last executing test programs:

5m21.297337074s ago: executing program 1 (id=1620):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS1\x00', 0x101e81, 0x0) (async)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS1\x00', 0x101e81, 0x0)
ioctl$auto_XFS_IOC_ERROR_INJECTION(0xffffffffffffffff, 0x40085874, &(0x7f0000000000)={<r1=>r0, 0x7fffffff})
openat2$auto(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x3ff, 0x1}, 0x1e51334b)

5m21.175818387s ago: executing program 1 (id=1621):
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb1, 0xd, 0x0) (async)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) (async)
r1 = io_uring_setup$auto(0xc, 0x0)
syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f00000000c0), r1) (async)
sendmsg$auto_TCP_METRICS_CMD_DEL(r1, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000540)=ANY=[@ANYRES16=r0, @ANYRES16=r0, @ANYBLOB="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"], 0x3c}, 0x1, 0x0, 0x0, 0xc0}, 0x20040844) (async)
r2 = pipe2$auto(0x0, 0x80) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
getrandom$auto(0x0, 0x0, 0x3)
madvise$auto(0x0, 0xf663, 0x15)
socket(0x21, 0x80000, 0x47b4) (async)
close_range$auto(0x2, 0x8000, 0x0)
close_range$auto(0x2, 0x8000, 0x0) (async)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x3, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x85a}, {0x100, 0x1, 0x2, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
io_uring_enter$auto(0xffffffffffffffff, 0x9, 0x820e, 0x29, 0x0, 0x18) (async)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) (async)
openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/setgroups\x00', 0x28001, 0x0) (async)
close_range$auto(0x2, 0x8, 0x100) (async)
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/members\x00', 0x341000, 0x0) (async)
keyctl$auto(0x5, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x4) (async)
mmap$auto(0x0, 0x400008, 0xdc, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0xfffffffffffffffe, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/mem\x00', 0x240081, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) (async)
write$auto(r2, 0x0, 0xfffffffffffffff6)
r3 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64)
fchdir$auto(r3)
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r4, 0x0, 0x20)

5m21.129423703s ago: executing program 1 (id=1622):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getsockopt$auto_SO_RCVPRIORITY(0xffffffffffffffff, 0x2, 0x52, &(0x7f00000001c0)='/dev/virtual_nci\x00', 0x0)
setresuid$auto(0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000440)={&(0x7f0000001900)=ANY=[], 0x558}, 0x1, 0x0, 0x0, 0x20008805}, 0x200088c0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8000ffff}, 0x4)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1)
sendmsg$auto_NL80211_CMD_SET_CQM(r1, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x100, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4040095}, 0x8080)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
ioctl$auto(0x1, 0x894c, 0x8)

5m20.315596589s ago: executing program 1 (id=1625):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x0, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), r0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
mount$auto(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='jfs\x00', 0x8000009, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0)
ioctl$auto_UBI_IOCDET(r1, 0x40046f41, 0x0)
pivot_root$auto(0x0, 0x0)
open(0x0, 0x76bd, 0x12)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/audit\x00', 0xb02, 0x0)
sendfile$auto(r2, r2, 0x0, 0xb2d)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000000, 0xe)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x40000080)
bind$auto(0x3, 0x0, 0x6a)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000400)='/dev/binderfs/binder0\x00', 0x40, 0x0)
ioctl$auto_BINDER_GET_EXTENDED_ERROR(r3, 0xc00c6211, 0x0)
ioctl$auto_BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000000c0)="fc1c4959f70e122f149126b9b200000000a4e7b2e9cecffdd8862cc076fc36007c01669efb2240afea9331aa94e0cd707e118da1f922c266862b91f1")

5m19.997769633s ago: executing program 1 (id=1627):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC1\x00', 0x42000, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f0000000300)={{@raw=0x6, 0x0, 0x8001, 0x2, "da14cf93e7670976d4df4660872c34e34ab92824711bacf3578dcec408cf5180d03a4d126edb3169db6d48ac"}, 0x1, @iec958={"28f6a86309b1e098a7dfa272f95c4c28615313f81f02a4eb", "77a2e9b1b0224a8ef0ac25ff0db0b6ec20c55cccbf4e9b253241777363b62fbe19f64f49f5ed0205399a691cb53e4086d6ec9dcbc5173fee439c2db7f3d5f2d4dd2a267a11e3c0cc771cdddef6bdb02a85cf5ea2ecc26fa3fe291d1e45404619547117c0d45a0de14bc3b9c22d705152efa9d2cfb220c6210dd7606723fb4d6d8ea3e197b19203c65d90e3c761870cbd392bea", 0x0, "e8134be5"}, "a8949c7d9c57acd66da4c5f111166031ad47ebfed172b36a28d7b0204e3a90e9a6c41064df45da18212d9c4e61a29b8146bd0c0284d89751eb5c58cb32c2abf739599063c9a0820f08f1c1b3645f00006dcd033a712822785eeb6a2c41b6d7c00f5e965c1d0000000000000000000000000400"})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x6, 0x0, 0x0, 0xffffffd6)
tkill$auto(0x1, 0x7)

5m19.331002591s ago: executing program 1 (id=1629):
mmap$auto(0x0, 0x400008, 0xe3, 0xbb72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mremap$auto(0x110c230000, 0x0, 0x2000101, 0x3, 0xf000) (async)
r0 = socket(0xa, 0x2, 0x73)
sendto$auto(r0, 0x0, 0x4, 0xfffffffe, &(0x7f0000000000)=@generic={0xa, "e208004002de00"}, 0x1c) (async)
socket(0x2, 0x80002, 0x73) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xff, 0x2, 0x9}, 0x9, 0x0) (async)
clone3$auto(&(0x7f0000000040)={0x4, 0xfffffffffffffff8, 0x100000001, 0xffffffffffff7fff, 0x1, 0x9, 0x1, 0x5, 0x1, 0x1, 0x9}, 0xa50) (async)
landlock_restrict_self$auto(r2, 0x0) (async)
r3 = socket(0x2, 0x1, 0x0)
connect$auto(r3, &(0x7f00000000c0)=@nl=@unspec, 0x9) (async)
r4 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x488243, 0x0)
mlockall$auto(0x7) (async)
mmap$auto(0xfffffffffffffffc, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) (async)
read$auto_proc_sessionid_operations_base(r4, &(0x7f00000000c0)=""/4073, 0xfe9) (async)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async)
shmctl$auto_IPC_RMID(0x6, 0x0, &(0x7f00000011c0)={{0x0, 0xee01, 0x0, 0x1349, 0x2, 0x1, 0x7}, 0xfffffff7, 0x1, 0x0, 0x99b6, @raw=0x3, @inferred, 0x4, 0x0, &(0x7f0000001100)="6240a791031790bfe56b20e1796ae3868a11bde00f25882c9308fd66e9b32386f89cb6517609fd41b669cb4f91a62b5a5db4728f36563c87be08b988bf2dab6a02fbfc900d6d5a07ec2e85014f028e9f7980b37165bcfcede5f83d49", &(0x7f0000001180)="1affb98fe0d15aac800e51ffff84599e3cf4"}) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8000, 0x0) (async)
sendmsg$auto_IPVS_CMD_FLUSH(r0, 0x0, 0x20000000) (async)
socket(0xa, 0x3, 0x6) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
shutdown$auto(0x200000003, 0x2) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb5, 0x10, 0x7, 0x4, 0xffffffffffffffff, 0xa, "2af051a940806ec05be276cfc83ce63f", <r5=>0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r5, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92)

5m18.649708778s ago: executing program 32 (id=1629):
mmap$auto(0x0, 0x400008, 0xe3, 0xbb72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mremap$auto(0x110c230000, 0x0, 0x2000101, 0x3, 0xf000) (async)
r0 = socket(0xa, 0x2, 0x73)
sendto$auto(r0, 0x0, 0x4, 0xfffffffe, &(0x7f0000000000)=@generic={0xa, "e208004002de00"}, 0x1c) (async)
socket(0x2, 0x80002, 0x73) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xff, 0x2, 0x9}, 0x9, 0x0) (async)
clone3$auto(&(0x7f0000000040)={0x4, 0xfffffffffffffff8, 0x100000001, 0xffffffffffff7fff, 0x1, 0x9, 0x1, 0x5, 0x1, 0x1, 0x9}, 0xa50) (async)
landlock_restrict_self$auto(r2, 0x0) (async)
r3 = socket(0x2, 0x1, 0x0)
connect$auto(r3, &(0x7f00000000c0)=@nl=@unspec, 0x9) (async)
r4 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x488243, 0x0)
mlockall$auto(0x7) (async)
mmap$auto(0xfffffffffffffffc, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) (async)
read$auto_proc_sessionid_operations_base(r4, &(0x7f00000000c0)=""/4073, 0xfe9) (async)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async)
shmctl$auto_IPC_RMID(0x6, 0x0, &(0x7f00000011c0)={{0x0, 0xee01, 0x0, 0x1349, 0x2, 0x1, 0x7}, 0xfffffff7, 0x1, 0x0, 0x99b6, @raw=0x3, @inferred, 0x4, 0x0, &(0x7f0000001100)="6240a791031790bfe56b20e1796ae3868a11bde00f25882c9308fd66e9b32386f89cb6517609fd41b669cb4f91a62b5a5db4728f36563c87be08b988bf2dab6a02fbfc900d6d5a07ec2e85014f028e9f7980b37165bcfcede5f83d49", &(0x7f0000001180)="1affb98fe0d15aac800e51ffff84599e3cf4"}) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8000, 0x0) (async)
sendmsg$auto_IPVS_CMD_FLUSH(r0, 0x0, 0x20000000) (async)
socket(0xa, 0x3, 0x6) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
shutdown$auto(0x200000003, 0x2) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb5, 0x10, 0x7, 0x4, 0xffffffffffffffff, 0xa, "2af051a940806ec05be276cfc83ce63f", <r5=>0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r5, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92)

3m46.725390391s ago: executing program 0 (id=1838):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_udc.3/udc/dummy_udc.3/a_hnp_support\x00', 0x100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000240)=""/140, 0x8c)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/mm/hugepages/hugepages-1048576kB/nr_hugepages\x00', 0x480, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000340)=""/152, 0x98)
ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000001040)={0x80, 0x6, 0x2fd, 0x1, 0x101, 0x0, &(0x7f0000000040)})
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/dummy_hcd.3/usb4/power/autosuspend\x00', 0xc0002, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000038c0), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r6, &(0x7f0000003980)={0x0, 0x0, &(0x7f0000003940)={&(0x7f0000003900)={0x1c, r7, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0xba}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8080}, 0x20008800)
sendmsg$auto_L2TP_CMD_SESSION_MODIFY(r5, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="5b3b39e26cd92fe6d66eb2b99f4178b7b23ded9524f0546fd5efdc3fa0560df1b1caeed4efff9e8e510b67332a565bc534c5e21ccb289b28e2d2dd0bf7cec6992a1f90b50c00000000000075645737ac25ba6a16520cb8682e0908ddaede2b40bc79", @ANYRES16=r7, @ANYBLOB="00032bbd7000fbdbdf2507000000050004000000000008000900e500000006001d0006000000"], 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000)
write$auto_ocfs2_control_fops_stack_user(r4, &(0x7f0000003900)='\t', 0x1)
utimensat$auto(r1, &(0x7f0000001c80)='\x00', &(0x7f0000001cc0)={0x23, 0x3fffffff}, 0x1000)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000200), r5)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r8, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, r9, 0x800, 0x70bd29, 0x25dfdbff, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0xd1}]}, 0x1c}}, 0x4840)

3m46.417637242s ago: executing program 0 (id=1841):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x64, r1, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_HASH={0xc, 0xb, 0x9}, @OVS_PACKET_ATTR_MRU={0x6, 0x9, 0xaf}, @OVS_PACKET_ATTR_MRU={0x6, 0x9, 0x2}, @OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "0750f7d7f6582ffdcac753bfc4ef"}, @OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "89766717d8d2398a77e447427dd9"}]}, 0x64}, 0x1, 0x0, 0x0, 0xe5ba0217584905b}, 0x4)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/platform/vivid.0/video4linux/video19/index\x00', 0x0, 0x0)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
r4 = prctl$auto(0xaf6d, 0x1, 0x0, 0xffffffffffffffff, 0x5)
ioctl$auto(r3, 0x4b41, r4)
read$auto_nst_seq_fops_netdebug(r4, &(0x7f0000000080)=""/174, 0xae)
ioctl$auto_IOCTL_VMCI_VERSION2(r4, 0x7a7, 0x0)
write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x40000f, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/protocols\x00', 0x100, 0x0)
socket(0x22, 0x2, 0x3)
setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x6)
shmctl$auto_SHM_INFO(0x81, 0xe, &(0x7f00000005c0)={{0xc2, <r5=>0x0, 0x0, 0x8, 0x0, 0x8, 0x565b}, 0x80000001, 0x2, 0xd, 0xfffffffffffff96f, @raw=0xb, @inferred, 0xa, 0x0, &(0x7f0000000300)="3cc8b46d12c76c7863f040b6334cef7fe27263de3502277bacc77fc3ba2edc53a03d5868f9d3bdc9824ae3b28a9650f30fd13918cdfee86153662f73882f60fc33b68ef3421b6450505958c1264a952bf9d325ae932e5af4417468210f54422788ab4d63fe2bc54ac097ae913dd9a6322551245e02612f2fd490401d8b1e314b2e36e25c0cc9e1b7fcf8efdb5d41ccfb8a4d094dbfb20030dd52f6ea35b2fdc4f27d5813b72f3f8d1854bcaa95d32892a49c3dc77c6c61d06b80d900b37cdfd8bdf3b526642b7ab7a4ffd598030ad37fc822b33c3587f6b9169db1b87922bd6966fd8c262ff60288ff0bea6347ab26194ac4c3f50f746cf049db2b87", &(0x7f0000000400)="399dfaf22b1430ad798e1642d1246653193d27953eb7785afdd43f86409d219436660f88"})
shmctl$auto_SHM_STAT(0x6, 0xd, &(0x7f0000000780)={{0x81, <r6=>0xee01, 0xee00, 0x7, 0xdc85, 0xf27, 0x5}, 0x37bc, 0x800, 0xfff, 0xe08f, @inferred, @raw=0x7, 0x8, 0x0, &(0x7f0000000640)="cc45a07eb437e696f61823e15f10156fbb46ffd78efaccf2e3fec8eaf286a9d5ba4bad56de7f", &(0x7f0000000680)="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"})
r7 = socket(0x23, 0x80805, 0x0)
mmap$auto(0x40000000000000, 0x20009, 0xf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
poll$auto(&(0x7f0000000080)={<r8=>r7, 0xb, 0xb}, 0x7, 0x4003ff)
lseek$auto(0xffffffffffffffff, 0x0, 0x2)
ppoll$auto(0x0, 0x1, 0x0, 0x0, 0x8)
setsockopt$auto(r8, 0x113, 0x1, 0x0, 0x81)
r9 = setfsgid$auto(0xee01)
ioctl$auto_KVM_GET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee2, &(0x7f0000000140)={0x6, r9, 0x3, 0x1})
keyctl$auto(0x3, r5, r6, r9, 0xffffffff)
write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)

3m45.303438471s ago: executing program 0 (id=1844):
r0 = openat$auto_msft_opcode_fops_(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/bluetooth/hci1/msft_opcode\x00', 0x101000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x5eff, r0, 0x8000)
r1 = socket(0xa, 0x2, 0x0)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/ext4/sda1/mb_stats\x00', 0x88000, 0x0)
pread64$auto(r2, 0x0, 0x20000000058, 0x3) (async)
pread64$auto(r2, 0x0, 0x20000000058, 0x3)
openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/current_tracer\x00', 0x20200, 0x0)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(0xffffffffffffffff, 0x0, 0x20040000) (async)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(0xffffffffffffffff, 0x0, 0x20040000)
write$auto(0x3, 0x0, 0xfffffdef) (async)
write$auto(0x3, 0x0, 0xfffffdef)
ioctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff) (async)
ioctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff)
ioctl$auto_SNDCTL_DSP_GETTRIGGER(0xffffffffffffffff, 0x80045010, &(0x7f0000004440))
syz_clone3(&(0x7f0000000640)={0x108000, 0x0, 0x0, 0x0, {0x15}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x101001, 0x0) (async)
r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
ioctl$auto_UI_DEV_CREATE(r3, 0x5501, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
acct$auto(&(0x7f0000000100)='./cgroup/cgroup.subtree_control\x00')
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
acct$auto(0x0)
fcntl$auto_F_ADD_SEALS(r1, 0x409, 0x9c8)
setsockopt$auto_SO_WIFI_STATUS(r1, 0x0, 0x29, 0x0, 0xbff)

3m44.863750265s ago: executing program 0 (id=1846):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000002340), 0xffffffffffffffff) (async)
rseq$auto(&(0x7f00000001c0)={0xe, 0x20401, 0x5fc, 0x10000006, 0xffffffff, 0x6}, 0x8000, 0x0, 0x6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vhci_hcd.12/power/runtime_suspended_time\x00', 0x2, 0x0)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) (async)
r0 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, 0x0, 0x4, 0x0) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r2) (async, rerun: 64)
madvise$auto(0x1000000005, 0x200007, 0x1d) (async, rerun: 64)
write$auto(0xffffffffffffffff, 0x0, 0x6) (async)
r3 = openat$auto_lockdown_ops_lockdown(0xffffffffffffff9c, &(0x7f0000000000), 0xa0042, 0x0)
write$auto(r3, &(0x7f00000001c0)='-\x001c\xc2.b\x97\x1a\xf4\xd8\x1a\x1c\xb2\x9db\xb1\xec\xdeGDr=\xc2\xdc\xdf\x8cg\xa10Fzk\x86bd\xfc\x19\x96y\x9cYy\xc1\xc4\xf1\x0fH\x0f2\xa6\xbd\x9b\xe8\x97\xb0>,\xbf\xb8Kje\x05\xc4\xf8\x01\xd3]\x7f\xb8\x83S\xaf\xc5\xceZZlTO\xf5\x81`$\xec=|1\x05\xa9\x95Q\xf6\a\x81)\x94\xdaJ.\x04\xf2\xd7O\xa7=u1\xcd$\x17(t\xa4.\x1d\xfd\xf1\xc8e\x9c\xb4k\xfd\x94+B\x17o\\>4\xb7d5\a\xef\xb6\xe5F\xba\xf9Q\xdb\xd0\xb5\xa6\x1b\\\x0e\xb7\xab\xc3\x7fO`\x0e\x15\xca\x01z\xc23\xa1\x03\xdd@\xf3', 0xfdef)
sysfs$auto(0x2, 0x10000000000002e, 0x0) (async, rerun: 64)
r4 = fsopen$auto(0x0, 0x1) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_NEW_STATION(0xffffffffffffffff, 0x0, 0x40)
mmap$auto(0xff0f4000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x8f80, 0x0) (rerun: 64)
mremap$auto(0x100000007, 0x1, 0xfffffffd, 0x3, 0xfffff001) (async)
r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000031c0)='/dev/ttyua\x00', 0x109000, 0x0)
r6 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2) (async)
read$auto_proc_pid_maps_operations_internal(r6, &(0x7f0000000900)=""/4096, 0x1000)
fsconfig$auto(r4, 0x0, 0x0, 0x0, 0x0)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) (async)
r7 = setfsuid$auto(0xee00)
setreuid$auto(r7, 0x0) (async)
sendmsg$auto_NETDEV_CMD_NAPI_GET2(r4, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRESDEC=r0, @ANYBLOB="00012abd7000fddbdf250b00000008000100", @ANYRES32=r0, @ANYRESHEX=r2, @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYRESDEC=0x0, @ANYRES32=0x0, @ANYRES8=r4, @ANYRESDEC=r5], 0x34}, 0x1, 0x0, 0x0, 0x4004804}, 0x805)

3m44.698952536s ago: executing program 0 (id=1848):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f0000000200), 0x40, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), r0)
sendmsg$auto_SMC_PNETID_ADD(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="b55d02d08b2547fbfea39303a19274ff1c90adf272cfee5af39a673f2a", @ANYRES16=0x0, @ANYBLOB="000829bd7000fedbdf25020000000a0002005c2a272d2b000000070001002b2d00000b0003006261746164760000"], 0x34}, 0x1, 0x0, 0x0, 0x40c0}, 0x84) (async)
sendmsg$auto_SMC_PNETID_ADD(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="b55d02d08b2547fbfea39303a19274ff1c90adf272cfee5af39a673f2a", @ANYRES16=0x0, @ANYBLOB="000829bd7000fedbdf25020000000a0002005c2a272d2b000000070001002b2d00000b0003006261746164760000"], 0x34}, 0x1, 0x0, 0x0, 0x40c0}, 0x84)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20480, 0x0) (async)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20480, 0x0)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) (async)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
io_uring_setup$auto(0x6, 0x0) (async)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20009, 0x12, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x59, &(0x7f00000003c0)={0x4, 0xd, 0x20000005, 0x80000001, 0x7, 0x8, <r3=>0xffffffffffffffff, [0x0, 0x1, 0x4], {0xfff7fff9, 0x6, 0x5, 0x29f, 0x100, 0x8, 0x101, 0x6, 0xffffffff80000000}, {0x7, 0x1, 0x53, 0x5, 0x1e, 0x4, 0x76c5, 0x8, 0x100000000}})
ioctl$auto_XFS_IOC_PATH_TO_FSHANDLE(r3, 0xc0385868, &(0x7f0000000500)={r1, &(0x7f00000002c0)="1fff2bdbcf9640bf4f07129f9583d24867a4cec10b3cff8b563938f6b05b134d55eb1a5420d39f4f7e878e7d91b255290db129998412df08787af5a6e9065116756582a8ab199a224e7a", 0x5, &(0x7f0000000340), 0x4, &(0x7f0000000440)="05e616c53fd866bfffd99bfa020c16d2cea7448b66ba42465e2a2633ba6c53b0fa9eba4a2914d4271f208213a1192886e723aeed6f7e5555785cde6f083a0eb0070a6ba967b2398402f70307f472f3ddb522e117df5a7daf381c54ee5a98", &(0x7f0000000380)=0x8}) (async)
ioctl$auto_XFS_IOC_PATH_TO_FSHANDLE(r3, 0xc0385868, &(0x7f0000000500)={r1, &(0x7f00000002c0)="1fff2bdbcf9640bf4f07129f9583d24867a4cec10b3cff8b563938f6b05b134d55eb1a5420d39f4f7e878e7d91b255290db129998412df08787af5a6e9065116756582a8ab199a224e7a", 0x5, &(0x7f0000000340), 0x4, &(0x7f0000000440)="05e616c53fd866bfffd99bfa020c16d2cea7448b66ba42465e2a2633ba6c53b0fa9eba4a2914d4271f208213a1192886e723aeed6f7e5555785cde6f083a0eb0070a6ba967b2398402f70307f472f3ddb522e117df5a7daf381c54ee5a98", &(0x7f0000000380)=0x8})
r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/pagemap\x00', 0x0, 0x0)
readv$auto(r4, &(0x7f0000000400)={0x0, 0x40}, 0x6)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2)
ioctl$sock_SIOCGIFINDEX(r2, 0x460f, 0x0)
r5 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x8300, 0x0)
msync$auto(0x200000, 0x2000000005, 0x6)
setsockopt$auto_SO_NO_CHECK(r0, 0x5, 0xb, &(0x7f0000000140)='/dev/rtc0\x00', 0x5)
read$auto_hwsim_fops_ps_(r3, &(0x7f0000000540)=""/226, 0xe2) (async)
read$auto_hwsim_fops_ps_(r3, &(0x7f0000000540)=""/226, 0xe2)
mq_notify$auto(r5, &(0x7f0000000180)={@sival_int=0x18000000, @inferred, 0x3, @_sigev_thread={0x0, &(0x7f0000000100)}})
mknod$auto(&(0x7f0000000000)='./file0\x00', 0x7f, 0x6) (async)
mknod$auto(&(0x7f0000000000)='./file0\x00', 0x7f, 0x6)
move_mount$auto(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x6)
mmap$auto(0x0, 0x10, 0x4000000000df, 0x4000eb1, r0, 0x10000)
ioctl$auto_EVIOCSREP(0xffffffffffffffff, 0x40084503, 0x0)
ioctl$auto_RTC_PIE_ON(r5, 0x7005, 0x0) (async)
ioctl$auto_RTC_PIE_ON(r5, 0x7005, 0x0)
readv$auto(r5, &(0x7f00000004c0)={0x0, 0x3fffffffffffffd}, 0x4) (async)
readv$auto(r5, &(0x7f00000004c0)={0x0, 0x3fffffffffffffd}, 0x4)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r7=>0x0})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
sendmsg$auto_BATADV_CMD_SET_MESH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRESOCT=r0, @ANYBLOB="010027bd7040f9dbdf250f00000008000300", @ANYRES32=r7, @ANYRES64=r4], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x20044000)

3m44.39590908s ago: executing program 0 (id=1849):
mmap$auto(0x10, 0x800000000000083, 0x4000000000dd, 0x40eb2, 0xffffffffffffffff, 0x300000000000)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
socket(0x25, 0x80000, 0x6) (async)
r0 = socket(0x25, 0x80000, 0x6)
getsockopt$auto(r0, 0x0, 0x484, 0x0, 0x0) (async)
getsockopt$auto(r0, 0x0, 0x484, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff001, 0x2) (async)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x18, 0x2, 0x0) (async)
r1 = socket(0x18, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000) (async)
mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'dvmrp0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'dvmrp0\x00'})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002) (async)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x80003, 0x300)
socket(0xa, 0x3, 0x6)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x842, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x7ff)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
socket(0x23, 0x1, 0x6) (async)
r2 = socket(0x23, 0x1, 0x6)
close_range$auto(0x2, 0x8000, 0x0) (async)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x0, 0x0)
timerfd_settime$auto(r2, 0x3, 0x0, 0x0)
read$auto(0x3, 0x0, 0x80)

3m28.840492312s ago: executing program 33 (id=1849):
mmap$auto(0x10, 0x800000000000083, 0x4000000000dd, 0x40eb2, 0xffffffffffffffff, 0x300000000000)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
socket(0x25, 0x80000, 0x6) (async)
r0 = socket(0x25, 0x80000, 0x6)
getsockopt$auto(r0, 0x0, 0x484, 0x0, 0x0) (async)
getsockopt$auto(r0, 0x0, 0x484, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff001, 0x2) (async)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x18, 0x2, 0x0) (async)
r1 = socket(0x18, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000) (async)
mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'dvmrp0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'dvmrp0\x00'})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002) (async)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x80003, 0x300)
socket(0xa, 0x3, 0x6)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x842, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x7ff)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
socket(0x23, 0x1, 0x6) (async)
r2 = socket(0x23, 0x1, 0x6)
close_range$auto(0x2, 0x8000, 0x0) (async)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x0, 0x0)
timerfd_settime$auto(r2, 0x3, 0x0, 0x0)
read$auto(0x3, 0x0, 0x80)

2m22.232796991s ago: executing program 5 (id=2080):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = prctl$auto(0x4e, 0x1, 0x0, 0x0, 0x0)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x2a1, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0xfffffffd, 0x1, 0x40, 0x76c5, 0x100008, 0x100000000}})
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x140, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_register$auto_IORING_REGISTER_PBUF_STATUS(r0, 0x1a, &(0x7f0000000100)="679d68c35d3f28642dea848a6749e4f666c927b0b42ef854ea9da47d2f2ed31e9f6bdad8", 0x400)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, 0x0, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5)
finit_module$auto(0x3, 0xfffffffffffffffe, 0x400000000004)
socket(0xa, 0x1, 0x84)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80a0041}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x20, 0x0, 0x800, 0x70bd2b, 0x25dfdbfb, {}, [@HWSIM_ATTR_USE_CHANCTX={0x4}, @HWSIM_ATTR_FLAGS={0x8}]}, 0x20}, 0x1, 0x0, 0x0, 0x3dc52b2c616f8b96}, 0x80c0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
socketpair$auto(0x1e, 0x3, 0xfffffffe, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
mmap$auto(0x800, 0x2000c, 0xdf, 0x20eb1, 0xffffffffffffffff, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)

2m20.655880746s ago: executing program 5 (id=2085):
mmap$auto(0x0, 0x40000c, 0x45bd, 0x9b72, 0x2, 0x8000)
epoll_create$auto(0x4)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/block/ram6/queue/atomic_write_unit_max_bytes\x00', 0x20000, 0x0)
read$auto(r0, &(0x7f0000000040)='^{-!S\x84\x00', 0x9)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
socket(0x18, 0x6, 0x106)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb5, 0x401, 0x41)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5t\x03\x00\x00\x00\x00\x00\x00\x00\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2\x1d\xeb\x11wQ\x7fE\x82\xb5l\xa0\x04\xea\x02\xb6/\xc1\xe7\xb9\xce^\xf0)\x02\x1b2\x04\xb9X#u\xd4\x85M4<\xbe\x95\xc5b=\xc9\xb5$\x14*\x8fe?v]TZ\xb26_\x16[\xfa\xb5\xa1\xf6\xcf1\xadV\xdb8\x1azv7\x84]\xedE\xf7\xc9\x11[>\xa5[\x9f6\xba\xde-D\xef\x8b+\x82My\xb0\xdfo{YY~\x81\xc7\xd5\x0fp\x10F9\x04/\xcc\xa2\xdf\x01)\xaf\xd6Bm\xce\xac\xd9\xd7\xe5n/r\xde\xda\x9c\xae\t\xea\xbd\xc8|\xad\xa3\x9b\xd1t\xb9\xa3\x86\x98\xe5\xae\xf3\xe9\x19\xe6\xa3er4g\x95\x92\x90\x18ET\xda6\x0e\xda\xa8\x10\x86h|\b\xe5\xeb+\x82= \x85i\xd1)\x11\x875H\x1a8\xbbd\xb2w\x95\xb0\xa2HSA\xbf\xb3:\x03\x9b\xdc\xf4f|=\xb7m5^\xad\x9b\x19\xd8<\xa8\xac!\x10\va\xc7\xeb\xf7\x8a\xf5\"\xee\xf3\\\xe5\xb1\xf0C\x04\xa5\x8c\xd3\x9b/U\x17\x88\x9f\xe6\x12_\x0e\xdb\xc6\xeb\xc7\\\x1c\x9c\xa9fsQk\xce\x1dPg\xd1\xb7\x12\x9b\x16n\x9d(\xe6k\x13\x8c\xca\x1f\xe1d%{\x83N\x97\xe4\xcdZ\xbe[j\xdd\xe3\xca\xf3\x1e\x06}\xa5\x03iT=\xcc\xc6}@s', 0x5)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
lseek$auto(r2, 0xfffffffffffffffd, 0x1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x8000000000000007, 0xa505}, 0x800}, 0x7, 0x4008)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000280)=""/65, 0x41)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x0, &(0x7f00000000c0)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x7, 0x4008)
socket(0x29, 0x2, 0x0)
setreuid$auto(0x4, 0x8)
r4 = socket(0x29, 0x2, 0x0)
ioctl$auto(r4, 0x89a3, 0x24)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r5, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0)
ioctl$auto_PPPIOCCONNECT(r1, 0x4004743a, &(0x7f0000000080)=0xbd8)

2m18.190131734s ago: executing program 5 (id=2090):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/khugepaged/alloc_sleep_millisecs\x00', 0x20681, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)='5j}', 0x3)
open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
statfs$auto(&(0x7f0000000180)='}[,&*}\x00', 0x0)
clone$auto(0x100000020003b49, 0x80000000002, 0x0, 0x0, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x2, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x2, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
landlock_add_rule$auto(r1, 0x1, 0x0, 0x0)
mmap$auto(0x0, 0xe985, 0x5e, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_CLAIMINTERFACE(r2, 0x8004550f, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/khugepaged/alloc_sleep_millisecs\x00', 0x20681, 0x0) (async)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)='5j}', 0x3) (async)
open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) (async)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) (async)
statfs$auto(&(0x7f0000000180)='}[,&*}\x00', 0x0) (async)
clone$auto(0x100000020003b49, 0x80000000002, 0x0, 0x0, 0x4) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
close_range$auto(0x2, 0x8000, 0x0) (async)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x2, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x2, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) (async)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) (async)
landlock_add_rule$auto(r1, 0x1, 0x0, 0x0) (async)
mmap$auto(0x0, 0xe985, 0x5e, 0xeb1, 0x401, 0x8000) (async)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0) (async)
ioctl$auto_USBDEVFS_CLAIMINTERFACE(r2, 0x8004550f, 0x0) (async)

2m17.891427695s ago: executing program 5 (id=2091):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
socket(0x2b, 0x1, 0x1)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20001, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)="8c66381957a4f7888c094143a0c718e5e4d04a0030448293116b01bb6fe18e8345aef2917b9c680544a343ba8e006cd4f6434ab1a5e700778e9fc7ba9af47487ca1f9d52939c66c96da4ce5a4f25feef3efd5b8c7733")
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={0x2, 0x2, 0x4, 0x0, 0x8, 0x7, 0xffffffffffffffff, 0x6, 0x8001}, 0x101)
r2 = eventfd2$auto(0x6af3, 0x800)
readv$auto(r2, &(0x7f0000000580)={0x0, 0x29e4}, 0xe8)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
listen$auto(0x3, 0x81)
read$auto_fops_u8_(r2, &(0x7f0000001e40)=""/109, 0x6d)
openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'\x00', <r3=>0x0})
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="e3b72bbd7000fcdbdf2519000000200001801400020064756d6d79300000080001000040fa0000000000", @ANYRES32=r3, @ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0x4840}, 0x48000)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_ADD_RXSC(r4, &(0x7f0000004100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x2c, r5, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x10, 0x2, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x6}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040801}, 0x4000040)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r1)

2m16.908328009s ago: executing program 5 (id=2095):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/007/001\x00', 0xa901, 0x0)
inotify_init1$auto(0x3000000000000)
bpf$auto(0x3, &(0x7f00000001c0)=@query={@target_fd, 0x1, 0x86e6, 0x9, 0x63, @count=0x4, 0x0, 0x6, 0x2, 0x10004, 0xb716}, 0xc)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x100)
bpf$auto(0x0, &(0x7f00000001c0)=@token_create={0x1}, 0x6f6)
mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='nfs\x00\x00', 0x200, &(0x7f00000001c0))
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
socket(0x1e, 0x1, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
sysfs$auto(0x2, 0xe, 0x0)
fcntl$auto_F_DUPFD_QUERY(0xffffffffffffffff, 0x403, r0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000080), 0x8040, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x40000403c6f2b, 0x0)
r3 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80000, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r3, 0x40146f2c, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)

2m15.317886576s ago: executing program 5 (id=2103):
mmap$auto(0x5, 0x8e, 0x8, 0x8000000000000010, 0xffffffffffffffff, 0x300000000000)
socket(0xa, 0x3, 0x3b)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x890)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xcd)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/slab/kmalloc-64/objects\x00', 0x20000, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram1/queue/add_random\x00', 0x1a1842, 0x0)
write$auto(r1, &(0x7f0000000000)='9\x00d1L\xff\x15\xba\xa17=(\xc1\xf8\xff\xff\v\xb5^\xa1/[', 0x4)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram9\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
ioctl$auto_BLKRRPART(r2, 0x125f, 0x0)
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffa, 0xe983, 0x2, 0xeb1, 0xffffffffffffffff, 0x5fa)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
socketpair$auto(0x1, 0x3, 0x5, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
ioctl$auto_TCSBRKP2(r3, 0x5425, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptydb\x00', 0x0, 0x0)
ioctl$auto_TCFLSH2(r4, 0x5408, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRESDEC=r2, @ANYBLOB="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"], 0x3c}, 0x1, 0x0, 0x0, 0x4044000}, 0x20048880)
socket$nl_generic(0x10, 0x3, 0x10)

2m0.021219872s ago: executing program 34 (id=2103):
mmap$auto(0x5, 0x8e, 0x8, 0x8000000000000010, 0xffffffffffffffff, 0x300000000000)
socket(0xa, 0x3, 0x3b)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x890)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xcd)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/slab/kmalloc-64/objects\x00', 0x20000, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram1/queue/add_random\x00', 0x1a1842, 0x0)
write$auto(r1, &(0x7f0000000000)='9\x00d1L\xff\x15\xba\xa17=(\xc1\xf8\xff\xff\v\xb5^\xa1/[', 0x4)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram9\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
ioctl$auto_BLKRRPART(r2, 0x125f, 0x0)
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffa, 0xe983, 0x2, 0xeb1, 0xffffffffffffffff, 0x5fa)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
socketpair$auto(0x1, 0x3, 0x5, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
ioctl$auto_TCSBRKP2(r3, 0x5425, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptydb\x00', 0x0, 0x0)
ioctl$auto_TCFLSH2(r4, 0x5408, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRESDEC=r2, @ANYBLOB="1b0026bd7400fddbdf2503000000040008000c00038008000680b14e100712000100898771f1c19f17790485908286dd0000040002802cc0a743c029cc64baefcd60f9ff4b6b5985c8f4348ac842989cd7b11faf313dfc98a1080853a9755416bc9a8152587bc259b90b8b427cfaac10b81ee47216ccd706d28056a05a4ee4a20a2d9f7edbdd5f2d03cf9b1a1b416364ba3138d6428d18f0ac9ee7daf76f83cbf52949642a1e6fae9f2b2bf889ee93f2fcce5cb308025285cb593e2b87768160fd34af21a9ad953e7c14aa587bfe9093b3f88036cbddd1db491f477b3a63a4d42f7ceffd9bff2e733b00e6d9a710b626b2fbddb58cf2a6d246574a5617a4f9002b552fe7a4dd6f53b2b0dc000039c8774b12b8919e3e5ec0869444622169f091efb19176cdd2659ce26e9b3c0cacc851d378cda4a979d752893a7fd57a2f8911b0093b5be25a032eda603354a9e4efee5dfcbfd302a72f1f625b06dea40000d11b8a06867beccefc578c1c987d0d2eddfc893245c2862462"], 0x3c}, 0x1, 0x0, 0x0, 0x4044000}, 0x20048880)
socket$nl_generic(0x10, 0x3, 0x10)

16.077410802s ago: executing program 2 (id=2417):
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) (async)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socket(0xa, 0x3, 0xff)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) (async, rerun: 32)
mmap$auto(0x0, 0x5f, 0x4000000000df, 0xeb1, 0x401, 0x8000) (rerun: 32)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7114}, 0x8) (async, rerun: 32)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpu1/power/pm_qos_resume_latency_us\x00', 0x183042, 0x0) (rerun: 32)
sendfile$auto(r0, r0, 0x0, 0x3)
r1 = socket(0x1e, 0x1, 0x0)
getsockname$auto(r1, &(0x7f0000000000), &(0x7f0000000040)=0x3)
close_range$auto(0x2, 0xa, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x1e, 0x4, 0x0) (async)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14) (async)
setsockopt$auto(r2, 0xe, 0x87, 0x0, 0x4) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

13.383759852s ago: executing program 2 (id=2426):
shmget$auto(0x8, 0x10565, 0x7ff)
shmat$auto(0x0, &(0x7f0000000000)='\xfb\x83/\xf2!\xdb\xcf4A\xb9\xf8\x1b\xcd\xb8}\xb85', 0xfffffffa)
utime$auto(0x0, &(0x7f0000000740)={0x7f, 0xb})
r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0xc4000, 0x42)
msgctl$auto_IPC_STAT(0x10, 0x2, &(0x7f0000000140)={{0xf3, 0xffffffffffffffff, <r1=>0xee01, 0x0, 0x8, 0x200, 0x5}, &(0x7f00000000c0)=0x8, &(0x7f0000000100)=0xa, 0x5, 0x7, 0x53, 0x81, 0x5, 0x4, 0xfffa, 0x1, @inferred, @raw=0xc})
socket(0x15, 0x6, 0x2)
statx$auto(r0, &(0x7f0000000080)='./file0\x00', 0x7d65b7bb, 0x3, &(0x7f00000001c0)={0x40, 0x8, 0x3, 0x8, 0xffffffffffffffff, r1, 0x5, 0x6, 0x0, 0x75fa1712, 0x5, 0x2, {0x6, 0x7fff}, {0x4, 0x7}, {0xffffffffffff3e4a, 0x9}, {0xfffffffffffffffc, 0x5}, 0x75c964a8, 0x7fff, 0xe52, 0x4, 0x3, 0x7dc, 0xc, 0x9, 0x9, 0x6, 0x8000, 0x8, [0x1, 0x5, 0x3, 0x5, 0x74ea, 0x10, 0x6, 0x3, 0xe887]})

12.691745375s ago: executing program 2 (id=2428):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x4c2000, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/teql0/queues/tx-0/byte_queue_limits/limit_min\x00', 0x88282, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(r0, 0x0, 0x3)
r1 = fcntl$auto(0xffffffffffffffff, 0x20007, 0xa553)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
getsockopt$auto_SO_MEMINFO(r1, 0x8, 0x37, 0x0, &(0x7f00000000c0)=0x6)
prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2008000)
mprotect$auto(0x1000, 0x401000, 0x4)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800)
timer_delete$auto(0x1)
read$auto(0x3, 0x0, 0x8080)
socket(0xa, 0x1, 0x100)
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/0000:00:02.0/Virtual-2/edid_override\x00', 0x145501, 0x0)
write$auto(0x3, 0x0, 0xffd8)
unshare$auto(0x40000080)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)

10.726004215s ago: executing program 4 (id=2432):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
r0 = socket(0xa, 0x2, 0x3a)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x0)
r1 = socket(0xa, 0x801, 0x106)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
close_range$auto(r1, r0, 0xfffffffc)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/compaction_proactiveness\x00', 0x40001, 0x0)
semctl$auto(0xa, 0x2, 0x13, 0x21)
recvmmsg$auto(0x3, 0x0, 0x80000401, 0x4000, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/tty/ttyz3/dev\x00', 0x3a980, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000180)=""/86, 0x56)
write$auto(r2, 0x0, 0x5)
socket(0x2, 0x1, 0x106)
openat$auto_state_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x169443, 0x114)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
socket(0x2a, 0x2, 0x8001)
socket(0x15, 0x5, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
read$auto_hwsim_fops_group_(r4, &(0x7f0000000200)=""/103, 0x67)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/memory_tiering/memory_tier4/nodelist\x00', 0x22100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000080)=""/247, 0xf7)
select$auto(0xa, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0x990, 0xffffffffffffffff, 0x1, 0x948b, 0x4002a1, 0x95f4da0a, 0xfffffffffffffffe, 0x3, 0x62, 0x80000001, 0x6, 0x0, 0xc, 0x3, 0xfffffffffffffffe]}, 0x0)

10.142518314s ago: executing program 6 (id=2434):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ustat$auto(0x801, 0x0)
r0 = io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) (async)
close_range$auto(0x2, 0x8000, 0x0) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0x4188aec6, r1) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socketpair$auto(0x11e, 0x1, 0x8000000000000000, 0x0) (async)
fcntl$auto_F_WRLCK(r0, 0x5, 0x1)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r3, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async)
r4 = socket(0xa, 0x3, 0x3b)
getsockopt$auto(r4, 0x29, 0x16, 0x0, 0x0) (async)
clone$auto(0x1000020003b49, 0x1, 0x0, 0x0, 0x2)
r5 = socket(0x15, 0x5, 0x0)
setsockopt$auto(r5, 0x114, 0xa, 0x0, 0x4) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = socket(0x11, 0x3, 0xfffff958)
ioctl$sock_SIOCGIFINDEX(r6, 0x8954, 0x0)

9.681360037s ago: executing program 4 (id=2436):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14f602, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x2a742, 0x0)
mmap$auto(0x0, 0x10000, 0xde, 0x11, r1, 0x28000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
fcntl$auto_F_SETLK(r1, 0x6, 0x0)
pwritev2$auto(r0, &(0x7f0000001fc0)={0x0, 0x7}, 0x9, 0x2, 0x1aa1, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = socket(0xa, 0x3, 0x3b)
getsockopt$auto(r2, 0x29, 0x30, 0x0, 0x0)

9.316083504s ago: executing program 4 (id=2437):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/003/001\x00', 0xe803, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x82, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f00000000c0), 0x141401, 0x0)
clock_adjtime$auto(0xfffffffffffffffb, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000980)={0x34, r2, 0x1, 0x70bd31, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x3}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x34}}, 0x24048084)
ioctl$auto(r0, 0x80045510, r0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/003/001\x00', 0xe803, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
io_uring_setup$auto(0x82, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f00000000c0), 0x141401, 0x0) (async)
clock_adjtime$auto(0xfffffffffffffffb, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000980)={0x34, r2, 0x1, 0x70bd31, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x3}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x34}}, 0x24048084) (async)
ioctl$auto(r0, 0x80045510, r0) (async)

9.191762433s ago: executing program 6 (id=2438):
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="770e0000", @ANYRES16=0x0, @ANYBLOB="080028bd7000fddbdf250300000008000600020000000c0014"], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x405b)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
bpf$auto(0x0, &(0x7f00000005c0)=@bpf_attr_4={0x8, r1, 0x8ae}, 0xa3)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
ioctl$auto_UI_END_FF_ERASE(0xffffffffffffffff, 0x400c55cb, &(0x7f0000000080)={0x130, 0x8, 0x10001})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000080))
setgroups$auto(0x8, &(0x7f0000000000)=0x5)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0x400a507}, 0x800}, 0xa, 0x8)
write$auto_proc_mem_operations_base(r0, &(0x7f0000000400)="94c5be883ae7ee95e2bff5f990f6f7249475e8960bf6c1ee8796193bfbd249c19c9460ea0c1c18bb983b84aebb8629e8e9e25558c9bfeb22ed79fdab8065d67eec271b56d08971f043224fe7604598e2506e785c6318c1b7696b10324d1e7db02961facdf9fab2640716f07dd1c617dcb6f1bb648821a53f78be14a6dc8f336e92e389609b991019c180950ed085b91123", 0x91)
syz_genetlink_get_family_id$auto_smc_pnetid(0x0, 0xffffffffffffffff)
r4 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/block/loop9/hctx0/sched_tags_bitmap\x00', 0x101a00, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r4, &(0x7f0000000340)=""/179, 0xb3)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x700000000000000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2900, 0x0)
read$auto(r5, 0x0, 0x7)
acct$auto(&(0x7f0000000000)='/dev/tty\x00`Mx\x9d\xfa\xb3\x1f\xc6k\x01\x13\x9b\x15[\xf7\xaan\x1fOgo\xbb(\xcbx\x9bJ\x91*\xa5a\x02\xf3\x1b\x9d\xddy\xef\xee\xe4h\xd5\nH\x80\x8a\xd7Y\xb8\xcb\x90')
r6 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000840)={0x0, 0x1, 0x9, 0x7, 0x3b, 0x3ff, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb2, 0x9, 0x3, 0xfffc, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x200, 0x0, 0x81, 0x0, 0x7, 0x0, 0x0, 0x0, [0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0xa, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x40000000]}, 0x202, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c001300fcdbbc2353f74fa9256563b979e41af25e403ec2c853d4662dc2477fb8ce947bdc0f5c0513ff03a03e2f969bf97ff8acf360d119aec1eb971d4cc78fc8e0d10db928bac2c986c79fec", @ANYRESHEX=r6], 0x3c}, 0x1, 0x0, 0x0, 0x8014}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$auto(r6, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x5}, 0x7, 0x0)

8.986334669s ago: executing program 2 (id=2439):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getrandom$auto(0x0, 0x6000000, 0x3)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
open(&(0x7f0000000000)='./file0\x00', 0xa61c2, 0x84)
socket(0x2, 0x5, 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
socket(0x2, 0x2, 0x1)
socket(0x25, 0x5, 0x0)
sendfile$auto(0x6, 0x3, 0x0, 0xfdef)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12de82, 0x0)
ioctl$auto(0x3, 0x40106f52, r0)

8.873507971s ago: executing program 4 (id=2440):
mmap$auto(0x0, 0x6, 0x200000000000df, 0xeb1, 0x401, 0x9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x109200, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
close_range$auto(0x2, 0x8, 0x9)
r0 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, 0xffffffffffffffff)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0)
mmap$auto(0x0, 0x7fff, 0x3, 0xeb0, 0xfffffffffffffffa, 0x208000)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x200000000002d57, 0xeb1, 0xffffffffffffffff, 0x8000)
mknod$auto(&(0x7f0000000080)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x1081, 0x6)
mmap$auto(0x0, 0x12020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/008/001\x00', 0xa901, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram2\x00', 0x10be02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/036/001\x00', 0x89200, 0x0)
mmap$auto(0x2000, 0x80009, 0xb, 0x8000000008011, r2, 0x0)
mincore$auto(0x1000, 0x8001, 0x0)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb2, 0xfffffffffffffffa, 0x8003)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
unshare$auto(0x40000080)
r3 = pidfd_open$auto(0x1, 0x0)
setns(r3, 0x60020000)
sched_get_priority_min$auto(0x6)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
pivot_root$auto(&(0x7f0000000100)='..\x00', &(0x7f0000000340)='.\x00z\x86E\xb8\xf1\xcbx\xf6cu<\x0e\xd8\xa5\xcd~\xaf\x80\xd3\xf4\xe5\x02\xf9q p\xe2\x8b\xc0\xedf\xba\x16*\x8ar\xa0\'$A\xe5\xc5\x89\xcb\xd5\xac\x98,\xd4Pycv\xdd\xa1\x84\xfb\xe9\r\x82\x15P*IM\xf7.\xf3v\x85Q\xbc:\xef\xd5\x1a\x9e\xbck\x1d\x114^\x1b\x02\xa1\xb0(\xa2\xdb\xbc\x1a\t\x94\x14\xbb\xc8\xfa\x18I\xff\x7f\xab\xf0\x8f\xd3Gr\xfb5\xf1,\x11\x052u&\xde\x9aF\n\xf0\x06\xfc\x1b\x17\x82%\x14\xb3\x19\x13\f\xbe_\xfdi\x17\xfcv\x82*\xbf<\xfa5\xfd\x8b\x1d\x99\a`\xde\xf4\x8a,\tP) \xf4\xdc\r\x17x\xc6\x18Y\xeaaUY\xeb\xd2\x81\xbare\x00\x8e\xfdA\x93\xb9\xac\xf1\x0eq\x85\xd9\x90\x8a%K\x95\x8fm\v\x98y\x9bc-\xa7;\x117\x19)\x04\xb4\nJ\x0e\x1b\x97e\xee\xdb\xc3\xca\xfe\xa7y\x12\xff\xce')
getxattrat$auto(r1, &(0x7f0000000080)='./file0\x00', 0x1000, &(0x7f00000000c0)='\x00\x00\x00\x00', &(0x7f00000001c0)={0x0, 0xa50}, 0x1000)
unshare$auto(0x40000080)

7.729018351s ago: executing program 3 (id=2442):
socket(0x9, 0x4, 0xff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/tasks\x00', 0x63102, 0x0)
prctl$auto(0x23, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffe)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/vrf/strict_mode\x00', 0x80202, 0x0)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x4d})
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000340), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r2], 0x1ac}}, 0x40000)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xff, 0x0, @raw=0xfffff030}})
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
flistxattr$auto(r0, &(0x7f0000000380)='\\#$\'\'$O+&$[+#%]:,\x8b\x00', 0x8)
readv$auto(0x3, &(0x7f0000000280)={0x0, 0xf7}, 0x87)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x22, 0x3, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@tipc=@name={0x1e, 0x2, 0x2, {{0x41, 0x3}}}, 0x6a)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
pipe$auto(0x0)
fcntl$auto(r3, 0x8, 0x1)
fcntl$auto(r3, 0x10, 0x2)
r4 = socket(0x2, 0x5, 0x0)
setsockopt$auto(r4, 0x0, 0x352563df, 0x0, 0x17)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
fstat$auto(r5, 0x0)
sendmsg$auto_TIPC_NL_LINK_GET(0xffffffffffffffff, 0x0, 0x4)
modify_ldt$auto(0x11, 0x0, 0x10)

7.514493016s ago: executing program 6 (id=2443):
socket(0x2, 0x2, 0x1)
setresuid$auto(0x8, 0x8, 0x0)
clock_getres$auto(0x10, 0x0)
r0 = setfsuid$auto(0xee00)
setreuid$auto(r0, 0x0)
r1 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
read$auto_proc_oom_adj_operations_base(r1, &(0x7f0000000000)=""/253, 0xfd)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x801, 0x84)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
fsopen$auto(0x0, 0x1)
r3 = epoll_create$auto(0x4)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)
epoll_ctl$auto(r3, 0x40008, r2, 0x0)

6.975703736s ago: executing program 2 (id=2444):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0xd) (async)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
io_uring_setup$auto(0x2, 0x0) (async)
r0 = socket(0xb, 0x5, 0x6) (async)
socket(0xa, 0x1, 0x84) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0xa, 0x801, 0x84) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socketpair$auto(0x3, 0x5, 0x7, 0x0) (async)
getsockopt$auto(0x6, 0x84, 0x7d, 0x0, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0xa, 0x5, 0x0) (async)
open(0x0, 0x2040, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x400000, 0x0) (async)
mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x403, 0x8000) (async)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) (async)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/time_for_children\x00')
getdents64$auto(r2, 0x0, 0x18) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/default/disable_policy\x00', 0x80401, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
read$auto(r3, 0x0, 0xc)
write$auto(0x3, 0x0, 0xfdef)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f0000000100)={0xe00000, 0x1, 0x1, @inferred=0xffffffffffffffff, &(0x7f00000000c0)={@raw=0x7, 0x5e, 0x2331, 0x2d0, "9e4e81b6fc673cc02f77041021d25905c3055051dd97ff176566d703c0245444cd0d851eb7421b853bbce64d", @raw=0xfffffffa}, "439a66952351c4a6d83ca1aaf493be32d202f779f29a074fdb37abdc2a50f4dbceb2ed22af75ffc9cda9d2f9348173bd5587"})
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x13, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8040) (async)
r4 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

6.793955889s ago: executing program 6 (id=2445):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getrandom$auto(0x0, 0x6000000, 0x3)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12de82, 0x0)
ioctl$auto(0x3, 0x40106f52, r0)

6.523024952s ago: executing program 3 (id=2446):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20540, 0x0)
ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f00000003c0))
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x100201, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x40, 0x0)
read$auto(r2, 0x0, 0x2000e1d)
writev$auto(r1, &(0x7f0000000200)={0x0, 0xb}, 0x3)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0)
landlock_add_rule$auto_LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000040)="68768272f3b491b7584babe0c4ae76111a4c524a009fb683ad618c4816cfb57bcebed8635f6d8f90a5aa1278cee682a2802cc4976ecc1f2f3ec950863112d2cd8178deb634f14131bcb157226dac0a93bccc56ac1041f3bc935a8f322a386319258b243ada03bd45ecffae31e96bf6aa3d1b8cae813e2c0964300e0563f66f493a8c159e50decfd1ba30a162b76b89ff61fd9bceb67949ed342037f5f9227f060fe0886d136d62e63e33d2b619364c53d5b66b3627ece762f56b2bc7b467954eb5b3e109e7b30cff1bfe2ff32f21d33ebaae7344456c96400112", 0x82)

5.307141535s ago: executing program 3 (id=2447):
socket(0x27, 0x5, 0x73)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x200000)
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r2=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="130026bdd94a1ccb9bd45e7c000008000300", @ANYRES32=r2], 0x24}, 0x1, 0x0, 0x0, 0x440c0}, 0x400408d4)

5.164877848s ago: executing program 6 (id=2448):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x7, 0x4, 0x3, 0x1400000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) (async)
close_range$auto(0x2, 0xa, 0x0) (async)
socket(0x18, 0xa, 0x1) (async)
r0 = socket(0xa, 0x6, 0x3a) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x0) (async)
socket(0xa, 0x801, 0x106) (async)
setsockopt$auto(r0, 0x29, 0x4e, &(0x7f0000000180)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5', 0x10000110) (async)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async)
bind$auto(0x3, &(0x7f0000000040)=@generic={0xa, "02d0ac0c00e435826339c7328903"}, 0x6a)

4.576243646s ago: executing program 3 (id=2449):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x2, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/irq/2/name\x00', 0x800, 0x0)
read$auto(r0, 0x0, 0x1) (async)
socket(0x2, 0x1, 0x106)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/controlC2\x00', 0x361101, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_TLV_COMMAND(r1, 0x5452, &(0x7f0000000080)={0x80, 0xbed0}) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r2 = io_uring_setup$auto(0x401, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async)
ioctl$auto_MEMLOCK(r2, 0x40084d05, &(0x7f00000000c0)={0xfffffffe, 0x7fffffff})
timer_gettime$auto(0x0, 0x0) (async)
mmap$auto(0xf, 0x202000a, 0xb, 0x16, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) (async)
madvise$auto(0x5, 0x10, 0x5f) (async)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/block/loop10/power/autosuspend_delay_ms\x00', 0x182b02, 0x0) (async)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r4, 0x1261, 0x0) (async)
r5 = waitid$auto_P_PGID(0x2, 0xffffffffffffffff, &(0x7f0000000340)={@siginfo_0_0={0x101, 0x2, 0x8000, @_sigsys={&(0x7f0000000240)="b089237097b88e40064c533331bb0ef0f3871bb6271d7c7ebbe31d346d27fcd831cda35f211ad5adaa038e646c925d67cb31086631f969ce129b0382463779415e39b70fdf797cdb0eca20afbf1e054a9d1bf9b9fa44a34ce03f43ec9f1a78f74d9ccfca985bd58f840af3597c60703d4620907775a0081ef431f8be10d6c7e35ff52ec27aa3d1eadd29fe6529475538b872e0ee7197cf928e9dff0c41514b651f787dcf714aff7f2ec83d8412b0ad30a25b00075552903ebc130811936d5bd79f1741067769d3a50baa767782d8d0426cfc", 0x9, 0x2}}}, 0x3ff, &(0x7f00000003c0)={{0x3, 0x1000000007}, {0xc, 0x4}, 0xc4, 0x5, 0x7f, 0xffffffffff000002, 0x9, 0x5, 0x400, 0x6, 0xa511, 0x100, 0x1, 0x6, 0xbdf6, 0x819b}) (async)
r6 = open(&(0x7f0000000140)='./cgroup\x00', 0x2040, 0xa)
r7 = open_by_handle_at$auto(r6, &(0x7f0000000040)={0x8, 0xb, "0600000200000000"}, 0xc) (async)
kcmp$auto_KCMP_FILE(r5, 0xffffffffffffffff, 0x0, r6, r3)
keyctl$auto(0x4, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
ioctl$auto_BLKFLSBUF(r4, 0x1261, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x32800, 0x0) (async)
writev$auto(r7, &(0x7f0000000100)={0x0, 0x7112}, 0x9)

4.267858713s ago: executing program 6 (id=2450):
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/software/power/runtime_suspended_time\x00', 0x68a23, 0x0)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/bdi/7:0/max_ratio_fine\x00', 0x80002, 0x0)
read$auto(r1, 0x0, 0x6)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0xe4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b7e, 0xffffffffffffffff, 0x8000)
semctl$auto(0x80001ff, 0x4, 0x13, 0x4)
keyctl$auto(0x10, 0xee01, 0x0, 0x0, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = timerfd_create$auto(0x1, 0x1)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd1\x00', 0x12bb02, 0x0)
getxattrat$auto(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x1000, &(0x7f00000000c0)='nbd\x00', &(0x7f00000001c0)={0x0, 0xa50, 0x10000}, 0x1000)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x2, 0x0)
pidfd_open$auto(0x1, 0xffffffff)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x1842, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x100000000000007, 0xd, 0x1, 0x948b, 0x57, 0x15f4da06, 0x1, 0x6, 0x5, 0x80000001, 0x200000000007, 0x6d39, 0x5, 0x4, 0x1]}, 0x0)
fcntl$auto_F_UNLCK(0xffffffffffffffff, 0x8, 0x2)
pread64$auto(r4, 0x0, 0x5946, 0x7f)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
msgsnd$auto(0x0, &(0x7f0000000040)={0x5, 0x9}, 0x1000, 0xfffffffc)
sendfile$auto(r3, 0x3, 0x0, 0x400000000006)
timerfd_settime$auto(r2, 0x3, &(0x7f0000000000)={{0x10, 0x3ff}, {0x0, 0x9}}, 0x0)

3.842691017s ago: executing program 2 (id=2451):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dmmidi2\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x100000000000001, 0x4, 0x2, 0x11, r0, 0xfffffffffffff1f8) (async)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
keyctl$auto_KEY_REQKEY_DEFL_PROCESS_KEYRING(0xa, 0x2, 0x0, 0x0, 0x42) (async, rerun: 64)
ioctl$auto(r2, 0x2201, r2) (async, rerun: 64)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0) (async)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
keyctl$auto(0x1f, 0xffffffffffffffff, 0x6, 0x3, 0x3fb) (rerun: 32)
madvise$auto(0x0, 0x240007, 0x19) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async, rerun: 64)
madvise$auto(0x0, 0x2003f2, 0x15) (async, rerun: 64)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010031bd5300fddbdf250c000000100003800c0003800800058004ce2de7661ba739bb0002006e657464657673696d30000000000000fdfcc4cc418a6763100106c630f1dbdff8c3856d240278d80fd5c220bced6d9f9d8ca72f675e9b172eaf600ebb3ad6813f7b5dc72916fba2cd64a0d867a48cebfbb125176e4e0b58400ac76e71e5133e30a9bcfbbcb94d4b80eea804fb2f745f465a9e7d95bd0724a9a6ac3f08fb3884ec6093e2d44b94ec5e51d86b456fda7aac2850cab5f1529696c3683b49da186d42357623106f3b"], 0x3c}}, 0x24048084) (async, rerun: 64)
madvise$auto(0x0, 0x200007, 0x19) (async, rerun: 64)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x2, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, &(0x7f0000000380)=@token_create={0x5315, r5}, 0x1)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0)
write$auto(r6, 0x0, 0x6) (async)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0) (async)
ioctl$auto_XFS_IOC_FSBULKSTAT(r1, 0xc0205865, &(0x7f00000002c0)={0x0, 0x10001, 0x0, &(0x7f0000000280)=0x2}) (async)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)

3.266941016s ago: executing program 3 (id=2452):
mmap$auto(0x0, 0x40009, 0xfffffffffffffff7, 0xfffffffffffffffe, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0xfffffffffffffffb, 0xffffffffffffffff, 0xf1, 0x8b)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) (async)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
r0 = socket(0xa, 0x5, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0) (async)
lsm_list_modules$auto(0x0, 0x0, 0x0)
getsockopt$auto(r0, 0x0, 0x50, 0x0, 0x0) (async)
getsockopt$auto(r0, 0x0, 0x50, 0x0, 0x0)
mmap$auto(0xfffffffffffffff7, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) (async)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
pread64$auto(0xffffffffffffffff, 0x0, 0x0, 0x406)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x74c) (async)
sendfile$auto(0x1, 0x3, 0x0, 0x74c)
unshare$auto(0x40000080)
mmap$auto(0x101, 0x400008, 0xe4, 0x9b72, 0x2, 0x400)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = socket(0x10, 0x2, 0x6)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/fs/dentry-state\x00', 0x0, 0x0)
sendfile$auto(r1, r2, 0x0, 0x3)
socket(0xa, 0x3, 0x88) (async)
r3 = socket(0xa, 0x3, 0x88)
capset$auto(0x0, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x800, 0x100)
setsockopt$auto(r3, 0x29, 0x10, 0x0, 0x1) (async)
setsockopt$auto(r3, 0x29, 0x10, 0x0, 0x1)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
bind$auto(0xffffffffffffffff, 0x0, 0xffffffe6)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0xa0202, 0x0)
listxattr$auto(&(0x7f0000000000)='./file0\x00', 0x0, 0xf) (async)
listxattr$auto(&(0x7f0000000000)='./file0\x00', 0x0, 0xf)

1.401514608s ago: executing program 4 (id=2453):
r0 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0)
ioctl$auto_IMDELTIMER(r0, 0x80044941, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x8, 0x0)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x68880, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, 0x0)
setreuid$auto(0x0, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0)
ioctl$auto_OSS_GETVERSION2(r2, 0x80044d76, 0x0)
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config/target/dbroot\x00', 0x8040, 0x0)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYBLOB='^\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8)
adjtimex$auto(&(0x7f0000000200)={0x5f95, 0x0, 0x2, 0x2000000a, 0xff7d, 0xbc58, 0x4000005, 0x0, 0x5, 0x8, 0x80000000, {0x7ff, 0xf423f}, 0x2744, 0x200000001, 0xff, 0x7, 0x0, 0x3c8, 0x8, 0x8, 0xffffffffffffffff, 0x1560cc85, 0x9})
sendmmsg$auto(r0, &(0x7f0000000240)={{&(0x7f0000000000)="41a01a3a1b3a80ada9917abde8538919ca952a3a221c47806572c6be036ba070da5d11406271e2e1caaca43be101152129b8fe81c1e6e804a99fbaeabd38243df64f7a1fb8b0d16d860fbed6560b733e5dccd9e6393e5811dee4a771d24c1bc6010ede0f2a3c161c0dbe2bc3ef14efc0707aaadf3368e739", 0xfffffff8, &(0x7f0000000180)={&(0x7f0000000080)="ad21c732274f944ea3775a7800abb012694bd5c65f778d24fc3ce53f42773b999ab3a6d090d02b844bebc5f85119df15f2dbb237f3e4af20d269ef6a3b9b6e4cecf7e3a4e99c80da9deabc575bd317eb97105a1a07ee84e7237c6502e2b562ffc1a1860fbe3f35b785667fd54bdea4ea23cd01925b3b377006b28a20a82a6201a2bc0711fd961e118ae37b042438b423993cf17eeff7c63bfa1326335e8e29", 0x5}, 0x400000005, &(0x7f00000001c0)="c70a459e5c127f5cf92a6e6f17bb7d1b10c9249f5895e2095f39c3c71244c50bfa6c12abdeeb512e0d5a87acf5191e6aee3ab0598f48611e9b140f5479130cfb94a80e21f0b9afefcb4a44a04fedeea4deb48b54bf57ef0fbc8fdf974dbc82ed5588a549d1ce8376ad34bba537e8e907ff", 0x0, 0x7ff}, 0x78}, 0xfffffffa, 0x7fff)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000)
renameat2$auto(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x7)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_vport(0xfffffffffffffffe, r4)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
sendmmsg$auto(r4, &(0x7f0000000440)={{&(0x7f0000000280)="0efcb3efdcf282e7d6fc97b5ed091751a9fddd599a9ba5739dfc07d7a17e6df868a1b6d0689fbf07b74a70fb78d5a99f2fc1aa0130cc8ad90d23cad982ab4af9c58cbf257231b1556fc64cd23ca1a68373e8ac74d7dc73e42f892a46e0681f3a85e87f130573029ba037a94a3de569160e", 0x5, &(0x7f00000003c0)={&(0x7f0000000480)="dc716b1ac7fc36a340c104efb770d9d47be14c7a019793973c1d90bc16effd82eddfc86bdc64ad3a7f7ef3870d2dfc9735bc0e300aa184a514cc5067967ebb9ca9a5bc44f682ba8ff65305980bcb32644514796fe8da8181ec9d84af94db1dce7caee739eae1ba784fb04c41f85b2a6fc43450e476aa1d2df016148869aa0b1b429a25c7955ee24c643da3296f5cbff71aa066ca79d25389fa3bd2aa583a78235ce6d95660346b631c70d3545c406c87e0d907ea5eddf0e45219f72bd79eac090ff359bbe0f7e6450bcb", 0x8}, 0xb, &(0x7f0000000400)="79433ea18dbffb92", 0x7, 0x3469}, 0x80}, 0xffff4535, 0x441)
mmap$auto(0x9, 0xb, 0x2, 0x13, r0, 0x1)
mlock$auto(0xfbe8, 0x4)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
pread64$auto(r5, 0x0, 0x800003, 0x270)
syz_clone(0x8124400, 0x0, 0x0, 0x0, 0x0, 0x0)

109.802748ms ago: executing program 4 (id=2454):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getrandom$auto(0x0, 0x6000000, 0x3)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12de82, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
get_robust_list$auto(0x0, 0x0, 0x0)
r1 = socket(0x1d, 0x2, 0x6)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
mbind$auto(0x0, 0x800605, 0x2, &(0x7f0000000500)=0xffff, 0xa, 0x3)
setreuid$auto(0x3, 0x7)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8947, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x24000800)
lstat$auto(0x0, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(0xffffffffffffffff, 0x1, 0x0)
io_uring_setup$auto(0x2, 0x0)
r2 = syz_clone(0x1002000, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
prctl$auto(0x4e, 0x1, 0x0, 0x0, 0x0)
futex_wake$auto(0x0, 0x5, 0x4, 0xa)
move_pages$auto(r2, 0x4, &(0x7f0000000100)=&(0x7f0000000040)="54cdc4c2fcfbe6e1d1a321c7f3a885c6feeb9e7d03bbd3d2fb0c9742ebe8065596b4e59c9fc596e52f9d1105b45cb63ad7820fca4dbbc318ed07944e102192f0f5bc249dbba338800fee08bc4bccdff8b996107e2c0494e56d218c9d7877ce308ae26f04a1f1e534bd539bcf66502efd31fe617e2ede1aee2b722347ec2ff75ffb8f77e2ee721e7e9d92a354d4107e0fee9f3f2b02", &(0x7f0000000140)=0x1, &(0x7f0000000180)=0xd2, 0x8)
setsockopt$auto(r1, 0x6a, 0x5, 0x0, 0x3)
ioctl$auto(0x3, 0x40106f52, r0)

0s ago: executing program 3 (id=2455):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async)
getrandom$auto(0x0, 0x6000000, 0x3) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async, rerun: 64)
r0 = socket(0x2, 0x2, 0x0) (async, rerun: 64)
r1 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
write$auto(r1, 0x0, 0x5)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
socketpair$auto(0x1, 0xfff, 0xfffffffd, 0x0) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x8, 0x1, 0x2, 0x4, 0x15f4da0e, 0x3, 0xd08, 0xc, 0xc, 0x4, 0x6d3f, 0x9, 0x2, 0x4000000000000d]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000000)=""/65, 0x41)
mmap$auto(0x0, 0x200009, 0x2, 0x40eb1, 0x602, 0x300000000000) (async, rerun: 64)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x4000000) (async)
sendmsg$auto_NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, 0x0, 0x20040880) (async)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
madvise$auto(0x200000000, 0x20499d, 0x9)
socket(0xa, 0x2, 0x0) (async)
setsockopt$auto(r0, 0x4, 0x30, 0x0, 0x568)

kernel console output (not intermixed with test programs):

3][T15285] RIP: 0033:0x7fc9d258f6c9
[  701.869400][T15285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  701.869418][T15285] RSP: 002b:00007fc9d33ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  701.869436][T15285] RAX: ffffffffffffffda RBX: 00007fc9d27e6090 RCX: 00007fc9d258f6c9
[  701.869447][T15285] RDX: 0000000000003fd6 RSI: 0000000000000007 RDI: 0000000000000000
[  701.869458][T15285] RBP: 00007fc9d2611f91 R08: 0000000020000000 R09: 0000000000000000
[  701.869469][T15285] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  701.869479][T15285] R13: 00007fc9d27e6128 R14: 00007fc9d27e6090 R15: 00007ffc9fabd868
[  701.869502][T15285]  </TASK>
[  702.420206][T15279] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1780'.
[  702.462977][T15287] Loading of unsigned module is rejected
[  703.201332][T15297] binder: 15296:15297 ioctl c018620c 0 returned -1
[  703.249768][T15297] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1785'.
[  705.934736][T15317] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1789'.
[  706.762332][T15330] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1791'.
[  707.048928][T15335] FAULT_INJECTION: forcing a failure.
[  707.048928][T15335] name failslab, interval 1, probability 0, space 0, times 0
[  707.139778][T15335] CPU: 0 UID: 0 PID: 15335 Comm: syz.4.1794 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  707.139814][T15335] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  707.139822][T15335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  707.139832][T15335] Call Trace:
[  707.139838][T15335]  <TASK>
[  707.139846][T15335]  dump_stack_lvl+0x16c/0x1f0
[  707.139875][T15335]  should_fail_ex+0x512/0x640
[  707.139904][T15335]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  707.139925][T15335]  should_failslab+0xc2/0x120
[  707.139952][T15335]  kmem_cache_alloc_noprof+0x75/0x6e0
[  707.139970][T15335]  ? alloc_empty_file+0x55/0x1e0
[  707.140001][T15335]  ? alloc_empty_file+0x55/0x1e0
[  707.140024][T15335]  ? _raw_spin_unlock+0x28/0x50
[  707.140043][T15335]  alloc_empty_file+0x55/0x1e0
[  707.140070][T15335]  alloc_file_pseudo+0x13a/0x230
[  707.140098][T15335]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  707.140130][T15335]  __shmem_file_setup+0x1a3/0x330
[  707.140162][T15335]  shmem_zero_setup+0x93/0x1a0
[  707.140184][T15335]  __mmap_region+0x2076/0x27a0
[  707.140206][T15335]  ? __pfx___mmap_region+0x10/0x10
[  707.140223][T15335]  ? finish_task_switch.isra.0+0x21c/0xc10
[  707.140244][T15335]  ? rcu_is_watching+0x12/0xc0
[  707.140263][T15335]  ? finish_task_switch.isra.0+0x221/0xc10
[  707.140282][T15335]  ? lockdep_hardirqs_on+0x7c/0x110
[  707.140304][T15335]  ? finish_task_switch.isra.0+0x221/0xc10
[  707.140349][T15335]  ? __pfx___schedule+0x10/0x10
[  707.140393][T15335]  ? trace_cap_capable+0x18d/0x200
[  707.140427][T15335]  mmap_region+0x1ab/0x3f0
[  707.140445][T15335]  ? __get_unmapped_area+0x267/0x440
[  707.140472][T15335]  do_mmap+0xa3e/0x1210
[  707.140500][T15335]  ? __pfx_do_mmap+0x10/0x10
[  707.140524][T15335]  ? __pfx_down_write_killable+0x10/0x10
[  707.140554][T15335]  vm_mmap_pgoff+0x29e/0x470
[  707.140582][T15335]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  707.140611][T15335]  ? __x64_sys_futex+0x1e0/0x4c0
[  707.140635][T15335]  ? __x64_sys_futex+0x1e9/0x4c0
[  707.140663][T15335]  ksys_mmap_pgoff+0x7d/0x5c0
[  707.140685][T15335]  ? xfd_validate_state+0x61/0x180
[  707.140711][T15335]  ? __pfx_ksys_write+0x10/0x10
[  707.140733][T15335]  __x64_sys_mmap+0x125/0x190
[  707.140764][T15335]  do_syscall_64+0xcd/0xfa0
[  707.140787][T15335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  707.140806][T15335] RIP: 0033:0x7fcf0518f6c9
[  707.140821][T15335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  707.140838][T15335] RSP: 002b:00007fcf05fc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  707.140856][T15335] RAX: ffffffffffffffda RBX: 00007fcf053e5fa0 RCX: 00007fcf0518f6c9
[  707.140867][T15335] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  707.140878][T15335] RBP: 00007fcf05211f91 R08: fffffffffffffffa R09: 0000000000008000
[  707.140888][T15335] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  707.140899][T15335] R13: 00007fcf053e6038 R14: 00007fcf053e5fa0 R15: 00007ffe1695c988
[  707.140921][T15335]  </TASK>
[  708.745464][T15353] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input32
[  709.403356][T15330] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  709.495892][T15330] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  709.630470][T15330] bond0 (unregistering): Released all slaves
[  710.467436][T15369] FAULT_INJECTION: forcing a failure.
[  710.467436][T15369] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  710.608198][T15369] CPU: 0 UID: 0 PID: 15369 Comm: syz.2.1801 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  710.608231][T15369] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  710.608238][T15369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  710.608249][T15369] Call Trace:
[  710.608255][T15369]  <TASK>
[  710.608262][T15369]  dump_stack_lvl+0x16c/0x1f0
[  710.608289][T15369]  should_fail_ex+0x512/0x640
[  710.608330][T15369]  _copy_to_iter+0x29f/0x1710
[  710.608350][T15369]  ? find_held_lock+0x2b/0x80
[  710.608371][T15369]  ? __pfx__copy_to_iter+0x10/0x10
[  710.608389][T15369]  ? __lock_acquire+0xb8a/0x1c90
[  710.608418][T15369]  ? __kernel_text_address+0xd/0x40
[  710.608443][T15369]  simple_copy_to_iter+0x46/0x90
[  710.608474][T15369]  __skb_datagram_iter+0x5af/0x900
[  710.608499][T15369]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  710.608533][T15369]  skb_copy_datagram_iter+0x40/0x50
[  710.608562][T15369]  mptcp_recvmsg+0x83a/0x1c80
[  710.608594][T15369]  ? __pfx_mptcp_recvmsg+0x10/0x10
[  710.608626][T15369]  ? __pfx_mptcp_recvmsg+0x10/0x10
[  710.608644][T15369]  inet_recvmsg+0x625/0x6a0
[  710.608671][T15369]  ? __fget_files+0x204/0x3c0
[  710.608691][T15369]  ? __pfx_inet_recvmsg+0x10/0x10
[  710.608719][T15369]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  710.608751][T15369]  sock_recvmsg+0x1b2/0x250
[  710.608776][T15369]  __sys_recvfrom+0x203/0x310
[  710.608805][T15369]  ? 0xffffffff81000000
[  710.608820][T15369]  ? __pfx___sys_recvfrom+0x10/0x10
[  710.608868][T15369]  ? ksys_write+0x1ac/0x250
[  710.608888][T15369]  ? __pfx_ksys_write+0x10/0x10
[  710.608911][T15369]  __x64_sys_recvfrom+0xe0/0x1c0
[  710.608940][T15369]  ? do_syscall_64+0x91/0xfa0
[  710.608962][T15369]  ? lockdep_hardirqs_on+0x7c/0x110
[  710.608984][T15369]  do_syscall_64+0xcd/0xfa0
[  710.609008][T15369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  710.609026][T15369] RIP: 0033:0x7fd418d8f6c9
[  710.609040][T15369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  710.609058][T15369] RSP: 002b:00007fd419baf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002d
[  710.609076][T15369] RAX: ffffffffffffffda RBX: 00007fd418fe6090 RCX: 00007fd418d8f6c9
[  710.609088][T15369] RDX: 000000800000000e RSI: 0000000000000000 RDI: 0000000000000003
[  710.609099][T15369] RBP: 00007fd419baf090 R08: 0000000000000000 R09: ffffffff81000000
[  710.609110][T15369] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[  710.609120][T15369] R13: 00007fd418fe6128 R14: 00007fd418fe6090 R15: 00007ffd9e02c678
[  710.609136][T15369]  ? 0xffffffff81000000
[  710.609156][T15369]  </TASK>
[  711.852484][T15397] ubi0: attaching mtd0
[  711.890418][T15397] ubi0: scanning is finished
[  711.929707][T15397] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  712.308508][T15397] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  712.417221][T15403] ubi0: attaching mtd0
[  712.457543][T15403] ubi0: scanning is finished
[  712.571729][T15403] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  712.667518][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880325d0400: rx timeout, send abort
[  712.898733][T15403] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  713.173580][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880325d0400: abort rx timeout. Force session deactivation
[  714.468091][T15446] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1814'.
[  714.610698][T15448] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1814'.
[  714.629438][T15443] can: request_module (can-proto-5) failed.
[  715.065656][T15454] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1815'.
[  715.948515][T15454] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  716.009246][T15454] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  716.055044][T15454] bond0 (unregistering): Released all slaves
[  716.448651][T15475] netlink: 'syz.0.1819': attribute type 1 has an invalid length.
[  716.777416][T15478] : Can't lookup blockdev
[  716.816440][T15478] ubi0: attaching mtd0
[  716.854127][T15478] ubi0: scanning is finished
[  716.906879][T15478] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  717.257643][T15478] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  719.185592][T15534] FAULT_INJECTION: forcing a failure.
[  719.185592][T15534] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  719.282593][T15534] CPU: 0 UID: 0 PID: 15534 Comm: syz.4.1828 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  719.282627][T15534] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  719.282634][T15534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  719.282644][T15534] Call Trace:
[  719.282651][T15534]  <TASK>
[  719.282657][T15534]  dump_stack_lvl+0x16c/0x1f0
[  719.282685][T15534]  should_fail_ex+0x512/0x640
[  719.282718][T15534]  _copy_to_iter+0x29f/0x1710
[  719.282741][T15534]  ? __pfx__copy_to_iter+0x10/0x10
[  719.282756][T15534]  ? kasan_quarantine_put+0x10a/0x240
[  719.282779][T15534]  ? lockdep_hardirqs_on+0x7c/0x110
[  719.282804][T15534]  ? kmem_cache_free+0x2d4/0x6c0
[  719.282824][T15534]  ? kfree_skbmem+0x16c/0x1f0
[  719.282852][T15534]  simple_copy_to_iter+0x46/0x90
[  719.282880][T15534]  __skb_datagram_iter+0x5af/0x900
[  719.282905][T15534]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  719.282939][T15534]  skb_copy_datagram_iter+0x40/0x50
[  719.282968][T15534]  mptcp_recvmsg+0x83a/0x1c80
[  719.283000][T15534]  ? __pfx_mptcp_recvmsg+0x10/0x10
[  719.283032][T15534]  ? __pfx_mptcp_recvmsg+0x10/0x10
[  719.283050][T15534]  inet_recvmsg+0x625/0x6a0
[  719.283076][T15534]  ? __fget_files+0x204/0x3c0
[  719.283095][T15534]  ? __pfx_inet_recvmsg+0x10/0x10
[  719.283123][T15534]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  719.283157][T15534]  sock_recvmsg+0x1b2/0x250
[  719.283181][T15534]  __sys_recvfrom+0x203/0x310
[  719.283211][T15534]  ? 0xffffffff81000000
[  719.283225][T15534]  ? __pfx___sys_recvfrom+0x10/0x10
[  719.283286][T15534]  ? ksys_write+0x1ac/0x250
[  719.283307][T15534]  ? __pfx_ksys_write+0x10/0x10
[  719.283331][T15534]  __x64_sys_recvfrom+0xe0/0x1c0
[  719.283359][T15534]  ? do_syscall_64+0x91/0xfa0
[  719.283381][T15534]  ? lockdep_hardirqs_on+0x7c/0x110
[  719.283403][T15534]  do_syscall_64+0xcd/0xfa0
[  719.283427][T15534]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  719.283445][T15534] RIP: 0033:0x7fcf0518f6c9
[  719.283459][T15534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  719.283478][T15534] RSP: 002b:00007fcf05f80038 EFLAGS: 00000246 ORIG_RAX: 000000000000002d
[  719.283496][T15534] RAX: ffffffffffffffda RBX: 00007fcf053e6180 RCX: 00007fcf0518f6c9
[  719.283508][T15534] RDX: 000000800000000e RSI: 0000000000000000 RDI: 0000000000000003
[  719.283518][T15534] RBP: 00007fcf05f80090 R08: 0000000000000000 R09: ffffffff81000000
[  719.283529][T15534] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[  719.283540][T15534] R13: 00007fcf053e6218 R14: 00007fcf053e6180 R15: 00007ffe1695c988
[  719.283555][T15534]  ? 0xffffffff81000000
[  719.283575][T15534]  </TASK>
[  719.903020][T15537] FAULT_INJECTION: forcing a failure.
[  719.903020][T15537] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  719.980137][T15537] CPU: 0 UID: 0 PID: 15537 Comm: syz.2.1830 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  719.980182][T15537] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  719.980189][T15537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  719.980199][T15537] Call Trace:
[  719.980206][T15537]  <TASK>
[  719.980213][T15537]  dump_stack_lvl+0x16c/0x1f0
[  719.980241][T15537]  should_fail_ex+0x512/0x640
[  719.980273][T15537]  should_fail_alloc_page+0xe7/0x130
[  719.980301][T15537]  prepare_alloc_pages+0x3c2/0x610
[  719.980329][T15537]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  719.980349][T15537]  ? __pfx_try_to_migrate_one+0x10/0x10
[  719.980384][T15537]  ? __up_read+0x1f8/0x750
[  719.980415][T15537]  ? __pfx___up_read+0x10/0x10
[  719.980442][T15537]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  719.980460][T15537]  ? rmap_walk_anon+0x503/0x710
[  719.980505][T15537]  __folio_alloc_noprof+0x11/0x220
[  719.980523][T15537]  alloc_migration_target+0x24a/0x660
[  719.980552][T15537]  migrate_pages_batch+0x3bc/0x3bb0
[  719.980582][T15537]  ? __pfx_alloc_migration_target+0x10/0x10
[  719.980617][T15537]  ? __pfx_migrate_pages_batch+0x10/0x10
[  719.980650][T15537]  ? __pfx_walk_pgd_range+0x10/0x10
[  719.980672][T15537]  migrate_pages_sync+0x12d/0x8a0
[  719.980701][T15537]  ? __pfx_alloc_migration_target+0x10/0x10
[  719.980731][T15537]  ? queue_pages_test_walk+0x279/0x410
[  719.980758][T15537]  ? __pfx_migrate_pages_sync+0x10/0x10
[  719.980787][T15537]  ? walk_page_test+0x9b/0x180
[  719.980807][T15537]  ? walk_page_range_mm+0x235/0xb40
[  719.980831][T15537]  migrate_pages+0x1b5f/0x23a0
[  719.980860][T15537]  ? __pfx_alloc_migration_target+0x10/0x10
[  719.980893][T15537]  ? __pfx_migrate_pages+0x10/0x10
[  719.980922][T15537]  ? queue_pages_range+0x11e/0x180
[  719.980948][T15537]  ? __pfx___up_read+0x10/0x10
[  719.980975][T15537]  ? do_migrate_pages+0x458/0x750
[  719.981004][T15537]  do_migrate_pages+0x48e/0x750
[  719.981034][T15537]  ? __pfx_do_migrate_pages+0x10/0x10
[  719.981061][T15537]  ? rcu_is_watching+0x12/0xc0
[  719.981084][T15537]  ? cap_capable+0xb3/0x250
[  719.981108][T15537]  ? get_task_mm+0xc2/0xf0
[  719.981128][T15537]  ? security_capable+0x250/0x260
[  719.981163][T15537]  kernel_migrate_pages+0x55b/0x700
[  719.981189][T15537]  ? __pfx_kernel_migrate_pages+0x10/0x10
[  719.981216][T15537]  ? __pfx_do_writev+0x10/0x10
[  719.981238][T15537]  __x64_sys_migrate_pages+0x96/0x100
[  719.981264][T15537]  ? lockdep_hardirqs_on+0x7c/0x110
[  719.981286][T15537]  do_syscall_64+0xcd/0xfa0
[  719.981309][T15537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  719.981328][T15537] RIP: 0033:0x7fd418d8f6c9
[  719.981343][T15537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  719.981360][T15537] RSP: 002b:00007fd419bd0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000100
[  719.981377][T15537] RAX: ffffffffffffffda RBX: 00007fd418fe5fa0 RCX: 00007fd418d8f6c9
[  719.981389][T15537] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000
[  719.981399][T15537] RBP: 00007fd418e11f91 R08: 0000000000000000 R09: 0000000000000000
[  719.981412][T15537] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000
[  719.981422][T15537] R13: 00007fd418fe6038 R14: 00007fd418fe5fa0 R15: 00007ffd9e02c678
[  719.981445][T15537]  </TASK>
[  721.634129][T15556] : Can't lookup blockdev
[  721.672370][T15556] ubi0: attaching mtd0
[  721.677739][T15556] ubi0: scanning is finished
[  721.770930][T15556] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  722.350073][T15556] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  723.050294][T15589] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1842'.
[  723.129781][T15589] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  723.216028][T15589] batman_adv: batadv0: Removing interface: batadv_slave_0
[  723.310911][T15589] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  723.339751][T15589] batman_adv: batadv0: Removing interface: batadv_slave_1
[  723.370850][T15599] Process accounting resumed
[  723.672358][    T9] usb usb38-port5: attempt power cycle
[  724.213387][T15616] __vm_enough_memory: pid: 15616, comm: syz.3.1847, bytes: 8589938688 not enough memory for the allocation
[  724.268619][    T9] usb usb38-port5: unable to enumerate USB device
[  728.243072][T15689] input: f¬
 as /devices/virtual/input/input33
[  732.332982][T15732] zram: Added device: zram0
[  732.913996][T15748] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1874'.
[  734.308978][T15770] netlink: 'syz.4.1879': attribute type 20 has an invalid length.
[  734.367432][T15770] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1879'.
[  734.449316][T15770] IPv6: NLM_F_CREATE should be specified when creating new route
[  734.879011][T15777] : Can't lookup blockdev
[  734.941559][T15777] ubi0: attaching mtd0
[  734.959896][T15777] ubi0: scanning is finished
[  734.964545][T15777] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  735.555063][T15777] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  736.711503][T15804] netlink: 'syz.2.1888': attribute type 21 has an invalid length.
[  736.801207][T15804] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1888'.
[  737.725147][T15826] delete_channel: no stack
[  738.179256][T15831] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1892'.
[  738.741069][    T9] usb usb38-port5: attempt power cycle
[  739.380656][    T9] usb usb38-port5: unable to enumerate USB device
[  739.456491][T15845] ptrace attach of "./syz-executor exec"[14358] was attempted by ""[15845]
[  740.914728][ T9696] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  740.926234][ T9696] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  740.935293][ T9696] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  740.943580][ T9696] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  740.951453][ T9696] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  741.067901][ T9696] Bluetooth: hci1: Malformed Event: 0x02
[  742.495907][T15871] chnl_net:caif_netlink_parms(): no params data found
[  743.038772][ T9696] Bluetooth: hci4: command tx timeout
[  743.979359][T15871] bridge0: port 1(bridge_slave_0) entered blocking state
[  744.026280][T15871] bridge0: port 1(bridge_slave_0) entered disabled state
[  744.070475][T15871] bridge_slave_0: entered allmulticast mode
[  744.117501][T15871] bridge_slave_0: entered promiscuous mode
[  744.173682][T15871] bridge0: port 2(bridge_slave_1) entered blocking state
[  744.215483][T15871] bridge0: port 2(bridge_slave_1) entered disabled state
[  744.253709][T15871] bridge_slave_1: entered allmulticast mode
[  744.301631][T15871] bridge_slave_1: entered promiscuous mode
[  744.639411][T15871] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  744.723748][T15904] : Can't lookup blockdev
[  744.752185][T15871] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  744.765955][T15904] ubi0: attaching mtd0
[  744.839023][T15904] ubi0: scanning is finished
[  744.879823][T15904] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  745.071883][T15871] team0: Port device team_slave_0 added
[  745.090159][T15909] FAULT_INJECTION: forcing a failure.
[  745.090159][T15909] name failslab, interval 1, probability 0, space 0, times 0
[  745.115401][ T9696] Bluetooth: hci4: command tx timeout
[  745.141275][T15871] team0: Port device team_slave_1 added
[  745.183138][T15911] : Can't lookup blockdev
[  745.201239][T15909] CPU: 0 UID: 0 PID: 15909 Comm: syz.2.1909 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  745.201272][T15909] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  745.201279][T15909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  745.201289][T15909] Call Trace:
[  745.201295][T15909]  <TASK>
[  745.201303][T15909]  dump_stack_lvl+0x16c/0x1f0
[  745.201331][T15909]  should_fail_ex+0x512/0x640
[  745.201358][T15909]  ? fs_reclaim_acquire+0xae/0x150
[  745.201386][T15909]  should_failslab+0xc2/0x120
[  745.201412][T15909]  kmem_cache_alloc_noprof+0x75/0x6e0
[  745.201430][T15909]  ? __pfx_map_id_range_down+0x10/0x10
[  745.201446][T15909]  ? security_inode_alloc+0x3b/0x2b0
[  745.201480][T15909]  ? security_inode_alloc+0x3b/0x2b0
[  745.201506][T15909]  security_inode_alloc+0x3b/0x2b0
[  745.201536][T15909]  inode_init_always_gfp+0xce4/0x1030
[  745.201559][T15909]  alloc_inode+0x86/0x240
[  745.201584][T15909]  new_inode+0x22/0x1c0
[  745.201611][T15909]  nfsd_fill_super+0x13d/0x5a0
[  745.201641][T15909]  ? __pfx_nfsd_fill_super+0x10/0x10
[  745.201669][T15909]  get_tree_keyed+0x10e/0x1d0
[  745.201690][T15909]  vfs_get_tree+0x8e/0x340
[  745.201718][T15909]  path_mount+0x7b9/0x23a0
[  745.201743][T15909]  ? __pfx_path_mount+0x10/0x10
[  745.201766][T15909]  ? kmem_cache_free+0x2d4/0x6c0
[  745.201784][T15909]  ? putname+0x154/0x1a0
[  745.201811][T15909]  ? putname+0x154/0x1a0
[  745.201832][T15909]  ? putname+0x154/0x1a0
[  745.201858][T15909]  ? __x64_sys_mount+0x293/0x310
[  745.201878][T15909]  __x64_sys_mount+0x293/0x310
[  745.201900][T15909]  ? __pfx___x64_sys_mount+0x10/0x10
[  745.201929][T15909]  do_syscall_64+0xcd/0xfa0
[  745.201953][T15909]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  745.201979][T15909] RIP: 0033:0x7fd418d8f6c9
[  745.201994][T15909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  745.202012][T15909] RSP: 002b:00007fd419bd0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  745.202029][T15909] RAX: ffffffffffffffda RBX: 00007fd418fe5fa0 RCX: 00007fd418d8f6c9
[  745.202041][T15909] RDX: 0000200000000080 RSI: 0000200000000040 RDI: 0000000000000000
[  745.202052][T15909] RBP: 00007fd418e11f91 R08: 0000000000000000 R09: 0000000000000000
[  745.202062][T15909] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  745.202073][T15909] R13: 00007fd418fe6038 R14: 00007fd418fe5fa0 R15: 00007ffd9e02c678
[  745.202097][T15909]  </TASK>
[  745.836505][T15904] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  745.868121][T15911] ubi0: attaching mtd0
[  745.926338][T15911] ubi0: scanning is finished
[  745.968777][T15911] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  746.354667][T15871] batman_adv: batadv0: Adding interface: batadv_slave_0
[  746.386413][T15871] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  746.532401][T15871] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  746.555040][T15911] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  746.694943][T15871] batman_adv: batadv0: Adding interface: batadv_slave_1
[  746.731522][T15871] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  746.911500][T15871] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  747.056588][T15922] svc: failed to register nfsdv3 RPC service (errno 111).
[  747.106468][T15922] svc: failed to register nfsaclv3 RPC service (errno 111).
[  747.180061][ T9696] Bluetooth: hci4: command tx timeout
[  747.420137][T15871] hsr_slave_0: entered promiscuous mode
[  747.477599][T15871] hsr_slave_1: entered promiscuous mode
[  747.511791][T15871] debugfs: 'hsr0' already exists in 'hsr'
[  747.548080][T15871] Cannot create hsr debugfs directory
[  749.034051][T15871] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  749.118298][T15871] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  749.193393][T15871] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  749.251358][ T9696] Bluetooth: hci4: command tx timeout
[  749.291832][T15871] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  749.850541][T15871] 8021q: adding VLAN 0 to HW filter on device bond0
[  749.896991][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  749.903780][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  750.231363][T15871] 8021q: adding VLAN 0 to HW filter on device team0
[  750.309293][T15962] FAULT_INJECTION: forcing a failure.
[  750.309293][T15962] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  750.394242][T15962] CPU: 0 UID: 0 PID: 15962 Comm: syz.2.1921 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  750.394277][T15962] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  750.394284][T15962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  750.394294][T15962] Call Trace:
[  750.394302][T15962]  <TASK>
[  750.394311][T15962]  dump_stack_lvl+0x16c/0x1f0
[  750.394339][T15962]  should_fail_ex+0x512/0x640
[  750.394372][T15962]  should_fail_alloc_page+0xe7/0x130
[  750.394405][T15962]  prepare_alloc_pages+0x3c2/0x610
[  750.394434][T15962]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  750.394454][T15962]  ? __lock_acquire+0x622/0x1c90
[  750.394485][T15962]  ? __lock_acquire+0x622/0x1c90
[  750.394513][T15962]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  750.394541][T15962]  ? __bfs+0x148/0x290
[  750.394566][T15962]  ? check_irq_usage+0xcb/0x920
[  750.394589][T15962]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  750.394621][T15962]  ? policy_nodemask+0xea/0x4e0
[  750.394649][T15962]  alloc_pages_mpol+0x1fb/0x550
[  750.394675][T15962]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  750.394707][T15962]  folio_alloc_mpol_noprof+0x36/0x2f0
[  750.394739][T15962]  shmem_alloc_folio+0x135/0x160
[  750.394768][T15962]  shmem_alloc_and_add_folio+0x494/0xc20
[  750.394794][T15962]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  750.394815][T15962]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  750.394839][T15962]  shmem_get_folio_gfp+0x67f/0x1610
[  750.394861][T15962]  ? filemap_map_pages+0x11a2/0x1d50
[  750.394879][T15962]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  750.394899][T15962]  ? filemap_map_pages+0x121f/0x1d50
[  750.394920][T15962]  shmem_fault+0x1fe/0xa30
[  750.394940][T15962]  ? __pfx_shmem_fault+0x10/0x10
[  750.394970][T15962]  ? __pfx_filemap_map_pages+0x10/0x10
[  750.394994][T15962]  ? __pfx_filemap_map_pages+0x10/0x10
[  750.395010][T15962]  __do_fault+0x10d/0x490
[  750.395032][T15962]  ? __pfx_filemap_map_pages+0x10/0x10
[  750.395048][T15962]  do_pte_missing+0xf4a/0x3ba0
[  750.395078][T15962]  ? find_held_lock+0x2b/0x80
[  750.395099][T15962]  ? __handle_mm_fault+0x1529/0x2aa0
[  750.395132][T15962]  __handle_mm_fault+0x1556/0x2aa0
[  750.395165][T15962]  ? mt_find+0x3e2/0xa20
[  750.395191][T15962]  ? __pfx___handle_mm_fault+0x10/0x10
[  750.395219][T15962]  ? __pfx_mt_find+0x10/0x10
[  750.395256][T15962]  ? find_vma+0xbf/0x140
[  750.395277][T15962]  ? __pfx_find_vma+0x10/0x10
[  750.395302][T15962]  handle_mm_fault+0x589/0xd10
[  750.395332][T15962]  ? __pkru_allows_pkey+0x21/0xb0
[  750.395369][T15962]  do_user_addr_fault+0x7a6/0x1370
[  750.395389][T15962]  ? rcu_is_watching+0x12/0xc0
[  750.395411][T15962]  exc_page_fault+0x64/0xc0
[  750.395433][T15962]  asm_exc_page_fault+0x26/0x30
[  750.395451][T15962] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  750.395482][T15962] Code: 3c 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  750.395500][T15962] RSP: 0018:ffffc9000c637c20 EFLAGS: 00050206
[  750.395516][T15962] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000007000
[  750.395527][T15962] RDX: 0000000000000000 RSI: 0000000000001000 RDI: ffff8880530c1000
[  750.395537][T15962] RBP: 0000000000008000 R08: 0000000000000001 R09: ffffed100a618fff
[  750.395547][T15962] R10: ffff8880530c7fff R11: 0000000000000000 R12: 0000000000000000
[  750.395558][T15962] R13: ffff8880530c0000 R14: 0000000000000000 R15: 0000000000000000
[  750.395580][T15962]  _copy_from_user+0x98/0xd0
[  750.395611][T15962]  copy_from_sockptr_offset.constprop.0+0x153/0x1a0
[  750.395640][T15962]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  750.395667][T15962]  ? __kmalloc_node_track_caller_noprof.cold+0x59/0x5e
[  750.395696][T15962]  ? ip_setsockopt+0x59/0xf0
[  750.395719][T15962]  ? __local_bh_enable_ip+0xa4/0x120
[  750.395747][T15962]  do_ip_setsockopt+0x2135/0x3130
[  750.395777][T15962]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  750.395801][T15962]  ? file_init_path+0x4fe/0x760
[  750.395829][T15962]  ? __pfx_aa_sk_perm+0x10/0x10
[  750.395851][T15962]  ? find_held_lock+0x2b/0x80
[  750.395874][T15962]  ip_setsockopt+0x59/0xf0
[  750.395899][T15962]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  750.395924][T15962]  do_sock_setsockopt+0xf3/0x1d0
[  750.395949][T15962]  __sys_setsockopt+0x120/0x1a0
[  750.395995][T15962]  __x64_sys_setsockopt+0xbd/0x160
[  750.396024][T15962]  ? do_syscall_64+0x91/0xfa0
[  750.396045][T15962]  ? lockdep_hardirqs_on+0x7c/0x110
[  750.396066][T15962]  do_syscall_64+0xcd/0xfa0
[  750.396090][T15962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  750.396108][T15962] RIP: 0033:0x7fd418d8f6c9
[  750.396124][T15962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  750.396141][T15962] RSP: 002b:00007fd419bd0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  750.396157][T15962] RAX: ffffffffffffffda RBX: 00007fd418fe5fa0 RCX: 00007fd418d8f6c9
[  750.396168][T15962] RDX: 0000000000000030 RSI: 0000000000000000 RDI: 0000000000000005
[  750.396178][T15962] RBP: 00007fd418e11f91 R08: 0000000000008000 R09: 0000000000000000
[  750.396188][T15962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  750.396198][T15962] R13: 00007fd418fe6038 R14: 00007fd418fe5fa0 R15: 00007ffd9e02c678
[  750.396222][T15962]  </TASK>
[  751.065863][T15854] delete_channel: no stack
[  753.549578][ T8913] bridge0: port 1(bridge_slave_0) entered blocking state
[  753.556711][ T8913] bridge0: port 1(bridge_slave_0) entered forwarding state
[  753.604689][ T8913] bridge0: port 2(bridge_slave_1) entered blocking state
[  753.612285][ T8913] bridge0: port 2(bridge_slave_1) entered forwarding state
[  753.713543][T15984] FAULT_INJECTION: forcing a failure.
[  753.713543][T15984] name failslab, interval 1, probability 0, space 0, times 0
[  753.873793][T15984] CPU: 0 UID: 0 PID: 15984 Comm: syz.4.1926 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  753.873826][T15984] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  753.873833][T15984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  753.873844][T15984] Call Trace:
[  753.873850][T15984]  <TASK>
[  753.873857][T15984]  dump_stack_lvl+0x16c/0x1f0
[  753.873885][T15984]  should_fail_ex+0x512/0x640
[  753.873915][T15984]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  753.873946][T15984]  should_failslab+0xc2/0x120
[  753.873972][T15984]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  753.873993][T15984]  ? alloc_inode+0xc3/0x240
[  753.874023][T15984]  ? alloc_inode+0xc3/0x240
[  753.874046][T15984]  alloc_inode+0xc3/0x240
[  753.874072][T15984]  new_inode+0x22/0x1c0
[  753.874099][T15984]  nfsd_mkdir+0x78/0x460
[  753.874135][T15984]  nfsd_fill_super+0x41e/0x5a0
[  753.874165][T15984]  ? __pfx_nfsd_fill_super+0x10/0x10
[  753.874194][T15984]  get_tree_keyed+0x10e/0x1d0
[  753.874215][T15984]  vfs_get_tree+0x8e/0x340
[  753.874244][T15984]  path_mount+0x7b9/0x23a0
[  753.874270][T15984]  ? __pfx_path_mount+0x10/0x10
[  753.874293][T15984]  ? kmem_cache_free+0x2d4/0x6c0
[  753.874312][T15984]  ? putname+0x154/0x1a0
[  753.874338][T15984]  ? putname+0x154/0x1a0
[  753.874359][T15984]  ? putname+0x154/0x1a0
[  753.874385][T15984]  ? __x64_sys_mount+0x293/0x310
[  753.874404][T15984]  __x64_sys_mount+0x293/0x310
[  753.874426][T15984]  ? __pfx___x64_sys_mount+0x10/0x10
[  753.874456][T15984]  do_syscall_64+0xcd/0xfa0
[  753.874480][T15984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  753.874498][T15984] RIP: 0033:0x7fcf0518f6c9
[  753.874513][T15984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  753.874531][T15984] RSP: 002b:00007fcf05fc2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  753.874549][T15984] RAX: ffffffffffffffda RBX: 00007fcf053e5fa0 RCX: 00007fcf0518f6c9
[  753.874560][T15984] RDX: 0000200000000080 RSI: 0000200000000040 RDI: 0000000000000000
[  753.874571][T15984] RBP: 00007fcf05211f91 R08: 0000000000000000 R09: 0000000000000000
[  753.874581][T15984] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  753.874592][T15984] R13: 00007fcf053e6038 R14: 00007fcf053e5fa0 R15: 00007ffe1695c988
[  753.874615][T15984]  </TASK>
[  754.784343][T15994] nvme_fcloop: unknown parameter or missing value '¿°®Ãä$'
[  755.393985][T15871] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  755.693354][T16001] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  756.140257][T16013] : Can't lookup blockdev
[  756.187885][T16013] ubi0: attaching mtd0
[  756.193355][T16013] ubi0: scanning is finished
[  756.260254][T16016] FAULT_INJECTION: forcing a failure.
[  756.260254][T16016] name failslab, interval 1, probability 0, space 0, times 0
[  756.309905][T16013] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  756.363911][T16018] zswap: compressor û not available
[  756.374594][T16016] CPU: 0 UID: 0 PID: 16016 Comm: syz.2.1936 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  756.374630][T16016] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  756.374637][T16016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  756.374647][T16016] Call Trace:
[  756.374654][T16016]  <TASK>
[  756.374661][T16016]  dump_stack_lvl+0x16c/0x1f0
[  756.374688][T16016]  should_fail_ex+0x512/0x640
[  756.374720][T16016]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  756.374744][T16016]  should_failslab+0xc2/0x120
[  756.374769][T16016]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  756.374788][T16016]  ? stack_depot_save_flags+0x29/0x9c0
[  756.374817][T16016]  ? __d_alloc+0x32/0xae0
[  756.374842][T16016]  ? __d_alloc+0x32/0xae0
[  756.374862][T16016]  __d_alloc+0x32/0xae0
[  756.374880][T16016]  ? security_inode_alloc+0x3b/0x2b0
[  756.374907][T16016]  ? inode_init_always_gfp+0xce4/0x1030
[  756.374928][T16016]  d_alloc_parallel+0x111/0x1510
[  756.374963][T16016]  ? __lock_acquire+0xb8a/0x1c90
[  756.374988][T16016]  ? __pfx_d_alloc_parallel+0x10/0x10
[  756.375019][T16016]  ? lockdep_init_map_type+0x5c/0x280
[  756.375046][T16016]  ? lockdep_init_map_type+0x5c/0x280
[  756.375076][T16016]  __lookup_slow+0x193/0x460
[  756.375104][T16016]  ? __pfx___lookup_slow+0x10/0x10
[  756.375134][T16016]  ? __mod_node_page_state+0x50/0x1d0
[  756.375166][T16016]  ? __mod_node_page_state+0x50/0x1d0
[  756.375203][T16016]  ? d_lookup+0xe7/0x190
[  756.375234][T16016]  lookup_noperm+0xe1/0x110
[  756.375263][T16016]  simple_start_creating+0xd1/0x1b0
[  756.375297][T16016]  nfsd_mkdir+0xf6/0x460
[  756.375329][T16016]  nfsd_fill_super+0x41e/0x5a0
[  756.375361][T16016]  ? __pfx_nfsd_fill_super+0x10/0x10
[  756.375389][T16016]  get_tree_keyed+0x10e/0x1d0
[  756.375410][T16016]  vfs_get_tree+0x8e/0x340
[  756.375438][T16016]  path_mount+0x7b9/0x23a0
[  756.375463][T16016]  ? __pfx_path_mount+0x10/0x10
[  756.375486][T16016]  ? kmem_cache_free+0x2d4/0x6c0
[  756.375504][T16016]  ? putname+0x154/0x1a0
[  756.375531][T16016]  ? putname+0x154/0x1a0
[  756.375552][T16016]  ? putname+0x154/0x1a0
[  756.375578][T16016]  ? __x64_sys_mount+0x293/0x310
[  756.375598][T16016]  __x64_sys_mount+0x293/0x310
[  756.375626][T16016]  ? __pfx___x64_sys_mount+0x10/0x10
[  756.375655][T16016]  do_syscall_64+0xcd/0xfa0
[  756.375679][T16016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  756.375698][T16016] RIP: 0033:0x7fd418d8f6c9
[  756.375712][T16016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  756.375730][T16016] RSP: 002b:00007fd419bd0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  756.375748][T16016] RAX: ffffffffffffffda RBX: 00007fd418fe5fa0 RCX: 00007fd418d8f6c9
[  756.375761][T16016] RDX: 0000200000000080 RSI: 0000200000000040 RDI: 0000000000000000
[  756.375773][T16016] RBP: 00007fd418e11f91 R08: 0000000000000000 R09: 0000000000000000
[  756.375784][T16016] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  756.375794][T16016] R13: 00007fd418fe6038 R14: 00007fd418fe5fa0 R15: 00007ffd9e02c678
[  756.375818][T16016]  </TASK>
[  756.679280][    C0] vkms_vblank_simulate: vblank timer overrun
[  756.685410][    C0] hrtimer: interrupt took 311030536 ns
[  756.785423][    C0] vkms_vblank_simulate: vblank timer overrun
[  757.453364][T15871] 8021q: adding VLAN 0 to HW filter on device batadv0
[  757.898082][T16013] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  759.209661][T15871] veth0_vlan: entered promiscuous mode
[  759.297941][T15871] veth1_vlan: entered promiscuous mode
[  759.486034][T15871] veth0_macvtap: entered promiscuous mode
[  759.552926][T15871] veth1_macvtap: entered promiscuous mode
[  759.735097][T15871] batman_adv: batadv0: Interface activated: batadv_slave_0
[  759.848503][T15871] batman_adv: batadv0: Interface activated: batadv_slave_1
[  760.000944][ T8911] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  760.028899][ T8911] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  760.094407][T16069] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1945'.
[  760.210036][ T8911] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  760.234022][T16071] : Can't lookup blockdev
[  760.273975][T16071] ubi0: attaching mtd0
[  760.279184][ T8911] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  760.321283][T16071] ubi0: scanning is finished
[  760.370794][T16071] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  760.599407][T11986] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  760.677314][T11986] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  760.924137][T16071] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  761.061904][T16083] CIFS: VFS: Invalid SecurityFlags: 0
[  761.061904][T16083] 
[  761.097400][T11987] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  761.149294][T11987] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  761.473303][ T8913] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  762.579013][T16134] FAULT_INJECTION: forcing a failure.
[  762.579013][T16134] name failslab, interval 1, probability 0, space 0, times 0
[  762.694958][T16134] CPU: 0 UID: 0 PID: 16134 Comm: syz.4.1950 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  762.694992][T16134] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  762.694999][T16134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  762.695010][T16134] Call Trace:
[  762.695016][T16134]  <TASK>
[  762.695024][T16134]  dump_stack_lvl+0x16c/0x1f0
[  762.695052][T16134]  should_fail_ex+0x512/0x640
[  762.695080][T16134]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  762.695115][T16134]  should_failslab+0xc2/0x120
[  762.695141][T16134]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  762.695161][T16134]  ? __d_alloc+0x32/0xae0
[  762.695187][T16134]  ? __d_alloc+0x32/0xae0
[  762.695207][T16134]  __d_alloc+0x32/0xae0
[  762.695227][T16134]  ? do_raw_spin_unlock+0x172/0x230
[  762.695248][T16134]  d_alloc+0x4a/0x1e0
[  762.695271][T16134]  d_alloc_name+0x83/0xb0
[  762.695292][T16134]  ? __pfx_d_alloc_name+0x10/0x10
[  762.695320][T16134]  simple_fill_super+0x2eb/0x720
[  762.695341][T16134]  ? __pfx_nfsd_fill_super+0x10/0x10
[  762.695371][T16134]  nfsd_fill_super+0x90/0x5a0
[  762.695398][T16134]  ? __pfx_set_anon_super_fc+0x10/0x10
[  762.695433][T16134]  ? __pfx_nfsd_fill_super+0x10/0x10
[  762.695461][T16134]  get_tree_keyed+0x10e/0x1d0
[  762.695481][T16134]  vfs_get_tree+0x8e/0x340
[  762.695509][T16134]  path_mount+0x7b9/0x23a0
[  762.695534][T16134]  ? __pfx_path_mount+0x10/0x10
[  762.695557][T16134]  ? kmem_cache_free+0x2d4/0x6c0
[  762.695575][T16134]  ? putname+0x154/0x1a0
[  762.695602][T16134]  ? putname+0x154/0x1a0
[  762.695623][T16134]  ? putname+0x154/0x1a0
[  762.695649][T16134]  ? __x64_sys_mount+0x293/0x310
[  762.695669][T16134]  __x64_sys_mount+0x293/0x310
[  762.695691][T16134]  ? __pfx___x64_sys_mount+0x10/0x10
[  762.695719][T16134]  do_syscall_64+0xcd/0xfa0
[  762.695743][T16134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.695761][T16134] RIP: 0033:0x7fcf0518f6c9
[  762.695776][T16134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  762.695793][T16134] RSP: 002b:00007fcf05fc2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  762.695811][T16134] RAX: ffffffffffffffda RBX: 00007fcf053e5fa0 RCX: 00007fcf0518f6c9
[  762.695823][T16134] RDX: 0000200000000080 RSI: 0000200000000040 RDI: 0000000000000000
[  762.695833][T16134] RBP: 00007fcf05211f91 R08: 0000000000000000 R09: 0000000000000000
[  762.695843][T16134] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  762.695853][T16134] R13: 00007fcf053e6038 R14: 00007fcf053e5fa0 R15: 00007ffe1695c988
[  762.695877][T16134]  </TASK>
[  764.897127][T16168] zswap: compressor  not available
[  765.482169][ T9696] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  765.490554][ T9696] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff
[  768.176744][T16219] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1970'.
[  769.385557][T16247] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1977'.
[  769.460670][T16247] netlink: 93 bytes leftover after parsing attributes in process `syz.4.1977'.
[  771.567522][T16279] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  771.717754][T16282] usb usb36: usbfs: process 16282 (syz.2.1984) did not claim interface 0 before use
[  772.061057][T16284] Loading of unsigned module is rejected
[  772.073499][T16289] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1985'.
[  772.143010][T16290] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1985'.
[  772.663714][T16299] FAULT_INJECTION: forcing a failure.
[  772.663714][T16299] name failslab, interval 1, probability 0, space 0, times 0
[  772.760778][T16299] CPU: 0 UID: 0 PID: 16299 Comm: syz.3.1987 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  772.760814][T16299] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  772.760822][T16299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  772.760832][T16299] Call Trace:
[  772.760838][T16299]  <TASK>
[  772.760846][T16299]  dump_stack_lvl+0x16c/0x1f0
[  772.760875][T16299]  should_fail_ex+0x512/0x640
[  772.760903][T16299]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  772.760927][T16299]  should_failslab+0xc2/0x120
[  772.760952][T16299]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  772.760972][T16299]  ? stack_depot_save_flags+0x29/0x9c0
[  772.761001][T16299]  ? __d_alloc+0x32/0xae0
[  772.761026][T16299]  ? __d_alloc+0x32/0xae0
[  772.761046][T16299]  ? kmem_cache_alloc_noprof+0x250/0x6e0
[  772.761063][T16299]  __d_alloc+0x32/0xae0
[  772.761082][T16299]  ? inode_init_always_gfp+0xce4/0x1030
[  772.761100][T16299]  ? alloc_inode+0x86/0x240
[  772.761127][T16299]  d_alloc_parallel+0x111/0x1510
[  772.761162][T16299]  ? __lock_acquire+0xb8a/0x1c90
[  772.761187][T16299]  ? __pfx_d_alloc_parallel+0x10/0x10
[  772.761217][T16299]  ? lockdep_init_map_type+0x5c/0x280
[  772.761244][T16299]  ? lockdep_init_map_type+0x5c/0x280
[  772.761274][T16299]  __lookup_slow+0x193/0x460
[  772.761302][T16299]  ? __pfx___lookup_slow+0x10/0x10
[  772.761332][T16299]  ? __mod_node_page_state+0x50/0x1d0
[  772.761365][T16299]  ? __mod_node_page_state+0x50/0x1d0
[  772.761392][T16299]  ? d_lookup+0xe7/0x190
[  772.761423][T16299]  lookup_noperm+0xe1/0x110
[  772.761451][T16299]  simple_start_creating+0xd1/0x1b0
[  772.761483][T16299]  nfsd_fill_super+0x1c1/0x5a0
[  772.761514][T16299]  ? __pfx_nfsd_fill_super+0x10/0x10
[  772.761542][T16299]  get_tree_keyed+0x10e/0x1d0
[  772.761563][T16299]  vfs_get_tree+0x8e/0x340
[  772.761591][T16299]  path_mount+0x7b9/0x23a0
[  772.761616][T16299]  ? __pfx_path_mount+0x10/0x10
[  772.761639][T16299]  ? kmem_cache_free+0x2d4/0x6c0
[  772.761658][T16299]  ? putname+0x154/0x1a0
[  772.761684][T16299]  ? putname+0x154/0x1a0
[  772.761705][T16299]  ? putname+0x154/0x1a0
[  772.761731][T16299]  ? __x64_sys_mount+0x293/0x310
[  772.761769][T16299]  __x64_sys_mount+0x293/0x310
[  772.761791][T16299]  ? __pfx___x64_sys_mount+0x10/0x10
[  772.761820][T16299]  do_syscall_64+0xcd/0xfa0
[  772.761846][T16299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  772.761866][T16299] RIP: 0033:0x7fc9d258f6c9
[  772.761883][T16299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  772.761900][T16299] RSP: 002b:00007fc9d340b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  772.761919][T16299] RAX: ffffffffffffffda RBX: 00007fc9d27e5fa0 RCX: 00007fc9d258f6c9
[  772.761930][T16299] RDX: 0000200000000080 RSI: 0000200000000040 RDI: 0000000000000000
[  772.761941][T16299] RBP: 00007fc9d2611f91 R08: 0000000000000000 R09: 0000000000000000
[  772.761951][T16299] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  772.761962][T16299] R13: 00007fc9d27e6038 R14: 00007fc9d27e5fa0 R15: 00007ffc9fabd868
[  772.761985][T16299]  </TASK>
[  777.130224][T16346] FAULT_INJECTION: forcing a failure.
[  777.130224][T16346] name failslab, interval 1, probability 0, space 0, times 0
[  777.255112][T16346] CPU: 0 UID: 0 PID: 16346 Comm: syz.3.1998 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  777.255147][T16346] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  777.255154][T16346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  777.255165][T16346] Call Trace:
[  777.255171][T16346]  <TASK>
[  777.255179][T16346]  dump_stack_lvl+0x16c/0x1f0
[  777.255207][T16346]  should_fail_ex+0x512/0x640
[  777.255236][T16346]  ? fs_reclaim_acquire+0xae/0x150
[  777.255263][T16346]  should_failslab+0xc2/0x120
[  777.255289][T16346]  kmem_cache_alloc_noprof+0x75/0x6e0
[  777.255308][T16346]  ? __pfx_map_id_range_down+0x10/0x10
[  777.255324][T16346]  ? security_inode_alloc+0x3b/0x2b0
[  777.255356][T16346]  ? security_inode_alloc+0x3b/0x2b0
[  777.255383][T16346]  security_inode_alloc+0x3b/0x2b0
[  777.255412][T16346]  inode_init_always_gfp+0xce4/0x1030
[  777.255436][T16346]  alloc_inode+0x86/0x240
[  777.255461][T16346]  new_inode+0x22/0x1c0
[  777.255488][T16346]  nfsd_fill_super+0x13d/0x5a0
[  777.255520][T16346]  ? __pfx_nfsd_fill_super+0x10/0x10
[  777.255548][T16346]  get_tree_keyed+0x10e/0x1d0
[  777.255569][T16346]  vfs_get_tree+0x8e/0x340
[  777.255598][T16346]  path_mount+0x7b9/0x23a0
[  777.255624][T16346]  ? __pfx_path_mount+0x10/0x10
[  777.255646][T16346]  ? kmem_cache_free+0x2d4/0x6c0
[  777.255665][T16346]  ? putname+0x154/0x1a0
[  777.255691][T16346]  ? putname+0x154/0x1a0
[  777.255712][T16346]  ? putname+0x154/0x1a0
[  777.255737][T16346]  ? __x64_sys_mount+0x293/0x310
[  777.255757][T16346]  __x64_sys_mount+0x293/0x310
[  777.255780][T16346]  ? __pfx___x64_sys_mount+0x10/0x10
[  777.255809][T16346]  do_syscall_64+0xcd/0xfa0
[  777.255834][T16346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  777.255852][T16346] RIP: 0033:0x7fc9d258f6c9
[  777.255867][T16346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  777.255884][T16346] RSP: 002b:00007fc9d340b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  777.255903][T16346] RAX: ffffffffffffffda RBX: 00007fc9d27e5fa0 RCX: 00007fc9d258f6c9
[  777.255914][T16346] RDX: 0000200000000080 RSI: 0000200000000040 RDI: 0000000000000000
[  777.255925][T16346] RBP: 00007fc9d2611f91 R08: 0000000000000000 R09: 0000000000000000
[  777.255936][T16346] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  777.255946][T16346] R13: 00007fc9d27e6038 R14: 00007fc9d27e5fa0 R15: 00007ffc9fabd868
[  777.255977][T16346]  </TASK>
[  778.222292][T16351] mkiss: ax0: crc mode is auto.
[  780.747748][T16379] =======================================================
[  780.747748][T16379] WARNING: The mand mount option has been deprecated and
[  780.747748][T16379]          and is ignored by this kernel. Remove the mand
[  780.747748][T16379]          option from the mount to silence this warning.
[  780.747748][T16379] =======================================================
[  781.112338][T16379] block nbd8: shutting down sockets
[  781.163466][T16387] : Can't lookup blockdev
[  781.234187][T16389] ubi0: attaching mtd0
[  781.319593][T16389] ubi0: scanning is finished
[  781.324268][T16389] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  781.881012][T16389] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  782.632314][T16426] FAULT_INJECTION: forcing a failure.
[  782.632314][T16426] name failslab, interval 1, probability 0, space 0, times 0
[  782.718784][T16426] CPU: 0 UID: 0 PID: 16426 Comm: syz.4.2012 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  782.718819][T16426] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  782.718826][T16426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  782.718836][T16426] Call Trace:
[  782.718843][T16426]  <TASK>
[  782.718850][T16426]  dump_stack_lvl+0x16c/0x1f0
[  782.718878][T16426]  should_fail_ex+0x512/0x640
[  782.718906][T16426]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  782.718929][T16426]  should_failslab+0xc2/0x120
[  782.718954][T16426]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  782.718974][T16426]  ? __d_alloc+0x32/0xae0
[  782.718999][T16426]  ? __d_alloc+0x32/0xae0
[  782.719019][T16426]  __d_alloc+0x32/0xae0
[  782.719042][T16426]  d_alloc_pseudo+0x1c/0xc0
[  782.719068][T16426]  alloc_file_pseudo+0xcf/0x230
[  782.719096][T16426]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  782.719123][T16426]  ? alloc_fd+0x471/0x7d0
[  782.719144][T16426]  sock_alloc_file+0x50/0x210
[  782.719165][T16426]  __sys_socket+0x1c0/0x260
[  782.719190][T16426]  ? __pfx___sys_socket+0x10/0x10
[  782.719214][T16426]  ? xfd_validate_state+0x61/0x180
[  782.719240][T16426]  ? __pfx_ksys_write+0x10/0x10
[  782.719265][T16426]  __x64_sys_socket+0x72/0xb0
[  782.719288][T16426]  ? lockdep_hardirqs_on+0x7c/0x110
[  782.719310][T16426]  do_syscall_64+0xcd/0xfa0
[  782.719333][T16426]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  782.719351][T16426] RIP: 0033:0x7fcf0518f6c9
[  782.719366][T16426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  782.719384][T16426] RSP: 002b:00007fcf05fc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  782.719401][T16426] RAX: ffffffffffffffda RBX: 00007fcf053e5fa0 RCX: 00007fcf0518f6c9
[  782.719413][T16426] RDX: 00000000fffff911 RSI: 0000000000000002 RDI: 0000000000000011
[  782.719424][T16426] RBP: 00007fcf05211f91 R08: 0000000000000000 R09: 0000000000000000
[  782.719434][T16426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  782.719444][T16426] R13: 00007fcf053e6038 R14: 00007fcf053e5fa0 R15: 00007ffe1695c988
[  782.719467][T16426]  </TASK>
[  784.350747][T16430] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 2908669451 out of range (51000000..2150000000)
[  786.671761][ T9696] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[  786.671790][ T9696] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260
[  786.687763][ T9696] Bluetooth: hci4: Unknown advertising packet type: 0x7f
[  786.687830][ T9696] Bluetooth: hci4: Malformed LE Event: 0x0d
[  789.381902][T16510] FAULT_INJECTION: forcing a failure.
[  789.381902][T16510] name failslab, interval 1, probability 0, space 0, times 0
[  789.485169][T16510] CPU: 0 UID: 0 PID: 16510 Comm: syz.2.2030 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  789.485203][T16510] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  789.485210][T16510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  789.485221][T16510] Call Trace:
[  789.485227][T16510]  <TASK>
[  789.485234][T16510]  dump_stack_lvl+0x16c/0x1f0
[  789.485262][T16510]  should_fail_ex+0x512/0x640
[  789.485291][T16510]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  789.485315][T16510]  should_failslab+0xc2/0x120
[  789.485341][T16510]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  789.485360][T16510]  ? stack_depot_save_flags+0x29/0x9c0
[  789.485390][T16510]  ? __d_alloc+0x32/0xae0
[  789.485416][T16510]  ? __d_alloc+0x32/0xae0
[  789.485435][T16510]  __d_alloc+0x32/0xae0
[  789.485454][T16510]  ? security_inode_alloc+0x3b/0x2b0
[  789.485481][T16510]  ? inode_init_always_gfp+0xce4/0x1030
[  789.485502][T16510]  d_alloc_parallel+0x111/0x1510
[  789.485537][T16510]  ? __lock_acquire+0xb8a/0x1c90
[  789.485562][T16510]  ? __pfx_d_alloc_parallel+0x10/0x10
[  789.485600][T16510]  ? lockdep_init_map_type+0x5c/0x280
[  789.485628][T16510]  ? lockdep_init_map_type+0x5c/0x280
[  789.485658][T16510]  __lookup_slow+0x193/0x460
[  789.485686][T16510]  ? __pfx___lookup_slow+0x10/0x10
[  789.485716][T16510]  ? __mod_node_page_state+0x50/0x1d0
[  789.485750][T16510]  ? __mod_node_page_state+0x50/0x1d0
[  789.485777][T16510]  ? d_lookup+0xe7/0x190
[  789.485808][T16510]  lookup_noperm+0xe1/0x110
[  789.485838][T16510]  simple_start_creating+0xd1/0x1b0
[  789.485871][T16510]  nfsd_mkdir+0xf6/0x460
[  789.485901][T16510]  nfsd_fill_super+0x41e/0x5a0
[  789.485931][T16510]  ? __pfx_nfsd_fill_super+0x10/0x10
[  789.485959][T16510]  get_tree_keyed+0x10e/0x1d0
[  789.485984][T16510]  vfs_get_tree+0x8e/0x340
[  789.486013][T16510]  path_mount+0x7b9/0x23a0
[  789.486038][T16510]  ? __pfx_path_mount+0x10/0x10
[  789.486061][T16510]  ? kmem_cache_free+0x2d4/0x6c0
[  789.486079][T16510]  ? putname+0x154/0x1a0
[  789.486106][T16510]  ? putname+0x154/0x1a0
[  789.486126][T16510]  ? putname+0x154/0x1a0
[  789.486151][T16510]  ? __x64_sys_mount+0x293/0x310
[  789.486172][T16510]  __x64_sys_mount+0x293/0x310
[  789.486199][T16510]  ? __pfx___x64_sys_mount+0x10/0x10
[  789.486228][T16510]  do_syscall_64+0xcd/0xfa0
[  789.486252][T16510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  789.486271][T16510] RIP: 0033:0x7fd418d8f6c9
[  789.486286][T16510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  789.486304][T16510] RSP: 002b:00007fd419bd0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  789.486322][T16510] RAX: ffffffffffffffda RBX: 00007fd418fe5fa0 RCX: 00007fd418d8f6c9
[  789.486333][T16510] RDX: 0000200000000080 RSI: 0000200000000040 RDI: 0000000000000000
[  789.486344][T16510] RBP: 00007fd418e11f91 R08: 0000000000000000 R09: 0000000000000000
[  789.486355][T16510] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  789.486365][T16510] R13: 00007fd418fe6038 R14: 00007fd418fe5fa0 R15: 00007ffd9e02c678
[  789.486389][T16510]  </TASK>
[  790.903808][T16540] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input35
[  791.123510][T16544] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2035'.
[  791.938927][T16550] input: jJǸ-�¶š9ã%vø“û¨lµÐQ 	J86Ö‘ as /devices/virtual/input/input36
[  792.122117][T12621] Process accounting resumed
[  792.480701][T16555] netlink: 244 bytes leftover after parsing attributes in process `syz.4.2038'.
[  792.935989][T16564] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2040'.
[  793.237831][T16564] team0: Port device team_slave_1 removed
[  794.529664][T16591] QAT: Stopping all acceleration devices.
[  797.194804][T16620] netlink: 330 bytes leftover after parsing attributes in process `syz.5.2052'.
[  797.510188][T16620] mac80211_hwsim hwsim26 ›: renamed from wlan0 (while UP)
[  797.802299][T16626] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4)
[  799.420981][T16644] QAT: failed to copy from user.
[  799.904295][T16648] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2059'.
[  800.862543][T16658] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2060'.
[  802.761232][T16703] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2068'.
[  803.895558][ T9696] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  803.895590][ T9696] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  803.918944][ T9696] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  803.918989][ T9696] Bluetooth: hci1: Malformed LE Event: 0x0d
[  806.677333][T16761] bonding: no command found in bonding_masters - use +ifname or -ifname
[  808.572742][T16790] base or size exceeds the MTRR width
[  808.617735][T16792] vhci_hcd: invalid port number 16
[  808.684715][T16792] vhci_hcd: invalid port number 16
[  808.707309][T16792] vhci_hcd: invalid port number 16
[  808.765135][T16792] vhci_hcd: invalid port number 16
[  808.791709][T16792] vhci_hcd: invalid port number 16
[  808.850825][T16792] vhci_hcd: invalid port number 16
[  808.909415][T16792] vhci_hcd: invalid port number 16
[  808.938198][T16792] vhci_hcd: invalid port number 16
[  808.970928][T16792] vhci_hcd: invalid port number 16
[  808.981010][T16799] FAULT_INJECTION: forcing a failure.
[  808.981010][T16799] name failslab, interval 1, probability 0, space 0, times 0
[  809.029479][T16792] vhci_hcd: invalid port number 16
[  809.069626][T16792] vhci_hcd: invalid port number 16
[  809.108644][T16792] vhci_hcd: invalid port number 16
[  809.277454][T16799] CPU: 0 UID: 0 PID: 16799 Comm: syz.4.2088 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  809.277488][T16799] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  809.277496][T16799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  809.277507][T16799] Call Trace:
[  809.277514][T16799]  <TASK>
[  809.277522][T16799]  dump_stack_lvl+0x16c/0x1f0
[  809.277550][T16799]  should_fail_ex+0x512/0x640
[  809.277583][T16799]  should_failslab+0xc2/0x120
[  809.277610][T16799]  kmem_cache_alloc_noprof+0x75/0x6e0
[  809.277629][T16799]  ? inet_twsk_alloc+0x120/0xa20
[  809.277652][T16799]  ? inet_twsk_alloc+0x120/0xa20
[  809.277667][T16799]  inet_twsk_alloc+0x120/0xa20
[  809.277697][T16799]  tcp_time_wait+0x5d/0xff0
[  809.277729][T16799]  tcp_rcv_state_process+0x20de/0x6490
[  809.277757][T16799]  ? try_to_wake_up+0x160/0x1870
[  809.277781][T16799]  ? __pfx_tcp_rcv_state_process+0x10/0x10
[  809.277821][T16799]  ? do_raw_spin_lock+0x12c/0x2b0
[  809.277854][T16799]  ? __pfx_tcp_v4_do_rcv+0x10/0x10
[  809.277882][T16799]  ? tcp_v4_do_rcv+0x68e/0x10a0
[  809.277909][T16799]  tcp_v4_do_rcv+0x68e/0x10a0
[  809.277936][T16799]  ? __pfx_tcp_v4_do_rcv+0x10/0x10
[  809.277962][T16799]  __release_sock+0x361/0x450
[  809.277986][T16799]  release_sock+0x5a/0x220
[  809.278004][T16799]  mptcp_check_send_data_fin+0x248/0x440
[  809.278027][T16799]  __mptcp_close+0x90e/0xbe0
[  809.278044][T16799]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  809.278077][T16799]  ? __pfx___mptcp_close+0x10/0x10
[  809.278096][T16799]  ? __local_bh_enable_ip+0xa4/0x120
[  809.278121][T16799]  mptcp_close+0x28/0xe0
[  809.278140][T16799]  inet_release+0xed/0x200
[  809.278167][T16799]  __sock_release+0xb3/0x270
[  809.278188][T16799]  ? __pfx_sock_close+0x10/0x10
[  809.278205][T16799]  sock_close+0x1c/0x30
[  809.278223][T16799]  __fput+0x402/0xb70
[  809.278250][T16799]  ? _raw_spin_unlock_irq+0x23/0x50
[  809.278273][T16799]  task_work_run+0x150/0x240
[  809.278303][T16799]  ? __pfx_task_work_run+0x10/0x10
[  809.278332][T16799]  ? __pfx___do_sys_close_range+0x10/0x10
[  809.278358][T16799]  exit_to_user_mode_loop+0xec/0x130
[  809.278388][T16799]  do_syscall_64+0x426/0xfa0
[  809.278412][T16799]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  809.278430][T16799] RIP: 0033:0x7fcf0518f6c9
[  809.278445][T16799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  809.278463][T16799] RSP: 002b:00007fcf05fc2038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  809.278481][T16799] RAX: 0000000000000000 RBX: 00007fcf053e5fa0 RCX: 00007fcf0518f6c9
[  809.278493][T16799] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  809.278504][T16799] RBP: 00007fcf05211f91 R08: 0000000000000000 R09: 0000000000000000
[  809.278514][T16799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  809.278525][T16799] R13: 00007fcf053e6038 R14: 00007fcf053e5fa0 R15: 00007ffe1695c988
[  809.278549][T16799]  </TASK>
[  809.576016][    C0] vkms_vblank_simulate: vblank timer overrun
[  811.047923][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  811.054529][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  811.185186][T16826] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2093'.
[  811.322044][T16826] netlink: 'syz.3.2093': attribute type 1 has an invalid length.
[  811.743929][T16830] random: crng reseeded on system resumption
[  812.713518][T16859] vhci_hcd: invalid port number 16
[  813.718711][T16874] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2104'.
[  813.906045][T16874] veth1_macvtap: left promiscuous mode
[  814.870783][T16886] ubi0: attaching mtd0
[  814.923125][T16886] ubi0: scanning is finished
[  814.963162][T16886] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  815.708553][T16886] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  815.982875][T16898] svc: failed to register nfsdv3 RPC service (errno 111).
[  816.167446][T16898] svc: failed to register nfsaclv3 RPC service (errno 111).
[  830.026259][T16928] delete_channel: no stack
[  830.162605][T14292] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  830.189412][T14292] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  830.198475][T14292] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  830.212797][T14292] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  830.220818][T14292] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  830.348625][T16943] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2119'.
[  830.506737][T16946] IPVS: length: 131 != 8
[  831.587652][T16413] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  831.827464][T16413] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  831.980295][T16413] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  832.303690][T14292] Bluetooth: hci5: command tx timeout
[  832.411736][T16413] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  833.067098][T16938] chnl_net:caif_netlink_parms(): no params data found
[  833.898009][T16413] bridge_slave_1: left allmulticast mode
[  833.935164][T16413] bridge_slave_1: left promiscuous mode
[  833.940971][T16413] bridge0: port 2(bridge_slave_1) entered disabled state
[  834.104215][T16413] bridge_slave_0: left allmulticast mode
[  834.110011][T16413] bridge_slave_0: left promiscuous mode
[  834.200366][T16413] bridge0: port 1(bridge_slave_0) entered disabled state
[  834.369904][T14292] Bluetooth: hci5: command tx timeout
[  834.547027][T17011] scsi_dev_info_list_add_str: bad dev info string ')–õÒzDéú÷5fk+*X€©#åR8¾ð4*œ
ýVs÷nîdv»ø¼qQWˆ}û�Ä~YrÈ€-8VGDƘ¹‹åLáBÍ%v—†õv‘}–Ypq|ƒí?ñºO¼ö[ŒÐ,!äÙ7xWDr¾Ÿµ% [Û}†Eµ$3?ñG�Ë™Î9�–Ff=ŠÃlør«GH;2L<õ»=ÒÚ|èž¿®ô8ƒ-c¡„F�Õ¸šë"™ž£É[v�9¯qôÂ4‚ MmËvq�®ékñ¹¹ò[ÕãËú(i¨ýˆNDСÄMîËXPS­êq•èqX4‰X`VððŸ�!;r¶Ö� ±È)y]×W¨šzfIðH0êáÓ,àëí�¬é¢vß{q8ÊìÛשU·Ü¹ä‘‰mØ›ŽH•ŽT´¸wí™C€Ïzø-óŠÊnR%§2]ÌÎx0Òéª5oùÐëâ�òÕ•|3>ÕlñS*LŒõÝ/«CdgÓ‘àŠ[C=Cw‹e•Äm)«ÿòÕl#È' '‹ï�'“Sž‰¡.ÍsHgi-à»ÛTY%ܹF§…*8úÒnFTÿH‡—ýæ¿?“ÿ–Þi{' ''
[  836.274020][T16413] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  836.308252][T16413] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  836.343290][T16413] bond0 (unregistering): Released all slaves
[  836.440339][T14292] Bluetooth: hci5: command tx timeout
[  836.455023][T16938] bridge0: port 1(bridge_slave_0) entered blocking state
[  836.494001][T16938] bridge0: port 1(bridge_slave_0) entered disabled state
[  836.547016][T16938] bridge_slave_0: entered allmulticast mode
[  836.578370][T16938] bridge_slave_0: entered promiscuous mode
[  836.742425][T16938] bridge0: port 2(bridge_slave_1) entered blocking state
[  836.780075][T16938] bridge0: port 2(bridge_slave_1) entered disabled state
[  836.807636][T16938] bridge_slave_1: entered allmulticast mode
[  836.853297][T16938] bridge_slave_1: entered promiscuous mode
[  837.092618][T16938] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  837.302695][T16938] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  837.517112][T17046] Loading of unsigned module is rejected
[  837.620183][T16413] hsr_slave_0: left promiscuous mode
[  837.651583][T16413] hsr_slave_1: left promiscuous mode
[  837.692895][T16413] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  837.772788][T16413] batman_adv: batadv0: Removing interface: batadv_slave_0
[  837.844685][T16413] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  837.852210][T16413] batman_adv: batadv0: Removing interface: batadv_slave_1
[  838.008083][T16413] veth1_macvtap: left promiscuous mode
[  838.045706][T16413] veth0_macvtap: left promiscuous mode
[  838.122346][T16413] veth1_vlan: left promiscuous mode
[  838.159311][T16413] veth0_vlan: left promiscuous mode
[  838.510092][T14292] Bluetooth: hci5: command tx timeout
[  840.213058][T16413] team0 (unregistering): Port device team_slave_1 removed
[  840.383697][T16413] team0 (unregistering): Port device team_slave_0 removed
[  842.099152][T16938] team0: Port device team_slave_0 added
[  842.314447][T16938] team0: Port device team_slave_1 added
[  842.514956][T17081] synth uevent: /module/orangefs: unknown uevent action string
[  842.645347][T16938] batman_adv: batadv0: Adding interface: batadv_slave_0
[  842.701211][T16938] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  842.856624][T16938] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  842.908536][T17083] FAULT_INJECTION: forcing a failure.
[  842.908536][T17083] name failslab, interval 1, probability 0, space 0, times 0
[  842.941115][T16938] batman_adv: batadv0: Adding interface: batadv_slave_1
[  842.948096][T16938] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  843.009601][T17083] CPU: 0 UID: 0 PID: 17083 Comm: syz.4.2138 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  843.009633][T17083] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  843.009641][T17083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  843.009651][T17083] Call Trace:
[  843.009658][T17083]  <TASK>
[  843.009665][T17083]  dump_stack_lvl+0x16c/0x1f0
[  843.009693][T17083]  should_fail_ex+0x512/0x640
[  843.009721][T17083]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  843.009743][T17083]  should_failslab+0xc2/0x120
[  843.009768][T17083]  kmem_cache_alloc_noprof+0x75/0x6e0
[  843.009787][T17083]  ? __proc_create+0x2ce/0x8e0
[  843.009819][T17083]  ? __proc_create+0x2ce/0x8e0
[  843.009845][T17083]  __proc_create+0x2ce/0x8e0
[  843.009873][T17083]  ? __pfx___proc_create+0x10/0x10
[  843.009903][T17083]  ? _raw_write_unlock+0x28/0x50
[  843.009924][T17083]  ? proc_register+0x559/0x8b0
[  843.009957][T17083]  proc_create_reg+0x7d/0x180
[  843.009988][T17083]  proc_create_seq_private+0x8e/0x180
[  843.010018][T17083]  ? __pfx_proc_create_seq_private+0x10/0x10
[  843.010047][T17083]  ? __pfx_nl_fib_input+0x10/0x10
[  843.010078][T17083]  ? __pfx_ip_rt_do_proc_init+0x10/0x10
[  843.010102][T17083]  ip_rt_do_proc_init+0xac/0x1b0
[  843.010126][T17083]  ops_init+0x1e2/0x5f0
[  843.010155][T17083]  setup_net+0x100/0x390
[  843.010175][T17083]  ? __pfx_setup_net+0x10/0x10
[  843.010195][T17083]  ? debug_mutex_init+0x37/0x70
[  843.010218][T17083]  copy_net_ns+0x2f8/0x690
[  843.010244][T17083]  create_new_namespaces+0x3ea/0xa90
[  843.010271][T17083]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  843.010294][T17083]  ksys_unshare+0x45b/0xa40
[  843.010320][T17083]  ? __pfx_ksys_unshare+0x10/0x10
[  843.010345][T17083]  ? xfd_validate_state+0x61/0x180
[  843.010379][T17083]  __x64_sys_unshare+0x31/0x40
[  843.010403][T17083]  do_syscall_64+0xcd/0xfa0
[  843.010427][T17083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  843.010445][T17083] RIP: 0033:0x7fcf0518f6c9
[  843.010461][T17083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  843.010479][T17083] RSP: 002b:00007fcf05fc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  843.010497][T17083] RAX: ffffffffffffffda RBX: 00007fcf053e5fa0 RCX: 00007fcf0518f6c9
[  843.010508][T17083] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  843.010519][T17083] RBP: 00007fcf05211f91 R08: 0000000000000000 R09: 0000000000000000
[  843.010529][T17083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  843.010539][T17083] R13: 00007fcf053e6038 R14: 00007fcf053e5fa0 R15: 00007ffe1695c988
[  843.010562][T17083]  </TASK>
[  843.586093][T16938] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  844.216132][T16938] hsr_slave_0: entered promiscuous mode
[  844.261040][T16938] hsr_slave_1: entered promiscuous mode
[  844.324150][T16938] debugfs: 'hsr0' already exists in 'hsr'
[  844.342717][T16938] Cannot create hsr debugfs directory
[  844.741727][T17097] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  844.780642][T17097] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  844.836606][T17097] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  844.886524][T17097] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  844.984954][T17097] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  845.019505][T17097] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  845.087463][T17097] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  846.309619][T16938] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  846.648165][T16938] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  846.703368][T17136] vivid-007: =================  START STATUS  =================
[  846.749266][T16938] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  846.791732][T14292] Bluetooth: hci1: command 0x0c1a tx timeout
[  846.798260][T14292] Bluetooth: hci0: command 0x0c1a tx timeout
[  846.808976][T17136] vivid-007: Generate PTS: true
[  846.870740][T14292] Bluetooth: hci2: command 0x0c1a tx timeout
[  846.905873][T16938] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  846.922811][T17136] vivid-007: Generate SCR: true
[  846.950582][T14292] Bluetooth: hci3: command 0x0c1a tx timeout
[  846.988163][T17136] tpg source WxH: 320x240 (Y'CbCr)
[  847.033188][T14292] Bluetooth: hci5: command 0x0c1a tx timeout
[  847.060030][T17136] tpg field: 1
[  847.073670][T17136] tpg crop: (0,0)/320x240
[  847.110669][T17136] tpg compose: (0,0)/320x240
[  847.159438][T17136] tpg colorspace: 8
[  847.179551][T17136] tpg transfer function: 0/0
[  847.241066][T17136] tpg Y'CbCr encoding: 0/0
[  847.263461][T17136] tpg quantization: 0/0
[  847.303227][T17136] tpg RGB range: 0/2
[  847.365610][T17136] vivid-007: ==================  END STATUS  ==================
[  847.588100][T16938] 8021q: adding VLAN 0 to HW filter on device bond0
[  847.738366][T16938] 8021q: adding VLAN 0 to HW filter on device team0
[  847.822462][ T8000] bridge0: port 1(bridge_slave_0) entered blocking state
[  847.829674][ T8000] bridge0: port 1(bridge_slave_0) entered forwarding state
[  847.930885][T17164] netlink: 'syz.3.2149': attribute type 10 has an invalid length.
[  847.974523][T17164] netlink: 'syz.3.2149': attribute type 13 has an invalid length.
[  848.060112][ T8000] bridge0: port 2(bridge_slave_1) entered blocking state
[  848.067410][ T8000] bridge0: port 2(bridge_slave_1) entered forwarding state
[  848.106063][T17155] zswap: compressor  not available
[  848.679779][T17179] wlan1: mtu less than device minimum
[  849.100498][T14292] Bluetooth: hci5: command 0x0c1a tx timeout
[  849.745387][T16938] 8021q: adding VLAN 0 to HW filter on device batadv0
[  850.411894][T17211] random: crng reseeded on system resumption
[  850.903508][T17229] XFS: Clearing xfsstats
[  851.172899][ T9696] Bluetooth: hci5: command 0x0c1a tx timeout
[  851.469347][T16938] veth0_vlan: entered promiscuous mode
[  851.536040][T16938] veth1_vlan: entered promiscuous mode
[  851.738943][T16938] veth0_macvtap: entered promiscuous mode
[  851.803393][T16938] veth1_macvtap: entered promiscuous mode
[  851.875596][T16938] batman_adv: batadv0: Interface activated: batadv_slave_0
[  852.062689][T16938] batman_adv: batadv0: Interface activated: batadv_slave_1
[  852.528507][T11986] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  852.595494][T11986] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  852.703277][T11986] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  852.796412][T11986] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  852.956382][T16413] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  853.052074][T16413] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  853.202532][T16411] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  853.234982][T16411] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  855.689568][T17301] blktrace: Concurrent blktraces are not allowed on ram7
[  855.898830][T17289] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2168'.
[  856.239008][T17311] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint
[  856.370311][T17289] mac80211_hwsim hwsim31 wlan1: entered allmulticast mode
[  856.674527][   T30] audit: type=1804 audit(4294968515.226:19): pid=17315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2171" name="/newroot/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw" dev="tracefs" ino=1178 res=1 errno=0
[  856.864316][   T30] audit: type=1804 audit(4294968515.316:20): pid=17309 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2171" name="/newroot/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw" dev="tracefs" ino=1178 res=1 errno=0
[  857.016223][T17332] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2173'.
[  857.033307][T17311] PCI: Can't parse resource_alignment parameter: B¿Fj˜ô’l
[  857.051648][T17332] mac80211_hwsim hwsim31 wlan1: entered promiscuous mode
[  857.261394][T17332] ovs_: entered promiscuous mode
[  859.676817][T17389] blktrace: Concurrent blktraces are not allowed on sg0
[  859.895558][T17393] futex_wake_op: syz.2.2186 tries to shift op by -2048; fix this program
[  861.563876][T17427] FAULT_INJECTION: forcing a failure.
[  861.563876][T17427] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  861.690022][T17427] CPU: 0 UID: 0 PID: 17427 Comm: syz.2.2193 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  861.690055][T17427] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  861.690063][T17427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  861.690072][T17427] Call Trace:
[  861.690079][T17427]  <TASK>
[  861.690086][T17427]  dump_stack_lvl+0x16c/0x1f0
[  861.690115][T17427]  should_fail_ex+0x512/0x640
[  861.690147][T17427]  should_fail_alloc_page+0xe7/0x130
[  861.690175][T17427]  prepare_alloc_pages+0x3c2/0x610
[  861.690203][T17427]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  861.690224][T17427]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  861.690251][T17427]  ? __lock_acquire+0x622/0x1c90
[  861.690277][T17427]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  861.690304][T17427]  ? __lock_acquire+0x622/0x1c90
[  861.690334][T17427]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  861.690367][T17427]  ? policy_nodemask+0xea/0x4e0
[  861.690394][T17427]  alloc_pages_mpol+0x1fb/0x550
[  861.690420][T17427]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  861.690447][T17427]  ? blk_cgroup_congested+0x140/0x270
[  861.690471][T17427]  alloc_pages_noprof+0x131/0x390
[  861.690496][T17427]  pte_alloc_one+0x1e/0x350
[  861.690518][T17427]  do_huge_pmd_anonymous_page+0x2bb/0x1f50
[  861.690539][T17427]  ? find_held_lock+0x2b/0x80
[  861.690559][T17427]  __handle_mm_fault+0x1cff/0x2aa0
[  861.690595][T17427]  ? __pfx___handle_mm_fault+0x10/0x10
[  861.690642][T17427]  handle_mm_fault+0x589/0xd10
[  861.690676][T17427]  __get_user_pages+0x54e/0x3530
[  861.690710][T17427]  ? __pfx___get_user_pages+0x10/0x10
[  861.690742][T17427]  populate_vma_page_range+0x267/0x3f0
[  861.690771][T17427]  ? __pfx_populate_vma_page_range+0x10/0x10
[  861.690797][T17427]  ? __pfx_find_vma_intersection+0x10/0x10
[  861.690827][T17427]  ? do_mmap+0x69c/0x1210
[  861.690853][T17427]  __mm_populate+0x1d8/0x380
[  861.690881][T17427]  ? __pfx___mm_populate+0x10/0x10
[  861.690909][T17427]  ? up_write+0x1b2/0x520
[  861.690939][T17427]  vm_mmap_pgoff+0x37f/0x470
[  861.690965][T17427]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  861.690987][T17427]  ? find_held_lock+0x2b/0x80
[  861.691017][T17427]  ? __x64_sys_futex+0x1e0/0x4c0
[  861.691041][T17427]  ? __x64_sys_futex+0x1e9/0x4c0
[  861.691069][T17427]  ksys_mmap_pgoff+0x7d/0x5c0
[  861.691092][T17427]  ? xfd_validate_state+0x61/0x180
[  861.691122][T17427]  __x64_sys_mmap+0x125/0x190
[  861.691153][T17427]  do_syscall_64+0xcd/0xfa0
[  861.691177][T17427]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.691195][T17427] RIP: 0033:0x7fd418d8f6c9
[  861.691211][T17427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  861.691229][T17427] RSP: 002b:00007fd419bd0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  861.691247][T17427] RAX: ffffffffffffffda RBX: 00007fd418fe5fa0 RCX: 00007fd418d8f6c9
[  861.691258][T17427] RDX: 00000000000000e3 RSI: 000000000040000a RDI: 0000000000000000
[  861.691268][T17427] RBP: 00007fd418e11f91 R08: 0000000000000002 R09: 0002000000008000
[  861.691279][T17427] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  861.691290][T17427] R13: 00007fd418fe6038 R14: 00007fd418fe5fa0 R15: 00007ffd9e02c678
[  861.691314][T17427]  </TASK>
[  864.696500][T17470] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  864.759872][T17472] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  864.854458][T17472] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  865.039611][T17472] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  865.099765][T17472] page_type: f5(slab)
[  865.143594][T17472] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  865.233041][T17472] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  865.324552][T17472] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  865.398231][T17472] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  865.479124][T17472] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  865.559061][   T30] audit: type=1806 audit(4294968524.157:21): xattr="." res=0
[  865.572807][T17472] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  865.666392][T17472] page dumped because: unmovable page
[  865.713494][T17472] page_owner tracks the page as allocated
[  865.719527][T17472] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5211, tgid 5211 (udevadm), ts 41791079649, free_ts 34151448766
[  865.965387][T17472]  post_alloc_hook+0x1c0/0x230
[  865.970350][T17472]  get_page_from_freelist+0x10a3/0x3a30
[  866.057799][T17472]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  866.095867][T17472]  alloc_pages_mpol+0x1fb/0x550
[  866.150097][T17472]  new_slab+0x24a/0x360
[  866.169247][T17472]  ___slab_alloc+0xd79/0x1a50
[  866.205456][T17472]  __slab_alloc.constprop.0+0x63/0x110
[  866.249498][T17472]  kmem_cache_alloc_lru_noprof+0x443/0x6e0
[  866.286053][T17472]  alloc_inode+0xc3/0x240
[  866.312730][T17472]  iget_locked+0x2fa/0x860
[  866.339099][T17472]  kernfs_get_inode+0x48/0x460
[  866.373144][T17472]  kernfs_iop_lookup+0x1a7/0x2d0
[  866.414219][T17472]  __lookup_slow+0x251/0x460
[  866.448575][T17472]  walk_component+0x353/0x5b0
[  866.478489][T17472]  path_lookupat+0x142/0x6d0
[  866.483147][T17472]  filename_lookup+0x224/0x5f0
[  866.541558][T17472] page last free pid 1 tgid 1 stack trace:
[  866.547421][T17472]  __free_frozen_pages+0x7df/0x1160
[  866.607809][T17472]  free_contig_range+0x183/0x4b0
[  866.612816][T17472]  destroy_args+0xb69/0x12e0
[  866.671594][T17472]  debug_vm_pgtable+0x1a32/0x3640
[  866.676674][T17472]  do_one_initcall+0x123/0x6e0
[  866.732972][T17472]  kernel_init_freeable+0x5c8/0x920
[  866.769214][T17472]  kernel_init+0x1c/0x2b0
[  866.773583][T17472]  ret_from_fork+0x675/0x7d0
[  866.818412][T17472]  ret_from_fork_asm+0x1a/0x30
[  867.068611][T17472] Process accounting resumed
[  867.773344][T17532] futex_wake_op: syz.6.2209 tries to shift op by -2048; fix this program
[  868.480647][T17542] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  871.058934][T17587] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  872.216995][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  872.225492][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  872.248346][T17622] random: crng reseeded on system resumption
[  872.516189][T17626] binder: 17624:17626 ioctl c018620c 0 returned -1
[  873.428882][T17649] Console: switching to colour VGA+ 80x25
[  873.890578][T17660] warn_alloc: 1 callbacks suppressed
[  873.890594][T17660] syz.3.2237: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  874.311790][T17660] CPU: 0 UID: 0 PID: 17660 Comm: syz.3.2237 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  874.311830][T17660] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  874.311838][T17660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  874.311848][T17660] Call Trace:
[  874.311854][T17660]  <TASK>
[  874.311862][T17660]  dump_stack_lvl+0x16c/0x1f0
[  874.311889][T17660]  warn_alloc+0x248/0x3a0
[  874.311910][T17660]  ? __pfx_warn_alloc+0x10/0x10
[  874.311943][T17660]  ? dvb_dvr_do_ioctl+0x15d/0x290
[  874.311971][T17660]  __vmalloc_node_range_noprof+0xfbc/0x1480
[  874.312001][T17660]  ? __pfx___might_resched+0x10/0x10
[  874.312026][T17660]  ? rcu_is_watching+0x12/0xc0
[  874.312047][T17660]  ? trace_contention_end+0xdd/0x130
[  874.312074][T17660]  ? dvb_dvr_do_ioctl+0x15d/0x290
[  874.312101][T17660]  ? tomoyo_path_number_perm+0x295/0x580
[  874.312137][T17660]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  874.312164][T17660]  ? __pfx___mutex_lock+0x10/0x10
[  874.312190][T17660]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  874.312226][T17660]  ? dvb_dvr_do_ioctl+0x15d/0x290
[  874.312251][T17660]  __vmalloc_node_noprof+0xad/0xf0
[  874.312278][T17660]  ? dvb_dvr_do_ioctl+0x15d/0x290
[  874.312306][T17660]  dvb_dvr_do_ioctl+0x15d/0x290
[  874.312337][T17660]  dvb_usercopy+0x167/0x340
[  874.312361][T17660]  ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[  874.312389][T17660]  ? __pfx_dvb_usercopy+0x10/0x10
[  874.312422][T17660]  ? __fget_files+0x20e/0x3c0
[  874.312446][T17660]  dvb_dvr_ioctl+0x29/0x40
[  874.312470][T17660]  ? __pfx_dvb_dvr_ioctl+0x10/0x10
[  874.312496][T17660]  __x64_sys_ioctl+0x18e/0x210
[  874.312526][T17660]  do_syscall_64+0xcd/0xfa0
[  874.312550][T17660]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  874.312570][T17660] RIP: 0033:0x7fc9d258f6c9
[  874.312585][T17660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  874.312604][T17660] RSP: 002b:00007fc9d340b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  874.312623][T17660] RAX: ffffffffffffffda RBX: 00007fc9d27e5fa0 RCX: 00007fc9d258f6c9
[  874.312635][T17660] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003
[  874.312646][T17660] RBP: 00007fc9d2611f91 R08: 0000000000000000 R09: 0000000000000000
[  874.312656][T17660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  874.312667][T17660] R13: 00007fc9d27e6038 R14: 00007fc9d27e5fa0 R15: 00007ffc9fabd868
[  874.312690][T17660]  </TASK>
[  874.312697][T17660] Mem-Info:
[  876.826728][T17660] active_anon:20343 inactive_anon:573 isolated_anon:0
[  876.826728][T17660]  active_file:7916 inactive_file:53754 isolated_file:0
[  876.826728][T17660]  unevictable:768 dirty:1671 writeback:512
[  876.826728][T17660]  slab_reclaimable:12855 slab_unreclaimable:98809
[  876.826728][T17660]  mapped:32943 shmem:7768 pagetables:1570
[  876.826728][T17660]  sec_pagetables:0 bounce:0
[  876.826728][T17660]  kernel_misc_reclaimable:0
[  876.826728][T17660]  free:1276368 free_pcp:20450 free_cma:0
[  877.525347][T17660] Node 0 active_anon:83192kB inactive_anon:2292kB active_file:31664kB inactive_file:214884kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:134476kB dirty:2596kB writeback:6144kB shmem:33228kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:24576kB kernel_stack:12400kB pagetables:6152kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  877.785355][T17660] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:80kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  878.044733][T17660] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  878.200565][T17660] lowmem_reserve[]: 0 2485 2487 2487 2487
[  878.233048][T17660] Node 0 DMA32 free:1235856kB boost:0kB min:34364kB low:42952kB high:51540kB reserved_highatomic:0KB free_highatomic:0KB active_anon:97336kB inactive_anon:2284kB active_file:31664kB inactive_file:214884kB unevictable:1536kB writepending:6768kB zspages:284kB present:3129332kB managed:2545088kB mlocked:0kB bounce:0kB free_pcp:8980kB local_pcp:8980kB free_cma:0kB
[  878.405213][T17660] lowmem_reserve[]: 0 0 1 1 1
[  878.431424][T17660] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[  878.590918][T17660] lowmem_reserve[]: 0 0 0 0 0
[  878.616310][T17660] Node 1 Normal free:3847288kB boost:0kB min:55512kB low:69388kB high:83264kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:62376kB local_pcp:62376kB free_cma:0kB
[  878.781239][T17660] lowmem_reserve[]: 0 0 0 0 0
[  878.814466][T17660] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  878.889353][T17660] Node 0 DMA32: 212*4kB (UE) 834*8kB (UE) 1387*16kB (UME) 1147*32kB (UME) 754*64kB (UME) 415*128kB (UME) 244*256kB (UME) 126*512kB (UM) 91*1024kB (UME) 2*2048kB (UE) 204*4096kB (UM) = 1227632kB
[  878.981701][T17660] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  879.229025][T17660] Node 1 Normal: 3448*4kB (UM) 45*8kB (U) 27*16kB (UME) 164*32kB (UME) 90*64kB (UE) 25*128kB (UE) 10*256kB (UE) 3*512kB (UE) 1*1024kB (E) 2*2048kB (ME) 930*4096kB (UM) = 3847288kB
[  879.359882][T17724] MTRR 1 not used
[  879.374018][T17660] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  879.447693][T17660] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  879.520871][T17660] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  879.607829][T17660] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  879.674844][T17660] 73863 total pagecache pages
[  879.712814][T17660] 50 pages in swap cache
[  879.754490][T17660] Free swap  = 124704kB
[  879.778554][T17660] Total swap = 124996kB
[  879.815761][T17660] 2097051 pages RAM
[  879.845660][T17660] 0 pages HighMem/MovableOnly
[  879.890138][T17660] 428689 pages reserved
[  879.928888][T17660] 0 pages cma reserved
[  880.780820][T17750] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2257'.
[  880.911114][   T30] audit: type=1326 audit(4294968539.579:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17745 comm="syz.6.2255" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f07eeb8f6c9 code=0x0
[  881.775197][T17750] team0: Port device team_slave_0 removed
[  882.693127][T17767] FAULT_INJECTION: forcing a failure.
[  882.693127][T17767] name failslab, interval 1, probability 0, space 0, times 0
[  882.813034][T17767] CPU: 0 UID: 0 PID: 17767 Comm: syz.4.2261 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  882.813069][T17767] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  882.813076][T17767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  882.813087][T17767] Call Trace:
[  882.813093][T17767]  <TASK>
[  882.813100][T17767]  dump_stack_lvl+0x16c/0x1f0
[  882.813127][T17767]  should_fail_ex+0x512/0x640
[  882.813161][T17767]  should_failslab+0xc2/0x120
[  882.813187][T17767]  __kmalloc_cache_noprof+0x72/0x780
[  882.813206][T17767]  ? __pfx___might_resched+0x10/0x10
[  882.813226][T17767]  ? nfc_genl_rcv_nl_event+0xc1/0x2e0
[  882.813258][T17767]  ? nfc_genl_rcv_nl_event+0xc1/0x2e0
[  882.813285][T17767]  nfc_genl_rcv_nl_event+0xc1/0x2e0
[  882.813313][T17767]  notifier_call_chain+0xbc/0x410
[  882.813337][T17767]  ? __pfx_nfc_genl_rcv_nl_event+0x10/0x10
[  882.813368][T17767]  blocking_notifier_call_chain+0x69/0xa0
[  882.813396][T17767]  netlink_release+0x16cf/0x2080
[  882.813422][T17767]  ? netlink_release+0x1e4/0x2080
[  882.813442][T17767]  ? __pfx_netlink_release+0x10/0x10
[  882.813464][T17767]  ? __pfx_locks_remove_file+0x10/0x10
[  882.813485][T17767]  __sock_release+0xb3/0x270
[  882.813506][T17767]  ? __pfx_sock_close+0x10/0x10
[  882.813524][T17767]  sock_close+0x1c/0x30
[  882.813541][T17767]  __fput+0x402/0xb70
[  882.813571][T17767]  fput_close_sync+0x118/0x210
[  882.813598][T17767]  ? __pfx_fput_close_sync+0x10/0x10
[  882.813624][T17767]  ? dnotify_flush+0x79/0x4c0
[  882.813653][T17767]  __x64_sys_close+0x8b/0x120
[  882.813682][T17767]  do_syscall_64+0xcd/0xfa0
[  882.813706][T17767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  882.813724][T17767] RIP: 0033:0x7fcf0518e32a
[  882.813739][T17767] Code: 48 3d 00 f0 ff ff 77 48 c3 0f 1f 80 00 00 00 00 48 83 ec 18 89 7c 24 0c e8 43 91 02 00 8b 7c 24 0c 89 c2 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 36 89 d7 89 44 24 0c e8 a3 91 02 00 8b 44 24
[  882.813756][T17767] RSP: 002b:00007fcf05fc0f90 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  882.813774][T17767] RAX: ffffffffffffffda RBX: 000000000000002e RCX: 00007fcf0518e32a
[  882.813786][T17767] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008
[  882.813796][T17767] RBP: 0000000000000008 R08: 0000000000000000 R09: 0000000000000000
[  882.813805][T17767] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  882.813816][T17767] R13: 00007fcf053e6038 R14: 00007fcf053e5fa0 R15: 00007ffe1695c988
[  882.813846][T17767]  </TASK>
[  883.830848][T17782] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2263'.
[  888.216687][T17861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2283'.
[  892.329125][T17920] random: crng reseeded on system resumption
[  893.801209][T17935] random: crng reseeded on system resumption
[  894.922069][T17954] FAULT_INJECTION: forcing a failure.
[  894.922069][T17954] name failslab, interval 1, probability 0, space 0, times 0
[  895.020004][T17955] usb usb4: usbfs: process 17955 (syz.2.2305) did not claim interface 0 before use
[  895.076156][T17954] CPU: 0 UID: 0 PID: 17954 Comm: syz.3.2304 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  895.076189][T17954] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  895.076197][T17954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  895.076207][T17954] Call Trace:
[  895.076213][T17954]  <TASK>
[  895.076221][T17954]  dump_stack_lvl+0x16c/0x1f0
[  895.076248][T17954]  should_fail_ex+0x512/0x640
[  895.076276][T17954]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[  895.076302][T17954]  should_failslab+0xc2/0x120
[  895.076328][T17954]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[  895.076352][T17954]  ? drm_stub_open+0x20f/0x380
[  895.076376][T17954]  ? kasprintf+0xc7/0x100
[  895.076391][T17954]  ? do_dentry_open+0x982/0x1530
[  895.076416][T17954]  ? kvasprintf+0xbc/0x160
[  895.076431][T17954]  kvasprintf+0xbc/0x160
[  895.076448][T17954]  ? __pfx_kvasprintf+0x10/0x10
[  895.076473][T17954]  kasprintf+0xc7/0x100
[  895.076489][T17954]  ? __pfx_kasprintf+0x10/0x10
[  895.076509][T17954]  ? aa_get_newest_label+0xd2/0x250
[  895.076537][T17954]  ? lockdep_init_map_type+0x5c/0x280
[  895.076568][T17954]  drm_debugfs_clients_add+0x48/0x200
[  895.076594][T17954]  drm_file_alloc+0x5c6/0xb40
[  895.076623][T17954]  drm_open_helper+0x204/0x550
[  895.076652][T17954]  drm_open+0x1a0/0x3e0
[  895.076677][T17954]  ? __pfx_drm_open+0x10/0x10
[  895.076710][T17954]  drm_stub_open+0x20f/0x380
[  895.076736][T17954]  ? __pfx_drm_stub_open+0x10/0x10
[  895.076762][T17954]  chrdev_open+0x234/0x6a0
[  895.076784][T17954]  ? __pfx_apparmor_file_open+0x10/0x10
[  895.076813][T17954]  ? __pfx_chrdev_open+0x10/0x10
[  895.076837][T17954]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  895.076862][T17954]  do_dentry_open+0x982/0x1530
[  895.076885][T17954]  ? __pfx_chrdev_open+0x10/0x10
[  895.076912][T17954]  vfs_open+0x82/0x3f0
[  895.076941][T17954]  path_openat+0x1de4/0x2cb0
[  895.076969][T17954]  ? __pfx_path_openat+0x10/0x10
[  895.076990][T17954]  ? __lock_acquire+0xb8a/0x1c90
[  895.077017][T17954]  do_filp_open+0x20b/0x470
[  895.077038][T17954]  ? __pfx_do_filp_open+0x10/0x10
[  895.077073][T17954]  ? alloc_fd+0x471/0x7d0
[  895.077097][T17954]  do_sys_openat2+0x11b/0x1d0
[  895.077125][T17954]  ? __pfx_do_sys_openat2+0x10/0x10
[  895.077160][T17954]  __x64_sys_openat+0x174/0x210
[  895.077189][T17954]  ? __pfx___x64_sys_openat+0x10/0x10
[  895.077225][T17954]  do_syscall_64+0xcd/0xfa0
[  895.077249][T17954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  895.077267][T17954] RIP: 0033:0x7fc9d258f6c9
[  895.077282][T17954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  895.077299][T17954] RSP: 002b:00007fc9d33ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  895.077317][T17954] RAX: ffffffffffffffda RBX: 00007fc9d27e6090 RCX: 00007fc9d258f6c9
[  895.077329][T17954] RDX: 0000000000000440 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  895.077339][T17954] RBP: 00007fc9d2611f91 R08: 0000000000000000 R09: 0000000000000000
[  895.077350][T17954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  895.077360][T17954] R13: 00007fc9d27e6128 R14: 00007fc9d27e6090 R15: 00007ffc9fabd868
[  895.077382][T17954]  </TASK>
[  896.308236][T17967] sp0: Synchronizing with TNC
[  896.527656][T17962] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  898.117818][T17984] Process accounting paused
[  900.150254][T18030] FAULT_INJECTION: forcing a failure.
[  900.150254][T18030] name failslab, interval 1, probability 0, space 0, times 0
[  900.241947][T18027] ovs_: entered promiscuous mode
[  900.308594][T18030] CPU: 0 UID: 0 PID: 18030 Comm: syz.4.2319 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  900.308627][T18030] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  900.308634][T18030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  900.308654][T18030] Call Trace:
[  900.308661][T18030]  <TASK>
[  900.308668][T18030]  dump_stack_lvl+0x16c/0x1f0
[  900.308697][T18030]  should_fail_ex+0x512/0x640
[  900.308725][T18030]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[  900.308752][T18030]  should_failslab+0xc2/0x120
[  900.308777][T18030]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[  900.308801][T18030]  ? register_pidns_sysctls+0x4b/0x1b0
[  900.308834][T18030]  ? kmemdup_noprof+0x29/0x60
[  900.308852][T18030]  ? __pfx_set_is_seen+0x10/0x10
[  900.308875][T18030]  kmemdup_noprof+0x29/0x60
[  900.308895][T18030]  register_pidns_sysctls+0x4b/0x1b0
[  900.308923][T18030]  ? __ns_common_init+0x2a4/0x3b0
[  900.308945][T18030]  copy_pid_ns+0x548/0xca0
[  900.308968][T18030]  ? __pfx_copy_pid_ns+0x10/0x10
[  900.308990][T18030]  ? rcu_is_watching+0x12/0xc0
[  900.309010][T18030]  ? copy_mnt_ns+0xac/0xac0
[  900.309029][T18030]  ? rcu_is_watching+0x12/0xc0
[  900.309050][T18030]  ? copy_ipcs+0xb6/0x550
[  900.309081][T18030]  create_new_namespaces+0x2aa/0xa90
[  900.309106][T18030]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  900.309129][T18030]  ksys_unshare+0x45b/0xa40
[  900.309154][T18030]  ? __pfx_ksys_unshare+0x10/0x10
[  900.309180][T18030]  ? xfd_validate_state+0x61/0x180
[  900.309212][T18030]  __x64_sys_unshare+0x31/0x40
[  900.309235][T18030]  do_syscall_64+0xcd/0xfa0
[  900.309259][T18030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  900.309277][T18030] RIP: 0033:0x7fcf0518f6c9
[  900.309292][T18030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  900.309315][T18030] RSP: 002b:00007fcf05fa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  900.309334][T18030] RAX: ffffffffffffffda RBX: 00007fcf053e6090 RCX: 00007fcf0518f6c9
[  900.309346][T18030] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
[  900.309356][T18030] RBP: 00007fcf05211f91 R08: 0000000000000000 R09: 0000000000000000
[  900.309367][T18030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  900.309378][T18030] R13: 00007fcf053e6128 R14: 00007fcf053e6090 R15: 00007ffe1695c988
[  900.309401][T18030]  </TASK>
[  901.255778][T18045] FAULT_INJECTION: forcing a failure.
[  901.255778][T18045] name failslab, interval 1, probability 0, space 0, times 0
[  901.441190][T18045] CPU: 0 UID: 0 PID: 18045 Comm: syz.6.2321 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  901.441223][T18045] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  901.441230][T18045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  901.441241][T18045] Call Trace:
[  901.441247][T18045]  <TASK>
[  901.441253][T18045]  dump_stack_lvl+0x16c/0x1f0
[  901.441281][T18045]  should_fail_ex+0x512/0x640
[  901.441310][T18045]  ? __kmalloc_noprof+0xca/0x880
[  901.441342][T18045]  should_failslab+0xc2/0x120
[  901.441368][T18045]  __kmalloc_noprof+0xdd/0x880
[  901.441396][T18045]  ? rcu_is_watching+0x12/0xc0
[  901.441416][T18045]  ? sk_prot_alloc+0x1a8/0x2a0
[  901.441441][T18045]  ? sk_prot_alloc+0x1a8/0x2a0
[  901.441461][T18045]  sk_prot_alloc+0x1a8/0x2a0
[  901.441484][T18045]  sk_alloc+0x36/0xc20
[  901.441513][T18045]  xsk_create+0x11b/0x770
[  901.441544][T18045]  __sock_create+0x338/0x8d0
[  901.441571][T18045]  __sys_socket+0x14d/0x260
[  901.441596][T18045]  ? __pfx___sys_socket+0x10/0x10
[  901.441621][T18045]  ? xfd_validate_state+0x61/0x180
[  901.441654][T18045]  ? __pfx___do_sys_close_range+0x10/0x10
[  901.441680][T18045]  __x64_sys_socket+0x72/0xb0
[  901.441703][T18045]  ? lockdep_hardirqs_on+0x7c/0x110
[  901.441724][T18045]  do_syscall_64+0xcd/0xfa0
[  901.441747][T18045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  901.441765][T18045] RIP: 0033:0x7f07eeb8f6c9
[  901.441780][T18045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  901.441798][T18045] RSP: 002b:00007f07ef96a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  901.441816][T18045] RAX: ffffffffffffffda RBX: 00007f07eede6090 RCX: 00007f07eeb8f6c9
[  901.441827][T18045] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 000000000000002c
[  901.441837][T18045] RBP: 00007f07eec11f91 R08: 0000000000000000 R09: 0000000000000000
[  901.441847][T18045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  901.441857][T18045] R13: 00007f07eede6128 R14: 00007f07eede6090 R15: 00007ffcee4c91b8
[  901.441880][T18045]  </TASK>
[  905.935438][T18107] random: crng reseeded on system resumption
[  906.004777][T18107] FAULT_INJECTION: forcing a failure.
[  906.004777][T18107] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  906.207322][T18107] CPU: 0 UID: 0 PID: 18107 Comm: syz.2.2336 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  906.207357][T18107] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  906.207364][T18107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  906.207374][T18107] Call Trace:
[  906.207386][T18107]  <TASK>
[  906.207394][T18107]  dump_stack_lvl+0x16c/0x1f0
[  906.207422][T18107]  should_fail_ex+0x512/0x640
[  906.207454][T18107]  should_fail_alloc_page+0xe7/0x130
[  906.207482][T18107]  prepare_alloc_pages+0x3c2/0x610
[  906.207508][T18107]  ? __kernel_text_address+0xd/0x40
[  906.207528][T18107]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  906.207556][T18107]  ? stack_trace_save+0x8e/0xc0
[  906.207578][T18107]  ? __pfx_stack_trace_save+0x10/0x10
[  906.207609][T18107]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  906.207632][T18107]  ? kasan_save_stack+0x42/0x60
[  906.207653][T18107]  ? kasan_save_stack+0x33/0x60
[  906.207676][T18107]  ? misc_open+0x26d/0x450
[  906.207702][T18107]  ? chrdev_open+0x234/0x6a0
[  906.207723][T18107]  ? do_dentry_open+0x982/0x1530
[  906.207744][T18107]  ? vfs_open+0x82/0x3f0
[  906.207768][T18107]  ? path_openat+0x1de4/0x2cb0
[  906.207787][T18107]  ? do_filp_open+0x20b/0x470
[  906.207804][T18107]  ? do_sys_openat2+0x11b/0x1d0
[  906.207830][T18107]  ? __x64_sys_openat+0x174/0x210
[  906.207856][T18107]  ? do_syscall_64+0xcd/0xfa0
[  906.207876][T18107]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  906.207895][T18107]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  906.207927][T18107]  ? policy_nodemask+0xea/0x4e0
[  906.207954][T18107]  alloc_pages_mpol+0x1fb/0x550
[  906.207980][T18107]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  906.208011][T18107]  alloc_pages_noprof+0x131/0x390
[  906.208037][T18107]  get_zeroed_page_noprof+0x18/0xb0
[  906.208060][T18107]  get_image_page+0x18/0x190
[  906.208080][T18107]  chain_alloc+0x8c/0xd0
[  906.208099][T18107]  memory_bm_create+0x30f/0x810
[  906.208128][T18107]  create_basic_memory_bitmaps+0x10b/0x320
[  906.208153][T18107]  snapshot_open+0x235/0x2b0
[  906.208176][T18107]  ? __pfx_snapshot_open+0x10/0x10
[  906.208200][T18107]  misc_open+0x26d/0x450
[  906.208228][T18107]  ? __pfx_misc_open+0x10/0x10
[  906.208255][T18107]  chrdev_open+0x234/0x6a0
[  906.208276][T18107]  ? __pfx_apparmor_file_open+0x10/0x10
[  906.208304][T18107]  ? __pfx_chrdev_open+0x10/0x10
[  906.208328][T18107]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  906.208353][T18107]  do_dentry_open+0x982/0x1530
[  906.208375][T18107]  ? __pfx_chrdev_open+0x10/0x10
[  906.208401][T18107]  vfs_open+0x82/0x3f0
[  906.208431][T18107]  path_openat+0x1de4/0x2cb0
[  906.208458][T18107]  ? __pfx_path_openat+0x10/0x10
[  906.208480][T18107]  ? __lock_acquire+0xb8a/0x1c90
[  906.208508][T18107]  do_filp_open+0x20b/0x470
[  906.208529][T18107]  ? __pfx_do_filp_open+0x10/0x10
[  906.208566][T18107]  ? alloc_fd+0x471/0x7d0
[  906.208598][T18107]  do_sys_openat2+0x11b/0x1d0
[  906.208625][T18107]  ? __pfx_do_sys_openat2+0x10/0x10
[  906.208662][T18107]  __x64_sys_openat+0x174/0x210
[  906.208690][T18107]  ? __pfx___x64_sys_openat+0x10/0x10
[  906.208727][T18107]  do_syscall_64+0xcd/0xfa0
[  906.208751][T18107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  906.208769][T18107] RIP: 0033:0x7fd418d8f6c9
[  906.208785][T18107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  906.208802][T18107] RSP: 002b:00007fd419baf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  906.208820][T18107] RAX: ffffffffffffffda RBX: 00007fd418fe6090 RCX: 00007fd418d8f6c9
[  906.208832][T18107] RDX: 00000000001438bf RSI: 0000200000000000 RDI: ffffffffffffff9c
[  906.208843][T18107] RBP: 00007fd418e11f91 R08: 0000000000000000 R09: 0000000000000000
[  906.208853][T18107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  906.208864][T18107] R13: 00007fd418fe6128 R14: 00007fd418fe6090 R15: 00007ffd9e02c678
[  906.208888][T18107]  </TASK>
[  908.412124][T18140] random: crng reseeded on system resumption
[  908.593070][T18140] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  908.633984][T18140] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  908.673103][T18140] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  908.717541][T18140] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  908.765809][T18140] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  910.555846][T18166] random: crng reseeded on system resumption
[  910.638328][T18134] kexec: Could not allocate control_code_buffer
[  910.655021][T14292] Bluetooth: hci0: command 0x0c1a tx timeout
[  910.730473][T14292] Bluetooth: hci2: command 0x0c1a tx timeout
[  910.736517][T14292] Bluetooth: hci1: command 0x0c1a tx timeout
[  910.813728][T14292] Bluetooth: hci5: command 0x0c1a tx timeout
[  910.820183][ T9696] Bluetooth: hci3: command 0x0c1a tx timeout
[  911.648972][T14292] Bluetooth: hci5: unexpected subevent 0x01 length: 123 > 18
[  912.401958][T18189] FAULT_INJECTION: forcing a failure.
[  912.401958][T18189] name failslab, interval 1, probability 0, space 0, times 0
[  912.729192][T18189] CPU: 0 UID: 0 PID: 18189 Comm: syz.2.2353 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  912.729227][T18189] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  912.729234][T18189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  912.729244][T18189] Call Trace:
[  912.729251][T18189]  <TASK>
[  912.729258][T18189]  dump_stack_lvl+0x16c/0x1f0
[  912.729287][T18189]  should_fail_ex+0x512/0x640
[  912.729316][T18189]  ? __kmalloc_cache_noprof+0x5f/0x780
[  912.729338][T18189]  should_failslab+0xc2/0x120
[  912.729364][T18189]  __kmalloc_cache_noprof+0x72/0x780
[  912.729381][T18189]  ? trace_kmalloc+0x2b/0xd0
[  912.729403][T18189]  ? __kmalloc_noprof+0x34f/0x880
[  912.729431][T18189]  ? __asan_memcpy+0x3c/0x60
[  912.729448][T18189]  ? __alloc_workqueue+0x158/0x1810
[  912.729485][T18189]  ? __alloc_workqueue+0x158/0x1810
[  912.729509][T18189]  __alloc_workqueue+0x158/0x1810
[  912.729533][T18189]  ? __pfx_vsnprintf+0x10/0x10
[  912.729552][T18189]  ? lockdep_hardirqs_on+0x7c/0x110
[  912.729574][T18189]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  912.729598][T18189]  alloc_workqueue_noprof+0xd2/0x200
[  912.729623][T18189]  ? __pfx_alloc_workqueue_noprof+0x10/0x10
[  912.729654][T18189]  ? __pfx___debug_object_init+0x10/0x10
[  912.729682][T18189]  nci_register_device+0x21e/0xb80
[  912.729702][T18189]  ? __pfx_nci_register_device+0x10/0x10
[  912.729723][T18189]  ? lockdep_init_map_type+0x5c/0x280
[  912.729753][T18189]  virtual_ncidev_open+0x141/0x220
[  912.729774][T18189]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  912.729794][T18189]  misc_open+0x26d/0x450
[  912.729822][T18189]  ? __pfx_misc_open+0x10/0x10
[  912.729850][T18189]  chrdev_open+0x234/0x6a0
[  912.729872][T18189]  ? __pfx_apparmor_file_open+0x10/0x10
[  912.729901][T18189]  ? __pfx_chrdev_open+0x10/0x10
[  912.729925][T18189]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  912.729955][T18189]  do_dentry_open+0x982/0x1530
[  912.729977][T18189]  ? __pfx_chrdev_open+0x10/0x10
[  912.730004][T18189]  vfs_open+0x82/0x3f0
[  912.730034][T18189]  path_openat+0x1de4/0x2cb0
[  912.730062][T18189]  ? __pfx_path_openat+0x10/0x10
[  912.730083][T18189]  ? __lock_acquire+0xb8a/0x1c90
[  912.730111][T18189]  do_filp_open+0x20b/0x470
[  912.730131][T18189]  ? __pfx_do_filp_open+0x10/0x10
[  912.730168][T18189]  ? alloc_fd+0x471/0x7d0
[  912.730193][T18189]  do_sys_openat2+0x11b/0x1d0
[  912.730221][T18189]  ? __pfx_do_sys_openat2+0x10/0x10
[  912.730258][T18189]  __x64_sys_openat+0x174/0x210
[  912.730286][T18189]  ? __pfx___x64_sys_openat+0x10/0x10
[  912.730323][T18189]  do_syscall_64+0xcd/0xfa0
[  912.730347][T18189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  912.730366][T18189] RIP: 0033:0x7fd418d8f6c9
[  912.730381][T18189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  912.730399][T18189] RSP: 002b:00007fd419b8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  912.730416][T18189] RAX: ffffffffffffffda RBX: 00007fd418fe6180 RCX: 00007fd418d8f6c9
[  912.730428][T18189] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  912.730439][T18189] RBP: 00007fd418e11f91 R08: 0000000000000000 R09: 0000000000000000
[  912.730449][T18189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  912.730459][T18189] R13: 00007fd418fe6218 R14: 00007fd418fe6180 R15: 00007ffd9e02c678
[  912.730490][T18189]  </TASK>
[  913.057352][    C0] vkms_vblank_simulate: vblank timer overrun
[  914.340001][T18205] hub 1-0:1.0: USB hub found
[  914.400911][T18205] hub 1-0:1.0: 1 port detected
[  914.662975][T18214] hub 1-0:1.0: USB hub found
[  914.707566][T18214] hub 1-0:1.0: 1 port detected
[  914.806369][T18217] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2359'.
[  915.421839][T18204] kexec: Could not allocate control_code_buffer
[  916.029528][T18223] FAULT_INJECTION: forcing a failure.
[  916.029528][T18223] name fail_futex, interval 1, probability 0, space 0, times 0
[  916.219237][T18223] CPU: 0 UID: 0 PID: 18223 Comm: syz.3.2360 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  916.219271][T18223] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  916.219278][T18223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  916.219288][T18223] Call Trace:
[  916.219294][T18223]  <TASK>
[  916.219301][T18223]  dump_stack_lvl+0x16c/0x1f0
[  916.219328][T18223]  should_fail_ex+0x512/0x640
[  916.219359][T18223]  get_futex_key+0x1d0/0x1560
[  916.219386][T18223]  ? __pfx_get_futex_key+0x10/0x10
[  916.219409][T18223]  ? find_held_lock+0x2b/0x80
[  916.219435][T18223]  futex_wake+0xea/0x530
[  916.219466][T18223]  ? __pfx_futex_wake+0x10/0x10
[  916.219503][T18223]  do_futex+0x1e3/0x350
[  916.219540][T18223]  ? __pfx_do_futex+0x10/0x10
[  916.219572][T18223]  __x64_sys_futex+0x1e0/0x4c0
[  916.219598][T18223]  ? fdget_pos+0x2b8/0x370
[  916.219620][T18223]  ? __pfx___x64_sys_futex+0x10/0x10
[  916.219646][T18223]  ? __pfx_do_readv+0x10/0x10
[  916.219671][T18223]  do_syscall_64+0xcd/0xfa0
[  916.219695][T18223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  916.219714][T18223] RIP: 0033:0x7fc9d258f6c9
[  916.219729][T18223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  916.219746][T18223] RSP: 002b:00007fc9d33ea0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  916.219764][T18223] RAX: ffffffffffffffda RBX: 00007fc9d27e6098 RCX: 00007fc9d258f6c9
[  916.219775][T18223] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc9d27e609c
[  916.219786][T18223] RBP: 00007fc9d27e6090 R08: 00007fc9d340c000 R09: 0000000000000000
[  916.219796][T18223] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  916.219807][T18223] R13: 00007fc9d27e6128 R14: 00007ffc9fabd780 R15: 00007ffc9fabd868
[  916.219829][T18223]  </TASK>
[  916.405343][    C0] vkms_vblank_simulate: vblank timer overrun
[  916.444606][T18225] netlink: 25 bytes leftover after parsing attributes in process `syz.6.2361'.
[  917.768622][T18239] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input39
[  921.400264][   T30] audit: type=1800 audit(4294968580.250:23): pid=18290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2378" name="dbroot" dev="configfs" ino=231583 res=0 errno=0
[  921.898749][T18299] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2381'.
[  922.377929][T18309] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2382'.
[  922.953691][T18309] team0: Port device team_slave_0 removed
[  923.387751][T18309] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2382'.
[  923.831663][T18318] FAULT_INJECTION: forcing a failure.
[  923.831663][T18318] name fail_futex, interval 1, probability 0, space 0, times 0
[  924.017990][T18318] CPU: 0 UID: 0 PID: 18318 Comm: syz.4.2384 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  924.018024][T18318] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  924.018031][T18318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  924.018041][T18318] Call Trace:
[  924.018047][T18318]  <TASK>
[  924.018054][T18318]  dump_stack_lvl+0x16c/0x1f0
[  924.018082][T18318]  should_fail_ex+0x512/0x640
[  924.018114][T18318]  get_futex_key+0x293/0x1560
[  924.018143][T18318]  ? __pfx_get_futex_key+0x10/0x10
[  924.018167][T18318]  ? __mutex_trylock_common+0xe9/0x250
[  924.018201][T18318]  futex_wake+0xea/0x530
[  924.018232][T18318]  ? __pfx_futex_wake+0x10/0x10
[  924.018260][T18318]  ? __lock_acquire+0xb8a/0x1c90
[  924.018295][T18318]  do_futex+0x1e3/0x350
[  924.018321][T18318]  ? __pfx_do_futex+0x10/0x10
[  924.018344][T18318]  ? __might_fault+0xe3/0x190
[  924.018375][T18318]  mm_release+0x24e/0x300
[  924.018396][T18318]  do_exit+0x68e/0x2bf0
[  924.018427][T18318]  ? __pfx_do_exit+0x10/0x10
[  924.018453][T18318]  ? do_raw_spin_lock+0x12c/0x2b0
[  924.018482][T18318]  ? find_held_lock+0x2b/0x80
[  924.018504][T18318]  do_group_exit+0xd3/0x2a0
[  924.018532][T18318]  get_signal+0x2671/0x26d0
[  924.018562][T18318]  ? __pfx_get_signal+0x10/0x10
[  924.018583][T18318]  ? do_futex+0x122/0x350
[  924.018609][T18318]  ? __pfx_do_futex+0x10/0x10
[  924.018636][T18318]  arch_do_signal_or_restart+0x8f/0x790
[  924.018661][T18318]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  924.018691][T18318]  ? xfd_validate_state+0x61/0x180
[  924.018722][T18318]  exit_to_user_mode_loop+0x85/0x130
[  924.018753][T18318]  do_syscall_64+0x426/0xfa0
[  924.018777][T18318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  924.018795][T18318] RIP: 0033:0x7fcf0518f6c9
[  924.018811][T18318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  924.018832][T18318] RSP: 002b:00007fcf05f5f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  924.018850][T18318] RAX: fffffffffffffe00 RBX: 00007fcf053e6278 RCX: 00007fcf0518f6c9
[  924.018862][T18318] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fcf053e6278
[  924.018873][T18318] RBP: 00007fcf053e6270 R08: 0000000000000000 R09: 0000000000000000
[  924.018884][T18318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  924.018894][T18318] R13: 00007fcf053e6308 R14: 00007ffe1695c8a0 R15: 00007ffe1695c988
[  924.018917][T18318]  </TASK>
[  925.732471][T18348] Process accounting resumed
[  927.235754][T18390] random: crng reseeded on system resumption
[  928.317999][T18406] Process accounting resumed
[  928.747028][T18413] netlink: 25 bytes leftover after parsing attributes in process `syz.6.2405'.
[  932.371012][T18467] block nbd0: Unsupported socket: should be TCP or UNIX.
[  933.210515][T18481] FAULT_INJECTION: forcing a failure.
[  933.210515][T18481] name failslab, interval 1, probability 0, space 0, times 0
[  933.325519][T18481] CPU: 0 UID: 0 PID: 18481 Comm: syz.3.2422 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  933.325553][T18481] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  933.325561][T18481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  933.325571][T18481] Call Trace:
[  933.325577][T18481]  <TASK>
[  933.325584][T18481]  dump_stack_lvl+0x16c/0x1f0
[  933.325612][T18481]  should_fail_ex+0x512/0x640
[  933.325648][T18481]  ? fs_reclaim_acquire+0xae/0x150
[  933.325675][T18481]  should_failslab+0xc2/0x120
[  933.325702][T18481]  __kmalloc_noprof+0xdd/0x880
[  933.325732][T18481]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  933.325759][T18481]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  933.325780][T18481]  tomoyo_realpath_from_path+0xc2/0x6e0
[  933.325804][T18481]  ? tomoyo_profile+0x47/0x60
[  933.325830][T18481]  tomoyo_path_number_perm+0x245/0x580
[  933.325860][T18481]  ? tomoyo_path_number_perm+0x237/0x580
[  933.325893][T18481]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  933.325925][T18481]  ? find_held_lock+0x2b/0x80
[  933.325964][T18481]  ? find_held_lock+0x2b/0x80
[  933.325983][T18481]  ? hook_file_ioctl_common+0x145/0x410
[  933.326007][T18481]  ? __fget_files+0x20e/0x3c0
[  933.326030][T18481]  security_file_ioctl+0x9b/0x240
[  933.326054][T18481]  __x64_sys_ioctl+0xb7/0x210
[  933.326084][T18481]  do_syscall_64+0xcd/0xfa0
[  933.326109][T18481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  933.326129][T18481] RIP: 0033:0x7fc9d258f6c9
[  933.326143][T18481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  933.326162][T18481] RSP: 002b:00007fc9d340b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  933.326180][T18481] RAX: ffffffffffffffda RBX: 00007fc9d27e5fa0 RCX: 00007fc9d258f6c9
[  933.326192][T18481] RDX: 0000000000000004 RSI: 0000000040106f52 RDI: 0000000000000003
[  933.326202][T18481] RBP: 00007fc9d340b090 R08: 0000000000000000 R09: 0000000000000000
[  933.326213][T18481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  933.326223][T18481] R13: 00007fc9d27e6038 R14: 00007fc9d27e5fa0 R15: 00007ffc9fabd868
[  933.326247][T18481]  </TASK>
[  933.326254][T18481] ERROR: Out of memory at tomoyo_realpath_from_path.
[  933.574386][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  933.580706][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  933.830942][T18489] blktrace: Concurrent blktraces are not allowed on loop2
[  934.206093][T18493] FAULT_INJECTION: forcing a failure.
[  934.206093][T18493] name failslab, interval 1, probability 0, space 0, times 0
[  934.314103][T18493] CPU: 0 UID: 0 PID: 18493 Comm: syz.6.2424 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  934.314137][T18493] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  934.314144][T18493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  934.314156][T18493] Call Trace:
[  934.314161][T18493]  <TASK>
[  934.314168][T18493]  dump_stack_lvl+0x16c/0x1f0
[  934.314195][T18493]  should_fail_ex+0x512/0x640
[  934.314224][T18493]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  934.314247][T18493]  should_failslab+0xc2/0x120
[  934.314273][T18493]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  934.314294][T18493]  ? __d_alloc+0x32/0xae0
[  934.314319][T18493]  ? __d_alloc+0x32/0xae0
[  934.314339][T18493]  __d_alloc+0x32/0xae0
[  934.314370][T18493]  d_alloc_pseudo+0x1c/0xc0
[  934.314404][T18493]  alloc_file_pseudo+0xcf/0x230
[  934.314432][T18493]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  934.314459][T18493]  ? alloc_fd+0x471/0x7d0
[  934.314481][T18493]  sock_alloc_file+0x50/0x210
[  934.314503][T18493]  __sys_socket+0x1c0/0x260
[  934.314528][T18493]  ? __pfx___sys_socket+0x10/0x10
[  934.314553][T18493]  ? xfd_validate_state+0x61/0x180
[  934.314578][T18493]  ? __pfx_do_writev+0x10/0x10
[  934.314601][T18493]  __x64_sys_socket+0x72/0xb0
[  934.314624][T18493]  ? lockdep_hardirqs_on+0x7c/0x110
[  934.314646][T18493]  do_syscall_64+0xcd/0xfa0
[  934.314669][T18493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  934.314687][T18493] RIP: 0033:0x7f07eeb8f6c9
[  934.314702][T18493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  934.314720][T18493] RSP: 002b:00007f07ef98b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  934.314738][T18493] RAX: ffffffffffffffda RBX: 00007f07eede5fa0 RCX: 00007f07eeb8f6c9
[  934.314749][T18493] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002
[  934.314760][T18493] RBP: 00007f07eec11f91 R08: 0000000000000000 R09: 0000000000000000
[  934.314770][T18493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  934.314780][T18493] R13: 00007f07eede6038 R14: 00007f07eede5fa0 R15: 00007ffcee4c91b8
[  934.314802][T18493]  </TASK>
[  935.879287][T18501] zswap: compressor  not available
[  937.511612][T18522] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2431'.
[  937.587422][T18522] : renamed from bond_slave_1 (while UP)
[  939.752917][T18549] netlink: 330 bytes leftover after parsing attributes in process `syz.6.2438'.
[  939.832522][T18537] nvme_fabrics: missing parameter 'transport=%s'
[  939.883920][T18537] nvme_fabrics: missing parameter 'nqn=%s'
[  940.204665][T18556] netlink: 330 bytes leftover after parsing attributes in process `syz.6.2438'.
[  940.378738][T18565] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2441'.
[  940.451322][T18565] netlink: 354 bytes leftover after parsing attributes in process `syz.3.2441'.
[  942.145061][T18583] FAULT_INJECTION: forcing a failure.
[  942.145061][T18583] name failslab, interval 1, probability 0, space 0, times 0
[  942.238072][T18583] CPU: 0 UID: 0 PID: 18583 Comm: syz.3.2446 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  942.238107][T18583] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  942.238116][T18583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  942.238126][T18583] Call Trace:
[  942.238133][T18583]  <TASK>
[  942.238141][T18583]  dump_stack_lvl+0x16c/0x1f0
[  942.238169][T18583]  should_fail_ex+0x512/0x640
[  942.238197][T18583]  ? __kmalloc_cache_noprof+0x5f/0x780
[  942.238219][T18583]  should_failslab+0xc2/0x120
[  942.238255][T18583]  __kmalloc_cache_noprof+0x72/0x780
[  942.238273][T18583]  ? fuse_dev_alloc+0x48/0x280
[  942.238298][T18583]  ? lockdep_init_map_type+0x5c/0x280
[  942.238328][T18583]  ? fuse_dev_alloc+0x48/0x280
[  942.238351][T18583]  fuse_dev_alloc+0x48/0x280
[  942.238377][T18583]  fuse_dev_alloc_install+0x13/0x40
[  942.238403][T18583]  cuse_channel_open+0x100/0x7f0
[  942.238426][T18583]  ? __pfx_cuse_channel_open+0x10/0x10
[  942.238449][T18583]  misc_open+0x26d/0x450
[  942.238480][T18583]  ? __pfx_misc_open+0x10/0x10
[  942.238509][T18583]  chrdev_open+0x234/0x6a0
[  942.238532][T18583]  ? __pfx_apparmor_file_open+0x10/0x10
[  942.238560][T18583]  ? __pfx_chrdev_open+0x10/0x10
[  942.238583][T18583]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  942.238609][T18583]  do_dentry_open+0x982/0x1530
[  942.238631][T18583]  ? __pfx_chrdev_open+0x10/0x10
[  942.238658][T18583]  vfs_open+0x82/0x3f0
[  942.238688][T18583]  path_openat+0x1de4/0x2cb0
[  942.238716][T18583]  ? __pfx_path_openat+0x10/0x10
[  942.238738][T18583]  ? __lock_acquire+0xb8a/0x1c90
[  942.238766][T18583]  do_filp_open+0x20b/0x470
[  942.238787][T18583]  ? __pfx_do_filp_open+0x10/0x10
[  942.238823][T18583]  ? alloc_fd+0x471/0x7d0
[  942.238848][T18583]  do_sys_openat2+0x11b/0x1d0
[  942.238876][T18583]  ? __pfx_do_sys_openat2+0x10/0x10
[  942.238912][T18583]  __x64_sys_openat+0x174/0x210
[  942.238940][T18583]  ? __pfx___x64_sys_openat+0x10/0x10
[  942.238978][T18583]  do_syscall_64+0xcd/0xfa0
[  942.239002][T18583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  942.239021][T18583] RIP: 0033:0x7fc9d258f6c9
[  942.239036][T18583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  942.239054][T18583] RSP: 002b:00007fc9d340b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  942.239073][T18583] RAX: ffffffffffffffda RBX: 00007fc9d27e5fa0 RCX: 00007fc9d258f6c9
[  942.239091][T18583] RDX: 00000000001c1041 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  942.239103][T18583] RBP: 00007fc9d2611f91 R08: 0000000000000000 R09: 0000000000000000
[  942.239114][T18583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  942.239125][T18583] R13: 00007fc9d27e6038 R14: 00007fc9d27e5fa0 R15: 00007ffc9fabd868
[  942.239150][T18583]  </TASK>
[  943.079472][T18580] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4)
[  943.248060][T18595] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2447'.
[  947.256279][   T30] audit: type=1800 audit(4294968606.231:24): pid=18627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2453" name="dbroot" dev="configfs" ino=239702 res=0 errno=0
[  948.612562][T18634] ==================================================================
[  948.620806][T18634] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0
[  948.628559][T18634] Read of size 8 at addr ffff8881436e4418 by task syz.4.2454/18634
[  948.636460][T18634] 
[  948.638788][T18634] CPU: 0 UID: 0 PID: 18634 Comm: syz.4.2454 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  948.638818][T18634] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  948.638826][T18634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  948.638837][T18634] Call Trace:
[  948.638846][T18634]  <TASK>
[  948.638854][T18634]  dump_stack_lvl+0x116/0x1f0
[  948.638880][T18634]  print_report+0xcd/0x630
[  948.638906][T18634]  ? __virt_addr_valid+0x81/0x610
[  948.638931][T18634]  ? __phys_addr+0xe8/0x180
[  948.638956][T18634]  ? dvb_device_open+0x36a/0x3b0
[  948.638980][T18634]  kasan_report+0xe0/0x110
[  948.639006][T18634]  ? dvb_device_open+0x36a/0x3b0
[  948.639031][T18634]  ? __pfx_dvb_device_open+0x10/0x10
[  948.639056][T18634]  dvb_device_open+0x36a/0x3b0
[  948.639081][T18634]  ? __pfx_dvb_device_open+0x10/0x10
[  948.639105][T18634]  chrdev_open+0x234/0x6a0
[  948.639127][T18634]  ? __pfx_apparmor_file_open+0x10/0x10
[  948.639156][T18634]  ? __pfx_chrdev_open+0x10/0x10
[  948.639185][T18634]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  948.639208][T18634]  do_dentry_open+0x982/0x1530
[  948.639230][T18634]  ? __pfx_chrdev_open+0x10/0x10
[  948.639253][T18634]  vfs_open+0x82/0x3f0
[  948.639280][T18634]  path_openat+0x1de4/0x2cb0
[  948.639303][T18634]  ? __pfx_path_openat+0x10/0x10
[  948.639323][T18634]  ? __lock_acquire+0xb8a/0x1c90
[  948.639350][T18634]  do_filp_open+0x20b/0x470
[  948.639370][T18634]  ? __pfx_do_filp_open+0x10/0x10
[  948.639397][T18634]  ? alloc_fd+0x471/0x7d0
[  948.639417][T18634]  do_sys_openat2+0x11b/0x1d0
[  948.639444][T18634]  ? __pfx_do_sys_openat2+0x10/0x10
[  948.639470][T18634]  ? __pfx_do_sys_openat2+0x10/0x10
[  948.639498][T18634]  ? __pfx___might_resched+0x10/0x10
[  948.639520][T18634]  __x64_sys_openat+0x174/0x210
[  948.639548][T18634]  ? __pfx___x64_sys_openat+0x10/0x10
[  948.639580][T18634]  do_syscall_64+0xcd/0xfa0
[  948.639603][T18634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  948.639622][T18634] RIP: 0033:0x7fcf0518f6c9
[  948.639638][T18634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  948.639657][T18634] RSP: 002b:00007fcf05fc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  948.639675][T18634] RAX: ffffffffffffffda RBX: 00007fcf053e5fa0 RCX: 00007fcf0518f6c9
[  948.639687][T18634] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  948.639699][T18634] RBP: 00007fcf05211f91 R08: 0000000000000000 R09: 0000000000000000
[  948.639710][T18634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  948.639721][T18634] R13: 00007fcf053e6038 R14: 00007fcf053e5fa0 R15: 00007ffe1695c988
[  948.639738][T18634]  </TASK>
[  948.639745][T18634] 
[  948.903756][T18634] Allocated by task 1:
[  948.907912][T18634]  kasan_save_stack+0x33/0x60
[  948.912592][T18634]  kasan_save_track+0x14/0x30
[  948.917278][T18634]  __kasan_kmalloc+0xaa/0xb0
[  948.921882][T18634]  dvb_register_device+0x1e4/0x2370
[  948.927172][T18634]  dvb_register_frontend+0x5a6/0x880
[  948.932463][T18634]  vidtv_bridge_probe+0x459/0xa90
[  948.937496][T18634]  platform_probe+0x106/0x1d0
[  948.942168][T18634]  really_probe+0x241/0xa90
[  948.946671][T18634]  __driver_probe_device+0x1de/0x440
[  948.951962][T18634]  driver_probe_device+0x4c/0x1b0
[  948.956986][T18634]  __driver_attach+0x283/0x580
[  948.961752][T18634]  bus_for_each_dev+0x13e/0x1d0
[  948.966596][T18634]  bus_add_driver+0x2e9/0x690
[  948.971274][T18634]  driver_register+0x15c/0x4b0
[  948.976039][T18634]  vidtv_bridge_init+0x45/0x80
[  948.980812][T18634]  do_one_initcall+0x123/0x6e0
[  948.985679][T18634]  kernel_init_freeable+0x5c8/0x920
[  948.990885][T18634]  kernel_init+0x1c/0x2b0
[  948.995311][T18634]  ret_from_fork+0x675/0x7d0
[  948.999991][T18634]  ret_from_fork_asm+0x1a/0x30
[  949.004854][T18634] 
[  949.007170][T18634] Freed by task 18580:
[  949.011259][T18634]  kasan_save_stack+0x33/0x60
[  949.015935][T18634]  kasan_save_track+0x14/0x30
[  949.020697][T18634]  __kasan_save_free_info+0x3b/0x60
[  949.025903][T18634]  __kasan_slab_free+0x5f/0x80
[  949.030666][T18634]  kfree+0x2b8/0x6d0
[  949.034569][T18634]  dvb_device_put.part.0+0x60/0x90
[  949.039696][T18634]  dvb_device_open+0x2a4/0x3b0
[  949.044461][T18634]  chrdev_open+0x234/0x6a0
[  949.048971][T18634]  do_dentry_open+0x982/0x1530
[  949.053739][T18634]  vfs_open+0x82/0x3f0
[  949.057917][T18634]  path_openat+0x1de4/0x2cb0
[  949.062517][T18634]  do_filp_open+0x20b/0x470
[  949.067034][T18634]  do_sys_openat2+0x11b/0x1d0
[  949.071716][T18634]  __x64_sys_openat+0x174/0x210
[  949.076593][T18634]  do_syscall_64+0xcd/0xfa0
[  949.081111][T18634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  949.086999][T18634] 
[  949.089314][T18634] The buggy address belongs to the object at ffff8881436e4400
[  949.089314][T18634]  which belongs to the cache kmalloc-256 of size 256
[  949.103363][T18634] The buggy address is located 24 bytes inside of
[  949.103363][T18634]  freed 256-byte region [ffff8881436e4400, ffff8881436e4500)
[  949.117339][T18634] 
[  949.119667][T18634] The buggy address belongs to the physical page:
[  949.126070][T18634] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1436e4
[  949.135005][T18634] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  949.143505][T18634] flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff)
[  949.151131][T18634] page_type: f5(slab)
[  949.155147][T18634] raw: 057ff00000000040 ffff88813ffa6b40 dead000000000122 0000000000000000
[  949.163727][T18634] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  949.172331][T18634] head: 057ff00000000040 ffff88813ffa6b40 dead000000000122 0000000000000000
[  949.180997][T18634] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  949.189667][T18634] head: 057ff00000000001 ffffea00050db901 00000000ffffffff 00000000ffffffff
[  949.198354][T18634] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  949.207009][T18634] page dumped because: kasan: bad access detected
[  949.213432][T18634] page_owner tracks the page as allocated
[  949.219164][T18634] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 24062686555, free_ts 0
[  949.239084][T18634]  post_alloc_hook+0x1c0/0x230
[  949.243898][T18634]  get_page_from_freelist+0x10a3/0x3a30
[  949.249459][T18634]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  949.255374][T18634]  alloc_pages_mpol+0x1fb/0x550
[  949.260244][T18634]  new_slab+0x24a/0x360
[  949.264438][T18634]  ___slab_alloc+0xd79/0x1a50
[  949.269171][T18634]  __slab_alloc.constprop.0+0x63/0x110
[  949.274663][T18634]  __kmalloc_cache_noprof+0x477/0x780
[  949.280245][T18634]  bus_add_driver+0x92/0x690
[  949.284944][T18634]  driver_register+0x15c/0x4b0
[  949.289740][T18634]  i2c_register_driver+0xd9/0x1c0
[  949.294950][T18634]  do_one_initcall+0x123/0x6e0
[  949.299777][T18634]  kernel_init_freeable+0x5c8/0x920
[  949.304982][T18634]  kernel_init+0x1c/0x2b0
[  949.309315][T18634]  ret_from_fork+0x675/0x7d0
[  949.313922][T18634]  ret_from_fork_asm+0x1a/0x30
[  949.318694][T18634] page_owner free stack trace missing
[  949.324051][T18634] 
[  949.326375][T18634] Memory state around the buggy address:
[  949.332005][T18634]  ffff8881436e4300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  949.340064][T18634]  ffff8881436e4380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  949.348123][T18634] >ffff8881436e4400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  949.356377][T18634]                             ^
[  949.361231][T18634]  ffff8881436e4480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  949.369292][T18634]  ffff8881436e4500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  949.377349][T18634] ==================================================================
[  949.558830][T18638] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  953.761714][T18634] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  953.768949][T18634] CPU: 0 UID: 0 PID: 18634 Comm: syz.4.2454 Tainted: G     U    I         syzkaller #0 PREEMPT(full) 
[  953.779999][T18634] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  953.785979][T18634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  953.796055][T18634] Call Trace:
[  953.799334][T18634]  <TASK>
[  953.802273][T18634]  dump_stack_lvl+0x3d/0x1f0
[  953.806893][T18634]  vpanic+0x640/0x6f0
[  953.810901][T18634]  panic+0xca/0xd0
[  953.814661][T18634]  ? __pfx_panic+0x10/0x10
[  953.819088][T18634]  ? dvb_device_open+0x36a/0x3b0
[  953.824125][T18634]  ? preempt_schedule_common+0x44/0xc0
[  953.829635][T18634]  ? preempt_schedule_thunk+0x16/0x30
[  953.835026][T18634]  check_panic_on_warn+0xab/0xb0
[  953.839998][T18634]  end_report+0x107/0x170
[  953.844336][T18634]  kasan_report+0xee/0x110
[  953.848761][T18634]  ? dvb_device_open+0x36a/0x3b0
[  953.853714][T18634]  ? __pfx_dvb_device_open+0x10/0x10
[  953.859063][T18634]  dvb_device_open+0x36a/0x3b0
[  953.863846][T18634]  ? __pfx_dvb_device_open+0x10/0x10
[  953.869209][T18634]  chrdev_open+0x234/0x6a0
[  953.873629][T18634]  ? __pfx_apparmor_file_open+0x10/0x10
[  953.879223][T18634]  ? __pfx_chrdev_open+0x10/0x10
[  953.884326][T18634]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  953.890752][T18634]  do_dentry_open+0x982/0x1530
[  953.895527][T18634]  ? __pfx_chrdev_open+0x10/0x10
[  953.900477][T18634]  vfs_open+0x82/0x3f0
[  953.904573][T18634]  path_openat+0x1de4/0x2cb0
[  953.909172][T18634]  ? __pfx_path_openat+0x10/0x10
[  953.914477][T18634]  ? __lock_acquire+0xb8a/0x1c90
[  953.919440][T18634]  do_filp_open+0x20b/0x470
[  953.924047][T18634]  ? __pfx_do_filp_open+0x10/0x10
[  953.929167][T18634]  ? alloc_fd+0x471/0x7d0
[  953.933510][T18634]  do_sys_openat2+0x11b/0x1d0
[  953.938228][T18634]  ? __pfx_do_sys_openat2+0x10/0x10
[  953.943455][T18634]  ? __pfx_do_sys_openat2+0x10/0x10
[  953.948674][T18634]  ? __pfx___might_resched+0x10/0x10
[  953.953982][T18634]  __x64_sys_openat+0x174/0x210
[  953.958938][T18634]  ? __pfx___x64_sys_openat+0x10/0x10
[  953.964419][T18634]  do_syscall_64+0xcd/0xfa0
[  953.968927][T18634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  953.974820][T18634] RIP: 0033:0x7fcf0518f6c9
[  953.979255][T18634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  953.998870][T18634] RSP: 002b:00007fcf05fc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  954.007294][T18634] RAX: ffffffffffffffda RBX: 00007fcf053e5fa0 RCX: 00007fcf0518f6c9
[  954.015305][T18634] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  954.023331][T18634] RBP: 00007fcf05211f91 R08: 0000000000000000 R09: 0000000000000000
[  954.031837][T18634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  954.039827][T18634] R13: 00007fcf053e6038 R14: 00007fcf053e5fa0 R15: 00007ffe1695c988
[  954.047928][T18634]  </TASK>
[  954.051021][T18634] Kernel Offset: disabled
[  954.055368][T18634] Rebooting in 86400 seconds..