last executing test programs:

11m2.804933525s ago: executing program 0 (id=613):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/memory.force_empty\x00', 0xa001, 0x0)
write$auto(r0, &(0x7f0000000000)='3\xc7\xff\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00\x00\x00\x00\x00\x00\x00\x00\xff\xff\xff\xff\xff', 0x9)

11m2.486113169s ago: executing program 0 (id=619):
mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = socket(0x11, 0x2, 0x9)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x8800, 0x0)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x787806, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r0, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x2000c082)
write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef)
r3 = open(&(0x7f0000000100)='.\x00', 0x595082, 0x0)
write$auto(r3, 0x0, 0xfffffdf1)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r6=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x28, r4, 0x13, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r6}, @NL80211_ATTR_WIPHY_NAME={0xc, 0x2, '\x00\x00\x00\x00\x00\x00\x00\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004080}, 0x0)
sendmsg$auto_NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x24, r4, 0x404, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_MDID={0x6, 0xb1, 0x9}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x8800}, 0x4000)
fcntl$auto_F_ADD_SEALS(r3, 0x409, 0x9)

11m1.594302124s ago: executing program 0 (id=621):
r0 = socket(0x2, 0x5, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket(0x1d, 0x2, 0x6) (async)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r3=>0x0})
bind$auto(r1, &(0x7f0000000040)=@can={0x1d, r3, 0xfd}, 0x6a) (async)
ioctl$auto_VHOST_SET_VRING_KICK2(0xffffffffffffffff, 0x4008af20, &(0x7f0000000000)={0x6, <r4=>r0})
setsockopt$auto_SO_BUF_LOCK(r4, 0x40, 0x48, &(0x7f0000000140)='\x00', 0xfffffff7) (async)
sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(r1, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001580)={&(0x7f0000001900)=ANY=[@ANYBLOB="60100000", @ANYRES16=0x0, @ANYBLOB="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"], 0x1060}, 0x1, 0x0, 0x0, 0x4000}, 0x45) (async)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) (async)
socket(0x2, 0x80002, 0x73)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r5 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000001a80), 0x1140, 0x0)
ioctl$auto_PPPIOCATTACH(r5, 0x4004743d, 0xfffffffffffffffd)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x54) (async)
ioctl$auto(0x4000000000000c8, 0x400454cc, 0x6f) (async)
setpriority$auto(0x2, 0x0, 0x80000) (async)
read$auto_proc_single_file_operations_base(r4, &(0x7f0000000180)=""/22, 0x16) (async)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000140), 0x7111}, 0x8)
write$auto(0x3, 0x0, 0x1) (async)
shutdown$auto(0x200000003, 0x2)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)

11m1.256881133s ago: executing program 0 (id=624):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, 0x0, 0x8000)
io_uring_setup$auto(0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101c81, 0x0)
socket(0x10, 0x2, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0xc01, 0x1, 0x6d, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x7, 0x0, [{0x40000072, 0x2, 0x6}]})

11m0.918102181s ago: executing program 0 (id=636):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, 0x0, 0x8000)
io_uring_setup$auto(0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101c81, 0x0)
socket(0x10, 0x2, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0xc01, 0x1, 0x6d, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x7, 0x0, [{0x40000072, 0x2, 0x6}]})

11m0.692024113s ago: executing program 0 (id=632):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2b, 0x1, 0x1)
arch_prctl$auto(0x9, 0x3)
r0 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x400400, 0x0)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, &(0x7f00000004c0)={{r0, &(0x7f0000000180)="c4484027d828120f57cd8cc438c2c390b1d5a62b57628e7351b768d6d679b450b53bd7c6fe7d4570dd878bc4bae003b2890fb024fa61c185091a73ec191acb51f29b119d2cdae76e7b3e9c07b57ddc6273a7c4d76ef780291aa3a0b2a20f7fc3b9566c962c5b059cf5ea9f7275582241979237a8509b68e26da85316283195e116c782d2545fa237e55f372445dc0a06cdde2007ede89233ad41191e32474ed0aa42ba6e834946b1964147f6cab2fed68ed88f987a7f3ded11cc41fa9952474419", 0x10, &(0x7f0000000280)="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", 0x3, &(0x7f0000000380)="d2aab14935718906c0ef5293ccbf4959deb21c90a066298d6b678dcd750e10f7e48785fb8cae4083c3edfcc3a1a6ff602a1bceaac6d7711b531803c155da9ee297ba26f83a45f399ac55076fa885f32cc8d4db38d9016d9c1950a61b3f650ffff0fd418960a18ba3bfda56e00329bdf01dfc1dfb626667fa392b629f537c5fe8", &(0x7f0000000400)=0xff}, {[0x400, 0x2, 0x100, 0x7ff]}, 0x5, 0x0, &(0x7f0000000440)="ce965c9a701746305497814fe209e1983a80cba79c9e4f3df2ebf5603221f6775a44334911d3f650e0489d1e0d56b577d1cd136d2f98889e9796b701e19847522f73e38804"})
unshare$auto(0x40000080)
unshare$auto(0x40000080)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/024/001\x00', 0x402, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'wlan1\x00'})
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8a241, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
move_pages$auto(0x0, 0x100000001, 0x0, &(0x7f0000001140), 0x0, 0x2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4044001)
pread64$auto(0xffffffffffffffff, &(0x7f0000000040)='uete1\x00', 0x200000000006, 0x7)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x6)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x4e24, @remote}, 0x6a)
bpf$auto(0x8, &(0x7f0000000140)=@link_update={0x3, @new_map_fd=0x8, 0x7fffff37, @old_prog_fd=0x6}, 0x9)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800008}, 0x5, 0x20000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0xb2c, 0x2, 0x20000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
write$auto(0x3, 0x0, 0x100085)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5)
ioctl$auto_USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000000)={0x23, 0x1, 0x2, 0x2, 0x9, 0x105, &(0x7f0000000200)})

10m45.547638429s ago: executing program 32 (id=632):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2b, 0x1, 0x1)
arch_prctl$auto(0x9, 0x3)
r0 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x400400, 0x0)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, &(0x7f00000004c0)={{r0, &(0x7f0000000180)="c4484027d828120f57cd8cc438c2c390b1d5a62b57628e7351b768d6d679b450b53bd7c6fe7d4570dd878bc4bae003b2890fb024fa61c185091a73ec191acb51f29b119d2cdae76e7b3e9c07b57ddc6273a7c4d76ef780291aa3a0b2a20f7fc3b9566c962c5b059cf5ea9f7275582241979237a8509b68e26da85316283195e116c782d2545fa237e55f372445dc0a06cdde2007ede89233ad41191e32474ed0aa42ba6e834946b1964147f6cab2fed68ed88f987a7f3ded11cc41fa9952474419", 0x10, &(0x7f0000000280)="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", 0x3, &(0x7f0000000380)="d2aab14935718906c0ef5293ccbf4959deb21c90a066298d6b678dcd750e10f7e48785fb8cae4083c3edfcc3a1a6ff602a1bceaac6d7711b531803c155da9ee297ba26f83a45f399ac55076fa885f32cc8d4db38d9016d9c1950a61b3f650ffff0fd418960a18ba3bfda56e00329bdf01dfc1dfb626667fa392b629f537c5fe8", &(0x7f0000000400)=0xff}, {[0x400, 0x2, 0x100, 0x7ff]}, 0x5, 0x0, &(0x7f0000000440)="ce965c9a701746305497814fe209e1983a80cba79c9e4f3df2ebf5603221f6775a44334911d3f650e0489d1e0d56b577d1cd136d2f98889e9796b701e19847522f73e38804"})
unshare$auto(0x40000080)
unshare$auto(0x40000080)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/024/001\x00', 0x402, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'wlan1\x00'})
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8a241, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
move_pages$auto(0x0, 0x100000001, 0x0, &(0x7f0000001140), 0x0, 0x2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4044001)
pread64$auto(0xffffffffffffffff, &(0x7f0000000040)='uete1\x00', 0x200000000006, 0x7)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x6)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x4e24, @remote}, 0x6a)
bpf$auto(0x8, &(0x7f0000000140)=@link_update={0x3, @new_map_fd=0x8, 0x7fffff37, @old_prog_fd=0x6}, 0x9)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800008}, 0x5, 0x20000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0xb2c, 0x2, 0x20000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
write$auto(0x3, 0x0, 0x100085)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5)
ioctl$auto_USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000000)={0x23, 0x1, 0x2, 0x2, 0x9, 0x105, &(0x7f0000000200)})

8.115702978s ago: executing program 3 (id=3426):
mmap$auto(0x2000000000, 0x2020009, 0x8, 0xeb1, 0xffffffffffffffff, 0x28974783)
r0 = openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim1/psample/enable\x00', 0x169a02, 0x0)
write$auto_nsim_psample_enable_fops_psample(r0, &(0x7f00000005c0)='Y', 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
io_uring_setup$auto(0x59, 0x0)
getpid()
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
syz_genetlink_get_family_id$auto_ethtool(0x0, r1)
r2 = socket(0x10, 0x2, 0xc)
r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff)
io_uring_setup$auto(0xa, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth1_macvtap\x00'})
sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f00000002c0)={0x0, 0xf5, &(0x7f0000000180)={&(0x7f0000000240)={0x14, r3, 0x1f5, 0x70bd28, 0x25dfdbfb, {0xa, 0x0, 0xa00}}, 0xfdef}, 0x1, 0x0, 0x0, 0x20000000}, 0x2000000)
madvise$auto(0x0, 0x200007, 0x19)
getcpu$auto(0xfffffffffffffffc, 0xffffffffffffffff, 0xfffffffffffffffd)
unshare$auto(0x20000080)
syz_clone3(&(0x7f0000000380)={0x2c022000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\xf4\x00\x00\x00\x00\xf4\x00\x00\x00\x00\x00\x00', 0x100000002, 0x100000001)

6.579807889s ago: executing program 3 (id=3431):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(r0, 0x0, 0x1000e6e)
socket(0x2, 0x1, 0x106)
setuid$auto(0xe)
r1 = socket(0x10, 0x2, 0x0)
bind$auto(r1, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
socket(0x1e, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3c, 0x7, 0xffffffffffffffff, 0x1, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_NEW_STATION(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000300)={0x3c, r5, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, "5256441b633b87bba3bd6e38e194879ade12e8512ef3ab6a65fae7f2ee80ef36de7ef6f3"}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x40004)
sendmsg$auto_NL80211_CMD_GET_SCAN(r3, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xf0, r5, 0x139, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_VENDOR_DATA={0xd7, 0xc5, "b211125db4669618124ebe813ec26b489fe700368ab84c181aec738bb95f69fd9a9067a442e7f53e133e2b8a0972b0bda64568e3c4478e294ca0d30482d921b5fa35ee956a13ad54f8d672684eecca9b1486de9c1820768fcf9b22bc4efe11a40cd8cc0aeb57ecfd3a1895e7a4126d5a4c5788d6675754cd1781895bc6a13982444a19d01ce92900966644fd62ac9e85ce32bdd007d5ea25cc0e6101b7d67c708c1324650d3d55e816219f2bc171260613ca9280bc82ecd9659141ba788ae8d1568aa3f372fa6a7c212870d8dd8935d3149a94"}, @NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}]}, 0xf0}, 0x1, 0x0, 0x0, 0x4040}, 0x40000)
write$auto(r2, &(0x7f0000000080)='/dev/\x0e?^\xd8[\xa1~\xf5\xdfaudio1\x00\x11I\x9f\xabA\a\x1c\xc4\x06\xde@z\xe0\xf9\xc3R\"\x06a\xa7\xe5\x03\x00\x00', 0x100000a3d9)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/nbd4/queue/nr_zones\x00', 0x0, 0x0)
pread64$auto(r6, 0x0, 0x3, 0xe9)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x2aa01, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x123002, 0x0)
select$auto(0x9, 0x0, 0x0, 0x0, 0x0)
r7 = socket(0x2d, 0x2, 0x0)
sendmsg$auto_SMC_NETLINK_ENABLE_SEID(r7, &(0x7f0000000140)={&(0x7f00000000c0)={0x2d, 0x0, 0x1f, 0x10}, 0xc, &(0x7f0000000100)={0x0}}, 0x20040804)
r8 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$auto_SNAPSHOT_PLATFORM_SUPPORT(r8, 0x330f, 0x0)

5.967075592s ago: executing program 4 (id=3433):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/state\x00', 0x102, 0x0)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x800, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f0000000240)={0x5, 0x0, "de6208d69c90e1beedda1aa1796c4536", "1aef09f057b8e6b77c3fa8db259056a2", "9649efcec118d7563fb34bf487b9bcf832fed7b3dee7edc8c7a06ac8ed714648", "ef86743334004e34ded7f4f918c1ae2728d423746ae9388e833447898844020468166e720aa18e9e8bf939fb69fa37f8cb1a3723933044e12e7aca4980b6dd6a49ec893b4a14c1870013dce4ee7bb313", "1bdd1bd1e7c93fb23eec09c0fd894efd", "cfc574487a9ea54410cef23d4fe7ca3e78d158c240515f8735c415b6011c4201335554d8a56f185263367dea284aa2cfd1186f7918f367d0329159d3cd2419a890b4840be7dda3125c4f826a8ee0ef22", "c40316b50fd844ca966e25bae3ea9e0485911ca98dc015b6353fc8fdb75ed727190a9b59c895c6fd3f4857dd0a53acc9fc8eaaf65594d77abfb1a6b0788a2ac012a27f566ac119dff3c275c8e64a87699577b2ad1a822a23d98d5dcef24a81ad1005f9c69ebdea766c9795a8214e6804939ac95778ab3f25c3c4da43984d0b0f"})
write$auto(r0, &(0x7f0000000040)='0\x00\\9(\xba\xea\x99\xfc|U\x1c\xc7k', 0x81)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket(0x23, 0x2, 0x0)
ioctl$auto(r2, 0x89a2, 0x8)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000005ec0), r3)
sendmsg$auto_OVS_VPORT_CMD_GET(r2, &(0x7f0000006580)={0x0, 0x0, &(0x7f0000006540)={&(0x7f0000000000)={0x28, r4, 0x1, 0x9, 0x25dfdbf5}, 0x28}, 0x1, 0x0, 0x0, 0x4000810}, 0x6040)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x4e983, 0xdf, 0xeb1, 0x401, 0x8000)
fsopen$auto(0x0, 0x1)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x644c82, 0x0)
ioctl$auto_RNDCLEARPOOL(0xffffffffffffffff, 0x5206, 0x0)
open(0x0, 0x62240, 0x154)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mseal$auto(0x0, 0x7dda, 0x0)
madvise$auto(0x0, 0x3, 0x3)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r6, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f0000000140)={0x14, r5, 0x1, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40c8}, 0x4048000)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002180)=ANY=[@ANYBLOB="e0020000", @ANYRES16=r8, @ANYBLOB="01002ebd5100fbcbdf250100000004000180c802018004000680bd020480fc921cf096b39f43034e2db36a74c0ade1e6a4dafab35aa84881d05d1662bd8a8f48943ea4276b7e1465958d17dd9c9706336d0f4a94c7de9fa79cb659b67f43fa331b6f98fa8ad43a943eac1b528ba83992018ecb03ba5dba6660c32c87b1dc86b69a7f6e747504f11d7688a74c47a4ba4802228004003b0040028b8008002600", @ANYRES32=r7, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="0400af80cee0bd49dab2a617b70e1a2e040e6ba448f301800a8999cec0bec67eb0617ad3f9a0977d09fa35f0e26b923a2713f1104ff7a5b18a2629bbee5de69b17f06e13870462f79e9deb527b97fd65fc8b156b0f525dfca9340f14dc75ef0881c14f5b87a6c615ee754d72289dcac3c322002b00", @ANYRES32=0x0, @ANYBLOB="6000f68004004880f6c5cccd25852c755b4331229a68ba8457bb2c5bc855fc277901cc018a78610faf86906cfd8f50da20a3cfe74a23710a32b0bd28cfddfe8fbcc03a4f9178ec9a0400de8004004380040078800c00a700feffffffffffffff0000000000000000"], 0x2e0}, 0x1, 0x0, 0x0, 0x40}, 0x4)

5.541511834s ago: executing program 1 (id=3434):
r0 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) (async, rerun: 32)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0) (rerun: 32)
sendfile$auto(r1, r1, 0x0, 0x2) (async, rerun: 64)
r2 = io_uring_setup$auto(0x6, 0x0) (rerun: 64)
mmap$auto(0x100000000000080, 0x7ff, 0x3, 0x11, r2, 0x8000) (async)
fcntl$auto_F_GET_RW_HINT(r0, 0x40b, 0x4bf060d9)
write$auto(0x3, 0x0, 0x6) (async)
mmap$auto(0x200000004, 0x200000000400007, 0xdf, 0x9b72, r2, 0xfffffffffffffffd) (async)
r3 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/io\x00', 0x0, 0x0)
read$auto_proc_single_file_operations_base(r3, &(0x7f00000001c0)=""/109, 0x6d) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.1GB.limit_in_bytes\x00', 0xa001, 0x0)
unshare$auto(0x40000080)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/firmware/memmap/2/type\x00', 0x18b740, 0x0) (async)
openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0) (async)
mmap$auto(0x0, 0x400008, 0x20000000000000df, 0x9b72, 0xffffffffffffffff, 0x8000) (async, rerun: 32)
r4 = socket(0x11, 0x80003, 0x300) (rerun: 32)
setsockopt$auto(r4, 0x107, 0x12, 0x0, 0x4)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3) (async)
r5 = socket(0x11, 0x80003, 0x8)
setsockopt$auto(r5, 0x107, 0x12, 0x0, 0x4)
r6 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r6, 0x107, 0x12, 0x0, 0x4) (async)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) (async)
r7 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/mm/ksm/pages_scanned\x00', 0x42000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r8, &(0x7f0000000140)=""/171, 0xab) (async, rerun: 64)
r9 = getpid() (rerun: 64)
process_vm_readv$auto(r9, &(0x7f0000000000)={0x0, 0xfff}, 0x8, &(0x7f0000000180)={&(0x7f0000000040)="8c9700089d1b208365d5b5d112dbab029ed13881d2f2c7ba2eb01c3db79f77fdc2bb50c64a925009dff4cd1aca925c57100112d88f73348a54396800ed598a0e5500d7c0cbb6b1e91d", 0x6}, 0x4, 0xfffffffffffffffe) (async)
ioctl$auto(r7, 0x400454ca, 0x38)

5.44732583s ago: executing program 3 (id=3435):
unshare$auto(0x40000080)
unshare$auto(0x40000080)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/029/001\x00', 0x208c03, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x4, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0xd9)
read$auto(0x3, 0x0, 0x8080)
unshare$auto(0x40000080)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/firmware/memmap/2/type\x00', 0x18b740, 0x0)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000040)="8c9700089d1b208365d5b5d112dbab029ed13881d2f2c7ba2eb01c3db79f77fdc2bb50c64a925009dff4cd1aca925c57100112d88f73348a54396800ed598a0e5500d7c0cbb6b1e91d", 0x40000000001243}, 0x4, 0x0)
ioctl$auto(0xffffffffffffffff, 0x400454ca, 0x38)
ioctl$auto_TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)=""/112, 0x70)
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002a80), r2)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x8)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x3)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x6}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
io_uring_register$auto(0x2, 0x11, &(0x7f0000000180), 0x83)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@qipcrtr={0x2a, 0x0, 0x7fff}, 0x6)

5.311063055s ago: executing program 2 (id=3436):
mmap$auto(0x0, 0x9, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio31\x00', 0x169000, 0x0)
ioctl$auto(r0, 0xc0205648, r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000140), r1)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="01032cb57000fbdbdf250a00000006000100180000006579b92033a42d134bc925d2b66ce6da4caffff400d6a33e9b7e1d0eeb6d00"/67], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0)
r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_SESSION_CREATE(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="94000000", @ANYRES16=r3, @ANYBLOB="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"], 0x94}, 0x1, 0x0, 0x0, 0x1}, 0x40000)

5.125162028s ago: executing program 1 (id=3437):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000)
socket(0x15, 0x5, 0x0)
prctl$auto(0x0, 0x2, 0xffffffffffffffff, 0x5, 0x7)
unshare$auto(0x40000080)
r1 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kpageflags\x00', 0x2, 0x0)
r2 = setfsuid$auto(0xee00)
fchown$auto(r1, r2, 0xffffffffffffffff)
setresuid$auto(0xee01, r2, 0x0)
madvise$auto(0xfffffffffffffffd, 0xffffffffffff0001, 0x15)
io_uring_setup$auto(0x100006, 0x0)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r3, &(0x7f0000000180)='7\x00\\\xa0\x04|4\x00\x00\x03\x00\x00\x00\x10\x01\x00\x00\x00\x00\x00\x00\x00\x00rRVr\xc4O\xdc1\x9b%\x10Z\'\xb9\'\xa3stC<s\xbf\xf4\xf37o\xec\f\xf4\xde\x06\xb4x\xcep|\xa1\xd5\xc3r\x8d\xe5\xda#\f\xa7-\xaf@\xc3x\xa2\"h\xec\xa0\x9ay\'\x99\xca\x9a\xa6\xda6\xb3E\xe1-\x17I!J\xf0\xb7\xc9O\xe9f\x93~\xce\x0e\x8c\xfa\xe3\x89\xca\xf5\xa2\xd2t\x84\xf8`e\x16\xf49\x9aVBa~i\xb9s\x00\x00\x00\x00\x00\x00\x00\x00\n\x04>=\x85\xc6\xf6\x13 \xeb\xff%\x11\x82\x05\xdfV\x02\xca&\xd8$<\xab&\xc8B-\xcc\x15\x04&\x13;\xfe\xbdQ\xaa\x16o\x1f\xc7\x94\xa3\xc9\x9a\xe1d\xf5\n\xe2\x88\x84\vT?\x98\xa2\x00'/206, 0x5)
getsockopt$auto_SO_SNDTIMEO_NEW(r3, 0x8, 0x43, 0x0, 0x0)
keyctl$auto(0x9, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x8)
r4 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x170)
prctl$auto(0x43, 0x2000017, 0x0, 0x0, 0x0)
execveat$auto(r4, &(0x7f0000000040)='\x00', 0x0, 0x0, 0x11000)
mmap$auto(0x0, 0x2020009, 0x100000000000003, 0xebe, 0xfffffffffffffffa, 0x8000)
r5 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto_EVIOCGMASK(r5, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x105})
r6 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/tdls_wider_bw\x00', 0x40, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(r6, 0x0, 0x0)

5.060255646s ago: executing program 2 (id=3438):
socket(0xa, 0x3, 0x3b) (async)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/smbd_max_receive_size\x00', 0x60000, 0x0)
pread64$auto(r0, 0x0, 0x200000000006, 0x7)
ioctl$auto(0xffffffffffffffff, 0x40104d01, 0xffffffffffffffff)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
r1 = openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x100000, 0x0)
splice$auto(r1, 0x0, r1, 0x0, 0x2, 0x5) (async)
r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/sg0\x00', 0x40400, 0x0)
ioctl$auto_SG_SET_FORCE_PACK_ID(r2, 0x227b, &(0x7f00000003c0)) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
prctl$auto(0x39, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) (async)
setgid$auto(0xee00) (async)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async, rerun: 32)
r4 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x20d00, 0x0) (async, rerun: 32)
read$auto_proc_oom_adj_operations_base(0xffffffffffffffff, 0x0, 0x0) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r6=>0x0}) (async, rerun: 64)
r7 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
r8 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r7)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r7, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000340)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010027bd7000fcdbdf251200000018000180a940e96d9240b47f315f746f5f626f6e6400000008000700012e0000"], 0x34}, 0x1, 0x0, 0x0, 0xf2b0dd16cfb63227}, 0x800) (async)
sendmsg$auto_ETHTOOL_MSG_FEC_GET(r4, &(0x7f00000013c0)={&(0x7f0000000080), 0xc, &(0x7f0000001380)={&(0x7f00000001c0)={0xe4, r8, 0x200, 0x70bd69, 0x25dfdbfd, {}, [@ETHTOOL_A_FEC_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}]}, @ETHTOOL_A_FEC_HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xdf}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xffff11e2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_FEC_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}]}, @ETHTOOL_A_FEC_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_FEC_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}]}]}, 0xe4}, 0x1, 0x0, 0x0, 0x24000044}, 0x10) (async)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="130026bd7000fcdbdf250200000008000300", @ANYRES32=r6, @ANYBLOB="0c0002000000000000000000"], 0x28}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) (async)
shmctl$auto_IPC_STAT(0x80000001, 0x2, &(0x7f0000002d00)={{0xffffffc0, 0x0, 0xee01, 0xffff21b5, 0xe6, 0xab8, 0x2}, 0x1, 0x7f, 0x4120, 0x2b6c, @inferred=<r9=>0x0, @raw=0xffff, 0x8, 0x0, &(0x7f0000000940)="14e4fd0b71a43a53a057af2ca209b6f0a929b4d605f4f1c1ad9c0b6e25963c57f6afbcf88a2e46b4bd4af9fb6eaabe6b0766d57c442d8f91dac3551aecf9e92e75bad09d859003f88a21e3ecdf57b5abe4a6633efbe2b971528bfbf280fd8cee523e8a228de8094ead35be0b3e66c430f9b46d564049778ef8adb02c46adba0ac2501c943070d29074c15644c3f11ed2a96fbc8179e20ce31dda63df315c5cd55169879983a43b5bc3b0af6f1cd133137727ff640718d1b1baf862e9e60a118477bc60a2b0b9f711ab7d596c7be212744d5cd40c7fd8bdefd6d753bc550e338bc22c78e1e1", &(0x7f0000001d00)="bae96fbfcf2e2b84596e59dcd50d53887b2a4e08048dd22c09b069d76e0c04a12ab21e11d91acf9ff91bd3a5c09b3b57233c509a391fbe62957521d37228a365f9c0f7c0956cf6c17967b51ff4fd14126594c3d35ec7ee0b0e5313ad97eb2e178194d3f28a4a9c9623b6290c02eab7f394d3be28c5fab80e239d052d16e3c7f2707385064d5bc95208a4dfd12cb28ba4481f180f602e9afb6cf778795570f2afb7824bf805761fda18477b3cc160a7fb5c4ce4d316c424d37d8885ab30076001d99e77d8c94a2a1e7ea5bf59032dba586c42dfebe8ede1b4ec1d77c93faf2d20cb641d0d2bd3d4a0f618b2b3f2ace28ae134d4abb124ee13b7318da816b48d26892459da84f1e11828f63876bdffa15191343ba5b253101e64bf1ce2f407f54b0b9f55ca7dfacf371f27f8564b4fc34cdaa03d0ad819ed583299826880092dc54b8c81df04b5a36b3650a16e34c295481a550e42af8d0641975a2cb5054926a0217ce75ea8bd5287ea2da79dc2c263ad33a0a836c7045a82aa07b3347da6240b93eb82eacbcfb1a9b84c52dc320ad4889f0d7ff42ce4972048b761d75c5bf840629319137d0aed0603d3cdf5bd830083897bd766e4ff5f4e4fd21819c252649f857d2fd0b36e79cfb824ecc4a712c0d25364996a59c7d61970bc30e1e7ec360806a100eb294eb111aea08acd098927bc1879144a54d88dde62463546e3637f72fea28a186ea243c1bc26ee0e22f8c070446387390be14db66a917dd2f9623afc1542e4aac1848623958bbf81e90dd8a60503023fb0880b54afdc889b060446d4f858faaa86bb2b61a58e6d8ee858c61d9c22df3d3512e82e2d63c9825092f450328914dd71db1160b0f13702c258d2a2cb6f84eceb7aea5b37530416a9c7648d6052b2815096a4539e7ead74d0b9fd4847e486bc0a8a31461ed920c405d670cd4896cd156022a61088fdd756d4716d5ed5266677da6c16fc5a178064e0ec9b82185d6d62b08196830479de1b037a45f87343a6f4cb6b7c9c6dbe5102a76f053045d96be7c52219debe4f8e5d9372917f271eb0611ac44a1e092619e03efb38de3e64711ac074b3a526de83f6a68b5edcbfe276a1dc9376c04941d21e1583fa990fbc3c518336ffcc5c29eb81ffb3bba73ff52dcc97a23873400d55fe30162da30b23112d128528016d618f7b48e88f2708cc03abcf74cee29332378442757f5042f6fc642e172b112466d98782f1e386856d2ec73081f97520ccd32b0ab8a4dd41213902e6bbb2098330a94f656c133f2d9d5d8b9a3deed6ed20e72d7dfd7f49d4c8c48a72adf56896c04854879a1f8a2356d97da267643e6bb5b3dc9ffb128edbbc840e352cf3002901b443274399cf22c09335670a04408ab8ad5cc12885d9e4f62e72c37c1535e9bf9a830d7bf7a43dc4cd97cb5c4362951f26ebb88cb2f31241312e6c07cb4df1d61cd7643f7ec25916ca551a20c203773ff845490a2be45aefb3290f56632fe435057a31d6554dfea8269519594f6f888c0bd26d36bbc1483fe0561b49b4e613cadb5e8857d3461d206d65059f648b47a2a772dec75b8dca93e4724d12358a0981415a7d03e6c3b4ca2f08457ccd95a3a238d3e9bdeef9c86917f04bb7a48e01df4dbc38e25faae14360ea8af10f61e50bcbaf54ac410b972848e346c69f94655baed086441a1b6bb405f99d5bdb22cb604399e67bea511438344a58b3c7142fa2b77635719dddfd60a8708920882b542e185d0a8cd1f921d441e4cb0b5ea2bf372d7d15bf70ccbd6ab238fcf5c2330e09849f5a7d49403b0bd92eba716dcb606c75fb5c25eb881a79b90c9a82032564713bfdc3ffc1971fc7797ad7b0a3c77c565afcc08e039e2800e37e958cf3d0ed3538ace936079a27698febb832370dbf17e99e44feb5e3e0f9a1fb1a6568be0d2cab1a5ac03611aa8e3b2ed9b8458b69ca994efe3da31b704134c105c4d37fcbdb9f57dd779cf680f11bb23e45482abe8e233886a4642deef536af93842ae49c56de7ed366866acdf2707270b3f37dc374861398e3d44ad89bd3175814a932c79cdff14605955c1168183410c86c0089a5e7c58aca016fbf43ff64cb5228e7e102cec22eda4fdefe37628e2c3c290c5bfe7e7dca1ecbff977e60dc21bae14cc2a665ab7b9409459581f525e6f15e59f4575d0c3a79086c9714887c961eafd880134915f76fb4c6449f88ef398e832d2719b463415dcfe457b3fce085dbf12e7f29b21c244667e8955673a7faaac1dc9088b94528e1db455ff5015b48fb95cd2de603a22bf7f2c82411270d03e6b359942a040f59d983902875e4554f9bbcbcca6210e2592a21fe0a236b441768f3b8b5d156d12d33c49b9ea686350b8db4d1b7c960906f4266ad6dcf4c51f9476b3daf77b466d6a6aca38a3b577612d43e3b1f6be765dbf4719eddbc0e21298e9eb2b408f75cf42cc9492741705db1de5d0fa2c178d18279c4cad9d7334b1c6fe129c72fbf07a58d8431225f22ec803c9d0f1727aed3290b2a6327e062a6a2c14f46a77176ebef96b075f99b7b9280c21429ba38f0448724cb1da4cb5ee12f5d33df7b38897f87944db126ed10120fc2b9d85c3f76bfef1256f0b89997c8ece47db066ada7c8dc95132553478f6f9dbdded0e5152813c3712116503924bbcdb6c7f539a2e15fc7167f0c42dd1ec28f070b18cbd027c70f1a70a357a1f0bb06f2633812255ed1715dc949ffeea200d10a39e1eeed7e3f0835cdec052e923e68439b73e9a068a58f252546a60ecb67b76105786a5a910f270cb85632c56a312f575fa805b9b9e6a37f10e1e0117e13e5fc0d6a8e5460d4d39123493a42f3aea3fa081b9ec6faff76e7a7b3c00f86c6cf46537d80a5ad936d2bf7522393d1929f73b961849e3b47b6fd5502fefaf7baba4bf417e38762bcf185f3c2dd11cf8b5aecc29dcfa1fe7a0f89948a60a4302933574515e24afbb759d6734ce9887c3c4e39ce15d6dabc41ddbb11ee6f1975b983cd304056cb58225de5daa8a6486d7660fb16d3274321628dccddb82bd9b5bada7c8e470883b8d9cf7bdcc4abcacc5750133432317f336824defec75654827597f720e362c5418217d8455ea072969dab92e6ca69a733a620e37a2de2078adb3afd10c859ec42949d81ed4958ce1bce4d6abb9aa36e6aeae8aa9ce1cc161bb9cdeb142a0a169b1310c47d1a044b56957cd9b5c33be4258d07982dc2f0c178ff3c57ccbfe5ff576941dc9414820c61800e3a8403f4340b83391acf828d7b09e466deaed9cc6b04163b289c33bf0d1b214859fea81fdae357e9bace1a034e6f816ab7fc655f477380f4d3536d6193ef4c9914810d45a151a045de0796ab0b75fd78eb48e63c84ade64d081e38cfd1bf187bd214d7b1cdb748b90d5ad34321daed387525d00b1788a98758e982848abbe4180e5c0a8092033f6d1c2d03b2bcdcdc1a0aeb9071a83f237a7bcfb761ee1c6e5a15a88690098d1d182afd98a630e1335a8a63cce091bbf71742faca6706c3579101f24a6b3b4c0aaa1d8d30277791abd55882866aca367905594ef383bcd221ab3023264f68e80c70d90e7c08a74c27a0b6baa3b0ba242dc3d58532f08200e043d8cbb5604ea4e68e66233b234d7318e213b3ee5d86443290f2700248f8ad383bc686b4928651a7954b097d453d20011e56c48cfc80afb7e80c04095df7fd127c72d39a2c5a46e9689b86147de85abe93ed9201b2f334bfcc3d302b297d9d1570324dcc8477cb64e4a20b1d32c68b7a646fe9f85e1489a8cdaccf37e513ad34d9fb12f472099297321be24926b4b4ee3c5e243e547c495c16e168168c2ef82a15e81fc26b2ee91dde8b6a3fd0d7a89f3c8a55ff52e82ceb02f2d3a4e013a6422e715e8a1001f448c3f5fa26a41cc09ed42049fbce23141b8687e239faf4cfe2bf0a8bb4059e335a580321a54806316919cc1386ec90ebffe5b638afee9e44f8ba8781244ae46045113d03673a7b5d3bdd54a025a2a3e242677cb07c093e1cc1839dae565dc7712cdd2cd43c1863b17a244ff090cb2d99626c13660ec89bd39ddbd3190071210db75016cef4cbd5f6396a4832b89983c388c6fcaf0920df6968f917f08736bd776ed99bbfbea7326104f31f0b1938898e078c81d6ca2a4ee7d4d4621709d2426b73629cc6d386549517ecd661713ce58a866b868944dd15014d03be6b69dfa61c8f3b1e771322012b71165ece5c4618153625fcc4391190ef2371516206cc0931e5f85cc617c6bb00dfb7544269a299ab7ba0ac787eb05f01d9ac302aca8dd1638238b48a94f5d7d0e9ecaa9afc5c45c1add628bb829464748b7ec153a48f7aae032ae34ededfcfd29e821d5361b606dc78870c086a6dfdd2ef3cd09f0c61efae8c5ff5acd8f39beaf11a06231821934176852b2057f8ea855dab487640f8b33a093b7a8f6fb515c374539676caba954fd18dd549bf76ccb53a1236fe93063e6952eeea37d25794f84b7cad064d0d7af007614a9d08b6546b9dcb79d49d9f8a30245396fe1b084b50062a98ef138982fa547f67a623ca8367118abf708dcb83cff222f19a072d37d4953b96c01d5c1466e8cc6b49a090c0169ca3632b53d4127df9d93019f7ff9d0b54935b49c11b56b1fe92c894ab2a73efdadaca49b5733430dd9783f69e33644e3e37d16e7f46d72e7964a0cb16c3ee02e6d10c6c062b45629f3940678b593c03b116d3c1a58dbc65b0f5fd872ff186120110e1a86462aa4e9f6d8132ac872e9ba60f86cb6d30760b3513422fa7ccc37da9fba5ba29b754ee9a79a7d1685d2a539e2abece63d0e4b31fbf732a7d0ef90d7dfbd4bac1ae1ada610e903d833ad407938eb25ba036e981d1cf9e67411173557ce82a0364157ea7ce343587b66c67ce8fedbc0aa0cb38ec9c37b9a4c7b6dce82bd94398603597394b6a4e5b71f9c1bdd159bc780a108f0b96efd2fabbe6979fcdac2b1df6dbd3833f848c2af1d3f2c50abcae7d63dc621a0a7baffb4446e771dfb7aa641c0486c9149a589b1a00bf8bdbb03b3b859bfebb9b6420c8d3b435b252fda33a4e2562666997dbb4ed18ef5f1944a068b31f407c889cfd79791c4960750378da8dafbea25d0dbb144debf265c955524a4afd0e26ef4ce600e20c890848d63a50593f93f943e99ed6257f9dac6a5396a2176e7801c4c2342965cdd2b6d2607d635edd7fe7dd030e52094de098909b4f3671c78a92616d16fbaa800cc444642dbfbd90e575e1c67c765adcfb646f820c4325f857f52df9548d80a1f2c579d863fc035405422817c62959dc79503cc24f0d52f68568c620b30dd13eaffbcf0857507e497ae2fa8027a5524fdfe31c7ab3792a71cbdae58a2294e0453e8f9084914c1ded0d866da07aca048f96ee9b77a6beed9efedb497c407c669d67d0159b21c807096af1dd8dff27f60b89caede8bdc097638b4a32d5e17c45ad2e8c037d6ff43cc59c3a55b9b5f47916279df3d04d3af5e361bc3426a2673fc1dacc40939f07be7e2eecbd73428534475ac83f1945b996306d0c5de3b4b5991382837d76c09ccd5dd1183b042ac082a1d184cda62123f01a4230dddb8a3e44905fe2a87143b3991c162a00e39fc383d91cb3d4ca2f9bef339b1a8923f624431e59a560143d35fa79e6f16ed4cabdeaabf591ef38a6c6cde70725029c41443753eaf74b117c11bc6dd0e676575e3748a646428a8263f88668ca4bb298e768b6c5a55bcb467e188fa9199a0f1a11d8014814ce7c4c8e311755d9a9be27444181"})
setresuid$auto(0x0, 0x7, 0x8080) (async, rerun: 32)
r10 = socket(0x10, 0x3, 0x6) (rerun: 32)
bind$auto(r10, &(0x7f0000000000)=@nl=@proc={0x10, 0x0, 0x25dfdbfc, 0x8}, 0x6a)
getsid$auto(r9)

4.901386322s ago: executing program 4 (id=3439):
r0 = socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x65, 0x1, 0x0, 0x800)
r2 = socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(r2, 0x0, 0x10000, 0x0, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x102, 0x0)
write$auto(r3, &(0x7f0000000480)='7\x00\\\xa0\x04\x9c\"\xa9Nd_\xff\xa0k\xd8\xc9\xba\x00\xb5\x89\x8cg\xa84\xd8D)\xfdcR8\xdb\x98\xa3\xd7\x94\x94\xda\xc0r\x8f)\xbb8r\x00\x00\x00\x00\x9bu=>\xce\x8d\xa2\fZ\xfa\x0f\x87R\xf7\x05Ow\xfak\xba0\xab\xe1\xffm\xf9t\x012A\x02\x00\x00\x00\xaej\xda\xae\x1dU\x1b\xe8\x10\x87\x86\x9f0\xb1\xf1\xbfO\xd7\x88?\x19\xf3\x068\xb4e\xb5\x00\x00\x00\x00K\xbb\xa9\xdc[8\xfc\xc6\x9f\xa3\xb5\xdf\x1a\x00\x00\x00\x00\x00', 0x84)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20000004}, 0x4000884)
lstat$auto(0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r5 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000140), r0)
sendmsg$auto_NFC_CMD_SE_IO(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r5, 0x300, 0x70bd2a, 0x25dfdbff, {}, [@NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8014}, 0x8880)
mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000)
execveat$auto(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)=&(0x7f0000000400)=']:\\\xcb[@\x00', &(0x7f0000000580)=&(0x7f0000000540)='nfc\x00', 0x7)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x6)
keyctl$auto(0x15, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8)
keyctl$auto_KEY_REQKEY_DEFL_NO_CHANGE(0x4, 0xffffffffffffffff, 0x0, 0x0, 0xf0)
ioctl$auto(r6, 0x4b4a, 0x9)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r7)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="05082cbd7000fbdbdf257e000000000000ffe9ff00000000fbcdcf723761e464cc2327ce89ce96a5082aecdbbbdb9b60b1d900"/60], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x80)

3.957504863s ago: executing program 2 (id=3440):
mmap$auto(0x2000000000, 0x2020009, 0x8, 0xeb1, 0xffffffffffffffff, 0x28974783)
r0 = openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim1/psample/enable\x00', 0x169a02, 0x0)
write$auto_nsim_psample_enable_fops_psample(r0, &(0x7f00000005c0)='Y', 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
io_uring_setup$auto(0x59, 0x0)
getpid()
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x7ff, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, r1)
r2 = socket(0x10, 0x2, 0xc)
r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff)
io_uring_setup$auto(0xa, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth1_macvtap\x00'})
sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f00000002c0)={0x0, 0xf5, &(0x7f0000000180)={&(0x7f0000000240)={0x14, r3, 0x1f5, 0x70bd28, 0x25dfdbfb, {0xa, 0x0, 0xa00}}, 0xfdef}, 0x1, 0x0, 0x0, 0x20000000}, 0x2000000)
madvise$auto(0x0, 0x200007, 0x19)
getcpu$auto(0xfffffffffffffffc, 0xffffffffffffffff, 0xfffffffffffffffd)
unshare$auto(0x20000080)
syz_clone3(&(0x7f0000000380)={0x2c022000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\xf4\x00\x00\x00\x00\xf4\x00\x00\x00\x00\x00\x00', 0x100000002, 0x100000001)

3.171104232s ago: executing program 4 (id=3441):
mmap$auto(0x2000000000, 0x2020009, 0x8, 0xeb1, 0xffffffffffffffff, 0x28974783)
r0 = openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim1/psample/enable\x00', 0x169a02, 0x0)
write$auto_nsim_psample_enable_fops_psample(r0, &(0x7f00000005c0)='Y', 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
io_uring_setup$auto(0x59, 0x0)
getpid()
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
syz_genetlink_get_family_id$auto_ethtool(0x0, r1)
r2 = socket(0x10, 0x2, 0xc)
r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff)
io_uring_setup$auto(0xa, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth1_macvtap\x00'})
sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f00000002c0)={0x0, 0xf5, &(0x7f0000000180)={&(0x7f0000000240)={0x14, r3, 0x1f5, 0x70bd28, 0x25dfdbfb, {0xa, 0x0, 0xa00}}, 0xfdef}, 0x1, 0x0, 0x0, 0x20000000}, 0x2000000)
madvise$auto(0x0, 0x200007, 0x19)
getcpu$auto(0xfffffffffffffffc, 0xffffffffffffffff, 0xfffffffffffffffd)
unshare$auto(0x20000080)
syz_clone3(&(0x7f0000000380)={0x2c022000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\xf4\x00\x00\x00\x00\xf4\x00\x00\x00\x00\x00\x00', 0x100000002, 0x100000001)

2.521005072s ago: executing program 3 (id=3442):
r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mprotect$auto(0x1000, 0x401000, 0x4)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/netfilter/nf_log/3\x00', 0xa0202, 0x0)
ioctl$auto_FS_IOC_GETFLAGS(r0, 0x80086601, 0x0)
sendfile$auto(r1, r1, 0x0, 0xd)
move_pages$auto(0x0, 0x4, 0x0, 0x0, 0x0, 0x400000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x14001, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xadp\xf2#\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3dc)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r3, &(0x7f0000000080)={0x0, 0x1000}, 0x3)
syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff)
mmap$auto(0x9, 0x8000000000000000, 0x7, 0x18, 0x2, 0x80008000)
r4 = socket(0x2a, 0x2, 0x1)
connect$auto(r4, &(0x7f0000000040)=@qipcrtr={0x2a, 0xffffffff, 0xfffffffe}, 0x55)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
setsockopt$auto(r0, 0x107, 0x2, 0x0, 0x8)
socket(0x11, 0x3, 0x9)
io_uring_setup$auto(0x1, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x22, 0x0)
set_tid_address$auto(0x0)
close_range$auto(0x2, r3, 0x7)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82942, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
openat$auto_fops_ulong_ro_(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy12/netdev:wlan0/stations/08:02:11:00:00:01/tx_filtered\x00', 0x200440, 0x0)

2.434908051s ago: executing program 1 (id=3443):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb0, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
r2 = openat$auto_page_owner_stack_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000180), 0x101000, 0x0)
mmap$auto(0x0, 0x5, 0xdb, 0x9b72, r2, 0x8000)
read$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x302, 0x0)
ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x5)
ioctl$auto(r4, 0x4008af23, r3)
r5 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0)
ioctl$auto_PROCMAP_QUERY(r5, 0xc0686611, &(0x7f0000000080)={0x17, 0x34, 0x7fff, 0x5, 0x80000000009, 0x1, 0x800, 0x101, 0x5, 0x7f93, 0xfffffffe, 0x7ffffffd, 0x3, 0x7, 0x9})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_PLCA_SET_CFG(r6, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000001040)=ANY=[@ANYBLOB="ff070000", @ANYRES16, @ANYBLOB="01002cbd7000fddbdf25280000000800070000000000"], 0x1c}, 0x1, 0x6000, 0x0, 0x1}, 0x20008800)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r1, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, ':fR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80)
r7 = pipe$auto(0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x5c3d81, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r8)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01002abd7000fbdbdf25040000002d0011"], 0x44}, 0x1, 0x0, 0x0, 0x4008040}, 0x40800)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/tcp_fastopen_key\x00', 0x181081, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r11, 0x0, 0x0)
ioctl$auto_VHOST_SET_LOG_FD(r7, 0x4004af07, &(0x7f0000000300)=r4)
r12 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r12, @ANYBLOB="019c66492600ffdbdf250a0000fcffffff006e6574646576000082f1c0417440"], 0x20}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810)
sendmsg$auto_CTRL_CMD_GETPOLICY(r7, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="94000000", @ANYRES16=r12, @ANYBLOB="20032cbd7000fedbdf250a000000130002004d414338303231315f485753494d00000600010003000000130002004d414338303231315f485753494d00000852bf0003000000060002005c00c3f91668f8431a000008000a0007000000130002004d414338303231315f485753494d0000130002004d414338303231315f485753494d000006000100040000000600010009000000"], 0x94}, 0x1, 0x0, 0x0, 0x80}, 0x10)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffff}, 0x1, 0x0, 0x0, 0x29}, 0x20100007}, 0x3, 0x0)

2.242027516s ago: executing program 2 (id=3444):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(r0, 0x0, 0x1000e6e)
socket(0x2, 0x1, 0x106)
setuid$auto(0xe)
r1 = socket(0x10, 0x2, 0x0)
bind$auto(r1, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
socket(0x1e, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3c, 0x7, 0xffffffffffffffff, 0x1, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_NEW_STATION(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000300)={0x3c, r5, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, "5256441b633b87bba3bd6e38e194879ade12e8512ef3ab6a65fae7f2ee80ef36de7ef6f3"}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x40004)
sendmsg$auto_NL80211_CMD_GET_SCAN(r3, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xf0, r5, 0x139, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_VENDOR_DATA={0xd7, 0xc5, "b211125db4669618124ebe813ec26b489fe700368ab84c181aec738bb95f69fd9a9067a442e7f53e133e2b8a0972b0bda64568e3c4478e294ca0d30482d921b5fa35ee956a13ad54f8d672684eecca9b1486de9c1820768fcf9b22bc4efe11a40cd8cc0aeb57ecfd3a1895e7a4126d5a4c5788d6675754cd1781895bc6a13982444a19d01ce92900966644fd62ac9e85ce32bdd007d5ea25cc0e6101b7d67c708c1324650d3d55e816219f2bc171260613ca9280bc82ecd9659141ba788ae8d1568aa3f372fa6a7c212870d8dd8935d3149a94"}, @NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}]}, 0xf0}, 0x1, 0x0, 0x0, 0x4040}, 0x40000)
write$auto(r2, &(0x7f0000000080)='/dev/\x0e?^\xd8[\xa1~\xf5\xdfaudio1\x00\x11I\x9f\xabA\a\x1c\xc4\x06\xde@z\xe0\xf9\xc3R\"\x06a\xa7\xe5\x03\x00\x00', 0x100000a3d9)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/nbd4/queue/nr_zones\x00', 0x0, 0x0)
pread64$auto(r6, 0x0, 0x3, 0xe9)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x2aa01, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x123002, 0x0)
select$auto(0x9, 0x0, 0x0, 0x0, 0x0)
r7 = socket(0x2d, 0x2, 0x0)
sendmsg$auto_SMC_NETLINK_ENABLE_SEID(r7, &(0x7f0000000140)={&(0x7f00000000c0)={0x2d, 0x0, 0x1f, 0x10}, 0xc, &(0x7f0000000100)={0x0}}, 0x20040804)
r8 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$auto_SNAPSHOT_PLATFORM_SUPPORT(r8, 0x330f, 0x0)

2.114762474s ago: executing program 1 (id=3445):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x0, 0x9456, 0x100002002, 0x0, 0x3, 0x2)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
ioctl$auto(0x4000000000000c8, 0x400454cc, 0x6f)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @empty, 0x2}, 0x58)
write$auto(0x3, 0x0, 0x1)
write$auto(0x3, 0x0, 0xfffffdef)
setresuid$auto(0x0, 0x0, 0xee01)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80180, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x6f2a, 0x0)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = fanotify_init$auto(0x5, 0x0)
fanotify_mark$auto(r2, 0x205, 0xa, 0x4, 0x0)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x941683, 0x0)
ioctl$auto_SG_SET_DEBUG(r3, 0x227e, &(0x7f00000000c0))
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
r4 = socket(0x10, 0x2, 0x0)
r5 = openat$auto_bdi_debug_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bdi/43:256/stats\x00', 0x20002, 0x0)
read$auto_bdi_debug_stats_fops_(r5, &(0x7f0000000040)=""/69, 0x45)
bind$auto(r4, 0x0, 0x6b)
prctl$auto_PR_TASK_PERF_EVENTS_DISABLE(0x1f, 0x5, 0x7000000000, 0x978f, 0x7)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, &(0x7f0000000200)="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")
write$auto(0x3, 0x0, 0x100000000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)

1.662425132s ago: executing program 4 (id=3446):
mmap$auto(0x0, 0x1ff, 0xa, 0x1000000000000eb1, 0xfffffffffffffffa, 0x8000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS32(0xffffffffffffffff, 0xc0245720, 0x0) (async)
unshare$auto(0x40000080) (async)
setfsuid$auto(0x0) (async)
r0 = socket(0x10, 0x3, 0x6) (async)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x14, r1, 0x1, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4048081}, 0x0) (async)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r2, 0xc0045516, &(0x7f0000000040)=0x5) (async)
bpf$auto(0x6, &(0x7f0000000000)=@bpf_attr_3={0x1, 0x9067, 0x40000080018c, 0x6, 0x0, 0x8, 0x4, 0x57b8, 0xf, "63ac0600000033ebc15774e816ef77cf", 0x0, 0x100543, 0x4, 0x207, 0x3, 0x1009, 0x4, 0x2, 0xe, 0x5, @attach_btf_obj_fd, 0x166, 0x7fb, 0x6, 0xa, 0x48000000}, 0x10) (async)
writev$auto(0xc8, &(0x7f00000028c0)={&(0x7f0000000000), 0x200}, 0x9)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x123801, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f00000009c0)={{@raw=0x7000, 0xd252, 0x9, 0x2, "790eaa00ffff8eac2cdafc1f64010043eeb0b053030001ffff000e00"}, 0x4, 0x2000963, 0x2, @raw=0x404, @reserved="b20200a3077300f2c167afeb0a9902da3d58908ea1a8475fbd3a75d4690e48fc922df5fdffffffffffffffdbb68aec3f51e29bc18b59d74badbdcc1ba97a2004117190c9a050186fa73f5a197762a94460d134b357b8b4d0caaf1ca142917779cef3673ee57f2f5fde573fa4d4328a8ea0be7eccec0adb4f64290e53d4faa89d", "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1cb04b435b3fcd0c7c61c329794e5311121c760cb9611c78e6947a99806bcc100"})
ioctl$auto_SNDRV_CTL_IOCTL_TLV_COMMAND(r3, 0xc008551c, 0x0)
close_range$auto(0x2, 0xa, 0x0) (async)
socket(0x2, 0x5, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r4, 0x560d, r4)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xa00, 0x0, 0xfffffffffffffffd)
r6 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000180), 0xffffffffffffffff) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) (async)
sysfs$auto(0x2, 0x12, 0x0) (async)
lsm_list_modules$auto(0x0, 0x0, 0x0) (async)
r7 = socket(0x2a, 0x2, 0x0)
ioctl$auto(r7, 0x8912, 0x38)
sendmsg$auto_OVS_DP_CMD_GET(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x24, r6, 0x374fe8f90a251713, 0x70bd29, 0x25dfdbfe, {0x3, 0x0, 0xf000}, [@OVS_DP_ATTR_NAME={0xe, 0x1, '/dev/cec4\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x20044011}, 0x20000008)

1.430345924s ago: executing program 3 (id=3447):
r0 = socket(0x2, 0x1, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0xc0402, 0x0)
openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000140), 0x20, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da06, 0x6, 0x2000000000000102, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20005, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
setreuid$auto(0x9, 0x1)
syz_genetlink_get_family_id$auto_ovs_vport(0x0, 0xffffffffffffffff)
getpriority$auto(0x2, 0x9)
madvise$auto(0x0, 0x400053, 0x9)
close_range$auto(r2, r0, 0xfffffffd)

1.393628449s ago: executing program 1 (id=3448):
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa)
r0 = ioctl$auto_TUNSETLINK(0xffffffffffffffff, 0x400454cd, &(0x7f0000000000)=0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'})
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000540)='/proc/sys/kernel/kexec_load_limit_panic\x00', 0x40141, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r4, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r6, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="4434399f667f796b24000000a9e3eb41df9340df0655731b608065f8ccc8c798eaaadb14d4309652ee209df9ec0a9931807a1a6cfe3390d1af9867", @ANYRES16=r7, @ANYBLOB="0001253d7000fddbdf2501000000040007800c0004000800000000000000"], 0xfe4f}, 0x1, 0x0, 0x0, 0x804}, 0x8880)
r8 = open(&(0x7f0000000000)='./file0\x00', 0x22240, 0x147)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x2, 0x8000)
move_pages$auto(0x1, 0x20008, 0x0, 0x0, 0x0, 0x8000000000000000)
r9 = socket(0xa, 0x801, 0x84)
setsockopt$auto(r9, 0x10000000084, 0x0, 0x0, 0x10)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x440, 0x0)
r10 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
pread64$auto(r10, 0x0, 0x4, 0xc70d)
setresuid$auto(0x60, 0x1000, 0x8000)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0)
utimensat$auto(r8, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)={0x8, 0x1}, 0x6)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x2c, r3, 0x1, 0x74bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_RX_MAX_FRAMES_HIGH={0x8, 0x14, 0xffffffff}, @ETHTOOL_A_COALESCE_USE_ADAPTIVE_TX={0x5, 0xc, 0x89}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES_HIGH={0x8, 0x14, 0xd}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008801}, 0x20000000)
r11 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x2000, 0x0)
ioctl$auto(r11, 0x961064a0, 0x600000000200007)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vlan1\x00'})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'veth0_virt_wifi\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'caif0\x00'})

1.287765604s ago: executing program 2 (id=3449):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000040), 0xffffffffffffffff)
keyctl$auto(0xf, 0x7fffffffffffffff, 0xffff, 0x4, 0x3)
adjtimex$auto(&(0x7f0000000000)={0x2d38, 0x0, 0x2, 0xff, 0x1ff, 0x0, 0x80200, 0x0, 0x5, 0x6, 0x8, {0x10001, 0x3}, 0x5, 0x200, 0x162c97c6, 0x80000001, 0x0, 0x40, 0x8, 0xfffffffffffffff9, 0x3, 0x3, 0xfffffffd})
keyctl$auto(0xb, 0xfdffffffffffffff, 0x2000000, 0x0, 0x6)
sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r1, 0x1, 0x70bd2b, 0xc, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'bond_slave_1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x1, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
lsm_get_self_attr$auto(0x64, 0x0, &(0x7f0000002440)=0x1f9, 0x0)
sendmsg$auto_NL80211_CMD_SET_BEACON(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1c4080}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)={0x22c, 0x0, 0x218, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_TID_CONFIG={0x218, 0x11d, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x8d}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x32}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x4}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x0, 0x9, 0x5}]}, {0x1f0, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x8}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x4}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x0, 0x5, 0x3}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x9}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x1a8, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HT={0x50, 0x2, "9f553a8a15b1a981ef788691524e1cf399c053520281ec4464e755c5963ffdbf8aaafacc1ad92bd9a6d1a4e1c2b87f48c5950718b868acd4913573513acc3fd81c5919601724ab441cc5cbce"}, @NL80211_TXRATE_HT={0x43, 0x2, "d2644e569c9bf96d0b9dedd022df866393e03a0c6128799f5f1d8fae0ef369e46e6659cb320bcbafc4d6672c8684ead80892c49a934830a2a69cf912e3c1b1"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x9}, @NL80211_TXRATE_VHT={0xa4, 0x3, "48ab136c519437a0c8ada884ea0279fcfc3df4f189ab6ebe6038c2e2ba2865fe172bbac4562a153295a04d8d24137ac473f47294470b6aea5f4a0a99611bf821dfddc2b0f9437fab7186ec2434543c9534334dd5fc5cf2f8becb0954c7c17107efdaab73b63e7a7a2f44994b8a78f16e84c091f6bb1fbd177059af9d13ce15f4b9fd0fe13f7494409584870e829fd268abffcb99f580d0fd9b08c81725177736"}, @NL80211_TXRATE_HE={0x4e, 0x5, "8eacf0dc2f40450672cf9927c470b53a5e7a57e68a96a183a33aff3972fcbfa050a3c5f557a86c4f16930b265469cec7fe13cc46a0fea29a53c08559e35c99d6e458f5f827a0216db3ec"}, @NL80211_TXRATE_LEGACY={0x12, 0x1, "1ee4cb1bc352810e246638a18228"}]}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}]}]}]}, 0x22c}, 0x1, 0x0, 0x0, 0x4000}, 0x20000080)

653.232616ms ago: executing program 4 (id=3450):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x80802, 0x0)
socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f00000001c0), 0x800, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x9}, 0x3, 0x1fffffff)
sendfile$auto(0x1, 0x3, 0x0, 0x7ff)
sendto$auto(0x3, 0x0, 0x7, 0x101, 0x0, 0x6)
io_uring_setup$auto(0x59, 0x0)
bpf$auto(0x0, &(0x7f0000000380)=@task_fd_query={0x12, 0x3, 0x4, 0xae30, 0x8, 0xfff, 0xffffffffffffffff, 0x2e, 0x7ff}, 0x6f4)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mdstat\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x80003, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wg1\x00', <r2=>0x0})
sendto$auto(0x3, 0x0, 0x11, 0xfffffff9, &(0x7f0000000440)=@xdp={0x2c, 0xa888, r2, 0x10}, 0x22)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x948b, 0x9, 0x15f4da07, 0x6, 0xc, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x4220009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x0, 0xffffeffe, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000002c80)='/proc/thread-self/net/rpc/nfsd.fh/channel\x00', 0x80, 0x0)

511.969864ms ago: executing program 2 (id=3451):
r0 = openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/options/fields\x00', 0x2, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x2, 0x2, 0xeb1, 0x401, 0x8000000000000000) (rerun: 32)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000a40)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xb, 0x0, 0x1, 0x0, 0x0, 0x8890}, 0x200088c1) (async)
mknod$auto(&(0x7f0000000140)=':,\x00', 0xc3, 0xfffffffa)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x88400, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, 0x0, 0x0) (async, rerun: 64)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) (rerun: 64)
write$auto_ocfs2_control_fops_stack_user(r2, &(0x7f0000003900)='\t', 0x1)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/batman_adv/parameters/routing_algo\x00', 0x80302, 0x0) (async)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x80000002, 0x1d, 0x3000, 0xfffffff8, 0x6, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x6, 0x29c, 0xfffffffd, 0x7f, 0x3ff, 0xa, 0x1}, {0x10100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x200008, 0x100000000}}) (async)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
ioctl$auto_TCSBRK2(r5, 0x5409, 0x0) (async, rerun: 64)
r6 = epoll_create$auto(0xffffffff) (rerun: 64)
epoll_ctl$auto(r6, 0x1, r4, 0x0) (async)
sendfile$auto(r3, r3, 0x0, 0x2005)
read$auto(r0, 0x0, 0x6)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) (async)
r8 = socket(0x2, 0x1, 0x0)
sendmmsg$auto(r8, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x6, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x2001fffc)
sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(r8, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000001}, 0x40081)
r9 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_CQM(r8, &(0x7f000000a240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1400000}, 0xc, &(0x7f000000a200)={&(0x7f0000000700)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="040026bd7000053f7a52c7bbf3cd81ffdbdf253f5f2d4e795a16c2290000000d00c8009f62528f1003312e2300000006001401070000006108cf2a0d552cdae023d2931e3f288900fef322df6d3aa5669248824dbf387584100c86c5007e25a479864c0950bf32c546d0a9a3b245a46e06217ff0ca4d297f40bc89b4645093932220911e7352c899a24409"], 0x2c}, 0x1, 0x0, 0x0, 0x800d808}, 0x20040871) (async)
sendmsg$auto_NL80211_CMD_NOTIFY_RADAR(r7, &(0x7f00000006c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000680)={&(0x7f0000000280)=ANY=[@ANYBLOB="d4030000", @ANYRES16=r9, @ANYBLOB="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"], 0x3d4}, 0x1, 0x0, 0x0, 0x840}, 0x0)

313.624593ms ago: executing program 3 (id=3452):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x20000000, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x87c4)
sendmsg$auto_ETHTOOL_MSG_STATS_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x24040000}, 0x4000080)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
mprotect$auto(0x1ffffffff000, 0x100004, 0x6)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/devices/platform/dummy_hcd.5/usb6/bMaxPower\x00', 0x80, 0x0)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mq_getsetattr$auto(0x3, 0x0, &(0x7f0000000100)={0x8, 0x8, 0x2, 0x1})
mmap$auto(0x0, 0x4, 0xdf, 0x17, 0x2, 0x8000)
sysfs$auto(0x2, 0xe, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r3 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r3, 0x403c6f2b, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0x100006, 0xc982)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone$auto(0x1, 0x0, 0x0, 0x0, 0x42)
unshare$auto(0x40000080)
r4 = pipe$auto(0x0)
r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), r4)
sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r4, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="ede47b4db50b7a5eaa7470f214d3fac1", @ANYRES16=r5, @ANYBLOB="080028bd7000fedbdf2518000000"], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x81)
statx$auto(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x4f1a, 0x6, &(0x7f00000002c0)={0x0, 0x3, 0x3, 0x10, <r6=>0xffffffffffffffff, 0x0, 0x1, 0x7, 0xfffffffffffffff8, 0x0, 0xffff, 0x1, {0xff}, {0x6, 0x6}, {0x0, 0x1}, {0x2, 0x2}, 0x8, 0x553, 0x5, 0xef7, 0xcf, 0xffffffff, 0x1, 0xffffffffffffffff, 0xff, 0x1, 0x8000, 0x9, [0x7, 0x1, 0x1, 0x8, 0x1, 0x4, 0x9, 0x2, 0x70a]})
sendmsg$auto_NL802154_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000001b40)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001b00)={&(0x7f0000000700)=ANY=[@ANYBLOB="dc130000", @ANYRES16=r5, @ANYBLOB="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", @ANYRES32=r6, @ANYBLOB="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", @ANYRES32, @ANYBLOB], 0x13dc}, 0x1, 0x0, 0x0, 0x4044040}, 0xfd07d6b5f74704ce)
mmap$auto(0x8, 0x0, 0x7, 0xf8, r1, 0x80000000)
acct$auto(0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtdblock0\x00', 0x14fe02, 0x0)
mmap$auto(0x0, 0x128008, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
shmget$auto(0x0, 0x7b, 0x100)

217.75972ms ago: executing program 1 (id=3453):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/dev/cdrom/info\x00', 0x2000, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008012, r0, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r1, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000280)={0x14, r2, 0xf3e97f51700e57cf, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8020)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
read$auto(r1, 0x0, 0x3)
mlock$auto(0x7c88, 0x7fff)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, 0x0, 0xc800)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x0)
socket(0x1d, 0x2, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f00000001c0)={0x0, 0xfff}, 0x3, &(0x7f0000000280)={&(0x7f0000000100)="6c4bc022f1a924305022a30137693a982a453ee9ff2946c55588f6e6", 0xffffffff}, 0x6, 0x0)
bpf$auto(0x5, 0x0, 0x7)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f0000000180)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x9}, 0x10000003, 0x0)
mmap$auto(0x8000000000, 0xc3a, 0xe2, 0x9b72, 0x7, 0x1000)

0s ago: executing program 4 (id=3454):
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f00000004c0)={0x2c, r1, 0x789, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_MODULE_EEPROM_LENGTH={0x8, 0x3, 0x5}, @ETHTOOL_A_MODULE_EEPROM_OFFSET={0x8, 0x2, 0xdc}, @ETHTOOL_A_MODULE_EEPROM_PAGE={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004840)
mmap$auto(0x0, 0x400008, 0x20000df, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
io_uring_setup$auto(0x6, 0x0)
clock_nanosleep$auto(0x7, 0x9, 0x0, 0x0)
mmap$auto(0x0, 0x20007, 0x80000000000000df, 0x10004000eb1, 0x5, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4)
lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
setrlimit$auto(0x1, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4, 0xeb2, 0x401, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2c, 0x4, 0x186)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyua\x00', 0x20804, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @rand_addr=0x64010100}, 0x1c)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @rand_addr=0x64010100}, 0x1c)

kernel console output (not intermixed with test programs):

re name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  719.158841][T16825] Call Trace:
[  719.158853][T16825]  <TASK>
[  719.158863][T16825]  dump_stack_lvl+0x100/0x190
[  719.158912][T16825]  should_fail_ex.cold+0x5/0xa
[  719.158947][T16825]  should_failslab+0xc2/0x120
[  719.158979][T16825]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  719.159023][T16825]  ? __d_alloc+0x34/0xa40
[  719.159058][T16825]  ? __pfx_find_ucounts+0x10/0x10
[  719.159101][T16825]  __d_alloc+0x34/0xa40
[  719.159140][T16825]  d_alloc_pseudo+0x1c/0xc0
[  719.159173][T16825]  alloc_file_pseudo+0xcf/0x230
[  719.159215][T16825]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  719.159257][T16825]  ? _raw_spin_unlock+0x28/0x50
[  719.159296][T16825]  ? alloc_fd+0x476/0x790
[  719.159331][T16825]  __anon_inode_getfile+0xe8/0x280
[  719.159375][T16825]  __anon_inode_getfd+0x5c/0xe0
[  719.159419][T16825]  do_inotify_init+0x483/0x5e0
[  719.159449][T16825]  __x64_sys_inotify_init1+0x30/0x40
[  719.159475][T16825]  do_syscall_64+0x115/0x840
[  719.159501][T16825]  ? clear_bhb_loop+0x40/0x90
[  719.159535][T16825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  719.159563][T16825] RIP: 0033:0x7f5dd219ce59
[  719.159585][T16825] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  719.159612][T16825] RSP: 002b:00007f5dd2fa6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000126
[  719.159639][T16825] RAX: ffffffffffffffda RBX: 00007f5dd2416090 RCX: 00007f5dd219ce59
[  719.159657][T16825] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000
[  719.159674][T16825] RBP: 00007f5dd2232d6f R08: 0000000000000000 R09: 0000000000000000
[  719.159690][T16825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  719.159707][T16825] R13: 00007f5dd2416128 R14: 00007f5dd2416090 R15: 00007ffedab838d8
[  719.159744][T16825]  </TASK>
[  719.566108][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[  719.670447][T16782] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  721.282222][T16854] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2364'.
[  721.347846][T16854] veth1_macvtap: left promiscuous mode
[  721.538877][T16859] MTRR 1 not used
[  724.090046][T16899] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2374'.
[  725.015969][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  725.404956][T16910] i2c i2c-0: new_device: Invalid device name
[  725.722552][T16911] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2375'.
[  726.027549][T16919] FAULT_INJECTION: forcing a failure.
[  726.027549][T16919] name failslab, interval 1, probability 0, space 0, times 0
[  726.077298][T16919] CPU: 1 UID: 0 PID: 16919 Comm: syz.4.2378 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  726.077344][T16919] Tainted: [L]=SOFTLOCKUP
[  726.077354][T16919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  726.077370][T16919] Call Trace:
[  726.077380][T16919]  <TASK>
[  726.077390][T16919]  dump_stack_lvl+0x100/0x190
[  726.077453][T16919]  should_fail_ex.cold+0x5/0xa
[  726.077490][T16919]  should_failslab+0xc2/0x120
[  726.077524][T16919]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  726.077568][T16919]  ? __d_alloc+0x34/0xa40
[  726.077611][T16919]  __d_alloc+0x34/0xa40
[  726.077650][T16919]  d_alloc+0x4a/0x1e0
[  726.077688][T16919]  lookup_one_qstr_excl+0x171/0x250
[  726.077734][T16919]  start_dirop+0x59/0xb0
[  726.077768][T16919]  simple_start_creating+0xf9/0x110
[  726.077803][T16919]  ? __pfx_simple_start_creating+0x10/0x10
[  726.077838][T16919]  ? mntput+0x70/0xa0
[  726.077868][T16919]  ? simple_pin_fs+0xa3/0x190
[  726.077900][T16919]  debugfs_start_creating.part.0+0x82/0x170
[  726.077932][T16919]  __debugfs_create_file+0xb3/0x4f0
[  726.077967][T16919]  debugfs_create_file_full+0x41/0x60
[  726.078001][T16919]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  726.078049][T16919]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  726.078093][T16919]  ? ida_alloc_range+0x70d/0x830
[  726.078154][T16919]  ? lockdep_init_map_type+0x5c/0x250
[  726.078205][T16919]  preinit_net.part.0+0x252/0x920
[  726.078248][T16919]  copy_net_ns+0x339/0x7c0
[  726.078293][T16919]  create_new_namespaces+0x3ea/0xac0
[  726.078339][T16919]  unshare_nsproxy_namespaces+0xf2/0x220
[  726.078379][T16919]  ksys_unshare+0x438/0xab0
[  726.078428][T16919]  ? __pfx_ksys_unshare+0x10/0x10
[  726.078468][T16919]  ? xfd_validate_state+0x129/0x190
[  726.078514][T16919]  ? ksys_write+0x1ac/0x250
[  726.078558][T16919]  __x64_sys_unshare+0x31/0x40
[  726.078597][T16919]  do_syscall_64+0x115/0x840
[  726.078624][T16919]  ? clear_bhb_loop+0x40/0x90
[  726.078659][T16919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  726.078687][T16919] RIP: 0033:0x7f5dd219ce59
[  726.078708][T16919] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  726.078736][T16919] RSP: 002b:00007f5dd2fc7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  726.078764][T16919] RAX: ffffffffffffffda RBX: 00007f5dd2415fa0 RCX: 00007f5dd219ce59
[  726.078784][T16919] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  726.078800][T16919] RBP: 00007f5dd2232d6f R08: 0000000000000000 R09: 0000000000000000
[  726.078821][T16919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  726.078839][T16919] R13: 00007f5dd2416038 R14: 00007f5dd2415fa0 R15: 00007ffedab838d8
[  726.078879][T16919]  </TASK>
[  726.195117][T16920] random: crng reseeded on system resumption
[  726.361347][T16924] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2376'.
[  726.474480][T16924] veth1_macvtap: left promiscuous mode
[  726.604064][T16927] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2379'.
[  728.649005][T16971] FAULT_INJECTION: forcing a failure.
[  728.649005][T16971] name fail_futex, interval 1, probability 0, space 0, times 0
[  728.663432][T16971] CPU: 0 UID: 0 PID: 16971 Comm: syz.3.2384 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  728.663458][T16971] Tainted: [L]=SOFTLOCKUP
[  728.663464][T16971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  728.663473][T16971] Call Trace:
[  728.663481][T16971]  <TASK>
[  728.663488][T16971]  dump_stack_lvl+0x100/0x190
[  728.663518][T16971]  should_fail_ex.cold+0x5/0xa
[  728.663539][T16971]  should_fail_futex+0x4c/0x60
[  728.663562][T16971]  futex_lock_pi_atomic+0x12d/0xaf0
[  728.663580][T16971]  ? futex_hash+0x141/0x370
[  728.663603][T16971]  futex_lock_pi+0x245/0x7a0
[  728.663624][T16971]  ? __pfx_futex_lock_pi+0x10/0x10
[  728.663651][T16971]  ? __pfx_try_to_wake_up+0x10/0x10
[  728.663674][T16971]  ? futex_private_hash_put+0x107/0x1c0
[  728.663699][T16971]  ? __pfx_futex_wake_mark+0x10/0x10
[  728.663722][T16971]  ? ksys_write+0x190/0x250
[  728.663738][T16971]  ? ksys_write+0x190/0x250
[  728.663758][T16971]  do_futex+0x18a/0x350
[  728.663773][T16971]  ? __pfx_do_futex+0x10/0x10
[  728.663793][T16971]  __x64_sys_futex+0x34f/0x4d0
[  728.663810][T16971]  ? __pfx___x64_sys_futex+0x10/0x10
[  728.663825][T16971]  ? ksys_write+0x1ac/0x250
[  728.663843][T16971]  ? rcu_is_watching+0x12/0xc0
[  728.663862][T16971]  do_syscall_64+0x115/0x840
[  728.663878][T16971]  ? clear_bhb_loop+0x40/0x90
[  728.663896][T16971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.663912][T16971] RIP: 0033:0x7fb000f9ce59
[  728.663926][T16971] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  728.663940][T16971] RSP: 002b:00007fb001ebd028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  728.663955][T16971] RAX: ffffffffffffffda RBX: 00007fb001216090 RCX: 00007fb000f9ce59
[  728.663965][T16971] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[  728.663974][T16971] RBP: 00007fb001032d6f R08: 0000000000000000 R09: 000000008000fff5
[  728.663983][T16971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  728.664001][T16971] R13: 00007fb001216128 R14: 00007fb001216090 R15: 00007ffd9ebd1058
[  728.664021][T16971]  </TASK>
[  729.139637][T16975] blktrace: Concurrent blktraces are not allowed on loop2
[  729.384268][T16971] Process accounting paused
[  731.857013][T17031] random: crng reseeded on system resumption
[  732.399526][T17051] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2396'.
[  733.700035][T17059] kexec: Could not allocate control_code_buffer
[  734.420900][T17123] =======================================================
[  734.420900][T17123] WARNING: The mand mount option has been deprecated and
[  734.420900][T17123]          and is ignored by this kernel. Remove the mand
[  734.420900][T17123]          option from the mount to silence this warning.
[  734.420900][T17123] =======================================================
[  735.154042][T17142] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2406'.
[  736.062008][T15794] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  736.129894][   T30] audit: type=1804 audit(8277292084.970:17): pid=17162 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2409" name="/newroot/481/file0" dev="tmpfs" ino=2519 res=1 errno=0
[  736.436292][T17164] MTRR 1 not used
[  736.452344][   T30] audit: type=1804 audit(8277292085.290:18): pid=17158 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2409" name="/newroot/481/file0" dev="tmpfs" ino=2519 res=1 errno=0
[  737.742652][T17184] FAULT_INJECTION: forcing a failure.
[  737.742652][T17184] name failslab, interval 1, probability 0, space 0, times 0
[  737.766529][T17184] CPU: 1 UID: 0 PID: 17184 Comm: syz.2.2414 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  737.766578][T17184] Tainted: [L]=SOFTLOCKUP
[  737.766589][T17184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  737.766607][T17184] Call Trace:
[  737.766616][T17184]  <TASK>
[  737.766628][T17184]  dump_stack_lvl+0x100/0x190
[  737.766681][T17184]  should_fail_ex.cold+0x5/0xa
[  737.766718][T17184]  should_failslab+0xc2/0x120
[  737.766753][T17184]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  737.766801][T17184]  ? xas_split_alloc+0x11c/0x4a0
[  737.766839][T17184]  xas_split_alloc+0x11c/0x4a0
[  737.766879][T17184]  __folio_split+0x5e5/0x1640
[  737.766931][T17184]  ? __pfx___folio_split+0x10/0x10
[  737.766981][T17184]  ? __pfx___might_resched+0x10/0x10
[  737.767017][T17184]  madvise_cold_or_pageout_pte_range+0xf8c/0x2620
[  737.767073][T17184]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  737.767112][T17184]  ? tomoyo_check_open_permission+0x1a2/0x3c0
[  737.767158][T17184]  ? register_lock_class+0x40/0x560
[  737.767204][T17184]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  737.767245][T17184]  walk_pgd_range+0xc1a/0x1dd0
[  737.767300][T17184]  ? __pfx_walk_pgd_range+0x10/0x10
[  737.767327][T17184]  ? __pfx___might_resched+0x10/0x10
[  737.767358][T17184]  ? find_held_lock+0x2b/0x80
[  737.767391][T17184]  ? process_measurement+0x4c8/0x2350
[  737.767424][T17184]  __walk_page_range+0x171/0x850
[  737.767461][T17184]  ? up_write+0x28c/0x4f0
[  737.767503][T17184]  walk_page_range_vma_unsafe+0x209/0x8f0
[  737.767540][T17184]  ? __pfx_walk_page_range_vma_unsafe+0x10/0x10
[  737.767579][T17184]  ? find_held_lock+0x2b/0x80
[  737.767613][T17184]  ? mlock_drain_local+0x254/0x4e0
[  737.767656][T17184]  ? mlock_drain_local+0x254/0x4e0
[  737.767706][T17184]  walk_page_range_vma+0x63/0x90
[  737.767739][T17184]  madvise_pageout+0x259/0x540
[  737.767774][T17184]  ? __pfx_madvise_pageout+0x10/0x10
[  737.767810][T17184]  ? rcu_is_watching+0x12/0xc0
[  737.767858][T17184]  ? mtree_range_walk+0x72b/0xb70
[  737.767907][T17184]  madvise_vma_behavior+0x452/0x2240
[  737.767949][T17184]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  737.767994][T17184]  ? find_vma_prev+0xd8/0x150
[  737.768026][T17184]  ? futex_unqueue+0x133/0x2c0
[  737.768053][T17184]  ? __pfx_find_vma_prev+0x10/0x10
[  737.768098][T17184]  ? __futex_wait+0x256/0x300
[  737.768141][T17184]  madvise_walk_vmas+0x2fe/0xa90
[  737.768185][T17184]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  737.768233][T17184]  madvise_do_behavior+0x1ea/0x510
[  737.768275][T17184]  ? __pfx_madvise_do_behavior+0x10/0x10
[  737.768313][T17184]  ? down_read+0x13b/0x450
[  737.768364][T17184]  do_madvise+0x195/0x240
[  737.768400][T17184]  ? __pfx_do_madvise+0x10/0x10
[  737.768436][T17184]  ? do_futex+0x192/0x350
[  737.768480][T17184]  ? __sys_sendmsg+0x18f/0x220
[  737.768532][T17184]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  737.768581][T17184]  __x64_sys_madvise+0xa9/0x110
[  737.768619][T17184]  ? lockdep_hardirqs_on+0x78/0x100
[  737.768647][T17184]  do_syscall_64+0x115/0x840
[  737.768674][T17184]  ? clear_bhb_loop+0x40/0x90
[  737.768709][T17184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  737.768739][T17184] RIP: 0033:0x7f0d4e19ce59
[  737.768763][T17184] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  737.768790][T17184] RSP: 002b:00007f0d4f0e4028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  737.768818][T17184] RAX: ffffffffffffffda RBX: 00007f0d4e415fa0 RCX: 00007f0d4e19ce59
[  737.768838][T17184] RDX: 0000000000000015 RSI: 0000000000000081 RDI: 0000000000000000
[  737.768855][T17184] RBP: 00007f0d4e232d6f R08: 0000000000000000 R09: 0000000000000000
[  737.768872][T17184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  737.768890][T17184] R13: 00007f0d4e416038 R14: 00007f0d4e415fa0 R15: 00007ffe2d8f5578
[  737.768924][T17184]  </TASK>
[  739.114421][T15794] Bluetooth: hci3: command 0x2016 tx timeout
[  741.952374][T17277] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2430'.
[  742.336322][T17289] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2432'.
[  742.730048][T17294] random: crng reseeded on system resumption
[  743.198593][T17292] Process accounting resumed
[  743.452788][T17320] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  743.765366][T17328] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2440'.
[  745.389039][T17357] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2442'.
[  745.552199][T17364] bond0: invalid ARP target specified
[  745.831828][T17372] usb usb21: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  746.554968][T17396] sysfs_service_op_store: Client not running :-5:
[  747.269488][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[  747.276036][ T1314] ieee802154 phy1 wpan1: encryption failed: -22
[  747.885985][T17432] zswap: compressor  not available
[  748.663909][   T30] audit: type=1800 audit(8277292097.500:19): pid=17464 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2459" name="dbroot" dev="configfs" ino=72269 res=0 errno=0
[  750.005514][T17488] FAULT_INJECTION: forcing a failure.
[  750.005514][T17488] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  750.020743][T17488] CPU: 0 UID: 0 PID: 17488 Comm: syz.2.2460 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  750.020794][T17488] Tainted: [L]=SOFTLOCKUP
[  750.020803][T17488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  750.020827][T17488] Call Trace:
[  750.020836][T17488]  <TASK>
[  750.020847][T17488]  dump_stack_lvl+0x100/0x190
[  750.020901][T17488]  should_fail_ex.cold+0x5/0xa
[  750.020932][T17488]  ? prepare_alloc_pages+0x16d/0x5f0
[  750.020973][T17488]  should_fail_alloc_page+0xeb/0x140
[  750.021010][T17488]  prepare_alloc_pages+0x1f0/0x5f0
[  750.021053][T17488]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  750.021103][T17488]  ? vma_set_page_prot+0xb1/0x120
[  750.021141][T17488]  ? __mmap_region+0xc85/0x2dd0
[  750.021192][T17488]  ? __pfx___mmap_region+0x10/0x10
[  750.021237][T17488]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  750.021295][T17488]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  750.021351][T17488]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  750.021394][T17488]  ? policy_nodemask+0xed/0x4f0
[  750.021431][T17488]  alloc_pages_mpol+0x1fb/0x540
[  750.021467][T17488]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  750.021507][T17488]  alloc_pages_noprof+0x1a/0x160
[  750.021547][T17488]  __pmd_alloc+0x3b/0x950
[  750.021586][T17488]  __handle_mm_fault+0xa9c/0x2a00
[  750.021636][T17488]  ? mt_find+0x45e/0x8e0
[  750.021670][T17488]  ? __pfx___handle_mm_fault+0x10/0x10
[  750.021710][T17488]  ? __pfx_mt_find+0x10/0x10
[  750.021773][T17488]  handle_mm_fault+0x37b/0xa30
[  750.021832][T17488]  __get_user_pages+0x1178/0x32a0
[  750.021885][T17488]  ? __pfx___get_user_pages+0x10/0x10
[  750.021933][T17488]  populate_vma_page_range+0x267/0x3f0
[  750.021974][T17488]  ? __pfx_populate_vma_page_range+0x10/0x10
[  750.022016][T17488]  ? __pfx_find_vma_intersection+0x10/0x10
[  750.022053][T17488]  ? do_mmap+0x93f/0x12f0
[  750.022092][T17488]  __mm_populate+0x107/0x3a0
[  750.022131][T17488]  ? __pfx___mm_populate+0x10/0x10
[  750.022170][T17488]  ? up_write+0x28c/0x4f0
[  750.022205][T17488]  vm_mmap_pgoff+0x37f/0x470
[  750.022247][T17488]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  750.022286][T17488]  ? do_futex+0x192/0x350
[  750.022316][T17488]  ? __pfx_do_futex+0x10/0x10
[  750.022353][T17488]  ksys_mmap_pgoff+0xe4/0x610
[  750.022389][T17488]  ? __x64_sys_futex+0x358/0x4d0
[  750.022420][T17488]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  750.022452][T17488]  ? fput+0x79/0x100
[  750.022489][T17488]  ? __pfx___x64_sys_futex+0x10/0x10
[  750.022518][T17488]  ? ksys_write+0x1ac/0x250
[  750.022550][T17488]  ? __pfx_ksys_write+0x10/0x10
[  750.022587][T17488]  __x64_sys_mmap+0x125/0x190
[  750.022622][T17488]  do_syscall_64+0x115/0x840
[  750.022649][T17488]  ? clear_bhb_loop+0x40/0x90
[  750.022686][T17488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  750.022716][T17488] RIP: 0033:0x7f0d4e19ce59
[  750.022741][T17488] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  750.022770][T17488] RSP: 002b:00007f0d4f0e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  750.022799][T17488] RAX: ffffffffffffffda RBX: 00007f0d4e415fa0 RCX: 00007f0d4e19ce59
[  750.022824][T17488] RDX: 000000000000005f RSI: 0000000000400008 RDI: 0000000000000000
[  750.022842][T17488] RBP: 00007f0d4e232d6f R08: 0000000000000002 R09: 0000000000008000
[  750.022860][T17488] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  750.022878][T17488] R13: 00007f0d4e416038 R14: 00007f0d4e415fa0 R15: 00007ffe2d8f5578
[  750.022919][T17488]  </TASK>
[  751.730674][T17536] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2470'.
[  751.928836][T16004] Bluetooth: hci2: unexpected event for opcode 0x7c89
[  752.410184][T17544] device-mapper: ioctl: only supply one of name or uuid, cmd(5)
[  753.804697][T17588] ubi9: attaching mtd2
[  753.812982][T17588] ubi9 error: ubi_attach_mtd_dev: bad VID header (10) or data offsets (74)
[  754.543546][T17610] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2483'.
[  754.598684][T17610] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2483'.
[  755.912305][T17645] bond0: invalid ARP target specified
[  756.348666][T17662] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2493'.
[  756.862802][T17671] futex_wake_op: syz.1.2496 tries to shift op by -2048; fix this program
[  756.895017][T17671] futex_wake_op: syz.1.2496 tries to shift op by -2048; fix this program
[  756.948240][T17671] 0x000000000001-0x000000020000 : ""
[  756.993864][T17671] ftl_cs: FTL header corrupt!
[  758.195698][T17687] netlink: 222 bytes leftover after parsing attributes in process `syz.3.2498'.
[  758.391610][T17666] Process accounting resumed
[  759.290266][T17704] smpboot: CPU 1 is now offline
[  759.537091][T17703] Process accounting resumed
[  759.552999][T17710] bond0: invalid ARP target specified
[  759.787829][T17721] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2504'.
[  762.812864][   T30] audit: type=1804 audit(8277292111.650:20): pid=17768 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2521" name="/newroot/418/file0" dev="tmpfs" ino=2215 res=1 errno=0
[  762.915856][   T30] audit: type=1804 audit(8277292111.680:21): pid=17770 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2521" name="/newroot/418/file0" dev="tmpfs" ino=2215 res=1 errno=0
[  763.154315][T16004] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  763.198388][T16004] Bluetooth: hci4: unexpected event for opcode 0x7c89
[  764.033559][T17784] device-mapper: ioctl: only supply one of name or uuid, cmd(5)
[  764.826369][T17799] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2518'.
[  765.186610][T15794] Bluetooth: hci2: command 0x2016 tx timeout
[  765.765673][T17807] futex_wake_op: syz.3.2522 tries to shift op by -2048; fix this program
[  765.817649][T17807] 0x000000000001-0x000000000003 : ""
[  765.875471][T17807] ftl_cs: FTL header corrupt!
[  766.108437][T17823] Line length is too long: Should be less than 4094
[  766.775816][    C0] sd 0:0:1:0: [sda] tag#2221 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  766.786407][    C0] sd 0:0:1:0: [sda] tag#2221 CDB: Read(6) 08 00 00 00 09 00 00 00 00 00 00 00
[  767.267155][T16004] Bluetooth: hci2: command 0x2016 tx timeout
[  767.674067][T15794] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  768.499551][T17863] device-mapper: ioctl: only supply one of name or uuid, cmd(5)
[  769.826796][T16004] Bluetooth: hci2: command 0x2016 tx timeout
[  772.639499][T17969] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2549'.
[  772.678138][T17977] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2551'.
[  773.145295][T17990] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead.
[  773.634862][T17980] Process accounting paused
[  774.793413][T18026] netlink: 'syz.3.2560': attribute type 2 has an invalid length.
[  775.621194][T15794] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  775.859515][T18052] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2562'.
[  777.120387][T18062] netlink: 186 bytes leftover after parsing attributes in process `syz.4.2567'.
[  777.666393][T16004] Bluetooth: hci3: command 0x2016 tx timeout
[  778.264692][   T30] audit: type=1326 audit(8277292127.100:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18088 comm="syz.4.2574" exe="/root/ci-qemu-gce-upstream-auto/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5dd219ce59 code=0x0
[  779.742680][T18139] nbd: must specify at least one socket
[  779.748982][T16004] Bluetooth: hci3: command 0x2016 tx timeout
[  780.173754][T18152] netlink: 322 bytes leftover after parsing attributes in process `syz.4.2588'.
[  780.455670][T18136] sd 0:0:1:0: PR command failed: 1026
[  780.488858][T18136] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  780.524596][T18136] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  781.049374][T18172] hub 1-0:1.0: USB hub found
[  781.083549][T18172] hub 1-0:1.0: 1 port detected
[  781.159297][T18163] FAULT_INJECTION: forcing a failure.
[  781.159297][T18163] name failslab, interval 1, probability 0, space 0, times 0
[  781.380901][T18163] CPU: 0 UID: 0 PID: 18163 Comm: syz.2.2591 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  781.380929][T18163] Tainted: [L]=SOFTLOCKUP
[  781.380934][T18163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  781.380944][T18163] Call Trace:
[  781.380950][T18163]  <TASK>
[  781.380956][T18163]  dump_stack_lvl+0x100/0x190
[  781.380986][T18163]  should_fail_ex.cold+0x5/0xa
[  781.381007][T18163]  should_failslab+0xc2/0x120
[  781.381025][T18163]  __kmalloc_cache_noprof+0x7a/0x6f0
[  781.381046][T18163]  ? alloc_tty_struct+0x96/0x8c0
[  781.381069][T18163]  alloc_tty_struct+0x96/0x8c0
[  781.381090][T18163]  ? __pfx_alloc_tty_struct+0x10/0x10
[  781.381115][T18163]  tty_init_dev.part.0+0x20/0x470
[  781.381137][T18163]  tty_open+0xa63/0xfa0
[  781.381161][T18163]  ? __pfx_tty_open+0x10/0x10
[  781.381179][T18163]  ? chrdev_open+0x589/0x6a0
[  781.381197][T18163]  ? chrdev_open+0x589/0x6a0
[  781.381224][T18163]  ? __pfx_tty_open+0x10/0x10
[  781.381244][T18163]  chrdev_open+0x234/0x6a0
[  781.381264][T18163]  ? __pfx_chrdev_open+0x10/0x10
[  781.381284][T18163]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  781.381309][T18163]  do_dentry_open+0x6ab/0x14d0
[  781.381327][T18163]  ? __pfx_chrdev_open+0x10/0x10
[  781.381349][T18163]  vfs_open+0x82/0x3f0
[  781.381375][T18163]  path_openat+0x208c/0x31a0
[  781.381401][T18163]  ? __pfx_path_openat+0x10/0x10
[  781.381426][T18163]  do_file_open+0x20e/0x430
[  781.381446][T18163]  ? __pfx_do_file_open+0x10/0x10
[  781.381477][T18163]  ? alloc_fd+0x476/0x790
[  781.381496][T18163]  ? do_getname+0x191/0x390
[  781.381519][T18163]  do_sys_openat2+0x10d/0x1e0
[  781.381540][T18163]  ? __pfx_do_sys_openat2+0x10/0x10
[  781.381564][T18163]  ? __fget_files+0x21f/0x3d0
[  781.381585][T18163]  __x64_sys_openat+0x12d/0x210
[  781.381613][T18163]  ? __pfx___x64_sys_openat+0x10/0x10
[  781.381636][T18163]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  781.381658][T18163]  ? syscall_user_dispatch+0x76/0x130
[  781.381677][T18163]  do_syscall_64+0x115/0x840
[  781.381692][T18163]  ? clear_bhb_loop+0x40/0x90
[  781.381711][T18163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  781.381727][T18163] RIP: 0033:0x7f0d4e19ce59
[  781.381740][T18163] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  781.381754][T18163] RSP: 002b:00007f0d4f0c3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  781.381770][T18163] RAX: ffffffffffffffda RBX: 00007f0d4e416090 RCX: 00007f0d4e19ce59
[  781.381780][T18163] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  781.381789][T18163] RBP: 00007f0d4e232d6f R08: 0000000000000000 R09: 0000000000000000
[  781.381798][T18163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  781.381807][T18163] R13: 00007f0d4e416128 R14: 00007f0d4e416090 R15: 00007ffe2d8f5578
[  781.381827][T18163]  </TASK>
[  783.278347][   T30] audit: type=1804 audit(8277292132.120:23): pid=18215 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2602" name="/newroot/159/file0" dev="tmpfs" ino=848 res=1 errno=0
[  783.580786][T18220] ubi0: attaching mtd0
[  783.601368][T18220] ubi0: scanning is finished
[  783.627328][T18220] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  783.809654][T18220] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  784.560993][T18253] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2607'.
[  784.574800][T18227] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  784.587908][T18227] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  784.605701][T18227] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  784.638246][T18227] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  784.662294][T18254] netlink: 354 bytes leftover after parsing attributes in process `syz.2.2607'.
[  784.672371][T18227] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  784.729685][T18227] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  784.753012][T18227] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  785.593412][T18278] device-mapper: ioctl: device name cannot contain '/'
[  785.618205][T18279] device-mapper: ioctl: device name cannot contain '/'
[  785.826125][T15794] Bluetooth: hci0: command 0x2016 tx timeout
[  786.626250][T15794] Bluetooth: hci4: command 0x0406 tx timeout
[  786.706023][T15794] Bluetooth: hci3: command 0x2016 tx timeout
[  786.786185][T15794] Bluetooth: hci2: command 0x2016 tx timeout
[  788.159059][T18322] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2)
[  788.514145][T18322] Process accounting paused
[  788.706153][T15794] Bluetooth: hci4: command 0x0406 tx timeout
[  788.786032][T15794] Bluetooth: hci3: command 0x2016 tx timeout
[  788.855075][T18327] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2622'.
[  788.867322][T15794] Bluetooth: hci2: command 0x2016 tx timeout
[  789.012720][T18338] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2624'.
[  789.749791][T18359] Process accounting paused
[  789.837168][T18362] random: crng reseeded on system resumption
[  790.358368][T15794] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[  790.358392][T15794] Bluetooth: hci4: unexpected subevent 0x0e length: 725 > 15
[  790.373223][T15794] Bluetooth: hci4: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  790.393955][T18372] hub 1-0:1.0: USB hub found
[  790.507381][T18372] hub 1-0:1.0: 1 port detected
[  793.645785][T18417] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  793.914395][T18422] netlink: Conntrack attr has 133 unknown bytes
[  794.184309][T18428] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2643'.
[  794.246146][T18428] bridge_slave_1: left allmulticast mode
[  794.259373][T18428] bridge_slave_1: left promiscuous mode
[  794.283725][T18428] bridge0: port 2(bridge_slave_1) entered disabled state
[  794.378419][T18428] bridge_slave_0: left allmulticast mode
[  794.418205][T18428] bridge_slave_0: left promiscuous mode
[  794.470214][T18428] bridge0: port 1(bridge_slave_0) entered disabled state
[  794.558262][T18419] sd 0:0:1:0: PR command failed: 1026
[  794.573780][T18419] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  794.597952][T18419] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  794.653580][T15794] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  794.653605][T15794] Bluetooth: hci2: unexpected subevent 0x0e length: 725 > 15
[  794.668720][T15794] Bluetooth: hci2: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  796.278992][T18472] syz.2.2650(18472): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  797.127203][T18478] can0: slcan on ttyS2.
[  797.774240][   T30] audit: type=1800 audit(8277292146.610:24): pid=18504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2656" name="members" dev="configfs" ino=79706 res=0 errno=0
[  797.864354][T18484] can0 (unregistered): slcan off ttyS2.
[  798.045502][T18508] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2658'.
[  798.165120][T18508] netdevsim netdevsim1 netdevsim3: left allmulticast mode
[  798.237156][T18508] netdevsim netdevsim1 netdevsim3: left promiscuous mode
[  798.309653][T18508] bridge0: port 3(netdevsim3) entered disabled state
[  798.447139][T18508] bridge_slave_1: left allmulticast mode
[  798.475402][T18508] bridge_slave_1: left promiscuous mode
[  798.508606][T18508] bridge0: port 2(bridge_slave_1) entered disabled state
[  798.559679][T18508] bridge_slave_0: left allmulticast mode
[  798.573680][T18508] bridge_slave_0: left promiscuous mode
[  798.590809][T18508] bridge0: port 1(bridge_slave_0) entered disabled state
[  799.823672][T18553] netlink: 208 bytes leftover after parsing attributes in process `syz.4.2664'.
[  799.984192][T18556] netlink: 208 bytes leftover after parsing attributes in process `syz.4.2664'.
[  800.362878][T18560] FAULT_INJECTION: forcing a failure.
[  800.362878][T18560] name fail_futex, interval 1, probability 0, space 0, times 0
[  800.459612][T18560] CPU: 0 UID: 0 PID: 18560 Comm: syz.3.2665 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  800.459640][T18560] Tainted: [L]=SOFTLOCKUP
[  800.459645][T18560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  800.459654][T18560] Call Trace:
[  800.459659][T18560]  <TASK>
[  800.459665][T18560]  dump_stack_lvl+0x100/0x190
[  800.459696][T18560]  should_fail_ex.cold+0x5/0xa
[  800.459716][T18560]  get_futex_key+0x1d2/0x1510
[  800.459741][T18560]  ? __pfx_get_futex_key+0x10/0x10
[  800.459770][T18560]  futex_wake+0xea/0x530
[  800.459788][T18560]  ? rcu_is_watching+0x12/0xc0
[  800.459806][T18560]  ? __pfx_futex_wake+0x10/0x10
[  800.459826][T18560]  ? putname+0xb1/0x110
[  800.459844][T18560]  ? kmem_cache_free+0x127/0x6c0
[  800.459869][T18560]  do_futex+0x32b/0x350
[  800.459884][T18560]  ? __pfx_do_futex+0x10/0x10
[  800.459897][T18560]  ? __pfx_do_sys_openat2+0x10/0x10
[  800.459921][T18560]  ? __fget_files+0x21f/0x3d0
[  800.459940][T18560]  __x64_sys_futex+0x34f/0x4d0
[  800.459956][T18560]  ? __x64_sys_openat+0x12d/0x210
[  800.459978][T18560]  ? __pfx___x64_sys_futex+0x10/0x10
[  800.459997][T18560]  ? rcu_is_watching+0x12/0xc0
[  800.460015][T18560]  do_syscall_64+0x115/0x840
[  800.460039][T18560]  ? clear_bhb_loop+0x40/0x90
[  800.460057][T18560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  800.460073][T18560] RIP: 0033:0x7fb000f9ce59
[  800.460087][T18560] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  800.460102][T18560] RSP: 002b:00007fb001ede0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  800.460117][T18560] RAX: ffffffffffffffda RBX: 00007fb001215fa8 RCX: 00007fb000f9ce59
[  800.460127][T18560] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb001215fac
[  800.460136][T18560] RBP: 00007fb001215fa0 R08: 0000000000000001 R09: 0000000000000000
[  800.460145][T18560] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000
[  800.460154][T18560] R13: 00007fb001216038 R14: 00007ffd9ebd0f70 R15: 00007ffd9ebd1058
[  800.460173][T18560]  </TASK>
[  800.982866][T15794] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  800.982891][T15794] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15
[  801.003963][T18576] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2666'.
[  801.015588][T15794] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  803.930842][T18633] Process accounting resumed
[  805.685368][T18685] FAULT_INJECTION: forcing a failure.
[  805.685368][T18685] name failslab, interval 1, probability 0, space 0, times 0
[  805.759799][T18685] CPU: 0 UID: 0 PID: 18685 Comm: syz.3.2687 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  805.759826][T18685] Tainted: [L]=SOFTLOCKUP
[  805.759832][T18685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  805.759841][T18685] Call Trace:
[  805.759846][T18685]  <TASK>
[  805.759853][T18685]  dump_stack_lvl+0x100/0x190
[  805.759883][T18685]  should_fail_ex.cold+0x5/0xa
[  805.759903][T18685]  should_failslab+0xc2/0x120
[  805.759921][T18685]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  805.759943][T18685]  ? ptlock_alloc+0x1f/0x70
[  805.759964][T18685]  ? do_raw_spin_lock+0x128/0x260
[  805.759984][T18685]  ptlock_alloc+0x1f/0x70
[  805.760004][T18685]  pte_alloc_one+0x82/0x3d0
[  805.760024][T18685]  do_fault+0x86c/0x1750
[  805.760042][T18685]  ? __pmd_alloc+0x3fb/0x950
[  805.760061][T18685]  __handle_mm_fault+0x187d/0x2a00
[  805.760086][T18685]  ? mt_find+0x45e/0x8e0
[  805.760103][T18685]  ? __pfx___handle_mm_fault+0x10/0x10
[  805.760123][T18685]  ? __pfx_mt_find+0x10/0x10
[  805.760150][T18685]  ? find_vma+0xbf/0x140
[  805.760165][T18685]  ? __pfx_find_vma+0x10/0x10
[  805.760190][T18685]  handle_mm_fault+0x37b/0xa30
[  805.760216][T18685]  do_user_addr_fault+0x74c/0x12f0
[  805.760236][T18685]  ? trace_page_fault_kernel+0x7a/0x200
[  805.760255][T18685]  exc_page_fault+0x6f/0xd0
[  805.760271][T18685]  asm_exc_page_fault+0x26/0x30
[  805.760291][T18685] RIP: 0010:rep_movs_alternative+0x30/0x90
[  805.760313][T18685] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  805.760328][T18685] RSP: 0018:ffffc90005bffb78 EFLAGS: 00050212
[  805.760341][T18685] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000022
[  805.760351][T18685] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90005bffbd8
[  805.760360][T18685] RBP: 0000000000000022 R08: 0000000000000001 R09: fffff52000b7ff7f
[  805.760369][T18685] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  805.760377][T18685] R13: ffffc90005bffbd8 R14: ffffc90005bffca0 R15: ffffc90005bffbd8
[  805.760397][T18685]  _copy_from_user+0x98/0xd0
[  805.760419][T18685]  kstrtouint_from_user+0xd6/0x1d0
[  805.760435][T18685]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  805.760449][T18685]  ? __lock_acquire+0x4a5/0x2630
[  805.760477][T18685]  ? lock_acquire+0x1b1/0x370
[  805.760502][T18685]  proc_fail_nth_write+0x83/0x220
[  805.760526][T18685]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  805.760554][T18685]  vfs_write+0x2aa/0x1070
[  805.760571][T18685]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  805.760596][T18685]  ? __pfx_vfs_write+0x10/0x10
[  805.760612][T18685]  ? __fget_files+0x215/0x3d0
[  805.760634][T18685]  ? __fget_files+0x21f/0x3d0
[  805.760656][T18685]  ksys_write+0x12a/0x250
[  805.760672][T18685]  ? __pfx_ksys_write+0x10/0x10
[  805.760691][T18685]  ? rcu_is_watching+0x12/0xc0
[  805.760711][T18685]  do_syscall_64+0x115/0x840
[  805.760725][T18685]  ? clear_bhb_loop+0x40/0x90
[  805.760743][T18685]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  805.760757][T18685] RIP: 0033:0x7fb000f9ce59
[  805.760770][T18685] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  805.760784][T18685] RSP: 002b:00007fb001ede028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  805.760797][T18685] RAX: ffffffffffffffda RBX: 00007fb001215fa0 RCX: 00007fb000f9ce59
[  805.760807][T18685] RDX: 0000000000100085 RSI: 0000000000000000 RDI: 0000000000000003
[  805.760815][T18685] RBP: 00007fb001032d6f R08: 0000000000000000 R09: 0000000000000000
[  805.760825][T18685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  805.760833][T18685] R13: 00007fb001216038 R14: 00007fb001215fa0 R15: 00007ffd9ebd1058
[  805.760854][T18685]  </TASK>
[  806.673095][T18689] FAULT_INJECTION: forcing a failure.
[  806.673095][T18689] name failslab, interval 1, probability 0, space 0, times 0
[  806.745157][T18689] CPU: 0 UID: 0 PID: 18689 Comm: syz.3.2687 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  806.745186][T18689] Tainted: [L]=SOFTLOCKUP
[  806.745192][T18689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  806.745202][T18689] Call Trace:
[  806.745212][T18689]  <TASK>
[  806.745219][T18689]  dump_stack_lvl+0x100/0x190
[  806.745248][T18689]  should_fail_ex.cold+0x5/0xa
[  806.745268][T18689]  ? ima_alloc_init_template+0xb6/0x6d0
[  806.745285][T18689]  should_failslab+0xc2/0x120
[  806.745303][T18689]  __kmalloc_noprof+0xe0/0x850
[  806.745326][T18689]  ? find_held_lock+0x2b/0x80
[  806.745345][T18689]  ? take_dentry_name_snapshot+0x30b/0x7c0
[  806.745370][T18689]  ima_alloc_init_template+0xb6/0x6d0
[  806.745388][T18689]  ? take_dentry_name_snapshot+0x310/0x7c0
[  806.745414][T18689]  ima_store_measurement+0x1e3/0x5b0
[  806.745432][T18689]  ? __pfx_ima_store_measurement+0x10/0x10
[  806.745457][T18689]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  806.745483][T18689]  process_measurement+0x19cc/0x2350
[  806.745504][T18689]  ? stack_trace_save+0x8e/0xc0
[  806.745524][T18689]  ? __pfx_process_measurement+0x10/0x10
[  806.745540][T18689]  ? __lock_acquire+0x4a5/0x2630
[  806.745561][T18689]  ? __kasan_slab_alloc+0x89/0x90
[  806.745576][T18689]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  806.745599][T18689]  ? init_file+0x95/0x480
[  806.745617][T18689]  ? alloc_empty_file+0x79/0x1c0
[  806.745636][T18689]  ? alloc_file_pseudo+0x13a/0x230
[  806.745656][T18689]  ? ksys_mmap_pgoff+0x242/0x610
[  806.745673][T18689]  ? __x64_sys_mmap+0x125/0x190
[  806.745686][T18689]  ? do_syscall_64+0x115/0x840
[  806.745719][T18689]  ? __pfx_aa_file_perm+0x10/0x10
[  806.745746][T18689]  ima_file_mmap+0x1c4/0x1f0
[  806.745761][T18689]  ? __pfx_ima_file_mmap+0x10/0x10
[  806.745781][T18689]  security_mmap_file+0x278/0x9b0
[  806.745802][T18689]  vm_mmap_pgoff+0xec/0x470
[  806.745823][T18689]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  806.745840][T18689]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  806.745862][T18689]  ? hugetlbfs_get_inode+0x3f5/0x700
[  806.745888][T18689]  ksys_mmap_pgoff+0x285/0x610
[  806.745908][T18689]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  806.745929][T18689]  ? xfd_validate_state+0x129/0x190
[  806.745998][T18689]  __x64_sys_mmap+0x125/0x190
[  806.746016][T18689]  do_syscall_64+0x115/0x840
[  806.746032][T18689]  ? clear_bhb_loop+0x40/0x90
[  806.746050][T18689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  806.746065][T18689] RIP: 0033:0x7fb000f9ce59
[  806.746079][T18689] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  806.746093][T18689] RSP: 002b:00007fb001ebd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  806.746108][T18689] RAX: ffffffffffffffda RBX: 00007fb001216090 RCX: 00007fb000f9ce59
[  806.746119][T18689] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000
[  806.746128][T18689] RBP: 00007fb001032d6f R08: 0000000000000401 R09: 0000300000000000
[  806.746137][T18689] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  806.746146][T18689] R13: 00007fb001216128 R14: 00007fb001216090 R15: 00007ffd9ebd1058
[  806.746166][T18689]  </TASK>
[  808.188401][   T30] audit: type=1804 audit(8277292157.030:25): pid=18689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.3.2687" name="anon_hugepage" dev="hugetlbfs" ino=80797 res=0 errno=0
[  808.710719][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[  808.717150][ T1314] ieee802154 phy1 wpan1: encryption failed: -22
[  809.622925][T18720] capability: warning: `syz.1.2695' uses 32-bit capabilities (legacy support in use)
[  810.842350][T18749] random: crng reseeded on system resumption
[  813.243932][T18797] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2709'.
[  814.534216][T18827] queue_state_write: operation too long
[  814.553858][T18826] Falling back ldisc for ttyS2.
[  814.747017][T18827] queue_state_write: use 'run', 'start' or 'kick'
[  814.847714][T18827] queue_state_write: operation too long
[  814.909295][T18827] queue_state_write: use 'run', 'start' or 'kick'
[  814.954724][T18827] queue_state_write: operation too long
[  815.003116][T18827] queue_state_write: use 'run', 'start' or 'kick'
[  815.052540][T18827] queue_state_write: operation too long
[  815.093977][T18827] queue_state_write: use 'run', 'start' or 'kick'
[  815.147959][T18827] queue_state_write: operation too long
[  815.185002][T18827] queue_state_write: use 'run', 'start' or 'kick'
[  815.975706][T18867] FAULT_INJECTION: forcing a failure.
[  815.975706][T18867] name failslab, interval 1, probability 0, space 0, times 0
[  816.022003][T18867] CPU: 0 UID: 0 PID: 18867 Comm: syz.2.2723 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  816.022029][T18867] Tainted: [L]=SOFTLOCKUP
[  816.022035][T18867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  816.022044][T18867] Call Trace:
[  816.022049][T18867]  <TASK>
[  816.022055][T18867]  dump_stack_lvl+0x100/0x190
[  816.022085][T18867]  should_fail_ex.cold+0x5/0xa
[  816.022105][T18867]  ? tomoyo_encode2+0xfb/0x3c0
[  816.022124][T18867]  should_failslab+0xc2/0x120
[  816.022142][T18867]  __kmalloc_noprof+0xe0/0x850
[  816.022165][T18867]  ? d_absolute_path+0x136/0x1b0
[  816.022183][T18867]  tomoyo_encode2+0xfb/0x3c0
[  816.022206][T18867]  tomoyo_encode+0x29/0x50
[  816.022225][T18867]  tomoyo_realpath_from_path+0x18c/0x690
[  816.022250][T18867]  tomoyo_path_number_perm+0x23c/0x580
[  816.022267][T18867]  ? tomoyo_path_number_perm+0x22e/0x580
[  816.022287][T18867]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  816.022304][T18867]  ? futex_wait+0x11e/0x370
[  816.022339][T18867]  ? find_held_lock+0x2b/0x80
[  816.022357][T18867]  ? __fget_files+0x215/0x3d0
[  816.022373][T18867]  ? hook_file_ioctl_common+0x149/0x410
[  816.022390][T18867]  ? __fget_files+0x215/0x3d0
[  816.022410][T18867]  ? __fget_files+0x21f/0x3d0
[  816.022430][T18867]  security_file_ioctl+0xd3/0x230
[  816.022448][T18867]  __x64_sys_ioctl+0xb7/0x210
[  816.022465][T18867]  do_syscall_64+0x115/0x840
[  816.022479][T18867]  ? clear_bhb_loop+0x40/0x90
[  816.022497][T18867]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  816.022513][T18867] RIP: 0033:0x7f0d4e19ce59
[  816.022526][T18867] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  816.022541][T18867] RSP: 002b:00007f0d4f0e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  816.022555][T18867] RAX: ffffffffffffffda RBX: 00007f0d4e415fa0 RCX: 00007f0d4e19ce59
[  816.022565][T18867] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008
[  816.022574][T18867] RBP: 00007f0d4e232d6f R08: 0000000000000000 R09: 0000000000000000
[  816.022584][T18867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  816.022593][T18867] R13: 00007f0d4e416038 R14: 00007f0d4e415fa0 R15: 00007ffe2d8f5578
[  816.022620][T18867]  </TASK>
[  816.022635][T18867] ERROR: Out of memory at tomoyo_realpath_from_path.
[  817.045741][T18874] netlink: 504 bytes leftover after parsing attributes in process `syz.1.2725'.
[  817.112018][T18881] netlink: 504 bytes leftover after parsing attributes in process `syz.1.2725'.
[  817.171285][T18884] mtrr: base(0xfffff2fffffff200000) is not aligned on a size(0xfffff2ff000) boundary
[  818.654654][T18933] FAULT_INJECTION: forcing a failure.
[  818.654654][T18933] name failslab, interval 1, probability 0, space 0, times 0
[  818.855386][T18933] CPU: 0 UID: 0 PID: 18933 Comm: syz.3.2735 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  818.855414][T18933] Tainted: [L]=SOFTLOCKUP
[  818.855420][T18933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  818.855429][T18933] Call Trace:
[  818.855434][T18933]  <TASK>
[  818.855440][T18933]  dump_stack_lvl+0x100/0x190
[  818.855471][T18933]  should_fail_ex.cold+0x5/0xa
[  818.855491][T18933]  ? group_cpus_evenly+0xec/0x660
[  818.855509][T18933]  should_failslab+0xc2/0x120
[  818.855526][T18933]  __kmalloc_noprof+0xe0/0x850
[  818.855554][T18933]  group_cpus_evenly+0xec/0x660
[  818.855574][T18933]  ? __pfx_group_cpus_evenly+0x10/0x10
[  818.855602][T18933]  blk_mq_map_queues+0x9d/0x430
[  818.855625][T18933]  ? __pfx_blk_mq_map_queues+0x10/0x10
[  818.855644][T18933]  ? rcu_is_watching+0x12/0xc0
[  818.855660][T18933]  ? trace_kmalloc+0xe3/0x110
[  818.855677][T18933]  ? __kasan_kmalloc+0xaa/0xb0
[  818.855694][T18933]  blk_mq_update_queue_map+0x305/0x3a0
[  818.855715][T18933]  blk_mq_alloc_tag_set+0x660/0x1330
[  818.855729][T18933]  ? idr_alloc+0x37/0x130
[  818.855751][T18933]  loop_add+0x3b7/0xb60
[  818.855770][T18933]  ? __pfx_loop_add+0x10/0x10
[  818.855802][T18933]  ? find_held_lock+0x2b/0x80
[  818.855820][T18933]  ? __fget_files+0x215/0x3d0
[  818.855839][T18933]  loop_control_ioctl+0xae/0x620
[  818.855860][T18933]  ? __pfx_loop_control_ioctl+0x10/0x10
[  818.855882][T18933]  ? __pfx_loop_control_ioctl+0x10/0x10
[  818.855902][T18933]  __x64_sys_ioctl+0x18e/0x210
[  818.855919][T18933]  do_syscall_64+0x115/0x840
[  818.855933][T18933]  ? clear_bhb_loop+0x40/0x90
[  818.855951][T18933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  818.855967][T18933] RIP: 0033:0x7fb000f9ce59
[  818.855980][T18933] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  818.855994][T18933] RSP: 002b:00007fb001ede028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  818.856009][T18933] RAX: ffffffffffffffda RBX: 00007fb001215fa0 RCX: 00007fb000f9ce59
[  818.856019][T18933] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008
[  818.856028][T18933] RBP: 00007fb001032d6f R08: 0000000000000000 R09: 0000000000000000
[  818.856038][T18933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  818.856047][T18933] R13: 00007fb001216038 R14: 00007fb001215fa0 R15: 00007ffd9ebd1058
[  818.856066][T18933]  </TASK>
[  819.428214][T18957] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2739'.
[  819.527313][T18957] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2739'.
[  819.801286][T18947] Process accounting resumed
[  820.144525][T18982] random: crng reseeded on system resumption
[  820.494281][T18972] hub 1-0:1.0: USB hub found
[  820.517149][T18972] hub 1-0:1.0: 1 port detected
[  822.518436][T18933] Process accounting resumed
[  823.367424][T19038] vhci_hcd vhci_hcd.2: invalid port number 16
[  823.393106][T19038] vhci_hcd vhci_hcd.2: invalid port number 16
[  823.753179][T19049] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  826.052037][T19116] futex_wake_op: syz.3.2767 tries to shift op by -2048; fix this program
[  826.155757][T19113] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2769'.
[  826.685389][T19126] random: crng reseeded on system resumption
[  829.101855][T19165] random: crng reseeded on system resumption
[  830.073210][T15794] Bluetooth: hci2: unexpected event 0x10 length: 124 > 1
[  830.075229][T16004] Bluetooth: hci2: hardware error 0x00
[  830.169906][T19196] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2780'.
[  831.488184][T15794] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5
[  832.147308][T16004] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  832.703961][T19257] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  833.701198][T19270] random: crng reseeded on system resumption
[  833.985898][T19287] Process accounting paused
[  836.145780][T19330] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  837.345905][T19371] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2809'.
[  837.478336][T19370] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2809'.
[  837.878871][T19391] random: crng reseeded on system resumption
[  838.210926][T19398] random: crng reseeded on system resumption
[  838.331531][T19399] hub 1-0:1.0: USB hub found
[  838.442119][T19399] hub 1-0:1.0: 1 port detected
[  839.442172][T19359] Process accounting resumed
[  839.461946][T19406] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2815'.
[  840.498336][T19444] FAULT_INJECTION: forcing a failure.
[  840.498336][T19444] name fail_futex, interval 1, probability 0, space 0, times 0
[  840.557873][T19444] CPU: 0 UID: 0 PID: 19444 Comm: syz.2.2820 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  840.557900][T19444] Tainted: [L]=SOFTLOCKUP
[  840.557905][T19444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  840.557914][T19444] Call Trace:
[  840.557919][T19444]  <TASK>
[  840.557926][T19444]  dump_stack_lvl+0x100/0x190
[  840.557954][T19444]  should_fail_ex.cold+0x5/0xa
[  840.557974][T19444]  get_futex_key+0x1d2/0x1510
[  840.558001][T19444]  ? __pfx_get_futex_key+0x10/0x10
[  840.558032][T19444]  futex_wake+0xea/0x530
[  840.558049][T19444]  ? rcu_is_watching+0x12/0xc0
[  840.558066][T19444]  ? __pfx_futex_wake+0x10/0x10
[  840.558086][T19444]  ? putname+0xb1/0x110
[  840.558104][T19444]  ? kmem_cache_free+0x127/0x6c0
[  840.558129][T19444]  do_futex+0x32b/0x350
[  840.558145][T19444]  ? __pfx_do_futex+0x10/0x10
[  840.558158][T19444]  ? __pfx_do_sys_openat2+0x10/0x10
[  840.558185][T19444]  __x64_sys_futex+0x34f/0x4d0
[  840.558201][T19444]  ? __x64_sys_openat+0x12d/0x210
[  840.558223][T19444]  ? __pfx___x64_sys_futex+0x10/0x10
[  840.558242][T19444]  ? rcu_is_watching+0x12/0xc0
[  840.558261][T19444]  do_syscall_64+0x115/0x840
[  840.558276][T19444]  ? clear_bhb_loop+0x40/0x90
[  840.558293][T19444]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  840.558309][T19444] RIP: 0033:0x7f0d4e19ce59
[  840.558323][T19444] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  840.558337][T19444] RSP: 002b:00007f0d4f0e40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  840.558352][T19444] RAX: ffffffffffffffda RBX: 00007f0d4e415fa8 RCX: 00007f0d4e19ce59
[  840.558361][T19444] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0d4e415fac
[  840.558371][T19444] RBP: 00007f0d4e415fa0 R08: 0000000000000001 R09: 0000000000000000
[  840.558379][T19444] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000
[  840.558388][T19444] R13: 00007f0d4e416038 R14: 00007ffe2d8f5490 R15: 00007ffe2d8f5578
[  840.558406][T19444]  </TASK>
[  842.760028][T19488] random: crng reseeded on system resumption
[  844.767764][T19525] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2838'.
[  845.670689][T19554] random: crng reseeded on system resumption
[  845.798594][T19557] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  846.560083][   T30] audit: type=1800 audit(8277292195.390:26): pid=19579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2847" name="lu_gp_id" dev="configfs" ino=86575 res=0 errno=0
[  847.118669][T19603] i2c i2c-0: new_device: Invalid device name
[  847.338766][T16004] Bluetooth: hci4: unexpected event 0x1c length: 725 > 5
[  847.444057][T19615] sd 0:0:1:0: device reset
[  847.850281][T19630] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2854'.
[  848.693045][T19638] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2856'.
[  848.870483][T19638] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2856'.
[  849.457940][T15794] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  849.474187][T15794] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  849.483451][T15794] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  849.497355][T15794] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  849.510523][T15794] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  850.045490][T19673] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x196 pfn:0x78000
[  850.111065][T19673] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  850.150159][T19673] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  850.184110][T19656] Process accounting paused
[  850.218919][T19673] raw: 0000000000000196 0000000000000000 00000001ffffffff 0000000000000000
[  850.262982][T19673] page dumped because: unmovable page
[  850.283498][T19673] page_owner tracks the page as allocated
[  850.316745][T19673] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 15708, tgid 15706 (syz.2.2153), ts 669124986377, free_ts 667255045235
[  850.385727][T19673]  post_alloc_hook+0xfd/0x120
[  850.408113][T19673]  get_page_from_freelist+0x11a6/0x3410
[  850.421374][T19673]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  850.442028][T19673]  alloc_pages_bulk_noprof+0x649/0x1360
[  850.463602][T19673]  __kasan_populate_vmalloc+0xf0/0x210
[  850.483115][T19673]  alloc_vmap_area+0x95d/0x2b70
[  850.498346][T19673]  __get_vm_area_node+0x1ca/0x330
[  850.516021][T19673]  __vmalloc_node_range_noprof+0x228/0x1630
[  850.534701][T19673]  __vmalloc_node_noprof+0xad/0xf0
[  850.552899][T19673]  profile_init+0xe0/0x140
[  850.571039][T19673]  profiling_store+0x73/0xf0
[  850.590645][T19673]  kobj_attr_store+0x58/0x80
[  850.605673][T19673]  sysfs_kf_write+0xf2/0x150
[  850.621931][T19673]  kernfs_fop_write_iter+0x3e0/0x5f0
[  850.642417][T19673]  vfs_write+0x6ac/0x1070
[  850.659220][T19673]  ksys_write+0x12a/0x250
[  850.676493][T19673] page last free pid 5747 tgid 5747 stack trace:
[  850.698311][T19673]  __free_frozen_pages+0x794/0x10a0
[  850.717048][T19673]  __folio_put+0x3b4/0x5f0
[  850.731515][T19673]  aio_free_ring+0x283/0x4c0
[  850.745502][T19673]  free_ioctx+0x23/0xc0
[  850.759684][T19673]  process_one_work+0xa0e/0x1980
[  850.778967][T19673]  worker_thread+0x5ef/0xe50
[  850.795567][T19673]  kthread+0x370/0x450
[  850.810008][T19673]  ret_from_fork+0x72b/0xd50
[  850.827498][T19673]  ret_from_fork_asm+0x1a/0x30
[  851.586229][T15794] Bluetooth: hci1: command tx timeout
[  852.311194][T19658] bridge0: port 1(bridge_slave_0) entered blocking state
[  852.341594][T19658] bridge0: port 1(bridge_slave_0) entered disabled state
[  852.392728][T19658] bridge_slave_0: entered allmulticast mode
[  852.424121][T19658] bridge_slave_0: entered promiscuous mode
[  852.459346][T19658] bridge0: port 2(bridge_slave_1) entered blocking state
[  852.474507][T15794] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  852.500169][T19658] bridge0: port 2(bridge_slave_1) entered disabled state
[  852.560076][T19658] bridge_slave_1: entered allmulticast mode
[  852.602512][T19658] bridge_slave_1: entered promiscuous mode
[  852.692176][T19726] Process accounting paused
[  852.718630][T19658] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  852.782225][T19658] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  852.975678][T19658] team0: Port device team_slave_0 added
[  853.008885][T19658] team0: Port device team_slave_1 added
[  853.281089][T19658] batman_adv: batadv0: Adding interface: batadv_slave_0
[  853.311528][T19658] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  853.427180][T19658] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  853.470409][T19658] batman_adv: batadv0: Adding interface: batadv_slave_1
[  853.492000][T19658] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  853.585308][T19658] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  853.666281][T15794] Bluetooth: hci1: command tx timeout
[  854.120706][T19658] hsr_slave_0: entered promiscuous mode
[  854.134887][T19658] hsr_slave_1: entered promiscuous mode
[  854.149704][T19658] debugfs: 'hsr0' already exists in 'hsr'
[  854.165609][T19658] Cannot create hsr debugfs directory
[  855.502328][T19658] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  855.746222][T15794] Bluetooth: hci1: command tx timeout
[  856.095507][T19658] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  856.325780][T19658] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  856.562140][T19658] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  857.286353][T19658] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  857.320351][T19658] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  857.345512][T19658] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  857.412651][T19658] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  857.603748][T19658] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  857.664159][T19658] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  857.695539][T19658] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  857.733823][T19658] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  857.829449][T15794] Bluetooth: hci1: command tx timeout
[  858.679764][T19658] 8021q: adding VLAN 0 to HW filter on device bond0
[  858.760211][T19658] 8021q: adding VLAN 0 to HW filter on device team0
[  858.788538][T19823] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2891'.
[  858.810053][T17015] bridge0: port 1(bridge_slave_0) entered blocking state
[  858.817196][T17015] bridge0: port 1(bridge_slave_0) entered forwarding state
[  858.907782][T19828] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2891'.
[  858.933940][T15953] bridge0: port 2(bridge_slave_1) entered blocking state
[  858.941127][T15953] bridge0: port 2(bridge_slave_1) entered forwarding state
[  859.032446][T19823] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2891'.
[  859.983677][T19857] netlink: 'syz.3.2897': attribute type 2 has an invalid length.
[  860.250277][T19658] 8021q: adding VLAN 0 to HW filter on device batadv0
[  860.363987][T19853] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2897'.
[  860.421220][T19658] veth0_vlan: entered promiscuous mode
[  860.445537][T19853] virt_wifi0: entered allmulticast mode
[  860.496675][T19658] veth1_vlan: entered promiscuous mode
[  860.756260][T19658] veth0_macvtap: entered promiscuous mode
[  860.840384][T19658] veth1_macvtap: entered promiscuous mode
[  861.102591][T19658] batman_adv: batadv0: Interface activated: batadv_slave_0
[  861.199748][T19658] batman_adv: batadv0: Interface activated: batadv_slave_1
[  861.333898][T15953] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  861.374303][T15953] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  861.422471][T15953] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  861.525869][T15953] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  862.061963][T15808] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  862.096023][T15808] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  862.291695][T15953] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  862.342206][T15953] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  862.482403][T19889] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2903'.
[  862.541673][T19658] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  863.251240][T19907] netlink: 186 bytes leftover after parsing attributes in process `syz.4.2908'.
[  863.290634][T19907] netlink: 186 bytes leftover after parsing attributes in process `syz.4.2908'.
[  863.361720][T19910] FAULT_INJECTION: forcing a failure.
[  863.361720][T19910] name fail_futex, interval 1, probability 0, space 0, times 0
[  863.402170][T19910] CPU: 0 UID: 8 PID: 19910 Comm: syz.1.2909 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  863.402196][T19910] Tainted: [L]=SOFTLOCKUP
[  863.402201][T19910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  863.402210][T19910] Call Trace:
[  863.402215][T19910]  <TASK>
[  863.402221][T19910]  dump_stack_lvl+0x100/0x190
[  863.402251][T19910]  should_fail_ex.cold+0x5/0xa
[  863.402270][T19910]  get_futex_key+0x1d2/0x1510
[  863.402296][T19910]  ? __pfx_get_futex_key+0x10/0x10
[  863.402318][T19910]  ? lock_acquire+0x1b1/0x370
[  863.402346][T19910]  futex_wake+0xea/0x530
[  863.402365][T19910]  ? __pfx_futex_wake+0x10/0x10
[  863.402382][T19910]  ? exit_mm_release+0x19/0x30
[  863.402408][T19910]  do_futex+0x32b/0x350
[  863.402423][T19910]  ? __pfx_do_futex+0x10/0x10
[  863.402437][T19910]  ? __might_fault+0xc5/0x140
[  863.402464][T19910]  mm_release+0x24a/0x2f0
[  863.402482][T19910]  do_exit+0x707/0x2af0
[  863.402506][T19910]  ? __pfx_do_exit+0x10/0x10
[  863.402526][T19910]  ? do_raw_spin_lock+0x128/0x260
[  863.402542][T19910]  ? find_held_lock+0x2b/0x80
[  863.402559][T19910]  ? get_signal+0x7e5/0x2210
[  863.402578][T19910]  do_group_exit+0xd5/0x2a0
[  863.402601][T19910]  get_signal+0x20ff/0x2210
[  863.402625][T19910]  ? __pfx_get_signal+0x10/0x10
[  863.402644][T19910]  ? do_futex+0x192/0x350
[  863.402660][T19910]  arch_do_signal_or_restart+0x91/0x7a0
[  863.402683][T19910]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  863.402711][T19910]  ? rcu_is_watching+0x12/0xc0
[  863.402730][T19910]  exit_to_user_mode_loop+0x98/0x670
[  863.402753][T19910]  ? rcu_is_watching+0x12/0xc0
[  863.402771][T19910]  do_syscall_64+0x652/0x840
[  863.402786][T19910]  ? clear_bhb_loop+0x40/0x90
[  863.402804][T19910]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.402819][T19910] RIP: 0033:0x7f169a79ce59
[  863.402832][T19910] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  863.402846][T19910] RSP: 002b:00007f169b6cd0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  863.402861][T19910] RAX: fffffffffffffe00 RBX: 00007f169aa16098 RCX: 00007f169a79ce59
[  863.402871][T19910] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f169aa16098
[  863.402879][T19910] RBP: 00007f169aa16090 R08: 0000000000000000 R09: 0000000000000000
[  863.402888][T19910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  863.402897][T19910] R13: 00007f169aa16128 R14: 00007fffc459aaa0 R15: 00007fffc459ab88
[  863.402915][T19910]  </TASK>
[  864.336228][T19929] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2913'.
[  864.373201][T19929] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2913'.
[  864.983851][T19949] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  865.039461][T19949] kernel read not supported for file /events/vmalloc/enable (pid: 19949 comm: syz.1.2918)
[  865.149240][   T30] audit: type=1800 audit(2147483659.400:27): pid=19949 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2918" name="enable" dev="tracefs" ino=19680823 res=0 errno=0
[  866.348804][T19987] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2923'.
[  866.378259][T19988] netlink: zone id is out of range
[  866.404748][T19988] netlink: zone id is out of range
[  866.453697][T19988] netlink: zone id is out of range
[  866.510334][T19988] netlink: zone id is out of range
[  866.584473][T19988] netlink: zone id is out of range
[  866.644994][T19988] netlink: zone id is out of range
[  866.733616][T19988] netlink: zone id is out of range
[  866.795262][T20002] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2924'.
[  866.871854][T19988] netlink: zone id is out of range
[  866.940040][T19988] netlink: zone id is out of range
[  866.997614][T19988] netlink: zone id is out of range
[  867.284981][T20012] FAULT_INJECTION: forcing a failure.
[  867.284981][T20012] name failslab, interval 1, probability 0, space 0, times 0
[  867.364124][T20012] CPU: 0 UID: 0 PID: 20012 Comm: syz.2.2927 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  867.364151][T20012] Tainted: [L]=SOFTLOCKUP
[  867.364157][T20012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  867.364165][T20012] Call Trace:
[  867.364171][T20012]  <TASK>
[  867.364177][T20012]  dump_stack_lvl+0x100/0x190
[  867.364207][T20012]  should_fail_ex.cold+0x5/0xa
[  867.364228][T20012]  should_failslab+0xc2/0x120
[  867.364245][T20012]  __kmalloc_cache_noprof+0x7a/0x6f0
[  867.364272][T20012]  ? snd_pcm_oss_change_params_locked+0x211/0x39f0
[  867.364293][T20012]  snd_pcm_oss_change_params_locked+0x211/0x39f0
[  867.364309][T20012]  ? trace_contention_end+0x65/0x170
[  867.364328][T20012]  ? snd_pcm_oss_make_ready+0xcb/0x1b0
[  867.364347][T20012]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  867.364363][T20012]  ? __pfx___mutex_lock+0x10/0x10
[  867.364386][T20012]  ? __fsnotify_parent+0x2b4/0xca0
[  867.364411][T20012]  snd_pcm_oss_make_ready+0xeb/0x1b0
[  867.364428][T20012]  snd_pcm_oss_sync+0x1de/0x840
[  867.364446][T20012]  snd_pcm_oss_release+0x238/0x300
[  867.364462][T20012]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  867.364479][T20012]  __fput+0x3ff/0xb50
[  867.364503][T20012]  task_work_run+0x150/0x240
[  867.364518][T20012]  ? __pfx_task_work_run+0x10/0x10
[  867.364533][T20012]  ? rcu_is_watching+0x12/0xc0
[  867.364553][T20012]  exit_to_user_mode_loop+0x157/0x670
[  867.364575][T20012]  ? rcu_is_watching+0x12/0xc0
[  867.364593][T20012]  do_syscall_64+0x652/0x840
[  867.364607][T20012]  ? clear_bhb_loop+0x40/0x90
[  867.364625][T20012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  867.364640][T20012] RIP: 0033:0x7f0d4e19ce59
[  867.364663][T20012] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  867.364678][T20012] RSP: 002b:00007f0d4f0e4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  867.364692][T20012] RAX: 0000000000000000 RBX: 00007f0d4e415fa0 RCX: 00007f0d4e19ce59
[  867.364702][T20012] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  867.364711][T20012] RBP: 00007f0d4e232d6f R08: 0000000000000000 R09: 0000000000000000
[  867.364719][T20012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  867.364728][T20012] R13: 00007f0d4e416038 R14: 00007f0d4e415fa0 R15: 00007ffe2d8f5578
[  867.364749][T20012]  </TASK>
[  868.007173][T20022] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2932'.
[  868.049717][T20022] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2932'.
[  868.200836][T20029] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2934'.
[  868.435136][T20033] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2934'.
[  869.980289][T20083] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2943'.
[  870.040694][T20083] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2943'.
[  870.091282][T20079] netlink: 326 bytes leftover after parsing attributes in process `syz.2.2942'.
[  870.152349][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[  870.158884][ T1314] ieee802154 phy1 wpan1: encryption failed: -22
[  870.771047][T20070] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000
[  870.902738][T20070] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  870.979779][T20070] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000
[  871.041365][T20070] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  871.086184][T20070] page dumped because: unmovable page
[  871.103984][T20070] page_owner info is not present (never set?)
[  871.698469][T20119] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2952'.
[  871.764055][T20122] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2952'.
[  871.901736][T20128] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2954'.
[  871.971429][T20130] netlink: 29 bytes leftover after parsing attributes in process `syz.4.2954'.
[  872.334114][T15794] Bluetooth: hci4: unexpected event 0x10 length: 124 > 1
[  872.339408][T15794] Bluetooth: hci4: hardware error 0x00
[  874.386926][T15794] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  874.919755][T20205] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2968'.
[  875.185290][T20211] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2968'.
[  877.969476][T20276] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2984'.
[  878.080960][T20276] HfR: entered promiscuous mode
[  878.174159][   T30] audit: type=1800 audit(2147483658.700:28): pid=20285 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2985" name="dbroot" dev="configfs" ino=91761 res=0 errno=0
[  879.784888][T20312] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2991'.
[  879.832033][T20312] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2991'.
[  879.903275][T20314] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2991'.
[  880.203790][T20315] Process accounting resumed
[  881.225648][T20324] Process accounting resumed
[  882.314494][T20364] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3003'.
[  882.355702][T20364] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3003'.
[  882.411103][T20364] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3003'.
[  882.838568][T20352] kAFS: unparsable volume name
[  884.390839][T20410] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3014'.
[  884.463611][T20412] netlink: 146 bytes leftover after parsing attributes in process `syz.3.3015'.
[  884.474486][T20410] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3014'.
[  884.520990][T20410] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3014'.
[  884.841719][T20426] random: crng reseeded on system resumption
[  884.909882][T20425] overlayfs: missing 'lowerdir'
[  885.083835][T15794] Bluetooth: hci1: ACL packet for unknown connection handle 0
[  885.235434][T20439] random: crng reseeded on system resumption
[  885.288727][T20443] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3022'.
[  886.534091][T20473] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3027'.
[  888.589509][T20513] kafs: addr_prefs: Invalid Command
[  889.275849][T20526] netlink: 'syz.4.3038': attribute type 2 has an invalid length.
[  889.679796][T20541] MTRR 1 not used
[  890.178044][T20550] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3043'.
[  892.321916][T20614] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3055'.
[  893.123437][T20637] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3059'.
[  894.449440][T20659] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3063'.
[  894.495539][T20659] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3063'.
[  894.542675][T20659] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3063'.
[  894.932187][T20676] netlink: 186 bytes leftover after parsing attributes in process `syz.2.3067'.
[  895.131275][T20671] ubi0: attaching mtd0
[  895.240371][T20671] ubi0: scanning is finished
[  895.325832][T20671] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  895.683015][T20671] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  895.715500][T15794] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  896.193422][T20709] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3074'.
[  896.585270][T20721] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3075'.
[  896.633942][T20721] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3075'.
[  896.684632][T20721] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3075'.
[  897.376845][   T30] audit: type=1800 audit(2147483677.900:29): pid=20737 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3078" name="dbroot" dev="configfs" ino=94511 res=0 errno=0
[  897.579471][T20741] random: crng reseeded on system resumption
[  897.746472][T15794] Bluetooth: hci1: command 0x2016 tx timeout
[  898.925323][T20753] netlink: 354 bytes leftover after parsing attributes in process `syz.3.3083'.
[  899.603156][T20777] kafs: addr_prefs: Invalid Command
[  899.752241][T20783] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3085'.
[  899.766256][T20782] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3088'.
[  899.808776][T20783] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3085'.
[  899.826189][T16004] Bluetooth: hci1: command 0x2016 tx timeout
[  899.873957][T20786] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3085'.
[  901.487367][T20824] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3094'.
[  901.513680][T20830] binder: 20825:20830 ioctl 40086602 e20 returned -22
[  901.885531][T20843] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3097'.
[  902.101363][T20845] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3098'.
[  902.137177][T20845] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3098'.
[  902.175339][T20845] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3098'.
[  902.690081][   T30] audit: type=1804 audit(2147483683.220:30): pid=20864 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.3102" name="/newroot/sys/kernel/debug/tracing/tracing_cpumask" dev="tracefs" ino=3578 res=1 errno=0
[  903.612996][T20853] zswap: compressor 000 not available
[  904.277458][T20895] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3108'.
[  904.346447][T20895] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3108'.
[  904.418998][T20899] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3108'.
[  906.392193][T20960] futex_wake_op: syz.2.3118 tries to shift op by -2048; fix this program
[  906.534473][T20960] futex_wake_op: syz.2.3118 tries to shift op by -2048; fix this program
[  906.587595][T20964] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3119'.
[  906.636385][T20964] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3119'.
[  907.928785][T20987] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint
[  908.702951][T21013] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3128'.
[  908.744484][T21013] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3128'.
[  909.140151][T21019] netlink: 330 bytes leftover after parsing attributes in process `syz.3.3130'.
[  909.180925][T21019] –õ\­: renamed from lo (while UP)
[  909.641795][T21040] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3134'.
[  910.161244][T21061] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3138'.
[  910.208281][T21061] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3138'.
[  910.449485][T21068] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3140'.
[  910.703885][T21047] Process accounting paused
[  911.319043][T21085] Process accounting paused
[  912.018350][   T30] audit: type=1800 audit(2147483692.550:31): pid=21102 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3147" name="sr0" dev="devtmpfs" ino=2822 res=0 errno=0
[  912.253994][T21110] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3149'.
[  913.389124][T21139] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3154'.
[  913.827993][T21153] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3156'.
[  913.879825][T21157] sd 0:0:1:0: PR command failed: 1026
[  914.048247][T21157] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  914.260377][T21157] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  914.634692][T21182] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3160'.
[  914.679121][T21182] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3160'.
[  914.709465][T21182] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3160'.
[  916.114879][T21224] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3169'.
[  916.181165][T21224] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3169'.
[  916.225627][T21224] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3169'.
[  916.752353][   T30] audit: type=1800 audit(2147483697.280:32): pid=21238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3172" name="sr0" dev="devtmpfs" ino=2822 res=0 errno=0
[  917.624292][T16004] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  917.638281][T16004] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  917.648337][T16004] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  917.659655][T16004] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  917.668832][T16004] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  919.747904][T16004] Bluetooth: hci0: command tx timeout
[  920.478511][T21260] bridge0: port 1(bridge_slave_0) entered blocking state
[  920.518055][T21260] bridge0: port 1(bridge_slave_0) entered disabled state
[  920.547207][T21260] bridge_slave_0: entered allmulticast mode
[  920.573332][T21260] bridge_slave_0: entered promiscuous mode
[  920.638283][T21260] bridge0: port 2(bridge_slave_1) entered blocking state
[  920.665545][T21260] bridge0: port 2(bridge_slave_1) entered disabled state
[  920.697699][T21260] bridge_slave_1: entered allmulticast mode
[  920.739787][T21260] bridge_slave_1: entered promiscuous mode
[  920.964068][T21260] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  921.077816][T21260] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  921.279928][T21260] team0: Port device team_slave_0 added
[  921.338882][T21260] team0: Port device team_slave_1 added
[  921.447001][T21260] batman_adv: batadv0: Adding interface: batadv_slave_0
[  921.480769][T21260] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  921.597038][T21260] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  921.656190][T21260] batman_adv: batadv0: Adding interface: batadv_slave_1
[  921.688046][T21260] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  921.827005][T16004] Bluetooth: hci0: command tx timeout
[  921.836711][T21260] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  921.994484][T21318] nfsd: Unknown parameter 'À'
[  922.166493][T21260] hsr_slave_0: entered promiscuous mode
[  922.207657][T21260] hsr_slave_1: entered promiscuous mode
[  922.249389][T21260] debugfs: 'hsr0' already exists in 'hsr'
[  922.293131][T21260] Cannot create hsr debugfs directory
[  923.070069][T21260] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  923.464377][T21260] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  923.775506][T21260] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  923.906320][T16004] Bluetooth: hci0: command tx timeout
[  923.947158][T21260] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  924.655267][T21260] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  924.710892][T21260] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  924.760805][T21260] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  924.813685][T21260] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  924.861353][T21260] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  924.918818][T21260] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  924.964603][T21260] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  925.011140][T21260] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  925.456950][T21260] 8021q: adding VLAN 0 to HW filter on device bond0
[  925.507219][T21260] 8021q: adding VLAN 0 to HW filter on device team0
[  925.541687][T15801] bridge0: port 1(bridge_slave_0) entered blocking state
[  925.548848][T15801] bridge0: port 1(bridge_slave_0) entered forwarding state
[  925.596352][T17014] bridge0: port 2(bridge_slave_1) entered blocking state
[  925.603528][T17014] bridge0: port 2(bridge_slave_1) entered forwarding state
[  925.987238][T16004] Bluetooth: hci0: command tx timeout
[  926.635140][T21260] 8021q: adding VLAN 0 to HW filter on device batadv0
[  927.354919][T21260] veth0_vlan: entered promiscuous mode
[  927.439585][T21260] veth1_vlan: entered promiscuous mode
[  927.545327][T21260] veth0_macvtap: entered promiscuous mode
[  927.578903][T21260] veth1_macvtap: entered promiscuous mode
[  927.664626][T21260] batman_adv: batadv0: Interface activated: batadv_slave_0
[  927.862134][T21260] batman_adv: batadv0: Interface activated: batadv_slave_1
[  928.118151][T21443] __vm_enough_memory: pid: 21443, comm: syz.3.3208, bytes: 4398046457856 not enough memory for the allocation
[  928.204028][T15801] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  928.237752][T15801] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  928.282938][T15801] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  928.335428][T15801] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  928.872200][T21443] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  928.894501][T21443] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  928.919844][T21443] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  928.955000][T21443] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  928.983823][T21443] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  929.029150][T21443] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  929.050682][T21443] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  929.176889][T15954] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  929.199920][T15954] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  929.210717][T15954] bond0 (unregistering): Released all slaves
[  929.470036][T15801] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  929.518062][T15801] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  929.979063][T15950] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  930.023994][T15950] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  930.122605][T21469] hub 1-0:1.0: USB hub found
[  930.147847][T21469] FAULT_INJECTION: forcing a failure.
[  930.147847][T21469] name failslab, interval 1, probability 0, space 0, times 0
[  930.231460][T21469] CPU: 0 UID: 0 PID: 21469 Comm: syz.1.3215 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  930.231488][T21469] Tainted: [L]=SOFTLOCKUP
[  930.231494][T21469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  930.231503][T21469] Call Trace:
[  930.231509][T21469]  <TASK>
[  930.231515][T21469]  dump_stack_lvl+0x100/0x190
[  930.231546][T21469]  should_fail_ex.cold+0x5/0xa
[  930.231566][T21469]  ? hub_probe.cold+0xbd7/0x2ed5
[  930.231583][T21469]  should_failslab+0xc2/0x120
[  930.231601][T21469]  __kmalloc_noprof+0xe0/0x850
[  930.231623][T21469]  ? lockdep_init_map_type+0x5c/0x250
[  930.231650][T21469]  hub_probe.cold+0xbd7/0x2ed5
[  930.231670][T21469]  ? do_raw_spin_lock+0x128/0x260
[  930.231686][T21469]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  930.231702][T21469]  ? __pfx_hub_probe+0x10/0x10
[  930.231723][T21469]  ? _raw_spin_lock_irqsave+0x52/0x60
[  930.231749][T21469]  ? mark_held_locks+0x40/0x70
[  930.231771][T21469]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  930.231796][T21469]  usb_probe_interface+0x303/0x8f0
[  930.231821][T21469]  ? __pfx_usb_probe_interface+0x10/0x10
[  930.231845][T21469]  really_probe+0x241/0xa60
[  930.231870][T21469]  __driver_probe_device+0x22e/0x480
[  930.231894][T21469]  driver_probe_device+0x4c/0x1b0
[  930.231917][T21469]  __device_attach_driver+0x1df/0x340
[  930.231952][T21469]  ? __pfx___device_attach_driver+0x10/0x10
[  930.231974][T21469]  bus_for_each_drv+0x159/0x1e0
[  930.231996][T21469]  ? __pfx_bus_for_each_drv+0x10/0x10
[  930.232016][T21469]  ? lockdep_hardirqs_on+0x78/0x100
[  930.232031][T21469]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  930.232056][T21469]  __device_attach+0x1e4/0x4d0
[  930.232082][T21469]  ? __pfx___device_attach+0x10/0x10
[  930.232106][T21469]  ? do_raw_spin_unlock+0x145/0x1e0
[  930.232125][T21469]  device_initial_probe+0xaf/0xd0
[  930.232141][T21469]  bus_probe_device+0x64/0x160
[  930.232163][T21469]  device_add+0x1210/0x1950
[  930.232181][T21469]  ? __pfx_device_add+0x10/0x10
[  930.232197][T21469]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  930.232225][T21469]  usb_set_configuration+0xd97/0x1c60
[  930.232257][T21469]  bConfigurationValue_store+0x103/0x180
[  930.232280][T21469]  ? __pfx_bConfigurationValue_store+0x10/0x10
[  930.232301][T21469]  ? find_held_lock+0x2b/0x80
[  930.232318][T21469]  ? sysfs_file_kobj+0xe4/0x290
[  930.232340][T21469]  ? sysfs_file_kobj+0xe4/0x290
[  930.232364][T21469]  ? __pfx_bConfigurationValue_store+0x10/0x10
[  930.232384][T21469]  dev_attr_store+0x58/0x80
[  930.232399][T21469]  ? __pfx_dev_attr_store+0x10/0x10
[  930.232415][T21469]  sysfs_kf_write+0xf2/0x150
[  930.232439][T21469]  kernfs_fop_write_iter+0x3e0/0x5f0
[  930.232459][T21469]  ? __pfx_sysfs_kf_write+0x10/0x10
[  930.232483][T21469]  iter_file_splice_write+0x830/0x10a0
[  930.232513][T21469]  ? __pfx_iter_file_splice_write+0x10/0x10
[  930.232536][T21469]  ? __pfx_copy_splice_read+0x10/0x10
[  930.232564][T21469]  ? __pfx_iter_file_splice_write+0x10/0x10
[  930.232584][T21469]  direct_splice_actor+0x192/0x6c0
[  930.232605][T21469]  splice_direct_to_actor+0x345/0xa30
[  930.232625][T21469]  ? __pfx_direct_splice_actor+0x10/0x10
[  930.232647][T21469]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  930.232671][T21469]  do_splice_direct+0x174/0x240
[  930.232691][T21469]  ? __pfx_do_splice_direct+0x10/0x10
[  930.232710][T21469]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  930.232732][T21469]  ? rw_verify_area+0xce/0x6d0
[  930.232748][T21469]  do_sendfile+0xadc/0xe20
[  930.232768][T21469]  ? __pfx_do_sendfile+0x10/0x10
[  930.232787][T21469]  ? __x64_sys_futex+0x34f/0x4d0
[  930.232802][T21469]  ? __x64_sys_futex+0x358/0x4d0
[  930.232819][T21469]  __x64_sys_sendfile64+0x1d8/0x220
[  930.232838][T21469]  ? ksys_read+0x1ac/0x250
[  930.232861][T21469]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  930.232883][T21469]  ? rcu_is_watching+0x12/0xc0
[  930.232904][T21469]  do_syscall_64+0x115/0x840
[  930.232919][T21469]  ? clear_bhb_loop+0x40/0x90
[  930.232942][T21469]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  930.232958][T21469] RIP: 0033:0x7f169a79ce59
[  930.232972][T21469] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  930.232986][T21469] RSP: 002b:00007f169b6ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  930.233001][T21469] RAX: ffffffffffffffda RBX: 00007f169aa15fa0 RCX: 00007f169a79ce59
[  930.233012][T21469] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008
[  930.233021][T21469] RBP: 00007f169a832d6f R08: 0000000000000000 R09: 0000000000000000
[  930.233031][T21469] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  930.233039][T21469] R13: 00007f169aa16038 R14: 00007f169aa15fa0 R15: 00007fffc459ab88
[  930.233060][T21469]  </TASK>
[  930.712490][T21469] hub 1-0:1.0: config failed, out of memory (err -12)
[  930.823338][T16004] Bluetooth: hci3: command 0x2016 tx timeout
[  931.243749][T16004] Bluetooth: hci1: command 0x2016 tx timeout
[  931.250231][T16004] Bluetooth: hci0: command 0x0c1a tx timeout
[  931.604733][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[  931.611116][ T1314] ieee802154 phy1 wpan1: encryption failed: -22
[  932.437827][T15954] hsr_slave_0: left promiscuous mode
[  932.459796][T15954] hsr_slave_1: left promiscuous mode
[  932.520335][T15954] veth1_macvtap: left promiscuous mode
[  932.538764][T15954] veth0_macvtap: left promiscuous mode
[  932.702232][T21503] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3222'.
[  933.077094][T15954] team0 (unregistering): Port device team_slave_1 removed
[  933.119471][T15954] team0 (unregistering): Port device team_slave_0 removed
[  933.266453][T16004] Bluetooth: hci1: command 0x2016 tx timeout
[  933.272827][T15794] Bluetooth: hci0: command 0x0c1a tx timeout
[  934.421128][T21518] Process accounting resumed
[  935.347660][T15794] Bluetooth: hci0: command 0x0c1a tx timeout
[  935.353724][T16004] Bluetooth: hci1: command 0x2016 tx timeout
[  936.614311][T21582] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3238'.
[  936.715102][T21582] bridge_slave_1: left allmulticast mode
[  936.715125][T21582] bridge_slave_1: left promiscuous mode
[  936.715266][T21582] bridge0: port 2(bridge_slave_1) entered disabled state
[  936.735238][T21582] bridge_slave_0: left allmulticast mode
[  936.735259][T21582] bridge_slave_0: left promiscuous mode
[  936.735443][T21582] bridge0: port 1(bridge_slave_0) entered disabled state
[  937.851990][T21605] kernel read not supported for file /events/vmalloc/enable (pid: 21605 comm: syz.1.3243)
[  937.924375][   T30] audit: type=1800 audit(2147483724.441:33): pid=21605 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3243" name="enable" dev="tracefs" ino=19680823 res=0 errno=0
[  938.926703][T21627] __vm_enough_memory: pid: 21627, comm: syz.2.3248, bytes: 4398046457856 not enough memory for the allocation
[  939.248735][T21633] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3251'.
[  939.677731][T21625] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  939.706621][T21625] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  939.728268][T21625] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  940.093435][T21650] futex_wake_op: syz.3.3254 tries to shift op by -2048; fix this program
[  940.168665][T21650] futex_wake_op: syz.3.3254 tries to shift op by -2048; fix this program
[  940.965274][T21648] Process accounting resumed
[  941.266568][T15794] Bluetooth: hci3: command 0x2016 tx timeout
[  941.746179][T15794] Bluetooth: hci0: command 0x0c1a tx timeout
[  941.752381][T16004] Bluetooth: hci1: command 0x2016 tx timeout
[  941.948850][T21699] workqueue: name exceeds WQ_NAME_LEN. Truncating to: 211!phy1!netdev:wlan1!rc_rateid
[  942.029352][T21685] Process accounting resumed
[  942.165339][T21697] sysfs: cannot create duplicate filename '/class/ieee80211/211!phy1!netdev:wlan1!rc_rateidx_mcs_mask'
[  942.229919][T21697] CPU: 0 UID: 0 PID: 21697 Comm: syz.3.3263 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  942.229945][T21697] Tainted: [L]=SOFTLOCKUP
[  942.229955][T21697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  942.229964][T21697] Call Trace:
[  942.229969][T21697]  <TASK>
[  942.229975][T21697]  dump_stack_lvl+0x100/0x190
[  942.230007][T21697]  sysfs_warn_dup.cold+0x1c/0x28
[  942.230029][T21697]  sysfs_do_create_link_sd+0x113/0x140
[  942.230049][T21697]  sysfs_create_link+0x61/0xc0
[  942.230065][T21697]  device_add+0x675/0x1950
[  942.230084][T21697]  ? __pfx_device_add+0x10/0x10
[  942.230100][T21697]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  942.230122][T21697]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[  942.230145][T21697]  wiphy_register+0x1edd/0x2d90
[  942.230167][T21697]  ? __rtnl_unlock+0xb9/0xf0
[  942.230194][T21697]  ? __pfx_wiphy_register+0x10/0x10
[  942.230216][T21697]  ? __asan_memset+0x23/0x50
[  942.230238][T21697]  ? minstrel_ht_alloc+0x5e6/0x7f0
[  942.230263][T21697]  ieee80211_register_hw+0x3055/0x4570
[  942.230290][T21697]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  942.230307][T21697]  ? __pfx___debug_object_init+0x10/0x10
[  942.230329][T21697]  ? find_held_lock+0x2b/0x80
[  942.230349][T21697]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  942.230370][T21697]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  942.230388][T21697]  ? __hrtimer_setup+0x208/0x330
[  942.230406][T21697]  mac80211_hwsim_new_radio+0x2a01/0x5aa0
[  942.230442][T21697]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  942.230467][T21697]  ? __asan_memcpy+0x3c/0x60
[  942.230490][T21697]  hwsim_new_radio_nl+0xc5f/0x1370
[  942.230513][T21697]  ? rcu_is_watching+0x12/0xc0
[  942.230530][T21697]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  942.230558][T21697]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0
[  942.230576][T21697]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0
[  942.230597][T21697]  genl_family_rcv_msg_doit+0x214/0x300
[  942.230616][T21697]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  942.230632][T21697]  ? genl_get_cmd+0x3e7/0x760
[  942.230652][T21697]  ? bpf_lsm_capable+0x9/0x10
[  942.230669][T21697]  ? security_capable+0x80/0x260
[  942.230693][T21697]  ? ns_capable+0xd2/0xf0
[  942.230712][T21697]  genl_rcv_msg+0x560/0x800
[  942.230731][T21697]  ? __pfx_genl_rcv_msg+0x10/0x10
[  942.230748][T21697]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  942.230777][T21697]  netlink_rcv_skb+0x159/0x420
[  942.230791][T21697]  ? __pfx_genl_rcv_msg+0x10/0x10
[  942.230808][T21697]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  942.230832][T21697]  ? netlink_deliver_tap+0x1ae/0xcc0
[  942.230858][T21697]  genl_rcv+0x28/0x40
[  942.230871][T21697]  netlink_unicast+0x585/0x850
[  942.230897][T21697]  ? __pfx_netlink_unicast+0x10/0x10
[  942.230926][T21697]  netlink_sendmsg+0x8b0/0xda0
[  942.230980][T21697]  ? __pfx_netlink_sendmsg+0x10/0x10
[  942.231003][T21697]  ? __import_iovec+0x1d2/0x640
[  942.231026][T21697]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  942.231044][T21697]  ____sys_sendmsg+0x9e1/0xb70
[  942.231066][T21697]  ? __pfx_netlink_sendmsg+0x10/0x10
[  942.231091][T21697]  ? __pfx_____sys_sendmsg+0x10/0x10
[  942.231113][T21697]  ? preempt_schedule_thunk+0x16/0x30
[  942.231137][T21697]  ? try_to_wake_up+0x5f6/0x1900
[  942.231160][T21697]  ___sys_sendmsg+0x190/0x1e0
[  942.231176][T21697]  ? __pfx____sys_sendmsg+0x10/0x10
[  942.231191][T21697]  ? futex_private_hash_put+0x107/0x1c0
[  942.231237][T21697]  __sys_sendmsg+0x170/0x220
[  942.231257][T21697]  ? __pfx___sys_sendmsg+0x10/0x10
[  942.231276][T21697]  ? __x64_sys_futex+0x34f/0x4d0
[  942.231298][T21697]  ? rcu_is_watching+0x12/0xc0
[  942.231322][T21697]  do_syscall_64+0x115/0x840
[  942.231336][T21697]  ? clear_bhb_loop+0x40/0x90
[  942.231355][T21697]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  942.231370][T21697] RIP: 0033:0x7fb000f9ce59
[  942.231388][T21697] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  942.231456][T21697] RSP: 002b:00007fb001e9c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  942.231472][T21697] RAX: ffffffffffffffda RBX: 00007fb001216180 RCX: 00007fb000f9ce59
[  942.231482][T21697] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003
[  942.231491][T21697] RBP: 00007fb001032d6f R08: 0000000000000000 R09: 0000000000000000
[  942.231500][T21697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  942.231508][T21697] R13: 00007fb001216218 R14: 00007fb001216180 R15: 00007ffd9ebd1058
[  942.231532][T21697]  </TASK>
[  943.470885][T21720] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3268'.
[  944.133224][T21730] FAULT_INJECTION: forcing a failure.
[  944.133224][T21730] name fail_futex, interval 1, probability 0, space 0, times 0
[  944.199366][T21730] CPU: 0 UID: 0 PID: 21730 Comm: syz.4.3259 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  944.199392][T21730] Tainted: [L]=SOFTLOCKUP
[  944.199397][T21730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  944.199405][T21730] Call Trace:
[  944.199411][T21730]  <TASK>
[  944.199417][T21730]  dump_stack_lvl+0x100/0x190
[  944.199445][T21730]  should_fail_ex.cold+0x5/0xa
[  944.199464][T21730]  get_futex_key+0x1d2/0x1510
[  944.199490][T21730]  ? __pfx_get_futex_key+0x10/0x10
[  944.199514][T21730]  ? rcu_is_watching+0x12/0xc0
[  944.199531][T21730]  ? _raw_spin_unlock_irq+0x23/0x50
[  944.199554][T21730]  ? lockdep_hardirqs_on+0x78/0x100
[  944.199571][T21730]  futex_wait_setup+0x83/0x510
[  944.199597][T21730]  __futex_wait+0x19f/0x300
[  944.199617][T21730]  ? __pfx___futex_wait+0x10/0x10
[  944.199638][T21730]  ? __pfx_futex_wake_mark+0x10/0x10
[  944.199659][T21730]  ? futex_hash+0x2ad/0x370
[  944.199682][T21730]  ? futex_hash+0x141/0x370
[  944.199706][T21730]  futex_wait+0xe6/0x370
[  944.199725][T21730]  ? __pfx_futex_wait+0x10/0x10
[  944.199747][T21730]  ? mt_find+0x45e/0x8e0
[  944.199763][T21730]  ? __pfx_mt_find+0x10/0x10
[  944.199781][T21730]  do_futex+0x1ef/0x350
[  944.199796][T21730]  ? __pfx_do_futex+0x10/0x10
[  944.199809][T21730]  ? ext4_sync_file+0x3e4/0xb90
[  944.199845][T21730]  __x64_sys_futex+0x34f/0x4d0
[  944.199863][T21730]  ? __pfx___x64_sys_futex+0x10/0x10
[  944.199881][T21730]  ? rcu_is_watching+0x12/0xc0
[  944.199900][T21730]  do_syscall_64+0x115/0x840
[  944.199914][T21730]  ? clear_bhb_loop+0x40/0x90
[  944.199932][T21730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  944.199948][T21730] RIP: 0033:0x7f6f6db9ce59
[  944.199961][T21730] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  944.199975][T21730] RSP: 002b:00007f6f6ea120e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  944.199989][T21730] RAX: ffffffffffffffda RBX: 00007f6f6de16098 RCX: 00007f6f6db9ce59
[  944.199999][T21730] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6f6de16098
[  944.200008][T21730] RBP: 00007f6f6de16090 R08: 0000000000000000 R09: 0000000000000000
[  944.200017][T21730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  944.200025][T21730] R13: 00007f6f6de16128 R14: 00007ffd6098fec0 R15: 00007ffd6098ffa8
[  944.200044][T21730]  </TASK>
[  947.009734][T21780] net_ratelimit: 47 callbacks suppressed
[  947.009750][T21780] netlink: zone id is out of range
[  947.068700][T21780] netlink: zone id is out of range
[  947.192035][T21780] netlink: set zone limit has 8 unknown bytes
[  948.810608][T21806] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3284'.
[  948.847105][T21806] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3284'.
[  948.894834][T21806] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3284'.
[  949.004332][T21802] FAULT_INJECTION: forcing a failure.
[  949.004332][T21802] name fail_futex, interval 1, probability 0, space 0, times 0
[  949.075487][T21802] CPU: 0 UID: 0 PID: 21802 Comm: syz.3.3283 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  949.075514][T21802] Tainted: [L]=SOFTLOCKUP
[  949.075519][T21802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  949.075528][T21802] Call Trace:
[  949.075533][T21802]  <TASK>
[  949.075539][T21802]  dump_stack_lvl+0x100/0x190
[  949.075568][T21802]  should_fail_ex.cold+0x5/0xa
[  949.075585][T21802]  ? rcu_is_watching+0x12/0xc0
[  949.075604][T21802]  get_futex_key+0x1d2/0x1510
[  949.075630][T21802]  ? __pfx_get_futex_key+0x10/0x10
[  949.075658][T21802]  futex_wait_setup+0x83/0x510
[  949.075682][T21802]  __futex_wait+0x19f/0x300
[  949.075701][T21802]  ? __pfx___futex_wait+0x10/0x10
[  949.075722][T21802]  ? __pfx_futex_wake_mark+0x10/0x10
[  949.075743][T21802]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  949.075758][T21802]  ? __hrtimer_setup+0x208/0x330
[  949.075774][T21802]  ? ktime_add_safe+0x60/0x70
[  949.075790][T21802]  futex_wait+0xe6/0x370
[  949.075808][T21802]  ? __pfx_futex_wait+0x10/0x10
[  949.075829][T21802]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  949.075850][T21802]  do_futex+0x1ef/0x350
[  949.075865][T21802]  ? __pfx_do_futex+0x10/0x10
[  949.075879][T21802]  ? ktime_get+0x22c/0x320
[  949.075899][T21802]  ? lockdep_hardirqs_on+0x78/0x100
[  949.075920][T21802]  __x64_sys_futex+0x34f/0x4d0
[  949.075938][T21802]  ? __pfx___x64_sys_futex+0x10/0x10
[  949.075956][T21802]  ? rcu_is_watching+0x12/0xc0
[  949.075975][T21802]  do_syscall_64+0x115/0x840
[  949.075989][T21802]  ? clear_bhb_loop+0x40/0x90
[  949.076007][T21802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  949.076023][T21802] RIP: 0033:0x7fb000f9ce59
[  949.076036][T21802] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  949.076050][T21802] RSP: 002b:00007ffd9ebd11b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  949.076064][T21802] RAX: ffffffffffffffda RBX: 00000000000e7af2 RCX: 00007fb000f9ce59
[  949.076074][T21802] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb001215fac
[  949.076083][T21802] RBP: 0000000000000032 R08: 0000000000000001 R09: 0000000000000000
[  949.076092][T21802] R10: 00007ffd9ebd12c0 R11: 0000000000000246 R12: 00007ffd9ebd12e0
[  949.076101][T21802] R13: 00007fb001215fac R14: 00000000000e7b24 R15: 00007ffd9ebd12c0
[  949.076120][T21802]  </TASK>
[  949.559176][T21817] netlink: 'syz.1.3285': attribute type 2 has an invalid length.
[  949.568274][T21810] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  951.790704][T21854] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3293'.
[  951.793801][T21854] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3293'.
[  951.795686][T21854] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3293'.
[  953.423074][T21891] futex_wake_op: syz.1.3302 tries to shift op by -2048; fix this program
[  953.644217][T21897] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3303'.
[  953.703518][T21897] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3303'.
[  953.752644][T21897] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3303'.
[  955.628126][T21960] FAULT_INJECTION: forcing a failure.
[  955.628126][T21960] name failslab, interval 1, probability 0, space 0, times 0
[  955.642533][T21960] CPU: 0 UID: 0 PID: 21960 Comm: syz.1.3316 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  955.642562][T21960] Tainted: [L]=SOFTLOCKUP
[  955.642568][T21960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  955.642578][T21960] Call Trace:
[  955.642583][T21960]  <TASK>
[  955.642590][T21960]  dump_stack_lvl+0x100/0x190
[  955.642619][T21960]  should_fail_ex.cold+0x5/0xa
[  955.642638][T21960]  should_failslab+0xc2/0x120
[  955.642656][T21960]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  955.642679][T21960]  ? inet_bind2_bucket_create+0x36/0x5f0
[  955.642699][T21960]  ? do_raw_spin_lock+0x128/0x260
[  955.642719][T21960]  inet_bind2_bucket_create+0x36/0x5f0
[  955.642741][T21960]  __inet_hash_connect+0x1527/0x2000
[  955.642768][T21960]  ? __pfx___inet_check_established+0x10/0x10
[  955.642790][T21960]  ? __pfx___inet_hash_connect+0x10/0x10
[  955.642815][T21960]  ? inet_init_ehash_secret+0xd/0x60
[  955.642834][T21960]  ? inet_hash_connect+0x9f/0x340
[  955.642857][T21960]  tcp_v4_connect+0xeb3/0x1b40
[  955.642881][T21960]  ? __pfx_tcp_v4_connect+0x10/0x10
[  955.642899][T21960]  ? __lock_acquire+0x4a5/0x2630
[  955.642925][T21960]  __inet_stream_connect+0x208/0xfa0
[  955.642946][T21960]  ? __pfx___inet_stream_connect+0x10/0x10
[  955.642970][T21960]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  955.642989][T21960]  ? __pfx_inet_stream_connect+0x10/0x10
[  955.643007][T21960]  ? __local_bh_enable_ip+0x9e/0x120
[  955.643029][T21960]  ? __pfx_inet_stream_connect+0x10/0x10
[  955.643045][T21960]  inet_stream_connect+0x57/0xa0
[  955.643063][T21960]  __sys_connect_file+0x141/0x1a0
[  955.643082][T21960]  __sys_connect+0x141/0x170
[  955.643098][T21960]  ? __pfx___sys_connect+0x10/0x10
[  955.643126][T21960]  __x64_sys_connect+0x72/0xb0
[  955.643142][T21960]  ? lockdep_hardirqs_on+0x78/0x100
[  955.643157][T21960]  do_syscall_64+0x115/0x840
[  955.643171][T21960]  ? clear_bhb_loop+0x40/0x90
[  955.643191][T21960]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  955.643207][T21960] RIP: 0033:0x7f169a79ce59
[  955.643220][T21960] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  955.643235][T21960] RSP: 002b:00007f169b6ee028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  955.643251][T21960] RAX: ffffffffffffffda RBX: 00007f169aa15fa0 RCX: 00007f169a79ce59
[  955.643261][T21960] RDX: 0000000000000051 RSI: 0000200000000080 RDI: 0000000000000003
[  955.643271][T21960] RBP: 00007f169a832d6f R08: 0000000000000000 R09: 0000000000000000
[  955.643281][T21960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  955.643290][T21960] R13: 00007f169aa16038 R14: 00007f169aa15fa0 R15: 00007fffc459ab88
[  955.643310][T21960]  </TASK>
[  956.019958][T21953] FAULT_INJECTION: forcing a failure.
[  956.019958][T21953] name failslab, interval 1, probability 0, space 0, times 0
[  956.033069][T21953] CPU: 0 UID: 0 PID: 21953 Comm: syz.3.3312 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  956.033095][T21953] Tainted: [L]=SOFTLOCKUP
[  956.033100][T21953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  956.033110][T21953] Call Trace:
[  956.033115][T21953]  <TASK>
[  956.033121][T21953]  dump_stack_lvl+0x100/0x190
[  956.033150][T21953]  should_fail_ex.cold+0x5/0xa
[  956.033170][T21953]  should_failslab+0xc2/0x120
[  956.033188][T21953]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  956.033211][T21953]  ? copy_process+0x69a/0x7ed0
[  956.033234][T21953]  copy_process+0x69a/0x7ed0
[  956.033252][T21953]  ? __futex_wait+0x256/0x300
[  956.033272][T21953]  ? __pfx___futex_wait+0x10/0x10
[  956.033289][T21953]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  956.033318][T21953]  ? __pfx_copy_process+0x10/0x10
[  956.033337][T21953]  ? find_held_lock+0x2b/0x80
[  956.033362][T21953]  kernel_clone+0x176/0x9e0
[  956.033381][T21953]  ? __pfx_futex_wait+0x10/0x10
[  956.033401][T21953]  ? __pfx_kernel_clone+0x10/0x10
[  956.033431][T21953]  __do_sys_clone+0xd9/0x120
[  956.033450][T21953]  ? __pfx___do_sys_clone+0x10/0x10
[  956.033469][T21953]  ? find_held_lock+0x2b/0x80
[  956.033496][T21953]  ? rcu_is_watching+0x12/0xc0
[  956.033515][T21953]  do_syscall_64+0x115/0x840
[  956.033530][T21953]  ? clear_bhb_loop+0x40/0x90
[  956.033548][T21953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  956.033562][T21953] RIP: 0033:0x7fb000f9ce59
[  956.033576][T21953] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  956.033590][T21953] RSP: 002b:00007fb001e59fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  956.033605][T21953] RAX: ffffffffffffffda RBX: 00007fb001216360 RCX: 00007fb000f9ce59
[  956.033615][T21953] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  956.033624][T21953] RBP: 00007fb001032d6f R08: 0000000000000000 R09: 0000000000000000
[  956.033633][T21953] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  956.033641][T21953] R13: 00007fb0012163f8 R14: 00007fb001216360 R15: 00007ffd9ebd1058
[  956.033661][T21953]  </TASK>
[  958.010076][T15950] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  958.022733][T15950] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  958.033118][T15950] bond0 (unregistering): Released all slaves
[  958.764195][T21997] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3323'.
[  958.897602][T21998] usb usb34: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  958.948534][T21998] vhci_hcd vhci_hcd.0: invalid port number 17
[  958.968525][T21997] hsr_slave_0 (unregistering): left promiscuous mode
[  959.979327][T22004] kexec: Could not allocate control_code_buffer
[  960.174160][T22024] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1986356271.1937072687.1651733807), cmd(3)
[  960.511988][T15950] hsr_slave_0: left promiscuous mode
[  960.541332][T15950] hsr_slave_1: left promiscuous mode
[  960.570168][T15950] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  960.620943][T15950] batman_adv: batadv0: Removing interface: batadv_slave_0
[  960.663124][T15950] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  960.698683][T15950] batman_adv: batadv0: Removing interface: batadv_slave_1
[  960.771464][T15950] veth1_macvtap: left promiscuous mode
[  960.793101][T15950] veth0_macvtap: left promiscuous mode
[  960.817518][T15950] veth1_vlan: left promiscuous mode
[  960.835433][T15950] veth0_vlan: left promiscuous mode
[  961.392999][T15950] team0 (unregistering): Port device team_slave_0 removed
[  961.755727][T22038] ovs_: entered promiscuous mode
[  963.735349][T22089] kAFS: Invalid Command on /proc/fs/afs/cells file
[  963.771206][T22088] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  963.771206][T22088] The task syz.4.3341 (22088) triggered the difference, watch for misbehavior.
[  963.819880][T22089] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3342'.
[  964.141027][T22093] nvme_fabrics: unknown parameter or missing value 'û@è' in ctrl creation request
[  964.217973][T22099] sg_write: data in/out 262108/258 bytes for SCSI command 0x61-- guessing data in;
[  964.217973][T22099]    program syz.2.3345 not setting count and/or reply_len properly
[  964.406109][T22106] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3345'.
[  965.457599][T22109] Process accounting paused
[  965.726180][T22132] block2mtd: illegal erase size
[  965.895899][   T30] audit: type=1804 audit(2147483752.411:34): pid=22135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3351" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=1050 res=1 errno=0
[  965.989139][T22135] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3351'.
[  966.055797][   T30] audit: type=1804 audit(2147483752.491:35): pid=22137 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.3352" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=1050 res=1 errno=0
[  966.103442][T22139] FAULT_INJECTION: forcing a failure.
[  966.103442][T22139] name failslab, interval 1, probability 0, space 0, times 0
[  966.415735][T22139] CPU: 0 UID: 0 PID: 22139 Comm: syz.1.3351 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  966.415762][T22139] Tainted: [L]=SOFTLOCKUP
[  966.415768][T22139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  966.415777][T22139] Call Trace:
[  966.415784][T22139]  <TASK>
[  966.415790][T22139]  dump_stack_lvl+0x100/0x190
[  966.415820][T22139]  should_fail_ex.cold+0x5/0xa
[  966.415840][T22139]  should_failslab+0xc2/0x120
[  966.415858][T22139]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  966.415881][T22139]  ? __d_alloc+0x34/0xa40
[  966.415905][T22139]  __d_alloc+0x34/0xa40
[  966.415929][T22139]  d_alloc+0x4a/0x1e0
[  966.415949][T22139]  lookup_one_qstr_excl+0x171/0x250
[  966.415972][T22139]  start_dirop+0x59/0xb0
[  966.415989][T22139]  simple_start_creating+0xf9/0x110
[  966.416008][T22139]  ? __pfx_simple_start_creating+0x10/0x10
[  966.416026][T22139]  ? mntput+0x70/0xa0
[  966.416041][T22139]  ? simple_pin_fs+0xa3/0x190
[  966.416057][T22139]  debugfs_start_creating.part.0+0x82/0x170
[  966.416074][T22139]  __debugfs_create_file+0xb3/0x4f0
[  966.416092][T22139]  debugfs_create_file_full+0x41/0x60
[  966.416109][T22139]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  966.416141][T22139]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  966.416182][T22139]  ? lockdep_init_map_type+0x5c/0x250
[  966.416209][T22139]  preinit_net.part.0+0x43b/0x920
[  966.416232][T22139]  copy_net_ns+0x339/0x7c0
[  966.416255][T22139]  create_new_namespaces+0x3ea/0xac0
[  966.416278][T22139]  unshare_nsproxy_namespaces+0xf2/0x220
[  966.416297][T22139]  ksys_unshare+0x438/0xab0
[  966.416320][T22139]  ? __pfx_ksys_unshare+0x10/0x10
[  966.416339][T22139]  ? xfd_validate_state+0x129/0x190
[  966.416362][T22139]  ? ksys_write+0x1ac/0x250
[  966.416384][T22139]  __x64_sys_unshare+0x31/0x40
[  966.416405][T22139]  do_syscall_64+0x115/0x840
[  966.416419][T22139]  ? clear_bhb_loop+0x40/0x90
[  966.416437][T22139]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  966.416453][T22139] RIP: 0033:0x7f169a79ce59
[  966.416467][T22139] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  966.416482][T22139] RSP: 002b:00007f169b6cd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  966.416497][T22139] RAX: ffffffffffffffda RBX: 00007f169aa16090 RCX: 00007f169a79ce59
[  966.416508][T22139] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  966.416517][T22139] RBP: 00007f169a832d6f R08: 0000000000000000 R09: 0000000000000000
[  966.416526][T22139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  966.416535][T22139] R13: 00007f169aa16128 R14: 00007f169aa16090 R15: 00007fffc459ab88
[  966.416555][T22139]  </TASK>
[  966.906045][T22158] futex_wake_op: syz.2.3354 tries to shift op by -2048; fix this program
[  966.914715][T22158] futex_wake_op: syz.2.3354 tries to shift op by -2048; fix this program
[  966.923639][T22158] 0x000000000001-0x000000020000 : ""
[  966.976973][T22158] ftl_cs: FTL header corrupt!
[  967.046004][T22159] futex_wake_op: syz.2.3354 tries to shift op by -2048; fix this program
[  967.084721][T22159] futex_wake_op: syz.2.3354 tries to shift op by -2048; fix this program
[  969.179331][T22181] erspan0: refused to change device tx_queue_len
[  971.053394][T22228] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3369'.
[  971.386073][T22220] Process accounting paused
[  971.494902][T22241] binder: 22238:22241 ioctl c0306201 200000001100 returned -14
[  973.666784][T22282] Process accounting paused
[  973.850570][T15794] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  975.123776][T22321] FAULT_INJECTION: forcing a failure.
[  975.123776][T22321] name failslab, interval 1, probability 0, space 0, times 0
[  975.209289][T22321] CPU: 0 UID: 0 PID: 22321 Comm: syz.1.3385 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  975.209315][T22321] Tainted: [L]=SOFTLOCKUP
[  975.209320][T22321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  975.209330][T22321] Call Trace:
[  975.209335][T22321]  <TASK>
[  975.209342][T22321]  dump_stack_lvl+0x100/0x190
[  975.209371][T22321]  should_fail_ex.cold+0x5/0xa
[  975.209390][T22321]  ? cache_create_net+0xa2/0x1f0
[  975.209406][T22321]  should_failslab+0xc2/0x120
[  975.209424][T22321]  __kmalloc_noprof+0xe0/0x850
[  975.209451][T22321]  cache_create_net+0xa2/0x1f0
[  975.209473][T22321]  ? __pfx_nfsd_net_init+0x10/0x10
[  975.209496][T22321]  nfsd_idmap_init+0x62/0x250
[  975.209514][T22321]  ? __pfx_nfsd_net_init+0x10/0x10
[  975.209534][T22321]  nfsd_net_init+0x85/0x3e0
[  975.209556][T22321]  ? __pfx_nfsd_net_init+0x10/0x10
[  975.209578][T22321]  ops_init+0x1e2/0x5f0
[  975.209600][T22321]  setup_net+0x118/0x3a0
[  975.209620][T22321]  ? __pfx_setup_net+0x10/0x10
[  975.209640][T22321]  ? mutex_init_lockdep+0xf1/0x120
[  975.209667][T22321]  copy_net_ns+0x46f/0x7c0
[  975.209691][T22321]  create_new_namespaces+0x3ea/0xac0
[  975.209714][T22321]  unshare_nsproxy_namespaces+0xf2/0x220
[  975.209734][T22321]  ksys_unshare+0x438/0xab0
[  975.209756][T22321]  ? __pfx_ksys_unshare+0x10/0x10
[  975.209776][T22321]  ? xfd_validate_state+0x129/0x190
[  975.209806][T22321]  __x64_sys_unshare+0x31/0x40
[  975.209826][T22321]  do_syscall_64+0x115/0x840
[  975.209841][T22321]  ? clear_bhb_loop+0x40/0x90
[  975.209859][T22321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  975.209875][T22321] RIP: 0033:0x7f169a79ce59
[  975.209888][T22321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  975.209902][T22321] RSP: 002b:00007f169b6ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  975.209916][T22321] RAX: ffffffffffffffda RBX: 00007f169aa15fa0 RCX: 00007f169a79ce59
[  975.209926][T22321] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  975.209935][T22321] RBP: 00007f169a832d6f R08: 0000000000000000 R09: 0000000000000000
[  975.209943][T22321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  975.209952][T22321] R13: 00007f169aa16038 R14: 00007f169aa15fa0 R15: 00007fffc459ab88
[  975.209971][T22321]  </TASK>
[  975.566206][T22324] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  975.952874][T16004] Bluetooth: hci3: command 0x2016 tx timeout
[  976.464223][T22361] random: crng reseeded on system resumption
[  977.165621][T22367] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3395'.
[  977.183659][T22367] tc_dump_action: action bad kind
[  977.522654][T22374] erspan0: refused to change device tx_queue_len
[  977.986164][T16004] Bluetooth: hci3: command 0x2016 tx timeout
[  979.280297][T22411] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3404'.
[  981.499572][T22456] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3414'.
[  983.354771][T22496] MTRR 1 not used
[  986.195029][T22534] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3428'.
[  986.528246][T22541] random: crng reseeded on system resumption
[  987.388915][T22557] random: crng reseeded on system resumption
[  987.513126][T22558] hub 1-0:1.0: USB hub found
[  987.553524][T22558] hub 1-0:1.0: 1 port detected
[  988.231813][T22570] FAULT_INJECTION: forcing a failure.
[  988.231813][T22570] name fail_futex, interval 1, probability 0, space 0, times 0
[  988.309420][T22573] random: crng reseeded on system resumption
[  988.336703][T22570] CPU: 0 UID: 0 PID: 22570 Comm: syz.1.3437 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  988.336733][T22570] Tainted: [L]=SOFTLOCKUP
[  988.336739][T22570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  988.336749][T22570] Call Trace:
[  988.336754][T22570]  <TASK>
[  988.336761][T22570]  dump_stack_lvl+0x100/0x190
[  988.336791][T22570]  should_fail_ex.cold+0x5/0xa
[  988.336811][T22570]  get_futex_key+0x1d2/0x1510
[  988.336837][T22570]  ? __pfx_get_futex_key+0x10/0x10
[  988.336858][T22570]  ? pick_eevdf+0x4d3/0x860
[  988.336879][T22570]  ? update_se+0x94/0x770
[  988.336904][T22570]  futex_wait_setup+0x83/0x510
[  988.336928][T22570]  __futex_wait+0x19f/0x300
[  988.336948][T22570]  ? __pfx___futex_wait+0x10/0x10
[  988.336965][T22570]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  988.336992][T22570]  ? __pfx_futex_wake_mark+0x10/0x10
[  988.337013][T22570]  ? find_held_lock+0x2b/0x80
[  988.337032][T22570]  ? futex_wake+0x456/0x530
[  988.337054][T22570]  futex_wait+0xe6/0x370
[  988.337074][T22570]  ? __pfx_futex_wait+0x10/0x10
[  988.337098][T22570]  ? do_raw_spin_lock+0x128/0x260
[  988.337120][T22570]  do_futex+0x1ef/0x350
[  988.337135][T22570]  ? __pfx_do_futex+0x10/0x10
[  988.337152][T22570]  ? up_write+0x28c/0x4f0
[  988.337168][T22570]  __x64_sys_futex+0x34f/0x4d0
[  988.337186][T22570]  ? __pfx___x64_sys_futex+0x10/0x10
[  988.337202][T22570]  ? key_put+0x62/0x2e0
[  988.337221][T22570]  ? rcu_is_watching+0x12/0xc0
[  988.337240][T22570]  do_syscall_64+0x115/0x840
[  988.337255][T22570]  ? clear_bhb_loop+0x40/0x90
[  988.337274][T22570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  988.337289][T22570] RIP: 0033:0x7f169a79ce59
[  988.337302][T22570] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  988.337316][T22570] RSP: 002b:00007f169b6ee0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  988.337331][T22570] RAX: ffffffffffffffda RBX: 00007f169aa15fa8 RCX: 00007f169a79ce59
[  988.337341][T22570] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f169aa15fa8
[  988.337350][T22570] RBP: 00007f169aa15fa0 R08: 0000000000000000 R09: 0000000000000000
[  988.337359][T22570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  988.337367][T22570] R13: 00007f169aa16038 R14: 00007fffc459aaa0 R15: 00007fffc459ab88
[  988.337386][T22570]  </TASK>
[  989.422251][T22587] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[  989.532539][T22587] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[  989.583419][T22587] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  990.774408][T22613] random: crng reseeded on system resumption
[  992.322321][T22633] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  992.769193][T22656] FAULT_INJECTION: forcing a failure.
[  992.769193][T22656] name failslab, interval 1, probability 0, space 0, times 0
[  992.873228][T22656] CPU: 0 UID: 0 PID: 22656 Comm: syz.3.3452 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  992.873257][T22656] Tainted: [L]=SOFTLOCKUP
[  992.873263][T22656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  992.873272][T22656] Call Trace:
[  992.873278][T22656]  <TASK>
[  992.873284][T22656]  dump_stack_lvl+0x100/0x190
[  992.873315][T22656]  should_fail_ex.cold+0x5/0xa
[  992.873336][T22656]  should_failslab+0xc2/0x120
[  992.873354][T22656]  __kmalloc_cache_noprof+0x7a/0x6f0
[  992.873375][T22656]  ? vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200
[  992.873398][T22656]  vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200
[  992.873419][T22656]  vidtv_mux_init+0x8a6/0xbf0
[  992.873438][T22656]  vidtv_start_feed+0x34e/0x500
[  992.873459][T22656]  ? __pfx_vidtv_start_feed+0x10/0x10
[  992.873481][T22656]  ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10
[  992.873512][T22656]  dmx_section_feed_start_filtering+0x3a8/0x660
[  992.873541][T22656]  dvb_dmxdev_filter_start+0x767/0xdd0
[  992.873570][T22656]  dvb_demux_do_ioctl+0xe64/0x1200
[  992.873597][T22656]  dvb_usercopy+0x167/0x340
[  992.873613][T22656]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[  992.873634][T22656]  ? __pfx_dvb_usercopy+0x10/0x10
[  992.873659][T22656]  ? __fget_files+0x21f/0x3d0
[  992.873680][T22656]  dvb_demux_ioctl+0x29/0x40
[  992.873697][T22656]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[  992.873715][T22656]  __x64_sys_ioctl+0x18e/0x210
[  992.873732][T22656]  do_syscall_64+0x115/0x840
[  992.873747][T22656]  ? clear_bhb_loop+0x40/0x90
[  992.873765][T22656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  992.873780][T22656] RIP: 0033:0x7fb000f9ce59
[  992.873794][T22656] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  992.873809][T22656] RSP: 002b:00007fb001ebd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  992.873824][T22656] RAX: ffffffffffffffda RBX: 00007fb001216090 RCX: 00007fb000f9ce59
[  992.873834][T22656] RDX: 0000000000000000 RSI: 00000000403c6f2b RDI: 0000000000000006
[  992.873843][T22656] RBP: 00007fb001032d6f R08: 0000000000000000 R09: 0000000000000000
[  992.873851][T22656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  992.873859][T22656] R13: 00007fb001216128 R14: 00007fb001216090 R15: 00007ffd9ebd1058
[  992.873879][T22656]  </TASK>
[  993.308923][T22664] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3453'.
[  993.380587][ T5608] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI
[  993.392493][ T5608] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  993.400893][ T5608] CPU: 0 UID: 0 PID: 5608 Comm: kworker/0:3 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  993.411807][ T5608] Tainted: [L]=SOFTLOCKUP
[  993.416108][ T5608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  993.426143][ T5608] Workqueue: events vidtv_mux_tick
[  993.431245][ T5608] RIP: 0010:vidtv_psi_ts_psi_write_into+0x4bb/0xb40
[  993.437821][ T5608] Code: 9b ba d9 f9 4d 8d 65 20 4c 89 e0 48 c1 e8 03 80 3c 18 00 0f 85 fe 04 00 00 49 8b 45 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 1a 38 ca 7f 08 84 d2 0f 85 c6 04 00 00 0f b6 10 48 8b 7c
[  993.457409][ T5608] RSP: 0018:ffffc900039a73f0 EFLAGS: 00010202
[  993.463465][ T5608] RAX: 0000000000000002 RBX: dffffc0000000000 RCX: 0000000000000002
[  993.471419][ T5608] RDX: 0000000000000000 RSI: ffffffff882e3265 RDI: ffff88807e5fdd00
[  993.479376][ T5608] RBP: 0000000000000008 R08: 0000000000000005 R09: 0000000000000000
[  993.487331][ T5608] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900039a7690
[  993.495286][ T5608] R13: ffffc900039a7670 R14: 0000000000000178 R15: 0000000000000000
[  993.503237][ T5608] FS:  0000000000000000(0000) GS:ffff888124397000(0000) knlGS:0000000000000000
[  993.512157][ T5608] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  993.518721][ T5608] CR2: 0000001b2d2ecff8 CR3: 00000000295b0000 CR4: 00000000003526f0
[  993.526685][ T5608] Call Trace:
[  993.529947][ T5608]  <TASK>
[  993.532861][ T5608]  ? __pfx_vidtv_psi_ts_psi_write_into+0x10/0x10
[  993.539182][ T5608]  vidtv_psi_pmt_write_into+0x3b2/0xa70
[  993.544718][ T5608]  ? __pfx_vidtv_psi_pmt_write_into+0x10/0x10
[  993.550779][ T5608]  ? vidtv_psi_pat_write_into+0x56a/0x690
[  993.556493][ T5608]  ? __pfx_vidtv_psi_pat_write_into+0x10/0x10
[  993.562557][ T5608]  vidtv_mux_push_si+0x932/0xe80
[  993.567488][ T5608]  ? __pfx_vidtv_mux_push_si+0x10/0x10
[  993.573193][ T5608]  ? __lock_acquire+0x4a5/0x2630
[  993.578121][ T5608]  ? vidtv_memset+0x50/0x90
[  993.582609][ T5608]  ? vidtv_ts_pcr_write_into+0x45b/0x650
[  993.588233][ T5608]  ? lock_acquire+0x1b1/0x370
[  993.592900][ T5608]  ? virtqueue_notify+0x37/0x110
[  993.597827][ T5608]  vidtv_mux_tick+0xe93/0x1460
[  993.602588][ T5608]  ? __lock_acquire+0x4a5/0x2630
[  993.607542][ T5608]  ? __pfx_vidtv_mux_tick+0x10/0x10
[  993.612735][ T5608]  ? __lock_acquire+0x4a5/0x2630
[  993.617669][ T5608]  ? do_raw_spin_unlock+0x145/0x1e0
[  993.622855][ T5608]  ? debug_object_deactivate+0x2e4/0x3b0
[  993.628498][ T5608]  ? rcu_is_watching+0x12/0xc0
[  993.633247][ T5608]  process_one_work+0xa0e/0x1980
[  993.638183][ T5608]  ? __pfx_process_one_work+0x10/0x10
[  993.643551][ T5608]  ? __pfx_vidtv_mux_tick+0x10/0x10
[  993.648735][ T5608]  worker_thread+0x5ef/0xe50
[  993.653330][ T5608]  ? kthread+0x13a/0x450
[  993.657559][ T5608]  ? __pfx_worker_thread+0x10/0x10
[  993.662647][ T5608]  kthread+0x370/0x450
[  993.666705][ T5608]  ? __pfx_kthread+0x10/0x10
[  993.671280][ T5608]  ret_from_fork+0x72b/0xd50
[  993.675850][ T5608]  ? __pfx_ret_from_fork+0x10/0x10
[  993.680942][ T5608]  ? __switch_to+0x800/0x1100
[  993.685604][ T5608]  ? __switch_to_asm+0x39/0x70
[  993.690349][ T5608]  ? __pfx_kthread+0x10/0x10
[  993.694926][ T5608]  ret_from_fork_asm+0x1a/0x30
[  993.699676][ T5608]  </TASK>
[  993.702688][ T5608] Modules linked in:
[  993.707556][ T5608] ---[ end trace 0000000000000000 ]---
[  993.722722][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[  993.734461][ T1314] ieee802154 phy1 wpan1: encryption failed: -22
[  993.900137][ T5608] RIP: 0010:vidtv_psi_ts_psi_write_into+0x4bb/0xb40
[  993.914188][ T5608] Code: 9b ba d9 f9 4d 8d 65 20 4c 89 e0 48 c1 e8 03 80 3c 18 00 0f 85 fe 04 00 00 49 8b 45 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 1a 38 ca 7f 08 84 d2 0f 85 c6 04 00 00 0f b6 10 48 8b 7c
[  993.935413][ T5608] RSP: 0018:ffffc900039a73f0 EFLAGS: 00010202
[  993.944092][ T5608] RAX: 0000000000000002 RBX: dffffc0000000000 RCX: 0000000000000002
[  993.953714][ T5608] RDX: 0000000000000000 RSI: ffffffff882e3265 RDI: ffff88807e5fdd00
[  993.964383][ T5608] RBP: 0000000000000008 R08: 0000000000000005 R09: 0000000000000000
[  993.972518][ T5608] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900039a7690
[  993.985347][ T5608] R13: ffffc900039a7670 R14: 0000000000000178 R15: 0000000000000000
[  993.993516][ T5608] FS:  0000000000000000(0000) GS:ffff888124397000(0000) knlGS:0000000000000000
[  994.003103][ T5608] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  994.009852][ T5608] CR2: 00007f169a9ea2f8 CR3: 0000000036d32000 CR4: 00000000003526f0
[  994.018108][ T5608] Kernel panic - not syncing: Fatal exception
[  994.024213][ T5608] Kernel Offset: disabled
[  994.028537][ T5608] Rebooting in 86400 seconds..