_mon_text_ctor+0x10/0x10
[  425.955824][ T9434]  ? __pfx_apparmor_file_open+0x10/0x10
[  425.955860][ T9434]  ? lockdown_is_locked_down+0x3f/0x130
[  425.955893][ T9434]  ? bpf_lsm_locked_down+0x9/0x10
[  425.955930][ T9434]  ? __pfx_mon_text_open+0x10/0x10
[  425.955955][ T9434]  full_proxy_open_regular+0x1b9/0x360
[  425.955994][ T9434]  do_dentry_open+0x982/0x1530
[  425.956026][ T9434]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  425.956068][ T9434]  vfs_open+0x82/0x3f0
[  425.956106][ T9434]  path_openat+0x1de4/0x2cb0
[  425.956143][ T9434]  ? __pfx_path_openat+0x10/0x10
[  425.956171][ T9434]  ? __lock_acquire+0xb8a/0x1c90
[  425.956208][ T9434]  do_filp_open+0x20b/0x470
[  425.956235][ T9434]  ? __pfx_do_filp_open+0x10/0x10
[  425.956283][ T9434]  ? alloc_fd+0x471/0x7d0
[  425.956314][ T9434]  do_sys_openat2+0x11b/0x1d0
[  425.956350][ T9434]  ? __pfx_do_sys_openat2+0x10/0x10
[  425.956387][ T9434]  ? find_held_lock+0x2b/0x80
[  425.956419][ T9434]  __x64_sys_openat+0x174/0x210
[  425.956456][ T9434]  ? __pfx___x64_sys_openat+0x10/0x10
[  425.956506][ T9434]  do_syscall_64+0xcd/0xfa0
[  425.956536][ T9434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.956560][ T9434] RIP: 0033:0x7f436758efc9
[  425.956579][ T9434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  425.956601][ T9434] RSP: 002b:00007f43683f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  425.956631][ T9434] RAX: ffffffffffffffda RBX: 00007f43677e6090 RCX: 00007f436758efc9
[  425.956647][ T9434] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  425.956662][ T9434] RBP: 00007f4367611f91 R08: 0000000000000000 R09: 0000000000000000
[  425.956676][ T9434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  425.956690][ T9434] R13: 00007f43677e6128 R14: 00007f43677e6090 R15: 00007ffecfb24528
[  425.956727][ T9434]  </TASK>
[  429.382472][ T9467] random: crng reseeded on system resumption
[  429.842389][ T9463] kexec: Could not allocate control_code_buffer
[  431.006424][ T9478] netlink: 28 bytes leftover after parsing attributes in process `syz.3.738'.
[  431.173507][ T9483] random: crng reseeded on system resumption
[  434.893219][ T9524] netlink: 28 bytes leftover after parsing attributes in process `syz.2.748'.
[  436.350365][ T9544] random: crng reseeded on system resumption
[  437.359020][ T9555] FAULT_INJECTION: forcing a failure.
[  437.359020][ T9555] name failslab, interval 1, probability 0, space 0, times 0
[  437.439368][ T9558] ptp ptp0: new virtual clock ptp1
[  437.465532][ T9555] CPU: 0 UID: 0 PID: 9555 Comm: syz.2.752 Not tainted syzkaller #0 PREEMPT(full) 
[  437.465578][ T9555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  437.465597][ T9555] Call Trace:
[  437.465608][ T9555]  <TASK>
[  437.465619][ T9555]  dump_stack_lvl+0x16c/0x1f0
[  437.465660][ T9555]  should_fail_ex+0x512/0x640
[  437.465707][ T9555]  ? fs_reclaim_acquire+0xae/0x150
[  437.465752][ T9555]  should_failslab+0xc2/0x120
[  437.465796][ T9555]  __kmalloc_noprof+0xdd/0x880
[  437.465853][ T9555]  ? tomoyo_profile+0x47/0x60
[  437.465892][ T9555]  ? tomoyo_supervisor+0x45b/0x13b0
[  437.465942][ T9555]  ? tomoyo_supervisor+0x45b/0x13b0
[  437.465984][ T9555]  tomoyo_supervisor+0x45b/0x13b0
[  437.466033][ T9555]  ? __pfx_tomoyo_supervisor+0x10/0x10
[  437.466077][ T9555]  ? do_raw_spin_lock+0x12c/0x2b0
[  437.466126][ T9555]  ? find_held_lock+0x2b/0x80
[  437.466187][ T9555]  ? tomoyo_check_path_acl+0xad/0x210
[  437.466242][ T9555]  ? tomoyo_check_acl+0x1f7/0x410
[  437.466296][ T9555]  tomoyo_path_permission+0x270/0x3b0
[  437.466354][ T9555]  tomoyo_check_open_permission+0x37b/0x3c0
[  437.466409][ T9555]  ? _raw_spin_unlock+0x28/0x50
[  437.466441][ T9555]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  437.466538][ T9555]  ? do_raw_spin_lock+0x12c/0x2b0
[  437.466602][ T9555]  tomoyo_file_open+0x6b/0x90
[  437.466648][ T9555]  security_file_open+0x84/0x1e0
[  437.466682][ T9555]  do_dentry_open+0x596/0x1530
[  437.466733][ T9555]  vfs_open+0x82/0x3f0
[  437.466785][ T9555]  path_openat+0x1de4/0x2cb0
[  437.466834][ T9555]  ? __pfx_path_openat+0x10/0x10
[  437.466873][ T9555]  ? __lock_acquire+0xb8a/0x1c90
[  437.466923][ T9555]  do_filp_open+0x20b/0x470
[  437.466960][ T9555]  ? __pfx_do_filp_open+0x10/0x10
[  437.467028][ T9555]  ? alloc_fd+0x471/0x7d0
[  437.467073][ T9555]  do_sys_openat2+0x11b/0x1d0
[  437.467121][ T9555]  ? __pfx_do_sys_openat2+0x10/0x10
[  437.467194][ T9555]  __x64_sys_openat+0x174/0x210
[  437.467242][ T9555]  ? __pfx___x64_sys_openat+0x10/0x10
[  437.467311][ T9555]  do_syscall_64+0xcd/0xfa0
[  437.467350][ T9555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.467382][ T9555] RIP: 0033:0x7fb756b8efc9
[  437.467407][ T9555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  437.467439][ T9555] RSP: 002b:00007fb757a2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  437.467470][ T9555] RAX: ffffffffffffffda RBX: 00007fb756de6090 RCX: 00007fb756b8efc9
[  437.467491][ T9555] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  437.467511][ T9555] RBP: 00007fb756c11f91 R08: 0000000000000000 R09: 0000000000000000
[  437.467530][ T9555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  437.467550][ T9555] R13: 00007fb756de6128 R14: 00007fb756de6090 R15: 00007ffd821f0f88
[  437.467594][ T9555]  </TASK>
[  437.765845][ T9558] ptp ptp0: new virtual clock ptp2
[  437.813219][ T9556] mkiss: ax0: crc mode is auto.
[  437.839164][ T9558] ptp ptp0: new virtual clock ptp3
[  438.089226][ T9558] ptp ptp0: guarantee physical clock free running
[  438.593722][ T9566] FAULT_INJECTION: forcing a failure.
[  438.593722][ T9566] name failslab, interval 1, probability 0, space 0, times 0
[  438.606792][ T9566] CPU: 0 UID: 0 PID: 9566 Comm: syz.1.755 Not tainted syzkaller #0 PREEMPT(full) 
[  438.606836][ T9566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  438.606854][ T9566] Call Trace:
[  438.606865][ T9566]  <TASK>
[  438.606877][ T9566]  dump_stack_lvl+0x116/0x1f0
[  438.606921][ T9566]  should_fail_ex+0x512/0x640
[  438.606979][ T9566]  should_failslab+0xc2/0x120
[  438.607023][ T9566]  kmem_cache_alloc_noprof+0x75/0x6e0
[  438.607057][ T9566]  ? __send_signal_locked+0x159/0x12c0
[  438.607118][ T9566]  ? __send_signal_locked+0x159/0x12c0
[  438.607169][ T9566]  __send_signal_locked+0x159/0x12c0
[  438.607234][ T9566]  group_send_sig_info+0x2a4/0x300
[  438.607285][ T9566]  ? __pfx_group_send_sig_info+0x10/0x10
[  438.607338][ T9566]  ? kill_pid_info_type+0x1a/0x2a0
[  438.607377][ T9566]  kill_pid_info_type+0x92/0x2a0
[  438.607422][ T9566]  kill_proc_info+0x6f/0x1b0
[  438.607465][ T9566]  kill_something_info+0x2a2/0x310
[  438.607503][ T9566]  ? __task_pid_nr_ns+0x1ff/0x500
[  438.607556][ T9566]  __x64_sys_kill+0xd7/0x140
[  438.607600][ T9566]  ? __pfx___x64_sys_kill+0x10/0x10
[  438.607655][ T9566]  ? rcu_is_watching+0x12/0xc0
[  438.607694][ T9566]  do_syscall_64+0xcd/0xfa0
[  438.607735][ T9566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.607769][ T9566] RIP: 0033:0x7f436758efc9
[  438.607795][ T9566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  438.607826][ T9566] RSP: 002b:00007f4368411038 EFLAGS: 00000246 ORIG_RAX: 000000000000003e
[  438.607858][ T9566] RAX: ffffffffffffffda RBX: 00007f43677e5fa0 RCX: 00007f436758efc9
[  438.607879][ T9566] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000340
[  438.607898][ T9566] RBP: 00007f4367611f91 R08: 0000000000000000 R09: 0000000000000000
[  438.607918][ T9566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  438.607936][ T9566] R13: 00007f43677e6038 R14: 00007f43677e5fa0 R15: 00007ffecfb24528
[  438.607981][ T9566]  </TASK>
[  438.805262][    C0] vkms_vblank_simulate: vblank timer overrun
[  438.969918][ T9566] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  439.509662][ T9575] netlink: 28 bytes leftover after parsing attributes in process `syz.3.757'.
[  441.631063][ T9595] random: crng reseeded on system resumption
[  443.839418][ T9619] netlink: 28 bytes leftover after parsing attributes in process `syz.1.767'.
[  444.530974][ T9630] netlink: 28 bytes leftover after parsing attributes in process `syz.2.769'.
[  447.364978][ T9656] input: f�
 as /devices/virtual/input/input6
[  449.661457][ T9683] netlink: 28 bytes leftover after parsing attributes in process `syz.1.781'.
[  450.091039][ T9682] netlink: 28 bytes leftover after parsing attributes in process `syz.2.782'.
[  450.395839][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  450.402170][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  451.930182][ T9706] random: crng reseeded on system resumption
[  453.315503][ T9719] random: crng reseeded on system resumption
[  454.905006][ T9736] netlink: 28 bytes leftover after parsing attributes in process `syz.1.793'.
[  455.107610][ T9740] netlink: 28 bytes leftover after parsing attributes in process `syz.3.794'.
[  456.799225][ T9737] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.881081][ T9788] Invalid ELF header magic: != ELF
[  462.495945][ T9799] netlink: zone id is out of range
[  462.576058][ T9799] netlink: zone id is out of range
[  462.581253][ T9799] netlink: zone id is out of range
[  462.587575][ T9799] netlink: zone id is out of range
[  462.593128][ T9799] netlink: zone id is out of range
[  462.599911][ T9799] netlink: zone id is out of range
[  462.606616][ T9799] netlink: zone id is out of range
[  462.617694][ T9799] netlink: zone id is out of range
[  462.632545][ T9799] netlink: zone id is out of range
[  462.649483][ T9799] netlink: zone id is out of range
[  464.045124][ T9813] netlink: 268 bytes leftover after parsing attributes in process `syz.2.810'.
[  467.089947][ T9837] netlink: 28 bytes leftover after parsing attributes in process `syz.2.815'.
[  473.372092][ T9910] net_ratelimit: 35 callbacks suppressed
[  473.372802][ T9910] netlink: zone id is out of range
[  473.885206][ T9907] sd 0:0:1:0: PR command failed: 1026
[  473.891165][ T9907] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  473.975658][ T9907] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  474.100060][ T9909] netlink: set zone limit has 8 unknown bytes
[  476.261234][ T9947] FAULT_INJECTION: forcing a failure.
[  476.261234][ T9947] name failslab, interval 1, probability 0, space 0, times 0
[  476.274340][ T9947] CPU: 1 UID: 0 PID: 9947 Comm: syz.0.835 Not tainted syzkaller #0 PREEMPT(full) 
[  476.274376][ T9947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  476.274390][ T9947] Call Trace:
[  476.274399][ T9947]  <TASK>
[  476.274408][ T9947]  dump_stack_lvl+0x16c/0x1f0
[  476.274439][ T9947]  should_fail_ex+0x512/0x640
[  476.274475][ T9947]  ? __kmalloc_cache_noprof+0x5f/0x780
[  476.274519][ T9947]  should_failslab+0xc2/0x120
[  476.274552][ T9947]  __kmalloc_cache_noprof+0x72/0x780
[  476.274593][ T9947]  ? percpu_ref_init+0xec/0x410
[  476.274631][ T9947]  ? percpu_ref_init+0xec/0x410
[  476.274664][ T9947]  ? __pfx_css_release+0x10/0x10
[  476.274697][ T9947]  percpu_ref_init+0xec/0x410
[  476.274726][ T9947]  ? init_and_link_css+0x32c/0x700
[  476.274757][ T9947]  cgroup_apply_control_enable+0x50b/0xbb0
[  476.274808][ T9947]  cgroup_mkdir+0x5e0/0x1310
[  476.274835][ T9947]  ? __pfx_cgroup_mkdir+0x10/0x10
[  476.274858][ T9947]  kernfs_iop_mkdir+0x111/0x190
[  476.274893][ T9947]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  476.274919][ T9947]  vfs_mkdir+0x593/0x8c0
[  476.274961][ T9947]  do_mkdirat+0x304/0x3e0
[  476.274989][ T9947]  ? __pfx_do_mkdirat+0x10/0x10
[  476.275025][ T9947]  ? getname_flags.part.0+0x1c5/0x550
[  476.275064][ T9947]  __x64_sys_mkdir+0xef/0x140
[  476.275092][ T9947]  do_syscall_64+0xcd/0xfa0
[  476.275122][ T9947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.275146][ T9947] RIP: 0033:0x7ff68f18efc9
[  476.275165][ T9947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  476.275188][ T9947] RSP: 002b:00007ff690028038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  476.275211][ T9947] RAX: ffffffffffffffda RBX: 00007ff68f3e5fa0 RCX: 00007ff68f18efc9
[  476.275227][ T9947] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[  476.275242][ T9947] RBP: 00007ff68f211f91 R08: 0000000000000000 R09: 0000000000000000
[  476.275256][ T9947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  476.275270][ T9947] R13: 00007ff68f3e6038 R14: 00007ff68f3e5fa0 R15: 00007ffc2f346ae8
[  476.275303][ T9947]  </TASK>
[  477.582975][ T9955] random: crng reseeded on system resumption
[  479.587459][ T9985] random: crng reseeded on system resumption
[  480.768759][T10003] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  482.566491][T10024] netlink: 28 bytes leftover after parsing attributes in process `syz.2.854'.
[  486.704375][T10076] netlink: 28 bytes leftover after parsing attributes in process `syz.3.866'.
[  487.445220][  T146] netdevsim netdevsim15 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  488.625841][T10111] random: crng reseeded on system resumption
[  490.327938][T10133] zram: Removed device: zram0
[  491.017854][T10147] hub 8-0:1.0: USB hub found
[  491.068021][T10147] hub 8-0:1.0: 1 port detected
[  491.171098][T10130] netlink: zone id is out of range
[  491.176371][T10130] netlink: zone id is out of range
[  491.181629][T10130] netlink: zone id is out of range
[  491.186934][T10130] netlink: zone id is out of range
[  491.192150][T10130] netlink: zone id is out of range
[  491.198842][T10130] netlink: zone id is out of range
[  491.204135][T10130] netlink: zone id is out of range
[  491.209388][T10130] netlink: zone id is out of range
[  491.214696][T10130] netlink: zone id is out of range
[  491.220066][T10130] netlink: zone id is out of range
[  493.525672][T10164] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  493.525952][T10164] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  493.526155][T10164] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  493.526355][T10164] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  494.596764][T10178] random: crng reseeded on system resumption
[  495.323687][T10183] Invalid ELF header magic: != ELF
[  495.585591][   T52] Bluetooth: hci2: command 0x0c1a tx timeout
[  495.591734][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  495.595489][ T5152] Bluetooth: hci1: command 0x0c1a tx timeout
[  495.597892][   T52] Bluetooth: hci0: command 0x0c1a tx timeout
[  495.936823][T10187] FAULT_INJECTION: forcing a failure.
[  495.936823][T10187] name failslab, interval 1, probability 0, space 0, times 0
[  495.952767][T10187] CPU: 0 UID: 0 PID: 10187 Comm: syz.1.891 Not tainted syzkaller #0 PREEMPT(full) 
[  495.952812][T10187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  495.952830][T10187] Call Trace:
[  495.952841][T10187]  <TASK>
[  495.952853][T10187]  dump_stack_lvl+0x16c/0x1f0
[  495.952895][T10187]  should_fail_ex+0x512/0x640
[  495.952944][T10187]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  495.952981][T10187]  ? __pfx_rpc_fill_super+0x10/0x10
[  495.953031][T10187]  should_failslab+0xc2/0x120
[  495.953073][T10187]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  495.953105][T10187]  ? __pfx_inode_set_ctime_current+0x10/0x10
[  495.953145][T10187]  ? do_raw_spin_lock+0x12c/0x2b0
[  495.953196][T10187]  ? __d_alloc+0x32/0xae0
[  495.953236][T10187]  ? __pfx_rpc_fill_super+0x10/0x10
[  495.953288][T10187]  ? __d_alloc+0x32/0xae0
[  495.953322][T10187]  __d_alloc+0x32/0xae0
[  495.953362][T10187]  ? __pfx_rpc_fill_super+0x10/0x10
[  495.953415][T10187]  d_make_root+0x3e/0x90
[  495.953453][T10187]  rpc_fill_super+0x26f/0x4f0
[  495.953556][T10187]  ? __pfx_rpc_fill_super+0x10/0x10
[  495.953607][T10187]  get_tree_keyed+0x10e/0x1d0
[  495.953643][T10187]  vfs_get_tree+0x8e/0x340
[  495.953692][T10187]  vfs_cmd_create+0xd7/0x2a0
[  495.953742][T10187]  __do_sys_fsconfig+0x7b8/0xbe0
[  495.953789][T10187]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  495.953858][T10187]  do_syscall_64+0xcd/0xfa0
[  495.953897][T10187]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  495.953929][T10187] RIP: 0033:0x7f436758efc9
[  495.953955][T10187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  495.953988][T10187] RSP: 002b:00007f4368411038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  495.954020][T10187] RAX: ffffffffffffffda RBX: 00007f43677e5fa0 RCX: 00007f436758efc9
[  495.954042][T10187] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000b
[  495.954060][T10187] RBP: 00007f4367611f91 R08: 0000000000000000 R09: 0000000000000000
[  495.954080][T10187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  495.954099][T10187] R13: 00007f43677e6038 R14: 00007f43677e5fa0 R15: 00007ffecfb24528
[  495.954144][T10187]  </TASK>
[  496.702886][T10199] ==================================================================
[  496.702900][T10199] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x1a6f/0x1e60
[  496.702936][T10199] Write of size 8 at addr ffffc900036f9580 by task syz.1.893/10199
[  496.702957][T10199] 
[  496.702967][T10199] CPU: 0 UID: 0 PID: 10199 Comm: syz.1.893 Not tainted syzkaller #0 PREEMPT(full) 
[  496.702996][T10199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  496.703011][T10199] Call Trace:
[  496.703019][T10199]  <TASK>
[  496.703028][T10199]  dump_stack_lvl+0x116/0x1f0
[  496.703056][T10199]  print_report+0xcd/0x630
[  496.703087][T10199]  ? __virt_addr_valid+0x81/0x610
[  496.703121][T10199]  ? sys_imageblit+0x1a6f/0x1e60
[  496.703147][T10199]  kasan_report+0xe0/0x110
[  496.703180][T10199]  ? sys_imageblit+0x1a6f/0x1e60
[  496.703210][T10199]  sys_imageblit+0x1a6f/0x1e60
[  496.703242][T10199]  ? __pfx_sys_imageblit+0x10/0x10
[  496.703269][T10199]  ? __pfx__prb_read_valid+0x10/0x10
[  496.703304][T10199]  ? find_held_lock+0x2b/0x80
[  496.703329][T10199]  ? up+0xcb/0x140
[  496.703356][T10199]  ? do_raw_spin_unlock+0x172/0x230
[  496.703406][T10199]  ? prb_read_valid+0x78/0xa0
[  496.703443][T10199]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  496.703472][T10199]  soft_cursor+0x524/0xa10
[  496.703512][T10199]  ? fb_get_color_depth+0x120/0x250
[  496.703549][T10199]  bit_cursor+0xe8c/0x17e0
[  496.703589][T10199]  ? __pfx_bit_cursor+0x10/0x10
[  496.703631][T10199]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  496.703673][T10199]  ? get_color+0x1da/0x450
[  496.703704][T10199]  ? __pfx_bit_cursor+0x10/0x10
[  496.703740][T10199]  fbcon_cursor+0x40c/0x5a0
[  496.703773][T10199]  ? add_softcursor+0x71/0x290
[  496.703799][T10199]  set_cursor+0x1db/0x250
[  496.703819][T10199]  con_write+0x89/0xb0
[  496.703845][T10199]  n_tty_write+0x41e/0x11e0
[  496.703884][T10199]  ? __pfx_n_tty_write+0x10/0x10
[  496.703917][T10199]  ? trace_kmalloc+0x2b/0xd0
[  496.703947][T10199]  ? __pfx_woken_wake_function+0x10/0x10
[  496.703988][T10199]  ? kfree+0x252/0x6d0
[  496.704008][T10199]  ? __pfx_n_tty_write+0x10/0x10
[  496.704041][T10199]  file_tty_write.constprop.0+0x503/0x9b0
[  496.704073][T10199]  redirected_tty_write+0xd4/0x150
[  496.704100][T10199]  vfs_write+0x7d3/0x11d0
[  496.704126][T10199]  ? __pfx_redirected_tty_write+0x10/0x10
[  496.704154][T10199]  ? __pfx_vfs_write+0x10/0x10
[  496.704179][T10199]  ? find_held_lock+0x2b/0x80
[  496.704212][T10199]  ksys_write+0x12a/0x250
[  496.704237][T10199]  ? __pfx_ksys_write+0x10/0x10
[  496.704268][T10199]  do_syscall_64+0xcd/0xfa0
[  496.704295][T10199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  496.704320][T10199] RIP: 0033:0x7f436758efc9
[  496.704338][T10199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  496.704362][T10199] RSP: 002b:00007f43683f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  496.704388][T10199] RAX: ffffffffffffffda RBX: 00007f43677e6090 RCX: 00007f436758efc9
[  496.704405][T10199] RDX: 0000000000000d4f RSI: 0000200000000840 RDI: 0000000000000002
[  496.704421][T10199] RBP: 00007f4367611f91 R08: 0000000000000000 R09: 0000000000000000
[  496.704436][T10199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  496.704451][T10199] R13: 00007f43677e6128 R14: 00007f43677e6090 R15: 00007ffecfb24528
[  496.704475][T10199]  </TASK>
[  496.704483][T10199] 
[  496.704489][T10199] The buggy address belongs to a vmalloc virtual mapping
[  496.704506][T10199] Memory state around the buggy address:
[  496.704518][T10199]  ffffc900036f9480: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  496.704535][T10199]  ffffc900036f9500: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  496.704553][T10199] >ffffc900036f9580: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  496.704566][T10199]                    ^
[  496.704579][T10199]  ffffc900036f9600: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  496.704596][T10199]  ffffc900036f9680: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  496.704610][T10199] ==================================================================
[  496.704623][T10199] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  496.704638][T10199] CPU: 0 UID: 0 PID: 10199 Comm: syz.1.893 Not tainted syzkaller #0 PREEMPT(full) 
[  496.704666][T10199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  496.704681][T10199] Call Trace:
[  496.704689][T10199]  <TASK>
[  496.704697][T10199]  dump_stack_lvl+0x3d/0x1f0
[  496.704723][T10199]  vpanic+0x640/0x6f0
[  496.704759][T10199]  panic+0xca/0xd0
[  496.704792][T10199]  ? __pfx_panic+0x10/0x10
[  496.704833][T10199]  check_panic_on_warn+0xab/0xb0
[  496.704870][T10199]  end_report+0x107/0x170
[  496.704901][T10199]  kasan_report+0xee/0x110
[  496.704934][T10199]  ? sys_imageblit+0x1a6f/0x1e60
[  496.704965][T10199]  sys_imageblit+0x1a6f/0x1e60
[  496.704997][T10199]  ? __pfx_sys_imageblit+0x10/0x10
[  496.705024][T10199]  ? __pfx__prb_read_valid+0x10/0x10
[  496.705059][T10199]  ? find_held_lock+0x2b/0x80
[  496.705084][T10199]  ? up+0xcb/0x140
[  496.705111][T10199]  ? do_raw_spin_unlock+0x172/0x230
[  496.705154][T10199]  ? prb_read_valid+0x78/0xa0
[  496.705190][T10199]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  496.705219][T10199]  soft_cursor+0x524/0xa10
[  496.705259][T10199]  ? fb_get_color_depth+0x120/0x250
[  496.705296][T10199]  bit_cursor+0xe8c/0x17e0
[  496.705350][T10199]  ? __pfx_bit_cursor+0x10/0x10
[  496.705409][T10199]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  496.705460][T10199]  ? get_color+0x1da/0x450
[  496.705503][T10199]  ? __pfx_bit_cursor+0x10/0x10
[  496.705549][T10199]  fbcon_cursor+0x40c/0x5a0
[  496.705592][T10199]  ? add_softcursor+0x71/0x290
[  496.705621][T10199]  set_cursor+0x1db/0x250
[  496.705649][T10199]  con_write+0x89/0xb0
[  496.705684][T10199]  n_tty_write+0x41e/0x11e0
[  496.705725][T10199]  ? __pfx_n_tty_write+0x10/0x10
[  496.705758][T10199]  ? trace_kmalloc+0x2b/0xd0
[  496.705788][T10199]  ? __pfx_woken_wake_function+0x10/0x10
[  496.705829][T10199]  ? kfree+0x252/0x6d0
[  496.705850][T10199]  ? __pfx_n_tty_write+0x10/0x10
[  496.705883][T10199]  file_tty_write.constprop.0+0x503/0x9b0
[  496.705915][T10199]  redirected_tty_write+0xd4/0x150
[  496.705942][T10199]  vfs_write+0x7d3/0x11d0
[  496.705968][T10199]  ? __pfx_redirected_tty_write+0x10/0x10
[  496.705997][T10199]  ? __pfx_vfs_write+0x10/0x10
[  496.706022][T10199]  ? find_held_lock+0x2b/0x80
[  496.706055][T10199]  ksys_write+0x12a/0x250
[  496.706081][T10199]  ? __pfx_ksys_write+0x10/0x10
[  496.706112][T10199]  do_syscall_64+0xcd/0xfa0
[  496.706140][T10199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  496.706165][T10199] RIP: 0033:0x7f436758efc9
[  496.706183][T10199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  496.706207][T10199] RSP: 002b:00007f43683f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  496.706230][T10199] RAX: ffffffffffffffda RBX: 00007f43677e6090 RCX: 00007f436758efc9
[  496.706247][T10199] RDX: 0000000000000d4f RSI: 0000200000000840 RDI: 0000000000000002
[  496.706262][T10199] RBP: 00007f4367611f91 R08: 0000000000000000 R09: 0000000000000000
[  496.706278][T10199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  496.706293][T10199] R13: 00007f43677e6128 R14: 00007f43677e6090 R15: 00007ffecfb24528
[  496.706318][T10199]  </TASK>
[  496.706704][T10199] Kernel Offset: disabled