last executing test programs:

2m49.987077797s ago: executing program 1 (id=328):
socket(0xa, 0x3, 0x3b)
mmap$auto(0x0, 0x2000b, 0xe2, 0xeb1, 0x405, 0x8000)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x3, 0x3a)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/013/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f00000002c0)={0x2, 0x80, 0x10001, 0x5, &(0x7f0000000240), 0x5, 0x3, 0x2, @stream_id, 0x7, 0x476, 0x0})
setsockopt$auto(0x400000000000003, 0x29, 0xd0, 0x0, 0x4)
mmap$auto(0xfffffffffffffffe, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r1)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x1000, 0x0)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB=' .\x00\x00', @ANYRES16=r2, @ANYBLOB="01002ebd5100fbcbdf2501000000040001801a2e0180"], 0x2e20}, 0x1, 0x0, 0x0, 0x2000c040}, 0x4)

2m49.000101371s ago: executing program 1 (id=330):
sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB, @ANYBLOB="040006"], 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x800)
r0 = prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x2, 0x2, 0x0, 0x0, 0x5)
mmap$auto(0x200000000000, 0x2, 0x1, 0xebf, r0, 0x10008000) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
socket(0x2b, 0x1, 0x0)
setsockopt$auto(0x3, 0x1, 0x9, 0x0, 0xc) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket(0x2, 0x1, 0x106)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x2, 0x1, 0x0) (async)
setresuid$auto(0x0, 0x8, 0x8000) (async)
setgid$auto(0x0) (async)
setsockopt$auto(r1, 0x6, 0xc, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4) (async)
sendmsg$auto_MACSEC_CMD_ADD_RXSC(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={0x0}, 0x1, 0x0, 0x0, 0x8090}, 0x4000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r2) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'dummy0\x00', <r4=>0x0})
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002dbd702075dbdf250c00000e030003c90c0001800800010043d93004b6e96fddfc6279d85f5a1afc825a4985a28d8fe33c93dc88dab1abca3fd1ef6f2fe2743fc23049df79b80033b2d9a1ceef8884f72c4d82436d82f1bcadfbff5553415c726ce6e69cb153a9a9c2ff3997", @ANYRES32=r4, @ANYBLOB], 0x24}}, 0x0)

2m48.761958527s ago: executing program 1 (id=331):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8000, 0x0) (async)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x88)
open(0x0, 0x221c2, 0x84)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
socketpair$auto(0x80000000, 0x0, 0xfffffff7, &(0x7f0000000040)=0x3)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_CREATE_VM(r0, 0xc028ae92, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r0, 0xc028ae92, 0x0)

2m47.698799671s ago: executing program 1 (id=335):
writev$auto(0xffffffffffffffff, 0x0, 0x3)
socket(0x10, 0x2, 0x4) (async)
r0 = socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
socket(0x2, 0x3, 0x4)
r1 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
newfstatat$auto(r1, 0x0, 0x0, 0xfffffffe) (async)
newfstatat$auto(r1, 0x0, 0x0, 0xfffffffe)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
r2 = socket(0x11, 0x80003, 0x300)
setsockopt$auto_SO_PRIORITY(r0, 0x8a, 0xc, &(0x7f0000000000)='\x00', 0x5) (async)
setsockopt$auto_SO_PRIORITY(r0, 0x8a, 0xc, &(0x7f0000000000)='\x00', 0x5)
ioctl$auto(0xffffffffffffffff, 0x4b67, 0xffffffffffffffff)
name_to_handle_at$auto(r1, &(0x7f00000000c0)='/\x00R\xa6\x00\xc8\xda\xdc\xb1\xb4#\xe4\xeb\xe1e/\x1b/\xb9L\xc6P\x82\xba\x90@\xb8\xb5\xb1\xe8\"\x88s\xdf\xc7\x87g>8\xae\x99\xd4~\xc6\xa7\\\xcc\xfeV\x83\f\xdc\xdc~\x8e\xd5\x18\x13\x16\xc5\x93E\x10\xcb\x1c\x02\x00\xd2\xa4_\xa3\xdcS\xe2\xe2\xc6\x85p\xfa\xc3/G\x86\xea\x9f\xb0\x9a\xcc6\x1a\x06\x91\x9f\xcfC\xedU\x00f`\x02\x04\xef\xfe\x10\xec\x17\x83%K\x04\xd5s\x86\xe4\x9d\x15\f\x8c\xd9gj\xe5t\x82o7\xc05ul\xacU\xbf\xc0\xfe\xb4\xd7\t\xe0s]\xcd\xac\x87\xa5\xa6.t\xa9\xe8\xa6>\xf2\xd0\xb1\x83\x83\x91\a\xdc\xe9\xaa\x1dx\x06\xa77\xd6\xe1\xe9\x94\xb9Xi\xbbv_\x9a_bv%\xcb\xc7\xdd\xa3\xb4\ter%\xdf\xc9\x06\xa2\xe7\xe1\xde\x16\xf7\x03x\xf8\v\v\x1a\xfcm\x87r\xc1\b\xca\x97\xb0\xeb\xd6F\x8f^\x94\xdf\x9ax\xf4\x03e[l\xa5\x00\x00\x00\x00\x00', &(0x7f0000000380)={0x10a, 0x7, "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"}, 0x0, 0x1001) (async)
name_to_handle_at$auto(r1, &(0x7f00000000c0)='/\x00R\xa6\x00\xc8\xda\xdc\xb1\xb4#\xe4\xeb\xe1e/\x1b/\xb9L\xc6P\x82\xba\x90@\xb8\xb5\xb1\xe8\"\x88s\xdf\xc7\x87g>8\xae\x99\xd4~\xc6\xa7\\\xcc\xfeV\x83\f\xdc\xdc~\x8e\xd5\x18\x13\x16\xc5\x93E\x10\xcb\x1c\x02\x00\xd2\xa4_\xa3\xdcS\xe2\xe2\xc6\x85p\xfa\xc3/G\x86\xea\x9f\xb0\x9a\xcc6\x1a\x06\x91\x9f\xcfC\xedU\x00f`\x02\x04\xef\xfe\x10\xec\x17\x83%K\x04\xd5s\x86\xe4\x9d\x15\f\x8c\xd9gj\xe5t\x82o7\xc05ul\xacU\xbf\xc0\xfe\xb4\xd7\t\xe0s]\xcd\xac\x87\xa5\xa6.t\xa9\xe8\xa6>\xf2\xd0\xb1\x83\x83\x91\a\xdc\xe9\xaa\x1dx\x06\xa77\xd6\xe1\xe9\x94\xb9Xi\xbbv_\x9a_bv%\xcb\xc7\xdd\xa3\xb4\ter%\xdf\xc9\x06\xa2\xe7\xe1\xde\x16\xf7\x03x\xf8\v\v\x1a\xfcm\x87r\xc1\b\xca\x97\xb0\xeb\xd6F\x8f^\x94\xdf\x9ax\xf4\x03e[l\xa5\x00\x00\x00\x00\x00', &(0x7f0000000380)={0x10a, 0x7, "83a5e6cd71f66a4cbe7715d754c6b991e4068b412f393398fe0e543f7082557bbb3b5a4e2c4f97727fc272f56a375af1a11adfa3a9ddca0c972ae63a30c07372777c7981ce431ee3a5c8cb55b0322645cec7f1af1b5a9c5b2f1feb76991217008000000000000042b59a176e6f66e7c9e56dd273524f132b5740a512eeb8f00587e406fcbc6b74e526b507e4c6f7c115cf415528f51ca489272eab96edcd1236cb34a57803cc739434bdc4a481505d1f81dfabb6797840a4344db77d3e1a41e0af028b5e4598e5d33fb3e9cfcf4859583bb038f2dffe3d1f0caacd47535293f8f0d052914b8d6b869e11ba2040bc25b7f5a3df130481564d0aee0612fb76ce0bf569685cf4c5c52e7d02"}, 0x0, 0x1001)
setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x404)
write$auto(0x3, 0x0, 0xfdef) (async)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)

2m47.369835329s ago: executing program 1 (id=336):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080) (async)
socket(0x2b, 0x1, 0x0) (async)
r0 = fsopen$auto(0x0, 0x7fffffff)
fsconfig$auto_FSCONFIG_SET_BINARY(r0, 0x2, 0x0, 0x0, 0x100d1) (async)
listen$auto(0x3, 0x81)
r1 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, 0x0, 0x80) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (async)
userfaultfd$auto(0x1) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) (async)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS2\x00', 0xc7f16bff2a501a01, 0x0)
ioctl$auto_VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, &(0x7f0000000080)={0x3, <r4=>r3})
ioctl$auto_RNDZAPENTCNT2(r4, 0x5204, 0x0)
r5 = socketpair$auto(0x20004, 0x1, 0x1, 0x0) (async)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r6, 0x5423, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000240)='/dev/mtd0ro\x00', 0x13d082, 0x0)
socket(0x2, 0x3, 0x1) (async)
r7 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) (async)
write$auto_console_fops_tty_io(r5, &(0x7f0000000440)="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", 0x1000) (async)
r8 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/nbd10/state\x00', 0x189e42, 0x0)
write$auto(r8, 0x0, 0x80000000)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="010025bd0000fcdbdf25040000000800090000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x40c8}, 0x4048000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)

2m44.637850654s ago: executing program 1 (id=344):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0x7fffffff)
r1 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, 0x0, 0xa040, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x0, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000)
pipe$auto(&(0x7f0000000180)=r1)
shutdown$auto(0x200000003, 0x2)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x10000000004, 0x4000080000de, 0x40ebc, 0x401, 0x0)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x144000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)

2m29.320879719s ago: executing program 32 (id=344):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0x7fffffff)
r1 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, 0x0, 0xa040, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x0, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000)
pipe$auto(&(0x7f0000000180)=r1)
shutdown$auto(0x200000003, 0x2)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x10000000004, 0x4000080000de, 0x40ebc, 0x401, 0x0)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x144000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)

17.265297446s ago: executing program 0 (id=961):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)
newfstatat$auto(0xffffffffffffffff, &(0x7f0000002900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x784a)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf2502cff3291849be3657003c80080019"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x10, 0x70bd2c, 0x25dfdbfd, {0xa, 0x0, 0xa00}}, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

17.001951861s ago: executing program 0 (id=962):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, 0x0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0)
read$auto(r1, 0x0, 0x20)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
mmap$auto(0x7, 0x2000c, 0xdf, 0x20ebf, 0x40000000000a5, 0x8000)
socket(0x2a, 0x80000, 0x0)
socket(0x15, 0x5, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x1, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video52\x00', 0x0, 0x0)
ioctl$auto(r3, 0x40085618, r3)
bind$auto(0xffffffffffffffff, &(0x7f0000000000)=@in={0x2, 0x4e22, @remote}, 0x3)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/memory_tiering/memory_tier4/nodelist\x00', 0x22100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000080)=""/247, 0xf7)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xa, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0x990, 0xffffffffffffffff, 0x1, 0x948b, 0x4002a1, 0x95f4da0a, 0xfffffffffffffffe, 0x3, 0x62, 0x80000001, 0x6, 0x0, 0xc, 0x3, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x7ff, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0xc, 0x2495dae0, 0x6]}, 0x0)
write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
unshare$auto(0x40000080)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, 0x0, 0x101501, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

15.987042829s ago: executing program 0 (id=966):
r0 = prctl$auto_PR_SCHED_CORE_CREATE(0x9, 0x1, 0x0, 0x8000000000000001, 0x7) (async, rerun: 32)
r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), 0xffffffffffffffff) (async, rerun: 32)
r2 = openat$auto_ubifs_dir_operations_ubifs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bluetooth/hci4/hci4:201\x00', 0x40200, 0x0) (async, rerun: 32)
r3 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f00000000c0), 0x125080, 0x0) (async, rerun: 32)
fstat$auto(0xffffffffffffffff, &(0x7f0000000100)={0xfffffffffffffffe, 0x6000000000000, 0x6, 0xffffffff, <r4=>0xee00, 0x0, 0x0, 0x5, 0x82, 0x1, 0x7, 0x10001, 0x8, 0x6, 0x3, 0x2, 0x80000001}) (async)
msgctl$auto_MSG_STAT_ANY(0xffff7fff, 0xd, &(0x7f0000000240)={{0x7, <r5=>0xffffffffffffffff, 0xee01, 0x56b6, 0x0, 0x10000, 0x465}, &(0x7f00000001c0)=0x2, &(0x7f0000000200)=0x7, 0xfffffffffffffff7, 0x7, 0x6, 0x3, 0x81, 0x0, 0x7, 0x1, @raw=0x400, @inferred=<r6=>0x0})
r7 = waitid$auto(0x0, 0xffffffffffffffff, &(0x7f00000002c0)={@_si_pad}, 0x3, &(0x7f0000000340)={{0x4, 0x7c60}, {0x6, 0x9}, 0x8, 0x13f9, 0x2, 0x0, 0x1, 0x80000001, 0x9, 0x86d9, 0x4, 0x10001, 0x0, 0x7, 0x5, 0x8})
r8 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000400), 0x8000, 0x0) (async)
r9 = openat$auto_objects_fops_(0xffffffffffffff9c, &(0x7f0000000440), 0x29000, 0x0)
sendmsg$auto_MACSEC_CMD_DEL_RXSC(r0, &(0x7f0000001340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001300)={&(0x7f0000000480)={0xe60, r1, 0x800, 0x70bd2b, 0x25dfdbfd, {}, [@MACSEC_ATTR_SA_CONFIG={0x53, 0x3, 0x0, 0x1, [@generic="796e50f12b71f5220d8b69b851d5772b040ed84997c97fd5147b772ffc128ece73af9eeb3c981e710590841fba412d37b35a3e6a790aa1023d4a20a710c6c16b1210be00f10533191fdbdd04836914"]}, @MACSEC_ATTR_SA_CONFIG={0x226, 0x3, 0x0, 0x1, [@typed={0x8, 0x36, 0x0, 0x0, @fd=r2}, @nested={0x146, 0xfc, 0x0, 0x1, [@generic="70736ad2b576b6c62cf93966e1565b7c0dcb50a29c49f17be4eb01df7969142bdb277b398ae9027a456a1ef97c7a0bbdc7bf8b5ebc22ebfb71894a3421848c462914864541a14dbe4b399caf0c7f6253ddfb580d12b6d6c60b2e2a58aad872804a4f3d9b99b9671320cb764b40199c80ad0d705ac46ed0e7166c480813e33f124374fc90b171101fc26c12e85cc3cec0c52ed88858a98219bde5420d5d6aaa5ecf9f68141c23779950e0c4f377bf61e61b83ad3985f14f28604db152377c77be42507777", @typed={0xc, 0x39, 0x0, 0x0, @u64=0x6}, @typed={0x8, 0xac, 0x0, 0x0, @fd=r3}, @generic="ce7eba4765878af4f941a28709dbadf7c61e98342b79eb5ff5aa72b6b2c211bb22436c032f4633b263900da66a0bd2e4cc3fe9bb0db714853cf2b70ade94892a9ef7ac7c35bd218f9ff2e58ada563d07d25503c61dbc5b7f43e8f3c81b15", @nested={0x4, 0x10f}, @typed={0x8, 0xd5, 0x0, 0x0, @uid=r4}]}, @typed={0x8, 0xcb, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @generic="e12828bfeb7986f43be1da29a23cb2e4fccb34b6c391f80fc46d72ae38e8e71a894d1d13b93fbb8891196249f8b90ce934520789c83e1ae8b34eca46c007851e89395f920a3bd2aff520c6e98af79802b932f5628e7cd5dcb320234bc68e17402752bde6dcde80380b13c107bc087a1f57af51cc90d6048a4fac2cc9bccc43c96e99d233124570e12c2efc6c2d50dce5fb49f59040fedc59dc71c694d40ef3e9702aaa880d8f813feee7af6c87605655ced0ee0538a323825c6679e086e55cf56fcb", @typed={0x8, 0xe1, 0x0, 0x0, @uid=r5}]}, @MACSEC_ATTR_OFFLOAD={0x360, 0x9, 0x0, 0x1, [@typed={0x60, 0x34, 0x0, 0x0, @binary="60ab322e98ae5e279e2a7764e191bd3c5027174db04625df12f3bef5c3255c9bb89ae00be36f4430c093e55b94f4dbcc3fc9066c1d45b5586e1d5820d53bc2c185de3a45c6d1798c932a5a2390db6477f5e7843228bcb82693ef40b8"}, @typed={0x8, 0x3d, 0x0, 0x0, @pid=r7}, @nested={0xe1, 0x4c, 0x0, 0x1, [@nested={0x4, 0xb6}, @nested={0x4, 0x51}, @typed={0x8, 0x139, 0x0, 0x0, @u32=0x705}, @nested={0x4, 0xb9}, @nested={0x4, 0x31}, @generic="e702c7363b61c1ed1d613276095966ed50a39ddc7f089d32421d437b0f65195dddc0acd9cd4771d06751d9e124f6148d680284e0b92cdb5d711a2b16f9edb154798f6dfb6cad475ad9caaf287377120aa40c23c9acbfa4e7330a3978542001b40e1b0d4538529fe0892de2859e6482dc588155aab5d75988", @generic="f7a557bde56039dee624ed78d648a7bf2aa15161383c226f31af97456aa2bd30a3a4c9a775978a6cecf84e20985e2c4f64b405c2b82108f63819482c29dda60c045f62ad790b0be3c7bbe1d228"]}, @generic="e9e29e627b49c2a131408dca8413dba35548f072f6cdcce6e930baad4b85331eaefd212e9d1da5dae4063fb851515c4baeb7128bf8d02dba90dc25857d3ce6f009e44a2907fea372aa0033f1623ec7556a4f457e0180b454c08265533c47e6d628ec6c41a24ce2072bc3b02809d43e85a246bc01b1e207585652c253ace9524a15c8a229d693db7ea1054f9df00cc32c11f316887b68fa6d538943c7ff154494e907212c61c39da670f8005f68a5472443bc221e53ce374902b4ac0d3bb16e9a3f421889f6960db7ddb88ed7187c0ab693dedf30f37c", @generic="891603d129529bf1e6a55c89b37817d1907369ab5c374091b337c7347ee675fcd0aa9182f628728ed412814ea41194bd4c9758ab5fbeb282cb54f2b8371d66af1b633c85dc90a7b1d2255a2b5706b5d88f1fc80c8277fd3a7e4f37c589e255d7042ce6224332bc245ecc598814fbbc47dd3c5d0aed90db31847f5194c507a568", @generic="2196214716f8b4c795e740988fa5da6aee23733794b9b1f690dd0961d25a0ba6fd0ce1ef85b54b5a2edc65dcd8476c30200088b6c3fccb6a6011f59c6cbe668213f9652a196197b464fb7098a096a686420e7b5ef1c7c7ce052e0b0f77d74ada418c9c5bb1abbfa6ff0cfa13a673ced724359f20efb8d1868462445412b7833eff8bf41cc137ea03faa03c595bb3944f7b254953500002b3a1c20617f75bbe56ee4ac0b91de9358c71e95640fe7931f788274ee558ef0ef16772"]}, @MACSEC_ATTR_RXSC_CONFIG={0x51, 0x2, 0x0, 0x1, [@generic="b11feabfeec42467cf63d152d993df2aa5371c495c914724a5274d36bb6f2dc18739b65b86466fded10e7eb4aa39eb82a5df362f69b02044f6cee552cc460579c37abecfe7fb9b566639e5f546"]}, @MACSEC_ATTR_RXSC_CONFIG={0x8, 0x2, 0x0, 0x1, [@typed={0x4, 0x12d}]}, @MACSEC_ATTR_SA_CONFIG={0x8, 0x3, 0x0, 0x1, [@typed={0x4, 0x138}]}, @MACSEC_ATTR_OFFLOAD={0x493, 0x9, 0x0, 0x1, [@nested={0x268, 0xc1, 0x0, 0x1, [@generic="0484a09da0afc9c0da4ed0795edf9834184f311a05eae3ce29e5a44b5d096a1ae83637d227ff53ae7f123ea26dac70880764516569c67bc0767fb4e891e2a71a60e1e6596154734ac3b7050fd8bf666bf50d90e29e7b9365bfb9335a722c63763f68760ff8ba26fc", @nested={0x4, 0xb0}, @typed={0x14, 0x37, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x2d}}, @generic="44fec9f0", @generic="da4fede755aabd31c5971ec1a5e645bf3b77b8c1a067cb640118eded22bbc55653cedf28452c2f13f534b449b0b75431d9b31a7caa78a6c32b454612c29f33b9bd16544932cc835ea3eb4ab56196029b16a5b9e8125fa8661f7ca084edacd8f68a8ff294f835a02b167bed74f0ca582617ded2f45cd7d6fde222171b5fba9970a9ed1bbf5bd05fe22265c92e25747f74b1ded6f56fd80642607a5dfc539947244a0892ddcdfc5f906f97f4edc8da4deee33d98d299e67c492d42b0b4fb43b90ffc4ea4c0e3676dafedd167a68c2361db8dad268925bea2e01e", @nested={0x4, 0xc8}, @generic="b3989221af36e5089555bcd9ccc383aaa24817b145f9f7fd67cdc83d27c537dc97c8a9c57ce8ccea827c3336038137d0cf06851698207447a84bd733d276188fb28b1d1e02237a94a41c9652471020cd547ef94d23c23b172ae7ba44b90ed42dc657e3150534d7e706021c8e682ddd11f62995c034a746a8bba8c364dc75573f202fa0d5d826cb5c8aaa0508449ccde4b8460a4cab5624110e4ef4fd319f3a61519a77a1f2fe16fa11ffa98fe3616629cd985ab26b34d9bad64c9e7a28291b5efa48639530444b68cfff12b119a53ac656b71f172f3632f336e4e39b3c66bb06ed6ddbc850d68864473eaf99ee5489a442bb80672f473ec13cb00d", @typed={0x8, 0xf4, 0x0, 0x0, @uid=0xee01}]}, @generic="d7348e5ba76e0ffaa62242933e442122fcff4228a1115d48b3229e7b39819f4fcdb99e3c4e38df8f0c15d47e159d908839df88c483eb8611c1e62b8c9c14c5218f945d0bacd43dd7758bfece7dc9c4160b21be9bc7c38c5557fc3d961aa8b9ca9ce1dff51617c0e1520976bed79a43bcc0b382d98d8c67f61f7b267ddc22a421478dc3fae190b2de78e43189c9fdf7ad7bbf965b0e7943e7020f79db18e1257de0bdb4b59d49b3cf16fdd8152de9877183a467cccbdb56edf257633a89c3c519c4031a1df1", @generic="8e044512dbdaf16c330d8b20008a194ec3b690983d9203d08ff2e4af9121d4f02bcb594a25e9876520499555bcbe36ee8fe49c22e973364801e2655b9ed48065d04bfed44a0d11ea5dcc225736f45cf2373ff4dc79ba8d4e65", @nested={0x8c, 0x55, 0x0, 0x1, [@nested={0x4, 0x132}, @typed={0x81, 0xd2, 0x0, 0x0, @binary="ae333402c9f7166ed5f10f41fd8750ac57423eca43134129f9b1414e81782011dbc7511bb6982e9054927ec27473b270639018caace09994f417558bad8ea7a0c8d258d3f72136d73e2af1f13e0c8faec2404ab13d8f86ac4930bff552571d7cf1fa9e82d1733961fe2bbc1e4e08de380893e5f28b9ca34cd05d7f2bb5"}]}, @generic="86831951cfccba7aaaf266ee9c2ae57a7bce6462d2a013f69321fcb9de64b0320fd90d4bf456cbfa8f2d7a7182f1faa9a3217d7f0f2dbf73f281e1178c7d6e0f920bd469b70db881e3bb9ade3126b0c36dd49216eaf1389aa0c530018d02544a6dd83f8e73a5b0e267276917b5833ca3b29ad1f385", @typed={0x8, 0x86, 0x0, 0x0, @u32=0x7}]}, @MACSEC_ATTR_OFFLOAD={0x377, 0x9, 0x0, 0x1, [@generic="8f2512de28f5f85cef7f0216848cd19a71b1223bd01cf3d58cc59a420ddb0a79bdc8f677447631fafcf513023e1c2e5418e4c028a10aecd4", @nested={0x17a, 0x14a, 0x0, 0x1, [@generic="9925557d8e52d2b13e569e555d11cc5e21d42f8d721b1c338713b93a4994ff8fb8fb695338f6c2a9d5ea72da09a35d849ed9d33d034f6ae0d4d0b491d93adc7da294774ca9dd1ecb", @typed={0x14, 0x105, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @generic="c5d06eac1f0c0d3826378e445d72377b58245ba9fa6405867e594849", @generic="2cccf2977b47fd809df94f17d422c763975cfccc138c0df83d8dad02de63bc9cf61e0ce343e537b75cfb65155d77a3c69c4ccfd255ae8b82fa89a5385d228aef05b1132e7f246d41e47c96d664a578ae73f3cca6fc90ed7351ae29d1650d14731011d04f4752e9a8ba9049e519ea4f0e9c58b4dda226a023737d59b4c8f82d66d5a9e61158c8cc630daa24156d517c39a8665305dfff2af47c20e1689e3bc60f6322b006922cf7fbd92f70d37825542237beddc6eb662639edb41ebaa237519bf36581ccaaef32b22ca4abb210111ba79386b659398ce00c84a5ef269322768a063ee6b4878ddf3b3b3d20adac8a7422983a13d94de5289ff22ab1d33290"]}, @typed={0x8, 0x0, 0x0, 0x0, @u32=0x258}, @typed={0x8, 0x6d, 0x0, 0x0, @fd=r8}, @typed={0x8, 0x13a, 0x0, 0x0, @str='+\'#\x00'}, @typed={0x6c, 0x107, 0x0, 0x0, @binary="f6f3a7136994123bbe4b730b2d594438388f99652c6747c1c1ef005302733e3e4da2e7b6c1b2b66ebc015e3ecdec97b3bb439449c4dc0305d89574f01c45502819425619b6d53697cbe49e453a49274c7972310455d208f584b6c61692928ada0ce30338af75a1d5"}, @generic="c9ef6aca5331bad3daeea4426742cc037bcbd95b87c705cbebdac8db0d4afc8e5a58aa41fc1114082ceaca37aad90200f3f1434bb994b002", @nested={0x34, 0x79, 0x0, 0x1, [@nested={0x4, 0x147}, @typed={0x8, 0x2a, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x1e, 0x10e, 0x0, 0x0, @binary="a3648b0da8a19eb5d555f6ece9cfbf92a281e1a0d14315111467"}, @nested={0x4, 0x131}]}, @nested={0x2c, 0x7d, 0x0, 0x1, [@generic="68c0411c4b6723c099aae5db0fbc5c44c223027c0c9bcfeb953140f354bafe7c", @typed={0x8, 0x98, 0x0, 0x0, @fd=r9}]}, @generic="d8af60351c9eefa0fbed66feab5263f569d564efe7f8a09f4e1cf4d387f6c88a7ef5634e37062319fe0623080f5dfa7a1218c0c0f695fba831ae056ed95d94b83ed686315f69e0d79152a75016f30756de47588b41a13cba01a66e699b432fc8b7ee226549ffdb015d7a2d69b35f70c22fa8c63188d58c8152216d24c1544ce812bd8cf502bb78c6f2029bff74dcf16c192d468ddc69776d77f00ea5462a0fc0db0d81"]}]}, 0xe60}, 0x1, 0x0, 0x0, 0x20000004}, 0x0)
ioctl$auto_XFS_IOC_FREESP64(0xffffffffffffffff, 0x40305825, &(0x7f0000001380)={0x2f, 0x1, 0x1, 0x83c7, 0x6, <r10=>r6}) (async, rerun: 32)
pread64$auto(r8, &(0x7f00000013c0)='+\'#\x00', 0x4, 0x4) (rerun: 32)
fsconfig$auto_FSCONFIG_SET_PATH_EMPTY(r2, 0x4, &(0x7f0000001400)='$.\x00', &(0x7f0000001440)="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", 0x2eb)
sendto$auto(r8, &(0x7f0000001540)="6a2d16340ede900b6d72f81b2a83d35a47ce2362187f473921113203286cbb1e2b8a9c88a0875c9f0a3237edf76b026fa2eaa42fa032566c23d634dff20ff03eb3ce0ffd12385f6b27b047b0c1025086145260719345e2be6bca6591d76514a8c6985eff0b7815c12ded4cf0b9bb4538085f2ec557e0292facd113e249c3d084646eeb4a5167f26434a575af402aa40ff7a502fc5049ebca8a5c61279b2002d7df9c13d637cd08c76e5ab06721cc9a5c982fdd2762c7cb63f5171b10c3241732e316bfcafdeb4f2ca9cd804d66c39d9dfc132a71276b64f0f01b", 0x43f, 0x1, &(0x7f0000001640)=@nl=@kern={0x10, 0x0, 0x0, 0x400000}, 0x0) (async)
r11 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000001680)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x4c00, 0x0)
mmap$auto(0x2, 0x8, 0x7, 0xa1b, r11, 0x2) (async, rerun: 32)
write$auto(r2, &(0x7f00000016c0)='/./%-&\x00', 0xf) (async, rerun: 32)
r12 = socketpair$auto(0x2, 0xc, 0x6, &(0x7f0000001700)=0x5)
r13 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001780), r12)
sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(r0, &(0x7f00000019c0)={&(0x7f0000001740)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001980)={&(0x7f00000017c0)={0x194, r13, 0x2, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x1}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x5}, @NL80211_ATTR_TX_RATES={0x165, 0x5a, 0x0, 0x1, [@nested={0x34, 0x1f, 0x0, 0x1, [@typed={0x8, 0x6c, 0x0, 0x0, @u32=0x6}, @typed={0x8, 0x117, 0x0, 0x0, @pid=r10}, @typed={0x14, 0xbf, 0x0, 0x0, @ipv6=@private2}, @typed={0x8, 0xb6, 0x0, 0x0, @str='+\'#\x00'}, @nested={0x4, 0xeb}]}, @typed={0x14, 0xf, 0x0, 0x0, @ipv6=@mcast2}, @nested={0x48, 0x11b, 0x0, 0x1, [@typed={0x42, 0xa3, 0x0, 0x0, @binary="8a580d54f6490fed420426a82bb844aab2cd67c541c9a0dc8555c1be2581f89f5d68834c82ef4481cbd48f0dd728a91cac06a98b726f1e16823d33cd5cd4"}]}, @nested={0x8, 0xf1, 0x0, 0x1, [@nested={0x4, 0x35}]}, @generic="4bbe7a774ceb8dcb8794f2fe5e406a381659052e29cffee95edffc75dea6ca2d813278b938a55a2323b5a07b65cdfa980ee5592cc51895976147a0621ea8e3c6783dddb53bc8543835b533f2872f46e67d08c461fdbfa17e5b0a5b9c287ba580c51c0cd1e724a21ba15625b416a4531b3ccefa4f753f70fa7586cef43e6d15237c2c0e8d9757be7a6b058644ce3dff7fc24064872b92fe21ebd6bdff27019bc20e5443c034527e434653e2d8fc62f05238f568f0a85066a9b0af8dfd14ca94a38c0137a9a3558ca0c1"]}, @NL80211_ATTR_PUNCT_BITMAP={0x8, 0x142, 0x7fff}]}, 0x194}, 0x1, 0x0, 0x0, 0x40084}, 0x10) (async)
r14 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000001a00)='/dev/usbmon4\x00', 0x618001, 0x0)
ioctl$auto_SG_GET_NUM_WAITING(r12, 0x227d, &(0x7f0000001a40)="efc32aaebd8900daa1cc6e9ea07151c56294579c854ed413e3d92e32b0019649d44f752a32acac15c9389865f60563e73da17a2dd7047bd1cb0c1097b952c99c1a1b36013bfd551eefa5fb70910e60082e1a5f55bc83") (async)
semctl$auto_IPC_SET(0x1, 0x9, 0x1, 0x2)
semctl$auto_IPC_SET(0x6, 0x0, 0x1, 0x3) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_SET_SAR_SPECS(r8, &(0x7f0000001b80)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001b40)={&(0x7f0000001b00)={0x1c, r13, 0x300, 0x70bd27, 0x25dfdbfb, {}, [@NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x10000881) (async, rerun: 32)
pread64$auto(r8, &(0x7f0000001bc0)='/sys/devices/virtual/bluetooth/hci4/hci4:201\x00', 0x9, 0x6)
ioctl$auto_FS_IOC_UNRESVSP(r12, 0x40305829, 0xb19e)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000001c00), 0x204000, 0x0) (async)
mmap$auto(0x7f, 0x5fa, 0x7, 0x11, r14, 0xfffffffffffffffe) (async)
ioctl$auto_UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000001c40)={r3, 0xc5, 0x1, 0xb})

15.692417736s ago: executing program 0 (id=971):
r0 = timerfd_create$auto_CLOCK_BOOTTIME(0x7, 0x9)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)={0x1a4, r1, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x3}, @NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0x2}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x15e, 0x75, 0x0, 0x1, [@nested={0xc0, 0x9f, 0x0, 0x1, [@generic="db3f60c1a4a54256a32e0c37fdccc4b75dbd880946e8b76eb6523961d665b8a847fc5dfec717a2f56c272fa5168b8f9b44c63d7269ef0effc4349e4e2e4f9d5581b11ba308918ed71a679ea1309719fe7fafc688625e4d171ac08f404ef12ac951b8f1923e6ebf889da2225435303bda789db6133e870eb3f53dc3c7cac0839daa1077d7ee06eff094e505e84ec910b05df11866acdef1dbe7290e47e458133552b1cd76362f37dfbedf29b9110b9cd3da038c4e3c5d751a55b13230"]}, @generic="e26534218ae63af8addb46370f60b184daf3471fe667f98978f53fe9edf001dab591f56248b378be251386295e366a0d8c4eae09cde81961a4701dde56752d079735c78c9c7d039d8aff4b954418bab1768f4ee0f80c1d88676fed15c2c8225d4798a2018619e558d99286294a23214d5ae6", @typed={0x8, 0x114, 0x0, 0x0, @fd}, @typed={0x14, 0x35, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @nested={0xc, 0xfb, 0x0, 0x1, [@typed={0x8, 0x82, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}]}]}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x8}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_SAE_PWE={0x5, 0x12a, 0x3}, @NL80211_ATTR_TDLS_OPERATION={0x5, 0x8a, 0xfe}, @NL80211_ATTR_RECEIVE_MULTICAST={0x4}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x20000881}, 0x4)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000300), r0)
sendmsg$auto_BATADV_CMD_SET_MESH(r0, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x24, r2, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x9}, @BATADV_ATTR_BANDWIDTH_DOWN={0x8, 0x1c, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x80c0)
r3 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000400)='/proc/thread-self/loginuid\x00', 0x42e001, 0x0)
mmap$auto(0x1e, 0x7, 0xc057, 0x18, r3, 0x4)
r4 = socket(0x9, 0x6, 0x8)
sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r4, &(0x7f0000000c80)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000c40)={&(0x7f0000000480)={0x788, r1, 0x10, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0x7}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xbd, 0xcd, "9f1df0760df0ab220e588b44a5d32c31e551368f22fa7a45ea82c26115ee333655fad83db3457684235ce32f81587add8638ec80c86319ec58565685a55576f306cd98717a87bdbf15c96585e54584092ef50735142b93c82061c2bec88a287133bbbef46c4f562963b027fe073124e49b0c0f8df80890762b7dee5cbf1fc351342f18ce8e518c19a37b17261c22420e5fe638d17861c4b94828e1125814ad4d28cb9e785f5c7d063342b101e07a9d5ecdbef995d77e798c5e"}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0xff}, @NL80211_ATTR_FILS_ERP_RRK={0x20, 0xfc, "d04eb2f2b22028eb883e5d17f8e158103ca4b0656647e809a49c5ed4"}, @NL80211_ATTR_SUPPORTED_SELECTORS={0x34, 0x14e, "060a9ef3e8ac0e031cb72fcf1795d10e1bbe7cc71ed35ce1220eb4107eaf0492bc5e7836901bd23b321704a947303c9b"}, @NL80211_ATTR_IE={0x5f0, 0x2a, "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"}, @NL80211_ATTR_EHT_CAPABILITY={0x5d, 0x136, "18ec8dc048327ead25c0ab77b8239a5ef346a3a31febdf404389f9b4e55fa624196a74acdfab59eb6bbf30300e5cf92f19d8f5a808fd2314ac455dbafeea8cc789ded9a499d03a105b5e9269dc62df382fdda27bd7c1d5bf45"}]}, 0x788}, 0x1, 0x0, 0x0, 0x4000081}, 0x8000)
r5 = semctl$auto_GETPID(0xffffff7f, 0x1, 0xb, 0x100)
sendmsg$auto_NFSD_CMD_THREADS_GET(r0, &(0x7f0000000d80)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000d00)={0x14, 0x0, 0x400, 0x70bd27, 0x25dfdbff, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x491}, 0x801)
madvise$auto(0x9, 0x6, 0x100)
openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000dc0)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x141000, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000e00)='/proc/thread-self/fail-nth\x00', 0x20000, 0x0)
mincore$auto(0x4, 0x30cf5030, &(0x7f0000000e40)='nl80211\x00')
r6 = prctl$auto_PR_SCHED_CORE_CREATE(0x2, 0x1, r5, 0x0, 0x317)
r7 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000ec0), r4)
r8 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000f00)='/proc/thread-self/loginuid\x00', 0x141000, 0x0)
sendmsg$auto_L2TP_CMD_SESSION_GET(r6, &(0x7f0000002480)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000002440)={&(0x7f0000000f40)={0x14ec, r7, 0x20, 0x70bd2a, 0x25dfdbff, {}, [@L2TP_ATTR_STATS={0x1466, 0x1e, 0x0, 0x1, [@nested={0x1b, 0xb3, 0x0, 0x1, [@nested={0x4, 0x65}, @generic="32db634f88e56e61fe841c0b5ca1ac55c8f242"]}, @generic="c10b393153acfa748e5e4590549e74fe4b6f9e5e3a0d040ef105fa444d8304759b66f1213225fc13bf49366ad1cee6e0fa94de2a7a5ae030fcd935f8427559525f93f1200cc2e503c5307b2aaa5c73522aeacffc160025372633f64b7d61e7447a7760c4bfa5135ac398ec325006adabcc334a2020da76bef95b92379ca5368bcd4e640ba68f6f81c850da6b1f1717ea24422ef6923d5ecd6e9bc0da11ddef7e459ac3ef300c14dd094ec37492c040208e0339c3cfb0d3e13c8297dc0c839db4f5c668378fc2197b93c1e9066611ed90074fdc7cefebeb26f25c62a1456614c48c04b1660360d1006e1f", @nested={0xc, 0x2a, 0x0, 0x1, [@typed={0x8, 0x46, 0x0, 0x0, @pid=r5}]}, @generic="196f6633f25aa5461ba51cd42e5d", @typed={0x4, 0x64}, @generic="908f71594b7f7d35fc5c37e67bd1c30898edd3ccd163686c487a", @nested={0x10, 0x30, 0x0, 0x1, [@nested={0x4, 0x9d}, @typed={0x8, 0x63, 0x0, 0x0, @fd=r8}]}, @typed={0x8, 0x87, 0x0, 0x0, @pid=r5}, @nested={0x1306, 0x149, 0x0, 0x1, [@nested={0x4, 0x107}, @generic="6341f1e7a4a575fb127e139c189ab6722179a94805fc5d1d124218e32a52b38a290728ee5c3f6f1cbd854779980f78d4bbb7c0867f0c0693a476501a5b344d38ecb29ce828c8e638421df420c87d91029a7fd3a38e1b91a5da2f45ff4988b837cc9f8383bb27fb5a1bfbe132794b91e5595ad9103eb786df60ed970228be838ec6a4420da4dfb0661ac08bc51400b79dd19b201770b50a573d6a0bee92b01160abc0ccea33c18cb4f82f6e7eb8315f8b1c1d7942fe5945c02c2062c7", @nested={0x4, 0xd}, @generic="9ce6ce8a9c799d804bdeed047f28a5d4fadfa3a761c51da509c478f57c6110a78eb314ae810239bb71016e0fd741a814e02e13b947f0f49d657b783cc73bef3347a6d6ec1866e4b3afbe53cfe820ed5cd73db8af735d4e5f53caaff5b1c991683262f25ae84c0f1d60a3ce24e80dbd80c82cd7e81ad8c9ae27d7d79d6a3048c29b088e7828a3e8f8c7c37ad7a60d80fb324e0034a586dfc50e1294e3afaa95de9dfff5d32bc43acfa8ac07206f1dc1c3528ba44cf5de52cf5fc0eafecfbed6bcdddd82ee4fb1e0f067eaa822686cb41880c4eb96156fd62ee02f6e5153848e87c7c59dc8d5c08f3fd20a8719da8a577a354790c26062ffac2a37e9a8314ba066733c08e4883c62552e26ef85c7426ecdc53a563f3af751a96f342307950f99ff1f7a5dd8a4bdfd0421da88808e6935dd79f21b81f6fb8f70455970f2c4ca31b8309bc88ab123faf67a490df4e432799bf4cd335e839e6d761cafc9e00ecbf99ada828bbe83e2fc4109626616717a2dca2300b2f8b96fc5ce161728b1390bcddfd29c7101ac3b139acbf14ce9a2cd7cd89861e8ce29e5072aeaae671f4da21fff0fce679bea18a7596f57189141cdbcd7f681294887b6ee41f8960847908cda470bcc24b4c5c99a0a8fe640f60463634c0cf738b63b879e928c4f127008a0afd20ca08c6928170a560184bd8ae2f85fbecdc60f26800d8d2ec355c5ae1435a5525c68c0dc5345bc5a863b76a12f11ab8efe7565c668160206973bcacf352d5d2e588a4f57f7d7c9edca87a5d912ec4c030b0e0d0ee90469bdd10c0d4a0c4262654bf8aa4ce18117adea8758ca3885f7511bf84fd68f0844944df6a29dbbfb3c1681c258d0d8211eb8540ab44909b49ff47a7d2aec83a08806068258e2788222bc7d37ae33faf22a37d08426fff3e220ae0ee655b8f2a0d87915442e14249201c37e6f4d00350d98b6e93e7d50403afef63dc87edaf83977fb231e4dca5ad335ef3ae9db119496d34ee5c7bbf0554e0da373e2b43e8c8e78c1e26684aa274d25fe549a70605a247f65560626b87e899ce1210dd531ef08dd196995676d3478d7fcbdc29a3aebbbdc35dacb7535cbd6f8f8de00b4b6bba6141b1b7039465f05cd896b8163b478480769f0405e333bea45ddf3442164c6cd06aa1c38d8f85ea17413c9a8d6e2ce79443bc75825e7d564bd98acdcba0aafe12e42e5d4308a15d8ec6a8d23dcd813f15d73bb3d7c69e029c90150d80293c82acb8eed78124958a2b4bf6fd855ceaa80a5aae18f03e64cad5f9bae99b9a42f8a6370914177ebca249a514ad67007dcec9753c3223812469e2df591b2cdd19fa283b566b21e8c1c3ad5d879c98701bdf57b815e8935be45879d58efece194805a64e9650d78f4fc232edf3fe5e46179a02843b32e502778a325be5f3d699946614e6a14be26745a9e88abb088a8c04997614c708226a93af050ce7de60b21f0d9fdd5cce31306c1a61e03c502b5798055b1a3025b673ea9c252da81a4379f3b16db93b903b166d4eabc527e7fad497cd124082edac2bbf0bd6041dad9cf57f05ca707908d073a1c7ab719006cb80d506b3bb47d5c755f9bc167eae0f3ea44ef15f8f5af860cb1973d58228ca02ff96a9117951692522535a5a6bfcd7ce63fd2133e76b6eed90f29af12aa9358e69a2546374ef7ea0baf71c176b5499aad000f2181e54a65c0f30e83b4afb8e982a6f3be5bd8c01afb2741bb2f5055a3b60aa245fc8104b66cad4067431b909d20dc87ab92356d8c0d6bd71dd23cc6959ed60252193e87e14274b97967a42ead3e9fa7de1738a8910e66af5995c6742e62a1f9c192856abd4c817c70df8ab758f8a0b8c428e39c88d46854cf4992e679404108f817930a86058e8ccfc1a674f10591c3bb7b319ae0bb2fef70ccdd5f54b19d5159ea8d9d9547f633c8ba1e047514ba13cc9182d306c3d3101573951ab52373b464875624b7a2d565694ad26b43a7628df67fe9350db9479bdd1b4b67ad04f6c7713b34ceee8bb1c7a9b97068a45fb5b8164f05cfdbd6ae74e647be864e63957b54881d22287421885d2b04d92572c0f26d943c22c6cfa01cd8840587ba7c4ad1be4c4851d26354caf57a9e28ab72608b47efdd11079cb95a9f03f1b549424f66eb1b2376e478d790726e1c13379c7ac299a6dd60c0f38913e66ff856fc7fdd422b947debc71e2aa184310e90fb301f967543f00fa07c92081ac8cf7799ed79fa1dad8ef1147dd18c82ae8977cadbb9e1313ccac15aad7d32b18e20e4de8b4bf3122590efc05416cd781c7d660714fb34b3a55a10c43f81e7839637040f97059310a15e66e60d85792f183897cf2fa4c9650889b28cf54c98b743cb76a3e3e278688a38ece6738e32582f9aca15f780c7eb79690e90aa7c6e27eb934937fb4f11601ee093d616f3292bff482b3f5cb401b708067a978810e3ef480bf7c36962d6ea6244c22e7866de74fb11a5b7b4e7dbe85462daa3f799f971b4481a0fea4574c9bea6ccea17c5686c4a974a9be368969e39130d8294e9990628b7b6c037ac9c437ef14221b3020cc79627e1d8a2729b9d045498e7ef5fe6d0d487b24606d36592f747a77c4dbdf94b36596d977575248c521b1bfe8054ee5ebf751e15a0dd0cfb6fc4ab04cf66f79955bcce227e332a0a4ace21fe27036f633f91abc9a80ebcc73910185d45bcf1c60e4e90fdaf4fc9bcf43ee63b4f6154c2c1ffb2d711379ce1f8130fb71a811b595eb8bd7b35a69df49a2418a81663feff358eee7bb248dab27917ff5586de442945ef095df10e1ba3e2f2e656aa27089dc01afd4eb31018880e2dbd1d6cee7a2ec2b34f9e26f75955d397517c761343fabf62beaaae7b58161d22516555bf42b3e11cec79c4a25cc3cf8d82a3988babaf2bd1e5ae305fbc1fbb5b3c82a31d46c40b01dc298029193180a1b712c1d0da91cd1ee25e227330e8e65626fb3bb955616efd3225a7921b5570084e4335a85dfd3deba2afe7db6140b0c90093d611c65c7bd2acbb906376b2d8d0849f8ee24d6692abb84dffc05fbe8835954029c888a171cf8cdce93f8300b849b095ef4ed7ba9685e77e76aa6c764ae552640cdce4034b38c98d91f269d9abba6ebc354d33a97a429648c728b8c3848ae56dbfe4db1b7c9b960276e7fc7f0d8adc3fd76e62da604affa062851fbd0249d8f3db235621d557e92df27d762112c0b9b36904a6bdfa395732819f5fe38ec07ec50aa86c73958a77b52b7667d2802bb2fbe2c3e62e472a54e8c8d5037aa462649896c2b6abf8561142623116c42536f3c493870c8ed002c5468c57147b7543cf3078a045d6a273d69646fe5c844ac0fa1e94352a0aa9890c1d6a1b5bd9fb3cf265099e15a794888686177d799a54be4b947c6f18ee143293e3682ca6f5a41bf138a29baae38d74845bbf9b5e6313201c85a00f985d28241593af4ed27a475fc5fe52e89a0d13031c5df39b37be9165e4d3b8fb3ba3786a4e696a9deed89d57be3d232ce789664864147cf1330392a6890c702e471aac28643f1033ae368f25e722fbc8347028f147aeef2b4113fbe98428552fe61820882ffa658f5e6e342178d435855d0475b7b58cd91f94fa08a669942809a8a10283062afe0528e1e97f8139d926ed2b1d508745f6e478e66c8bb90fbf9f5f77c5f5a4c5527bba25f2e3535fb20db5cf4220a1eb3de5ace813c7bf4644bc9b0538611e84129e1579a79b264fddd7e80b279602d1c0c6df2b677ddf8bf1b54e40797a36b7e6d49c35f69140efb1c33423f0f15b140d815d26965c2db3087d2c770270d3a7cff08344b9391c583ff570075a5b49bc25cba3428296a3fba6afe5d7f8b6b2043954dce78891f8bae57f58b6762426decde150c6a921f74d1f709279351f9664d5dbb0bc3928e6b2d5f9d0b9e939044e7e9434677f40bad670d283cbf5106fbe595ba28bf84e4d910539333251ea15c0edce680a29a2dead21692fd7470c007cb592e31884ed1428790424243d98867c11fb85356bc5be58a73b014e761cf0eaca16a17a2f457f943216c135cfaf229742c89ccce5ac96bc6459cbaf089953228a9dc93aa8918ccaeeb02f308fb01749fb797195a559970813c4052f367b7ecba7c341838ecc16764da86046968abc99e9fd98c26be955d376be520526b537e76b22fdd269668ca6544d53cfebd80619a52b75ce05b358b08d6aff1a906778b3d881a49f7f74fcac99bb577a607f3dca81b3ef31a5d326742afd6d6ce809088f0a73d6f4e29a5a99e8ca5420eeb97a5500333fc3dd56ad86c26e56f8ddffccb49c500e7bc6453e0dbe0ae097ce126e635a901a34f0dc22058c40ddab9d9f54805ddba70662e8e001da09f29520ac217c6ee89675bf0dfa8557c01ed14ca2d797b0c032145b52e7ba21dcab2a3fbdcbe0160b299d63b46ed4c4192ee2bdfea98727a137d1ee5e80cb41c25d4167bd262c421f98d1e11226b5d4975231b495db154f235b5a152693702f00f02380bec174af1fa9ad0e47dbd516ad1f263b3b4f0f14a3228ba5be4908e12c8d9426c8a075cd170a119929acd063ef528b31095c19b8baa51c692b033687767626b09339387ab8ac0c1d5e00ed61e8fbd0f59636239e1ee8e5c2e6c3d8385f215d5d441d1511679a6d500f4d621614415690c16049468377f8fdf9aeec7c3375b15326bcf17f409390126941e4bca4e2d94e8016a7b73778a2c6e9970784e4f654cfc37d2161aea15028593500726c8227b4b610f7581fa5cf9da6c0d07e2779080a51f0562be428b1551628578da4a7a13baf7c253bb89722ecb145730ef74b7fcdd3be965690ab6174cd0ba2347099a44e683adcbf25371cbff63a9fb9f9bb8fca3a12ec11d459c620d47e3bab304e664070a88b8b519ad8f38ddc0eebd8e2eed65ed392d8b07007373b7bae61acdb962e79eb2b139652b3a226f49b809320e23c4853579329504a76003416fa8da6aca22f5ee0fbbb3b3ad833d54d95c22e915ab22f1f2037e054cf18ba3a968a654812952b88370e3a04d3ddb6a2b069e42d2e97da0675bb517dac56a93c567c4d0619ccda947224df12040e16db9f131f42588b4a985aa7681e76ec5ec205f250df5dd752889538a383ea82f31dcac68d71e12f0c112b97e282254b2d823ed4205708d6068da63960eef79323e7626d3c75b4a912d7b656ed88ff0eb6d1b3eca3e81e21531c72fd960e4954cfe6ab2706ba506fe5a9c4559af72aba7b915fd8ca0832a1d1c3ad43e9b519088ea018575a8d240c50be97b4effe8c6162a1271aba9fec7fe6fa3310825f66b807bd70bfed435455a62d4aab6834c5c8dbc832d2c5d478175ea27bee8465710a716416eab0266a63a40e00a4694a81b309ebfab5e96acdaac144c343c2851319209b66241e8b10b30bf9a0421fd32e80ad199103f515368bb092c01bd7bba8af8d31b2cca3fe995204544c1e30fc7104fc78c39be414d98fafe8b6438d2a0439c596212650ad237aed63f02fa6f39338e40a320c1d1d3242795294a390e07bd338a9b6b386747dc4c786cd3ac973583878e08c44468af6ca50ca0e2ef9b37197163bb5aa4073ac9c42b5ca134dbe677e5541522e4fbb7061673dc86924389deb8af9b9d9e0d45923f8fca7d5f53ecb41601b44c0f9953ca0318c772fd7dbafd1d5709973998773ab163d8ade71f62d715b3b2e0a643bab8e31655282c8272aff6894c2ee628f0e8a046f77d5b5a439ef451c946451f19712ef2f609a7d5cd85ec1f5c3dda3bfc9a0", @generic="344bfac18ec7824842ba4d05fbdf1e8ff2f5c2f9221b2eadb2e6325e89e343bc10654ebcddc587bf5879452df832ff0f8859092f4652913af12d3fc709afd01f96985c42bf735b20876f63434f0325722a3479d04ada957416394cb50d48ee0de6203c37250f8f2604b99f4058593aaaad4cce816f1418f4ab879e164163ab71764c6fa0d0591b2e05899d4aff25d7ee6d9738405b9c1f08e09f30ea7c7292d4abec4a83ca6ec8ced930e9ab5fb09e3608c4ecd2ef29c2888036ad3f4f77e7e364b7d6e966a3885d3c5bb8a9c6c7883a20ecba4bfc58066334c4b5ab9037f6bbec79f3e2a591c86c8cf69531e04db2b3618aceacc8", @generic="eff275fde8d187e34f9909be3affe90f7e7c903fb09a6faa7794b1b2c84c384235850ea2ab282acaf727ba8bd5eb4e0172865e49bc2c5f324076d6582d41dc72707fe3a9d10732a478d2dbbc39324d47245cfae9894d7313e21cab76635ada7f3f127f174e48a36792fe63fa7e646c98692c70d7", @nested={0x4, 0x115}, @generic="0253f144aca658dbaabdd37ee7d7b3d8c0602dc52a19effea151a965667b427eb3ac183862150794612b702565ce2c25fed17263ce0735648b671ebb74247c554daead73e57ed8ff7b1d254ad0b507cf0b2c7890198516dc17296d00a258329daf0854eb7c919c88df5439a03eaa34b2f0341612cd0060e02517de6c9f4aa14d614fb829dcf588a8a056100ce3d41e6d852e152f7548b6bb2b49db93ab985ca806ef3b55ed244e1c6ec1230d047a42a671319dd3117aac931f51baf369ae3c630194e84e2ca434e7e4", @typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}]}, @nested={0x4, 0xf}]}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, 0x2}, @L2TP_ATTR_IFNAME={0x14, 0x8, 'caif0\x00'}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x9}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x9}, @L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x9}, @L2TP_ATTR_STATS={0x38, 0x1e, 0x0, 0x1, [@typed={0x14, 0xbe, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @typed={0x1f, 0xd1, 0x0, 0x0, @binary="5dd5403c0e32764bbbd9e56671b3debb52dced55a1c28c2d4a9a28"}]}]}, 0x14ec}, 0x1, 0x0, 0x0, 0x4}, 0x40085)
socket(0x1f, 0x800, 0x2a)
r9 = mq_open$auto(&(0x7f00000024c0)='caif0\x00', 0x2, 0x8, &(0x7f0000002500)={0x3, 0xa, 0xffffffff, 0x7})
ioctl$auto_X86_IOC_RDMSR_REGS(r9, 0xc02063a0, &(0x7f0000002540)=[0x100, 0x3, 0x0, 0x7, 0x84, 0xb, 0x0, 0xfffffffc])
syz_clone3(&(0x7f0000002740)={0x800, &(0x7f0000002580)=<r10=>0xffffffffffffffff, &(0x7f00000025c0), &(0x7f0000002600), {0x38}, &(0x7f0000002640)=""/123, 0x7b, &(0x7f00000026c0)=""/52, &(0x7f0000002700)=[r5, r5, r5, r5, r5], 0x5, {r0}}, 0x58)
madvise$auto(0x9, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000027c0)='/dev/dsp1\x00', 0x10040, 0x0)
close_range$auto(r8, r10, 0xab)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000002800), r0)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000002840)='/sys/kernel/debug/usb/usbmon/15t\x00', 0x10b000, 0x0)
sendmsg$auto_ETHTOOL_MSG_MODULE_SET(0xffffffffffffffff, &(0x7f0000002a00)={&(0x7f0000002880)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000029c0)={&(0x7f0000002940)={0x60, 0x0, 0x8, 0x70bd2a, 0x25dfdbfe, {}, [@ETHTOOL_A_MODULE_POWER_MODE_POLICY={0x5, 0x2, 0x6}, @ETHTOOL_A_MODULE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_MODULE_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}]}, @ETHTOOL_A_MODULE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x2004c000}, 0x10040000)

15.34764055s ago: executing program 0 (id=975):
mmap$auto(0x0, 0x400004, 0x74, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) (async)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socket(0xa, 0x2, 0x0) (async)
close_range$auto(0x2, 0x8000, 0x0) (async)
socket(0x18, 0x1, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_CREATE_VM(r2, 0x4048aecb, 0x0)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r5 = prctl$auto(0x7, 0x1, 0x0, 0x5, 0x0)
write$auto(r5, 0x0, 0x4000000)

14.125803547s ago: executing program 0 (id=983):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYRESHEX=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x10}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x4000000000000004, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
connect$auto(r0, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r1 = prctl$auto(0x40000, 0x7fffffffff, 0x0, 0x800000000000001, 0x100)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
ioctl$auto_BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000000500)={0x9, 0x104000000000, 0x6, 0x8, {0x9, 0x4, 0xb, 0x3ff, 0x100, 0x4, 0xb, 0x7623, 0x12, 0x5, 0x1, 0x4, 0x0, 0xf, 0x102}})
close_range$auto(0x2, 0x8, 0x0)
socket(0x11, 0x5, 0xffff)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/ieee80211/phy7/statistics/dot11RTSSuccessCount\x00', 0x2, 0x0)
preadv$auto(0x40000000000003, &(0x7f00000000c0)={0x0, 0xff7ffffd}, 0x9, 0x8f, 0x10)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lseek$auto(0x3, 0x7fffffffffffffff, 0x0)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40ebe, 0xffffffffffffffff, 0x300000000000)
r2 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
sendmsg$auto_ETHTOOL_MSG_PSE_SET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000881}, 0x0)
r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x117002, 0x0)
write$auto(r3, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
write$auto_proc_mem_operations_base(r2, &(0x7f0000000180)="11db28d41bfaaa9c46c05605e373391a14d46a8f484c6a9b7d8791ba5474367f95fcf94a3cc217339a2511536942fb8f96fd0ffbadb93e07d57319767aab93d03950bc4dba35b0f85a03ead0b8d1057ab4a6f298b52644c25472a84957521e1727502c66d06ba9d8a95bec78301a9e9276a7f63c7795b6fa43", 0x79)
mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000)

5.693757498s ago: executing program 3 (id=1018):
writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x7e)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
madvise$auto(0x2, 0x80, 0x1)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3) (async)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0) (async)
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
signalfd$auto(r0, &(0x7f0000000040)={0x6}, 0xfffffffffffffff8)
ioctl$auto_SG_GET_NUM_WAITING(r0, 0x227d, &(0x7f0000000180))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x801, 0x106) (async)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
socket(0x10, 0x80002, 0x0) (async)
r1 = socket(0x10, 0x80002, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x0, 0x0)
timerfd_settime$auto(r1, 0x3, 0x0, 0x0)
adjtimex$auto(&(0x7f0000000000)={0x1ff, 0x0, 0xff, 0x7, 0x8, 0x0, 0x10, 0x0, 0x2, 0xbf, 0x1f6a, {0x0, 0x3}, 0x9, 0x1, 0x2, 0x80000001, 0x0, 0x8, 0x545, 0x1, 0x0, 0x8})
ioctl$auto(0x3, 0x40085400, 0x38) (async)
ioctl$auto(0x3, 0x40085400, 0x38)
unshare$auto(0x20000080)
syz_clone3(&(0x7f0000000300)={0x2c022000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async)
syz_clone3(&(0x7f0000000300)={0x2c022000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x7, 0x4a}) (async)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x7, 0x4a})
sendmmsg$auto(r2, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x5, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x42, 0x100)

5.333437331s ago: executing program 3 (id=1021):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e"], 0x1ac}}, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xa6ff, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x2, 0x0)
r2 = socket(0x18, 0x5, 0x1)
connect$auto(r2, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
connect$auto(r2, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1)
sendmsg$auto_NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)={0xb8, r3, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_MAX_HW_TIMESTAMP_PEERS={0x6, 0x143, 0x4}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0xd1}, @NL80211_ATTR_REG_ALPHA2={0x94, 0x21, "deac93735ca0c264c374ad62c287fe3c75952c5b5fcbe26cac4832012f9e1cbe1adf1990a47bc403585ee2782f12096277f5f1dc67866bdac9fc578e6d4f75af9614f3880653bf459f093e48be7a8e1e5a16b7f0a27037dc49b1bf783aa9febd04af4687b296f4f9ff07b45a36f251cead78db8ff33350aff85e207a70504dd6bf252b7e3d849e314f1721ff5c7aada8"}]}, 0xb8}, 0x1, 0x0, 0x0, 0x48}, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x40, r5, 0x1b, 0x74bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x9, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4788, 0x33}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908288a8"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
ioctl$auto(0x3, 0xc0104d03, 0x5)
socket(0x10, 0x2, 0x0) (async)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e"], 0x1ac}}, 0x0) (async)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xa6ff, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0\x00'}) (async)
close_range$auto(0x0, 0xffffffffffffffff, 0x2) (async)
socket(0xa, 0x2, 0x0) (async)
socket(0x18, 0x5, 0x1) (async)
connect$auto(r2, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) (async)
connect$auto(r2, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1) (async)
sendmsg$auto_NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)={0xb8, r3, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_MAX_HW_TIMESTAMP_PEERS={0x6, 0x143, 0x4}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0xd1}, @NL80211_ATTR_REG_ALPHA2={0x94, 0x21, "deac93735ca0c264c374ad62c287fe3c75952c5b5fcbe26cac4832012f9e1cbe1adf1990a47bc403585ee2782f12096277f5f1dc67866bdac9fc578e6d4f75af9614f3880653bf459f093e48be7a8e1e5a16b7f0a27037dc49b1bf783aa9febd04af4687b296f4f9ff07b45a36f251cead78db8ff33350aff85e207a70504dd6bf252b7e3d849e314f1721ff5c7aada8"}]}, 0xb8}, 0x1, 0x0, 0x0, 0x48}, 0x4) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) (async)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x40, r5, 0x1b, 0x74bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x9, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4788, 0x33}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908288a8"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) (async)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) (async)
ioctl$auto(0x3, 0xc0104d03, 0x5) (async)

4.330293939s ago: executing program 3 (id=1024):
socket(0xa, 0x3, 0x3b)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x40104d01, 0xffffffffffffffff)
fsconfig$auto_SHMEM_HUGE_NEVER(0xffffffffffffffff, 0x7, &(0x7f0000000140)='\x00', &(0x7f0000000180)="b4e87e7cc51b48e337774dbcd1b2efacc4be959fbf1937d2979359ea7ce2424b7412b3f2d40a6ce2a03213204a5daa32d3b0b0a8fcea28f78ebbe570545e97b41929bb86ac22b46ddcda160a0277ff3c53c015c38de09e7146", 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0xffffffffffffffff, 0x8, 0x7)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
preadv$auto(0x3, 0x0, 0x3, 0xf8, 0xffffffffffffffff)
mmap$auto(0x0, 0x800400007, 0x65d, 0xffff, 0xffffffffffffffff, 0x20000000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram6\x00', 0xc6fc1, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0xa, 0x3, 0x3b)
mmap$auto(0xfffffffffffffffd, 0x2020009, 0x4000000000000003, 0x14, r0, 0x8002)
semctl$auto(0x7, 0x2, 0x13, 0x1)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r1, 0x4b72, r2)
write$auto(0x3, 0x0, 0x7fffffff)
r3 = epoll_create$auto(0x5)
fremovexattr$auto(r3, &(0x7f0000000000)='&\x00')
read$auto_v4l2_fops_v4l2_dev(r3, &(0x7f0000000280)=""/54, 0x36)
close_range$auto(0x2, 0x8000, 0x0)
socket(0xa, 0x2, 0x88)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20a02, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xbff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)

3.487180294s ago: executing program 4 (id=1027):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) (async)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0) (async)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x400200, 0x0)
read$auto(r0, 0x0, 0x1f40) (async)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0) (async)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x1ff)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
madvise$auto(0x0, 0x2003f2, 0x15) (async)
ioctl$auto_BTRFS_IOC_SEND_32(r2, 0x40449426, &(0x7f0000000180)={@inferred=r1, 0x8, 0xc2, 0x8, 0x9, 0x9, "20bd71e11443516df050711c8eec223543a8201bd22c17a239846565"})
madvise$auto(0x0, 0x200007, 0x19) (async)
syslog$auto(0x3, 0x0, 0x1013) (async)
r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x20840, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r3, 0xc05c6104, 0x0) (async)
r4 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff)
socket(0x29, 0x6, 0x0) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
futex_wait$auto(0x0, 0x2, 0x7, 0x2, &(0x7f0000000080)={0x80000000005, 0x7fff}, 0x1)
sendmsg$auto_TCP_METRICS_CMD_GET(r5, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000040)={0x14, r4, 0x89c1beb01534ff9b, 0x70bd29, 0x25dfd3f9}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x1, 0x0)
syz_open_procfs$namespace(0x0, 0x0)

3.474112242s ago: executing program 2 (id=1028):
mkdir$auto(&(0x7f0000000080)='./file0\x00', 0x1)
socket(0x1d, 0x3, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, 0x0, 0xfd}, 0x6a)
r0 = open(&(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x80400, 0xb5d1af1605322df4)
r1 = open_by_handle_at$auto(r0, &(0x7f0000001280)={0x8, 0x2, "0200000000000000"}, 0x6)
sendfile$auto(r1, r0, 0x0, 0x2)
r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000400), 0x280002, 0x0)
ioctl$auto_UI_END_FF_ERASE(r2, 0x400c55cb, &(0x7f0000000080)={0x80, 0x80000000, 0x9})
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
unshare$auto(0x40000080)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.11/usb31/31-0:1.0/ep_81/bEndpointAddress\x00', 0x100, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x1)
getsockopt$auto_SO_RXQ_OVFL(0xffffffffffffffff, 0x14, 0x28, &(0x7f0000000340)='/dev/vmci\x00', &(0x7f0000000380)=0x6)
unshare$auto(0x4)
write$auto(r3, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000300), 0x2200, 0x0)
r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x7, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x2000019)
madvise$auto(0xffffffffffffffa6, 0x7e, 0x40015)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000180), r4)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r4, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000125bd7000fcdbdf2501000000080009000000000000f3f677eb85a430aadb2447183d2866c92afffd900be8b1cfb96400000000060006000000"], 0x4c}, 0x1, 0x0, 0x0, 0x4c954}, 0x800)
madvise$auto(0x800, 0x4, 0x0)
madvise$auto(0x1afd, 0x7fffffff, 0x4)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
rmdir$auto(&(0x7f0000000280)='./file0\x00')

3.168639641s ago: executing program 3 (id=1029):
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0xdeb)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x10, 0x80002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, r0, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x9, 0x0)
timerfd_settime$auto(r0, 0x3, &(0x7f0000000000)={{0x6, 0x7}, {0x0, 0xa2b}}, 0x0)
preadv2$auto(0x3, &(0x7f0000001000)={0x0, 0x9}, 0x5, 0xffffffffffffffff, 0x7, 0x2e)
socket(0x1d, 0x2, 0x7)
unshare$auto(0x40000080)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x21, 0x6, 0x11)
socket(0x2000000000000021, 0x2, 0x10000000000002)
io_uring_setup$auto(0x206, 0x0)
socket(0xa, 0x5, 0x4)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "3d64dc400201007f610000000024"}, 0x55)
getpgrp(0xffffffffffffffff)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.5/usb6/6-0:1.0/bInterfaceNumber\x00', 0xac82, 0x0)
write$auto(r1, &(0x7f0000000380)='0\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\xcf\x7f\xbf\xab\x12{\xc2\xc2*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d1s!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xd4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xb7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85K /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1)
mmap$auto(0xffffffff, 0x26b, 0x5, 0xfff, r1, 0x800)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4)
move_pages$auto(0x0, 0x1001, 0x0, 0x0, 0x0, 0x0)

3.109628468s ago: executing program 4 (id=1030):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8000)
ioctl$auto(0x3, 0x8905, 0x38)
io_uring_setup$auto(0xb, 0x0)
r2 = socket(0x2, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x2, 0x80002, 0x73)
r4 = socket(0x2, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c06, &(0x7f0000000b00)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x200009}, 0x1}, 0x3, 0x0)
close_range$auto(r3, 0xffffeffe, 0x0)
pipe$auto(0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(r5, &(0x7f0000002740)={0x0, 0x0, &(0x7f0000002700)={&(0x7f0000000c40)=ANY=[@ANYBLOB="180000001bd8114ce0d7789989307f66ef345465947127db2abd0f7f7fe6f5d8d0450d145309c9e5704b0747a3fdd65e380a497963f8be2ebe43a9632785dc1b16fc23c19313c4c55faa375c1b870656715dbfcde7ae18af4d651ffcb42e0bf43a0371db578b364c3033a6a4269eeb39acef3b00f304839ed644b427d7cea97420afb83a61640c9ead1959fb6bac40", @ANYRES16=r6, @ANYBLOB="010429bd7000fddbdf250200000004000180"], 0x18}, 0x1, 0x0, 0x0, 0x2400c001}, 0x8000)
r7 = getpid()
r8 = setfsuid$auto(0xee00)
setreuid$auto(r8, 0x0)
r9 = socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000a00)=0x9)
ioctl$auto_SNDCTL_TMR_STOP(r9, 0x5403, &(0x7f0000000a40)="632a0dbf8ff9e0c8807c96710a11683695ce136cd9330a8882a51157be6695a315c583e586254849065522764757493d4c2d9ee6107617f00e795ddc586490b6b82e09fd55c3e32f9be32f2d55ef1223111ca9af180d96230cff910e8b0afb959d77be5f1d5b9dc63624c71ba6836ba55ad775969313254be5e52f3a388611c5c332f890")
sendmsg$auto_TIPC_NL_KEY_SET(r1, &(0x7f00000009c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000980)={&(0x7f00000001c0)={0x764, r6, 0x10, 0x70bd2c, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0x10, 0x5, 0x0, 0x1, [@nested={0xc, 0xa6, 0x0, 0x1, [@typed={0x6, 0x7a, 0x0, 0x0, @str='%\x00'}]}]}, @TIPC_NLA_UNSPEC={0xb, 0x0, "ae3a5a9eba7f5a"}, @TIPC_NLA_MON={0x678, 0x9, 0x0, 0x1, [@nested={0x2fa, 0x9a, 0x0, 0x1, [@generic="933531b0d12951a0ba588bd18fbaf0bb69d92ee61e95dc1aff7e0837606b792e495468cb7716e3e6a753b576db1cf6c9c6894a55eda31bfa3dde00e69fa6376d54ad177073674729ffb5aff185e1d85d5451268526bbc6bc9529d6d60fb0c3b5752f15d2d6511ff15393dd40134e0b6decc1df13b0aa8dfedee387f00b2fd5baf3e08e52be0b93f869c7db6121c8370302a9be8519faba15a198588ef4258c59b91d5fd0ba48508aee701e0e9a360a6d0381d421883b2fc1eb87c9b2fd6e8831c4c141b672370de592c7657ebeb8d6", @generic="bbc1406f876e517a3aa47b13607f37bf2d8c3c70ac4919a625771b72136d02929b992fd8921b03fe198711742984a6fdff957a9d4efd3271b973fedb46f92375f98e1787896cd7212cf9d4921f652cd88c9222aa20692aa793f428a0080ccd9d9163ca79b136cf1f2c7f32635a008d976a5d4026701be891f07b14b4e89b6561c5d941d5d5db854c7307240c81", @nested={0x4, 0x11a}, @generic="d6c54f2953c1f84edc3a1410ba0208f4db9336c935279f46336789a4c4889ec798502f0767c2cb9e484b431357a9a41b71f8211a279e26e040b356fe63534e6644c9d14d70ff59e75a9e4ee82d2dc3c7b1afa569ff13bf1f1670490c0d70c9b651b8ea533fa5cbba3822f0fe5837abda911b4f87fdbac3916b53db7481771c3c713b08d85061ec00227bcb26bba21b35bbed82950579e8045a5a8c0b12ab04d811d833c9b2bf5c0eb36f5f8b11a8ff3ec2c281a1e1dff2e794033178d806451d0364001d1fcd55857bfea1ed1771a73a7341bbd76cc1c9411b28a9b8e40a79ca39b2be509433e49c25eeed6e89f3f288", @nested={0x4, 0xb9}, @nested={0x4, 0xd0}, @generic="c3619d5b50f4987ebb8d7064c020bb646f78e410d15cfd537f7c8dea4f61c783c46f3e6dcfbe83b47e333f06907443c9079a2afd4a55756b4d234d9b0770ec28392a5e17077e467c85d12f38798fa17c0b6dd615bd1c922bdf2770caa36f27f09561d4e52773dd34cef88ac5cb1b5ac63399cca3c91f5230bc3fdd8c25687c0dd9051061fd94c2f5af31a7497306ba97d9b1b66bc65b8517d99b70408a1c"]}, @nested={0x18, 0x140, 0x0, 0x1, [@typed={0x8, 0x135, 0x0, 0x0, @uid=r8}, @typed={0xc, 0xbd, 0x0, 0x0, @u64=0x7}]}, @nested={0x25d, 0x141, 0x0, 0x1, [@nested={0x4, 0x4c}, @generic="ea15f7f0da90efaa476bd2ea95bdddbcb35b6b4958734084f2566b23e57a587415db6bf9903c0ebf377ee1d55d0a7baebd5f272b16652900236731d10775d3ae694c894aa484ff486a4c8652b9ca265bd7544833b08e5cf9", @generic="daa0006d41d509df73036b4f0bc4c4e346f0579c8090e324cbd05b4049d9324b05c14e978b45985b34e75aa16265", @typed={0xec, 0x133, 0x0, 0x0, @binary="5c92afba31ed4a9e56aeaef135bfac29fd52b8d9462112d5f22e0c863290f2fa0f4f1cfc393b3499c94d7c0ec04e035dae72a5b02f1db337520bb554a6ba5658bcd7a363732de823aba17cce99fffdc8df812ab3e5021686e4b1b92c5005d753f57e0d5796ff99c21881bcef09d1e826116c2bcbf93bc98200503a8193cedbfb545b295d05bc671d795a02aba0c9f43d4afb5bc176d23cbaf6115b078b6ba00bae40d0d4ff6852842bc83f164721c6ef770285511700b08d95e5386e8a08edba1c680f1ac74ad9d1365810aa391bcbf820cdcac9e398e359d43f73d14a4ca97a9e954c551a394f94"}, @generic="4d04fab957515778c78b937dcf05d53ad83f5430b72082a35a3ac047c35650b287be493178d62e0f211896e1737a0c8f85e0c2caf582f99852cf15cfbb32eeaf9dcc001fb01a91fb31e4ca7097ef147ae5dd0e64de6b0bb5358dd3c34c40701e4d32b5be1e3d6d6bb8dc997ae73d238a5175ef9d77c3c80031b3271708d49ed4f8eaffb6af713bcedce61baa77e338c364250fd419b379b6a6d0ddf96ae8c54085da8ddf9a8c936a0afae6d8947697c0a937a43c5fbcf61dc406df1f30e806d81b0115a0d6b24ef42b4fc51c3024e7", @typed={0x8, 0x2e, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @nested={0x4, 0x4b}, @nested={0x4, 0xe7}, @nested={0x4, 0x118}]}, @generic="975a10c36297af2ce6b32efbddbe8329803c5f41e61c8e1fde5c3e9d9b03a6d45c25601b1f179e8463161b43568d0408af2185d8b67c5a7f93f02fce8fb9654088a96b96609f56ba7ff90c49f8e36596bd7f7b56b52f4b48623f7e71caef9b664e0c8685a4d6d79a07aac464794f2bb8090f8b476b1cfccfb44fc7a877bee5dbd524e2339e3a6490ce073a1cb3e9ad6f67a53498b837313b201398b58449d02deef8dc934d10a21b9842b131420dba7c8db69c63a62d75948988b9cef044bf0da4a9b8984c81eedd2c118022f76db1e7b643d0810c39f5cf219e64d2cc3925785b3610e66f631c417637d9d324b53754", @nested={0x8, 0x148, 0x0, 0x1, [@nested={0x4, 0x137}]}, @typed={0x8, 0xb7, 0x0, 0x0, @fd=r4}]}, @TIPC_NLA_BEARER={0xbc, 0x1, 0x0, 0x1, [@typed={0x8, 0x82, 0x0, 0x0, @u32=0x10001}, @typed={0x8, 0x5a, 0x0, 0x0, @pid=r7}, @nested={0x60, 0x3e, 0x0, 0x1, [@nested={0x4, 0x25}, @typed={0x8, 0xe1, 0x0, 0x0, @uid=0xffffffffffffffff}, @nested={0x4, 0x6b}, @generic="d1a0f0fec277ac82b07619bc2a705637aaebf49e668cea025dcf27ea3744e5de543215cb87cdb216182f78772090fe05bac1bb28d3be2ff04e4e01d06eb0797259273084a1c9b8c709792531"]}, @nested={0x2f, 0x42, 0x0, 0x1, [@typed={0x5, 0x9a, 0x0, 0x0, @str='\x00'}, @typed={0x14, 0x68, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @generic="167460", @nested={0x4, 0xfe}, @typed={0x8, 0xfd, 0x0, 0x0, @uid=r8}]}, @typed={0xc, 0x7d, 0x0, 0x0, @u64=0x7}, @typed={0x8, 0xa7, 0x0, 0x0, @u32=0x5}, @typed={0x4, 0x32}]}]}, 0x764}, 0x1, 0x0, 0x0, 0x44900}, 0x40)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
sendmsg$auto_NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000b40)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="c3c426000000000000000000800000000000c81f86b1b19b0bfb0d9cc5e6fecc6f36b8c16d8314f4590a3d9bc55d78bd511c6bc39eb05d990913c33b416218fd8a83d881406f599f3695a2d846e86f0cf0956d335baeef7d0788335d2981199620bb09b253f008164e2c30907489432fbb254b1c89ee2eb4eb044e57962952f666bf671aaaed050c7d4098df876b1e32be4064e02bebc9993ba9fe505a14963717b243ca1b66792373a79aa5664b1792571eaacc56cef52dd21774754859a7001130da03f99de95a1298bb66080a1880516c41b78ee24a38d920df9cf91f6959890675a4ee6d991350ab41ea04eb46d7bd4b3c", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x811}, 0x20040000)

2.839570276s ago: executing program 2 (id=1031):
socket(0x2, 0x1, 0x106) (async)
migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b) (async)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) (async)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0x0)
write$auto(0x3, 0x0, 0x100082)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0) (async)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001fc, 0x7, 0xd3e, 0x1, 0x9687, 0x100000000000003, 0x95f4da0a, 0x6, 0x3, 0x62, 0x5, 0x5, 0x6d3f, 0x7, 0x6, 0x6]}, 0x0) (async)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40010}, 0x2)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x40f00, 0x0) (async)
ioctl$auto_SNDRV_TIMER_IOCTL_PVERSION(0xffffffffffffffff, 0x80045400, &(0x7f00000001c0)=0x2) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r3 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000040), 0xffffffffffffffff) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r4) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', <r6=>0x0})
sendmsg$auto_NET_SHAPER_CMD_GROUP(r4, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000600)={0x40, r5, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_HANDLE={0x14, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x3}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x6}]}, @NET_SHAPER_A_LEAVES={0x10, 0xa, 0x0, 0x1, [@NET_SHAPER_A_HANDLE={0xc, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x2}]}]}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r6}]}, 0x40}, 0x1, 0x0, 0x0, 0x44000}, 0x14)
sendmsg$auto_IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r3, 0x800, 0x70bd25, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEST_PAN_ID={0x6, 0x10, 0x401}]}, 0x1c}, 0x1, 0x0, 0x0, 0x810}, 0x24000040)
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
setgroups$auto(0x9, &(0x7f0000000140)=0x8)
mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000)

2.360942482s ago: executing program 2 (id=1032):
io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x405, 0x8, 0x10001, 0x6fb3, 0x8a, 0xfffffff8, 0xffffffffffffffff, [0x7783, 0x9, 0x7c], {0x913, 0x7, 0x3034, 0xe, 0xf, 0x5, 0x5, 0xfffffff9, 0x2000000f08a2b6}, {0x4000, 0xfc, 0xb, 0x0, 0x0, 0xb89, 0xd5, 0x838, 0x8}})
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
setrlimit$auto(0x7, &(0x7f0000000080)={0x0, 0x6})
socket(0x2000000000000021, 0x2, 0x10000000000002)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
bpf$auto(0x12, &(0x7f0000000040)=@enable_stats={0x1}, 0x26)

2.211243238s ago: executing program 2 (id=1033):
mmap$auto(0xffffffffffffffff, 0x90, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x100, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x6d)
close_range$auto(0x0, 0x5, 0x0)
pipe$auto(0x0)
pipe$auto(0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x5)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000580)={{@raw=0x7fffffff, 0xf0ee, 0x20009, 0x3, "790eaa00ffff8eac2cdafc1f64010043eeb0b053030001ffff000e00", @raw=0x1}, 0x4, 0x966, 0x3, @raw=0x404, @integer={0x800000000000400e, 0x2000000b752, 0x1}, "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1183bedbd31b642b4051b078fa1c1c61c329794e5311121c760cb9611c78e6947a99807bcc1"})
r2 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0x446001, 0x0)
pwrite64$auto(r2, &(0x7f00000001c0)='/dev/snd/controlC2\x00', 0x7, 0xf)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r1, 0xc1105511, &(0x7f0000000080)={{@raw=0x2, 0x7ff, 0xa, 0x7, "26d718b7d3ee69350e4ede7079dcb0c24c8aa1e3c7ee2e00308b8a7d74b0a707f7045e6d035b196ca83379bb", @raw=0x4}, 0x7, 0x0, 0x2, @raw=0x31c7bc81, @enumerated={0x0, 0x6, "ad75b255b5cdd64a6b7a755de55f8e3b81e6c4e6fbf4f15a5ca5dc29f056113e9b60cd7bd82081ec90b01a6c1ae79b9fd0930da366e011ae30c0a636577776a6", 0x3, 0xcac}, "18a801006a0900000000000000c4bd5359eeadc8357752b72fa176254d8797cdffd02555ac83a07983eeddcd24b626f54ad9d763dcdc9120af8b7c848ceb55a7"})
write$auto(0x3, 0x0, 0xfdf3)
tee$auto(0x2000000000000, 0x3, 0x402, 0xd)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mlock$auto(0x3, 0x1)
sendmsg$auto_OVS_DP_CMD_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[], 0x1c}}, 0x0)

1.803570371s ago: executing program 4 (id=1034):
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/lru_gen\x00', 0x40800, 0x0)
mmap$auto(0x8, 0x40009, 0xe2, 0x1a, 0x7, 0x28000)
r0 = socketpair$auto(0x20000003, 0xfffffffc, 0x7ffe, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x80000, 0x0)
r1 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r1, &(0x7f0000000180)={{&(0x7f0000000000), 0x5ae, &(0x7f0000000100)={&(0x7f0000000780)="4c030000000000002106000000000000e05f", 0x80}, 0x5, 0x0, 0x5, 0x1}, 0x1}, 0x2, 0x8300)
r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r2, 0x7a7, 0x0)
syz_genetlink_get_family_id$auto_macsec(&(0x7f00000001c0), r0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
adjtimex$auto(0x0)
ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r2, 0x7a8, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x3, 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x81, 0x0)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/stat\x00', 0x0, 0x0)
write$auto(r4, &(0x7f0000000080)='/dev/audio1\x00', 0x100000a3d9)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TCP_METRICS_CMD_GET(r5, 0x0, 0x0)
unshare$auto(0x40000080)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/wireless\x00', 0x80, 0x0)
pread64$auto(r6, 0x0, 0x201, 0xc000)
r7 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000040), r3)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="400000002c19f68490080b0531d7e3aeeecf44fa94b7851f7635f2d3f27310cb91b5b0132b73a5380cb6ca1be5f0b747fb2a843e9561345226913e345668ec901e5626d96075791d5e7e18a4e93a4a539cc40c754c0b11c4c9b917d984ffbf37e284a4dab69c", @ANYRES16=r7, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800a0017803453987b61a5000012000100898771f1c19f1779048590828847000004000280"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)

1.545955412s ago: executing program 2 (id=1035):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x1, 0x0)
listen$auto(0x3, 0x81)
ioctl$auto(0x3, 0x8, r0)
mmap$auto(0x0, 0x9, 0x3, 0xeb1, 0xfffffffffffffffa, 0xfffffffffffffffa)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000200)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010031bd7000fddbdf250c0000000c000380080003800400058022fe513f1e49c5936a6480a42c5684afd10c800ed1fd23af9fa3f9c8c468a4fd545f798d83b5bac73c00008e5d09b0d8b5"], 0x20}}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)

1.289735028s ago: executing program 3 (id=1036):
openat$auto_userfaultfd_dev_fops_userfaultfd(0xffffffffffffff9c, &(0x7f0000000000), 0x48400, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000001240), 0xffffffffffffffff)
sendmsg$auto_GTP_CMD_GETPDP(r0, &(0x7f0000001300)={0x0, 0x0, &(0x7f00000012c0)={&(0x7f0000001280)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="0100000000000300000000000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000014}, 0x40000)
setrlimit$auto(0x7, &(0x7f0000000080)={0x0, 0x6})
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x101800, 0x0)
ioctl$auto_FIONREAD(r2, 0xaa00, 0xb)

1.036523845s ago: executing program 4 (id=1037):
mmap$auto(0x0, 0x3ca, 0x3, 0x13, 0x51c, 0x8000)
socket(0xa, 0x2, 0x73)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x7, 0x12, 0xffffffffffffffff, 0xf4e)
mmap$auto(0x3, 0x9, 0x7, 0xeb1, 0x404, 0x10008000)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000840)="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", 0xdd4)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x100000000000008, 0x20000007c9, 0xda46, 0xfffefffffffffffc, r0, 0x300000000002)
write$auto(0x3, 0x0, 0x7fffffff)
remap_file_pages$auto(0xb365, 0x8, 0x1, 0x4, 0x10001)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1000000000000001, 0x0, 0x1, 0x0)
unshare$auto(0x1)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x80000000001002, 0x12000000000000, 0x4000000000df, 0xeb4, 0x6, 0x8000008003)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
r3 = socket(0x31, 0x6, 0x7fff)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r0, &(0x7f0000000080)={&(0x7f0000000040)="32e3eec48051c4cc1bd9d90076d5507aee20a1ffccd1c9977b45b2ce215a1ae8", 0xfff}, 0x3)
r5 = socket(0x18, 0x5, 0x1)
connect$auto(r5, 0x0, 0x3a)
syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000240), r3)
sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(r2, 0x0, 0x30004850)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)

879.543309ms ago: executing program 3 (id=1038):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cpu.max\x00', 0x20b02, 0x0)
io_uring_register$auto_IORING_UNREGISTER_FILES(r0, 0x3, &(0x7f0000000080)="193f32b995f0ecb4ddf8cd83baeda5c352a745214ad880cc4c561670de2d13131c656d339507302cd18f379f551569932d17bb17195ecfc677eb23ac801128003ef54e78817f1a", 0x3)
sendfile$auto(r0, r0, &(0x7f0000000000)=0x3, 0xad6)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0)
ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/fs/cifs/LinuxExtensionsEnabled\x00', 0x48041, 0x0)
write$auto(r4, 0x0, 0x6)
unshare$auto(0x40000080)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000000)="b2", 0x1)
r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0)
sendfile$auto(r1, r6, 0x0, 0x1)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x1, 0x48, 0x0, 0x9)
socket(0x10, 0x80002, 0x0)
bind$auto(r2, &(0x7f0000000140)=@generic={0x1a, "9300000004000000000000000091"}, 0x6a)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vgem/driver_override\x00', 0x0, 0x0)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000000c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000180), 0x40, 0x0)
shmctl$auto_SHM_INFO(0x6, 0xe, &(0x7f0000001800)={{0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2, 0x1, 0x7, 0x4}, 0x0, 0x9, 0x1, 0x8, @raw=0x6, @raw=0xadf, 0x4, 0x0, &(0x7f0000001580)="63039e15aac0968aff5b3dd048c55da7ca957b2e64398812deed5855f7b54d9fd142e48659159a2cf2699792ff5e681aaa9447ca1eb753756b357a0acd45c9ad59cb70f02d4060414b529722577919a18fef4b496844d676dce93167c9edaf651b1e7adb159767ed674ca8f0e7a9a21734871f15bfb59c18907ed862a134528c157d375b89c8047cda58306585463888751b7bb4d66af915184a4ba716cab8f8288c3fa345123fd68576a426e77e487c33430ab31811d4a36ee1e45ffe0d3e35528c44d4664245711b2684d617380efd8265d718ae31af79394aabe786ce50f8a988b1d7dea4", &(0x7f0000001740)="9f5b5f1760e7aedb1b6839ba490130dd3c7573077a04276943e44e4013e3d313c022491154c6cd12e6f8fbb7a19e14a34d391d7afb3b6e721f55e3f2faa93cac315561a042b97bcda299b55b4bf26b5c4fcc45d8b1f923fc9618c17784d3ec0e5d4999fdf8936033b34f0bdf199a9d7ed66e8b22d7585065a66c9d5a89130c4e258a998ac6da9e9b630fa82a"})

455.898864ms ago: executing program 4 (id=1039):
socket$nl_generic(0x10, 0x3, 0x10)
statmount$auto(0x0, 0x0, 0xb, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x1c1002, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
pipe$auto(0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x1e, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x11, 0x3, 0x7fff)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
memfd_create$auto(0x0, 0x2)
socket(0xa, 0x2, 0x0)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r1, @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x8800)
write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3)

177.152493ms ago: executing program 2 (id=1040):
mmap$auto(0x2, 0x400008, 0x36, 0x1009b72, 0x2, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyrd\x00', 0x0, 0x0)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
ioctl$auto(r1, 0xc0045520, r0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0xc0402, 0x0) (async)
r2 = socket(0x28, 0x6, 0x6) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x12, 0x93f, 0x1fee1, 0x3, 0x6, 0xfffffffffffffffe, 0x9, 0x3, 0x8005, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x8, 0x4, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, [0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x1000000000000, 0xfffffffffffffffc, 0x0, 0x7fffffffffff, 0x9, 0x3, 0x0, 0x10, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0x82) (async)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000380), r2) (async, rerun: 64)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) (async, rerun: 64)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f0000000100)=@link_update={r5, @new_prog_fd=0x4, 0x4, @old_prog_fd=r5}, 0xa3) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x80, 0x0) (async, rerun: 32)
sysfs$auto(0x2, 0x1, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000500)='/proc/fs/cifs/traceSMB\x00', 0xea102, 0x0) (async)
writev$auto(0x3, &(0x7f00000000c0)={0x0, 0x7111}, 0x8) (async)
sendmsg$auto_BATADV_CMD_TP_METER(r3, &(0x7f0000000440)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x24, r4, 0x1, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_MCAST_FLAGS={0x8, 0x26, 0x8000}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x400c844)
socket(0x10, 0x2, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) (async, rerun: 32)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x3000000, 0x0, 0x1, 0x0, 0x10000000000000, 0x2}, 0x895}, 0x3, 0x0) (async, rerun: 32)
r6 = getpid()
socket(0x2, 0x3, 0xa) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
setsockopt$auto(0x3, 0x0, 0x5, 0x0, 0x2) (async)
sendmsg$auto_NL80211_CMD_SET_HW_TIMESTAMP(0xffffffffffffffff, 0x0, 0x4080) (async)
process_vm_readv$auto(r6, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)

0s ago: executing program 4 (id=1041):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0xa, 0xa)
sendmmsg$auto(r0, &(0x7f0000000040)={{&(0x7f0000000140), 0xff, &(0x7f0000000280)={0x0, 0x5ee}, 0x7, 0x0, 0x0, 0x1}, 0x5}, 0x9, 0x8000)
mmap$auto(0x7, 0x7, 0xdb23, 0x7198, r0, 0x200)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x106)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x6, 0x0, 0x7f, 0x0, 0x8000000000008000, 0x2}, 0x4}, 0x800008, 0x8)
r2 = bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x2, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f4)
r3 = socket(0x1d, 0x2, 0x2)
connect$auto(0x5, 0x0, 0x9)
mmap$auto(0x0, 0x5, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket(0x29, 0x2, 0x0)
getsockopt$auto(r4, 0x200000000001, 0x10, 0x0, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYRESHEX, @ANYRES16=r3, @ANYRESOCT, @ANYBLOB="fc959fc988"], 0x38}, 0x1, 0x0, 0x0, 0x2c050811}, 0x10)
close_range$auto(0x2, 0xa, 0x0)
r5 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x121901, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0)
ioctl$auto(r5, 0xc0205649, 0x38)
read$auto(r1, &(0x7f0000000080)='{\x00', 0xffffffffffff8000)
ioctl$auto_I2C_RETRIES(r2, 0x701, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/lockd/parameters/nlm_timeout\x00', 0x68041, 0x0)
write$auto(r6, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

kernel console output (not intermixed with test programs):

[  166.366502][ T7473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.366525][ T7473] RSP: 002b:00007f4681409038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  166.366551][ T7473] RAX: ffffffffffffffda RBX: 00007f46807e5fa0 RCX: 00007f468058f7c9
[  166.366569][ T7473] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000006
[  166.366585][ T7473] RBP: 00007f4680613f91 R08: 0000000000000000 R09: 0000000000000000
[  166.366602][ T7473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  166.366618][ T7473] R13: 00007f46807e6038 R14: 00007f46807e5fa0 R15: 00007ffe82363ae8
[  166.366657][ T7473]  </TASK>
[  167.070428][ T7483] netlink: 11784 bytes leftover after parsing attributes in process `syz.1.328'.
[  167.740420][ T6182] Bluetooth: hci0: command 0x0c1a tx timeout
[  167.900698][ T6182] Bluetooth: hci1: command 0x0c1a tx timeout
[  167.979272][ T6182] Bluetooth: hci3: command 0x0c1a tx timeout
[  167.985343][ T6182] Bluetooth: hci2: command 0x0c1a tx timeout
[  168.502569][ T7499] queue_state_write: operation too long
[  168.525079][ T7499] queue_state_write: use 'run', 'start' or 'kick'
[  169.803234][ T7522] queue_state_write: operation too long
[  169.814275][ T7522] queue_state_write: use 'run', 'start' or 'kick'
[  170.698696][ T7530] GUP no longer grows the stack in syz.2.337 (7530): 14000-18000 (4000)
[  170.715175][ T7530] CPU: 1 UID: 0 PID: 7530 Comm: syz.2.337 Not tainted syzkaller #0 PREEMPT(full) 
[  170.715213][ T7530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  170.715229][ T7530] Call Trace:
[  170.715238][ T7530]  <TASK>
[  170.715248][ T7530]  dump_stack_lvl+0x16c/0x1f0
[  170.715287][ T7530]  gup_vma_lookup+0x1d2/0x220
[  170.715324][ T7530]  __get_user_pages+0x241/0x3530
[  170.715373][ T7530]  ? find_held_lock+0x2b/0x80
[  170.715402][ T7530]  ? __pfx___get_user_pages+0x10/0x10
[  170.715449][ T7530]  get_user_pages_remote+0x243/0xab0
[  170.715500][ T7530]  ? __pfx_get_user_pages_remote+0x10/0x10
[  170.715539][ T7530]  ? __pfx___might_resched+0x10/0x10
[  170.715569][ T7530]  ? noop_dirty_folio+0x5e/0xb0
[  170.715606][ T7530]  __access_remote_vm+0x250/0xaa0
[  170.715649][ T7530]  ? __pfx___access_remote_vm+0x10/0x10
[  170.715691][ T7530]  mem_rw+0x20e/0x640
[  170.715722][ T7530]  ? __pfx_mem_write+0x10/0x10
[  170.715746][ T7530]  vfs_write+0x2a0/0x11d0
[  170.715780][ T7530]  ? __pfx___mutex_lock+0x10/0x10
[  170.715815][ T7530]  ? __pfx_vfs_write+0x10/0x10
[  170.715854][ T7530]  ? __fget_files+0x20e/0x3c0
[  170.715892][ T7530]  ksys_write+0x12a/0x250
[  170.715921][ T7530]  ? __pfx_ksys_write+0x10/0x10
[  170.715961][ T7530]  do_syscall_64+0xcd/0xfa0
[  170.715995][ T7530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.716022][ T7530] RIP: 0033:0x7fce7158f7c9
[  170.716044][ T7530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.716068][ T7530] RSP: 002b:00007fce72404038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  170.716092][ T7530] RAX: ffffffffffffffda RBX: 00007fce717e5fa0 RCX: 00007fce7158f7c9
[  170.716110][ T7530] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003
[  170.716126][ T7530] RBP: 00007fce71613f91 R08: 0000000000000000 R09: 0000000000000000
[  170.716142][ T7530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  170.716158][ T7530] R13: 00007fce717e6038 R14: 00007fce717e5fa0 R15: 00007ffda64a9a48
[  170.716196][ T7530]  </TASK>
[  171.502549][ T7550] FAULT_INJECTION: forcing a failure.
[  171.502549][ T7550] name failslab, interval 1, probability 0, space 0, times 0
[  171.549726][ T7550] CPU: 1 UID: 0 PID: 7550 Comm: syz.0.341 Not tainted syzkaller #0 PREEMPT(full) 
[  171.549771][ T7550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  171.549787][ T7550] Call Trace:
[  171.549796][ T7550]  <TASK>
[  171.549807][ T7550]  dump_stack_lvl+0x16c/0x1f0
[  171.549847][ T7550]  should_fail_ex+0x512/0x640
[  171.549888][ T7550]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  171.549921][ T7550]  ? __pfx_drm_debugfs_entry_open+0x10/0x10
[  171.549954][ T7550]  should_failslab+0xc2/0x120
[  171.549991][ T7550]  kmem_cache_alloc_noprof+0x75/0x6e0
[  171.550021][ T7550]  ? seq_open+0x55/0x170
[  171.550061][ T7550]  ? __pfx_drm_debugfs_entry_open+0x10/0x10
[  171.550091][ T7550]  ? __pfx_drm_clients_info+0x10/0x10
[  171.550124][ T7550]  ? seq_open+0x55/0x170
[  171.550156][ T7550]  seq_open+0x55/0x170
[  171.550187][ T7550]  ? __pfx_drm_clients_info+0x10/0x10
[  171.550222][ T7550]  single_open+0xfc/0x1f0
[  171.550260][ T7550]  drm_debugfs_entry_open+0x127/0x1c0
[  171.550295][ T7550]  full_proxy_open_regular+0x1b9/0x360
[  171.550340][ T7550]  do_dentry_open+0x982/0x1530
[  171.550373][ T7550]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  171.550429][ T7550]  vfs_open+0x82/0x3f0
[  171.550469][ T7550]  path_openat+0x1de4/0x2cb0
[  171.550504][ T7550]  ? __pfx_path_openat+0x10/0x10
[  171.550534][ T7550]  ? __lock_acquire+0xb8a/0x1c90
[  171.550578][ T7550]  do_filp_open+0x20b/0x470
[  171.550604][ T7550]  ? __pfx_do_filp_open+0x10/0x10
[  171.550656][ T7550]  ? alloc_fd+0x471/0x7d0
[  171.550691][ T7550]  do_sys_openat2+0x11b/0x1d0
[  171.550728][ T7550]  ? __pfx_do_sys_openat2+0x10/0x10
[  171.550780][ T7550]  __x64_sys_openat+0x174/0x210
[  171.550821][ T7550]  ? __pfx___x64_sys_openat+0x10/0x10
[  171.550874][ T7550]  do_syscall_64+0xcd/0xfa0
[  171.550910][ T7550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.550940][ T7550] RIP: 0033:0x7f468058f7c9
[  171.550962][ T7550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.550987][ T7550] RSP: 002b:00007f4681409038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  171.551021][ T7550] RAX: ffffffffffffffda RBX: 00007f46807e5fa0 RCX: 00007f468058f7c9
[  171.551041][ T7550] RDX: 0000000000002100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  171.551061][ T7550] RBP: 00007f4680613f91 R08: 0000000000000000 R09: 0000000000000000
[  171.551078][ T7550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  171.551091][ T7550] R13: 00007f46807e6038 R14: 00007f46807e5fa0 R15: 00007ffe82363ae8
[  171.551128][ T7550]  </TASK>
[  172.109786][ T7554] netlink: 330 bytes leftover after parsing attributes in process `syz.3.342'.
[  172.177398][ T7554] mac80211_hwsim hwsim4 �: renamed from wlan0 (while UP)
[  173.302893][ T7581] FAULT_INJECTION: forcing a failure.
[  173.302893][ T7581] name fail_futex, interval 1, probability 0, space 0, times 0
[  173.356854][ T7581] CPU: 0 UID: 0 PID: 7581 Comm: syz.3.347 Not tainted syzkaller #0 PREEMPT(full) 
[  173.356893][ T7581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  173.356909][ T7581] Call Trace:
[  173.356918][ T7581]  <TASK>
[  173.356929][ T7581]  dump_stack_lvl+0x16c/0x1f0
[  173.356968][ T7581]  should_fail_ex+0x512/0x640
[  173.357014][ T7581]  get_futex_key+0x1d0/0x1560
[  173.357054][ T7581]  ? __pfx_get_futex_key+0x10/0x10
[  173.357086][ T7581]  ? __lock_acquire+0xb8a/0x1c90
[  173.357127][ T7581]  ? __pfx___debug_object_init+0x10/0x10
[  173.357164][ T7581]  futex_wake+0xea/0x530
[  173.357206][ T7581]  ? __pfx_futex_wake+0x10/0x10
[  173.357250][ T7581]  ? _raw_spin_unlock_irq+0x23/0x50
[  173.357287][ T7581]  ? lockdep_hardirqs_on+0x7c/0x110
[  173.357319][ T7581]  ? _raw_spin_unlock_irq+0x2e/0x50
[  173.357354][ T7581]  do_futex+0x1e3/0x350
[  173.357390][ T7581]  ? __pfx_do_futex+0x10/0x10
[  173.357424][ T7581]  ? cap_task_prctl+0x2af/0xa80
[  173.357467][ T7581]  __x64_sys_futex+0x1e0/0x4c0
[  173.357504][ T7581]  ? __pfx___x64_sys_timer_create+0x10/0x10
[  173.357544][ T7581]  ? __pfx___x64_sys_futex+0x10/0x10
[  173.357580][ T7581]  ? xfd_validate_state+0x61/0x180
[  173.357615][ T7581]  ? __pfx___do_sys_prctl+0x10/0x10
[  173.357665][ T7581]  do_syscall_64+0xcd/0xfa0
[  173.357700][ T7581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.357727][ T7581] RIP: 0033:0x7f3943b8f7c9
[  173.357748][ T7581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.357768][ T7581] RSP: 002b:00007f39449730e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  173.357793][ T7581] RAX: ffffffffffffffda RBX: 00007f3943de5fa8 RCX: 00007f3943b8f7c9
[  173.357808][ T7581] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3943de5fac
[  173.357821][ T7581] RBP: 00007f3943de5fa0 R08: 00007f3944974000 R09: 0000000000000000
[  173.357837][ T7581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  173.357849][ T7581] R13: 00007f3943de6038 R14: 00007fffa7fbc2d0 R15: 00007fffa7fbc3b8
[  173.357892][ T7581]  </TASK>
[  175.549299][ T7594] netlink: 338 bytes leftover after parsing attributes in process `syz.3.351'.
[  175.758579][ T7596] random: crng reseeded on system resumption
[  175.981929][ T7604] FAULT_INJECTION: forcing a failure.
[  175.981929][ T7604] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.113531][ T7604] CPU: 1 UID: 0 PID: 7604 Comm: syz.3.352 Not tainted syzkaller #0 PREEMPT(full) 
[  176.113567][ T7604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  176.113582][ T7604] Call Trace:
[  176.113590][ T7604]  <TASK>
[  176.113600][ T7604]  dump_stack_lvl+0x16c/0x1f0
[  176.113636][ T7604]  should_fail_ex+0x512/0x640
[  176.113678][ T7604]  strncpy_from_user+0x3b/0x2e0
[  176.113717][ T7604]  getname_flags.part.0+0x8f/0x550
[  176.113759][ T7604]  getname_flags+0x93/0xf0
[  176.113786][ T7604]  do_sys_openat2+0xb8/0x1d0
[  176.113820][ T7604]  ? __pfx_do_sys_openat2+0x10/0x10
[  176.113859][ T7604]  ? __fget_files+0x20e/0x3c0
[  176.113892][ T7604]  __x64_sys_openat+0x174/0x210
[  176.113928][ T7604]  ? __pfx___x64_sys_openat+0x10/0x10
[  176.113963][ T7604]  ? ksys_write+0x1ac/0x250
[  176.114003][ T7604]  do_syscall_64+0xcd/0xfa0
[  176.114037][ T7604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.114071][ T7604] RIP: 0033:0x7f3943b8f7c9
[  176.114091][ T7604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.114111][ T7604] RSP: 002b:00007f3944973038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  176.114134][ T7604] RAX: ffffffffffffffda RBX: 00007f3943de5fa0 RCX: 00007f3943b8f7c9
[  176.114148][ T7604] RDX: 0000000000002100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  176.114163][ T7604] RBP: 00007f3944973090 R08: 0000000000000000 R09: 0000000000000000
[  176.114175][ T7604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.114186][ T7604] R13: 00007f3943de6038 R14: 00007f3943de5fa0 R15: 00007fffa7fbc3b8
[  176.114218][ T7604]  </TASK>
[  176.282736][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807cddb800: rx timeout, send abort
[  176.789654][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807cddb800: abort rx timeout. Force session deactivation
[  178.468770][ T7647] program syz.3.362 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  179.076792][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805a670800: rx timeout, send abort
[  179.582522][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805a670800: abort rx timeout. Force session deactivation
[  179.790764][ T7667] FAULT_INJECTION: forcing a failure.
[  179.790764][ T7667] name failslab, interval 1, probability 0, space 0, times 0
[  179.818348][ T7667] CPU: 0 UID: 0 PID: 7667 Comm: syz.3.365 Not tainted syzkaller #0 PREEMPT(full) 
[  179.818370][ T7667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  179.818379][ T7667] Call Trace:
[  179.818384][ T7667]  <TASK>
[  179.818390][ T7667]  dump_stack_lvl+0x16c/0x1f0
[  179.818412][ T7667]  should_fail_ex+0x512/0x640
[  179.818433][ T7667]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  179.818450][ T7667]  should_failslab+0xc2/0x120
[  179.818468][ T7667]  kmem_cache_alloc_noprof+0x75/0x6e0
[  179.818482][ T7667]  ? mpol_new+0x11b/0x2d0
[  179.818519][ T7667]  ? mpol_new+0x11b/0x2d0
[  179.818535][ T7667]  mpol_new+0x11b/0x2d0
[  179.818552][ T7667]  do_set_mempolicy+0x83/0x480
[  179.818569][ T7667]  ? __pfx_do_set_mempolicy+0x10/0x10
[  179.818595][ T7667]  ? __x64_sys_futex+0x1e0/0x4c0
[  179.818617][ T7667]  kernel_set_mempolicy+0x1c4/0x1e0
[  179.818636][ T7667]  ? __pfx_kernel_set_mempolicy+0x10/0x10
[  179.818660][ T7667]  do_syscall_64+0xcd/0xfa0
[  179.818679][ T7667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.818694][ T7667] RIP: 0033:0x7f3943b8f7c9
[  179.818706][ T7667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.818719][ T7667] RSP: 002b:00007f3944973038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ee
[  179.818737][ T7667] RAX: ffffffffffffffda RBX: 00007f3943de5fa0 RCX: 00007f3943b8f7c9
[  179.818745][ T7667] RDX: 0000000000000007 RSI: 0000200000000000 RDI: 0000000000004006
[  179.818753][ T7667] RBP: 00007f3943c13f91 R08: 0000000000000000 R09: 0000000000000000
[  179.818761][ T7667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  179.818769][ T7667] R13: 00007f3943de6038 R14: 00007f3943de5fa0 R15: 00007fffa7fbc3b8
[  179.818787][ T7667]  </TASK>
[  180.057511][ T7673] openvswitch: netlink: Tunnel attr 242 out of range max 16
[  180.581683][ T7654] kexec: Could not allocate control_code_buffer
[  181.111707][ T7690] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input6
[  181.171449][ T7679] random: crng reseeded on system resumption
[  183.619857][ T7736] FAULT_INJECTION: forcing a failure.
[  183.619857][ T7736] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  183.717363][ T7736] CPU: 1 UID: 0 PID: 7736 Comm: syz.0.379 Not tainted syzkaller #0 PREEMPT(full) 
[  183.717398][ T7736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  183.717413][ T7736] Call Trace:
[  183.717421][ T7736]  <TASK>
[  183.717430][ T7736]  dump_stack_lvl+0x16c/0x1f0
[  183.717472][ T7736]  should_fail_ex+0x512/0x640
[  183.717514][ T7736]  should_fail_alloc_page+0xe7/0x130
[  183.717550][ T7736]  prepare_alloc_pages+0x3c2/0x610
[  183.717589][ T7736]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  183.717622][ T7736]  ? rcu_is_watching+0x12/0xc0
[  183.717650][ T7736]  ? trace_mm_page_alloc+0x11f/0x1a0
[  183.717689][ T7736]  ? __alloc_frozen_pages_noprof+0x292/0x2470
[  183.717717][ T7736]  ? stack_trace_save+0x8e/0xc0
[  183.717747][ T7736]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  183.717788][ T7736]  ? kmem_cache_alloc_node_noprof+0x28a/0x770
[  183.717814][ T7736]  ? __get_vm_area_node+0x1ca/0x330
[  183.717847][ T7736]  ? __vmalloc_node_noprof+0xad/0xf0
[  183.717878][ T7736]  ? n_tty_open+0x1a/0x170
[  183.717907][ T7736]  ? tty_ldisc_open+0x9f/0x120
[  183.717928][ T7736]  ? tty_ldisc_setup+0x40/0x100
[  183.717950][ T7736]  ? tty_init_dev.part.0+0x1ec/0x500
[  183.717989][ T7736]  ? tty_init_dev+0x60/0x80
[  183.718015][ T7736]  ? ptmx_open+0x10d/0x360
[  183.718053][ T7736]  ? do_sys_openat2+0x11b/0x1d0
[  183.718084][ T7736]  ? __x64_sys_openat+0x174/0x210
[  183.718116][ T7736]  ? do_syscall_64+0xcd/0xfa0
[  183.718144][ T7736]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.718175][ T7736]  alloc_pages_bulk_noprof+0x77a/0x1410
[  183.718224][ T7736]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  183.718264][ T7736]  ? policy_nodemask+0xea/0x4e0
[  183.718300][ T7736]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  183.718329][ T7736]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  183.718387][ T7736]  kasan_populate_vmalloc+0x112/0x2d0
[  183.718415][ T7736]  ? alloc_vmap_area+0x8b5/0x29e0
[  183.718461][ T7736]  alloc_vmap_area+0x960/0x29e0
[  183.718508][ T7736]  ? __pfx_alloc_vmap_area+0x10/0x10
[  183.718550][ T7736]  __get_vm_area_node+0x1ca/0x330
[  183.718590][ T7736]  __vmalloc_node_range_noprof+0x271/0x1480
[  183.718626][ T7736]  ? n_tty_open+0x1a/0x170
[  183.718668][ T7736]  ? n_tty_open+0x1a/0x170
[  183.718708][ T7736]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  183.718742][ T7736]  ? look_up_lock_class+0x59/0x150
[  183.718778][ T7736]  ? __pfx___ldsem_down_write_nested+0x10/0x10
[  183.718815][ T7736]  ? n_tty_open+0x1a/0x170
[  183.718844][ T7736]  __vmalloc_node_noprof+0xad/0xf0
[  183.718878][ T7736]  ? n_tty_open+0x1a/0x170
[  183.718908][ T7736]  ? __pfx_n_tty_open+0x10/0x10
[  183.718941][ T7736]  n_tty_open+0x1a/0x170
[  183.718971][ T7736]  ? __pfx_n_tty_open+0x10/0x10
[  183.719001][ T7736]  tty_ldisc_open+0x9f/0x120
[  183.719026][ T7736]  tty_ldisc_setup+0x40/0x100
[  183.719052][ T7736]  tty_init_dev.part.0+0x1ec/0x500
[  183.719086][ T7736]  tty_init_dev+0x60/0x80
[  183.719114][ T7736]  ? __pfx_ptmx_open+0x10/0x10
[  183.719147][ T7736]  ptmx_open+0x10d/0x360
[  183.719183][ T7736]  ? __pfx_ptmx_open+0x10/0x10
[  183.719218][ T7736]  chrdev_open+0x234/0x6a0
[  183.719247][ T7736]  ? __pfx_apparmor_file_open+0x10/0x10
[  183.719284][ T7736]  ? __pfx_chrdev_open+0x10/0x10
[  183.719316][ T7736]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  183.719353][ T7736]  do_dentry_open+0x982/0x1530
[  183.719382][ T7736]  ? __pfx_chrdev_open+0x10/0x10
[  183.719420][ T7736]  vfs_open+0x82/0x3f0
[  183.719465][ T7736]  path_openat+0x1de4/0x2cb0
[  183.719504][ T7736]  ? __pfx_path_openat+0x10/0x10
[  183.719530][ T7736]  ? __lock_acquire+0xb8a/0x1c90
[  183.719563][ T7736]  do_filp_open+0x20b/0x470
[  183.719590][ T7736]  ? __pfx_do_filp_open+0x10/0x10
[  183.719645][ T7736]  ? alloc_fd+0x471/0x7d0
[  183.719682][ T7736]  do_sys_openat2+0x11b/0x1d0
[  183.719717][ T7736]  ? __pfx_do_sys_openat2+0x10/0x10
[  183.719755][ T7736]  ? __fput+0x68d/0xb70
[  183.719795][ T7736]  __x64_sys_openat+0x174/0x210
[  183.719831][ T7736]  ? __pfx___x64_sys_openat+0x10/0x10
[  183.719869][ T7736]  do_syscall_64+0xcd/0xfa0
[  183.719900][ T7736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.719926][ T7736] RIP: 0033:0x7f468058f7c9
[  183.719946][ T7736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.719969][ T7736] RSP: 002b:00007f46813e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  183.719993][ T7736] RAX: ffffffffffffffda RBX: 00007f46807e6090 RCX: 00007f468058f7c9
[  183.720010][ T7736] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  183.720034][ T7736] RBP: 00007f4680613f91 R08: 0000000000000000 R09: 0000000000000000
[  183.720049][ T7736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  183.720061][ T7736] R13: 00007f46807e6128 R14: 00007f46807e6090 R15: 00007ffe82363ae8
[  183.720097][ T7736]  </TASK>
[  183.720519][ T7736] syz.0.379: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  184.263045][ T7736] CPU: 1 UID: 0 PID: 7736 Comm: syz.0.379 Not tainted syzkaller #0 PREEMPT(full) 
[  184.263085][ T7736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  184.263102][ T7736] Call Trace:
[  184.263110][ T7736]  <TASK>
[  184.263120][ T7736]  dump_stack_lvl+0x16c/0x1f0
[  184.263156][ T7736]  warn_alloc+0x248/0x3a0
[  184.263185][ T7736]  ? __pfx_warn_alloc+0x10/0x10
[  184.263223][ T7736]  ? __get_vm_area_node+0x2cd/0x330
[  184.263263][ T7736]  ? __get_vm_area_node+0x2cd/0x330
[  184.263293][ T7736]  ? __get_vm_area_node+0x1dc/0x330
[  184.263323][ T7736]  ? __get_vm_area_node+0x208/0x330
[  184.263364][ T7736]  __vmalloc_node_range_noprof+0xaf5/0x1480
[  184.263412][ T7736]  ? n_tty_open+0x1a/0x170
[  184.263454][ T7736]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  184.263488][ T7736]  ? look_up_lock_class+0x59/0x150
[  184.263524][ T7736]  ? __pfx___ldsem_down_write_nested+0x10/0x10
[  184.263560][ T7736]  ? n_tty_open+0x1a/0x170
[  184.263589][ T7736]  __vmalloc_node_noprof+0xad/0xf0
[  184.263622][ T7736]  ? n_tty_open+0x1a/0x170
[  184.263652][ T7736]  ? __pfx_n_tty_open+0x10/0x10
[  184.263684][ T7736]  n_tty_open+0x1a/0x170
[  184.263714][ T7736]  ? __pfx_n_tty_open+0x10/0x10
[  184.263744][ T7736]  tty_ldisc_open+0x9f/0x120
[  184.263768][ T7736]  tty_ldisc_setup+0x40/0x100
[  184.263795][ T7736]  tty_init_dev.part.0+0x1ec/0x500
[  184.263828][ T7736]  tty_init_dev+0x60/0x80
[  184.263857][ T7736]  ? __pfx_ptmx_open+0x10/0x10
[  184.263890][ T7736]  ptmx_open+0x10d/0x360
[  184.263926][ T7736]  ? __pfx_ptmx_open+0x10/0x10
[  184.263961][ T7736]  chrdev_open+0x234/0x6a0
[  184.263991][ T7736]  ? __pfx_apparmor_file_open+0x10/0x10
[  184.264027][ T7736]  ? __pfx_chrdev_open+0x10/0x10
[  184.264059][ T7736]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  184.264095][ T7736]  do_dentry_open+0x982/0x1530
[  184.264125][ T7736]  ? __pfx_chrdev_open+0x10/0x10
[  184.264162][ T7736]  vfs_open+0x82/0x3f0
[  184.264201][ T7736]  path_openat+0x1de4/0x2cb0
[  184.264247][ T7736]  ? __pfx_path_openat+0x10/0x10
[  184.264274][ T7736]  ? __lock_acquire+0xb8a/0x1c90
[  184.264313][ T7736]  do_filp_open+0x20b/0x470
[  184.264340][ T7736]  ? __pfx_do_filp_open+0x10/0x10
[  184.264397][ T7736]  ? alloc_fd+0x471/0x7d0
[  184.264433][ T7736]  do_sys_openat2+0x11b/0x1d0
[  184.264468][ T7736]  ? __pfx_do_sys_openat2+0x10/0x10
[  184.264509][ T7736]  ? __fput+0x68d/0xb70
[  184.264548][ T7736]  __x64_sys_openat+0x174/0x210
[  184.264583][ T7736]  ? __pfx___x64_sys_openat+0x10/0x10
[  184.264633][ T7736]  do_syscall_64+0xcd/0xfa0
[  184.264665][ T7736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.264691][ T7736] RIP: 0033:0x7f468058f7c9
[  184.264711][ T7736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.264734][ T7736] RSP: 002b:00007f46813e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  184.264758][ T7736] RAX: ffffffffffffffda RBX: 00007f46807e6090 RCX: 00007f468058f7c9
[  184.264775][ T7736] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  184.264790][ T7736] RBP: 00007f4680613f91 R08: 0000000000000000 R09: 0000000000000000
[  184.264805][ T7736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  184.264820][ T7736] R13: 00007f46807e6128 R14: 00007f46807e6090 R15: 00007ffe82363ae8
[  184.264857][ T7736]  </TASK>
[  184.592971][ T7736] Mem-Info:
[  184.596150][ T7736] active_anon:7933 inactive_anon:1399 isolated_anon:0
[  184.596150][ T7736]  active_file:18797 inactive_file:40226 isolated_file:0
[  184.596150][ T7736]  unevictable:768 dirty:433 writeback:0
[  184.596150][ T7736]  slab_reclaimable:11270 slab_unreclaimable:92975
[  184.596150][ T7736]  mapped:25449 shmem:1361 pagetables:1113
[  184.596150][ T7736]  sec_pagetables:0 bounce:0
[  184.596150][ T7736]  kernel_misc_reclaimable:0
[  184.596150][ T7736]  free:1298875 free_pcp:36259 free_cma:0
[  184.664353][ T7736] Node 0 active_anon:31732kB inactive_anon:5596kB active_file:75184kB inactive_file:160704kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:101696kB dirty:1732kB writeback:0kB shmem:3908kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12096kB pagetables:4196kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  184.809939][ T7736] Node 1 active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:156kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  184.926901][ T7736] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  184.988790][ T7736] lowmem_reserve[]: 0 2485 2487 2487 2487
[  185.009503][ T7736] Node 0 DMA32 free:1300748kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB free_highatomic:0KB active_anon:31640kB inactive_anon:5772kB active_file:75184kB inactive_file:160704kB unevictable:1536kB writepending:1732kB zspages:0kB present:3129332kB managed:2545056kB mlocked:0kB bounce:0kB free_pcp:113956kB local_pcp:81556kB free_cma:0kB
[  185.077278][ T7736] lowmem_reserve[]: 0 0 1 1 1
[  185.115020][ T7736] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  185.156055][ T7736] lowmem_reserve[]: 0 0 0 0 0
[  185.161083][ T7736] Node 1 Normal free:3884284kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:200kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:26732kB local_pcp:16832kB free_cma:0kB
[  185.194114][ T7736] lowmem_reserve[]: 0 0 0 0 0
[  185.202234][ T7736] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  185.215349][ T7736] Node 0 DMA32: 3405*4kB (UM) 1201*8kB (UME) 754*16kB (UME) 582*32kB (UME) 393*64kB (UME) 272*128kB (UME) 140*256kB (UM) 69*512kB (UM) 26*1024kB (UM) 20*2048kB (UM) 256*4096kB (UM) = 1301212kB
[  185.237756][ T7736] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  185.269576][ T7736] Node 1 Normal: 209*4kB (UME) 37*8kB (UME) 19*16kB (UME) 117*32kB (UME) 37*64kB (UME) 7*128kB (UME) 8*256kB (UME) 4*512kB (UM) 1*1024kB (E) 2*2048kB (ME) 944*4096kB (M) = 3884284kB
[  185.332770][ T7736] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  185.353672][ T7736] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  185.389110][ T7736] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  185.438315][ T7736] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  185.505787][ T7736] 61408 total pagecache pages
[  185.520978][ T7736] 0 pages in swap cache
[  185.541869][ T7736] Free swap  = 124976kB
[  185.565210][ T7736] Total swap = 124996kB
[  185.582563][ T7736] 2097051 pages RAM
[  185.603501][ T7736] 0 pages HighMem/MovableOnly
[  185.628061][ T7736] 428697 pages reserved
[  185.645930][ T7736] 0 pages cma reserved
[  185.668463][ T7736] ptm ptm0: ldisc open failed (-12), clearing slot 0
[  186.827236][ T7792] FAULT_INJECTION: forcing a failure.
[  186.827236][ T7792] name failslab, interval 1, probability 0, space 0, times 0
[  186.840388][ T7792] CPU: 1 UID: 0 PID: 7792 Comm: syz.3.389 Not tainted syzkaller #0 PREEMPT(full) 
[  186.840423][ T7792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  186.840439][ T7792] Call Trace:
[  186.840447][ T7792]  <TASK>
[  186.840457][ T7792]  dump_stack_lvl+0x16c/0x1f0
[  186.840494][ T7792]  should_fail_ex+0x512/0x640
[  186.840535][ T7792]  should_failslab+0xc2/0x120
[  186.840569][ T7792]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  186.840602][ T7792]  ? xas_split_alloc+0x11c/0x490
[  186.840639][ T7792]  ? xas_split_alloc+0x11c/0x490
[  186.840667][ T7792]  xas_split_alloc+0x11c/0x490
[  186.840696][ T7792]  ? try_to_unmap_one+0x1791/0x2fd0
[  186.840743][ T7792]  __folio_split+0xce5/0x4d30
[  186.840802][ T7792]  ? __mem_cgroup_try_charge_swap+0x8c/0x400
[  186.840839][ T7792]  ? find_held_lock+0x2b/0x80
[  186.840870][ T7792]  ? __pfx___folio_split+0x10/0x10
[  186.840914][ T7792]  ? folio_alloc_swap+0x8af/0xd00
[  186.840958][ T7792]  shmem_writeout+0x42e/0x1140
[  186.840990][ T7792]  ? __pfx_shmem_writeout+0x10/0x10
[  186.841012][ T7792]  ? __pfx_try_to_unmap+0x10/0x10
[  186.841035][ T7792]  ? find_held_lock+0x2b/0x80
[  186.841069][ T7792]  ? inode_to_bdi+0x9e/0x160
[  186.841098][ T7792]  ? folio_clear_dirty_for_io+0x112/0x790
[  186.841136][ T7792]  shrink_folio_list+0x2f45/0x4800
[  186.841185][ T7792]  ? __pfx_shrink_folio_list+0x10/0x10
[  186.841221][ T7792]  ? __lock_acquire+0x622/0x1c90
[  186.841271][ T7792]  ? find_held_lock+0x2b/0x80
[  186.841297][ T7792]  ? is_bpf_text_address+0x8a/0x1a0
[  186.841330][ T7792]  ? bpf_ksym_find+0x124/0x1c0
[  186.841411][ T7792]  reclaim_folio_list+0xda/0x5d0
[  186.841455][ T7792]  ? __pfx_reclaim_folio_list+0x10/0x10
[  186.841510][ T7792]  ? __lock_acquire+0xb8a/0x1c90
[  186.841543][ T7792]  ? css_rstat_updated+0x1c2/0x510
[  186.841580][ T7792]  ? do_raw_spin_lock+0x12c/0x2b0
[  186.841618][ T7792]  ? lru_gen_del_folio+0x32b/0x540
[  186.841656][ T7792]  reclaim_pages+0x3ec/0x570
[  186.841683][ T7792]  ? __pfx_reclaim_pages+0x10/0x10
[  186.841708][ T7792]  ? madvise_cold_or_pageout_pte_range+0x1e2f/0x20d0
[  186.841754][ T7792]  madvise_cold_or_pageout_pte_range+0x14d1/0x20d0
[  186.841806][ T7792]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  186.841846][ T7792]  ? __lock_acquire+0x622/0x1c90
[  186.841882][ T7792]  ? __pfx_stack_trace_save+0x10/0x10
[  186.841912][ T7792]  ? stack_depot_save_flags+0x29/0x9c0
[  186.841952][ T7792]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[  186.841990][ T7792]  walk_pgd_range+0xc05/0x1f50
[  186.842051][ T7792]  ? __pfx_walk_pgd_range+0x10/0x10
[  186.842093][ T7792]  __walk_page_range+0x163/0x820
[  186.842128][ T7792]  ? __lock_acquire+0xb8a/0x1c90
[  186.842170][ T7792]  walk_page_range_vma+0x2c7/0xa20
[  186.842204][ T7792]  ? __pfx_walk_page_range_vma+0x10/0x10
[  186.842232][ T7792]  ? find_held_lock+0x2b/0x80
[  186.842271][ T7792]  madvise_pageout+0x257/0x540
[  186.842306][ T7792]  ? __pfx_madvise_pageout+0x10/0x10
[  186.842337][ T7792]  ? finish_task_switch.isra.0+0x21c/0xc10
[  186.842393][ T7792]  madvise_vma_behavior+0xb14/0x2d50
[  186.842435][ T7792]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[  186.842467][ T7792]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  186.842504][ T7792]  ? mas_prev+0x9b/0xf0
[  186.842534][ T7792]  ? __pfx_mas_prev+0x10/0x10
[  186.842574][ T7792]  ? find_vma_prev+0xd3/0x150
[  186.842604][ T7792]  ? find_held_lock+0x2b/0x80
[  186.842628][ T7792]  ? __pfx_find_vma_prev+0x10/0x10
[  186.842673][ T7792]  ? __futex_wait+0x24b/0x2f0
[  186.842702][ T7792]  madvise_walk_vmas+0x31f/0x9c0
[  186.842742][ T7792]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  186.842787][ T7792]  madvise_do_behavior+0x1e2/0x530
[  186.842820][ T7792]  ? futex_private_hash_put+0xd5/0x190
[  186.842853][ T7792]  ? __pfx_madvise_do_behavior+0x10/0x10
[  186.842889][ T7792]  ? down_read+0x13d/0x480
[  186.842939][ T7792]  do_madvise+0x176/0x240
[  186.842972][ T7792]  ? __pfx_do_madvise+0x10/0x10
[  186.843006][ T7792]  ? do_futex+0x122/0x350
[  186.843073][ T7792]  ? xfd_validate_state+0x61/0x180
[  186.843119][ T7792]  __x64_sys_madvise+0xa9/0x110
[  186.843155][ T7792]  ? lockdep_hardirqs_on+0x7c/0x110
[  186.843185][ T7792]  do_syscall_64+0xcd/0xfa0
[  186.843218][ T7792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.843245][ T7792] RIP: 0033:0x7f3943b8f7c9
[  186.843267][ T7792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.843291][ T7792] RSP: 002b:00007f3944952038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  186.843315][ T7792] RAX: ffffffffffffffda RBX: 00007f3943de6090 RCX: 00007f3943b8f7c9
[  186.843333][ T7792] RDX: 0000000000000015 RSI: 00000000002003f0 RDI: 0000000000000000
[  186.843348][ T7792] RBP: 00007f3943c13f91 R08: 0000000000000000 R09: 0000000000000000
[  186.843365][ T7792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  186.843380][ T7792] R13: 00007f3943de6128 R14: 00007f3943de6090 R15: 00007fffa7fbc3b8
[  186.843416][ T7792]  </TASK>
[  187.735668][ T7221] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  187.782372][ T7221] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  187.796914][ T7221] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  187.827099][ T7221] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  187.836759][ T7221] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  188.580229][ T7797] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  188.587107][ T7797] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  188.607586][ T7797] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  188.627199][ T7797] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  188.652616][ T7797] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  188.661709][ T7797] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  188.712859][ T7797] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  189.127485][ T7794] chnl_net:caif_netlink_parms(): no params data found
[  189.320845][ T7794] bridge0: port 1(bridge_slave_0) entered blocking state
[  189.328432][ T7794] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.342676][ T7794] bridge_slave_0: entered allmulticast mode
[  189.350564][ T7794] bridge_slave_0: entered promiscuous mode
[  189.359894][ T7794] bridge0: port 2(bridge_slave_1) entered blocking state
[  189.367193][ T7794] bridge0: port 2(bridge_slave_1) entered disabled state
[  189.374742][ T7794] bridge_slave_1: entered allmulticast mode
[  189.386535][ T7794] bridge_slave_1: entered promiscuous mode
[  189.551298][ T7794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  189.582591][ T7794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  189.640272][ T7823] FAULT_INJECTION: forcing a failure.
[  189.640272][ T7823] name failslab, interval 1, probability 0, space 0, times 0
[  189.684606][ T7823] CPU: 0 UID: 0 PID: 7823 Comm: syz.0.396 Not tainted syzkaller #0 PREEMPT(full) 
[  189.684643][ T7823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  189.684659][ T7823] Call Trace:
[  189.684669][ T7823]  <TASK>
[  189.684678][ T7823]  dump_stack_lvl+0x16c/0x1f0
[  189.684715][ T7823]  should_fail_ex+0x512/0x640
[  189.684753][ T7823]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  189.684781][ T7823]  ? __pfx_drm_debugfs_entry_open+0x10/0x10
[  189.684808][ T7823]  should_failslab+0xc2/0x120
[  189.684839][ T7823]  kmem_cache_alloc_noprof+0x75/0x6e0
[  189.684862][ T7823]  ? seq_open+0x55/0x170
[  189.684898][ T7823]  ? __pfx_drm_debugfs_entry_open+0x10/0x10
[  189.684925][ T7823]  ? __pfx_drm_clients_info+0x10/0x10
[  189.684955][ T7823]  ? seq_open+0x55/0x170
[  189.684987][ T7823]  seq_open+0x55/0x170
[  189.685019][ T7823]  ? __pfx_drm_clients_info+0x10/0x10
[  189.685051][ T7823]  single_open+0xfc/0x1f0
[  189.685117][ T7823]  drm_debugfs_entry_open+0x127/0x1c0
[  189.685149][ T7823]  full_proxy_open_regular+0x1b9/0x360
[  189.685189][ T7823]  do_dentry_open+0x982/0x1530
[  189.685220][ T7823]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  189.685263][ T7823]  vfs_open+0x82/0x3f0
[  189.685303][ T7823]  path_openat+0x1de4/0x2cb0
[  189.685341][ T7823]  ? __pfx_path_openat+0x10/0x10
[  189.685371][ T7823]  ? __lock_acquire+0xb8a/0x1c90
[  189.685409][ T7823]  do_filp_open+0x20b/0x470
[  189.685438][ T7823]  ? __pfx_do_filp_open+0x10/0x10
[  189.685489][ T7823]  ? alloc_fd+0x471/0x7d0
[  189.685523][ T7823]  do_sys_openat2+0x11b/0x1d0
[  189.685554][ T7823]  ? __pfx_do_sys_openat2+0x10/0x10
[  189.685599][ T7823]  __x64_sys_openat+0x174/0x210
[  189.685632][ T7823]  ? __pfx___x64_sys_openat+0x10/0x10
[  189.685680][ T7823]  do_syscall_64+0xcd/0xfa0
[  189.685714][ T7823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.685738][ T7823] RIP: 0033:0x7f468058f7c9
[  189.685760][ T7823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.685784][ T7823] RSP: 002b:00007f4681409038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  189.685808][ T7823] RAX: ffffffffffffffda RBX: 00007f46807e5fa0 RCX: 00007f468058f7c9
[  189.685823][ T7823] RDX: 0000000000002100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  189.685839][ T7823] RBP: 00007f4680613f91 R08: 0000000000000000 R09: 0000000000000000
[  189.685857][ T7823] R10: 000000000000ffff R11: 0000000000000246 R12: 0000000000000000
[  189.685873][ T7823] R13: 00007f46807e6038 R14: 00007f46807e5fa0 R15: 00007ffe82363ae8
[  189.685911][ T7823]  </TASK>
[  189.953917][ T7794] team0: Port device team_slave_0 added
[  189.980726][ T7794] team0: Port device team_slave_1 added
[  190.206984][ T7221] Bluetooth: hci0: command 0x0c1a tx timeout
[  190.415050][ T7794] batman_adv: batadv0: Adding interface: batadv_slave_0
[  190.429389][ T7794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  190.457499][ T7794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  190.506393][ T7794] batman_adv: batadv0: Adding interface: batadv_slave_1
[  190.530534][ T7794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  190.582013][ T7794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  190.582556][ T7221] Bluetooth: hci1: command 0x0c1a tx timeout
[  190.661623][ T7221] Bluetooth: hci4: command 0x041b tx timeout
[  190.668667][ T6182] Bluetooth: hci3: command 0x0c1a tx timeout
[  190.675101][ T6182] Bluetooth: hci2: command 0x0c1a tx timeout
[  190.760992][ T7794] hsr_slave_0: entered promiscuous mode
[  190.767972][ T7794] hsr_slave_1: entered promiscuous mode
[  190.777842][ T7794] debugfs: 'hsr0' already exists in 'hsr'
[  190.788856][ T7794] Cannot create hsr debugfs directory
[  191.580299][ T7794] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  191.600986][ T7794] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  191.640610][ T7794] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  191.672641][ T7794] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  191.981746][ T7794] 8021q: adding VLAN 0 to HW filter on device bond0
[  192.061855][ T7794] 8021q: adding VLAN 0 to HW filter on device team0
[  192.086378][ T7022] bridge0: port 1(bridge_slave_0) entered blocking state
[  192.093776][ T7022] bridge0: port 1(bridge_slave_0) entered forwarding state
[  192.212054][ T7022] bridge0: port 2(bridge_slave_1) entered blocking state
[  192.219314][ T7022] bridge0: port 2(bridge_slave_1) entered forwarding state
[  192.730747][ T6190] Bluetooth: hci4: command 0x041b tx timeout
[  193.017849][ T7794] 8021q: adding VLAN 0 to HW filter on device batadv0
[  193.074998][ T7879] netlink: set zone limit has 8 unknown bytes
[  193.475371][ T7894] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  193.544572][ T7897] netlink: 4 bytes leftover after parsing attributes in process `syz.2.409'.
[  193.963460][ T7794] veth0_vlan: entered promiscuous mode
[  193.982031][ T7794] veth1_vlan: entered promiscuous mode
[  194.082486][ T7794] veth0_macvtap: entered promiscuous mode
[  194.097949][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  194.108428][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  194.137816][ T7794] veth1_macvtap: entered promiscuous mode
[  194.166446][ T7794] batman_adv: batadv0: Interface activated: batadv_slave_0
[  194.186877][ T7794] batman_adv: batadv0: Interface activated: batadv_slave_1
[  194.211961][ T7036] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  194.223641][ T7888] FAULT_INJECTION: forcing a failure.
[  194.223641][ T7888] name failslab, interval 1, probability 0, space 0, times 0
[  194.250840][ T7036] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  194.288149][ T7036] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  194.312244][ T7036] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  194.340582][ T7888] CPU: 1 UID: 0 PID: 7888 Comm: syz.0.408 Not tainted syzkaller #0 PREEMPT(full) 
[  194.340612][ T7888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  194.340627][ T7888] Call Trace:
[  194.340635][ T7888]  <TASK>
[  194.340644][ T7888]  dump_stack_lvl+0x16c/0x1f0
[  194.340680][ T7888]  should_fail_ex+0x512/0x640
[  194.340720][ T7888]  should_failslab+0xc2/0x120
[  194.340753][ T7888]  __kmalloc_cache_noprof+0x72/0x780
[  194.340777][ T7888]  ? __pfx___might_resched+0x10/0x10
[  194.340805][ T7888]  ? nfc_genl_rcv_nl_event+0xc1/0x2e0
[  194.340846][ T7888]  ? nfc_genl_rcv_nl_event+0xc1/0x2e0
[  194.340879][ T7888]  nfc_genl_rcv_nl_event+0xc1/0x2e0
[  194.340915][ T7888]  notifier_call_chain+0xbc/0x410
[  194.340945][ T7888]  ? __pfx_nfc_genl_rcv_nl_event+0x10/0x10
[  194.340988][ T7888]  blocking_notifier_call_chain+0x69/0xa0
[  194.341025][ T7888]  netlink_release+0x16cf/0x2080
[  194.341058][ T7888]  ? netlink_release+0x1e4/0x2080
[  194.341086][ T7888]  ? __pfx_netlink_release+0x10/0x10
[  194.341115][ T7888]  ? __pfx_locks_remove_file+0x10/0x10
[  194.341146][ T7888]  __sock_release+0xb3/0x270
[  194.341175][ T7888]  ? __pfx_sock_close+0x10/0x10
[  194.341195][ T7888]  sock_close+0x1c/0x30
[  194.341218][ T7888]  __fput+0x402/0xb70
[  194.341256][ T7888]  task_work_run+0x150/0x240
[  194.341292][ T7888]  ? __pfx_task_work_run+0x10/0x10
[  194.341327][ T7888]  ? do_raw_spin_unlock+0x172/0x230
[  194.341437][ T7888]  do_exit+0x86f/0x2bf0
[  194.341476][ T7888]  ? __pfx_do_exit+0x10/0x10
[  194.341508][ T7888]  ? do_raw_spin_lock+0x12c/0x2b0
[  194.341543][ T7888]  ? find_held_lock+0x2b/0x80
[  194.341571][ T7888]  do_group_exit+0xd3/0x2a0
[  194.341597][ T7888]  get_signal+0x2671/0x26d0
[  194.341621][ T7888]  ? find_held_lock+0x2b/0x80
[  194.341647][ T7888]  ? __pfx_get_signal+0x10/0x10
[  194.341668][ T7888]  ? do_futex+0x122/0x350
[  194.341694][ T7888]  ? __pfx_do_msg_fill+0x10/0x10
[  194.341725][ T7888]  arch_do_signal_or_restart+0x8f/0x790
[  194.341750][ T7888]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  194.341782][ T7888]  ? xfd_validate_state+0x61/0x180
[  194.341810][ T7888]  ? __pfx_ksys_write+0x10/0x10
[  194.341840][ T7888]  exit_to_user_mode_loop+0x85/0x130
[  194.341871][ T7888]  do_syscall_64+0x426/0xfa0
[  194.341905][ T7888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.341926][ T7888] RIP: 0033:0x7f468058f7c9
[  194.341944][ T7888] Code: Unable to access opcode bytes at 0x7f468058f79f.
[  194.341953][ T7888] RSP: 002b:00007f46813e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000046
[  194.341973][ T7888] RAX: fffffffffffffdfe RBX: 00007f46807e6090 RCX: 00007f468058f7c9
[  194.341988][ T7888] RDX: 0000000000000ff9 RSI: 0000000000000000 RDI: 0000000000000000
[  194.342000][ T7888] RBP: 00007f4680613f91 R08: 0000000000000003 R09: 0000000000000000
[  194.342013][ T7888] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  194.342025][ T7888] R13: 00007f46807e6128 R14: 00007f46807e6090 R15: 00007ffe82363ae8
[  194.342060][ T7888]  </TASK>
[  194.506277][ T7911] random: crng reseeded on system resumption
[  194.570485][ T7022] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  194.796752][ T7022] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  194.805406][ T6190] Bluetooth: hci4: command 0x041b tx timeout
[  194.840478][ T7022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  194.848339][ T7022] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  195.292608][ T7929] Console: switching to colour VGA+ 80x25
[  196.870168][ T6190] Bluetooth: hci4: command 0x041b tx timeout
[  197.004271][ T7947] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  197.597800][ T7962] netlink: 4 bytes leftover after parsing attributes in process `syz.4.423'.
[  197.673502][ T7962] netlink: 354 bytes leftover after parsing attributes in process `syz.4.423'.
[  197.891738][ T7962] FAULT_INJECTION: forcing a failure.
[  197.891738][ T7962] name fail_futex, interval 1, probability 0, space 0, times 0
[  197.933794][ T7962] CPU: 1 UID: 0 PID: 7962 Comm: syz.4.423 Not tainted syzkaller #0 PREEMPT(full) 
[  197.933830][ T7962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  197.933844][ T7962] Call Trace:
[  197.933853][ T7962]  <TASK>
[  197.933862][ T7962]  dump_stack_lvl+0x16c/0x1f0
[  197.933898][ T7962]  should_fail_ex+0x512/0x640
[  197.933940][ T7962]  get_futex_key+0x293/0x1560
[  197.933977][ T7962]  ? __pfx_get_futex_key+0x10/0x10
[  197.934005][ T7962]  ? __mutex_trylock_common+0xe9/0x250
[  197.934044][ T7962]  futex_wake+0xea/0x530
[  197.934088][ T7962]  ? __pfx_futex_wake+0x10/0x10
[  197.934121][ T7962]  ? __lock_acquire+0xb8a/0x1c90
[  197.934231][ T7962]  do_futex+0x1e3/0x350
[  197.934264][ T7962]  ? __pfx_do_futex+0x10/0x10
[  197.934293][ T7962]  ? __might_fault+0xe3/0x190
[  197.934326][ T7962]  mm_release+0x24e/0x300
[  197.934361][ T7962]  do_exit+0x68e/0x2bf0
[  197.934398][ T7962]  ? __pfx_do_exit+0x10/0x10
[  197.934430][ T7962]  ? do_raw_spin_lock+0x12c/0x2b0
[  197.934465][ T7962]  ? find_held_lock+0x2b/0x80
[  197.934497][ T7962]  do_group_exit+0xd3/0x2a0
[  197.934533][ T7962]  get_signal+0x2671/0x26d0
[  197.934567][ T7962]  ? __might_fault+0x13b/0x190
[  197.934598][ T7962]  ? __pfx_get_signal+0x10/0x10
[  197.934630][ T7962]  ? do_futex+0x122/0x350
[  197.934662][ T7962]  ? __pfx_do_futex+0x10/0x10
[  197.934698][ T7962]  arch_do_signal_or_restart+0x8f/0x790
[  197.934732][ T7962]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  197.934772][ T7962]  ? xfd_validate_state+0x61/0x180
[  197.934810][ T7962]  ? __pfx_ksys_write+0x10/0x10
[  197.934845][ T7962]  exit_to_user_mode_loop+0x85/0x130
[  197.934884][ T7962]  do_syscall_64+0x426/0xfa0
[  197.934917][ T7962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.934943][ T7962] RIP: 0033:0x7f27c178f7c9
[  197.934964][ T7962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.934988][ T7962] RSP: 002b:00007f27c25e90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  197.935012][ T7962] RAX: fffffffffffffe00 RBX: 00007f27c19e5fa8 RCX: 00007f27c178f7c9
[  197.935029][ T7962] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f27c19e5fa8
[  197.935045][ T7962] RBP: 00007f27c19e5fa0 R08: 0000000000000000 R09: 0000000000000000
[  197.935060][ T7962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  197.935074][ T7962] R13: 00007f27c19e6038 R14: 00007ffc269119d0 R15: 00007ffc26911ab8
[  197.935110][ T7962]  </TASK>
[  198.939684][ T6190] Bluetooth: hci4: command 0x041b tx timeout
[  199.047974][ T7985] FAULT_INJECTION: forcing a failure.
[  199.047974][ T7985] name fail_futex, interval 1, probability 0, space 0, times 0
[  199.127953][ T7985] CPU: 1 UID: 0 PID: 7985 Comm: syz.0.427 Not tainted syzkaller #0 PREEMPT(full) 
[  199.127991][ T7985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  199.128008][ T7985] Call Trace:
[  199.128016][ T7985]  <TASK>
[  199.128028][ T7985]  dump_stack_lvl+0x16c/0x1f0
[  199.128073][ T7985]  should_fail_ex+0x512/0x640
[  199.128118][ T7985]  get_futex_key+0x1d0/0x1560
[  199.128156][ T7985]  ? __pfx_get_futex_key+0x10/0x10
[  199.128194][ T7985]  ? rcu_is_watching+0x12/0xc0
[  199.128222][ T7985]  ? kfree+0x252/0x6d0
[  199.128255][ T7985]  futex_wake+0xea/0x530
[  199.128298][ T7985]  ? __pfx_futex_wake+0x10/0x10
[  199.128352][ T7985]  do_futex+0x1e3/0x350
[  199.128386][ T7985]  ? __pfx_do_futex+0x10/0x10
[  199.128431][ T7985]  __x64_sys_futex+0x1e0/0x4c0
[  199.128470][ T7985]  ? __pfx___x64_sys_futex+0x10/0x10
[  199.128505][ T7985]  ? xfd_validate_state+0x61/0x180
[  199.128539][ T7985]  ? __pfx_ksys_write+0x10/0x10
[  199.128579][ T7985]  do_syscall_64+0xcd/0xfa0
[  199.128613][ T7985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.128640][ T7985] RIP: 0033:0x7f468058f7c9
[  199.128661][ T7985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.128686][ T7985] RSP: 002b:00007f46813e80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  199.128712][ T7985] RAX: ffffffffffffffda RBX: 00007f46807e6098 RCX: 00007f468058f7c9
[  199.128729][ T7985] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f46807e609c
[  199.128746][ T7985] RBP: 00007f46807e6090 R08: 00007f468140a000 R09: 0000000000000000
[  199.128763][ T7985] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  199.128779][ T7985] R13: 00007f46807e6128 R14: 00007ffe82363a00 R15: 00007ffe82363ae8
[  199.128816][ T7985]  </TASK>
[  199.843083][ T8000] raw_sendmsg: syz.0.430 forgot to set AF_INET. Fix it!
[  199.946301][ T8002] netlink: 'syz.3.431': attribute type 19 has an invalid length.
[  199.954161][ T8002] netlink: 334 bytes leftover after parsing attributes in process `syz.3.431'.
[  200.115333][ T8003] netlink: 338 bytes leftover after parsing attributes in process `syz.3.431'.
[  200.204211][ T8002] netlink: 334 bytes leftover after parsing attributes in process `syz.3.431'.
[  200.236391][ T8004] netlink: 338 bytes leftover after parsing attributes in process `syz.3.431'.
[  201.008018][ T6190] Bluetooth: hci4: command 0x041b tx timeout
[  201.031361][ T8021] netlink: 338 bytes leftover after parsing attributes in process `syz.0.436'.
[  201.088804][ T8021] netlink: 338 bytes leftover after parsing attributes in process `syz.0.436'.
[  202.796640][ T8045] vhci_hcd: invalid port number 16
[  202.838644][ T8045] vhci_hcd: invalid port number 16
[  203.463161][ T8071] random: crng reseeded on system resumption
[  203.568028][ T8071] hub 1-0:1.0: USB hub found
[  203.613999][ T8071] hub 1-0:1.0: 1 port detected
[  203.785701][ T8078] netlink: 342 bytes leftover after parsing attributes in process `syz.4.449'.
[  203.883334][ T8079] netlink: 342 bytes leftover after parsing attributes in process `syz.4.449'.
[  203.893482][ T8079] netlink: 342 bytes leftover after parsing attributes in process `syz.4.449'.
[  203.912618][ T8079] netlink: 342 bytes leftover after parsing attributes in process `syz.4.449'.
[  205.515041][ T8096] __nla_validate_parse: 2 callbacks suppressed
[  205.515064][ T8096] netlink: 28 bytes leftover after parsing attributes in process `syz.2.452'.
[  206.895099][ T8124] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  206.914700][ T8124] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  206.927307][ T8124] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  206.952188][ T8124] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  206.977699][ T8124] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  207.338976][ T8138] FAULT_INJECTION: forcing a failure.
[  207.338976][ T8138] name failslab, interval 1, probability 0, space 0, times 0
[  207.411614][    T9] smpboot: CPU 1 is now offline
[  207.443357][ T8138] CPU: 0 UID: 0 PID: 8138 Comm: syz.3.461 Not tainted syzkaller #0 PREEMPT(full) 
[  207.443379][ T8138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  207.443388][ T8138] Call Trace:
[  207.443393][ T8138]  <TASK>
[  207.443399][ T8138]  dump_stack_lvl+0x16c/0x1f0
[  207.443421][ T8138]  should_fail_ex+0x512/0x640
[  207.443442][ T8138]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  207.443458][ T8138]  should_failslab+0xc2/0x120
[  207.443477][ T8138]  kmem_cache_alloc_noprof+0x75/0x6e0
[  207.443491][ T8138]  ? __kernfs_new_node+0xd2/0x8e0
[  207.443513][ T8138]  ? __kernfs_new_node+0xd2/0x8e0
[  207.443529][ T8138]  __kernfs_new_node+0xd2/0x8e0
[  207.443549][ T8138]  ? __pfx___kernfs_new_node+0x10/0x10
[  207.443571][ T8138]  ? find_held_lock+0x2b/0x80
[  207.443586][ T8138]  ? kernfs_root+0xee/0x2a0
[  207.443607][ T8138]  kernfs_new_node+0x13c/0x1e0
[  207.443630][ T8138]  __kernfs_create_file+0x53/0x350
[  207.443647][ T8138]  sysfs_add_file_mode_ns+0x207/0x3c0
[  207.443668][ T8138]  internal_create_group+0x578/0xf30
[  207.443692][ T8138]  ? __pfx_internal_create_group+0x10/0x10
[  207.443713][ T8138]  ? kernfs_create_link+0x1bd/0x240
[  207.443730][ T8138]  internal_create_groups+0x9d/0x150
[  207.443753][ T8138]  device_add+0x6d1/0x1aa0
[  207.443777][ T8138]  ? __pfx_device_add+0x10/0x10
[  207.443798][ T8138]  ? lockdep_init_map_type+0x5c/0x280
[  207.443818][ T8138]  ? __init_waitqueue_head+0xca/0x150
[  207.443835][ T8138]  rfkill_register+0x1ad/0xb40
[  207.443852][ T8138]  nfc_register_device+0x11f/0x3c0
[  207.443872][ T8138]  nci_register_device+0x7f1/0xb80
[  207.443887][ T8138]  ? __pfx_nci_register_device+0x10/0x10
[  207.443904][ T8138]  ? lockdep_init_map_type+0x5c/0x280
[  207.443926][ T8138]  virtual_ncidev_open+0x141/0x220
[  207.443942][ T8138]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  207.443956][ T8138]  misc_open+0x26d/0x450
[  207.443977][ T8138]  ? __pfx_misc_open+0x10/0x10
[  207.443996][ T8138]  chrdev_open+0x234/0x6a0
[  207.444013][ T8138]  ? __pfx_apparmor_file_open+0x10/0x10
[  207.444034][ T8138]  ? __pfx_chrdev_open+0x10/0x10
[  207.444051][ T8138]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  207.444071][ T8138]  do_dentry_open+0x982/0x1530
[  207.444088][ T8138]  ? __pfx_chrdev_open+0x10/0x10
[  207.444108][ T8138]  vfs_open+0x82/0x3f0
[  207.444130][ T8138]  path_openat+0x1de4/0x2cb0
[  207.444152][ T8138]  ? __pfx_path_openat+0x10/0x10
[  207.444168][ T8138]  ? __lock_acquire+0xb8a/0x1c90
[  207.444188][ T8138]  do_filp_open+0x20b/0x470
[  207.444204][ T8138]  ? __pfx_do_filp_open+0x10/0x10
[  207.444233][ T8138]  ? alloc_fd+0x471/0x7d0
[  207.444252][ T8138]  do_sys_openat2+0x11b/0x1d0
[  207.444272][ T8138]  ? __pfx_do_sys_openat2+0x10/0x10
[  207.444299][ T8138]  __x64_sys_openat+0x174/0x210
[  207.444319][ T8138]  ? __pfx___x64_sys_openat+0x10/0x10
[  207.444355][ T8138]  do_syscall_64+0xcd/0xfa0
[  207.444374][ T8138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.444388][ T8138] RIP: 0033:0x7f3943b8f7c9
[  207.444399][ T8138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.444413][ T8138] RSP: 002b:00007f3944952038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  207.444427][ T8138] RAX: ffffffffffffffda RBX: 00007f3943de6090 RCX: 00007f3943b8f7c9
[  207.444436][ T8138] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c
[  207.444445][ T8138] RBP: 00007f3943c13f91 R08: 0000000000000000 R09: 0000000000000000
[  207.444453][ T8138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  207.444462][ T8138] R13: 00007f3943de6128 R14: 00007f3943de6090 R15: 00007fffa7fbc3b8
[  207.444481][ T8138]  </TASK>
[  207.797141][    C0] vkms_vblank_simulate: vblank timer overrun
[  208.490841][ T6190] Bluetooth: hci0: command 0x0c1a tx timeout
[  208.788378][ T8165] CIFS: VFS: Invalid SecurityFlags: 
[  209.002626][ T6190] Bluetooth: hci3: command 0x0c1a tx timeout
[  209.008969][ T6190] Bluetooth: hci2: command 0x0c1a tx timeout
[  209.015150][ T6190] Bluetooth: hci1: command 0x0c1a tx timeout
[  209.065721][ T7833] Bluetooth: hci4: command 0x041b tx timeout
[  209.312358][ T8163] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  209.329183][ T8163] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  209.403857][ T8163] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  209.434930][ T8163] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  209.472075][ T8163] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  209.503761][ T8170] nvme_fabrics: unknown parameter or missing value '2��\B	2��h7(�Q�%0�p�.V&�M5-=a��&1��H��ߢ>����礝���T�^]pQFI���#���\ju=.	�㧯`��H�;���T���{�F���CsV!U[��H�' in ctrl creation request
[  209.672423][ T8170] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  210.250345][ T8175] mkiss: ax0: crc mode is auto.
[  211.118274][ T8194] netlink: 8 bytes leftover after parsing attributes in process `syz.0.473'.
[  211.276140][ T7833] Bluetooth: hci0: command 0x0c1a tx timeout
[  211.324840][ T8197] lo: entered allmulticast mode
[  211.355567][ T7833] Bluetooth: hci1: command 0x0c1a tx timeout
[  211.364013][ T8195] lo: left allmulticast mode
[  211.433441][ T7833] Bluetooth: hci3: command 0x0c1a tx timeout
[  211.439496][ T7833] Bluetooth: hci2: command 0x0c1a tx timeout
[  211.517609][ T7833] Bluetooth: hci4: command 0x041b tx timeout
[  212.036098][ T8212] CIFS: VFS: Invalid SecurityFlags: 
[  212.484552][ T8220] FAULT_INJECTION: forcing a failure.
[  212.484552][ T8220] name failslab, interval 1, probability 0, space 0, times 0
[  212.535547][ T8220] CPU: 0 UID: 8 PID: 8220 Comm: syz.2.481 Not tainted syzkaller #0 PREEMPT(full) 
[  212.535568][ T8220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  212.535577][ T8220] Call Trace:
[  212.535582][ T8220]  <TASK>
[  212.535587][ T8220]  dump_stack_lvl+0x16c/0x1f0
[  212.535610][ T8220]  should_fail_ex+0x512/0x640
[  212.535630][ T8220]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  212.535647][ T8220]  should_failslab+0xc2/0x120
[  212.535666][ T8220]  kmem_cache_alloc_noprof+0x75/0x6e0
[  212.535680][ T8220]  ? taskstats_exit+0x654/0xbe0
[  212.535696][ T8220]  ? taskstats_exit+0x654/0xbe0
[  212.535707][ T8220]  ? acct_update_integrals+0x2ce/0x4a0
[  212.535719][ T8220]  taskstats_exit+0x654/0xbe0
[  212.535732][ T8220]  ? __pfx_taskstats_exit+0x10/0x10
[  212.535746][ T8220]  ? exit_signals+0x38e/0xb40
[  212.535764][ T8220]  do_exit+0x5dc/0x2bf0
[  212.535786][ T8220]  ? __pfx_do_exit+0x10/0x10
[  212.535805][ T8220]  ? do_raw_spin_lock+0x12c/0x2b0
[  212.535826][ T8220]  ? find_held_lock+0x2b/0x80
[  212.535842][ T8220]  do_group_exit+0xd3/0x2a0
[  212.535862][ T8220]  get_signal+0x2671/0x26d0
[  212.535879][ T8220]  ? kmem_cache_free+0x2d4/0x6c0
[  212.535897][ T8220]  ? __pfx_get_signal+0x10/0x10
[  212.535912][ T8220]  ? do_futex+0x122/0x350
[  212.535952][ T8220]  ? __pfx_do_futex+0x10/0x10
[  212.535971][ T8220]  arch_do_signal_or_restart+0x8f/0x790
[  212.535990][ T8220]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  212.536022][ T8220]  exit_to_user_mode_loop+0x85/0x130
[  212.536044][ T8220]  do_syscall_64+0x426/0xfa0
[  212.536062][ T8220]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.536076][ T8220] RIP: 0033:0x7fce7158f7c9
[  212.536089][ T8220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.536102][ T8220] RSP: 002b:00007fce724040e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  212.536117][ T8220] RAX: fffffffffffffe00 RBX: 00007fce717e5fa8 RCX: 00007fce7158f7c9
[  212.536126][ T8220] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fce717e5fa8
[  212.536134][ T8220] RBP: 00007fce717e5fa0 R08: 0000000000000000 R09: 0000000000000000
[  212.536143][ T8220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  212.536151][ T8220] R13: 00007fce717e6038 R14: 00007ffda64a9960 R15: 00007ffda64a9a48
[  212.536172][ T8220]  </TASK>
[  212.806164][ T8205] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  212.812315][ T8205] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  212.818405][ T8205] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  212.824510][ T8205] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  212.830558][ T8205] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  214.061847][ T6190] Bluetooth: hci0: command 0x0c1a tx timeout
[  214.428048][ T8264] CIFS: VFS: Invalid SecurityFlags: 
[  214.787372][ T8270] FAULT_INJECTION: forcing a failure.
[  214.787372][ T8270] name failslab, interval 1, probability 0, space 0, times 0
[  214.840009][ T8270] CPU: 0 UID: 0 PID: 8270 Comm: syz.0.494 Not tainted syzkaller #0 PREEMPT(full) 
[  214.840033][ T8270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  214.840041][ T8270] Call Trace:
[  214.840046][ T8270]  <TASK>
[  214.840052][ T8270]  dump_stack_lvl+0x16c/0x1f0
[  214.840075][ T8270]  should_fail_ex+0x512/0x640
[  214.840096][ T8270]  ? __kmalloc_cache_noprof+0x5f/0x780
[  214.840112][ T8270]  should_failslab+0xc2/0x120
[  214.840131][ T8270]  __kmalloc_cache_noprof+0x72/0x780
[  214.840144][ T8270]  ? rcu_is_watching+0x12/0xc0
[  214.840160][ T8270]  ? call_usermodehelper_setup+0xaf/0x360
[  214.840174][ T8270]  ? __pfx_free_modprobe_argv+0x10/0x10
[  214.840196][ T8270]  ? call_usermodehelper_setup+0xaf/0x360
[  214.840209][ T8270]  call_usermodehelper_setup+0xaf/0x360
[  214.840226][ T8270]  __request_module+0x3bd/0x690
[  214.840246][ T8270]  ? __pfx___request_module+0x10/0x10
[  214.840274][ T8270]  ? rcu_is_watching+0x12/0xc0
[  214.840288][ T8270]  ? lockdep_hardirqs_on+0x7c/0x110
[  214.840308][ T8270]  netlink_create+0x226/0x620
[  214.840325][ T8270]  __sock_create+0x338/0x8d0
[  214.840346][ T8270]  __sys_socket+0x14d/0x260
[  214.840364][ T8270]  ? __pfx___sys_socket+0x10/0x10
[  214.840381][ T8270]  ? xfd_validate_state+0x61/0x180
[  214.840399][ T8270]  ? __pfx_ksys_write+0x10/0x10
[  214.840418][ T8270]  __x64_sys_socket+0x72/0xb0
[  214.840434][ T8270]  ? lockdep_hardirqs_on+0x7c/0x110
[  214.840450][ T8270]  do_syscall_64+0xcd/0xfa0
[  214.840467][ T8270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.840481][ T8270] RIP: 0033:0x7f468058f7c9
[  214.840493][ T8270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.840506][ T8270] RSP: 002b:00007f4681409038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  214.840520][ T8270] RAX: ffffffffffffffda RBX: 00007f46807e5fa0 RCX: 00007f468058f7c9
[  214.840529][ T8270] RDX: 000000000000001f RSI: 0000000000000003 RDI: 0000000000000010
[  214.840537][ T8270] RBP: 00007f4680613f91 R08: 0000000000000000 R09: 0000000000000000
[  214.840545][ T8270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  214.840554][ T8270] R13: 00007f46807e6038 R14: 00007f46807e5fa0 R15: 00007ffe82363ae8
[  214.840573][ T8270]  </TASK>
[  215.393598][ T8263] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  215.400131][ T8263] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  215.406271][ T6190] Bluetooth: hci4: command 0x041b tx timeout
[  215.415573][ T6190] Bluetooth: hci3: command 0x0c1a tx timeout
[  215.421616][ T6190] Bluetooth: hci2: command 0x0c1a tx timeout
[  215.482072][ T8263] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  215.510613][ T8263] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  215.542313][ T8263] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  216.009494][ T8284] binder: 8275:8284 ioctl 40046f41 0 returned -22
[  216.372078][ T6190] Bluetooth: hci0: command 0x0c1a tx timeout
[  217.481807][ T6190] Bluetooth: hci1: command 0x0c1a tx timeout
[  217.647699][ T6190] Bluetooth: hci4: command 0x041b tx timeout
[  217.653835][ T7833] Bluetooth: hci3: command 0x0c1a tx timeout
[  217.659845][ T7833] Bluetooth: hci2: command 0x0c1a tx timeout
[  217.960650][ T8341] FAULT_INJECTION: forcing a failure.
[  217.960650][ T8341] name failslab, interval 1, probability 0, space 0, times 0
[  217.960678][ T8341] CPU: 0 UID: 0 PID: 8341 Comm: syz.3.512 Not tainted syzkaller #0 PREEMPT(full) 
[  217.960695][ T8341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  217.960703][ T8341] Call Trace:
[  217.960709][ T8341]  <TASK>
[  217.960715][ T8341]  dump_stack_lvl+0x16c/0x1f0
[  217.960735][ T8341]  should_fail_ex+0x512/0x640
[  217.960757][ T8341]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  217.960783][ T8341]  ? __pfx_drm_debugfs_entry_open+0x10/0x10
[  217.960805][ T8341]  should_failslab+0xc2/0x120
[  217.960825][ T8341]  kmem_cache_alloc_noprof+0x75/0x6e0
[  217.960839][ T8341]  ? seq_open+0x55/0x170
[  217.960860][ T8341]  ? __pfx_drm_debugfs_entry_open+0x10/0x10
[  217.960874][ T8341]  ? __pfx_drm_clients_info+0x10/0x10
[  217.960889][ T8341]  ? seq_open+0x55/0x170
[  217.960904][ T8341]  seq_open+0x55/0x170
[  217.960921][ T8341]  ? __pfx_drm_clients_info+0x10/0x10
[  217.960936][ T8341]  single_open+0xfc/0x1f0
[  217.960955][ T8341]  drm_debugfs_entry_open+0x127/0x1c0
[  217.960970][ T8341]  full_proxy_open_regular+0x1b9/0x360
[  217.960992][ T8341]  do_dentry_open+0x982/0x1530
[  217.961011][ T8341]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  217.961033][ T8341]  vfs_open+0x82/0x3f0
[  217.961054][ T8341]  path_openat+0x1de4/0x2cb0
[  217.961075][ T8341]  ? __pfx_path_openat+0x10/0x10
[  217.961091][ T8341]  ? __lock_acquire+0xb8a/0x1c90
[  217.961113][ T8341]  do_filp_open+0x20b/0x470
[  217.961128][ T8341]  ? __pfx_do_filp_open+0x10/0x10
[  217.961156][ T8341]  ? alloc_fd+0x471/0x7d0
[  217.961174][ T8341]  do_sys_openat2+0x11b/0x1d0
[  217.961193][ T8341]  ? __pfx_do_sys_openat2+0x10/0x10
[  217.961223][ T8341]  __x64_sys_openat+0x174/0x210
[  217.961246][ T8341]  ? __pfx___x64_sys_openat+0x10/0x10
[  217.961273][ T8341]  do_syscall_64+0xcd/0xfa0
[  217.961294][ T8341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.961308][ T8341] RIP: 0033:0x7f3943b8f7c9
[  217.961321][ T8341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.961334][ T8341] RSP: 002b:00007f3944973038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  217.961351][ T8341] RAX: ffffffffffffffda RBX: 00007f3943de5fa0 RCX: 00007f3943b8f7c9
[  217.961360][ T8341] RDX: 0000000000002100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  217.961373][ T8341] RBP: 00007f3943c13f91 R08: 0000000000000000 R09: 0000000000000000
[  217.961382][ T8341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  217.961389][ T8341] R13: 00007f3943de6038 R14: 00007f3943de5fa0 R15: 00007fffa7fbc3b8
[  217.961410][ T8341]  </TASK>
[  218.577525][ T8353] netlink: 8 bytes leftover after parsing attributes in process `syz.3.516'.
[  220.089661][ T8372] zero sized request
[  220.332372][ T8357] tty tty12: ldisc open failed (-12), clearing slot 11
[  220.506434][ T8378] scsi_dev_info_list_add_str: bad dev info string '�' '' ''
[  220.701100][ T8386] FAULT_INJECTION: forcing a failure.
[  220.701100][ T8386] name failslab, interval 1, probability 0, space 0, times 0
[  220.796299][ T8386] CPU: 0 UID: 0 PID: 8386 Comm: syz.0.522 Not tainted syzkaller #0 PREEMPT(full) 
[  220.796322][ T8386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  220.796331][ T8386] Call Trace:
[  220.796336][ T8386]  <TASK>
[  220.796342][ T8386]  dump_stack_lvl+0x16c/0x1f0
[  220.796363][ T8386]  should_fail_ex+0x512/0x640
[  220.796385][ T8386]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  220.796401][ T8386]  ? __pfx_drm_debugfs_entry_open+0x10/0x10
[  220.796417][ T8386]  should_failslab+0xc2/0x120
[  220.796436][ T8386]  kmem_cache_alloc_noprof+0x75/0x6e0
[  220.796450][ T8386]  ? seq_open+0x55/0x170
[  220.796469][ T8386]  ? __pfx_drm_debugfs_entry_open+0x10/0x10
[  220.796483][ T8386]  ? __pfx_drm_clients_info+0x10/0x10
[  220.796498][ T8386]  ? seq_open+0x55/0x170
[  220.796514][ T8386]  seq_open+0x55/0x170
[  220.796530][ T8386]  ? __pfx_drm_clients_info+0x10/0x10
[  220.796546][ T8386]  single_open+0xfc/0x1f0
[  220.796564][ T8386]  drm_debugfs_entry_open+0x127/0x1c0
[  220.796581][ T8386]  full_proxy_open_regular+0x1b9/0x360
[  220.796603][ T8386]  do_dentry_open+0x982/0x1530
[  220.796619][ T8386]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  220.796642][ T8386]  vfs_open+0x82/0x3f0
[  220.796663][ T8386]  path_openat+0x1de4/0x2cb0
[  220.796685][ T8386]  ? __pfx_path_openat+0x10/0x10
[  220.796700][ T8386]  ? __lock_acquire+0xb8a/0x1c90
[  220.796723][ T8386]  do_filp_open+0x20b/0x470
[  220.796739][ T8386]  ? __pfx_do_filp_open+0x10/0x10
[  220.796766][ T8386]  ? alloc_fd+0x471/0x7d0
[  220.796785][ T8386]  do_sys_openat2+0x11b/0x1d0
[  220.796803][ T8386]  ? __pfx_do_sys_openat2+0x10/0x10
[  220.796829][ T8386]  __x64_sys_openat+0x174/0x210
[  220.796849][ T8386]  ? __pfx___x64_sys_openat+0x10/0x10
[  220.796875][ T8386]  do_syscall_64+0xcd/0xfa0
[  220.796893][ T8386]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.796907][ T8386] RIP: 0033:0x7f468058f7c9
[  220.796919][ T8386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.796932][ T8386] RSP: 002b:00007f4681409038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  220.796946][ T8386] RAX: ffffffffffffffda RBX: 00007f46807e5fa0 RCX: 00007f468058f7c9
[  220.796955][ T8386] RDX: 0000000000002100 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  220.796964][ T8386] RBP: 00007f4680613f91 R08: 0000000000000000 R09: 0000000000000000
[  220.796972][ T8386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  220.796980][ T8386] R13: 00007f46807e6038 R14: 00007f46807e5fa0 R15: 00007ffe82363ae8
[  220.797000][ T8386]  </TASK>
[  221.800613][ T8396] mkiss: ax0: crc mode is auto.
[  222.830945][   T30] audit: type=1804 audit(1764616414.410:13): pid=8416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.529" name="/newroot/sys/kernel/tracing/current_tracer" dev="tracefs" ino=1060 res=1 errno=0
[  222.854424][    C0] vkms_vblank_simulate: vblank timer overrun
[  223.357822][ T8422] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  224.148595][ T8442] netlink: 186 bytes leftover after parsing attributes in process `syz.2.535'.
[  224.316721][ T8452] netlink: 186 bytes leftover after parsing attributes in process `syz.2.535'.
[  224.667283][ T8457] synth uevent: /devices/virtual/tty/ttyv8: unknown uevent action string
[  224.734116][ T8457] tty ttyv8: uevent: failed to send synthetic uevent: -22
[  224.813331][ T8457] synth uevent: /devices/virtual/tty/ttyv8: unknown uevent action string
[  224.850068][ T8461] random: crng reseeded on system resumption

syzkaller
syzkaller login: [  224.899629][ T8457] tty ttyv8: uevent: failed to send synthetic uevent: -22
[  225.413921][ T8471] netlink: 148 bytes leftover after parsing attributes in process `syz.3.539'.
[  225.587158][ T8471] netlink: 148 bytes leftover after parsing attributes in process `syz.3.539'.
[  226.592249][ T8499] netlink: 342 bytes leftover after parsing attributes in process `syz.0.543'.
[  226.645205][ T8499] netlink: 342 bytes leftover after parsing attributes in process `syz.0.543'.
[  226.683641][ T8499] netlink: 98 bytes leftover after parsing attributes in process `syz.0.543'.
[  227.151556][ T8509] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  228.257884][ T8523] netlink: 8 bytes leftover after parsing attributes in process `syz.0.548'.
[  228.609744][ T8530] __vm_enough_memory: pid: 8530, comm: syz.2.549, bytes: 4398046511104 not enough memory for the allocation
[  229.382337][ T8545] random: crng reseeded on system resumption
[  230.126052][ T8550] netlink: 342 bytes leftover after parsing attributes in process `syz.0.553'.
[  230.236438][ T8551] netlink: 342 bytes leftover after parsing attributes in process `syz.0.553'.
[  231.715914][ T8557] netlink: 'syz.3.555': attribute type 1 has an invalid length.
[  231.777464][ T8560] FAULT_INJECTION: forcing a failure.
[  231.777464][ T8560] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  231.813665][ T8557] netlink: 17 bytes leftover after parsing attributes in process `syz.3.555'.
[  231.858510][ T8560] CPU: 0 UID: 0 PID: 8560 Comm: syz.4.556 Not tainted syzkaller #0 PREEMPT(full) 
[  231.858532][ T8560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  231.858541][ T8560] Call Trace:
[  231.858547][ T8560]  <TASK>
[  231.858552][ T8560]  dump_stack_lvl+0x16c/0x1f0
[  231.858575][ T8560]  should_fail_ex+0x512/0x640
[  231.858600][ T8560]  should_fail_alloc_page+0xe7/0x130
[  231.858621][ T8560]  prepare_alloc_pages+0x3c2/0x610
[  231.858642][ T8560]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  231.858659][ T8560]  ? __pfx_stack_trace_save+0x10/0x10
[  231.858676][ T8560]  ? stack_depot_save_flags+0x29/0x9c0
[  231.858696][ T8560]  ? find_held_lock+0x2b/0x80
[  231.858712][ T8560]  ? kasan_save_stack+0x42/0x60
[  231.858726][ T8560]  ? kasan_save_stack+0x33/0x60
[  231.858758][ T8560]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  231.858772][ T8560]  ? alloc_vmap_area+0x648/0x29e0
[  231.858789][ T8560]  ? __vmalloc_node_range_noprof+0x271/0x1480
[  231.858809][ T8560]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  231.858822][ T8560]  ? __vb2_queue_alloc+0x8c9/0x1280
[  231.858840][ T8560]  ? vb2_core_reqbufs+0xa90/0xfe0
[  231.858858][ T8560]  ? __vb2_init_fileio+0x3f1/0x1100
[  231.858877][ T8560]  ? vb2_core_poll+0x5ec/0x700
[  231.858894][ T8560]  ? vb2_poll+0x4b/0xe0
[  231.858910][ T8560]  ? vb2_fop_poll+0x10f/0x2c0
[  231.858934][ T8560]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  231.858957][ T8560]  ? policy_nodemask+0xea/0x4e0
[  231.858976][ T8560]  alloc_pages_mpol+0x1fb/0x550
[  231.858994][ T8560]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  231.859017][ T8560]  alloc_pages_noprof+0x131/0x390
[  231.859035][ T8560]  get_free_pages_noprof+0x10/0xb0
[  231.859051][ T8560]  kasan_populate_vmalloc+0x9f/0x2d0
[  231.859066][ T8560]  ? alloc_vmap_area+0x8b5/0x29e0
[  231.859086][ T8560]  alloc_vmap_area+0x960/0x29e0
[  231.859110][ T8560]  ? __pfx_alloc_vmap_area+0x10/0x10
[  231.859133][ T8560]  __get_vm_area_node+0x1ca/0x330
[  231.859155][ T8560]  __vmalloc_node_range_noprof+0x271/0x1480
[  231.859174][ T8560]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  231.859192][ T8560]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  231.859209][ T8560]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  231.859234][ T8560]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  231.859246][ T8560]  vmalloc_user_noprof+0x9e/0xe0
[  231.859265][ T8560]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  231.859278][ T8560]  vb2_vmalloc_alloc+0x135/0x3f0
[  231.859292][ T8560]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  231.859304][ T8560]  __vb2_queue_alloc+0x8c9/0x1280
[  231.859332][ T8560]  vb2_core_reqbufs+0xa90/0xfe0
[  231.859356][ T8560]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  231.859386][ T8560]  __vb2_init_fileio+0x3f1/0x1100
[  231.859405][ T8560]  ? lockdep_hardirqs_on+0x7c/0x110
[  231.859422][ T8560]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  231.859437][ T8560]  ? __pollwait+0x271/0x490
[  231.859453][ T8560]  vb2_core_poll+0x5ec/0x700
[  231.859474][ T8560]  vb2_poll+0x4b/0xe0
[  231.859493][ T8560]  vb2_fop_poll+0x10f/0x2c0
[  231.859512][ T8560]  ? __pfx_vb2_fop_poll+0x10/0x10
[  231.859530][ T8560]  v4l2_poll+0x163/0x320
[  231.859546][ T8560]  ? __pfx_v4l2_poll+0x10/0x10
[  231.859559][ T8560]  do_sys_poll+0x55c/0xdf0
[  231.859579][ T8560]  ? __pfx_do_sys_poll+0x10/0x10
[  231.859608][ T8560]  ? preempt_schedule_common+0x44/0xc0
[  231.859624][ T8560]  ? __pfx___pollwait+0x10/0x10
[  231.859639][ T8560]  ? __pfx_pollwake+0x10/0x10
[  231.859678][ T8560]  ? __pfx_timespec64_add_safe+0x10/0x10
[  231.859697][ T8560]  ? ktime_get_ts64+0x2d2/0x400
[  231.859715][ T8560]  ? read_tsc+0x9/0x20
[  231.859729][ T8560]  ? ktime_get_ts64+0x256/0x400
[  231.859761][ T8560]  __x64_sys_poll+0x1a6/0x450
[  231.859778][ T8560]  ? __pfx___x64_sys_poll+0x10/0x10
[  231.859797][ T8560]  do_syscall_64+0xcd/0xfa0
[  231.859815][ T8560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.859829][ T8560] RIP: 0033:0x7f27c178f7c9
[  231.859841][ T8560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.859855][ T8560] RSP: 002b:00007f27c25e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[  231.859870][ T8560] RAX: ffffffffffffffda RBX: 00007f27c19e5fa0 RCX: 00007f27c178f7c9
[  231.859880][ T8560] RDX: 0000000000000008 RSI: 0000000000000003 RDI: 0000200000000480
[  231.859888][ T8560] RBP: 00007f27c1813f91 R08: 0000000000000000 R09: 0000000000000000
[  231.859898][ T8560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  231.859906][ T8560] R13: 00007f27c19e6038 R14: 00007f27c19e5fa0 R15: 00007ffc26911ab8
[  231.859926][ T8560]  </TASK>
[  231.860057][ T8560] syz.4.556: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  234.196110][ T8575] FAULT_INJECTION: forcing a failure.
[  234.196110][ T8575] name failslab, interval 1, probability 0, space 0, times 0
[  234.359916][ T8575] CPU: 0 UID: 0 PID: 8575 Comm: syz.0.560 Not tainted syzkaller #0 PREEMPT(full) 
[  234.359939][ T8575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  234.359949][ T8575] Call Trace:
[  234.359954][ T8575]  <TASK>
[  234.359960][ T8575]  dump_stack_lvl+0x16c/0x1f0
[  234.359982][ T8575]  should_fail_ex+0x512/0x640
[  234.360004][ T8575]  ? __kvmalloc_node_noprof+0x12e/0x9c0
[  234.360024][ T8575]  should_failslab+0xc2/0x120
[  234.360042][ T8575]  __kvmalloc_node_noprof+0x141/0x9c0
[  234.360058][ T8575]  ? trace_kmalloc+0x2b/0xd0
[  234.360074][ T8575]  ? io_alloc_cache_init+0x38/0x170
[  234.360097][ T8575]  ? io_alloc_cache_init+0x38/0x170
[  234.360114][ T8575]  io_alloc_cache_init+0x38/0x170
[  234.360134][ T8575]  io_rsrc_cache_init+0x40/0x50
[  234.360152][ T8575]  io_uring_setup+0x68e/0x20e0
[  234.360170][ T8575]  ? __pfx_io_uring_setup+0x10/0x10
[  234.360185][ T8575]  ? do_futex+0x122/0x350
[  234.360203][ T8575]  ? __pfx_do_futex+0x10/0x10
[  234.360219][ T8575]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  234.360247][ T8575]  ? xfd_validate_state+0x61/0x180
[  234.360273][ T8575]  ? __pfx_do_writev+0x10/0x10
[  234.360292][ T8575]  __x64_sys_io_uring_setup+0xc2/0x170
[  234.360311][ T8575]  do_syscall_64+0xcd/0xfa0
[  234.360329][ T8575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.360343][ T8575] RIP: 0033:0x7f468058f7c9
[  234.360355][ T8575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.360368][ T8575] RSP: 002b:00007f4681409038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  234.360382][ T8575] RAX: ffffffffffffffda RBX: 00007f46807e5fa0 RCX: 00007f468058f7c9
[  234.360391][ T8575] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[  234.360399][ T8575] RBP: 00007f4680613f91 R08: 0000000000000000 R09: 0000000000000000
[  234.360407][ T8575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  234.360415][ T8575] R13: 00007f46807e6038 R14: 00007f46807e5fa0 R15: 00007ffe82363ae8
[  234.360434][ T8575]  </TASK>
[  234.800378][ T8560] ,cpuset=/,mems_allowed=0-1
[  234.821465][ T8560] CPU: 0 UID: 0 PID: 8560 Comm: syz.4.556 Not tainted syzkaller #0 PREEMPT(full) 
[  234.821489][ T8560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  234.821498][ T8560] Call Trace:
[  234.821503][ T8560]  <TASK>
[  234.821509][ T8560]  dump_stack_lvl+0x16c/0x1f0
[  234.821531][ T8560]  warn_alloc+0x248/0x3a0
[  234.821548][ T8560]  ? __pfx_warn_alloc+0x10/0x10
[  234.821563][ T8560]  ? kfree+0x2b8/0x6d0
[  234.821574][ T8560]  ? __get_vm_area_node+0x2cd/0x330
[  234.821597][ T8560]  ? __get_vm_area_node+0x2cd/0x330
[  234.821614][ T8560]  ? __get_vm_area_node+0x208/0x330
[  234.821636][ T8560]  __vmalloc_node_range_noprof+0xaf5/0x1480
[  234.821662][ T8560]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  234.821681][ T8560]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  234.821707][ T8560]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  234.821720][ T8560]  vmalloc_user_noprof+0x9e/0xe0
[  234.821739][ T8560]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  234.821752][ T8560]  vb2_vmalloc_alloc+0x135/0x3f0
[  234.821766][ T8560]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  234.821779][ T8560]  __vb2_queue_alloc+0x8c9/0x1280
[  234.821809][ T8560]  vb2_core_reqbufs+0xa90/0xfe0
[  234.821834][ T8560]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  234.821865][ T8560]  __vb2_init_fileio+0x3f1/0x1100
[  234.821885][ T8560]  ? lockdep_hardirqs_on+0x7c/0x110
[  234.821902][ T8560]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  234.821919][ T8560]  ? __pollwait+0x271/0x490
[  234.821934][ T8560]  vb2_core_poll+0x5ec/0x700
[  234.821956][ T8560]  vb2_poll+0x4b/0xe0
[  234.821975][ T8560]  vb2_fop_poll+0x10f/0x2c0
[  234.821996][ T8560]  ? __pfx_vb2_fop_poll+0x10/0x10
[  234.822014][ T8560]  v4l2_poll+0x163/0x320
[  234.822031][ T8560]  ? __pfx_v4l2_poll+0x10/0x10
[  234.822045][ T8560]  do_sys_poll+0x55c/0xdf0
[  234.822065][ T8560]  ? __pfx_do_sys_poll+0x10/0x10
[  234.822095][ T8560]  ? preempt_schedule_common+0x44/0xc0
[  234.822112][ T8560]  ? __pfx___pollwait+0x10/0x10
[  234.822127][ T8560]  ? __pfx_pollwake+0x10/0x10
[  234.822167][ T8560]  ? __pfx_timespec64_add_safe+0x10/0x10
[  234.822188][ T8560]  ? ktime_get_ts64+0x2d2/0x400
[  234.822207][ T8560]  ? read_tsc+0x9/0x20
[  234.822223][ T8560]  ? ktime_get_ts64+0x256/0x400
[  234.822250][ T8560]  __x64_sys_poll+0x1a6/0x450
[  234.822264][ T8560]  ? __pfx___x64_sys_poll+0x10/0x10
[  234.822284][ T8560]  do_syscall_64+0xcd/0xfa0
[  234.822302][ T8560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.822316][ T8560] RIP: 0033:0x7f27c178f7c9
[  234.822329][ T8560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  234.822342][ T8560] RSP: 002b:00007f27c25e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[  234.822356][ T8560] RAX: ffffffffffffffda RBX: 00007f27c19e5fa0 RCX: 00007f27c178f7c9
[  234.822365][ T8560] RDX: 0000000000000008 RSI: 0000000000000003 RDI: 0000200000000480
[  234.822374][ T8560] RBP: 00007f27c1813f91 R08: 0000000000000000 R09: 0000000000000000
[  234.822383][ T8560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  234.822391][ T8560] R13: 00007f27c19e6038 R14: 00007f27c19e5fa0 R15: 00007ffc26911ab8
[  234.822410][ T8560]  </TASK>
[  234.822415][ T8560] Mem-Info:
[  235.417758][   T30] audit: type=1800 audit(1764616427.025:14): pid=8588 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.561" name="lu_gp_id" dev="configfs" ino=23989 res=0 errno=0
[  236.314395][ T8562] zswap: compressor  not available
[  236.344815][ T8560] active_anon:7826 inactive_anon:44030 isolated_anon:0
[  236.344815][ T8560]  active_file:20512 inactive_file:39624 isolated_file:0
[  236.344815][ T8560]  unevictable:768 dirty:1936 writeback:0
[  236.344815][ T8560]  slab_reclaimable:11538 slab_unreclaimable:95774
[  236.344815][ T8560]  mapped:53934 shmem:39831 pagetables:1304
[  236.344815][ T8560]  sec_pagetables:0 bounce:0
[  236.344815][ T8560]  kernel_misc_reclaimable:0
[  236.344815][ T8560]  free:1263823 free_pcp:13621 free_cma:0
[  236.390930][    C0] vkms_vblank_simulate: vblank timer overrun
[  236.587363][ T8560] Node 0 active_anon:31360kB inactive_anon:181784kB active_file:82048kB inactive_file:158364kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:181812kB dirty:7748kB writeback:0kB shmem:165672kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:10240kB kernel_stack:12656kB pagetables:5048kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  236.620600][    C0] vkms_vblank_simulate: vblank timer overrun
[  236.777346][ T8560] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:156kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  236.807372][    C0] vkms_vblank_simulate: vblank timer overrun
[  236.935822][ T8560] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  236.965787][    C0] vkms_vblank_simulate: vblank timer overrun
[  237.078974][ T8602] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  237.086953][ T8602] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  237.125800][ T8602] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  237.135759][ T8560] lowmem_reserve[]: 0 2485 2487 2487 2487
[  237.149594][ T8602] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  237.155596][ T8560] Node 0 DMA32 free:1128456kB boost:0kB min:34364kB low:42952kB high:51540kB reserved_highatomic:0KB free_highatomic:0KB active_anon:31360kB inactive_anon:202272kB active_file:77996kB inactive_file:156316kB unevictable:1536kB writepending:3664kB zspages:40kB present:3129332kB managed:2545056kB mlocked:0kB bounce:0kB free_pcp:28648kB local_pcp:28648kB free_cma:0kB
[  237.189656][    C0] vkms_vblank_simulate: vblank timer overrun
[  237.220924][ T8602] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  237.388621][ T8560] lowmem_reserve[]: 0 0 1 1 1
[  237.411448][ T8560] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  237.441080][    C0] vkms_vblank_simulate: vblank timer overrun
[  237.607024][ T8560] lowmem_reserve[]: 0 0 0 0 0
[  237.636974][ T8560] Node 1 Normal free:3883592kB boost:0kB min:55512kB low:69388kB high:83264kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:27384kB local_pcp:27384kB free_cma:0kB
[  237.669454][    C0] vkms_vblank_simulate: vblank timer overrun
[  237.776997][ T8560] lowmem_reserve[]: 0 0 0 0 0
[  237.798660][ T8560] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  237.857900][ T8560] Node 0 DMA32: 563*4kB (UE) 562*8kB (UE) 167*16kB (UE) 839*32kB (UE) 164*64kB (UE) 33*128kB (U) 11*256kB (UE) 1*512kB (M) 8*1024kB (UME) 3*2048kB (UE) 258*4096kB (UM) = 1125420kB
[  237.941406][ T8560] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  237.995950][ T8560] Node 1 Normal: 147*4kB (UE) 38*8kB (UME) 32*16kB (UE) 263*32kB (UE) 87*64kB (UE) 14*128kB (UE) 3*256kB (UE) 2*512kB (UM) 2*1024kB (ME) 2*2048kB (ME) 942*4096kB (M) = 3883548kB
[  238.087144][ T8560] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  238.122947][ T8612] svc: failed to register nfsdv3 RPC service (errno 111).
[  238.137805][ T8560] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  238.172018][ T8560] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  238.215200][ T8560] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  238.282325][ T8612] svc: failed to register nfsaclv3 RPC service (errno 111).
[  238.290197][ T8560] 104942 total pagecache pages
[  238.337791][ T8560] 10 pages in swap cache
[  238.362010][ T8560] Free swap  = 124952kB
[  238.384367][ T8560] Total swap = 124996kB
[  238.414127][ T8560] 2097051 pages RAM
[  238.437631][ T8560] 0 pages HighMem/MovableOnly
[  238.458318][ T8560] 428697 pages reserved
[  238.490032][ T8560] 0 pages cma reserved
[  238.575227][ T7833] Bluetooth: hci0: command 0x0c1a tx timeout
[  239.042977][ T8629] bond0: invalid ARP target specified
[  239.129428][ T7833] Bluetooth: hci2: command 0x0c1a tx timeout
[  239.135864][ T6190] Bluetooth: hci1: command 0x0c1a tx timeout
[  239.209256][ T7833] Bluetooth: hci3: command 0x0c1a tx timeout
[  239.289813][ T7833] Bluetooth: hci4: command 0x041b tx timeout
[  241.346931][ T8678] FAULT_INJECTION: forcing a failure.
[  241.346931][ T8678] name fail_futex, interval 1, probability 0, space 0, times 0
[  241.364606][   T30] audit: type=1800 audit(1764616433.086:15): pid=8679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.588" name="features" dev="configfs" ino=24549 res=0 errno=0
[  241.475050][ T8678] CPU: 0 UID: 0 PID: 8678 Comm: syz.3.587 Not tainted syzkaller #0 PREEMPT(full) 
[  241.475074][ T8678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  241.475083][ T8678] Call Trace:
[  241.475089][ T8678]  <TASK>
[  241.475094][ T8678]  dump_stack_lvl+0x16c/0x1f0
[  241.475118][ T8678]  should_fail_ex+0x512/0x640
[  241.475142][ T8678]  get_futex_key+0x1d0/0x1560
[  241.475163][ T8678]  ? __pfx_get_futex_key+0x10/0x10
[  241.475186][ T8678]  futex_wake+0xea/0x530
[  241.475204][ T8678]  ? trace_kmem_cache_alloc+0x28/0xc0
[  241.475226][ T8678]  ? __pfx_futex_wake+0x10/0x10
[  241.475249][ T8678]  ? errseq_sample+0x53/0x70
[  241.475261][ T8678]  ? file_init_path+0x4fe/0x760
[  241.475282][ T8678]  do_futex+0x1e3/0x350
[  241.475300][ T8678]  ? __pfx_do_futex+0x10/0x10
[  241.475317][ T8678]  ? fd_install+0x225/0x750
[  241.475335][ T8678]  __x64_sys_futex+0x1e0/0x4c0
[  241.475353][ T8678]  ? __sys_socket+0xac/0x260
[  241.475371][ T8678]  ? __pfx___x64_sys_futex+0x10/0x10
[  241.475389][ T8678]  ? xfd_validate_state+0x61/0x180
[  241.475407][ T8678]  ? __pfx_do_writev+0x10/0x10
[  241.475425][ T8678]  do_syscall_64+0xcd/0xfa0
[  241.475443][ T8678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.475457][ T8678] RIP: 0033:0x7f3943b8f7c9
[  241.475469][ T8678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  241.475481][ T8678] RSP: 002b:00007f39449730e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  241.475495][ T8678] RAX: ffffffffffffffda RBX: 00007f3943de5fa8 RCX: 00007f3943b8f7c9
[  241.475504][ T8678] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3943de5fac
[  241.475512][ T8678] RBP: 00007f3943de5fa0 R08: 00007f3944974000 R09: 0000000000000000
[  241.475520][ T8678] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  241.475528][ T8678] R13: 00007f3943de6038 R14: 00007fffa7fbc2d0 R15: 00007fffa7fbc3b8
[  241.475546][ T8678]  </TASK>
[  243.501450][ T8711] netlink: 338 bytes leftover after parsing attributes in process `syz.3.594'.
[  251.412526][ T8845] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  251.462561][ T8846] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  251.524959][ T8846] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  251.605487][ T8845] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  251.612814][ T8845] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  251.836635][ T8857] netlink: 'syz.0.621': attribute type 27 has an invalid length.
[  251.960972][ T8857] netlink: 334 bytes leftover after parsing attributes in process `syz.0.621'.
[  252.154556][ T8847] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  252.184338][ T8847] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  252.226634][ T8847] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  252.266617][ T8847] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  252.302975][ T8847] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  252.821446][ T8869] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8)
[  253.776075][ T7833] Bluetooth: hci0: command 0x0c1a tx timeout
[  254.005852][ T8883] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  254.254271][ T7833] Bluetooth: hci2: command 0x0c1a tx timeout
[  254.260483][ T6190] Bluetooth: hci1: command 0x0c1a tx timeout
[  254.270079][ T8893] FAULT_INJECTION: forcing a failure.
[  254.270079][ T8893] name failslab, interval 1, probability 0, space 0, times 0
[  254.332059][ T7833] Bluetooth: hci4: command 0x041b tx timeout
[  254.338188][ T6190] Bluetooth: hci3: command 0x0c1a tx timeout
[  254.379752][ T8893] CPU: 1 UID: 0 PID: 8893 Comm: syz.0.628 Not tainted syzkaller #0 PREEMPT(full) 
[  254.379791][ T8893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  254.379808][ T8893] Call Trace:
[  254.379817][ T8893]  <TASK>
[  254.379827][ T8893]  dump_stack_lvl+0x16c/0x1f0
[  254.379865][ T8893]  should_fail_ex+0x512/0x640
[  254.379903][ T8893]  ? fs_reclaim_acquire+0xae/0x150
[  254.379940][ T8893]  should_failslab+0xc2/0x120
[  254.379975][ T8893]  kmem_cache_alloc_noprof+0x75/0x6e0
[  254.380001][ T8893]  ? __pfx_map_id_range_down+0x10/0x10
[  254.380023][ T8893]  ? security_inode_alloc+0x3b/0x2b0
[  254.380065][ T8893]  ? security_inode_alloc+0x3b/0x2b0
[  254.380100][ T8893]  security_inode_alloc+0x3b/0x2b0
[  254.380138][ T8893]  inode_init_always_gfp+0xce4/0x1030
[  254.380172][ T8893]  alloc_inode+0x86/0x240
[  254.380205][ T8893]  new_inode+0x22/0x1c0
[  254.380240][ T8893]  proc_pid_make_inode+0x22/0x160
[  254.380275][ T8893]  proc_pident_instantiate+0x85/0x310
[  254.380312][ T8893]  proc_pident_lookup+0x1f5/0x270
[  254.380352][ T8893]  __lookup_slow+0x251/0x460
[  254.380389][ T8893]  ? __pfx___lookup_slow+0x10/0x10
[  254.380446][ T8893]  ? lookup_fast+0x156/0x610
[  254.380474][ T8893]  walk_component+0x353/0x5b0
[  254.380502][ T8893]  link_path_walk+0x627/0xe20
[  254.380539][ T8893]  path_openat+0x1b0/0x2cb0
[  254.380578][ T8893]  ? __pfx_path_openat+0x10/0x10
[  254.380609][ T8893]  ? __lock_acquire+0xb8a/0x1c90
[  254.380662][ T8893]  do_filp_open+0x20b/0x470
[  254.380692][ T8893]  ? __pfx_do_filp_open+0x10/0x10
[  254.380730][ T8893]  ? __pfx_kfree_link+0x10/0x10
[  254.380770][ T8893]  ? alloc_fd+0x471/0x7d0
[  254.380803][ T8893]  do_sys_openat2+0x11b/0x1d0
[  254.380841][ T8893]  ? __pfx_do_sys_openat2+0x10/0x10
[  254.380892][ T8893]  __x64_sys_openat+0x174/0x210
[  254.380926][ T8893]  ? __pfx___x64_sys_openat+0x10/0x10
[  254.380972][ T8893]  do_syscall_64+0xcd/0xfa0
[  254.381003][ T8893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.381028][ T8893] RIP: 0033:0x7f468058e010
[  254.381048][ T8893] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 69 95 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 bc 95 02 00 8b 44
[  254.381074][ T8893] RSP: 002b:00007f4681408f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  254.381098][ T8893] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f468058e010
[  254.381113][ T8893] RDX: 0000000000000002 RSI: 00007f4681408fa0 RDI: 00000000ffffff9c
[  254.381128][ T8893] RBP: 00007f4681408fa0 R08: 0000000000000000 R09: 0000000000000000
[  254.381144][ T8893] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  254.381158][ T8893] R13: 00007f46807e6038 R14: 00007f46807e5fa0 R15: 00007ffe82363ae8
[  254.381193][ T8893]  </TASK>
[  255.222565][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  255.229159][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  255.495450][ T8917] netlink: 342 bytes leftover after parsing attributes in process `syz.4.634'.
[  255.571375][ T8921] netlink: 342 bytes leftover after parsing attributes in process `syz.4.634'.
[  255.616050][ T8921] netlink: 342 bytes leftover after parsing attributes in process `syz.4.634'.
[  255.677648][ T8921] netlink: 342 bytes leftover after parsing attributes in process `syz.4.634'.
[  255.699331][ T8921] netlink: 342 bytes leftover after parsing attributes in process `syz.4.634'.
[  255.772939][ T8933] netlink: 186 bytes leftover after parsing attributes in process `syz.3.637'.
[  256.116171][ T8942] netlink: 28 bytes leftover after parsing attributes in process `syz.4.640'.
[  257.557358][ T8958] hub 8-0:1.0: USB hub found
[  257.607222][ T8958] hub 8-0:1.0: 1 port detected
[  258.738833][   T30] audit: type=1800 audit(1764616450.557:16): pid=8972 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.647" name="version" dev="configfs" ino=25666 res=0 errno=0
[  260.148483][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  260.155324][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  260.211881][ T8980] FAULT_INJECTION: forcing a failure.
[  260.211881][ T8980] name failslab, interval 1, probability 0, space 0, times 0
[  260.255646][ T8982] netlink: 330 bytes leftover after parsing attributes in process `syz.0.651'.
[  260.284862][ T8980] CPU: 1 UID: 0 PID: 8980 Comm: syz.2.649 Not tainted syzkaller #0 PREEMPT(full) 
[  260.284898][ T8980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  260.284914][ T8980] Call Trace:
[  260.284923][ T8980]  <TASK>
[  260.284933][ T8980]  dump_stack_lvl+0x16c/0x1f0
[  260.284971][ T8980]  should_fail_ex+0x512/0x640
[  260.285008][ T8980]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  260.285041][ T8980]  should_failslab+0xc2/0x120
[  260.285076][ T8980]  kmem_cache_alloc_noprof+0x75/0x6e0
[  260.285103][ T8980]  ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10
[  260.285129][ T8980]  ? acpi_ut_create_thread_state+0x6d/0x170
[  260.285176][ T8980]  ? acpi_ut_create_thread_state+0x6d/0x170
[  260.285219][ T8980]  acpi_ut_create_thread_state+0x6d/0x170
[  260.285261][ T8980]  acpi_ps_parse_aml+0x12e/0x1170
[  260.285301][ T8980]  ? acpi_ut_ptr_exit+0xfe/0x180
[  260.285332][ T8980]  acpi_ps_execute_method+0x5c4/0xe90
[  260.285366][ T8980]  acpi_ns_evaluate+0x98c/0x16d0
[  260.285398][ T8980]  acpi_evaluate_object+0x4ca/0xdf0
[  260.285442][ T8980]  ? __pfx_acpi_evaluate_object+0x10/0x10
[  260.285479][ T8980]  ? __mutex_trylock_common+0xe9/0x250
[  260.285524][ T8980]  acpi_evaluate_integer+0xdd/0x200
[  260.285556][ T8980]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[  260.285604][ T8980]  ? __pfx_status_show+0x10/0x10
[  260.285639][ T8980]  status_show+0xa0/0x120
[  260.285674][ T8980]  ? __pfx_status_show+0x10/0x10
[  260.285718][ T8980]  dev_attr_show+0x56/0xe0
[  260.285757][ T8980]  ? __pfx_dev_attr_show+0x10/0x10
[  260.285791][ T8980]  sysfs_kf_seq_show+0x216/0x3e0
[  260.285829][ T8980]  seq_read_iter+0x50e/0x12d0
[  260.285889][ T8980]  kernfs_fop_read_iter+0x46c/0x610
[  260.285916][ T8980]  ? rw_verify_area+0xcf/0x6c0
[  260.285946][ T8980]  vfs_read+0x8bf/0xcf0
[  260.285980][ T8980]  ? __pfx___mutex_lock+0x10/0x10
[  260.286016][ T8980]  ? __pfx_vfs_read+0x10/0x10
[  260.286069][ T8980]  ksys_read+0x12a/0x250
[  260.286098][ T8980]  ? __pfx_ksys_read+0x10/0x10
[  260.286136][ T8980]  do_syscall_64+0xcd/0xfa0
[  260.286171][ T8980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.286205][ T8980] RIP: 0033:0x7fce7158f7c9
[  260.286227][ T8980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.286252][ T8980] RSP: 002b:00007fce72404038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  260.286277][ T8980] RAX: ffffffffffffffda RBX: 00007fce717e5fa0 RCX: 00007fce7158f7c9
[  260.286296][ T8980] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000004
[  260.286312][ T8980] RBP: 00007fce71613f91 R08: 0000000000000000 R09: 0000000000000000
[  260.286329][ T8980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  260.286346][ T8980] R13: 00007fce717e6038 R14: 00007fce717e5fa0 R15: 00007ffda64a9a48
[  260.286384][ T8980]  </TASK>
[  260.573625][ T8980] ACPI Error: ffff888029b7d000 walk still has a scope list (20250807/dswstate-694)
[  261.184711][ T8998] netlink: 'syz.2.654': attribute type 10 has an invalid length.
[  261.336002][ T9005] hub 1-0:1.0: USB hub found
[  261.380032][ T9005] hub 1-0:1.0: 1 port detected
[  262.733250][ T9017] RDS: rds_bind could not find a transport for ::ffff:172.30.1.5, load rds_tcp or rds_rdma?
[  262.768354][ T9017] RDS: rds_bind could not find a transport for ::ffff:172.30.1.5, load rds_tcp or rds_rdma?
[  264.544776][ T9065] FAULT_INJECTION: forcing a failure.
[  264.544776][ T9065] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  264.558386][ T9065] CPU: 1 UID: 0 PID: 9065 Comm: syz.0.673 Not tainted syzkaller #0 PREEMPT(full) 
[  264.558407][ T9065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  264.558416][ T9065] Call Trace:
[  264.558422][ T9065]  <TASK>
[  264.558428][ T9065]  dump_stack_lvl+0x16c/0x1f0
[  264.558451][ T9065]  should_fail_ex+0x512/0x640
[  264.558475][ T9065]  should_fail_alloc_page+0xe7/0x130
[  264.558497][ T9065]  prepare_alloc_pages+0x3c2/0x610
[  264.558518][ T9065]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  264.558535][ T9065]  ? do_user_addr_fault+0x843/0x1370
[  264.558554][ T9065]  ? irqentry_exit+0x3b/0x90
[  264.558569][ T9065]  ? lockdep_hardirqs_on+0x7c/0x110
[  264.558585][ T9065]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  264.558606][ T9065]  ? rep_movs_alternative+0x4a/0x90
[  264.558627][ T9065]  ? _copy_from_iter+0x15d/0x1720
[  264.558648][ T9065]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  264.558671][ T9065]  ? policy_nodemask+0xea/0x4e0
[  264.558690][ T9065]  alloc_pages_mpol+0x1fb/0x550
[  264.558709][ T9065]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  264.558731][ T9065]  alloc_pages_noprof+0x131/0x390
[  264.558750][ T9065]  anon_pipe_write+0xeb0/0x1bd0
[  264.558768][ T9065]  ? futex_hash+0x250/0x380
[  264.558788][ T9065]  ? __pfx_anon_pipe_write+0x10/0x10
[  264.558804][ T9065]  ? common_file_perm+0x1a9/0x340
[  264.558819][ T9065]  ? bpf_lsm_file_permission+0x9/0x10
[  264.558834][ T9065]  ? security_file_permission+0x71/0x210
[  264.558850][ T9065]  ? rw_verify_area+0xcf/0x6c0
[  264.558864][ T9065]  vfs_write+0x7d3/0x11d0
[  264.558879][ T9065]  ? __pfx_anon_pipe_write+0x10/0x10
[  264.558897][ T9065]  ? __pfx_vfs_write+0x10/0x10
[  264.558910][ T9065]  ? find_held_lock+0x2b/0x80
[  264.558935][ T9065]  ksys_write+0x1f8/0x250
[  264.558950][ T9065]  ? __pfx_ksys_write+0x10/0x10
[  264.558970][ T9065]  do_syscall_64+0xcd/0xfa0
[  264.558987][ T9065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.559001][ T9065] RIP: 0033:0x7f468058f7c9
[  264.559013][ T9065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.559027][ T9065] RSP: 002b:00007f4681409038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  264.559041][ T9065] RAX: ffffffffffffffda RBX: 00007f46807e5fa0 RCX: 00007f468058f7c9
[  264.559050][ T9065] RDX: 0000000004000000 RSI: 0000000000000000 RDI: 0000000000000000
[  264.559059][ T9065] RBP: 00007f4680613f91 R08: 0000000000000000 R09: 0000000000000000
[  264.559067][ T9065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  264.559075][ T9065] R13: 00007f46807e6038 R14: 00007f46807e5fa0 R15: 00007ffe82363ae8
[  264.559093][ T9065]  </TASK>
[  267.718102][ T9120] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1.1.4294967293), cmd(7)
[  267.772571][ T9115] zswap: compressor  not available
[  268.319378][ T9129] aoe: could not set interface list: too many interfaces
[  268.467918][ T9129] aoe: could not set interface list: too many interfaces
[  268.475117][ T9129] aoe: could not set interface list: too many interfaces
[  272.353582][ T9195] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE�r��Ҍy�*�"�l-���y�–��
[  273.235575][ T9214] futex_wake_op: syz.3.710 tries to shift op by -2048; fix this program
[  273.262036][ T9214] netlink: 338 bytes leftover after parsing attributes in process `syz.3.710'.
[  274.320383][ T9235] FAULT_INJECTION: forcing a failure.
[  274.320383][ T9235] name failslab, interval 1, probability 0, space 0, times 0
[  274.405765][ T9235] CPU: 1 UID: 0 PID: 9235 Comm: syz.3.716 Not tainted syzkaller #0 PREEMPT(full) 
[  274.405802][ T9235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  274.405819][ T9235] Call Trace:
[  274.405829][ T9235]  <TASK>
[  274.405840][ T9235]  dump_stack_lvl+0x16c/0x1f0
[  274.405876][ T9235]  should_fail_ex+0x512/0x640
[  274.405912][ T9235]  ? __kmalloc_cache_noprof+0x5f/0x780
[  274.405939][ T9235]  should_failslab+0xc2/0x120
[  274.405975][ T9235]  __kmalloc_cache_noprof+0x72/0x780
[  274.406002][ T9235]  ? rfkill_fop_open+0x1b6/0x750
[  274.406036][ T9235]  ? rfkill_fop_open+0x1b6/0x750
[  274.406060][ T9235]  rfkill_fop_open+0x1b6/0x750
[  274.406090][ T9235]  ? __pfx_rfkill_fop_open+0x10/0x10
[  274.406120][ T9235]  misc_open+0x26d/0x450
[  274.406159][ T9235]  ? __pfx_misc_open+0x10/0x10
[  274.406196][ T9235]  chrdev_open+0x234/0x6a0
[  274.406228][ T9235]  ? __pfx_apparmor_file_open+0x10/0x10
[  274.406267][ T9235]  ? __pfx_chrdev_open+0x10/0x10
[  274.406302][ T9235]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  274.406348][ T9235]  do_dentry_open+0x982/0x1530
[  274.406382][ T9235]  ? __pfx_chrdev_open+0x10/0x10
[  274.406424][ T9235]  vfs_open+0x82/0x3f0
[  274.406467][ T9235]  path_openat+0x1de4/0x2cb0
[  274.406511][ T9235]  ? __pfx_path_openat+0x10/0x10
[  274.406543][ T9235]  ? __lock_acquire+0xb8a/0x1c90
[  274.406584][ T9235]  do_filp_open+0x20b/0x470
[  274.406615][ T9235]  ? __pfx_do_filp_open+0x10/0x10
[  274.406674][ T9235]  ? alloc_fd+0x471/0x7d0
[  274.406712][ T9235]  do_sys_openat2+0x11b/0x1d0
[  274.406750][ T9235]  ? __pfx_do_sys_openat2+0x10/0x10
[  274.406803][ T9235]  __x64_sys_openat+0x174/0x210
[  274.406843][ T9235]  ? __pfx___x64_sys_openat+0x10/0x10
[  274.406898][ T9235]  do_syscall_64+0xcd/0xfa0
[  274.406933][ T9235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.406961][ T9235] RIP: 0033:0x7f3943b8f7c9
[  274.406983][ T9235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.407009][ T9235] RSP: 002b:00007f3944973038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  274.407034][ T9235] RAX: ffffffffffffffda RBX: 00007f3943de5fa0 RCX: 00007f3943b8f7c9
[  274.407053][ T9235] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  274.407070][ T9235] RBP: 00007f3943c13f91 R08: 0000000000000000 R09: 0000000000000000
[  274.407086][ T9235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  274.407102][ T9235] R13: 00007f3943de6038 R14: 00007f3943de5fa0 R15: 00007fffa7fbc3b8
[  274.407142][ T9235]  </TASK>
[  275.093181][ T9243] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  279.263430][ T9315] netlink: 28 bytes leftover after parsing attributes in process `syz.3.735'.
[  279.594834][ T9315] veth1_macvtap: left promiscuous mode
[  280.705545][ T9368] FAULT_INJECTION: forcing a failure.
[  280.705545][ T9368] name failslab, interval 1, probability 0, space 0, times 0
[  280.772617][ T9368] CPU: 0 UID: 0 PID: 9368 Comm: syz.0.747 Not tainted syzkaller #0 PREEMPT(full) 
[  280.772660][ T9368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  280.772675][ T9368] Call Trace:
[  280.772683][ T9368]  <TASK>
[  280.772693][ T9368]  dump_stack_lvl+0x16c/0x1f0
[  280.772728][ T9368]  should_fail_ex+0x512/0x640
[  280.772763][ T9368]  ? __kmalloc_noprof+0xca/0x880
[  280.772790][ T9368]  should_failslab+0xc2/0x120
[  280.772823][ T9368]  __kmalloc_noprof+0xdd/0x880
[  280.772847][ T9368]  ? ops_init+0x77/0x5f0
[  280.772880][ T9368]  ? ops_init+0x77/0x5f0
[  280.772903][ T9368]  ops_init+0x77/0x5f0
[  280.772930][ T9368]  setup_net+0x100/0x390
[  280.772956][ T9368]  ? __pfx_setup_net+0x10/0x10
[  280.772984][ T9368]  ? debug_mutex_init+0x37/0x70
[  280.773015][ T9368]  copy_net_ns+0x2f8/0x690
[  280.773047][ T9368]  create_new_namespaces+0x3ea/0xa90
[  280.773084][ T9368]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  280.773116][ T9368]  ksys_unshare+0x45b/0xa40
[  280.773149][ T9368]  ? __pfx_ksys_unshare+0x10/0x10
[  280.773182][ T9368]  ? xfd_validate_state+0x61/0x180
[  280.773226][ T9368]  __x64_sys_unshare+0x31/0x40
[  280.773257][ T9368]  do_syscall_64+0xcd/0xfa0
[  280.773290][ T9368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.773315][ T9368] RIP: 0033:0x7f468058f7c9
[  280.773335][ T9368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.773358][ T9368] RSP: 002b:00007f4681409038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  280.773382][ T9368] RAX: ffffffffffffffda RBX: 00007f46807e5fa0 RCX: 00007f468058f7c9
[  280.773400][ T9368] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  280.773414][ T9368] RBP: 00007f4680613f91 R08: 0000000000000000 R09: 0000000000000000
[  280.773429][ T9368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  280.773444][ T9368] R13: 00007f46807e6038 R14: 00007f46807e5fa0 R15: 00007ffe82363ae8
[  280.773480][ T9368]  </TASK>
[  281.878514][ T9387] FAULT_INJECTION: forcing a failure.
[  281.878514][ T9387] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  281.906638][ T9387] CPU: 1 UID: 0 PID: 9387 Comm: syz.3.750 Not tainted syzkaller #0 PREEMPT(full) 
[  281.906674][ T9387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  281.906691][ T9387] Call Trace:
[  281.906700][ T9387]  <TASK>
[  281.906711][ T9387]  dump_stack_lvl+0x16c/0x1f0
[  281.906746][ T9387]  should_fail_ex+0x512/0x640
[  281.906790][ T9387]  should_fail_alloc_page+0xe7/0x130
[  281.906826][ T9387]  prepare_alloc_pages+0x3c2/0x610
[  281.906867][ T9387]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  281.906899][ T9387]  ? stack_trace_save+0x8e/0xc0
[  281.906927][ T9387]  ? __pfx_stack_trace_save+0x10/0x10
[  281.906954][ T9387]  ? do_raw_spin_lock+0x12c/0x2b0
[  281.906990][ T9387]  ? stack_depot_save_flags+0x29/0x9c0
[  281.907027][ T9387]  ? find_held_lock+0x2b/0x80
[  281.907059][ T9387]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  281.907086][ T9387]  ? __kasan_kmalloc+0xaa/0xb0
[  281.907114][ T9387]  ? copy_splice_read+0x1a8/0xc20
[  281.907139][ T9387]  ? splice_direct_to_actor+0x2a1/0xa30
[  281.907163][ T9387]  ? do_splice_direct+0x174/0x240
[  281.907187][ T9387]  ? do_sendfile+0xb06/0xe50
[  281.907210][ T9387]  ? __x64_sys_sendfile64+0x1d8/0x220
[  281.907246][ T9387]  ? do_syscall_64+0xcd/0xfa0
[  281.907275][ T9387]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.907330][ T9387]  alloc_pages_bulk_noprof+0x77a/0x1410
[  281.907370][ T9387]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  281.907408][ T9387]  ? splice_from_pipe_next+0x1f7/0x5d0
[  281.907434][ T9387]  ? copy_splice_read+0x1a8/0xc20
[  281.907467][ T9387]  copy_splice_read+0x1e1/0xc20
[  281.907579][ T9387]  ? __pfx_pipe_to_null+0x10/0x10
[  281.907616][ T9387]  ? __pfx_copy_splice_read+0x10/0x10
[  281.907640][ T9387]  ? pipe_unlock+0x4a/0x70
[  281.907670][ T9387]  ? __pfx_splice_from_pipe+0x10/0x10
[  281.907707][ T9387]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  281.907737][ T9387]  ? __pfx_copy_splice_read+0x10/0x10
[  281.907761][ T9387]  do_splice_read+0x285/0x370
[  281.907792][ T9387]  splice_direct_to_actor+0x2a1/0xa30
[  281.907821][ T9387]  ? __pfx_direct_splice_actor+0x10/0x10
[  281.907855][ T9387]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  281.907886][ T9387]  ? futex_private_hash_put+0xd5/0x190
[  281.907923][ T9387]  do_splice_direct+0x174/0x240
[  281.907950][ T9387]  ? __pfx_do_splice_direct+0x10/0x10
[  281.907978][ T9387]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  281.908022][ T9387]  ? bpf_lsm_file_permission+0x9/0x10
[  281.908052][ T9387]  ? security_file_permission+0x71/0x210
[  281.908082][ T9387]  ? rw_verify_area+0xcf/0x6c0
[  281.908111][ T9387]  do_sendfile+0xb06/0xe50
[  281.908144][ T9387]  ? __pfx_do_sendfile+0x10/0x10
[  281.908172][ T9387]  ? __pfx___might_resched+0x10/0x10
[  281.908203][ T9387]  ? __x64_sys_futex+0x1e0/0x4c0
[  281.908236][ T9387]  ? __x64_sys_futex+0x1e9/0x4c0
[  281.908274][ T9387]  __x64_sys_sendfile64+0x1d8/0x220
[  281.908307][ T9387]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  281.908354][ T9387]  do_syscall_64+0xcd/0xfa0
[  281.908388][ T9387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.908415][ T9387] RIP: 0033:0x7f3943b8f7c9
[  281.908438][ T9387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.908464][ T9387] RSP: 002b:00007f3944973038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  281.908497][ T9387] RAX: ffffffffffffffda RBX: 00007f3943de5fa0 RCX: 00007f3943b8f7c9
[  281.908516][ T9387] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008
[  281.908533][ T9387] RBP: 00007f3943c13f91 R08: 0000000000000000 R09: 0000000000000000
[  281.908549][ T9387] R10: 0010000800000003 R11: 0000000000000246 R12: 0000000000000000
[  281.908567][ T9387] R13: 00007f3943de6038 R14: 00007f3943de5fa0 R15: 00007fffa7fbc3b8
[  281.908605][ T9387]  </TASK>
[  282.861988][ T9412] binder: 9411:9412 ioctl c00c620f 200000000480 returned -22
[  283.402184][ T9438] FAULT_INJECTION: forcing a failure.
[  283.402184][ T9438] name failslab, interval 1, probability 0, space 0, times 0
[  283.474359][ T9438] CPU: 0 UID: 0 PID: 9438 Comm: syz.2.753 Not tainted syzkaller #0 PREEMPT(full) 
[  283.474395][ T9438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  283.474411][ T9438] Call Trace:
[  283.474420][ T9438]  <TASK>
[  283.474431][ T9438]  dump_stack_lvl+0x16c/0x1f0
[  283.474469][ T9438]  should_fail_ex+0x512/0x640
[  283.474506][ T9438]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  283.474535][ T9438]  should_failslab+0xc2/0x120
[  283.474569][ T9438]  kmem_cache_alloc_noprof+0x75/0x6e0
[  283.474601][ T9438]  ? net_alloc_generic+0x1e/0x70
[  283.474627][ T9438]  ? copy_net_ns+0xe9/0x690
[  283.474661][ T9438]  ? copy_net_ns+0xe9/0x690
[  283.474689][ T9438]  copy_net_ns+0xe9/0x690
[  283.474717][ T9438]  ? copy_cgroup_ns+0x71/0x6b0
[  283.474749][ T9438]  create_new_namespaces+0x3ea/0xa90
[  283.474787][ T9438]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  283.474820][ T9438]  ksys_unshare+0x45b/0xa40
[  283.474853][ T9438]  ? __pfx_ksys_unshare+0x10/0x10
[  283.474883][ T9438]  ? xfd_validate_state+0x61/0x180
[  283.474925][ T9438]  __x64_sys_unshare+0x31/0x40
[  283.474956][ T9438]  do_syscall_64+0xcd/0xfa0
[  283.474989][ T9438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.475015][ T9438] RIP: 0033:0x7fce7158f7c9
[  283.475036][ T9438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  283.475063][ T9438] RSP: 002b:00007fce72404038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  283.475088][ T9438] RAX: ffffffffffffffda RBX: 00007fce717e5fa0 RCX: 00007fce7158f7c9
[  283.475106][ T9438] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  283.475122][ T9438] RBP: 00007fce71613f91 R08: 0000000000000000 R09: 0000000000000000
[  283.475139][ T9438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  283.475154][ T9438] R13: 00007fce717e6038 R14: 00007fce717e5fa0 R15: 00007ffda64a9a48
[  283.475191][ T9438]  </TASK>
[  284.944918][ T9472] program syz.3.761 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  285.612445][ T9490] netlink: 330 bytes leftover after parsing attributes in process `syz.4.764'.
[  287.307305][ T9535] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  287.335509][ T9534] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  288.806319][ T9557] netlink: 28 bytes leftover after parsing attributes in process `syz.0.779'.
[  288.840905][ T9558] netlink: 28 bytes leftover after parsing attributes in process `syz.0.779'.
[  288.914581][ T9558] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  289.008205][ T9558] batman_adv: batadv0: Removing interface: batadv_slave_1
[  289.082629][ T9564] Format for adding new device is "id port_count num_queues" (uint uint unit).
[  289.212406][ T9566] syz.2.782 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  292.295140][ T9635] ima: Unable to open file: /surit��R�y/integrity?iqa/policy (-2)
[  292.306837][ T9635] ima: policy update failed
[  292.327816][   T30] audit: type=1802 audit(1764616484.311:17): pid=9635 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.798" res=0 errno=0
[  293.014848][ T9655] netlink: 28 bytes leftover after parsing attributes in process `syz.3.805'.
[  293.119576][ T9656] hub 8-0:1.0: USB hub found
[  293.141475][ T9656] hub 8-0:1.0: 1 port detected
[  293.851964][ T9673] FAULT_INJECTION: forcing a failure.
[  293.851964][ T9673] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.870184][ T7833] Bluetooth: hci4: unexpected event 0x3e length: 508 > 260
[  293.870222][ T7833] Bluetooth: hci4: unexpected subevent 0x02 length: 507 > 260
[  293.885939][ T7833] Bluetooth: hci4: Dropping invalid advertising data
[  293.893229][ T7833] Bluetooth: hci4: unknown advertising packet type: 0xe9
[  294.023694][ T9673] CPU: 1 UID: 0 PID: 9673 Comm: syz.2.808 Not tainted syzkaller #0 PREEMPT(full) 
[  294.023725][ T9673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  294.023738][ T9673] Call Trace:
[  294.023746][ T9673]  <TASK>
[  294.023755][ T9673]  dump_stack_lvl+0x16c/0x1f0
[  294.023783][ T9673]  should_fail_ex+0x512/0x640
[  294.023813][ T9673]  _copy_from_user+0x2e/0xd0
[  294.023849][ T9673]  __sys_bpf+0x248/0x4980
[  294.023868][ T9673]  ? futex_private_hash_put+0xd5/0x190
[  294.023893][ T9673]  ? __pfx___sys_bpf+0x10/0x10
[  294.023911][ T9673]  ? __pfx_futex_wait+0x10/0x10
[  294.023941][ T9673]  ? do_futex+0x122/0x350
[  294.023982][ T9673]  ? xfd_validate_state+0x61/0x180
[  294.024006][ T9673]  ? __pfx_ksys_write+0x10/0x10
[  294.024031][ T9673]  __x64_sys_bpf+0x78/0xc0
[  294.024049][ T9673]  ? lockdep_hardirqs_on+0x7c/0x110
[  294.024071][ T9673]  do_syscall_64+0xcd/0xfa0
[  294.024095][ T9673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.024116][ T9673] RIP: 0033:0x7fce7158f7c9
[  294.024133][ T9673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.024149][ T9673] RSP: 002b:00007fce723c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  294.024166][ T9673] RAX: ffffffffffffffda RBX: 00007fce717e6180 RCX: 00007fce7158f7c9
[  294.024178][ T9673] RDX: 00000000000000a3 RSI: 0000200000000000 RDI: 0000000000000000
[  294.024189][ T9673] RBP: 00007fce71613f91 R08: 0000000000000000 R09: 0000000000000000
[  294.024200][ T9673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  294.024211][ T9673] R13: 00007fce717e6218 R14: 00007fce717e6180 R15: 00007ffda64a9a48
[  294.024237][ T9673]  </TASK>
[  297.284210][ T9762] FAULT_INJECTION: forcing a failure.
[  297.284210][ T9762] name failslab, interval 1, probability 0, space 0, times 0
[  297.297319][ T9762] CPU: 0 UID: 0 PID: 9762 Comm: syz.0.828 Not tainted syzkaller #0 PREEMPT(full) 
[  297.297353][ T9762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  297.297367][ T9762] Call Trace:
[  297.297376][ T9762]  <TASK>
[  297.297385][ T9762]  dump_stack_lvl+0x16c/0x1f0
[  297.297421][ T9762]  should_fail_ex+0x512/0x640
[  297.297463][ T9762]  should_failslab+0xc2/0x120
[  297.297495][ T9762]  kmem_cache_alloc_noprof+0x75/0x6e0
[  297.297521][ T9762]  ? __pfx_stack_trace_save+0x10/0x10
[  297.297548][ T9762]  ? kernel_text_address+0x8d/0x100
[  297.297577][ T9762]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  297.297624][ T9762]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  297.297670][ T9762]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  297.297716][ T9762]  idr_get_free+0x528/0xa30
[  297.297756][ T9762]  idr_alloc_u32+0x190/0x2f0
[  297.297786][ T9762]  ? __pfx_idr_alloc_u32+0x10/0x10
[  297.297827][ T9762]  idr_alloc+0xc0/0x130
[  297.297853][ T9762]  ? __pfx_idr_alloc+0x10/0x10
[  297.297877][ T9762]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  297.297925][ T9762]  tipc_conn_alloc+0x337/0x590
[  297.297954][ T9762]  tipc_topsrv_kern_subscr+0x11c/0x3c0
[  297.297985][ T9762]  ? __pfx_tipc_topsrv_kern_subscr+0x10/0x10
[  297.298018][ T9762]  ? net_generic+0xea/0x2a0
[  297.298052][ T9762]  tipc_group_create+0x4ab/0x660
[  297.298087][ T9762]  tipc_setsockopt+0x7f0/0xdb0
[  297.298124][ T9762]  ? __pfx_tipc_setsockopt+0x10/0x10
[  297.298174][ T9762]  ? __pfx_tipc_setsockopt+0x10/0x10
[  297.298210][ T9762]  do_sock_setsockopt+0xf3/0x1d0
[  297.298245][ T9762]  __sys_setsockopt+0x120/0x1a0
[  297.298289][ T9762]  __x64_sys_setsockopt+0xbd/0x160
[  297.298311][ T9762]  ? do_syscall_64+0x91/0xfa0
[  297.298339][ T9762]  ? lockdep_hardirqs_on+0x7c/0x110
[  297.298369][ T9762]  do_syscall_64+0xcd/0xfa0
[  297.298400][ T9762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.298426][ T9762] RIP: 0033:0x7f468058f7c9
[  297.298447][ T9762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.298471][ T9762] RSP: 002b:00007f46813e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  297.298494][ T9762] RAX: ffffffffffffffda RBX: 00007f46807e6090 RCX: 00007f468058f7c9
[  297.298512][ T9762] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000005
[  297.298527][ T9762] RBP: 00007f4680613f91 R08: 0000000000000014 R09: 0000000000000000
[  297.298543][ T9762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  297.298557][ T9762] R13: 00007f46807e6128 R14: 00007f46807e6090 R15: 00007ffe82363ae8
[  297.298600][ T9762]  </TASK>
[  300.679295][   T30] audit: type=1326 audit(1764616492.695:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9850 comm="syz.4.848" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f27c178f7c9 code=0x0
[  301.100435][ T9867] ptp ptp0: only physical clock in use now
[  301.328316][ T9868] binder: 9866:9868 ioctl 4018620d 9 returned -22
[  301.385488][ T9872] binder: 9866:9872 ioctl 4018620d 9 returned -22
[  305.597271][ T9961] random: crng reseeded on system resumption
[  307.129656][ T9999] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  308.372140][T10022] netlink: 326 bytes leftover after parsing attributes in process `syz.4.890'.
[  308.422646][T10022] bridge0: port 2(bridge_slave_1) entered disabled state
[  308.431195][T10022] bridge0: port 1(bridge_slave_0) entered disabled state
[  308.757663][T10040] nfs: Unknown parameter 'w�O�_����I+;��	��2�ψ'>>��uh�*����zd�D	��AoD�M斋[�T�^'
[  310.627525][T10079] zswap: compressor  not available
[  311.014833][T10094] zero sized request
[  311.344770][T10100] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  311.788772][T10111] FAULT_INJECTION: forcing a failure.
[  311.788772][T10111] name failslab, interval 1, probability 0, space 0, times 0
[  311.853320][T10111] CPU: 0 UID: 0 PID: 10111 Comm: syz.0.911 Not tainted syzkaller #0 PREEMPT(full) 
[  311.853357][T10111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  311.853370][T10111] Call Trace:
[  311.853378][T10111]  <TASK>
[  311.853387][T10111]  dump_stack_lvl+0x16c/0x1f0
[  311.853421][T10111]  should_fail_ex+0x512/0x640
[  311.853457][T10111]  ? __kmalloc_cache_noprof+0x5f/0x780
[  311.853487][T10111]  should_failslab+0xc2/0x120
[  311.853520][T10111]  __kmalloc_cache_noprof+0x72/0x780
[  311.853543][T10111]  ? ptrace_attach+0x290/0x6a0
[  311.853574][T10111]  ? kstrdup_quotable_cmdline+0x52/0x210
[  311.853609][T10111]  ? kstrdup_quotable_cmdline+0x52/0x210
[  311.853637][T10111]  kstrdup_quotable_cmdline+0x52/0x210
[  311.853680][T10111]  __report_access+0x4b/0x370
[  311.853708][T10111]  ? _raw_spin_unlock_irq+0x23/0x50
[  311.853742][T10111]  task_work_run+0x150/0x240
[  311.853781][T10111]  ? __pfx_task_work_run+0x10/0x10
[  311.853830][T10111]  exit_to_user_mode_loop+0xec/0x130
[  311.853869][T10111]  do_syscall_64+0x426/0xfa0
[  311.853907][T10111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.853934][T10111] RIP: 0033:0x7f468058f7c9
[  311.853956][T10111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.853980][T10111] RSP: 002b:00007f46813e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000065
[  311.854005][T10111] RAX: ffffffffffffffff RBX: 00007f46807e6090 RCX: 00007f468058f7c9
[  311.854022][T10111] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000004206
[  311.854038][T10111] RBP: 00007f4680613f91 R08: 0000000000000000 R09: 0000000000000000
[  311.854052][T10111] R10: 0000000000200005 R11: 0000000000000246 R12: 0000000000000000
[  311.854068][T10111] R13: 00007f46807e6128 R14: 00007f46807e6090 R15: 00007ffe82363ae8
[  311.854154][T10111]  </TASK>
[  312.150395][T10111] ptrace attach of "(null)"[5827] was attempted by "./syz-executor exec"[10111]
[  312.182227][T10125] netlink: 4 bytes leftover after parsing attributes in process `syz.4.915'.
[  312.482644][T10138] netlink: 338 bytes leftover after parsing attributes in process `syz.3.918'.
[  312.498408][T10135] netlink: 338 bytes leftover after parsing attributes in process `syz.3.918'.
[  314.425992][T10170] zswap: compressor  not available
[  314.657424][ T7833] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  315.246553][T10212] netlink: 8 bytes leftover after parsing attributes in process `syz.4.932'.
[  315.298227][T10212] HfR: entered promiscuous mode
[  315.983850][T10228] netlink: 'syz.4.937': attribute type 11 has an invalid length.
[  316.850923][T10246] : entered promiscuous mode
[  316.922574][T10249] netlink: 'syz.3.942': attribute type 11 has an invalid length.
[  319.695288][T10321] netlink: 334 bytes leftover after parsing attributes in process `syz.0.961'.
[  319.996257][T10329] netlink: 28 bytes leftover after parsing attributes in process `syz.2.964'.
[  321.283297][T10359] openvswitch: netlink: nsh attribute has 97 unknown bytes.
[  322.403107][T10395] can: request_module (can-proto-0) failed.
[  324.858343][T10446] sd 0:0:1:0: PR command failed: 1026
[  324.864550][T10446] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  324.871501][T10446] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  325.599688][T10454] netlink: 206 bytes leftover after parsing attributes in process `syz.3.995'.
[  326.981617][T10481] 0x000200000001-0xa29656a63616329 : ""
[  327.016138][T10481] mtd: partition "" is out of reach -- disabled
[  327.124484][T10481] ftl_cs: FTL header not found.
[  329.655042][T10535] svc: failed to register nfsdv3 RPC service (errno 111).
[  329.665465][T10535] svc: failed to register nfsaclv3 RPC service (errno 111).
[  330.404728][T10560] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1014'.
[  331.017426][T10560] bond0: (slave bond_slave_0): Releasing backup interface
[  331.733460][T10594] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1021'.
[  331.898994][ T7833] Bluetooth: hci4: unexpected event 0x3e length: 508 > 260
[  331.899033][ T7833] Bluetooth: hci4: unexpected subevent 0x02 length: 507 > 260
[  331.914542][ T7833] Bluetooth: hci4: Dropping invalid advertising data
[  331.924930][ T7833] Bluetooth: hci4: unknown advertising packet type: 0xe9
[  331.924961][ T7833] Bluetooth: hci4: unknown advertising packet type: 0xbd
[  331.932134][ T7833] Bluetooth: hci4: Dropping invalid advertising data
[  331.945953][ T7833] Bluetooth: hci4: Malformed LE Event: 0x02
[  332.200812][T10603] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1021'.
[  336.912628][T10671] ==================================================================
[  336.912649][T10671] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0xa03/0xc70
[  336.912696][T10671] Read of size 256 at addr ffff888032bbc860 by task syz.3.1038/10671
[  336.912719][T10671] 
[  336.912731][T10671] CPU: 1 UID: 0 PID: 10671 Comm: syz.3.1038 Not tainted syzkaller #0 PREEMPT(full) 
[  336.912762][T10671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  336.912779][T10671] Call Trace:
[  336.912787][T10671]  <TASK>
[  336.912797][T10671]  dump_stack_lvl+0x116/0x1f0
[  336.912830][T10671]  print_report+0xcd/0x630
[  336.912864][T10671]  ? __virt_addr_valid+0x81/0x610
[  336.912897][T10671]  ? __phys_addr+0xe8/0x180
[  336.912930][T10671]  ? fbcon_prepare_logo+0xa03/0xc70
[  336.912959][T10671]  kasan_report+0xe0/0x110
[  336.912989][T10671]  ? fbcon_prepare_logo+0xa03/0xc70
[  336.913026][T10671]  kasan_check_range+0x100/0x1b0
[  336.913060][T10671]  __asan_memcpy+0x23/0x60
[  336.913085][T10671]  fbcon_prepare_logo+0xa03/0xc70
[  336.913125][T10671]  fbcon_init+0xd77/0x1900
[  336.913159][T10671]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[  336.913215][T10671]  visual_init+0x320/0x620
[  336.913251][T10671]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  336.913280][T10671]  store_bind+0x61d/0x760
[  336.913304][T10671]  ? sysfs_file_kobj+0xe4/0x290
[  336.913330][T10671]  ? __pfx_store_bind+0x10/0x10
[  336.913354][T10671]  dev_attr_store+0x58/0x80
[  336.913384][T10671]  ? __pfx_dev_attr_store+0x10/0x10
[  336.913419][T10671]  sysfs_kf_write+0xf2/0x150
[  336.913446][T10671]  kernfs_fop_write_iter+0x3af/0x570
[  336.913469][T10671]  ? __pfx_sysfs_kf_write+0x10/0x10
[  336.913496][T10671]  iter_file_splice_write+0xa24/0x12e0
[  336.913530][T10671]  ? __pfx_iter_file_splice_write+0x10/0x10
[  336.913561][T10671]  ? __pfx_copy_splice_read+0x10/0x10
[  336.913596][T10671]  ? __pfx_iter_file_splice_write+0x10/0x10
[  336.913625][T10671]  direct_splice_actor+0x192/0x6c0
[  336.913653][T10671]  splice_direct_to_actor+0x345/0xa30
[  336.913681][T10671]  ? __pfx_direct_splice_actor+0x10/0x10
[  336.913712][T10671]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  336.913743][T10671]  do_splice_direct+0x174/0x240
[  336.913769][T10671]  ? __pfx_do_splice_direct+0x10/0x10
[  336.913796][T10671]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  336.913839][T10671]  ? rw_verify_area+0xcf/0x6c0
[  336.913866][T10671]  do_sendfile+0xb06/0xe50
[  336.913895][T10671]  ? __pfx_do_sendfile+0x10/0x10
[  336.913924][T10671]  ? __x64_sys_futex+0x1e0/0x4c0
[  336.913958][T10671]  ? __x64_sys_futex+0x1e9/0x4c0
[  336.913993][T10671]  __x64_sys_sendfile64+0x1d8/0x220
[  336.914028][T10671]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  336.914067][T10671]  do_syscall_64+0xcd/0xfa0
[  336.914099][T10671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.914127][T10671] RIP: 0033:0x7f3943b8f7c9
[  336.914148][T10671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.914182][T10671] RSP: 002b:00007f3944952038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  336.914209][T10671] RAX: ffffffffffffffda RBX: 00007f3943de6090 RCX: 00007f3943b8f7c9
[  336.914228][T10671] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000004
[  336.914245][T10671] RBP: 00007f3943c13f91 R08: 0000000000000000 R09: 0000000000000000
[  336.914260][T10671] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  336.914274][T10671] R13: 00007f3943de6128 R14: 00007f3943de6090 R15: 00007fffa7fbc3b8
[  336.914302][T10671]  </TASK>
[  336.914310][T10671] 
[  336.914317][T10671] Allocated by task 10586:
[  336.914331][T10671]  kasan_save_stack+0x33/0x60
[  336.914360][T10671]  kasan_save_track+0x14/0x30
[  336.914390][T10671]  __kasan_kmalloc+0xaa/0xb0
[  336.914417][T10671]  __kmalloc_node_track_caller_noprof+0x345/0x8a0
[  336.914449][T10671]  kmalloc_reserve+0xef/0x2c0
[  336.914475][T10671]  __alloc_skb+0x166/0x380
[  336.914504][T10671]  rtmsg_ifinfo_build_skb+0x81/0x280
[  336.914533][T10671]  rtmsg_ifinfo+0x9f/0x1a0
[  336.914558][T10671]  register_netdevice+0x1bd9/0x2270
[  336.914584][T10671]  __ip_tunnel_create+0x540/0x6e0
[  336.914612][T10671]  ip_tunnel_init_net+0x22f/0x7d0
[  336.914640][T10671]  vti_init_net+0x2e/0x140
[  336.914670][T10671]  ops_init+0x1e2/0x5f0
[  336.914691][T10671]  setup_net+0x100/0x390
[  336.914714][T10671]  copy_net_ns+0x2f8/0x690
[  336.914739][T10671]  create_new_namespaces+0x3ea/0xa90
[  336.914766][T10671]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  336.914794][T10671]  ksys_unshare+0x45b/0xa40
[  336.914824][T10671]  __x64_sys_unshare+0x31/0x40
[  336.914854][T10671]  do_syscall_64+0xcd/0xfa0
[  336.914883][T10671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.914908][T10671] 
[  336.914914][T10671] Freed by task 10586:
[  336.914925][T10671]  kasan_save_stack+0x33/0x60
[  336.914953][T10671]  kasan_save_track+0x14/0x30
[  336.914979][T10671]  __kasan_save_free_info+0x3b/0x60
[  336.915002][T10671]  __kasan_slab_free+0x5f/0x80
[  336.915031][T10671]  kfree+0x2b8/0x6d0
[  336.915050][T10671]  skb_free_head+0x114/0x210
[  336.915083][T10671]  skb_release_data+0x795/0x9e0
[  336.915106][T10671]  consume_skb+0xbf/0x100
[  336.915131][T10671]  netlink_broadcast_filtered+0x3ee/0xf90
[  336.915156][T10671]  nlmsg_notify+0x9e/0x220
[  336.915191][T10671]  rtmsg_ifinfo+0x174/0x1a0
[  336.915218][T10671]  register_netdevice+0x1bd9/0x2270
[  336.915246][T10671]  __ip_tunnel_create+0x540/0x6e0
[  336.915275][T10671]  ip_tunnel_init_net+0x22f/0x7d0
[  336.915305][T10671]  vti_init_net+0x2e/0x140
[  336.915333][T10671]  ops_init+0x1e2/0x5f0
[  336.915355][T10671]  setup_net+0x100/0x390
[  336.915378][T10671]  copy_net_ns+0x2f8/0x690
[  336.915400][T10671]  create_new_namespaces+0x3ea/0xa90
[  336.915424][T10671]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  336.915450][T10671]  ksys_unshare+0x45b/0xa40
[  336.915478][T10671]  __x64_sys_unshare+0x31/0x40
[  336.915507][T10671]  do_syscall_64+0xcd/0xfa0
[  336.915533][T10671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.915554][T10671] 
[  336.915560][T10671] The buggy address belongs to the object at ffff888032bbc000
[  336.915560][T10671]  which belongs to the cache kmalloc-2k of size 2048
[  336.915577][T10671] The buggy address is located 96 bytes to the right of
[  336.915577][T10671]  allocated 2048-byte region [ffff888032bbc000, ffff888032bbc800)
[  336.915605][T10671] 
[  336.915612][T10671] The buggy address belongs to the physical page:
[  336.915636][T10671] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x32bb8
[  336.915660][T10671] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  336.915683][T10671] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  336.915706][T10671] page_type: f5(slab)
[  336.915729][T10671] raw: 00fff00000000040 ffff88813ffa7000 ffffea0001f26e00 dead000000000002
[  336.915754][T10671] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[  336.915779][T10671] head: 00fff00000000040 ffff88813ffa7000 ffffea0001f26e00 dead000000000002
[  336.915802][T10671] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[  336.915826][T10671] head: 00fff00000000003 ffffea0000caee01 00000000ffffffff 00000000ffffffff
[  336.915849][T10671] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  336.915863][T10671] page dumped because: kasan: bad access detected
[  336.915881][T10671] page_owner tracks the page as allocated
[  336.915890][T10671] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 9381, tgid 9380 (syz.4.749), ts 281895337150, free_ts 281858664965
[  336.915938][T10671]  post_alloc_hook+0x1af/0x220
[  336.915976][T10671]  get_page_from_freelist+0x10a3/0x3a30
[  336.915999][T10671]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  336.916020][T10671]  alloc_pages_mpol+0x1fb/0x550
[  336.916046][T10671]  new_slab+0x24a/0x360
[  336.916078][T10671]  ___slab_alloc+0xd79/0x1a50
[  336.916113][T10671]  __slab_alloc.constprop.0+0x63/0x110
[  336.916149][T10671]  __kmalloc_noprof+0x501/0x880
[  336.916170][T10671]  ops_init+0x77/0x5f0
[  336.916199][T10671]  setup_net+0x100/0x390
[  336.916223][T10671]  copy_net_ns+0x2f8/0x690
[  336.916250][T10671]  create_new_namespaces+0x3ea/0xa90
[  336.916276][T10671]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  336.916303][T10671]  ksys_unshare+0x45b/0xa40
[  336.916333][T10671]  __x64_sys_unshare+0x31/0x40
[  336.916363][T10671]  do_syscall_64+0xcd/0xfa0
[  336.916392][T10671] page last free pid 9381 tgid 9380 stack trace:
[  336.916407][T10671]  __free_frozen_pages+0x7df/0x1160
[  336.916440][T10671]  __put_partials+0x130/0x170
[  336.916462][T10671]  qlist_free_all+0x4d/0x120
[  336.916488][T10671]  kasan_quarantine_reduce+0x195/0x1e0
[  336.916516][T10671]  __kasan_slab_alloc+0x69/0x90
[  336.916546][T10671]  kmem_cache_alloc_noprof+0x250/0x6e0
[  336.916570][T10671]  __kernfs_new_node+0xd2/0x8e0
[  336.916600][T10671]  kernfs_new_node+0x13c/0x1e0
[  336.916633][T10671]  __kernfs_create_file+0x53/0x350
[  336.916654][T10671]  sysfs_add_file_mode_ns+0x207/0x3c0
[  336.916678][T10671]  internal_create_group+0x578/0xf30
[  336.916709][T10671]  internal_create_groups+0x9d/0x150
[  336.916736][T10671]  device_add+0x6d1/0x1aa0
[  336.916771][T10671]  netdev_register_kobject+0x1a9/0x3d0
[  336.916801][T10671]  register_netdevice+0x13dc/0x2270
[  336.916828][T10671]  __ip_tunnel_create+0x540/0x6e0
[  336.916855][T10671] 
[  336.916861][T10671] Memory state around the buggy address:
[  336.916874][T10671]  ffff888032bbc700: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  336.916894][T10671]  ffff888032bbc780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  336.916913][T10671] >ffff888032bbc800: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  336.916927][T10671]                                                        ^
[  336.916942][T10671]  ffff888032bbc880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  336.916960][T10671]  ffff888032bbc900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  336.916974][T10671] ==================================================================
[  336.916990][T10671] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  336.917007][T10671] CPU: 1 UID: 0 PID: 10671 Comm: syz.3.1038 Not tainted syzkaller #0 PREEMPT(full) 
[  336.917039][T10671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  336.917056][T10671] Call Trace:
[  336.917065][T10671]  <TASK>
[  336.917076][T10671]  dump_stack_lvl+0x3d/0x1f0
[  336.917107][T10671]  vpanic+0x640/0x6f0
[  336.917145][T10671]  panic+0xca/0xd0
[  336.917187][T10671]  ? __pfx_panic+0x10/0x10
[  336.917230][T10671]  check_panic_on_warn+0xab/0xb0
[  336.917269][T10671]  end_report+0x107/0x170
[  336.917302][T10671]  kasan_report+0xee/0x110
[  336.917336][T10671]  ? fbcon_prepare_logo+0xa03/0xc70
[  336.917378][T10671]  kasan_check_range+0x100/0x1b0
[  336.917415][T10671]  __asan_memcpy+0x23/0x60
[  336.917441][T10671]  fbcon_prepare_logo+0xa03/0xc70
[  336.917484][T10671]  fbcon_init+0xd77/0x1900
[  336.917520][T10671]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[  336.917559][T10671]  visual_init+0x320/0x620
[  336.917596][T10671]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  336.917629][T10671]  store_bind+0x61d/0x760
[  336.917657][T10671]  ? sysfs_file_kobj+0xe4/0x290
[  336.917685][T10671]  ? __pfx_store_bind+0x10/0x10
[  336.917709][T10671]  dev_attr_store+0x58/0x80
[  336.917745][T10671]  ? __pfx_dev_attr_store+0x10/0x10
[  336.917780][T10671]  sysfs_kf_write+0xf2/0x150
[  336.917816][T10671]  kernfs_fop_write_iter+0x3af/0x570
[  336.917841][T10671]  ? __pfx_sysfs_kf_write+0x10/0x10
[  336.917872][T10671]  iter_file_splice_write+0xa24/0x12e0
[  336.917910][T10671]  ? __pfx_iter_file_splice_write+0x10/0x10
[  336.917942][T10671]  ? __pfx_copy_splice_read+0x10/0x10
[  336.917976][T10671]  ? __pfx_iter_file_splice_write+0x10/0x10
[  336.918006][T10671]  direct_splice_actor+0x192/0x6c0
[  336.918035][T10671]  splice_direct_to_actor+0x345/0xa30
[  336.918062][T10671]  ? __pfx_direct_splice_actor+0x10/0x10
[  336.918093][T10671]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  336.918124][T10671]  do_splice_direct+0x174/0x240
[  336.918148][T10671]  ? __pfx_do_splice_direct+0x10/0x10
[  336.918181][T10671]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  336.918226][T10671]  ? rw_verify_area+0xcf/0x6c0
[  336.918254][T10671]  do_sendfile+0xb06/0xe50
[  336.918284][T10671]  ? __pfx_do_sendfile+0x10/0x10
[  336.918314][T10671]  ? __x64_sys_futex+0x1e0/0x4c0
[  336.918348][T10671]  ? __x64_sys_futex+0x1e9/0x4c0
[  336.918384][T10671]  __x64_sys_sendfile64+0x1d8/0x220
[  336.918417][T10671]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  336.918455][T10671]  do_syscall_64+0xcd/0xfa0
[  336.918488][T10671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.918515][T10671] RIP: 0033:0x7f3943b8f7c9
[  336.918535][T10671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.918561][T10671] RSP: 002b:00007f3944952038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  336.918588][T10671] RAX: ffffffffffffffda RBX: 00007f3943de6090 RCX: 00007f3943b8f7c9
[  336.918607][T10671] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000004
[  336.918624][T10671] RBP: 00007f3943c13f91 R08: 0000000000000000 R09: 0000000000000000
[  336.918641][T10671] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  336.918658][T10671] R13: 00007f3943de6128 R14: 00007f3943de6090 R15: 00007fffa7fbc3b8
[  336.918686][T10671]  </TASK>
[  336.919072][T10671] Kernel Offset: disabled