last executing test programs:

2m1.670292156s ago: executing program 0 (id=3874):
capset$auto(0x0, 0x0)
nanosleep$auto(&(0x7f0000000180)={0x3, 0x100000000044d4}, 0x0)
syz_clone(0x1002000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r0 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r0, 0x0, 0x80, 0x0, 0x0)
setsockopt$auto(0x3, 0x6, 0xc, 0x0, 0xfb3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000)

2m1.045173906s ago: executing program 0 (id=3878):
r0 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r1, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4)
bind$auto(0x3, &(0x7f0000000180)=@in={0x2, 0x3, @multicast1}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3dc)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0x8000)
bind$auto(0x3, 0x0, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
syz_genetlink_get_family_id$auto_nl80211(0x0, r0)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, 0x0, 0x55)

2m0.492637305s ago: executing program 0 (id=3880):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
madvise$auto(0x108000, 0x800032, 0x4)
unshare$auto(0x40000080)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
rt_sigsuspend$auto(&(0x7f00000000c0)={0x4}, 0x8)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto_EVIOCGMASK(r0, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x105})
ioctl$auto(0x3, 0x80004509, 0x10000000000402)
ioctl$auto(0x3, 0x800005411, 0x38)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0xa, 0xe)
ioctl$auto(0x1, 0x890b, 0x8)

1m59.056200221s ago: executing program 0 (id=3885):
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
mmap$auto(0x0, 0x20008, 0xfffffffffffffffe, 0x12, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/bpq4/statistics/rx_packets\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
mmap$auto(0x0, 0xe97f, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
unshare$auto(0x40000080)
r1 = pidfd_open$auto(0x1, 0x0)
setns(r1, 0x60020000)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
pivot_root$auto(&(0x7f0000000100)='..\x00', &(0x7f0000000340)='.\x00z\x86E\xb8\xf1\xcbx\xf6cu<\x0e\xd8\xa5\xcd~\xaf\x80\xd3\xf4\xe5\x02\xf9q p\xe2\x8b\xc0\xedf\xba\x16*\x8ar\xa0\'$A\xe5\xc5\x89\xcb\xd5\xac\x98,\xd4Pycv\xdd\xa1\x84\xfb\xe9\r\x82\x15P*IM\xf7.\xf3v\x85Q\xbc:\xef\xd5\x1a\x9e\xbck\x1d\x114^\x1b\x02\xa1\xb0(\xa2\xdb\xbc\x1a\t\x94\x14\xbb\xc8\xfa\x18I\xff\x7f\xab\xf0\x8f\xd3Gr\xfb5\xf1,\x11\x052u&\xde\x9aF\n\xf0\x06\xfc\x1b\x17\x82%\x14\xb3\x19\x13\f\xbe_\xfdi\x17\xfcv\x82*\xbf<\xfa5\xfd\x8b\x1d\x99\a`\xde\xf4\x8a,\tP) \xf4\xdc\r\x17x\xc6\x18Y\xeaaUY\xeb\xd2\x81\xbare\x00\x8e\xfdA\x93\xb9\xac\xf1\x0eq\x85\xd9\x90\x8a%K\x95\x8fm\v\x98y\x9bc-\xa7;\x117\x19)\x04\xb4\nJ\x0e\x1b\x97e\xee\xdb\xc3\xca\xfe\xa7y\x12\xff\xce')
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0xc, @empty}, 0x54)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
ioctl$auto(0x3, 0x541b, 0x7f)

1m58.020025684s ago: executing program 0 (id=3890):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0x5, 0x9b72, 0x2, 0x6)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x9, 0xfffffffd}, 0x1}, 0x5, 0x20000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x1, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xc834, 0xfffffffffffffffa, 0x8000)
pwrite64$auto(0xffffffffffffffff, 0x0, 0xb, 0x8000)
fsconfig$auto(0xffffffffffffffff, 0x8, 0x0, 0x0, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
openat$auto_hwsim_fops_ps_(0xffffffffffffff9c, &(0x7f0000000580)='/sys/kernel/debug/ieee80211/phy0/hwsim/ps\x00', 0x100, 0x0)
ioctl$auto(0x3, 0x80108907, 0x38)
setsockopt$auto(0x3, 0x6, 0x3, 0x0, 0xd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x0, 0x2091d1, 0x1, 0x0, 0x6, 0x2)
write$auto(0x3, 0x0, 0xfffffdef)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000280), r0)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0x20000800)

1m56.732335918s ago: executing program 0 (id=3895):
unshare$auto(0x40000080)
setrlimit$auto(0xb, 0x0)
r0 = getpid()
rt_tgsigqueueinfo$auto(r0, 0x0, 0x21, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtdblock0\x00', 0x14fe02, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(r1, r2, 0x0)
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_BLKPG2(r3, 0x1269, 0x0)
mmap$auto(0x0, 0x402000b, 0x4af, 0xeb1, 0x401, 0x8000)
read$auto(0x3, 0x0, 0xfffffdef)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
getsockopt$auto_SO_SNDBUF(0xffffffffffffffff, 0x73, 0x7, 0x0, 0x0)

1m41.500066271s ago: executing program 32 (id=3895):
unshare$auto(0x40000080)
setrlimit$auto(0xb, 0x0)
r0 = getpid()
rt_tgsigqueueinfo$auto(r0, 0x0, 0x21, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtdblock0\x00', 0x14fe02, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(r1, r2, 0x0)
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_BLKPG2(r3, 0x1269, 0x0)
mmap$auto(0x0, 0x402000b, 0x4af, 0xeb1, 0x401, 0x8000)
read$auto(0x3, 0x0, 0xfffffdef)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
getsockopt$auto_SO_SNDBUF(0xffffffffffffffff, 0x73, 0x7, 0x0, 0x0)

1m35.236175844s ago: executing program 2 (id=3930):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
r0 = socket(0x2, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="30f07a00"/15, @ANYRES16=r1, @ANYBLOB="1b0026bd7400fddbdf2503000000040008000400038006000900060000000c000b000000000000000000"], 0x30}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0x20009, 0x6, 0xfffffffffffffffe, 0xffffffffffffffff, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/mem\x00', 0x924c3, 0x0)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0xfff, &(0x7f00000000c0)={0x0, 0x1feff}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311)

1m34.882760059s ago: executing program 2 (id=3933):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0x7fffffff)
prctl$auto_PR_SCHED_CORE_GET(0x476, 0x0, 0x0, 0x5, 0x7)
socket(0xa, 0x1, 0x84)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
write$auto(0x1, 0x0, 0x80000000)
mmap$auto(0x100000, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
madvise$auto(0x0, 0x2003f0, 0x15)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0)
shmctl$auto_SHM_STAT(0x5, 0xd, &(0x7f0000000140)={{0x10001, 0xffffffffffffffff, <r4=>0x0, 0x2, 0x3, 0x3, 0x6}, 0x5, 0x9, 0x1, 0x9, @inferred, @inferred, 0x0, 0x0, &(0x7f0000000000)="a92cc5b95cbadeeec0c80a78f129b552aff38f501076b376c850e3181d7ab078b9c2a74d949545259b5a23079c5ddb423ec48eaac2ce48768e1ea76aa84b74416a50", &(0x7f0000000100)="899f6eff00"})
msgctl$auto_IPC_SET(0x7f7, 0x1, &(0x7f0000000240)={{0x1000, 0xee00, <r5=>0xee01, 0x8, 0x40, 0x81, 0x786}, &(0x7f00000001c0)=0x54, &(0x7f0000000200)=0x53, 0x100, 0x5, 0xd48b, 0x4056, 0x3, 0xffff, 0x8, 0xff, @raw=0x4})
setregid$auto(r4, r5)

1m33.443723471s ago: executing program 2 (id=3941):
mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x100, 0x0)
ioctl$auto_SNDCTL_DSP_STEREO(r1, 0xc0045003, 0x0)
clone$auto(0x4, 0x9, 0x0, &(0x7f0000000080), 0x8)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x40180, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x22a02, 0x0)
write$auto(r2, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7\xe6\x04\x8c\x83k', 0x1400)
futex$auto(0x0, 0x86, 0x8, 0x0, 0x0, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_macsec(&(0x7f00000001c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)

1m31.45901789s ago: executing program 2 (id=3949):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x123002, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000180)={0x7})
ioctl$auto_SNDCTL_DSP_GETBLKSIZE(r2, 0xc0045004, &(0x7f0000000000))
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0xfffffffffffffffe, 0x240007, 0x17)
madvise$auto(0x0, 0x2003f2, 0x15)
r3 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYRESOCT=r1], 0x3c}}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vivid.0/video4linux/vbi30/power/control\x00', 0x102, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000640)='/dev/snd/controlC0\x00', 0x0, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0)
read$auto(r4, 0x0, 0x20)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@raw=0x7, 0x1, 0xfffffffb, 0x480008, "3112d58500a8b47148e22af9ffb683dbede3d0bf828bbf100000e5e2f96ee50484b0755015e48d00", @raw=0xfffffffe}, 0x2, 0x5, 0x4, @inferred, @integer64={0x8, 0x0, 0xf}, "7a9fc199a16a2311eacf2fc7ae1da978dc3e8090d70925450ece0bb32777702b07552d000000000000000000ebff0000000000000059a200"})

1m30.055366655s ago: executing program 2 (id=3953):
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
mmap$auto(0x0, 0x20008, 0xfffffffffffffffe, 0x12, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/bpq4/statistics/rx_packets\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
mmap$auto(0x0, 0xe97f, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
unshare$auto(0x40000080)
r1 = pidfd_open$auto(0x1, 0x0)
setns(r1, 0x60020000)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
pivot_root$auto(&(0x7f0000000100)='..\x00', &(0x7f0000000340)='.\x00z\x86E\xb8\xf1\xcbx\xf6cu<\x0e\xd8\xa5\xcd~\xaf\x80\xd3\xf4\xe5\x02\xf9q p\xe2\x8b\xc0\xedf\xba\x16*\x8ar\xa0\'$A\xe5\xc5\x89\xcb\xd5\xac\x98,\xd4Pycv\xdd\xa1\x84\xfb\xe9\r\x82\x15P*IM\xf7.\xf3v\x85Q\xbc:\xef\xd5\x1a\x9e\xbck\x1d\x114^\x1b\x02\xa1\xb0(\xa2\xdb\xbc\x1a\t\x94\x14\xbb\xc8\xfa\x18I\xff\x7f\xab\xf0\x8f\xd3Gr\xfb5\xf1,\x11\x052u&\xde\x9aF\n\xf0\x06\xfc\x1b\x17\x82%\x14\xb3\x19\x13\f\xbe_\xfdi\x17\xfcv\x82*\xbf<\xfa5\xfd\x8b\x1d\x99\a`\xde\xf4\x8a,\tP) \xf4\xdc\r\x17x\xc6\x18Y\xeaaUY\xeb\xd2\x81\xbare\x00\x8e\xfdA\x93\xb9\xac\xf1\x0eq\x85\xd9\x90\x8a%K\x95\x8fm\v\x98y\x9bc-\xa7;\x117\x19)\x04\xb4\nJ\x0e\x1b\x97e\xee\xdb\xc3\xca\xfe\xa7y\x12\xff\xce')
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0xc, @empty}, 0x54)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
ioctl$auto(0x3, 0x541b, 0x7f)

1m28.307240482s ago: executing program 2 (id=3964):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x2c, 0x3, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x101202, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
prctl$auto(0x41, 0x7, 0x0, 0x0, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x10, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4048)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/net/xfrm_stat\x00', 0x5612c1, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x5}, 0xa)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x7, 0x28000)
r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
socketpair$auto(0x200001e, 0x8, 0x80000000, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r2, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x3, 0x0)
select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x7, 0xd, 0x1, 0x948d, 0x5, 0x7, 0x3, 0x8003, 0x65, 0x8000001f, 0x1000, 0x100000000006d3e, 0x9, 0x1, 0x8]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)

1m13.034251612s ago: executing program 33 (id=3964):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x2c, 0x3, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x101202, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
prctl$auto(0x41, 0x7, 0x0, 0x0, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x10, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4048)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/net/xfrm_stat\x00', 0x5612c1, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x5}, 0xa)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x7, 0x28000)
r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
socketpair$auto(0x200001e, 0x8, 0x80000000, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r2, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x3, 0x0)
select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x7, 0xd, 0x1, 0x948d, 0x5, 0x7, 0x3, 0x8003, 0x65, 0x8000001f, 0x1000, 0x100000000006d3e, 0x9, 0x1, 0x8]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)

54.434860201s ago: executing program 5 (id=4082):
ioperm$auto(0x80, 0x1180, 0x0)
capset$auto(0x0, &(0x7f0000000140)={0x4, 0x2, 0x4})
nanosleep$auto(&(0x7f0000000180)={0x3, 0x100000000044d4}, 0x0)
syz_clone(0x1002000, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0x3, 0x3)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r0 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r0, 0x0, 0x80, 0x0, 0x0)
setsockopt$auto(0x3, 0x6, 0xc, 0x0, 0xfb3)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, 0x0, 0x24084005)
r1 = socket(0x10, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x2000000)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000000)={0x23, 0x3, 0x8504, 0x5, 0x7fc, 0x7fb, &(0x7f0000000080)})

53.755974959s ago: executing program 5 (id=4085):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_TIOCGSID2(r0, 0x5429, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x181040, 0x0)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x2, 0x1d2c, 0x3, 0x4, 0x15f4da0e, 0x6, 0x9, 0x100000000000000c, 0x8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00,\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t,\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/242, 0xfdf0, 0x39)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2c, 0x1, 0x3)
sysinfo$auto(0x0)
setsockopt$auto(0xffffffffffffffff, 0x6, 0x2, 0x0, 0xfb3)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r1)
sendmsg$auto_NL80211_CMD_REGISTER_BEACONS(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000280)={&(0x7f0000000540)={0x540, r3, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@NL80211_ATTR_BSSID={0x6c, 0xf5, "46529ca8654912063949953208d12497a3008957153383cedb73d8537c3c02ea55eb0d5538264d5b8e74085f642295ac2147f1f3dd49f7a26a131286c464d21f274e6c0a3a017283b5240395ef212812bad7a0ca3e384e6476830bcabc921114f179d97d2bc50a45"}, @NL80211_ATTR_MAC_HINT={0x95, 0xc8, "f3e785ce4479d38d36ebaa85c583f1cf5ecb8c7b78ef93bc58421736fac4a80bd8c6dc92593b9e2c885b42cd2262c838010a3a568f6e39fe4b8b0934e315c3966b6415d140bdddb95f571f18ef6aea60468d92962ff6e94c1fafdbfcc25d24513ced99a40614b8c55b93ccd366899f69214953ee12cd469d968e01c49b530cd853bd97b67427a84c239cf74634838d5594"}, @NL80211_ATTR_NAN_FUNC={0x244, 0xf0, 0x0, 0x1, [@nested={0x23f, 0xba, 0x0, 0x1, [@generic="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", @generic="114093f04ca8ecfcd0327f6223660a85d3c5dc77f9b86a3ea11e8740c08187762573c365ed0f0e62c8118b47a6b5051cafcd57c06b9826739b092fda270f10b07b5aa1e63b7e5d376dd4aeab6bab1d9709d5bb32dc1e913c8d51cfa997b4fd633d9f6a7773daaefd52c13e16cf5a74d1e73eeb961dfa3a15929994a24042ba275a8a596944291783645a4995da015a1557337a01eaaa0c78627ad74d7275ffe995a3cd7eaa9c09c6eec732418d4ecfd2910bf67a34f2931869b77b141153d754b59514", @generic="bd9d214fc847544509a467e36e4ed75b508e118316c61118407ea566efb9a9b627be8d9f34baab0e560484b9ee095fef79d03a99520ced26830793e8630d62a77089da98c89bd8cdf4dc8775a2f71e78cbf02fbf14fe0b758410e02aa3d1ca138591ab8ba59c648cacdf547e09c2b366427f68b7bbc26be23eb2677da4b3"]}]}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x6}, @NL80211_ATTR_BEACON_HEAD={0x1b9, 0xe, "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"}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0x7ff}, @NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5, 0x1e, 0x3}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x6}, @NL80211_ATTR_COLOR_CHANGE_COLOR={0x5, 0x130, 0x4}]}, 0x540}, 0x1, 0x0, 0x0, 0x8810}, 0x45)
read$auto(0xffffffffffffffff, 0x0, 0x9)
mmap$auto(0x0, 0x2, 0x5, 0xeb1, 0xffffffffffffffff, 0x0)

52.670509506s ago: executing program 5 (id=4089):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x1, 0x0)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000980)={0x14, r1, 0x1, 0x70bd31, 0x25dfdbfd}, 0x14}}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

50.357435739s ago: executing program 5 (id=4096):
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101040, 0x33903f3ada88772b)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000009c0), 0x0, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
io_uring_setup$auto(0x1, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC0\x00', 0x802, 0x0)
socket(0xa, 0x3, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/tty36\x00', 0x80000, 0x0)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
open(0x0, 0x161342, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0)
write$auto(r0, 0x0, 0xc3)

50.177549622s ago: executing program 5 (id=4097):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r1 = socketcall$auto(0x8000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'veth0_to_hsr\x00'})
sendmsg$auto_ETHTOOL_MSG_TSCONFIG_GET(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002040)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0)
write$auto(0xca, &(0x7f0000000000)='\x041\xdbSk\vT\x90\"\xd2\x81\x00x\x80\x00{\x99\x17aa|\xf6\xc8\x04=\x80\x00\x00\x00\t', 0x16)
write$auto(0xffffffffffffffff, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xc6\xe8\xfc@6=\xab\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4U\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t\x13\xf6\x8e\xcf\xabI\xb8\x16\\\x00'/129, 0x7ef)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r4)
sendmsg$auto_NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x40045)
unshare$auto(0x40000080)
kexec_load$auto(0x8134a6c, 0x1, 0x0, 0xff)
close_range$auto(0x2, 0x8, 0x0)

49.375860572s ago: executing program 5 (id=4099):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
setregid$auto(0xffffffffffffffff, 0xfffe)
setresgid$auto(0xffffffffffffffff, 0x0, 0x0)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x80002, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000024c0)="a458f4e5e5f4bcc7fad26fd67f02b7cd05e6589800c28ef8f8202c09b2638f3653c6ed3b849812627a484d93e7ca38bb6c75b1d0f95ba576d7f2aba7a6e17d8a748fa2c2b65445121fdb006e371bc9da60cdd2378cf6a100a75f14aee91714b49cf0714f88fa5e59aae9bcf9c237ad19523f31da1c288cdf62813dd7d4d35f4f653b02ee9be0d662a5b8c4b2abd40ce043cd48819ea9eaa38e675e316b30542f9931634b3a830a7b54d420ab67826dddb406fed3bed2b77ecb0a7d4e2af6b59bab4910255fc1c235940b6f7f253131c3cd2ac263c02923997e0d75105d0d2cf679ea39a73b46233a7ae8e3bbfb0d80046e233f9d8c5560fe1c960668ebcbe0f83692592c77c17cd13221d12f7101576ebed9672885ab88780d1e19fac43722706ec0ba321cbad1a4655b89cf162edf24d1fefcae46d1249c3454cec842f32115775e6874e5cd7ded5dd35826f4cd5305cb3ef22976a7038ab5b6c2f47ab885ca72fac9790238d313859fab15b48ac55d1f572eedc5696e7699164709ec83e685df236a03296471157171e45fc876d86da156922a730e921b1db59737aa99d3c340400112561338a371d1046b32398ad4d770d08435561793bb629ea9c546540c8f54fed75b9e2e96a93bbbe986a8f4979193d7542319a3420287a1ac0a39444fc1abbf0a42bcff5cfa283d15f6c6e299a21abb3a375b3e1ddbb02e6159c9457952209b24c1bf943c54670ae8c2e47f56c96fddee1f2e1632fabde9bcd0bf1ae29eaa6cd2eba33477d8c8731f44173d7c9f6671a951d3e53e696f8f9879f9a974f7e2966e75142cda07e655b6d2eabea316f895785acf3bc931bf224e07110af85ec024d81e326efd5d258d42f731858bb0cb93c93b9030cb34b2a95e7844c018230d92b285d8cbe8bee6a92fd4243e53fa90f4635ecfdb49081d198b4146014cfc4419497fb921b2f61e23ce527374349012778e08f814df03867fee8247ee26c549c0597f94afc17d785b61e1725fa64bc12f1affe87e9117e71290bce5f75ad394817234f97c49fbc63a4d811719871c0a2d5db42d5f8ec45959a8464af57cca0566f6bd41d693f1fb5c96e4c6a6f97f50f459f7793e6046d1b535de78802b9fd9953dafe263ab3d693c0fee0283e70c610e2cfc0e3cb3854dd9d02d700eb666d80dadef740e5f274c2a8ba5fafe1898378022c3d51249710e4f4081b3e2f53670250d3ad7a06eeb02ee94505f7fc8d2c5e9a984a6ab7c1b761f517919a2f44c6bfeaf840c359627be82c08c5769921720bbd883aa74003d8dafec23f539b6b26205d931dcbd381c61430e58954ccd8bef6e8ff18243d769b9139e86d83ee72e5a8c7ac6dc0c997faf9b347947a40e7ef33686c2ee0b49d7c58148e4c8f73fcab6c5597f71feef03fc47db06955299b166bff481c71499fe92fde4e754db5ac71e1c8471ecd1d15fc9c48ce2d01fcdec9b8a9c4cd5d591f590a521dd39d3354e7e2750f7260fe89c02bb3bddd30f11be772eb95752246632df16474832514493cb6c50e8fc6b37dbc263cf970f0ab0d1221245082e91e90f55ad8354eb735038335b42e2571267b07cf71225010aab65145e443b50099b2bd4bfbf546a411e733e97d54db91e84448f966469b796425bbd144f83694b9e05b756fbba36cc6075ad8f30edb0847be6934482d6e19950af47db60a96ca5eef83faf4a1f628daa8dafc78cc2607fa0fcf6fc0ad00c64efb2c223c70bf7a8414c290d13793a5fc81b10a5bb5e8dd7ca2f81f5556d231bf2cfbf1923285aba060c1c88882107e14fddcaaf3eaea37a0bb7216050585c886b6c3fad247d85ccd458dfb746d3d0f6e517adf50a31fc96530950f186943de01ff77d98273875b727cfaf927820d52ee3a63fea63b2d39b1f2c6c2d985e62b96e4ec129207e488a2f91356ba91a8d8bd5b63718d087dfc183e56ceb924afae5f3a12d8c53bb21b8593965b1d68aa52ca985fa510d279ffc470468e3aec2d7524d80826a94e48a6ca4d11e5fc3d5776efc1a696b04c391c872eb2f42fcf6b84e6498f5d0520600f9f68a36d3c535b9d7cfc1d45415374adb90f1e6d300a99f2b5f6f77594c336ddc9b171c4875247201b05ab171a7d4418dcfffcee9996be2cd77e9d7e92965d28e1458df6d184ba7d9cd55d5994a00e692d7674f2ae01d6dd56c3e4b5aa1c0f27ae4c4cbbfe7289743b7c5f9ba7300891f4c83f414318e77de74d84d33b7f83c456e198b99d64e8b7caad5bcd618993764bb24178a990d736edf4965346c2ac76c99b22a5114ec39bc818d6a469b0d4f1aeaf955c14d7a3a5b787141d465a55d71b6138a8dc8cb1d303371c97d8479cb09545bf4a08fa99ab7ea21b3b3a95f4b052e261baf2be0131ce619ecd352904fc2486735edf6d2df283f1e2dae7432557bd8c899b397e769088797f337b3aa1867a9728148f9c63f643ce41f19906640e50764b1a6286beabe9f9e074ca60552f1212aad80b22cbbb45c6e6f00f51020df928756caa3cf374342257807d6daea4e74a79c6144fae4f78915303542b7a5d48a17179a4a43ab18631b06d81c01409277dac0d58ff48c86f679e9c0c56aa8ca6c7591078d6bee3ff9857e099145cf0775ef0ee006f9697e4c69efe0ff72543d70d8ac9faba1eec24ba9f9a3e30fa5d324ba137aaa7175a529c13a8fc321d92472c9b19c941e701f7225664b05613cb07b0705112105ab3c28b00af1b6f930f3d903ee6cc164d77d5d2a0b16667cfb6b329b53b30d8d9a826ba7430d519b1b7f537ed2df08845eb5df7737fe3554f3d96144b42bfd92cc5daab42446f3d46272a00f2457d39ef3e9ea37362d402f6287ea6f485f68ffbe383e21089c313171f6c33f8a7055299ab7cfc5d974c487d992cac1ca53c05c1e9bdb38f6ca0ed6d4e0d8ab7b6197fdd1b4b95e6a466c8d9336c571ea1743e96e0b88da75520b8adddcaa932336fa02f63ce1a7eb909507f778ca3b5f2a736f396528d06ea86f63d3e45f545d262cadd337d321023ae0e5052ba4c0028dbd19765b0097039a64d58a8998ef7afba341b42d6b227cad8f4c4025a766dee22a0cfde5f8c0581d4442a7aac906a0db5fad825611e487228aed5eec17f08d887a34d2b7c6c25f77412ee9941d5dec68a0464a1b0fd6eede1aa1b50579a93f205943dfd626204b9ca493c5aaececd17df71ac200cf7331a8bfbeddb6cd95b0b3016e56de0a9eeadf8d8c3591ae061e743f7c1ca4522bf55b2d80f3ba5df92d81433552dad6fd744ea71903b15a6374613b2a64a533cf6fa974273e7e5359f47428d7620d98d877faadad739a9a761713832ea70da990271b575e7cff075714d563b5b752ab50a7e1a1b5e689ff210503faabb37b8aa1d845825ab2488cfcb6a22010a55c4c045745f186ba8f42bc5a4dd06831da770670209ba568016459c50aef30c8aba754e341183817ad9b386e6b4e194cf66b76c9ea6313491d99d7e7a6d5c92bcec000c58794de2acfc4c490392a68f61e60bf664287e7020e4f30d897d916eb73dd4965b100f3c528cf2a46d43fca6351fc8c6c50fee04340b1f2fdf382a257eab0d964e7a2f0b1b7b9bc017117d8ebb40816b5515c88f7682c02b92b01d9fe884c963846f64800463830d83605a2ea32510dfbaaa29af264f60e8f72f307880f595715637dd799de8d77b0c7131bc04d44ce06b82a0f355e09e3d580124167e62fb12c584dc9553f3f91c86afffe6d871784c56c687b48b14bc974c65f18468eb3806be71c563a8af3075e4d9ff2c55ebab74ac4d384bc7f012dd39e373f74bab4ec597caa798112958890c00de56da95293e578490fb0e1e8fa63e1db877e75c7da1e394e37f8a971f7fe1354a800fff0c23aa66d990acf8fc7524d52a0c4f7b66459cb1811719afec92b7bd88e43569559f7f5fd41196c8ead0c70e13cb05b1155aab093a58b0d4652ce5ca005f868cf38fbefd401ddc9a747447ca6ea90b277688ef780461d14c5186b5a724cf50e5e3a7453e7ac4e79f07851317ae57911529daaa03d6745df50c78b868cb60757828b00d5215b8d67733e2ab1366afacbec2fae934460a1e364275715fc2fe5b911240d59d94084b3386d130c9f52d844858bd36c866b2ca215c02aaff1c4be7a5d2329e00e5ad58de3e87c862402ff5d3632b1f871461f57f6194057ccde4d1d4adc08b0da2778896aa95ef376c53818fafa74872e2f99af03edfe5e8d8e030816a01fa193007f84a627991f24f9054d0347082c2c27294d8bea1422b5847a3bfd2684f5708013d6f3c4d41baca139ebab799b0f2d15eeb4a5fd195b892d331bd1db3f0ec4ddc225e52ef8a326ccd4b86995bf90ceffd0a18d37806ee49d09f072ddab15df82556c459daf45705ebfd358c4eb7547add41da3364d90fcdd36759ebfeda88080a7f6d24ebb0e29e3a1b830e773a2c6d312472375b0428a221e03e2a1810a1c3cc8cde61e5359eefbb7324f4a6b04a2da87bce311a319ae8a842a518135750779d022b1a5321eb779d318d17387a7b7a739620594b090a2e550442c3debdc07a7a5283acc99539834c47ccf7635557a3066b81b32135df2e34c509dbf66dc0276e1e57977b45d77d41db78981883cf8ce8a738c04753911e957bf044e0bdbb1e9a72a7b5f884b61293e2f2756a32f6ef292a95e8484e101194a8c7e90f1e41fddf7d6af09dff5e308a2fbf5f0158d45bc87341ce3414c4b26cbc47ba43b2c2ad9ce6068df85d30fa994bf55cca9c327501c5335711988d3b4b5552c4fb9e9b6601a63cbb0a72ecdac3848ca4870814e0b8dee48a0ab5b14224c71f12cd648a3a39cba8e68f1562c1ad4966b7099015039518de65178c6a5e409166cc49d53b0f053773535421dfe289bd7c7fc2172dd4c5820ea3d2bbfd5bfd056a4d249a803440eada02f46e6fb9db13c74dad1303ca88b0a5091e196837eedd6a1dcd00e95fee39f252e3fb3afcb28d1db702bec482f19f7a5a327a522354e7bdbb3619697cd5c6e5b098b9a3c11478ef2b6467d22d0409e43bcb6552aaf47890c30077e56e77bfc53bc77fba63a324586f3172014b98dfac4ad686c83e611b89b1591a88dc4402d5cb60366455174cf0b84d0685454265a4a7d023b588ae491e6dac119433b2610170a8dc52a0c9f60cec85fe7fea415bf61e50c315b00c70a240a56345e1030731c4144d128e8dab606b1bda54874452af20ed7d6f3350b477417857884a6a6972b9696e92464b762da5739e400850df7ad82c63efb359d3a96b5a4a2f385432b6fa54c54a37678013d1774107b168b32225172d1081aa093def6e5ed6c05767128a4ebd0913ab03d200de072e81dbbc7b0c947ee3e34f6795211e632651852cb9cd7c2de1ef54d20ef625a193ed13061030c9a2e7f8c5674cbde924e25c8f97b6add0f4f89ef2b16ff418581aebd9f962f671a6adff28acf04edd01a96f69e0671780bdf40a19e9a3a235289771738cd32d1ef14509d11781d17608251fb7fa1b9d3c8646497ba0ce8890a2f0bd6e485959ceb8edf74981ef1c0ad7fc4f67bc4c941daef39fefbbdfa39979cf0e6454d565e8e90f8f4ac565a42dde87e16d4ad0977e1e67f88f560131ddaacc8a1f9db08441e6a9ddabae4b19441ef451ae9d9a854b193eb337d68830637f3ae81738bcc1a016077efe7692e146018b417d1199a14a79eecdcb00b0477f83627be935cc3a16a90b59b501d02be6091623c94f0fcf3e74616da0bbd767384c47fbe393c08c896979eef4cf1", 0xfff)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x929, 0x4001, 0x7, 0x5, 0x100717e, 0x3, 0x7, 0x6, 0x7ff, 0xfffffffe, 0x80000001, 0x4, 0x200000000001, 0x1, 0xfffffffffffffffb, 0x8, 0x0, 0x2, 0x2, 0x864, 0xe, 0x22000, 0x200, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, [0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x4000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffff4f3, 0x0, 0x0, 0x2f, 0x0, 0x0, 0xfffffffffffffffc]}, 0xa, 0xd)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
socket(0x10, 0x2, 0x0)
bpf$auto(0xff, &(0x7f00000004c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x5, 0xffffffffffffffff, @relative_id=0x4, 0x400000000005}, 0x3fc)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
write$auto_proc_clear_refs_operations_internal(r0, &(0x7f0000000000)="73d6cc4fdf406742386dd72ff1428a506f5cd946a3", 0x15)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffff7effffd01, &(0x7f00000001c0))

34.413172795s ago: executing program 34 (id=4099):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
setregid$auto(0xffffffffffffffff, 0xfffe)
setresgid$auto(0xffffffffffffffff, 0x0, 0x0)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x80002, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000024c0)="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", 0xfff)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x929, 0x4001, 0x7, 0x5, 0x100717e, 0x3, 0x7, 0x6, 0x7ff, 0xfffffffe, 0x80000001, 0x4, 0x200000000001, 0x1, 0xfffffffffffffffb, 0x8, 0x0, 0x2, 0x2, 0x864, 0xe, 0x22000, 0x200, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, [0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x4000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffff4f3, 0x0, 0x0, 0x2f, 0x0, 0x0, 0xfffffffffffffffc]}, 0xa, 0xd)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
socket(0x10, 0x2, 0x0)
bpf$auto(0xff, &(0x7f00000004c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x5, 0xffffffffffffffff, @relative_id=0x4, 0x400000000005}, 0x3fc)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
write$auto_proc_clear_refs_operations_internal(r0, &(0x7f0000000000)="73d6cc4fdf406742386dd72ff1428a506f5cd946a3", 0x15)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffff7effffd01, &(0x7f00000001c0))

10.723078454s ago: executing program 4 (id=4209):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
r0 = socket(0x2, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="30f07a00"/15, @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf2503000000040008000400038006000900060000000c000b000000000000000000"], 0x30}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0x20009, 0x6, 0xfffffffffffffffe, 0xffffffffffffffff, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/mem\x00', 0x924c3, 0x0)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0xfff, &(0x7f00000000c0)={0x0, 0x1feff}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311)

9.652717429s ago: executing program 3 (id=4212):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = open(0x0, 0x591002, 0x408)
linkat$auto(r0, 0x0, 0xffffffffffffff9c, 0x0, 0x1000)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
r1 = socket(0x1d, 0x3, 0x1)
getsockopt$auto_SO_SNDTIMEO_OLD(r1, 0x7bbb, 0x15, 0x0, 0x0)
r2 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x140800, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x810, r2, 0x1)
madvise$auto(0x0, 0x2, 0xc003)
open(&(0x7f0000000080)='./file0\x00', 0x10840, 0x140)
socketpair$auto(0x20000001, 0x2, 0x3, 0x0)
r3 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r4 = getpid()
process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
ioctl$auto_VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af83, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r3, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x6)
adjtimex$auto(0x0)
ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r3, 0x7a8, 0x0)

9.651520566s ago: executing program 4 (id=4213):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
ioctl$auto_BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000500)={0x40a, 0x3, 0x3ac, 0x8, {0x1, 0x2, 0xb, 0x3, 0x9, 0x4, 0x9, 0x8002, 0xe, 0xa5, 0x1, 0x4, 0x0, 0xf, 0xff}})
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lseek$auto(0x3, 0x7fffffffffffffff, 0x0)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40ebe, 0xffffffffffffffff, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
sendmsg$auto_ETHTOOL_MSG_PSE_SET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000881}, 0x0)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)
write$auto(r1, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000001680)="a7", 0x80000)
mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

9.097070944s ago: executing program 3 (id=4214):
waitid$auto(0x8, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={{0xfffffffffffffff9, 0x80}, {0x2, 0x6}, 0x4, 0x5, 0x1, 0x3, 0x0, 0x8000, 0x80000000, 0x7, 0xb7, 0x5d9, 0x5, 0x7ff, 0x2055})
mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x10000000008000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
msgctl$auto_IPC_STAT(0x0, 0x2, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0x200000000003, 0x2f4a3a23)
mmap$auto(0x0, 0x2, 0xffffffffffffffff, 0x44eb1, 0x602, 0x300000000000)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/ip6_vti0/stable_secret\x00', 0x2, 0x0)
writev$auto(r0, &(0x7f0000000300)={&(0x7f0000000200), 0x200}, 0x3)
ioctl$auto(0x3, 0x4020afa4, 0xffffffffffffffff)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x288202, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x7fffffff, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)

9.066081431s ago: executing program 6 (id=4215):
r0 = pidfd_open$auto(0x1, 0x0)
setns(r0, 0x60020000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0)
sendfile$auto(r1, r1, 0x0, 0x7fffe000)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2000000000000021, 0x2, 0x10000000000002)
socket(0x2a, 0x2, 0x0)
connect$auto(0xffffffffffffffff, 0x0, 0x55)
syz_clone3(&(0x7f0000000300)={0x153326100, 0x0, 0x0, 0x0, {0x23}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0xa7)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r2 = socket(0xa, 0x1, 0x84)
bind$auto(r2, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
r3 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3d}}, 0x6a)
listen$auto(0x3, 0x81)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
close_range$auto(0x2, 0xa, 0x0)

8.473126846s ago: executing program 4 (id=4217):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
setregid$auto(0xffffffffffffffff, 0xfffe)
setresgid$auto(0xffffffffffffffff, 0x0, 0x0)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x80002, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000024c0)="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", 0xfff)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x929, 0x4001, 0x7, 0x5, 0x100717e, 0x3, 0x7, 0x6, 0x7ff, 0xfffffffe, 0x80000001, 0x4, 0x200000000001, 0x1, 0xfffffffffffffffb, 0x8, 0x0, 0x2, 0x2, 0x864, 0xe, 0x22000, 0x200, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, [0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x4000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffff4f3, 0x0, 0x0, 0x2f, 0x0, 0x0, 0xfffffffffffffffc]}, 0xa, 0xd)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r2 = socket(0x10, 0x2, 0x0)
bpf$auto(0xff, &(0x7f00000004c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x5, 0xffffffffffffffff, @relative_id=0x4, 0x400000000005}, 0x3fc)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x803}, 0x2004, 0x8)
r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
write$auto_proc_clear_refs_operations_internal(r0, &(0x7f0000000000)="73d6cc4fdf406742386dd72ff1428a506f5cd946a3", 0x15)
ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffff7effffd01, &(0x7f00000001c0))

6.643832298s ago: executing program 6 (id=4220):
mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
r1 = socket(0x23, 0x5, 0x0)
bind$auto(r1, 0x0, 0x80)
r2 = socket(0x23, 0x5, 0x0)
bind$auto(r2, 0x0, 0x80)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000100)={0x60, 0x2, 0x110000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x0, 0x7f, 0x0, 0x2, 0x0, 0x2})
timerfd_settime$auto(0xffffffffffffffff, 0x3, &(0x7f0000000040)={{0x2, 0x8000000000000000}, {0x2, 0x80}}, 0x0)
r3 = socket(0xa, 0x801, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = getpid()
process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
setsockopt$auto(r3, 0x10000000084, 0x9, 0x0, 0x9c)
connect$auto(0x3, 0x0, 0x54)
read$auto(r0, 0x0, 0x20)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f00000001c0)={0x0, 0x7}, 0x3)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x48002, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ovs_vport(0x0, 0xffffffffffffffff)
openat$nci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)

6.622109362s ago: executing program 3 (id=4221):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x4)
connect$auto(0xffffffffffffffff, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r0 = epoll_create$auto(0x2)
epoll_pwait2$auto(r0, 0x0, 0x8, 0x0, 0x0, 0x8)
r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec4\x00', 0x101901, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r1, 0xc05c6104, &(0x7f0000000100)={'\x00', 0x0, 0x6, 0x2, 0x9b3, 0x9, "0200000002000000997e763f222ce1", '\x00', "0001410c", '\x00\x00\x00\b', ["60c100000000000000000001", "70d9a9a3af9f39d000000001", "ef5ac4927ad89c5c00"]})
ioctl$auto_CEC_TRANSMIT(r1, 0xc0386105, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
r3 = syz_clone(0x4000400, &(0x7f0000000300)="dbd829a4a739fb324b035b7a3c8c1d7b7794c8041b10828e1ff0a8e3f4f0292df9a3f596a50e219e7bfe766592855e348ce72fc5dcf361eddd27523047e46ffda6a8177726dfdd0b82f0360cae", 0x4d, &(0x7f0000000380), &(0x7f00000003c0), &(0x7f0000000400)="e387fdc6bcdc6ffd5e073c492ba74e5e5596aa8a55bb9dfb686237c1e2ff0383c150468ed983806077cb266a8bc9763153d4060458f4616e3d8b3ca8ad1a4390da695a1fd8232552d3f629195147a4420bfe11161128c662e9412104ee2b8f48ffee2ba0")
sendmsg$auto_NL80211_CMD_GET_POWER_SAVE(r2, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="5c00000000000f000000", @ANYRES16=0x0, @ANYBLOB="00022cbd7000fbdbdf253e0000000500a2001d00000004004a013900e380a0e4ede4b7b1d20947801f181ce347a9f39aad984fc31d3310778e5d7799682030bb3ad4d43cd2adb51403f69e9d2b9b10f428db00000000040067000500130103000000b0002d8068002600d44e7840287db7bee734e0fb3b573686d969558aa6a0857454463fa79c7786c9be7227833f50e24bd982d38b2b7a8e7e4f848b0fffe40a44adc192cc4a0dc913fd2193e843105b9cf555de7b3e83c9fe8c3a0642dde3738efff0ea851f5f0b340acaf92c4400a280886bb736de589808005900", @ANYRES32=r3, @ANYBLOB="ffe186825c7a04f3c68d689c32fb295d7a992949214fd92249215bc101fd5d94c3a0e2b49595caadfc39b9611404009c8078009d004288be32aba86bbb604c24539ec633206d08989b0fc93a18e976c6de515e66112388c2c0ece85a160f2e11ef2c38c6088fb18dd8678aa0078833a06d7612127863c4da0c5b10971e4553b0de39a8c591094949013664fabf7bc1d6f52c22e9f675cf909c8ccb259f951c253aef5281573903d98f"], 0x190}, 0x1, 0x0, 0x0, 0x2400c044}, 0x4)
semctl$auto(0x0, 0x3, 0xf, 0x2)
socketpair$auto(0x8, 0x7, 0x1, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
madvise$auto(0x80200000, 0x38000000000004, 0x17)
ioctl$auto_TCFLSH2(r4, 0x8925, 0x0)

6.609666942s ago: executing program 4 (id=4228):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400007, 0x10000000de, 0x9b72, 0xffffffffffffffff, 0x100000)
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
close_range$auto(0x2, 0xa, 0x0)
setgroups$auto(0xe32, 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp$auto_KCMP_FILE(r0, r0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
prctl$auto(0x0, 0x4, r0, 0x800000000000, 0x1000)
capget$auto(0x0, 0xfffffffffffffffe)
clone3$auto(&(0x7f0000000400)={0x100008000, 0x980, 0x4, 0x6, 0x0, 0x2, 0x1, 0x8, 0x1, 0x0, 0x3}, 0x40)
socket(0xa, 0x5, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone$auto(0x0, 0x4, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r1 = socket(0x2b, 0x1, 0x1)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
getsockopt$auto(r1, 0x0, 0x80, 0x0, 0x0)

5.630978747s ago: executing program 3 (id=4223):
mlock$auto(0xfff, 0xde7f)
keyctl$auto(0x1e, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x8000000401, 0x8000)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
kill$auto(0x0, 0x11)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x1ff, 0x20000000)
mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x4)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
sync_file_range$auto(0xffffffffffffffff, 0x4, 0xa31e, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x400053, 0x9)

5.519537152s ago: executing program 1 (id=4224):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/graphics/fbcon/rotate_all\x00', 0xa001, 0x0)
write$auto(r0, &(0x7f0000000000)='3\xc7\xff\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00'/101, 0x9)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_show_traces_fops_trace(0xffffffffffffff9c, 0x0, 0x826c0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
bpf$auto(0x8000000, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x5, 0x9, 0xfffffff8, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xc28}, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r2, 0x0, 0x24000000)
write$auto(r3, 0x0, 0x98c7)
mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
setrlimit$auto(0x7, 0x0)
socket(0x23, 0x80805, 0x0)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r4 = syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0xa, 0x3, 0x3b)
pidfd_send_signal$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x4, &(0x7f0000000240)={@siginfo_0_0={0xffffd034, 0x4, 0x0, @_timer={r4, 0x0, @sival_int=0x7, 0xd5ba}}}, 0x3)

5.517356856s ago: executing program 6 (id=4225):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x14)
socket(0x11, 0x80003, 0x300)
socket(0x1d, 0x2, 0x7)
socket(0x2, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x1d, 0x2, 0x7)
socket(0xa, 0x2, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
socket(0xa, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r0, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000040)=ANY=[@ANYRES16, @ANYBLOB="010027bd7000ffdbdf25100000000c00018008000100", @ANYRES32, @ANYBLOB="080006"], 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x0)
r1 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r1], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x2}, 0x3, 0x0)

5.192518794s ago: executing program 6 (id=4226):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
acct$auto(&(0x7f0000000100)='./cgroup/cgroup.subtree_control\x00')
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x1, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video1\x00', 0x8a240, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x48500, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, 0x0, 0x100000a3d9)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0xffffffffffffffff, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x4f4, 0x8]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x1, 0xbc3, 0x800, 0x3, 0x2a, 0xc, 0x400000000003, 0x3, 0x0, 0xfffffffffffffffe, 0x6, 0x9, 0xffffffffffffff81, 0x1]}, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
ioctl$auto(0x3, 0x400c4d05, r2)
close_range$auto(0x2, 0xa, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)

4.935031986s ago: executing program 1 (id=4227):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
r0 = socket(0x2, 0x5, 0x0)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="30f07a00"/15, @ANYRES16=r1, @ANYBLOB="1b0026bd7400fddbdf2503000000040008000400038006000900060000000c000b000000000000000000"], 0x30}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0x20009, 0x6, 0xfffffffffffffffe, 0xffffffffffffffff, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/mem\x00', 0x924c3, 0x0)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0xfff, &(0x7f00000000c0)={0x0, 0x1feff}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311)

4.831294668s ago: executing program 4 (id=4229):
mmap$auto(0x3, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001980)={0x3c, r1, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0xc, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x50}, 0xc800)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0xfffffffe, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000340), 0x7, 0xa505}, 0x800}, 0x7, 0x6)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r0)
sendmsg$auto_NL80211_CMD_ADD_TX_TS(r2, &(0x7f0000000740)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000700)={&(0x7f00000002c0)={0x14, r3, 0x4, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x24048000}, 0x4)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000100), 0xffffffffffffffff)
statx$auto(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x5, 0x10001, 0x0)
sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r2, 0x0, 0x48c5)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r4, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab75200000000000000007d0800cdd9690cac4138553ecfbb1b32"], 0x2f0}, 0x1, 0x0, 0x0, 0x80f4}, 0xd0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

4.67844396s ago: executing program 1 (id=4230):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x8}, 0x0, 0xf4240, 0x1)
r0 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
r1 = io_uring_setup$auto(0x1, 0x0)
setsockopt$auto(0x3, 0x0, 0x2, 0x0, 0x3)
write$auto(r0, &(0x7f0000000000)='/dev/loop6\x00', 0x6)
write$auto_fops_init_pkru_pkeys(r1, &(0x7f0000000280)="e7c2da8ba23469d9b78d2e257333bedaec957355b8c2c4c78f4a98e7180a2dfeddb935038a6350c625940925fc61f1b8b51df8f60e61c078ff39654003ba048fb5ce9f0cc683aa815dd3ad98c47fb90efa4ba1a790507d91d2a8beb4ce1934ec6dc65f", 0x63)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
socket(0x1d, 0x3, 0x1)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x7f, 0xeb1, 0x401, 0x8000)
futex$auto(&(0x7f0000000080)=0x3, 0x3, 0x0, 0x0, 0x0, 0x440a48d3)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/consoles\x00', 0x400200, 0x0)

4.434889832s ago: executing program 4 (id=4231):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x4000b, 0x7, 0x9b72, 0x7, 0x28000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
socket(0x2, 0x3, 0xa)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000000), 0x28002, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x800, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948f, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000001ff, 0x4, 0xd, 0x1, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0xd, 0xd, 0x1]}, 0x0)
read$auto_stats_fops_(0xffffffffffffffff, &(0x7f0000000040)=""/47, 0x2f)
socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, 0x0, 0x1, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20040c04}, 0xc0804)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/trace_marker\x00', 0x341, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
close_range$auto(0x2, 0x8000, 0x0)
socket(0xa, 0x2, 0x88)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe\x00', 0x20a02, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xbff)

3.908391889s ago: executing program 6 (id=4233):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
clock_gettime$auto(0xa, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
migrate_pages$auto(0xffffffffffffffff, 0x5, 0x0, 0x0)
socket(0xa, 0x5, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x40001, 0x0)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/dummy_udc.3/driver_override\x00', 0xe2685, 0x0)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x8, 0xd, 0x7d48, 0x948b, 0x4, 0x15f4da0c, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x4, 0x5, 0x2, 0x1]}, 0x0)
add_key$auto_KEY_SPEC_REQUESTOR_KEYRING(&(0x7f0000000080)='/dev/dri/card0\x00', &(0x7f00000000c0)='\x00', &(0x7f0000000100)="15a04f062022613d1994ad4977093f5eb88b7c12e24a81f344bdb316d4d9d8802b8abcacbca4303e95109e4ea589bfb4f571b7d37bd2171a703655fd8329806745c351d7f7d3a1db6eca", 0x653, 0xfffffffffffffff8)
madvise$auto(0x0, 0x7, 0x13)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x4000, 0x0)
clock_nanosleep$auto(0x8, 0x0, &(0x7f00000000c0)={0x3, 0x2}, 0x0)
adjtimex$auto(&(0x7f0000000480)={0x101, 0x0, 0x1, 0x1, 0x7, 0x7f, 0x860, 0x0, 0x1, 0x45079941, 0x8, {0x47a8, 0x7}, 0x4, 0x3, 0x9, 0x9000000, 0x0, 0x8, 0x46fa, 0xffffffffffffffff, 0xb4, 0x800, 0xf9})
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0x2, 0x80002, 0x73)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)

3.557515335s ago: executing program 6 (id=4234):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x1, 0x0)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, 0x0, 0x1fe, 0x81)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0xc76, 0x8000)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0)
read$auto(r1, 0x0, 0x1ff)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0)
sendmsg$auto_NL80211_CMD_NOTIFY_RADAR(0xffffffffffffffff, 0x0, 0x4)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/122, 0x7a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)

2.528826408s ago: executing program 1 (id=4235):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2c, 0x1, 0x0)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
read$auto_proc_pid_maps_operations_internal(r1, &(0x7f00000020c0)=""/4093, 0xffd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0xb)

1.284442106s ago: executing program 1 (id=4236):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x6266c2, 0x0)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800)
read$auto(0x3, 0x0, 0x8080)
socket(0xa, 0x1, 0x100)
write$auto(0x3, 0x0, 0xffd8)
unshare$auto(0x40000080)
fsconfig$auto(r0, 0x800, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_abort_count\x00', 0x0, 0x0)
process_mrelease$auto(0xffffffffffffffff, 0xa)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000012c0), 0xffffffffffffffff)
mkdir$auto(&(0x7f0000000100)='./file0\x00', 0xff)
socket(0x2, 0x1, 0x106)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)

1.091563862s ago: executing program 3 (id=4237):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
setregid$auto(0xffffffffffffffff, 0xfffe)
setresgid$auto(0xffffffffffffffff, 0x0, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x80002, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x929, 0x4001, 0x7, 0x5, 0x100717e, 0x3, 0x7, 0x6, 0x7ff, 0xfffffffe, 0x80000001, 0x4, 0x200000000001, 0x1, 0xfffffffffffffffb, 0x8, 0x0, 0x2, 0x2, 0x864, 0xe, 0x22000, 0x200, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, [0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x4000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffff4f3, 0x0, 0x0, 0x2f, 0x0, 0x0, 0xfffffffffffffffc]}, 0xa, 0xd)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r1 = socket(0x10, 0x2, 0x0)
bpf$auto(0xff, &(0x7f00000004c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x5, 0xffffffffffffffff, @relative_id=0x4, 0x400000000005}, 0x3fc)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x803}, 0x2004, 0x8)
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
write$auto_proc_clear_refs_operations_internal(r0, &(0x7f0000000000)="73d6cc4fdf406742386dd72ff1428a506f5cd946a3", 0x15)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffff7effffd01, &(0x7f00000001c0))

861.338607ms ago: executing program 1 (id=4238):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
setregid$auto(0xffffffffffffffff, 0xfffe)
setresgid$auto(0xffffffffffffffff, 0x0, 0x0)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x80002, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000024c0)="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", 0xfff)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r2 = socket(0x10, 0x2, 0x0)
bpf$auto(0xff, &(0x7f00000004c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x5, 0xffffffffffffffff, @relative_id=0x4, 0x400000000005}, 0x3fc)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x803}, 0x2004, 0x8)
r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
write$auto_proc_clear_refs_operations_internal(r0, &(0x7f0000000000)="73d6cc4fdf406742386dd72ff1428a506f5cd946a3", 0x15)
ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffff7effffd01, &(0x7f00000001c0))

0s ago: executing program 3 (id=4239):
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_TCFLSH2(r0, 0x540b, &(0x7f0000000180)="f9dfae19c6d30c47e99390d1caaea9fe4795f1bcea2211a979ef8063b1a242750e0abedb843a2feb8cd3d83a4ce9ba0fef069adb77b9e04bfd8dc64664f19ed56d04a237f352abe8eb283109a27fcb21a7cf98b7e7e427cd0ee2d0d55fb4026a13d3de7e0aee96998dc0db12bd05d06ef6f1a87d7c8350d2f5c9974819730a9348cc06607eb7f5d546aee3306b9ac9db9764bbab7a7e2b48c20850c6e2527eecf3fafe4468e98c1233b6074c8d6ccb7479e8125b4c3f20319c9f3232f603a95bba1b31924d42d084a81e5441e3")
getsockopt$auto(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x1000000000, 0x100000400008, 0x1000000000000df, 0x4000009b73, r1, 0x8000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'veth0_to_hsr\x00'})
mmap$auto(0x0, 0x202000c, 0x3, 0xeb4, 0xfffffffffffffffa, 0x8000)
symlink$auto(&(0x7f0000000080)='./cgroup.cpu/cpuset.cpus\x00', &(0x7f00000000c0)='./cgroup.cpu/cpuset.cpus\x00')
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/sound/ctl-led/speaker/brightness\x00', 0x80000, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/tracing_on\x00', 0x8001, 0x0)
writev$auto(r3, &(0x7f00000017c0)={0x0, 0x3}, 0x3)
r4 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r5 = getpid()
pipe2$auto(0x0, 0x0)
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
ioctl$auto(r4, 0x40246f4c, 0x38)

kernel console output (not intermixed with test programs):

oc_pages+0x1f0/0x5f0
[  502.010198][T13255]  ? rcu_is_watching+0x12/0xc0
[  502.010216][T13255]  __alloc_frozen_pages_noprof+0x193/0x2410
[  502.010273][T13255]  ? rcu_is_watching+0x12/0xc0
[  502.010287][T13255]  ? trace_mm_page_alloc+0x10e/0x160
[  502.010309][T13255]  ? __alloc_frozen_pages_noprof+0x2a0/0x2410
[  502.010328][T13255]  ? __pfx_stack_trace_save+0x10/0x10
[  502.010345][T13255]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  502.010362][T13255]  ? stack_depot_save_flags+0x27/0x9c0
[  502.010391][T13255]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  502.010408][T13255]  ? __vmalloc_node_range_noprof+0x213/0x1530
[  502.010422][T13255]  ? __snd_dma_alloc_pages+0xd2/0x150
[  502.010436][T13255]  ? do_alloc_pages+0x113/0x250
[  502.010454][T13255]  ? snd_pcm_lib_malloc_pages+0x4bd/0x9b0
[  502.010477][T13255]  ? snd_pcm_hw_params+0x1729/0x1cb0
[  502.010497][T13255]  ? snd_pcm_kernel_ioctl+0x167/0x2e0
[  502.010518][T13255]  ? snd_pcm_oss_change_params_locked+0x1973/0x39f0
[  502.010535][T13255]  ? snd_pcm_oss_make_ready+0xeb/0x1b0
[  502.010552][T13255]  ? snd_pcm_oss_sync+0x1de/0x840
[  502.010571][T13255]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.010589][T13255]  alloc_pages_bulk_noprof+0x777/0x1500
[  502.010607][T13255]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  502.010629][T13255]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  502.010654][T13255]  ? alloc_pages_noprof+0x233/0x390
[  502.010677][T13255]  __kasan_populate_vmalloc+0xf0/0x210
[  502.010698][T13255]  alloc_vmap_area+0x935/0x2a00
[  502.010726][T13255]  ? __pfx_alloc_vmap_area+0x10/0x10
[  502.010752][T13255]  __get_vm_area_node+0x1ca/0x330
[  502.010777][T13255]  __vmalloc_node_range_noprof+0x213/0x1530
[  502.010792][T13255]  ? __snd_dma_alloc_pages+0xd2/0x150
[  502.010808][T13255]  ? lock_acquire+0x17c/0x330
[  502.010829][T13255]  ? __snd_dma_alloc_pages+0xd2/0x150
[  502.010852][T13255]  ? trace_contention_end+0xd6/0x110
[  502.010889][T13255]  ? exit_to_user_mode_loop+0x100/0x4b0
[  502.010927][T13255]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  502.010953][T13255]  ? do_alloc_pages+0xd1/0x250
[  502.010988][T13255]  ? do_alloc_pages+0xd1/0x250
[  502.011031][T13255]  ? __mutex_unlock_slowpath+0x15c/0x790
[  502.011071][T13255]  ? __snd_dma_alloc_pages+0xd2/0x150
[  502.011100][T13255]  __vmalloc_node_noprof+0xad/0xf0
[  502.011126][T13255]  ? __snd_dma_alloc_pages+0xd2/0x150
[  502.011154][T13255]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[  502.011199][T13255]  __snd_dma_alloc_pages+0xd2/0x150
[  502.011237][T13255]  snd_dma_alloc_dir_pages+0x151/0x240
[  502.011271][T13255]  do_alloc_pages+0x113/0x250
[  502.011312][T13255]  snd_pcm_lib_malloc_pages+0x4bd/0x9b0
[  502.011360][T13255]  snd_pcm_hw_params+0x1729/0x1cb0
[  502.011406][T13255]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  502.011449][T13255]  ? snd_pcm_hw_param_near.constprop.0+0x578/0x850
[  502.011490][T13255]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  502.011534][T13255]  snd_pcm_kernel_ioctl+0x167/0x2e0
[  502.011578][T13255]  snd_pcm_oss_change_params_locked+0x1973/0x39f0
[  502.011633][T13255]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  502.011669][T13255]  ? __pfx___mutex_lock+0x10/0x10
[  502.011732][T13255]  snd_pcm_oss_make_ready+0xeb/0x1b0
[  502.011771][T13255]  snd_pcm_oss_sync+0x1de/0x840
[  502.011813][T13255]  snd_pcm_oss_release+0x238/0x300
[  502.011849][T13255]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  502.011885][T13255]  __fput+0x3ff/0xb40
[  502.011933][T13255]  task_work_run+0x150/0x240
[  502.011978][T13255]  ? __pfx_task_work_run+0x10/0x10
[  502.012032][T13255]  exit_to_user_mode_loop+0x100/0x4b0
[  502.012070][T13255]  ? rcu_is_watching+0x12/0xc0
[  502.012101][T13255]  do_syscall_64+0x4ea/0xf80
[  502.012139][T13255]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.012166][T13255] RIP: 0033:0x7f850399aeb9
[  502.012189][T13255] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  502.012216][T13255] RSP: 002b:00007f8501bd5028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  502.012248][T13255] RAX: 0000000000000000 RBX: 00007f8503c16090 RCX: 00007f850399aeb9
[  502.012266][T13255] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  502.012281][T13255] RBP: 00007f8503a08c1f R08: 0000000000000000 R09: 0000000000000000
[  502.012297][T13255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  502.012313][T13255] R13: 00007f8503c16128 R14: 00007f8503c16090 R15: 00007ffcdd2990f8
[  502.012350][T13255]  </TASK>
[  502.537416][T13254] netlink: 350 bytes leftover after parsing attributes in process `syz.3.2159'.
[  503.007285][T13255] syz.1.2157: vmalloc error: size 2097152, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  503.130189][T13255] CPU: 1 UID: 0 PID: 13255 Comm: syz.1.2157 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  503.130225][T13255] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  503.130234][T13255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  503.130243][T13255] Call Trace:
[  503.130248][T13255]  <TASK>
[  503.130254][T13255]  dump_stack_lvl+0x100/0x190
[  503.130277][T13255]  warn_alloc.cold+0x95/0x1c1
[  503.130302][T13255]  ? __pfx_warn_alloc+0x10/0x10
[  503.130326][T13255]  ? __get_vm_area_node+0x2c5/0x330
[  503.130348][T13255]  ? __get_vm_area_node+0x208/0x330
[  503.130379][T13255]  __vmalloc_node_range_noprof+0xbf4/0x1530
[  503.130396][T13255]  ? lock_acquire+0x17c/0x330
[  503.130417][T13255]  ? __snd_dma_alloc_pages+0xd2/0x150
[  503.130435][T13255]  ? trace_contention_end+0xd6/0x110
[  503.130456][T13255]  ? exit_to_user_mode_loop+0x100/0x4b0
[  503.130477][T13255]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  503.130492][T13255]  ? do_alloc_pages+0xd1/0x250
[  503.130511][T13255]  ? do_alloc_pages+0xd1/0x250
[  503.130533][T13255]  ? __mutex_unlock_slowpath+0x15c/0x790
[  503.130554][T13255]  ? __snd_dma_alloc_pages+0xd2/0x150
[  503.130568][T13255]  __vmalloc_node_noprof+0xad/0xf0
[  503.130582][T13255]  ? __snd_dma_alloc_pages+0xd2/0x150
[  503.130596][T13255]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[  503.130620][T13255]  __snd_dma_alloc_pages+0xd2/0x150
[  503.130636][T13255]  snd_dma_alloc_dir_pages+0x151/0x240
[  503.130654][T13255]  do_alloc_pages+0x113/0x250
[  503.130677][T13255]  snd_pcm_lib_malloc_pages+0x4bd/0x9b0
[  503.130701][T13255]  snd_pcm_hw_params+0x1729/0x1cb0
[  503.130726][T13255]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  503.130747][T13255]  ? snd_pcm_hw_param_near.constprop.0+0x578/0x850
[  503.130768][T13255]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  503.130790][T13255]  snd_pcm_kernel_ioctl+0x167/0x2e0
[  503.130812][T13255]  snd_pcm_oss_change_params_locked+0x1973/0x39f0
[  503.130840][T13255]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  503.130859][T13255]  ? __pfx___mutex_lock+0x10/0x10
[  503.130890][T13255]  snd_pcm_oss_make_ready+0xeb/0x1b0
[  503.130910][T13255]  snd_pcm_oss_sync+0x1de/0x840
[  503.130931][T13255]  snd_pcm_oss_release+0x238/0x300
[  503.130949][T13255]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  503.130967][T13255]  __fput+0x3ff/0xb40
[  503.130991][T13255]  task_work_run+0x150/0x240
[  503.131014][T13255]  ? __pfx_task_work_run+0x10/0x10
[  503.131041][T13255]  exit_to_user_mode_loop+0x100/0x4b0
[  503.131066][T13255]  ? rcu_is_watching+0x12/0xc0
[  503.131083][T13255]  do_syscall_64+0x4ea/0xf80
[  503.131103][T13255]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  503.131118][T13255] RIP: 0033:0x7f850399aeb9
[  503.131132][T13255] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  503.131146][T13255] RSP: 002b:00007f8501bd5028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  503.131161][T13255] RAX: 0000000000000000 RBX: 00007f8503c16090 RCX: 00007f850399aeb9
[  503.131172][T13255] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  503.131181][T13255] RBP: 00007f8503a08c1f R08: 0000000000000000 R09: 0000000000000000
[  503.131190][T13255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  503.131199][T13255] R13: 00007f8503c16128 R14: 00007f8503c16090 R15: 00007ffcdd2990f8
[  503.131219][T13255]  </TASK>
[  503.131225][T13255] Mem-Info:
[  503.471099][T13255] active_anon:27336 inactive_anon:0 isolated_anon:0
[  503.471099][T13255]  active_file:23068 inactive_file:40908 isolated_file:0
[  503.471099][T13255]  unevictable:768 dirty:571 writeback:0
[  503.471099][T13255]  slab_reclaimable:12972 slab_unreclaimable:93040
[  503.471099][T13255]  mapped:28696 shmem:18192 pagetables:1261
[  503.471099][T13255]  sec_pagetables:0 bounce:0
[  503.471099][T13255]  kernel_misc_reclaimable:0
[  503.471099][T13255]  free:1289039 free_pcp:18016 free_cma:0
[  503.523694][T13255] Node 0 active_anon:109444kB inactive_anon:0kB active_file:92272kB inactive_file:163500kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:114784kB dirty:2284kB writeback:0kB shmem:71232kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11336kB pagetables:4884kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  503.564619][T13255] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:160kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  503.603312][T13255] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  503.636214][T13255] lowmem_reserve[]: 0 2480 2481 2481 2481
[  503.674272][T13255] Node 0 DMA32 free:1218360kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:109544kB inactive_anon:0kB active_file:92272kB inactive_file:163500kB unevictable:1536kB writepending:2284kB zspages:0kB present:3129332kB managed:2539576kB mlocked:0kB bounce:0kB free_pcp:74100kB local_pcp:39612kB free_cma:0kB
[  503.852881][T13255] lowmem_reserve[]: 0 0 1 1 1
[  503.871294][T13255] Node 0 Normal free:12kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  503.923602][T13255] lowmem_reserve[]: 0 0 0 0 0
[  504.011000][T13255] Node 1 Normal free:3916060kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  504.086805][T13255] lowmem_reserve[]: 0 0 0 0 0
[  504.096819][T13255] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  504.158356][T13255] Node 0 DMA32: 7691*4kB (UME) 5155*8kB (UME) 1751*16kB (UME) 708*32kB (UME) 285*64kB (UME) 264*128kB (UME) 235*256kB (UM) 164*512kB (UME) 98*1024kB (UM) 13*2048kB (M) 187*4096kB (UM) = 1211764kB
[  504.184675][T13255] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  504.222604][T13255] Node 1 Normal: 195*4kB (UME) 62*8kB (UME) 38*16kB (UME) 220*32kB (UME) 95*64kB (UME) 27*128kB (UME) 17*256kB (UME) 8*512kB (UME) 2*1024kB (ME) 4*2048kB (UME) 947*4096kB (M) = 3916060kB
[  504.286318][T13255] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  504.307027][T13255] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  504.318603][T13255] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  504.367995][T13255] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  504.418052][T13255] 78768 total pagecache pages
[  504.428937][T13255] 0 pages in swap cache
[  504.438387][T13255] Free swap  = 123432kB
[  504.459286][T13255] Total swap = 124996kB
[  504.468831][T13255] 2097051 pages RAM
[  504.484091][T13255] 0 pages HighMem/MovableOnly
[  504.492390][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  504.498844][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  504.521218][T13255] 430195 pages reserved
[  504.542434][T13255] 0 pages cma reserved
[  505.137849][T13279] netlink: zone id is out of range
[  505.206857][T13277] netlink: set zone limit has 8 unknown bytes
[  505.455004][T13289] netlink: 9 bytes leftover after parsing attributes in process `syz.2.2167'.
[  506.018927][T13296] FAULT_INJECTION: forcing a failure.
[  506.018927][T13296] name failslab, interval 1, probability 0, space 0, times 0
[  506.063777][T13296] CPU: 0 UID: 0 PID: 13296 Comm: syz.3.2169 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  506.063842][T13296] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  506.063858][T13296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  506.063875][T13296] Call Trace:
[  506.063884][T13296]  <TASK>
[  506.063895][T13296]  dump_stack_lvl+0x100/0x190
[  506.063936][T13296]  should_fail_ex.cold+0x5/0xa
[  506.063984][T13296]  should_failslab+0xc2/0x120
[  506.064025][T13296]  kmem_cache_alloc_noprof+0x83/0x780
[  506.064069][T13296]  ? kernfs_add_one+0x583/0x850
[  506.064112][T13296]  ? __kernfs_new_node+0xd2/0x960
[  506.064157][T13296]  ? __kernfs_new_node+0xd2/0x960
[  506.064194][T13296]  __kernfs_new_node+0xd2/0x960
[  506.064234][T13296]  ? kernfs_add_one+0x214/0x850
[  506.064276][T13296]  ? __pfx___kernfs_new_node+0x10/0x10
[  506.064324][T13296]  ? find_held_lock+0x2b/0x80
[  506.064353][T13296]  ? kernfs_root+0xee/0x2a0
[  506.064387][T13296]  ? kernfs_root+0xee/0x2a0
[  506.064429][T13296]  kernfs_new_node+0x11b/0x1a0
[  506.064472][T13296]  kernfs_create_link+0xcc/0x240
[  506.064505][T13296]  sysfs_do_create_link_sd+0x90/0x140
[  506.064543][T13296]  sysfs_create_link+0x61/0xc0
[  506.064577][T13296]  device_add+0x553/0x1950
[  506.064619][T13296]  ? __pfx_device_add+0x10/0x10
[  506.064660][T13296]  ? kfree_const+0x5a/0x70
[  506.064697][T13296]  device_create_groups_vargs+0x1f8/0x270
[  506.064739][T13296]  device_create+0xed/0x130
[  506.064775][T13296]  ? __pfx_device_create+0x10/0x10
[  506.064813][T13296]  ? timer_init_key+0x14c/0x2c0
[  506.064852][T13296]  ? ieee80211_roc_setup+0x136/0x270
[  506.064886][T13296]  ? ieee80211_alloc_hw_nm+0x19c3/0x22a0
[  506.064933][T13296]  mac80211_hwsim_new_radio+0x37f/0x57c0
[  506.064986][T13296]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  506.065019][T13296]  ? __nla_validate_parse+0x1e7/0x28b0
[  506.065062][T13296]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  506.065114][T13296]  hwsim_new_radio_nl+0xc1f/0x1340
[  506.065153][T13296]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290
[  506.065190][T13296]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  506.065240][T13296]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290
[  506.065272][T13296]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290
[  506.065311][T13296]  genl_family_rcv_msg_doit+0x214/0x300
[  506.065345][T13296]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  506.065375][T13296]  ? genl_get_cmd+0x3ef/0x720
[  506.065411][T13296]  ? bpf_lsm_capable+0x9/0x10
[  506.065433][T13296]  ? security_capable+0x80/0x260
[  506.065469][T13296]  ? ns_capable+0xd2/0xf0
[  506.065503][T13296]  genl_rcv_msg+0x560/0x800
[  506.065537][T13296]  ? __pfx_genl_rcv_msg+0x10/0x10
[  506.065567][T13296]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  506.065620][T13296]  netlink_rcv_skb+0x159/0x420
[  506.065663][T13296]  ? __pfx_genl_rcv_msg+0x10/0x10
[  506.065694][T13296]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  506.065747][T13296]  ? netlink_deliver_tap+0x1ae/0xcc0
[  506.065792][T13296]  genl_rcv+0x28/0x40
[  506.065818][T13296]  netlink_unicast+0x5aa/0x870
[  506.065865][T13296]  ? __pfx_netlink_unicast+0x10/0x10
[  506.065920][T13296]  netlink_sendmsg+0x8b0/0xda0
[  506.065970][T13296]  ? __pfx_netlink_sendmsg+0x10/0x10
[  506.066011][T13296]  ? __import_iovec+0x1d2/0x640
[  506.066066][T13296]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  506.066109][T13296]  ____sys_sendmsg+0xa54/0xc30
[  506.066146][T13296]  ? __pfx_____sys_sendmsg+0x10/0x10
[  506.066174][T13296]  ? __pfx___futex_wait+0x10/0x10
[  506.066207][T13296]  ? __pfx_futex_wake_mark+0x10/0x10
[  506.066259][T13296]  ___sys_sendmsg+0x190/0x1e0
[  506.066295][T13296]  ? __pfx____sys_sendmsg+0x10/0x10
[  506.066345][T13296]  ? find_held_lock+0x2b/0x80
[  506.066397][T13296]  __sys_sendmsg+0x170/0x220
[  506.066439][T13296]  ? __pfx___sys_sendmsg+0x10/0x10
[  506.066478][T13296]  ? __x64_sys_futex+0x34f/0x4d0
[  506.066540][T13296]  do_syscall_64+0xc9/0xf80
[  506.066578][T13296]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  506.066607][T13296] RIP: 0033:0x7ff063f9aeb9
[  506.066632][T13296] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  506.066661][T13296] RSP: 002b:00007ff064d89028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  506.066689][T13296] RAX: ffffffffffffffda RBX: 00007ff064215fa0 RCX: 00007ff063f9aeb9
[  506.066709][T13296] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[  506.066727][T13296] RBP: 00007ff064008c1f R08: 0000000000000000 R09: 0000000000000000
[  506.066745][T13296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  506.066762][T13296] R13: 00007ff064216038 R14: 00007ff064215fa0 R15: 00007fff6c6b6968
[  506.066797][T13296]  </TASK>
[  507.329036][T13305] FAULT_INJECTION: forcing a failure.
[  507.329036][T13305] name failslab, interval 1, probability 0, space 0, times 0
[  507.399944][T13305] CPU: 0 UID: 0 PID: 13305 Comm: syz.3.2170 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  507.399981][T13305] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  507.399990][T13305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  507.399999][T13305] Call Trace:
[  507.400004][T13305]  <TASK>
[  507.400010][T13305]  dump_stack_lvl+0x100/0x190
[  507.400033][T13305]  should_fail_ex.cold+0x5/0xa
[  507.400058][T13305]  should_failslab+0xc2/0x120
[  507.400080][T13305]  kmem_cache_alloc_noprof+0x83/0x780
[  507.400099][T13305]  ? __proc_create+0xc2/0x8c0
[  507.400121][T13305]  ? __proc_create+0x2cb/0x8c0
[  507.400146][T13305]  ? __proc_create+0x2cb/0x8c0
[  507.400167][T13305]  __proc_create+0x2cb/0x8c0
[  507.400189][T13305]  ? __pfx___proc_create+0x10/0x10
[  507.400214][T13305]  ? _raw_write_unlock+0x28/0x50
[  507.400231][T13305]  ? proc_register+0x559/0x8a0
[  507.400247][T13305]  proc_create_reg+0x75/0x170
[  507.400262][T13305]  proc_create_data+0x86/0x110
[  507.400276][T13305]  ? __pfx_proc_create_data+0x10/0x10
[  507.400290][T13305]  ? cache_register_net+0x137/0x5e0
[  507.400311][T13305]  ? cache_register_net+0x137/0x5e0
[  507.400336][T13305]  cache_register_net+0x25a/0x5e0
[  507.400359][T13305]  nfsd_export_init+0x16e/0x250
[  507.400383][T13305]  ? __pfx_nfsd_net_init+0x10/0x10
[  507.400403][T13305]  nfsd_net_init+0x33/0x3d0
[  507.400425][T13305]  ? __pfx_nfsd_net_init+0x10/0x10
[  507.400445][T13305]  ops_init+0x1e2/0x5f0
[  507.400470][T13305]  setup_net+0x118/0x3a0
[  507.400483][T13305]  ? __pfx_setup_net+0x10/0x10
[  507.400504][T13305]  ? lockdep_init_map_type+0x5c/0x250
[  507.400525][T13305]  ? mutex_init_lockep+0x110/0x150
[  507.400548][T13305]  copy_net_ns+0x46f/0x7c0
[  507.400564][T13305]  create_new_namespaces+0x3ea/0xab0
[  507.400586][T13305]  copy_namespaces+0x468/0x5e0
[  507.400603][T13305]  copy_process+0x32d5/0x7890
[  507.400631][T13305]  ? __pfx_copy_process+0x10/0x10
[  507.400659][T13305]  kernel_clone+0xfc/0x930
[  507.400677][T13305]  ? __pfx_futex_wait+0x10/0x10
[  507.400693][T13305]  ? __pfx_kernel_clone+0x10/0x10
[  507.400722][T13305]  __do_sys_clone+0xd9/0x120
[  507.400741][T13305]  ? __pfx___do_sys_clone+0x10/0x10
[  507.400760][T13305]  ? __fget_files+0x21f/0x3d0
[  507.400782][T13305]  ? xfd_validate_state+0x129/0x190
[  507.400812][T13305]  do_syscall_64+0xc9/0xf80
[  507.400831][T13305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.400847][T13305] RIP: 0033:0x7ff063f9aeb9
[  507.400860][T13305] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  507.400874][T13305] RSP: 002b:00007ff0621d4fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  507.400889][T13305] RAX: ffffffffffffffda RBX: 00007ff064216180 RCX: 00007ff063f9aeb9
[  507.400907][T13305] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211
[  507.400916][T13305] RBP: 00007ff064008c1f R08: 0000000000000000 R09: 0000000000000000
[  507.400925][T13305] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  507.400934][T13305] R13: 00007ff064216218 R14: 00007ff064216180 R15: 00007fff6c6b6968
[  507.400955][T13305]  </TASK>
[  507.722265][T13278] syz.0.2164 (13278) used greatest stack depth: 19688 bytes left
[  510.875179][T13345] zswap: compressor  not available
[  516.421349][T13431] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2209'.
[  516.458579][T13431] netlink: 354 bytes leftover after parsing attributes in process `syz.1.2209'.
[  516.617807][T13432] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  516.656048][T13432] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  516.914588][T13432] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  517.047664][T13432] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  517.156090][T13432] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  517.305632][T13432] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  517.408134][T13437] could not allocate digest TFM handle 
[  517.418635][T13432] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  517.450998][T13432] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  517.497780][T13432] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  517.528307][T13432] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  517.535747][T13432] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  518.654518][   T52] Bluetooth: hci0: command 0x0406 tx timeout
[  519.212712][   T52] Bluetooth: hci1: command 0x0406 tx timeout
[  519.455775][   T52] Bluetooth: hci2: command 0x0406 tx timeout
[  519.486059][T13469] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2214'.
[  519.529972][   T52] Bluetooth: hci3: command 0x0406 tx timeout
[  519.781487][T13472] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2216'.
[  519.826891][T13472] netlink: 'syz.2.2216': attribute type 1 has an invalid length.
[  519.855146][T13472] netlink: 5 bytes leftover after parsing attributes in process `syz.2.2216'.
[  520.724915][   T52] Bluetooth: hci0: command 0x0406 tx timeout
[  521.280919][   T52] Bluetooth: hci1: command 0x0406 tx timeout
[  521.461068][T13490] netlink: 9 bytes leftover after parsing attributes in process `syz.1.2222'.
[  521.522261][   T52] Bluetooth: hci2: command 0x0406 tx timeout
[  521.599147][   T52] Bluetooth: hci3: command 0x0406 tx timeout
[  522.305720][T13506] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2227'.
[  522.347289][T13506] netlink: 'syz.2.2227': attribute type 1 has an invalid length.
[  522.355052][T13506] netlink: 'syz.2.2227': attribute type 4 has an invalid length.
[  522.398935][T13506] netlink: 'syz.2.2227': attribute type 5 has an invalid length.
[  522.408472][T13506] netlink: 20232 bytes leftover after parsing attributes in process `syz.2.2227'.
[  522.755510][T13517] netlink: 'syz.2.2228': attribute type 1 has an invalid length.
[  522.771812][T13511] FAULT_INJECTION: forcing a failure.
[  522.771812][T13511] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  522.792296][T13517] netlink: 9 bytes leftover after parsing attributes in process `syz.2.2228'.
[  522.804293][   T52] Bluetooth: hci0: command 0x0406 tx timeout
[  522.826398][T13511] CPU: 0 UID: 0 PID: 13511 Comm: syz.1.2224 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  522.826463][T13511] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  522.826481][T13511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  522.826498][T13511] Call Trace:
[  522.826508][T13511]  <TASK>
[  522.826518][T13511]  dump_stack_lvl+0x100/0x190
[  522.826560][T13511]  should_fail_ex.cold+0x5/0xa
[  522.826602][T13511]  ? prepare_alloc_pages+0x16d/0x5f0
[  522.826650][T13511]  should_fail_alloc_page+0xeb/0x140
[  522.826692][T13511]  prepare_alloc_pages+0x1f0/0x5f0
[  522.826736][T13511]  ? __kernel_text_address+0xd/0x30
[  522.826784][T13511]  __alloc_frozen_pages_noprof+0x193/0x2410
[  522.826821][T13511]  ? register_lock_class+0x40/0x560
[  522.826869][T13511]  ? __lock_acquire+0x4a5/0x2630
[  522.826909][T13511]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  522.826944][T13511]  ? __lock_acquire+0x4a5/0x2630
[  522.826993][T13511]  ? __pfx___might_resched+0x10/0x10
[  522.827038][T13511]  ? rcu_is_watching+0x12/0xc0
[  522.827065][T13511]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  522.827098][T13511]  ? policy_nodemask+0xed/0x4f0
[  522.827140][T13511]  alloc_pages_mpol+0x1fb/0x550
[  522.827182][T13511]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  522.827223][T13511]  ? __mutex_unlock_slowpath+0x15c/0x790
[  522.827266][T13511]  ___kmalloc_large_node+0x104/0x150
[  522.827315][T13511]  __kmalloc_large_node_noprof+0x1c/0x70
[  522.827370][T13511]  ? ops_init+0x77/0x5f0
[  522.827414][T13511]  __kmalloc_noprof+0x6b1/0x9c0
[  522.827444][T13511]  ? __pfx_nfs4blocklayout_net_init+0x10/0x10
[  522.827493][T13511]  ? ops_init+0x77/0x5f0
[  522.827534][T13511]  ops_init+0x77/0x5f0
[  522.827582][T13511]  setup_net+0x118/0x3a0
[  522.827609][T13511]  ? __pfx_setup_net+0x10/0x10
[  522.827651][T13511]  ? lockdep_init_map_type+0x5c/0x250
[  522.827690][T13511]  ? mutex_init_lockep+0x110/0x150
[  522.827735][T13511]  copy_net_ns+0x46f/0x7c0
[  522.827767][T13511]  create_new_namespaces+0x3ea/0xab0
[  522.827809][T13511]  copy_namespaces+0x468/0x5e0
[  522.827843][T13511]  copy_process+0x32d5/0x7890
[  522.827897][T13511]  ? __pfx_copy_process+0x10/0x10
[  522.827935][T13511]  ? find_held_lock+0x2b/0x80
[  522.827988][T13511]  kernel_clone+0xfc/0x930
[  522.828031][T13511]  ? __pfx_futex_wait+0x10/0x10
[  522.828059][T13511]  ? __pfx_kernel_clone+0x10/0x10
[  522.828145][T13511]  __do_sys_clone+0xd9/0x120
[  522.828203][T13511]  ? __pfx___do_sys_clone+0x10/0x10
[  522.828248][T13511]  ? __fget_files+0x21f/0x3d0
[  522.828291][T13511]  ? xfd_validate_state+0x129/0x190
[  522.828356][T13511]  do_syscall_64+0xc9/0xf80
[  522.828395][T13511]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  522.828425][T13511] RIP: 0033:0x7f850399aeb9
[  522.828448][T13511] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  522.828475][T13511] RSP: 002b:00007f8501bb3fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  522.828502][T13511] RAX: ffffffffffffffda RBX: 00007f8503c16180 RCX: 00007f850399aeb9
[  522.828521][T13511] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211
[  522.828539][T13511] RBP: 00007f8503a08c1f R08: 0000000000000000 R09: 0000000000000000
[  522.828555][T13511] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  522.828571][T13511] R13: 00007f8503c16218 R14: 00007f8503c16180 R15: 00007ffcdd2990f8
[  522.828609][T13511]  </TASK>
[  523.593414][   T52] Bluetooth: hci2: command 0x0406 tx timeout
[  524.633777][T13532] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2231'.
[  524.698627][T13532] veth1_macvtap: entered allmulticast mode
[  524.872633][   T52] Bluetooth: hci0: command 0x0406 tx timeout
[  524.894280][T13536] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2233'.
[  529.260713][T13596] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2250'.
[  533.694403][   T52] Bluetooth: hci0: unexpected event 0x04 length: 43 > 10
[  533.694737][   T52] Bluetooth: hci0: connection err: -111
[  535.160799][T13687] netlink: 350 bytes leftover after parsing attributes in process `syz.1.2275'.
[  538.548656][T13746] vivid-009: =================  START STATUS  =================
[  538.570356][T13746] vivid-009: Radio HW Seek Mode: Bounded
[  538.598404][T13746] vivid-009: Radio Programmable HW Seek: false
[  538.630356][T13746] vivid-009: RDS Rx I/O Mode: Block I/O
[  538.667593][T13746] vivid-009: Generate RBDS Instead of RDS: false
[  538.708254][T13746] vivid-009: RDS Reception: true
[  538.718339][T13746] vivid-009: RDS Program Type: 0 inactive
[  538.738864][T13746] vivid-009: RDS PS Name:  inactive
[  538.748865][T13746] vivid-009: RDS Radio Text:  inactive
[  538.798839][T13746] vivid-009: RDS Traffic Announcement: false inactive
[  538.834584][T13746] vivid-009: RDS Traffic Program: false inactive
[  538.841172][T13746] vivid-009: RDS Music: false inactive
[  538.857112][T13746] vivid-009: ==================  END STATUS  ==================
[  539.639796][T13761] netlink: 98 bytes leftover after parsing attributes in process `syz.2.2296'.
[  540.030277][   T52] Bluetooth: hci2: SCO packet for unknown connection handle 0
[  540.173119][T13776] netlink: 146 bytes leftover after parsing attributes in process `syz.1.2301'.
[  541.406508][T13787] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2303'.
[  541.418840][T13787] netlink: 'syz.2.2303': attribute type 1 has an invalid length.
[  541.427566][T13783] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2302'.
[  541.455742][T13787] netlink: 'syz.2.2303': attribute type 6 has an invalid length.
[  541.467402][T13783] netlink: 17 bytes leftover after parsing attributes in process `syz.1.2302'.
[  541.505681][T13783] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2302'.
[  541.547188][T13789] Invalid ELF header magic: != ELF
[  541.755925][T13795] hub 1-0:1.0: USB hub found
[  541.784291][T13795] hub 1-0:1.0: 1 port detected
[  542.846231][T13817] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2311'.
[  545.655252][T13857] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2321'.
[  545.750458][T13857] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2321'.
[  546.742907][T13850] kexec: Could not allocate control_code_buffer
[  547.032185][T13876] netlink: 17 bytes leftover after parsing attributes in process `syz.1.2327'.
[  548.918411][T13907] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2338'.
[  548.934935][T13907] i: entered promiscuous mode
[  548.971841][T13907] HfR: entered promiscuous mode
[  549.116696][T13912] mmap: syz.1.2339 (13912): VmData 45879296 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  549.316400][T13902] ptrace attach of "./syz-executor exec"[9666] was attempted by ""[13902]
[  551.055989][   T50] netdevsim netdevsim1335 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  552.028091][T13944] ERROR: Out of memory at tomoyo_memory_ok.
[  553.698989][T13955] kexec: Could not allocate control_code_buffer
[  556.577245][T14024] futex_wake_op: syz.1.2372 tries to shift op by -1; fix this program
[  556.698209][T14031] synth uevent: /module/orangefs: unknown uevent action string
[  556.890445][T14037] netlink: 'syz.1.2376': attribute type 4 has an invalid length.
[  556.899112][T14037] netlink: 314 bytes leftover after parsing attributes in process `syz.1.2376'.
[  556.915471][T14037] IPv6: NLM_F_CREATE should be specified when creating new route
[  558.443548][T14061] openvswitch: netlink: Geneve opt len 1 is not a multiple of 4.
[  558.459220][   T30] audit: type=1800 audit(2147483775.002:11): pid=14066 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2385" name="lu_gp_id" dev="configfs" ino=151851 res=0 errno=0
[  559.504684][T14071] random: crng reseeded on system resumption
[  560.781298][T14093] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  561.488863][T14105] HSR: entered promiscuous mode
[  562.199837][T14120] netlink: 'syz.3.2399': attribute type 2 has an invalid length.
[  562.207602][T14120] netlink: 'syz.3.2399': attribute type 3 has an invalid length.
[  562.291129][T14120] netlink: 158 bytes leftover after parsing attributes in process `syz.3.2399'.
[  562.338126][T14120] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2399'.
[  562.949561][T14137] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2404'.
[  563.779364][T14153] tipc: Can't bind to reserved service type 0
[  565.229181][T14172] netlink: 158 bytes leftover after parsing attributes in process `syz.3.2414'.
[  565.286574][T14172] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2414'.
[  565.616372][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  565.633915][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  565.702934][T14179] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  567.198149][ T1162] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  568.605369][T14226] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2431'.
[  568.649022][T14226] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2431'.
[  568.875161][T14234] netlink: 'syz.0.2435': attribute type 8 has an invalid length.
[  573.900067][T14286] random: crng reseeded on system resumption
[  574.383560][T14289] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2454'.
[  574.495733][T14290] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2454'.
[  574.787027][T14295] netlink: 'syz.1.2456': attribute type 8 has an invalid length.
[  577.044335][T14339] FAULT_INJECTION: forcing a failure.
[  577.044335][T14339] name failslab, interval 1, probability 0, space 0, times 0
[  577.091333][T14339] CPU: 0 UID: 0 PID: 14339 Comm: syz.1.2467 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  577.091398][T14339] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  577.091415][T14339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  577.091433][T14339] Call Trace:
[  577.091442][T14339]  <TASK>
[  577.091453][T14339]  dump_stack_lvl+0x100/0x190
[  577.091495][T14339]  should_fail_ex.cold+0x5/0xa
[  577.091543][T14339]  should_failslab+0xc2/0x120
[  577.091583][T14339]  kmem_cache_alloc_noprof+0x83/0x780
[  577.091620][T14339]  ? __proc_create+0xc2/0x8c0
[  577.091669][T14339]  ? __proc_create+0x2cb/0x8c0
[  577.091720][T14339]  ? __proc_create+0x2cb/0x8c0
[  577.091760][T14339]  __proc_create+0x2cb/0x8c0
[  577.091805][T14339]  ? __pfx___proc_create+0x10/0x10
[  577.091852][T14339]  ? __pfx___netlink_kernel_create+0x10/0x10
[  577.091904][T14339]  proc_create_reg+0x75/0x170
[  577.091934][T14339]  proc_create_net_data+0x8e/0x1c0
[  577.091979][T14339]  ? __pfx_proc_create_net_data+0x10/0x10
[  577.092023][T14339]  ? __pfx_uevent_net_rcv+0x10/0x10
[  577.092071][T14339]  ? __pfx_proto_init_net+0x10/0x10
[  577.092103][T14339]  proto_init_net+0x53/0x80
[  577.092133][T14339]  ops_init+0x1e2/0x5f0
[  577.092176][T14339]  setup_net+0x118/0x3a0
[  577.092202][T14339]  ? __pfx_setup_net+0x10/0x10
[  577.092243][T14339]  ? lockdep_init_map_type+0x5c/0x250
[  577.092283][T14339]  ? mutex_init_lockep+0x110/0x150
[  577.092329][T14339]  copy_net_ns+0x46f/0x7c0
[  577.092361][T14339]  create_new_namespaces+0x3ea/0xab0
[  577.092402][T14339]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  577.092438][T14339]  ksys_unshare+0x455/0xab0
[  577.092480][T14339]  ? __pfx_ksys_unshare+0x10/0x10
[  577.092519][T14339]  ? xfd_validate_state+0x129/0x190
[  577.092573][T14339]  __x64_sys_unshare+0x31/0x40
[  577.092608][T14339]  do_syscall_64+0xc9/0xf80
[  577.092652][T14339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  577.092682][T14339] RIP: 0033:0x7f850399aeb9
[  577.092706][T14339] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  577.092734][T14339] RSP: 002b:00007f8501bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  577.092762][T14339] RAX: ffffffffffffffda RBX: 00007f8503c15fa0 RCX: 00007f850399aeb9
[  577.092781][T14339] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  577.092799][T14339] RBP: 00007f8503a08c1f R08: 0000000000000000 R09: 0000000000000000
[  577.092816][T14339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  577.092833][T14339] R13: 00007f8503c16038 R14: 00007f8503c15fa0 R15: 00007ffcdd2990f8
[  577.092873][T14339]  </TASK>
[  579.455217][T14366] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13
[  579.793247][ T5180] ERROR: Out of memory at tomoyo_memory_ok.
[  580.242093][T14380] nfs: Unknown parameter '�m?���LH>�｢^�e���ko'
[  581.229136][T14399] crash hp: kexec_trylock() failed, kdump image may be inaccurate
[  584.595091][T14395] kexec: Could not allocate control_code_buffer
[  586.791830][T14464] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2501'.
[  586.885287][T14464] veth1_macvtap: entered allmulticast mode
[  587.682708][T14468] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2504'.
[  589.211989][T14492] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2511'.
[  589.980222][T14500] netlink: set zone limit has 8 unknown bytes
[  590.014008][T14503] netlink: zone id is out of range
[  590.017062][T14506] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2515'.
[  590.032955][T14506] netlink: 'syz.0.2515': attribute type 1 has an invalid length.
[  590.063106][T14506] netlink: 'syz.0.2515': attribute type 4 has an invalid length.
[  590.087340][T14506] netlink: 'syz.0.2515': attribute type 5 has an invalid length.
[  590.096494][T14506] netlink: 20232 bytes leftover after parsing attributes in process `syz.0.2515'.
[  593.628408][T14553] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2528'.
[  593.854603][T14553] veth1_macvtap: left promiscuous mode
[  594.785985][T14571] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2536'.
[  594.796678][T14571] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  594.912678][T14571] batman_adv: batadv0: Removing interface: batadv_slave_1
[  595.531583][T14569] netlink: 504 bytes leftover after parsing attributes in process `syz.3.2534'.
[  596.574391][T14599] random: crng reseeded on system resumption
[  597.024841][T14606] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2543'.
[  597.546897][T14615] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2546'.
[  597.871631][T14626] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2560'.
[  600.412060][T14676] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2562'.
[  600.435240][T14676] veth1_macvtap: left promiscuous mode
[  602.358009][T14707] netlink: 350 bytes leftover after parsing attributes in process `syz.3.2567'.
[  605.177148][T14749] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2581'.
[  605.304248][T14746] zswap: compressor  not available
[  605.800031][T14757] netlink: 350 bytes leftover after parsing attributes in process `syz.2.2582'.
[  609.166116][T14794] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2589'.
[  609.379941][T14783] kexec: Could not allocate control_code_buffer
[  611.976542][T14827] Invalid ELF header magic: != ELF
[  614.450208][T14856] netlink: 62 bytes leftover after parsing attributes in process `syz.1.2604'.
[  615.379276][T14869] netlink: 'syz.1.2612': attribute type 12 has an invalid length.
[  615.827497][T14874] random: crng reseeded on system resumption
[  616.508980][   T30] audit: type=1800 audit(4294967333.659:12): pid=14883 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2616" name="features" dev="configfs" ino=174062 res=0 errno=0
[  616.539305][T14882] netlink: 146 bytes leftover after parsing attributes in process `syz.0.2622'.
[  618.437763][T14890] kexec: Could not allocate control_code_buffer
[  619.825845][T14928] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2628'.
[  619.865586][T14928] bond0: entered promiscuous mode
[  619.976506][T14928] bond_slave_0: entered promiscuous mode
[  619.992894][T14928] bond_slave_1: entered promiscuous mode
[  620.049749][T14928] bond0: entered allmulticast mode
[  620.069660][T14928] bond_slave_0: entered allmulticast mode
[  620.137707][T14928] bond_slave_1: entered allmulticast mode
[  620.618386][T14936] zswap: compressor  not available
[  621.359982][T14947] ERROR: Out of memory at tomoyo_memory_ok.
[  624.267289][T14992] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2645'.
[  626.735722][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  626.742089][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  627.110484][T15032] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2657'.
[  630.464128][T15075] netlink: 158 bytes leftover after parsing attributes in process `syz.0.2667'.
[  630.968677][T15087] random: crng reseeded on system resumption
[  631.309685][T15098] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2676'.
[  631.864154][T15076] kexec: Could not allocate control_code_buffer
[  632.261857][T15110] synth uevent: /module/orangefs: unknown uevent action string
[  633.459571][T15125] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2682'.
[  633.477410][T15125] bond0: entered promiscuous mode
[  633.487286][T15125] bond_slave_0: entered promiscuous mode
[  633.508444][T15125] bond_slave_1: entered promiscuous mode
[  633.527644][T15125] bond0: entered allmulticast mode
[  633.536499][T15125] bond_slave_0: entered allmulticast mode
[  633.542365][T15125] bond_slave_1: entered allmulticast mode
[  639.619845][T15185] kexec: Could not allocate control_code_buffer
[  639.858498][T15196] Invalid ELF header magic: != ELF
[  641.224497][T15208] random: crng reseeded on system resumption
[  645.690198][T15246] kexec: Could not allocate control_code_buffer
[  646.640333][T15277] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2720'.
[  647.032232][T15277] hsr_slave_0 (unregistering): left promiscuous mode
[  648.539528][   T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  651.899860][T15291] kexec: Could not allocate control_code_buffer
[  653.172143][T15333] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2738'.
[  653.212661][T15333] netlink: 354 bytes leftover after parsing attributes in process `syz.1.2738'.
[  653.246975][T15335] random: crng reseeded on system resumption
[  655.231138][T15365] vcan0: tx drop: invalid sa for name 0x00000000000000fd
[  656.043998][T15378] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2749'.
[  656.091620][T15378] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2749'.
[  656.439980][T15381] nfs: Unknown parameter 'nl802154'
[  656.640854][T15387] netlink: 17 bytes leftover after parsing attributes in process `syz.3.2752'.
[  658.647174][T15414] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2759'.
[  658.738208][T15414] netlink: 354 bytes leftover after parsing attributes in process `syz.3.2759'.
[  659.189695][   T52] Bluetooth: hci0: Malformed Event: 0x13
[  659.673867][T15424] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2762'.
[  659.685525][T15424] netlink: 'syz.1.2762': attribute type 1 has an invalid length.
[  659.693767][T15424] netlink: 'syz.1.2762': attribute type 4 has an invalid length.
[  659.702032][T15424] netlink: 'syz.1.2762': attribute type 5 has an invalid length.
[  659.709921][T15424] netlink: 22724 bytes leftover after parsing attributes in process `syz.1.2762'.
[  659.930811][T15409] kexec: Could not allocate control_code_buffer
[  660.754486][T15450] ERROR: Out of memory at tomoyo_memory_ok.
[  660.786463][T15450] ERROR: Domain '<kernel> /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /sbin/start-stop-daemon /usr/sbin/sshd /usr/libexec/sshd-session /bin/sh /root/syz-executor /root/syz-executor tmpfs:/newroot/646/:,' not defined.
[  661.806864][T15467] snd_aloop snd_aloop.0: control 16781581:65539:6:�'x?F���/��zF˷fC���:7 is already present
[  662.254224][T15473] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2775'.
[  664.695167][T15514] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2786'.
[  666.822621][T15537] ERROR: Out of memory at tomoyo_memory_ok.
[  666.884971][T15537] bond0: invalid ARP target specified
[  667.680694][T15543] Invalid ELF header magic: != ELF
[  672.173689][T15613] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2811'.
[  672.878633][T15629] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2816'.
[  672.920684][T15629] netlink: 354 bytes leftover after parsing attributes in process `syz.1.2816'.
[  673.141262][T15627] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15
[  674.337689][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880602e7800: rx timeout, send abort
[  674.349211][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8880602e7800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  675.255166][ T5180] ERROR: Out of memory at tomoyo_memory_ok.
[  675.439195][T15641] binder: 15640:15641 ioctl c0306201 200000000000 returned -11
[  675.587035][    C0] vcan0: j1939_tp_rxtimer: 0xffff88803111c000: rx timeout, send abort
[  675.595513][    C0] vcan0: j1939_tp_rxtimer: 0xffff888060479c00: rx timeout, send abort
[  675.608277][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88803111c000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  675.623569][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888060479c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  675.769762][T15622] kexec: Could not allocate control_code_buffer
[  675.782354][T15646] Invalid ELF header magic: != ELF
[  677.327196][T15669] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2828'.
[  678.094247][T15678] random: crng reseeded on system resumption
[  678.814048][T15687] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2835'.
[  679.095287][T15695] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  681.029667][T15716] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2842'.
[  681.093815][T15716] vlan1: entered promiscuous mode
[  681.115284][T15716] vlan1: entered allmulticast mode
[  681.165190][T15716] veth0_vlan: entered allmulticast mode
[  686.875788][T15759] kexec: Could not allocate control_code_buffer
[  687.862099][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  687.868578][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  688.078977][T15795] FAULT_INJECTION: forcing a failure.
[  688.078977][T15795] name failslab, interval 1, probability 0, space 0, times 0
[  688.183449][T15795] CPU: 0 UID: 0 PID: 15795 Comm: syz.1.2863 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  688.183513][T15795] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  688.183528][T15795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  688.183546][T15795] Call Trace:
[  688.183555][T15795]  <TASK>
[  688.183566][T15795]  dump_stack_lvl+0x100/0x190
[  688.183606][T15795]  should_fail_ex.cold+0x5/0xa
[  688.183652][T15795]  should_failslab+0xc2/0x120
[  688.183701][T15795]  ? snd_midi_event_new+0xa1/0x210
[  688.183729][T15795]  __kmalloc_noprof+0xf6/0x9c0
[  688.183768][T15795]  ? snd_midi_event_new+0xa1/0x210
[  688.183795][T15795]  snd_midi_event_new+0xa1/0x210
[  688.183825][T15795]  snd_virmidi_output_open+0x106/0x670
[  688.183861][T15795]  open_substream+0x480/0x9e0
[  688.183900][T15795]  rawmidi_open_priv+0x595/0x6f0
[  688.183944][T15795]  snd_rawmidi_open+0x4c9/0xba0
[  688.183989][T15795]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  688.184030][T15795]  ? __pfx_default_wake_function+0x10/0x10
[  688.184066][T15795]  ? kobject_get_unless_zero+0x156/0x200
[  688.184107][T15795]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  688.184192][T15795]  snd_open+0x22d/0x4c0
[  688.184225][T15795]  ? __pfx_snd_open+0x10/0x10
[  688.184256][T15795]  chrdev_open+0x234/0x6a0
[  688.184290][T15795]  ? __pfx_apparmor_file_open+0x10/0x10
[  688.184327][T15795]  ? __pfx_chrdev_open+0x10/0x10
[  688.184362][T15795]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  688.184404][T15795]  do_dentry_open+0x73e/0x1570
[  688.184441][T15795]  ? __pfx_chrdev_open+0x10/0x10
[  688.184476][T15795]  ? security_inode_permission+0xbf/0x250
[  688.184520][T15795]  vfs_open+0x82/0x3f0
[  688.184566][T15795]  path_openat+0x21dc/0x3120
[  688.184611][T15795]  ? __pfx_path_openat+0x10/0x10
[  688.184659][T15795]  do_filp_open+0x1f7/0x420
[  688.184703][T15795]  ? __pfx_do_filp_open+0x10/0x10
[  688.184765][T15795]  ? _raw_spin_unlock+0x28/0x50
[  688.184792][T15795]  ? alloc_fd+0x476/0x790
[  688.184836][T15795]  do_sys_openat2+0x12e/0x220
[  688.184877][T15795]  ? __pfx_do_sys_openat2+0x10/0x10
[  688.184922][T15795]  ? __fget_files+0x21f/0x3d0
[  688.184959][T15795]  __x64_sys_openat+0x12d/0x210
[  688.185003][T15795]  ? __pfx___x64_sys_openat+0x10/0x10
[  688.185044][T15795]  ? xfd_validate_state+0x129/0x190
[  688.185099][T15795]  do_syscall_64+0xc9/0xf80
[  688.185135][T15795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  688.185164][T15795] RIP: 0033:0x7f850399aeb9
[  688.185189][T15795] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  688.185219][T15795] RSP: 002b:00007f8501bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  688.185246][T15795] RAX: ffffffffffffffda RBX: 00007f8503c15fa0 RCX: 00007f850399aeb9
[  688.185263][T15795] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  688.185281][T15795] RBP: 00007f8503a08c1f R08: 0000000000000000 R09: 0000000000000000
[  688.185298][T15795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  688.185315][T15795] R13: 00007f8503c16038 R14: 00007f8503c15fa0 R15: 00007ffcdd2990f8
[  688.185352][T15795]  </TASK>
[  688.900684][T15803] netlink: 'syz.0.2865': attribute type 64 has an invalid length.
[  688.919111][T15803] netlink: 74 bytes leftover after parsing attributes in process `syz.0.2865'.
[  689.804123][T15810] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  689.831599][T15810] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  689.885102][T15810] vhci_hcd vhci_hcd.1: invalid port number 50
[  689.891228][T15810] vhci_hcd vhci_hcd.1: default hub control req: 0400 v0000 i0032 l0
[  692.038324][T15852] tipc: Started in network mode
[  692.062185][T15852] tipc: Node identity ffffffff, cluster identity 4711
[  692.090793][T15852] tipc: Node number set to 4294967295
[  692.117271][T15852] ERROR: Out of memory at tomoyo_memory_ok.
[  692.603150][T15864] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2878'.
[  693.785993][T15877] size and base must be multiples of 4 kiB
[  693.815391][T15877] CPU: 0 UID: 0 PID: 15877 Comm: syz.1.2882 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  693.815437][T15877] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  693.815446][T15877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  693.815455][T15877] Call Trace:
[  693.815462][T15877]  <TASK>
[  693.815469][T15877]  dump_stack_lvl+0x100/0x190
[  693.815501][T15877]  mtrr_del.cold+0x72/0x85
[  693.815517][T15877]  mtrr_ioctl+0xbc8/0xcf0
[  693.815541][T15877]  ? __pfx_mtrr_ioctl+0x10/0x10
[  693.815567][T15877]  ? find_held_lock+0x2b/0x80
[  693.815587][T15877]  ? __fget_files+0x21f/0x3d0
[  693.815605][T15877]  ? __pfx_mtrr_ioctl+0x10/0x10
[  693.815626][T15877]  proc_reg_unlocked_ioctl+0x229/0x320
[  693.815648][T15877]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  693.815675][T15877]  __x64_sys_ioctl+0x18e/0x210
[  693.815700][T15877]  do_syscall_64+0xc9/0xf80
[  693.815720][T15877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  693.815735][T15877] RIP: 0033:0x7f850399aeb9
[  693.815748][T15877] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  693.815762][T15877] RSP: 002b:00007f8501bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  693.815777][T15877] RAX: ffffffffffffffda RBX: 00007f8503c15fa0 RCX: 00007f850399aeb9
[  693.815787][T15877] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000005
[  693.815795][T15877] RBP: 00007f8503a08c1f R08: 0000000000000000 R09: 0000000000000000
[  693.815804][T15877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  693.815812][T15877] R13: 00007f8503c16038 R14: 00007f8503c15fa0 R15: 00007ffcdd2990f8
[  693.815831][T15877]  </TASK>
[  694.419921][T15886] mkiss: ax0: crc mode is auto.
[  694.812843][T15890] Invalid ELF header magic: != ELF
[  695.804061][T15899] FAULT_INJECTION: forcing a failure.
[  695.804061][T15899] name failslab, interval 1, probability 0, space 0, times 0
[  695.830982][T15898] tipc: Started in network mode
[  695.848232][T15898] tipc: Node identity ffffffff, cluster identity 4711
[  695.853085][T15899] CPU: 1 UID: 0 PID: 15899 Comm: syz.1.2888 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  695.853142][T15899] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  695.853158][T15899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  695.853173][T15899] Call Trace:
[  695.853182][T15899]  <TASK>
[  695.853191][T15899]  dump_stack_lvl+0x100/0x190
[  695.853230][T15899]  should_fail_ex.cold+0x5/0xa
[  695.853271][T15899]  should_failslab+0xc2/0x120
[  695.853308][T15899]  kmem_cache_alloc_lru_noprof+0x8e/0x7d0
[  695.853343][T15899]  ? __d_lookup+0x25c/0x4a0
[  695.853370][T15899]  ? __d_alloc+0x34/0xa80
[  695.853410][T15899]  ? __d_alloc+0x34/0xa80
[  695.853441][T15899]  __d_alloc+0x34/0xa80
[  695.853479][T15899]  d_alloc+0x4a/0x1e0
[  695.853516][T15899]  lookup_one_qstr_excl+0x175/0x250
[  695.853562][T15899]  start_dirop+0x59/0xb0
[  695.853593][T15899]  simple_start_creating+0xf9/0x110
[  695.853625][T15899]  ? __pfx_simple_start_creating+0x10/0x10
[  695.853654][T15899]  ? mntput+0x70/0xa0
[  695.853680][T15899]  ? simple_pin_fs+0xa3/0x190
[  695.853709][T15899]  debugfs_start_creating.part.0+0x82/0x170
[  695.853748][T15899]  __debugfs_create_file+0xb3/0x4f0
[  695.853790][T15899]  debugfs_create_file_full+0x41/0x60
[  695.853831][T15899]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  695.853879][T15899]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  695.853966][T15899]  ? lockdep_init_map_type+0x5c/0x250
[  695.854009][T15899]  preinit_net.part.0+0x24e/0x8f0
[  695.854055][T15899]  copy_net_ns+0x339/0x7c0
[  695.854087][T15899]  create_new_namespaces+0x3ea/0xab0
[  695.854128][T15899]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  695.854165][T15899]  ksys_unshare+0x455/0xab0
[  695.854209][T15899]  ? __pfx_ksys_unshare+0x10/0x10
[  695.854248][T15899]  ? xfd_validate_state+0x129/0x190
[  695.854303][T15899]  __x64_sys_unshare+0x31/0x40
[  695.854341][T15899]  do_syscall_64+0xc9/0xf80
[  695.854380][T15899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  695.854409][T15899] RIP: 0033:0x7f850399aeb9
[  695.854433][T15899] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  695.854460][T15899] RSP: 002b:00007f8501bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  695.854487][T15899] RAX: ffffffffffffffda RBX: 00007f8503c15fa0 RCX: 00007f850399aeb9
[  695.854506][T15899] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  695.854524][T15899] RBP: 00007f8503a08c1f R08: 0000000000000000 R09: 0000000000000000
[  695.854541][T15899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  695.854557][T15899] R13: 00007f8503c16038 R14: 00007f8503c15fa0 R15: 00007ffcdd2990f8
[  695.854595][T15899]  </TASK>
[  695.993055][T15902] ERROR: Out of memory at tomoyo_memory_ok.
[  696.293942][T15898] tipc: Node number set to 4294967295
[  697.514643][T15917] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2890'.
[  697.862731][T15924] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2893'.
[  697.958868][T15922] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2893'.
[  698.006726][T15928] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2893'.
[  703.634109][T15978] futex_wake_op: syz.3.2907 tries to shift op by -1; fix this program
[  704.170493][T15987] futex_wake_op: syz.3.2910 tries to shift op by -2048; fix this program
[  704.226647][T15987] futex_wake_op: syz.3.2910 tries to shift op by -2048; fix this program
[  704.586757][T15993] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  705.055538][T15998] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  705.902766][T16012] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2917'.
[  705.950672][T16012] macvlan1: entered promiscuous mode
[  705.956311][T16012] macvlan1: entered allmulticast mode
[  705.964365][T16012] veth1_vlan: entered allmulticast mode
[  706.697771][T16006] Invalid ELF header magic: != ELF
[  706.771264][T16005] delete_channel: no stack
[  708.264157][T16039] netlink: 9 bytes leftover after parsing attributes in process `syz.2.2924'.
[  714.484399][T16098] device-mapper: ioctl: Unable to rename non-existent device,  to uuid �
[  715.268366][T16109] Invalid ELF header magic: != ELF
[  719.875201][T16148] kexec: Could not allocate control_code_buffer
[  722.176437][T16180] netlink: 306 bytes leftover after parsing attributes in process `syz.3.2959'.
[  723.441066][T16192] zswap: compressor  not available
[  724.252930][T16193] kexec: Could not allocate control_code_buffer
[  725.638690][   T52] Bluetooth: hci2: unexpected event 0x0f length: 440 > 4
[  725.645939][T16223] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2966'.
[  726.357357][T16229] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2967'.
[  726.395753][T16229] netlink: 5 bytes leftover after parsing attributes in process `syz.1.2967'.
[  729.105660][   T30] audit: type=1800 audit(4294967388.407:13): pid=16262 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2977" name="features" dev="configfs" ino=216486 res=0 errno=0
[  729.383412][T16267] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2978'.
[  729.400204][T16267] macvlan1: entered promiscuous mode
[  729.478386][T16267] macvlan1: entered allmulticast mode
[  729.498187][T16267] veth1_vlan: entered allmulticast mode
[  729.640216][   T52] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  729.657433][   T52] Bluetooth: hci2: Injecting HCI hardware error event
[  729.687634][   T52] Bluetooth: hci2: hardware error 0x00
[  731.726631][   T52] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  732.533833][T16307] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2990'.
[  732.730837][    C1] vcan0: j1939_tp_rxtimer: 0xffff88806080c800: rx timeout, send abort
[  733.236709][    C1] vcan0: j1939_tp_rxtimer: 0xffff88806080c800: abort rx timeout. Force session deactivation
[  734.258674][T16319] ERROR: Out of memory at tomoyo_memory_ok.
[  734.458899][T16308] ERROR: Out of memory at tomoyo_memory_ok.
[  734.598082][T16335] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2996'.
[  740.107637][T16390] kexec: Could not allocate control_code_buffer
[  741.290588][T16410] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input16
[  743.397155][T16439] blktrace: Concurrent blktraces are not allowed on nbd8
[  745.762856][T16465] netlink: 334 bytes leftover after parsing attributes in process `syz.1.3026'.
[  746.264057][T16475] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3036'.
[  746.883857][T16476] zswap: compressor  not available
[  748.985847][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  748.993917][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  749.520531][   T52] Bluetooth: hci3: unexpected event 0x0f length: 440 > 4
[  750.137574][T16519] kexec: Could not allocate control_code_buffer
[  752.550038][T16560] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3047'.
[  753.523132][   T52] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  753.531938][   T52] Bluetooth: hci3: Injecting HCI hardware error event
[  753.542312][   T52] Bluetooth: hci3: hardware error 0x00
[  755.008390][T16583] ERROR: Out of memory at tomoyo_memory_ok.
[  755.584003][   T52] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  756.635807][T16616] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3057'.
[  756.702472][T16615] netlink: 13 bytes leftover after parsing attributes in process `syz.1.3056'.
[  756.711665][T16615] netlink: 6 bytes leftover after parsing attributes in process `syz.1.3056'.
[  757.596003][T16622] [U]  
[  757.598895][T16622] [U] 
[  757.601706][T16622] [U] 
[  757.604432][T16622] [U] 
[  757.728741][T16622] [U] 
[  757.731511][T16622] [U] 
[  757.734239][T16622] [U] 
[  757.736952][T16622] [U] 
[  757.800928][T16622] [U] 
[  757.803763][T16622] [U] 
[  757.806498][T16622] [U] 
[  757.809228][T16622] [U] 
[  757.839757][T16622] [U] 
[  757.842502][T16622] [U] �C���Pk�;#}�&���n�iČ��� ��DI�����\h�A㈾��Gk��7fmbK�ճs���
[  757.851370][T16622] [U] �⍸��׵#+
[  757.854946][T16622] [U] ����
[  757.857984][T16622] [U] T������-B����������	�p%bC�\���ypN��T6h��O:7R�ij�:S�n
[  757.865938][T16622] [U] {L��4�"u�g��i�f.��{?�Y��<�匚dڿ'���p��3Rv�*wMZ쯓5��Sv�Hf�Z
[  757.874729][T16622] [U] Ԝ
#�
[  757.877873][T16622] [U]  e����)V-P��>�n/��s?�SfA��U-�>��^��P�I�� �Ė���q1�����n����n�q
[  757.886773][T16622] [U] '��K
[  757.889957][T16622] [U] x��ތX�v�*�U��jk�n(�1uN.ǭ��m�W�S�%sb��Xn�b����n���%�6�1�|k1罽W��&��3C��k�bm��z���/,�>�I5�ˎ�t����fEL�wu1�
5��(*(����(��s��l��}*3h�x��AM�I�+B���5j~�z�No\pu �a�h��~��A$�Q�bVi\C��A�K?��=9P��m���7�U^`کt��:�u�@��=P �b�H4Z.kq��|Ԡ��8-E�_|�j?,1dj�92�w����#d��-0%j�Ǹ������n��{�P�p�s<��k�r-�W ��+�Zh��v�TFRA�ڕ���"�Uf�|�� C]��y0����g��(u���a4\ģ둿��8^P�E�&FS׸���2��4�yz@y�+��J��I��QR�5���X~�3�&&?���.�Sҵ��	�BˋQ�-�(xI'�g)�d�I��3k/6��ɣ��SW+
[  757.936279][T16622] [U] >�����6��<���I�h���c
!
w��%q,�)gC2Izh ��+���
��e�U� vgA�J'�$��R!&���l�'��9sI��Y6�#�����PT�>bm�������H��o(24�Y������Ҝ�"	��|c�9� �a
[  757.951834][T16622] [U] I��LI�!Mt������aK��
�-��Cm�u����|�I�mC��S�^���G,H�[y&���3��Rwi�]g��
[  757.960984][T16622] [U] yU�v<s��í	޻v^��G@Z�܌���Q �~^��s/P��1�vb�B����
[  758.170166][T16622] [U] ��_)���&�,�ϭ�8K�
[  760.877368][T16665] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3069'.
[  761.141971][T16673] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3072'.
[  763.210278][T16682] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3074'.
[  764.867502][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807ee61800: rx timeout, send abort
[  764.875975][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88807ee61800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  765.991034][T16710] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input17
[  766.497741][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807ee60c00: rx timeout, send abort
[  766.506167][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880324e0000: rx timeout, send abort
[  766.514754][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88807ee60c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  766.529234][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8880324e0000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  767.606900][T16721] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3092'.
[  767.820242][T16721] bridge0: port 2(bridge_slave_1) entered disabled state
[  768.056205][T16721] bridge_slave_1 (unregistering): left allmulticast mode
[  768.092285][T16721] bridge_slave_1 (unregistering): left promiscuous mode
[  768.137306][T16721] bridge0: port 2(bridge_slave_1) entered disabled state
[  770.422855][T16755] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3089'.
[  773.978674][T16788] can0: slcan on ttyS2.
[  774.497377][T16796] can0 (unregistered): slcan off ttyS2.
[  776.910521][T16848] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3117'.
[  776.953463][T16848] netlink: 'syz.0.3117': attribute type 1 has an invalid length.
[  777.000779][T16848] netlink: 20232 bytes leftover after parsing attributes in process `syz.0.3117'.
[  777.701296][T16866] device-mapper: ioctl: only supply one of name or uuid, cmd(5)
[  778.657535][T16880] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3116'.
[  782.594427][T16919] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  782.622628][T16919] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  782.961920][T16274] Bluetooth: hci0: command 0x0406 tx timeout
[  784.631789][T16274] Bluetooth: hci1: command 0x0406 tx timeout
[  787.132105][T17016] sctp: [Deprecated]: syz.2.3146 (pid 17016) Use of struct sctp_assoc_value in delayed_ack socket option.
[  787.132105][T17016] Use struct sctp_sack_info instead
[  789.454889][T17045] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3152'.
[  789.729913][T17049] netlink: 25 bytes leftover after parsing attributes in process `syz.0.3151'.
[  789.856710][T17053] blktrace: Concurrent blktraces are not allowed on loop2
[  797.351635][   T30] audit: type=1800 audit(4294967363.468:14): pid=17119 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3171" name="dbroot" dev="configfs" ino=243852 res=0 errno=0
[  799.769161][T17141] netlink: 504 bytes leftover after parsing attributes in process `syz.3.3178'.
[  800.266718][T17152] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3180'.
[  801.723788][T17164] zswap: compressor  not available
[  806.058359][   T30] audit: type=1804 audit(4294967372.213:15): pid=17200 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3188" name="file0" dev="tmpfs" ino=4056 res=1 errno=0
[  806.268818][   T30] audit: type=1804 audit(4294967372.404:16): pid=17212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3188" name="file0" dev="tmpfs" ino=4056 res=1 errno=0
[  806.659240][T17217] sctp: [Deprecated]: syz.3.3193 (pid 17217) Use of struct sctp_assoc_value in delayed_ack socket option.
[  806.659240][T17217] Use struct sctp_sack_info instead
[  807.814813][T17227] device-mapper: ioctl: only supply one of name or uuid, cmd(5)
[  807.965519][T17231] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3197'.
[  809.462836][T17253] blktrace: Concurrent blktraces are not allowed on loop2
[  810.119679][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  810.125983][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  810.822284][T17266] netlink: zone id is out of range
[  810.827624][T17266] netlink: del zone limit has 4 unknown bytes
[  811.801541][T17270] Invalid ELF header magic: != ELF
[  813.319728][T17290] ERROR: Out of memory at tomoyo_memory_ok.
[  813.793024][T17295] ptrace attach of "./syz-executor exec"[7429] was attempted by "���biB3+H֑�;C2�\x07I�UI�F�1���a���A;�&��C�z�0Q���p>��Mq����@,��/�~w!v.G�iS\x22��Ѐ�=�M�z۸S�*{Gce������10Y'��ET��f0.�i\x22L\x5cl�r���/\x09\x0a�&�\x22_gw��s�C=�9Vf�\x1bR(�]�I,ݨ�¾�]S�{����.���g���9����8
n7���.\x07bZ��q�����Fg[P`�{��|�R
b῍��'3%�\x1b!��1�lQ�;���\x0b��q��V�|@�H�^>\x09{�l �ѱ.5�ה?��Pf\x5c�A���� �B�x�R�\x0bpc��):�b6��R���S���\x0bpݴ��c�&� �D���~�Ö���ưʲ��#��>נ��\x1b����L�`����6����Dp�سAt�WniE�!�'�)\x09��E������kJE9�� ݥ�q����>��Q�&`�F�Q�U�[��&��6��>�?�nȆO�\x0bL!��� +������PC�3E����K�嵐�v�\x22���>��A������\x0c:x*-�z�5c��+�+arxtx�-�خq
X!���P����\x0a�a�U/�>��3C���x�iT\x07�L\x0a��P���0���3������z���ij���\x5c���.�hވJ~�(���am�Wj�S�M�+��.�LWu�V�V�>Zg�9���K�q�G�٤˪���c�����D\x07�<��s��\x09��:^`�\x0d�����w�(xR=������p
|��M�0q�a99w�����좑;>��\x0c���t��X��wR�z�>�c!û��[�r~S��BC
��A��f�iV�N�۬��pB*�\x22`\x22�\x0c}��(7W�� ��jD\x0d�_�}:
[  813.868697][T17296] netlink: 504 bytes leftover after parsing attributes in process `syz.1.3212'.
[  818.320131][T17360] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3232'.
[  820.915732][   T30] audit: type=1800 audit(4294967387.140:17): pid=17405 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3242" name="dbroot" dev="configfs" ino=252313 res=0 errno=0
[  823.514192][T17444] netlink: 17 bytes leftover after parsing attributes in process `syz.0.3258'.
[  823.600481][T17446] Falling back ldisc for pty66.
[  824.265613][   T30] audit: type=1804 audit(4294967390.518:18): pid=17460 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3255" name="/newroot/666/file0" dev="tmpfs" ino=3512 res=1 errno=0
[  824.677847][   T30] audit: type=1804 audit(4294967390.930:19): pid=17456 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.3255" name="/newroot/666/file0" dev="tmpfs" ino=3512 res=1 errno=0
[  825.178185][T17476] block nbd0: Unsupported socket: should be TCP or UNIX.
[  825.526062][T17484] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3262'.
[  825.710281][T17487] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3263'.
[  825.759016][T17487] netlink: 'syz.1.3263': attribute type 1 has an invalid length.
[  825.766893][T17487] netlink: 13 bytes leftover after parsing attributes in process `syz.1.3263'.
[  825.969108][T17493] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3265'.
[  825.982203][T17493] netlink: 354 bytes leftover after parsing attributes in process `syz.3.3265'.
[  826.876010][T17510] netlink: 504 bytes leftover after parsing attributes in process `syz.2.3268'.
[  828.954126][   T30] audit: type=1800 audit(4294967395.232:20): pid=17534 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3274" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  830.111027][T17549] sysfs_service_op_show: Client not running :-5:
[  833.528842][T17587] zswap: compressor  not available
[  833.670627][T17591] netlink: 504 bytes leftover after parsing attributes in process `syz.0.3288'.
[  835.312387][T17619] can0: slcan on ptm0.
[  835.517492][T17618] can0 (unregistered): slcan off ptm0.
[  837.250376][   T30] audit: type=1326 audit(4294967403.575:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17632 comm="syz.3.3305" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff063f9aeb9 code=0x0
[  837.690135][T17664] netlink: 504 bytes leftover after parsing attributes in process `syz.1.3300'.
[  839.850402][T17711] sysfs_service_op_show: Client not running :-5:
[  841.981299][T17739] netlink: 504 bytes leftover after parsing attributes in process `syz.2.3314'.
[  842.697456][T17747] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input18
[  843.733209][T17761] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3319'.
[  846.868221][T17790] serio: Serial port ttyS2
[  848.919946][T17812] netlink: set zone limit has 8 unknown bytes
[  850.178102][T17830] futex_wake_op: syz.2.3333 tries to shift op by -2048; fix this program
[  850.205750][T17830] futex_wake_op: syz.2.3333 tries to shift op by -2048; fix this program
[  850.296669][T17830] 0x000000000001-0x000000020000 : ""
[  850.318224][T17830] ftl_cs: FTL header corrupt!
[  850.558787][T17833] ERROR: Out of memory at tomoyo_memory_ok.
[  852.910237][T17865] netlink: 504 bytes leftover after parsing attributes in process `syz.0.3340'.
[  854.767366][T17882] netlink: 25 bytes leftover after parsing attributes in process `syz.2.3344'.
[  855.109851][T17880] netlink: 504 bytes leftover after parsing attributes in process `syz.0.3352'.
[  855.235447][T17890] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3345'.
[  855.428137][T17890] team0: Port device team_slave_0 removed
[  855.870564][T17895] sysfs_service_op_show: Client not running :-5:
[  856.955508][T17901] netlink: 504 bytes leftover after parsing attributes in process `syz.0.3358'.
[  858.875632][   T30] audit: type=1804 audit(4294967425.298:22): pid=17929 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3355" name="/newroot/683/file0" dev="tmpfs" ino=3580 res=1 errno=0
[  859.038305][T17939] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input19
[  859.054355][   T30] audit: type=1804 audit(4294967425.298:23): pid=17930 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.3355" name="/newroot/683/file0" dev="tmpfs" ino=3580 res=1 errno=0
[  859.825970][T17956] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3362'.
[  860.687403][T17971] Invalid ELF header magic: != ELF
[  863.266745][   T30] audit: type=1804 audit(4294967429.721:24): pid=17997 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3369" name="/newroot/532/file0" dev="tmpfs" ino=2792 res=1 errno=0
[  863.352174][   T30] audit: type=1804 audit(4294967429.751:25): pid=17999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.3369" name="/newroot/532/file0" dev="tmpfs" ino=2792 res=1 errno=0
[  868.753137][T18072] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  868.767956][T18072] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  869.114816][T18080] sysfs_service_op_show: Client not running :-5:
[  870.823190][T16274] Bluetooth: hci1: command 0x0406 tx timeout
[  870.830576][   T52] Bluetooth: hci0: command 0x0406 tx timeout
[  871.231217][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  871.238428][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  872.063504][T18113] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3394'.
[  872.156661][T18113] netlink: 'syz.1.3394': attribute type 1 has an invalid length.
[  872.216197][T18113] netlink: 5 bytes leftover after parsing attributes in process `syz.1.3394'.
[  872.462282][T18116] netlink: 5 bytes leftover after parsing attributes in process `syz.0.3395'.
[  872.673212][T18123] binder: 18118:18123 ioctl 400c620e 0 returned -22
[  872.844487][T18127] futex_wake_op: syz.0.3398 tries to shift op by -2048; fix this program
[  872.853449][T18127] futex_wake_op: syz.0.3398 tries to shift op by -2048; fix this program
[  875.134000][T18159] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3406'.
[  875.193157][T18159] netlink: 'syz.2.3406': attribute type 1 has an invalid length.
[  875.231931][T18159] netlink: 5 bytes leftover after parsing attributes in process `syz.2.3406'.
[  875.326854][T18164] futex_wake_op: syz.1.3414 tries to shift op by -2048; fix this program
[  875.366546][T18164] futex_wake_op: syz.1.3414 tries to shift op by -2048; fix this program
[  875.540328][T18168] 0x000000000001-0x000000020000 : ""
[  875.768106][T18168] ftl_cs: FTL header corrupt!
[  876.057252][T18167] netlink: 'syz.2.3407': attribute type 2 has an invalid length.
[  876.075933][T18167] netlink: 5 bytes leftover after parsing attributes in process `syz.2.3407'.
[  876.106454][T18172] ERROR: Out of memory at tomoyo_memory_ok.
[  880.014354][T18202] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  881.723601][T18221] futex_wake_op: syz.1.3415 tries to shift op by -2048; fix this program
[  881.744636][T18221] futex_wake_op: syz.1.3415 tries to shift op by -2048; fix this program
[  882.078114][T18210] 0x000000000001-0x000000020000 : ""
[  882.421982][T18210] ftl_cs: FTL header corrupt!
[  882.663654][T18232] ERROR: Out of memory at tomoyo_memory_ok.
[  884.849149][T18258] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input20
[  886.336844][T18278] futex_wake_op: syz.1.3430 tries to shift op by -2048; fix this program
[  886.358029][T18278] futex_wake_op: syz.1.3430 tries to shift op by -2048; fix this program
[  887.258663][T18290] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  887.279154][T18290] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  888.824709][T18318] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3439'.
[  889.040872][T18318] netlink: 'syz.2.3439': attribute type 1 has an invalid length.
[  889.064150][T18318] netlink: 13 bytes leftover after parsing attributes in process `syz.2.3439'.
[  889.305492][T16274] Bluetooth: hci0: command 0x0406 tx timeout
[  889.317028][   T52] Bluetooth: hci1: command 0x0406 tx timeout
[  889.700318][   T30] audit: type=1800 audit(4294967456.298:26): pid=18329 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3442" name="file0" dev="tmpfs" ino=3771 res=0 errno=0
[  894.673474][T18411] sysfs_service_op_show: Client not running :-5:
[  896.556521][T18435] futex_wake_op: syz.0.3466 tries to shift op by -2048; fix this program
[  900.339424][   T52] Bluetooth: hci0: unexpected event 0x10 length: 440 > 1
[  900.342729][T16274] Bluetooth: hci0: hardware error 0x00
[  902.018732][T18538] netlink: 'syz.1.3493': attribute type 2 has an invalid length.
[  902.084250][T18538] netlink: 'syz.1.3493': attribute type 4 has an invalid length.
[  902.418886][T16274] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  904.133821][T18566] futex_wake_op: syz.1.3498 tries to shift op by -2048; fix this program
[  904.217729][T18566] futex_wake_op: syz.1.3498 tries to shift op by -2048; fix this program
[  904.319603][T18566] 0x000000000001-0x000000020000 : ""
[  904.365746][T18566] ftl_cs: FTL header corrupt!
[  904.720269][T18571] ERROR: Out of memory at tomoyo_memory_ok.
[  908.834891][T18631] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3511'.
[  908.964885][T18631] veth0_macvtap: left promiscuous mode
[  909.003992][T18631] macvtap0: entered promiscuous mode
[  909.012271][T18631] macvtap0: entered allmulticast mode
[  911.558889][T18669] FAULT_INJECTION: forcing a failure.
[  911.558889][T18669] name failslab, interval 1, probability 0, space 0, times 0
[  911.656100][T18669] CPU: 1 UID: 0 PID: 18669 Comm: syz.1.3524 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  911.656138][T18669] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  911.656147][T18669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  911.656160][T18669] Call Trace:
[  911.656166][T18669]  <TASK>
[  911.656172][T18669]  dump_stack_lvl+0x100/0x190
[  911.656197][T18669]  should_fail_ex.cold+0x5/0xa
[  911.656224][T18669]  should_failslab+0xc2/0x120
[  911.656245][T18669]  ? security_inode_init_security+0x113/0x370
[  911.656263][T18669]  __kmalloc_noprof+0xf6/0x9c0
[  911.656278][T18669]  ? __pfx_dquot_alloc_inode+0x10/0x10
[  911.656305][T18669]  ? security_inode_init_security+0x113/0x370
[  911.656322][T18669]  security_inode_init_security+0x113/0x370
[  911.656341][T18669]  ? __pfx_shmem_initxattrs+0x10/0x10
[  911.656364][T18669]  ? __pfx_security_inode_init_security+0x10/0x10
[  911.656387][T18669]  shmem_mknod+0x229/0x3b0
[  911.656404][T18669]  shmem_mkdir+0x31/0x80
[  911.656418][T18669]  vfs_mkdir+0x729/0xb50
[  911.656444][T18669]  do_mkdirat+0x435/0x590
[  911.656463][T18669]  ? __pfx_do_mkdirat+0x10/0x10
[  911.656480][T18669]  ? strncpy_from_user+0x19d/0x2d0
[  911.656503][T18669]  ? getname_flags.part.0+0x1c5/0x540
[  911.656526][T18669]  __x64_sys_mkdir+0xef/0x140
[  911.656545][T18669]  do_syscall_64+0xc9/0xf80
[  911.656565][T18669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  911.656580][T18669] RIP: 0033:0x7f850399aeb9
[  911.656594][T18669] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  911.656608][T18669] RSP: 002b:00007f8501bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  911.656623][T18669] RAX: ffffffffffffffda RBX: 00007f8503c15fa0 RCX: 00007f850399aeb9
[  911.656632][T18669] RDX: 0000000000000000 RSI: 000000000000007e RDI: 0000000000000000
[  911.656641][T18669] RBP: 00007f8503a08c1f R08: 0000000000000000 R09: 0000000000000000
[  911.656649][T18669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  911.656657][T18669] R13: 00007f8503c16038 R14: 00007f8503c15fa0 R15: 00007ffcdd2990f8
[  911.656681][T18669]  </TASK>
[  912.187154][T18677] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3527'.
[  912.257772][T18677] openvswitch: HfR: Dropping previously announced user features
[  912.347663][T18677] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3527'.
[  912.397071][T18677] HfR: left promiscuous mode
[  912.405433][T18679] netlink: 'syz.0.3527': attribute type 1 has an invalid length.
[  912.413656][T18679] nbd: error processing sock list
[  912.890758][T18690] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3531'.
[  912.900891][T18690] netlink: 'syz.3.3531': attribute type 1 has an invalid length.
[  912.913413][T18690] netlink: 5 bytes leftover after parsing attributes in process `syz.3.3531'.
[  912.995854][T18690] netlink: 'syz.3.3531': attribute type 1 has an invalid length.
[  914.309838][T18715] netlink: 'syz.3.3536': attribute type 2 has an invalid length.
[  914.318001][T18715] netlink: 'syz.3.3536': attribute type 4 has an invalid length.
[  915.805979][T18747] Console: switching to colour VGA+ 80x25
[  919.918500][T18806] futex_wake_op: syz.0.3558 tries to shift op by -2048; fix this program
[  919.946587][T18806] futex_wake_op: syz.0.3558 tries to shift op by -2048; fix this program
[  921.740014][T18837] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3563'.
[  921.793155][T18837] netlink: 354 bytes leftover after parsing attributes in process `syz.0.3563'.
[  924.896056][T18879] futex_wake_op: syz.0.3569 tries to shift op by -2048; fix this program
[  924.922178][T18879] futex_wake_op: syz.0.3569 tries to shift op by -2048; fix this program
[  925.260219][T16274] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  925.808253][T18893] futex_wake_op: syz.2.3571 tries to shift op by -2048; fix this program
[  925.830972][T18893] futex_wake_op: syz.2.3571 tries to shift op by -2048; fix this program
[  926.037264][T18893] 0x000000000001-0x000000020000 : ""
[  926.148265][T18893] ftl_cs: FTL header corrupt!
[  926.344900][T18894] ERROR: Out of memory at tomoyo_memory_ok.
[  927.371262][T18899] Process accounting resumed
[  927.697908][T18913] futex_wake_op: syz.3.3577 tries to shift op by -2048; fix this program
[  927.781186][T18913] futex_wake_op: syz.3.3577 tries to shift op by -2048; fix this program
[  927.845296][T18915] can0: slcan on ttyS2.
[  927.872757][T18913] 0x000000000001-0x000000020000 : ""
[  927.986376][T18913] ftl_cs: FTL header corrupt!
[  928.251021][T18914] can0 (unregistered): slcan off ttyS2.
[  928.345594][T18923] ERROR: Out of memory at tomoyo_memory_ok.
[  929.269379][T18943] sp0: Synchronizing with TNC
[  929.515822][T18951] futex_wake_op: syz.1.3585 tries to shift op by -2048; fix this program
[  929.524636][T18951] futex_wake_op: syz.1.3585 tries to shift op by -2048; fix this program
[  929.601572][T18951] 0x000000000001-0x000000020000 : ""
[  930.011238][T18951] ftl_cs: FTL header corrupt!
[  930.205761][T18959] ERROR: Out of memory at tomoyo_memory_ok.
[  932.358018][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  932.365612][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  932.546544][T18997] ERROR: Out of memory at tomoyo_memory_ok.
[  933.680148][T19011] Process accounting resumed
[  933.934044][T19023] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3602'.
[  933.971128][T19023] netlink: 354 bytes leftover after parsing attributes in process `syz.2.3602'.
[  934.388281][T19027] netlink: 186 bytes leftover after parsing attributes in process `syz.2.3603'.
[  934.449426][T19027] netlink: 186 bytes leftover after parsing attributes in process `syz.2.3603'.
[  938.375469][T19081] netlink: 50 bytes leftover after parsing attributes in process `syz.3.3618'.
[  939.397174][T19100] Invalid ELF header magic: != ELF
[  939.841193][T19101] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  940.985012][T19125] futex_wake_op: syz.1.3625 tries to shift op by -2048; fix this program
[  941.162967][T19125] futex_wake_op: syz.1.3625 tries to shift op by -2048; fix this program
[  941.894173][T16274] Bluetooth: hci1: command 0x0406 tx timeout
[  942.208610][T19144] futex_wake_op: syz.3.3628 tries to shift op by -2048; fix this program
[  942.249448][T19144] futex_wake_op: syz.3.3628 tries to shift op by -2048; fix this program
[  942.406549][T19144] 0x000000000001-0x000000020000 : ""
[  942.440972][T19144] ftl_cs: FTL header corrupt!
[  942.682181][T19150] ERROR: Out of memory at tomoyo_memory_ok.
[  943.183131][T19158] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3632'.
[  943.793059][T19164] ERROR: Out of memory at tomoyo_memory_ok.
[  944.472175][T19180] futex_wake_op: syz.1.3645 tries to shift op by -2048; fix this program
[  944.520239][T19180] futex_wake_op: syz.1.3645 tries to shift op by -2048; fix this program
[  946.062146][T19206] futex_wake_op: syz.3.3642 tries to shift op by -2048; fix this program
[  946.159603][T19206] futex_wake_op: syz.3.3642 tries to shift op by -2048; fix this program
[  946.233288][T19204] 0x000000000001-0x000000020000 : ""
[  946.421445][T19204] ftl_cs: FTL header corrupt!
[  946.655121][T19216] ERROR: Out of memory at tomoyo_memory_ok.
[  946.977318][T19211] zswap: compressor  not available
[  955.280223][T19337] sp0: Synchronizing with TNC
[  956.724534][T19362] FAULT_INJECTION: forcing a failure.
[  956.724534][T19362] name failslab, interval 1, probability 0, space 0, times 0
[  956.739670][T19362] CPU: 1 UID: 0 PID: 19362 Comm: syz.1.3675 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  956.739733][T19362] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  956.739748][T19362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  956.739763][T19362] Call Trace:
[  956.739772][T19362]  <TASK>
[  956.739782][T19362]  dump_stack_lvl+0x100/0x190
[  956.739823][T19362]  should_fail_ex.cold+0x5/0xa
[  956.739869][T19362]  should_failslab+0xc2/0x120
[  956.739905][T19362]  ? handler_new_ref+0x1ab/0xc60
[  956.739936][T19362]  __kmalloc_noprof+0xf6/0x9c0
[  956.739972][T19362]  ? handler_new_ref+0x1ab/0xc60
[  956.740000][T19362]  ? handler_new_ref+0x82f/0xc60
[  956.740038][T19362]  handler_new_ref+0x1ab/0xc60
[  956.740083][T19362]  v4l2_ctrl_new+0xe67/0x2340
[  956.740133][T19362]  ? __pfx_v4l2_ctrl_new+0x10/0x10
[  956.740184][T19362]  v4l2_ctrl_new_std+0x1bb/0x290
[  956.740231][T19362]  ? __pfx_v4l2_ctrl_new_std+0x10/0x10
[  956.740268][T19362]  ? rcu_is_watching+0x12/0xc0
[  956.740294][T19362]  ? trace_kmalloc+0x83/0xb0
[  956.740329][T19362]  ? __kvmalloc_node_noprof+0x36a/0xac0
[  956.740364][T19362]  ? v4l2_ctrl_handler_init_class+0x201/0x350
[  956.740403][T19362]  ? media_request_object_init+0x100/0x180
[  956.740441][T19362]  vicodec_open+0x1b2/0xf70
[  956.740476][T19362]  ? kobject_get_unless_zero+0x156/0x200
[  956.740524][T19362]  v4l2_open+0x1d2/0x490
[  956.740561][T19362]  ? __pfx_v4l2_open+0x10/0x10
[  956.740594][T19362]  chrdev_open+0x234/0x6a0
[  956.740625][T19362]  ? __pfx_apparmor_file_open+0x10/0x10
[  956.740673][T19362]  ? __pfx_chrdev_open+0x10/0x10
[  956.740710][T19362]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  956.740752][T19362]  do_dentry_open+0x73e/0x1570
[  956.740784][T19362]  ? __pfx_chrdev_open+0x10/0x10
[  956.740819][T19362]  ? security_inode_permission+0xbf/0x250
[  956.740860][T19362]  vfs_open+0x82/0x3f0
[  956.740901][T19362]  path_openat+0x21dc/0x3120
[  956.740943][T19362]  ? __pfx_path_openat+0x10/0x10
[  956.740991][T19362]  do_filp_open+0x1f7/0x420
[  956.741026][T19362]  ? __pfx_do_filp_open+0x10/0x10
[  956.741082][T19362]  ? _raw_spin_unlock+0x28/0x50
[  956.741108][T19362]  ? alloc_fd+0x476/0x790
[  956.741151][T19362]  do_sys_openat2+0x12e/0x220
[  956.741192][T19362]  ? __pfx_do_sys_openat2+0x10/0x10
[  956.741237][T19362]  ? __fget_files+0x21f/0x3d0
[  956.741275][T19362]  __x64_sys_openat+0x12d/0x210
[  956.741318][T19362]  ? __pfx___x64_sys_openat+0x10/0x10
[  956.741359][T19362]  ? xfd_validate_state+0x129/0x190
[  956.741417][T19362]  do_syscall_64+0xc9/0xf80
[  956.741455][T19362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  956.741484][T19362] RIP: 0033:0x7f850399aeb9
[  956.741510][T19362] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  956.741536][T19362] RSP: 002b:00007f8501bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  956.741564][T19362] RAX: ffffffffffffffda RBX: 00007f8503c15fa0 RCX: 00007f850399aeb9
[  956.741582][T19362] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  956.741600][T19362] RBP: 00007f8503a08c1f R08: 0000000000000000 R09: 0000000000000000
[  956.741615][T19362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  956.741630][T19362] R13: 00007f8503c16038 R14: 00007f8503c15fa0 R15: 00007ffcdd2990f8
[  956.741679][T19362]  </TASK>
[  958.588936][T19396] futex_wake_op: syz.3.3682 tries to shift op by -2048; fix this program
[  958.628249][T19396] futex_wake_op: syz.3.3682 tries to shift op by -2048; fix this program
[  962.057803][T19458] futex_wake_op: syz.0.3695 tries to shift op by -2048; fix this program
[  962.071311][T19458] futex_wake_op: syz.0.3695 tries to shift op by -2048; fix this program
[  963.016949][T19470] futex_wake_op: syz.0.3698 tries to shift op by -2048; fix this program
[  963.056947][T19470] futex_wake_op: syz.0.3698 tries to shift op by -2048; fix this program
[  963.547516][T19465] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3697'.
[  963.595174][T19465] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  963.956421][T19465] batman_adv: batadv0: Removing interface: batadv_slave_1
[  964.348662][T19465] Process accounting paused
[  965.530497][T19504] Invalid ELF header magic: != ELF
[  970.586408][   T30] audit: type=1800 audit(4294967537.609:27): pid=19587 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3724" name="file0" dev="tmpfs" ino=4766 res=0 errno=0
[  974.011516][T19628] futex_wake_op: syz.2.3733 tries to shift op by -2048; fix this program
[  974.020594][T19628] futex_wake_op: syz.2.3733 tries to shift op by -2048; fix this program
[  974.081221][T19623] __vm_enough_memory: pid: 19623, comm: syz.0.3732, bytes: 8589938688 not enough memory for the allocation
[  975.129763][T19649] futex_wake_op: syz.2.3738 tries to shift op by -2048; fix this program
[  978.965866][T19698] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3750'.
[  984.897326][T19757] netlink: 25 bytes leftover after parsing attributes in process `syz.3.3762'.
[  990.684733][T19837] futex_wake_op: syz.1.3778 tries to shift op by -2048; fix this program
[  992.255329][T19868] futex_wake_op: syz.0.3784 tries to shift op by -2048; fix this program
[  993.472195][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  993.485368][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  993.506697][T19886] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  993.729625][T19898] futex_wake_op: syz.1.3790 tries to shift op by -2048; fix this program
[  994.706095][T19895] Process accounting resumed
[  995.146727][T16274] Bluetooth: hci1: command 0x0406 tx timeout
[ 1000.794356][T20041] futex_wake_op: syz.2.3818 tries to shift op by -2048; fix this program
[ 1000.804541][T20041] futex_wake_op: syz.2.3818 tries to shift op by -2048; fix this program
[ 1000.838777][T20041] 0x000000000001-0x000000020000 : ""
[ 1000.906175][T20041] ftl_cs: FTL header corrupt!
[ 1001.127684][T20048] ERROR: Out of memory at tomoyo_memory_ok.
[ 1001.507845][T20055] futex_wake_op: syz.3.3822 tries to shift op by -2048; fix this program
[ 1001.883098][T20068] futex_wake_op: syz.2.3824 tries to shift op by -2048; fix this program
[ 1002.262949][T20076] futex_wake_op: syz.0.3825 tries to shift op by -2048; fix this program
[ 1002.293146][T20076] futex_wake_op: syz.0.3825 tries to shift op by -2048; fix this program
[ 1003.367702][T20110] futex_wake_op: syz.1.3832 tries to shift op by -2048; fix this program
[ 1004.247983][T20131] futex_wake_op: syz.2.3837 tries to shift op by -2048; fix this program
[ 1004.317536][T20131] futex_wake_op: syz.2.3837 tries to shift op by -2048; fix this program
[ 1004.346815][T20133] 0x000000000001-0x000000020000 : ""
[ 1004.506493][T20133] ftl_cs: FTL header corrupt!
[ 1004.550170][T20136] ERROR: Out of memory at tomoyo_memory_ok.
[ 1005.018957][T20143] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21
[ 1005.347518][T20144] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22
[ 1005.399893][T20147] Invalid ELF header magic: != ELF
[ 1005.967023][T20168] futex_wake_op: syz.3.3845 tries to shift op by -2048; fix this program
[ 1005.977034][T20168] futex_wake_op: syz.3.3845 tries to shift op by -2048; fix this program
[ 1006.159537][T20175] futex_wake_op: syz.0.3846 tries to shift op by -2048; fix this program
[ 1010.761700][T20284] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3870'.
[ 1011.338274][T20293] futex_wake_op: syz.3.3873 tries to shift op by -2048; fix this program
[ 1011.347462][T20293] futex_wake_op: syz.3.3873 tries to shift op by -2048; fix this program
[ 1012.309214][T20316] zswap: compressor  not available
[ 1014.875619][T19952] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1016.454197][T20395] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3894'.
[ 1016.683017][T20402] futex_wake_op: syz.0.3895 tries to shift op by -2048; fix this program
[ 1016.717798][T20402] futex_wake_op: syz.0.3895 tries to shift op by -2048; fix this program
[ 1017.916552][T20429] futex_wake_op: syz.3.3901 tries to shift op by -2048; fix this program
[ 1017.938281][T20429] futex_wake_op: syz.3.3901 tries to shift op by -2048; fix this program
[ 1018.839707][T20438] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3903'.
[ 1032.168317][T20482] zswap: compressor  not available
[ 1032.176154][T20331] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1032.188504][T20331] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1032.204947][T20331] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1032.216048][T20331] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1032.227735][T20331] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1032.618793][T20486] chnl_net:caif_netlink_parms(): no params data found
[ 1032.750500][T20480] Process accounting paused
[ 1032.802703][T20499] futex_wake_op: syz.3.3915 tries to shift op by -2048; fix this program
[ 1032.813352][T20499] futex_wake_op: syz.3.3915 tries to shift op by -2048; fix this program
[ 1032.939140][T20486] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1032.962555][T20486] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1032.971599][T20486] bridge_slave_0: entered allmulticast mode
[ 1032.983891][T20486] bridge_slave_0: entered promiscuous mode
[ 1033.015913][T20486] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1033.028298][T20486] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1033.043219][T20486] bridge_slave_1: entered allmulticast mode
[ 1033.051878][T20486] bridge_slave_1: entered promiscuous mode
[ 1033.187930][T20486] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1033.223610][T20506] netlink: 'syz.2.3916': attribute type 1 has an invalid length.
[ 1033.224892][T20486] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1033.253545][T20506] netlink: 17 bytes leftover after parsing attributes in process `syz.2.3916'.
[ 1033.332516][T20486] team0: Port device team_slave_0 added
[ 1033.342951][T20486] team0: Port device team_slave_1 added
[ 1033.423072][T20486] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1033.438892][T20486] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1033.468131][T20486] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1033.492548][T20486] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1033.501131][T20486] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1033.604692][T20486] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1033.717801][T20486] hsr_slave_0: entered promiscuous mode
[ 1033.724741][T20486] hsr_slave_1: entered promiscuous mode
[ 1033.731329][T20486] debugfs: 'hsr0' already exists in 'hsr'
[ 1033.738640][T20486] Cannot create hsr debugfs directory
[ 1033.917118][T20486] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1033.932124][T20486] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1033.944048][T20486] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1033.961931][T20486] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1034.051785][T20486] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1034.136773][T20486] 8021q: adding VLAN 0 to HW filter on device team0
[ 1034.184951][T19934] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1034.193116][T19934] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1034.233364][T19950] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1034.240877][T19950] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1034.303436][T20331] Bluetooth: hci1: command tx timeout
[ 1034.492654][T20533] sctp: [Deprecated]: syz.2.3922 (pid 20533) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1034.492654][T20533] Use struct sctp_sack_info instead
[ 1034.940600][T20486] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1035.626301][T20486] veth0_vlan: entered promiscuous mode
[ 1035.849792][T20486] veth1_vlan: entered promiscuous mode
[ 1036.063484][T20486] veth0_macvtap: entered promiscuous mode
[ 1036.088927][T20486] veth1_macvtap: entered promiscuous mode
[ 1036.146326][T20486] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1036.189797][T20486] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1036.215890][T19946] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1036.231970][T19946] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1036.246062][T19946] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1036.258427][T19946] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1036.372745][T20331] Bluetooth: hci1: command tx timeout
[ 1036.432169][T19946] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1036.441166][T19946] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1036.515482][T19950] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1036.525123][T19950] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1038.432679][T20331] Bluetooth: hci1: command tx timeout
[ 1040.501211][T20331] Bluetooth: hci1: command tx timeout
[ 1040.887933][T20643] futex_wake_op: syz.3.3943 tries to shift op by -2048; fix this program
[ 1040.896695][T20643] futex_wake_op: syz.3.3943 tries to shift op by -2048; fix this program
[ 1044.724930][T20717] zswap: compressor  not available
[ 1045.346788][T20717] FAULT_INJECTION: forcing a failure.
[ 1045.346788][T20717] name failslab, interval 1, probability 0, space 0, times 0
[ 1045.409176][T20717] CPU: 1 UID: 0 PID: 20717 Comm: syz.4.3962 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1045.409243][T20717] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1045.409260][T20717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1045.409278][T20717] Call Trace:
[ 1045.409288][T20717]  <TASK>
[ 1045.409299][T20717]  dump_stack_lvl+0x100/0x190
[ 1045.409342][T20717]  should_fail_ex.cold+0x5/0xa
[ 1045.409399][T20717]  should_failslab+0xc2/0x120
[ 1045.409442][T20717]  __kmalloc_node_track_caller_noprof+0xf9/0x9d0
[ 1045.409483][T20717]  ? debugfs_create_symlink+0x29/0x220
[ 1045.409526][T20717]  ? kstrdup+0x51/0xe0
[ 1045.409558][T20717]  kstrdup+0x51/0xe0
[ 1045.409598][T20717]  debugfs_create_symlink+0x29/0x220
[ 1045.409636][T20717]  ref_tracker_dir_symlink+0x257/0x3b0
[ 1045.409685][T20717]  ? __pfx_ref_tracker_dir_symlink+0x10/0x10
[ 1045.409733][T20717]  ? __lock_acquire+0x4a5/0x2630
[ 1045.409799][T20717]  ? lockdep_hardirqs_on+0x78/0x100
[ 1045.409834][T20717]  ? crng_make_state+0x2b0/0x6c0
[ 1045.409874][T20717]  ? __pfx_net_ns_net_init+0x10/0x10
[ 1045.409920][T20717]  net_ns_net_init+0xd2/0x120
[ 1045.409966][T20717]  ops_init+0x1e2/0x5f0
[ 1045.410012][T20717]  setup_net+0x118/0x3a0
[ 1045.410039][T20717]  ? __pfx_setup_net+0x10/0x10
[ 1045.410081][T20717]  ? lockdep_init_map_type+0x5c/0x250
[ 1045.410121][T20717]  ? mutex_init_lockep+0x110/0x150
[ 1045.410167][T20717]  copy_net_ns+0x46f/0x7c0
[ 1045.410201][T20717]  create_new_namespaces+0x3ea/0xab0
[ 1045.410242][T20717]  unshare_nsproxy_namespaces+0xc3/0x1f0
[ 1045.410279][T20717]  ksys_unshare+0x455/0xab0
[ 1045.410322][T20717]  ? __pfx_ksys_unshare+0x10/0x10
[ 1045.410363][T20717]  ? xfd_validate_state+0x129/0x190
[ 1045.410428][T20717]  __x64_sys_unshare+0x31/0x40
[ 1045.410470][T20717]  do_syscall_64+0xc9/0xf80
[ 1045.410508][T20717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1045.410538][T20717] RIP: 0033:0x7f189ff9aeb9
[ 1045.410563][T20717] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1045.410591][T20717] RSP: 002b:00007f18a0d80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1045.410620][T20717] RAX: ffffffffffffffda RBX: 00007f18a0215fa0 RCX: 00007f189ff9aeb9
[ 1045.410638][T20717] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1045.410652][T20717] RBP: 00007f18a0008c1f R08: 0000000000000000 R09: 0000000000000000
[ 1045.410669][T20717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1045.410687][T20717] R13: 00007f18a0216038 R14: 00007f18a0215fa0 R15: 00007ffc7d1a09b8
[ 1045.410726][T20717]  </TASK>
[ 1046.735436][T20746] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3965'.
[ 1047.372632][T20757] futex_wake_op: syz.3.3967 tries to shift op by -2048; fix this program
[ 1047.381345][T20757] futex_wake_op: syz.3.3967 tries to shift op by -2048; fix this program
[ 1050.131314][T20811] sctp: [Deprecated]: syz.1.3977 (pid 20811) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1050.131314][T20811] Use struct sctp_sack_info instead
[ 1051.086333][T20331] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1052.943203][T20857] ptp ptp0: new virtual clock ptp1
[ 1052.993986][T20857] ptp ptp0: guarantee physical clock free running
[ 1053.105018][T20857] ptp ptp0: delete virtual clock ptp1
[ 1053.138484][T20857] ptp ptp0: only physical clock in use now
[ 1053.571371][T20868] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3990'.
[ 1054.592523][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.599140][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[ 1058.032284][T20331] Bluetooth: hci1: unexpected event 0x31 length: 19 > 6
[ 1058.429760][T20966] sctp: [Deprecated]: syz.3.4013 (pid 20966) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1058.429760][T20966] Use struct sctp_sack_info instead
[ 1058.467967][T20967] futex_wake_op: syz.1.4012 tries to shift op by -2048; fix this program
[ 1058.488260][T20967] futex_wake_op: syz.1.4012 tries to shift op by -2048; fix this program
[ 1060.741246][T19952] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1060.754788][T19952] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1060.764114][T19952] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1060.781816][T19952] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1060.789932][T19952] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1061.097892][T21011] chnl_net:caif_netlink_parms(): no params data found
[ 1061.306665][T21011] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1061.322728][T21011] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1061.341327][T21011] bridge_slave_0: entered allmulticast mode
[ 1061.369913][T21011] bridge_slave_0: entered promiscuous mode
[ 1061.390753][T21011] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1061.404353][T21011] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1061.419787][T21011] bridge_slave_1: entered allmulticast mode
[ 1061.440912][T21011] bridge_slave_1: entered promiscuous mode
[ 1061.619224][T21011] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1061.637510][T21011] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1061.688397][T21011] team0: Port device team_slave_0 added
[ 1061.902524][T21011] team0: Port device team_slave_1 added
[ 1062.123466][T21011] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1062.132048][T21011] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1062.177907][T21011] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1062.256187][T21011] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1062.299546][T21011] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1062.362685][T21011] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1062.651297][T21011] hsr_slave_0: entered promiscuous mode
[ 1062.658904][T21011] hsr_slave_1: entered promiscuous mode
[ 1062.665202][T21011] debugfs: 'hsr0' already exists in 'hsr'
[ 1062.671592][T21011] Cannot create hsr debugfs directory
[ 1062.877389][T19952] Bluetooth: hci4: command tx timeout
[ 1063.401947][T21011] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1063.455340][T21011] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1063.484287][T21011] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1063.499123][T21011] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1063.795991][T21011] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1063.919754][T21011] 8021q: adding VLAN 0 to HW filter on device team0
[ 1063.965706][T19950] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1063.972899][T19950] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1064.001137][T19950] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1064.008270][T19950] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1064.096059][T21011] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1064.696775][T21011] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1064.934455][T20331] Bluetooth: hci4: command tx timeout
[ 1066.011300][T21011] veth0_vlan: entered promiscuous mode
[ 1066.072849][T21011] veth1_vlan: entered promiscuous mode
[ 1066.158548][T21011] veth0_macvtap: entered promiscuous mode
[ 1066.221185][T21011] veth1_macvtap: entered promiscuous mode
[ 1066.286119][T21011] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1066.380905][T21011] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1066.435497][T20684] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1066.461224][T20684] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1066.476506][T20684] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1066.545130][T20684] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1066.876241][T20029] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1066.933340][T20029] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1066.996479][T20029] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1067.005013][T20331] Bluetooth: hci4: command tx timeout
[ 1067.016118][T20029] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1068.436519][T21160] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4050'.
[ 1069.093270][T20331] Bluetooth: hci4: command tx timeout
[ 1071.526388][T21207] netlink: 'syz.4.4060': attribute type 1 has an invalid length.
[ 1073.848259][T20331] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1074.128284][T20331] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[ 1074.196239][T21234] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1076.846811][T21281] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1076.892328][T21281] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1076.992364][   T30] audit: type=1800 audit(4294967644.552:28): pid=21287 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4077" name="lu_gp_id" dev="configfs" ino=327489 res=0 errno=0
[ 1077.025362][T21281] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1077.061887][T21281] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1077.102478][T21281] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1077.116752][T21281] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1077.132450][T21281] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1077.316185][T21293] usb usb3: usbfs: interface 0 claimed by hub while 'syz.5.4078' sets config #-1
[ 1077.420202][T21293] FAULT_INJECTION: forcing a failure.
[ 1077.420202][T21293] name failslab, interval 1, probability 0, space 0, times 0
[ 1077.498601][T21293] CPU: 0 UID: 0 PID: 21293 Comm: syz.5.4078 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1077.498639][T21293] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1077.498648][T21293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1077.498659][T21293] Call Trace:
[ 1077.498665][T21293]  <TASK>
[ 1077.498686][T21293]  dump_stack_lvl+0x100/0x190
[ 1077.498714][T21293]  should_fail_ex.cold+0x5/0xa
[ 1077.498740][T21293]  should_failslab+0xc2/0x120
[ 1077.498776][T21293]  __kmalloc_cache_noprof+0x80/0x810
[ 1077.498804][T21293]  ? key_user_lookup+0x16e/0x5a0
[ 1077.498845][T21293]  ? key_user_lookup+0x1a3/0x5a0
[ 1077.498886][T21293]  ? key_user_lookup+0x1a3/0x5a0
[ 1077.498908][T21293]  key_user_lookup+0x1a3/0x5a0
[ 1077.498931][T21293]  ? __pfx_key_user_lookup+0x10/0x10
[ 1077.498954][T21293]  ? keyring_get_key_chunk+0x225/0x270
[ 1077.498970][T21293]  ? assoc_array_walk+0x1e1/0x5b0
[ 1077.498988][T21293]  key_alloc+0x18b/0x1310
[ 1077.499017][T21293]  ? __pfx_key_alloc+0x10/0x10
[ 1077.499045][T21293]  keyring_alloc+0x44/0xc0
[ 1077.499063][T21293]  keyctl_get_persistent+0x6c7/0x8b0
[ 1077.499081][T21293]  ? __pfx_keyctl_get_persistent+0x10/0x10
[ 1077.499099][T21293]  ? __x64_sys_futex+0x34f/0x4d0
[ 1077.499119][T21293]  ? __x64_sys_futex+0x358/0x4d0
[ 1077.499142][T21293]  ? xfd_validate_state+0x129/0x190
[ 1077.499170][T21293]  __do_sys_keyctl+0x3b2/0x5a0
[ 1077.499191][T21293]  do_syscall_64+0xc9/0xf80
[ 1077.499211][T21293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1077.499227][T21293] RIP: 0033:0x7f711639aeb9
[ 1077.499242][T21293] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1077.499257][T21293] RSP: 002b:00007f711733e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 1077.499272][T21293] RAX: ffffffffffffffda RBX: 00007f7116615fa0 RCX: 00007f711639aeb9
[ 1077.499283][T21293] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016
[ 1077.499292][T21293] RBP: 00007f7116408c1f R08: 000000000000000c R09: 0000000000000000
[ 1077.499301][T21293] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000
[ 1077.499310][T21293] R13: 00007f7116616038 R14: 00007f7116615fa0 R15: 00007ffe1be460b8
[ 1077.499330][T21293]  </TASK>
[ 1078.865762][T19937] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1079.107008][T19937] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1080.930808][T19937] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1081.170978][T19937] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1083.007522][T19937] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1083.243339][T19937] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1083.438292][T20331] Bluetooth: hci4: unexpected event 0x31 length: 19 > 6
[ 1084.265856][T21410] FAULT_INJECTION: forcing a failure.
[ 1084.265856][T21410] name failslab, interval 1, probability 0, space 0, times 0
[ 1084.305498][T21410] CPU: 1 UID: 0 PID: 21410 Comm: syz.4.4102 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1084.305576][T21410] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1084.305593][T21410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1084.305610][T21410] Call Trace:
[ 1084.305620][T21410]  <TASK>
[ 1084.305632][T21410]  dump_stack_lvl+0x100/0x190
[ 1084.305672][T21410]  should_fail_ex.cold+0x5/0xa
[ 1084.305723][T21410]  should_failslab+0xc2/0x120
[ 1084.305763][T21410]  ? __register_sysctl_table+0xac/0x1650
[ 1084.305806][T21410]  __kmalloc_noprof+0xf6/0x9c0
[ 1084.305848][T21410]  ? __register_sysctl_table+0xac/0x1650
[ 1084.305891][T21410]  __register_sysctl_table+0xac/0x1650
[ 1084.305935][T21410]  ? rcu_is_watching+0x12/0xc0
[ 1084.305969][T21410]  ? __pfx___register_sysctl_table+0x10/0x10
[ 1084.306012][T21410]  ? setup_ipc_sysctls+0x5e/0x300
[ 1084.306049][T21410]  ? __asan_memcpy+0x3c/0x60
[ 1084.306085][T21410]  setup_ipc_sysctls+0x1aa/0x300
[ 1084.306120][T21410]  copy_ipcs+0x57a/0x7e0
[ 1084.306161][T21410]  create_new_namespaces+0x20a/0xab0
[ 1084.306195][T21410]  ? security_capable+0x80/0x260
[ 1084.306234][T21410]  unshare_nsproxy_namespaces+0xc3/0x1f0
[ 1084.306271][T21410]  ksys_unshare+0x455/0xab0
[ 1084.306315][T21410]  ? __pfx_ksys_unshare+0x10/0x10
[ 1084.306354][T21410]  ? xfd_validate_state+0x129/0x190
[ 1084.306409][T21410]  __x64_sys_unshare+0x31/0x40
[ 1084.306449][T21410]  do_syscall_64+0xc9/0xf80
[ 1084.306488][T21410]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1084.306526][T21410] RIP: 0033:0x7f189ff9aeb9
[ 1084.306551][T21410] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1084.306582][T21410] RSP: 002b:00007f18a0d80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1084.306611][T21410] RAX: ffffffffffffffda RBX: 00007f18a0215fa0 RCX: 00007f189ff9aeb9
[ 1084.306631][T21410] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000
[ 1084.306650][T21410] RBP: 00007f18a0008c1f R08: 0000000000000000 R09: 0000000000000000
[ 1084.306669][T21410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1084.306688][T21410] R13: 00007f18a0216038 R14: 00007f18a0215fa0 R15: 00007ffc7d1a09b8
[ 1084.306726][T21410]  </TASK>
[ 1084.546925][T21410] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4102'.
[ 1085.079130][T20331] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1099.215310][T19937] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1099.229324][T19937] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1099.240110][T19937] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1099.318268][T19937] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1099.334989][T19937] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1099.811130][T21457] chnl_net:caif_netlink_parms(): no params data found
[ 1100.072341][T21457] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1100.079578][T21457] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1100.097356][T21457] bridge_slave_0: entered allmulticast mode
[ 1100.106604][T21457] bridge_slave_0: entered promiscuous mode
[ 1100.137412][T21457] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1100.207439][T21457] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1100.217804][T21457] bridge_slave_1: entered allmulticast mode
[ 1100.238304][T21457] bridge_slave_1: entered promiscuous mode
[ 1100.431695][T21457] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1100.463559][T21457] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1100.613804][T21457] team0: Port device team_slave_0 added
[ 1100.686671][T21457] team0: Port device team_slave_1 added
[ 1100.895488][T21457] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1100.902585][T21457] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1100.932671][T21457] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1100.950981][T21457] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1100.961428][T21457] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1101.000348][T21457] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1101.191363][T21457] hsr_slave_0: entered promiscuous mode
[ 1101.204225][T21457] hsr_slave_1: entered promiscuous mode
[ 1101.215239][T21457] debugfs: 'hsr0' already exists in 'hsr'
[ 1101.221129][T21457] Cannot create hsr debugfs directory
[ 1101.384391][T19937] Bluetooth: hci5: command tx timeout
[ 1101.998640][T21457] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1102.050469][T21457] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1102.077542][T21457] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1102.112638][T21457] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1102.373839][T21457] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1102.412276][T21457] 8021q: adding VLAN 0 to HW filter on device team0
[ 1102.447275][T19950] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1102.454691][T19950] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1102.496637][T19950] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1102.503831][T19950] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1102.972310][T21457] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1103.454421][T19937] Bluetooth: hci5: command tx timeout
[ 1103.750112][T21457] veth0_vlan: entered promiscuous mode
[ 1103.774980][T21457] veth1_vlan: entered promiscuous mode
[ 1103.870823][T21457] veth0_macvtap: entered promiscuous mode
[ 1103.925197][T21457] veth1_macvtap: entered promiscuous mode
[ 1104.046763][T21457] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1104.136255][T21457] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1104.203561][T19950] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1104.218677][T19950] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1104.266750][T19950] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1104.324245][T19950] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1104.548586][T19950] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1104.556780][T19950] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1104.687979][T19955] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1104.696014][T19955] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1105.527132][T19937] Bluetooth: hci5: command tx timeout
[ 1107.631430][T19937] Bluetooth: hci5: command tx timeout
[ 1109.564351][T21659] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1109.570644][T21659] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1109.580998][T21659] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1109.592573][T21659] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1109.819965][T21659] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1110.857663][T19937] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[ 1111.580231][T19937] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1111.586320][T20331] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1111.593215][T20331] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1113.641342][T21704] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1114.187754][T21756] netlink: zone id is out of range
[ 1114.223823][T21756] netlink: zone id is out of range
[ 1114.300372][T21756] netlink: set zone limit has 8 unknown bytes
[ 1115.716789][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.723366][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[ 1115.729990][T21704] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1116.778243][T21814] netlink: zone id is out of range
[ 1116.788273][T21814] netlink: zone id is out of range
[ 1116.908790][T21814] netlink: set zone limit has 8 unknown bytes
[ 1119.219064][T21861] netlink: 334 bytes leftover after parsing attributes in process `syz.6.4195'.
[ 1121.414172][T21897] netlink: 338 bytes leftover after parsing attributes in process `syz.6.4204'.
[ 1121.508667][T21897] veth1_macvtap: left promiscuous mode
[ 1121.530992][T21897] macsec0: entered allmulticast mode
[ 1123.767268][T21930] bond0: option all_slaves_active: invalid value ()
[ 1123.957938][T21933] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1123.981927][T21933] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1123.989940][T21933] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1125.976544][T19952] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1126.060088][T19952] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1126.076113][T21704] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1126.938960][T21970] FAULT_INJECTION: forcing a failure.
[ 1126.938960][T21970] name failslab, interval 1, probability 0, space 0, times 0
[ 1126.953666][T21970] CPU: 0 UID: 0 PID: 21970 Comm: syz.6.4220 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1126.953730][T21970] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1126.953748][T21970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1126.953766][T21970] Call Trace:
[ 1126.953775][T21970]  <TASK>
[ 1126.953787][T21970]  dump_stack_lvl+0x100/0x190
[ 1126.953827][T21970]  should_fail_ex.cold+0x5/0xa
[ 1126.953875][T21970]  should_failslab+0xc2/0x120
[ 1126.953915][T21970]  ? __alloc_workqueue+0x148/0x1880
[ 1126.953951][T21970]  __kmalloc_noprof+0xf6/0x9c0
[ 1126.953981][T21970]  ? vsnprintf+0x4ee/0x1240
[ 1126.954019][T21970]  ? __alloc_workqueue+0x148/0x1880
[ 1126.954054][T21970]  __alloc_workqueue+0x148/0x1880
[ 1126.954090][T21970]  ? __pfx_vsnprintf+0x10/0x10
[ 1126.954119][T21970]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1126.954149][T21970]  ? lockdep_hardirqs_on+0x78/0x100
[ 1126.954183][T21970]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1126.954217][T21970]  alloc_workqueue_noprof+0xd2/0x200
[ 1126.954254][T21970]  ? __pfx_alloc_workqueue_noprof+0x10/0x10
[ 1126.954301][T21970]  ? __pfx___debug_object_init+0x10/0x10
[ 1126.954344][T21970]  nci_register_device+0x394/0xb80
[ 1126.954383][T21970]  ? __pfx_nci_register_device+0x10/0x10
[ 1126.954418][T21970]  ? lockdep_init_map_type+0x5c/0x250
[ 1126.954466][T21970]  virtual_ncidev_open+0x141/0x220
[ 1126.954511][T21970]  ? __pfx_virtual_ncidev_open+0x10/0x10
[ 1126.954554][T21970]  misc_open+0x26d/0x450
[ 1126.954590][T21970]  ? __pfx_misc_open+0x10/0x10
[ 1126.954622][T21970]  chrdev_open+0x234/0x6a0
[ 1126.954657][T21970]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1126.954692][T21970]  ? __pfx_chrdev_open+0x10/0x10
[ 1126.954730][T21970]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1126.954775][T21970]  do_dentry_open+0x73e/0x1570
[ 1126.954811][T21970]  ? __pfx_chrdev_open+0x10/0x10
[ 1126.954846][T21970]  ? security_inode_permission+0xbf/0x250
[ 1126.954896][T21970]  vfs_open+0x82/0x3f0
[ 1126.954939][T21970]  path_openat+0x21dc/0x3120
[ 1126.954985][T21970]  ? __pfx_path_openat+0x10/0x10
[ 1126.955032][T21970]  do_filp_open+0x1f7/0x420
[ 1126.955069][T21970]  ? __pfx_do_filp_open+0x10/0x10
[ 1126.955127][T21970]  ? _raw_spin_unlock+0x28/0x50
[ 1126.955155][T21970]  ? alloc_fd+0x476/0x790
[ 1126.955199][T21970]  do_sys_openat2+0x12e/0x220
[ 1126.955242][T21970]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1126.955287][T21970]  ? __fput+0x68a/0xb40
[ 1126.955333][T21970]  __x64_sys_openat+0x12d/0x210
[ 1126.955385][T21970]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1126.955428][T21970]  ? xfd_validate_state+0x129/0x190
[ 1126.955487][T21970]  do_syscall_64+0xc9/0xf80
[ 1126.955525][T21970]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1126.955554][T21970] RIP: 0033:0x7f56b639aeb9
[ 1126.955578][T21970] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1126.955607][T21970] RSP: 002b:00007f56b7333028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1126.955635][T21970] RAX: ffffffffffffffda RBX: 00007f56b6615fa0 RCX: 00007f56b639aeb9
[ 1126.955656][T21970] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c
[ 1126.955674][T21970] RBP: 00007f56b6408c1f R08: 0000000000000000 R09: 0000000000000000
[ 1126.955691][T21970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1126.955709][T21970] R13: 00007f56b6616038 R14: 00007f56b6615fa0 R15: 00007ffc98577898
[ 1126.955746][T21970]  </TASK>
[ 1127.915843][T21991] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4225'.
[ 1127.938845][T21991] netlink: 'syz.6.4225': attribute type 1 has an invalid length.
[ 1127.956138][T21991] netlink: 'syz.6.4225': attribute type 6 has an invalid length.
[ 1128.575494][T22003] netlink: 504 bytes leftover after parsing attributes in process `syz.4.4229'.
[ 1129.313414][T21996] Process accounting resumed
[ 1139.904242][   T31] INFO: task kworker/u8:0:12 blocked for more than 143 seconds.
[ 1139.911943][   T31]       Tainted: G     U  W    L XTNJ syzkaller #0
[ 1139.918718][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1139.927620][   T31] task:kworker/u8:0    state:D stack:23464 pid:12    tgid:12    ppid:2      task_flags:0x4208060 flags:0x00080000
[ 1139.939747][   T31] Workqueue: netns cleanup_net
[ 1139.944634][   T31] Call Trace:
[ 1139.947936][   T31]  <TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1139.950880][   T31]  ? __schedule+0xf65/0x5e10
[ 1139.955557][   T31]  __schedule+0xfe4/0x5e10
[ 1139.961266][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1139.966441][   T31]  ? __pfx___schedule+0x10/0x10
[ 1139.971321][   T31]  ? find_held_lock+0x2b/0x80
[ 1139.976141][   T31]  ? schedule+0x2bf/0x390
[ 1139.980512][   T31]  schedule+0xdd/0x390
[ 1139.985751][   T31]  schedule_timeout+0x1b2/0x280
[ 1139.990662][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[ 1139.996385][   T31]  ? mark_held_locks+0x40/0x70
[ 1140.001364][   T31]  __wait_for_common+0x2e7/0x4c0
[ 1140.006923][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[ 1140.012621][   T31]  ? __pfx___wait_for_common+0x10/0x10
[ 1140.018591][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1140.024308][   T31]  ? flush_workqueue_prep_pwqs+0x2e9/0x510
[ 1140.030179][   T31]  __flush_workqueue+0x3f7/0x1200
[ 1140.035764][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1140.040754][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1140.046241][   T31]  ? __pfx___flush_workqueue+0x10/0x10
[ 1140.051923][   T31]  ? reacquire_held_locks+0xce/0x1e0
[ 1140.057757][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[ 1140.064132][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[ 1140.069732][   T31]  rds_tcp_listen_stop+0x104/0x160
[ 1140.075332][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[ 1140.080752][   T31]  rds_tcp_exit_net+0xcb/0x810
[ 1140.085899][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[ 1140.091316][   T31]  ? __pfx___might_resched+0x10/0x10
[ 1140.098281][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[ 1140.104169][   T31]  ops_undo_list+0x2ee/0xab0
[ 1140.108821][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[ 1140.114466][   T31]  ? cleanup_net+0x345/0x830
[ 1140.119118][   T31]  ? idr_destroy+0x62/0x2e0
[ 1140.124129][   T31]  cleanup_net+0x419/0x830
[ 1140.128591][   T31]  ? __pfx_cleanup_net+0x10/0x10
[ 1140.133997][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1140.138798][   T31]  process_one_work+0x9c2/0x1840
[ 1140.144772][   T31]  ? __pfx_process_one_work+0x10/0x10
[ 1140.150219][   T31]  ? assign_work+0x19c/0x250
[ 1140.155327][   T31]  worker_thread+0x5da/0xe40
[ 1140.159983][   T31]  ? kthread+0x17d/0x730
[ 1140.164623][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1140.169778][   T31]  kthread+0x3b3/0x730
[ 1140.174379][   T31]  ? __pfx_kthread+0x10/0x10
[ 1140.179012][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1140.184202][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1140.188913][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1140.194150][   T31]  ? __pfx_kthread+0x10/0x10
[ 1140.198789][   T31]  ret_from_fork+0x754/0xaf0
[ 1140.204081][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1140.209260][   T31]  ? __switch_to+0x7b9/0x10c0
[ 1140.215797][   T31]  ? __pfx_kthread+0x10/0x10
[ 1140.220450][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1140.225762][   T31]  </TASK>
[ 1140.229145][   T31] 
[ 1140.229145][   T31] Showing all locks held in the system:
[ 1140.237563][   T31] 3 locks held by kworker/u8:0/12:
[ 1140.243138][   T31]  #0: ffff88801c29f148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x11ae/0x1840
[ 1140.254044][   T31]  #1: ffffc90000117c98 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x927/0x1840
[ 1140.264531][   T31]  #2: ffffffff903dcef0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xab/0x830
[ 1140.274277][   T31] 1 lock held by khungtaskd/31:
[ 1140.279151][   T31]  #0: ffffffff8e5e3120 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[ 1140.289593][   T31] 2 locks held by syz-executor/5813:
[ 1140.295270][   T31] 2 locks held by getty/17391:
[ 1140.300052][   T31]  #0: ffff888031ff20a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1140.311089][   T31]  #1: ffffc900030822f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x1500
[ 1140.321736][   T31] 1 lock held by syz.0.3895/20400:
[ 1140.326871][   T31]  #0: ffffffff903dcef0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[ 1140.338153][   T31] 1 lock held by syz.2.3964/20734:
[ 1140.343640][   T31]  #0: ffffffff903dcef0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[ 1140.353480][   T31] 1 lock held by syz.5.4099/21412:
[ 1140.358626][   T31]  #0: ffffffff903dcef0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[ 1140.368625][   T31] 1 lock held by syz.4.4231/22012:
[ 1140.374175][   T31]  #0: ffffffff903dcef0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[ 1140.389636][   T31] 1 lock held by syz.6.4234/22022:
[ 1140.395123][   T31]  #0: ffffffff903dcef0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[ 1140.441216][   T31] 2 locks held by dhcpcd/22057:
[ 1140.446116][   T31]  #0: ffff8880913f6260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf50
[ 1140.510762][   T31]  #1: ffffffff8e5ef8f8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x27f/0x3c0
[ 1140.540769][   T31] 
[ 1140.543146][   T31] =============================================
[ 1140.543146][   T31] 
[ 1140.552618][   T31] NMI backtrace for cpu 1
[ 1140.552642][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1140.552696][   T31] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1140.552709][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1140.552724][   T31] Call Trace:
[ 1140.552733][   T31]  <TASK>
[ 1140.552743][   T31]  dump_stack_lvl+0x100/0x190
[ 1140.552782][   T31]  nmi_cpu_backtrace.cold+0x12d/0x151
[ 1140.552827][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1140.552872][   T31]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[ 1140.552918][   T31]  sys_info+0x141/0x190
[ 1140.552953][   T31]  watchdog+0xcc3/0xfe0
[ 1140.552992][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1140.553022][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1140.553054][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1140.553085][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1140.553111][   T31]  kthread+0x3b3/0x730
[ 1140.553151][   T31]  ? __pfx_kthread+0x10/0x10
[ 1140.553185][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1140.553211][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1140.553235][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1140.553263][   T31]  ? __pfx_kthread+0x10/0x10
[ 1140.553301][   T31]  ret_from_fork+0x754/0xaf0
[ 1140.553326][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1140.553355][   T31]  ? __switch_to+0x7b9/0x10c0
[ 1140.553390][   T31]  ? __pfx_kthread+0x10/0x10
[ 1140.553430][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1140.553486][   T31]  </TASK>
[ 1140.553496][   T31] Sending NMI from CPU 1 to CPUs 0:
[ 1140.705236][    C0] NMI backtrace for cpu 0
[ 1140.705261][    C0] CPU: 0 UID: 0 PID: 20486 Comm: syz-executor Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1140.705313][    C0] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1140.705326][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1140.705341][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0xb/0x70
[ 1140.705375][    C0] Code: 5d 00 be 03 00 00 00 5b e9 f2 a8 de 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 65 8b 05 a5 85 dd 11 <48> 8b 34 24 65 48 8b 15 81 85 dd 11 a9 00 01 ff 00 74 1b f6 c4 01
[ 1140.705398][    C0] RSP: 0018:ffffc90003f4f5c8 EFLAGS: 00000246
[ 1140.705418][    C0] RAX: 0000000080000001 RBX: ffffea0001baaec0 RCX: ffffffff8253c1fc
[ 1140.705436][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888028719e80
[ 1140.705451][    C0] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[ 1140.705466][    C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001
[ 1140.705481][    C0] R13: ffffea0001baaec0 R14: ffff88807b693d60 R15: 840000006eabb805
[ 1140.705498][    C0] FS:  0000000000000000(0000) GS:ffff8881245e3000(0000) knlGS:0000000000000000
[ 1140.705521][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1140.705538][    C0] CR2: 000056554c8e1ee8 CR3: 0000000012784000 CR4: 00000000003526f0
[ 1140.705554][    C0] Call Trace:
[ 1140.705562][    C0]  <TASK>
[ 1140.705570][    C0]  unmap_page_range+0x1c5a/0x43e0
[ 1140.705622][    C0]  ? __pfx_unmap_page_range+0x10/0x10
[ 1140.705658][    C0]  ? mas_next_slot+0x1003/0x18b0
[ 1140.705692][    C0]  ? uprobe_munmap+0x9e/0x600
[ 1140.705726][    C0]  unmap_single_vma+0x153/0x240
[ 1140.705762][    C0]  unmap_vmas+0x218/0x470
[ 1140.705799][    C0]  ? __pfx_unmap_vmas+0x10/0x10
[ 1140.705834][    C0]  ? mas_next_slot+0x1003/0x18b0
[ 1140.705874][    C0]  exit_mmap+0x181/0xae0
[ 1140.705913][    C0]  ? __pfx_exit_mmap+0x10/0x10
[ 1140.705953][    C0]  ? __lock_acquire+0x4a5/0x2630
[ 1140.705996][    C0]  ? arch_uprobe_clear_state+0x107/0x150
[ 1140.706026][    C0]  __mmput+0x12a/0x410
[ 1140.706060][    C0]  mmput+0x67/0x80
[ 1140.706088][    C0]  do_exit+0x78a/0x2a30
[ 1140.706121][    C0]  ? _raw_read_unlock+0x28/0x50
[ 1140.706149][    C0]  ? __pfx_do_exit+0x10/0x10
[ 1140.706183][    C0]  ? do_raw_spin_lock+0x128/0x260
[ 1140.706218][    C0]  ? find_held_lock+0x2b/0x80
[ 1140.706241][    C0]  ? get_signal+0x7e0/0x21e0
[ 1140.706271][    C0]  do_group_exit+0xd5/0x2a0
[ 1140.706307][    C0]  get_signal+0x1ec7/0x21e0
[ 1140.706338][    C0]  ? __pfx_child_wait_callback+0x10/0x10
[ 1140.706375][    C0]  ? __pfx_get_signal+0x10/0x10
[ 1140.706408][    C0]  arch_do_signal_or_restart+0x91/0x770
[ 1140.706444][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1140.706482][    C0]  ? __do_sys_rt_sigreturn+0x1da/0x2c0
[ 1140.706519][    C0]  exit_to_user_mode_loop+0x86/0x4b0
[ 1140.706554][    C0]  ? rcu_is_watching+0x12/0xc0
[ 1140.706589][    C0]  do_syscall_64+0x4ea/0xf80
[ 1140.706620][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1140.706645][    C0] RIP: 0033:0x7f189ff5b78e
[ 1140.706663][    C0] Code: Unable to access opcode bytes at 0x7f189ff5b764.
[ 1140.706674][    C0] RSP: 002b:00007ffc7d1a0cb8 EFLAGS: 00000246 ORIG_RAX: 000000000000003d
[ 1140.706696][    C0] RAX: fffffffffffffe00 RBX: 000055558df91500 RCX: 00007f189ff5b78e
[ 1140.706713][    C0] RDX: 0000000040000000 RSI: 00007ffc7d1a0d5c RDI: ffffffffffffffff
[ 1140.706729][    C0] RBP: 00007ffc7d1a0d5c R08: 0000000000000000 R09: 0000000000000000
[ 1140.706745][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000004a
[ 1140.706759][    C0] R13: 000055558dfa49f0 R14: 00000000001152e2 R15: 00007ffc7d1a0db0
[ 1140.706785][    C0]  </TASK>
[ 1141.153547][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1141.160455][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1141.171181][   T31] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1141.181259][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1141.191335][   T31] Call Trace:
[ 1141.194631][   T31]  <TASK>
[ 1141.197574][   T31]  dump_stack_lvl+0x100/0x190
[ 1141.202283][   T31]  vpanic+0x20d/0x630
[ 1141.206294][   T31]  panic+0xd1/0xd1
[ 1141.210043][   T31]  ? __pfx_panic+0x10/0x10
[ 1141.214487][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[ 1141.220700][   T31]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[ 1141.226994][   T31]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[ 1141.233185][   T31]  ? watchdog.cold+0x198/0x1ca
[ 1141.237983][   T31]  ? watchdog+0xcd3/0xfe0
[ 1141.242346][   T31]  watchdog.cold+0x1a9/0x1ca
[ 1141.247072][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1141.251774][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1141.256913][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1141.261618][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1141.266329][   T31]  kthread+0x3b3/0x730
[ 1141.270433][   T31]  ? __pfx_kthread+0x10/0x10
[ 1141.275060][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1141.279763][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1141.284653][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1141.289544][   T31]  ? __pfx_kthread+0x10/0x10
[ 1141.294171][   T31]  ret_from_fork+0x754/0xaf0
[ 1141.298794][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1141.303932][   T31]  ? __switch_to+0x7b9/0x10c0
[ 1141.308642][   T31]  ? __pfx_kthread+0x10/0x10
[ 1141.313272][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1141.318093][   T31]  </TASK>
[ 1141.321506][   T31] Kernel Offset: disabled
[ 1141.325830][   T31] Rebooting in 86400 seconds..