last executing test programs:

16m15.610560464s ago: executing program 0 (id=516):
r0 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000040c0)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x100, 0x0)
preadv$auto(r0, &(0x7f0000004480)={0x0, 0xc}, 0x4, 0xb72, 0xfffffffffffffff7)
capset$auto(0xfffffffffffffffe, 0xfffffffffffffffc)
readv$auto(0x3, &(0x7f0000000280)={0x0, 0xf7}, 0x87)

16m15.232048802s ago: executing program 0 (id=519):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/auth.rpcsec.init/channel\x00', 0xaa102, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x0, 0x0)
ioctl$auto_BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000000c0)='P')
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x1, 0x100)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
r2 = openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/comm\x00', 0x101100, 0x0)
read$auto_proc_pid_set_comm_operations_base(r2, &(0x7f0000000300)=""/154, 0x9a)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, &(0x7f00000003c0))
r3 = syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x6, 0x4, 0x4000000000df, 0x15, 0x401, 0x300000000002)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
rt_tgsigqueueinfo$auto(r3, 0x0, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xe, 0x5, @_sigchld={0x0, 0x0, 0x401, 0x5, 0x3}}})
mmap$auto(0x0, 0x2000d, 0x4080000200df, 0xeb1, 0x404, 0x8000)
getsockopt$auto(0xffffffffffffffff, 0x107, 0xc, 0x0, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ')
write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000000)="47f0c01a8364e3173f3c11b1022ae7e7f23bd8b6f02125e0efc3534efe780a", 0x1f)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x801, 0x106)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55)
ioctl$auto(0x3, 0x800005411, 0x38)

16m14.211924095s ago: executing program 0 (id=522):
mmap$auto(0x2000000000000000, 0x2000a, 0x10000000000df, 0x110, 0x401, 0x7ffc)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x8000, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f682, 0x0)
socket(0x1f, 0x1, 0x10004)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/block/nbd6/hctx0/tags_bitmap\x00', 0x60000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x0, 0x0)
socket(0x1d, 0x1, 0x100002)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0)
socket(0xa, 0x1, 0x84)
socket(0x2, 0x1, 0x0)
openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/trace_marker\x00', 0x0, 0x0)
socket(0x29, 0x2, 0x80)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0xfffffffc, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff5001900"}, 0x55)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x1f, 0xffff0000)

16m13.322527408s ago: executing program 0 (id=525):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x617101, 0x0)
ioctl$auto(0x3, 0x80106f53, r0)
write$auto(r0, &(0x7f0000000080)='/dev/tty12\x00', 0x8)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
read$auto(0x3, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x25, 0x5, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x8000000000000000, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
set_tid_address$auto(0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000000000420009, 0x2, 0x14, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0xb)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f0, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
select$auto(0xe, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x7})
write$auto_console_fops_tty_io(r1, &(0x7f0000000000)="c80d1b5d399b50", 0x7)

16m10.458175697s ago: executing program 0 (id=535):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd4\x00', 0x1a9382, 0x0)
ioctl$auto(0x3, 0x1260, 0x7fffffffffffffff)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = io_uring_setup$auto(0x2, 0x0)
tkill$auto(0x1, 0x7)
close_range$auto(r0, r0, 0x0)
ioctl$auto_TIOCMGET2(r0, 0x5415, &(0x7f0000000000)="0f7da03ff18ec1f81a0bff1202d3ff8c2592b53fb2acd7e9898ca6ed9a6c85613b788b60afec00fd843a829d8b17e6b933eaf1d669585f219e46fb901b962a73bfd7e83bb5e3b779dbfe5bdadd7ef19a50654ea77d4c485994e65fc8680e7752c10b44a599a924f10e90c39caa6a8bfc3966c4")
sysfs$auto(0x2, 0xd, 0x0)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0)

16m7.650457743s ago: executing program 0 (id=543):
mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x88)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x6a)
socket(0xa, 0x2, 0x88)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@isdn={0x22, 0xd, 0x4, 0x5, 0x9}, 0x55)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000180), 0xffffffffffffffff)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000)

16m6.880733771s ago: executing program 32 (id=543):
mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x88)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x6a)
socket(0xa, 0x2, 0x88)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@isdn={0x22, 0xd, 0x4, 0x5, 0x9}, 0x55)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000180), 0xffffffffffffffff)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000)

2m38.121850188s ago: executing program 2 (id=3161):
r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0)
ioctl$auto_SNDCTL_DSP_GETTRIGGER(r3, 0x80045010, &(0x7f0000004440))
ioctl$auto_VHOST_SET_LOG_FD2(r0, 0x4004af07, &(0x7f00000001c0)=<r4=>r0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r4, 0x8000)
mmap$auto(0x0, 0x20005, 0xdf, 0x12, r1, 0x4)
r5 = open_by_handle_at$auto(r2, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d)
setsockopt$auto(r5, 0x1, 0x1021, 0x0, 0xd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
geteuid()
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001a80)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="fa2b4df06cbf359174a8ec040022c1efc2c4dd3171faedb75eb3bd69381029f46736ff6dc81aae4795d52ed9907fbfcc977c33f42a2e79f0203dc9a89c26710bfd1cd629dd4c3692beb2f92781317a3ef057b2c52ba097d484b79a64ac5374c214085522680ca4c7"], 0x14}, 0x1, 0x0, 0x0, 0x4040840}, 0x200000c0)
mmap$auto(0x100000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001b00)=ANY=[@ANYBLOB="20010000", @ANYRES16=r7, @ANYBLOB="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"], 0x120}, 0x1, 0x68, 0x0, 0x24000000}, 0x140)
sendmsg$auto_NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x18, r7, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_ASSOC_SPP_AMSDU={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000080}, 0x8002)
sendmsg$auto_NL80211_CMD_GET_KEY(r4, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRESDEC=r3, @ANYRESOCT=r6], 0x1c}, 0x1, 0x0, 0x0, 0x21}, 0x51)
read$auto(r6, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)
socket(0x2b, 0x1, 0x0)
read$auto_ext4_dir_operations_ext4(r2, &(0x7f00000003c0)=""/6, 0x6)

2m36.821751046s ago: executing program 2 (id=3164):
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/filter\x00', 0x1214c2, 0x0)
r0 = epoll_create$auto(0x4)
socket(0x2, 0x1, 0x106)
getsockopt$auto(r0, 0xfffffff4, 0x100004, 0xfffffffffffffffe, 0xfffffffffffffffd)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdc, 0xeb5, 0x401, 0x41)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000180)=""/68, 0x44)
syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r2)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r2, 0x0, 0x20000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x4, 0xd, 0x1, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0xd, 0xd, 0x4]}, 0x0)
ioctl$auto(r2, 0x57, r1)
getgid()
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = getpid()
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video17\x00', 0x80800, 0x0)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0)
read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f0000000000)=""/194, 0xc2)
select$auto(0x5, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x3, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0xf, 0xa657, 0x202, 0xd3, 0x1]}, 0x0, 0x0, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
readv$auto(0x3, &(0x7f0000000280)={0x0, 0x9}, 0xc)

2m36.388861537s ago: executing program 4 (id=3168):
r0 = openat$auto_fops_atomic_t_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/fail_io_timeout/space\x00', 0x101002, 0x0)
mmap$auto(0x1, 0x2, 0xfffffffffffffff9, 0xf1, r0, 0x2)
r1 = ioctl$auto_TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f0000000040)=0xe5c80000)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x20, 0x70bd2b, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x80)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000001c0), r1)
sendmsg$auto_ETHTOOL_MSG_MM_SET(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x2c, r2, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@ETHTOOL_A_MM_TX_ENABLED={0x5, 0x3, 0x1}, @ETHTOOL_A_MM_VERIFY_ENABLED={0x5}, @ETHTOOL_A_MM_TX_MIN_FRAG_SIZE={0x8, 0x5, 0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x880}, 0x4880)
r3 = socketpair$auto(0xfffffffd, 0x5, 0x240, &(0x7f00000002c0)=0x9)
r4 = prctl$auto_PR_SET_MM_ENV_START(0x7fff, 0xa, 0xffffffffffffffff, 0x8000, 0x1)
r5 = fsopen$auto(&(0x7f0000000340)='\',&\x00', 0x1)
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(r4, &(0x7f0000000780)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000380)={0x39c, 0x0, 0x2374ad24d6a197dc, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x234, 0x2, 0x0, 0x1, [@nested={0x22a, 0x112, 0x0, 0x1, [@typed={0xf5, 0x12d, 0x0, 0x0, @binary="2606fafcc290548eaeebb4ab904928c2b060d4e2764afb71d135f3fc78f39b58dc0f439aae40ba164f2b8dffce3e845ede9da69454c270239a8860001f486c68ddcc9319fd7019c4e86959c3d7a969c1236851cfaf54869ce4a398ee4e59e9db6b072c1ef34d069d91a4fc36c872cf7f7ef26b6e402da02af527037eff202589a4d6e31a5929a6aacc6ee7673b5600f63b411f38afb04d7725b04d5a2311b28fe2304df184dfa55833532a8cdcffc70552399b84938fcfd6445f14dc6b968ffce03d36e373a4103e479c955748f5451a12954ec0e6d40159f0e9336f05d20911fe0f3d67419a0f0f7718b32a502c784c14"}, @typed={0xc, 0x137, 0x0, 0x0, @u64=0xffffffff}, @typed={0x8, 0x129, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x4, 0xc9}, @generic="3a03ca7a0813c132205fcf41d5ea62d2ab446258053e0f3fb15f3bd5bcddab46244780fb001f21c36711f4364b1c", @typed={0xc, 0xe0, 0x0, 0x0, @u64=0xffff}, @generic="f2d3228ce2465e278a680485768c87db0089bfa6ebeb5ca0cda7592f67d3de85b8e0f97969795f9e5df83d533a68c0af8dddb5b23c3e1586ba4c7297ac1a3b30200e8df45282ecbb6e1ba15f0699e984da97e60972d3ea9127595f00b70743c6f9e3cd71", @generic="4412b98e84e3a58b7a93b83b5e89d1884baa001ce1b60a32324eb0a9ec0c72310135fada6e6457c5c6cd50d362fe10a9232975d3379d83a44f7cf960857f1329953a73cea4c0785ea5ef2b3f6be20247a91a8f7444339900a7dbb6a6efd48a0ca4686bfa4cc44806293e193830123807cb33498709e4d7a1"]}, @typed={0x4, 0xfb}, @generic]}, @TIPC_NLA_UNSPEC={0x50, 0x0, "ae0efc524acdcd8ffe7c5903f467659759cf88d7150d58aeee44f4c2d543d71a26c1e094ba27351bbb9f0ed278ea2bdf510537cd0e68324828049402c9797ee7ca611a20cd81be1fa6a19e1b"}, @TIPC_NLA_MON={0x104, 0x9, 0x0, 0x1, [@typed={0x76, 0xc7, 0x0, 0x0, @binary="97eb713a1557f70d6633b7ddd2e03477ad6e09b303f7d8def3237683f39a0dc299fdfe77653842325bc6bfe4a33a6207cd7138c3a1aaf75823d542e1e29b27ce9c5acc5512e78abd9fb1484aa673a807b6299d8623f17b2570390738df4bcfa4e594ef952bca70afe1f75cd249ff69860877"}, @typed={0x4, 0xd3}, @nested={0x81, 0xab, 0x0, 0x1, [@typed={0x8, 0x14d, 0x0, 0x0, @fd=r5}, @typed={0x8, 0x4, 0x0, 0x0, @fd=r0}, @nested={0x4, 0x3f}, @generic="54911718c17df96c24f6122c742bfb506d0d4ea7088a982a7f4d09685169ec6ba5f600c59bbd15b1eb2bcc2aaccabfe15af1e332f9079a4ec0e162dcbda7338eb9f612fca319dc6e99ee0eb866918720620a0fd65a5c263fb1d1a82e64ec14763cf89c5c70", @nested={0x4, 0xe}]}]}]}, 0x39c}}, 0x0)
ioctl$auto_BLKTRACESTOP(r3, 0x1275, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000007c0)=""/54, 0x36)
r6 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000840), r5)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000880)={'ip6_vti0\x00', <r7=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000008c0)={'wlan1\x00', <r8=>0x0})
sendmsg$auto_NETDEV_CMD_QSTATS_GET(r1, &(0x7f00000009c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x60, r6, 0x100, 0x0, 0x25dfdbfc, {}, [@NETDEV_A_QSTATS_SCOPE={0xc, 0x4, 0x522}, @NETDEV_A_QSTATS_SCOPE={0xc, 0x4, 0x7}, @NETDEV_A_QSTATS_SCOPE={0xc, 0x4, 0x5}, @NETDEV_A_QSTATS_IFINDEX={0x8, 0x1, r7}, @NETDEV_A_QSTATS_SCOPE={0xc, 0x4, 0x6}, @NETDEV_A_QSTATS_SCOPE={0xc}, @NETDEV_A_QSTATS_IFINDEX={0x8, 0x1, r8}]}, 0x60}, 0x1, 0x0, 0x0, 0x40}, 0x4c000)
ioctl$auto_USBDEVFS_SUBMITURB32(r4, 0x802c550a, &(0x7f0000000a00)={0x8, 0x0, 0x9a1, 0x80000000, 0xfffffffb, 0x4, 0x8, 0x8, 0x9, 0x8, 0x0, 0x5, [{0x0, 0x8, 0x8}]})
r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000a80), r5)
sendmsg$auto_NL80211_CMD_GET_KEY(r4, &(0x7f00000011c0)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001180)={&(0x7f0000000ac0)={0x69c, r9, 0x400, 0x70bd29, 0x25dfdbff, {}, [@NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0xfffffffa}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x6}, @NL80211_ATTR_IE_ASSOC_RESP={0x652, 0x80, "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"}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x54}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x67}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x3}]}, 0x69c}}, 0x1)
r10 = ioctl$auto_TUNSETLINK(r5, 0x400454cd, &(0x7f0000001200)=0x7)
write$auto(r0, &(0x7f0000001240)='\x00', 0x0)
read$auto_proc_fail_nth_operations_base(r3, &(0x7f0000001280)=""/12, 0xc)
writev$auto(r0, &(0x7f0000001300)={&(0x7f00000012c0)="42cee8e7b4ed3860feb99012aced125fd791cf844acdd2c918a57a2ca19f29030bb7732bd9da7a229b56de647846d3", 0xff}, 0x0)
r11 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001380), 0xffffffffffffffff)
sendmsg$auto_NET_SHAPER_CMD_CAP_GET(r1, &(0x7f0000001440)={&(0x7f0000001340)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001400)={&(0x7f00000013c0)={0x1c, r11, 0x300, 0x70bd2a, 0x25dfdbff, {}, [@NET_SHAPER_A_CAPS_SCOPE={0x8, 0x2, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20040041}, 0x8c0)
sendmsg$auto_OVS_METER_CMD_GET(r3, &(0x7f0000001540)={&(0x7f0000001480)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001500)={&(0x7f00000014c0)={0x18, 0x0, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@OVS_METER_ATTR_CLEAR={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8000}, 0x40c1)
ioctl$auto_SNDRV_PCM_IOCTL_INFO(r10, 0x81204101, &(0x7f0000001580)={0xff, 0x7fff, 0x2, 0x0, "755135bf85e40efc43b93f1982e631a6008278c4fe988ffc22fe8c8801f6225b0817f57823bb20f43ccf746a5bc68e0abf3ff224d9b0f70bbf6023f72f3890bc", "66a1bb78db73099753bb216fe3c18abef9e54f5ccfad6ffdb608d854a7cc02766c09fbe384b77acd5e3fe49e0c8f5aa7de2f669c06dc77700d89361ae7197bc563e6f449599d60dfcd143f15262d70b9", "faa2586915040ed35833dc43813f848c5f951525bebbc114ea79b5717e630046", 0x3ff, 0x9, 0x1000, 0x1, '\x00', "d8e65337802c472eb025d356220ae76d29a82ca444c40fb2863ad34175c8f5c14f52aec3c463d6f5d6ea33f79c82331d2eb8a35a62482c197354968723009b58"})
r12 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001700), r1)
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(r5, &(0x7f00000017c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x100002}, 0xc, &(0x7f0000001780)={&(0x7f0000001740)={0x20, r12, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@BATADV_ATTR_FLAG_BEST={0x4}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x20}, 0x1, 0x0, 0x0, 0x11}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

2m36.158040004s ago: executing program 4 (id=3171):
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
r0 = socket(0xa, 0x1, 0x100)
mmap$auto(0x0, 0x400008, 0xdb, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r1, 0xc1004111, 0x0)
getsockopt$auto_SO_RCVPRIORITY(r0, 0x2, 0x52, &(0x7f00000001c0)='/dev/virtual_nci\x00', &(0x7f0000000240)=0x7)
r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0040, 0x0)
pread64$auto(r2, 0x0, 0x7ff, 0x400)
r3 = socket(0x1e, 0x1, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x581583, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r6 = inotify_init1$auto(0x401)
write$auto_proc_fail_nth_operations_base(r6, &(0x7f0000000d40)="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", 0x1000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
sendmsg$auto_IPVS_CMD_FLUSH(r3, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000440)={&(0x7f0000000640)=ANY=[@ANYBLOB="b2f40700", @ANYRES16=0x0, @ANYBLOB="080025bd7000ffdbdf25110000000800050006000000", @ANYRES32, @ANYBLOB="0c00290084660000000000008d1083b7312d58c5ebaf487bb998f3418a8151bb07f2443548e4f835120dabebd9cfacb4df6c09d5c51d5a796dcd884b3e930a755c3e6e9a8bf602ba954dddf50ba937da8e0eb88ee25349d036733e829ade17deaae15e1e9298ffa9cd09d12467d4b27c2248f3edabe64261dd558c1b9e518a12", @ANYRES8=r2, @ANYBLOB="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"], 0x390}, 0x1, 0x0, 0x0, 0x20018810}, 0x44040)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r7 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x20000, 0x0)
ioctl$auto(r7, 0xab04, 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY(r5, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000380)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="8c020000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="00000005043891ec44d3d7"], 0x28c}, 0x1, 0x0, 0x0, 0x20048000}, 0x0)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x3a)

2m35.824588792s ago: executing program 2 (id=3174):
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x40000118, 0x400, 0x100000000000000}]})

2m35.735838716s ago: executing program 2 (id=3175):
r0 = socket(0x2b, 0x1, 0x0)
connect$auto(0x3, 0x0, 0x55)
r1 = fsopen$auto(0x0, 0x1)
r2 = bpf$auto(0x3, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x23}}, 0x54)
fanotify_init$auto(0x4f2, 0xde6)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0xffe, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x8000)
sendmsg$auto_TIPC_NL_NODE_GET(0xffffffffffffffff, 0x0, 0x4080)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ovs_meter(0x0, r0)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="94000000", @ANYRES16=0x0, @ANYBLOB="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"], 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x4004000)
sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, 0x0, 0x8000)
sendmsg$auto_NL80211_CMD_DEL_KEY(r2, 0x0, 0x40010)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x7fff)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0xa, 0x2, 0x88)
r4 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000200), r0)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TRIP(r3, &(0x7f00000004c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010025000008001100004000"/22], 0x1c}, 0x1, 0x0, 0x0, 0x24040001}, 0x4c094)
connect$auto(0x3, &(0x7f0000000140)=@qipcrtr={0x2a, 0x1, 0x3fff}, 0x55)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000180), 0xffffffffffffffff)

2m34.79413017s ago: executing program 4 (id=3178):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000002180)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0)
r0 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$auto_UBI_IOCATT(r0, 0x40186f40, &(0x7f0000000080)={0xffffffff, 0x0, 0x3f, 0x4, 0x1})
fcntl$auto(0x3, 0x4, 0xa553)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptysd\x00', 0x300, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1, 0x7356, 0x33, 0x65f, 0x1ffde, 0x7, 0xffffffffffffffff, 0x20000009, 0x4, 0x3, 0x6, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x83, 0x4, 0x7ff, 0x400, 0x2000, 0x203, 0x0, 0x84}, 0x1fe, 0xd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
r2 = socket(0x10, 0x2, 0x0)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f0000000180)="5281db33372d11a4e0")
sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0xc, 0x0, 0x59f, 0x0, 0x20}, 0x5b3}, 0x40, 0x100)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
syz_genetlink_get_family_id$auto_nfsd(0x0, r2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/state\x00', 0x20a42, 0x0)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x4, 0x0, 0x7, 0xa509}, 0x800}, 0x1000, 0x4008)
mmap$auto(0x0, 0x400008, 0xdc, 0x9b72, 0x2, 0x8000)
mount_setattr$auto(0x0, 0xfffffffffffffffe, 0x100, 0x0, 0x20)
ioctl$auto_TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, &(0x7f0000000040)={0x0, &(0x7f0000000000)={0xffff, 0x5, 0x7, @raw=0x1}})
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001f80), 0xffffffffffffffff)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)

2m34.714770514s ago: executing program 2 (id=3179):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x2480, 0x0)
ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, &(0x7f00000001c0)={0x6, 0x1, 0x600, &(0x7f0000000240)='!\x00', {0x1003, 0x9b72}, {0x5, 0x3, 0x2, 0x9, 0x4, 0x7f, 0x9, 0x0, {0x1fe, 0xffffff81, 0x0, 0x0, 0x0, 0x0}}})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0)
ioctl$auto(r1, 0xc0285628, r1)
r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2c, r2, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x6, 0x1, '.\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x40900, 0x0)
write$auto(0x3, 0x0, 0x100082)
close_range$auto(0x2, 0x8, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000480)={{0x0, 0x5aa, 0x0, 0x8, 0x0, 0x6, 0x1000}, 0x5}, 0x2, 0xfd)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0xfff8, 0x3}, 0xb3, 0x0, 0x0, 0x8)
io_uring_setup$auto(0x6, 0x0)
migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f00000001c0))
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

2m34.334333764s ago: executing program 2 (id=3182):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="01003dbd7008fcdbdf2506"], 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000)

2m34.146209519s ago: executing program 4 (id=3184):
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/filter\x00', 0x1214c2, 0x0)
r0 = epoll_create$auto(0x4)
socket(0x2, 0x1, 0x106)
getsockopt$auto(r0, 0xfffffff4, 0x100004, 0xfffffffffffffffe, 0xfffffffffffffffd)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdc, 0xeb5, 0x401, 0x41)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000180)=""/68, 0x44)
syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r2)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r2, 0x0, 0x20000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, 0x0, 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x4, 0xd, 0x1, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0xd, 0xd, 0x4]}, 0x0)
ioctl$auto(r2, 0x57, r1)
getgid()
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = getpid()
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video17\x00', 0x80800, 0x0)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0)
read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f0000000000)=""/194, 0xc2)
select$auto(0x5, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x3, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0xf, 0xa657, 0x202, 0xd3, 0x1]}, 0x0, 0x0, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
readv$auto(0x3, &(0x7f0000000280)={0x0, 0x9}, 0xc)

2m33.223014219s ago: executing program 4 (id=3187):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040))
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x101c82, 0x0)
write$auto(r1, &(0x7f0000000180)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
syz_genetlink_get_family_id$auto_ila(0x0, 0xffffffffffffffff)
mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000)
r2 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x2a801, 0x0)
pwrite64$auto(r2, &(0x7f0000000340)='/dev/vcsa\x00\x84\xbd\xe3\xa8\xaf\xd0E>0Q!\x8dIY\x1cPw+\x85\xdf\xa2\xfd\xf1\x80\xc6\xde>KC\x931\xf7vvjlm\xae\xf8\xc3\xa8\xbe\xdc9|\xfe}\xaf\x9e\'\xef\x84\xa8\xd3eX\x8f\xf8\x82\xe9\x8d\x86\x15\xa4B\xd3\x1e\xbd\x81\x00q\xca\xfe\xa8<\'~\xec\x0f\xc9\x91\x86\x19\x97}\xba\x1f\x1a\xf8\x15\x8a?\xe0\xeb\xfaOS\x11\x964\xd58\xf9q\xdc\xce\t\f\xa3\xc7\x84j\x15\x81\x16\xbb\x8d\xa9\x04\xc4\x03W(\xbc\x03N\x95\xb8\x1b&,\xeb\x94\xc2p}u#\xd22[\xfe@\xfap\x8c\xa8&\xb3\xbe\x12R\xd1V\xd0\xd4\xb1\x8b\xf3\x86\xd2\xba\r\x8a~]\\wg=\raRc\xb8\xf0\x9e\xc7D\xde\xa6;\x7f\x90\xf8\xf3\xc8f\xa1\n\x8b\xd6\xd5\xc6-\xf6X\x8cS\x10\x98)xo\xa3\x92\xa0=?\xde@\xb1\b8\xe1D\xb7\xf2\b\xfa\xad\xa43\x9dI9d\x152\x96\xd7\x9f\x9e\t^\x827\xfe\xb1!Z\x12\xf9\x1e\x9b\xef\xd5\xb7\x17\x8f\xc8]\x9f\x1b\xfaD\xa7\x1f\x8a\xaf\x919\x8ee\xb4\x13\x05\xf1\x04>\r\x80*j&\x99e\v\xfd\x9b\xd0\xb8y\xa2\xa7\x85\x87*\x00\xea\xe1c\xda\x11\xbcF\xc5\xe0T\x9c\xe9\xd2\xc9\xea\f\x9bt\x18\xc5\xa0o\xae\x91X\t\x8a\x91', 0x7b05, 0x3)
bpf$auto(0x0, 0x0, 0x6f4)
fcntl$auto(r0, 0x26, 0x2)

2m32.855996641s ago: executing program 4 (id=3189):
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0xffffffffffffffff, 0x800064ba, 0x1e6)
r0 = socket(0x10, 0x2, 0x4)
write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = clone$auto(0x0, 0xff, &(0x7f00000001c0)=0x40, &(0x7f00000002c0)=0x8, 0x7)
fcntl$auto(0xffffffffffffffff, 0x100, r2)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptye9\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'team_slave_1\x00'})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x3, 0x0)
select$auto(0x1, &(0x7f0000000300)={[0x96e7, 0x7, 0x8, 0xffffffffffff646e, 0xa, 0x0, 0x9, 0x81, 0x6, 0x9, 0x6c35, 0xfffffffffffffffe, 0x81, 0xd5, 0xf, 0x381f]}, &(0x7f00000003c0)={[0x7, 0xfffffffffffff000, 0x91, 0x7, 0x4, 0x6, 0x9, 0x4c, 0xfffffffffffffdd9, 0xff, 0xfffffffffffffffb, 0xfffffffffffffff7, 0x2, 0x5, 0x3, 0xff]}, &(0x7f0000000440)={[0xea8b, 0xd, 0x3, 0x80, 0x6, 0x9, 0x200, 0x9, 0x10001, 0x0, 0x4800, 0xfffffffffffffe00, 0x7, 0x1, 0x2, 0x7]}, &(0x7f00000004c0)={0x8000000000000000, 0x200})

2m19.23374763s ago: executing program 33 (id=3182):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="01003dbd7008fcdbdf2506"], 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000)

2m17.502478494s ago: executing program 34 (id=3189):
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0xffffffffffffffff, 0x800064ba, 0x1e6)
r0 = socket(0x10, 0x2, 0x4)
write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = clone$auto(0x0, 0xff, &(0x7f00000001c0)=0x40, &(0x7f00000002c0)=0x8, 0x7)
fcntl$auto(0xffffffffffffffff, 0x100, r2)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptye9\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'team_slave_1\x00'})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x3, 0x0)
select$auto(0x1, &(0x7f0000000300)={[0x96e7, 0x7, 0x8, 0xffffffffffff646e, 0xa, 0x0, 0x9, 0x81, 0x6, 0x9, 0x6c35, 0xfffffffffffffffe, 0x81, 0xd5, 0xf, 0x381f]}, &(0x7f00000003c0)={[0x7, 0xfffffffffffff000, 0x91, 0x7, 0x4, 0x6, 0x9, 0x4c, 0xfffffffffffffdd9, 0xff, 0xfffffffffffffffb, 0xfffffffffffffff7, 0x2, 0x5, 0x3, 0xff]}, &(0x7f0000000440)={[0xea8b, 0xd, 0x3, 0x80, 0x6, 0x9, 0x200, 0x9, 0x10001, 0x0, 0x4800, 0xfffffffffffffe00, 0x7, 0x1, 0x2, 0x7]}, &(0x7f00000004c0)={0x8000000000000000, 0x200})

1m42.760917551s ago: executing program 5 (id=3299):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\v\xba\x8av\xf0\x85\x9e`\x1fN$\xd4\x1c\xe0\xa6\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x89\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI', 0x100000a3db)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x5, 0x5, 0x2009, 0x0, 0x0)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
getrandom$auto(0xfffffffffffffffd, 0x8, 0x3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto(r3, 0x8926, r3)
read$auto_proc_sessionid_operations_base(r2, &(0x7f00000000c0)=""/4096, 0x1000)
r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto_safesetid_gid_file_fops_securityfs(r4, &(0x7f00000010c0)="feae81c18789d4a5dbc0aa0bfb8eeae0828b13ed96b76bc28de699c10d30e370bd6c2abd5aef868459de4beeac7f4ed70b634a241465f203dbe157e2c128c485ac6141acecfe4aa6752ed5074874c3609665bce23f7d705450a9e0721035ef52933f", 0x62)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram4/queue/physical_block_size\x00', 0xa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000004c0)=""/206, 0xce)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7f1)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r6, 0x0, 0x101fb, 0x8800000005)

1m40.798569566s ago: executing program 5 (id=3303):
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x400000b2, 0x400, 0xa01000000000000}]})

1m40.129950065s ago: executing program 5 (id=3306):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
ioctl$auto(r0, 0x802c550a, 0x1)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
fallocate$auto(0x8000000000000003, 0x0, 0x83, 0x4cbd5d)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/fuse/parameters/max_user_bgreq\x00', 0xc0481, 0x0)
write$auto(r1, &(0x7f0000000040)='\x14\xf4\xb6\xc6\x97\xdb\x18B\f\xef\x1dQZ\xa66\xe7\x06\\\xe0)+\x86\xa7\x9bv\xe1\x18\xf5\x83\b\x11\x19\xdd\x1c', 0x7e)
chmod$auto(&(0x7f0000000140)='./file0\x00', 0x3ff)
writev$auto(0x3, &(0x7f0000004100)={0x0, 0xb}, 0x3ff)
openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x8)
r2 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$auto(r2, 0x11c, 0xe0, 0x0, 0x0)
clock_nanosleep$auto(0xb, 0xa000001c, 0x0, 0xffffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa)
close_range$auto(0x2, 0x8, 0x2)
madvise$auto(0x0, 0x1, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0x6)
semctl$auto(0x1ff, 0x2, 0x13, 0x4)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000040), 0x2eeac2, 0x0)
read$auto_ptdump_fops_(0xffffffffffffffff, 0x0, 0x0)

1m37.954510325s ago: executing program 5 (id=3310):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1b0026bd7400fddbdf250300000004000800100003800c000380080001808847338012000100898771f1c19f17790485908288480000040002"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NL80211_CMD_SET_TID_TO_LINK_MAPPING(r0, &(0x7f0000000500)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="00030000", @ANYRES16=0x0, @ANYRES8=r0, @ANYRES32, @ANYBLOB="0800d8000b00000000000000"], 0x300}, 0x1, 0x0, 0x0, 0x20008800}, 0x4000000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
socket(0x1a, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r3 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mbind$auto(0x2000, 0x100000004, 0x5, 0x0, 0xffffffffffffff39, 0xffffffff)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@generic={0xb, "444cf575c02dd753ff403ac8c6ea"}, 0x6a)
shutdown$auto(0x200000003, 0x2)
listen$auto(0x3, 0x83)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/auth.unix.ip/flush\x00', 0x100, 0x0)

1m35.745125489s ago: executing program 5 (id=3315):
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0xffffffffffffffff, 0x800064ba, 0x1e6)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x2, 0x4)
write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000000c0), 0xffffffffffffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
fcntl$auto(r0, 0x100, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptye9\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x3, 0x0)
select$auto(0x1, &(0x7f0000000300)={[0x96e7, 0x7, 0x8, 0xffffffffffff646e, 0xa, 0x0, 0x9, 0x81, 0x6, 0x9, 0x6c35, 0xfffffffffffffffe, 0x81, 0xd5, 0xf, 0x381f]}, &(0x7f00000003c0)={[0x7, 0xfffffffffffff000, 0x91, 0x7, 0x4, 0x6, 0x9, 0x4c, 0xfffffffffffffdd9, 0xff, 0xfffffffffffffffb, 0xfffffffffffffff7, 0x2, 0x5, 0x3, 0xff]}, &(0x7f0000000440)={[0xea8b, 0xd, 0x3, 0x80, 0x6, 0x9, 0x200, 0x9, 0x10001, 0x0, 0x4800, 0xfffffffffffffe00, 0x7, 0x1, 0x2, 0x7]}, &(0x7f00000004c0)={0x8000000000000000, 0x200})

1m34.814383503s ago: executing program 5 (id=3317):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x2480, 0x0)
ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, &(0x7f00000001c0)={0x6, 0x1, 0x600, 0x0, {0x1003, 0x9b72}, {0x5, 0x3, 0x2, 0x9, 0x4, 0x7f, 0x9, 0x0, {0x1fe, 0xffffff81, 0x0, 0x0, 0x0, 0x0}}})
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
write$auto(0x3, 0x0, 0x100082)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

1m19.742709518s ago: executing program 35 (id=3317):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x2480, 0x0)
ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, &(0x7f00000001c0)={0x6, 0x1, 0x600, 0x0, {0x1003, 0x9b72}, {0x5, 0x3, 0x2, 0x9, 0x4, 0x7f, 0x9, 0x0, {0x1fe, 0xffffff81, 0x0, 0x0, 0x0, 0x0}}})
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
write$auto(0x3, 0x0, 0x100082)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

38.227422177s ago: executing program 6 (id=3426):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r0, 0x0, 0x7ff, 0x400)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/conf/ip6tnl0/bootp_relay\x00', 0x5014c0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800)
mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
ioctl$auto(0x3, 0x2287, 0xffffffffffffffff)
socket(0x23, 0x80805, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0)
read$auto_vcs_fops_vc_screen(r2, &(0x7f0000000080)=""/238, 0xffffffe9)
r3 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$auto_nvram_misc_fops_nvram(r3, &(0x7f0000000080)=""/209, 0xd1)
ioctl$auto_NVRAM_INIT(r3, 0x7040, 0x0)
membarrier$auto(0x2, 0x0, 0x9)
write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000001680)="a7", 0x80000)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)
r4 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
write$auto(r4, 0x0, 0x5)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)

37.113314867s ago: executing program 6 (id=3429):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf250300000004000800100003800c000380080001808847338012000100898771f1c19f17790485908288480000040002"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NL80211_CMD_SET_TID_TO_LINK_MAPPING(r0, &(0x7f0000000500)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="00030000", @ANYRES16=0x0, @ANYRES8=r0, @ANYRES32, @ANYBLOB="0800d8000b00000000000000"], 0x300}, 0x1, 0x0, 0x0, 0x20008800}, 0x4000000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
socket(0x1a, 0x1, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r2 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mbind$auto(0x2000, 0x100000004, 0x5, 0x0, 0xffffffffffffff39, 0xffffffff)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@generic={0xb, "444cf575c02dd753ff403ac8c6ea"}, 0x6a)
shutdown$auto(0x200000003, 0x2)
listen$auto(0x3, 0x83)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/auth.unix.ip/flush\x00', 0x100, 0x0)

34.458674748s ago: executing program 6 (id=3434):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\v\xba\x8av\xf0\x85\x9e`\x1fN$\xd4\x1c\xe0\xa6\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x89\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI', 0x100000a3db)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x5, 0x5, 0x2009, 0x0, 0x0)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
getrandom$auto(0xfffffffffffffffd, 0x8, 0x3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r3, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto(r3, 0x8926, r3)
read$auto_proc_sessionid_operations_base(r2, &(0x7f00000000c0)=""/4096, 0x1000)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffffff, &(0x7f00000010c0)="feae81c18789d4a5dbc0aa0bfb8eeae0828b13ed96b76bc28de699c10d30e370bd6c2abd5aef868459de4beeac7f4ed70b634a241465f203dbe157e2c128c485ac6141acecfe4aa6752ed5074874c3609665bce23f7d705450a9e0721035ef52933f", 0x62)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram4/queue/physical_block_size\x00', 0xa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000004c0)=""/206, 0xce)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7f1)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r5, 0x0, 0x101fb, 0x8800000005)

32.157227404s ago: executing program 6 (id=3442):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2c, r1, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x6, 0x1, '.\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x4000000, 0x801}, 0x0)

31.805238105s ago: executing program 6 (id=3443):
setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, &(0x7f0000000540)='nfsd\x00\xee\x1a\x8fg\x1b\x04\xad>\x96\xe9IG\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\x00\x00\x00\x00\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xed\xd5MI\x830_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xees\xf0\xc2\xad\xae\x99\xeb\xc5\xf0\"\x92\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oi|\x04\x93N\xfa\x17\xf3b\xf6', 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8fg\x1b\x04\xad>\x96\xe9IG\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\x00\x00\x00\x00\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xed\xd5MI\x830_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xees\xf0\xc2\xad\xae\x99\xeb\xc5\xf0\"\x92\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oi|\x04\x93N\xfa\x17\xf3b\xf6', 0x4, 0x0)
close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x6)
ioctl$auto(0x8000000000000001, 0x5, 0x9)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x18, 0x10, 0x808, 0x6, &(0x7f0000000340)="2e87ae255faea9bca16821e73660a43c98f81f056a20818dde63d3c3436ada5521c127417b70c848d2f0b41c9954b52c56fd29b722f89cb8e96cfabaead96bc484c33f7fb2b8e8aeaeeb962fd2017e70de4a4892c560daf3d83461a5c527c6ca6471a2d3bb0714224c0002a6ed62432b4a635d9cb072fba6cc4049f67aced3906e0af971d833a8a1d53e32a133a5b4c89ec915deff"})
connect$auto(0x3, &(0x7f0000000000)=@isdn={0x22, 0x9, 0xa4, 0x2, 0x9d}, 0x58)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x2b685fd312a77a90, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r3 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
ioctl$auto_VHOST_SET_FEATURES2(r3, 0x4008af00, 0x0)
openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0)
readv$auto(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3)
ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
statmount$auto(0x0, &(0x7f0000000180)={0x8000315, 0xfffffffa, 0x401bf, 0x7352, 0x3c, 0x8000, 0x1ffde, 0x6, 0x3, 0x2, 0x9, 0x2, 0x4000006, 0x4, 0xb6, 0x80000000009, 0x8, 0x10002, 0x3, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x1, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x800000000000, 0x0, 0x1, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x3, 0x8000000000000001, 0x2, 0x0, 0x0, 0x4]}, 0x1fe, 0xe)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060006004000"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r1, &(0x7f00000008c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000740)={0x124, 0x0, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x102, 0x1, 0x0, 0x1, [@typed={0x8, 0x68, 0x0, 0x0, @fd=r4}, @generic="f46b380eedf46840ce9626a9356783a6ba37261c98c330f4e9f9283004ed3ea60d8008062883ce0961198211ffc31d7f02c3b795cb21af6b9db634fd12de32d2d803c613b8fe30231ddb6f4294c07f1ce3fa20a664bec145b1f06ff7aac4af311bc4a87dcdd91cd7cb7e124faa57ea3db10839efac5973cbdc9e78095506dee6b4daf9a909542804b2dd0f245206eafac08794f3ea0d610ccb160f1350391738193d", @nested={0x4c, 0xbf, 0x0, 0x1, [@typed={0x8, 0xe3, 0x0, 0x0, @pid}, @typed={0x8, 0x3d, 0x0, 0x0, @pid}, @nested={0x4, 0xc1}, @typed={0x19, 0x6f, 0x0, 0x0, @str='/dev/bus/usb/037/001\x00'}, @typed={0x8, 0xfd, 0x0, 0x0, @pid}, @generic="89bcfb04", @typed={0xc, 0x86, 0x0, 0x0, @u64=0x6}]}, @typed={0x8, 0x108, 0x0, 0x0, @u32=0x6}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x144, 0x0, 0x0, @u32=0xfffffff0}]}]}, 0x124}, 0x1, 0x0, 0x0, 0x800}, 0x4000000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

30.762031765s ago: executing program 6 (id=3446):
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0)
socket(0x29, 0x2, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x2, 0x948b, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9)
r1 = getpid()
openat$auto_nst_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
r2 = openat$auto_nst_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0x20200, 0x0)
read$auto_nst_seq_fops_netdebug(r2, &(0x7f0000000140)=""/246, 0xf6)
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)
ioctl$auto(0x3, 0x400454ca, 0x38)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r3, 0x8, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x10, 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/user/max_fanotify_groups\x00', 0x202, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
recvmmsg$auto(r4, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
select$auto(0x9, 0x0, 0x0, &(0x7f0000000200)={[0x8001ff, 0x7, 0xd, 0x8fd6, 0x948d, 0x3, 0x80, 0x3, 0x6, 0x8000000000000001, 0x7, 0x100000000000007, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto_lockdown_ops_lockdown(0xffffffffffffffff, &(0x7f0000000080)="a3c72e71ed506a221381f0538f", 0xd)
close_range$auto(0x2, 0x8000, 0x0)

15.064043833s ago: executing program 36 (id=3446):
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0)
socket(0x29, 0x2, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x2, 0x948b, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9)
r1 = getpid()
openat$auto_nst_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
r2 = openat$auto_nst_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0x20200, 0x0)
read$auto_nst_seq_fops_netdebug(r2, &(0x7f0000000140)=""/246, 0xf6)
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)
ioctl$auto(0x3, 0x400454ca, 0x38)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r3, 0x8, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x10, 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/user/max_fanotify_groups\x00', 0x202, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
recvmmsg$auto(r4, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
select$auto(0x9, 0x0, 0x0, &(0x7f0000000200)={[0x8001ff, 0x7, 0xd, 0x8fd6, 0x948d, 0x3, 0x80, 0x3, 0x6, 0x8000000000000001, 0x7, 0x100000000000007, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto_lockdown_ops_lockdown(0xffffffffffffffff, &(0x7f0000000080)="a3c72e71ed506a221381f0538f", 0xd)
close_range$auto(0x2, 0x8000, 0x0)

8.691677793s ago: executing program 3 (id=3490):
prctl$auto_PR_SET_FP_MODE(0x2d, 0x4, 0x8000000000000000, 0x10000, 0x5)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x0, 0x0, 0x6, 0x9)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x8, 0x1, 0x10000, 0x200)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x89ae, 0xfffffffffffffff2, 0xc, 0x9)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x1000, 0x6, 0xe, 0x2)
prctl$auto_PR_SET_FP_MODE(0x2d, 0xc40d, 0x7, 0x2, 0x0)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x7, 0x4, 0x2d, 0x29)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x45ee, 0x2, 0x9, 0x8)
prctl$auto_PR_SET_FP_MODE(0x2d, 0xfffffffffffffffd, 0x1, 0x5b, 0x6556)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x8000000000000000, 0x7fff, 0x4, 0x3)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x6, 0x7, 0x5, 0x10000)
prctl$auto_PR_SET_FP_MODE(0x2d, 0xfffffffffffffffa, 0x0, 0x9, 0x2)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x1, 0x1, 0x6, 0x3)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x7f, 0x6, 0x6, 0x8)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x6, 0xd, 0x80000001, 0x4)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x10001, 0x23d, 0x3, 0x7)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x5, 0x9, 0x5, 0x7ff)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x0, 0x1, 0x1, 0x7fffffff)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x6, 0xfffffffffffffffa, 0x5, 0x8000000000000000)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x9, 0x2, 0x100000001, 0x0)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x2, 0x2, 0x0, 0x2)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x6669, 0x1, 0x9, 0x8000000000000000)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x0, 0x7, 0x100000000, 0x0)
prctl$auto_PR_SET_FP_MODE(0x2d, 0xf, 0x16, 0x3673, 0x80)
prctl$auto_PR_SET_FP_MODE(0x2d, 0xa8b, 0x2de7, 0x7, 0x8)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x8, 0x200, 0x3, 0x1)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x63, 0x7, 0x3, 0x4)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x7a7, 0x197, 0xf1, 0x3)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x5, 0x6785, 0x6, 0xf)
prctl$auto_PR_SET_FP_MODE(0x2d, 0x8, 0xffffffffffffffff, 0x8, 0x3ff)

8.426710451s ago: executing program 3 (id=3491):
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
r0 = socket(0xa, 0x1, 0x100)
mmap$auto(0x0, 0x400008, 0xdb, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r1, 0xc1004111, 0x0)
getsockopt$auto_SO_RCVPRIORITY(r0, 0x2, 0x52, &(0x7f00000001c0)='/dev/virtual_nci\x00', &(0x7f0000000240)=0x7)
r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0040, 0x0)
pread64$auto(r2, 0x0, 0x7ff, 0x400)
r3 = socket(0x1e, 0x1, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x581583, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r6 = inotify_init1$auto(0x401)
write$auto_proc_fail_nth_operations_base(r6, &(0x7f0000000d40)="425cee57ea6a58f30a2c963534174cb38c0318c243b9107ce0696b40f9752e6d9577ed287d23b424c997643e3d33709b330adc14195992100cd382abac7ab5b6d03218952ea0dc5eadf019f5518e75e851df953ac793819fdba36199f41a7d0eb72a932e513f66b771128cc8673dfda28b9c1cb6359ff61f6493add746e5c708a74f13a7c93672960bd453a49ce4df4c665a260e3c88fa8773358534a3400f8ee3aba2f8435c1b7ac161e5797e6ff8636578847d0b99d45db43a5bdba629d860d3db8181a5e7419657796b2752ca6246cf64e3524cf5b9c43cedc366ad484955414d19ce5df35f8d0c732a8a913b2bac8fad6e317e98d45a57799fe148132ce8479b2be065f636fd6448927ebfe24bc924900e089690b672875cbb49a229807fa1731067be85eaa605cc8d19940c1dcd8b6574ff59e0685bd313c71568d519ffa02ca7a3f062b168e9c3ad64ae7d40131973b46a989c15091de4e3699224196896e350430467b73299830d1dbc75cd9f7562315ad02375705ff63221ace164117af395033d68515bb468013cb5772d89497c9f39b146fd67daa92559f4533e6ee80b3f6565374cb674429bbd421223a535a32b770a14c97ff0d8b1e6cbc060214ec5683b0d48acba0f733fc5b1eee7dcc48842a06549615d0f1642d040e2043e59378c9f62f0c30df8ae7e4b16b46ec79c25c2e7a21ae1ad4c31a029989de83bfb241283091ec84b88e5e31db28ad5c181c2a48f0c53f121ee61f2bb7f5c15e27d5c7010ca4ba39b9af3d8b9ab222670503bf70e2380f35af2d7e34cee9a14929b02aed3419202c6ac2d3f0ce94844b17794b87b013b532c05e590656bd921826f08ca9fd4f0902036b3191781dfd7a56cafa694fd14e3979b04c40692eae26216638aaf7e85473f08c3356f551c7d981b5608ae5dd0785d2e3713aeb66a2dfdbb6112cdd98ea4aa57f39f77e8693b904e7e4607f8e6d72859d6db90d7bf21dbd0c9d27cb771cc3b927da11923c963ecbe6b7b9edb0367104dbd4a86aa78f78f2cd82f0bd6d8e06d3263badeb41f2f6b988046c9275d7736437de3218b264352733e1e0543be95a30e31ab1f9891014db380a11e1dde7c7d86e4c08a468beaa99d03444a774eea489b5a894486e1a2e44761aebc058310e0895e598502f57868be69095401830dffcd1c6175871947a44009332d6c15ed5a3f4b0e872015318b4da2751d713838b87498645047b6a246137e10612f8b62177df1fcbb40025e79197d176519e8bbe964281d5812b0b86ec88a62e48fe6e11a53cfd99d456e1c1dc5c2f9f9110f386221dc9bc12bf77d477070ccaa6aef98c18e3b5d319b01d2d2749ec24a6eb01970ab66f39705a45e963e0223a29f2ce22b32c49e4efa88dbdddf536eb9072c5e1c794ff900fdd702400bcb12e152d43fba1657bdaf32f38e1876d8e5ab007414ec79de3b2534afcb79f69eb5291a0d3e857cc01877e0f8b350121cbcae66c9998bf0c6a971792d68af31dfa3a994d9abfa5edd2bc9278a20fc1cd40011acc990098e07a96f3a70bd148e8050ac6fe33059316e46fa136f5543c9528d3d4b3561763f2369c111f6d6b34ef1328271635a27196753e4ad5c9920a2838fdaadd226fd0a56aba8de6772afb4108b3ae50d42adc047740bf327425370775ea47692ac8d4792dcc2e58a2093b27d3efb35653b3e47b242069a4d79ed4f3b0fa09afb10ce74a752de1073a73e811b32bf5f5147b4756f6d8682e80775fac8b1a128e76beaef6734f36b7721f633e801cc897f8a8d548cfdb06a2bd5bda21d99eb70f67e97aeb5cea5186e84dc96bcdfde92d79c6dc2546e12e5558a9c42c81a6d9be649d1021dd93b4043e571bb8dba97b2ced9e7483b4c54ea71bc958760eb7a827446dd5d19bce0e856f5b87c629d286f2400d487712835957ec33052ac85946b04863f8bdc8edf8c14bd08c46b70aa1cc7b2e75affadaf4cfca074b6923caad05babf581a3acdac64f41e1815140955ebdb3af5b64dcad9d56cf3118be658dbdf20c10ca22bdfb253bcb835ca4a4cab964ececd95619fdd717166d36289baf346e1db0d6ac0389bd3d938c6c609d3e2cfd128ebf716393e16fecc0bb99804ca71a3bacdd92c77f363a56d0ff5cad40880901bebac8047a628795e6b92de112dcc1e2ab69ef4e28a7e873462d6ec804db08b80dd20ce76aa7ea40f87a58074e8eab4848d4b5ec73b744ecc99e666bba997d127b96a16bd4c41b20c4c42a46c1c310eb5336423b4a2cecb1c86199423d4ec12f5d341ac9eed3766e6c91620d9e9d83107ab2c2965de561f7b9ce08d69fa1a98902ffa3546fd73f65cf24801ad773b553a2ae047127ddb5abd153593cd0837b550ad2ac6cd364e64b5db58263ec5eefc741b705d4161e5a6a5db1696bd470ee4c3e7e101dd06b7a7e94d5eae2efff1ada2c0f42172af4aeca645f69aa0c128e9537182a90b0e6575d3610fb3a4a1153fa1de46a1941fa541fa1d147d36559eac8fcf4529ebba6798dc7475d0023d235974950978aea04821b4864f729177818002a5eabf6e97621d6c2813c0f62ffecd62cb425ebf8dd4f29c214ad18679fd660bdb7423b6e5bbeb9e6924f0793a1056801e2ca94d64be51254adc6f6d0414e9e3fdf33f2a67601aa54e6fa85b234cd59de1203c0e15d585205297140a07539f1d2ce21d57cb36ffe3a82e8757186ea7a8c20d9df95b3bcb0215dde17cca64d9c9bdefb595b98994a32323fd4be45ca58b3248e8c552a5a9fc8c052aad3115fc34eb3e03a6995e18abd0a37fdd6d8f72dd71b0defa9e5288342ff4694feb7b102352bbdf26326942280f79c137b67be8317dac40457ff2838de8750909807c4035681c018b797ca85386036d4915866fa921eb14ec4f672fcea6ceb28ba88bf21709f6a9462011bf05170ffa75d8595c9d6d66135b4260aad42221e7b3c60127b969e18b8cc68c910e45b94fabf81db823d507fc172a9b28eb8433f90909da2c422cae645f65ee1cccc828fd9d39223f9072f2d5c9a8fe947d7c3aeff61baecda2ceafa6d67cb9e51cd5e30bfcf4cbe82c688bb958cc09f399ca0eda20fee9866102d8cada3b1d481754ba4a0dadd91a0d2dd194685484a62abcc747d228075278dceed7d60cb98c7302acef1485621d975114a3d20cb8c9b58c6e0d79f8062fa2d7b6f7cc7e94af8a7c21a1e07b40a54b1399de4cf19d26676da346c97f6bdc855c44797693d4b86ed61ea3def87ce06ba5b55d73611022837a1cb0a4580a4a479a23c82b93f7507d1d44edb27d462eb30b3b6948811cb8050ba1b0bbaeb1acde10167111c0c8340bd3e5d698c8f5b2f5f01b859b320876be12c2ff953aa49d7768fee3a68eb377ad616446263c535ec15b955d14a79792930c3aba651eb924d58b22617d2bb65acc914d211ff4d91198f51d5f24ab7f460657b76985fa5ac7b3908c42af14b7986cbeca8814415569a48dbc162f989c3282f3c4274e1287bd17f06d0c0bc87f29e48a65126b1efd9533a918fcedab81e9ef0a26a6e668248f4a897e6c6f090c9c71e413b515d8afaee1b075a042f849a6b5586d9e6c45551a632ac92f87c68630498b5aef3b2614f71ede4509cc1c4dd1346400cbe4e4e4a1dba9a96bf6c189cc0336e9ea1e33dad7bbf8692e567e1c2b70718694d93d9d79717eea51abb1c344c78ecce9673786f32a8a505be11444462c80ecef6705193b1b120196ff17ea6bfcb1701c152b9a4dcf528ddb331dbe721e6c13efeeb22e7a58b7f4db7d2656acb992f6a082be7b46824b9e7da3ddc69a8cfe8900e7111c827b7a70aa25b14c7d9bcf97536193a28eacbb9ca36d3a3da32c90a7c381fe7d979642f20b8c1da558faabe15150605228200ad626a4fa6cfc962f7a5b2e09dca053d34fef69a780aecfc21613aba25040f7c642c738790c966670be44b40f6f00b1ba7b4fdb5030610b7f926b4c355f524834cf21840c7cb0fd00d32d1732788dd3fdb62b1685a8b0e3e153154157028c02e04d8b68bf9b4f58613453e214538dbf62f035acfb2d96a7a213670029e2e88d1b4d274338d82aa27ac59658d3041c4f6f03d6ffc5dcb32c3b34bbe7d3f574d0d06f84f80f4a7dd6196224741f65e1d7f31aa97f2a6e2b9f6359d66d34d0e18594214d6c99ee5ba86b53a25f446b5956a8bcb03e6c01d26e62c511c9ecc4028287000bec2e27fa806ecf3c9e063119f79baf332210a1db0480e6de0fe54d3ef33ba006b323a0385535665670198527b3526c43525b45299de3408a40072b75957132749ad8fd96f6772b9c1e067a13d18418e1dbe011694530f8d2861979138e7dd0aad87792c354cf96d08dd3f27752a530cafa0326513b52233e4c14d7bc26ecfa93c6a86f87bb0a98398d65d64d05715cbc94654c0d236c265a3c81c3353e2513333de691d2ff15408fbc65344613464ad4fdd97921b60d69f0bc6dda22fa9478cff33d9701273cf719a0cc85d11e8a4c664671cb4da4b00380584ef721ea411171179b45dead25f83303faae52506ff5ccff3fdeb5da7544bae9d63785e3b6f4adc482b23e535b422c26d317ef14941dff23c69a24ac007ae4582844007c8576d250e092c0472870c5802e5fa5e6e8071d3d09d069db5be5f914eb50176341d0102128e5c21816e437ab6c9996f0061b5825e75699669dda8d3fb08516df6e27762c19833df9ed048ac0f3b10f5680896cb87dc09d7f4610f740d00c127238cbd5c556ffcc70a5bd414828c53b9f76dc544b57473f49d11e33ebeda6de035838853590fbb28dd1b0da699b9274ffa974fe937e579d5281709cb50bb77c7ae277cee16a8a7632892a713334fbbe20a0bf8f459bfe7af27a424860a35888c16c15b515e1b113aed913e594abdca694da86be7c3531fd80c08d085ce6e33b6dad873905d76a7120900bad9dfdf286e4e78df4739135de7998072a002c57f8bf841915fe6e34603e1e34eef3ce1a2bf3972ee5fcbf1c2223910ede0a610fd53a082573b72b5588c52f0e353d7034b6b020021e7c32fb5424ed38be247f6f1c2df01207865dd1d6f825da688370da8cb27ea15996ddf497ced0bb04600e22a43af6973c9068a625c2d59c8100c5f7bf74de8c2e310a708dbfc1300d58639e5aacc1eb773d48ee4da6756d2c3a65f188522c3a146546fa40e376b436e3d2af20f2d0544d662631ac5ce9620e60a7731a11bbad61c217cbc5d855c766960af1229b1b448637b523b9858ab3dfae46e06e0a1e28aa1a61fee48fc533407767e10adba80db4a50e182102d140396d913cf681a87285127ef9107e8a90c81b6810ed2b6da771320aa25d0b60a1a7f685fd76730bea5f97c9bbd920319e8d3dfaeff47d05184671429db9582bd412d8b8b360452fd524a385d13ffe09e9e80b6506186db4cdd6912e615ebf77095f913c5e83a04bef45ce10728de7630a2290d77157022950f23a399e3bc04fa63b32cfb4198c4213c43660c27171a8cea17c50dd6b0144eead4726dc98a49408eb69e20a8e60c82a015e93d244db70f2aceccf7cc0f67992562df874f42df801753a94e205a17c3d0ccb36b3a0f27de0a2de6cc9f542ed8162b8c1e44c7b85a70f8f5b368099777f8fdd8ee47d8a93ceafbd4514f3b642935e4b16147cc630af9cec09ece0b44096a122fcab6ab2836df545250da7d8f97763ef9cf53ba9a90bc40d0716318ddaecfd1d2085a4d75db9024b5f1ecee298b1004158ed5ab2342733390aa174cef3c3848ba3401e89d", 0x1000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
sendmsg$auto_IPVS_CMD_FLUSH(r3, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000440)={&(0x7f0000000640)=ANY=[@ANYBLOB="b2f40700", @ANYRES16=0x0, @ANYBLOB="080025bd7000ffdbdf2511000000080005000600", @ANYRES32, @ANYBLOB="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", @ANYRES8=r2, @ANYBLOB="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"], 0x390}, 0x1, 0x0, 0x0, 0x20018810}, 0x44040)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r7 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x20000, 0x0)
ioctl$auto(r7, 0xab04, 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY(r5, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000380)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="8c020000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="00000005043891ec44d3d7"], 0x28c}, 0x1, 0x0, 0x0, 0x20048000}, 0x0)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x3a)

7.056985292s ago: executing program 1 (id=3496):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x5, 0x5, 0x2009, 0x0, 0x0)
r1 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
getrandom$auto(0xfffffffffffffffd, 0x8, 0x3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r2, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
ioctl$auto(r2, 0x8926, r2)
read$auto_proc_sessionid_operations_base(r1, &(0x7f00000000c0)=""/4096, 0x1000)
r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto_safesetid_gid_file_fops_securityfs(r3, &(0x7f00000010c0)="feae81c18789d4a5dbc0aa0bfb8eeae0828b13ed96b76bc28de699c10d30e370bd6c2abd5aef868459de4beeac7f4ed70b634a241465f203dbe157e2c128c485ac6141acecfe4aa6752ed5074874c3609665bce23f7d705450a9e0721035ef52933f", 0x62)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram4/queue/physical_block_size\x00', 0xa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000004c0)=""/206, 0xce)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7f1)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r5, 0x0, 0x101fb, 0x8800000005)

6.439936368s ago: executing program 3 (id=3498):
socket(0x1a, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000001200)={0xf2f, [{0x1, 0x5}, {0x19f1a9bc, 0x7}, {0x800, 0x5}, {0x9, 0x45053277}, {0x7d, 0xf}, {0x7fffffffffffffff, 0x5}, {0x8, 0x1000}, {0x8, 0xf94}, {0x9, 0x5}, {0x7fff}, {0x1, 0x5}, {0x6b, 0x6}, {0x6, 0xfffffffffffffe00}, {0x1}, {0x5, 0xb11}, {0x8, 0x7}, {0x3, 0x8}, {0x2, 0x2}, {0x0, 0x5bf8}, {0x6, 0xfff}, {0x100, 0x1000}, {0x10000}, {0x6, 0x1}, {0x9, 0xee}, {0x9, 0x2}, {0xff, 0x6}, {0x7, 0x4}, {0x8, 0xb}, {0x9, 0x6}, {0x9, 0x101}, {0x1, 0x9}, {0x5, 0x2c3}, {0x3, 0xfe}, {0x9, 0x40}, {0x5b, 0x6}, {0xfff, 0x10000}, {0x5, 0x7fffffffffffffff}, {0x3}, {0x2, 0x12580000}, {0x9}, {0x92, 0x100000001}, {0x2, 0x7}, {0x6, 0x5}, {0x10, 0x4}, {0x9, 0x1}, {0x5, 0x10}, {0x9, 0x200}, {0xb, 0x4d97}, {0xffffffffffffff7f, 0x8000000000000001}, {0x7f, 0x800}, {0x3, 0x10000}, {0x6, 0x60}, {0x6, 0x2}, {0x400000000005, 0x3}, {}, {0x3, 0x1}, {0x1, 0xbb1}, {0x9, 0x8000}, {0x6302, 0x3}, {0x9, 0x9}, {0xa, 0x401}, {}, {0x4, 0x800002}, {0x0, 0x4}, {0x7ff}, {0x6, 0x7fffffff}, {0x1, 0xb}, {0x67a, 0xffff}, {0xc, 0x8}, {0x80, 0xe0}, {0x3e75, 0x1}, {0xe8, 0x9}, {0x5}, {0x0, 0x1}, {0xfffffffffffffffe, 0x9}, {0x8, 0xffffffff}, {0x1ae8df8a, 0x5}, {0xf8, 0xd7c}, {0x0, 0x8}, {0x9, 0xffffffffffffffff}, {0x5de8, 0x7ff}, {0x2, 0x800}, {0xfffffffffffffff8, 0x2}, {0x2, 0x4}, {0x3, 0x3}, {0x0, 0x7ff}, {0x8a, 0x6e}, {0x8000000000000000, 0x3}, {0x4, 0xf434}, {0x4, 0xa0b}, {0x400000002, 0x5}, {0x4, 0x5}, {0x9, 0x5}, {0xd0c7, 0x9}, {0x7, 0x1}, {0x35d, 0x75}, {0x7, 0x3}, {0x3, 0xfffffffffffffffa}, {0x1, 0x38a}, {0x4, 0x1}, {0x100000001, 0x1}, {0x6, 0x5}, {0x5, 0x5}, {0x81, 0x821}, {0x2, 0x2000000001}, {0x100000000, 0x5}, {0x8008, 0xfffffffffffffffa}, {0x9, 0xc}, {0x0, 0x2}, {0x2, 0x6}, {0x255, 0x100000001}, {0x7, 0x8}, {0x1315, 0x7}, {0x4, 0x100}, {0x2, 0x24ad}, {0xd, 0x1ff}, {0x5, 0x131}, {0x1}, {0x7fffffff, 0xaf06}, {0x8, 0x6}, {0x10, 0x8}, {0x2, 0x5}, {0x3, 0x7}, {0x6, 0xc184}, {0x6, 0x8}, {0x1, 0x24}, {0xfab, 0x3}, {0x1, 0x8}, {0xffffffffffffff89, 0x1}, {0x7ff}, {0x3, 0x8}, {0x7fffffff, 0xffffffffffffffff}, {0x1, 0x1944}, {0x7, 0xfffffffffdfffff7}, {0x4, 0xa7}, {0x3, 0xd}, {0x4, 0xcdf}, {0xfff, 0xa81}, {0x3, 0xc0}, {0x1ff, 0x800}, {0x1000, 0x5}, {0xb, 0x40008}, {0x4, 0x6}, {0x1000000000002, 0x5}, {0x7, 0x6}, {0x8001, 0xb}, {0x7fffffff, 0x953c}, {0x1, 0x2}, {0x4}, {0x1, 0x5}, {0xfffffffffffffff8, 0xbd}, {0x4}, {0x54e5, 0x6000}, {0x100000001, 0x100000001}, {0x4, 0x8}, {0x202, 0x7afe}, {0x5, 0x2}, {0xfffffffffffffff7, 0x3e9}, {0x2, 0x8}, {0x3, 0x9}, {0x80, 0x1004}, {0x802, 0xd}, {0x0, 0x6}, {0x7, 0x10}, {0x80000000000000, 0x5}, {0xf, 0xc}, {0x0, 0x3}, {0x0, 0x9bd}, {0x4, 0xf96a}, {0x203b0000000000, 0x6}, {0x9}, {0x1, 0x8}, {0x1e, 0x2}, {0x6, 0x400}, {0x7, 0x80000001}, {0x7825, 0x6}, {0x4}, {0x7fff, 0x7}, {0x30, 0x8397}, {0xffffffffffffffff, 0x2}, {0x1ff, 0x7}, {0x5, 0x4}, {0x4, 0x79}, {0x200000000003, 0x6}, {0x6, 0x7fff}, {0x6, 0x8}, {0x1000, 0x2000000000ef62}, {0xbd1b, 0x10001}, {0x8, 0x6}, {0xbd8, 0x80000000}, {0x5, 0x80000001}, {0x1, 0x6}, {0xfff, 0x7}, {0x100, 0x3}, {0x7a}, {0x100}, {0x7, 0xffffffffffffffff}, {0x238b, 0x5}, {0x0, 0x2}, {0xd3fe, 0x7}, {0x6, 0x7}, {0x1, 0x1}, {0x99, 0xfffffffffffffffc}, {0x6, 0xee}, {0x6, 0x8bb}, {0x78e, 0x4}, {0x1ddf, 0x6}, {0x9, 0x40}, {0x1}, {0x9caa, 0x91}, {0x8000, 0x1}, {0x9, 0x6}, {0x2, 0x4}, {0x5, 0x3}, {0x0, 0xffff}, {0x5}, {0x5aa, 0x9}, {0x7, 0x8000000000000000}, {0x400005c4a, 0x4}, {0x3, 0x7de}, {0x5, 0x2}, {0x780000000, 0x8}, {0x9, 0xffffffffffffff3f}, {0x3, 0x4}, {0x81, 0x6a04}, {0x76a, 0x1c25}, {0xffffffffffffffc0, 0x8}, {0x1, 0x427}, {0x2, 0x1}, {0x2000008, 0xed3}, {0x3, 0xbe28}, {0x8000000000000000, 0xffffffffffffffff}, {0x2, 0x2}, {0x7, 0x7}, {0x80000001, 0x3987}, {0x66f3, 0x101}, {0x5, 0x101}, {0x4, 0x2}, {0x7, 0x2}, {0x4, 0x8000000000000001}, {0x1}, {0xa, 0x6}, {0x6, 0x4}, {0x6, 0x3}, {0xd, 0x2}, {0x1, 0x10001000000000}, {0x0, 0x7fffffffffffffff}, {0x9, 0x6}, {0x200, 0x2f91}, {0xd5c5, 0x81}, {0x8, 0x8000}, {0x800, 0xfffffffffffffffa}, {0x301983e2, 0x5}, {0x3, 0x7}, {0x0, 0x4}], 0x7, "0a54d639d08954"})
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
socket(0x2, 0x1, 0x0)
epoll_create$auto(0x4)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
ioctl$auto_TCSBRKP2(r2, 0x5425, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TCFLSH2(r3, 0x5408, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0xa, 0x3, 0x3, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8000]}, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x40005, 0xe3, 0x20000000018, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
personality$auto(0xfffff032)
mmap$auto(0x0, 0x400006, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlock$auto(0x112, 0x80006)
mlockall$auto(0x800000000000005)

6.380097187s ago: executing program 7 (id=3499):
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSNPMODE(r0, 0x4008744b, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8800)
sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x24, 0x0, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @dev={0xac, 0x14, 0x14, 0x1d}}, @TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @empty}]}, 0x24}}, 0x20000810)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_DEL_INTERFACE(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="fb002dbd004e04004ed9509ae9e06712f300"], 0x18}, 0x1, 0x0, 0x0, 0x20000195}, 0x40084)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b", @ANYRES8], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r3 = socket(0x23, 0x2, 0x0)
setresuid$auto(0x2, 0x7, 0x8080)
ioctl$auto(r3, 0x89ef, 0x74)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socket(0x10, 0x2, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) (async)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) (async)
ioctl$auto_PPPIOCSNPMODE(r0, 0x4008744b, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) (async)
sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x24, 0x0, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @dev={0xac, 0x14, 0x14, 0x1d}}, @TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @empty}]}, 0x24}}, 0x20000810) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$auto_NL80211_CMD_DEL_INTERFACE(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="fb002dbd004e04004ed9509ae9e06712f300"], 0x18}, 0x1, 0x0, 0x0, 0x20000195}, 0x40084) (async)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b", @ANYRES8], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) (async)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async)
socket(0x23, 0x2, 0x0) (async)
setresuid$auto(0x2, 0x7, 0x8080) (async)
ioctl$auto(r3, 0x89ef, 0x74) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)

5.869002407s ago: executing program 1 (id=3500):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1b0026bd7400fddbdf250300000004000800100003800c000380080001808847338012000100898771f1c19f17790485908288480000040002"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NL80211_CMD_SET_TID_TO_LINK_MAPPING(r0, &(0x7f0000000500)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="00030000", @ANYRES16=0x0, @ANYRES8=r0, @ANYRES32, @ANYBLOB="0800d8000b00000000000000"], 0x300}, 0x1, 0x0, 0x0, 0x20008800}, 0x4000000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
socket(0x1a, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r3 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mbind$auto(0x2000, 0x100000004, 0x5, 0x0, 0xffffffffffffff39, 0xffffffff)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@generic={0xb, "444cf575c02dd753ff403ac8c6ea"}, 0x6a)
shutdown$auto(0x200000003, 0x2)
listen$auto(0x3, 0x83)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/auth.unix.ip/flush\x00', 0x100, 0x0)

5.690513585s ago: executing program 7 (id=3501):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/erspan0/force_igmp_version\x00', 0x408000, 0x0)

5.503784242s ago: executing program 7 (id=3502):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff)
write$auto(0xffffffffffffffff, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0004, 0x1a)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/ip_forward\x00', 0x2002, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
r1 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, 0x0, 0x8, 0x200d)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4c00e)

3.862931175s ago: executing program 1 (id=3503):
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/devices/system/cpu/vulnerabilities/spectre_v2\x00', 0x40780, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
keyctl$auto(0x8, 0xfffffffffffffffd, 0xffffffffffffffff, 0x5092, 0x2)
setreuid$auto(0x3, 0x7)
r3 = io_uring_setup$auto(0x6, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
shmctl$auto_SHM_STAT(0x5, 0xd, &(0x7f00000003c0)={{0x4, <r6=>0x0, 0xee01, 0x6, 0x6a7, 0xa, 0x1}, 0xffffff45, 0x2, 0x7, 0x122d, @raw, @inferred=<r7=>0x0, 0x9, 0x0, &(0x7f0000000300)="c52903e44a9e5de23f38d486b785c0b9b8d15d807bc0dbece3e1c70bb9b1e70f364e6b950e83838173c68d48970e8c95b970ee2176a81f6e2e45c17db37dd285bb9bb9a621ff7a77e70af972bf3e156d9b70f73000de42883ee14ac41b159861e74d4623514025b9891b92cc6d6c7bc6b745d0053840233288fa633006bcc35e3c7d91c65706988d999267b57f32dd85bdf42f2df6c75a1762", &(0x7f0000000040)="bb09260e2ef2cd001b10d6234f6a20949dcb205fc243c88055971974adc68415424682e8145debd747dc5f9ea3fffaaaef4fdc21c2ee0c5f8a069038b68ef78e80723e209885b96e8d62b258a8355c1d9787bc31f5fabe44ae225ba901cbb24bbbe3279e6b18"})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001700)={0x1758, r5, 0xd0d58b333228212f, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_COLOR_CHANGE_ELEMS={0x1614, 0x131, 0x0, 0x1, [@NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0xc}, @NL80211_ATTR_TX_RATES={0x1600, 0x5a, 0x0, 0x1, [@nested={0x12f6, 0x34, 0x0, 0x1, [@nested={0x4, 0x1a}, @nested={0x1268, 0x28, 0x0, 0x1, [@typed={0x4, 0x77}, @nested={0xd1, 0x12f, 0x0, 0x1, [@nested={0x4, 0x27}, @generic="ced01641b14d24e7d1072efa773c944d1629843713853f1029285bbdbc740976262d674ae67e8b3730437d0ebf0b34a944a9db94451225ddc53fb7497fa96675a2e8ccabb88cd9f219bec1efd482cf0d1294e140bb7fa9b337b1b0681fa27bfac842844ebd675b0486556ae0a745ab08377c999e161e80c3ca30e220e5cc540d1f66e473ec734e285c6f9a618f1411d9440cfdc33a3d", @generic="ba8a938afe6e23408c84385c7e04b565b836b94d9945677c43e34e45809f64ccda5bb35e96f38005f7a7c0", @typed={0x8, 0xdd, 0x0, 0x0, @pid=r7}]}, @typed={0x7e, 0x16, 0x0, 0x0, @binary="f8d6c5bb5a082705f7a1215f4edd9c277f1538d1a616b16ff3d07580c3d954ec668baa66ebeed7c81190b8076274dc9ff4e7667e6ff5d53bf7baf067c836434ba11ead33801a1dc23aaa99dad25891728c11d53056b4922108831421e69d6dd818f930cb33773eb464f227c5fae386c2c4c6dd4ee295d653354e"}, @typed={0x8, 0x11d, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x8, 0x32, 0x0, 0x0, @ipv4=@remote}, @nested={0x18, 0xa4, 0x0, 0x1, [@nested={0x4, 0x91}, @typed={0x8, 0x11f, 0x0, 0x0, @fd=r4}, @typed={0x8, 0xb7, 0x0, 0x0, @uid=r6}]}, @nested={0x10ad, 0x139, 0x0, 0x1, [@generic="349fea39f304c842fa8c3642b0dbcc17559d6e1064d389d1ba12b8c32a9afdfa61aa7494bfacff10ed886fab636e225885663147f0d7faced6b81fa2c10173d158e3bdfe105fd32958f7848131c63d77bba4e929b9cda97ff9d4a064e37eef816d8e2c7e88294f8c96df68058a0b9635bb607469ad1f52d77722a8b1ce6e56c570f486da38ba2c3cabbb6791d8b30cc7715d6874921b8854281cf91343ee", @generic="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", @generic="57f7d86ac71e22052d5fde"]}, @nested={0x31, 0x75, 0x0, 0x1, [@typed={0x14, 0x27, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @typed={0x8, 0xb6, 0x0, 0x0, @fd=r1}, @generic="1094d70438db2b3485", @typed={0x8, 0xee, 0x0, 0x0, @u32}]}]}, @generic="957f6ed78d298dfb44be5ee1854d62fd9de80ddfe334b0a3a84922710e48b028ead642aab533510ea2b71346ba2e970128ea87a500ecfdc3fda100e6073d709c3234a5276ca07a83c37e30e4a998a572eaa8115d1852ddae9b13c65dddc7a6a46b6be382fc77cdd61427e7f1df7a922147c7dca97da0bd8eac3d47871953", @typed={0x8, 0x9, 0x0, 0x0, @pid}]}, @typed={0x14, 0xff, 0x0, 0x0, @ipv6=@mcast2}, @generic="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", @generic="56c931541753a321fa28ba63aa49285b4c6ed9f6b6d927df5c4fe54e0347adfc3addbd59f4052421ee1e60bb974d5bf7ddd2b90d426e4bf83008bc8d", @nested={0xeb, 0x90, 0x0, 0x1, [@generic="e7f9e36ab97844f3d25329232df8419859c28daf8bb1d0aa31b69b386a57d0dacbc5b3d624cf2d6a3f6b25077a98a5a794d6a2e3bf2e615a4c314d3141fc0686bb481bec8e4836bcf4050694ff", @generic="9a9077819098361c2d1bb1692c86cbb32982715d35b6fd46b6764620bbba5fd436307465408bb692683bf0f108bf94d437a95dfe23c95bbda53870f2c67689c109f8957c73bde944f12a5a81ad3ed4a3d165be8eac32eff97597dd90138069dfe41622ec3daee38436cb5216052fec6b2cce6d862ef07636a4819e05a34527708ce38d96877a9c6751e2a19a52c4744ae92afcc483e0", @nested={0x4, 0xd1}]}, @typed={0xca, 0x2e, 0x0, 0x0, @binary="4a832be87dd5870ba83dc4ad0d29d03787a9de70a0e6ab753defaa081154efb6bdb87b075f0357812d3d6eff475f52d02065abc6a2629cc61c23e4921b2e02e31674e52702bfaf3a8125f3d5898f3262f03a6c101bf443af0c0e6e61dc37df6db4210c2801ac5d0924b2ae55feec85c82bf346e8d02b13c4cd6a820f5d36fd44c24a3113662a9355db69fa0b4abb768a57303fcf82b7fdde1d6bf18856e3cdaeb168795709ad68a028eec16c32cc24c077de5c83d8426e2d5ecf95ba4f063e075687fe413047"}]}, @NL80211_ATTR_MLO_SUPPORT={0x4}, @NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}]}, @NL80211_ATTR_AP_SETTINGS_FLAGS={0x8, 0x135, 0x8001}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0xc6, 0xbd, "f6afa1194bac731c8e7b92333cec54940617f9c38b040f68e33ccc1464f6a2ea8c1d0cd2066f021794fdd366e46d47fe06f601257d735881d299d34a2fd3d18a5e84fec82d16951a076156624a057e671a2c593b6476f20f840b823aaff8bdf9f69ea05d9c4ddb467ca2b589a5d964d62aeab408887f4aea1dd6c9943836825f38928fd57978c776aebcb4b27c073bdb4de6c055bc6094f1a61d0ca0597e0439908a8af6dca4d999ed14d2948ceda10cb62c4d47c2fd459f4c2b5ecbeebad3227285"}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x5}, @NL80211_ATTR_FILS_CACHE_ID={0x53, 0xfd, "bab88f3fb4e3d415b6760965123d87fb6481bcfedb11f1797ec6435cfa7abb10d2019006d49bfce178b05603fc3edfafa030a43e8e82771c785cdfedee7ed8da1c28c5223662ec71972b7a2c6ae826"}]}, 0x1758}, 0x1, 0x0, 0x0, 0x40}, 0x4000000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, &(0x7f0000000040))
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
shutdown$auto(0x200000003, 0x2)
read$auto(r2, &(0x7f0000003740)='\x98g\x8cf\x8c', 0xa)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
r8 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/vm/nr_overcommit_hugepages\x00', 0x100, 0x0)
read$auto(r8, &(0x7f0000000240)='nl80211\x00', 0x7)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x400000b0, 0x400, 0x2}]})

3.395384667s ago: executing program 1 (id=3504):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, 0x0, 0xc800)
sendmsg$auto_NL80211_CMD_SET_TID_TO_LINK_MAPPING(r0, &(0x7f0000000500)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="00030000", @ANYRES16=0x0, @ANYRES8=r0, @ANYRES32, @ANYBLOB="0800d8000b00000000000000"], 0x300}, 0x1, 0x0, 0x0, 0x20008800}, 0x4000000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
socket(0x1a, 0x1, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r2 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
mbind$auto(0x2000, 0x100000004, 0x5, 0x0, 0xffffffffffffff39, 0xffffffff)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@generic={0xb, "444cf575c02dd753ff403ac8c6ea"}, 0x6a)
shutdown$auto(0x200000003, 0x2)
listen$auto(0x3, 0x83)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/auth.unix.ip/flush\x00', 0x100, 0x0)

3.11303247s ago: executing program 3 (id=3505):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\v\xba\x8av\xf0\x85\x9e`\x1fN$\xd4\x1c\xe0\xa6\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x89\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI', 0x100000a3db)
prctl$auto(0x5, 0x5, 0x2009, 0x0, 0x0)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
getrandom$auto(0xfffffffffffffffd, 0x8, 0x3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r3, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto(r3, 0x8926, r3)
read$auto_proc_sessionid_operations_base(r2, &(0x7f00000000c0)=""/4096, 0x1000)
r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto_safesetid_gid_file_fops_securityfs(r4, &(0x7f00000010c0)="feae81c18789d4a5dbc0aa0bfb8eeae0828b13ed96b76bc28de699c10d30e370bd6c2abd5aef868459de4beeac7f4ed70b634a241465f203dbe157e2c128c485ac6141acecfe4aa6752ed5074874c3609665bce23f7d705450a9e0721035ef52933f", 0x62)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram4/queue/physical_block_size\x00', 0xa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000004c0)=""/206, 0xce)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7f1)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r6, 0x0, 0x101fb, 0x8800000005)

3.060517016s ago: executing program 7 (id=3506):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x2480, 0x0)
ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, &(0x7f00000001c0)={0x6, 0x1, 0x600, &(0x7f0000000240)='!\x00', {0x1003, 0x9b72}, {0x5, 0x3, 0x2, 0x9, 0x4, 0x7f, 0x9, 0x0, {0x1fe, 0xffffff81, 0x0, 0x0, 0x0, 0x0}}})
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x5, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x20, 0x0, 0x4)
write$auto(0x3, 0x0, 0x100082)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40000}, 0x40000)
recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000000)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x5}, 0x9}, 0x16d, 0x6, 0x0)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r1], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x6}, 0x3, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x7000000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

1.897367807s ago: executing program 7 (id=3507):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000002180)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0)
r0 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$auto_UBI_IOCATT(r0, 0x40186f40, &(0x7f0000000080)={0xffffffff, 0x0, 0x3f, 0x4, 0x1})
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptysd\x00', 0x300, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1, 0x7356, 0x33, 0x65f, 0x1ffde, 0x7, 0xffffffffffffffff, 0x20000009, 0x4, 0x3, 0x6, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x83, 0x4, 0x7ff, 0x400, 0x2000, 0x203, 0x0, 0x84}, 0x1fe, 0xd)
r1 = socket(0x10, 0x2, 0x0)
r2 = socket(0x10, 0x2, 0x0)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f0000000180)="5281db33372d11a4e0")
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
syz_genetlink_get_family_id$auto_nfsd(0x0, r2)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/state\x00', 0x20a42, 0x0)
write$auto(r3, &(0x7f0000000080)='/\xe4ev/auYio\x00', 0x4)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x4, 0x0, 0x7, 0xa509}, 0x800}, 0x1000, 0x4008)
mmap$auto(0x0, 0x400008, 0xdc, 0x9b72, 0x2, 0x8000)
mount_setattr$auto(0x0, 0xfffffffffffffffe, 0x100, 0x0, 0x20)
ioctl$auto_TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, &(0x7f0000000040)={0x0, &(0x7f0000000000)={0xffff, 0x5, 0x7, @raw=0x1}})
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001f80), 0xffffffffffffffff)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)

1.882142952s ago: executing program 1 (id=3508):
r0 = socket(0x2, 0x2, 0x0)
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0xa, 0x2, 0x3a)
read$auto(r0, 0x0, 0x2000000000007)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x8103e7, 0xffb, 0x8000000008012, r1, 0x8000)

823.711326ms ago: executing program 1 (id=3509):
mmap$auto(0x1000, 0x2020009, 0x3, 0x2000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfdef)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
r1 = ioctl$auto_TUNGETVNETBE2(r0, 0x800454df, &(0x7f0000000100)=0x7fff)
write$auto(r1, &(0x7f0000000380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x2000000000006)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x41000, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
poll$auto(&(0x7f0000000180)={<r3=>r2, 0xfff7, 0x9816}, 0x7f, 0x9)
ioctl$auto(r3, 0x4008af24, r2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/irq/2/wakeup\x00', 0x80000, 0x0)
mmap$auto(0x0, 0x400005, 0xffffffffffeffffe, 0x9b72, 0xc76, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, 0x0, 0x4000800)
mmap$auto(0x0, 0x22009, 0x4000000000df, 0xeb1, 0x401, 0x1)
socket(0xa, 0x3, 0x100)
ioperm$auto(0x7, 0x5ad2, 0x8)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)

516.260068ms ago: executing program 3 (id=3510):
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x40000083, 0x400, 0xc000000000000000}]})

381.017454ms ago: executing program 7 (id=3511):
r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0)
ioctl$auto_SNDCTL_DSP_GETTRIGGER(r3, 0x80045010, &(0x7f0000004440))
ioctl$auto_VHOST_SET_LOG_FD2(r0, 0x4004af07, &(0x7f00000001c0)=<r4=>r0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r4, 0x8000)
mmap$auto(0x0, 0x20005, 0xdf, 0x12, r1, 0x4)
r5 = open_by_handle_at$auto(r2, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d)
setsockopt$auto(r5, 0x1, 0x1021, 0x0, 0xd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001a80)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="fa2b4df06cbf359174a8ec040022c1efc2c4dd3171faedb75eb3bd69381029f46736ff6dc81aae4795d52ed9907fbfcc977c33f42a2e79f0203dc9a89c26710bfd1cd629dd4c3692beb2f92781317a3ef057b2c52ba097d484b79a64ac5374c214085522680ca4c7"], 0x14}, 0x1, 0x0, 0x0, 0x4040840}, 0x200000c0)
mmap$auto(0x100000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001b00)=ANY=[@ANYBLOB="20010000", @ANYRES16=r7, @ANYBLOB="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"], 0x120}, 0x1, 0x68, 0x0, 0x24000000}, 0x140)
sendmsg$auto_NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x18, r7, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_ASSOC_SPP_AMSDU={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000080}, 0x8002)
sendmsg$auto_NL80211_CMD_GET_KEY(r4, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRESDEC=r3, @ANYRESOCT=r6], 0x1c}, 0x1, 0x0, 0x0, 0x21}, 0x51)
read$auto(r6, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)
socket(0x2b, 0x1, 0x0)
read$auto_ext4_dir_operations_ext4(r2, &(0x7f00000003c0)=""/6, 0x6)

0s ago: executing program 3 (id=3512):
r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0)
ioctl$auto_SNDCTL_DSP_GETTRIGGER(r3, 0x80045010, &(0x7f0000004440))
ioctl$auto_VHOST_SET_LOG_FD2(r0, 0x4004af07, &(0x7f00000001c0)=<r4=>r0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r4, 0x8000)
mmap$auto(0x0, 0x20005, 0xdf, 0x12, r1, 0x4)
r5 = open_by_handle_at$auto(r2, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d)
setsockopt$auto(r5, 0x1, 0x1021, 0x0, 0xd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
geteuid()
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001a80)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="fa2b4df06cbf359174a8ec040022c1efc2c4dd3171faedb75eb3bd69381029f46736ff6dc81aae4795d52ed9907fbfcc977c33f42a2e79f0203dc9a89c26710bfd1cd629dd4c3692beb2f92781317a3ef057b2c52ba097d484b79a64ac5374c214085522680ca4c7"], 0x14}, 0x1, 0x0, 0x0, 0x4040840}, 0x200000c0)
mmap$auto(0x100000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001b00)=ANY=[@ANYBLOB="20010000", @ANYRES16=r7, @ANYBLOB="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"], 0x120}, 0x1, 0x68, 0x0, 0x24000000}, 0x140)
sendmsg$auto_NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x18, r7, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_ASSOC_SPP_AMSDU={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000080}, 0x8002)
sendmsg$auto_NL80211_CMD_GET_KEY(r4, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRESDEC=r3, @ANYRESOCT=r6], 0x1c}, 0x1, 0x0, 0x0, 0x21}, 0x51)
read$auto(r6, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)
socket(0x2b, 0x1, 0x0)
read$auto_ext4_dir_operations_ext4(r2, &(0x7f00000003c0)=""/6, 0x6)

kernel console output (not intermixed with test programs):

l 1, probability 0, space 0, times 0
[  939.637514][T19883] CPU: 1 UID: 0 PID: 19883 Comm: syz.3.2845 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  939.637548][T19883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  939.637559][T19883] Call Trace:
[  939.637565][T19883]  <TASK>
[  939.637572][T19883]  dump_stack_lvl+0x16c/0x1f0
[  939.637597][T19883]  should_fail_ex+0x512/0x640
[  939.637620][T19883]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  939.637645][T19883]  should_failslab+0xc2/0x120
[  939.637670][T19883]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  939.637692][T19883]  ? mas_alloc_nodes+0x18b/0x8b0
[  939.637712][T19883]  mas_alloc_nodes+0x18b/0x8b0
[  939.637733][T19883]  mas_node_count_gfp+0x105/0x130
[  939.637752][T19883]  mas_preallocate+0x7e0/0xde0
[  939.637780][T19883]  ? __pfx_mas_preallocate+0x10/0x10
[  939.637810][T19883]  ? vma_merge_new_range+0x3ae/0xa50
[  939.637830][T19883]  ? vm_area_alloc+0x1f/0x160
[  939.637849][T19883]  ? lockdep_init_map_type+0x5c/0x280
[  939.637880][T19883]  __mmap_region+0x118a/0x27b0
[  939.637919][T19883]  ? __pfx___mmap_region+0x10/0x10
[  939.637946][T19883]  ? is_bpf_text_address+0x8a/0x1a0
[  939.637969][T19883]  ? bpf_ksym_find+0x124/0x1c0
[  939.637990][T19883]  ? kernel_text_address+0x8d/0x100
[  939.638007][T19883]  ? __kernel_text_address+0xd/0x40
[  939.638058][T19883]  ? trace_cap_capable+0x18d/0x200
[  939.638093][T19883]  mmap_region+0x1ab/0x3f0
[  939.638123][T19883]  ? __get_unmapped_area+0x267/0x440
[  939.638153][T19883]  do_mmap+0xa3e/0x1210
[  939.638186][T19883]  ? __pfx_do_mmap+0x10/0x10
[  939.638213][T19883]  ? __pfx_down_write_killable+0x10/0x10
[  939.638241][T19883]  vm_mmap_pgoff+0x29e/0x470
[  939.638272][T19883]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  939.638302][T19883]  ? __fget_files+0x20e/0x3c0
[  939.638326][T19883]  ksys_mmap_pgoff+0x32c/0x5c0
[  939.638352][T19883]  ? __pfx_ksys_write+0x10/0x10
[  939.638376][T19883]  __x64_sys_mmap+0x125/0x190
[  939.638407][T19883]  do_syscall_64+0xcd/0x490
[  939.638429][T19883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  939.638448][T19883] RIP: 0033:0x7fc91338ebe9
[  939.638464][T19883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  939.638482][T19883] RSP: 002b:00007fc914280038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  939.638500][T19883] RAX: ffffffffffffffda RBX: 00007fc9135b5fa0 RCX: 00007fc91338ebe9
[  939.638512][T19883] RDX: 0000000000000ffb RSI: 0000000000810000 RDI: 0000000000000000
[  939.638522][T19883] RBP: 00007fc914280090 R08: 0000000000000007 R09: 0000000000008000
[  939.638533][T19883] R10: 0008000000008012 R11: 0000000000000246 R12: 0000000000000001
[  939.638544][T19883] R13: 00007fc9135b6038 R14: 00007fc9135b5fa0 R15: 00007fff2b541428
[  939.638567][T19883]  </TASK>
[  943.198434][T19936] ERROR: Out of memory at tomoyo_memory_ok.
[  943.313873][   T30] audit: type=1800 audit(4294978397.328:201): pid=19937 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2853" name="features" dev="configfs" ino=93363 res=0 errno=0
[  943.392529][T19936] FAULT_INJECTION: forcing a failure.
[  943.392529][T19936] name failslab, interval 1, probability 0, space 0, times 0
[  943.457412][T19936] CPU: 0 UID: 0 PID: 19936 Comm: syz.3.2852 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  943.457460][T19936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  943.457478][T19936] Call Trace:
[  943.457489][T19936]  <TASK>
[  943.457502][T19936]  dump_stack_lvl+0x16c/0x1f0
[  943.457541][T19936]  should_fail_ex+0x512/0x640
[  943.457577][T19936]  ? fs_reclaim_acquire+0xae/0x150
[  943.457629][T19936]  should_failslab+0xc2/0x120
[  943.457670][T19936]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  943.457709][T19936]  ? security_inode_alloc+0x3b/0x2b0
[  943.457746][T19936]  security_inode_alloc+0x3b/0x2b0
[  943.457777][T19936]  inode_init_always_gfp+0xce4/0x1030
[  943.457821][T19936]  alloc_inode+0x86/0x240
[  943.457874][T19936]  new_inode+0x22/0x1c0
[  943.457922][T19936]  simple_fill_super+0x306/0x720
[  943.457962][T19936]  ? __pfx_nfsd_fill_super+0x10/0x10
[  943.457995][T19936]  nfsd_fill_super+0x90/0x530
[  943.458025][T19936]  ? __pfx_set_anon_super_fc+0x10/0x10
[  943.458059][T19936]  ? __pfx_nfsd_fill_super+0x10/0x10
[  943.458088][T19936]  get_tree_keyed+0x10b/0x1d0
[  943.458125][T19936]  vfs_get_tree+0x8b/0x340
[  943.458154][T19936]  path_mount+0x1482/0x1fd0
[  943.458207][T19936]  ? __pfx_path_mount+0x10/0x10
[  943.458249][T19936]  ? kmem_cache_free+0x2d1/0x4d0
[  943.458282][T19936]  ? putname+0x154/0x1a0
[  943.458330][T19936]  ? putname+0x154/0x1a0
[  943.458376][T19936]  ? __x64_sys_mount+0x28d/0x310
[  943.458412][T19936]  __x64_sys_mount+0x28d/0x310
[  943.458452][T19936]  ? __pfx___x64_sys_mount+0x10/0x10
[  943.458504][T19936]  do_syscall_64+0xcd/0x490
[  943.458541][T19936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  943.458573][T19936] RIP: 0033:0x7fc91338ebe9
[  943.458599][T19936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  943.458629][T19936] RSP: 002b:00007fc91425f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  943.458659][T19936] RAX: ffffffffffffffda RBX: 00007fc9135b6090 RCX: 00007fc91338ebe9
[  943.458679][T19936] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[  943.458698][T19936] RBP: 00007fc913411e19 R08: 0000000000000000 R09: 0000000000000000
[  943.458716][T19936] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[  943.458734][T19936] R13: 00007fc9135b6128 R14: 00007fc9135b6090 R15: 00007fff2b541428
[  943.458775][T19936]  </TASK>
[  943.697775][    C0] vkms_vblank_simulate: vblank timer overrun
[  944.873861][   T30] audit: type=1800 audit(4294978398.837:202): pid=19963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2859" name="features" dev="configfs" ino=93449 res=0 errno=0
[  945.534510][T19975] __vm_enough_memory: pid: 19975, comm: syz.1.2861, bytes: 4398046511104 not enough memory for the allocation
[  947.277364][T19996] ERROR: Out of memory at tomoyo_memory_ok.
[  947.350926][T19996] FAULT_INJECTION: forcing a failure.
[  947.350926][T19996] name failslab, interval 1, probability 0, space 0, times 0
[  947.432985][T19996] CPU: 0 UID: 0 PID: 19996 Comm: syz.3.2865 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  947.433030][T19996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  947.433048][T19996] Call Trace:
[  947.433059][T19996]  <TASK>
[  947.433071][T19996]  dump_stack_lvl+0x16c/0x1f0
[  947.433109][T19996]  should_fail_ex+0x512/0x640
[  947.433146][T19996]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  947.433189][T19996]  should_failslab+0xc2/0x120
[  947.433230][T19996]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  947.433266][T19996]  ? _raw_spin_unlock+0x28/0x50
[  947.433293][T19996]  ? alloc_inode+0xc3/0x240
[  947.433343][T19996]  alloc_inode+0xc3/0x240
[  947.433388][T19996]  new_inode+0x22/0x1c0
[  947.433439][T19996]  simple_fill_super+0x306/0x720
[  947.433477][T19996]  ? __pfx_nfsd_fill_super+0x10/0x10
[  947.433506][T19996]  nfsd_fill_super+0x90/0x530
[  947.433534][T19996]  ? __pfx_set_anon_super_fc+0x10/0x10
[  947.433567][T19996]  ? __pfx_nfsd_fill_super+0x10/0x10
[  947.433598][T19996]  get_tree_keyed+0x10b/0x1d0
[  947.433629][T19996]  vfs_get_tree+0x8b/0x340
[  947.433655][T19996]  path_mount+0x1482/0x1fd0
[  947.433698][T19996]  ? __pfx_path_mount+0x10/0x10
[  947.433735][T19996]  ? kmem_cache_free+0x2d1/0x4d0
[  947.433767][T19996]  ? putname+0x154/0x1a0
[  947.433811][T19996]  ? putname+0x154/0x1a0
[  947.433863][T19996]  ? __x64_sys_mount+0x28d/0x310
[  947.433898][T19996]  __x64_sys_mount+0x28d/0x310
[  947.433940][T19996]  ? __pfx___x64_sys_mount+0x10/0x10
[  947.433990][T19996]  do_syscall_64+0xcd/0x490
[  947.434026][T19996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  947.434056][T19996] RIP: 0033:0x7fc91338ebe9
[  947.434081][T19996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  947.434107][T19996] RSP: 002b:00007fc91425f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  947.434136][T19996] RAX: ffffffffffffffda RBX: 00007fc9135b6090 RCX: 00007fc91338ebe9
[  947.434156][T19996] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[  947.434174][T19996] RBP: 00007fc913411e19 R08: 0000000000000000 R09: 0000000000000000
[  947.434191][T19996] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[  947.434209][T19996] R13: 00007fc9135b6128 R14: 00007fc9135b6090 R15: 00007fff2b541428
[  947.434249][T19996]  </TASK>
[  948.374121][   T30] audit: type=1800 audit(4294978402.375:203): pid=20018 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2869" name="features" dev="configfs" ino=93575 res=0 errno=0
[  949.603548][   T30] audit: type=1800 audit(4294978403.615:204): pid=20037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2871" name="features" dev="configfs" ino=93603 res=0 errno=0
[  949.912159][   T30] audit: type=1800 audit(4294978403.924:205): pid=20044 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2873" name="features" dev="configfs" ino=93604 res=0 errno=0
[  952.891616][T20099] 
[  953.446923][T20112] blktrace: Concurrent blktraces are not allowed on loop2
[  954.473540][T20116] netlink: 'syz.4.2885': attribute type 102 has an invalid length.
[  954.608007][T20116] netlink: 248 bytes leftover after parsing attributes in process `syz.4.2885'.
[  955.421856][T20137] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2889'.
[  955.451945][T20137] FAULT_INJECTION: forcing a failure.
[  955.451945][T20137] name failslab, interval 1, probability 0, space 0, times 0
[  955.567799][T20137] CPU: 0 UID: 0 PID: 20137 Comm: syz.2.2889 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  955.567845][T20137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  955.567864][T20137] Call Trace:
[  955.567873][T20137]  <TASK>
[  955.567885][T20137]  dump_stack_lvl+0x16c/0x1f0
[  955.567925][T20137]  should_fail_ex+0x512/0x640
[  955.567959][T20137]  ? __kvmalloc_node_noprof+0x124/0x620
[  955.567997][T20137]  should_failslab+0xc2/0x120
[  955.568035][T20137]  __kvmalloc_node_noprof+0x137/0x620
[  955.568071][T20137]  ? sbitmap_init_node+0x1ca/0x770
[  955.568131][T20137]  ? sbitmap_init_node+0x1ca/0x770
[  955.568172][T20137]  sbitmap_init_node+0x1ca/0x770
[  955.568225][T20137]  sbitmap_queue_init_node+0x41/0x560
[  955.568276][T20137]  blk_mq_init_tags+0x12d/0x2b0
[  955.568317][T20137]  blk_mq_alloc_map_and_rqs+0x237/0xf60
[  955.568357][T20137]  ? rcu_is_watching+0x12/0xc0
[  955.568394][T20137]  __blk_mq_alloc_map_and_rqs+0x128/0x1f0
[  955.568432][T20137]  blk_mq_alloc_tag_set+0x778/0x1260
[  955.568478][T20137]  loop_add+0x3b2/0xb70
[  955.568526][T20137]  ? __pfx_loop_add+0x10/0x10
[  955.568596][T20137]  ? find_held_lock+0x2b/0x80
[  955.568655][T20137]  loop_control_ioctl+0x13e/0x630
[  955.568703][T20137]  ? __pfx_loop_control_ioctl+0x10/0x10
[  955.568753][T20137]  ? __pfx_loop_control_ioctl+0x10/0x10
[  955.568800][T20137]  __x64_sys_ioctl+0x18e/0x210
[  955.568846][T20137]  do_syscall_64+0xcd/0x490
[  955.568881][T20137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  955.568911][T20137] RIP: 0033:0x7f7e8f78ebe9
[  955.568935][T20137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  955.568962][T20137] RSP: 002b:00007f7e90693038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  955.568990][T20137] RAX: ffffffffffffffda RBX: 00007f7e8f9b5fa0 RCX: 00007f7e8f78ebe9
[  955.569010][T20137] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006
[  955.569026][T20137] RBP: 00007f7e8f811e19 R08: 0000000000000000 R09: 0000000000000000
[  955.569045][T20137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  955.569061][T20137] R13: 00007f7e8f9b6038 R14: 00007f7e8f9b5fa0 R15: 00007ffd735c5b28
[  955.569112][T20137]  </TASK>
[  955.607790][T20137] blk-mq: reduced tag depth (128 -> 64)
[  957.323967][T20167] ubi0: attaching mtd0
[  957.334185][T20167] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[  958.803458][T20194] FAULT_INJECTION: forcing a failure.
[  958.803458][T20194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  958.869417][T20194] CPU: 0 UID: 0 PID: 20194 Comm: syz.4.2903 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  958.869448][T20194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  958.869459][T20194] Call Trace:
[  958.869465][T20194]  <TASK>
[  958.869473][T20194]  dump_stack_lvl+0x16c/0x1f0
[  958.869498][T20194]  should_fail_ex+0x512/0x640
[  958.869525][T20194]  _copy_to_user+0x32/0xd0
[  958.869553][T20194]  snd_pcm_oss_read+0x276/0x760
[  958.869587][T20194]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[  958.869619][T20194]  vfs_readv+0x5c1/0x8b0
[  958.869661][T20194]  ? __pfx_vfs_readv+0x10/0x10
[  958.869683][T20194]  ? find_held_lock+0x2b/0x80
[  958.869716][T20194]  ? __fget_files+0x20e/0x3c0
[  958.869735][T20194]  ? __fget_files+0x200/0x3c0
[  958.869760][T20194]  ? do_readv+0x132/0x340
[  958.869777][T20194]  do_readv+0x132/0x340
[  958.869796][T20194]  ? __pfx_do_readv+0x10/0x10
[  958.869829][T20194]  do_syscall_64+0xcd/0x490
[  958.869851][T20194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  958.869869][T20194] RIP: 0033:0x7f611258ebe9
[  958.869884][T20194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  958.869902][T20194] RSP: 002b:00007f61107f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  958.869920][T20194] RAX: ffffffffffffffda RBX: 00007f61127b6180 RCX: 00007f611258ebe9
[  958.869932][T20194] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[  958.869943][T20194] RBP: 00007f61107f6090 R08: 0000000000000000 R09: 0000000000000000
[  958.869954][T20194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  958.869965][T20194] R13: 00007f61127b6218 R14: 00007f61127b6180 R15: 00007ffec0442d08
[  958.869987][T20194]  </TASK>
[  959.498389][T20206] FAULT_INJECTION: forcing a failure.
[  959.498389][T20206] name failslab, interval 1, probability 0, space 0, times 0
[  959.524876][T20206] CPU: 1 UID: 0 PID: 20206 Comm: syz.3.2907 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  959.524911][T20206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  959.524921][T20206] Call Trace:
[  959.524928][T20206]  <TASK>
[  959.524935][T20206]  dump_stack_lvl+0x16c/0x1f0
[  959.524959][T20206]  should_fail_ex+0x512/0x640
[  959.524981][T20206]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  959.525013][T20206]  should_failslab+0xc2/0x120
[  959.525038][T20206]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  959.525061][T20206]  ? __pmd_alloc+0xbf/0x930
[  959.525092][T20206]  __pmd_alloc+0xbf/0x930
[  959.525118][T20206]  ? find_held_lock+0x2b/0x80
[  959.525139][T20206]  __handle_mm_fault+0xa06/0x2a50
[  959.525165][T20206]  ? __pfx___handle_mm_fault+0x10/0x10
[  959.525203][T20206]  handle_mm_fault+0x589/0xd10
[  959.525227][T20206]  __get_user_pages+0x551/0x34a0
[  959.525265][T20206]  ? __pfx___get_user_pages+0x10/0x10
[  959.525300][T20206]  populate_vma_page_range+0x267/0x3f0
[  959.525332][T20206]  ? __pfx_populate_vma_page_range+0x10/0x10
[  959.525362][T20206]  ? __pfx_find_vma_intersection+0x10/0x10
[  959.525390][T20206]  ? do_mmap+0x69c/0x1210
[  959.525419][T20206]  __mm_populate+0x1d8/0x380
[  959.525450][T20206]  ? __pfx___mm_populate+0x10/0x10
[  959.525481][T20206]  ? up_write+0x1b2/0x520
[  959.525510][T20206]  vm_mmap_pgoff+0x37f/0x470
[  959.525541][T20206]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  959.525572][T20206]  ? __fget_files+0x20e/0x3c0
[  959.525597][T20206]  ksys_mmap_pgoff+0x32c/0x5c0
[  959.525624][T20206]  ? __pfx_ksys_write+0x10/0x10
[  959.525649][T20206]  __x64_sys_mmap+0x125/0x190
[  959.525681][T20206]  do_syscall_64+0xcd/0x490
[  959.525704][T20206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  959.525723][T20206] RIP: 0033:0x7fc91338ebe9
[  959.525739][T20206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  959.525758][T20206] RSP: 002b:00007fc914280038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  959.525777][T20206] RAX: ffffffffffffffda RBX: 00007fc9135b5fa0 RCX: 00007fc91338ebe9
[  959.525789][T20206] RDX: 0000000000000ffb RSI: 0000000000810000 RDI: 0000000000000000
[  959.525801][T20206] RBP: 00007fc914280090 R08: 0000000000000007 R09: 0000000000008000
[  959.525812][T20206] R10: 0008000000008012 R11: 0000000000000246 R12: 0000000000000001
[  959.525824][T20206] R13: 00007fc9135b6038 R14: 00007fc9135b5fa0 R15: 00007fff2b541428
[  959.525848][T20206]  </TASK>
[  961.299986][T20230] netlink: 'syz.4.2914': attribute type 2 has an invalid length.
[  961.362053][T20232] netlink: 'syz.4.2914': attribute type 2 has an invalid length.
[  962.250263][T20226] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2913'.
[  962.597995][T20269] FAULT_INJECTION: forcing a failure.
[  962.597995][T20269] name failslab, interval 1, probability 0, space 0, times 0
[  962.610696][T20269] CPU: 1 UID: 0 PID: 20269 Comm: syz.3.2922 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  962.610724][T20269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  962.610735][T20269] Call Trace:
[  962.610742][T20269]  <TASK>
[  962.610750][T20269]  dump_stack_lvl+0x16c/0x1f0
[  962.610776][T20269]  should_fail_ex+0x512/0x640
[  962.610799][T20269]  ? fs_reclaim_acquire+0xae/0x150
[  962.610830][T20269]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  962.610854][T20269]  should_failslab+0xc2/0x120
[  962.610879][T20269]  __kmalloc_noprof+0xd2/0x510
[  962.610906][T20269]  tomoyo_realpath_from_path+0xc2/0x6e0
[  962.610933][T20269]  ? tomoyo_profile+0x47/0x60
[  962.610961][T20269]  tomoyo_path_number_perm+0x245/0x580
[  962.610986][T20269]  ? tomoyo_path_number_perm+0x237/0x580
[  962.611018][T20269]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  962.611054][T20269]  ? find_held_lock+0x2b/0x80
[  962.611120][T20269]  ? find_held_lock+0x2b/0x80
[  962.611148][T20269]  ? hook_file_ioctl_common+0x145/0x410
[  962.611177][T20269]  ? __fget_files+0x20e/0x3c0
[  962.611202][T20269]  security_file_ioctl+0x9b/0x240
[  962.611224][T20269]  __x64_sys_ioctl+0xb7/0x210
[  962.611269][T20269]  do_syscall_64+0xcd/0x490
[  962.611293][T20269]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  962.611312][T20269] RIP: 0033:0x7fc91338ebe9
[  962.611328][T20269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  962.611346][T20269] RSP: 002b:00007fc91425f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  962.611365][T20269] RAX: ffffffffffffffda RBX: 00007fc9135b6090 RCX: 00007fc91338ebe9
[  962.611377][T20269] RDX: 00002000000000c0 RSI: 000000004008ae89 RDI: 0000000000000005
[  962.611389][T20269] RBP: 00007fc91425f090 R08: 0000000000000000 R09: 0000000000000000
[  962.611400][T20269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  962.611411][T20269] R13: 00007fc9135b6128 R14: 00007fc9135b6090 R15: 00007fff2b541428
[  962.611434][T20269]  </TASK>
[  962.824333][T20269] ERROR: Out of memory at tomoyo_realpath_from_path.
[  963.530619][T19330] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  963.542806][T19330] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  963.595416][T19330] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  963.638297][T19330] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  963.659211][T19330] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  963.755623][T13727] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  964.025720][T13727] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  964.566700][T13727] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  965.009610][T13727] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  965.516592][T20274] netlink: 'syz.1.2923': attribute type 102 has an invalid length.
[  965.531131][T20274] netlink: 232 bytes leftover after parsing attributes in process `syz.1.2923'.
[  965.763054][T19330] Bluetooth: hci1: command tx timeout
[  966.294176][T20278] chnl_net:caif_netlink_parms(): no params data found
[  966.996377][T20324] ERROR: Out of memory at tomoyo_memory_ok.
[  967.046722][T20324] FAULT_INJECTION: forcing a failure.
[  967.046722][T20324] name failslab, interval 1, probability 0, space 0, times 0
[  967.091603][T20324] CPU: 0 UID: 0 PID: 20324 Comm: syz.2.2930 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  967.091632][T20324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  967.091644][T20324] Call Trace:
[  967.091651][T20324]  <TASK>
[  967.091659][T20324]  dump_stack_lvl+0x16c/0x1f0
[  967.091685][T20324]  should_fail_ex+0x512/0x640
[  967.091707][T20324]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  967.091732][T20324]  should_failslab+0xc2/0x120
[  967.091757][T20324]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  967.091787][T20324]  ? __d_alloc+0x32/0xae0
[  967.091813][T20324]  __d_alloc+0x32/0xae0
[  967.091835][T20324]  ? do_raw_spin_lock+0x12c/0x2b0
[  967.091866][T20324]  d_alloc+0x4a/0x1e0
[  967.091890][T20324]  d_alloc_name+0x83/0xb0
[  967.091913][T20324]  ? __pfx_d_alloc_name+0x10/0x10
[  967.091935][T20324]  ? __d_add+0x403/0xa50
[  967.091963][T20324]  simple_fill_super+0x2eb/0x720
[  967.091987][T20324]  ? __pfx_nfsd_fill_super+0x10/0x10
[  967.092008][T20324]  nfsd_fill_super+0x90/0x530
[  967.092025][T20324]  ? __pfx_set_anon_super_fc+0x10/0x10
[  967.092044][T20324]  ? __pfx_nfsd_fill_super+0x10/0x10
[  967.092062][T20324]  get_tree_keyed+0x10b/0x1d0
[  967.092085][T20324]  vfs_get_tree+0x8b/0x340
[  967.092101][T20324]  path_mount+0x1482/0x1fd0
[  967.092128][T20324]  ? __pfx_path_mount+0x10/0x10
[  967.092153][T20324]  ? kmem_cache_free+0x2d1/0x4d0
[  967.092173][T20324]  ? putname+0x154/0x1a0
[  967.092200][T20324]  ? putname+0x154/0x1a0
[  967.092227][T20324]  ? __x64_sys_mount+0x28d/0x310
[  967.092249][T20324]  __x64_sys_mount+0x28d/0x310
[  967.092273][T20324]  ? __pfx___x64_sys_mount+0x10/0x10
[  967.092303][T20324]  do_syscall_64+0xcd/0x490
[  967.092326][T20324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  967.092345][T20324] RIP: 0033:0x7f7e8f78ebe9
[  967.092360][T20324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  967.092378][T20324] RSP: 002b:00007f7e90693038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  967.092400][T20324] RAX: ffffffffffffffda RBX: 00007f7e8f9b5fa0 RCX: 00007f7e8f78ebe9
[  967.092418][T20324] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[  967.092430][T20324] RBP: 00007f7e8f811e19 R08: 0000000000000000 R09: 0000000000000000
[  967.092441][T20324] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[  967.092452][T20324] R13: 00007f7e8f9b6038 R14: 00007f7e8f9b5fa0 R15: 00007ffd735c5b28
[  967.092475][T20324]  </TASK>
[  967.843903][T19330] Bluetooth: hci1: command tx timeout
[  968.389089][T13727] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  968.401450][T13727] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  968.430535][T13727] bond0 (unregistering): Released all slaves
[  969.319038][T20278] bridge0: port 1(bridge_slave_0) entered blocking state
[  969.328286][T20278] bridge0: port 1(bridge_slave_0) entered disabled state
[  969.336045][T20278] bridge_slave_0: entered allmulticast mode
[  969.343389][T20278] bridge_slave_0: entered promiscuous mode
[  969.554208][T20278] bridge0: port 2(bridge_slave_1) entered blocking state
[  969.586006][T20278] bridge0: port 2(bridge_slave_1) entered disabled state
[  969.593773][T20278] bridge_slave_1: entered allmulticast mode
[  969.609846][T20278] bridge_slave_1: entered promiscuous mode
[  969.925284][T19330] Bluetooth: hci1: command tx timeout
[  970.023264][T20278] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  970.067803][T20278] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  970.494425][T20278] team0: Port device team_slave_0 added
[  970.508791][T20278] team0: Port device team_slave_1 added
[  970.767480][T19330] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  971.029510][T20278] batman_adv: batadv0: Adding interface: batadv_slave_0
[  971.064243][T20278] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  971.197597][T20278] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  971.282035][   T30] audit: type=1800 audit(4294979448.280:206): pid=20395 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2937" name="features" dev="configfs" ino=94335 res=0 errno=0
[  971.403442][T20397] FAULT_INJECTION: forcing a failure.
[  971.403442][T20397] name failslab, interval 1, probability 0, space 0, times 0
[  971.505855][T20397] CPU: 1 UID: 0 PID: 20397 Comm: syz.3.2938 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  971.505900][T20397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  971.505918][T20397] Call Trace:
[  971.505929][T20397]  <TASK>
[  971.505942][T20397]  dump_stack_lvl+0x16c/0x1f0
[  971.505981][T20397]  should_fail_ex+0x512/0x640
[  971.506016][T20397]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  971.506053][T20397]  should_failslab+0xc2/0x120
[  971.506091][T20397]  __kmalloc_cache_noprof+0x6a/0x3e0
[  971.506121][T20397]  ? snd_pcm_oss_change_params_locked+0x247/0x3a30
[  971.506165][T20397]  ? kasan_save_track+0x14/0x30
[  971.506203][T20397]  snd_pcm_oss_change_params_locked+0x247/0x3a30
[  971.506253][T20397]  ? rcu_is_watching+0x12/0xc0
[  971.506282][T20397]  ? trace_contention_end+0xdd/0x130
[  971.506322][T20397]  ? __mutex_lock+0x1c4/0x10b0
[  971.506356][T20397]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  971.506409][T20397]  ? __lock_acquire+0x62e/0x1ce0
[  971.506455][T20397]  ? import_ubuf+0x1b6/0x220
[  971.506499][T20397]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  971.506542][T20397]  snd_pcm_oss_read+0x39b/0x760
[  971.506585][T20397]  ? security_file_permission+0x71/0x210
[  971.506628][T20397]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[  971.506666][T20397]  vfs_readv+0x5c1/0x8b0
[  971.506710][T20397]  ? __pfx_vfs_readv+0x10/0x10
[  971.506738][T20397]  ? find_held_lock+0x2b/0x80
[  971.506790][T20397]  ? __fget_files+0x20e/0x3c0
[  971.506821][T20397]  ? __fget_files+0x200/0x3c0
[  971.506863][T20397]  ? do_readv+0x132/0x340
[  971.506890][T20397]  do_readv+0x132/0x340
[  971.506921][T20397]  ? __pfx_do_readv+0x10/0x10
[  971.506962][T20397]  do_syscall_64+0xcd/0x490
[  971.507001][T20397]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  971.507033][T20397] RIP: 0033:0x7fc91338ebe9
[  971.507058][T20397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  971.507094][T20397] RSP: 002b:00007fc91423e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  971.507124][T20397] RAX: ffffffffffffffda RBX: 00007fc9135b6180 RCX: 00007fc91338ebe9
[  971.507146][T20397] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[  971.507164][T20397] RBP: 00007fc91423e090 R08: 0000000000000000 R09: 0000000000000000
[  971.507183][T20397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  971.507201][T20397] R13: 00007fc9135b6218 R14: 00007fc9135b6180 R15: 00007fff2b541428
[  971.507243][T20397]  </TASK>
[  971.789315][T20278] batman_adv: batadv0: Adding interface: batadv_slave_1
[  971.796540][T20278] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  971.823252][T20278] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  972.006229][T16746] Bluetooth: hci1: command tx timeout
[  972.126771][T13727] hsr_slave_0: left promiscuous mode
[  972.146888][T13727] hsr_slave_1: left promiscuous mode
[  972.219005][T13727] veth1_macvtap: left promiscuous mode
[  972.246186][T13727] veth1_vlan: left promiscuous mode
[  972.254930][T13727] veth0_vlan: left promiscuous mode
[  974.359878][T13727] team0 (unregistering): Port device team_slave_1 removed
[  974.460152][T13727] team0 (unregistering): Port device team_slave_0 removed
[  974.870546][T20438] ubi0: attaching mtd0
[  974.874680][T20438] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[  975.795162][T20278] hsr_slave_0: entered promiscuous mode
[  975.805521][T20278] hsr_slave_1: entered promiscuous mode
[  975.812144][T20278] debugfs: 'hsr0' already exists in 'hsr'
[  975.818272][T20278] Cannot create hsr debugfs directory
[  976.180177][   T30] audit: type=1800 audit(4294979453.177:207): pid=20450 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2944" name="features" dev="configfs" ino=94437 res=0 errno=0
[  977.513802][   T30] audit: type=1800 audit(4294979454.507:208): pid=20480 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2948" name="features" dev="configfs" ino=95611 res=0 errno=0
[  977.664798][T20474] ERROR: Out of memory at tomoyo_memory_ok.
[  978.282038][T20278] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  978.336740][T20278] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  978.398452][T20278] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  978.468502][T20278] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  978.985371][T20278] 8021q: adding VLAN 0 to HW filter on device bond0
[  979.056156][T20278] 8021q: adding VLAN 0 to HW filter on device team0
[  979.085409][T13727] bridge0: port 1(bridge_slave_0) entered blocking state
[  979.092574][T13727] bridge0: port 1(bridge_slave_0) entered forwarding state
[  979.157809][T13727] bridge0: port 2(bridge_slave_1) entered blocking state
[  979.165105][T13727] bridge0: port 2(bridge_slave_1) entered forwarding state
[  980.386484][T20278] 8021q: adding VLAN 0 to HW filter on device batadv0
[  981.202783][T20591] ERROR: Out of memory at tomoyo_memory_ok.
[  981.469698][T20278] veth0_vlan: entered promiscuous mode
[  981.627043][T20278] veth1_vlan: entered promiscuous mode
[  981.742035][T20278] veth0_macvtap: entered promiscuous mode
[  981.752896][T20278] veth1_macvtap: entered promiscuous mode
[  981.940395][T20278] batman_adv: batadv0: Interface activated: batadv_slave_0
[  982.051218][T20278] batman_adv: batadv0: Interface activated: batadv_slave_1
[  982.087883][T13731] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  982.106315][T13731] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  982.135660][T13731] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  982.154668][T13731] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  982.383298][T20594] netlink: 268 bytes leftover after parsing attributes in process `syz.2.2957'.
[  983.021604][T18616] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  983.029475][T18616] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  983.845247][T13730] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  983.856721][T13730] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  984.742366][T20713] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  984.790249][T20701] netlink: 268 bytes leftover after parsing attributes in process `syz.2.2960'.
[  987.670620][T20854] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13
[  989.114512][T20856] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14
[  993.301452][T21051] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2979'.
[  993.319639][T21051] bridge_slave_1: left allmulticast mode
[  993.341695][T21051] bridge_slave_1: left promiscuous mode
[  993.385723][T21051] bridge0: port 2(bridge_slave_1) entered disabled state
[  993.554231][T21051] bridge_slave_0: left allmulticast mode
[  993.604870][T21051] bridge_slave_0: left promiscuous mode
[  993.627263][T21051] bridge0: port 1(bridge_slave_0) entered disabled state
[  995.834346][T21170] FAULT_INJECTION: forcing a failure.
[  995.834346][T21170] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  995.892555][T21170] CPU: 1 UID: 0 PID: 21170 Comm: syz.1.2985 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  995.892598][T21170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  995.892616][T21170] Call Trace:
[  995.892626][T21170]  <TASK>
[  995.892637][T21170]  dump_stack_lvl+0x16c/0x1f0
[  995.892665][T21170]  should_fail_ex+0x512/0x640
[  995.892694][T21170]  should_fail_alloc_page+0xe7/0x130
[  995.892722][T21170]  prepare_alloc_pages+0x3c2/0x610
[  995.892750][T21170]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  995.892776][T21170]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  995.892807][T21170]  ? __lock_acquire+0x62e/0x1ce0
[  995.892834][T21170]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  995.892868][T21170]  ? find_held_lock+0x2b/0x80
[  995.892888][T21170]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  995.892925][T21170]  ? policy_nodemask+0xea/0x4e0
[  995.892953][T21170]  alloc_pages_mpol+0x1fb/0x550
[  995.892979][T21170]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  995.893005][T21170]  ? find_held_lock+0x2b/0x80
[  995.893026][T21170]  ? __pfx_filemap_map_pages+0x10/0x10
[  995.893048][T21170]  alloc_pages_noprof+0x131/0x390
[  995.893074][T21170]  pte_alloc_one+0x1c/0x3a0
[  995.893096][T21170]  __do_fault+0x320/0x490
[  995.893121][T21170]  ? __pfx_filemap_map_pages+0x10/0x10
[  995.893142][T21170]  do_pte_missing+0x9e7/0x3ba0
[  995.893162][T21170]  ? do_raw_spin_unlock+0x172/0x230
[  995.893193][T21170]  ? __pmd_alloc+0x3fb/0x930
[  995.893223][T21170]  __handle_mm_fault+0x152a/0x2a50
[  995.893249][T21170]  ? __pfx___handle_mm_fault+0x10/0x10
[  995.893287][T21170]  handle_mm_fault+0x589/0xd10
[  995.893311][T21170]  __get_user_pages+0x551/0x34a0
[  995.893348][T21170]  ? __pfx___get_user_pages+0x10/0x10
[  995.893383][T21170]  populate_vma_page_range+0x267/0x3f0
[  995.893421][T21170]  ? __pfx_populate_vma_page_range+0x10/0x10
[  995.893450][T21170]  ? __pfx_find_vma_intersection+0x10/0x10
[  995.893478][T21170]  ? do_mmap+0x69c/0x1210
[  995.893507][T21170]  __mm_populate+0x1d8/0x380
[  995.893537][T21170]  ? __pfx___mm_populate+0x10/0x10
[  995.893569][T21170]  ? up_write+0x1b2/0x520
[  995.893598][T21170]  vm_mmap_pgoff+0x37f/0x470
[  995.893628][T21170]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  995.893681][T21170]  ? __fget_files+0x20e/0x3c0
[  995.893720][T21170]  ksys_mmap_pgoff+0x32c/0x5c0
[  995.893759][T21170]  ? __pfx_ksys_write+0x10/0x10
[  995.893786][T21170]  __x64_sys_mmap+0x125/0x190
[  995.893818][T21170]  do_syscall_64+0xcd/0x490
[  995.893841][T21170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  995.893861][T21170] RIP: 0033:0x7f94c798ebe9
[  995.893876][T21170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  995.893895][T21170] RSP: 002b:00007f94c5bee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  995.893915][T21170] RAX: ffffffffffffffda RBX: 00007f94c7bb5fa0 RCX: 00007f94c798ebe9
[  995.893934][T21170] RDX: 0000000000000ffb RSI: 0000000000810000 RDI: 0000000000000000
[  995.893946][T21170] RBP: 00007f94c5bee090 R08: 0000000000000007 R09: 0000000000008000
[  995.893958][T21170] R10: 0008000000008012 R11: 0000000000000246 R12: 0000000000000001
[  995.893969][T21170] R13: 00007f94c7bb6038 R14: 00007f94c7bb5fa0 R15: 00007ffdf6a85958
[  995.893993][T21170]  </TASK>
[  997.393992][T21181] netlink: 268 bytes leftover after parsing attributes in process `syz.3.2986'.
[  998.544825][T21235] ERROR: Out of memory at tomoyo_memory_ok.
[  998.632971][T21235] FAULT_INJECTION: forcing a failure.
[  998.632971][T21235] name failslab, interval 1, probability 0, space 0, times 0
[  998.664617][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  998.673118][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  998.708320][T21235] CPU: 0 UID: 0 PID: 21235 Comm: syz.4.2992 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  998.708369][T21235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  998.708389][T21235] Call Trace:
[  998.708402][T21235]  <TASK>
[  998.708416][T21235]  dump_stack_lvl+0x16c/0x1f0
[  998.708457][T21235]  should_fail_ex+0x512/0x640
[  998.708504][T21235]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  998.708545][T21235]  should_failslab+0xc2/0x120
[  998.708583][T21235]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  998.708620][T21235]  ? __d_alloc+0x32/0xae0
[  998.708662][T21235]  __d_alloc+0x32/0xae0
[  998.708696][T21235]  ? do_raw_spin_lock+0x12c/0x2b0
[  998.708747][T21235]  d_alloc+0x4a/0x1e0
[  998.708788][T21235]  d_alloc_name+0x83/0xb0
[  998.708826][T21235]  ? __pfx_d_alloc_name+0x10/0x10
[  998.708862][T21235]  ? __d_add+0x403/0xa50
[  998.708918][T21235]  simple_fill_super+0x2eb/0x720
[  998.708963][T21235]  ? __pfx_nfsd_fill_super+0x10/0x10
[  998.708998][T21235]  nfsd_fill_super+0x90/0x530
[  998.709033][T21235]  ? __pfx_set_anon_super_fc+0x10/0x10
[  998.709065][T21235]  ? __pfx_nfsd_fill_super+0x10/0x10
[  998.709094][T21235]  get_tree_keyed+0x10b/0x1d0
[  998.709129][T21235]  vfs_get_tree+0x8b/0x340
[  998.709157][T21235]  path_mount+0x1482/0x1fd0
[  998.709205][T21235]  ? __pfx_path_mount+0x10/0x10
[  998.709247][T21235]  ? kmem_cache_free+0x2d1/0x4d0
[  998.709284][T21235]  ? putname+0x154/0x1a0
[  998.709334][T21235]  ? putname+0x154/0x1a0
[  998.709378][T21235]  ? __x64_sys_mount+0x28d/0x310
[  998.709414][T21235]  __x64_sys_mount+0x28d/0x310
[  998.709454][T21235]  ? __pfx___x64_sys_mount+0x10/0x10
[  998.709506][T21235]  do_syscall_64+0xcd/0x490
[  998.709545][T21235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  998.709574][T21235] RIP: 0033:0x7f3dc158ebe9
[  998.709600][T21235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  998.709628][T21235] RSP: 002b:00007f3dc23b2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  998.709657][T21235] RAX: ffffffffffffffda RBX: 00007f3dc17b5fa0 RCX: 00007f3dc158ebe9
[  998.709678][T21235] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[  998.709697][T21235] RBP: 00007f3dc1611e19 R08: 0000000000000000 R09: 0000000000000000
[  998.709715][T21235] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[  998.709734][T21235] R13: 00007f3dc17b6038 R14: 00007f3dc17b5fa0 R15: 00007ffc041cc988
[  998.709774][T21235]  </TASK>
[  999.813987][T21297] FAULT_INJECTION: forcing a failure.
[  999.813987][T21297] name failslab, interval 1, probability 0, space 0, times 0
[  999.866069][T21297] CPU: 0 UID: 0 PID: 21297 Comm: syz.2.2998 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[  999.866099][T21297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  999.866110][T21297] Call Trace:
[  999.866117][T21297]  <TASK>
[  999.866125][T21297]  dump_stack_lvl+0x16c/0x1f0
[  999.866159][T21297]  should_fail_ex+0x512/0x640
[  999.866182][T21297]  ? fs_reclaim_acquire+0xae/0x150
[  999.866212][T21297]  ? tomoyo_encode2+0x100/0x3e0
[  999.866234][T21297]  should_failslab+0xc2/0x120
[  999.866260][T21297]  __kmalloc_noprof+0xd2/0x510
[  999.866287][T21297]  tomoyo_encode2+0x100/0x3e0
[  999.866314][T21297]  tomoyo_encode+0x29/0x50
[  999.866336][T21297]  tomoyo_realpath_from_path+0x18f/0x6e0
[  999.866362][T21297]  ? tomoyo_profile+0x47/0x60
[  999.866390][T21297]  tomoyo_path_number_perm+0x245/0x580
[  999.866409][T21297]  ? tomoyo_path_number_perm+0x237/0x580
[  999.866431][T21297]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  999.866452][T21297]  ? find_held_lock+0x2b/0x80
[  999.866491][T21297]  ? find_held_lock+0x2b/0x80
[  999.866508][T21297]  ? hook_file_ioctl_common+0x145/0x410
[  999.866535][T21297]  ? __fget_files+0x20e/0x3c0
[  999.866559][T21297]  security_file_ioctl+0x9b/0x240
[  999.866581][T21297]  __x64_sys_ioctl+0xb7/0x210
[  999.866612][T21297]  do_syscall_64+0xcd/0x490
[  999.866636][T21297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  999.866655][T21297] RIP: 0033:0x7f7e8f78ebe9
[  999.866671][T21297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  999.866690][T21297] RSP: 002b:00007f7e90693038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  999.866708][T21297] RAX: ffffffffffffffda RBX: 00007f7e8f9b5fa0 RCX: 00007f7e8f78ebe9
[  999.866721][T21297] RDX: 00002000000000c0 RSI: 000000004008ae89 RDI: 0000000000000004
[  999.866733][T21297] RBP: 00007f7e90693090 R08: 0000000000000000 R09: 0000000000000000
[  999.866744][T21297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  999.866755][T21297] R13: 00007f7e8f9b6038 R14: 00007f7e8f9b5fa0 R15: 00007ffd735c5b28
[  999.866779][T21297]  </TASK>
[  999.866798][T21297] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1001.619099][T21347] ERROR: Out of memory at tomoyo_memory_ok.
[ 1001.717089][T21347] FAULT_INJECTION: forcing a failure.
[ 1001.717089][T21347] name failslab, interval 1, probability 0, space 0, times 0
[ 1001.824902][T21347] CPU: 1 UID: 0 PID: 21347 Comm: syz.3.3000 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1001.824949][T21347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1001.824967][T21347] Call Trace:
[ 1001.824978][T21347]  <TASK>
[ 1001.824990][T21347]  dump_stack_lvl+0x16c/0x1f0
[ 1001.825029][T21347]  should_fail_ex+0x512/0x640
[ 1001.825067][T21347]  ? fs_reclaim_acquire+0xae/0x150
[ 1001.825118][T21347]  should_failslab+0xc2/0x120
[ 1001.825161][T21347]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1001.825200][T21347]  ? security_inode_alloc+0x3b/0x2b0
[ 1001.825238][T21347]  security_inode_alloc+0x3b/0x2b0
[ 1001.825271][T21347]  inode_init_always_gfp+0xce4/0x1030
[ 1001.825314][T21347]  alloc_inode+0x86/0x240
[ 1001.825359][T21347]  new_inode+0x22/0x1c0
[ 1001.825408][T21347]  simple_fill_super+0x306/0x720
[ 1001.825449][T21347]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1001.825482][T21347]  nfsd_fill_super+0x90/0x530
[ 1001.825512][T21347]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1001.825547][T21347]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1001.825578][T21347]  get_tree_keyed+0x10b/0x1d0
[ 1001.825617][T21347]  vfs_get_tree+0x8b/0x340
[ 1001.825646][T21347]  path_mount+0x1482/0x1fd0
[ 1001.825694][T21347]  ? __pfx_path_mount+0x10/0x10
[ 1001.825745][T21347]  ? kmem_cache_free+0x2d1/0x4d0
[ 1001.825779][T21347]  ? putname+0x154/0x1a0
[ 1001.825826][T21347]  ? putname+0x154/0x1a0
[ 1001.825873][T21347]  ? __x64_sys_mount+0x28d/0x310
[ 1001.825911][T21347]  __x64_sys_mount+0x28d/0x310
[ 1001.825953][T21347]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1001.826005][T21347]  do_syscall_64+0xcd/0x490
[ 1001.826044][T21347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1001.826075][T21347] RIP: 0033:0x7fc91338ebe9
[ 1001.826101][T21347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1001.826132][T21347] RSP: 002b:00007fc91425f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1001.826163][T21347] RAX: ffffffffffffffda RBX: 00007fc9135b6090 RCX: 00007fc91338ebe9
[ 1001.826183][T21347] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[ 1001.826203][T21347] RBP: 00007fc913411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1001.826222][T21347] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[ 1001.826241][T21347] R13: 00007fc9135b6128 R14: 00007fc9135b6090 R15: 00007fff2b541428
[ 1001.826282][T21347]  </TASK>
[ 1004.489958][T21418] ERROR: Out of memory at tomoyo_memory_ok.
[ 1004.566241][T21418] FAULT_INJECTION: forcing a failure.
[ 1004.566241][T21418] name failslab, interval 1, probability 0, space 0, times 0
[ 1004.602141][T21418] CPU: 1 UID: 0 PID: 21418 Comm: syz.4.3006 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1004.602172][T21418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1004.602184][T21418] Call Trace:
[ 1004.602192][T21418]  <TASK>
[ 1004.602200][T21418]  dump_stack_lvl+0x16c/0x1f0
[ 1004.602227][T21418]  should_fail_ex+0x512/0x640
[ 1004.602249][T21418]  ? fs_reclaim_acquire+0xae/0x150
[ 1004.602279][T21418]  should_failslab+0xc2/0x120
[ 1004.602305][T21418]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1004.602328][T21418]  ? security_inode_alloc+0x3b/0x2b0
[ 1004.602349][T21418]  security_inode_alloc+0x3b/0x2b0
[ 1004.602368][T21418]  inode_init_always_gfp+0xce4/0x1030
[ 1004.602393][T21418]  alloc_inode+0x86/0x240
[ 1004.602419][T21418]  new_inode+0x22/0x1c0
[ 1004.602448][T21418]  nfsd_get_inode+0x1a/0x190
[ 1004.602466][T21418]  nfsd_fill_super+0x18e/0x530
[ 1004.602486][T21418]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1004.602504][T21418]  get_tree_keyed+0x10b/0x1d0
[ 1004.602526][T21418]  vfs_get_tree+0x8b/0x340
[ 1004.602543][T21418]  path_mount+0x1482/0x1fd0
[ 1004.602570][T21418]  ? __pfx_path_mount+0x10/0x10
[ 1004.602603][T21418]  ? kmem_cache_free+0x2d1/0x4d0
[ 1004.602623][T21418]  ? putname+0x154/0x1a0
[ 1004.602650][T21418]  ? putname+0x154/0x1a0
[ 1004.602677][T21418]  ? __x64_sys_mount+0x28d/0x310
[ 1004.602699][T21418]  __x64_sys_mount+0x28d/0x310
[ 1004.602722][T21418]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1004.602753][T21418]  do_syscall_64+0xcd/0x490
[ 1004.602775][T21418]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1004.602795][T21418] RIP: 0033:0x7f3dc158ebe9
[ 1004.602811][T21418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1004.602828][T21418] RSP: 002b:00007f3dc2391038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1004.602847][T21418] RAX: ffffffffffffffda RBX: 00007f3dc17b6090 RCX: 00007f3dc158ebe9
[ 1004.602862][T21418] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[ 1004.602873][T21418] RBP: 00007f3dc1611e19 R08: 0000000000000000 R09: 0000000000000000
[ 1004.602884][T21418] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[ 1004.602895][T21418] R13: 00007f3dc17b6128 R14: 00007f3dc17b6090 R15: 00007ffc041cc988
[ 1004.602918][T21418]  </TASK>
[ 1005.149041][T21408] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3005'.
[ 1005.672488][T21441] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3009'.
[ 1006.369829][T21473] ERROR: Out of memory at tomoyo_memory_ok.
[ 1006.390317][T21473] FAULT_INJECTION: forcing a failure.
[ 1006.390317][T21473] name failslab, interval 1, probability 0, space 0, times 0
[ 1006.433313][T21473] CPU: 1 UID: 0 PID: 21473 Comm: syz.4.3013 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1006.433361][T21473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1006.433380][T21473] Call Trace:
[ 1006.433392][T21473]  <TASK>
[ 1006.433404][T21473]  dump_stack_lvl+0x16c/0x1f0
[ 1006.433443][T21473]  should_fail_ex+0x512/0x640
[ 1006.433479][T21473]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[ 1006.433524][T21473]  should_failslab+0xc2/0x120
[ 1006.433566][T21473]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[ 1006.433604][T21473]  ? __d_alloc+0x32/0xae0
[ 1006.433661][T21473]  __d_alloc+0x32/0xae0
[ 1006.433696][T21473]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1006.433748][T21473]  d_alloc+0x4a/0x1e0
[ 1006.433789][T21473]  d_alloc_name+0x83/0xb0
[ 1006.433826][T21473]  ? __pfx_d_alloc_name+0x10/0x10
[ 1006.433863][T21473]  ? __d_add+0x403/0xa50
[ 1006.433910][T21473]  simple_fill_super+0x2eb/0x720
[ 1006.433951][T21473]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1006.433984][T21473]  nfsd_fill_super+0x90/0x530
[ 1006.434014][T21473]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1006.434049][T21473]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1006.434080][T21473]  get_tree_keyed+0x10b/0x1d0
[ 1006.434118][T21473]  vfs_get_tree+0x8b/0x340
[ 1006.434147][T21473]  path_mount+0x1482/0x1fd0
[ 1006.434191][T21473]  ? __pfx_path_mount+0x10/0x10
[ 1006.434234][T21473]  ? kmem_cache_free+0x2d1/0x4d0
[ 1006.434268][T21473]  ? putname+0x154/0x1a0
[ 1006.434317][T21473]  ? putname+0x154/0x1a0
[ 1006.434363][T21473]  ? __x64_sys_mount+0x28d/0x310
[ 1006.434400][T21473]  __x64_sys_mount+0x28d/0x310
[ 1006.434440][T21473]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1006.434492][T21473]  do_syscall_64+0xcd/0x490
[ 1006.434532][T21473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1006.434563][T21473] RIP: 0033:0x7f3dc158ebe9
[ 1006.434589][T21473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1006.434619][T21473] RSP: 002b:00007f3dc2391038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1006.434658][T21473] RAX: ffffffffffffffda RBX: 00007f3dc17b6090 RCX: 00007f3dc158ebe9
[ 1006.434679][T21473] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[ 1006.434699][T21473] RBP: 00007f3dc1611e19 R08: 0000000000000000 R09: 0000000000000000
[ 1006.434718][T21473] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[ 1006.434738][T21473] R13: 00007f3dc17b6128 R14: 00007f3dc17b6090 R15: 00007ffc041cc988
[ 1006.434780][T21473]  </TASK>
[ 1007.579931][T21513] ERROR: Out of memory at tomoyo_memory_ok.
[ 1007.616293][T21513] FAULT_INJECTION: forcing a failure.
[ 1007.616293][T21513] name failslab, interval 1, probability 0, space 0, times 0
[ 1007.691109][T21513] CPU: 0 UID: 0 PID: 21513 Comm: syz.1.3016 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1007.691159][T21513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1007.691177][T21513] Call Trace:
[ 1007.691188][T21513]  <TASK>
[ 1007.691202][T21513]  dump_stack_lvl+0x16c/0x1f0
[ 1007.691244][T21513]  should_fail_ex+0x512/0x640
[ 1007.691282][T21513]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[ 1007.691328][T21513]  should_failslab+0xc2/0x120
[ 1007.691381][T21513]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[ 1007.691430][T21513]  ? __d_alloc+0x32/0xae0
[ 1007.691496][T21513]  __d_alloc+0x32/0xae0
[ 1007.691541][T21513]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1007.691608][T21513]  d_alloc+0x4a/0x1e0
[ 1007.691655][T21513]  d_alloc_name+0x83/0xb0
[ 1007.691703][T21513]  ? __pfx_d_alloc_name+0x10/0x10
[ 1007.691747][T21513]  ? __d_add+0x403/0xa50
[ 1007.691812][T21513]  simple_fill_super+0x2eb/0x720
[ 1007.691858][T21513]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1007.691892][T21513]  nfsd_fill_super+0x90/0x530
[ 1007.691932][T21513]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1007.691965][T21513]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1007.691995][T21513]  get_tree_keyed+0x10b/0x1d0
[ 1007.692032][T21513]  vfs_get_tree+0x8b/0x340
[ 1007.692061][T21513]  path_mount+0x1482/0x1fd0
[ 1007.692109][T21513]  ? __pfx_path_mount+0x10/0x10
[ 1007.692152][T21513]  ? kmem_cache_free+0x2d1/0x4d0
[ 1007.692186][T21513]  ? putname+0x154/0x1a0
[ 1007.692233][T21513]  ? putname+0x154/0x1a0
[ 1007.692277][T21513]  ? __x64_sys_mount+0x28d/0x310
[ 1007.692312][T21513]  __x64_sys_mount+0x28d/0x310
[ 1007.692351][T21513]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1007.692402][T21513]  do_syscall_64+0xcd/0x490
[ 1007.692443][T21513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1007.692472][T21513] RIP: 0033:0x7f94c798ebe9
[ 1007.692496][T21513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1007.692526][T21513] RSP: 002b:00007f94c5bcd038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1007.692557][T21513] RAX: ffffffffffffffda RBX: 00007f94c7bb6090 RCX: 00007f94c798ebe9
[ 1007.692579][T21513] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[ 1007.692598][T21513] RBP: 00007f94c7a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1007.692617][T21513] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[ 1007.692637][T21513] R13: 00007f94c7bb6128 R14: 00007f94c7bb6090 R15: 00007ffdf6a85958
[ 1007.692677][T21513]  </TASK>
[ 1008.371050][T21500] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3014'.
[ 1011.219176][T21622] ERROR: Out of memory at tomoyo_memory_ok.
[ 1012.558991][T21664] ERROR: Out of memory at tomoyo_memory_ok.
[ 1012.693320][T21664] FAULT_INJECTION: forcing a failure.
[ 1012.693320][T21664] name failslab, interval 1, probability 0, space 0, times 0
[ 1012.877874][T21664] CPU: 1 UID: 0 PID: 21664 Comm: syz.3.3029 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1012.877922][T21664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1012.877940][T21664] Call Trace:
[ 1012.877951][T21664]  <TASK>
[ 1012.877965][T21664]  dump_stack_lvl+0x16c/0x1f0
[ 1012.878007][T21664]  should_fail_ex+0x512/0x640
[ 1012.878045][T21664]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[ 1012.878089][T21664]  should_failslab+0xc2/0x120
[ 1012.878132][T21664]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[ 1012.878172][T21664]  ? __d_alloc+0x32/0xae0
[ 1012.878225][T21664]  __d_alloc+0x32/0xae0
[ 1012.878270][T21664]  d_alloc+0x4a/0x1e0
[ 1012.878312][T21664]  d_alloc_name+0x83/0xb0
[ 1012.878349][T21664]  ? __pfx_d_alloc_name+0x10/0x10
[ 1012.878406][T21664]  nfsd_mkdir+0x59/0x3a0
[ 1012.878442][T21664]  nfsd_fill_super+0x3b4/0x530
[ 1012.878478][T21664]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1012.878509][T21664]  get_tree_keyed+0x10b/0x1d0
[ 1012.878549][T21664]  vfs_get_tree+0x8b/0x340
[ 1012.878578][T21664]  path_mount+0x1482/0x1fd0
[ 1012.878638][T21664]  ? __pfx_path_mount+0x10/0x10
[ 1012.878683][T21664]  ? kmem_cache_free+0x2d1/0x4d0
[ 1012.878717][T21664]  ? putname+0x154/0x1a0
[ 1012.878766][T21664]  ? putname+0x154/0x1a0
[ 1012.878814][T21664]  ? __x64_sys_mount+0x28d/0x310
[ 1012.878851][T21664]  __x64_sys_mount+0x28d/0x310
[ 1012.878891][T21664]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1012.878946][T21664]  do_syscall_64+0xcd/0x490
[ 1012.878985][T21664]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1012.879018][T21664] RIP: 0033:0x7fc91338ebe9
[ 1012.879043][T21664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1012.879073][T21664] RSP: 002b:00007fc91425f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1012.879104][T21664] RAX: ffffffffffffffda RBX: 00007fc9135b6090 RCX: 00007fc91338ebe9
[ 1012.879126][T21664] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[ 1012.879146][T21664] RBP: 00007fc913411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1012.879165][T21664] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[ 1012.879184][T21664] R13: 00007fc9135b6128 R14: 00007fc9135b6090 R15: 00007fff2b541428
[ 1012.879229][T21664]  </TASK>
[ 1015.184238][T21737] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3039'.
[ 1020.092181][T21899] FAULT_INJECTION: forcing a failure.
[ 1020.092181][T21899] name failslab, interval 1, probability 0, space 0, times 0
[ 1020.149977][T21899] CPU: 1 UID: 0 PID: 21899 Comm: syz.4.3052 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1020.150024][T21899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1020.150043][T21899] Call Trace:
[ 1020.150053][T21899]  <TASK>
[ 1020.150066][T21899]  dump_stack_lvl+0x16c/0x1f0
[ 1020.150101][T21899]  should_fail_ex+0x512/0x640
[ 1020.150126][T21899]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1020.150152][T21899]  should_failslab+0xc2/0x120
[ 1020.150177][T21899]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1020.150200][T21899]  ? vma_merge_new_range+0x3ae/0xa50
[ 1020.150221][T21899]  ? vm_area_alloc+0x1f/0x160
[ 1020.150244][T21899]  vm_area_alloc+0x1f/0x160
[ 1020.150263][T21899]  __mmap_region+0xf90/0x27b0
[ 1020.150287][T21899]  ? finish_task_switch.isra.0+0x21c/0xc10
[ 1020.150308][T21899]  ? __pfx___mmap_region+0x10/0x10
[ 1020.150328][T21899]  ? rcu_is_watching+0x12/0xc0
[ 1020.150352][T21899]  ? rcu_is_watching+0x12/0xc0
[ 1020.150370][T21899]  ? trace_sched_exit_tp+0xd1/0x120
[ 1020.150398][T21899]  ? __schedule+0x11a3/0x5de0
[ 1020.150415][T21899]  ? __lock_acquire+0x62e/0x1ce0
[ 1020.150450][T21899]  ? __pfx___schedule+0x10/0x10
[ 1020.150493][T21899]  ? trace_cap_capable+0x18d/0x200
[ 1020.150529][T21899]  mmap_region+0x1ab/0x3f0
[ 1020.150550][T21899]  ? __get_unmapped_area+0x267/0x440
[ 1020.150594][T21899]  do_mmap+0xa3e/0x1210
[ 1020.150625][T21899]  ? __pfx_do_mmap+0x10/0x10
[ 1020.150651][T21899]  ? __pfx_down_write_killable+0x10/0x10
[ 1020.150679][T21899]  vm_mmap_pgoff+0x29e/0x470
[ 1020.150711][T21899]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1020.150743][T21899]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1020.150766][T21899]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1020.150792][T21899]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1020.150818][T21899]  ? xfd_validate_state+0x61/0x180
[ 1020.150844][T21899]  ? __pfx_ksys_write+0x10/0x10
[ 1020.150868][T21899]  __x64_sys_mmap+0x125/0x190
[ 1020.150898][T21899]  do_syscall_64+0xcd/0x490
[ 1020.150921][T21899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1020.150940][T21899] RIP: 0033:0x7f3dc158ebe9
[ 1020.150956][T21899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1020.150973][T21899] RSP: 002b:00007f3dc23b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1020.150992][T21899] RAX: ffffffffffffffda RBX: 00007f3dc17b5fa0 RCX: 00007f3dc158ebe9
[ 1020.151003][T21899] RDX: 00004000000000df RSI: 0000000000000101 RDI: 0000000000000000
[ 1020.151014][T21899] RBP: 00007f3dc1611e19 R08: 0000000200000401 R09: 0000000000008000
[ 1020.151026][T21899] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[ 1020.151037][T21899] R13: 00007f3dc17b6038 R14: 00007f3dc17b5fa0 R15: 00007ffc041cc988
[ 1020.151060][T21899]  </TASK>
[ 1020.326826][T21862] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3048'.
[ 1020.617590][T21909] 0x000200000001-0xa29656a63616329 : ""
[ 1020.617743][T21909] mtd: partition "" is out of reach -- disabled
[ 1020.749440][T21909] ftl_cs: FTL header not found.
[ 1021.118843][T21916] ERROR: Out of memory at tomoyo_memory_ok.
[ 1021.661072][T21899] tty tty12: ldisc open failed (-12), clearing slot 11
[ 1024.293768][T22035] ERROR: Out of memory at tomoyo_memory_ok.
[ 1025.588994][T22083] FAULT_INJECTION: forcing a failure.
[ 1025.588994][T22083] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1025.652025][T22083] CPU: 0 UID: 0 PID: 22083 Comm: syz.2.3066 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1025.652069][T22083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1025.652087][T22083] Call Trace:
[ 1025.652098][T22083]  <TASK>
[ 1025.652110][T22083]  dump_stack_lvl+0x16c/0x1f0
[ 1025.652151][T22083]  should_fail_ex+0x512/0x640
[ 1025.652194][T22083]  _copy_from_user+0x2e/0xd0
[ 1025.652236][T22083]  memdup_user+0x6b/0xe0
[ 1025.652275][T22083]  kvm_arch_vcpu_ioctl+0xf3f/0x52d0
[ 1025.652318][T22083]  ? stack_trace_save+0x8e/0xc0
[ 1025.652357][T22083]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[ 1025.652390][T22083]  ? __lock_acquire+0xb97/0x1ce0
[ 1025.652433][T22083]  ? kasan_save_stack+0x42/0x60
[ 1025.652466][T22083]  ? kasan_save_stack+0x33/0x60
[ 1025.652502][T22083]  ? kasan_save_track+0x14/0x30
[ 1025.652533][T22083]  ? kasan_save_free_info+0x3b/0x60
[ 1025.652558][T22083]  ? __kasan_slab_free+0x60/0x70
[ 1025.652592][T22083]  ? kfree+0x2b4/0x4d0
[ 1025.652618][T22083]  ? tomoyo_path_number_perm+0x470/0x580
[ 1025.652657][T22083]  ? __lock_acquire+0xb97/0x1ce0
[ 1025.652711][T22083]  ? __mutex_trylock_common+0xe9/0x250
[ 1025.652754][T22083]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1025.652804][T22083]  ? __pfx___might_resched+0x10/0x10
[ 1025.652839][T22083]  ? rcu_is_watching+0x12/0xc0
[ 1025.652871][T22083]  ? trace_contention_end+0xdd/0x130
[ 1025.652911][T22083]  ? __mutex_lock+0x1c4/0x10b0
[ 1025.652952][T22083]  ? kasan_quarantine_put+0x10a/0x240
[ 1025.652990][T22083]  ? __pfx___mutex_lock+0x10/0x10
[ 1025.653040][T22083]  ? tomoyo_path_number_perm+0x18d/0x580
[ 1025.653078][T22083]  ? kvm_vcpu_ioctl+0x1236/0x1690
[ 1025.653114][T22083]  kvm_vcpu_ioctl+0x1236/0x1690
[ 1025.653158][T22083]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1025.653198][T22083]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1025.653246][T22083]  ? do_vfs_ioctl+0x128/0x14f0
[ 1025.653293][T22083]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1025.653351][T22083]  ? find_held_lock+0x2b/0x80
[ 1025.653380][T22083]  ? hook_file_ioctl_common+0x145/0x410
[ 1025.653425][T22083]  ? __fget_files+0x20e/0x3c0
[ 1025.653466][T22083]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1025.653507][T22083]  __x64_sys_ioctl+0x18e/0x210
[ 1025.653553][T22083]  do_syscall_64+0xcd/0x490
[ 1025.653591][T22083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1025.653621][T22083] RIP: 0033:0x7f7e8f78ebe9
[ 1025.653646][T22083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1025.653673][T22083] RSP: 002b:00007f7e90693038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1025.653703][T22083] RAX: ffffffffffffffda RBX: 00007f7e8f9b5fa0 RCX: 00007f7e8f78ebe9
[ 1025.653724][T22083] RDX: 00002000000000c0 RSI: 000000004008ae89 RDI: 0000000000000004
[ 1025.653743][T22083] RBP: 00007f7e90693090 R08: 0000000000000000 R09: 0000000000000000
[ 1025.653763][T22083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1025.653782][T22083] R13: 00007f7e8f9b6038 R14: 00007f7e8f9b5fa0 R15: 00007ffd735c5b28
[ 1025.653833][T22083]  </TASK>
[ 1028.178654][T22142] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3072'.
[ 1028.224045][T22107] netlink: 268 bytes leftover after parsing attributes in process `syz.2.3070'.
[ 1030.596929][T22186] ERROR: Out of memory at tomoyo_memory_ok.
[ 1031.108984][T22202] kmem.limit_in_bytes is deprecated and will be removed. Writing any value to this file has no effect. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 1032.409626][T22238] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3085'.
[ 1033.009625][T22241] ERROR: Out of memory at tomoyo_memory_ok.
[ 1035.220758][T22281] ptrace attach of "./syz-executor exec"[17035] was attempted by "./syz-executor exec"[22281]
[ 1035.579383][T22364] vivid-003: =================  START STATUS  =================
[ 1035.615979][T22364] vivid-003: Radio HW Seek Mode: Bounded
[ 1035.629854][T22364] vivid-003: Radio Programmable HW Seek: false
[ 1035.656452][T22364] vivid-003: RDS Rx I/O Mode: Block I/O
[ 1035.707264][T22364] vivid-003: Generate RBDS Instead of RDS: false
[ 1035.877518][T22364] vivid-003: RDS Reception: true
[ 1035.883847][T22364] vivid-003: RDS Program Type: 0 inactive
[ 1035.889825][T22364] vivid-003: RDS PS Name:  inactive
[ 1035.901100][T22364] vivid-003: RDS Radio Text:  inactive
[ 1035.922552][T22364] vivid-003: RDS Traffic Announcement: false inactive
[ 1035.983964][T22364] vivid-003: RDS Traffic Program: false inactive
[ 1035.996105][T22364] vivid-003: RDS Music: false inactive
[ 1036.006209][T22364] vivid-003: ==================  END STATUS  ==================
[ 1042.504798][T22588] ERROR: Out of memory at tomoyo_memory_ok.
[ 1042.525876][   T30] audit: type=1800 audit(4294980542.477:209): pid=22586 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3113" name="features" dev="configfs" ino=100668 res=0 errno=0
[ 1042.548214][T22588] FAULT_INJECTION: forcing a failure.
[ 1042.548214][T22588] name failslab, interval 1, probability 0, space 0, times 0
[ 1042.689408][T22588] CPU: 0 UID: 0 PID: 22588 Comm: syz.1.3114 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1042.689454][T22588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1042.689473][T22588] Call Trace:
[ 1042.689485][T22588]  <TASK>
[ 1042.689499][T22588]  dump_stack_lvl+0x16c/0x1f0
[ 1042.689543][T22588]  should_fail_ex+0x512/0x640
[ 1042.689583][T22588]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[ 1042.689629][T22588]  should_failslab+0xc2/0x120
[ 1042.689672][T22588]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[ 1042.689713][T22588]  ? __d_alloc+0x32/0xae0
[ 1042.689760][T22588]  __d_alloc+0x32/0xae0
[ 1042.689798][T22588]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1042.689865][T22588]  d_alloc+0x4a/0x1e0
[ 1042.689909][T22588]  d_alloc_name+0x83/0xb0
[ 1042.689950][T22588]  ? __pfx_d_alloc_name+0x10/0x10
[ 1042.689987][T22588]  ? __d_add+0x403/0xa50
[ 1042.690038][T22588]  simple_fill_super+0x2eb/0x720
[ 1042.690079][T22588]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1042.690112][T22588]  nfsd_fill_super+0x90/0x530
[ 1042.690142][T22588]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1042.690175][T22588]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1042.690207][T22588]  get_tree_keyed+0x10b/0x1d0
[ 1042.690247][T22588]  vfs_get_tree+0x8b/0x340
[ 1042.690278][T22588]  path_mount+0x1482/0x1fd0
[ 1042.690326][T22588]  ? __pfx_path_mount+0x10/0x10
[ 1042.690370][T22588]  ? kmem_cache_free+0x2d1/0x4d0
[ 1042.690406][T22588]  ? putname+0x154/0x1a0
[ 1042.690454][T22588]  ? putname+0x154/0x1a0
[ 1042.690502][T22588]  ? __x64_sys_mount+0x28d/0x310
[ 1042.690541][T22588]  __x64_sys_mount+0x28d/0x310
[ 1042.690583][T22588]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1042.690637][T22588]  do_syscall_64+0xcd/0x490
[ 1042.690677][T22588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1042.690710][T22588] RIP: 0033:0x7f94c798ebe9
[ 1042.690738][T22588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1042.690771][T22588] RSP: 002b:00007f94c5bcd038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1042.690804][T22588] RAX: ffffffffffffffda RBX: 00007f94c7bb6090 RCX: 00007f94c798ebe9
[ 1042.690826][T22588] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[ 1042.690855][T22588] RBP: 00007f94c7a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1042.690876][T22588] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[ 1042.690896][T22588] R13: 00007f94c7bb6128 R14: 00007f94c7bb6090 R15: 00007ffdf6a85958
[ 1042.690941][T22588]  </TASK>
[ 1044.505526][T22634] zswap: compressor  not available
[ 1044.774381][T22654] random: crng reseeded on system resumption
[ 1045.048005][T22658] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3121'.
[ 1048.315074][T22772] netlink: 146 bytes leftover after parsing attributes in process `syz.2.3135'.
[ 1049.139651][T22785] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3138'.
[ 1049.160858][T22785] ipvlan0: entered allmulticast mode
[ 1049.174046][T22785] veth0_vlan: entered allmulticast mode
[ 1049.214584][T22730] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3132'.
[ 1051.205660][T22824] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3141'.
[ 1051.914869][T22858] hub 3-0:1.0: USB hub found
[ 1051.971677][T22858] hub 3-0:1.0: 1 port detected
[ 1052.262342][T22858] usb usb3: authorized to connect
[ 1053.633467][T22889] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3149'.
[ 1054.296437][T22913] netlink: 'syz.2.3152': attribute type 1 has an invalid length.
[ 1054.307071][T22913] netlink: 322 bytes leftover after parsing attributes in process `syz.2.3152'.
[ 1054.825723][T22946] netlink: 'syz.4.3155': attribute type 2 has an invalid length.
[ 1054.868848][T22946] netlink: 'syz.4.3155': attribute type 2 has an invalid length.
[ 1055.565651][T22969] netlink: 'syz.3.3160': attribute type 11 has an invalid length.
[ 1056.600323][T22976] netlink: 268 bytes leftover after parsing attributes in process `syz.2.3161'.
[ 1057.319636][T22999] tipc: Enabling of bearer <@):^\/\> rejected, media not registered
[ 1057.586578][T23012] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3170'.
[ 1057.697893][T23010] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3170'.
[ 1057.725748][T23010] netlink: 250 bytes leftover after parsing attributes in process `syz.1.3170'.
[ 1059.161487][T23067] ubi0: attaching mtd0
[ 1059.174830][T23067] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1059.210420][T23071] syz.1.3180(23071): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[ 1059.998093][   T30] audit: type=1800 audit(4294980559.918:210): pid=23109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3185" name="features" dev="configfs" ino=101653 res=0 errno=0
[ 1060.136613][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1060.145149][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1060.378967][T23104] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3186'.
[ 1060.538799][T23113] FAULT_INJECTION: forcing a failure.
[ 1060.538799][T23113] name failslab, interval 1, probability 0, space 0, times 0
[ 1060.553156][T23113] CPU: 0 UID: 0 PID: 23113 Comm: syz.4.3187 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1060.553206][T23113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1060.553226][T23113] Call Trace:
[ 1060.553237][T23113]  <TASK>
[ 1060.553251][T23113]  dump_stack_lvl+0x16c/0x1f0
[ 1060.553293][T23113]  should_fail_ex+0x512/0x640
[ 1060.553331][T23113]  ? __kmalloc_noprof+0xbf/0x510
[ 1060.553371][T23113]  ? lsm_blob_alloc+0x68/0x90
[ 1060.553413][T23113]  should_failslab+0xc2/0x120
[ 1060.553454][T23113]  __kmalloc_noprof+0xd2/0x510
[ 1060.553501][T23113]  lsm_blob_alloc+0x68/0x90
[ 1060.553544][T23113]  security_sk_alloc+0x30/0x270
[ 1060.553576][T23113]  sk_prot_alloc+0x1c7/0x2a0
[ 1060.553621][T23113]  sk_alloc+0x36/0xc20
[ 1060.553655][T23113]  __netlink_create+0x5e/0x2c0
[ 1060.553700][T23113]  ? __wake_up+0x3f/0x60
[ 1060.553736][T23113]  netlink_create+0x39e/0x620
[ 1060.553766][T23113]  ? __pfx_genl_bind+0x10/0x10
[ 1060.553811][T23113]  ? __pfx_genl_unbind+0x10/0x10
[ 1060.553844][T23113]  ? __pfx_genl_release+0x10/0x10
[ 1060.553887][T23113]  __sock_create+0x338/0x8d0
[ 1060.553940][T23113]  __sys_socket+0x14d/0x260
[ 1060.553986][T23113]  ? __pfx___sys_socket+0x10/0x10
[ 1060.554033][T23113]  ? do_user_addr_fault+0x843/0x1370
[ 1060.554089][T23113]  __x64_sys_socket+0x72/0xb0
[ 1060.554132][T23113]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1060.554164][T23113]  do_syscall_64+0xcd/0x490
[ 1060.554203][T23113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1060.554234][T23113] RIP: 0033:0x7f3dc1590b07
[ 1060.554260][T23113] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1060.554290][T23113] RSP: 002b:00007f3dc23b0fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[ 1060.554320][T23113] RAX: ffffffffffffffda RBX: 00007f3dc17b5fa0 RCX: 00007f3dc1590b07
[ 1060.554342][T23113] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[ 1060.554360][T23113] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[ 1060.554379][T23113] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000
[ 1060.554398][T23113] R13: 00007f3dc17b6038 R14: 00007f3dc17b5fa0 R15: 00007ffc041cc988
[ 1060.554439][T23113]  </TASK>
[ 1060.780255][T23113] __vm_enough_memory: pid: 23113, comm: syz.4.3187, bytes: 4398046511104 not enough memory for the allocation
[ 1060.928736][T23118] openvswitch: netlink: IP tunnel TTL not specified.
[ 1061.042819][T23124] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16
[ 1061.104265][T23121] ERROR: Out of memory at tomoyo_memory_ok.
[ 1061.193427][T23121] FAULT_INJECTION: forcing a failure.
[ 1061.193427][T23121] name failslab, interval 1, probability 0, space 0, times 0
[ 1061.280642][T23121] CPU: 1 UID: 0 PID: 23121 Comm: syz.4.3189 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1061.280698][T23121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1061.280718][T23121] Call Trace:
[ 1061.280729][T23121]  <TASK>
[ 1061.280741][T23121]  dump_stack_lvl+0x16c/0x1f0
[ 1061.280782][T23121]  should_fail_ex+0x512/0x640
[ 1061.280820][T23121]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[ 1061.280863][T23121]  should_failslab+0xc2/0x120
[ 1061.280904][T23121]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[ 1061.280938][T23121]  ? _raw_spin_unlock+0x28/0x50
[ 1061.280966][T23121]  ? alloc_inode+0xc3/0x240
[ 1061.281014][T23121]  alloc_inode+0xc3/0x240
[ 1061.281055][T23121]  new_inode+0x22/0x1c0
[ 1061.281099][T23121]  simple_fill_super+0x306/0x720
[ 1061.281141][T23121]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1061.281176][T23121]  nfsd_fill_super+0x90/0x530
[ 1061.281206][T23121]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1061.281239][T23121]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1061.281269][T23121]  get_tree_keyed+0x10b/0x1d0
[ 1061.281307][T23121]  vfs_get_tree+0x8b/0x340
[ 1061.281336][T23121]  path_mount+0x1482/0x1fd0
[ 1061.281383][T23121]  ? __pfx_path_mount+0x10/0x10
[ 1061.281425][T23121]  ? kmem_cache_free+0x2d1/0x4d0
[ 1061.281456][T23121]  ? putname+0x154/0x1a0
[ 1061.281501][T23121]  ? putname+0x154/0x1a0
[ 1061.281544][T23121]  ? __x64_sys_mount+0x28d/0x310
[ 1061.281578][T23121]  __x64_sys_mount+0x28d/0x310
[ 1061.281614][T23121]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1061.281664][T23121]  do_syscall_64+0xcd/0x490
[ 1061.281712][T23121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1061.281741][T23121] RIP: 0033:0x7f3dc158ebe9
[ 1061.281766][T23121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1061.281796][T23121] RSP: 002b:00007f3dc2391038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1061.281827][T23121] RAX: ffffffffffffffda RBX: 00007f3dc17b6090 RCX: 00007f3dc158ebe9
[ 1061.281848][T23121] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[ 1061.281867][T23121] RBP: 00007f3dc1611e19 R08: 0000000000000000 R09: 0000000000000000
[ 1061.281887][T23121] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[ 1061.281906][T23121] R13: 00007f3dc17b6128 R14: 00007f3dc17b6090 R15: 00007ffc041cc988
[ 1061.281948][T23121]  </TASK>
[ 1062.905420][T23214] ubi0: attaching mtd0
[ 1062.930205][T23214] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1065.340846][T23282] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3200'.
[ 1065.351011][T23282] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3200'.
[ 1065.361838][T23282] netlink: 250 bytes leftover after parsing attributes in process `syz.1.3200'.
[ 1067.003633][T23343] ubi0: attaching mtd0
[ 1067.007790][T23343] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1067.442001][T23363] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3206'.
[ 1067.451889][T23363] bridge_slave_1: left allmulticast mode
[ 1067.458199][T23363] bridge_slave_1: left promiscuous mode
[ 1067.465167][T23363] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1067.475259][T23363] bridge_slave_0: left allmulticast mode
[ 1067.480953][T23363] bridge_slave_0: left promiscuous mode
[ 1067.487021][T23363] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1068.667076][T23376] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3209'.
[ 1069.218469][T23383] netlink: 'syz.1.3211': attribute type 2 has an invalid length.
[ 1069.227640][T23383] netlink: 'syz.1.3211': attribute type 2 has an invalid length.
[ 1069.760413][T23397] ubi0: attaching mtd0
[ 1069.766725][T23397] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1070.340892][T23425] synth uevent: /bus/mei: unknown uevent action string
[ 1071.272181][T23443] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3216'.
[ 1072.236763][T23451] FAULT_INJECTION: forcing a failure.
[ 1072.236763][T23451] name failslab, interval 1, probability 0, space 0, times 0
[ 1072.249601][T23451] CPU: 1 UID: 0 PID: 23451 Comm: syz.3.3220 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1072.249646][T23451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1072.249664][T23451] Call Trace:
[ 1072.249675][T23451]  <TASK>
[ 1072.249687][T23451]  dump_stack_lvl+0x16c/0x1f0
[ 1072.249723][T23451]  should_fail_ex+0x512/0x640
[ 1072.249767][T23451]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1072.249801][T23451]  should_failslab+0xc2/0x120
[ 1072.249838][T23451]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1072.249867][T23451]  ? get_mm_exe_file+0x8a/0x1a0
[ 1072.249901][T23451]  ? landlock_init_hierarchy_log+0xa7/0x810
[ 1072.249947][T23451]  landlock_init_hierarchy_log+0xa7/0x810
[ 1072.249990][T23451]  landlock_merge_ruleset+0x6e1/0x870
[ 1072.250022][T23451]  ? prepare_creds+0x583/0x7d0
[ 1072.250065][T23451]  __do_sys_landlock_restrict_self+0x2a2/0x910
[ 1072.250116][T23451]  do_syscall_64+0xcd/0x490
[ 1072.250151][T23451]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1072.250181][T23451] RIP: 0033:0x7fc91338ebe9
[ 1072.250205][T23451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1072.250232][T23451] RSP: 002b:00007fc914280038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[ 1072.250261][T23451] RAX: ffffffffffffffda RBX: 00007fc9135b5fa0 RCX: 00007fc91338ebe9
[ 1072.250281][T23451] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000007
[ 1072.250298][T23451] RBP: 00007fc913411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1072.250316][T23451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1072.250334][T23451] R13: 00007fc9135b6038 R14: 00007fc9135b5fa0 R15: 00007fff2b541428
[ 1072.250373][T23451]  </TASK>
[ 1073.384401][T23463] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3222'.
[ 1075.283810][T19330] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1075.298811][T19330] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1075.312314][T19330] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1075.340408][T19330] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1075.348397][T19330] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1075.416629][T23525] netlink: 'syz.3.3227': attribute type 2 has an invalid length.
[ 1075.465216][T23525] netlink: 'syz.3.3227': attribute type 2 has an invalid length.
[ 1076.704357][T23518] chnl_net:caif_netlink_parms(): no params data found
[ 1076.951140][T23676] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3231'.
[ 1077.091938][T23518] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1077.113275][T23518] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1077.139034][T16746] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1077.157035][T16746] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1077.157142][T23518] bridge_slave_0: entered allmulticast mode
[ 1077.182003][T16746] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1077.195109][T16746] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1077.203875][T16746] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1077.221842][T23518] bridge_slave_0: entered promiscuous mode
[ 1077.247691][T23518] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1077.265941][T23518] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1077.284987][T23518] bridge_slave_1: entered allmulticast mode
[ 1077.302625][T23518] bridge_slave_1: entered promiscuous mode
[ 1077.433872][T16746] Bluetooth: hci2: command tx timeout
[ 1077.506319][T23518] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1077.595772][T23518] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1077.970875][T23518] team0: Port device team_slave_0 added
[ 1078.006130][T23518] team0: Port device team_slave_1 added
[ 1078.025125][T23789] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1078.636300][T23518] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1078.657516][T23518] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1078.713243][T23518] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1078.834982][T23518] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1078.860772][T23518] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1078.892601][T23518] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1079.260164][T16746] Bluetooth: hci5: command tx timeout
[ 1079.307006][T23518] hsr_slave_0: entered promiscuous mode
[ 1079.317422][T23518] hsr_slave_1: entered promiscuous mode
[ 1079.326593][T23518] debugfs: 'hsr0' already exists in 'hsr'
[ 1079.332963][T23518] Cannot create hsr debugfs directory
[ 1079.499951][T16746] Bluetooth: hci2: command tx timeout
[ 1080.360863][T23518] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1080.461623][T23518] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1080.554435][T23713] chnl_net:caif_netlink_parms(): no params data found
[ 1080.691815][T23518] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1080.918108][T23518] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1081.321631][T23713] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1081.328850][T23713] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1081.348509][T16746] Bluetooth: hci5: command tx timeout
[ 1081.365826][T23713] bridge_slave_0: entered allmulticast mode
[ 1081.374875][T23713] bridge_slave_0: entered promiscuous mode
[ 1081.393971][T23713] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1081.404475][T23713] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1081.411872][T23713] bridge_slave_1: entered allmulticast mode
[ 1081.419546][T23713] bridge_slave_1: entered promiscuous mode
[ 1081.583600][T23713] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1081.587190][T16746] Bluetooth: hci2: command tx timeout
[ 1081.628841][T23713] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1081.816228][T23713] team0: Port device team_slave_0 added
[ 1081.842844][T23713] team0: Port device team_slave_1 added
[ 1081.991183][T23713] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1082.019791][T23713] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1082.096358][T23713] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1082.136291][T23713] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1082.152811][T23713] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1082.179189][T23713] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1082.548868][T24140] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3237'.
[ 1082.620860][T23713] hsr_slave_0: entered promiscuous mode
[ 1082.702990][T23713] hsr_slave_1: entered promiscuous mode
[ 1082.758758][T23713] debugfs: 'hsr0' already exists in 'hsr'
[ 1082.827787][T23713] Cannot create hsr debugfs directory
[ 1082.979073][T23518] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1083.421751][T16746] Bluetooth: hci5: command tx timeout
[ 1083.438829][T23518] 8021q: adding VLAN 0 to HW filter on device team0
[ 1083.634111][T13731] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1083.641340][T13731] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1083.663002][T16746] Bluetooth: hci2: command tx timeout
[ 1083.767357][T18568] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1083.774586][T18568] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1084.821621][T23518] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1085.093442][T23713] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1085.157681][T23713] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1085.207326][T23713] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1085.506803][T16746] Bluetooth: hci5: command tx timeout
[ 1085.608039][T23713] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1085.978481][T24434] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3244'.
[ 1086.098677][T23713] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1086.321734][   T30] audit: type=1800 audit(4294980586.255:211): pid=24464 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3245" name="features" dev="configfs" ino=104168 res=0 errno=0
[ 1086.439926][T23518] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1086.513321][T23713] 8021q: adding VLAN 0 to HW filter on device team0
[ 1086.534324][T13730] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1086.541503][T13730] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1086.909898][T13730] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1086.917082][T13730] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1087.823892][T19330] Bluetooth: hci1: command 0x0406 tx timeout
[ 1088.005026][T23518] veth0_vlan: entered promiscuous mode
[ 1088.093306][T23518] veth1_vlan: entered promiscuous mode
[ 1088.143615][T23713] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1088.442224][T23518] veth0_macvtap: entered promiscuous mode
[ 1088.559074][T23518] veth1_macvtap: entered promiscuous mode
[ 1088.749142][T23518] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1088.822288][T23518] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1088.837326][T18568] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1088.955321][T18568] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1089.095203][T18568] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1089.189067][T13731] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1089.347845][T13731] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1089.390000][T13731] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1089.451185][T24541] FAULT_INJECTION: forcing a failure.
[ 1089.451185][T24541] name failslab, interval 1, probability 0, space 0, times 0
[ 1089.491595][T13730] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1089.518895][T13730] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1089.551349][T23713] veth0_vlan: entered promiscuous mode
[ 1089.573767][T23713] veth1_vlan: entered promiscuous mode
[ 1089.590795][T24541] CPU: 1 UID: 0 PID: 24541 Comm: syz.3.3249 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1089.590840][T24541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1089.590860][T24541] Call Trace:
[ 1089.590871][T24541]  <TASK>
[ 1089.590885][T24541]  dump_stack_lvl+0x16c/0x1f0
[ 1089.590924][T24541]  should_fail_ex+0x512/0x640
[ 1089.590960][T24541]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1089.591003][T24541]  should_failslab+0xc2/0x120
[ 1089.591045][T24541]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1089.591081][T24541]  ? new_userfaultfd+0x79/0x3d0
[ 1089.591131][T24541]  new_userfaultfd+0x79/0x3d0
[ 1089.591179][T24541]  __x64_sys_userfaultfd+0x4b/0xb0
[ 1089.591210][T24541]  do_syscall_64+0xcd/0x490
[ 1089.591248][T24541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1089.591275][T24541] RIP: 0033:0x7fc91338ebe9
[ 1089.591300][T24541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1089.591327][T24541] RSP: 002b:00007fc91423e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000143
[ 1089.591357][T24541] RAX: ffffffffffffffda RBX: 00007fc9135b6180 RCX: 00007fc91338ebe9
[ 1089.591377][T24541] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[ 1089.591395][T24541] RBP: 00007fc913411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1089.591413][T24541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1089.591428][T24541] R13: 00007fc9135b6218 R14: 00007fc9135b6180 R15: 00007fff2b541428
[ 1089.591468][T24541]  </TASK>
[ 1089.781724][T23713] veth0_macvtap: entered promiscuous mode
[ 1089.792848][T23713] veth1_macvtap: entered promiscuous mode
[ 1090.108290][T23713] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1090.141888][T23713] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1090.226506][T13730] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1090.292237][T13730] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1090.342791][T13730] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1090.378336][T13730] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1090.670118][T17965] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1090.682351][T17965] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1090.770589][T13730] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1090.819884][T13730] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1091.484274][T24576] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1091.512065][T24576] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1091.561118][T24576] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1091.617135][T24576] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1091.631194][T24576] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1091.701229][T24576] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1091.744757][T24576] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1091.791475][T24576] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1091.843203][T24576] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1091.902626][T24576] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1091.913259][T24576] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1091.920106][T24576] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1091.975266][T24576] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1092.121817][T24580] netlink: 268 bytes leftover after parsing attributes in process `syz.5.3253'.
[ 1092.871620][T24619] netlink: 342 bytes leftover after parsing attributes in process `syz.6.3255'.
[ 1093.186712][T16746] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1093.587418][T16746] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1093.670553][T16746] Bluetooth: hci3: command 0x0406 tx timeout
[ 1093.747661][T16746] Bluetooth: hci1: command 0x0406 tx timeout
[ 1093.826955][T16746] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1093.987037][T16746] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1095.032235][T24685] netlink: 268 bytes leftover after parsing attributes in process `syz.5.3261'.
[ 1095.591580][T24774] random: crng reseeded on system resumption
[ 1095.669771][T16746] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1095.755061][T16746] Bluetooth: hci3: command 0x0406 tx timeout
[ 1095.832774][T16746] Bluetooth: hci1: command 0x0406 tx timeout
[ 1095.908839][T16746] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1096.068176][T16746] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1096.141209][T24802] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1097.990334][T19330] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1098.151563][T19330] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1098.334555][T24859] ubi0: attaching mtd0
[ 1098.359287][T24859] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1098.647963][T24871] kvm: kvm [24870]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x2
[ 1099.545333][T24893] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3275'.
[ 1099.576290][T24893] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3275'.
[ 1100.857215][T24931] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1102.382694][T24951] netlink: 'syz.3.3280': attribute type 2 has an invalid length.
[ 1102.423297][T24951] netlink: 'syz.3.3280': attribute type 2 has an invalid length.
[ 1102.551264][T24949] ubi0: attaching mtd0
[ 1102.571078][T24949] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1103.119476][T24965] ptp ptp0: only physical clock in use now
[ 1103.473523][T24966] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3281'.
[ 1104.455976][T25000] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3287'.
[ 1104.548293][T25005] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3287'.
[ 1104.850245][T24986] netlink: 268 bytes leftover after parsing attributes in process `syz.5.3285'.
[ 1108.183521][T25077] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3293'.
[ 1108.211981][T25077] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3293'.
[ 1108.450233][T25069] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3292'.
[ 1111.301475][T25153] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3296'.
[ 1112.965046][T25234] netlink: 330 bytes leftover after parsing attributes in process `syz.1.3302'.
[ 1115.099210][T25267] netlink: 268 bytes leftover after parsing attributes in process `syz.6.3307'.
[ 1116.658406][T19330] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[ 1116.658436][T19330] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260
[ 1116.675567][T19330] Bluetooth: hci4: Unknown advertising packet type: 0x7f
[ 1116.675593][T19330] Bluetooth: hci4: adv larger than maximum supported
[ 1116.691949][T19330] Bluetooth: hci4: adv larger than maximum supported
[ 1116.704683][T19330] Bluetooth: hci4: Malformed LE Event: 0x0d
[ 1118.235118][T25365] ERROR: Out of memory at tomoyo_memory_ok.
[ 1118.305245][T25350] netlink: 268 bytes leftover after parsing attributes in process `syz.6.3313'.
[ 1119.246653][T25371] program syz.1.3319 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1119.722088][T25369] ubi0: attaching mtd0
[ 1119.726349][T25369] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1121.613701][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.620416][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1121.884255][T25433] FAULT_INJECTION: forcing a failure.
[ 1121.884255][T25433] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1121.973913][T25433] CPU: 0 UID: 0 PID: 25433 Comm: syz.1.3325 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1121.973943][T25433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1121.973954][T25433] Call Trace:
[ 1121.973961][T25433]  <TASK>
[ 1121.973969][T25433]  dump_stack_lvl+0x16c/0x1f0
[ 1121.973995][T25433]  should_fail_ex+0x512/0x640
[ 1121.974021][T25433]  should_fail_alloc_page+0xe7/0x130
[ 1121.974048][T25433]  prepare_alloc_pages+0x3c2/0x610
[ 1121.974075][T25433]  ? rcu_is_watching+0x12/0xc0
[ 1121.974098][T25433]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1121.974125][T25433]  ? __lock_acquire+0x62e/0x1ce0
[ 1121.974152][T25433]  ? css_rstat_updated+0x1c2/0x510
[ 1121.974174][T25433]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1121.974202][T25433]  ? rcu_is_watching+0x12/0xc0
[ 1121.974226][T25433]  ? __lock_acquire+0x62e/0x1ce0
[ 1121.974250][T25433]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1121.974279][T25433]  ? policy_nodemask+0xea/0x4e0
[ 1121.974311][T25433]  alloc_pages_mpol+0x1fb/0x550
[ 1121.974337][T25433]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1121.974363][T25433]  ? filemap_get_entry+0x1a7/0x3b0
[ 1121.974390][T25433]  folio_alloc_noprof+0x20/0x2d0
[ 1121.974418][T25433]  filemap_alloc_folio_noprof+0x3a1/0x470
[ 1121.974439][T25433]  ? __pfx_filemap_alloc_folio_noprof+0x10/0x10
[ 1121.974459][T25433]  ? rcu_is_watching+0x12/0xc0
[ 1121.974482][T25433]  __filemap_get_folio+0x5e1/0xc30
[ 1121.974512][T25433]  ioctx_alloc+0x761/0x2120
[ 1121.974543][T25433]  ? __pfx_ioctx_alloc+0x10/0x10
[ 1121.974565][T25433]  ? __might_fault+0x13b/0x190
[ 1121.974592][T25433]  __x64_sys_io_setup+0xc9/0x210
[ 1121.974615][T25433]  do_syscall_64+0xcd/0x490
[ 1121.974638][T25433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1121.974657][T25433] RIP: 0033:0x7f94c798ebe9
[ 1121.974672][T25433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1121.974690][T25433] RSP: 002b:00007f94c5bee038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[ 1121.974708][T25433] RAX: ffffffffffffffda RBX: 00007f94c7bb5fa0 RCX: 00007f94c798ebe9
[ 1121.974720][T25433] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff
[ 1121.974732][T25433] RBP: 00007f94c7a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1121.974743][T25433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1121.974754][T25433] R13: 00007f94c7bb6038 R14: 00007f94c7bb5fa0 R15: 00007ffdf6a85958
[ 1121.974776][T25433]  </TASK>
[ 1123.241985][T25451] ubi0: attaching mtd0
[ 1123.255855][T25451] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1126.315789][T25497] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3330'.
[ 1128.788366][   T30] audit: type=1800 audit(4294980628.714:212): pid=25617 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3339" name="version" dev="configfs" ino=107224 res=0 errno=0
[ 1129.658007][T25637] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3342'.
[ 1131.115721][T25660] ubi0: attaching mtd0
[ 1131.119921][T25660] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1131.344023][   T30] audit: type=1800 audit(4294980631.263:213): pid=25664 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3344" name="features" dev="configfs" ino=107284 res=0 errno=0
[ 1131.886724][T25665] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3345'.
[ 1133.101211][T25687] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3346'.
[ 1133.158275][T25689] netlink: 268 bytes leftover after parsing attributes in process `syz.6.3347'.
[ 1134.311026][T25703] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3349'.
[ 1134.625621][T16746] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1134.641958][T16746] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1134.652184][T16746] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1134.667223][T16746] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1134.675265][T16746] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1135.628689][T25711] chnl_net:caif_netlink_parms(): no params data found
[ 1136.183987][T25711] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1136.242984][T25711] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1136.283739][T25711] bridge_slave_0: entered allmulticast mode
[ 1136.319820][T25711] bridge_slave_0: entered promiscuous mode
[ 1136.395205][T25711] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1136.482152][T25711] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1136.542472][T25711] bridge_slave_1: entered allmulticast mode
[ 1136.564703][T25711] bridge_slave_1: entered promiscuous mode
[ 1136.734078][T19330] Bluetooth: hci6: command tx timeout
[ 1136.823317][T25942] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3354'.
[ 1136.853680][T25711] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1136.901627][T25942] hsr_slave_0: left promiscuous mode
[ 1136.923386][T25942] hsr_slave_1: left promiscuous mode
[ 1137.031794][T25711] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1137.308031][T25711] team0: Port device team_slave_0 added
[ 1137.345320][T25711] team0: Port device team_slave_1 added
[ 1137.450473][T25965] ubi0: attaching mtd0
[ 1137.464971][T25965] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1137.723261][   T30] audit: type=1800 audit(4294980637.639:214): pid=26011 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3357" name="features" dev="configfs" ino=106004 res=0 errno=0
[ 1137.981676][T25711] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1138.043195][T25711] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1138.130983][T25711] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1138.246590][T25711] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1138.314784][T25711] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1138.386120][T25711] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1138.774418][T26041] ubi0: attaching mtd0
[ 1138.778682][T26041] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1138.803892][T25711] hsr_slave_0: entered promiscuous mode
[ 1138.816872][T19330] Bluetooth: hci6: command tx timeout
[ 1138.890458][T25711] hsr_slave_1: entered promiscuous mode
[ 1138.897092][T25711] debugfs: 'hsr0' already exists in 'hsr'
[ 1138.944369][T25711] Cannot create hsr debugfs directory
[ 1139.776433][T25711] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1139.821804][T25711] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1139.892151][T25711] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1139.951596][T25711] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1140.245352][T26180] FAULT_INJECTION: forcing a failure.
[ 1140.245352][T26180] name failslab, interval 1, probability 0, space 0, times 0
[ 1140.314801][T26180] CPU: 0 UID: 0 PID: 26180 Comm: syz.6.3362 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1140.314834][T26180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1140.314845][T26180] Call Trace:
[ 1140.314852][T26180]  <TASK>
[ 1140.314860][T26180]  dump_stack_lvl+0x16c/0x1f0
[ 1140.314887][T26180]  should_fail_ex+0x512/0x640
[ 1140.314909][T26180]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1140.314935][T26180]  should_failslab+0xc2/0x120
[ 1140.314960][T26180]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1140.314983][T26180]  ? __kernfs_new_node+0xd2/0x8e0
[ 1140.315010][T26180]  __kernfs_new_node+0xd2/0x8e0
[ 1140.315037][T26180]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1140.315066][T26180]  ? find_held_lock+0x2b/0x80
[ 1140.315087][T26180]  ? kernfs_root+0xee/0x2a0
[ 1140.315115][T26180]  kernfs_new_node+0x13c/0x1e0
[ 1140.315145][T26180]  __kernfs_create_file+0x53/0x350
[ 1140.315167][T26180]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1140.315195][T26180]  internal_create_group+0x578/0xf30
[ 1140.315225][T26180]  ? __pfx_internal_create_group+0x10/0x10
[ 1140.315254][T26180]  ? kernfs_create_link+0x1bd/0x240
[ 1140.315276][T26180]  internal_create_groups+0x9d/0x150
[ 1140.315303][T26180]  device_add+0x77f/0x1aa0
[ 1140.315331][T26180]  ? __pfx_device_add+0x10/0x10
[ 1140.315357][T26180]  ? lockdep_init_map_type+0x5c/0x280
[ 1140.315383][T26180]  ? __init_waitqueue_head+0xca/0x150
[ 1140.315416][T26180]  netdev_register_kobject+0x1a9/0x3d0
[ 1140.315444][T26180]  register_netdevice+0x13dc/0x2270
[ 1140.315472][T26180]  ? __pfx_register_netdevice+0x10/0x10
[ 1140.315512][T26180]  ppp_dev_configure+0xa1e/0xd40
[ 1140.315540][T26180]  ppp_ioctl+0x17e0/0x2660
[ 1140.315564][T26180]  ? find_held_lock+0x2b/0x80
[ 1140.315582][T26180]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1140.315609][T26180]  ? __fget_files+0x20e/0x3c0
[ 1140.315633][T26180]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1140.315655][T26180]  __x64_sys_ioctl+0x18e/0x210
[ 1140.315687][T26180]  do_syscall_64+0xcd/0x490
[ 1140.315710][T26180]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1140.315729][T26180] RIP: 0033:0x7f7d4fd8ebe9
[ 1140.315746][T26180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1140.315763][T26180] RSP: 002b:00007f7d50c35038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1140.315781][T26180] RAX: ffffffffffffffda RBX: 00007f7d4ffb5fa0 RCX: 00007f7d4fd8ebe9
[ 1140.315793][T26180] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 000000000000000a
[ 1140.315804][T26180] RBP: 00007f7d4fe11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1140.315815][T26180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1140.315832][T26180] R13: 00007f7d4ffb6038 R14: 00007f7d4ffb5fa0 R15: 00007ffed7316af8
[ 1140.315855][T26180]  </TASK>
[ 1140.640950][T25711] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1140.853659][T25711] 8021q: adding VLAN 0 to HW filter on device team0
[ 1140.890834][T19330] Bluetooth: hci6: command tx timeout
[ 1141.216800][T18568] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1141.224053][T18568] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1141.268381][T18568] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1141.275633][T18568] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1141.577088][T25711] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1141.600760][T25711] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1141.725183][T26225] vivid-003: =================  START STATUS  =================
[ 1141.743092][T26225] vivid-003: Radio HW Seek Mode: Bounded
[ 1141.748804][T26225] vivid-003: Radio Programmable HW Seek: false
[ 1141.787291][T26225] vivid-003: RDS Rx I/O Mode: Block I/O
[ 1141.798668][T26225] vivid-003: Generate RBDS Instead of RDS: false
[ 1141.806621][T26225] vivid-003: RDS Reception: true
[ 1141.909705][T26225] vivid-003: RDS Program Type: 0 inactive
[ 1141.926199][T26225] vivid-003: RDS PS Name:  inactive
[ 1141.933019][T26225] vivid-003: RDS Radio Text:  inactive
[ 1141.938631][T26225] vivid-003: RDS Traffic Announcement: false inactive
[ 1141.946048][T26225] vivid-003: RDS Traffic Program: false inactive
[ 1141.953158][T26225] vivid-003: RDS Music: false inactive
[ 1141.958868][T26225] vivid-003: ==================  END STATUS  ==================
[ 1142.971259][T19330] Bluetooth: hci6: command tx timeout
[ 1143.287089][T25711] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1144.739070][T26262] netlink: 268 bytes leftover after parsing attributes in process `syz.6.3368'.
[ 1144.809720][T26263] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3367'.
[ 1144.846393][T25711] veth0_vlan: entered promiscuous mode
[ 1144.874070][T25711] veth1_vlan: entered promiscuous mode
[ 1145.070731][T25711] veth0_macvtap: entered promiscuous mode
[ 1145.194305][T25711] veth1_macvtap: entered promiscuous mode
[ 1145.277373][T25711] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1145.328272][T25711] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1145.402062][T13727] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.418629][T13727] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.471009][T13727] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.529740][T13727] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.811936][T18568] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1145.884371][T18568] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1146.059623][T13730] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1146.088680][T13730] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1154.172303][T26513] netlink: 342 bytes leftover after parsing attributes in process `syz.7.3384'.
[ 1154.463672][T26552] netlink: 342 bytes leftover after parsing attributes in process `syz.6.3386'.
[ 1155.879632][T26588] netlink: 'syz.3.3391': attribute type 11 has an invalid length.
[ 1155.911247][T26588] netlink: 'syz.3.3391': attribute type 11 has an invalid length.
[ 1155.919584][T26588] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3391'.
[ 1155.947938][T26588] netlink: 67 bytes leftover after parsing attributes in process `syz.3.3391'.
[ 1155.982933][T26588] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3391'.
[ 1156.051879][T26588] netlink: 200 bytes leftover after parsing attributes in process `syz.3.3391'.
[ 1156.543567][T26585] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3389'.
[ 1156.681505][   T30] audit: type=1800 audit(4294980656.590:215): pid=26611 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3391" name="features" dev="configfs" ino=108272 res=0 errno=0
[ 1158.597044][T26625] netlink: 268 bytes leftover after parsing attributes in process `syz.6.3393'.
[ 1161.009450][   T30] audit: type=1800 audit(4294980660.908:216): pid=26701 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3401" name="features" dev="configfs" ino=108382 res=0 errno=0
[ 1163.240441][T26680] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3399'.
[ 1164.078885][   T30] audit: type=1800 audit(4294980663.976:217): pid=26795 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3405" name="features" dev="configfs" ino=108836 res=0 errno=0
[ 1164.384453][T26769] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3403'.
[ 1167.488947][   T30] audit: type=1800 audit(4294980667.395:218): pid=26861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.3412" name="features" dev="configfs" ino=108880 res=0 errno=0
[ 1168.261475][T26870] ubi0: attaching mtd0
[ 1168.282994][T26870] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1168.328858][T26875] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1168.537652][T26859] FAULT_INJECTION: forcing a failure.
[ 1168.537652][T26859] name failslab, interval 1, probability 0, space 0, times 0
[ 1168.594044][T26859] CPU: 1 UID: 0 PID: 26859 Comm: syz.1.3413 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1168.594092][T26859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1168.594110][T26859] Call Trace:
[ 1168.594120][T26859]  <TASK>
[ 1168.594132][T26859]  dump_stack_lvl+0x16c/0x1f0
[ 1168.594172][T26859]  should_fail_ex+0x512/0x640
[ 1168.594210][T26859]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1168.594252][T26859]  should_failslab+0xc2/0x120
[ 1168.594295][T26859]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1168.594333][T26859]  ? __mpol_dup+0x74/0x380
[ 1168.594377][T26859]  ? __pfx_mas_preallocate+0x10/0x10
[ 1168.594421][T26859]  __mpol_dup+0x74/0x380
[ 1168.594473][T26859]  ? __pfx___mpol_dup+0x10/0x10
[ 1168.594521][T26859]  ? anon_vma_name+0x81/0x2f0
[ 1168.594570][T26859]  vma_dup_policy+0x42/0xc0
[ 1168.594615][T26859]  __split_vma+0x36b/0x1070
[ 1168.594655][T26859]  ? __pfx___split_vma+0x10/0x10
[ 1168.594700][T26859]  ? __pfx_mas_prev+0x10/0x10
[ 1168.594746][T26859]  vms_gather_munmap_vmas+0x3b1/0x1340
[ 1168.594792][T26859]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[ 1168.594834][T26859]  ? mas_walk+0x6f5/0x980
[ 1168.594879][T26859]  __mmap_region+0x436/0x27b0
[ 1168.594920][T26859]  ? finish_task_switch.isra.0+0x21c/0xc10
[ 1168.594953][T26859]  ? __pfx___mmap_region+0x10/0x10
[ 1168.594987][T26859]  ? rcu_is_watching+0x12/0xc0
[ 1168.595028][T26859]  ? rcu_is_watching+0x12/0xc0
[ 1168.595060][T26859]  ? trace_sched_exit_tp+0xd1/0x120
[ 1168.595106][T26859]  ? __schedule+0x11a3/0x5de0
[ 1168.595134][T26859]  ? __lock_acquire+0x62e/0x1ce0
[ 1168.595190][T26859]  ? __lock_acquire+0x62e/0x1ce0
[ 1168.595232][T26859]  ? __pfx___schedule+0x10/0x10
[ 1168.595312][T26859]  ? trace_cap_capable+0x18d/0x200
[ 1168.595375][T26859]  mmap_region+0x1ab/0x3f0
[ 1168.595420][T26859]  ? __get_unmapped_area+0x267/0x440
[ 1168.595480][T26859]  do_mmap+0xa3e/0x1210
[ 1168.595535][T26859]  ? __pfx_do_mmap+0x10/0x10
[ 1168.595581][T26859]  ? __pfx_down_write_killable+0x10/0x10
[ 1168.595631][T26859]  vm_mmap_pgoff+0x29e/0x470
[ 1168.595685][T26859]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1168.595743][T26859]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1168.595781][T26859]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1168.595827][T26859]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1168.595869][T26859]  ? xfd_validate_state+0x61/0x180
[ 1168.595913][T26859]  ? __pfx_ksys_write+0x10/0x10
[ 1168.595955][T26859]  __x64_sys_mmap+0x125/0x190
[ 1168.596011][T26859]  do_syscall_64+0xcd/0x490
[ 1168.596050][T26859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1168.596082][T26859] RIP: 0033:0x7f94c798ebe9
[ 1168.596108][T26859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1168.596139][T26859] RSP: 002b:00007f94c5bee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1168.596168][T26859] RAX: ffffffffffffffda RBX: 00007f94c7bb5fa0 RCX: 00007f94c798ebe9
[ 1168.596189][T26859] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000
[ 1168.596209][T26859] RBP: 00007f94c7a11e19 R08: 0000000000000401 R09: 0000000000008000
[ 1168.596227][T26859] R10: 0040000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[ 1168.596246][T26859] R13: 00007f94c7bb6038 R14: 00007f94c7bb5fa0 R15: 00007ffdf6a85958
[ 1168.596289][T26859]  </TASK>
[ 1171.574941][T26940] netlink: 268 bytes leftover after parsing attributes in process `syz.7.3418'.
[ 1171.876245][T26962] FAULT_INJECTION: forcing a failure.
[ 1171.876245][T26962] name failslab, interval 1, probability 0, space 0, times 0
[ 1171.898169][T26962] CPU: 1 UID: 0 PID: 26962 Comm: syz.3.3421 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1171.898214][T26962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1171.898232][T26962] Call Trace:
[ 1171.898243][T26962]  <TASK>
[ 1171.898255][T26962]  dump_stack_lvl+0x16c/0x1f0
[ 1171.898292][T26962]  should_fail_ex+0x512/0x640
[ 1171.898315][T26962]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1171.898337][T26962]  should_failslab+0xc2/0x120
[ 1171.898362][T26962]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1171.898382][T26962]  ? snd_pcm_oss_change_params_locked+0x211/0x3a30
[ 1171.898411][T26962]  ? kasan_save_track+0x14/0x30
[ 1171.898435][T26962]  snd_pcm_oss_change_params_locked+0x211/0x3a30
[ 1171.898471][T26962]  ? __pfx___might_resched+0x10/0x10
[ 1171.898493][T26962]  ? rcu_is_watching+0x12/0xc0
[ 1171.898513][T26962]  ? trace_contention_end+0xdd/0x130
[ 1171.898539][T26962]  ? __mutex_lock+0x1c4/0x10b0
[ 1171.898560][T26962]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1171.898607][T26962]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[ 1171.898636][T26962]  snd_pcm_oss_read+0x39b/0x760
[ 1171.898665][T26962]  ? security_file_permission+0x71/0x210
[ 1171.898692][T26962]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[ 1171.898719][T26962]  vfs_readv+0x5c1/0x8b0
[ 1171.898744][T26962]  ? __pfx_vfs_readv+0x10/0x10
[ 1171.898764][T26962]  ? find_held_lock+0x2b/0x80
[ 1171.898796][T26962]  ? __fget_files+0x20e/0x3c0
[ 1171.898816][T26962]  ? __fget_files+0x200/0x3c0
[ 1171.898841][T26962]  ? do_readv+0x132/0x340
[ 1171.898859][T26962]  do_readv+0x132/0x340
[ 1171.898878][T26962]  ? __pfx_do_readv+0x10/0x10
[ 1171.898904][T26962]  do_syscall_64+0xcd/0x490
[ 1171.898927][T26962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1171.898946][T26962] RIP: 0033:0x7fc91338ebe9
[ 1171.898962][T26962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1171.898981][T26962] RSP: 002b:00007fc91425f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[ 1171.898999][T26962] RAX: ffffffffffffffda RBX: 00007fc9135b6090 RCX: 00007fc91338ebe9
[ 1171.899011][T26962] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[ 1171.899023][T26962] RBP: 00007fc91425f090 R08: 0000000000000000 R09: 0000000000000000
[ 1171.899033][T26962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1171.899044][T26962] R13: 00007fc9135b6128 R14: 00007fc9135b6090 R15: 00007fff2b541428
[ 1171.899068][T26962]  </TASK>
[ 1172.432166][   T30] audit: type=1800 audit(4294980672.292:219): pid=26965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3420" name="features" dev="configfs" ino=108918 res=0 errno=0
[ 1174.111005][T26995] netlink: 342 bytes leftover after parsing attributes in process `syz.7.3425'.
[ 1174.612069][T26988] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3423'.
[ 1175.884402][T27041] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [32]
[ 1177.487256][T27083] random: crng reseeded on system resumption
[ 1178.027709][   T30] audit: type=1800 audit(4294980677.919:220): pid=27093 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3432" name="features" dev="configfs" ino=109739 res=0 errno=0
[ 1178.658467][T27066] netlink: 268 bytes leftover after parsing attributes in process `syz.7.3430'.
[ 1179.015587][T27103] random: crng reseeded on system resumption
[ 1181.321443][T27178] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3439'.
[ 1182.302057][T27208] vhci_hcd: invalid port number 16
[ 1182.325426][T27208] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[ 1182.496550][T27208] netlink: 338 bytes leftover after parsing attributes in process `syz.6.3443'.
[ 1182.561139][T27208] veth1_macvtap: left promiscuous mode
[ 1183.077327][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1183.084231][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1184.794204][T27270] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3448'.
[ 1187.681035][T27359] ubi0: attaching mtd0
[ 1187.695052][T27359] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1188.491209][   T30] audit: type=1800 audit(4294980688.384:221): pid=27384 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3456" name="features" dev="configfs" ino=110016 res=0 errno=0
[ 1189.106205][T27389] ubi0: attaching mtd0
[ 1189.110363][T27389] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1190.191714][T27426] ubi0: attaching mtd0
[ 1190.199378][T27426] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1195.115645][T27547] netlink: 268 bytes leftover after parsing attributes in process `syz.7.3478'.
[ 1195.232315][T27552] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3470'.
[ 1196.732655][T27588] ubi0: attaching mtd0
[ 1196.751916][T27588] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1199.369183][T27641] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3476'.
[ 1200.377096][T16746] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1200.390234][T16746] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1200.410258][T16746] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1200.428313][T16746] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1200.439528][T16746] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1202.531421][T16746] Bluetooth: hci7: command tx timeout
[ 1203.618605][T27702] chnl_net:caif_netlink_parms(): no params data found
[ 1203.741639][   T30] audit: type=1800 audit(4294980703.576:222): pid=27882 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3487" name="features" dev="configfs" ino=109444 res=0 errno=0
[ 1204.493209][T27702] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1204.531720][T27702] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1204.562133][T27702] bridge_slave_0: entered allmulticast mode
[ 1204.564039][T27702] bridge_slave_0: entered promiscuous mode
[ 1204.602339][T16746] Bluetooth: hci7: command tx timeout
[ 1204.634546][T27702] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1204.641752][T27702] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1204.649600][T27702] bridge_slave_1: entered allmulticast mode
[ 1204.666381][T27702] bridge_slave_1: entered promiscuous mode
[ 1204.856411][T27702] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1204.960540][T27702] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1205.096863][   T30] audit: type=1800 audit(4294980704.966:223): pid=28034 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.3488" name="features" dev="configfs" ino=110451 res=0 errno=0
[ 1205.424169][T27702] team0: Port device team_slave_0 added
[ 1205.680953][T27702] team0: Port device team_slave_1 added
[ 1205.790708][T27702] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1205.809587][T27702] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1205.841912][T27702] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1205.860031][T27702] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1205.867526][T27702] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1205.904551][T27702] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1206.221939][T27702] hsr_slave_0: entered promiscuous mode
[ 1206.298142][T27702] hsr_slave_1: entered promiscuous mode
[ 1206.326602][T27702] debugfs: 'hsr0' already exists in 'hsr'
[ 1206.353087][T27702] Cannot create hsr debugfs directory
[ 1206.683250][T16746] Bluetooth: hci7: command tx timeout
[ 1207.788457][T28242] netlink: 334 bytes leftover after parsing attributes in process `syz.7.3499'.
[ 1208.370106][T27702] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1208.551394][T27702] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1208.604620][T27702] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1208.646705][T27702] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1208.769562][T16746] Bluetooth: hci7: command tx timeout
[ 1209.389915][T27702] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1209.569268][T27702] 8021q: adding VLAN 0 to HW filter on device team0
[ 1209.611196][T13788] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1209.618457][T13788] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1209.790771][T13788] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1209.797955][T13788] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1209.941856][T28324] netlink: 342 bytes leftover after parsing attributes in process `syz.7.3502'.
[ 1211.000152][T28371] netlink: 342 bytes leftover after parsing attributes in process `syz.7.3506'.
[ 1211.125928][T28378] netlink: 342 bytes leftover after parsing attributes in process `syz.7.3506'.
[ 1211.234399][T28378] netlink: 342 bytes leftover after parsing attributes in process `syz.7.3506'.
[ 1211.326400][T28378] netlink: 342 bytes leftover after parsing attributes in process `syz.7.3506'.
[ 1211.874484][T27702] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1212.526670][T28403] ubi0: attaching mtd0
[ 1212.531080][T28403] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[ 1213.880009][T27702] veth0_vlan: entered promiscuous mode
[ 1213.951283][T27702] veth1_vlan: entered promiscuous mode
[ 1214.189271][T27702] veth0_macvtap: entered promiscuous mode
[ 1214.281436][T27702] veth1_macvtap: entered promiscuous mode
[ 1214.400111][T27702] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1214.531467][T27702] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1214.545652][T14308] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1214.649148][T14308] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1214.681762][T14308] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1214.752602][T14308] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1214.893055][T28483] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3512'.
[ 1215.009200][T28468] netlink: 268 bytes leftover after parsing attributes in process `syz.7.3511'.
[ 1215.087837][   T31] INFO: task syz.4.3189:23121 blocked for more than 143 seconds.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1215.144375][   T31]       Not tainted 6.16.0-syzkaller-12063-g37816488247d #0
[ 1215.175061][T13731] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1215.184008][T27702] ieee80211 phy54: Selected rate control algorithm 'minstrel_ht'
[ 1215.220893][T13731] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1215.240170][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1215.267315][   T31] task:syz.4.3189      state:D stack:27576 pid:23121 tgid:23115 ppid:20278  task_flags:0x400140 flags:0x00004004
[ 1215.291758][   T31] Call Trace:
[ 1215.295103][   T31]  <TASK>
[ 1215.357382][   T31]  __schedule+0x1190/0x5de0
[ 1215.407054][   T31]  ? __lock_acquire+0x62e/0x1ce0
[ 1215.427465][   T31]  ? __pfx___schedule+0x10/0x10
[ 1215.432419][   T31]  ? find_held_lock+0x2b/0x80
[ 1215.477483][   T31]  ? schedule+0x2d7/0x3a0
[ 1215.481897][   T31]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1215.487248][   T31]  schedule+0xe7/0x3a0
[ 1215.517553][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1215.523102][   T31]  __mutex_lock+0x82a/0x10b0
[ 1215.537561][   T31]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1215.543542][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1215.549079][   T31]  ? net_generic+0xea/0x2a0
[ 1215.561223][   T31]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1215.587007][   T31]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1215.588909][T13730] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1215.647568][   T31]  nfsd_shutdown_threads+0x5b/0xf0
[ 1215.652796][   T31]  nfsd_umount+0x48/0xe0
[ 1215.657106][   T31]  deactivate_locked_super+0xc1/0x1a0
[ 1215.695705][T13730] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1215.729042][   T31]  get_tree_keyed+0x18a/0x1d0
[ 1215.733818][   T31]  vfs_get_tree+0x8b/0x340
[ 1215.787902][   T31]  path_mount+0x1482/0x1fd0
[ 1215.792586][   T31]  ? __pfx_path_mount+0x10/0x10
[ 1215.833373][   T31]  ? kmem_cache_free+0x2d1/0x4d0
[ 1215.888197][   T31]  ? putname+0x154/0x1a0
[ 1215.892544][   T31]  ? putname+0x154/0x1a0
[ 1215.907679][   T31]  ? __x64_sys_mount+0x28d/0x310
[ 1215.912700][   T31]  __x64_sys_mount+0x28d/0x310
[ 1215.917521][   T31]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1215.957720][   T31]  do_syscall_64+0xcd/0x490
[ 1215.962411][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1215.987697][   T31] RIP: 0033:0x7f3dc158ebe9
[ 1216.011920][   T31] RSP: 002b:00007f3dc2391038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1216.068033][   T31] RAX: ffffffffffffffda RBX: 00007f3dc17b6090 RCX: 00007f3dc158ebe9
[ 1216.076100][   T31] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[ 1216.084859][   T31] RBP: 00007f3dc1611e19 R08: 0000000000000000 R09: 0000000000000000
[ 1216.098928][   T31] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[ 1216.209077][   T31] R13: 00007f3dc17b6128 R14: 00007f3dc17b6090 R15: 00007ffc041cc988
[ 1216.281677][   T31]  </TASK>
[ 1216.298245][   T31] INFO: task syz.4.3189:23138 blocked for more than 144 seconds.
[ 1216.337421][   T31]       Not tainted 6.16.0-syzkaller-12063-g37816488247d #0
[ 1216.344897][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1216.368148][   T31] task:syz.4.3189      state:D stack:29112 pid:23138 tgid:23115 ppid:20278  task_flags:0x400140 flags:0x00004004
[ 1216.431804][   T31] Call Trace:
[ 1216.435204][   T31]  <TASK>
[ 1216.498041][   T31]  __schedule+0x1190/0x5de0
[ 1216.502661][   T31]  ? __lock_acquire+0x62e/0x1ce0
[ 1216.507678][   T31]  ? __pfx___schedule+0x10/0x10
[ 1216.598466][   T31]  ? find_held_lock+0x2b/0x80
[ 1216.603664][   T31]  ? schedule+0x2d7/0x3a0
[ 1216.664744][   T31]  schedule+0xe7/0x3a0
[ 1216.688188][   T31]  super_lock+0x2c0/0x3f0
[ 1216.698448][   T31]  ? __pfx_super_lock+0x10/0x10
[ 1216.728222][   T31]  ? __pfx_var_wake_function+0x10/0x10
[ 1216.733835][   T31]  ? grab_super+0x9e/0x420
[ 1216.798083][   T31]  ? __pfx_test_keyed_super+0x10/0x10
[ 1216.814897][   T31]  grab_super+0xab/0x420
[ 1216.838122][   T31]  ? __pfx_grab_super+0x10/0x10
[ 1216.843114][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1216.886100][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1216.927369][   T31]  ? __pfx_test_keyed_super+0x10/0x10
[ 1216.948145][   T31]  sget_fc+0x612/0xc20
[ 1216.952307][   T31]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1216.961668][   T31]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1216.993027][   T31]  get_tree_keyed+0x59/0x1d0
[ 1216.997756][   T31]  vfs_get_tree+0x8b/0x340
[ 1217.019159][   T31]  path_mount+0x1482/0x1fd0
[ 1217.023766][   T31]  ? __pfx_path_mount+0x10/0x10
[ 1217.048271][   T31]  ? kmem_cache_free+0x2d1/0x4d0
[ 1217.058483][   T31]  ? putname+0x154/0x1a0
[ 1217.062828][   T31]  ? putname+0x154/0x1a0
[ 1217.128277][   T31]  ? __x64_sys_mount+0x28d/0x310
[ 1217.133322][   T31]  __x64_sys_mount+0x28d/0x310
[ 1217.150753][   T31]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1217.156139][   T31]  do_syscall_64+0xcd/0x490
[ 1217.161288][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1217.167247][   T31] RIP: 0033:0x7f3dc158ebe9
[ 1217.172420][   T31] RSP: 002b:00007f3dc2370038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1217.181294][   T31] RAX: ffffffffffffffda RBX: 00007f3dc17b6180 RCX: 00007f3dc158ebe9
[ 1217.189753][   T31] RDX: 0000200000000080 RSI: 0000200000000040 RDI: 0000000000000000
[ 1217.202471][   T31] RBP: 00007f3dc1611e19 R08: 0000000000000000 R09: 0000000000000000
[ 1217.210694][   T31] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[ 1217.218855][   T31] R13: 00007f3dc17b6218 R14: 00007f3dc17b6180 R15: 00007ffc041cc988
[ 1217.226867][   T31]  </TASK>
[ 1217.230114][   T31] 
[ 1217.230114][   T31] Showing all locks held in the system:
[ 1217.237867][   T31] 1 lock held by khungtaskd/31:
[ 1217.245287][   T31]  #0: ffffffff8e5c0fe0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[ 1217.255501][   T31] 8 locks held by kworker/0:5/5974:
[ 1217.260761][   T31]  #0: ffff8880b843a458 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[ 1217.275139][   T31]  #1: ffff8880b8424088 (psi_seq){-.-.}-{0:0}, at: __schedule+0x1861/0x5de0
[ 1217.300002][   T31]  #2: ffff8880b8425b18 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x127/0x1d0
[ 1217.318431][   T31]  #3: ffffffff9b03b2f0 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_object_activate+0x14c/0x4c0
[ 1217.343282][   T31]  #4: ffff8880b8424088 (psi_seq){-.-.}-{0:0}, at: __schedule+0x1861/0x5de0
[ 1217.357166][   T31]  #5: ffffffff8e5c0f80 (rcu_read_lock_bh){....}-{1:3}, at: __dev_queue_xmit+0x276/0x4490
[ 1217.367699][   T31]  #6: ffffffff8e5c0fe0 (rcu_read_lock){....}-{1:3}, at: unwind_next_frame+0xbd/0x20a0
[ 1217.377812][   T31]  #7: ffff888079e92018 (&pool->lock){-.-.}-{2:2}, at: __queue_work+0x26b/0x1160
[ 1217.387074][   T31] 2 locks held by getty/7049:
[ 1217.391839][   T31]  #0: ffff88814cfd50a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1217.401710][   T31]  #1: ffffc9000355b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[ 1217.418971][   T31] 1 lock held by syz-executor/16745:
[ 1217.424487][   T31]  #0: ffffffff8e5cc578 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0
[ 1217.434935][   T31] 2 locks held by syz.2.3182/23081:
[ 1217.440191][   T31]  #0: ffffffff90425990 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1217.448556][   T31]  #1: ffffffff8e9d6568 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1b10
[ 1217.458952][   T31] 2 locks held by syz.4.3189/23121:
[ 1217.464173][   T31]  #0: ffff8880554260e0 (&type->s_umount_key#50/1){+.+.}-{4:4}, at: alloc_super+0x235/0xbd0
[ 1217.474373][   T31]  #1: ffffffff8e9d6568 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1217.484050][   T31] 2 locks held by syz-executor/23518:
[ 1217.491344][   T31]  #0: ffff888066d2c0e0 (&type->s_umount_key#51){+.+.}-{4:4}, at: deactivate_super+0xd6/0x100
[ 1217.502291][   T31]  #1: ffffffff8e9d6568 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1217.512205][   T31] 2 locks held by syz-executor/23713:
[ 1217.517613][   T31]  #0: ffff888033c620e0 (&type->s_umount_key#51){+.+.}-{4:4}, at: deactivate_super+0xd6/0x100
[ 1217.528038][   T31]  #1: ffffffff8e9d6568 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1217.537752][   T31] 1 lock held by syz-executor/27702:
[ 1217.543176][   T31]  #0: ffffffff8e5cc578 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0
[ 1217.553347][   T31] 
[ 1217.588466][   T31] =============================================
[ 1217.588466][   T31] 
[ 1217.597157][   T31] NMI backtrace for cpu 1
[ 1217.597180][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1217.597216][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1217.597233][   T31] Call Trace:
[ 1217.597244][   T31]  <TASK>
[ 1217.597255][   T31]  dump_stack_lvl+0x116/0x1f0
[ 1217.597304][   T31]  nmi_cpu_backtrace+0x27b/0x390
[ 1217.597343][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1217.597375][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1217.597419][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[ 1217.597466][   T31]  watchdog+0xf0e/0x1260
[ 1217.597517][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1217.597554][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1217.597588][   T31]  ? __kthread_parkme+0x19e/0x250
[ 1217.597627][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1217.597669][   T31]  kthread+0x3c5/0x780
[ 1217.597711][   T31]  ? __pfx_kthread+0x10/0x10
[ 1217.597756][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1217.597786][   T31]  ? __pfx_kthread+0x10/0x10
[ 1217.597830][   T31]  ret_from_fork+0x5d7/0x6f0
[ 1217.597873][   T31]  ? __pfx_kthread+0x10/0x10
[ 1217.597916][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1217.597970][   T31]  </TASK>
[ 1217.597982][   T31] Sending NMI from CPU 1 to CPUs 0:
[ 1217.722569][    C0] NMI backtrace for cpu 0
[ 1217.722590][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1217.722617][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1217.722629][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[ 1217.722658][    C0] Code: cc 65 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d c3 71 1a 00 fb f4 <e9> 3c 0d 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[ 1217.722680][    C0] RSP: 0018:ffffffff8e207e08 EFLAGS: 000002c6
[ 1217.722699][    C0] RAX: 0000000000c8b163 RBX: 0000000000000000 RCX: ffffffff8b8f9bf9
[ 1217.722715][    C0] RDX: 0000000000000000 RSI: ffffffff8de490fc RDI: ffffffff8c161580
[ 1217.722730][    C0] RBP: fffffbfff1c52ef8 R08: 0000000000000001 R09: ffffed1017086655
[ 1217.722745][    C0] R10: ffff8880b84332ab R11: 0000000000000000 R12: 0000000000000000
[ 1217.722759][    C0] R13: ffffffff8e2977c0 R14: ffffffff90ab3690 R15: 0000000000000000
[ 1217.722773][    C0] FS:  0000000000000000(0000) GS:ffff8881246cb000(0000) knlGS:0000000000000000
[ 1217.722796][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1217.722811][    C0] CR2: 00007f7680328e9c CR3: 0000000031800000 CR4: 00000000003526f0
[ 1217.722826][    C0] Call Trace:
[ 1217.722834][    C0]  <TASK>
[ 1217.722842][    C0]  default_idle+0x13/0x20
[ 1217.722867][    C0]  default_idle_call+0x6d/0xb0
[ 1217.722893][    C0]  do_idle+0x391/0x510
[ 1217.722917][    C0]  ? __pfx_do_idle+0x10/0x10
[ 1217.722939][    C0]  ? trace_sched_exit_tp+0x2f/0x120
[ 1217.722973][    C0]  cpu_startup_entry+0x4f/0x60
[ 1217.722995][    C0]  rest_init+0x16b/0x2b0
[ 1217.723021][    C0]  ? acpi_subsystem_init+0x133/0x180
[ 1217.723048][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[ 1217.723076][    C0]  start_kernel+0x3ee/0x4d0
[ 1217.723104][    C0]  x86_64_start_reservations+0x18/0x30
[ 1217.723131][    C0]  x86_64_start_kernel+0x130/0x190
[ 1217.723157][    C0]  common_startup_64+0x13e/0x148
[ 1217.723189][    C0]  </TASK>
[ 1217.929404][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1217.936308][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-syzkaller-12063-g37816488247d #0 PREEMPT(full) 
[ 1217.947998][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1217.958074][   T31] Call Trace:
[ 1217.961388][   T31]  <TASK>
[ 1217.964330][   T31]  dump_stack_lvl+0x3d/0x1f0
[ 1217.968958][   T31]  vpanic+0x6e8/0x7a0
[ 1217.972972][   T31]  ? __pfx_vpanic+0x10/0x10
[ 1217.977515][   T31]  ? __pfx___irq_work_queue_local+0x10/0x10
[ 1217.983437][   T31]  panic+0xca/0xd0
[ 1217.987200][   T31]  ? __pfx_panic+0x10/0x10
[ 1217.991816][   T31]  ? preempt_schedule_thunk+0x16/0x30
[ 1217.997219][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b1/0x300
[ 1218.003404][   T31]  ? watchdog+0xd78/0x1260
[ 1218.007843][   T31]  ? watchdog+0xd6b/0x1260
[ 1218.012304][   T31]  watchdog+0xd89/0x1260
[ 1218.016596][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1218.021577][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1218.026813][   T31]  ? __kthread_parkme+0x19e/0x250
[ 1218.031870][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1218.036590][   T31]  kthread+0x3c5/0x780
[ 1218.040723][   T31]  ? __pfx_kthread+0x10/0x10
[ 1218.045366][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1218.050283][   T31]  ? __pfx_kthread+0x10/0x10
[ 1218.055103][   T31]  ret_from_fork+0x5d7/0x6f0
[ 1218.059835][   T31]  ? __pfx_kthread+0x10/0x10
[ 1218.064459][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1218.069264][   T31]  </TASK>
[ 1218.072718][   T31] Kernel Offset: disabled
[ 1218.077054][   T31] Rebooting in 86400 seconds..