last executing test programs:

34m20.232091103s ago: executing program 1 (id=183):
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
settimeofday$auto(&(0x7f0000000080)={0x3, 0xffffffffffffffa0}, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44b, 0x7, 0x5, 0x1007181, 0xd1, 0x7, 0x7, 0x7ff, 0x9, 0x80000001, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffb, 0x8, 0x0, 0x30, 0x0, 0x864, 0xe, 0x22000, 0x200, 0x0, 0x84, [0x200, 0x2, 0xfffffffffffffffb, 0xfffffffffffffffe, 0x0, 0x401ffc, 0x0, 0xe, 0x1, 0x400, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x8, 0x2, 0x6, 0x1, 0x8, 0x63de, 0x8, 0x10000000000, 0xffffffffffffffff, 0x4, 0x2f, 0x0, 0x0, 0x3006, 0x400000000005b8, 0xffff, 0x0, 0xff, 0x0, 0xa, 0x2, 0x88e, 0x40, 0xfffffffffffffffc, 0x8, 0xa38, 0x0, 0x4, 0xfffffffffffffffc, 0x789, 0xa484, 0x10000001007, 0x6, 0x8000000000]}, 0xa, 0xd)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd01, &(0x7f00000001c0))
io_uring_setup$auto(0x6, 0x0)
r1 = open(0x0, 0x2e280, 0x141)
io_uring_setup$auto(0x6, 0x0)
open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x2000, 0xb5d1af1605322c72)
madvise$auto(0x0, 0x18, 0x17)
futex_requeue$auto(0x0, 0x80, 0x2, 0x101)
fsmount$auto(0xffffffffffffffff, 0x81, 0xc185)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0x1d, 0x2, 0x6)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(r1, &(0x7f0000000040)=@can={0x1d, r3, 0xfd}, 0x6a)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcsa1\x00', 0x1, 0x0)
write$auto_vcs_fops_vc_screen(r5, &(0x7f00000001c0)='\b\n', 0x2)
unshare$auto(0x40000080)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYRES16=r4, @ANYRESDEC=r5], 0x1ac}}, 0x40000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1100"], 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0x400c000)
sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r6, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0)

34m14.786596411s ago: executing program 1 (id=190):
socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
openat$auto_clear_warn_once_fops_(0xffffffffffffff9c, &(0x7f0000000240), 0x40, 0x0)
getcwd$auto(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8)
futex$auto(&(0x7f0000000000)=0xf0fe, 0x5, 0x4, 0x0, &(0x7f0000000080)=0x9, 0x3000000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
io_cancel$auto(0x7, 0x0, 0x0)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/pagemap\x00', 0x0, 0x0)
ioperm$auto(0x3, 0x8001, 0x2000000000000149)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mbind$auto(0x9, 0x84, 0x4, &(0x7f0000000000), 0x80000000, 0x7f)
socket(0xa, 0x2, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
shutdown$auto(0x200000003, 0x2)
sendmsg$auto_NLBL_MGMT_C_LISTDEF(0xffffffffffffffff, 0x0, 0x20048800)
unshare$auto(0x40000080)
recvmmsg$auto(0x3, 0x0, 0x687bcbd, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)

34m11.012254316s ago: executing program 1 (id=196):
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x40, 0x0)
ioctl$auto(r0, 0x9000643f, 0xc35)
fanotify_init$auto(0x5, 0x2000000000002)
socket(0x11, 0x80003, 0x307)
mmap$auto(0x0, 0x6, 0x2, 0xeb1, r0, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4000041}, 0x40000)
ioperm$auto(0xfb, 0x5, 0xe)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/udp6\x00', 0x40, 0x0)
pread64$auto(r2, &(0x7f00000000c0)='#\x00', 0x653, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x100000000009b72, 0x2, 0x8000)
madvise$auto(0x5b6, 0x7fffffffffffffff, 0xa)
sysfs$auto(0x2, 0x23, 0x0)
r3 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r3, 0x0, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
write$auto(0x3, 0x0, 0xfffffded)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_VERSION_SET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000001}, 0x4010)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socket(0x2, 0x3, 0xa)
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x0, @loopback}, 0x6b)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyr9\x00', 0x2000, 0x0)
socket(0xa, 0x5, 0x0)

34m7.223715011s ago: executing program 1 (id=199):
r0 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8)
futex$auto(&(0x7f0000000000)=0xf0fe, 0x5, 0x4, 0x0, &(0x7f0000000080)=0x9, 0x3000000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
io_cancel$auto(0x7, 0x0, 0x0)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/pagemap\x00', 0x0, 0x0)
ioperm$auto(0x3, 0x8001, 0x2000000000000149)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mbind$auto(0x9, 0x84, 0x4, &(0x7f0000000000), 0x80000000, 0x7f)
socket(0xa, 0x2, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
shutdown$auto(0x200000003, 0x2)
sendmsg$auto_NLBL_MGMT_C_LISTDEF(0xffffffffffffffff, 0x0, 0x20048800)
unshare$auto(0x40000080)
recvmmsg$auto(0x3, 0x0, 0x687bcbd, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)

34m3.522558889s ago: executing program 1 (id=200):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xf8, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x3c, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d701786304b952fe"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xf8}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

33m56.822189695s ago: executing program 1 (id=210):
mmap$auto(0x0, 0x533, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x2)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
connect$auto(0x3, 0x0, 0x55)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfdf3)
read$auto(0x3, 0x0, 0xfdef)
open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x321342, 0x1)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00')
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x4003)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0xfcffffff, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0x3}, 0x804}, 0x7, 0x4008)
prctl$auto_PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2, 0x0, 0xfffffffffffffffe, 0x81)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf2502"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)

33m41.460767536s ago: executing program 32 (id=210):
mmap$auto(0x0, 0x533, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x2)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
connect$auto(0x3, 0x0, 0x55)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfdf3)
read$auto(0x3, 0x0, 0xfdef)
open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x321342, 0x1)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00')
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x4003)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0xfcffffff, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0x3}, 0x804}, 0x7, 0x4008)
prctl$auto_PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2, 0x0, 0xfffffffffffffffe, 0x81)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf2502"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)

33m19.772323249s ago: executing program 4 (id=250):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xf8, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x3c, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d701786304b952fe"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xf8}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

33m16.819436375s ago: executing program 4 (id=255):
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000001380), 0x0, 0x0)
open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2)
symlink$auto(&(0x7f0000001500)='./file0/file0\x00', 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
socket(0x29, 0x5, 0x0)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x3, 0x100)
r1 = socket(0x1d, 0x2, 0x7)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r3}, 0x6a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r4=>0x0})
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r4}, 0x18)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
write$auto(0x3, 0x0, 0xfdef)
close_range$auto(r0, r2, 0xfffffffc)
socket(0x2, 0x80002, 0x73)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
ioctl$auto(0x3, 0x4b71, 0x38)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
socket(0x2, 0x801, 0x106)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x123000, 0x0)
mmap$auto(0x4004, 0x9, 0xde, 0x2040000000009b72, 0x2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xffffeffe, 0x2)

33m12.112681818s ago: executing program 4 (id=261):
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
settimeofday$auto(&(0x7f0000000080)={0x3, 0xffffffffffffffa0}, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44b, 0x7, 0x5, 0x1007181, 0xd1, 0x7, 0x7, 0x7ff, 0x9, 0x80000001, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffb, 0x8, 0x0, 0x30, 0x0, 0x864, 0xe, 0x22000, 0x200, 0x0, 0x84, [0x200, 0x2, 0xfffffffffffffffb, 0xfffffffffffffffe, 0x0, 0x401ffc, 0x0, 0xe, 0x1, 0x400, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x8, 0x2, 0x6, 0x1, 0x8, 0x63de, 0x8, 0x10000000000, 0xffffffffffffffff, 0x4, 0x2f, 0x0, 0x0, 0x3006, 0x400000000005b8, 0xffff, 0x0, 0xff, 0x0, 0xa, 0x2, 0x88e, 0x40, 0xfffffffffffffffc, 0x8, 0xa38, 0x0, 0x4, 0xfffffffffffffffc, 0x789, 0xa484, 0x10000001007, 0x6, 0x8000000000]}, 0xa, 0xd)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd01, &(0x7f00000001c0))
io_uring_setup$auto(0x6, 0x0)
r1 = open(0x0, 0x2e280, 0x141)
io_uring_setup$auto(0x6, 0x0)
open(0x0, 0x2000, 0xb5d1af1605322c72)
mmap$auto(0xfffffffffffffffc, 0x2020009, 0x7f, 0x200000000eb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0x18, 0x17)
futex_requeue$auto(0x0, 0x80, 0x2, 0x101)
fsmount$auto(0xffffffffffffffff, 0x81, 0xc185)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0x1d, 0x2, 0x6)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(r1, &(0x7f0000000040)=@can={0x1d, r3, 0xfd}, 0x6a)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcsa1\x00', 0x1, 0x0)
write$auto_vcs_fops_vc_screen(r5, &(0x7f00000001c0)='\b\n', 0x2)
unshare$auto(0x40000080)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYRES16=r4, @ANYRESDEC=r5], 0x1ac}}, 0x40000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1100"], 0x2c}, 0x1, 0x0, 0x0, 0x804}, 0x400c000)
sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r6, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c004}, 0x40080c0)

33m6.150938253s ago: executing program 4 (id=276):
mmap$auto(0x0, 0x533, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x2)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x200}, 0x55)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfdf3)
read$auto(0x3, 0x0, 0xfdef)
open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x321342, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00')
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x4003)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0xfcffffff, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0x3}, 0x804}, 0x7, 0x4008)
prctl$auto_PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2, 0x0, 0xfffffffffffffffe, 0x81)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf2502"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)

32m58.267039725s ago: executing program 4 (id=274):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xf8, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x3c, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d701786304b952fe"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xf8}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

32m54.149808692s ago: executing program 4 (id=277):
mmap$auto(0x0, 0x533, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x2)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r0 = socket(0x2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x200}, 0x55)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfdf3)
read$auto(0x3, 0x0, 0xfdef)
open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x321342, 0x1)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00')
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x4003)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0xfcffffff, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0x3}, 0x804}, 0x7, 0x4008)
prctl$auto_PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2, 0x0, 0xfffffffffffffffe, 0x81)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf2502"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)

32m38.416648168s ago: executing program 33 (id=277):
mmap$auto(0x0, 0x533, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x2)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r0 = socket(0x2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x200}, 0x55)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfdf3)
read$auto(0x3, 0x0, 0xfdef)
open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x321342, 0x1)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00')
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x4003)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0xfcffffff, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0x3}, 0x804}, 0x7, 0x4008)
prctl$auto_PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2, 0x0, 0xfffffffffffffffe, 0x81)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf2502"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)

11m42.946690065s ago: executing program 3 (id=1964):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xf0, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x3c, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d701786304b952fe"}, @NL80211_ATTR_MBSSID_CONFIG={0x28, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xf0}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

11m40.121240909s ago: executing program 3 (id=1965):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xf0, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x3c, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d701786304b952fe"}, @NL80211_ATTR_MBSSID_CONFIG={0x28, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xf0}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

11m35.729991396s ago: executing program 3 (id=1969):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xf0, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x3c, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d701786304b952fe"}, @NL80211_ATTR_MBSSID_CONFIG={0x28, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xf0}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

11m31.754758692s ago: executing program 3 (id=1975):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xc4, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x3c, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d701786304b952fe"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x10, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xc4}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

11m30.373520561s ago: executing program 3 (id=1977):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x3a881, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000140)='0\x81=\"\xad\xff\x8d\xf9P\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb&\xe8\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0xd4d0)
dup2$auto(0xffffffffffffffff, 0xffffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x801, 0x106)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55)
shutdown$auto(0x200000003, 0x2)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
socket(0xa, 0x3, 0x8)
socket(0x2b, 0x1, 0x1)
socket(0x10, 0x2, 0x4)
socket(0x2b, 0x1, 0x0)
msync$auto(0xffffffff80000000, 0x1000000000000001, 0x400000004)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xcb4281, 0x0)
socket(0x2, 0x80802, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r1 = prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x8002, 0x0, 0x5, 0x7)
ioctl$auto(r0, 0x40106f52, r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), r2)
sendmsg$auto_NETDEV_CMD_DEV_GET(r2, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4005}, 0x28044004)
read$auto(0x3, 0x0, 0x400000)

11m29.214163357s ago: executing program 3 (id=1980):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xdc, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x20, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xdc}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

11m14.038055777s ago: executing program 34 (id=1980):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xdc, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x20, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xdc}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

11m11.62784333s ago: executing program 0 (id=1994):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xbc, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xbc}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

11m9.331543106s ago: executing program 0 (id=1996):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xc0, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x4}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xc0}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

11m2.671612566s ago: executing program 2 (id=1999):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xf0, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x3c, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d701786304b952fe"}, @NL80211_ATTR_MBSSID_CONFIG={0x28, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xf0}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

11m2.67037527s ago: executing program 0 (id=2006):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xec, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x2e, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xec}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

10m59.032160157s ago: executing program 2 (id=2002):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xdc, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x20, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xdc}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

10m58.355853581s ago: executing program 0 (id=2004):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xc0, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x4}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xc0}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

10m57.417884168s ago: executing program 2 (id=2005):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xc0, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x4}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xc0}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

10m54.804958125s ago: executing program 0 (id=2009):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xf4, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x35, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d7"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xf4}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

10m53.762280265s ago: executing program 2 (id=2011):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xf0, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x3c, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d701786304b952fe"}, @NL80211_ATTR_MBSSID_CONFIG={0x28, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xf0}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

10m52.005590858s ago: executing program 0 (id=2012):
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0x9, 0x8, 0xa5, 0x6}, "66ac0801cefa303f5ce268d590eb0d4a4cada7272464294b9183169eef4c1f9a8fdcc8ecc66fdd10316f064ebd893007abb4c0bbc3b82e9b6d2924ad63d5e2bddb6aaf40cddc110d71771552c03de658", 0x8})
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="11000000126584", 0x7)
socket(0x2, 0x1, 0x0)
ioctl$auto_RTC_ALM_READ(0xffffffffffffffff, 0x80247008, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)

10m46.574921181s ago: executing program 2 (id=2013):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xc0, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x4}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xc0}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

10m38.701841713s ago: executing program 2 (id=2017):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xc4, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x3c, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d701786304b952fe"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x10, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xc4}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

10m36.411997151s ago: executing program 35 (id=2012):
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0x9, 0x8, 0xa5, 0x6}, "66ac0801cefa303f5ce268d590eb0d4a4cada7272464294b9183169eef4c1f9a8fdcc8ecc66fdd10316f064ebd893007abb4c0bbc3b82e9b6d2924ad63d5e2bddb6aaf40cddc110d71771552c03de658", 0x8})
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="11000000126584", 0x7)
socket(0x2, 0x1, 0x0)
ioctl$auto_RTC_ALM_READ(0xffffffffffffffff, 0x80247008, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)

10m26.732196906s ago: executing program 5 (id=2024):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x3a881, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000140)='0\x81=\"\xad\xff\x8d\xf9P\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb&\xe8\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0xd4d0)
dup2$auto(0xffffffffffffffff, 0xffffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x801, 0x106)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55)
shutdown$auto(0x200000003, 0x2)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
socket(0xa, 0x3, 0x8)
socket(0x2b, 0x1, 0x1)
socket(0x10, 0x2, 0x4)
socket(0x2b, 0x1, 0x0)
msync$auto(0xffffffff80000000, 0x1000000000000001, 0x400000004)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xcb4281, 0x0)
socket(0x2, 0x80802, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r1 = prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x8002, 0x0, 0x5, 0x7)
ioctl$auto(r0, 0x40106f52, r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), r2)
sendmsg$auto_NETDEV_CMD_DEV_GET(r2, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f00000017c0)=ANY=[@ANYBLOB="14000000", @ANYBLOB="010326090004fedbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x4005}, 0x28044004)
read$auto(0x3, 0x0, 0x400000)

10m24.060537227s ago: executing program 5 (id=2026):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xc0, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x4}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xc0}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

10m23.153189859s ago: executing program 36 (id=2017):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xc4, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x3c, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d701786304b952fe"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x10, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xc4}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

10m21.92268398s ago: executing program 5 (id=2030):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xec, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x2e, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xec}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

10m18.080508484s ago: executing program 5 (id=2032):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r0 = socket(0xa, 0x2, 0x0)
r1 = socket(0xa, 0x3, 0xff)
connect$auto(r1, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), r0)
getpgid$auto(0x0)
getpgid$auto(0x0)
madvise$auto(0xa6, 0x8, 0x8)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)
io_setup$auto(0x1, 0x0)
unshare$auto(0x40000080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card1/cable#0\x00', 0x101000, 0x0)
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x2, 0x8004)
socket(0x18, 0x6, 0x2)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)

10m13.452319206s ago: executing program 5 (id=2034):
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1)
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
capget$auto(&(0x7f0000000100)={0x8, <r2=>0x0}, &(0x7f0000000140)={0x9, 0x8, 0x800})
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0xf4, r1, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "ea42e41cec4d4fef79cdc3a3"}, @NL80211_ATTR_PMK={0x35, 0xfe, "6f6b9b3d4ab0feaff4e46bfb119b27d2df9b2af198a28febcf1ceffe14de30556d5adb742520a270cd11912375e66146d7"}, @NL80211_ATTR_MBSSID_CONFIG={0x30, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8f}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0xb}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x43, 0x84, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @pid=r2}, @generic="66a59828293f079dfd1eb86b687ad07a39a3b1f605933a7f4b27220cda052afcfc43cf523adad0bea7ee66049e4769110f9117", @nested={0x4, 0xde}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x9}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x6}]}, 0xf4}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC1D0c\x00', 0x2, 0x0)
mmap$auto_snd_pcm_f_ops_pcm1(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r4, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r3, 0x4048aecb, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mlock$auto(0xfbe8, 0x4)

10m8.588146974s ago: executing program 5 (id=2038):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
setsockopt$auto(r2, 0x7fffffff, 0x4, 0x0, 0x4)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2)
unshare$auto(0x40000080)
socket(0x2a, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x40044620, 0x0)

9m53.052642349s ago: executing program 37 (id=2038):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
setsockopt$auto(r2, 0x7fffffff, 0x4, 0x0, 0x4)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2)
unshare$auto(0x40000080)
socket(0x2a, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x40044620, 0x0)

10.962627764s ago: executing program 8 (id=3270):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4)
socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2)
unshare$auto(0x40000080)
socket(0x2a, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x40044620, 0x0)
r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r3, 0x9, 0xd)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='}\x00')
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8000, 0x0)
acct$auto(&(0x7f0000000140)='@\x00')
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/89, 0x59)

9.671925427s ago: executing program 8 (id=3271):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r0 = socket(0xa, 0x2, 0x0)
r1 = socket(0xa, 0x3, 0xff)
connect$auto(r1, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), r0)
getpgid$auto(0x0)
getpgid$auto(0x0)
madvise$auto(0xa6, 0x8, 0x8)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)
io_setup$auto(0x1, 0x0)
unshare$auto(0x40000080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card1/cable#0\x00', 0x101000, 0x0)
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x2, 0x8004)
socket(0x18, 0x6, 0x2)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000f40)={'batadv0\x00'})

8.494250031s ago: executing program 9 (id=3275):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
setsockopt$auto(r2, 0x7fffffff, 0x4, 0x0, 0x4)
setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2)
unshare$auto(0x40000080)
socket(0x2a, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x40044620, 0x0)
r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r4, 0x9, 0xd)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='}\x00')
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8000, 0x0)
acct$auto(&(0x7f0000000140)='@\x00')
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0)=""/89, 0x59)

8.397535127s ago: executing program 7 (id=3276):
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0x9, 0x8, 0xa5, 0x6}, "66ac0801cefa303f5ce268d590eb0d4a4cada7272464294b9183169eef4c1f9a8fdcc8ecc66fdd10316f064ebd893007abb4c0bbc3b82e9b6d2924ad63d5e2bddb6aaf40cddc110d71771552c03de658", 0x8})
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="11000000126584", 0x7)
ioctl$auto_RTC_ALM_READ(0xffffffffffffffff, 0x80247008, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
madvise$auto(0x8e, 0x3, 0x7fff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x1000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
futex$auto(&(0x7f0000000080)=0x3, 0xb, 0x1, 0x0, 0x0, 0xfffffffa)
mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70)
mknodat$auto(r2, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8)
renameat2$auto(r2, 0x0, r2, 0x0, 0x1)
r3 = openat$dir(0xffffffffffffff9c, 0x0, 0x8000, 0x70)
mkdir$auto(&(0x7f0000000000)='./file0/file0\x00', 0x3)
renameat2$auto(r3, &(0x7f0000000200)='./file0\x00', r3, &(0x7f0000000240)='./file1\x00', 0x2)
r4 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000140)='/proc/devices\x00', 0x800, 0x0)
read$auto_proc_mountinfo_operations_mnt_namespace(r4, &(0x7f0000001100)=""/4096, 0x1000)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
madvise$auto(0x209, 0x1, 0x9)
ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0)

7.269163129s ago: executing program 7 (id=3278):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r0 = socket(0xa, 0x2, 0x0)
r1 = socket(0xa, 0x3, 0xff)
connect$auto(r1, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), r0)
getpgid$auto(0x0)
getpgid$auto(0x0)
madvise$auto(0xa6, 0x8, 0x8)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)
io_setup$auto(0x1, 0x0)
unshare$auto(0x40000080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card1/cable#0\x00', 0x101000, 0x0)
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x2, 0x8004)
socket(0x18, 0x6, 0x2)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000f40)={'batadv0\x00'})

6.956521728s ago: executing program 8 (id=3279):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4)
socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2)
unshare$auto(0x40000080)
socket(0x2a, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x40044620, 0x0)
r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r3, 0x9, 0xd)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='}\x00')
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8000, 0x0)
acct$auto(&(0x7f0000000140)='@\x00')
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/89, 0x59)

6.298500827s ago: executing program 8 (id=3280):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4)
socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2)
unshare$auto(0x40000080)
socket(0x2a, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x40044620, 0x0)
r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r3, 0x9, 0xd)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='}\x00')
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8000, 0x0)
acct$auto(&(0x7f0000000140)='@\x00')
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/89, 0x59)

6.297753771s ago: executing program 6 (id=3281):
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0x9, 0x8, 0xa5, 0x6}, "66ac0801cefa303f5ce268d590eb0d4a4cada7272464294b9183169eef4c1f9a8fdcc8ecc66fdd10316f064ebd893007abb4c0bbc3b82e9b6d2924ad63d5e2bddb6aaf40cddc110d71771552c03de658", 0x8})
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="11000000126584", 0x7)
ioctl$auto_RTC_ALM_READ(0xffffffffffffffff, 0x80247008, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
madvise$auto(0x8e, 0x3, 0x7fff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x1000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
futex$auto(&(0x7f0000000080)=0x3, 0xb, 0x1, 0x0, 0x0, 0xfffffffa)
mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70)
mknodat$auto(r2, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8)
renameat2$auto(r2, 0x0, r2, 0x0, 0x1)
r3 = openat$dir(0xffffffffffffff9c, 0x0, 0x8000, 0x70)
mkdir$auto(&(0x7f0000000000)='./file0/file0\x00', 0x3)
renameat2$auto(r3, &(0x7f0000000200)='./file0\x00', r3, &(0x7f0000000240)='./file1\x00', 0x2)
r4 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000140)='/proc/devices\x00', 0x800, 0x0)
read$auto_proc_mountinfo_operations_mnt_namespace(r4, &(0x7f0000001100)=""/4096, 0x1000)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
madvise$auto(0x209, 0x1, 0x9)
ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0)

6.293838383s ago: executing program 9 (id=3282):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
setsockopt$auto(r2, 0x7fffffff, 0x4, 0x0, 0x4)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
unshare$auto(0x40000080)
socket(0x2a, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x40044620, 0x0)
r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r4, 0x9, 0xd)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='}\x00')
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8000, 0x0)
acct$auto(&(0x7f0000000140)='@\x00')
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0)=""/89, 0x59)

6.162381863s ago: executing program 7 (id=3283):
mmap$auto(0x0, 0x533, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x2)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x200}, 0x55)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfdf3)
read$auto(0x3, 0x0, 0xfdef)
open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x321342, 0x1)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00')
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x4003)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0xfcffffff, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0x3}, 0x804}, 0x7, 0x4008)
prctl$auto_PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2, 0x0, 0xfffffffffffffffe, 0x81)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf25"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)

5.396344169s ago: executing program 6 (id=3284):
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0x9, 0x8, 0xa5, 0x6}, "66ac0801cefa303f5ce268d590eb0d4a4cada7272464294b9183169eef4c1f9a8fdcc8ecc66fdd10316f064ebd893007abb4c0bbc3b82e9b6d2924ad63d5e2bddb6aaf40cddc110d71771552c03de658", 0x8})
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="11000000126584", 0x7)
ioctl$auto_RTC_ALM_READ(0xffffffffffffffff, 0x80247008, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
madvise$auto(0x8e, 0x3, 0x7fff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x1000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
futex$auto(&(0x7f0000000080)=0x3, 0xb, 0x1, 0x0, 0x0, 0xfffffffa)
mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70)
mknodat$auto(r2, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8)
renameat2$auto(r2, 0x0, r2, 0x0, 0x1)
r3 = openat$dir(0xffffffffffffff9c, 0x0, 0x8000, 0x70)
mkdir$auto(&(0x7f0000000000)='./file0/file0\x00', 0x3)
renameat2$auto(r3, &(0x7f0000000200)='./file0\x00', r3, &(0x7f0000000240)='./file1\x00', 0x2)
r4 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000140)='/proc/devices\x00', 0x800, 0x0)
read$auto_proc_mountinfo_operations_mnt_namespace(r4, &(0x7f0000001100)=""/4096, 0x1000)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
madvise$auto(0x209, 0x1, 0x9)
ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0)

4.281878985s ago: executing program 6 (id=3285):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x402, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x1001, 0x0, 0x9, 0x0, 0x1d, 0xb}, 0x80000c}, 0x5, 0x20000000)
openat$auto_dmaengine_summary_fops_(0xffffffffffffff9c, &(0x7f0000000380), 0x10001, 0x0)
mq_notify$auto(r0, 0x0)
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0}, 0x80)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{0x0, 0x6, 0x0, 0xa7, &(0x7f0000000040), 0x8000, 0x1}, 0x8}, 0x1, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0xff, 0x0, 0x1, 0x3}, 0x7}, 0xb, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/cpuacct.usage_all\x00', 0x101800, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r2, 0x107, 0x9, 0x0, 0x6)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), r0)
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_LOCAL(r2, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="37fbc5a9e617c385568c6b0afa295451f1f8a44513e8e31f3235a59f00b8d3e7e2a6fe7ff3831f749721d60d9ded1d45fc6b4fcb56de1bb8f190dea6de8021e77a56d405268431340f5774d719d7825995d71fb398f29558d2c149428275c463c429759a15ccc2d181a0f7ab90e412bd353d1da8eb56cc196e0f718286b7c291a01d52fdc10bfb829f7537b4c952", @ANYRES16=r3, @ANYBLOB="000229bd7000fbdbdf250600000005000a0008000000050019000100000005002e00010000000a001d00bbbbbbbbbbbb00001400040070696d3672656730000000000000000008003b0001010000060014000700000008001c00"], 0x6c}, 0x1, 0x0, 0x0, 0xc000}, 0x40040c0)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D3\x00', 0xc2001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)

4.254757342s ago: executing program 9 (id=3286):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4)
socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2)
unshare$auto(0x40000080)
socket(0x2a, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x40044620, 0x0)
r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r3, 0x9, 0xd)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='}\x00')
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8000, 0x0)
acct$auto(&(0x7f0000000140)='@\x00')
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/89, 0x59)

3.838061521s ago: executing program 8 (id=3287):
mmap$auto(0x0, 0x533, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x2)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x200}, 0x55)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfdf3)
read$auto(0x3, 0x0, 0xfdef)
open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x321342, 0x1)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00')
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x4003)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0xfcffffff, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0x3}, 0x804}, 0x7, 0x4008)
prctl$auto_PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2, 0x0, 0xfffffffffffffffe, 0x81)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)

3.744996853s ago: executing program 7 (id=3288):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
setsockopt$auto(r2, 0x7fffffff, 0x4, 0x0, 0x4)
setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2)
unshare$auto(0x40000080)
socket(0x2a, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x40044620, 0x0)
r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r4, 0x9, 0xd)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='}\x00')
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8000, 0x0)
acct$auto(&(0x7f0000000140)='@\x00')
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0)=""/89, 0x59)

3.410925893s ago: executing program 6 (id=3289):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
setsockopt$auto(r2, 0x7fffffff, 0x4, 0x0, 0x4)
setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2)
unshare$auto(0x40000080)
socket(0x2a, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x40044620, 0x0)
r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r4, 0x9, 0xd)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='}\x00')
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8000, 0x0)
acct$auto(&(0x7f0000000140)='@\x00')
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0)=""/89, 0x59)

3.21808047s ago: executing program 9 (id=3290):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4)
socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2)
unshare$auto(0x40000080)
socket(0x2a, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x40044620, 0x0)
r3 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r3, 0x9, 0xd)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='}\x00')
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8000, 0x0)
acct$auto(&(0x7f0000000140)='@\x00')
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/89, 0x59)

2.247568692s ago: executing program 6 (id=3291):
mmap$auto(0x0, 0x533, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x2)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x200}, 0x55)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfdf3)
read$auto(0x3, 0x0, 0xfdef)
open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x321342, 0x1)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00')
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x4003)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0xfcffffff, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0x3}, 0x804}, 0x7, 0x4008)
prctl$auto_PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2, 0x0, 0xfffffffffffffffe, 0x81)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf25"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)

2.152830244s ago: executing program 7 (id=3292):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80302, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x18000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
socket$nl_generic(0x10, 0x3, 0x10)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4)
openat$auto_proc_fault_inject_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/make-it-fail\x00', 0x101080, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
munmap$auto(0x1, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x3, 0xa)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_7={@link_id=0x8, 0x44e, 0xfffffffe}, 0x6f3)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_FREE_STREAMS(r1, 0x8008551d, &(0x7f00000001c0)=ANY=[@ANYBLOB="4e000000040000"])
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x5)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1, 0xa, 0x400)
r2 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r2, 0x84, 0x71, 0x0, &(0x7f0000000280)=0x22a)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)

2.070936149s ago: executing program 9 (id=3293):
mmap$auto(0x0, 0x533, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x2)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x200}, 0x55)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
write$auto(0x3, 0x0, 0xfdf3)
read$auto(0x3, 0x0, 0xfdef)
open(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x321342, 0x1)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.6/usb7/power/wakeup_active_count\x00')
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x4003)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0xfcffffff, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0x3}, 0x804}, 0x7, 0x4008)
prctl$auto_PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2, 0x0, 0xfffffffffffffffe, 0x81)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)

1.713939842s ago: executing program 8 (id=3294):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r0 = socket(0xa, 0x2, 0x0)
r1 = socket(0xa, 0x3, 0xff)
connect$auto(r1, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), r0)
getpgid$auto(0x0)
getpgid$auto(0x0)
madvise$auto(0xa6, 0x8, 0x8)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)
io_setup$auto(0x1, 0x0)
unshare$auto(0x40000080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card1/cable#0\x00', 0x101000, 0x0)
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x2, 0x8004)
socket(0x18, 0x6, 0x2)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000f40)={'batadv0\x00'})

273.888147ms ago: executing program 6 (id=3295):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x402, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x1001, 0x0, 0x9, 0x0, 0x1d, 0xb}, 0x80000c}, 0x5, 0x20000000)
openat$auto_dmaengine_summary_fops_(0xffffffffffffff9c, &(0x7f0000000380), 0x10001, 0x0)
mq_notify$auto(r0, 0x0)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{0x0, 0x6, 0x0, 0xa7, &(0x7f0000000040), 0x8000, 0x1}, 0x8}, 0x1, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0xff, 0x0, 0x1, 0x3}, 0x7}, 0xb, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/cpuacct.usage_all\x00', 0x101800, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r2, 0x107, 0x9, 0x0, 0x6)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), r0)
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_LOCAL(r2, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="37fbc5a9e617c385568c6b0afa295451f1f8a44513e8e31f3235a59f00b8d3e7e2a6fe7ff3831f749721d60d9ded1d45fc6b4fcb56de1bb8f190dea6de8021e77a56d405268431340f5774d719d7825995d71fb398f29558d2c149428275c463c429759a15ccc2d181a0f7ab90e412bd353d1da8eb56cc196e0f718286b7c291a01d52fdc10bfb829f7537b4c952", @ANYRES16=r3, @ANYBLOB="000229bd7000fbdbdf250600000005000a0008000000050019000100000005002e00010000000a001d00bbbbbbbbbbbb00001400040070696d3672656730000000000000000008003b0001010000060014000700000008001c00"], 0x6c}, 0x1, 0x0, 0x0, 0xc000}, 0x40040c0)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D3\x00', 0xc2001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)

117.797848ms ago: executing program 7 (id=3296):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
setsockopt$auto(r2, 0x7fffffff, 0x4, 0x0, 0x4)
setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2)
unshare$auto(0x40000080)
socket(0x2a, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x40044620, 0x0)
r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r4, 0x9, 0xd)
close_range$auto(0x2, 0x8, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
acct$auto(&(0x7f0000000000)='}\x00')
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8000, 0x0)
acct$auto(&(0x7f0000000140)='@\x00')
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0)=""/89, 0x59)

0s ago: executing program 9 (id=3297):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x0)
r0 = socket(0xa, 0x3, 0xff)
connect$auto(r0, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
getpgid$auto(0x0)
getpgid$auto(0x0)
madvise$auto(0xa6, 0x8, 0x8)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)
io_setup$auto(0x1, 0x0)
unshare$auto(0x40000080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card1/cable#0\x00', 0x101000, 0x0)
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x2, 0x8004)
socket(0x18, 0x6, 0x2)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000f40)={'batadv0\x00'})

kernel console output (not intermixed with test programs):

ement: false inactive
[ 2155.121551][T24880] vivid-003: RDS Traffic Program: false inactive
[ 2155.128098][T24880] vivid-003: RDS Music: false inactive
[ 2155.133698][T24880] vivid-003: ==================  END STATUS  ==================
[ 2156.030744][T24878] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2156.037307][T24878] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2156.043508][T24878] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2156.049756][T24878] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2156.604510][T24898] Invalid ELF header magic: != ELF
[ 2156.694401][T24900] Invalid ELF header magic: != ELF
[ 2157.521508][T24894] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2157.528085][T24894] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2157.534494][T24894] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2157.541614][T24894] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2157.800162][T24912] vivid-003: =================  START STATUS  =================
[ 2157.808337][T24912] vivid-003: Radio HW Seek Mode: Bounded
[ 2157.814033][T24912] vivid-003: Radio Programmable HW Seek: false
[ 2157.821743][T24912] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2157.827692][T24912] vivid-003: Generate RBDS Instead of RDS: false
[ 2157.834861][T24912] vivid-003: RDS Reception: true
[ 2157.839865][T24912] vivid-003: RDS Program Type: 0 inactive
[ 2157.847364][T24912] vivid-003: RDS PS Name:  inactive
[ 2157.852630][T24912] vivid-003: RDS Radio Text:  inactive
[ 2157.864411][T24912] vivid-003: RDS Traffic Announcement: false inactive
[ 2157.872470][T24912] vivid-003: RDS Traffic Program: false inactive
[ 2157.879265][T24912] vivid-003: RDS Music: false inactive
[ 2157.885125][T24912] vivid-003: ==================  END STATUS  ==================
[ 2158.072556][T24915] Invalid ELF header magic: != ELF
[ 2158.735418][T18927] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2159.087538][T24934] Invalid ELF header magic: != ELF
[ 2159.314314][T24924] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2159.339802][T24924] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2159.372233][T24924] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2159.390755][T24924] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2159.826755][T24942] vivid-003: =================  START STATUS  =================
[ 2159.842491][T24942] vivid-003: Radio HW Seek Mode: Bounded
[ 2159.869003][T24942] vivid-003: Radio Programmable HW Seek: false
[ 2159.893661][T24942] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2159.909209][T24942] vivid-003: Generate RBDS Instead of RDS: false
[ 2159.924796][T24942] vivid-003: RDS Reception: true
[ 2159.935081][T24942] vivid-003: RDS Program Type: 0 inactive
[ 2159.951480][T24942] vivid-003: RDS PS Name:  inactive
[ 2159.980856][T24942] vivid-003: RDS Radio Text:  inactive
[ 2159.994811][T24942] vivid-003: RDS Traffic Announcement: false inactive
[ 2160.011971][T24942] vivid-003: RDS Traffic Program: false inactive
[ 2160.032325][T24942] vivid-003: RDS Music: false inactive
[ 2160.065962][T24942] vivid-003: ==================  END STATUS  ==================
[ 2160.119887][T24947] vivid-003: =================  START STATUS  =================
[ 2160.155497][T24947] vivid-003: Radio HW Seek Mode: Bounded
[ 2160.164525][T24947] vivid-003: Radio Programmable HW Seek: false
[ 2160.198298][T24947] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2160.223010][T24947] vivid-003: Generate RBDS Instead of RDS: false
[ 2160.242395][T24947] vivid-003: RDS Reception: true
[ 2160.284614][T24947] vivid-003: RDS Program Type: 0 inactive
[ 2160.290424][T24947] vivid-003: RDS PS Name:  inactive
[ 2160.304910][T24947] vivid-003: RDS Radio Text:  inactive
[ 2160.326337][T24947] vivid-003: RDS Traffic Announcement: false inactive
[ 2160.352598][T24947] vivid-003: RDS Traffic Program: false inactive
[ 2160.359380][T24947] vivid-003: RDS Music: false inactive
[ 2160.367104][T24947] vivid-003: ==================  END STATUS  ==================
[ 2160.649771][T24956] Invalid ELF header magic: != ELF
[ 2160.661098][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 2160.674713][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 2160.868513][T24963] Invalid ELF header magic: != ELF
[ 2160.899403][T18927] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2161.322991][T24968] FAULT_INJECTION: forcing a failure.
[ 2161.322991][T24968] name failslab, interval 1, probability 0, space 0, times 0
[ 2161.358246][T24968] CPU: 1 UID: 0 PID: 24968 Comm: syz.7.3047 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2161.358281][T24968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2161.358295][T24968] Call Trace:
[ 2161.358303][T24968]  <TASK>
[ 2161.358313][T24968]  dump_stack_lvl+0x16c/0x1f0
[ 2161.358353][T24968]  should_fail_ex+0x50a/0x650
[ 2161.358378][T24968]  ? fs_reclaim_acquire+0xae/0x150
[ 2161.358415][T24968]  ? refill_pi_state_cache+0x89/0x250
[ 2161.358437][T24968]  should_failslab+0xc2/0x120
[ 2161.358465][T24968]  __kmalloc_cache_noprof+0x68/0x420
[ 2161.358500][T24968]  ? lock_acquire+0x2f/0xb0
[ 2161.358527][T24968]  ? schedule+0x1fd/0x350
[ 2161.358559][T24968]  refill_pi_state_cache+0x89/0x250
[ 2161.358584][T24968]  futex_lock_pi+0x227/0x7b0
[ 2161.358609][T24968]  ? futex_unqueue+0xba/0x140
[ 2161.358639][T24968]  ? __futex_wait+0x324/0x3c0
[ 2161.358666][T24968]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2161.358694][T24968]  ? __pfx___futex_wait+0x10/0x10
[ 2161.358748][T24968]  ? futex_wait+0x121/0x380
[ 2161.358780][T24968]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2161.358813][T24968]  ? rcu_is_watching+0x12/0xc0
[ 2161.358848][T24968]  ? io_uring_setup+0x171a/0x21a0
[ 2161.358883][T24968]  do_futex+0x11b/0x350
[ 2161.358905][T24968]  ? __pfx_do_futex+0x10/0x10
[ 2161.358935][T24968]  __x64_sys_futex+0x1e1/0x4c0
[ 2161.358962][T24968]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2161.358987][T24968]  ? rcu_is_watching+0x12/0xc0
[ 2161.359030][T24968]  do_syscall_64+0xcd/0x250
[ 2161.359056][T24968]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2161.359090][T24968] RIP: 0033:0x7ff80b58cde9
[ 2161.359110][T24968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2161.359134][T24968] RSP: 002b:00007ff80c320038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2161.359157][T24968] RAX: ffffffffffffffda RBX: 00007ff80b7a5fa0 RCX: 00007ff80b58cde9
[ 2161.359173][T24968] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2161.359188][T24968] RBP: 00007ff80b60e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2161.359204][T24968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2161.359218][T24968] R13: 0000000000000000 R14: 00007ff80b7a5fa0 R15: 00007ffee43d60d8
[ 2161.359250][T24968]  </TASK>
[ 2161.826581][ T5147] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2161.830403][T17709] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2161.832664][T18927] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2162.081766][T24976] vivid-003: =================  START STATUS  =================
[ 2162.113751][T24976] vivid-003: Radio HW Seek Mode: Bounded
[ 2162.130487][T24976] vivid-003: Radio Programmable HW Seek: false
[ 2162.147577][T24976] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2162.153211][T24976] vivid-003: Generate RBDS Instead of RDS: false
[ 2162.204767][T24976] vivid-003: RDS Reception: true
[ 2162.210953][T24976] vivid-003: RDS Program Type: 0 inactive
[ 2162.249953][T24976] vivid-003: RDS PS Name:  inactive
[ 2162.274049][T24976] vivid-003: RDS Radio Text:  inactive
[ 2162.318131][T24976] vivid-003: RDS Traffic Announcement: false inactive
[ 2162.360804][T24976] vivid-003: RDS Traffic Program: false inactive
[ 2162.428185][T24976] vivid-003: RDS Music: false inactive
[ 2162.471341][T24976] vivid-003: ==================  END STATUS  ==================
[ 2162.544849][T24984] vivid-003: =================  START STATUS  =================
[ 2162.589132][T24984] vivid-003: Radio HW Seek Mode: Bounded
[ 2162.603966][T24984] vivid-003: Radio Programmable HW Seek: false
[ 2162.651546][T24984] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2162.657385][T24984] vivid-003: Generate RBDS Instead of RDS: false
[ 2162.663975][T24984] vivid-003: RDS Reception: true
[ 2162.669682][T24984] vivid-003: RDS Program Type: 0 inactive
[ 2162.675735][T24984] vivid-003: RDS PS Name:  inactive
[ 2162.681079][T24984] vivid-003: RDS Radio Text:  inactive
[ 2162.686856][T24984] vivid-003: RDS Traffic Announcement: false inactive
[ 2162.693757][T24984] vivid-003: RDS Traffic Program: false inactive
[ 2162.700427][T24984] vivid-003: RDS Music: false inactive
[ 2162.706279][T24984] vivid-003: ==================  END STATUS  ==================
[ 2163.048273][T24993] vivid-003: =================  START STATUS  =================
[ 2163.084927][T24993] vivid-003: Radio HW Seek Mode: Bounded
[ 2163.090705][T24993] vivid-003: Radio Programmable HW Seek: false
[ 2163.098550][T24993] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2163.106176][T24993] vivid-003: Generate RBDS Instead of RDS: false
[ 2163.112665][T24993] vivid-003: RDS Reception: true
[ 2163.118135][T24993] vivid-003: RDS Program Type: 0 inactive
[ 2163.128777][T24993] vivid-003: RDS PS Name:  inactive
[ 2163.186131][T24993] vivid-003: RDS Radio Text:  inactive
[ 2163.210433][T24993] vivid-003: RDS Traffic Announcement: false inactive
[ 2163.235185][T24993] vivid-003: RDS Traffic Program: false inactive
[ 2163.254641][T24993] vivid-003: RDS Music: false inactive
[ 2163.276313][T24993] vivid-003: ==================  END STATUS  ==================
[ 2163.654754][T25003] Invalid ELF header magic: != ELF
[ 2164.607350][T25002] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2164.659616][T25002] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2164.671653][T25002] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2164.742617][T25002] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2165.165557][T25022] vivid-003: =================  START STATUS  =================
[ 2165.173297][T25022] vivid-003: Radio HW Seek Mode: Bounded
[ 2165.180416][T25022] vivid-003: Radio Programmable HW Seek: false
[ 2165.193028][T25022] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2165.199036][T25022] vivid-003: Generate RBDS Instead of RDS: false
[ 2165.206111][T25022] vivid-003: RDS Reception: true
[ 2165.211116][T25022] vivid-003: RDS Program Type: 0 inactive
[ 2165.217497][T25022] vivid-003: RDS PS Name:  inactive
[ 2165.222773][T25022] vivid-003: RDS Radio Text:  inactive
[ 2165.228799][T25022] vivid-003: RDS Traffic Announcement: false inactive
[ 2165.236694][T25022] vivid-003: RDS Traffic Program: false inactive
[ 2165.243358][T25022] vivid-003: RDS Music: false inactive
[ 2165.249405][T25022] vivid-003: ==================  END STATUS  ==================
[ 2166.018311][T25038] Invalid ELF header magic: != ELF
[ 2166.455510][T25027] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2166.462280][T25027] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2166.468468][T25027] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2166.475006][T25027] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2167.690607][T25045] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2167.697116][T25045] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2167.703269][T25045] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2167.709536][T25045] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2167.808171][T25053] vivid-003: =================  START STATUS  =================
[ 2167.836570][T25053] vivid-003: Radio HW Seek Mode: Bounded
[ 2167.843730][T25053] vivid-003: Radio Programmable HW Seek: false
[ 2167.883113][T25053] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2167.895566][T25053] vivid-003: Generate RBDS Instead of RDS: false
[ 2167.902083][T25053] vivid-003: RDS Reception: true
[ 2167.916018][T25053] vivid-003: RDS Program Type: 0 inactive
[ 2167.921889][T25053] vivid-003: RDS PS Name:  inactive
[ 2167.927507][T25053] vivid-003: RDS Radio Text:  inactive
[ 2167.933233][T25053] vivid-003: RDS Traffic Announcement: false inactive
[ 2167.948623][T25053] vivid-003: RDS Traffic Program: false inactive
[ 2167.961269][T25053] vivid-003: RDS Music: false inactive
[ 2167.991763][T25053] vivid-003: ==================  END STATUS  ==================
[ 2168.035350][T25060] vivid-003: =================  START STATUS  =================
[ 2168.043049][T25060] vivid-003: Radio HW Seek Mode: Bounded
[ 2168.057502][T25060] vivid-003: Radio Programmable HW Seek: false
[ 2168.063761][T25060] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2168.089903][T25060] vivid-003: Generate RBDS Instead of RDS: false
[ 2168.109973][T25060] vivid-003: RDS Reception: true
[ 2168.129572][T25060] vivid-003: RDS Program Type: 0 inactive
[ 2168.149836][T25060] vivid-003: RDS PS Name:  inactive
[ 2168.156498][T25052] FAULT_INJECTION: forcing a failure.
[ 2168.156498][T25052] name failslab, interval 1, probability 0, space 0, times 0
[ 2168.169347][T25052] CPU: 0 UID: 0 PID: 25052 Comm: syz.6.3064 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2168.169380][T25052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2168.169396][T25052] Call Trace:
[ 2168.169404][T25052]  <TASK>
[ 2168.169415][T25052]  dump_stack_lvl+0x16c/0x1f0
[ 2168.169457][T25052]  should_fail_ex+0x50a/0x650
[ 2168.169486][T25052]  ? fs_reclaim_acquire+0xae/0x150
[ 2168.169527][T25052]  ? refill_pi_state_cache+0x89/0x250
[ 2168.169555][T25052]  should_failslab+0xc2/0x120
[ 2168.169587][T25052]  __kmalloc_cache_noprof+0x68/0x420
[ 2168.169612][T25052]  ? lock_acquire+0x2f/0xb0
[ 2168.169639][T25052]  ? schedule+0x1fd/0x350
[ 2168.169675][T25052]  refill_pi_state_cache+0x89/0x250
[ 2168.169703][T25052]  futex_lock_pi+0x227/0x7b0
[ 2168.169730][T25052]  ? futex_unqueue+0xba/0x140
[ 2168.169754][T25052]  ? __futex_wait+0x324/0x3c0
[ 2168.169783][T25052]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2168.169819][T25052]  ? __pfx___futex_wait+0x10/0x10
[ 2168.169873][T25052]  ? futex_wait+0x121/0x380
[ 2168.169907][T25052]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2168.169940][T25052]  ? rcu_is_watching+0x12/0xc0
[ 2168.169980][T25052]  ? io_uring_setup+0x171a/0x21a0
[ 2168.170019][T25052]  do_futex+0x11b/0x350
[ 2168.170045][T25052]  ? __pfx_do_futex+0x10/0x10
[ 2168.170078][T25052]  __x64_sys_futex+0x1e1/0x4c0
[ 2168.170107][T25052]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2168.170133][T25052]  ? rcu_is_watching+0x12/0xc0
[ 2168.170177][T25052]  do_syscall_64+0xcd/0x250
[ 2168.170202][T25052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2168.170234][T25052] RIP: 0033:0x7fb0b718cde9
[ 2168.170253][T25052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2168.170277][T25052] RSP: 002b:00007fb0b7fd1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2168.170300][T25052] RAX: ffffffffffffffda RBX: 00007fb0b73a5fa0 RCX: 00007fb0b718cde9
[ 2168.170317][T25052] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2168.170331][T25052] RBP: 00007fb0b720e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2168.170346][T25052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2168.170361][T25052] R13: 0000000000000000 R14: 00007fb0b73a5fa0 R15: 00007ffcf5312a18
[ 2168.170392][T25052]  </TASK>
[ 2168.194636][T25060] vivid-003: RDS Radio Text:  inactive
[ 2168.464831][T25060] vivid-003: RDS Traffic Announcement: false inactive
[ 2168.471757][T25060] vivid-003: RDS Traffic Program: false inactive
[ 2168.478508][T25060] vivid-003: RDS Music: false inactive
[ 2168.484129][T25060] vivid-003: ==================  END STATUS  ==================
[ 2169.081214][T25080] Invalid ELF header magic: != ELF
[ 2169.135114][T18927] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2169.221693][T25078] Invalid ELF header magic: != ELF
[ 2169.774914][T18927] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2169.780988][T18927] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2169.788294][ T5147] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2170.063632][T25070] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2170.070551][T25070] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2170.085516][T25070] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2170.107063][T25070] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2170.757369][T25094] Invalid ELF header magic: != ELF
[ 2170.859027][T25096] Invalid ELF header magic: != ELF
[ 2172.032122][T25101] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2172.074166][T25101] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2172.095004][T18927] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2172.122375][T25101] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2172.154357][T25101] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2172.486309][T25117] vivid-003: =================  START STATUS  =================
[ 2172.494220][T25117] vivid-003: Radio HW Seek Mode: Bounded
[ 2172.514876][T25117] vivid-003: Radio Programmable HW Seek: false
[ 2172.524638][T25117] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2172.540539][T25117] vivid-003: Generate RBDS Instead of RDS: false
[ 2172.560833][T25117] vivid-003: RDS Reception: true
[ 2172.580040][T25117] vivid-003: RDS Program Type: 0 inactive
[ 2172.593350][T25117] vivid-003: RDS PS Name:  inactive
[ 2172.599753][T25117] vivid-003: RDS Radio Text:  inactive
[ 2172.639940][T25117] vivid-003: RDS Traffic Announcement: false inactive
[ 2172.661593][T25117] vivid-003: RDS Traffic Program: false inactive
[ 2172.677539][T25122] Invalid ELF header magic: != ELF
[ 2172.684394][T25117] vivid-003: RDS Music: false inactive
[ 2172.690696][T25117] vivid-003: ==================  END STATUS  ==================
[ 2173.422144][T25121] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2173.457968][T25121] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2173.477116][T25121] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2173.483341][T25121] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2173.568101][T25132] vivid-003: =================  START STATUS  =================
[ 2173.596890][T25132] vivid-003: Radio HW Seek Mode: Bounded
[ 2173.602616][T25132] vivid-003: Radio Programmable HW Seek: false
[ 2173.634947][T25132] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2173.640605][T25132] vivid-003: Generate RBDS Instead of RDS: false
[ 2173.684780][T25132] vivid-003: RDS Reception: true
[ 2173.741503][T25132] vivid-003: RDS Program Type: 0 inactive
[ 2173.768107][T25132] vivid-003: RDS PS Name:  inactive
[ 2173.773440][T25132] vivid-003: RDS Radio Text:  inactive
[ 2173.819421][T25132] vivid-003: RDS Traffic Announcement: false inactive
[ 2173.864953][T25132] vivid-003: RDS Traffic Program: false inactive
[ 2173.875101][T25132] vivid-003: RDS Music: false inactive
[ 2173.894765][T25132] vivid-003: ==================  END STATUS  ==================
[ 2173.935014][T25134] vivid-003: =================  START STATUS  =================
[ 2173.942729][T25134] vivid-003: Radio HW Seek Mode: Bounded
[ 2173.963801][T25134] vivid-003: Radio Programmable HW Seek: false
[ 2173.970923][T25134] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2173.980324][T25134] vivid-003: Generate RBDS Instead of RDS: false
[ 2174.004650][T25134] vivid-003: RDS Reception: true
[ 2174.018917][T25134] vivid-003: RDS Program Type: 0 inactive
[ 2174.024890][T25134] vivid-003: RDS PS Name:  inactive
[ 2174.030251][T25134] vivid-003: RDS Radio Text:  inactive
[ 2174.035919][T25134] vivid-003: RDS Traffic Announcement: false inactive
[ 2174.042822][T25134] vivid-003: RDS Traffic Program: false inactive
[ 2174.049366][T25134] vivid-003: RDS Music: false inactive
[ 2174.055059][T25134] vivid-003: ==================  END STATUS  ==================
[ 2174.750101][T25160] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input57
[ 2174.974651][T18927] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2175.545204][T18927] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2175.545222][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2175.545262][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2175.675533][T25168] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input58
[ 2175.784365][T25173] Invalid ELF header magic: != ELF
[ 2175.852270][T25178] Invalid ELF header magic: != ELF
[ 2175.910553][T25179] Invalid ELF header magic: != ELF
[ 2177.227995][T25190] vivid-003: =================  START STATUS  =================
[ 2177.258179][T25190] vivid-003: Radio HW Seek Mode: Bounded
[ 2177.281614][T25190] vivid-003: Radio Programmable HW Seek: false
[ 2177.296903][T25190] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2177.313228][T25190] vivid-003: Generate RBDS Instead of RDS: false
[ 2177.339504][T25190] vivid-003: RDS Reception: true
[ 2177.344534][T25190] vivid-003: RDS Program Type: 0 inactive
[ 2177.401600][T25190] vivid-003: RDS PS Name:  inactive
[ 2177.417447][T25190] vivid-003: RDS Radio Text:  inactive
[ 2177.430099][T25195] Invalid ELF header magic: != ELF
[ 2177.439156][T25190] vivid-003: RDS Traffic Announcement: false inactive
[ 2177.460245][T25190] vivid-003: RDS Traffic Program: false inactive
[ 2177.487939][T25190] vivid-003: RDS Music: false inactive
[ 2177.507823][T25190] vivid-003: ==================  END STATUS  ==================
[ 2177.533164][T25200] vivid-003: =================  START STATUS  =================
[ 2177.558206][T25200] vivid-003: Radio HW Seek Mode: Bounded
[ 2177.563919][T25200] vivid-003: Radio Programmable HW Seek: false
[ 2177.573492][T25200] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2177.582825][T25200] vivid-003: Generate RBDS Instead of RDS: false
[ 2177.590683][T25200] vivid-003: RDS Reception: true
[ 2177.599429][T25200] vivid-003: RDS Program Type: 0 inactive
[ 2177.613046][T25200] vivid-003: RDS PS Name:  inactive
[ 2177.623800][T25200] vivid-003: RDS Radio Text:  inactive
[ 2177.630974][T25200] vivid-003: RDS Traffic Announcement: false inactive
[ 2177.638236][T25200] vivid-003: RDS Traffic Program: false inactive
[ 2177.645077][T25200] vivid-003: RDS Music: false inactive
[ 2177.650608][T25200] vivid-003: ==================  END STATUS  ==================
[ 2178.416410][T25192] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2178.432763][T25192] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2178.440460][T25192] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2178.447442][T25192] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2179.102135][T25223] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input59
[ 2179.811911][T25212] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2179.839952][T25212] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2179.846334][T25212] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2179.852636][T25212] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2180.273650][T25238] Invalid ELF header magic: != ELF
[ 2180.475650][T25245] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input60
[ 2180.533275][T25247] Invalid ELF header magic: != ELF
[ 2181.214920][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2181.387907][T25254] Invalid ELF header magic: != ELF
[ 2181.855817][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2181.861946][ T5147] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2181.861960][T18927] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2182.140114][T25263] vivid-003: =================  START STATUS  =================
[ 2182.154696][T25263] vivid-003: Radio HW Seek Mode: Bounded
[ 2182.160412][T25263] vivid-003: Radio Programmable HW Seek: false
[ 2182.168183][T25263] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2182.173800][T25263] vivid-003: Generate RBDS Instead of RDS: false
[ 2182.184666][T25263] vivid-003: RDS Reception: true
[ 2182.189665][T25263] vivid-003: RDS Program Type: 0 inactive
[ 2182.214766][T25263] vivid-003: RDS PS Name:  inactive
[ 2182.220067][T25263] vivid-003: RDS Radio Text:  inactive
[ 2182.234730][T25263] vivid-003: RDS Traffic Announcement: false inactive
[ 2182.241599][T25263] vivid-003: RDS Traffic Program: false inactive
[ 2182.254665][T25263] vivid-003: RDS Music: false inactive
[ 2182.265152][T25263] vivid-003: ==================  END STATUS  ==================
[ 2182.844374][T25257] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2182.858147][T25257] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2182.864367][T25257] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2182.871377][T25257] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2183.234539][T25282] vivid-003: =================  START STATUS  =================
[ 2183.249839][T25282] vivid-003: Radio HW Seek Mode: Bounded
[ 2183.276543][T25282] vivid-003: Radio Programmable HW Seek: false
[ 2183.292966][T25282] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2183.313187][T25276] Invalid ELF header magic: != ELF
[ 2183.323807][T25282] vivid-003: Generate RBDS Instead of RDS: false
[ 2183.331556][T25282] vivid-003: RDS Reception: true
[ 2183.338164][T25282] vivid-003: RDS Program Type: 0 inactive
[ 2183.359773][T25282] vivid-003: RDS PS Name:  inactive
[ 2183.368323][T25282] vivid-003: RDS Radio Text:  inactive
[ 2183.383456][T25282] vivid-003: RDS Traffic Announcement: false inactive
[ 2183.454690][T25282] vivid-003: RDS Traffic Program: false inactive
[ 2183.461168][T25282] vivid-003: RDS Music: false inactive
[ 2183.504721][T25282] vivid-003: ==================  END STATUS  ==================
[ 2184.737293][T25288] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2184.746435][T25288] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2184.752661][T25288] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2184.759073][T25288] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2185.471292][T25310] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input61
[ 2186.179057][T25300] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2186.185940][T25300] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2186.192351][T25300] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2186.198672][T25300] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2186.842769][T25326] Invalid ELF header magic: != ELF
[ 2187.447965][T25320] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2187.459520][T25320] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2187.466808][T25320] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2187.472998][T25320] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2187.750925][T25336] vivid-003: =================  START STATUS  =================
[ 2187.764870][T25336] vivid-003: Radio HW Seek Mode: Bounded
[ 2187.770577][T25336] vivid-003: Radio Programmable HW Seek: false
[ 2187.794820][T25336] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2187.800444][T25336] vivid-003: Generate RBDS Instead of RDS: false
[ 2187.844617][T25336] vivid-003: RDS Reception: true
[ 2187.875523][T25336] vivid-003: RDS Program Type: 0 inactive
[ 2187.881342][T25336] vivid-003: RDS PS Name:  inactive
[ 2187.952417][T25336] vivid-003: RDS Radio Text:  inactive
[ 2187.979898][T25336] vivid-003: RDS Traffic Announcement: false inactive
[ 2188.035872][T25336] vivid-003: RDS Traffic Program: false inactive
[ 2188.072663][T25336] vivid-003: RDS Music: false inactive
[ 2188.097803][T25336] vivid-003: ==================  END STATUS  ==================
[ 2188.134007][T25338] FAULT_INJECTION: forcing a failure.
[ 2188.134007][T25338] name failslab, interval 1, probability 0, space 0, times 0
[ 2188.162811][T25338] CPU: 0 UID: 0 PID: 25338 Comm: syz.8.3116 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2188.162844][T25338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2188.162858][T25338] Call Trace:
[ 2188.162865][T25338]  <TASK>
[ 2188.162875][T25338]  dump_stack_lvl+0x16c/0x1f0
[ 2188.162915][T25338]  should_fail_ex+0x50a/0x650
[ 2188.162954][T25338]  ? fs_reclaim_acquire+0xae/0x150
[ 2188.162993][T25338]  ? refill_pi_state_cache+0x89/0x250
[ 2188.163017][T25338]  should_failslab+0xc2/0x120
[ 2188.163044][T25338]  __kmalloc_cache_noprof+0x68/0x420
[ 2188.163067][T25338]  ? lock_acquire+0x2f/0xb0
[ 2188.163092][T25338]  ? schedule+0x1fd/0x350
[ 2188.163127][T25338]  refill_pi_state_cache+0x89/0x250
[ 2188.163155][T25338]  futex_lock_pi+0x227/0x7b0
[ 2188.163182][T25338]  ? futex_unqueue+0xba/0x140
[ 2188.163204][T25338]  ? __futex_wait+0x324/0x3c0
[ 2188.163232][T25338]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2188.163260][T25338]  ? __pfx___futex_wait+0x10/0x10
[ 2188.163311][T25338]  ? futex_wait+0x121/0x380
[ 2188.163343][T25338]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2188.163375][T25338]  ? rcu_is_watching+0x12/0xc0
[ 2188.163409][T25338]  ? io_uring_setup+0x171a/0x21a0
[ 2188.163447][T25338]  do_futex+0x11b/0x350
[ 2188.163472][T25338]  ? __pfx_do_futex+0x10/0x10
[ 2188.163505][T25338]  __x64_sys_futex+0x1e1/0x4c0
[ 2188.163534][T25338]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2188.163560][T25338]  ? rcu_is_watching+0x12/0xc0
[ 2188.163603][T25338]  do_syscall_64+0xcd/0x250
[ 2188.163629][T25338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2188.163661][T25338] RIP: 0033:0x7f53bc78cde9
[ 2188.163681][T25338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2188.163703][T25338] RSP: 002b:00007f53bd63d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2188.163728][T25338] RAX: ffffffffffffffda RBX: 00007f53bc9a5fa0 RCX: 00007f53bc78cde9
[ 2188.163745][T25338] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2188.163759][T25338] RBP: 00007f53bc80e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2188.163775][T25338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2188.163789][T25338] R13: 0000000000000000 R14: 00007f53bc9a5fa0 R15: 00007ffe75fc9fd8
[ 2188.163820][T25338]  </TASK>
[ 2188.387720][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2188.589039][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2188.646340][T25352] vivid-003: =================  START STATUS  =================
[ 2188.661660][T25352] vivid-003: Radio HW Seek Mode: Bounded
[ 2188.686593][T25352] vivid-003: Radio Programmable HW Seek: false
[ 2188.694892][T25352] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2188.700510][T25352] vivid-003: Generate RBDS Instead of RDS: false
[ 2188.707209][T25352] vivid-003: RDS Reception: true
[ 2188.712214][T25352] vivid-003: RDS Program Type: 0 inactive
[ 2188.718130][T25352] vivid-003: RDS PS Name:  inactive
[ 2188.723608][T25352] vivid-003: RDS Radio Text:  inactive
[ 2188.729267][T25352] vivid-003: RDS Traffic Announcement: false inactive
[ 2188.737494][T25352] vivid-003: RDS Traffic Program: false inactive
[ 2188.743889][T25352] vivid-003: RDS Music: false inactive
[ 2188.750845][T25352] vivid-003: ==================  END STATUS  ==================
[ 2188.860184][T25356] vivid-003: =================  START STATUS  =================
[ 2188.871895][T25356] vivid-003: Radio HW Seek Mode: Bounded
[ 2188.878154][T25356] vivid-003: Radio Programmable HW Seek: false
[ 2188.914751][T25356] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2188.952368][T25356] vivid-003: Generate RBDS Instead of RDS: false
[ 2188.991261][T25356] vivid-003: RDS Reception: true
[ 2189.004697][T25356] vivid-003: RDS Program Type: 0 inactive
[ 2189.029807][T25356] vivid-003: RDS PS Name:  inactive
[ 2189.038304][T25356] vivid-003: RDS Radio Text:  inactive
[ 2189.065338][T25356] vivid-003: RDS Traffic Announcement: false inactive
[ 2189.211014][T25356] vivid-003: RDS Traffic Program: false inactive
[ 2189.294183][T25334] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2189.312824][T25356] vivid-003: RDS Music: false inactive
[ 2189.317030][T25334] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2189.330918][T25334] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2189.337491][T25334] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2189.340342][T25356] vivid-003: ==================  END STATUS  ==================
[ 2189.732640][T25376] Invalid ELF header magic: != ELF
[ 2189.894738][T25381] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input62
[ 2190.199728][T25385] Invalid ELF header magic: != ELF
[ 2190.736810][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2191.377908][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2191.383995][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2191.390489][T18927] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2191.857865][T25401] vivid-003: =================  START STATUS  =================
[ 2191.882004][T25401] vivid-003: Radio HW Seek Mode: Bounded
[ 2191.899175][T25401] vivid-003: Radio Programmable HW Seek: false
[ 2191.919390][T25401] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2191.950695][T25401] vivid-003: Generate RBDS Instead of RDS: false
[ 2191.989380][T25401] vivid-003: RDS Reception: true
[ 2192.044736][T25401] vivid-003: RDS Program Type: 0 inactive
[ 2192.050560][T25401] vivid-003: RDS PS Name:  inactive
[ 2192.095050][T25401] vivid-003: RDS Radio Text:  inactive
[ 2192.100611][T25401] vivid-003: RDS Traffic Announcement: false inactive
[ 2192.108023][T25401] vivid-003: RDS Traffic Program: false inactive
[ 2192.115255][T25401] vivid-003: RDS Music: false inactive
[ 2192.120905][T25401] vivid-003: ==================  END STATUS  ==================
[ 2192.361804][T25397] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2192.378519][T25397] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2192.395563][T25397] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2192.405477][T25397] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2192.646510][T25414] vivid-003: =================  START STATUS  =================
[ 2192.654923][T25414] vivid-003: Radio HW Seek Mode: Bounded
[ 2192.660634][T25414] vivid-003: Radio Programmable HW Seek: false
[ 2192.668448][T25414] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2192.674079][T25414] vivid-003: Generate RBDS Instead of RDS: false
[ 2192.692152][T25414] vivid-003: RDS Reception: true
[ 2192.702268][T25414] vivid-003: RDS Program Type: 0 inactive
[ 2192.742487][T25414] vivid-003: RDS PS Name:  inactive
[ 2192.783293][T25414] vivid-003: RDS Radio Text:  inactive
[ 2192.833566][T25414] vivid-003: RDS Traffic Announcement: false inactive
[ 2192.853260][T25414] vivid-003: RDS Traffic Program: false inactive
[ 2192.887208][T25414] vivid-003: RDS Music: false inactive
[ 2192.938966][T25414] vivid-003: ==================  END STATUS  ==================
[ 2192.971521][T25412] FAULT_INJECTION: forcing a failure.
[ 2192.971521][T25412] name fail_futex, interval 1, probability 0, space 0, times 0
[ 2193.005139][T25412] CPU: 1 UID: 0 PID: 25412 Comm: syz.6.3128 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2193.005177][T25412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2193.005193][T25412] Call Trace:
[ 2193.005201][T25412]  <TASK>
[ 2193.005210][T25412]  dump_stack_lvl+0x16c/0x1f0
[ 2193.005253][T25412]  should_fail_ex+0x50a/0x650
[ 2193.005287][T25412]  get_futex_key+0x1c3/0x1000
[ 2193.005329][T25412]  ? __pfx_get_futex_key+0x10/0x10
[ 2193.005372][T25412]  ? kasan_save_track+0x14/0x30
[ 2193.005399][T25412]  ? __kasan_kmalloc+0xaa/0xb0
[ 2193.005428][T25412]  futex_lock_pi+0x282/0x7b0
[ 2193.005462][T25412]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2193.005491][T25412]  ? __pfx___futex_wait+0x10/0x10
[ 2193.005544][T25412]  ? futex_wait+0x121/0x380
[ 2193.005577][T25412]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2193.005610][T25412]  ? rcu_is_watching+0x12/0xc0
[ 2193.005644][T25412]  ? io_uring_setup+0x171a/0x21a0
[ 2193.005684][T25412]  do_futex+0x11b/0x350
[ 2193.005709][T25412]  ? __pfx_do_futex+0x10/0x10
[ 2193.005742][T25412]  __x64_sys_futex+0x1e1/0x4c0
[ 2193.005772][T25412]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2193.005799][T25412]  ? rcu_is_watching+0x12/0xc0
[ 2193.005850][T25412]  do_syscall_64+0xcd/0x250
[ 2193.005877][T25412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2193.005911][T25412] RIP: 0033:0x7fb0b718cde9
[ 2193.005930][T25412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2193.005953][T25412] RSP: 002b:00007fb0b7fd1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2193.005976][T25412] RAX: ffffffffffffffda RBX: 00007fb0b73a5fa0 RCX: 00007fb0b718cde9
[ 2193.005993][T25412] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2193.006008][T25412] RBP: 00007fb0b720e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2193.006024][T25412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2193.006039][T25412] R13: 0000000000000000 R14: 00007fb0b73a5fa0 R15: 00007ffcf5312a18
[ 2193.006071][T25412]  </TASK>
[ 2193.294897][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2193.481039][T25425] vivid-003: =================  START STATUS  =================
[ 2193.499197][T25425] vivid-003: Radio HW Seek Mode: Bounded
[ 2193.509347][T25425] vivid-003: Radio Programmable HW Seek: false
[ 2193.531147][T25425] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2193.538000][T25425] vivid-003: Generate RBDS Instead of RDS: false
[ 2193.562993][T25425] vivid-003: RDS Reception: true
[ 2193.572412][T25419] FAULT_INJECTION: forcing a failure.
[ 2193.572412][T25419] name fail_futex, interval 1, probability 0, space 0, times 0
[ 2193.585608][T25419] CPU: 0 UID: 0 PID: 25419 Comm: syz.7.3130 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2193.585639][T25419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2193.585652][T25419] Call Trace:
[ 2193.585659][T25419]  <TASK>
[ 2193.585667][T25419]  dump_stack_lvl+0x16c/0x1f0
[ 2193.585708][T25419]  should_fail_ex+0x50a/0x650
[ 2193.585741][T25419]  get_futex_key+0x4a3/0x1000
[ 2193.585783][T25419]  ? __pfx_get_futex_key+0x10/0x10
[ 2193.585824][T25419]  ? kasan_save_track+0x14/0x30
[ 2193.585851][T25419]  ? __kasan_kmalloc+0xaa/0xb0
[ 2193.585879][T25419]  futex_lock_pi+0x282/0x7b0
[ 2193.585907][T25419]  ? preempt_schedule_common+0x44/0xc0
[ 2193.585943][T25419]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2193.585974][T25419]  ? try_to_wake_up+0x953/0x1490
[ 2193.586009][T25419]  ? plist_check_head+0xa3/0x150
[ 2193.586049][T25419]  ? futex_wake+0x18e/0x4e0
[ 2193.586081][T25419]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2193.586124][T25419]  do_futex+0x11b/0x350
[ 2193.586148][T25419]  ? __pfx_do_futex+0x10/0x10
[ 2193.586172][T25419]  ? __pfx_task_mm_cid_work+0x10/0x10
[ 2193.586198][T25419]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 2193.586230][T25419]  ? __pfx___might_resched+0x10/0x10
[ 2193.586258][T25419]  __x64_sys_futex+0x1e1/0x4c0
[ 2193.586285][T25419]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2193.586308][T25419]  ? rcu_is_watching+0x12/0xc0
[ 2193.586348][T25419]  do_syscall_64+0xcd/0x250
[ 2193.586372][T25419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2193.586401][T25419] RIP: 0033:0x7ff80b58cde9
[ 2193.586420][T25419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2193.586441][T25419] RSP: 002b:00007ff80c320038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2193.586463][T25419] RAX: ffffffffffffffda RBX: 00007ff80b7a5fa0 RCX: 00007ff80b58cde9
[ 2193.586478][T25419] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2193.586492][T25419] RBP: 00007ff80b60e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2193.586514][T25419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2193.586526][T25419] R13: 0000000000000000 R14: 00007ff80b7a5fa0 R15: 00007ffee43d60d8
[ 2193.586556][T25419]  </TASK>
[ 2193.616797][T25425] vivid-003: RDS Program Type: 
[ 2193.618785][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2193.621636][T25425] 0 inactive
[ 2193.988352][T25425] vivid-003: RDS PS Name:  inactive
[ 2194.021709][T25436] Invalid ELF header magic: != ELF
[ 2194.045173][T25425] vivid-003: RDS Radio Text:  inactive
[ 2194.076384][T25425] vivid-003: RDS Traffic Announcement: false inactive
[ 2194.097331][T25425] vivid-003: RDS Traffic Program: false inactive
[ 2194.143073][T25425] vivid-003: RDS Music: false inactive
[ 2194.160184][T25425] vivid-003: ==================  END STATUS  ==================
[ 2194.200445][T25432] vivid-003: =================  START STATUS  =================
[ 2194.224689][T25432] vivid-003: Radio HW Seek Mode: Bounded
[ 2194.230614][T25432] vivid-003: Radio Programmable HW Seek: false
[ 2194.244886][T25432] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2194.263888][T25432] vivid-003: Generate RBDS Instead of RDS: false
[ 2194.303896][T25432] vivid-003: RDS Reception: true
[ 2194.309149][T25432] vivid-003: RDS Program Type: 0 inactive
[ 2194.342698][T25432] vivid-003: RDS PS Name:  inactive
[ 2194.363549][T25432] vivid-003: RDS Radio Text:  inactive
[ 2194.418821][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2194.425174][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2194.426917][T25432] vivid-003: RDS Traffic Announcement: false inactive
[ 2194.431325][T18927] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2194.444864][T25432] vivid-003: RDS Traffic Program: false inactive
[ 2194.529183][T25432] vivid-003: RDS Music: false inactive
[ 2194.535104][T25432] vivid-003: ==================  END STATUS  ==================
[ 2196.032754][T25458] Invalid ELF header magic: != ELF
[ 2196.115167][T25460] Invalid ELF header magic: != ELF
[ 2196.405020][T25467] Invalid ELF header magic: != ELF
[ 2196.871482][T25463] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2196.880784][T25463] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2196.897697][T25463] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2196.905066][T25463] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2197.609014][T25477] FAULT_INJECTION: forcing a failure.
[ 2197.609014][T25477] name failslab, interval 1, probability 0, space 0, times 0
[ 2197.629296][T25477] CPU: 0 UID: 0 PID: 25477 Comm: syz.7.3140 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2197.629331][T25477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2197.629345][T25477] Call Trace:
[ 2197.629354][T25477]  <TASK>
[ 2197.629363][T25477]  dump_stack_lvl+0x16c/0x1f0
[ 2197.629403][T25477]  should_fail_ex+0x50a/0x650
[ 2197.629442][T25477]  ? fs_reclaim_acquire+0xae/0x150
[ 2197.629479][T25477]  ? refill_pi_state_cache+0x89/0x250
[ 2197.629502][T25477]  should_failslab+0xc2/0x120
[ 2197.629530][T25477]  __kmalloc_cache_noprof+0x68/0x420
[ 2197.629552][T25477]  ? lock_acquire+0x2f/0xb0
[ 2197.629574][T25477]  ? schedule+0x1fd/0x350
[ 2197.629605][T25477]  refill_pi_state_cache+0x89/0x250
[ 2197.629629][T25477]  futex_lock_pi+0x227/0x7b0
[ 2197.629651][T25477]  ? futex_unqueue+0xba/0x140
[ 2197.629672][T25477]  ? __futex_wait+0x324/0x3c0
[ 2197.629696][T25477]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2197.629720][T25477]  ? __pfx___futex_wait+0x10/0x10
[ 2197.629763][T25477]  ? futex_wait+0x121/0x380
[ 2197.629790][T25477]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2197.629818][T25477]  ? rcu_is_watching+0x12/0xc0
[ 2197.629847][T25477]  ? io_uring_setup+0x171a/0x21a0
[ 2197.629881][T25477]  do_futex+0x11b/0x350
[ 2197.629904][T25477]  ? __pfx_do_futex+0x10/0x10
[ 2197.629933][T25477]  __x64_sys_futex+0x1e1/0x4c0
[ 2197.629957][T25477]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2197.629980][T25477]  ? rcu_is_watching+0x12/0xc0
[ 2197.630017][T25477]  do_syscall_64+0xcd/0x250
[ 2197.630040][T25477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2197.630070][T25477] RIP: 0033:0x7ff80b58cde9
[ 2197.630090][T25477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2197.630115][T25477] RSP: 002b:00007ff80c320038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2197.630137][T25477] RAX: ffffffffffffffda RBX: 00007ff80b7a5fa0 RCX: 00007ff80b58cde9
[ 2197.630153][T25477] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2197.630168][T25477] RBP: 00007ff80b60e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2197.630181][T25477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2197.630194][T25477] R13: 0000000000000000 R14: 00007ff80b7a5fa0 R15: 00007ffee43d60d8
[ 2197.630223][T25477]  </TASK>
[ 2197.858492][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2198.331918][T25487] Invalid ELF header magic: != ELF
[ 2198.551779][T25480] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2198.558753][T25480] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2198.567555][T25480] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2198.585623][T25480] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2199.125000][T25503] Invalid ELF header magic: != ELF
[ 2199.940417][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2199.983888][T25510] FAULT_INJECTION: forcing a failure.
[ 2199.983888][T25510] name failslab, interval 1, probability 0, space 0, times 0
[ 2200.033243][T25510] CPU: 1 UID: 0 PID: 25510 Comm: syz.7.3148 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2200.033282][T25510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2200.033298][T25510] Call Trace:
[ 2200.033305][T25510]  <TASK>
[ 2200.033316][T25510]  dump_stack_lvl+0x16c/0x1f0
[ 2200.033358][T25510]  should_fail_ex+0x50a/0x650
[ 2200.033389][T25510]  ? fs_reclaim_acquire+0xae/0x150
[ 2200.033429][T25510]  ? refill_pi_state_cache+0x89/0x250
[ 2200.033457][T25510]  should_failslab+0xc2/0x120
[ 2200.033488][T25510]  __kmalloc_cache_noprof+0x68/0x420
[ 2200.033514][T25510]  ? lock_acquire+0x2f/0xb0
[ 2200.033541][T25510]  ? schedule+0x1fd/0x350
[ 2200.033576][T25510]  refill_pi_state_cache+0x89/0x250
[ 2200.033605][T25510]  futex_lock_pi+0x227/0x7b0
[ 2200.033632][T25510]  ? futex_unqueue+0xba/0x140
[ 2200.033656][T25510]  ? __futex_wait+0x324/0x3c0
[ 2200.033684][T25510]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2200.033711][T25510]  ? __pfx___futex_wait+0x10/0x10
[ 2200.033763][T25510]  ? futex_wait+0x121/0x380
[ 2200.033795][T25510]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2200.033828][T25510]  ? rcu_is_watching+0x12/0xc0
[ 2200.033873][T25510]  ? io_uring_setup+0x171a/0x21a0
[ 2200.033915][T25510]  do_futex+0x11b/0x350
[ 2200.033941][T25510]  ? __pfx_do_futex+0x10/0x10
[ 2200.033974][T25510]  __x64_sys_futex+0x1e1/0x4c0
[ 2200.034003][T25510]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2200.034028][T25510]  ? rcu_is_watching+0x12/0xc0
[ 2200.034071][T25510]  do_syscall_64+0xcd/0x250
[ 2200.034096][T25510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2200.034128][T25510] RIP: 0033:0x7ff80b58cde9
[ 2200.034147][T25510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2200.034170][T25510] RSP: 002b:00007ff80c320038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2200.034193][T25510] RAX: ffffffffffffffda RBX: 00007ff80b7a5fa0 RCX: 00007ff80b58cde9
[ 2200.034209][T25510] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2200.034223][T25510] RBP: 00007ff80b60e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2200.034239][T25510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2200.034254][T25510] R13: 0000000000000000 R14: 00007ff80b7a5fa0 R15: 00007ffee43d60d8
[ 2200.034285][T25510]  </TASK>
[ 2200.490169][T25515] vivid-003: =================  START STATUS  =================
[ 2200.548951][T25515] vivid-003: Radio HW Seek Mode: Bounded
[ 2200.567617][T25515] vivid-003: Radio Programmable HW Seek: false
[ 2200.574879][T25515] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2200.580507][T25515] vivid-003: Generate RBDS Instead of RDS: false
[ 2200.587252][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2200.593317][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2200.594892][T25515] vivid-003: RDS Reception: true
[ 2200.612473][T25515] vivid-003: RDS Program Type: 0 inactive
[ 2200.654737][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2200.686396][T25515] vivid-003: RDS PS Name:  inactive
[ 2200.691706][T25515] vivid-003: RDS Radio Text:  inactive
[ 2200.697363][T25515] vivid-003: RDS Traffic Announcement: false inactive
[ 2200.704201][T25515] vivid-003: RDS Traffic Program: false inactive
[ 2200.711293][T25515] vivid-003: RDS Music: false inactive
[ 2200.716900][T25515] vivid-003: ==================  END STATUS  ==================
[ 2201.852752][T25531] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input63
[ 2201.900969][T25525] Invalid ELF header magic: != ELF
[ 2202.116673][T25532] Invalid ELF header magic: != ELF
[ 2202.455874][T25540] vivid-003: =================  START STATUS  =================
[ 2202.476435][T25540] vivid-003: Radio HW Seek Mode: Bounded
[ 2202.482189][T25540] vivid-003: Radio Programmable HW Seek: false
[ 2202.519193][T25540] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2202.534697][T25540] vivid-003: Generate RBDS Instead of RDS: false
[ 2202.548254][T25540] vivid-003: RDS Reception: true
[ 2202.563806][T25540] vivid-003: RDS Program Type: 0 inactive
[ 2202.602318][T25540] vivid-003: RDS PS Name:  inactive
[ 2202.693548][T25540] vivid-003: RDS Radio Text:  inactive
[ 2202.725102][T25538] FAULT_INJECTION: forcing a failure.
[ 2202.725102][T25538] name failslab, interval 1, probability 0, space 0, times 0
[ 2202.754661][T25538] CPU: 1 UID: 0 PID: 25538 Comm: syz.9.3153 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2202.754699][T25538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2202.754714][T25538] Call Trace:
[ 2202.754721][T25538]  <TASK>
[ 2202.754731][T25538]  dump_stack_lvl+0x16c/0x1f0
[ 2202.754775][T25538]  should_fail_ex+0x50a/0x650
[ 2202.754804][T25538]  ? fs_reclaim_acquire+0xae/0x150
[ 2202.754847][T25538]  ? refill_pi_state_cache+0x89/0x250
[ 2202.754874][T25538]  should_failslab+0xc2/0x120
[ 2202.754903][T25538]  __kmalloc_cache_noprof+0x68/0x420
[ 2202.754928][T25538]  ? lock_acquire+0x2f/0xb0
[ 2202.754956][T25538]  ? schedule+0x1fd/0x350
[ 2202.754992][T25538]  refill_pi_state_cache+0x89/0x250
[ 2202.755020][T25538]  futex_lock_pi+0x227/0x7b0
[ 2202.755048][T25538]  ? futex_unqueue+0xba/0x140
[ 2202.755073][T25538]  ? __futex_wait+0x324/0x3c0
[ 2202.755101][T25538]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2202.755130][T25538]  ? __pfx___futex_wait+0x10/0x10
[ 2202.755183][T25538]  ? futex_wait+0x121/0x380
[ 2202.755211][T25538]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2202.755245][T25538]  ? rcu_is_watching+0x12/0xc0
[ 2202.755276][T25538]  ? io_uring_setup+0x171a/0x21a0
[ 2202.755312][T25538]  do_futex+0x11b/0x350
[ 2202.755333][T25538]  ? __pfx_do_futex+0x10/0x10
[ 2202.755359][T25538]  __x64_sys_futex+0x1e1/0x4c0
[ 2202.755383][T25538]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2202.755404][T25538]  ? rcu_is_watching+0x12/0xc0
[ 2202.755439][T25538]  do_syscall_64+0xcd/0x250
[ 2202.755460][T25538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2202.755487][T25538] RIP: 0033:0x7fc66838cde9
[ 2202.755504][T25538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2202.755523][T25538] RSP: 002b:00007fc6691c4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2202.755542][T25538] RAX: ffffffffffffffda RBX: 00007fc6685a5fa0 RCX: 00007fc66838cde9
[ 2202.755556][T25538] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2202.755568][T25538] RBP: 00007fc66840e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2202.755582][T25538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2202.755594][T25538] R13: 0000000000000000 R14: 00007fc6685a5fa0 R15: 00007fff94a47118
[ 2202.755620][T25538]  </TASK>
[ 2202.755755][T25540] vivid-003: RDS Traffic Announcement: false inactive
[ 2203.079855][T25540] vivid-003: RDS Traffic Program: false inactive
[ 2203.114715][T25540] vivid-003: RDS Music: false inactive
[ 2203.185511][T25540] vivid-003: ==================  END STATUS  ==================
[ 2203.472927][T25551] vivid-003: =================  START STATUS  =================
[ 2203.493035][T25551] vivid-003: Radio HW Seek Mode: Bounded
[ 2203.515179][T25551] vivid-003: Radio Programmable HW Seek: false
[ 2203.521441][T25551] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2203.534105][T25551] vivid-003: Generate RBDS Instead of RDS: false
[ 2203.564712][T25551] vivid-003: RDS Reception: true
[ 2203.595979][T25551] vivid-003: RDS Program Type: 0 inactive
[ 2203.657261][T25551] vivid-003: RDS PS Name:  inactive
[ 2203.703907][T25551] vivid-003: RDS Radio Text:  inactive
[ 2203.743461][T25551] vivid-003: RDS Traffic Announcement: false inactive
[ 2203.756265][T25551] vivid-003: RDS Traffic Program: false inactive
[ 2203.763142][T25551] vivid-003: RDS Music: false inactive
[ 2203.769178][T25551] vivid-003: ==================  END STATUS  ==================
[ 2203.851149][T25558] Invalid ELF header magic: != ELF
[ 2204.321899][T25562] FAULT_INJECTION: forcing a failure.
[ 2204.321899][T25562] name fail_futex, interval 1, probability 0, space 0, times 0
[ 2204.335357][T25562] CPU: 0 UID: 0 PID: 25562 Comm: syz.6.3157 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2204.335390][T25562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2204.335406][T25562] Call Trace:
[ 2204.335414][T25562]  <TASK>
[ 2204.335424][T25562]  dump_stack_lvl+0x16c/0x1f0
[ 2204.335467][T25562]  should_fail_ex+0x50a/0x650
[ 2204.335497][T25562]  ? futex_top_waiter+0x1c7/0x260
[ 2204.335526][T25562]  should_fail_futex+0x4c/0x60
[ 2204.335726][T25562]  futex_lock_pi_atomic+0x558/0xdb0
[ 2204.335775][T25562]  futex_lock_pi+0x2f6/0x7b0
[ 2204.335814][T25562]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2204.335848][T25562]  ? __pfx___futex_wait+0x10/0x10
[ 2204.335908][T25562]  ? futex_wait+0x121/0x380
[ 2204.335942][T25562]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2204.335976][T25562]  ? rcu_is_watching+0x12/0xc0
[ 2204.336010][T25562]  ? io_uring_setup+0x171a/0x21a0
[ 2204.336050][T25562]  do_futex+0x11b/0x350
[ 2204.336077][T25562]  ? __pfx_do_futex+0x10/0x10
[ 2204.336111][T25562]  __x64_sys_futex+0x1e1/0x4c0
[ 2204.336145][T25562]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2204.336175][T25562]  ? rcu_is_watching+0x12/0xc0
[ 2204.336222][T25562]  do_syscall_64+0xcd/0x250
[ 2204.336250][T25562]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2204.336287][T25562] RIP: 0033:0x7fb0b718cde9
[ 2204.336311][T25562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2204.336335][T25562] RSP: 002b:00007fb0b7fd1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2204.336360][T25562] RAX: ffffffffffffffda RBX: 00007fb0b73a5fa0 RCX: 00007fb0b718cde9
[ 2204.336376][T25562] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2204.336391][T25562] RBP: 00007fb0b720e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2204.336406][T25562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2204.336419][T25562] R13: 0000000000000000 R14: 00007fb0b73a5fa0 R15: 00007ffcf5312a18
[ 2204.336443][T25562]  </TASK>
[ 2204.898440][T25575] vivid-003: =================  START STATUS  =================
[ 2204.917614][T25575] vivid-003: Radio HW Seek Mode: Bounded
[ 2204.940726][T25575] vivid-003: Radio Programmable HW Seek: false
[ 2204.960423][T25575] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2204.994936][T25575] vivid-003: Generate RBDS Instead of RDS: false
[ 2205.045198][T25575] vivid-003: RDS Reception: true
[ 2205.050372][T25575] vivid-003: RDS Program Type: 0 inactive
[ 2205.056759][T25575] vivid-003: RDS PS Name:  inactive
[ 2205.062286][T25575] vivid-003: RDS Radio Text:  inactive
[ 2205.067989][T25575] vivid-003: RDS Traffic Announcement: false inactive
[ 2205.075220][T25575] vivid-003: RDS Traffic Program: false inactive
[ 2205.081682][T25575] vivid-003: RDS Music: false inactive
[ 2205.087467][T25575] vivid-003: ==================  END STATUS  ==================
[ 2205.643710][T25582] vivid-003: =================  START STATUS  =================
[ 2205.677270][T25582] vivid-003: Radio HW Seek Mode: Bounded
[ 2205.687907][T25582] vivid-003: Radio Programmable HW Seek: false
[ 2205.694189][T25582] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2205.753716][T25582] vivid-003: Generate RBDS Instead of RDS: false
[ 2205.798453][T25582] vivid-003: RDS Reception: true
[ 2205.831012][T25582] vivid-003: RDS Program Type: 0 inactive
[ 2205.837107][T25582] vivid-003: RDS PS Name:  inactive
[ 2205.861652][T25582] vivid-003: RDS Radio Text:  inactive
[ 2205.870423][T25582] vivid-003: RDS Traffic Announcement: false inactive
[ 2205.894803][T25582] vivid-003: RDS Traffic Program: false inactive
[ 2205.928999][T25582] vivid-003: RDS Music: false inactive
[ 2205.937326][T25582] vivid-003: ==================  END STATUS  ==================
[ 2205.983359][T25584] vivid-003: =================  START STATUS  =================
[ 2206.024179][T25584] vivid-003: Radio HW Seek Mode: Bounded
[ 2206.068064][T25584] vivid-003: Radio Programmable HW Seek: false
[ 2206.114976][T25584] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2206.148869][T25584] vivid-003: Generate RBDS Instead of RDS: false
[ 2206.212247][T25584] vivid-003: RDS Reception: true
[ 2206.224496][T25584] vivid-003: RDS Program Type: 0 inactive
[ 2206.230549][T25584] vivid-003: RDS PS Name:  inactive
[ 2206.235934][T25584] vivid-003: RDS Radio Text:  inactive
[ 2206.242626][T25584] vivid-003: RDS Traffic Announcement: false inactive
[ 2206.249543][T25584] vivid-003: RDS Traffic Program: false inactive
[ 2206.256179][T25584] vivid-003: RDS Music: false inactive
[ 2206.261715][T25584] vivid-003: ==================  END STATUS  ==================
[ 2206.299052][T25589] vivid-003: =================  START STATUS  =================
[ 2206.348894][T25589] vivid-003: Radio HW Seek Mode: Bounded
[ 2206.376096][T25589] vivid-003: Radio Programmable HW Seek: false
[ 2206.397509][T25589] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2206.411352][T25589] vivid-003: Generate RBDS Instead of RDS: false
[ 2206.420967][T25589] vivid-003: RDS Reception: true
[ 2206.445447][T25589] vivid-003: RDS Program Type: 0 inactive
[ 2206.475387][T25589] vivid-003: RDS PS Name:  inactive
[ 2206.480804][T25589] vivid-003: RDS Radio Text:  inactive
[ 2206.486667][T25589] vivid-003: RDS Traffic Announcement: false inactive
[ 2206.493646][T25589] vivid-003: RDS Traffic Program: false inactive
[ 2206.500464][T25589] vivid-003: RDS Music: false inactive
[ 2206.506274][T25589] vivid-003: ==================  END STATUS  ==================
[ 2206.545368][T25580] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2206.560478][T25580] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2206.570893][T25580] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2206.579965][T25580] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2206.720898][T25608] vivid-003: =================  START STATUS  =================
[ 2206.739916][T25608] vivid-003: Radio HW Seek Mode: Bounded
[ 2206.746221][T25608] vivid-003: Radio Programmable HW Seek: false
[ 2206.753930][T25608] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2206.771961][T25608] vivid-003: Generate RBDS Instead of RDS: false
[ 2206.781105][T25608] vivid-003: RDS Reception: true
[ 2206.788692][T25608] vivid-003: RDS Program Type: 0 inactive
[ 2206.827916][T25608] vivid-003: RDS PS Name:  inactive
[ 2206.833220][T25608] vivid-003: RDS Radio Text:  inactive
[ 2206.851898][T25608] vivid-003: RDS Traffic Announcement: false inactive
[ 2206.868867][T25608] vivid-003: RDS Traffic Program: false inactive
[ 2206.884500][T25608] vivid-003: RDS Music: false inactive
[ 2206.900050][T25608] vivid-003: ==================  END STATUS  ==================
[ 2207.195420][T25613] Invalid ELF header magic: != ELF
[ 2207.520943][T25618] Invalid ELF header magic: != ELF
[ 2207.761646][T25625] vivid-003: =================  START STATUS  =================
[ 2207.783334][T25625] vivid-003: Radio HW Seek Mode: Bounded
[ 2207.819730][T25625] vivid-003: Radio Programmable HW Seek: false
[ 2207.829917][T25625] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2207.852215][T25625] vivid-003: Generate RBDS Instead of RDS: false
[ 2207.926638][T25625] vivid-003: RDS Reception: true
[ 2207.931677][T25625] vivid-003: RDS Program Type: 0 inactive
[ 2207.958365][T25625] vivid-003: RDS PS Name:  inactive
[ 2207.963685][T25625] vivid-003: RDS Radio Text:  inactive
[ 2207.979820][T25625] vivid-003: RDS Traffic Announcement: false inactive
[ 2208.014992][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2208.040426][T25625] vivid-003: RDS Traffic Program: false inactive
[ 2208.093301][T25625] vivid-003: RDS Music: false inactive
[ 2208.118921][T25625] vivid-003: ==================  END STATUS  ==================
[ 2208.574734][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2208.580902][T17709] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2208.657174][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2208.914792][T25623] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2208.921706][T25623] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2208.931708][T25623] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2208.951255][T25623] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2209.337752][T25642] vivid-003: =================  START STATUS  =================
[ 2209.373331][T25642] vivid-003: Radio HW Seek Mode: Bounded
[ 2209.383283][T25642] vivid-003: Radio Programmable HW Seek: false
[ 2209.425359][T25642] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2209.442352][T25642] vivid-003: Generate RBDS Instead of RDS: false
[ 2209.481369][T25642] vivid-003: RDS Reception: true
[ 2209.497215][T25642] vivid-003: RDS Program Type: 0 inactive
[ 2209.503032][T25642] vivid-003: RDS PS Name:  inactive
[ 2209.512813][T25642] vivid-003: RDS Radio Text:  inactive
[ 2209.527522][T25642] vivid-003: RDS Traffic Announcement: false inactive
[ 2209.542150][T25642] vivid-003: RDS Traffic Program: false inactive
[ 2209.554610][T25642] vivid-003: RDS Music: false inactive
[ 2209.597432][T25639] FAULT_INJECTION: forcing a failure.
[ 2209.597432][T25639] name failslab, interval 1, probability 0, space 0, times 0
[ 2209.648457][T25642] vivid-003: ==================  END STATUS  ==================
[ 2209.665315][T25639] CPU: 1 UID: 0 PID: 25639 Comm: syz.6.3170 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2209.665348][T25639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2209.665363][T25639] Call Trace:
[ 2209.665371][T25639]  <TASK>
[ 2209.665381][T25639]  dump_stack_lvl+0x16c/0x1f0
[ 2209.665426][T25639]  should_fail_ex+0x50a/0x650
[ 2209.665456][T25639]  ? fs_reclaim_acquire+0xae/0x150
[ 2209.665497][T25639]  ? refill_pi_state_cache+0x89/0x250
[ 2209.665525][T25639]  should_failslab+0xc2/0x120
[ 2209.665557][T25639]  __kmalloc_cache_noprof+0x68/0x420
[ 2209.665583][T25639]  ? lock_acquire+0x2f/0xb0
[ 2209.665609][T25639]  ? schedule+0x1fd/0x350
[ 2209.665645][T25639]  refill_pi_state_cache+0x89/0x250
[ 2209.665673][T25639]  futex_lock_pi+0x227/0x7b0
[ 2209.665701][T25639]  ? futex_unqueue+0xba/0x140
[ 2209.665725][T25639]  ? __futex_wait+0x324/0x3c0
[ 2209.665753][T25639]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2209.665781][T25639]  ? __pfx___futex_wait+0x10/0x10
[ 2209.665811][T25639]  ? try_to_wake_up+0x158/0x1490
[ 2209.665861][T25639]  ? futex_wait+0x121/0x380
[ 2209.665893][T25639]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2209.665926][T25639]  ? rcu_is_watching+0x12/0xc0
[ 2209.665961][T25639]  ? io_uring_setup+0x171a/0x21a0
[ 2209.666011][T25639]  do_futex+0x11b/0x350
[ 2209.666038][T25639]  ? __pfx_do_futex+0x10/0x10
[ 2209.666071][T25639]  __x64_sys_futex+0x1e1/0x4c0
[ 2209.666101][T25639]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2209.666127][T25639]  ? rcu_is_watching+0x12/0xc0
[ 2209.666170][T25639]  do_syscall_64+0xcd/0x250
[ 2209.666196][T25639]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2209.666230][T25639] RIP: 0033:0x7fb0b718cde9
[ 2209.666248][T25639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2209.666272][T25639] RSP: 002b:00007fb0b7fd1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2209.666294][T25639] RAX: ffffffffffffffda RBX: 00007fb0b73a5fa0 RCX: 00007fb0b718cde9
[ 2209.666310][T25639] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2209.666325][T25639] RBP: 00007fb0b720e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2209.666341][T25639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2209.666356][T25639] R13: 0000000000000000 R14: 00007fb0b73a5fa0 R15: 00007ffcf5312a18
[ 2209.666388][T25639]  </TASK>
[ 2209.902575][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2210.164470][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2210.462500][T25655] vivid-003: =================  START STATUS  =================
[ 2210.521379][T25655] vivid-003: Radio HW Seek Mode: Bounded
[ 2210.555605][T25655] vivid-003: Radio Programmable HW Seek: false
[ 2210.564871][T25655] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2210.593291][T25655] vivid-003: Generate RBDS Instead of RDS: false
[ 2210.612652][T25655] vivid-003: RDS Reception: true
[ 2210.622779][T25655] vivid-003: RDS Program Type: 0 inactive
[ 2210.722699][T25655] vivid-003: RDS PS Name:  inactive
[ 2210.766468][T25655] vivid-003: RDS Radio Text:  inactive
[ 2210.772018][T25655] vivid-003: RDS Traffic Announcement: false inactive
[ 2210.896425][T25655] vivid-003: RDS Traffic Program: false inactive
[ 2210.930898][T25655] vivid-003: RDS Music: false inactive
[ 2210.962644][T25655] vivid-003: ==================  END STATUS  ==================
[ 2210.974812][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2210.980953][T17709] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2210.987019][T18927] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2211.640500][T25656] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2211.654040][T25656] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2211.665529][T25656] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2211.700139][T25656] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2211.889013][T25675] vivid-003: =================  START STATUS  =================
[ 2211.898709][T25675] vivid-003: Radio HW Seek Mode: Bounded
[ 2211.904412][T25675] vivid-003: Radio Programmable HW Seek: false
[ 2211.910822][T25675] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2211.916667][T25675] vivid-003: Generate RBDS Instead of RDS: false
[ 2211.923160][T25675] vivid-003: RDS Reception: true
[ 2211.933288][T25675] vivid-003: RDS Program Type: 0 inactive
[ 2211.945184][T25675] vivid-003: RDS PS Name:  inactive
[ 2211.969331][T25675] vivid-003: RDS Radio Text:  inactive
[ 2212.044725][T25675] vivid-003: RDS Traffic Announcement: false inactive
[ 2212.080319][T25675] vivid-003: RDS Traffic Program: false inactive
[ 2212.114214][T25675] vivid-003: RDS Music: false inactive
[ 2212.158455][T25675] vivid-003: ==================  END STATUS  ==================
[ 2212.656956][T25691] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input64
[ 2213.342306][T25683] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2213.368524][T25683] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2213.390119][T25683] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2213.397101][T25683] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2213.876879][T25700] FAULT_INJECTION: forcing a failure.
[ 2213.876879][T25700] name failslab, interval 1, probability 0, space 0, times 0
[ 2213.904833][T25700] CPU: 0 UID: 0 PID: 25700 Comm: syz.9.3178 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2213.904870][T25700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2213.904886][T25700] Call Trace:
[ 2213.904894][T25700]  <TASK>
[ 2213.904905][T25700]  dump_stack_lvl+0x16c/0x1f0
[ 2213.904948][T25700]  should_fail_ex+0x50a/0x650
[ 2213.904978][T25700]  ? fs_reclaim_acquire+0xae/0x150
[ 2213.905018][T25700]  ? refill_pi_state_cache+0x89/0x250
[ 2213.905047][T25700]  should_failslab+0xc2/0x120
[ 2213.905077][T25700]  __kmalloc_cache_noprof+0x68/0x420
[ 2213.905103][T25700]  ? lock_acquire+0x2f/0xb0
[ 2213.905130][T25700]  ? schedule+0x1fd/0x350
[ 2213.905168][T25700]  refill_pi_state_cache+0x89/0x250
[ 2213.905197][T25700]  futex_lock_pi+0x227/0x7b0
[ 2213.905225][T25700]  ? futex_unqueue+0xba/0x140
[ 2213.905250][T25700]  ? __futex_wait+0x324/0x3c0
[ 2213.905278][T25700]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2213.905307][T25700]  ? __pfx___futex_wait+0x10/0x10
[ 2213.905337][T25700]  ? try_to_wake_up+0x953/0x1490
[ 2213.905387][T25700]  ? futex_wait+0x121/0x380
[ 2213.905421][T25700]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2213.905454][T25700]  ? rcu_is_watching+0x12/0xc0
[ 2213.905489][T25700]  ? io_uring_setup+0x171a/0x21a0
[ 2213.905528][T25700]  do_futex+0x11b/0x350
[ 2213.905553][T25700]  ? __pfx_do_futex+0x10/0x10
[ 2213.905598][T25700]  __x64_sys_futex+0x1e1/0x4c0
[ 2213.905629][T25700]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2213.905657][T25700]  ? rcu_is_watching+0x12/0xc0
[ 2213.905703][T25700]  do_syscall_64+0xcd/0x250
[ 2213.905730][T25700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2213.905763][T25700] RIP: 0033:0x7fc66838cde9
[ 2213.905783][T25700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2213.905807][T25700] RSP: 002b:00007fc6691c4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2213.905829][T25700] RAX: ffffffffffffffda RBX: 00007fc6685a5fa0 RCX: 00007fc66838cde9
[ 2213.905846][T25700] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2213.905860][T25700] RBP: 00007fc66840e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2213.905875][T25700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2213.905890][T25700] R13: 0000000000000000 R14: 00007fc6685a5fa0 R15: 00007fff94a47118
[ 2213.905921][T25700]  </TASK>
[ 2214.202205][T25707] Invalid ELF header magic: != ELF
[ 2214.694502][T25713] Invalid ELF header magic: != ELF
[ 2215.374800][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2215.454823][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2215.461926][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2215.490098][T25715] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2215.529913][T25715] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2215.574849][T25715] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2215.580996][T25715] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2215.929595][T25729] vivid-003: =================  START STATUS  =================
[ 2215.953090][T25729] vivid-003: Radio HW Seek Mode: Bounded
[ 2215.974788][T25729] vivid-003: Radio Programmable HW Seek: false
[ 2216.000698][T25729] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2216.022955][T25729] vivid-003: Generate RBDS Instead of RDS: false
[ 2216.039825][T25729] vivid-003: RDS Reception: true
[ 2216.077786][T25729] vivid-003: RDS Program Type: 0 inactive
[ 2216.115923][T25729] vivid-003: RDS PS Name:  inactive
[ 2216.121228][T25729] vivid-003: RDS Radio Text:  inactive
[ 2216.136571][T25729] vivid-003: RDS Traffic Announcement: false inactive
[ 2216.143471][T25729] vivid-003: RDS Traffic Program: false inactive
[ 2216.154272][T25729] vivid-003: RDS Music: false inactive
[ 2216.161547][T25729] vivid-003: ==================  END STATUS  ==================
[ 2216.214626][T25733] vivid-003: =================  START STATUS  =================
[ 2216.254897][T25733] vivid-003: Radio HW Seek Mode: Bounded
[ 2216.260685][T25733] vivid-003: Radio Programmable HW Seek: false
[ 2216.289664][T25733] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2216.300078][T25733] vivid-003: Generate RBDS Instead of RDS: false
[ 2216.307719][T25733] vivid-003: RDS Reception: true
[ 2216.313505][T25733] vivid-003: RDS Program Type: 0 inactive
[ 2216.319445][T25733] vivid-003: RDS PS Name:  inactive
[ 2216.324905][T25733] vivid-003: RDS Radio Text:  inactive
[ 2216.330429][T25733] vivid-003: RDS Traffic Announcement: false inactive
[ 2216.337667][T25733] vivid-003: RDS Traffic Program: false inactive
[ 2216.346629][T25733] vivid-003: RDS Music: false inactive
[ 2216.381180][T25733] vivid-003: ==================  END STATUS  ==================
[ 2216.389294][T25737] vivid-003: =================  START STATUS  =================
[ 2216.397189][T25737] vivid-003: Radio HW Seek Mode: Bounded
[ 2216.404033][T25737] vivid-003: Radio Programmable HW Seek: false
[ 2216.413919][T25737] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2216.428633][T25737] vivid-003: Generate RBDS Instead of RDS: false
[ 2216.438616][T25737] vivid-003: RDS Reception: true
[ 2216.443712][T25737] vivid-003: RDS Program Type: 0 inactive
[ 2216.449790][T25737] vivid-003: RDS PS Name:  inactive
[ 2216.519239][T25737] vivid-003: RDS Radio Text:  inactive
[ 2216.525479][T25737] vivid-003: RDS Traffic Announcement: false inactive
[ 2216.532359][T25737] vivid-003: RDS Traffic Program: false inactive
[ 2216.544057][T25737] vivid-003: RDS Music: false inactive
[ 2216.550180][T25737] vivid-003: ==================  END STATUS  ==================
[ 2216.735177][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2217.255508][T25745] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2217.335607][T25745] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2217.441703][T25745] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2217.588741][T25745] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2217.796383][T25758] Invalid ELF header magic: != ELF
[ 2218.515512][T25771] vivid-003: =================  START STATUS  =================
[ 2218.537639][T25771] vivid-003: Radio HW Seek Mode: Bounded
[ 2218.543390][T25771] vivid-003: Radio Programmable HW Seek: false
[ 2218.584653][T25771] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2218.612642][T25771] vivid-003: Generate RBDS Instead of RDS: false
[ 2218.625383][T25771] vivid-003: RDS Reception: true
[ 2218.640255][T25771] vivid-003: RDS Program Type: 0 inactive
[ 2218.669315][T25771] vivid-003: RDS PS Name:  inactive
[ 2218.703670][T25771] vivid-003: RDS Radio Text:  inactive
[ 2218.728112][T25771] vivid-003: RDS Traffic Announcement: false inactive
[ 2218.864779][T25771] vivid-003: RDS Traffic Program: false inactive
[ 2218.903561][T25771] vivid-003: RDS Music: false inactive
[ 2218.932338][T25771] vivid-003: ==================  END STATUS  ==================
[ 2218.974780][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2219.046659][T25770] FAULT_INJECTION: forcing a failure.
[ 2219.046659][T25770] name failslab, interval 1, probability 0, space 0, times 0
[ 2219.099718][T25770] CPU: 1 UID: 0 PID: 25770 Comm: syz.7.3193 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2219.099752][T25770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2219.099767][T25770] Call Trace:
[ 2219.099775][T25770]  <TASK>
[ 2219.099785][T25770]  dump_stack_lvl+0x16c/0x1f0
[ 2219.099829][T25770]  should_fail_ex+0x50a/0x650
[ 2219.099858][T25770]  ? fs_reclaim_acquire+0xae/0x150
[ 2219.099897][T25770]  ? refill_pi_state_cache+0x89/0x250
[ 2219.099922][T25770]  should_failslab+0xc2/0x120
[ 2219.099951][T25770]  __kmalloc_cache_noprof+0x68/0x420
[ 2219.099972][T25770]  ? lock_acquire+0x2f/0xb0
[ 2219.099996][T25770]  ? schedule+0x1fd/0x350
[ 2219.100028][T25770]  refill_pi_state_cache+0x89/0x250
[ 2219.100054][T25770]  futex_lock_pi+0x227/0x7b0
[ 2219.100081][T25770]  ? futex_unqueue+0xba/0x140
[ 2219.100105][T25770]  ? __futex_wait+0x324/0x3c0
[ 2219.100132][T25770]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2219.100160][T25770]  ? __pfx___futex_wait+0x10/0x10
[ 2219.100211][T25770]  ? futex_wait+0x121/0x380
[ 2219.100243][T25770]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2219.100275][T25770]  ? rcu_is_watching+0x12/0xc0
[ 2219.100309][T25770]  ? io_uring_setup+0x171a/0x21a0
[ 2219.100353][T25770]  do_futex+0x11b/0x350
[ 2219.100378][T25770]  ? __pfx_do_futex+0x10/0x10
[ 2219.100409][T25770]  __x64_sys_futex+0x1e1/0x4c0
[ 2219.100438][T25770]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2219.100464][T25770]  ? rcu_is_watching+0x12/0xc0
[ 2219.100507][T25770]  do_syscall_64+0xcd/0x250
[ 2219.100532][T25770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2219.100565][T25770] RIP: 0033:0x7ff80b58cde9
[ 2219.100585][T25770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2219.100609][T25770] RSP: 002b:00007ff80c320038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2219.100631][T25770] RAX: ffffffffffffffda RBX: 00007ff80b7a5fa0 RCX: 00007ff80b58cde9
[ 2219.100648][T25770] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2219.100663][T25770] RBP: 00007ff80b60e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2219.100679][T25770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2219.100693][T25770] R13: 0000000000000000 R14: 00007ff80b7a5fa0 R15: 00007ffee43d60d8
[ 2219.100723][T25770]  </TASK>
[ 2219.328420][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2219.382937][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2219.455445][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2219.593774][T25788] vivid-003: =================  START STATUS  =================
[ 2219.614911][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2219.623318][T25788] vivid-003: Radio HW Seek Mode: Bounded
[ 2219.651104][T25788] vivid-003: Radio Programmable HW Seek: false
[ 2219.673649][T25788] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2219.680872][T25788] vivid-003: Generate RBDS Instead of RDS: false
[ 2219.687444][T25788] vivid-003: RDS Reception: true
[ 2219.692570][T25788] vivid-003: RDS Program Type: 0 inactive
[ 2219.699450][T25788] vivid-003: RDS PS Name:  inactive
[ 2219.704759][T25788] vivid-003: RDS Radio Text:  inactive
[ 2219.710426][T25788] vivid-003: RDS Traffic Announcement: false inactive
[ 2219.718997][T25788] vivid-003: RDS Traffic Program: false inactive
[ 2219.725775][T25788] vivid-003: RDS Music: false inactive
[ 2219.731324][T25788] vivid-003: ==================  END STATUS  ==================
[ 2219.943564][T25786] FAULT_INJECTION: forcing a failure.
[ 2219.943564][T25786] name fail_futex, interval 1, probability 0, space 0, times 0
[ 2219.985624][T25786] CPU: 1 UID: 0 PID: 25786 Comm: syz.7.3196 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2219.985660][T25786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2219.985674][T25786] Call Trace:
[ 2219.985682][T25786]  <TASK>
[ 2219.985693][T25786]  dump_stack_lvl+0x16c/0x1f0
[ 2219.985738][T25786]  should_fail_ex+0x50a/0x650
[ 2219.985767][T25786]  ? __pfx___lock_acquire+0x10/0x10
[ 2219.985801][T25786]  get_futex_key+0x4a3/0x1000
[ 2219.985843][T25786]  ? __pfx_get_futex_key+0x10/0x10
[ 2219.985883][T25786]  ? hlock_class+0x4e/0x130
[ 2219.985917][T25786]  ? __lock_acquire+0x15a9/0x3c40
[ 2219.985952][T25786]  futex_wait_setup+0x78/0x290
[ 2219.985989][T25786]  __futex_wait+0x267/0x3c0
[ 2219.986021][T25786]  ? __pfx___futex_wait+0x10/0x10
[ 2219.986058][T25786]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2219.986106][T25786]  ? fd_install+0x223/0x750
[ 2219.986136][T25786]  futex_wait+0xe9/0x380
[ 2219.986167][T25786]  ? __pfx_futex_wait+0x10/0x10
[ 2219.986204][T25786]  ? rcu_is_watching+0x12/0xc0
[ 2219.986240][T25786]  ? io_uring_setup+0x171a/0x21a0
[ 2219.986280][T25786]  do_futex+0x22b/0x350
[ 2219.986305][T25786]  ? __pfx_do_futex+0x10/0x10
[ 2219.986336][T25786]  __x64_sys_futex+0x1e1/0x4c0
[ 2219.986365][T25786]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2219.986392][T25786]  ? rcu_is_watching+0x12/0xc0
[ 2219.986435][T25786]  do_syscall_64+0xcd/0x250
[ 2219.986461][T25786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2219.986495][T25786] RIP: 0033:0x7ff80b58cde9
[ 2219.986514][T25786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2219.986539][T25786] RSP: 002b:00007ff80c3200e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2219.986562][T25786] RAX: ffffffffffffffda RBX: 00007ff80b7a5fa8 RCX: 00007ff80b58cde9
[ 2219.986579][T25786] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff80b7a5fa8
[ 2219.986595][T25786] RBP: 00007ff80b7a5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 2219.986611][T25786] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff80b7a5fac
[ 2219.986627][T25786] R13: 0000000000000000 R14: 00007ffee43d5ff0 R15: 00007ffee43d60d8
[ 2219.986659][T25786]  </TASK>
[ 2219.995347][T25778] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2220.243686][T25800] vivid-003: =================  START STATUS  =================
[ 2220.244959][T25778] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2220.258418][T25800] vivid-003: Radio HW Seek Mode: Bounded
[ 2220.272953][T25778] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2220.293857][T25778] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2220.319869][T25800] vivid-003: Radio Programmable HW Seek: false
[ 2220.350120][T25800] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2220.374675][T25800] vivid-003: Generate RBDS Instead of RDS: false
[ 2220.417497][T25800] vivid-003: RDS Reception: true
[ 2220.448986][T25800] vivid-003: RDS Program Type: 0 inactive
[ 2220.474608][T25800] vivid-003: RDS PS Name:  inactive
[ 2220.479942][T25800] vivid-003: RDS Radio Text:  inactive
[ 2220.542853][T25800] vivid-003: RDS Traffic Announcement: false inactive
[ 2220.560120][T25800] vivid-003: RDS Traffic Program: false inactive
[ 2220.571807][T25800] vivid-003: RDS Music: false inactive
[ 2220.590037][T25800] vivid-003: ==================  END STATUS  ==================
[ 2220.823005][T25810] vivid-003: =================  START STATUS  =================
[ 2220.831505][T25810] vivid-003: Radio HW Seek Mode: Bounded
[ 2220.873647][T25810] vivid-003: Radio Programmable HW Seek: false
[ 2220.945359][T25810] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2220.950989][T25810] vivid-003: Generate RBDS Instead of RDS: false
[ 2220.997583][T25810] vivid-003: RDS Reception: true
[ 2221.002725][T25810] vivid-003: RDS Program Type: 0 inactive
[ 2221.009330][T25810] vivid-003: RDS PS Name:  inactive
[ 2221.014737][T25810] vivid-003: RDS Radio Text:  inactive
[ 2221.020368][T25810] vivid-003: RDS Traffic Announcement: false inactive
[ 2221.049408][T25810] vivid-003: RDS Traffic Program: false inactive
[ 2221.083264][T25810] vivid-003: RDS Music: false inactive
[ 2221.163810][T25810] vivid-003: ==================  END STATUS  ==================
[ 2221.185296][T25809] vivid-003: =================  START STATUS  =================
[ 2221.194120][T25809] vivid-003: Radio HW Seek Mode: Bounded
[ 2221.200008][T25809] vivid-003: Radio Programmable HW Seek: false
[ 2221.224288][T25809] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2221.289611][T25809] vivid-003: Generate RBDS Instead of RDS: false
[ 2221.379981][T25809] vivid-003: RDS Reception: true
[ 2221.421333][T25809] vivid-003: RDS Program Type: 0 inactive
[ 2221.454863][   T54] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2221.476211][T25809] vivid-003: RDS PS Name:  inactive
[ 2221.511487][T25809] vivid-003: RDS Radio Text:  inactive
[ 2221.523995][T25809] vivid-003: RDS Traffic Announcement: false inactive
[ 2221.543810][T25809] vivid-003: RDS Traffic Program: false inactive
[ 2221.567620][T25809] vivid-003: RDS Music: false inactive
[ 2221.579570][T25809] vivid-003: ==================  END STATUS  ==================
[ 2221.607894][T25821] vivid-003: =================  START STATUS  =================
[ 2221.615855][T25821] vivid-003: Radio HW Seek Mode: Bounded
[ 2221.631923][T25821] vivid-003: Radio Programmable HW Seek: false
[ 2221.671344][T25821] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2221.703207][T25821] vivid-003: Generate RBDS Instead of RDS: false
[ 2221.773249][T25821] vivid-003: RDS Reception: true
[ 2221.795238][T25821] vivid-003: RDS Program Type: 0 inactive
[ 2221.838713][T25821] vivid-003: RDS PS Name:  inactive
[ 2221.844013][T25821] vivid-003: RDS Radio Text:  inactive
[ 2221.906795][T25821] vivid-003: RDS Traffic Announcement: false inactive
[ 2221.926127][T25821] vivid-003: RDS Traffic Program: false inactive
[ 2221.932695][T25821] vivid-003: RDS Music: false inactive
[ 2221.946895][T25821] vivid-003: ==================  END STATUS  ==================
[ 2222.099531][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 2222.105953][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 2222.254642][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2222.324013][T25837] Invalid ELF header magic: != ELF
[ 2222.336905][T25839] vivid-003: =================  START STATUS  =================
[ 2222.338138][   T54] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2222.346971][T17709] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2222.373128][T25839] vivid-003: Radio HW Seek Mode: Bounded
[ 2222.378241][T25834] Invalid ELF header magic: != ELF
[ 2222.404941][T25839] vivid-003: Radio Programmable HW Seek: false
[ 2222.438273][T25839] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2222.443940][T25839] vivid-003: Generate RBDS Instead of RDS: false
[ 2222.524778][T25839] vivid-003: RDS Reception: true
[ 2222.529805][T25839] vivid-003: RDS Program Type: 0 inactive
[ 2222.551122][T25839] vivid-003: RDS PS Name:  inactive
[ 2222.577682][T25839] vivid-003: RDS Radio Text:  inactive
[ 2222.602402][T25839] vivid-003: RDS Traffic Announcement: false inactive
[ 2222.619229][T25839] vivid-003: RDS Traffic Program: false inactive
[ 2222.676140][T25839] vivid-003: RDS Music: false inactive
[ 2222.684041][T25839] vivid-003: ==================  END STATUS  ==================
[ 2222.700152][T25842] vivid-003: =================  START STATUS  =================
[ 2222.709319][T25842] vivid-003: Radio HW Seek Mode: Bounded
[ 2222.725861][T25842] vivid-003: Radio Programmable HW Seek: false
[ 2222.740321][T25842] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2222.757809][T25842] vivid-003: Generate RBDS Instead of RDS: false
[ 2222.794741][T25842] vivid-003: RDS Reception: true
[ 2222.799861][T25842] vivid-003: RDS Program Type: 0 inactive
[ 2222.805889][T25842] vivid-003: RDS PS Name:  inactive
[ 2222.839738][T25842] vivid-003: RDS Radio Text:  inactive
[ 2222.871855][T25842] vivid-003: RDS Traffic Announcement: false inactive
[ 2222.899440][T25842] vivid-003: RDS Traffic Program: false inactive
[ 2222.907035][T25842] vivid-003: RDS Music: false inactive
[ 2222.912724][T25842] vivid-003: ==================  END STATUS  ==================
[ 2224.642976][T25856] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2224.664862][T25856] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2224.673872][T25856] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2224.691804][T25856] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2225.321477][T25872] vivid-003: =================  START STATUS  =================
[ 2225.329394][T25872] vivid-003: Radio HW Seek Mode: Bounded
[ 2225.335531][T25872] vivid-003: Radio Programmable HW Seek: false
[ 2225.341870][T25872] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2225.349827][T25872] vivid-003: Generate RBDS Instead of RDS: false
[ 2225.357137][T25872] vivid-003: RDS Reception: true
[ 2225.362159][T25872] vivid-003: RDS Program Type: 0 inactive
[ 2225.368520][T25872] vivid-003: RDS PS Name:  inactive
[ 2225.374871][T25872] vivid-003: RDS Radio Text:  inactive
[ 2225.380822][T25872] vivid-003: RDS Traffic Announcement: false inactive
[ 2225.388954][T25872] vivid-003: RDS Traffic Program: false inactive
[ 2225.396097][T25872] vivid-003: RDS Music: false inactive
[ 2225.401687][T25872] vivid-003: ==================  END STATUS  ==================
[ 2225.564043][T25877] vivid-003: =================  START STATUS  =================
[ 2225.579608][T25877] vivid-003: Radio HW Seek Mode: Bounded
[ 2225.593979][T25877] vivid-003: Radio Programmable HW Seek: false
[ 2225.623628][T25877] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2225.683630][T25877] vivid-003: Generate RBDS Instead of RDS: false
[ 2225.763700][T25877] vivid-003: RDS Reception: true
[ 2225.805768][T25877] vivid-003: RDS Program Type: 0 inactive
[ 2225.830317][T25877] vivid-003: RDS PS Name:  inactive
[ 2225.850721][T25877] vivid-003: RDS Radio Text:  inactive
[ 2225.902114][T25877] vivid-003: RDS Traffic Announcement: false inactive
[ 2225.919162][T25877] vivid-003: RDS Traffic Program: false inactive
[ 2225.926305][T25877] vivid-003: RDS Music: false inactive
[ 2225.931954][T25877] vivid-003: ==================  END STATUS  ==================
[ 2225.951197][T25883] vivid-003: =================  START STATUS  =================
[ 2225.979651][T25883] vivid-003: Radio HW Seek Mode: Bounded
[ 2226.010214][T25883] vivid-003: Radio Programmable HW Seek: false
[ 2226.018086][T25883] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2226.113887][T25883] vivid-003: Generate RBDS Instead of RDS: false
[ 2226.149347][T25869] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2226.153884][T25883] vivid-003: RDS Reception: 
[ 2226.162843][T25869] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2226.182743][T25883] true
[ 2226.194489][T25869] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2226.200830][T25869] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2226.225535][T25883] vivid-003: RDS Program Type: 0 inactive
[ 2226.276383][T25883] vivid-003: RDS PS Name:  inactive
[ 2226.291997][T25883] vivid-003: RDS Radio Text:  inactive
[ 2226.304345][T25883] vivid-003: RDS Traffic Announcement: false inactive
[ 2226.311762][T25883] vivid-003: RDS Traffic Program: false inactive
[ 2226.318348][T25883] vivid-003: RDS Music: false inactive
[ 2226.323958][T25883] vivid-003: ==================  END STATUS  ==================
[ 2226.530151][T25892] Invalid ELF header magic: != ELF
[ 2226.862553][T25901] Invalid ELF header magic: != ELF
[ 2227.279145][T25910] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input65
[ 2227.535256][T17709] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2228.174806][T17709] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2228.254707][T17709] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2228.261519][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2229.362471][T25929] Invalid ELF header magic: != ELF
[ 2229.383781][T25921] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2229.390694][T25921] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2229.402725][T25921] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2229.430827][T25921] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2229.886013][T25936] Invalid ELF header magic: != ELF
[ 2229.964736][T25938] Invalid ELF header magic: != ELF
[ 2230.104758][T25941] vivid-003: =================  START STATUS  =================
[ 2230.116380][T25941] vivid-003: Radio HW Seek Mode: Bounded
[ 2230.133126][T25941] vivid-003: Radio Programmable HW Seek: false
[ 2230.149793][T25941] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2230.160480][T25941] vivid-003: Generate RBDS Instead of RDS: false
[ 2230.203093][T25941] vivid-003: RDS Reception: true
[ 2230.239149][T25941] vivid-003: RDS Program Type: 0 inactive
[ 2230.286210][T25941] vivid-003: RDS PS Name:  inactive
[ 2230.311847][T25941] vivid-003: RDS Radio Text:  inactive
[ 2230.352689][T25941] vivid-003: RDS Traffic Announcement: false inactive
[ 2230.396845][T25941] vivid-003: RDS Traffic Program: false inactive
[ 2230.403276][T25941] vivid-003: RDS Music: false inactive
[ 2230.446681][T25941] vivid-003: ==================  END STATUS  ==================
[ 2231.073303][T17709] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2231.455229][T17709] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2231.458369][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2231.461436][T18927] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2231.784806][T25964] vivid-003: =================  START STATUS  =================
[ 2231.792499][T25964] vivid-003: Radio HW Seek Mode: Bounded
[ 2231.825973][T25964] vivid-003: Radio Programmable HW Seek: false
[ 2231.832216][T25964] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2231.838742][T25964] vivid-003: Generate RBDS Instead of RDS: false
[ 2231.845627][T25964] vivid-003: RDS Reception: true
[ 2231.850620][T25964] vivid-003: RDS Program Type: 0 inactive
[ 2231.856475][T25964] vivid-003: RDS PS Name:  inactive
[ 2231.861750][T25964] vivid-003: RDS Radio Text:  inactive
[ 2231.867542][T25964] vivid-003: RDS Traffic Announcement: false inactive
[ 2231.874363][T25964] vivid-003: RDS Traffic Program: false inactive
[ 2231.881272][T25964] vivid-003: RDS Music: false inactive
[ 2231.891220][T25964] vivid-003: ==================  END STATUS  ==================
[ 2232.498006][T25955] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2232.504126][T25955] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2232.514803][T25955] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2232.520841][T25955] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2232.862469][T25977] Invalid ELF header magic: != ELF
[ 2233.111938][T25985] Invalid ELF header magic: != ELF
[ 2233.299141][T25987] Invalid ELF header magic: != ELF
[ 2233.784621][T18927] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2234.574904][T18927] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2234.574923][T17709] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2234.574963][T17709] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2234.905964][T26000] vivid-003: =================  START STATUS  =================
[ 2234.934710][T26000] vivid-003: Radio HW Seek Mode: Bounded
[ 2234.970660][T26000] vivid-003: Radio Programmable HW Seek: false
[ 2234.985368][T26000] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2235.020200][T26000] vivid-003: Generate RBDS Instead of RDS: false
[ 2235.044659][T26000] vivid-003: RDS Reception: true
[ 2235.057561][T26000] vivid-003: RDS Program Type: 0 inactive
[ 2235.073768][T26000] vivid-003: RDS PS Name:  inactive
[ 2235.134828][T26000] vivid-003: RDS Radio Text:  inactive
[ 2235.172490][T26000] vivid-003: RDS Traffic Announcement: false inactive
[ 2235.262794][T26000] vivid-003: RDS Traffic Program: false inactive
[ 2235.284666][T26000] vivid-003: RDS Music: false inactive
[ 2235.307043][T26000] vivid-003: ==================  END STATUS  ==================
[ 2235.574803][T26012] vivid-003: =================  START STATUS  =================
[ 2235.601878][T26012] vivid-003: Radio HW Seek Mode: Bounded
[ 2235.634183][T26012] vivid-003: Radio Programmable HW Seek: false
[ 2235.670586][T26012] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2235.677800][T26012] vivid-003: Generate RBDS Instead of RDS: false
[ 2235.684290][T26012] vivid-003: RDS Reception: true
[ 2235.690496][T26012] vivid-003: RDS Program Type: 0 inactive
[ 2235.696671][T26012] vivid-003: RDS PS Name:  inactive
[ 2235.702020][T26012] vivid-003: RDS Radio Text:  inactive
[ 2235.707634][T26012] vivid-003: RDS Traffic Announcement: false inactive
[ 2235.714609][T26012] vivid-003: RDS Traffic Program: false inactive
[ 2235.715893][T26014] Invalid ELF header magic: != ELF
[ 2235.721030][T26012] vivid-003: RDS Music: false inactive
[ 2235.721070][T26012] vivid-003: ==================  END STATUS  ==================
[ 2235.740384][T26016] vivid-003: =================  START STATUS  =================
[ 2235.748156][T26016] vivid-003: Radio HW Seek Mode: Bounded
[ 2235.762461][T26016] vivid-003: Radio Programmable HW Seek: false
[ 2235.772543][T26016] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2235.795838][T26016] vivid-003: Generate RBDS Instead of RDS: false
[ 2235.802271][T26016] vivid-003: RDS Reception: true
[ 2235.807459][T26016] vivid-003: RDS Program Type: 0 inactive
[ 2235.813277][T26016] vivid-003: RDS PS Name:  inactive
[ 2235.864629][T26016] vivid-003: RDS Radio Text:  inactive
[ 2235.892621][T26016] vivid-003: RDS Traffic Announcement: false inactive
[ 2235.904836][T26016] vivid-003: RDS Traffic Program: false inactive
[ 2235.911250][T26016] vivid-003: RDS Music: false inactive
[ 2236.018399][T26016] vivid-003: ==================  END STATUS  ==================
[ 2236.275957][T26003] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2236.282584][T26003] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2236.288969][T26003] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2236.299918][T26003] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2236.544299][T26034] vivid-003: =================  START STATUS  =================
[ 2236.562938][T26034] vivid-003: Radio HW Seek Mode: Bounded
[ 2236.579353][T26034] vivid-003: Radio Programmable HW Seek: false
[ 2236.589502][T26034] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2236.613105][T26034] vivid-003: Generate RBDS Instead of RDS: false
[ 2236.665229][T26034] vivid-003: RDS Reception: true
[ 2236.693603][T26034] vivid-003: RDS Program Type: 0 inactive
[ 2236.702027][T26038] Invalid ELF header magic: != ELF
[ 2236.743407][T26034] vivid-003: RDS PS Name:  inactive
[ 2236.754374][T26034] vivid-003: RDS Radio Text:  inactive
[ 2236.777826][T26039] Invalid ELF header magic: != ELF
[ 2236.800541][T26034] vivid-003: RDS Traffic Announcement: false inactive
[ 2236.831981][T26034] vivid-003: RDS Traffic Program: false inactive
[ 2236.874633][T26034] vivid-003: RDS Music: false inactive
[ 2236.904831][T26034] vivid-003: ==================  END STATUS  ==================
[ 2237.694771][T17709] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2238.270243][T26047] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input66
[ 2238.334921][T17709] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2238.341002][T17709] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2238.347129][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2239.124028][T26053] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2239.133764][T26053] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2239.140674][T26053] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2239.147229][T26053] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2240.088009][T26071] vivid-003: =================  START STATUS  =================
[ 2240.098572][T26071] vivid-003: Radio HW Seek Mode: Bounded
[ 2240.104277][T26071] vivid-003: Radio Programmable HW Seek: false
[ 2240.110693][T26071] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2240.118304][T26071] vivid-003: Generate RBDS Instead of RDS: false
[ 2240.133035][T26071] vivid-003: RDS Reception: true
[ 2240.140178][T26071] vivid-003: RDS Program Type: 0 inactive
[ 2240.169273][T26071] vivid-003: RDS PS Name:  inactive
[ 2240.189555][T26071] vivid-003: RDS Radio Text:  inactive
[ 2240.199672][T26071] vivid-003: RDS Traffic Announcement: false inactive
[ 2240.220619][T26075] Invalid ELF header magic: != ELF
[ 2240.245156][T26071] vivid-003: RDS Traffic Program: false inactive
[ 2240.251578][T26071] vivid-003: RDS Music: false inactive
[ 2240.274699][T26071] vivid-003: ==================  END STATUS  ==================
[ 2240.348937][T26073] vivid-003: =================  START STATUS  =================
[ 2240.369647][T26073] vivid-003: Radio HW Seek Mode: Bounded
[ 2240.400710][T26073] vivid-003: Radio Programmable HW Seek: false
[ 2240.407083][T26073] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2240.412709][T26073] vivid-003: Generate RBDS Instead of RDS: false
[ 2240.419377][T26073] vivid-003: RDS Reception: true
[ 2240.424397][T26073] vivid-003: RDS Program Type: 0 inactive
[ 2240.430416][T26073] vivid-003: RDS PS Name:  inactive
[ 2240.435834][T26073] vivid-003: RDS Radio Text:  inactive
[ 2240.441901][T26073] vivid-003: RDS Traffic Announcement: false inactive
[ 2240.448933][T26073] vivid-003: RDS Traffic Program: false inactive
[ 2240.462948][T26073] vivid-003: RDS Music: false inactive
[ 2240.468645][T26073] vivid-003: ==================  END STATUS  ==================
[ 2240.515210][T26065] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2240.521327][T26065] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2240.576076][T26065] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2240.616641][T26065] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2241.340876][T26094] vivid-003: =================  START STATUS  =================
[ 2241.361658][T26094] vivid-003: Radio HW Seek Mode: Bounded
[ 2241.374372][T26094] vivid-003: Radio Programmable HW Seek: false
[ 2241.382113][T26094] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2241.425594][T26094] vivid-003: Generate RBDS Instead of RDS: false
[ 2241.432008][T26094] vivid-003: RDS Reception: true
[ 2241.483398][T26094] vivid-003: RDS Program Type: 0 inactive
[ 2241.499990][T26094] vivid-003: RDS PS Name:  inactive
[ 2241.534008][T26094] vivid-003: RDS Radio Text:  inactive
[ 2241.555068][T26094] vivid-003: RDS Traffic Announcement: false inactive
[ 2241.674450][T26094] vivid-003: RDS Traffic Program: false inactive
[ 2241.723472][T26094] vivid-003: RDS Music: false inactive
[ 2241.752319][T26094] vivid-003: ==================  END STATUS  ==================
[ 2242.024750][T17709] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2242.088830][T26099] FAULT_INJECTION: forcing a failure.
[ 2242.088830][T26099] name fail_futex, interval 1, probability 0, space 0, times 0
[ 2242.144757][T26099] CPU: 1 UID: 0 PID: 26099 Comm: syz.7.3250 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2242.144793][T26099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2242.144809][T26099] Call Trace:
[ 2242.144817][T26099]  <TASK>
[ 2242.144826][T26099]  dump_stack_lvl+0x16c/0x1f0
[ 2242.144870][T26099]  should_fail_ex+0x50a/0x650
[ 2242.144904][T26099]  get_futex_key+0x4a3/0x1000
[ 2242.144945][T26099]  ? __pfx_get_futex_key+0x10/0x10
[ 2242.144986][T26099]  ? kasan_save_track+0x14/0x30
[ 2242.145010][T26099]  ? __kasan_kmalloc+0xaa/0xb0
[ 2242.145039][T26099]  futex_lock_pi+0x282/0x7b0
[ 2242.145072][T26099]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2242.145099][T26099]  ? __pfx___futex_wait+0x10/0x10
[ 2242.145128][T26099]  ? try_to_wake_up+0x953/0x1490
[ 2242.145176][T26099]  ? futex_wait+0x121/0x380
[ 2242.145207][T26099]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2242.145240][T26099]  ? rcu_is_watching+0x12/0xc0
[ 2242.145283][T26099]  ? io_uring_setup+0x171a/0x21a0
[ 2242.145324][T26099]  do_futex+0x11b/0x350
[ 2242.145348][T26099]  ? __pfx_do_futex+0x10/0x10
[ 2242.145375][T26099]  ? __pfx___might_resched+0x10/0x10
[ 2242.145409][T26099]  __x64_sys_futex+0x1e1/0x4c0
[ 2242.145437][T26099]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2242.145463][T26099]  ? rcu_is_watching+0x12/0xc0
[ 2242.145505][T26099]  do_syscall_64+0xcd/0x250
[ 2242.145531][T26099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2242.145563][T26099] RIP: 0033:0x7ff80b58cde9
[ 2242.145582][T26099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2242.145606][T26099] RSP: 002b:00007ff80c320038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2242.145629][T26099] RAX: ffffffffffffffda RBX: 00007ff80b7a5fa0 RCX: 00007ff80b58cde9
[ 2242.145646][T26099] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2242.145661][T26099] RBP: 00007ff80b60e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2242.145677][T26099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2242.145692][T26099] R13: 0000000000000000 R14: 00007ff80b7a5fa0 R15: 00007ffee43d60d8
[ 2242.145723][T26099]  </TASK>
[ 2242.364455][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2242.583106][T17709] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2242.654724][T18927] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2242.656239][T26112] vivid-003: =================  START STATUS  =================
[ 2242.660954][T17709] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2242.702936][T26112] vivid-003: Radio HW Seek Mode: Bounded
[ 2242.709761][T26112] vivid-003: Radio Programmable HW Seek: false
[ 2242.724617][T26112] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2242.730268][T26112] vivid-003: Generate RBDS Instead of RDS: false
[ 2242.761458][T26112] vivid-003: RDS Reception: true
[ 2242.766564][T26112] vivid-003: RDS Program Type: 0 inactive
[ 2242.772349][T26112] vivid-003: RDS PS Name:  inactive
[ 2242.777736][T26112] vivid-003: RDS Radio Text:  inactive
[ 2242.783254][T26112] vivid-003: RDS Traffic Announcement: false inactive
[ 2242.790121][T26112] vivid-003: RDS Traffic Program: false inactive
[ 2242.797163][T26112] vivid-003: RDS Music: false inactive
[ 2242.802683][T26112] vivid-003: ==================  END STATUS  ==================
[ 2242.830549][T26116] Invalid ELF header magic: != ELF
[ 2244.445349][T26126] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2244.471627][T26126] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2244.523740][T26126] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2244.530026][T26126] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2245.047297][T26146] vivid-003: =================  START STATUS  =================
[ 2245.079281][T26146] vivid-003: Radio HW Seek Mode: Bounded
[ 2245.097010][T26141] Invalid ELF header magic: != ELF
[ 2245.097100][T26146] vivid-003: Radio Programmable HW Seek: false
[ 2245.159499][T26146] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2245.182952][T26146] vivid-003: Generate RBDS Instead of RDS: false
[ 2245.193070][T26146] vivid-003: RDS Reception: true
[ 2245.212719][T26146] vivid-003: RDS Program Type: 0 inactive
[ 2245.259564][T26146] vivid-003: RDS PS Name:  inactive
[ 2245.290944][T26146] vivid-003: RDS Radio Text:  inactive
[ 2245.324632][T26146] vivid-003: RDS Traffic Announcement: false inactive
[ 2245.331524][T26146] vivid-003: RDS Traffic Program: false inactive
[ 2245.393146][T26146] vivid-003: RDS Music: false inactive
[ 2245.464801][T26146] vivid-003: ==================  END STATUS  ==================
[ 2245.534796][T26151] vivid-003: =================  START STATUS  =================
[ 2245.600734][T26151] vivid-003: Radio HW Seek Mode: Bounded
[ 2245.721122][T26151] vivid-003: Radio Programmable HW Seek: false
[ 2245.727582][T26151] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2245.733179][T26151] vivid-003: Generate RBDS Instead of RDS: false
[ 2245.739732][T26151] vivid-003: RDS Reception: true
[ 2245.744788][T26151] vivid-003: RDS Program Type: 0 inactive
[ 2245.750559][T26151] vivid-003: RDS PS Name:  inactive
[ 2245.755854][T26151] vivid-003: RDS Radio Text:  inactive
[ 2245.761369][T26151] vivid-003: RDS Traffic Announcement: false inactive
[ 2245.769372][T26151] vivid-003: RDS Traffic Program: false inactive
[ 2245.775953][T26151] vivid-003: RDS Music: false inactive
[ 2245.781475][T26151] vivid-003: ==================  END STATUS  ==================
[ 2246.229149][T26144] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2246.238230][T26144] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2246.244420][T26144] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2246.257574][T26144] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2246.527881][T26170] vivid-003: =================  START STATUS  =================
[ 2246.546746][T26170] vivid-003: Radio HW Seek Mode: Bounded
[ 2246.563238][T26170] vivid-003: Radio Programmable HW Seek: false
[ 2246.604171][T26170] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2246.613505][T26170] vivid-003: Generate RBDS Instead of RDS: false
[ 2246.620092][T26170] vivid-003: RDS Reception: true
[ 2246.625260][T26170] vivid-003: RDS Program Type: 0 inactive
[ 2246.631039][T26170] vivid-003: RDS PS Name:  inactive
[ 2246.636466][T26170] vivid-003: RDS Radio Text:  inactive
[ 2246.642012][T26170] vivid-003: RDS Traffic Announcement: false inactive
[ 2246.649009][T26170] vivid-003: RDS Traffic Program: false inactive
[ 2246.655975][T26170] vivid-003: RDS Music: false inactive
[ 2246.661655][T26170] vivid-003: ==================  END STATUS  ==================
[ 2246.857615][T26168] FAULT_INJECTION: forcing a failure.
[ 2246.857615][T26168] name failslab, interval 1, probability 0, space 0, times 0
[ 2246.871237][T26168] CPU: 1 UID: 0 PID: 26168 Comm: syz.9.3260 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2246.871270][T26168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2246.871286][T26168] Call Trace:
[ 2246.871294][T26168]  <TASK>
[ 2246.871304][T26168]  dump_stack_lvl+0x16c/0x1f0
[ 2246.871347][T26168]  should_fail_ex+0x50a/0x650
[ 2246.871378][T26168]  ? fs_reclaim_acquire+0xae/0x150
[ 2246.871418][T26168]  ? refill_pi_state_cache+0x89/0x250
[ 2246.871444][T26168]  should_failslab+0xc2/0x120
[ 2246.871472][T26168]  __kmalloc_cache_noprof+0x68/0x420
[ 2246.871498][T26168]  ? lock_acquire+0x2f/0xb0
[ 2246.871524][T26168]  ? schedule+0x1fd/0x350
[ 2246.871560][T26168]  refill_pi_state_cache+0x89/0x250
[ 2246.871588][T26168]  futex_lock_pi+0x227/0x7b0
[ 2246.871615][T26168]  ? futex_unqueue+0xba/0x140
[ 2246.871651][T26168]  ? __futex_wait+0x324/0x3c0
[ 2246.871681][T26168]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2246.871710][T26168]  ? __pfx___futex_wait+0x10/0x10
[ 2246.871765][T26168]  ? futex_wait+0x121/0x380
[ 2246.871799][T26168]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2246.871832][T26168]  ? rcu_is_watching+0x12/0xc0
[ 2246.871866][T26168]  ? io_uring_setup+0x171a/0x21a0
[ 2246.871902][T26168]  do_futex+0x11b/0x350
[ 2246.871924][T26168]  ? __pfx_do_futex+0x10/0x10
[ 2246.871955][T26168]  __x64_sys_futex+0x1e1/0x4c0
[ 2246.871985][T26168]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2246.872010][T26168]  ? rcu_is_watching+0x12/0xc0
[ 2246.872053][T26168]  do_syscall_64+0xcd/0x250
[ 2246.872078][T26168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2246.872110][T26168] RIP: 0033:0x7fc66838cde9
[ 2246.872130][T26168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2246.872153][T26168] RSP: 002b:00007fc6691c4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2246.872175][T26168] RAX: ffffffffffffffda RBX: 00007fc6685a5fa0 RCX: 00007fc66838cde9
[ 2246.872192][T26168] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2246.872206][T26168] RBP: 00007fc66840e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2246.872221][T26168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2246.872235][T26168] R13: 0000000000000000 R14: 00007fc6685a5fa0 R15: 00007fff94a47118
[ 2246.872266][T26168]  </TASK>
[ 2247.097990][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2247.454661][T17709] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2247.812746][T26190] vivid-003: =================  START STATUS  =================
[ 2247.843094][T26190] vivid-003: Radio HW Seek Mode: Bounded
[ 2247.853251][T26190] vivid-003: Radio Programmable HW Seek: false
[ 2247.878127][T26190] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2247.903668][T26190] vivid-003: Generate RBDS Instead of RDS: false
[ 2247.929113][T26190] vivid-003: RDS Reception: true
[ 2247.938700][T26190] vivid-003: RDS Program Type: 0 inactive
[ 2247.949018][T26190] vivid-003: RDS PS Name:  inactive
[ 2247.999660][T26190] vivid-003: RDS Radio Text:  inactive
[ 2248.054941][T26190] vivid-003: RDS Traffic Announcement: false inactive
[ 2248.061833][T26190] vivid-003: RDS Traffic Program: false inactive
[ 2248.193907][T26190] vivid-003: RDS Music: false inactive
[ 2248.250780][T26190] vivid-003: ==================  END STATUS  ==================
[ 2248.258897][T17709] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2248.265064][T18927] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2248.321370][T26192] vivid-003: =================  START STATUS  =================
[ 2248.334723][T18927] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2248.379997][T26192] vivid-003: Radio HW Seek Mode: Bounded
[ 2248.417425][T26192] vivid-003: Radio Programmable HW Seek: false
[ 2248.439946][T26192] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2248.451953][T26192] vivid-003: Generate RBDS Instead of RDS: false
[ 2248.465520][T26192] vivid-003: RDS Reception: true
[ 2248.481117][T26192] vivid-003: RDS Program Type: 0 inactive
[ 2248.494630][T26192] vivid-003: RDS PS Name:  inactive
[ 2248.509094][T26192] vivid-003: RDS Radio Text:  inactive
[ 2248.521513][T26192] vivid-003: RDS Traffic Announcement: false inactive
[ 2248.532545][T26192] vivid-003: RDS Traffic Program: false inactive
[ 2248.541678][T26192] vivid-003: RDS Music: false inactive
[ 2248.547603][T26192] vivid-003: ==================  END STATUS  ==================
[ 2248.852078][T26206] Invalid ELF header magic: != ELF
[ 2248.915248][T26211] vivid-003: =================  START STATUS  =================
[ 2248.925311][T26211] vivid-003: Radio HW Seek Mode: Bounded
[ 2248.931008][T26211] vivid-003: Radio Programmable HW Seek: false
[ 2248.974108][T26211] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2249.036167][T26211] vivid-003: Generate RBDS Instead of RDS: false
[ 2249.042579][T26211] vivid-003: RDS Reception: true
[ 2249.070714][T26211] vivid-003: RDS Program Type: 0 inactive
[ 2249.104772][T26211] vivid-003: RDS PS Name:  inactive
[ 2249.111317][T26211] vivid-003: RDS Radio Text:  inactive
[ 2249.184936][T26211] vivid-003: RDS Traffic Announcement: false inactive
[ 2249.192020][T26211] vivid-003: RDS Traffic Program: false inactive
[ 2249.209026][T26211] vivid-003: RDS Music: false inactive
[ 2249.225465][T26211] vivid-003: ==================  END STATUS  ==================
[ 2249.267346][T26213] vivid-003: =================  START STATUS  =================
[ 2249.306105][T26213] vivid-003: Radio HW Seek Mode: Bounded
[ 2249.311821][T26213] vivid-003: Radio Programmable HW Seek: false
[ 2249.404826][T26213] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2249.439734][T26213] vivid-003: Generate RBDS Instead of RDS: false
[ 2249.454526][T26213] vivid-003: RDS Reception: true
[ 2249.464224][T26213] vivid-003: RDS Program Type: 0 inactive
[ 2249.526695][T26213] vivid-003: RDS PS Name:  inactive
[ 2249.544823][T26213] vivid-003: RDS Radio Text:  inactive
[ 2249.550377][T26213] vivid-003: RDS Traffic Announcement: false inactive
[ 2249.595925][T26213] vivid-003: RDS Traffic Program: false inactive
[ 2249.648894][T26213] vivid-003: RDS Music: false inactive
[ 2249.664753][T26213] vivid-003: ==================  END STATUS  ==================
[ 2250.089987][T26209] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2250.098772][T26209] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2250.107989][T26209] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2250.114095][T26209] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2250.369205][T26235] vivid-003: =================  START STATUS  =================
[ 2250.414883][T26235] vivid-003: Radio HW Seek Mode: Bounded
[ 2250.432763][T26235] vivid-003: Radio Programmable HW Seek: false
[ 2250.483361][T26235] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2250.490059][T26235] vivid-003: Generate RBDS Instead of RDS: false
[ 2250.496587][T26235] vivid-003: RDS Reception: true
[ 2250.501566][T26235] vivid-003: RDS Program Type: 0 inactive
[ 2250.507432][T26235] vivid-003: RDS PS Name:  inactive
[ 2250.512676][T26235] vivid-003: RDS Radio Text:  inactive
[ 2250.518691][T26235] vivid-003: RDS Traffic Announcement: false inactive
[ 2250.525705][T26235] vivid-003: RDS Traffic Program: false inactive
[ 2250.532087][T26235] vivid-003: RDS Music: false inactive
[ 2250.549784][T26242] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input67
[ 2250.630010][T26235] vivid-003: ==================  END STATUS  ==================
[ 2251.402984][T26248] vivid-003: =================  START STATUS  =================
[ 2251.410955][T26248] vivid-003: Radio HW Seek Mode: Bounded
[ 2251.427543][T26248] vivid-003: Radio Programmable HW Seek: false
[ 2251.433768][T26248] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2251.464344][T18927] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2251.487125][T26248] vivid-003: Generate RBDS Instead of RDS: false
[ 2251.508679][T26248] vivid-003: RDS Reception: true
[ 2251.513695][T26248] vivid-003: RDS Program Type: 0 inactive
[ 2251.554672][T26248] vivid-003: RDS PS Name:  inactive
[ 2251.559966][T26248] vivid-003: RDS Radio Text:  inactive
[ 2251.616862][T26248] vivid-003: RDS Traffic Announcement: false inactive
[ 2251.654862][T26248] vivid-003: RDS Traffic Program: false inactive
[ 2251.734752][T26248] vivid-003: RDS Music: false inactive
[ 2251.800707][T26248] vivid-003: ==================  END STATUS  ==================
[ 2252.150845][T26256] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input68
[ 2252.184868][T18927] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2252.184868][T17709] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2252.184917][T17709] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2252.574363][T26260] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 2252.590107][T26260] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 2252.623051][T26260] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 2252.655337][T26260] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 2252.990926][T26269] vivid-003: =================  START STATUS  =================
[ 2253.032917][T26269] vivid-003: Radio HW Seek Mode: Bounded
[ 2253.040522][T26269] vivid-003: Radio Programmable HW Seek: false
[ 2253.061593][T26269] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2253.067586][T26269] vivid-003: Generate RBDS Instead of RDS: false
[ 2253.074183][T26269] vivid-003: RDS Reception: true
[ 2253.090026][T26269] vivid-003: RDS Program Type: 0 inactive
[ 2253.097437][T26269] vivid-003: RDS PS Name:  inactive
[ 2253.102878][T26269] vivid-003: RDS Radio Text:  inactive
[ 2253.108892][T26269] vivid-003: RDS Traffic Announcement: false inactive
[ 2253.116532][T26269] vivid-003: RDS Traffic Program: false inactive
[ 2253.123000][T26269] vivid-003: RDS Music: false inactive
[ 2253.129058][T26269] vivid-003: ==================  END STATUS  ==================
[ 2253.627889][T26277] vivid-003: =================  START STATUS  =================
[ 2253.663195][T26277] vivid-003: Radio HW Seek Mode: Bounded
[ 2253.694068][T26277] vivid-003: Radio Programmable HW Seek: false
[ 2253.700645][T26277] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2253.707018][T26277] vivid-003: Generate RBDS Instead of RDS: false
[ 2253.713487][T26277] vivid-003: RDS Reception: true
[ 2253.723985][T26277] vivid-003: RDS Program Type: 0 inactive
[ 2253.751828][T26277] vivid-003: RDS PS Name:  inactive
[ 2253.758368][T26277] vivid-003: RDS Radio Text:  inactive
[ 2253.776814][T26277] vivid-003: RDS Traffic Announcement: false inactive
[ 2253.796676][T26277] vivid-003: RDS Traffic Program: false inactive
[ 2253.803092][T26277] vivid-003: RDS Music: false inactive
[ 2254.041164][T26277] vivid-003: ==================  END STATUS  ==================
[ 2254.103361][T26280] vivid-003: =================  START STATUS  =================
[ 2254.186846][T26280] vivid-003: Radio HW Seek Mode: Bounded
[ 2254.239468][T26287] Invalid ELF header magic: != ELF
[ 2254.244232][T26280] vivid-003: Radio Programmable HW Seek: false
[ 2254.254388][T26280] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2254.264528][T26280] vivid-003: Generate RBDS Instead of RDS: false
[ 2254.264737][T17709] Bluetooth: hci4: command 0x0c1a tx timeout
[ 2254.278736][T26280] vivid-003: RDS Reception: true
[ 2254.284952][T26280] vivid-003: RDS Program Type: 0 inactive
[ 2254.326475][T26278] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input69
[ 2254.347457][T26280] vivid-003: RDS PS Name:  inactive
[ 2254.352748][T26280] vivid-003: RDS Radio Text:  inactive
[ 2254.358488][T26280] vivid-003: RDS Traffic Announcement: false inactive
[ 2254.365536][T26280] vivid-003: RDS Traffic Program: false inactive
[ 2254.373112][T26280] vivid-003: RDS Music: false inactive
[ 2254.378787][T26280] vivid-003: ==================  END STATUS  ==================
[ 2254.659125][T17709] Bluetooth: hci0: command 0x0c1a tx timeout
[ 2254.659137][   T54] Bluetooth: hci1: command 0x0c1a tx timeout
[ 2254.659180][   T54] Bluetooth: hci3: command 0x0c1a tx timeout
[ 2254.758820][T26298] input: f�
��0?\�hՐ�JL��'$d)K����L������o�1oN��0����ø.�m)$�c���j�@��qwR�=�X as /devices/virtual/input/input70
[ 2255.734800][T26304] vivid-003: =================  START STATUS  =================
[ 2255.766098][T26304] vivid-003: Radio HW Seek Mode: Bounded
[ 2255.796154][T26304] vivid-003: Radio Programmable HW Seek: false
[ 2255.804287][T26304] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2255.810700][T26304] vivid-003: Generate RBDS Instead of RDS: false
[ 2255.840889][T26304] vivid-003: RDS Reception: true
[ 2255.883217][T26304] vivid-003: RDS Program Type: 0 inactive
[ 2255.939895][T26304] vivid-003: RDS PS Name:  inactive
[ 2255.994714][T26304] vivid-003: RDS Radio Text:  inactive
[ 2256.015218][T26304] vivid-003: RDS Traffic Announcement: false inactive
[ 2256.048771][T26304] vivid-003: RDS Traffic Program: false inactive
[ 2256.069415][T26304] vivid-003: RDS Music: false inactive
[ 2256.075509][T26304] vivid-003: ==================  END STATUS  ==================
[ 2256.078607][T26302] FAULT_INJECTION: forcing a failure.
[ 2256.078607][T26302] name fail_futex, interval 1, probability 0, space 0, times 0
[ 2256.154120][T26311] vivid-003: =================  START STATUS  =================
[ 2256.162121][T26311] vivid-003: Radio HW Seek Mode: Bounded
[ 2256.167020][T26302] CPU: 0 UID: 0 PID: 26302 Comm: syz.6.3285 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2256.167053][T26302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2256.167069][T26302] Call Trace:
[ 2256.167076][T26302]  <TASK>
[ 2256.167085][T26302]  dump_stack_lvl+0x16c/0x1f0
[ 2256.167129][T26302]  should_fail_ex+0x50a/0x650
[ 2256.167162][T26302]  get_futex_key+0x4a3/0x1000
[ 2256.167204][T26302]  ? __pfx_get_futex_key+0x10/0x10
[ 2256.167243][T26302]  ? kasan_save_track+0x14/0x30
[ 2256.167269][T26302]  ? __kasan_kmalloc+0xaa/0xb0
[ 2256.167297][T26302]  futex_lock_pi+0x282/0x7b0
[ 2256.167324][T26302]  ? preempt_schedule_common+0x44/0xc0
[ 2256.167360][T26302]  ? __pfx_futex_lock_pi+0x10/0x10
[ 2256.167390][T26302]  ? try_to_wake_up+0x953/0x1490
[ 2256.167423][T26302]  ? plist_check_head+0xa3/0x150
[ 2256.167464][T26302]  ? futex_wake+0x18e/0x4e0
[ 2256.167494][T26302]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2256.167535][T26302]  do_futex+0x11b/0x350
[ 2256.167559][T26302]  ? __pfx_do_futex+0x10/0x10
[ 2256.167582][T26302]  ? __pfx_task_mm_cid_work+0x10/0x10
[ 2256.167609][T26302]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 2256.167641][T26302]  ? __pfx___might_resched+0x10/0x10
[ 2256.167674][T26302]  __x64_sys_futex+0x1e1/0x4c0
[ 2256.167703][T26302]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2256.167728][T26302]  ? rcu_is_watching+0x12/0xc0
[ 2256.167770][T26302]  do_syscall_64+0xcd/0x250
[ 2256.167792][T26302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2256.167826][T26302] RIP: 0033:0x7fb0b718cde9
[ 2256.167844][T26302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2256.167865][T26302] RSP: 002b:00007fb0b7fd1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2256.167886][T26302] RAX: ffffffffffffffda RBX: 00007fb0b73a5fa0 RCX: 00007fb0b718cde9
[ 2256.167902][T26302] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 2256.167915][T26302] RBP: 00007fb0b720e2a0 R08: 0000000000000000 R09: 0000000080000001
[ 2256.167930][T26302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2256.167945][T26302] R13: 0000000000000000 R14: 00007fb0b73a5fa0 R15: 00007ffcf5312a18
[ 2256.167972][T26302]  </TASK>
[ 2256.443585][T26311] vivid-003: Radio Programmable HW Seek: false
[ 2256.460987][T26311] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2256.470817][T26311] vivid-003: Generate RBDS Instead of RDS: false
[ 2256.479951][T26311] vivid-003: RDS Reception: true
[ 2256.489966][T26311] vivid-003: RDS Program Type: 0 inactive
[ 2256.498571][T26311] vivid-003: RDS PS Name:  inactive
[ 2256.503958][T26311] vivid-003: RDS Radio Text:  inactive
[ 2256.521547][T26311] vivid-003: RDS Traffic Announcement: false inactive
[ 2256.589620][T26311] vivid-003: RDS Traffic Program: false inactive
[ 2256.607901][T26311] vivid-003: RDS Music: false inactive
[ 2256.614041][T26311] vivid-003: ==================  END STATUS  ==================
[ 2256.617748][T26319] Invalid ELF header magic: != ELF
[ 2256.654764][T26321] vivid-003: =================  START STATUS  =================
[ 2256.695048][T26321] vivid-003: Radio HW Seek Mode: Bounded
[ 2256.726427][T26321] vivid-003: Radio Programmable HW Seek: false
[ 2256.732667][T26321] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2256.774740][T26321] vivid-003: Generate RBDS Instead of RDS: false
[ 2256.781183][T26321] vivid-003: RDS Reception: true
[ 2256.795108][T26321] vivid-003: RDS Program Type: 0 inactive
[ 2256.805076][T26321] vivid-003: RDS PS Name:  inactive
[ 2256.825108][T26321] vivid-003: RDS Radio Text:  inactive
[ 2256.881333][T26321] vivid-003: RDS Traffic Announcement: false inactive
[ 2256.899298][T26321] vivid-003: RDS Traffic Program: false inactive
[ 2256.931421][T26321] vivid-003: RDS Music: false inactive
[ 2256.941815][T26321] vivid-003: ==================  END STATUS  ==================
[ 2256.952352][T26326] vivid-003: =================  START STATUS  =================
[ 2256.975060][T26326] vivid-003: Radio HW Seek Mode: Bounded
[ 2257.052828][T26326] vivid-003: Radio Programmable HW Seek: false
[ 2257.060537][T26326] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2257.069982][T26326] vivid-003: Generate RBDS Instead of RDS: false
[ 2257.094640][T26326] vivid-003: RDS Reception: true
[ 2257.109875][T26326] vivid-003: RDS Program Type: 0 inactive
[ 2257.152008][T26326] vivid-003: RDS PS Name:  inactive
[ 2257.157460][T26326] vivid-003: RDS Radio Text:  inactive
[ 2257.162988][T26326] vivid-003: RDS Traffic Announcement: false inactive
[ 2257.169949][T26326] vivid-003: RDS Traffic Program: false inactive
[ 2257.176485][T26326] vivid-003: RDS Music: false inactive
[ 2257.182089][T26326] vivid-003: ==================  END STATUS  ==================
[ 2257.941624][T26340] Invalid ELF header magic: != ELF
[ 2258.117372][T26347] Invalid ELF header magic: != ELF
[ 2259.840427][T26361] vivid-003: =================  START STATUS  =================
[ 2259.891523][T26361] vivid-003: Radio HW Seek Mode: Bounded
[ 2259.925495][T26361] vivid-003: Radio Programmable HW Seek: false
[ 2259.931749][T26361] vivid-003: RDS Rx I/O Mode: Block I/O
[ 2259.940773][T26361] vivid-003: Generate RBDS Instead of RDS: false
[ 2259.980401][T26361] vivid-003: RDS Reception: true
[ 2260.016838][T26361] vivid-003: RDS Program Type: 0 inactive
[ 2260.022661][T26361] vivid-003: RDS PS Name:  inactive
[ 2260.067168][T26361] vivid-003: RDS Radio Text:  inactive
[ 2260.072732][T26361] vivid-003: RDS Traffic Announcement: false inactive
[ 2260.080644][T26361] vivid-003: RDS Traffic Program: false inactive
[ 2260.087851][T26361] vivid-003: RDS Music: false inactive
[ 2260.093611][T26361] vivid-003: ==================  END STATUS  ==================
[ 2260.108828][T26357] FAULT_INJECTION: forcing a failure.
[ 2260.108828][T26357] name fail_futex, interval 1, probability 0, space 0, times 0
[ 2260.136609][T26357] CPU: 1 UID: 0 PID: 26357 Comm: syz.6.3295 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2260.136646][T26357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2260.136662][T26357] Call Trace:
[ 2260.136670][T26357]  <TASK>
[ 2260.136680][T26357]  dump_stack_lvl+0x16c/0x1f0
[ 2260.136725][T26357]  should_fail_ex+0x50a/0x650
[ 2260.136761][T26357]  get_futex_key+0x4a3/0x1000
[ 2260.136803][T26357]  ? __pfx_get_futex_key+0x10/0x10
[ 2260.136844][T26357]  ? find_held_lock+0x2d/0x110
[ 2260.136883][T26357]  futex_wait_setup+0x78/0x290
[ 2260.136920][T26357]  __futex_wait+0x267/0x3c0
[ 2260.136952][T26357]  ? __pfx___futex_wait+0x10/0x10
[ 2260.136982][T26357]  ? try_to_wake_up+0x158/0x1490
[ 2260.137014][T26357]  ? __pfx_futex_wake_mark+0x10/0x10
[ 2260.137058][T26357]  futex_wait+0xe9/0x380
[ 2260.137087][T26357]  ? __pfx_futex_wait+0x10/0x10
[ 2260.137122][T26357]  ? rcu_is_watching+0x12/0xc0
[ 2260.137155][T26357]  ? io_uring_setup+0x171a/0x21a0
[ 2260.137194][T26357]  do_futex+0x22b/0x350
[ 2260.137219][T26357]  ? __pfx_do_futex+0x10/0x10
[ 2260.137252][T26357]  __x64_sys_futex+0x1e1/0x4c0
[ 2260.137281][T26357]  ? __pfx___x64_sys_futex+0x10/0x10
[ 2260.137307][T26357]  ? rcu_is_watching+0x12/0xc0
[ 2260.137350][T26357]  do_syscall_64+0xcd/0x250
[ 2260.137376][T26357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2260.137408][T26357] RIP: 0033:0x7fb0b718cde9
[ 2260.137427][T26357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2260.137450][T26357] RSP: 002b:00007fb0b7fd10e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2260.137473][T26357] RAX: ffffffffffffffda RBX: 00007fb0b73a5fa8 RCX: 00007fb0b718cde9
[ 2260.137489][T26357] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb0b73a5fa8
[ 2260.137504][T26357] RBP: 00007fb0b73a5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 2260.137519][T26357] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb0b73a5fac
[ 2260.137534][T26357] R13: 0000000000000000 R14: 00007ffcf5312930 R15: 00007ffcf5312a18
[ 2260.137565][T26357]  </TASK>
[ 2260.345880][T26361] ------------[ cut here ]------------
[ 2260.348459][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2260.354038][T26361] platform vkms: [drm] vblank wait timed out on crtc 0
[ 2260.381782][T26361] WARNING: CPU: 0 PID: 26361 at drivers/gpu/drm/drm_vblank.c:1307 drm_wait_one_vblank+0x334/0x550
[ 2260.392606][T26361] Modules linked in:
[ 2260.396821][T26361] CPU: 0 UID: 0 PID: 26361 Comm: syz.7.3296 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2260.407734][T26361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2260.418558][T26361] RIP: 0010:drm_wait_one_vblank+0x334/0x550
[ 2260.424511][T26361] Code: 85 ed 0f 84 54 01 00 00 e8 c9 37 60 fc 4c 89 e7 e8 f1 d3 8a 00 89 e9 4c 89 ea 48 c7 c7 a0 4f e8 8b 48 89 c6 e8 0d 10 21 fc 90 <0f> 0b 90 90 e9 0d fe ff ff e8 9e 37 60 fc 90 48 8d 7b 08 48 b8 00
[ 2260.445242][T26361] RSP: 0018:ffffc9000c41fb28 EFLAGS: 00010286
[ 2260.451346][T26361] RAX: 0000000000000000 RBX: ffff888024bb4000 RCX: ffffc90005442000
[ 2260.459429][T26361] RDX: 0000000000080000 RSI: ffffffff8179c896 RDI: 0000000000000001
[ 2260.467609][T26361] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[ 2260.475926][T26361] R10: 0000000000000001 R11: 00000000000166e8 R12: ffff888142f43010
[ 2260.483930][T26361] R13: ffff888141be2ee0 R14: 1ffff92001883f67 R15: 0000000000020fd1
[ 2260.492052][T26361] FS:  00007ff80c3206c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 2260.501162][T26361] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2260.507860][T26361] CR2: 0000001b31b0dff8 CR3: 0000000031b18000 CR4: 00000000003526f0
[ 2260.516508][T26361] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2260.524512][T26361] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2260.533336][T26361] Call Trace:
[ 2260.536680][T26361]  <TASK>
[ 2260.539634][T26361]  ? __warn+0xea/0x3c0
[ 2260.543729][T26361]  ? preempt_schedule_notrace+0x62/0xe0
[ 2260.549401][T26361]  ? drm_wait_one_vblank+0x334/0x550
[ 2260.554785][T26361]  ? report_bug+0x3c0/0x580
[ 2260.559336][T26361]  ? handle_bug+0x54/0xa0
[ 2260.563690][T26361]  ? exc_invalid_op+0x17/0x50
[ 2260.568482][T26361]  ? asm_exc_invalid_op+0x1a/0x20
[ 2260.573547][T26361]  ? __warn_printk+0x1a6/0x350
[ 2260.578374][T26361]  ? drm_wait_one_vblank+0x334/0x550
[ 2260.583688][T26361]  ? drm_wait_one_vblank+0x333/0x550
[ 2260.589142][T26361]  ? __pfx_drm_wait_one_vblank+0x10/0x10
[ 2260.594864][T26361]  ? mark_held_locks+0x9f/0xe0
[ 2260.599662][T26361]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 2260.605823][T26361]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2260.611059][T26361]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 2260.617548][T26361]  ? drm_vblank_get+0x150/0x280
[ 2260.622441][T26361]  drm_fb_helper_ioctl+0x156/0x1a0
[ 2260.628316][T26361]  ? __pfx_drm_fb_helper_ioctl+0x10/0x10
[ 2260.633985][T26361]  do_fb_ioctl+0x3d4/0x7d0
[ 2260.638479][T26361]  ? __pfx_do_fb_ioctl+0x10/0x10
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 2260.643475][T26361]  ? do_vfs_ioctl+0x513/0x1950
[ 2260.648351][T26361]  ? kmem_cache_free+0x2e2/0x4d0
[ 2260.653355][T26361]  ? __fget_files+0x206/0x3a0
[ 2260.658151][T26361]  fb_ioctl+0xe5/0x150
[ 2260.662337][T26361]  ? __pfx_fb_ioctl+0x10/0x10
[ 2260.667559][T26361]  __x64_sys_ioctl+0x190/0x200
[ 2260.672387][T26361]  do_syscall_64+0xcd/0x250
[ 2260.677187][T26361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2260.683119][T26361] RIP: 0033:0x7ff80b58cde9
[ 2260.687638][T26361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2260.707386][T26361] RSP: 002b:00007ff80c320038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2260.715955][T26361] RAX: ffffffffffffffda RBX: 00007ff80b7a5fa0 RCX: 00007ff80b58cde9
[ 2260.725042][T26361] RDX: 0000000000000000 RSI: 0000000040044620 RDI: 0000000000000008
[ 2260.733066][T26361] RBP: 00007ff80b60e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 2260.741958][T26361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2260.750071][T26361] R13: 0000000000000000 R14: 00007ff80b7a5fa0 R15: 00007ffee43d60d8
[ 2260.758162][T26361]  </TASK>
[ 2260.761212][T26361] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 2260.768506][T26361] CPU: 0 UID: 0 PID: 26361 Comm: syz.7.3296 Not tainted 6.14.0-rc2-syzkaller-00056-gab68d7eb7b1a #0
[ 2260.779268][T26361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2260.789326][T26361] Call Trace:
[ 2260.792607][T26361]  <TASK>
[ 2260.795540][T26361]  dump_stack_lvl+0x3d/0x1f0
[ 2260.800161][T26361]  panic+0x71d/0x800
[ 2260.804061][T26361]  ? __pfx_panic+0x10/0x10
[ 2260.808495][T26361]  ? show_trace_log_lvl+0x29d/0x3d0
[ 2260.813728][T26361]  ? drm_wait_one_vblank+0x334/0x550
[ 2260.819029][T26361]  check_panic_on_warn+0xab/0xb0
[ 2260.823989][T26361]  __warn+0xf6/0x3c0
[ 2260.827926][T26361]  ? preempt_schedule_notrace+0x62/0xe0
[ 2260.833494][T26361]  ? drm_wait_one_vblank+0x334/0x550
[ 2260.838796][T26361]  report_bug+0x3c0/0x580
[ 2260.843147][T26361]  handle_bug+0x54/0xa0
[ 2260.847304][T26361]  exc_invalid_op+0x17/0x50
[ 2260.851812][T26361]  asm_exc_invalid_op+0x1a/0x20
[ 2260.856671][T26361] RIP: 0010:drm_wait_one_vblank+0x334/0x550
[ 2260.862574][T26361] Code: 85 ed 0f 84 54 01 00 00 e8 c9 37 60 fc 4c 89 e7 e8 f1 d3 8a 00 89 e9 4c 89 ea 48 c7 c7 a0 4f e8 8b 48 89 c6 e8 0d 10 21 fc 90 <0f> 0b 90 90 e9 0d fe ff ff e8 9e 37 60 fc 90 48 8d 7b 08 48 b8 00
[ 2260.882186][T26361] RSP: 0018:ffffc9000c41fb28 EFLAGS: 00010286
[ 2260.888259][T26361] RAX: 0000000000000000 RBX: ffff888024bb4000 RCX: ffffc90005442000
[ 2260.896233][T26361] RDX: 0000000000080000 RSI: ffffffff8179c896 RDI: 0000000000000001
[ 2260.904205][T26361] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[ 2260.912174][T26361] R10: 0000000000000001 R11: 00000000000166e8 R12: ffff888142f43010
[ 2260.920145][T26361] R13: ffff888141be2ee0 R14: 1ffff92001883f67 R15: 0000000000020fd1
[ 2260.928130][T26361]  ? __warn_printk+0x1a6/0x350
[ 2260.932902][T26361]  ? drm_wait_one_vblank+0x333/0x550
[ 2260.938191][T26361]  ? __pfx_drm_wait_one_vblank+0x10/0x10
[ 2260.943826][T26361]  ? mark_held_locks+0x9f/0xe0
[ 2260.948595][T26361]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 2260.954669][T26361]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2260.959876][T26361]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 2260.965693][T26361]  ? drm_vblank_get+0x150/0x280
[ 2260.970547][T26361]  drm_fb_helper_ioctl+0x156/0x1a0
[ 2260.975667][T26361]  ? __pfx_drm_fb_helper_ioctl+0x10/0x10
[ 2260.981300][T26361]  do_fb_ioctl+0x3d4/0x7d0
[ 2260.985722][T26361]  ? __pfx_do_fb_ioctl+0x10/0x10
[ 2260.990668][T26361]  ? do_vfs_ioctl+0x513/0x1950
[ 2260.995450][T26361]  ? kmem_cache_free+0x2e2/0x4d0
[ 2261.000428][T26361]  ? __fget_files+0x206/0x3a0
[ 2261.005111][T26361]  fb_ioctl+0xe5/0x150
[ 2261.009182][T26361]  ? __pfx_fb_ioctl+0x10/0x10
[ 2261.013861][T26361]  __x64_sys_ioctl+0x190/0x200
[ 2261.018646][T26361]  do_syscall_64+0xcd/0x250
[ 2261.023153][T26361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2261.029059][T26361] RIP: 0033:0x7ff80b58cde9
[ 2261.033477][T26361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2261.053087][T26361] RSP: 002b:00007ff80c320038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2261.061515][T26361] RAX: ffffffffffffffda RBX: 00007ff80b7a5fa0 RCX: 00007ff80b58cde9
[ 2261.069506][T26361] RDX: 0000000000000000 RSI: 0000000040044620 RDI: 0000000000000008
[ 2261.077482][T26361] RBP: 00007ff80b60e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 2261.085461][T26361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2261.093430][T26361] R13: 0000000000000000 R14: 00007ff80b7a5fa0 R15: 00007ffee43d60d8
[ 2261.101413][T26361]  </TASK>
[ 2261.104704][T26361] Kernel Offset: disabled
[ 2261.109082][T26361] Rebooting in 86400 seconds..