last executing test programs:

3m7.397249741s ago: executing program 3 (id=1323):
r0 = socket(0xa, 0x5, 0x84)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r2=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYRES32=r2], 0x1c}}, 0x4000000)
sendto$auto(r0, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)

3m6.861649511s ago: executing program 3 (id=1327):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/tty12\x00', 0x101840, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x109001, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
io_setup$auto(0x7ffe, 0x0)
io_setup$auto(0x7ffe, &(0x7f0000000000))
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptyq5\x00', 0xa40, 0x0)
mlockall$auto(0x7)
r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x4b67, r2)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
close_range$auto(0x2, 0x8, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
socket(0x2d, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0x3, 0x89e0, 0x91)
ioctl$auto(0x3, 0x89e1, 0x91)
socket(0x1d, 0x2, 0x2)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0xa, 0x2, 0x73)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
clone$auto(0x6, 0x800, &(0x7f0000000040)=0x2, &(0x7f0000000080)=0x5, 0x7f)
shutdown$auto(0x200000003, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

3m5.240071214s ago: executing program 3 (id=1335):
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x7, 0xe981, 0x6, 0xeb1, 0xffffffffffffffff, 0x7)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0xa, 0x3, 0x3b)
r1 = dup$auto(r0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/modules\x00', 0x88400, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/serio/drivers/psmouse/description\x00', 0x100, 0x0)
io_uring_setup$auto(0x6, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(r3, 0x4020ae76, r4)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x9, &(0x7f0000000280)={0x0, 0x3}, 0x6, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r6)
sendmsg$auto_NL80211_CMD_VENDOR(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYRES64=r1, @ANYRES16=r7, @ANYRESDEC=0x0], 0x1c}, 0x1, 0x0, 0x0, 0x4000044}, 0x4000000)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r7, 0x100, 0x70bd29, 0x25dfdbff, {}, [@NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0xa}]}, 0x1c}}, 0x41)
openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
r8 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000)
recvmmsg$auto(r8, &(0x7f0000000140)={{0x0, 0x3, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x2000000200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)

3m4.981316211s ago: executing program 3 (id=1339):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
r0 = socket(0x2, 0x3, 0xa)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000040), r1)
sendmsg$auto_NETDEV_CMD_QSTATS_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x14, r2, 0x301, 0x70bd29, 0x25dfdbfe}, 0x14}}, 0x40000)
r3 = socket(0x1e, 0x1, 0x7fffffff)
r4 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000100), r3)
sendmsg$auto_NFC_CMD_LLC_SET_PARAMS(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x14, r4, 0x400, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20004011}, 0x0)
sendmsg$auto_NFC_CMD_ACTIVATE_TARGET(r1, &(0x7f0000002340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000002300)={&(0x7f0000000280)={0x2040, r4, 0x4, 0x70bd25, 0x25dfdbfe, {}, [@NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0x9}, @NFC_ATTR_VENDOR_DATA={0xfe0, 0x1f, "7846e98feda9c4e6d4178158e0fd29b7b13b42825fe1582048fbf720345329d5c537713c61be7d344ea63ffa0fe72e00cd0cd0af5073c1442eab7192b2c641ae22e9c50bb459e51db24c913156f3c695fe17f1b935938b796e77003b6b129ffc2cb2410562de077444d95264b242c36bd0f3a5c4b7ee5f7902627b9c615e057736c9fe1fbdc785f659774f1a383265989f99c52e97a3270a838a4fb4e9592651cb744cd877ad9945580480e7b843b879032db73eee435fa1be401c024d42e377d48705a1fde3d6aaf1b03d5dc702e14bdc045f09a7fd1e7e7e6fa7174b29baf480ac012ee9eacf6034972a7a8467b658a7997363ebeb69b40786d6c560373057e51970a98397c407b59d4077500570551afaf73d6eb74eaabc5afedddebcdabf7b141727fc0dd75d78f79aeabc40f03230b12c0cac85a96cf1b02504a8b914af443582f80704f268236e3e06c46008272f9c3dffa138a4fbc7a85b29ca2025f48c742cf666a0eb2c96efdde44d8ef6fa1f3f16b15446b19d5e716301cde8c477a683d3691fbdfb10e8fc29479c7610b7a1d8f214224961b67449533af137ced06d7890ef6a694f096227e2ac143817b171a01267c9ad9d788c3b4fd7c666f43f235379eb0dee83ce2054567f46ced0fb9e7909137c16ce50918d96129d4d632368755c89d72c61271c4dc6585a069dcd6043e5278a1254c11890b7f964439dc15a93e6ce762f248e7fa6738f10f77f21988b5c7725ec6678d6e3b20d5074b7bc9ab3ffff9758fb6d5e5a06369ea75e56259603ec591789d7879f13739a81661adfce327706c087b8aa2440ab68dfe2a4bcc7236e76f739f05dc4b92849369b806d192b2aa9651e791248003b27f3d8d72fcff78cd8bec133288e0f11377663bb32907c7870d27b00439d6c73e8fbe99284773224dde1012abc5a8edb0edd2432a166e4a66d08671302067aaa2eb8cdcce75e32c682f6e3be8063634ebfb3354463b2a57446d121e152df9f021989d1c432c81730da6d6886309bf1b8de4b4506c59c98c7da010d27c8e0a8ce4502e602bd2ea4f32cff37e4b26b02afb180576942ad1c5dd42458adc69878703d1cbca1ee11d2d512d5d1e3ce9ba9c1d1f36e53a89d2c5a5afc97572814407a0f32bf93c0f9bda7fdb6d779dd06715260589bde0226c5ecd72877bd6fb21a98da50d90eb353311d636f758f3e81e9a1e29936c8bd2c71a6053afeee8e9e3b092eba8bb57b65569ae2f810dbd31026def801b353ec47f6f39ab01c3a2bc279cc5228a9946d5e9d29fd193f6db068a1152dfdab2dc7076f3a29cf4a2598fb61523b160554cede6685df12032fbb5d3045ca54ac5941145599676e2279ae5d47b0dcb6ae55837964fabbf76e7f53b6e06ceade017848063137eed67d518259e38d2eee03e7dfb8b1bb103cb881711b1b9a0614d2537b4e1d0e5d7c08990c941817e8c931c90a5415e60a729ce5e815703ed6315ce0f467fde0c496a4f138251bef90a2ef0dcdb2b1a970284d28e5bf27ddc7725627091d8294d35eddf3c7a35ecb58fe26fc22e84e4fff2cea8f4e27ac7edb781234a19a22a84d87fef535b210fa9861bace531aa496936bb2d5d240ab8c7ee57725697a64eef3de656e35da47c5865758d8e9ef34500b2387a3d93e35144db9438962a0d6a3e984d2e991f1140af40fa167f5eb75e53162c0a7ea5123aa89d797736efa090febfe8b1578bc995739a22bdc2938a02e5728a14a08bd6f7f274071e0e6fff1d4cc36f7b21dbf29c968d37086ef7a2a0e18f0003aab1135f16b5321a44ec45f1ec3784fba88ecc64952d3e0bab2ad14a005403a88fc6fe3d8cb1e0d947cb0c85bb72b53efc488178ac8a8f58ea80b98d74d2c1cd48d29ddf93ad5a9b5aa65798caa7d5015088d8e6ce0ae751355ad10af930a438f5eca53104cb06869aa3e45237457d9b128c697e99b981901467470347e1f6acd90de74e2ed07b5636c8074fe932ac3dbe913babbbf3e79371e262162a4ca584274a72ca71d22365affaedc0b7982e0f756f4d6106427c7f7dc94bd39135f13116a7b93f6a32ad75f9466917b202f514f46265b5165148d12d8c495ec07fbd95f269e9b9159ecf618231f2c3ade7362cd0d828ac1a8d0d4df3f8329efee0ba3a81bbed456c71301388d5fb454de621598350c64710870a8f083b4493e31c7a70b18b831919dff2d22ce07467b0e27bae8e64420bf8e7973910ee0aa835226aba7a5a5f50268c9203d94da4387adcb7d9e2e71b70ce83ebd896d5b218ac862ffc13124289480b302f06173bc6e2b9ba4502477e13cda7e7972bdbf245095113cc1c699056d1af7780e68445434ca2211a2f2accd0484dd1582151d29e427e053a89b10f1822e15658355a1bbf5c082bd20e6d37384a6441f58434efedb3763122f1e0272b288765b6991fe3c0bc1115448c37b752b585ef92b7938fd25e6d3042390f2b2d937dc39f78c3db388ca6c6a0f396e6321e8b1c5df075770375d65173c0b4396d87aeb59377f15271373c1f435992fc9c865687af6230345e6b69f0a00e958b7ed489fe416eb8cc3343cbcdd1fc8b2106a34c9db565b6f359ea3b072c3a656c447ff005a599100b576ba4ad8c866ce6e5dd6d94f10b8bfe95b77ae0529b06363236009e20b4dcc7ae402181d88adf76d7b67616eb49d7514c1af6624a1bf074fad5ae713f522861adc7ce9000149de24cd151085211a011ba161e7f69fccd0a608d92d92bfe88fa9d46278f65c36297dd131a328bb3066504f0004121cea3ae3bf340eadc9978971723211143bf6b5ec0e4ba277a2dd0232bb2a2bdee527385d63330ec265aced36904faaaeee374bad7117b114581eae9f575222afdfb6661581441f0cc58ee363e9ba3e5c6e30e253fbff42e335cc3c4e3b7287d25fb02c266cf33dc70e5cb57e651608ef502645aa1d01d5b1bcda8078cb30161c03bd634469572ae1fe7688aa1412067d7f4531186c17d4df99ddbaefa3815ef2f3873a253570d812dd706d13c8be8d463a3514d56b9308fa65c0960bababa9233641df880b7a95843dbce4f122e8694f0be5e0c7de26ce7921d6cc0a6d022890a5a63ee18d96364e1afc5d89c96cdf85251084dd8e4697b7ff1a09197137623927805ebdfe8533938a2fecd47ceba5543793cc76bd3dae806b89bcd906836ed3dbd5fb230706c4b1e0e63237fddd3cced191f43ce2404891d883d5d25e71a3524afe28cedc877d346af9d9a460da104296b22aeabbc563774f138dbf9b4ccd6e7b71a395dc725bac753409480f4cc7d096da26587fcbec69414659db65391a2c7f43d81ee2fa3bcc3ef98e0842379a25567120842d1a1d0ae956e6c00879294389c2dc099358710b5eaf05cd636575938c2350028a9eeace36e0b553ca68c88d3093ed021d0a781ee5f284cb486888c9ebe9514abcd555ebdfadf28295d35b2cf662a927c6df81280a228b43c4b7dbf1f674159cb866e64607d9e5b800787108368974a73d9829a204cc94ee1b8955eae71feed92560f3e8310043ae83e31046143ee379d1a550a4a3f1a49855f083701dbaf9c938178be5cbe202d398e4d4db9ba138fc1610d30779672daa35d667ff89737cfaff7fb03864d04a28a564ec2c2dd096e91fca732d0ed88500f1ac610964305db2e07feafd8a7767c4723b2bacf7ce38898c8d8e52162e7dea2a0fe70963caf14a36930f94eaed99e55b65e779dcbc87a1c94c26e398cdb9cf7a47d698736b16d709d53ba7d89bfe403feb37d544b849bdf5c866f82bec5e1b69d25719b3753d0a03f3bc34f9656a4ffb5e848c864f2dbba2e6b75462675706949b51da72277a163f9abe1b05c5112fc422a9cf7831994b0c9079c3b774edae768ebeac3e4a5edf3b46928f639bd83f99c5ad8b2cc7a8f953bbe431a515f16696ed331c2bf406c2a09f1f727a70fb119b7d8029165c9b86606e66a6e2286bcc40776af9eb1f7ec643adc7d22283809fe197108f7fe7317a8033133a6751a4c7144ab823c0f9465427cd4adeb6cbb28c83607f3cde605364b8a430cbe4bcae64a1af0afc3eec0a1ac9d41e66d5eb00db5bce6232078c99cdd2b3c7798ec491f9bf6ba87d2c06a643672cc476f7268c541c48b551091701f24a6481b0dbe1e40d8d07bbcdb06a11c989e232a73f84c7c45484fed75c8c941f053fbffa2e876ead869684dbfea7d35bd5c0f1a1aa49286080bedfda9d4f310d6fb0a61dca0a9275943ab635f2c93324e9f75fafa46dc8b7163f1bef3f2b4c7ceab3657881e76620a7228e99747d1164cfa9a7c4de98988739f21a2a7ed51bcca121c72a9406b3bfc8776e779d2bf854ed46b56d7fc7e16c44b27fa0835fc7bc5f6c50cb9fb6719c293782f7af6ec157da741c443babff28ab2490cc62a47218f97871eecf5b64087c07d09cf6d7298c7c438afbaee68f4649768aa69e76e9202a9cdc98cd029635b2c3cdeba68486984d82ec2c49d8ed375dac98d54ec2f0c60ddb5ad34e7c267e017d511a8267c9e17134620b2842a55749b8b3b39ce8f39d57173448d6bd6ff2d33c8e61a24dd7cab214d3aae7c86dc9126e0f609786499da7fca38a6f6418a2a757575346b3273ae3ab577eb9c84ad260cc0ffaee3c8729ec50f08a9c038932896e58cf647d36506fa6e85edeec36627f2caf15e8a238b34b86fd092c359f2d238acc8c52f8eb5b67603ccdefa63677e27246e7a8367704e4660a6de16d7658fa025ebeebe23f0203f2fcb36677f60b61d6c2aebe57681412bfa5c15a2d119615de40bcc1686612b719ebec5ecb6c0086fd30e7f9925d89fbe3ea6c241ab2d0beb36f75c61d3d2dcdf26ffe1c4ea178cdc2524dd3d8fe07cc60bc547deea0018116cf58ce9516189358b9119e0009aade81ba2f7bd6cc8186a10046c8d6a7470654b5f2a0a603bd72767d0934d798cac0366f96ed3b1ba97e7a8d616e79c12d35baec3c673ec9b1c96b729bb0fcb935eb5da8606a47a5719f645c33609ed6d7d91c9abf650005110c1ff82f0f63c7deb78745b55cf99c3c902fa117e64d99bdf80307adbcbcfd0e733c28a85254961fec02656adc83065b0b0d7e07d7811ccab298a839b1dc5a60fb4316aedaaa248c9716f19eea385e2ab5686a7d9acd989e2eef70372bd0bc37beba838359f3b44b882f09be91dc3508347f4380f2128a3577f474ce13f1e74bd0b1506a340586f6823e54f3d58dda9c991dbd0fb58deacaaf4fba01bb9430d97be8a4f8ff7c164c2611e332fc41ad10900547896c020885b1af1eb107a46248c5119dae2d581df1bd90fa54688ac72d5a4e0e4b0cca0d4a8e8e21151a74d4682b6ba6d73a5cb01fd9cd903afe5704d78c243ec117d67abbb33c782bc7342917a60270847606f520908dd036a8599d5d284067ceec7e569b1a45e9e70333c34f5063d989df5416ab2b08649f330659a50b17c7970d6bf73d764355ac1d03bee906638c38d022547c97c1939676390647b1ebceb2b263dcadfaf0e5561b2089cdd09ec7496ad03017cbdd0459da648307bebbc3b0b9f820d7d655bc5bb77d379c69714c3226288a6da8bddc1d058af6cbb1db1e32d7aa5d81f9e1fc40d5158fdd8e96d12487ab994ba172fd785924a9439820a9ff2511132c2a66cea49a635464297cf1a554d8028e83e2961744652e5d2baf7dc1c8df28dba52d06c071a6b7951fca4d2a9aae42da0de0dcf5ed187ba0c8"}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0xf}, @NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0x4}, @NFC_ATTR_VENDOR_SUBCMD={0x8, 0x1e, 0xba}, @NFC_ATTR_RF_MODE={0x5, 0xb, 0xa}, @NFC_ATTR_LLC_SDP={0x101c, 0x13, 0x0, 0x1, [@nested={0x1018, 0xf1, 0x0, 0x1, [@nested={0x4, 0x87}, @typed={0x8, 0xe7, 0x0, 0x0, @fd=r0}, @generic="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", @typed={0x4, 0xca}, @nested={0x4, 0xfe}]}]}, @NFC_ATTR_DEVICE_POWERED={0x5, 0xc, 0x9}]}, 0x2040}, 0x1, 0x0, 0x0, 0x400c0}, 0x20004040)
ioctl$auto(0x3, 0x89e0, 0x38)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nvmet_tcp/parameters/idle_poll_period_usecs\x00', 0x9801, 0x0)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000062c0), r6)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'bond_slave_0\x00'})
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r6, &(0x7f00000000c0)={0xfffffffffffffffd, 0x0, &(0x7f0000006340)={&(0x7f0000000100)={0x20, r7, 0x38f, 0x70bd29, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4044040}, 0x4000)
signalfd4$auto(r5, &(0x7f0000000080)={0x2}, 0x9, 0x7f)
write$auto(0x3, 0x0, 0x6)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000040), r8)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c00178004007f801047b70712000100898771f1c19f17790485908288470000040002803f4061c3713a100000000000000000c2a98cc624e81c0d641a41a16b91c827bdde1bf10b175725f82953"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
getsockopt$auto(r8, 0x401, 0x7, &(0x7f0000000180)='/sys/module/nvmet_tcp/parameters/idle_poll_period_usecs\x00', &(0x7f00000001c0)=0xfff)

3m4.697052076s ago: executing program 3 (id=1342):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer1\x00', 0x0, 0x0)
r1 = dup$auto(r0)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
socket(0x23, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_UPD_RXSC(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000003800)={0x14, r4, 0x201, 0x70bd2a, 0x25dfdbfe}, 0x14}}, 0x48010)
sendmsg$auto_MACSEC_CMD_UPD_RXSA(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x2c, r4, 0x100, 0x70bd25, 0x25dfdbfc, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x18, 0x2, 0x0, 0x1, [@typed={0xc, 0x8d, 0x0, 0x0, @u64=0xb}, @typed={0x8, 0x25, 0x0, 0x0, @ipv4=@broadcast}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40040}, 0x20004080)
ioctl$auto(0x3, 0x4008ae48, 0x38)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
getsockopt$auto_SO_PEERPIDFD(r1, 0x1, 0x4d, 0x0, &(0x7f00000000c0)=0x8)

3m3.949701786s ago: executing program 3 (id=1346):
unshare$auto(0x80002)
mmap$auto(0x0, 0x2000d, 0x7, 0x100000eb1, 0x404, 0x10008000)
mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x400000000f54, 0x0, 0x0, 0x0, 0x8000000000000000)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101142, 0x0)
mmap$auto(0x0, 0xe983, 0x7, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, 0x0, 0x8102, 0x0)
bpf$auto_BPF_PROG_QUERY(0x10, &(0x7f0000000340)=@query={@target_ifindex, 0x8, 0x4cc3, 0x101, 0x101, @prog_cnt=0x8, 0x0, 0x4f, 0x9, 0x5, 0x7}, 0x400)
read$auto(r1, 0x0, 0xe4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r2 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r2, 0xffffffffffffffff, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-touch3\x00', 0xa8a80, 0x0)
epoll_create$auto(0x3e)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103841, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_GET_RADIO(0xffffffffffffffff, 0x0, 0xa0)
r4 = socketpair$auto(0x10001d, 0x40005, 0x8000000000000000, 0x0)
close_range$auto(r4, r3, 0x0)
r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0xa200, 0x0)
ioctl$auto(r5, 0xc058560f, r5)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00'})

2m48.231720715s ago: executing program 32 (id=1346):
unshare$auto(0x80002)
mmap$auto(0x0, 0x2000d, 0x7, 0x100000eb1, 0x404, 0x10008000)
mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x400000000f54, 0x0, 0x0, 0x0, 0x8000000000000000)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101142, 0x0)
mmap$auto(0x0, 0xe983, 0x7, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, 0x0, 0x8102, 0x0)
bpf$auto_BPF_PROG_QUERY(0x10, &(0x7f0000000340)=@query={@target_ifindex, 0x8, 0x4cc3, 0x101, 0x101, @prog_cnt=0x8, 0x0, 0x4f, 0x9, 0x5, 0x7}, 0x400)
read$auto(r1, 0x0, 0xe4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r2 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r2, 0xffffffffffffffff, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-touch3\x00', 0xa8a80, 0x0)
epoll_create$auto(0x3e)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103841, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_GET_RADIO(0xffffffffffffffff, 0x0, 0xa0)
r4 = socketpair$auto(0x10001d, 0x40005, 0x8000000000000000, 0x0)
close_range$auto(r4, r3, 0x0)
r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0xa200, 0x0)
ioctl$auto(r5, 0xc058560f, r5)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00'})

6.768200759s ago: executing program 1 (id=2049):
r0 = socket(0x1d, 0x1, 0x7fff)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
setuid$auto(0xe)
bpf$auto(0x5, &(0x7f0000001100)=@bpf_attr_7={@start_id=0x1, 0x4, 0xf}, 0x8)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r2, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3)
r3 = socket(0x1, 0x80000, 0x1)
connect$auto(r3, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000240), r0)
sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(r3, 0x0, 0x30004850)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
madvise$auto(0x7, 0xe, 0x7)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x4000, 0x4, 0xa}, 0x18)
socket(0x27, 0x3, 0xa)
socket(0x2, 0x3, 0xa)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/tcp6\x00', 0x60080, 0x0)
sendfile$auto(r3, r0, &(0x7f0000000040)=0x80000000, 0xbd44)
pread64$auto(r5, 0x0, 0x8, 0xffff)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)

5.247720945s ago: executing program 0 (id=2057):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000026bd7000fedbdf250300000006000600810000000600070000800000060006000e0000000a000500000000000000000800000000aaaaaaaaaaaa00000a000500aaaaaaaaaa4000000800030040000000f8ff0100", @ANYRES32=0x0, @ANYBLOB="08000400"], 0x68}, 0x1, 0x0, 0x0, 0x20000084}, 0x44098)
socket(0x2, 0x3, 0x100)
r1 = socket(0x10, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f0000000040), r0)
sendmsg$auto_NLBL_CIPSOV4_C_REMOVE(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r2, 0x100, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x20008091)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mlock$auto(0x112, 0x80006)
mlockall$auto(0x800000000000005)
madvise$auto(0x0, 0x200007, 0x19)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x400002, &(0x7f00000002c0)={0x0, 0xc7}, 0x6, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x40000000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
unshare$auto(0x40000080) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000026bd7000fedbdf250300000006000600810000000600070000800000060006000e0000000a000500000000000000000800000000aaaaaaaaaaaa00000a000500aaaaaaaaaa4000000800030040000000f8ff0100", @ANYRES32=0x0, @ANYBLOB="08000400"], 0x68}, 0x1, 0x0, 0x0, 0x20000084}, 0x44098) (async)
socket(0x2, 0x3, 0x100) (async)
socket(0x10, 0x2, 0x0) (async)
syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f0000000040), r0) (async)
sendmsg$auto_NLBL_CIPSOV4_C_REMOVE(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r2, 0x100, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x20008091) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mlock$auto(0x112, 0x80006) (async)
mlockall$auto(0x800000000000005) (async)
madvise$auto(0x0, 0x200007, 0x19) (async)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x400002, &(0x7f00000002c0)={0x0, 0xc7}, 0x6, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x40000000) (async)

5.243900507s ago: executing program 1 (id=2058):
r0 = socket(0x10, 0x2, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) (async, rerun: 64)
openat$auto_msft_opcode_fops_(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/bluetooth/hci2/msft_opcode\x00', 0x2, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_suspend_stats_fops_(0xffffffffffffff9c, &(0x7f00000003c0), 0x1001, 0x0)
getsockopt$auto_SO_BINDTODEVICE(r1, 0xffff0000, 0x19, 0x0, &(0x7f0000000440)=0x7) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x1e, 0x4, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/nbd14/queue/iosched/prio_aging_expire\x00', 0x207a1, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000000c0)='-7', 0x2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bond_slave_0\x00'}) (async, rerun: 32)
setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) (async)
recvmmsg$auto(0x4, &(0x7f0000000200)={{0x0, 0x4, &(0x7f0000000140)={0x0, 0x4da}, 0x4, 0x0, 0x8, 0x800}, 0x1000}, 0xffffffff, 0x0, 0x0) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async, rerun: 32)
ioctl$auto_TIOCSCTTY(0xffffffffffffffff, 0x540e, 0x0) (rerun: 32)

4.752920252s ago: executing program 1 (id=2061):
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5)
fallocate$auto(0x3, 0x0, 0xe, 0x8ec5)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
io_uring_setup$auto(0x6, 0x0)
socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x400008, 0x7, 0x9b72, 0x2, 0x8000)
msgsnd$auto(0xfffffffc, 0x0, 0x1, 0x963)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0x2)
setsockopt$auto(0x3, 0x0, 0xca, 0xfffffffffffffffc, 0x3)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r1, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xfffffeff, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x2, 0x83, 0x101, 0x17f, 0x2}, {0xff, 0x1, 0x52, 0x5, 0x1, 0x40, 0x4, 0x8, 0x100000004}})
io_uring_setup$auto(0xd364, &(0x7f0000000000)={0x400, 0x10002, 0x7f, 0x7, 0x6, 0x5, r1, [], {0x2, 0x4, 0x6, 0x2, 0x40, 0x4, 0x7, 0x7, 0x80000000}, {0x7, 0x1ff, 0x80000001, 0x8, 0x6b, 0x9, 0x0, 0xfffffffa, 0xb1}})
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone3(&(0x7f0000000200)={0x4000, 0x0, 0x0, 0x0, {0x2f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
write$auto(0xc8, 0x0, 0x40f6)
listmount$auto(&(0x7f0000000000)={0x1f, @raw, 0x80000024, 0xffffffffffffffff, 0x2}, 0x0, 0xf4240, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0)
sendfile$auto(r2, 0xffffffffffffffff, 0x0, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/module/psmouse/parameters/proto\x00', 0x20a42, 0x0)

4.302809871s ago: executing program 0 (id=2062):
socket(0x1a, 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000001200)={0xf2f, [{0x529, 0x5}, {0x19f1a9bc, 0x7}, {0x800, 0x5}, {0x9, 0x45053277}, {0x7d, 0xf}, {0x7fffffffffffffff, 0x5}, {0x8, 0x1000}, {0x8, 0xf94}, {0x9, 0x5}, {0x7fff}, {0x80000000, 0x5}, {0x6b, 0x6}, {0x6, 0xfffffffffffffe00}, {0x1}, {0x5, 0xb11}, {0x8, 0x7}, {0x3, 0x8}, {0x2, 0x2}, {0x0, 0x5bf8}, {0x6, 0x1001}, {0x100, 0x1000}, {0x10000}, {0x6, 0x1}, {0x9, 0xee}, {0x9, 0x2}, {0xff, 0x6}, {0x7, 0x4}, {0x8, 0xb}, {0x9, 0x6}, {0x9, 0x101}, {0x1, 0x9}, {0x5, 0x2c3}, {0x3, 0xfe}, {0x9, 0x40}, {0x5b, 0x6}, {0xfff, 0x10000}, {0x5, 0x7fffffffffffffff}, {0x40004}, {0x2, 0x12580000}, {0x9}, {0x9, 0x100000001}, {0x2, 0x7}, {0x6, 0x5}, {0x10, 0x4}, {0x9, 0x1}, {0x5, 0x10}, {0x9, 0x200}, {0xb, 0x4d97}, {0xffffffffffffff7f, 0x8000000000000001}, {0x7f, 0x800}, {0x3, 0x10000}, {0x6, 0xffffffffffffffff}, {0x6, 0x2}, {0x5, 0x3}, {}, {0x3, 0x1}, {0x1, 0xbb1}, {0x9, 0x8000}, {0x6302, 0x3}, {0x9, 0x9}, {0xa, 0x401}, {0x2}, {0x4, 0x800002}, {0x0, 0x4}, {0x7ff}, {0x6, 0x7fffffff}, {0x1, 0x9}, {0x67a, 0xffff}, {0xc, 0x8}, {0x80, 0xe0}, {0x3e75, 0x1}, {0xe8, 0x9}, {0x5}, {0x0, 0x1}, {0xfffffffffffffffe, 0x9}, {0x8, 0xf870}, {0x1ae8df8a, 0x5}, {0xf8, 0xd7c}, {0x0, 0x8}, {0x9, 0xffffffffffffffff}, {0x5de8, 0x7ff}, {0x2, 0x800}, {0xfffffffffffffff8, 0x2}, {0x2, 0x4}, {0x3, 0x5}, {0x0, 0x7ff}, {0x8b, 0x6e}, {0x8000000000000000, 0x3}, {0x4, 0xf434}, {0x4, 0xa0b}, {0x400000002, 0x5}, {0x4, 0x5}, {0x9, 0x5}, {0xd0c7, 0x9}, {0x7, 0x1}, {0x35d, 0x75}, {0x7, 0x3}, {0x3, 0xfffffffffffffffa}, {0x1, 0x38a}, {0x4, 0x1}, {0x100000001, 0x1}, {0x6, 0x5}, {0x5, 0x5}, {0x81, 0x821}, {0x2, 0x1}, {0x100000000, 0x5}, {0x8008, 0xfffffffffffffffa}, {0x9, 0xc}, {0x0, 0x2}, {0x2, 0x70829e47}, {0x255, 0x100000001}, {0x7, 0x8}, {0x1315, 0x7}, {0x4, 0x100}, {0x2, 0x24ad}, {0xd, 0x7}, {0x5, 0x131}, {0x1}, {0x7fffffff, 0xaf06}, {0x8, 0x6}, {0x10, 0x8}, {0x2, 0x5}, {0x1, 0x7}, {0x6, 0xc184}, {0x5, 0x8}, {0x101, 0x24}, {0xfab, 0x3}, {0x1, 0x8}, {0xffffffffffffff89, 0x1}, {0x7ff}, {0x3, 0x9}, {0x7fffffff, 0xffffffffffffffff}, {0x1, 0x1944}, {0x7, 0xfffffffffffffff7}, {0x4, 0xa7}, {0x3, 0xd}, {0x4, 0x6}, {0xfff, 0xa81}, {0x3, 0xc0}, {0x1ff, 0x800}, {0x1000, 0x5}, {0xb, 0x8}, {0x4, 0x6}, {0x1000000000002, 0x5}, {0x200000007, 0x6}, {0x8001, 0xb}, {0x7fffffff, 0x953c}, {0x1, 0x2}, {0x4}, {0x1, 0x5}, {0xfffffffffffffff8, 0xbd}, {0x4}, {0x54e5, 0x6000}, {0x100000001, 0x100000001}, {0x4, 0x8}, {0x200, 0x7afe}, {0x5, 0x2}, {0xfffffffffffffff7, 0x3e9}, {0x0, 0x8}, {0x3, 0x9}, {0x80, 0x1000}, {0x802, 0xd}, {0x0, 0x6}, {0x7, 0x10}, {0x80000000000000, 0x5}, {0xf, 0xc}, {0x0, 0x3}, {0x0, 0x9bd}, {0x4, 0xf96a}, {0x203b0000000000, 0x6}, {0x9}, {0x1, 0x8}, {0x1e, 0x2}, {0x6, 0x400}, {0x8, 0x80000001}, {0x3fc0, 0x6}, {0x4}, {0x7fff, 0x7}, {0x30, 0x8399}, {0xffffffffffffffff, 0x2}, {0x1ff, 0x7}, {0x5, 0x4}, {0x4, 0x79}, {0x3, 0x2}, {0x6, 0x7fff}, {0x6, 0x8}, {0x1000, 0xef62}, {0xbd1b, 0x10001}, {0x8, 0x6}, {0xbd8, 0x80000000}, {0x5, 0x80000001}, {0x1, 0x6}, {0xfff, 0x7}, {0x100, 0x3}, {0x7a}, {0x100}, {0x7, 0xffffffffffffffff}, {0x238b, 0x5}, {0x0, 0x2}, {0xd3fe, 0x7}, {0x5, 0x7}, {0x1, 0x1}, {0x99, 0xfffffffffffffffc}, {0x6, 0xee}, {0x6, 0x100}, {0x78e, 0x5}, {0x1ddf, 0x6}, {0x9, 0x40}, {0x1, 0x2}, {0x8001, 0x91}, {0x8000, 0x1}, {0x9, 0x6}, {0x2, 0x4}, {0x5, 0x3}, {0x0, 0xffff}, {0x5}, {0x5aa, 0x8020000000000}, {0x7, 0x8000000000000000}, {0x400005c4a, 0x4}, {0x3, 0x7de}, {0x0, 0x2}, {0x780000000, 0x8}, {0x9, 0xffffffffffffff3f}, {0x3, 0x4}, {0x81, 0x6a04}, {0x2, 0x1c25}, {0xffffffffffffffc0, 0x8}, {0x1, 0x427}, {0x2, 0x1}, {0x2000008, 0xed3}, {0x3, 0xbe28}, {0x8000000000000000, 0xffffffffffffffff}, {0x2, 0x2}, {0x7, 0x7}, {0x80000001, 0x3987}, {0x66f3, 0x101}, {0x5, 0x101}, {0x4, 0x2}, {0xfff, 0x2}, {0x4, 0x8000000000000001}, {0x1}, {0xa, 0x6}, {0x6, 0x4}, {0x6, 0x3}, {0xd, 0x2}, {0x1, 0x10001000000000}, {0x0, 0x7fffffffffffffff}, {0x9, 0x6}, {0x200, 0x2f91}, {0xd5c5, 0x81}, {0x8, 0x8000}, {0x800, 0xfffffffffffffffa}, {0x301983e2, 0x5}, {0x3, 0x7}, {0x0, 0x4}], 0x7, "0a54d639d08954"})
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyw5\x00', 0x28341, 0x0)
ioctl$auto_TIOCMGET2(r1, 0x5415, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000400)='/dev/amidi2\x00', 0x201, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(r2, 0xc0385720, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, 0x0, 0x4000080)
mknod$auto(&(0x7f0000000040)='X))\x00', 0xcb, 0x7)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mknod$auto(&(0x7f0000000280)='X))\x00', 0x63c5, 0x7bf)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/oom_adj\x00', 0x300, 0x0)
read$auto(r3, 0x0, 0x1f40)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.max.depth\x00', 0x4400, 0x0)
socket(0x2, 0x1, 0x0)
epoll_create$auto(0x4)

3.738428405s ago: executing program 1 (id=2063):
r0 = socket(0x11, 0x80003, 0x300)
r1 = openat$auto_suspend_stats_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x440, 0x0)
pread64$auto(r0, &(0x7f00000000c0)='/dev/nvme-fabrics\x00', 0x10, 0xfffefffffffff72f)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000003c0)=""/192, 0xc0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap$auto(0x0, 0xfffffffffffffd6d, 0x2, 0xeb0, r1, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
msgctl$auto_IPC_SET(0xf592, 0x1, &(0x7f00000009c0)={{0x9, 0x0, 0x0, 0x1ff, 0x8, 0x1, 0x5}, &(0x7f0000000180)=0x77, &(0x7f0000000980)=0x8, 0x3, 0x9, 0x200, 0x4e7, 0x8, 0x7a, 0x2, 0x0, @raw=0x3, @raw=0x8})
r3 = socket(0x11, 0x80003, 0x200300)
setsockopt$auto(r3, 0x107, 0x18, 0x0, 0x9)
sendmsg$auto_NL80211_CMD_UPDATE_FT_IES(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c150000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="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"], 0x154c}, 0x1, 0x0, 0x0, 0xc001}, 0x24000020)
socketpair$auto(0xff000001, 0x9, 0xa, 0x0)
clone$auto(0x21, 0x1000, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid$auto(0x0, 0x5c5, 0x0, 0x4, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
r4 = openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x0, 0x0)
preadv$auto(r4, &(0x7f0000000100)={&(0x7f0000000240)="8405bac02d1f0ef6cf22e965aa9407eb01222e04a0cf3bb822da96f74f5c44a8ba57edf547c4db365aa0b9106cdc7f01859d2b189d8cdd3d872f50258c20e816bf2808e186e70d34a45f9f456ccf3cafebcfbb57997adf683b0c3f", 0x82}, 0x3, 0xe637, 0x6)
mmap$auto(0x4, 0x2020009, 0x3, 0x7f, 0xffffffffffffffff, 0x1ffffffffffffe)
openat$nci(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)

3.484998986s ago: executing program 2 (id=2065):
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000001300)='/dev/snd/pcmC0D0c\x00', 0x80, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_XRUN2(r0, 0x4148, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r1, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto_VFIO_CHECK_EXTENSION(r3, 0x3b65, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0x41a0ae8d, 0x0)

2.979332009s ago: executing program 2 (id=2066):
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$auto_NL802154_CMD_ASSOCIATE(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000040)={0x0, 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0x24040000) (async)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20942, 0x0)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r1, 0x40045010, &(0x7f0000000040)) (async)
gettid()
write$auto_snd_pcm_oss_f_reg_pcm_oss(r1, &(0x7f0000000080)="c2", 0x1) (async)
ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0xfffffffffffffffc) (async)
madvise$auto(0x0, 0x2000000080000001, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4) (async)
bind$auto(0x3, &(0x7f0000000040)=@l2={0x1f, 0xcc8, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x7, 0x1}, 0x6a) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) (async)
io_uring_setup$auto(0x1, 0x0) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
semctl$auto_GETPID(0xb3fb, 0x1, 0xb, 0x400)

2.639661605s ago: executing program 4 (id=2068):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) (async)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe9a3, 0x3, 0x8000eb1, r0, 0x6) (async)
r1 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
getpid() (async)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
ioctl$auto_VHOST_SET_VRING_ERR2(r1, 0x4008af22, &(0x7f00000000c0)={0xfffffff8, r2})
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (async)
fanotify_mark$auto(0xffffffffffffffff, 0x0, 0xfffffffffff8fbff, 0xffffffffffffffff, 0x0) (async)
socket(0x1d, 0x2, 0x6) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
r4 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x582, 0x0) (async)
socket(0xa, 0x1, 0x84)
write$auto_console_fops_tty_io(r4, &(0x7f0000001240), 0x0) (async)
msgsnd$auto(0x0, &(0x7f0000000080)={0x2, 0x1}, 0x4, 0xd)

2.357058716s ago: executing program 4 (id=2069):
r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000100), 0x20400, 0x0)
r1 = socket(0x10, 0x2, 0xf)
bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_4={0x1e, r1, 0xffffffff}, 0xd)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r1)
ioctl$auto_TUNSETVNETHDRSZ(r0, 0x400454d8, 0x0)

2.213459697s ago: executing program 4 (id=2070):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x3c8082, 0x0)
dup$auto(r0)
r1 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/dynamic_debug/control\x00', 0x8101, 0x0)
write$auto(0x3, 0x0, 0x29a)
r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r2, 0x0, 0x4)
setsockopt$auto_SO_SELECT_ERR_QUEUE(r1, 0x10001, 0x2d, &(0x7f0000000040)='/sys/kernel/debug/dynamic_debug/control\x00', 0x16)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x3c8082, 0x0) (async)
dup$auto(r0) (async)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/dynamic_debug/control\x00', 0x8101, 0x0) (async)
write$auto(0x3, 0x0, 0x29a) (async)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) (async)
write$auto(r2, 0x0, 0x4) (async)
setsockopt$auto_SO_SELECT_ERR_QUEUE(r1, 0x10001, 0x2d, &(0x7f0000000040)='/sys/kernel/debug/dynamic_debug/control\x00', 0x16) (async)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) (async)

2.087516719s ago: executing program 0 (id=2071):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
mbind$auto(0x0, 0x800605, 0x1, &(0x7f0000000500)=0xffff, 0xa, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'ipvlan1\x00'})
r0 = socket(0x2, 0xa, 0xa)
sendmsg$auto_NET_SHAPER_CMD_DELETE(r0, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400020}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x20040081)
sendmmsg$auto(r0, &(0x7f0000000300)={{&(0x7f0000000140), 0x12, &(0x7f0000000280)={0x0, 0x4e}, 0x7, 0x0, 0x3, 0x1}, 0x7}, 0x8, 0x7fff)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy1/user_power\x00', 0x60a40, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x805, 0x0)
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
socket(0x1e, 0x1, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x11, 0x3, 0x9)
syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000080), 0xffffffffffffffff)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0x2, 0xd, 0x9, 0x948b, 0x8, 0x15f4da0a, 0x2, 0x3, 0x62, 0x80000005, 0xa, 0x5, 0xd, 0xfffffffffffffffd, 0xd]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x2000000000006]}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x12, 0x401, 0x8000)
r2 = open(0x0, 0x22240, 0x154)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x68182, 0x0)
writev$auto(r3, &(0x7f0000000280)={0x0, 0x45}, 0xb)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
ioctl$auto(r4, 0x40045431, r2)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff)

1.916857952s ago: executing program 4 (id=2072):
r0 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x802, 0x0)
mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f00000001c0)={0x0, 0x7}, 0x3)
socket(0x1e, 0x1, 0x0)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x48002, 0x0)
openat$auto_clk_dump_fops_(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mbind$auto(0x800, 0x3, 0x6, &(0x7f00000000c0)=0x8, 0x0, 0x19)
syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000480), 0xffffffffffffffff)
openat$nci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
r3 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f00000009c0)='/sys/kernel/tracing/uprobe_events\x00', 0x302, 0x0)
write$auto_uprobe_events_ops_trace_uprobe(r3, &(0x7f0000000a00)='\n', 0x1)
fsconfig$auto_EROFS_MOUNT_DAX_ALWAYS(r3, 0x8, 0x0, 0x0, 0x40)
prctl$auto(0x4, 0x1, 0x4, 0x5, 0x7)
sendmsg$auto(r0, 0x0, 0x1ff)
brk$auto(0x7ffffffff002)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
ioctl$auto(0xffffffffffffffff, 0x4b49, 0x9)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mknod$auto(&(0x7f0000000000)='./file0\x00', 0x7f, 0x6)
move_mount$auto(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x6)
fdatasync$auto(r0)

1.914749502s ago: executing program 2 (id=2073):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
statx$auto(0xffffffffffffffff, 0x0, 0x6d7, 0x8, 0x0)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1b0029bd7000fddbdf25030000000400080012000100000900000000000000000000000000000400028024000380080014800000ac0045ffffff16009e002f6465762f736e642f6d69646943324430000000af93024f1c42bf00248271eeca562fc055faa5d3a7111fec365e26909d5c383a8f2568357e9d148c62aa812dcafe0fdbca5e4a7d2db35956000038482b35ecc51dfce6e3184c8da64a69bde7a3099310180694a6ea37698a6f378abd2bb30c55af557e56a597d1094da2c5f889ce27e24883f94f8c"], 0x54}, 0x1, 0x0, 0x0, 0x60004892}, 0xc880)
msgrcv$auto(0x0, 0x0, 0x8, 0xffbffffffffffffc, 0x10000)
fstat$auto(0x2, 0x0)
ioctl$auto(r0, 0x4, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0005, 0x196f)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setresgid$auto(0xa05, 0x0, 0x0)
keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0x0, 0xe)
getcwd$auto(0x0, 0xfffffffeffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x8, 0x2000000000002)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(0x4, 0x0, 0xe6e)
close_range$auto(0x2, 0x8000, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45)
mlock$auto(0x112, 0x80006)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
bind$auto(r3, &(0x7f0000000180)=@sco={0x1f, @none}, 0x800)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0xffff, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)

1.213343337s ago: executing program 1 (id=2074):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bdi/1:5/min_bytes\x00', 0x88282, 0x0)
write$auto_rfkill_fops_core(r0, &(0x7f0000000100)="399a8cbdf020", 0x6)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f000000c380)={0x63, 0x0, 0xbde, 0x7fffffffefff, 0xfffffffffffffffe, 0x9702, 0x0, 0x50b301a, 0x4, 0x5f, 0x0, 0x8})
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000180)="af3006a2dbc9bd946179b725be38e4aa3b45bbe4feeb941d45699ff89f61f52bc3c471ab33ac0c012760a8477c079ecc927196728f5470742fff357ac2206a62601e6f49d5", 0x45)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01042bbd7000fcdbdf25040000000400"], 0x20}, 0x1, 0x0, 0x0, 0x24048040}, 0x10804)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
brk$auto(0xffffffffffffff66)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
mlockall$auto(0x7)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000100), 0x202, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x8000, 0x0)
setitimer$auto(0x2, &(0x7f0000000200)={{0x2, 0x5}, {0x0, 0x4}}, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0x40000000f42c, 0x2)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x123002, 0x0)
io_uring_setup$auto(0x7, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8000ffff}, 0x3)

1.209969572s ago: executing program 2 (id=2075):
sysfs$auto(0x2, 0x41, 0x0)
r0 = fsopen$auto(0x0, 0x1)
fsconfig$auto_SHMEM_HUGE_NEVER(r0, 0x3, &(0x7f0000001640)='+\x00', 0x0, 0x0)
set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x101a80, 0x0)
sendmsg$auto_NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000540)={&(0x7f0000000240)=ANY=[@ANYBLOB="040008008aaeb63efc17fde77ac22431b631db3ac5af744c9c6c364ad5a28a29d5de4048700e86db8cdef68107d1d96e3080137bab97ff8b7b07ca4b5cd524190bb5bacb48953010a968135e46d3e4ceb5a0285f4fccf7cc0132283d2a602e819ed08c62e8b894f55934900c1942954e20", @ANYRES16=0x0, @ANYBLOB="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"], 0xfc}, 0x1, 0x0, 0x0, 0xf55c594074d9f1a0}, 0x0)
socket(0x1a, 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram7\x00', 0x42743, 0x0)
socket(0x2, 0x1, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
ioctl$auto_XFS_IOC_ALLOCSP64(r0, 0x40305824, &(0x7f00000001c0)={0x7fff, 0x8, 0x7, 0x8, 0x5, <r2=>0x0})
prctl$auto(0xe, 0x5, r2, 0x4, 0x91)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x1)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa34\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\x8d\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\x9a\xb3\xee\xbd\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
connect$auto(0x3, 0x0, 0x8)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, &(0x7f0000000040)={'veth0_macvtap\x00'})
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)
r4 = socket(0x2, 0x801, 0x100)
open(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0xa0400, 0x8)
read$auto(r4, 0x0, 0x5)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)

787.564271ms ago: executing program 2 (id=2076):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x8800, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008040}, 0x40800)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, 0x0, 0x20004000)
unshare$auto(0x40000080)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x22202, 0x0)
pread64$auto(r1, 0x0, 0x0, 0x9)
read$auto_mon_fops_text_t_mon_text(r1, 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0x0, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x1dfbdb30)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg1\x00', 0x646502, 0x0)
openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/current_tracer\x00', 0x41, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
getcpu$auto(0x0, 0x0, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x630001, 0x0)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x100242, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/lapb4/ifalias\x00', 0x1a1842, 0x0)
socket(0xa, 0x1, 0x100)
ioctl$auto(0x3, 0x894b, 0xfffffffffffff4e0)

716.424215ms ago: executing program 0 (id=2077):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = epoll_create$auto(0x4)
r1 = socket(0x2, 0x5, 0x0)
socket(0x2, 0x1, 0x0)
listen$auto(0x3, 0x81)
ioctl$auto(0x3, 0x894b, 0x38)
epoll_ctl$auto(r0, 0x1, r1, 0x0)
r2 = epoll_create$auto(0x3e)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000005c0), r3)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400b70861d355b12745e40008000000", @ANYRES16=r4, @ANYBLOB="01002bbd7000fedbdf25010000000c0001800800040007000000"], 0x20}, 0x1, 0x0, 0x0, 0x20000004}, 0x10)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0)
epoll_ctl$auto(r2, 0x1, r0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x1000000000eb1, 0xfffffffffffffffa, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
open_tree$auto(0xffffffffffffff9c, &(0x7f0000001100)='./cgroup\x00', 0x1)

522.400847ms ago: executing program 0 (id=2078):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r2 = socket(0x1e, 0x1, 0x0)
syncfs$auto(r2)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_CREATE_VM(r0, 0x4004ae99, 0x0)

410.764214ms ago: executing program 4 (id=2079):
write$auto(0xffffffffffffffff, &(0x7f0000000000)='(^/&#-\x94\x00', 0x2)
r0 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000040), 0x200800, 0x0)
write$auto_rfkill_fops_core(r0, &(0x7f0000000080)="3f9b3c2bdc1df9977e47f62cccc4f33f98719de4490ae66d84174fdd4e489940bdafd6634138fbbe7b6244eabce0bf7283e1a40c050360cdcdfb1216107f2fe6c25ac67110ad0fab7b2c43aa484b5dfe6a34436f811dc0536dbf20009bda9580015f746bfb3a92b66c3282a442d3d0ca87dffd11992a04763bb6be535f5c869dbfe51fbe0de24c402bc6e1b0801c005497282c06a1b84c1d0500e5738712fe8c", 0xa0)
ioctl$auto_FIONCLEX(r0, 0x5450, 0x3e)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x4034ae28cb98427e, 0x0)
read$auto_tun_fops_tun(r1, &(0x7f0000000180)=""/61, 0x3d)
write$auto_tty_fops_tty_io(0xffffffffffffffff, &(0x7f00000001c0)="7c00b806fcbfd67239589be54a5b6f51e43e7fd183c099e19946ecc363c2bbd5207adce39d637116ab0487fa3c2fc9084e99765d3789888b0b61152d12f5f70e11a6e22894404cab07f30dcea5599fbe5777b4e67ce02b25c551ff1f3ed43846cd3fdee241ed24523242730edeffc0829baf86c7df0ae65db4f86aedd92775df275d69c371775a893f8742539c09bb3938d88db5fbaedb0c4388324ce9f52c5bbdfb20effb0316864d0d52838e04a4f3aca8aeee3b0565383d2d4f29e5eb964e65e6eb48b134f612859e6b659877dde312d3226f5805c3f83a6d9845cc03651505fc", 0xe2)
r2 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
read$auto_rng_chrdev_ops_core(r2, &(0x7f0000000300)=""/111, 0x6f)
r3 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/smaps\x00', 0x400, 0x0)
r4 = io_uring_setup$auto(0x2, &(0x7f00000003c0)={0x0, 0x4, 0x8, 0x7fffffff, 0x80, 0x3, <r5=>r3, [0x3, 0x0, 0x7ae], {0x5, 0x81, 0xcfb9, 0x7, 0xb, 0xce, 0x10000, 0x0, 0x5}, {0x5, 0x7ff, 0xfffffff7, 0x1, 0x9, 0x4, 0x2, 0x0, 0x8}})
ioctl$auto_XFS_IOC_ALLOCSP64(r5, 0x40305824, &(0x7f0000000440)={0x2, 0x7, 0x3, 0x1, 0x7, <r6=>0x0})
r7 = prctl$auto_PR_SET_VMA_ANON_NAME(0xffffff5f, 0x0, r6, 0x54b400f3, 0x7)
write$auto_proc_oom_adj_operations_base(r5, &(0x7f0000000480)="061f7125360597f6c986d221547a5063af8f4efb6c9e9bf94339edf1594837f0057efd158608c9d03c18193e04084d531b06d00946031cdf0159639a7f118407015f2ce29817ab7d535151051cac49d4852046bbe9a57327b5ba814c975e0650da03df4651d39f7535d1ff207e83e0158ea6e4ddf032f1359bcfbf3864571be2ffad053edb89071bdc97003dffacc3a58d1b8e9a666e4c0776730a95526ec0fd12b80b1c4ef0ad033a17fed08d8803d472dbafc9f7", 0xb5)
msync$auto(0xffff, 0x1ff, 0x8)
r8 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000580), 0xffffffffffffffff)
r9 = openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/kernel/debug/tracing/tracing_on\x00', 0x2, 0x0)
sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r7, &(0x7f0000002dc0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000002d80)={&(0x7f0000000600)={0x2750, r8, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_DEVKEY={0x1d5, 0x2f, 0x0, 0x1, [@generic="22307d2be3b572171da863b3806df7d8ab327a2f2156f592f9e00c1f2fa6fddf685483fba31a8cd7ffa9722a1ea9711ddc9ccc62fc71507a05322a9fdc706de6cbf8eae2dd697274e4c4", @generic="1757500a677531de", @generic="4e16315f5b45c923b64d0a40150f17e28cc716b8ea5d5f0e1239cb94b0c68819cf8db74961ee52a6bbd20b3679b332f6000e22ca1bb30c5d09e160a96246decc8bf859bc640a1cb82963fdffe5c91b02bccc99f5c396959aa9ff69b57ecd79103193b285c9199fdbd6d4cb29b430ff05b0433579f4817777bf1289fb1512ff4841d68d1e0ce073a6c98b572fafed9c7f8040fa75bacab3ae3158f4496c836fecb75dc07f1302c41aad3350d3c3becd1c", @generic="e6a23e7b987eaa33ac8f88071a5163f60ddb52aa2a2f257624ca6bbf7dcebaa66ad07e317c2ce85bbb9107a83a8687f04f7351fcfbd1952e2ddef3dbc812fc8403968a89e22bbe03119ff9d73fcb54bc8c48f6cd5e707c8cab3776aa1437213786d9aca878b3054877deb1095b1c79b87001224e648c0f4f519c7996c431e8cbbc52af426dad8bdc513a9692344f64a9a2dca0ba0dbc35c3f9c10ec3321dddfd7668aedea1d86f1fe7a458f0d1bd3d193054c9e7709e8845bb881d42afe230b43008a92f2d81ba", @typed={0x8, 0x8, 0x0, 0x0, @u32=0x9}]}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x9}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x97}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x7}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x7fffffff}, @NL802154_ATTR_SEC_KEY={0x24a7, 0x30, 0x0, 0x1, [@typed={0x14, 0xc4, 0x0, 0x0, @ipv6=@private2}, @typed={0x8, 0x144, 0x0, 0x0, @pid=0xffffffffffffffff}, @nested={0x20, 0xe8, 0x0, 0x1, [@typed={0x4, 0x1c}, @nested={0x4, 0xc4}, @nested={0x4, 0x51}, @generic="f4e82f073df940cf7891eaabad022c09"]}, @nested={0x12c, 0x113, 0x0, 0x1, [@nested={0x4, 0x61}, @nested={0x4, 0x11f}, @generic="a82cc0950d66976eb9bbad0a76f8a002b1ba33f1c4743167a2ad0cbf12484f3c59bb31d195efe3b034f7bc3a7d98d3f6048eb3d7f9a9691df5811037113c997a151f5a4feaff8cf12b6f8e9c67a8f73a964cde6c6d58866eb3ab62e9b9d33afe7897e788af64bf570a87b9ffb1df8c8099e4791571c4cff2f410b42ab83eb53bf767a7f2ac0bc1", @nested={0x4, 0xaf}, @typed={0x8, 0x10c, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="25d26979ee3edd13b1456f96e8dc049f8e11d8335ac40ba94b383adbc43ad655601ad59c997a54564656796ece2c6158de3de28fa46afe9d070f7519c2aad75e9aad11e55d53b7f828f193f33aa50e90f5dd1727156e", @generic="86503f9fb406987c5e1e33b5a3c1cc69a90db292ecd6cbb52c4ba78792614001dd9f185720f6337fd5160563aa859b", @typed={0x8, 0xf4, 0x0, 0x0, @fd=r9}]}, @generic="dbde2bc101c2ebcb5199163607ec29a31c7f2fc16f950797d1b067277689611f83a7fc63788abceff9bdd462cbe9b3fa0a8b7a1252630ce9f2e644a196d57367bd7de257de8fa943d016845a96a878cd9774f0bdee6b042d250a9a4cfb2b8a856cac9a18db5cbb032b72b6e341b4a41a88f480891d93", @generic="dc19f00a92ba67a6932e09fdd6810eac11d4b0e6cd00c4e1f3e75418081b12c973f404f36000cb0900bcbe10d8d4340d4ae8a191180fb4fb3b6b83407c74a0552673c1858b6a76354c7d6e9a5c4e3acbda7d000861b66ab650701ec387d405d2f2268b77ff234becaee0cc22fb143973e602ed907477bb9c23ecfa6e091be49b265c6a670719be7a457ea663b3cdc481b1818e5a6f2e95e59599d8cb78bb8ccd02534a27cc605a0bbe2c3b8081dd56d32a6b99f90b7844cfb89eb89ef62390e5fd4b883ac4931c17ff0c8b4964a0", @nested={0x12f, 0x10, 0x0, 0x1, [@generic="ed70f34538a17e676362c70400fe3b4a2053a6a83f3e2c9ea181d4ab8f4add773454188c3c4783c45730f9b378740c7d0434b3d5d196f4c643c0e2b79e7cee580c24ded12cfdc0f7430503ee140f3082b47779041998e246e91ecd21a7eec826e70587882ef90777c4d7df6e2bc0fa6bd15460441c02b12d59ce869035b5ae702742a971b2af54a077167b5cb7fcc12fbe3e4a25e0b342b582caf5759c2b5a62c7a276f95aafe785cb6040486ca0ad2f1727a07d9911c2b24e71d979c74845cb851e5b6a4b49239fe437311c3b973ef2482cc5a24371b818aadadc880d6238aad7835c76b45d2cea", @generic="7ea7b09f5e9e9fd0f4ed73d3dd2428a09fcd8dd8d16f2461b25ea9fb31cd6767eef8b0df83a9ee33de118a3a959d6a4ef0a81c7d6b0c90e8ae3f11ee93c5170b36ca13"]}, @nested={0x1008, 0xfc, 0x0, 0x1, [@typed={0x1004, 0x2a, 0x0, 0x0, @binary="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"}]}, @generic="31cb59dd071b85f29ffe7940efc5d45a2e2c705fcc82c401983fade8e82b8293bfbb0db717838f665f9ab4a1a8ef0864761c46f20829c84a628e1e5728c8e6df0ad9b7958810224e18910c65c6850289ddfa6eff2bd5d8705ee7960577345cbfae7f04ffd1b643ec8a9a9fc4a9a3de0a866e28705b1509ec8c07c64cf202bc610d973b8a10c40b22563c612c2b46dc0a0d53f3049937f93cd878d1b068e468f0317c2782e392f02cbdb4abb6e8d0516613e82c3a64ef62efbfa78759bea4a1", @generic="d951f2b8851095214e51a78fe07653c62fa72d3453df4836f77d0965e41353f83b2bd067a5480b78a1911deddf930fc539c572090c3cc1e421b36fb9b6388fa6f86be593cd1eedfcaa0e82b65f072af80884be3c8f8351fd40ae96f090c35965358f22a384b802b7eb1f69e91ede8789446bb0f94669c8c1ec1f2e37e7e756df38fa7485db204b2bc67bbbf067f6bd81396fb422bdd75c7e0cffea9467f4ad68a40ffeca81220efa813404fb88c79b9e89822b28dcf1929dc616f9d947e9f6e6a3f3c914b90e0eee2cfdc5015326dd2612d47a1152fc3579d4cd690531169e09df74ce61dad2ac6f601e0563f4beceac3df65b742732c2c83d3748f01d7d86dceecf64f32aaafdd95fbd135a7240b34f8359828680b36428078802653f7ea8a7c0f0c7b183e21bd0b2e81c2847106d6cbfefa4d74adcb70baaea5def7b4d74dd088b4c04d06901bae17c7ade0c79e035f2191e1e89609183d52be4957f6ea1fb78cb0b0b53752b32f4d4742eda95f0aba7af791c06c5444a8c1e78cb153a47059acbc1179fa4a0353b5fbd57daa30026580760752fd80cdf0c746f07b099c1175e418b39155cd5d5befbc5bfee96201ec87091c3cb1962bce36a60878f4882a956a005bb8e3c8b463e6f06013dbe053dd8ac1d915e1b9d2d4555c6abe05dff94bc9be49d5f6b8d41df9b526b8f0e100c090a4aa6d139b94274d8526123a23ed3ab0eac9e60b2cd628de7db26fba4ebae4c49e56edfb6b1c32552c0d0bb7fd7eed9941d8ea9d6efc55432cfdf6f4cd29bac5928c0ee5c5aed811acd8519788d95eea2829403089062c293baae568f35a1186d7aaef38f1188139f201caf3aa6b987e4d1a32f1e81e0d57cbac50bd335d1a2a6ff5eeb9bac23b0fd3958422e8e2bd778161e64113de6dca90c575f25ff81cb0dd5cd536189c1e8ab1974906a49f9923e9a2e941dd4b7ed8e2acf0fda91ca9b1d7e1abc665a168454ec558348fb55adea13167bced04ddb4c547e6516d1c714079a4c2557fd78666da7ede9949d3e374d32f8b1aa4763a901452ea19ede390470bda275bce99941c930ba5f3d77b41c08d5cbc9e0333b7679d4db29be41c855d7378990f350937886c0220ff28a8ea2165e9e7ceea4ddc1eb5314f699a6e9c254a56f8ade50c492be3701f50e56b20f7aba02929acbbb0b867ec243e825ca8b4a17aac7c5d1cd990a83d72bdc6b24717c60a458f069714627fa935c62892a12096b515793468869d8e2f944b47af5c269578341066c5e0ccc268169af9b4d1b7b4f61fa1b1de8d0399987a4d403080c1711a537541c6a3d638926ee71a03b12b05d238e26a0aae2d123aa3eb0d50995a629d18fe8994eeaf883c7eb73f4a20527061adcbf195c6b531869b9ad1b6c93d61e3af0c58d39d724c58190e9bbf64598c361d0be8954d71808f6c763b53d7a8fa9d3fe4a92a89507891e50805b3f25aecba0e42b9c17a6d6006323ab6898685b92c6c51c398e037e88fee0152f623bbfa7bdba191bea3288963471f62e6284a7f105db17202f60e529c710061b5fbc5a218c3c4cdc40945ee8a16582bbd0d938e9785d94275eb575317e7b168ab76d56ea405b0ab48fc307f7b612345063be3097142846599bbb39b75246164f274fea2a46e09cf3ed78da5240f9f64589f09e1053698a7edf7b8be8ef17da751b7586c5043548dd300a5e803960942a2720e3548c420f0776269c962f7d738278b09505146c3b0b4a4c2451c5f5799fcb1b1b456b2b19a6f50677ab788eb92ee67968a3719b798776e4f09855ecdae24d35e0c6577ea57576e202e717d0592d515af8a9663a586016fc815c0c674bd6092939c4466eb4787864fa556679f5737d9f03a7b81ec394a0fcaa6c71927e5466af6db85967017cc4eb78b638d2502f32d2424966c1c5b162f9909f890487bb37689225ea6d6f8853b968391160a74a11a810c2796bad28a0e57697417106a52dceccf4672effe8757a171bed50b81e13b7649f21f2790beb59f33bad609cc85fa10aedbce0ab58ff74f79c95281ec1d1d40748d7193b5818eaff6213cc82fee697d52b1ef49eb9245705f1dd9ceabf3d318b35ab208898714e0996dbe3f86944e20819471bd899181772a5bb7590c7ba476a7c40874902762fa0ff504c92c23afe8a0edac6b7e4c4da6e1786c68d16f4fe9204547e1f50574806ac25c8a663c3f883ca394ed4a74b0f8048487f5beedb303053a0068711e4cc7c640f1395610653be3d987dacfd6bc4c12cfc5b4d7599fe73ce8917f15554dcf46e7e9b888eaac27c1648b1536d466982aff0095fc6e0e53332091609872e2abacc5dbdc83fb26c3bd78895a53c2b1e6d747857a068e0ec758aae8049ea1bfe114b8de47e1ba3baa9697b3913a96bd182ba4bb37cfc85b9c2962908bcecec5d5c980218e4ef9a0abd7fa56b40990e8d1c7dde2a563a6c3d82158629a92e7d2b4ebb0411ed4e7d6dc8a05ef2792353aa055bddf1331fb92f0c4ef9e40fc612f269b39eb1bb1ab75857bee6cb06297d011790162ac2ad37c1c38e4423a3e7ee235aa7781bf1b436d8531f4664859576f4df362a994a1f1358fe9836755a1ef36f61463dc11f2609f6769c7fbaac7d185b77f5f2c8417cdb6ff62fd8120422e15c5c1718d73d9aaa7ac5ca4d2e8c683857c40b3fd7c9d9e8a36ce350a0126a69c8c58f163cdf68f01aa97aa1be8e82eb297f2046533045dfb614f3f54b294538d58bdf06f7ab07184ea4cff2b0fd0dd693b4491edd13b1eee504102a40eb75a3fb710cbed26eb36418dfad03999010a555976ef8a962f597abcc36ea5293e17e84255eeee4d083083931e94486111ea895463c0cbd2f0006e20dea93d7fd657d47e6b2bb7aba93c0c31cc92ea43c0e3b098fffdbbd728ceebfa12fd721241e137c642a5c9929a9450dece283e3ddc73ff414374462da2fe6c20efe40cffdf6e37f8bba1a22038f021b7145b30f0f723566141cbccd89d96d7473b623c8bc23acb85bc741848a7c7a667ed1f690f7c9fd5073e3dda5ed32993d7e19486c7ee4b13f04ead3e53a8cd16c6da53224475d7aea100d0f712abb98206d4a8029d0734e688d8f33dbb437999df3ad71a1499509f901873a536c45058b1c2de7e30552eaca0233e4a66bbe736bfc4cc27ead32de25aa61161e994e99984ae9c30d20bf3a5f22f52bc1e81562d38254cb908ebf00ebf89db58f4db1707ec3e06a8d702d1db9e0d3208bd8d2bbb04b8824a6816836000131663877404d835a46d1eb91296c97a29117c0ac0d96ab3e469b18bb32ac30fa4355b3d395e6c823730c2c115bf38db0184931b1589cae636cf1b9f351a1e9db68ac4e41bcbe0f696a2ac2d621659f19b3ce77e84032c5325a8229f13a25c34872f20332c23d3ef5c2f49978e6ec57f8ebffcf5a240aec5dc57ece01f5d990762e841e054de4d004a41b8d433bccdb304ecf2e9834b10ebced042da6e8cfc55d8057755790a78fcdccbf75c42af266101a5f78ee17bfcb56695c744b3eaaafd5410aae7f5461df4e4cedd4e917faa4b5c19df68689694312eca8528f0ce8ba7f68485b07c7cb77c678a0f5d5c7948bcbff95619666ff154db590689b47c1d203feb1343cc6b8bfc176c80f1c2464a70cc004d4ebdb582c305edf62fb367f03059b3a79b644b962e129992ef939b7d18ee9272536dbce18b167fa1d4bbaf039c9bcd57831b73baa99f644ee1e7098889b97e267e2027fdad8970f66d1112bf49ef5714104d6ffd4f40a7ca64805b68aeea40b1bad78cf2a2079a5d261b7da018f3c4ed9fe40e619eb9d947bc4e475644b915188ad07695515b7b32a0079a1e1f7ed1c580806a925c5e0b5c15053a12a8d9f05e2f2d1f62661c35cb73fc17a664aeec04caa88553de59fd6db58fc7dae9aa927453a51c0ce858071353163010bb2c432c8b11faad78d931678c5dd747649b343fd93a065be243719e98adfc09513055202a69cf11c43349996bb8611c305e8a41df2b031b40c83f57541fa4a0f0822de9e238474a316f46b00213696a1f9315c238e19173bb7adb928eef925b06f447875d6a75a91f81cf56a4b6973d00dea47ae4bed688632bd9cc657557099b901cf59a72f85d920aa83a0903da8cd86b6b51d4e9a823e1b8f2237d9f435b1cd4357deb09340f39e2ca6b72d54458a1ad86d00329bef4985dc5787cd66ce50cdf7df92446b17d2c03f7a8a4c6518ba94c66404993acbdb7f470aa7fb7617ea9c7fa237a42f0febe8555cd59d2c19735249bd1a70b575b303636dd7d1318df4dd1ec72c921f21c572a00db570fe3e325982f2cafc622e67c492c0bd6195a3d2f6a1299b8d3a30328ae4adde147d45d1b0727e411a666747869fa9e5d46535e7051096247254908001f957de8c3c9fffd0a61964288cc8878fbe47fb0c0af1160a418d63eb5990deb358a38fef8284f0af04a50fdbd5bca747898490b20c3b76cfbf1e847403ad29fdfbcdb8eabbfd7d59bed6bb35ff5cb638000c7ed71041ae69c02f6b6207fd6468b4be1b7090c6c49af5698eba7fabf25b984af1711d8e0f46f0519fb86d458940cacb75f865ee6ae7b05fc194c445ef6acfa64b9b775ab7b0050769db990fc0e6fced53acb200058ea79a50af745a30648e28be8c772da9afa123bb5b57ce605097df32bc4796d9852fa67534fb75377d26cb0e2e11df361f76dbfad0a588f3487a53111003bf3071fb831b6d846191f5e79beda08fe390c070bf29c970a44ce75c7b01e25214d0912c55d17633221601732e89418e4752c4036eca84d363551aa5360cd981803ac94d3f20045018b516cd422d6eb01897f602074cabcdf1ffdce01f4017c3d0415e74dd1135a6b8b9acf3710fb335ca06a0385df940aaa372aaa3002db56db13adfc5e4be847a43b51122dcac1596403508136a3f351410a40e5003965be5ee9bf98e9e9d8c20f47846dc9022cb69ffa86cb70a06f11a9e6699ed7037894445e06e652356035dd82a4f0833c747e263cd49e6864ae3ef67f85d0a465512d20148821ca156574ba1543da71fad988a9763d164c1ebe04cce3677f8b0177347cc74fc847b75359c81083b52214f8727ed5caf1433274b7d7049e752bc3919b90235d97e8a2fde3e23a7b054334d336f46f2ee5859e8f097f895b60f289e8780c0a1d5b6ce6b2db23a27e8db6398a17c5376dcf3e9cd5b3482a39ac3ab56aab482c80a744321b21215779f85c5f4a54cabd551f5984f65c627b9b204d1fe4b53349bacb99d858508313230f19f0c37a683bc7c6d29d0181559f70db4b2cc2f9986f03aae224615f2bc582d93e1b5a2965cbd5b171213a13949f27313957bdec8e6596742723f064dd0d666a66c4747caf3aea19ed1865e01c140de0e24a4570da6fec2b27440c98fe1c291a8fcb772a0e14838d3bb59c39cd4e11f091d171287f47f13302656af263b38051e434c8fcdff7d7a04ed560e445c670428a5ce01872d7b044964e29ba5aed5d80f1049b04763b1d6fd3ae687ad9f733e9086f094ca48cb2195ce8ee466cf76bc811d56b066b6e018b0b19f10b5a682a13bed739b61adc5725f0f5751bcc6788a36b14ce68e444238c99d0c91565ffcd31a87a746ba1d3c01a6c60f8287dc282ce08d138c93a5f89e1b832158e95d4cd867fe788db8e14d0abb8d2e2031cb6fc54fe2207c48317cf241face1306f199384dd3f87972d7bb32382948ba59f2f5e5e42248b0a8cf8791c43bb2eaa9c07b7a66d421b4f905d374855c5601a2b6"]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x6}, @NL802154_ATTR_WPAN_PHY_NAME={0xc, 0x2, '(^/&#-\x94\x00'}, @NL802154_ATTR_SEC_DEVICE={0x7c, 0x2e, 0x0, 0x1, [@nested={0x76, 0x12d, 0x0, 0x1, [@typed={0xc, 0x121, 0x0, 0x0, @u64=0x8001}, @generic="8dd5267655cd90d5ae6de29e5bf1b4e66fac7037f0edb1645576628a9448d2039e0bdf1f64231bb28fe5ce785391312802dd1b5d3d1f7a2b2d1930e280aedab29c466e6d99909e7ddbb3659325e6", @typed={0x14, 0x7, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @nested={0x4, 0xb1}]}]}, @NL802154_ATTR_SEC_ENABLED={0x5}]}, 0x2750}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
r10 = socketpair$auto(0xffff, 0x0, 0x3, &(0x7f0000002e00))
read$auto_rfcomm_sock_debugfs_fops_(r4, &(0x7f0000002e40)=""/145, 0x91)
openat2$dir(0xffffffffffffff9c, &(0x7f0000002f00)='./file0\x00', &(0x7f0000002f40)={0x400, 0x180, 0x3c}, 0x18)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000002f80)='/dev/nbd14\x00', 0x284440, 0x0)
r11 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000003000), r10)
sendmsg$auto_NL80211_CMD_LEAVE_OCB(r10, &(0x7f0000003140)={&(0x7f0000002fc0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000003100)={&(0x7f0000003040)={0xa8, r11, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_KEY_DATA={0xa, 0x7, "eba265b2b928"}, @NL80211_ATTR_SUPPORTED_SELECTORS={0x60, 0x14e, "342b98fac10a7b928cfdc804c2a63e8723008296dfbdda901f11699a9a1bfaaa8029e9283ca0d7f7fb856059cda163e9721d76f1d91454ac2f7b4a2e4d2b600c97657b16b28116af9b02a3a6a01d504adaa5291b5e9ce4bd8c1c1941"}, @NL80211_ATTR_CNTDWN_OFFS_PRESP={0x7, 0xbb, '@$R'}, @NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x6}, @NL80211_ATTR_EPCS={0x4}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x7fff}, @NL80211_ATTR_WIPHY_SELF_MANAGED_REG={0x4}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0x5}]}, 0xa8}, 0x1, 0x0, 0x0, 0x40000}, 0x8010)
ioctl$auto_TIOCMBIC2(r4, 0x5417, &(0x7f0000003180)="519cdcb281effd5cde5a47e626bc9e5a4fb472979c56f8d5680a255ca8498b0976cd17e03f0775451b8220380ba5d9c4f134733800d6d19d2ad34cce4220c8d21221f662d7d0e25f806fa97e62eb1118ba7f49fd0c0addf313439e1b9a446af9fa6943f0523f664c3b865a269e")
ioctl$auto_TCFLSH2(r5, 0x540b, &(0x7f0000003200)="9adef67227b27a8ab02112c425b9bd6046aee54aad56fe93e150474729235cec750c8b4a23c0008045a4aa1f9cabd7e5a50bafc375e037020dfe0a8ca90150745a1361")
select$auto(0x1af, &(0x7f0000003280)={[0x3fee9769, 0x7, 0x9, 0x1, 0xfffffffffffffff7, 0x19ca, 0x5, 0x0, 0x5, 0x359e, 0x1, 0x10000, 0xc0, 0x0, 0x100000000, 0xffff]}, &(0x7f0000003300)={[0x0, 0x8000, 0x9, 0x3, 0x5, 0x2f5, 0x5, 0x83fd, 0x2, 0xfc7, 0x2, 0x7fffffffffffffff, 0x674c, 0xd5d, 0x1, 0xffffffffffffffff]}, &(0x7f0000003380)={[0x7, 0x8000, 0x4, 0x865, 0x7, 0x3ff, 0xde5, 0x3, 0x10, 0x0, 0x2, 0x3, 0x6d, 0x0, 0x7, 0xd0b]}, &(0x7f0000003400)={0x1000, 0x3})
mmap$auto(0x9, 0xb4a, 0x9, 0x17, r7, 0x9)
fcntl$auto_F_SETLKW(r4, 0x7, 0x7)
sendmsg$auto_NFC_CMD_DEACTIVATE_TARGET(r5, &(0x7f00000046c0)={&(0x7f0000003440)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000004680)={&(0x7f0000004580)={0xfc, 0x0, 0x8, 0x70bd29, 0x25dfdbfc, {}, [@NFC_ATTR_RF_MODE={0x5}, @NFC_ATTR_DEVICE_NAME={0xd, 0x2, 'nl802154\x00'}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0x5}, @NFC_ATTR_SE_APDU={0xb4, 0x19, "b75849efb3247a327e9c3e2adf5dcef276cbed22a4a2c9b084bf38d269b3c59233884832c17e9d0532c73153fb037c20bf9e069175b2b553445093d04ac62274dd9249d350f3859fca2a69a00d248ede62d04b89db538ecfe24527ee492faa89b7bde1fd617a7a8ec0889328613d15d7d042c5379998f95d316b52f605b5d854407b8be16ea77f653835a3defefd39e3ec32eb17cf2c09d929c11c3e08311b7f459050bdf45c489a45c97ec209754739"}, @NFC_ATTR_LLC_SDP={0x14, 0x13, 0x0, 0x1, [@nested={0x10, 0x76, 0x0, 0x1, [@nested={0x4, 0xf7}, @typed={0x8, 0x68, 0x0, 0x0, @uid}]}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0xc085}, 0x800)

153.600831ms ago: executing program 4 (id=2080):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = prctl$auto(0x3b, 0x2, 0x0, 0x4, 0x0)
splice$auto(r1, &(0x7f0000000000)=0x3, 0xffffffffffffffff, 0x0, 0xc, 0x20400)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/can/rcvlist_eff\x00', 0xb00, 0x0)
pread64$auto(r2, 0x0, 0x594c, 0x9fffffffd)
r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80582, 0x0)
socket(0xa, 0x3, 0x3b)
openat$auto_fops_u32_ro_(0xffffffffffffff9c, &(0x7f0000000640)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/bpf_offloaded_id\x00', 0x20082, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC0\x00', 0x2000, 0x0)
r5 = openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x800, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r7 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0xe6e43, 0x0)
keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e)
ioctl$auto_BLKFLSBUF(r7, 0x1261, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, 0x0, 0x101500, 0x0)
r8 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0)
io_uring_setup$auto(0x7, &(0x7f0000000180)={0x2, 0x6, 0xe9f, 0x9, 0x7, 0x2, <r9=>r4, [0x0, 0x0, 0x4], {0x4, 0x7, 0x1ff, 0x400, 0x9, 0x76d, 0x5, 0x6, 0x184b48b6}, {0xfffeffff, 0x34e9, 0xfffffff8, 0x6, 0x5, 0x9, 0x3, 0x4, 0xf}})
sendfile$auto(r6, r8, 0x0, 0x1)
read$auto(r5, 0x0, 0x6)
r10 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder1\x00', 0x0, 0x0)
r11 = dup$auto(r10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001780)='/sys/kernel/mm/hugepages/hugepages-1048576kB/demote\x00', 0xa901, 0x0)
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r11, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, 0x0, 0x2, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_WIPHY_COVERAGE_CLASS={0x5, 0x59, 0xa6}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x100}, @NL80211_ATTR_FILS_ERP_USERNAME={0x7, 0xf9, "9ca7c8"}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040000}, 0x40004)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000380)={[0x202, 0x9, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x5e, 0x80000001, 0x7, 0x4, 0xc, 0x2, 0xfffffffffffffffe]}, 0x0)
ioctl$auto_BINDER_THREAD_EXIT(r9, 0x40046208, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="1b0026bd7000fddbdf250300000004000800080007800400128012000100898771f1c19f17790485908286dd000004000280104ec9771c66"], 0x38}, 0x1, 0x0, 0x0, 0x50}, 0xc800)

149.683578ms ago: executing program 0 (id=2081):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x8040, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x403c6f2b, 0x0)
close_range$auto(0x0, r0, 0x4000000000002)
eventfd$auto(0x8e)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = socket(0xa, 0x3, 0x3b)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, r2, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mlock$auto(0x401, 0x439)
sendmmsg$auto(0x3, 0x0, 0x40, 0x100)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r3 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/tracing/set_event\x00', 0x20002, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x9)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
close_range$auto(r3, r4, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0xda)
r6 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
pread64$auto(r6, 0x0, 0x800003, 0x270)
r7 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ttyt5\x00', 0x20102, 0x0)
write$auto_console_fops_tty_io(r7, &(0x7f0000000440)="671d264add69b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763ac8caf4b9b", 0x23)
setrlimit$auto(0x8, 0x0)
mlockall$auto(0x7)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)

55.57864ms ago: executing program 1 (id=2082):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0xe3, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x2, 0x0, 0x400}, 0x4}, 0xfff, 0xb07e)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, 0x0, 0x810)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000340)='/proc/thread-self/loginuid\x00', 0x109000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)={0x14, 0x0, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x8044)
read$auto(0x3, 0x0, 0xf34)
writev$auto(r1, &(0x7f0000000080)={0x0, 0x7114}, 0x5)
mmap$auto(0x955, 0xffff, 0xdf, 0x4000009b75, r0, 0x8000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x2d0280, 0x0)
readv$auto(r2, &(0x7f00000000c0)={0x0, 0x3}, 0x7)
socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0)
socket(0xa, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000000)=@can, 0x6a)
r3 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000200), 0xe0080, 0x0)
ioctl$auto_I2C_RDWR(r3, 0x707, 0x0)
socket(0x3, 0x3, 0x0)
openat$auto_generic(0xffffffffffffff9c, 0x0, 0x80300, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)

0s ago: executing program 2 (id=2083):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0xa, 0x5, 0x84)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r2=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="2f21000e4f86f1ac4ef71168cc2cbd7000fc", @ANYRES32=r2], 0x1c}}, 0x4000000)
sendto$auto(r0, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)

kernel console output (not intermixed with test programs):

1][ T9893] netlink: 8 bytes leftover after parsing attributes in process `syz.2.831'.
[  341.468667][ T9901] netlink: 28 bytes leftover after parsing attributes in process `syz.1.832'.
[  344.557826][ T9938] netlink: 8 bytes leftover after parsing attributes in process `syz.3.841'.
[  344.949489][ T9942] netlink: 8 bytes leftover after parsing attributes in process `syz.0.842'.
[  348.957247][ T9985] sg_write: data in/out 808464636/87 bytes for SCSI command 0x0-- guessing data in;
[  348.957247][ T9985]    program syz.1.849 not setting count and/or reply_len properly
[  349.003227][ T9977] openvswitch: netlink: Message has 4 unknown bytes.
[  350.329384][T10005] FAULT_INJECTION: forcing a failure.
[  350.329384][T10005] name failslab, interval 1, probability 0, space 0, times 0
[  350.377709][T10005] CPU: 0 UID: 0 PID: 10005 Comm: syz.1.857 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  350.377759][T10005] Tainted: [U]=USER
[  350.377769][T10005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  350.377785][T10005] Call Trace:
[  350.377795][T10005]  <TASK>
[  350.377807][T10005]  dump_stack_lvl+0x16c/0x1f0
[  350.377845][T10005]  should_fail_ex+0x512/0x640
[  350.377877][T10005]  ? __kmalloc_cache_noprof+0x5f/0x780
[  350.377928][T10005]  should_failslab+0xc2/0x120
[  350.377970][T10005]  __kmalloc_cache_noprof+0x72/0x780
[  350.378018][T10005]  ? lockdep_hardirqs_on+0x7c/0x110
[  350.378050][T10005]  ? sctp_endpoint_new+0xfc/0xb20
[  350.378094][T10005]  ? sctp_endpoint_new+0xfc/0xb20
[  350.378128][T10005]  sctp_endpoint_new+0xfc/0xb20
[  350.378168][T10005]  ? __pfx_sctp_endpoint_new+0x10/0x10
[  350.378206][T10005]  ? lockdep_init_map_type+0x5c/0x280
[  350.378252][T10005]  ? lockdep_init_map_type+0x5c/0x280
[  350.378302][T10005]  sctp_init_sock+0xe2b/0x12f0
[  350.378336][T10005]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[  350.378370][T10005]  sctp_v6_init_sock+0x16/0x70
[  350.378402][T10005]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[  350.378436][T10005]  inet6_create+0xb30/0x12b0
[  350.378474][T10005]  ? inet6_create+0x7f/0x12b0
[  350.378515][T10005]  __sock_create+0x335/0x8d0
[  350.378568][T10005]  __sys_socket+0x14d/0x260
[  350.378624][T10005]  ? __pfx___sys_socket+0x10/0x10
[  350.378672][T10005]  ? syscall_user_dispatch+0x78/0x140
[  350.378732][T10005]  __x64_sys_socket+0x72/0xb0
[  350.378774][T10005]  do_syscall_64+0xcd/0xfa0
[  350.378806][T10005]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.378834][T10005] RIP: 0033:0x7faf5b98eec9
[  350.378858][T10005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  350.378883][T10005] RSP: 002b:00007faf5c766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  350.378911][T10005] RAX: ffffffffffffffda RBX: 00007faf5bbe5fa0 RCX: 00007faf5b98eec9
[  350.378930][T10005] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000000a
[  350.378946][T10005] RBP: 00007faf5ba11f91 R08: 0000000000000000 R09: 0000000000000000
[  350.378962][T10005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  350.378978][T10005] R13: 00007faf5bbe6038 R14: 00007faf5bbe5fa0 R15: 00007ffc5407f4e8
[  350.379016][T10005]  </TASK>
[  353.653546][T10073] openvswitch: netlink: Message has 4 unknown bytes.
[  354.362265][T10081] netlink: 132 bytes leftover after parsing attributes in process `syz.0.876'.
[  354.644635][T10102] netlink: 342 bytes leftover after parsing attributes in process `syz.0.879'.
[  355.380623][T10116] netlink: 330 bytes leftover after parsing attributes in process `syz.2.880'.
[  356.166230][T10136] netlink: 'syz.1.885': attribute type 11 has an invalid length.
[  357.294278][T10136] debugfs: '!PjEùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' already exists in 'ieee80211'
[  357.926166][T10160] tipc: Trying to set illegal importance in message
[  358.666302][T10141] Process accounting resumed
[  360.112652][T10195] block nbd9: NBD_DISCONNECT
[  361.759079][T10215] binder: 10201:10215 ioctl 400c620e 0 returned -22
[  363.048404][T10236] netlink: 8 bytes leftover after parsing attributes in process `syz.0.905'.
[  363.976538][T10251] netlink: 4 bytes leftover after parsing attributes in process `syz.1.909'.
[  366.045643][ T6084] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:10: bg 2: bad block bitmap checksum
[  366.064973][ T6084] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1361 with max blocks 7 with error 74
[  366.079643][ T6084] EXT4-fs (sda1): This should not happen!! Data will be lost
[  366.079643][ T6084] 
[  367.563875][T10289] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.2.913: bg 1: bad block bitmap checksum
[  367.626706][T10289] EXT4-fs error (device sda1) in ext4_mb_clear_bb:6667: Filesystem failed CRC
[  369.537115][   T30] audit: type=1800 audit(4294971643.951:9): pid=10317 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.919" name="features" dev="configfs" ino=28723 res=0 errno=0
[  370.471505][   T30] audit: type=1800 audit(4294971644.886:10): pid=10329 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.922" name="dbroot" dev="configfs" ino=28741 res=0 errno=0
[  371.691074][T10334] netlink: 19 bytes leftover after parsing attributes in process `syz.1.924'.
[  371.736210][T10336] openvswitch: netlink: Message has 4 unknown bytes.
[  373.066856][T10356] FAULT_INJECTION: forcing a failure.
[  373.066856][T10356] name fail_futex, interval 1, probability 0, space 0, times 0
[  373.116465][T10356] CPU: 1 UID: 0 PID: 10356 Comm: syz.1.928 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  373.116520][T10356] Tainted: [U]=USER
[  373.116530][T10356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  373.116548][T10356] Call Trace:
[  373.116560][T10356]  <TASK>
[  373.116572][T10356]  dump_stack_lvl+0x16c/0x1f0
[  373.116612][T10356]  should_fail_ex+0x512/0x640
[  373.116656][T10356]  get_futex_key+0x1d0/0x1560
[  373.116703][T10356]  ? __pfx_get_futex_key+0x10/0x10
[  373.116759][T10356]  futex_wake+0xea/0x530
[  373.116802][T10356]  ? rcu_is_watching+0x12/0xc0
[  373.116832][T10356]  ? __pfx_futex_wake+0x10/0x10
[  373.116876][T10356]  ? kmem_cache_free+0x2d4/0x6c0
[  373.116904][T10356]  ? putname+0x154/0x1a0
[  373.116949][T10356]  do_futex+0x1e3/0x350
[  373.116990][T10356]  ? __pfx_do_futex+0x10/0x10
[  373.117050][T10356]  __x64_sys_futex+0x1e0/0x4c0
[  373.117096][T10356]  ? __x64_sys_openat+0x174/0x210
[  373.117143][T10356]  ? __pfx___x64_sys_futex+0x10/0x10
[  373.117202][T10356]  do_syscall_64+0xcd/0xfa0
[  373.117240][T10356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.117271][T10356] RIP: 0033:0x7faf5b98eec9
[  373.117296][T10356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.117323][T10356] RSP: 002b:00007faf5c7450e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  373.117364][T10356] RAX: ffffffffffffffda RBX: 00007faf5bbe6098 RCX: 00007faf5b98eec9
[  373.117384][T10356] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007faf5bbe609c
[  373.117403][T10356] RBP: 00007faf5bbe6090 R08: 00007faf5c767000 R09: 0000000000000000
[  373.117421][T10356] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[  373.117440][T10356] R13: 00007faf5bbe6128 R14: 00007ffc5407f400 R15: 00007ffc5407f4e8
[  373.117481][T10356]  </TASK>
[  374.502931][T10372] __vm_enough_memory: pid: 10372, comm: syz.3.931, bytes: 4398046511104 not enough memory for the allocation
[  376.251172][T10402] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.937: iget: checksum invalid
[  376.385687][T10402] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  376.584754][T10402] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.937: iget: checksum invalid
[  376.700849][T10402] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  376.737700][T10402] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.937: iget: checksum invalid
[  376.754147][T10402] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  376.796130][T10402] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.3.937: iget: checksum invalid
[  376.873907][T10402] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  376.891492][T10402] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  376.908680][T10402] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  378.752326][T10436] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  378.753779][T10436] Unable to find swap-space signature
[  380.119786][T10453] ICMPv6: process `syz.0.950' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead
[  380.535399][T10462] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.1.951: bg 4: bad block bitmap checksum
[  380.584084][T10462] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1 with max blocks 1 with error 74
[  380.624202][T10462] EXT4-fs (sda1): This should not happen!! Data will be lost
[  380.624202][T10462] 
[  382.537196][T10489] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12
[  383.125122][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  383.131693][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  383.181919][T10492] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13
[  383.224189][T10497] netlink: 28 bytes leftover after parsing attributes in process `syz.0.959'.
[  383.455749][T10497] bond0: (slave bond_slave_0): Releasing backup interface
[  384.000849][T10506] netlink: 'syz.1.961': attribute type 1 has an invalid length.
[  384.098670][T10504] netlink: set zone limit has 8 unknown bytes
[  385.400074][T10527] FAULT_INJECTION: forcing a failure.
[  385.400074][T10527] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  385.463397][T10527] CPU: 0 UID: 0 PID: 10527 Comm: syz.1.965 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  385.463446][T10527] Tainted: [U]=USER
[  385.463456][T10527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  385.463474][T10527] Call Trace:
[  385.463484][T10527]  <TASK>
[  385.463496][T10527]  dump_stack_lvl+0x16c/0x1f0
[  385.463534][T10527]  should_fail_ex+0x512/0x640
[  385.463576][T10527]  strncpy_from_user+0x3b/0x2e0
[  385.463614][T10527]  getname_flags.part.0+0x8f/0x550
[  385.463673][T10527]  getname_flags+0x93/0xf0
[  385.463703][T10527]  do_sys_openat2+0xb8/0x1d0
[  385.463746][T10527]  ? __pfx_do_sys_openat2+0x10/0x10
[  385.463792][T10527]  ? __sys_sendmsg+0x18c/0x220
[  385.463835][T10527]  __x64_sys_openat+0x174/0x210
[  385.463880][T10527]  ? __pfx___x64_sys_openat+0x10/0x10
[  385.463940][T10527]  do_syscall_64+0xcd/0xfa0
[  385.463975][T10527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.464006][T10527] RIP: 0033:0x7faf5b98eec9
[  385.464030][T10527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  385.464058][T10527] RSP: 002b:00007faf5c766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  385.464087][T10527] RAX: ffffffffffffffda RBX: 00007faf5bbe5fa0 RCX: 00007faf5b98eec9
[  385.464107][T10527] RDX: 0000000000063102 RSI: 0000200000000440 RDI: ffffffffffffff9c
[  385.464127][T10527] RBP: 00007faf5ba11f91 R08: 0000000000000000 R09: 0000000000000000
[  385.464145][T10527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  385.464163][T10527] R13: 00007faf5bbe6038 R14: 00007faf5bbe5fa0 R15: 00007ffc5407f4e8
[  385.464205][T10527]  </TASK>
[  387.242774][T10543] kexec: Could not allocate control_code_buffer
[  387.383572][T10557] __vm_enough_memory: pid: 10557, comm: syz.1.971, bytes: 4398046511104 not enough memory for the allocation
[  388.857710][T10556] Process accounting paused
[  389.787029][T10596] zswap: compressor  not available
[  392.357412][T10622] netlink: 28 bytes leftover after parsing attributes in process `syz.2.986'.
[  393.288517][T10639] netlink: 28 bytes leftover after parsing attributes in process `syz.2.990'.
[  393.376919][T10640] input: JL­§'$d)K‘ßžïL�ÜÈìÆoÝ1oN½‰0«´À»Ã¸"ön¶$­cawRÀ=æX as /devices/virtual/input/input14
[  395.048097][T10675] openvswitch: netlink: Message has 4 unknown bytes.
[  395.927399][T10693] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1004'.
[  396.445345][T10702] random: crng reseeded on system resumption
[  398.198546][T10736] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 904 with max blocks 13 with error 117
[  398.223761][T10736] EXT4-fs (sda1): This should not happen!! Data will be lost
[  398.223761][T10736] 
[  398.289589][T10738] bridge0: port 3(gretap0) entered blocking state
[  398.299626][T10738] bridge0: port 3(gretap0) entered disabled state
[  398.332665][T10738] gretap0: entered allmulticast mode
[  398.358779][T10738] gretap0: entered promiscuous mode
[  398.369549][T10738] bridge0: port 3(gretap0) entered blocking state
[  398.376184][T10738] bridge0: port 3(gretap0) entered forwarding state
[  399.417410][T10756] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1018'.
[  401.795551][T10792] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1025'.
[  401.915098][T10801] openvswitch: netlink: Message has 4 unknown bytes.
[  403.224463][T10835] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15
[  403.980883][ T5832] Bluetooth: hci2: unexpected event 0x36 length: 123 > 7
[  403.980999][ T5832] Bluetooth: hci2: unexpected event 0x36 length: 123 > 7
[  406.136512][T10871] netlink: 'syz.3.1040': attribute type 1 has an invalid length.
[  406.668189][ T5832] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  407.343577][T10882] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.0.1044: Error -117 reading block bitmap for 4
[  407.389272][T10883] EXT4-fs (sda1): Delayed block allocation failed for inode 2026 at logical offset 9 with max blocks 2 with error 117
[  407.405675][T10881] openvswitch: netlink: Message has 4 unknown bytes.
[  407.419614][T10883] EXT4-fs (sda1): This should not happen!! Data will be lost
[  407.419614][T10883] 
[  407.589320][T10893] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  407.596384][T10893] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  408.735013][ T5832] Bluetooth: hci1: unexpected event 0x3e length: 508 > 260
[  408.735047][ T5832] Bluetooth: hci1: unexpected subevent 0x02 length: 507 > 260
[  408.751332][ T5832] Bluetooth: hci1: Dropping invalid advertising data
[  408.759497][ T5832] Bluetooth: hci1: Dropping invalid advertising data
[  408.766877][ T5832] Bluetooth: hci1: Malformed LE Event: 0x02
[  409.725075][T10932] openvswitch: netlink: Message has 4 unknown bytes.
[  409.869673][T10937] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1057'.
[  410.518015][T10954] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1059'.
[  410.595841][T10959] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1061'.
[  412.583514][T11015] sctp: [Deprecated]: syz.2.1070 (pid 11015) Use of int in maxseg socket option.
[  412.583514][T11015] Use struct sctp_assoc_value instead
[  412.766581][T11015] netlink: 'syz.2.1070': attribute type 1 has an invalid length.
[  413.342238][T11039] tipc: Started in network mode
[  413.443085][T11039] tipc: Node identity ee00, cluster identity 4711
[  413.450120][T11039] tipc: Node number set to 60928
[  414.058329][T11055] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1078'.
[  414.446758][T11055] bond0: (slave bond_slave_0): Releasing backup interface
[  414.774758][T11067] openvswitch: netlink: Invalid MD length 0 for MD type 0
[  415.214236][T11080] i2c i2c-0: new_device: Invalid device name
[  415.359866][T11084] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1085'.
[  415.542025][T11084] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  415.875071][T11090] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1086'.
[  416.628480][T11116] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1093'.
[  416.774475][T11127] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1095'.
[  417.973878][T11152] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1099'.
[  418.651461][T11164] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1101'.
[  418.685579][T11164] IPv6: NLM_F_CREATE should be specified when creating new route
[  418.709818][T11164] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  418.717503][T11164] IPv6: NLM_F_CREATE should be set when creating new route
[  418.724944][T11164] IPv6: NLM_F_CREATE should be set when creating new route
[  419.498151][T11171] Process accounting resumed
[  421.208567][T11212] mkiss: ax0: crc mode is auto.
[  421.806584][T11230] ICMPv6: process `syz.0.1119' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  423.108352][T11243] openvswitch: netlink: Key type 178 is out of range max 32
[  427.163704][T11302] openvswitch: netlink: Message has 4 unknown bytes.
[  428.601304][T11320] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1139'.
[  428.748192][T11320] ovs_ÿþ: entered promiscuous mode
[  429.743159][T11331] openvswitch: netlink: Message has 4 unknown bytes.
[  430.420224][T11341] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1142'.
[  431.219751][T11373] openvswitch: netlink: Message has 4 unknown bytes.
[  431.335005][T11380] Invalid ELF header magic: != ELF
[  433.101452][T11416] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1162'.
[  434.664134][T11459] netlink: 'syz.2.1170': attribute type 11 has an invalid length.
[  434.686963][T11459] netlink: 'syz.2.1170': attribute type 11 has an invalid length.
[  434.714140][T11459] netlink: 'syz.2.1170': attribute type 11 has an invalid length.
[  434.782059][T11459] netlink: 'syz.2.1170': attribute type 11 has an invalid length.
[  435.063671][T11453] netlink: 'syz.2.1170': attribute type 11 has an invalid length.
[  435.072320][T11453] netlink: 'syz.2.1170': attribute type 11 has an invalid length.
[  435.081140][T11453] netlink: 'syz.2.1170': attribute type 11 has an invalid length.
[  435.089176][T11453] netlink: 'syz.2.1170': attribute type 11 has an invalid length.
[  435.591488][T11470] bridge0: port 4(bond0) entered blocking state
[  435.616455][T11470] bridge0: port 4(bond0) entered disabled state
[  435.651943][ T5832] Bluetooth: hci1: ISO packet too small
[  435.652494][T11470] bond0: entered allmulticast mode
[  435.676527][T11470] bond_slave_1: entered allmulticast mode
[  435.687597][T11470] bond0: entered promiscuous mode
[  435.692687][T11470] bond_slave_1: entered promiscuous mode
[  435.699642][T11470] bridge0: port 4(bond0) entered blocking state
[  435.706063][T11470] bridge0: port 4(bond0) entered forwarding state
[  435.969922][T11485] netlink: 346 bytes leftover after parsing attributes in process `syz.1.1174'.
[  436.031617][T11488] openvswitch: netlink: Message has 4 unknown bytes.
[  437.614808][ T5832] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  437.614850][ T5832] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  437.632449][ T5832] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  438.326972][ T5832] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  438.334475][ T5832] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  438.350198][ T5832] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  438.350235][ T5832] Bluetooth: hci1: adv larger than maximum supported
[  438.357752][ T5832] Bluetooth: hci1: Malformed LE Event: 0x0d
[  438.705960][T11522] netlink: 'syz.3.1185': attribute type 21 has an invalid length.
[  438.714145][T11522] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1185'.
[  438.764513][T11523] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬	Up†µÌ¢{´¼V]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhî
é”'
[  438.881091][T11527] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  439.923488][T11549] vhci_hcd: invalid port number 255
[  439.969741][T11549] vhci_hcd: default hub control req: 5903 v0001 i00ff l1
[  440.037224][T11551] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1190'.
[  440.157275][T11551] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.1190: iget: checksum invalid
[  440.186614][T11551] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  440.198899][T11551] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.1190: iget: checksum invalid
[  440.215859][T11551] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  440.288238][T11551] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.1190: iget: checksum invalid
[  440.324078][T11551] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  440.337037][T11551] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.1.1190: iget: checksum invalid
[  440.362455][T11551] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  440.392435][T11551] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  440.425010][T11551] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  441.993636][T11595] tipc: Started in network mode
[  442.024262][T11595] tipc: Node identity ee00, cluster identity 4711
[  442.077912][T11585] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  442.092386][T11595] tipc: Node number set to 60928
[  442.560091][T11602] netlink: 322 bytes leftover after parsing attributes in process `syz.1.1201'.
[  444.238270][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  444.244965][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  444.479076][T11648] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1214'.
[  445.659453][T11666] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1219'.
[  445.833306][T11666] vivid-007: =================  START STATUS  =================
[  445.841352][T11666] vivid-007: Generate PTS: true
[  445.848542][T11666] vivid-007: Generate SCR: true
[  445.882860][T11666] tpg source WxH: 320x240 (Y'CbCr)
[  445.908698][T11666] tpg field: 1
[  445.920425][T11666] tpg crop: (0,0)/320x240
[  445.928319][T11666] tpg compose: (0,0)/320x240
[  445.947866][T11666] tpg colorspace: 8
[  445.963399][T11666] tpg transfer function: 0/0
[  445.980672][T11666] tpg Y'CbCr encoding: 0/0
[  446.000716][T11666] tpg quantization: 0/0
[  446.007370][T11666] tpg RGB range: 0/2
[  446.022816][T11666] vivid-007: ==================  END STATUS  ==================
[  447.824586][T11702] can: request_module (can-proto-3) failed.
[  448.339397][T11714] ima: policy update failed
[  448.348742][   T30] audit: type=1802 audit(4294967347.843:11): pid=11714 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1229" res=0 errno=0
[  449.681503][T11737] nbd: illegal input index 65536
[  449.780628][T11737] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1234'.
[  449.800393][T11737] openvswitch: netlink: Flow key attr not present in new flow.
[  449.819415][T11723] Process accounting paused
[  451.437840][T11765] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1240'.
[  451.866075][T11783] openvswitch: netlink: Message has 4 unknown bytes.
[  452.506638][T11798] futex_wake_op: syz.2.1247 tries to shift op by -2048; fix this program
[  454.270673][T11832] Invalid ELF header magic: != ELF
[  456.702349][T11881] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1266'.
[  457.282387][T11896] openvswitch: netlink: Message has 4 unknown bytes.
[  458.418144][T11917] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1277'.
[  458.879419][T11927] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1280'.
[  459.266613][T11934] openvswitch: netlink: Message has 4 unknown bytes.
[  461.516045][T11975] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1287'.
[  462.449205][T12001] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1290'.
[  463.022529][T12010] random: crng reseeded on system resumption
[  464.640943][T12031] ecryptfs_miscdev_write: Error while inspecting packet size
[  467.006967][T12081] FAULT_INJECTION: forcing a failure.
[  467.006967][T12081] name fail_futex, interval 1, probability 0, space 0, times 0
[  467.035095][T12083] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1308'.
[  467.044589][T12081] CPU: 0 UID: 0 PID: 12081 Comm: syz.1.1307 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  467.044620][T12081] Tainted: [U]=USER
[  467.044626][T12081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  467.044636][T12081] Call Trace:
[  467.044643][T12081]  <TASK>
[  467.044650][T12081]  dump_stack_lvl+0x16c/0x1f0
[  467.044677][T12081]  should_fail_ex+0x512/0x640
[  467.044703][T12081]  get_futex_key+0x1d0/0x1560
[  467.044730][T12081]  ? __pfx_get_futex_key+0x10/0x10
[  467.044761][T12081]  futex_wake+0xea/0x530
[  467.044792][T12081]  ? __pfx_futex_wake+0x10/0x10
[  467.044823][T12081]  ? kasan_quarantine_put+0x10a/0x240
[  467.044844][T12081]  ? lockdep_hardirqs_on+0x7c/0x110
[  467.044868][T12081]  do_futex+0x1e3/0x350
[  467.044895][T12081]  ? __pfx_do_futex+0x10/0x10
[  467.044920][T12081]  ? __do_sys_getcwd+0x4d1/0x930
[  467.044944][T12081]  ? __do_sys_getcwd+0x4d6/0x930
[  467.044965][T12081]  ? find_held_lock+0x2b/0x80
[  467.044987][T12081]  __x64_sys_futex+0x1e0/0x4c0
[  467.045014][T12081]  ? __do_sys_close_range+0x278/0x730
[  467.045034][T12081]  ? __pfx___x64_sys_futex+0x10/0x10
[  467.045059][T12081]  ? xfd_validate_state+0x61/0x180
[  467.045084][T12081]  ? __pfx___do_sys_close_range+0x10/0x10
[  467.045110][T12081]  do_syscall_64+0xcd/0xfa0
[  467.045131][T12081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.045149][T12081] RIP: 0033:0x7faf5b98eec9
[  467.045165][T12081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.045182][T12081] RSP: 002b:00007faf5c7660e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  467.045200][T12081] RAX: ffffffffffffffda RBX: 00007faf5bbe5fa8 RCX: 00007faf5b98eec9
[  467.045211][T12081] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007faf5bbe5fac
[  467.045222][T12081] RBP: 00007faf5bbe5fa0 R08: 00007faf5c767000 R09: 0000000000000000
[  467.045232][T12081] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  467.045242][T12081] R13: 00007faf5bbe6038 R14: 00007ffc5407f400 R15: 00007ffc5407f4e8
[  467.045265][T12081]  </TASK>
[  468.049865][T12094] netlink: 'syz.1.1311': attribute type 2 has an invalid length.
[  468.098724][T12094] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1311'.
[  470.713245][T12157] openvswitch: netlink: Message has 4 unknown bytes.
[  471.194711][T12176] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  471.212826][T12176] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  471.221668][T12176] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  471.232009][T12176] page_type: f5(slab)
[  471.306135][T12176] raw: 00fff00000000040 ffff88813ffb03c0 dead000000000122 0000000000000000
[  471.333837][T12176] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[  471.461720][T12176] head: 00fff00000000040 ffff88813ffb03c0 dead000000000122 0000000000000000
[  471.485445][T12176] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[  471.495887][T12176] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  471.506036][T12176] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  471.516170][T12176] page dumped because: unmovable page
[  471.523782][T12176] page_owner tracks the page as allocated
[  471.532514][T12176] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5825, tgid 5825 (syz-executor), ts 95087337041, free_ts 80802729637
[  471.556454][T12176]  post_alloc_hook+0x1c0/0x230
[  471.561525][T12176]  get_page_from_freelist+0x10a3/0x3a30
[  471.567489][T12176]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  471.573677][T12176]  alloc_pages_mpol+0x1fb/0x550
[  471.578776][T12176]  new_slab+0x24a/0x360
[  471.583086][T12176]  ___slab_alloc+0xdc4/0x1ae0
[  471.587896][T12176]  __slab_alloc.constprop.0+0x63/0x110
[  471.595091][T12176]  __kmalloc_noprof+0x501/0x880
[  471.601676][T12176]  __register_sysctl_table+0xb3/0x1900
[  471.607450][T12176]  __devinet_sysctl_register+0x1b9/0x360
[  471.619033][T12176]  devinet_sysctl_register+0x17b/0x200
[  471.720886][T12176]  inetdev_init+0x2b8/0x5a0
[  471.905667][T12176]  inetdev_event+0xc5f/0x18a0
[  471.911014][T12176]  notifier_call_chain+0xbc/0x410
[  471.916228][T12176]  call_netdevice_notifiers_info+0xbe/0x140
[  471.922873][T12176]  register_netdevice+0x182e/0x2270
[  471.929000][T12176] page last free pid 5736 tgid 5736 stack trace:
[  471.936671][T12176]  __free_frozen_pages+0x7df/0x1160
[  471.946743][T12176]  __put_partials+0x130/0x170
[  471.952324][T12176]  qlist_free_all+0x4d/0x120
[  471.977356][T12176]  kasan_quarantine_reduce+0x195/0x1e0
[  471.987862][T12176]  __kasan_slab_alloc+0x69/0x90
[  471.993570][T12176]  kmem_cache_alloc_noprof+0x250/0x6e0
[  472.002104][T12176]  getname_flags.part.0+0x4c/0x550
[  472.007300][T12176]  getname_flags+0x93/0xf0
[  472.012555][T12176]  vfs_fstatat+0xe1/0xf0
[  472.016880][T12176]  __do_sys_newfstatat+0x97/0x120
[  472.022791][T12176]  do_syscall_64+0xcd/0xfa0
[  472.027370][T12176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.038398][T12174] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  472.044621][T12174] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  472.058592][T12174] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  472.064630][T12174] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  472.084027][T12174] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  472.617091][T12213] openvswitch: netlink: Message has 4 unknown bytes.
[  473.284194][ T5832] Bluetooth: hci0: command 0x0406 tx timeout
[  474.077628][   T53] Bluetooth: hci1: command 0x0406 tx timeout
[  474.083882][   T53] Bluetooth: hci2: command 0x0c1a tx timeout
[  474.090096][ T5832] Bluetooth: hci3: command 0x0406 tx timeout
[  474.262127][T12248] vhci_hcd: invalid port number 12
[  474.278386][T12248] vhci_hcd: invalid port number 12
[  476.147069][ T5832] Bluetooth: hci3: command 0x0406 tx timeout
[  478.546707][T12327] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[12327]
[  478.988096][T12334] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1363'.
[  479.484284][T12344] tipc: Started in network mode
[  479.490340][T12344] tipc: Node identity 45e5412, cluster identity 4711
[  479.497034][T12344] tipc: Node number set to 73290770
[  479.756234][T12351] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1364'.
[  480.709772][T12348] Process accounting resumed
[  481.101629][T12362] FAULT_INJECTION: forcing a failure.
[  481.101629][T12362] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  481.170621][T12362] CPU: 1 UID: 0 PID: 12362 Comm: syz.1.1369 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  481.170672][T12362] Tainted: [U]=USER
[  481.170682][T12362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  481.170699][T12362] Call Trace:
[  481.170709][T12362]  <TASK>
[  481.170721][T12362]  dump_stack_lvl+0x16c/0x1f0
[  481.170760][T12362]  should_fail_ex+0x512/0x640
[  481.170802][T12362]  _copy_from_user+0x2e/0xd0
[  481.170843][T12362]  restore_altstack+0x93/0x170
[  481.170888][T12362]  ? __pfx_restore_altstack+0x10/0x10
[  481.170933][T12362]  ? _raw_spin_unlock_irq+0x23/0x50
[  481.170962][T12362]  ? lockdep_hardirqs_on+0x7c/0x110
[  481.170996][T12362]  ? _raw_spin_unlock_irq+0x2e/0x50
[  481.171023][T12362]  ? set_current_blocked+0xdd/0x120
[  481.171077][T12362]  __do_sys_rt_sigreturn+0x1ab/0x2c0
[  481.171118][T12362]  ? __pfx___do_sys_rt_sigreturn+0x10/0x10
[  481.171170][T12362]  do_syscall_64+0xcd/0xfa0
[  481.171206][T12362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.171237][T12362] RIP: 0033:0x7faf5b92af79
[  481.171260][T12362] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  481.171290][T12362] RSP: 002b:00007faf5c765a80 EFLAGS: 00000246 ORIG_RAX: 000000000000000f
[  481.171321][T12362] RAX: ffffffffffffffda RBX: 00007faf5bbe5fa0 RCX: 00007faf5b92af79
[  481.171341][T12362] RDX: 00007faf5c765a80 RSI: 00007faf5c765bb0 RDI: 0000000000000011
[  481.171360][T12362] RBP: 00007faf5ba11f91 R08: 0000000000000000 R09: 0000000000000000
[  481.171377][T12362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  481.171395][T12362] R13: 00007faf5bbe6038 R14: 00007faf5bbe5fa0 R15: 00007ffc5407f4e8
[  481.171436][T12362]  </TASK>
[  482.314924][T12382] svc: failed to register nfsdv3 RPC service (errno 111).
[  482.329210][T12382] svc: failed to register nfsaclv3 RPC service (errno 111).
[  483.233397][T12394] openvswitch: netlink: IP tunnel dst address not specified
[  483.631400][T12400] openvswitch: netlink: Message has 4 unknown bytes.
[  484.272386][T12397] Process accounting resumed
[  484.603022][T12410] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1383'.
[  485.106180][T12415] random: crng reseeded on system resumption
[  485.381396][T12419] netlink: 5 bytes leftover after parsing attributes in process `syz.2.1384'.
[  487.041418][T12439] openvswitch: netlink: Message has 4 unknown bytes.
[  489.356064][T12457] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137
[  489.404508][T12457] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138
[  489.470056][T12457] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum
[  490.002402][   T50] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1361 with max blocks 7 with error 117
[  490.028405][   T50] EXT4-fs (sda1): This should not happen!! Data will be lost
[  490.028405][   T50] 
[  490.198798][   T53] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  490.208502][   T53] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  490.216994][   T53] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  490.224973][   T53] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  490.236334][   T53] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  490.404630][   T50] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1361 with max blocks 1 with error 117
[  490.433407][   T50] EXT4-fs (sda1): This should not happen!! Data will be lost
[  490.433407][   T50] 
[  490.452831][   T50] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1355 with max blocks 6 with error 117
[  490.472515][   T50] EXT4-fs (sda1): This should not happen!! Data will be lost
[  490.472515][   T50] 
[  490.929022][T12472] delete_channel: no stack
[  491.492613][T12465] chnl_net:caif_netlink_parms(): no params data found
[  491.723119][T12482] openvswitch: netlink: Message has 4 unknown bytes.
[  492.225347][T12465] bridge0: port 1(bridge_slave_0) entered blocking state
[  492.303099][   T53] Bluetooth: hci4: command tx timeout
[  492.328405][T12465] bridge0: port 1(bridge_slave_0) entered disabled state
[  492.384058][T12465] bridge_slave_0: entered allmulticast mode
[  492.431192][T12465] bridge_slave_0: entered promiscuous mode
[  492.492953][T12465] bridge0: port 2(bridge_slave_1) entered blocking state
[  492.500242][T12465] bridge0: port 2(bridge_slave_1) entered disabled state
[  492.552209][T12465] bridge_slave_1: entered allmulticast mode
[  492.591507][T12465] bridge_slave_1: entered promiscuous mode
[  492.985956][T12465] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  493.032473][T12465] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  494.050969][T12465] team0: Port device team_slave_0 added
[  494.372031][   T53] Bluetooth: hci4: command tx timeout
[  494.878401][T12465] team0: Port device team_slave_1 added
[  495.123989][T12465] batman_adv: batadv0: Adding interface: batadv_slave_0
[  495.144416][T12465] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  495.270737][T12465] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  495.372615][T12465] batman_adv: batadv0: Adding interface: batadv_slave_1
[  495.391581][T12465] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  495.490968][T12465] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  496.120862][T12465] hsr_slave_0: entered promiscuous mode
[  496.193982][T12465] hsr_slave_1: entered promiscuous mode
[  496.200658][T12465] debugfs: 'hsr0' already exists in 'hsr'
[  496.217022][T12465] Cannot create hsr debugfs directory
[  496.448537][   T53] Bluetooth: hci4: command tx timeout
[  496.937799][T12465] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  497.014354][T12465] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  497.082826][T12465] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  497.183056][T12465] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  497.534238][T12540] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1410'.
[  497.563897][T12540] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1410'.
[  497.603854][T12540] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1410'.
[  497.752008][T12465] 8021q: adding VLAN 0 to HW filter on device bond0
[  498.264301][T12465] 8021q: adding VLAN 0 to HW filter on device team0
[  498.513192][   T53] Bluetooth: hci4: command tx timeout
[  498.599154][ T9130] bridge0: port 1(bridge_slave_0) entered blocking state
[  498.606435][ T9130] bridge0: port 1(bridge_slave_0) entered forwarding state
[  498.751504][ T9130] bridge0: port 2(bridge_slave_1) entered blocking state
[  498.758781][ T9130] bridge0: port 2(bridge_slave_1) entered forwarding state
[  499.548068][T12465] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  499.603198][T12465] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  500.913843][T12465] 8021q: adding VLAN 0 to HW filter on device batadv0
[  501.735977][T12620] FAULT_INJECTION: forcing a failure.
[  501.735977][T12620] name failslab, interval 1, probability 0, space 0, times 0
[  501.779078][T12620] CPU: 1 UID: 0 PID: 12620 Comm: syz.1.1421 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  501.779129][T12620] Tainted: [U]=USER
[  501.779147][T12620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  501.779166][T12620] Call Trace:
[  501.779176][T12620]  <TASK>
[  501.779189][T12620]  dump_stack_lvl+0x16c/0x1f0
[  501.779227][T12620]  should_fail_ex+0x512/0x640
[  501.779262][T12620]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  501.779297][T12620]  should_failslab+0xc2/0x120
[  501.779337][T12620]  kmem_cache_alloc_noprof+0x75/0x6e0
[  501.779367][T12620]  ? sk_prot_alloc+0x60/0x2a0
[  501.779415][T12620]  ? sk_prot_alloc+0x60/0x2a0
[  501.779453][T12620]  sk_prot_alloc+0x60/0x2a0
[  501.779497][T12620]  sk_alloc+0x36/0xc20
[  501.779530][T12620]  tipc_sk_create+0xce/0x22a0
[  501.779587][T12620]  ? find_held_lock+0x2b/0x80
[  501.779619][T12620]  ? __sock_create+0x2f2/0x8d0
[  501.779669][T12620]  __sock_create+0x335/0x8d0
[  501.779720][T12620]  __sys_socket+0x14d/0x260
[  501.779765][T12620]  ? __pfx___sys_socket+0x10/0x10
[  501.779810][T12620]  ? xfd_validate_state+0x61/0x180
[  501.779861][T12620]  __x64_sys_socket+0x72/0xb0
[  501.779903][T12620]  ? lockdep_hardirqs_on+0x7c/0x110
[  501.779934][T12620]  do_syscall_64+0xcd/0xfa0
[  501.779968][T12620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  501.780000][T12620] RIP: 0033:0x7faf5b98eec9
[  501.780023][T12620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  501.780052][T12620] RSP: 002b:00007faf5c766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  501.780081][T12620] RAX: ffffffffffffffda RBX: 00007faf5bbe5fa0 RCX: 00007faf5b98eec9
[  501.780101][T12620] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000001e
[  501.780118][T12620] RBP: 00007faf5ba11f91 R08: 0000000000000000 R09: 0000000000000000
[  501.780145][T12620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  501.780162][T12620] R13: 00007faf5bbe6038 R14: 00007faf5bbe5fa0 R15: 00007ffc5407f4e8
[  501.780204][T12620]  </TASK>
[  502.255212][T12465] veth0_vlan: entered promiscuous mode
[  502.299181][T12465] veth1_vlan: entered promiscuous mode
[  502.473098][T12465] veth0_macvtap: entered promiscuous mode
[  502.502877][T12465] veth1_macvtap: entered promiscuous mode
[  502.575899][T12465] batman_adv: batadv0: Interface activated: batadv_slave_0
[  502.638769][T12465] batman_adv: batadv0: Interface activated: batadv_slave_1
[  502.686184][ T9130] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  502.729317][ T9130] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  502.738205][ T9130] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  502.798669][ T9130] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  503.516131][ T9130] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  503.549571][ T9130] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  503.764167][ T6521] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  503.772041][ T6521] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  505.044696][   T53] Bluetooth: hci4: SCO packet too small
[  505.159373][T12661] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1429'.
[  505.385121][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  505.396946][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  510.356616][T12744] netlink: zone id is out of range
[  510.371748][T12744] netlink: del zone limit has 4 unknown bytes
[  510.446952][T12744] netlink: 'syz.0.1448': attribute type 4 has an invalid length.
[  510.526898][T12744] netlink: 13 bytes leftover after parsing attributes in process `syz.0.1448'.
[  511.260718][T12756] FAULT_INJECTION: forcing a failure.
[  511.260718][T12756] name failslab, interval 1, probability 0, space 0, times 0
[  511.278489][T12756] CPU: 1 UID: 0 PID: 12756 Comm: syz.1.1449 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  511.278535][T12756] Tainted: [U]=USER
[  511.278545][T12756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  511.278561][T12756] Call Trace:
[  511.278571][T12756]  <TASK>
[  511.278583][T12756]  dump_stack_lvl+0x16c/0x1f0
[  511.278620][T12756]  should_fail_ex+0x512/0x640
[  511.278655][T12756]  ? __kvmalloc_node_noprof+0x12e/0x9c0
[  511.278694][T12756]  should_failslab+0xc2/0x120
[  511.278733][T12756]  __kvmalloc_node_noprof+0x141/0x9c0
[  511.278770][T12756]  ? traverse.part.0.constprop.0+0x397/0x650
[  511.278826][T12756]  ? traverse.part.0.constprop.0+0x397/0x650
[  511.278869][T12756]  traverse.part.0.constprop.0+0x397/0x650
[  511.278928][T12756]  seq_read_iter+0x93c/0x12d0
[  511.278990][T12756]  seq_read+0x3a3/0x570
[  511.279035][T12756]  ? __pfx_seq_read+0x10/0x10
[  511.279086][T12756]  ? get_pid_task+0xfc/0x250
[  511.279142][T12756]  ? __pfx_seq_read+0x10/0x10
[  511.279186][T12756]  proc_reg_read+0x240/0x330
[  511.279223][T12756]  ? __pfx_proc_reg_read+0x10/0x10
[  511.279263][T12756]  vfs_read+0x1e1/0xcf0
[  511.279303][T12756]  ? __pfx_vfs_read+0x10/0x10
[  511.279330][T12756]  ? find_held_lock+0x2b/0x80
[  511.279363][T12756]  ? __fget_files+0x204/0x3c0
[  511.279399][T12756]  ? __fget_files+0x20e/0x3c0
[  511.279424][T12756]  ? __fget_files+0x1a0/0x3c0
[  511.279471][T12756]  __x64_sys_pread64+0x1eb/0x250
[  511.279506][T12756]  ? __pfx___x64_sys_pread64+0x10/0x10
[  511.279553][T12756]  do_syscall_64+0xcd/0xfa0
[  511.279589][T12756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  511.279619][T12756] RIP: 0033:0x7faf5b98eec9
[  511.279643][T12756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  511.279671][T12756] RSP: 002b:00007faf59bd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  511.279700][T12756] RAX: ffffffffffffffda RBX: 00007faf5bbe6270 RCX: 00007faf5b98eec9
[  511.279719][T12756] RDX: 0000200000000003 RSI: 0000000000000000 RDI: 0000000000000007
[  511.279737][T12756] RBP: 00007faf59bd5090 R08: 0000000000000000 R09: 0000000000000000
[  511.279754][T12756] R10: 000000002f4a3a23 R11: 0000000000000246 R12: 0000000000000001
[  511.279771][T12756] R13: 00007faf5bbe6308 R14: 00007faf5bbe6270 R15: 00007ffc5407f4e8
[  511.279813][T12756]  </TASK>
[  513.188266][T12760] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1450'.
[  513.496620][T12760] bridge0: port 3(gretap0) entered disabled state
[  513.507477][T12760] gretap0: refused to change device tx_queue_len
[  514.909650][T12770] Process accounting paused
[  515.882224][T12819] FAULT_INJECTION: forcing a failure.
[  515.882224][T12819] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  515.900112][T12819] CPU: 1 UID: 0 PID: 12819 Comm: syz.1.1459 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  515.900159][T12819] Tainted: [U]=USER
[  515.900170][T12819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  515.900187][T12819] Call Trace:
[  515.900197][T12819]  <TASK>
[  515.900209][T12819]  dump_stack_lvl+0x16c/0x1f0
[  515.900256][T12819]  should_fail_ex+0x512/0x640
[  515.900298][T12819]  _copy_to_user+0x32/0xd0
[  515.900338][T12819]  simple_read_from_buffer+0xcb/0x170
[  515.900388][T12819]  proc_fail_nth_read+0x197/0x240
[  515.900422][T12819]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  515.900456][T12819]  ? rw_verify_area+0xcf/0x6c0
[  515.900500][T12819]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  515.900531][T12819]  vfs_read+0x1e1/0xcf0
[  515.900567][T12819]  ? __pfx___mutex_lock+0x10/0x10
[  515.900601][T12819]  ? __pfx_vfs_read+0x10/0x10
[  515.900642][T12819]  ? __fget_files+0x20e/0x3c0
[  515.900683][T12819]  ksys_read+0x12a/0x250
[  515.900712][T12819]  ? __pfx_ksys_read+0x10/0x10
[  515.900754][T12819]  do_syscall_64+0xcd/0xfa0
[  515.900790][T12819]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.900820][T12819] RIP: 0033:0x7faf5b98d8dc
[  515.900843][T12819] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  515.900872][T12819] RSP: 002b:00007faf59bd5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  515.900900][T12819] RAX: ffffffffffffffda RBX: 00007faf5bbe6270 RCX: 00007faf5b98d8dc
[  515.900920][T12819] RDX: 000000000000000f RSI: 00007faf59bd50a0 RDI: 0000000000000008
[  515.900937][T12819] RBP: 00007faf59bd5090 R08: 0000000000000000 R09: 0000000000000000
[  515.900954][T12819] R10: 000000002f4a3a23 R11: 0000000000000246 R12: 0000000000000001
[  515.900971][T12819] R13: 00007faf5bbe6308 R14: 00007faf5bbe6270 R15: 00007ffc5407f4e8
[  515.901013][T12819]  </TASK>
[  516.371155][T12822] HfR: entered promiscuous mode
[  516.381521][T12822] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1461'.
[  516.391961][T12822] HfR: left promiscuous mode
[  517.043797][   T30] audit: type=1800 audit(4294975154.020:12): pid=12847 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1467" name="dbroot" dev="configfs" ino=43513 res=0 errno=0
[  517.328756][T12842] FAULT_INJECTION: forcing a failure.
[  517.328756][T12842] name failslab, interval 1, probability 0, space 0, times 0
[  517.344978][T12842] CPU: 1 UID: 0 PID: 12842 Comm: syz.4.1465 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  517.345026][T12842] Tainted: [U]=USER
[  517.345036][T12842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  517.345051][T12842] Call Trace:
[  517.345061][T12842]  <TASK>
[  517.345071][T12842]  dump_stack_lvl+0x16c/0x1f0
[  517.345112][T12842]  should_fail_ex+0x512/0x640
[  517.345162][T12842]  ? __kmalloc_cache_noprof+0x5f/0x780
[  517.345214][T12842]  should_failslab+0xc2/0x120
[  517.345253][T12842]  __kmalloc_cache_noprof+0x72/0x780
[  517.345300][T12842]  ? virtual_ncidev_open+0x49/0x220
[  517.345351][T12842]  ? virtual_ncidev_open+0x49/0x220
[  517.345392][T12842]  virtual_ncidev_open+0x49/0x220
[  517.345435][T12842]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  517.345477][T12842]  misc_open+0x26d/0x450
[  517.345513][T12842]  ? __pfx_misc_open+0x10/0x10
[  517.345546][T12842]  chrdev_open+0x231/0x6a0
[  517.345582][T12842]  ? __pfx_apparmor_file_open+0x10/0x10
[  517.345621][T12842]  ? __pfx_chrdev_open+0x10/0x10
[  517.345657][T12842]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  517.345692][T12842]  do_dentry_open+0x97f/0x1530
[  517.345720][T12842]  ? __pfx_chrdev_open+0x10/0x10
[  517.345762][T12842]  vfs_open+0x82/0x3f0
[  517.345807][T12842]  path_openat+0x1de4/0x2cb0
[  517.345854][T12842]  ? __pfx_path_openat+0x10/0x10
[  517.345898][T12842]  do_filp_open+0x20b/0x470
[  517.345932][T12842]  ? __pfx_do_filp_open+0x10/0x10
[  517.345994][T12842]  ? alloc_fd+0x471/0x7d0
[  517.346032][T12842]  do_sys_openat2+0x11b/0x1d0
[  517.346075][T12842]  ? __pfx_do_sys_openat2+0x10/0x10
[  517.346120][T12842]  ? kmem_cache_free+0x2d4/0x6c0
[  517.346170][T12842]  __x64_sys_openat+0x174/0x210
[  517.346214][T12842]  ? __pfx___x64_sys_openat+0x10/0x10
[  517.346272][T12842]  do_syscall_64+0xcd/0xfa0
[  517.346307][T12842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  517.346336][T12842] RIP: 0033:0x7fa134b8eec9
[  517.346361][T12842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  517.346388][T12842] RSP: 002b:00007fa135aa3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  517.346414][T12842] RAX: ffffffffffffffda RBX: 00007fa134de6090 RCX: 00007fa134b8eec9
[  517.346434][T12842] RDX: 0000000000000002 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  517.346452][T12842] RBP: 00007fa134c11f91 R08: 0000000000000000 R09: 0000000000000000
[  517.346470][T12842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  517.346487][T12842] R13: 00007fa134de6128 R14: 00007fa134de6090 R15: 00007ffd8758fda8
[  517.346529][T12842]  </TASK>
[  519.335585][T12895] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16
[  519.719030][T12908] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1478'.
[  519.880208][T12906] netlink: 'syz.1.1477': attribute type 9 has an invalid length.
[  519.904170][T12906] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1477'.
[  520.049043][T12915] input: f¬
 as /devices/virtual/input/input17
[  520.098870][T12916] FAULT_INJECTION: forcing a failure.
[  520.098870][T12916] name failslab, interval 1, probability 0, space 0, times 0
[  520.169572][T12916] CPU: 0 UID: 0 PID: 12916 Comm: syz.0.1481 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  520.169625][T12916] Tainted: [U]=USER
[  520.169637][T12916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  520.169655][T12916] Call Trace:
[  520.169665][T12916]  <TASK>
[  520.169679][T12916]  dump_stack_lvl+0x16c/0x1f0
[  520.169720][T12916]  should_fail_ex+0x512/0x640
[  520.169755][T12916]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  520.169792][T12916]  should_failslab+0xc2/0x120
[  520.169832][T12916]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  520.169866][T12916]  ? shmem_alloc_inode+0x25/0x50
[  520.169911][T12916]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  520.169947][T12916]  ? shmem_alloc_inode+0x25/0x50
[  520.169983][T12916]  shmem_alloc_inode+0x25/0x50
[  520.170018][T12916]  alloc_inode+0x64/0x240
[  520.170059][T12916]  new_inode+0x22/0x1c0
[  520.170095][T12916]  ? trace_cap_capable+0x18d/0x200
[  520.170149][T12916]  shmem_get_inode+0x19a/0xfb0
[  520.170193][T12916]  ? __vm_enough_memory+0x184/0x3f0
[  520.170237][T12916]  __shmem_file_setup+0x279/0x330
[  520.170289][T12916]  shmem_zero_setup+0x93/0x1a0
[  520.170324][T12916]  __mmap_region+0x2076/0x27a0
[  520.170361][T12916]  ? __pfx___mmap_region+0x10/0x10
[  520.170387][T12916]  ? lock_acquire+0x179/0x350
[  520.170437][T12916]  ? find_held_lock+0x2b/0x80
[  520.170469][T12916]  ? finish_task_switch.isra.0+0x21c/0xc10
[  520.170504][T12916]  ? rcu_is_watching+0x12/0xc0
[  520.170536][T12916]  ? finish_task_switch.isra.0+0x221/0xc10
[  520.170578][T12916]  ? trace_sched_exit_tp+0xd1/0x120
[  520.170626][T12916]  ? __schedule+0x11a3/0x5de0
[  520.170730][T12916]  ? trace_cap_capable+0x18d/0x200
[  520.170784][T12916]  mmap_region+0x1ab/0x3f0
[  520.170814][T12916]  ? __get_unmapped_area+0x267/0x440
[  520.170857][T12916]  do_mmap+0xa3e/0x1210
[  520.170903][T12916]  ? __pfx_do_mmap+0x10/0x10
[  520.170942][T12916]  ? __pfx_down_write_killable+0x10/0x10
[  520.171011][T12916]  vm_mmap_pgoff+0x29e/0x470
[  520.171058][T12916]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  520.171093][T12916]  ? ktime_get+0x1a7/0x310
[  520.171151][T12916]  ? __x64_sys_futex+0x1e0/0x4c0
[  520.171191][T12916]  ? __x64_sys_futex+0x1e9/0x4c0
[  520.171240][T12916]  ksys_mmap_pgoff+0x7d/0x5c0
[  520.171276][T12916]  ? xfd_validate_state+0x61/0x180
[  520.171317][T12916]  ? preempt_schedule_notrace_thunk+0x16/0x30
[  520.171363][T12916]  __x64_sys_mmap+0x125/0x190
[  520.171413][T12916]  do_syscall_64+0xcd/0xfa0
[  520.171450][T12916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  520.171480][T12916] RIP: 0033:0x7f0f38b8eec9
[  520.171504][T12916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  520.171534][T12916] RSP: 002b:00007f0f39ad8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  520.171565][T12916] RAX: ffffffffffffffda RBX: 00007f0f38de6090 RCX: 00007f0f38b8eec9
[  520.171585][T12916] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  520.171603][T12916] RBP: 00007f0f38c11f91 R08: fffffffffffffffa R09: 0000000000008000
[  520.171622][T12916] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  520.171640][T12916] R13: 00007f0f38de6128 R14: 00007f0f38de6090 R15: 00007fffad893ad8
[  520.171683][T12916]  </TASK>
[  520.562175][ T6528] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1355 with max blocks 1 with error 117
[  520.581624][ T6528] EXT4-fs (sda1): This should not happen!! Data will be lost
[  520.581624][ T6528] 
[  520.697151][T12916] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1481'.
[  521.183411][T12929] ima: policy update failed
[  521.253905][   T30] audit: type=1802 audit(4294975158.262:13): pid=12929 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.1483" res=0 errno=0
[  522.470389][T12961] HfR: entered promiscuous mode
[  522.622880][T12965] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1491'.
[  523.671576][T12986] zswap: compressor 000 not available
[  523.895054][T12999] nfs: Unknown parameter 'w¾Ã`_…à‚ûÏI+;ýá�	ÑöHYø º†»·«ÏLuõ>>ËÕuh�*àéC<+°ðÀÛ'
[  524.120184][T13003] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18
[  524.426427][T13009] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  526.512032][T13053] FAULT_INJECTION: forcing a failure.
[  526.512032][T13053] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  526.534310][T13053] CPU: 1 UID: 0 PID: 13053 Comm: syz.1.1512 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  526.534358][T13053] Tainted: [U]=USER
[  526.534367][T13053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  526.534384][T13053] Call Trace:
[  526.534394][T13053]  <TASK>
[  526.534405][T13053]  dump_stack_lvl+0x16c/0x1f0
[  526.534438][T13053]  should_fail_ex+0x512/0x640
[  526.534472][T13053]  _copy_from_user+0x2e/0xd0
[  526.534503][T13053]  move_addr_to_kernel+0x65/0x170
[  526.534541][T13053]  __sys_sendto+0x1be/0x520
[  526.534566][T13053]  ? __pfx___sys_sendto+0x10/0x10
[  526.534620][T13053]  ? ksys_write+0x1ac/0x250
[  526.534648][T13053]  ? __pfx_ksys_write+0x10/0x10
[  526.534682][T13053]  __x64_sys_sendto+0xe0/0x1c0
[  526.534706][T13053]  ? do_syscall_64+0x91/0xfa0
[  526.534731][T13053]  ? lockdep_hardirqs_on+0x7c/0x110
[  526.534756][T13053]  do_syscall_64+0xcd/0xfa0
[  526.534783][T13053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.534807][T13053] RIP: 0033:0x7faf5b98eec9
[  526.534826][T13053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  526.534849][T13053] RSP: 002b:00007faf5c766038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  526.534873][T13053] RAX: ffffffffffffffda RBX: 00007faf5bbe5fa0 RCX: 00007faf5b98eec9
[  526.534888][T13053] RDX: 0000000000000401 RSI: 0000000000000000 RDI: 0000000000000003
[  526.534902][T13053] RBP: 00007faf5c766090 R08: 0000200000000000 R09: 000000000000001c
[  526.534917][T13053] R10: 000000000000ffff R11: 0000000000000246 R12: 0000000000000001
[  526.534931][T13053] R13: 00007faf5bbe6038 R14: 00007faf5bbe5fa0 R15: 00007ffc5407f4e8
[  526.534963][T13053]  </TASK>
[  526.958417][T13042] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  527.097112][T13042] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  527.115786][T13042] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  527.166404][T13042] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  527.313200][T13042] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  527.343249][T13042] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  527.706768][T13071] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000
[  527.717279][T13071] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  527.734525][T13071] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000
[  527.755972][T13071] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  527.765465][T13071] page dumped because: unmovable page
[  527.771426][T13071] page_owner info is not present (never set?)
[  528.540974][T13068] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  528.547780][T13068] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  528.554335][T13068] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  528.563181][T13068] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  528.764467][T13101] zswap: compressor È®9Q›¾z%;0*l� H`Bkãjë™wj§Ó³<85Åè'.Y[«`ÿÛ2ÑY$¼`ÔYvÚgÖ´óqÊ"b%…zËN[O	EiF¸iü
»(ShÀ„3Kxá>Ô��RS=óþkHÑÉŸƒÆÿ{è?BýÌò½ÑbŠëÞ�4)�>øªÚ not available
[  529.029942][   T30] audit: type=1400 audit(4294975166.072:14): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=13102 comm="syz.0.1525"
[  529.898868][T13126] sg_write: data in/out 1685414155/2147479500 bytes for SCSI command 0x8d-- guessing data in;
[  529.898868][T13126]    program syz.1.1527 not setting count and/or reply_len properly
[  530.391804][ T6528] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  530.504191][ T5832] Bluetooth: hci0: command 0x0406 tx timeout
[  530.591260][ T5832] Bluetooth: hci4: command 0x0c1a tx timeout
[  530.597515][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout
[  530.603784][ T5832] Bluetooth: hci1: command 0x0406 tx timeout
[  530.755424][ T6528] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  531.217681][ T6528] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  531.396887][ T6528] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  531.859363][ T6528] bridge_slave_1: left allmulticast mode
[  531.865416][ T6528] bridge_slave_1: left promiscuous mode
[  531.909405][ T6528] bridge0: port 2(bridge_slave_1) entered disabled state
[  531.984541][ T6528] bridge_slave_0: left allmulticast mode
[  532.012339][ T6528] bridge_slave_0: left promiscuous mode
[  532.033805][ T6528] bridge0: port 1(bridge_slave_0) entered disabled state
[  532.653919][ T5832] Bluetooth: hci4: command 0x0c1a tx timeout
[  533.059671][T13147] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1349 with max blocks 6 with error 117
[  533.073412][T13147] EXT4-fs (sda1): This should not happen!! Data will be lost
[  533.073412][T13147] 
[  534.520996][ T6528] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  534.542577][ T6528] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  534.565594][ T6528] bond0 (unregistering): Released all slaves
[  534.591398][T13172] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1537: iget: checksum invalid
[  534.635823][T13172] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  534.692597][ T6528] HfR: left promiscuous mode
[  534.714536][T13172] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1537: iget: checksum invalid
[  534.722335][ T5832] Bluetooth: hci4: command 0x0c1a tx timeout
[  534.747223][T13172] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  534.797668][T13172] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1537: iget: checksum invalid
[  534.883744][ T6528] tipc: Left network mode
[  534.893010][T13172] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  534.941360][T13172] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.0.1537: iget: checksum invalid
[  534.962355][T13193] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1542'.
[  535.015649][T13172] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  535.136915][T13172] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  535.179843][T13172] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  535.294144][T13193] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  535.350313][T13193] batman_adv: batadv0: Removing interface: batadv_slave_0
[  535.422180][T13193] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  535.433085][T13193] batman_adv: batadv0: Removing interface: batadv_slave_1
[  535.612264][   T30] audit: type=1800 audit(4294975172.686:15): pid=13206 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1544" name="lu_gp_id" dev="configfs" ino=46219 res=0 errno=0
[  535.771010][ T6528] hsr_slave_0: left promiscuous mode
[  535.801243][ T6528] hsr_slave_1: left promiscuous mode
[  535.860809][ T6528] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  535.887561][ T6528] batman_adv: batadv0: Removing interface: batadv_slave_0
[  535.910128][ T6528] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  535.928498][ T6528] batman_adv: batadv0: Removing interface: batadv_slave_1
[  536.143399][ T6528] veth1_macvtap: left promiscuous mode
[  536.191469][ T6528] veth0_macvtap: left promiscuous mode
[  536.258004][ T6528] veth1_vlan: left promiscuous mode
[  536.263607][ T6528] veth0_vlan: left promiscuous mode
[  537.708569][ T6528] team0 (unregistering): Port device team_slave_1 removed
[  537.786710][ T6528] team0 (unregistering): Port device team_slave_0 removed
[  538.341516][T13235] erspan0: entered allmulticast mode
[  538.386150][T13236] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.4.1547: iget: checksum invalid
[  538.432492][T13236] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  538.448185][T13236] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.4.1547: iget: checksum invalid
[  538.461054][T13236] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  538.480596][T13236] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.4.1547: iget: checksum invalid
[  538.493004][T13236] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  538.509990][T13236] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.4.1547: iget: checksum invalid
[  538.527403][T13236] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  538.538694][T13236] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  538.549747][T13236] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  539.037604][T13260] bond0: invalid ARP target specified
[  540.426213][T13303] openvswitch: netlink: Message has 4 unknown bytes.
[  541.386800][T13328] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  543.198265][   T30] audit: type=1806 audit(4294975180.316:16): xattr="" res=-22
[  544.905073][T13389] Process accounting resumed
[  545.268737][T13398] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1581'.
[  545.318304][T13398] geneve1: entered promiscuous mode
[  545.323626][T13398] geneve1: entered allmulticast mode
[  545.352177][T13399] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1581'.
[  545.488890][T13405] openvswitch: netlink: Message has 4 unknown bytes.
[  549.217770][T13466] openvswitch: netlink: Message has 4 unknown bytes.
[  549.897096][T13478] openvswitch: netlink: Tunnel attr 11875 out of range max 16
[  550.761198][T13500] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1604'.
[  551.996770][T13500] kexec: Could not allocate control_code_buffer
[  552.573871][T13541] openvswitch: netlink: Message has 4 unknown bytes.
[  554.997067][T13601] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1620: iget: checksum invalid
[  555.040552][T13593] Process accounting resumed
[  555.104910][T13601] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  555.184366][T13601] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1620: iget: checksum invalid
[  555.245938][T13601] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  555.333196][T13601] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1620: iget: checksum invalid
[  555.396507][T13601] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  555.432791][T13601] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.1620: iget: checksum invalid
[  555.485441][T13601] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  555.502843][T13601] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  555.517289][T13601] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  557.534184][T13643] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1632'.
[  557.583855][T13643] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1632'.
[  557.597294][T13643] netlink: 306 bytes leftover after parsing attributes in process `syz.2.1632'.
[  557.676211][T13646] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1633'.
[  557.736445][T13649] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1634'.
[  558.552474][T13661] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19
[  559.530518][T13690] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1641'.
[  559.950719][T13695] svc: failed to register nfsdv3 RPC service (errno 111).
[  559.963754][T13695] svc: failed to register nfsaclv3 RPC service (errno 111).
[  561.499668][T13732] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20
[  561.656708][T13739] sd 0:0:1:0: PR command failed: 1026
[  561.678409][T13739] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  561.709541][T13739] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  562.995338][T13767] random: crng reseeded on system resumption
[  565.453168][T13805] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  566.168745][ T5832] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  566.489823][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  566.496938][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  567.587631][T13868] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1671'.
[  569.349108][T13886] FAULT_INJECTION: forcing a failure.
[  569.349108][T13886] name fail_futex, interval 1, probability 0, space 0, times 0
[  569.402246][T13886] CPU: 0 UID: 0 PID: 13886 Comm: syz.1.1674 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  569.402299][T13886] Tainted: [U]=USER
[  569.402310][T13886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  569.402328][T13886] Call Trace:
[  569.402348][T13886]  <TASK>
[  569.402361][T13886]  dump_stack_lvl+0x16c/0x1f0
[  569.402402][T13886]  should_fail_ex+0x512/0x640
[  569.402446][T13886]  get_futex_key+0x1d0/0x1560
[  569.402489][T13886]  ? mlock_folio_batch+0x684/0x4190
[  569.402521][T13886]  ? __pfx_get_futex_key+0x10/0x10
[  569.402560][T13886]  ? mlock_drain_local+0x22d/0x4f0
[  569.402603][T13886]  futex_wake+0xea/0x530
[  569.402657][T13886]  ? __pfx_futex_wake+0x10/0x10
[  569.402701][T13886]  ? __pfx_apply_vma_lock_flags+0x10/0x10
[  569.402738][T13886]  ? __mm_populate+0x299/0x380
[  569.402789][T13886]  do_futex+0x1e3/0x350
[  569.402832][T13886]  ? __pfx_do_futex+0x10/0x10
[  569.402874][T13886]  ? do_mlock+0x38e/0x800
[  569.402909][T13886]  __x64_sys_futex+0x1e0/0x4c0
[  569.402953][T13886]  ? fput+0x9b/0xd0
[  569.402993][T13886]  ? __pfx___x64_sys_futex+0x10/0x10
[  569.403035][T13886]  ? xfd_validate_state+0x61/0x180
[  569.403077][T13886]  ? __pfx_ksys_write+0x10/0x10
[  569.403119][T13886]  do_syscall_64+0xcd/0xfa0
[  569.403157][T13886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  569.403188][T13886] RIP: 0033:0x7faf5b98eec9
[  569.403213][T13886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  569.403244][T13886] RSP: 002b:00007faf5c7660e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  569.403275][T13886] RAX: ffffffffffffffda RBX: 00007faf5bbe5fa8 RCX: 00007faf5b98eec9
[  569.403296][T13886] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007faf5bbe5fac
[  569.403314][T13886] RBP: 00007faf5bbe5fa0 R08: 00007faf5c767000 R09: 0000000000000000
[  569.403333][T13886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  569.403359][T13886] R13: 00007faf5bbe6038 R14: 00007ffc5407f400 R15: 00007ffc5407f4e8
[  569.403402][T13886]  </TASK>
[  569.761984][T13896] syz.4.1678 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  570.081370][T13902] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  570.098678][T13902] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  570.104977][T13902] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  570.118293][T13902] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  570.739706][T13923] vhci_hcd: default hub control req: 9c06 v0f01 i0007 l6
[  570.939016][T13927] openvswitch: netlink: Message has 4 unknown bytes.
[  571.563821][T13940] virtio-pci 0000:00:04.0: [Firmware Bug]: Overriding NUMA node to 0.  Contact your vendor for updates.
[  571.610868][T13942] netlink: 93 bytes leftover after parsing attributes in process `syz.2.1688'.
[  571.647524][T13943] db_root: cannot open: Ž
[  571.702061][T13943] ubi0: attaching mtd0
[  571.708740][T13943] ubi0: scanning is finished
[  571.714012][T13943] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  571.903076][T13943] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  572.048029][ T5832] Bluetooth: hci0: command 0x0406 tx timeout
[  572.127702][ T5832] Bluetooth: hci4: command 0x0c1a tx timeout
[  572.133832][ T5148] Bluetooth: hci2: command 0x0c1a tx timeout
[  572.134497][   T53] Bluetooth: hci1: command 0x0406 tx timeout
[  572.389574][T13961] futex_wake_op: syz.2.1693 tries to shift op by -2048; fix this program
[  572.406841][T13961] futex_wake_op: syz.2.1693 tries to shift op by -2048; fix this program
[  574.207307][T13997] random: crng reseeded on system resumption
[  574.270012][T13997] Restarting kernel threads ...
[  574.305092][T13997] Done restarting kernel threads.
[  574.991200][T14002] Process accounting paused
[  575.450729][T14013] openvswitch: netlink: Message has 4 unknown bytes.
[  577.064451][   T30] audit: type=1800 audit(4294967324.059:17): pid=14050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1712" name="dbroot" dev="configfs" ino=49527 res=0 errno=0
[  577.633765][T14061] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1714'.
[  577.816802][T14065] openvswitch: netlink: Message has 4 unknown bytes.
[  579.545531][T14103] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1724'.
[  579.576900][T14103] 
: renamed from gre0 (while UP)
[  579.607493][T14103] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1724'.
[  579.977251][T14105] futex_wake_op: syz.2.1720 tries to shift op by -2048; fix this program
[  579.987508][T14109] FAULT_INJECTION: forcing a failure.
[  579.987508][T14109] name fail_futex, interval 1, probability 0, space 0, times 0
[  580.089027][T14115] binder: 14108:14115 ioctl 40103e05 ffffffffffffffff returned -22
[  580.098238][   T53] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  580.105249][T14109] CPU: 1 UID: 0 PID: 14109 Comm: syz.4.1725 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  580.105294][T14109] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  580.105304][T14109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  580.105319][T14109] Call Trace:
[  580.105328][T14109]  <TASK>
[  580.105338][T14109]  dump_stack_lvl+0x16c/0x1f0
[  580.105373][T14109]  should_fail_ex+0x512/0x640
[  580.105410][T14109]  get_futex_key+0x1d0/0x1560
[  580.105448][T14109]  ? __pfx_get_futex_key+0x10/0x10
[  580.105493][T14109]  futex_wake+0xea/0x530
[  580.105528][T14109]  ? trace_kmem_cache_alloc+0x28/0xc0
[  580.105568][T14109]  ? __pfx_futex_wake+0x10/0x10
[  580.105611][T14109]  ? errseq_sample+0x53/0x70
[  580.105642][T14109]  ? file_init_path+0x4fe/0x760
[  580.105682][T14109]  do_futex+0x1e3/0x350
[  580.105716][T14109]  ? __pfx_do_futex+0x10/0x10
[  580.105751][T14109]  ? fd_install+0x225/0x750
[  580.105784][T14109]  __x64_sys_futex+0x1e0/0x4c0
[  580.105828][T14109]  ? __sys_socket+0xac/0x260
[  580.105868][T14109]  ? __pfx___x64_sys_futex+0x10/0x10
[  580.105907][T14109]  ? xfd_validate_state+0x61/0x180
[  580.105942][T14109]  ? __pfx_do_preadv+0x10/0x10
[  580.105977][T14109]  do_syscall_64+0xcd/0xfa0
[  580.106008][T14109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.106034][T14109] RIP: 0033:0x7fa134b8eec9
[  580.106055][T14109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  580.106081][T14109] RSP: 002b:00007fa135ac40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  580.106108][T14109] RAX: ffffffffffffffda RBX: 00007fa134de5fa8 RCX: 00007fa134b8eec9
[  580.106133][T14109] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa134de5fac
[  580.106149][T14109] RBP: 00007fa134de5fa0 R08: 00007fa135ac5000 R09: 0000000000000000
[  580.106165][T14109] R10: 0000000000000046 R11: 0000000000000246 R12: 0000000000000000
[  580.106180][T14109] R13: 00007fa134de6038 R14: 00007ffd8758fcc0 R15: 00007ffd8758fda8
[  580.106216][T14109]  </TASK>
[  580.315339][T14115] binder: 14108:14115 ioctl 40103e05 ffffffffffffffff returned -22
[  580.323407][T14115] binder: 14108:14115 ioctl 40103e05 ffffffffffffffff returned -22
[  580.404093][T14115] binder: 14108:14115 ioctl 40103e05 ffffffffffffffff returned -22
[  580.452132][T14115] binder: 14108:14115 ioctl 40103e05 ffffffffffffffff returned -22
[  580.486675][T14115] binder: 14108:14115 ioctl 40103e05 ffffffffffffffff returned -22
[  580.527289][T14115] binder: 14108:14115 ioctl 40103e05 ffffffffffffffff returned -22
[  580.545452][T14115] binder: 14108:14115 ioctl 40103e05 ffffffffffffffff returned -22
[  580.648747][T14119] openvswitch: netlink: Message has 4 unknown bytes.
[  580.654463][T14115] binder: 14108:14115 ioctl 40103e05 ffffffffffffffff returned -22
[  581.520081][T14133] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  581.526664][T14133] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  581.621141][T14133] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  581.648426][T14133] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  581.654592][T14133] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  582.675360][T14157] openvswitch: netlink: Message has 4 unknown bytes.
[  583.355580][T14165] FAULT_INJECTION: forcing a failure.
[  583.355580][T14165] name failslab, interval 1, probability 0, space 0, times 0
[  583.370977][T14165] CPU: 0 UID: 0 PID: 14165 Comm: syz.4.1740 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  583.371032][T14165] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  583.371045][T14165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  583.371064][T14165] Call Trace:
[  583.371074][T14165]  <TASK>
[  583.371095][T14165]  dump_stack_lvl+0x16c/0x1f0
[  583.371136][T14165]  should_fail_ex+0x512/0x640
[  583.371173][T14165]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  583.371210][T14165]  should_failslab+0xc2/0x120
[  583.371252][T14165]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  583.371286][T14165]  ? __d_alloc+0x32/0xae0
[  583.371329][T14165]  ? __d_alloc+0x32/0xae0
[  583.371358][T14165]  ? is_bpf_text_address+0x8a/0x1a0
[  583.371397][T14165]  __d_alloc+0x32/0xae0
[  583.371425][T14165]  ? bpf_ksym_find+0x124/0x1c0
[  583.371462][T14165]  d_alloc_parallel+0x111/0x1480
[  583.371508][T14165]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.371542][T14165]  ? unwind_get_return_address+0x59/0xa0
[  583.371576][T14165]  ? arch_stack_walk+0xa6/0x100
[  583.371614][T14165]  ? __pfx_d_alloc_parallel+0x10/0x10
[  583.371662][T14165]  ? lockdep_init_map_type+0x5c/0x280
[  583.371709][T14165]  ? lockdep_init_map_type+0x5c/0x280
[  583.371757][T14165]  __lookup_slow+0x193/0x460
[  583.371802][T14165]  ? __pfx___lookup_slow+0x10/0x10
[  583.371851][T14165]  ? wb_shutdown+0xb0/0x240
[  583.371896][T14165]  ? wb_shutdown+0xb0/0x240
[  583.371931][T14165]  ? d_lookup+0xe7/0x190
[  583.371980][T14165]  lookup_noperm+0xe1/0x110
[  583.372024][T14165]  simple_start_creating+0xd1/0x1b0
[  583.372077][T14165]  debugfs_start_creating.part.0+0x82/0x190
[  583.372136][T14165]  __debugfs_create_file+0xa7/0x6b0
[  583.372191][T14165]  debugfs_create_file_full+0x41/0x60
[  583.372244][T14165]  kvm_dev_ioctl+0x14ca/0x1a80
[  583.372304][T14165]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  583.372363][T14165]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  583.372412][T14165]  __x64_sys_ioctl+0x18e/0x210
[  583.372458][T14165]  do_syscall_64+0xcd/0xfa0
[  583.372493][T14165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.372521][T14165] RIP: 0033:0x7fa134b8eec9
[  583.372547][T14165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  583.372577][T14165] RSP: 002b:00007fa135ac4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  583.372607][T14165] RAX: ffffffffffffffda RBX: 00007fa134de5fa0 RCX: 00007fa134b8eec9
[  583.372627][T14165] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005
[  583.372646][T14165] RBP: 00007fa134c11f91 R08: 0000000000000000 R09: 0000000000000000
[  583.372664][T14165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  583.372682][T14165] R13: 00007fa134de6038 R14: 00007fa134de5fa0 R15: 00007ffd8758fda8
[  583.372725][T14165]  </TASK>
[  583.664780][   T53] Bluetooth: hci1: command 0x0406 tx timeout
[  583.673470][T13957] Bluetooth: hci0: command 0x0406 tx timeout
[  583.679668][ T5832] Bluetooth: hci4: command 0x0c1a tx timeout
[  583.685907][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout
[  583.838888][T14173] random: crng reseeded on system resumption
[  584.200154][ T5832] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  584.335501][T14190] openvswitch: netlink: Message has 4 unknown bytes.
[  585.058557][T14198] ima: policy update failed
[  585.136105][   T30] audit: type=1802 audit(4294967332.161:18): pid=14198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.1747" res=0 errno=0
[  585.372118][T14192] Process accounting paused
[  585.738784][ T5832] Bluetooth: hci4: command 0x0c1a tx timeout
[  585.785183][T14202] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[14202]
[  585.822217][T14210] delete_channel: no stack
[  587.456659][T14248] ieee80211 phy39: Failed to add default virtual iface
[  588.470077][T14277] size and base must be multiples of 4 kiB
[  588.482651][T14277] CPU: 0 UID: 0 PID: 14277 Comm: syz.1.1765 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  588.482702][T14277] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  588.482714][T14277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  588.482729][T14277] Call Trace:
[  588.482738][T14277]  <TASK>
[  588.482750][T14277]  dump_stack_lvl+0x16c/0x1f0
[  588.482787][T14277]  mtrr_del+0xd1/0x110
[  588.482826][T14277]  mtrr_ioctl+0x922/0xcf0
[  588.482867][T14277]  ? __pfx_mtrr_ioctl+0x10/0x10
[  588.482915][T14277]  ? find_held_lock+0x2b/0x80
[  588.482957][T14277]  ? __fget_files+0x20e/0x3c0
[  588.482988][T14277]  ? __pfx_mtrr_ioctl+0x10/0x10
[  588.483028][T14277]  proc_reg_unlocked_ioctl+0x229/0x320
[  588.483068][T14277]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  588.483122][T14277]  __x64_sys_ioctl+0x18e/0x210
[  588.483167][T14277]  do_syscall_64+0xcd/0xfa0
[  588.483202][T14277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.483232][T14277] RIP: 0033:0x7faf5b98eec9
[  588.483255][T14277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  588.483299][T14277] RSP: 002b:00007faf5c745038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  588.483327][T14277] RAX: ffffffffffffffda RBX: 00007faf5bbe6090 RCX: 00007faf5b98eec9
[  588.483346][T14277] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000005
[  588.483364][T14277] RBP: 00007faf5ba11f91 R08: 0000000000000000 R09: 0000000000000000
[  588.483382][T14277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  588.483400][T14277] R13: 00007faf5bbe6128 R14: 00007faf5bbe6090 R15: 00007ffc5407f4e8
[  588.483442][T14277]  </TASK>
[  589.049311][T14283] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  590.702663][   T30] audit: type=1800 audit(4294967337.770:19): pid=14315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1778" name="features" dev="configfs" ino=51075 res=0 errno=0
[  590.902731][T14320] sctp: [Deprecated]: syz.1.1778 (pid 14320) Use of struct sctp_assoc_value in delayed_ack socket option.
[  590.902731][T14320] Use struct sctp_sack_info instead
[  591.421401][T14319] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.4.1771: iget: checksum invalid
[  591.466131][T14319] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  591.516466][T14319] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.4.1771: iget: checksum invalid
[  591.566755][T14326] random: crng reseeded on system resumption
[  591.573814][T14319] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  591.586237][T14319] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.4.1771: iget: checksum invalid
[  591.600541][T14319] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  591.611493][T14319] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.4.1771: iget: checksum invalid
[  591.625704][T14319] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  591.635882][T14319] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  591.649079][T14319] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  593.726384][T14384] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1789'.
[  595.474264][T14414] sysfs: cannot create duplicate filename '/class/ieee80211/!PjEùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]'
[  595.516145][T14414] CPU: 1 UID: 0 PID: 14414 Comm: syz.1.1796 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  595.516190][T14414] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  595.516197][T14414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  595.516207][T14414] Call Trace:
[  595.516214][T14414]  <TASK>
[  595.516222][T14414]  dump_stack_lvl+0x16c/0x1f0
[  595.516247][T14414]  sysfs_warn_dup+0x7f/0xa0
[  595.516270][T14414]  sysfs_do_create_link_sd+0x124/0x140
[  595.516295][T14414]  sysfs_create_link+0x61/0xc0
[  595.516317][T14414]  device_add+0x62c/0x1aa0
[  595.516342][T14414]  ? __pfx_device_add+0x10/0x10
[  595.516363][T14414]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  595.516396][T14414]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  595.516421][T14414]  wiphy_register+0x1eb0/0x2b20
[  595.516445][T14414]  ? netdev_run_todo+0x864/0x1320
[  595.516475][T14414]  ? __pfx_wiphy_register+0x10/0x10
[  595.516511][T14414]  ieee80211_register_hw+0x253d/0x4120
[  595.516544][T14414]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  595.516567][T14414]  ? __pfx___debug_object_init+0x10/0x10
[  595.516602][T14414]  ? find_held_lock+0x2b/0x80
[  595.516622][T14414]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  595.516653][T14414]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  595.516672][T14414]  ? __hrtimer_setup+0x176/0x280
[  595.516703][T14414]  mac80211_hwsim_new_radio+0x32d8/0x50b0
[  595.516747][T14414]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  595.516781][T14414]  hwsim_new_radio_nl+0xba2/0x1330
[  595.516809][T14414]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  595.516842][T14414]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  595.516870][T14414]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  595.516902][T14414]  genl_family_rcv_msg_doit+0x206/0x2f0
[  595.516930][T14414]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  595.516964][T14414]  ? bpf_lsm_capable+0x9/0x10
[  595.516988][T14414]  ? security_capable+0x7e/0x260
[  595.517013][T14414]  ? ns_capable+0xd7/0x110
[  595.517034][T14414]  genl_rcv_msg+0x55c/0x800
[  595.517062][T14414]  ? __pfx_genl_rcv_msg+0x10/0x10
[  595.517088][T14414]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  595.517129][T14414]  netlink_rcv_skb+0x155/0x420
[  595.517151][T14414]  ? __pfx_genl_rcv_msg+0x10/0x10
[  595.517177][T14414]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  595.517210][T14414]  ? netlink_deliver_tap+0x1ae/0xd30
[  595.517234][T14414]  genl_rcv+0x28/0x40
[  595.517256][T14414]  netlink_unicast+0x5aa/0x870
[  595.517282][T14414]  ? __pfx_netlink_unicast+0x10/0x10
[  595.517313][T14414]  netlink_sendmsg+0x8c8/0xdd0
[  595.517350][T14414]  ? __pfx_netlink_sendmsg+0x10/0x10
[  595.517384][T14414]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  595.517426][T14414]  ____sys_sendmsg+0xa98/0xc70
[  595.517454][T14414]  ? copy_msghdr_from_user+0x10a/0x160
[  595.517476][T14414]  ? __pfx_____sys_sendmsg+0x10/0x10
[  595.517512][T14414]  ? __pfx_futex_wake_mark+0x10/0x10
[  595.517544][T14414]  ___sys_sendmsg+0x134/0x1d0
[  595.517567][T14414]  ? __pfx____sys_sendmsg+0x10/0x10
[  595.517617][T14414]  __sys_sendmsg+0x16d/0x220
[  595.517639][T14414]  ? __pfx___sys_sendmsg+0x10/0x10
[  595.517659][T14414]  ? __x64_sys_futex+0x1e0/0x4c0
[  595.517698][T14414]  do_syscall_64+0xcd/0xfa0
[  595.517720][T14414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.517739][T14414] RIP: 0033:0x7faf5b98eec9
[  595.517754][T14414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  595.517772][T14414] RSP: 002b:00007faf5c766038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  595.517790][T14414] RAX: ffffffffffffffda RBX: 00007faf5bbe5fa0 RCX: 00007faf5b98eec9
[  595.517802][T14414] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003
[  595.517813][T14414] RBP: 00007faf5ba11f91 R08: 0000000000000000 R09: 0000000000000000
[  595.517824][T14414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  595.517834][T14414] R13: 00007faf5bbe6038 R14: 00007faf5bbe5fa0 R15: 00007ffc5407f4e8
[  595.517859][T14414]  </TASK>
[  596.237002][T14418] random: crng reseeded on system resumption
[  597.033574][T14435] zswap: compressor  not available
[  597.679536][T14454] random: crng reseeded on system resumption
[  597.733571][ T5832] Bluetooth: hci4: unexpected event 0x3d length: 726 > 14
[  597.778930][T14454] FAULT_INJECTION: forcing a failure.
[  597.778930][T14454] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  597.947065][T14454] CPU: 0 UID: 0 PID: 14454 Comm: syz.4.1806 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  597.947118][T14454] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  597.947130][T14454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  597.947148][T14454] Call Trace:
[  597.947159][T14454]  <TASK>
[  597.947170][T14454]  dump_stack_lvl+0x16c/0x1f0
[  597.947209][T14454]  should_fail_ex+0x512/0x640
[  597.947250][T14454]  should_fail_alloc_page+0xe7/0x130
[  597.947291][T14454]  prepare_alloc_pages+0x3c2/0x610
[  597.947337][T14454]  ? rcu_is_watching+0x12/0xc0
[  597.947374][T14454]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  597.947413][T14454]  ? __pfx_stack_trace_save+0x10/0x10
[  597.947458][T14454]  ? __lock_acquire+0x62e/0x1ce0
[  597.947507][T14454]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  597.947557][T14454]  ? rcu_read_unlock+0x17/0x60
[  597.947604][T14454]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  597.947658][T14454]  ? policy_nodemask+0xea/0x4e0
[  597.947703][T14454]  alloc_pages_mpol+0x1fb/0x550
[  597.947746][T14454]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  597.947783][T14454]  ? trace_kmalloc+0x2b/0xd0
[  597.947823][T14454]  ? trace_kmalloc+0x2b/0xd0
[  597.947858][T14454]  ? __kmalloc_noprof.cold+0x5d/0x62
[  597.947903][T14454]  ? relay_open_buf.part.0+0x194/0xc40
[  597.947953][T14454]  alloc_pages_noprof+0x131/0x390
[  597.947996][T14454]  relay_open_buf.part.0+0x262/0xc40
[  597.948053][T14454]  relay_open+0x653/0xad0
[  597.948098][T14454]  ? debugfs_create_file_full+0x41/0x60
[  597.948151][T14454]  do_blk_trace_setup+0x4c5/0xb00
[  597.948197][T14454]  blk_trace_setup+0xed/0x1b0
[  597.948236][T14454]  ? __pfx_blk_trace_setup+0x10/0x10
[  597.948274][T14454]  ? __pfx_snprintf+0x10/0x10
[  597.948370][T14454]  ? do_vfs_ioctl+0x128/0x14f0
[  597.948421][T14454]  blk_trace_ioctl+0x146/0x280
[  597.948463][T14454]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  597.948511][T14454]  ? find_held_lock+0x2b/0x80
[  597.948543][T14454]  ? hook_file_ioctl_common+0x145/0x410
[  597.948598][T14454]  blkdev_ioctl+0x108/0x6d0
[  597.948630][T14454]  ? __pfx_blkdev_ioctl+0x10/0x10
[  597.948666][T14454]  ? __pfx_blkdev_ioctl+0x10/0x10
[  597.948698][T14454]  __x64_sys_ioctl+0x18e/0x210
[  597.948747][T14454]  do_syscall_64+0xcd/0xfa0
[  597.948797][T14454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  597.948829][T14454] RIP: 0033:0x7fa134b8eec9
[  597.948857][T14454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  597.948888][T14454] RSP: 002b:00007fa135ac4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  597.948919][T14454] RAX: ffffffffffffffda RBX: 00007fa134de5fa0 RCX: 00007fa134b8eec9
[  597.948940][T14454] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 000000000000000c
[  597.948960][T14454] RBP: 00007fa134c11f91 R08: 0000000000000000 R09: 0000000000000000
[  597.948978][T14454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  597.948997][T14454] R13: 00007fa134de6038 R14: 00007fa134de5fa0 R15: 00007ffd8758fda8
[  597.949041][T14454]  </TASK>
[  598.322748][T14462] FAULT_INJECTION: forcing a failure.
[  598.322748][T14462] name failslab, interval 1, probability 0, space 0, times 0
[  598.395626][ T6529] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 911 with max blocks 14 with error 117
[  598.408366][ T6529] EXT4-fs (sda1): This should not happen!! Data will be lost
[  598.408366][ T6529] 
[  598.576058][T14462] CPU: 1 UID: 0 PID: 14462 Comm: syz.0.1807 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  598.576091][T14462] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  598.576099][T14462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  598.576109][T14462] Call Trace:
[  598.576115][T14462]  <TASK>
[  598.576122][T14462]  dump_stack_lvl+0x16c/0x1f0
[  598.576148][T14462]  should_fail_ex+0x512/0x640
[  598.576170][T14462]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  598.576191][T14462]  should_failslab+0xc2/0x120
[  598.576216][T14462]  kmem_cache_alloc_noprof+0x75/0x6e0
[  598.576233][T14462]  ? alloc_empty_file+0x55/0x1e0
[  598.576262][T14462]  ? alloc_empty_file+0x55/0x1e0
[  598.576285][T14462]  alloc_empty_file+0x55/0x1e0
[  598.576310][T14462]  alloc_file_pseudo+0x13a/0x230
[  598.576337][T14462]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  598.576445][T14462]  ? alloc_fd+0x471/0x7d0
[  598.576467][T14462]  sock_alloc_file+0x50/0x210
[  598.576493][T14462]  __sys_socket+0x1c0/0x260
[  598.576521][T14462]  ? __pfx___sys_socket+0x10/0x10
[  598.576549][T14462]  ? xfd_validate_state+0x61/0x180
[  598.576579][T14462]  ? __pfx_ksys_write+0x10/0x10
[  598.576604][T14462]  __x64_sys_socket+0x72/0xb0
[  598.576632][T14462]  ? lockdep_hardirqs_on+0x7c/0x110
[  598.576652][T14462]  do_syscall_64+0xcd/0xfa0
[  598.576675][T14462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.576694][T14462] RIP: 0033:0x7f0f38b8eec9
[  598.576710][T14462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  598.576728][T14462] RSP: 002b:00007f0f39ad8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  598.576746][T14462] RAX: ffffffffffffffda RBX: 00007f0f38de6090 RCX: 00007f0f38b8eec9
[  598.576758][T14462] RDX: 0000000000000000 RSI: 0000000000080003 RDI: 0000000000000011
[  598.576769][T14462] RBP: 00007f0f38c11f91 R08: 0000000000000000 R09: 0000000000000000
[  598.576780][T14462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  598.576790][T14462] R13: 00007f0f38de6128 R14: 00007f0f38de6090 R15: 00007fffad893ad8
[  598.576813][T14462]  </TASK>
[  599.273698][T14477] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1808'.
[  602.609415][ T5832] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  602.617404][ T5832] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0'
[  602.630232][ T5832] CPU: 1 UID: 0 PID: 5832 Comm: kworker/u9:3 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  602.630285][ T5832] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  602.630298][ T5832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  602.630319][ T5832] Workqueue: hci2 hci_rx_work
[  602.630357][ T5832] Call Trace:
[  602.630367][ T5832]  <TASK>
[  602.630380][ T5832]  dump_stack_lvl+0x16c/0x1f0
[  602.630417][ T5832]  sysfs_warn_dup+0x7f/0xa0
[  602.630455][ T5832]  sysfs_create_dir_ns+0x24b/0x2b0
[  602.630493][ T5832]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  602.630529][ T5832]  ? find_held_lock+0x2b/0x80
[  602.630570][ T5832]  ? do_raw_spin_unlock+0x172/0x230
[  602.630623][ T5832]  kobject_add_internal+0x2c4/0x9b0
[  602.630666][ T5832]  kobject_add+0x16e/0x240
[  602.630699][ T5832]  ? __pfx_kobject_add+0x10/0x10
[  602.630737][ T5832]  ? do_raw_spin_unlock+0x172/0x230
[  602.630783][ T5832]  ? kobject_put+0xab/0x5a0
[  602.630839][ T5832]  device_add+0x288/0x1aa0
[  602.630903][ T5832]  ? __pfx_dev_set_name+0x10/0x10
[  602.630946][ T5832]  ? __pfx_device_add+0x10/0x10
[  602.630984][ T5832]  ? mgmt_send_event_skb+0x2fb/0x460
[  602.631040][ T5832]  hci_conn_add_sysfs+0x17e/0x230
[  602.631078][ T5832]  le_conn_complete_evt+0x1260/0x2150
[  602.631122][ T5832]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  602.631152][ T5832]  ? bt_warn+0xe4/0x120
[  602.631197][ T5832]  ? __pfx_bt_warn+0x10/0x10
[  602.631254][ T5832]  hci_le_conn_complete_evt+0x23c/0x370
[  602.631295][ T5832]  hci_le_meta_evt+0x357/0x5e0
[  602.631328][ T5832]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  602.631361][ T5832]  hci_event_packet+0x685/0x11c0
[  602.631393][ T5832]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  602.631429][ T5832]  ? __pfx_hci_event_packet+0x10/0x10
[  602.631465][ T5832]  ? kcov_remote_start+0x3c9/0x6d0
[  602.631493][ T5832]  ? lockdep_hardirqs_on+0x7c/0x110
[  602.631539][ T5832]  hci_rx_work+0x2c5/0x16b0
[  602.631576][ T5832]  ? rcu_is_watching+0x12/0xc0
[  602.631615][ T5832]  process_one_work+0x9cf/0x1b70
[  602.631683][ T5832]  ? __pfx_process_one_work+0x10/0x10
[  602.631747][ T5832]  ? assign_work+0x1a0/0x250
[  602.631797][ T5832]  worker_thread+0x6c8/0xf10
[  602.631865][ T5832]  ? __pfx_worker_thread+0x10/0x10
[  602.631913][ T5832]  kthread+0x3c2/0x780
[  602.631958][ T5832]  ? __pfx_kthread+0x10/0x10
[  602.632013][ T5832]  ? rcu_is_watching+0x12/0xc0
[  602.632045][ T5832]  ? __pfx_kthread+0x10/0x10
[  602.632090][ T5832]  ret_from_fork+0x675/0x7d0
[  602.632135][ T5832]  ? __pfx_kthread+0x10/0x10
[  602.632177][ T5832]  ret_from_fork_asm+0x1a/0x30
[  602.632233][ T5832]  </TASK>
[  602.632271][ T5832] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  602.906071][ T5832] Bluetooth: hci2: failed to register connection device
[  603.264151][T14498] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1815'.
[  604.010566][T14513] sctp: [Deprecated]: syz.4.1819 (pid 14513) Use of struct sctp_assoc_value in delayed_ack socket option.
[  604.010566][T14513] Use struct sctp_sack_info instead
[  604.141312][T14514] sctp: [Deprecated]: syz.4.1819 (pid 14514) Use of struct sctp_assoc_value in delayed_ack socket option.
[  604.141312][T14514] Use struct sctp_sack_info instead
[  604.636474][T14517] Invalid ELF header magic: != ELF
[  604.917187][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout
[  605.907260][T14534] Process accounting resumed
[  606.565862][T14562] hub 8-0:1.0: USB hub found
[  606.596708][T14562] hub 8-0:1.0: 1 port detected
[  606.818536][T14579] binder: 14578:14579 ioctl c018620c 0 returned -1
[  606.925240][T14581] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1832'.
[  607.651930][T14580] zswap: compressor  not available
[  608.704206][T14612] random: crng reseeded on system resumption
[  614.485450][T14727] input: f¬
 as /devices/virtual/input/input23
[  615.839346][T14720] Process accounting resumed
[  617.325951][T14777] ICMPv6: process `syz.0.1877' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  619.737346][T14795] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  619.842519][T14795] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  619.849982][T14795] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  619.856278][T14795] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  619.920871][T14795] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  620.066954][T14795] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  620.364918][T14810] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1884'.
[  621.005392][ T5832] Bluetooth: hci0: command 0x0406 tx timeout
[  621.878979][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout
[  621.885086][T14166] Bluetooth: hci1: command 0x0406 tx timeout
[  622.107837][ T5832] Bluetooth: hci4: command 0x0c1a tx timeout
[  622.873382][T14852] openvswitch: netlink: Message has 4 unknown bytes.
[  622.908433][T14853] netlink: 29 bytes leftover after parsing attributes in process `syz.1.1895'.
[  623.158934][T14861] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1898'.
[  623.237837][T14862] random: crng reseeded on system resumption
[  623.941171][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout
[  624.484907][T14896] netlink: 302 bytes leftover after parsing attributes in process `syz.0.1907'.
[  624.908401][T14901] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1908'.
[  625.113964][T14917] openvswitch: netlink: Message has 4 unknown bytes.
[  625.178616][T14919] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1913'.
[  626.008519][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout
[  626.439289][T14954] can: request_module (can-proto-3) failed.
[  627.609925][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  627.616748][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  627.666618][T14997] mkiss: ax0: crc mode is auto.
[  628.639469][ T7070] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1341 with max blocks 27 with error 117
[  628.652967][ T7070] EXT4-fs (sda1): This should not happen!! Data will be lost
[  628.652967][ T7070] 
[  628.826790][T15026] FAULT_INJECTION: forcing a failure.
[  628.826790][T15026] name fail_futex, interval 1, probability 0, space 0, times 0
[  628.853229][T15026] CPU: 0 UID: 0 PID: 15026 Comm: syz.1.1941 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  628.853266][T15026] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  628.853274][T15026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  628.853289][T15026] Call Trace:
[  628.853298][T15026]  <TASK>
[  628.853306][T15026]  dump_stack_lvl+0x16c/0x1f0
[  628.853331][T15026]  should_fail_ex+0x512/0x640
[  628.853358][T15026]  get_futex_key+0x1d0/0x1560
[  628.853385][T15026]  ? __pfx_get_futex_key+0x10/0x10
[  628.853416][T15026]  futex_wake+0xea/0x530
[  628.853445][T15026]  ? rcu_is_watching+0x12/0xc0
[  628.853466][T15026]  ? __pfx_futex_wake+0x10/0x10
[  628.853497][T15026]  ? kmem_cache_free+0x2d4/0x6c0
[  628.853516][T15026]  ? putname+0x154/0x1a0
[  628.853544][T15026]  do_futex+0x1e3/0x350
[  628.853569][T15026]  ? __pfx_do_futex+0x10/0x10
[  628.853593][T15026]  ? fput+0x9b/0xd0
[  628.853617][T15026]  ? __sys_sendmsg+0x18c/0x220
[  628.853640][T15026]  __x64_sys_futex+0x1e0/0x4c0
[  628.853667][T15026]  ? __x64_sys_openat+0x174/0x210
[  628.853693][T15026]  ? __pfx___x64_sys_futex+0x10/0x10
[  628.853727][T15026]  do_syscall_64+0xcd/0xfa0
[  628.853748][T15026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  628.853767][T15026] RIP: 0033:0x7faf5b98eec9
[  628.853782][T15026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  628.853800][T15026] RSP: 002b:00007faf5c7450e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  628.853818][T15026] RAX: ffffffffffffffda RBX: 00007faf5bbe6098 RCX: 00007faf5b98eec9
[  628.853830][T15026] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007faf5bbe609c
[  628.853841][T15026] RBP: 00007faf5bbe6090 R08: 00007faf5c767000 R09: 0000000000000000
[  628.853852][T15026] R10: 000000000000000b R11: 0000000000000246 R12: 0000000000000000
[  628.853863][T15026] R13: 00007faf5bbe6128 R14: 00007ffc5407f400 R15: 00007ffc5407f4e8
[  628.853885][T15026]  </TASK>
[  629.058179][    C0] vkms_vblank_simulate: vblank timer overrun
[  631.776156][T15077] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1953'.
[  632.620505][T15096] netlink: 'syz.4.1959': attribute type 10 has an invalid length.
[  632.637983][T15096] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1959'.
[  632.960751][T15090] ptp ptp0: only physical clock in use now
[  634.825689][T15150] bond0: option all_slaves_active: invalid value (
)
[  635.426840][T15163] openvswitch: netlink: Message has 4 unknown bytes.
[  635.746492][T15178] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1977'.
[  635.930390][T15179] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1977'.
[  636.682346][T15174] Process accounting paused
[  638.292769][T15226] random: crng reseeded on system resumption
[  639.014649][T15252] openvswitch: netlink: Message has 4 unknown bytes.
[  640.940856][T15289] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1992'.
[  641.601899][T15310] sp0: Synchronizing with TNC
[  642.736276][T15342] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  644.003957][T15377] vivid-007: =================  START STATUS  =================
[  644.083753][T15377] vivid-007: Generate PTS: true
[  644.140469][T15377] vivid-007: Generate SCR: true
[  644.146160][T15377] tpg source WxH: 320x240 (Y'CbCr)
[  644.152591][T15377] tpg field: 1
[  644.165267][T15377] tpg crop: (0,0)/320x240
[  644.169896][T15377] tpg compose: (0,0)/320x240
[  644.178849][T15377] tpg colorspace: 8
[  644.190487][T15377] tpg transfer function: 0/0
[  644.195747][T15377] tpg Y'CbCr encoding: 0/0
[  644.200905][T15377] tpg quantization: 0/0
[  644.205945][T15377] tpg RGB range: 0/2
[  644.212302][T15377] vivid-007: ==================  END STATUS  ==================
[  644.347629][T15388] usb usb15: usbfs: process 15388 (syz.0.2015) did not claim interface 0 before use
[  644.918329][T15397] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2018'.
[  644.981202][T15401] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2018'.
[  645.172150][T15405] FAULT_INJECTION: forcing a failure.
[  645.172150][T15405] name failslab, interval 1, probability 0, space 0, times 0
[  645.254832][T15405] CPU: 1 UID: 0 PID: 15405 Comm: syz.4.2020 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  645.254867][T15405] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  645.254875][T15405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  645.254885][T15405] Call Trace:
[  645.254892][T15405]  <TASK>
[  645.254900][T15405]  dump_stack_lvl+0x16c/0x1f0
[  645.254926][T15405]  should_fail_ex+0x512/0x640
[  645.254961][T15405]  ? __kvmalloc_node_noprof+0x12e/0x9c0
[  645.254986][T15405]  should_failslab+0xc2/0x120
[  645.255011][T15405]  __kvmalloc_node_noprof+0x141/0x9c0
[  645.255034][T15405]  ? bucket_table_alloc.isra.0+0x88/0x460
[  645.255061][T15405]  ? bucket_table_alloc.isra.0+0x88/0x460
[  645.255081][T15405]  bucket_table_alloc.isra.0+0x88/0x460
[  645.255103][T15405]  rhashtable_init_noprof+0x41a/0x7e0
[  645.255123][T15405]  ? __init_waitqueue_head+0xca/0x150
[  645.255157][T15405]  rhltable_init_noprof+0x20/0x60
[  645.255178][T15405]  sta_info_init+0x5f/0x160
[  645.255198][T15405]  ieee80211_alloc_hw_nm+0x87b/0x22b0
[  645.255221][T15405]  ? __local_bh_enable_ip+0xa4/0x120
[  645.255245][T15405]  mac80211_hwsim_new_radio+0x1d3/0x50b0
[  645.255283][T15405]  ? __asan_memset+0x23/0x50
[  645.255302][T15405]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  645.255336][T15405]  hwsim_new_radio_nl+0xba2/0x1330
[  645.255364][T15405]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  645.255397][T15405]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  645.255426][T15405]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  645.255458][T15405]  genl_family_rcv_msg_doit+0x206/0x2f0
[  645.255486][T15405]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  645.255520][T15405]  ? bpf_lsm_capable+0x9/0x10
[  645.255543][T15405]  ? security_capable+0x7e/0x260
[  645.255568][T15405]  ? ns_capable+0xd7/0x110
[  645.255589][T15405]  genl_rcv_msg+0x55c/0x800
[  645.255617][T15405]  ? __pfx_genl_rcv_msg+0x10/0x10
[  645.255643][T15405]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  645.255677][T15405]  netlink_rcv_skb+0x155/0x420
[  645.255699][T15405]  ? __pfx_genl_rcv_msg+0x10/0x10
[  645.255726][T15405]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  645.255758][T15405]  ? netlink_deliver_tap+0x1ae/0xd30
[  645.255782][T15405]  genl_rcv+0x28/0x40
[  645.255805][T15405]  netlink_unicast+0x5aa/0x870
[  645.255831][T15405]  ? __pfx_netlink_unicast+0x10/0x10
[  645.255853][T15405]  ? __pfx___might_resched+0x10/0x10
[  645.255872][T15405]  ? __lock_acquire+0xb97/0x1ce0
[  645.255902][T15405]  netlink_sendmsg+0x8c8/0xdd0
[  645.255929][T15405]  ? __pfx_netlink_sendmsg+0x10/0x10
[  645.255968][T15405]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  645.255997][T15405]  ____sys_sendmsg+0xa98/0xc70
[  645.256025][T15405]  ? copy_msghdr_from_user+0x10a/0x160
[  645.256047][T15405]  ? __pfx_____sys_sendmsg+0x10/0x10
[  645.256084][T15405]  ___sys_sendmsg+0x134/0x1d0
[  645.256103][T15405]  ? futex_private_hash_put+0x176/0x300
[  645.256128][T15405]  ? __pfx____sys_sendmsg+0x10/0x10
[  645.256149][T15405]  ? futex_private_hash_put+0x18a/0x300
[  645.256195][T15405]  ? do_futex+0x122/0x350
[  645.256224][T15405]  __sys_sendmsg+0x16d/0x220
[  645.256246][T15405]  ? __pfx___sys_sendmsg+0x10/0x10
[  645.256266][T15405]  ? __x64_sys_futex+0x1e0/0x4c0
[  645.256304][T15405]  do_syscall_64+0xcd/0xfa0
[  645.256327][T15405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  645.256346][T15405] RIP: 0033:0x7fa134b8eec9
[  645.256361][T15405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  645.256379][T15405] RSP: 002b:00007fa135ac4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  645.256398][T15405] RAX: ffffffffffffffda RBX: 00007fa134de5fa0 RCX: 00007fa134b8eec9
[  645.256410][T15405] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000002
[  645.256421][T15405] RBP: 00007fa134c11f91 R08: 0000000000000000 R09: 0000000000000000
[  645.256432][T15405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  645.256443][T15405] R13: 00007fa134de6038 R14: 00007fa134de5fa0 R15: 00007ffd8758fda8
[  645.256466][T15405]  </TASK>
[  645.714486][T15409] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2021'.
[  646.063465][   T30] audit: type=1400 audit(4294985650.643:20): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=15412 comm="syz.1.2022"
[  646.254176][T15395] Process accounting paused
[  647.479786][T15448] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  648.660044][T15459] openvswitch: netlink: Message has 4 unknown bytes.
[  649.104958][T15464] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  650.223477][T15505] FAULT_INJECTION: forcing a failure.
[  650.223477][T15505] name failslab, interval 1, probability 0, space 0, times 0
[  650.247144][T15505] CPU: 1 UID: 0 PID: 15505 Comm: syz.0.2045 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  650.247208][T15505] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  650.247221][T15505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  650.247240][T15505] Call Trace:
[  650.247251][T15505]  <TASK>
[  650.247263][T15505]  dump_stack_lvl+0x16c/0x1f0
[  650.247304][T15505]  should_fail_ex+0x512/0x640
[  650.247340][T15505]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  650.247374][T15505]  should_failslab+0xc2/0x120
[  650.247414][T15505]  kmem_cache_alloc_noprof+0x75/0x6e0
[  650.247492][T15505]  ? sk_prot_alloc+0x60/0x2a0
[  650.247542][T15505]  ? sk_prot_alloc+0x60/0x2a0
[  650.247581][T15505]  sk_prot_alloc+0x60/0x2a0
[  650.247620][T15505]  sk_alloc+0x36/0xc20
[  650.247651][T15505]  tipc_sk_create+0xce/0x22a0
[  650.247708][T15505]  ? find_held_lock+0x2b/0x80
[  650.247752][T15505]  ? __sock_create+0x2f2/0x8d0
[  650.247798][T15505]  __sock_create+0x335/0x8d0
[  650.247850][T15505]  __sys_socket+0x14d/0x260
[  650.247894][T15505]  ? __pfx___sys_socket+0x10/0x10
[  650.247950][T15505]  ? __pfx___x64_sys_clock_gettime+0x10/0x10
[  650.248008][T15505]  __x64_sys_socket+0x72/0xb0
[  650.248048][T15505]  ? lockdep_hardirqs_on+0x7c/0x110
[  650.248080][T15505]  do_syscall_64+0xcd/0xfa0
[  650.248121][T15505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  650.248150][T15505] RIP: 0033:0x7f0f38b8eec9
[  650.248182][T15505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  650.248212][T15505] RSP: 002b:00007f0f39ab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  650.248242][T15505] RAX: ffffffffffffffda RBX: 00007f0f38de6180 RCX: 00007f0f38b8eec9
[  650.248261][T15505] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000001e
[  650.248279][T15505] RBP: 00007f0f38c11f91 R08: 0000000000000000 R09: 0000000000000000
[  650.248296][T15505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  650.248313][T15505] R13: 00007f0f38de6218 R14: 00007f0f38de6180 R15: 00007fffad893ad8
[  650.248353][T15505]  </TASK>
[  650.861436][T15517] netlink: 'syz.2.2050': attribute type 1 has an invalid length.
[  651.523566][T15524] tipc: Started in network mode
[  651.539643][T15524] tipc: Node identity fe820562, cluster identity 4711
[  651.574536][T15524] tipc: Node number set to 4269933922
[  652.550053][T15549] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2057'.
[  652.669423][T15563] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2057'.
[  653.805661][T15580] FAULT_INJECTION: forcing a failure.
[  653.805661][T15580] name failslab, interval 1, probability 0, space 0, times 0
[  653.943037][T15580] CPU: 1 UID: 0 PID: 15580 Comm: syz.0.2062 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  653.943090][T15580] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  653.943102][T15580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  653.943120][T15580] Call Trace:
[  653.943129][T15580]  <TASK>
[  653.943140][T15580]  dump_stack_lvl+0x16c/0x1f0
[  653.943178][T15580]  should_fail_ex+0x512/0x640
[  653.943229][T15580]  ? __kmalloc_cache_noprof+0x5f/0x780
[  653.943280][T15580]  should_failslab+0xc2/0x120
[  653.943319][T15580]  __kmalloc_cache_noprof+0x72/0x780
[  653.943368][T15580]  ? cgroup_file_open+0x93/0x330
[  653.943405][T15580]  ? cgroup_file_open+0x93/0x330
[  653.943434][T15580]  cgroup_file_open+0x93/0x330
[  653.943461][T15580]  ? __pfx_cgroup_file_open+0x10/0x10
[  653.943494][T15580]  kernfs_fop_open+0x8c6/0xda0
[  653.943553][T15580]  do_dentry_open+0x97f/0x1530
[  653.943588][T15580]  ? __pfx_kernfs_fop_open+0x10/0x10
[  653.943644][T15580]  vfs_open+0x82/0x3f0
[  653.943688][T15580]  path_openat+0x1de4/0x2cb0
[  653.943734][T15580]  ? __pfx_path_openat+0x10/0x10
[  653.943778][T15580]  do_filp_open+0x20b/0x470
[  653.943812][T15580]  ? __pfx_do_filp_open+0x10/0x10
[  653.943873][T15580]  ? alloc_fd+0x471/0x7d0
[  653.943914][T15580]  do_sys_openat2+0x11b/0x1d0
[  653.943955][T15580]  ? __pfx_do_sys_openat2+0x10/0x10
[  653.944014][T15580]  __x64_sys_openat+0x174/0x210
[  653.944058][T15580]  ? __pfx___x64_sys_openat+0x10/0x10
[  653.944119][T15580]  do_syscall_64+0xcd/0xfa0
[  653.944154][T15580]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  653.944184][T15580] RIP: 0033:0x7f0f38b8eec9
[  653.944218][T15580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  653.944248][T15580] RSP: 002b:00007f0f39ab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  653.944279][T15580] RAX: ffffffffffffffda RBX: 00007f0f38de6180 RCX: 00007f0f38b8eec9
[  653.944299][T15580] RDX: 0000000000004400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  653.944319][T15580] RBP: 00007f0f38c11f91 R08: 0000000000000000 R09: 0000000000000000
[  653.944338][T15580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  653.944356][T15580] R13: 00007f0f38de6218 R14: 00007f0f38de6180 R15: 00007fffad893ad8
[  653.944400][T15580]  </TASK>
[  654.445799][T15588] ptrace attach of "./syz-executor exec"[12465] was attempted by ""[15588]
[  654.569605][T15595] FAULT_INJECTION: forcing a failure.
[  654.569605][T15595] name failslab, interval 1, probability 0, space 0, times 0
[  654.576715][T15592] Invalid ELF header magic: != ELF
[  654.583321][T15595] CPU: 0 UID: 0 PID: 15595 Comm: syz.4.2067 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  654.583367][T15595] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  654.583379][T15595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  654.583395][T15595] Call Trace:
[  654.583404][T15595]  <TASK>
[  654.583415][T15595]  dump_stack_lvl+0x16c/0x1f0
[  654.583451][T15595]  should_fail_ex+0x512/0x640
[  654.583482][T15595]  ? fs_reclaim_acquire+0xae/0x150
[  654.583518][T15595]  should_failslab+0xc2/0x120
[  654.583553][T15595]  __kmalloc_node_noprof+0xe0/0x8a0
[  654.583582][T15595]  ? mempool_init_node+0x11b/0x6e0
[  654.583617][T15595]  ? __pfx_mempool_kmalloc+0x10/0x10
[  654.583648][T15595]  ? __pfx_mempool_kfree+0x10/0x10
[  654.583674][T15595]  ? mempool_init_node+0x11b/0x6e0
[  654.583704][T15595]  mempool_init_node+0x11b/0x6e0
[  654.583743][T15595]  ? __pfx_mempool_kmalloc+0x10/0x10
[  654.583771][T15595]  ? __pfx_mempool_kfree+0x10/0x10
[  654.583799][T15595]  mempool_init_noprof+0x3a/0x50
[  654.583835][T15595]  do_fanotify_mark+0x2e65/0x39d0
[  654.583890][T15595]  ? __pfx_do_fanotify_mark+0x10/0x10
[  654.583933][T15595]  ? __x64_sys_futex+0x1e9/0x4c0
[  654.583975][T15595]  ? xfd_validate_state+0x61/0x180
[  654.584019][T15595]  __x64_sys_fanotify_mark+0xbd/0x160
[  654.584056][T15595]  ? do_syscall_64+0x91/0xfa0
[  654.584084][T15595]  ? lockdep_hardirqs_on+0x7c/0x110
[  654.584111][T15595]  do_syscall_64+0xcd/0xfa0
[  654.584142][T15595]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  654.584168][T15595] RIP: 0033:0x7fa134b8eec9
[  654.584190][T15595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  654.584217][T15595] RSP: 002b:00007fa135ac4038 EFLAGS: 00000246 ORIG_RAX: 000000000000012d
[  654.584250][T15595] RAX: ffffffffffffffda RBX: 00007fa134de5fa0 RCX: 00007fa134b8eec9
[  654.584267][T15595] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000
[  654.584283][T15595] RBP: 00007fa134c11f91 R08: 0000000000000000 R09: 0000000000000000
[  654.584299][T15595] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  654.584315][T15595] R13: 00007fa134de6038 R14: 00007fa134de5fa0 R15: 00007ffd8758fda8
[  654.584353][T15595]  </TASK>
[  655.836728][T15631] FAULT_INJECTION: forcing a failure.
[  655.836728][T15631] name failslab, interval 1, probability 0, space 0, times 0
[  655.873236][T15631] CPU: 0 UID: 0 PID: 15631 Comm: syz.4.2072 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  655.873291][T15631] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  655.873303][T15631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  655.873321][T15631] Call Trace:
[  655.873331][T15631]  <TASK>
[  655.873343][T15631]  dump_stack_lvl+0x16c/0x1f0
[  655.873383][T15631]  should_fail_ex+0x512/0x640
[  655.873419][T15631]  ? __kmalloc_cache_node_noprof+0x62/0x7a0
[  655.873459][T15631]  should_failslab+0xc2/0x120
[  655.873499][T15631]  __kmalloc_cache_node_noprof+0x75/0x7a0
[  655.873535][T15631]  ? __alloc_workqueue+0x670/0x1810
[  655.873578][T15631]  ? lockdep_init_map_type+0x5c/0x280
[  655.873626][T15631]  ? __alloc_workqueue+0x670/0x1810
[  655.873665][T15631]  __alloc_workqueue+0x670/0x1810
[  655.873720][T15631]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  655.873757][T15631]  alloc_workqueue_noprof+0xd2/0x200
[  655.873811][T15631]  ? __pfx_alloc_workqueue_noprof+0x10/0x10
[  655.873863][T15631]  ? __pfx___debug_object_init+0x10/0x10
[  655.873924][T15631]  nci_register_device+0x511/0xb80
[  655.873973][T15631]  ? __pfx_nci_register_device+0x10/0x10
[  655.874024][T15631]  ? lockdep_init_map_type+0x5c/0x280
[  655.874072][T15631]  virtual_ncidev_open+0x141/0x220
[  655.874117][T15631]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  655.874161][T15631]  misc_open+0x26d/0x450
[  655.874198][T15631]  ? __pfx_misc_open+0x10/0x10
[  655.874241][T15631]  chrdev_open+0x231/0x6a0
[  655.874277][T15631]  ? __pfx_apparmor_file_open+0x10/0x10
[  655.874321][T15631]  ? __pfx_chrdev_open+0x10/0x10
[  655.874359][T15631]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  655.874400][T15631]  do_dentry_open+0x97f/0x1530
[  655.874436][T15631]  ? __pfx_chrdev_open+0x10/0x10
[  655.874480][T15631]  vfs_open+0x82/0x3f0
[  655.874528][T15631]  path_openat+0x1de4/0x2cb0
[  655.874583][T15631]  ? __pfx_path_openat+0x10/0x10
[  655.874629][T15631]  do_filp_open+0x20b/0x470
[  655.874662][T15631]  ? __pfx_do_filp_open+0x10/0x10
[  655.874727][T15631]  ? alloc_fd+0x471/0x7d0
[  655.874768][T15631]  do_sys_openat2+0x11b/0x1d0
[  655.874810][T15631]  ? __pfx_do_sys_openat2+0x10/0x10
[  655.874877][T15631]  __x64_sys_openat+0x174/0x210
[  655.874922][T15631]  ? __pfx___x64_sys_openat+0x10/0x10
[  655.874983][T15631]  do_syscall_64+0xcd/0xfa0
[  655.875021][T15631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  655.875052][T15631] RIP: 0033:0x7fa134b8eec9
[  655.875078][T15631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  655.875110][T15631] RSP: 002b:00007fa135ac4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  655.875140][T15631] RAX: ffffffffffffffda RBX: 00007fa134de5fa0 RCX: 00007fa134b8eec9
[  655.875160][T15631] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c
[  655.875180][T15631] RBP: 00007fa134c11f91 R08: 0000000000000000 R09: 0000000000000000
[  655.875198][T15631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  655.875224][T15631] R13: 00007fa134de6038 R14: 00007fa134de5fa0 R15: 00007ffd8758fda8
[  655.875268][T15631]  </TASK>
[  656.296798][T15631] FAULT_INJECTION: forcing a failure.
[  656.296798][T15631] name failslab, interval 1, probability 0, space 0, times 0
[  656.351383][T15631] CPU: 1 UID: 0 PID: 15631 Comm: syz.4.2072 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  656.351439][T15631] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  656.351453][T15631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  656.351470][T15631] Call Trace:
[  656.351480][T15631]  <TASK>
[  656.351492][T15631]  dump_stack_lvl+0x16c/0x1f0
[  656.351532][T15631]  should_fail_ex+0x512/0x640
[  656.351567][T15631]  ? fs_reclaim_acquire+0xae/0x150
[  656.351611][T15631]  should_failslab+0xc2/0x120
[  656.351653][T15631]  __kmalloc_noprof+0xdd/0x880
[  656.351703][T15631]  ? tomoyo_encode2+0x100/0x3e0
[  656.351743][T15631]  ? tomoyo_encode2+0x100/0x3e0
[  656.351773][T15631]  tomoyo_encode2+0x100/0x3e0
[  656.351811][T15631]  tomoyo_encode+0x29/0x50
[  656.351841][T15631]  tomoyo_realpath_from_path+0x18f/0x6e0
[  656.351887][T15631]  tomoyo_path_number_perm+0x245/0x580
[  656.351931][T15631]  ? tomoyo_path_number_perm+0x237/0x580
[  656.351980][T15631]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  656.352027][T15631]  ? rcu_read_unlock+0x17/0x60
[  656.352075][T15631]  ? do_raw_spin_lock+0x12c/0x2b0
[  656.352122][T15631]  ? find_held_lock+0x2b/0x80
[  656.352174][T15631]  ? find_held_lock+0x2b/0x80
[  656.352203][T15631]  ? __pfx___d_add+0x10/0x10
[  656.352248][T15631]  ? d_alloc+0x176/0x1e0
[  656.352289][T15631]  ? current_check_access_path+0x33c/0x460
[  656.352328][T15631]  ? __pfx_current_check_access_path+0x10/0x10
[  656.352364][T15631]  ? simple_lookup+0x105/0x1d0
[  656.352406][T15631]  tomoyo_path_mknod+0x10c/0x190
[  656.352444][T15631]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  656.352486][T15631]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  656.352545][T15631]  security_path_mknod+0x161/0x310
[  656.352596][T15631]  do_mknodat+0x239/0x5d0
[  656.352632][T15631]  ? __pfx_do_mknodat+0x10/0x10
[  656.352661][T15631]  ? getname_flags.part.0+0x1c5/0x550
[  656.352715][T15631]  __x64_sys_mknod+0x87/0xb0
[  656.352749][T15631]  do_syscall_64+0xcd/0xfa0
[  656.352787][T15631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.352818][T15631] RIP: 0033:0x7fa134b8eec9
[  656.352844][T15631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  656.352874][T15631] RSP: 002b:00007fa135ac4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  656.352904][T15631] RAX: ffffffffffffffda RBX: 00007fa134de5fa0 RCX: 00007fa134b8eec9
[  656.352924][T15631] RDX: 0000000000000006 RSI: 000000000000007f RDI: 0000200000000000
[  656.352943][T15631] RBP: 00007fa134c11f91 R08: 0000000000000000 R09: 0000000000000000
[  656.352961][T15631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  656.352978][T15631] R13: 00007fa134de6038 R14: 00007fa134de5fa0 R15: 00007ffd8758fda8
[  656.353021][T15631]  </TASK>
[  656.354245][T15631] ERROR: Out of memory at tomoyo_realpath_from_path.
[  656.432559][T15641] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2074'.
[  657.376109][T15657] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2081'.
[  657.496968][T15663] ==================================================================
[  657.496990][T15663] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0xa03/0xc70
[  657.497040][T15663] Read of size 256 at addr ffff888027bc95c0 by task syz.4.2080/15663
[  657.497068][T15663] 
[  657.497087][T15663] CPU: 0 UID: 0 PID: 15663 Comm: syz.4.2080 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  657.497136][T15663] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  657.497150][T15663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  657.497169][T15663] Call Trace:
[  657.497179][T15663]  <TASK>
[  657.497190][T15663]  dump_stack_lvl+0x116/0x1f0
[  657.497236][T15663]  print_report+0xcd/0x630
[  657.497273][T15663]  ? __virt_addr_valid+0x81/0x610
[  657.497313][T15663]  ? __phys_addr+0xe8/0x180
[  657.497351][T15663]  ? fbcon_prepare_logo+0xa03/0xc70
[  657.497382][T15663]  kasan_report+0xe0/0x110
[  657.497420][T15663]  ? fbcon_prepare_logo+0xa03/0xc70
[  657.497460][T15663]  kasan_check_range+0x100/0x1b0
[  657.497502][T15663]  __asan_memcpy+0x23/0x60
[  657.497529][T15663]  fbcon_prepare_logo+0xa03/0xc70
[  657.497569][T15663]  fbcon_init+0xd77/0x1900
[  657.497605][T15663]  visual_init+0x320/0x620
[  657.497642][T15663]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  657.497686][T15663]  store_bind+0x61d/0x760
[  657.497726][T15663]  ? sysfs_file_kobj+0xe4/0x290
[  657.497756][T15663]  ? __pfx_store_bind+0x10/0x10
[  657.497797][T15663]  dev_attr_store+0x58/0x80
[  657.497830][T15663]  ? __pfx_dev_attr_store+0x10/0x10
[  657.497862][T15663]  sysfs_kf_write+0xef/0x150
[  657.497893][T15663]  kernfs_fop_write_iter+0x3ac/0x570
[  657.497936][T15663]  ? __pfx_sysfs_kf_write+0x10/0x10
[  657.497966][T15663]  iter_file_splice_write+0xa21/0x12e0
[  657.498006][T15663]  ? __pfx_iter_file_splice_write+0x10/0x10
[  657.498038][T15663]  ? __pfx_copy_splice_read+0x10/0x10
[  657.498113][T15663]  ? __pfx_iter_file_splice_write+0x10/0x10
[  657.498145][T15663]  direct_splice_actor+0x192/0x6c0
[  657.498176][T15663]  splice_direct_to_actor+0x345/0xa30
[  657.498235][T15663]  ? __pfx_direct_splice_actor+0x10/0x10
[  657.498268][T15663]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  657.498325][T15663]  do_splice_direct+0x174/0x240
[  657.498375][T15663]  ? __pfx_do_splice_direct+0x10/0x10
[  657.498424][T15663]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  657.498476][T15663]  ? rw_verify_area+0xcf/0x6c0
[  657.498526][T15663]  do_sendfile+0xb06/0xe50
[  657.498560][T15663]  ? __pfx_do_sendfile+0x10/0x10
[  657.498593][T15663]  ? __x64_sys_futex+0x1e0/0x4c0
[  657.498634][T15663]  ? __x64_sys_futex+0x1e9/0x4c0
[  657.498676][T15663]  __x64_sys_sendfile64+0x1d8/0x220
[  657.498716][T15663]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  657.498761][T15663]  do_syscall_64+0xcd/0xfa0
[  657.498798][T15663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  657.498830][T15663] RIP: 0033:0x7fa134b8eec9
[  657.498855][T15663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  657.498887][T15663] RSP: 002b:00007fa135aa3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  657.498917][T15663] RAX: ffffffffffffffda RBX: 00007fa134de6090 RCX: 00007fa134b8eec9
[  657.498939][T15663] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  657.498957][T15663] RBP: 00007fa134c11f91 R08: 0000000000000000 R09: 0000000000000000
[  657.498975][T15663] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  657.498994][T15663] R13: 00007fa134de6128 R14: 00007fa134de6090 R15: 00007ffd8758fda8
[  657.499025][T15663]  </TASK>
[  657.499037][T15663] 
[  657.499045][T15663] Allocated by task 5198:
[  657.499060][T15663]  kasan_save_stack+0x33/0x60
[  657.499094][T15663]  kasan_save_track+0x14/0x30
[  657.499126][T15663]  __kasan_kmalloc+0xaa/0xb0
[  657.499157][T15663]  __kmalloc_noprof+0x32f/0x880
[  657.499208][T15663]  tomoyo_realpath_from_path+0xc2/0x6e0
[  657.499239][T15663]  tomoyo_check_open_permission+0x2ab/0x3c0
[  657.499283][T15663]  tomoyo_file_open+0x6b/0x90
[  657.499316][T15663]  security_file_open+0x84/0x1e0
[  657.499344][T15663]  do_dentry_open+0x596/0x1530
[  657.499376][T15663]  vfs_open+0x82/0x3f0
[  657.499414][T15663]  path_openat+0x1de4/0x2cb0
[  657.499444][T15663]  do_filp_open+0x20b/0x470
[  657.499472][T15663]  do_sys_openat2+0x11b/0x1d0
[  657.499513][T15663]  __x64_sys_openat+0x174/0x210
[  657.499555][T15663]  do_syscall_64+0xcd/0xfa0
[  657.499586][T15663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  657.499616][T15663] 
[  657.499623][T15663] Freed by task 5198:
[  657.499637][T15663]  kasan_save_stack+0x33/0x60
[  657.499669][T15663]  kasan_save_track+0x14/0x30
[  657.499701][T15663]  __kasan_save_free_info+0x3b/0x60
[  657.499748][T15663]  __kasan_slab_free+0x5f/0x80
[  657.499782][T15663]  kfree+0x2b8/0x6d0
[  657.499824][T15663]  tomoyo_realpath_from_path+0x19f/0x6e0
[  657.499855][T15663]  tomoyo_check_open_permission+0x2ab/0x3c0
[  657.499900][T15663]  tomoyo_file_open+0x6b/0x90
[  657.499934][T15663]  security_file_open+0x84/0x1e0
[  657.499959][T15663]  do_dentry_open+0x596/0x1530
[  657.499990][T15663]  vfs_open+0x82/0x3f0
[  657.500028][T15663]  path_openat+0x1de4/0x2cb0
[  657.500056][T15663]  do_filp_open+0x20b/0x470
[  657.500085][T15663]  do_sys_openat2+0x11b/0x1d0
[  657.500126][T15663]  __x64_sys_openat+0x174/0x210
[  657.500168][T15663]  do_syscall_64+0xcd/0xfa0
[  657.500209][T15663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  657.500240][T15663] 
[  657.500248][T15663] The buggy address belongs to the object at ffff888027bc8000
[  657.500248][T15663]  which belongs to the cache kmalloc-4k of size 4096
[  657.500274][T15663] The buggy address is located 1472 bytes to the right of
[  657.500274][T15663]  allocated 4096-byte region [ffff888027bc8000, ffff888027bc9000)
[  657.500306][T15663] 
[  657.500315][T15663] The buggy address belongs to the physical page:
[  657.500329][T15663] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x27bc8
[  657.500358][T15663] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  657.500384][T15663] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  657.500412][T15663] page_type: f5(slab)
[  657.500440][T15663] raw: 00fff00000000040 ffff88813ffa7140 dead000000000100 dead000000000122
[  657.500469][T15663] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  657.500500][T15663] head: 00fff00000000040 ffff88813ffa7140 dead000000000100 dead000000000122
[  657.500529][T15663] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  657.500558][T15663] head: 00fff00000000003 ffffea00009ef201 00000000ffffffff 00000000ffffffff
[  657.500587][T15663] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  657.500605][T15663] page dumped because: kasan: bad access detected
[  657.500620][T15663] page_owner tracks the page as allocated
[  657.500630][T15663] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6413, tgid 6412 (syz.1.84), ts 132253721780, free_ts 132055532333
[  657.500682][T15663]  post_alloc_hook+0x1c0/0x230
[  657.500725][T15663]  get_page_from_freelist+0x10a3/0x3a30
[  657.500773][T15663]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  657.500802][T15663]  alloc_pages_mpol+0x1fb/0x550
[  657.500848][T15663]  new_slab+0x24a/0x360
[  657.500889][T15663]  ___slab_alloc+0xdc4/0x1ae0
[  657.500933][T15663]  __slab_alloc.constprop.0+0x63/0x110
[  657.500977][T15663]  __kmalloc_node_track_caller_noprof+0x4db/0x8a0
[  657.501013][T15663]  kmalloc_reserve+0xef/0x2c0
[  657.501054][T15663]  __alloc_skb+0x166/0x380
[  657.501081][T15663]  rtmsg_ifinfo_build_skb+0x81/0x280
[  657.501122][T15663]  rtmsg_ifinfo+0x9f/0x1a0
[  657.501157][T15663]  register_netdevice+0x1bd9/0x2270
[  657.501192][T15663]  __ip_tunnel_create+0x540/0x6e0
[  657.501239][T15663]  ip_tunnel_init_net+0x22f/0x7d0
[  657.501279][T15663]  ops_init+0x1df/0x5f0
[  657.501311][T15663] page last free pid 5838 tgid 5838 stack trace:
[  657.501328][T15663]  __free_frozen_pages+0x7df/0x1160
[  657.501366][T15663]  __put_partials+0x130/0x170
[  657.501406][T15663]  qlist_free_all+0x4d/0x120
[  657.501430][T15663]  kasan_quarantine_reduce+0x195/0x1e0
[  657.501459][T15663]  __kasan_slab_alloc+0x69/0x90
[  657.501490][T15663]  kmem_cache_alloc_noprof+0x250/0x6e0
[  657.501515][T15663]  getname_flags.part.0+0x4c/0x550
[  657.501554][T15663]  getname_flags+0x93/0xf0
[  657.501577][T15663]  __x64_sys_symlink+0x58/0x90
[  657.501608][T15663]  do_syscall_64+0xcd/0xfa0
[  657.501637][T15663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  657.501665][T15663] 
[  657.501672][T15663] Memory state around the buggy address:
[  657.501687][T15663]  ffff888027bc9480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  657.501708][T15663]  ffff888027bc9500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  657.501729][T15663] >ffff888027bc9580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  657.501745][T15663]                                            ^
[  657.501761][T15663]  ffff888027bc9600: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  657.501782][T15663]  ffff888027bc9680: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  657.501798][T15663] ==================================================================
[  657.514005][T15663] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  657.514035][T15663] CPU: 0 UID: 0 PID: 15663 Comm: syz.4.2080 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  657.514077][T15663] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  657.514088][T15663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  657.514103][T15663] Call Trace:
[  657.514112][T15663]  <TASK>
[  657.514122][T15663]  dump_stack_lvl+0x3d/0x1f0
[  657.514154][T15663]  vpanic+0x640/0x6f0
[  657.514188][T15663]  panic+0xca/0xd0
[  657.514229][T15663]  ? __pfx_panic+0x10/0x10
[  657.514263][T15663]  ? fbcon_prepare_logo+0xa03/0xc70
[  657.514290][T15663]  ? preempt_schedule_common+0x44/0xc0
[  657.514315][T15663]  ? preempt_schedule_thunk+0x16/0x30
[  657.514347][T15663]  check_panic_on_warn+0xab/0xb0
[  657.514384][T15663]  end_report+0x107/0x170
[  657.514412][T15663]  kasan_report+0xee/0x110
[  657.514442][T15663]  ? fbcon_prepare_logo+0xa03/0xc70
[  657.514471][T15663]  kasan_check_range+0x100/0x1b0
[  657.514506][T15663]  __asan_memcpy+0x23/0x60
[  657.514528][T15663]  fbcon_prepare_logo+0xa03/0xc70
[  657.514560][T15663]  fbcon_init+0xd77/0x1900
[  657.514589][T15663]  visual_init+0x320/0x620
[  657.514617][T15663]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  657.514654][T15663]  store_bind+0x61d/0x760
[  657.514686][T15663]  ? sysfs_file_kobj+0xe4/0x290
[  657.514711][T15663]  ? __pfx_store_bind+0x10/0x10
[  657.514741][T15663]  dev_attr_store+0x58/0x80
[  657.514768][T15663]  ? __pfx_dev_attr_store+0x10/0x10
[  657.514793][T15663]  sysfs_kf_write+0xef/0x150
[  657.514818][T15663]  kernfs_fop_write_iter+0x3ac/0x570
[  657.514861][T15663]  ? __pfx_sysfs_kf_write+0x10/0x10
[  657.514887][T15663]  iter_file_splice_write+0xa21/0x12e0
[  657.514920][T15663]  ? __pfx_iter_file_splice_write+0x10/0x10
[  657.514946][T15663]  ? __pfx_copy_splice_read+0x10/0x10
[  657.514991][T15663]  ? __pfx_iter_file_splice_write+0x10/0x10
[  657.515015][T15663]  direct_splice_actor+0x192/0x6c0
[  657.515039][T15663]  splice_direct_to_actor+0x345/0xa30
[  657.515078][T15663]  ? __pfx_direct_splice_actor+0x10/0x10
[  657.515103][T15663]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  657.515145][T15663]  do_splice_direct+0x174/0x240
[  657.515182][T15663]  ? __pfx_do_splice_direct+0x10/0x10
[  657.515226][T15663]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  657.515264][T15663]  ? rw_verify_area+0xcf/0x6c0
[  657.515302][T15663]  do_sendfile+0xb06/0xe50
[  657.515327][T15663]  ? __pfx_do_sendfile+0x10/0x10
[  657.515351][T15663]  ? __x64_sys_futex+0x1e0/0x4c0
[  657.515383][T15663]  ? __x64_sys_futex+0x1e9/0x4c0
[  657.515417][T15663]  __x64_sys_sendfile64+0x1d8/0x220
[  657.515449][T15663]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  657.515484][T15663]  do_syscall_64+0xcd/0xfa0
[  657.515511][T15663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  657.515535][T15663] RIP: 0033:0x7fa134b8eec9
[  657.515555][T15663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  657.515579][T15663] RSP: 002b:00007fa135aa3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  657.515603][T15663] RAX: ffffffffffffffda RBX: 00007fa134de6090 RCX: 00007fa134b8eec9
[  657.515620][T15663] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  657.515635][T15663] RBP: 00007fa134c11f91 R08: 0000000000000000 R09: 0000000000000000
[  657.515649][T15663] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  657.515664][T15663] R13: 00007fa134de6128 R14: 00007fa134de6090 R15: 00007ffd8758fda8
[  657.515687][T15663]  </TASK>
[  657.516079][T15663] Kernel Offset: disabled