last executing test programs:

15m57.18472276s ago: executing program 1 (id=341):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x100000000000035, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_state_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x2003, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
sysfs$auto(0x2, 0x100000000000035, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_state_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x2003, 0x0) (async)

15m57.079456089s ago: executing program 1 (id=342):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
bpf$auto_BPF_MAP_DELETE_BATCH(0x1b, &(0x7f0000000000)=@bpf_attr_11={0xe, 0x9, 0x80000001, 0xd9, 0x5, 0x8, 0x1, r0}, 0x200)
ioctl$auto_SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000100)="000004")

15m56.780813289s ago: executing program 1 (id=346):
rseq$auto(&(0x7f0000000000)={0xe, 0x400, 0x0, 0x20006, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1e00279e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) (async)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
madvise$auto(0x405, 0xffffffffffff0001, 0x15) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1) (async)
sendmsg$auto_NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, 0x0, 0x4008000) (async)
sendmsg$auto_NL80211_CMD_STOP_NAN(0xffffffffffffffff, 0x0, 0x815) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, 0x0, 0x4000080)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async)
writev$auto(r1, 0x0, 0x7) (async)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x6800, 0x0)
setresuid$auto(0x0, 0x0, 0x0) (async)
ioprio_set$auto(0x3, 0x0, 0x4b34)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x0) (async)
socketpair$auto(0x4d2cf812, 0x5, 0x8001, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0) (async)
r2 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x8300, 0x0)
readv$auto(r2, &(0x7f00000004c0)={0x0, 0x4}, 0x5) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
open(0x0, 0x2a141, 0xf5) (async)
socket(0x840000000002, 0x3, 0xff)

15m55.677112025s ago: executing program 1 (id=352):
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042cbd7000fb3d89cb8091"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}, 0x1, 0x0, 0x0, 0x4000804}, 0x40000) (async)
r0 = socket(0x10, 0x2, 0x0) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) (async, rerun: 64)
clock_nanosleep$auto(0x1f, 0x5c, 0x0, 0x0) (async, rerun: 32)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32)
r1 = socket(0x2, 0x1, 0x106) (rerun: 32)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
bind$auto(0x3, 0x0, 0x6a)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
setsockopt$auto(r1, 0x5, 0x23, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef) (async)
syz_genetlink_get_family_id$auto_ovs_vport(0x0, r1)
r2 = pidfd_open$auto(0x1, 0x0)
setns(r2, 0x4000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
kexec_load$auto(0xff, 0x2, &(0x7f0000000080)={@kbuf=0x0, 0x2, 0x8000, 0x3000}, 0x7)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8)

15m55.610145759s ago: executing program 1 (id=353):
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
mmap$auto(0x0, 0x8, 0x3, 0x9b71, 0x2, 0x8000)
write$auto(0x4, 0x0, 0x100082)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xa00, 0x0, 0xfffffffffffffffd)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0)
ioctl$auto(r0, 0x5408, r0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x48041, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
open(&(0x7f0000000080)='./file0\x00', 0x40, 0xa2)
read$auto_proc_single_file_operations_base(0xffffffffffffffff, &(0x7f00000000c0)=""/41, 0x11)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x1, 0x0)
socket(0x1e, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x3, 0x0)
mmap$auto(0x204, 0x8, 0x100000000b, 0x13, 0xffffffffffffffff, 0x200017ffffffc)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0xfffffffffffffffc, 0xe983, 0xdf, 0xeb1, r0, 0x48c9)
clock_gettime$auto(0x1, 0x0)
setrlimit$auto(0x1000000007, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm_amd/parameters/pause_filter_thresh\x00', 0x200, 0x0)
mbind$auto(0x8, 0x8, 0x290, &(0x7f0000000180)=0xfffffffffffffe00, 0x2, 0x2d)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0)
openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000540), 0x40102, 0x0)
setresuid$auto(0x0, 0x7, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
write$auto_ocfs2_control_fops_stack_user(r1, &(0x7f0000003900)='\t', 0x1)
r2 = socket(0xa, 0x1, 0x0)
recvmmsg$auto(r2, &(0x7f0000000280)={{0x0, 0x1ff, &(0x7f0000000040)={0x0, 0xd}, 0x9, 0x0, 0x80000001, 0x2}, 0x1}, 0x80000000, 0x7956, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

15m54.921289909s ago: executing program 1 (id=358):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
r0 = socket(0x11, 0x80000, 0x300)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, r0, 0x4) (async)
close_range$auto(0x2, r0, 0x4)
mmap$auto(0x9, 0x9, 0x5, 0x9b72, 0xffffffffffffffff, 0xfffffffffffffffd)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x0) (async)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x3, 0xff) (async)
socket(0xa, 0x3, 0xff)
connect$auto(r1, &(0x7f00000018c0)=@nfc={0x27, 0x0, 0x0, 0x5}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a9, 0x7ffffff)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x9c4a, 0xc, 0xeb1, 0x401, 0x6) (async)
mmap$auto(0x0, 0x9c4a, 0xc, 0xeb1, 0x401, 0x6)
mremap$auto(0x40000000000000d6, 0x6, 0x13fd4, 0x8, 0xfffff000)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) (async)
r2 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
mmap$auto(0x0, 0x200004, 0x4000000000df, 0x15, r2, 0x300000000000)
connect$auto(0xffffffffffffffff, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x0, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_zero_fops_mem(0xffffffffffffff9c, 0x0, 0x109002, 0x0) (async)
openat$auto_zero_fops_mem(0xffffffffffffff9c, 0x0, 0x109002, 0x0)
mmap$auto(0x0, 0x4000000000000, 0x4000080000df, 0x40ebf, 0x4, 0x300000000000) (async)
mmap$auto(0x0, 0x4000000000000, 0x4000080000df, 0x40ebf, 0x4, 0x300000000000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0x29, 0x5, 0x0) (async)
socket(0x29, 0x5, 0x0)

15m39.763713604s ago: executing program 32 (id=358):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
r0 = socket(0x11, 0x80000, 0x300)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, r0, 0x4) (async)
close_range$auto(0x2, r0, 0x4)
mmap$auto(0x9, 0x9, 0x5, 0x9b72, 0xffffffffffffffff, 0xfffffffffffffffd)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x0) (async)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x3, 0xff) (async)
socket(0xa, 0x3, 0xff)
connect$auto(r1, &(0x7f00000018c0)=@nfc={0x27, 0x0, 0x0, 0x5}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a9, 0x7ffffff)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x9c4a, 0xc, 0xeb1, 0x401, 0x6) (async)
mmap$auto(0x0, 0x9c4a, 0xc, 0xeb1, 0x401, 0x6)
mremap$auto(0x40000000000000d6, 0x6, 0x13fd4, 0x8, 0xfffff000)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) (async)
r2 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
mmap$auto(0x0, 0x200004, 0x4000000000df, 0x15, r2, 0x300000000000)
connect$auto(0xffffffffffffffff, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x0, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_zero_fops_mem(0xffffffffffffff9c, 0x0, 0x109002, 0x0) (async)
openat$auto_zero_fops_mem(0xffffffffffffff9c, 0x0, 0x109002, 0x0)
mmap$auto(0x0, 0x4000000000000, 0x4000080000df, 0x40ebf, 0x4, 0x300000000000) (async)
mmap$auto(0x0, 0x4000000000000, 0x4000080000df, 0x40ebf, 0x4, 0x300000000000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0x29, 0x5, 0x0) (async)
socket(0x29, 0x5, 0x0)

6m2.42672677s ago: executing program 4 (id=2220):
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) (async)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/fs/ext4/features/metadata_csum_seed\x00', 0x101800, 0x0) (async)
socket(0x29, 0x2, 0x0) (async)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="1200", @ANYBLOB], 0x1ac}}, 0x40000) (async)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x801}, 0xfffffff9, 0x10, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_DAT_CACHE(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="28100000", @ANYRES16=r3, @ANYBLOB="57e72dbd7000ffdbdf250d000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x10)
read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) (async)
mmap$auto(0x0, 0xa, 0xffb, 0x8000040008011, 0x3, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x90100, 0x0) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) (async)
futimesat$auto(0x2, 0x0, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x4000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0xffffffffffffffff) (async)
ioctl$auto(0x3, 0x4040ae77, 0x38) (async)
close_range$auto(0x2, 0x8, 0x0)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/006/001\x00', 0xa901, 0x0)
ioctl$auto(r5, 0x4004550d, r5)

6m1.873261455s ago: executing program 4 (id=2221):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/pm_debug_messages\x00', 0xa001, 0x0) (async)
r1 = socket(0x11, 0x3, 0x9)
eventfd2$auto(0x0, 0x1)
sendmmsg$auto(r1, &(0x7f0000000640)={{&(0x7f0000000000), 0x5ae, &(0x7f0000000100)={&(0x7f0000000780)="4c0300000000000000a3677337f9ecba075f6bba44131011", 0x49}, 0x5, 0x0, 0x5, 0x1}, 0x1}, 0x5, 0x100)
bpf$auto_BPF_ITER_CREATE(0x21, &(0x7f00000000c0)=@query={@target_fd=r1, 0x9, 0xb1b, 0x9, 0x1ff, @count=0x81, 0x0, 0x5, 0xd773, 0x9, 0xfffffffffffffff9}, 0x2) (async)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

6m1.562898717s ago: executing program 4 (id=2222):
r0 = socket(0x10, 0x80002, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r1)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="01032abd7000fcdbb700000000000000028004000180"], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
mmap$auto(0xf86, 0x0, 0x0, 0x40000000000eb1, r0, 0x8004)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x801, 0x106)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000)
r4 = getsockopt$auto(r3, 0x10e, 0xc23, 0x0, 0x0)
r5 = socket(0x10, 0x80002, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r4, 0xc0305710, &(0x7f00000000c0)={0x1, 0x2, 0x0, 0x1, 0x418, "00000f00ea0200"})
adjtimex$auto(0x0)
timerfd_settime$auto(r5, 0x3, 0x0, 0x0)
timerfd_settime$auto(r0, 0x2, 0x0, 0x0)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0xf, 0x801, 0x106)
io_uring_setup$auto(0x5, 0x0)
listen$auto(0x3, 0x83)
setsockopt$auto(0x3, 0x6, 0x6, 0x0, 0x409)
mmap$auto(0x4000000000000, 0x9, 0x4000000000df, 0xeb1, 0x401, 0xffffffff80000000)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/fs/ocfs2/loaded_cluster_plugins\x00', 0x800, 0x0)
read$auto(r6, 0x0, 0x8000)

6m1.171092961s ago: executing program 4 (id=2223):
setresuid$auto(0x8, 0x8, 0x0)
mlock$auto(0x10001, 0xffffffffffff8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x28102, 0x0)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x9, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003f0, 0x18)
mlock$auto(0x5, 0xffff)
io_setup$auto(0x7ffe, &(0x7f0000000000))
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_auxv_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/auxv\x00', 0x90000, 0x0)
mmap$auto(0x5, 0x9, 0x73b, 0x10, r0, 0x800)
r1 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
splice$auto(r2, 0x0, r2, 0xfffffffffffffffe, 0x5, 0x1)
setsockopt$auto(0x3, 0x1, 0x9, 0x0, 0x46)
io_setup$auto(0xb, &(0x7f0000000040)=0x1)
io_setup$auto(0x7ffe, &(0x7f0000000000))

6m0.796187373s ago: executing program 4 (id=2225):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
arch_prctl$auto(0x1021, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
msgctl$auto_IPC_SET(0xa3, 0x1, &(0x7f00000000c0)={{0x3b0180, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xfffffff9, 0xfffffffe, 0x7}, 0x0, 0x0, 0xbb28, 0x7, 0xc, 0x2a, 0x8, 0x0, 0x7, 0x4, @inferred, @raw=0xfffffeff})
msgget$auto(0xc, 0x77d9)
msgrcv$auto(0x0, 0x0, 0x5, 0xfffffffffffffffc, 0xb4)
msgsnd$auto(0x0, &(0x7f0000000040)={0x1, 0x5}, 0x8, 0x9)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001600)=""/4098, 0x1002)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0x81, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
setsockopt$auto(r0, 0x6, 0x1f, 0x0, 0x3d)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
clone$auto(0x20003b46, 0x7, 0x0, 0x0, 0x10000000)
open(0x0, 0x261c2, 0x84)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
io_uring_setup$auto(0x9, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r1, 0x8000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}})
socket(0xd, 0x5, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_NS_GET_NSTYPE(0xffffffffffffffff, 0xb703, 0x0)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff)

5m57.637105039s ago: executing program 4 (id=2231):
syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000080), 0xffffffffffffffff)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x4b72, r1)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(r1, 0x4058587a, &(0x7f0000000240)={{<r2=>0xffffffffffffffff, &(0x7f0000000000)="7bda3444a2aa4fe88b6c9624e4a325af16de2c2925b0122425", 0x249c, &(0x7f00000000c0)="2413f6d9ef758ad7e6e988062c", 0x10, &(0x7f0000000100)="44d24372377602c372fa502ac6719be404266899b0fdc58edf141a4ce035b1ceb5cb00b508fdc76f880374eaccec9d00bf5c877a085be01012eebc8675e26c2e35f82eadf524133fe643b50b2f352509582aeb948d78c16d517761c7300d95564bda2127ec", &(0x7f00000002c0)=0x2}, {[0x96, 0x6, 0x8, 0xcdfb]}, 0x8000b4, 0xf, &(0x7f0000000300)="ff541e3ffe64cc448507e377892bb463f252353f95e34b09392958473b9b10d7879d68dc6a9d5c938ecee18b74af05048297cf5aeb85b83b7203592bdab999dcaa209caab0d42d113c28e534d7a73c2c73fe735a148d180612f840f4ae42aba295b3d78f1a20268b44ee1bfba1e3b734f9be54e60b42e3809baeac8b94c9eae02b0c6d4c3e6df126eb"})
mmap$auto(0x0, 0x3, 0xffffffffffffffff, 0x4000000eb1, 0xffffffffffffffff, 0x800000007)
mmap$auto(0x0, 0x40009, 0xe1, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x11, 0x80003, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'geneve0\x00', <r4=>0x0})
sendto$auto(0x3, 0x0, 0x34, 0xfffffff9, &(0x7f0000000440)=@xdp={0x2c, 0xdd86, r4, 0x10}, 0x22)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
ioperm$auto(0x90d5, 0xc, 0x2)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r2, r5, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r6, &(0x7f00000110c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f000000e000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010026bd7000fedbdf251400000004000780"], 0x18}, 0x1, 0x0, 0x0, 0x104}, 0x40)
syz_genetlink_get_family_id$auto_nl80211(0x0, r5)

5m57.129053355s ago: executing program 33 (id=2231):
syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000080), 0xffffffffffffffff)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x4b72, r1)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(r1, 0x4058587a, &(0x7f0000000240)={{<r2=>0xffffffffffffffff, &(0x7f0000000000)="7bda3444a2aa4fe88b6c9624e4a325af16de2c2925b0122425", 0x249c, &(0x7f00000000c0)="2413f6d9ef758ad7e6e988062c", 0x10, &(0x7f0000000100)="44d24372377602c372fa502ac6719be404266899b0fdc58edf141a4ce035b1ceb5cb00b508fdc76f880374eaccec9d00bf5c877a085be01012eebc8675e26c2e35f82eadf524133fe643b50b2f352509582aeb948d78c16d517761c7300d95564bda2127ec", &(0x7f00000002c0)=0x2}, {[0x96, 0x6, 0x8, 0xcdfb]}, 0x8000b4, 0xf, &(0x7f0000000300)="ff541e3ffe64cc448507e377892bb463f252353f95e34b09392958473b9b10d7879d68dc6a9d5c938ecee18b74af05048297cf5aeb85b83b7203592bdab999dcaa209caab0d42d113c28e534d7a73c2c73fe735a148d180612f840f4ae42aba295b3d78f1a20268b44ee1bfba1e3b734f9be54e60b42e3809baeac8b94c9eae02b0c6d4c3e6df126eb"})
mmap$auto(0x0, 0x3, 0xffffffffffffffff, 0x4000000eb1, 0xffffffffffffffff, 0x800000007)
mmap$auto(0x0, 0x40009, 0xe1, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x11, 0x80003, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'geneve0\x00', <r4=>0x0})
sendto$auto(0x3, 0x0, 0x34, 0xfffffff9, &(0x7f0000000440)=@xdp={0x2c, 0xdd86, r4, 0x10}, 0x22)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
ioperm$auto(0x90d5, 0xc, 0x2)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r2, r5, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r6, &(0x7f00000110c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f000000e000)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010026bd7000fedbdf251400000004000780"], 0x18}, 0x1, 0x0, 0x0, 0x104}, 0x40)
syz_genetlink_get_family_id$auto_nl80211(0x0, r5)

2m19.740354962s ago: executing program 2 (id=2790):
r0 = getsid$auto(0xffffffffffffffff)
r1 = openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x103700, 0x0)
read$auto(r1, 0x0, 0x4000000081)
socket(0x28, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xe0, 0xeb1, 0x40000000000a5, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x61, 0x100001000000003, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x3)
r2 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f0000000100)={0x0, 0x1, 0x7})
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/010/001\x00', 0x20000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
fcntl$auto(r1, 0x800, r0)
mmap$auto(0x0, 0x400008, 0xdd, 0x38, 0x1, 0x8000000000000000)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram15\x00', 0xc0800, 0x0)
ioctl$auto_BLKGETZONESZ(r3, 0x80041284, &(0x7f0000000040)=0x800)
mseal$auto(0x0, 0x7dda, 0x0)
madvise$auto(0x0, 0x200007, 0x8)

2m19.480425713s ago: executing program 2 (id=2791):
mmap$auto(0x0, 0x101, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x1, 0x0)
umount2$auto(0x0, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = memfd_create$auto(0x0, 0xe)
unshare$auto(0x40000080)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="00800000", @ANYBLOB="010028bd7000fedbdf251c000000180001801400020064756d6d793000"/38, @ANYRES16=r2], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
socket(0xa, 0x80803, 0x6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/mtd/mtd0/subpagesize\x00', 0x80000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm/parameters/nx_huge_pages\x00', 0x42080, 0x0)
mmap$auto(0x1, 0x6, 0x5514, 0x409b71, r0, 0x12)
socket(0x10, 0x2, 0x14)
r3 = socket(0x11, 0x3, 0x9)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
memfd_create$auto(0x0, 0x2)
socket(0xa, 0x2, 0x0)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r3, @ANYRES8=r4], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x8800)
write$auto(r5, &(0x7f0000000000)='-\x00', 0xfdef)

2m18.888839455s ago: executing program 2 (id=2793):
readlink$auto(&(0x7f0000000040)='./file2/file0\x00', 0x0, 0x6) (async)
r0 = io_uring_setup$auto(0x1, 0x0) (async)
symlink$auto(&(0x7f0000000300)='\\\':.\x00', 0x0) (async)
mmap$auto(0x0, 0x1020009, 0xe2, 0x4f8, 0x405, 0x8004) (async)
semctl$auto(0x201, 0x2, 0x13, 0x4)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0) (async)
setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xd) (async)
readlink$auto(0x0, 0x0, 0x800) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x8, 0x8000) (async)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/lockdep_chains\x00', 0x10b402, 0x0)
pread64$auto(r2, &(0x7f0000000340)='/proc/Nes\x00'/22, 0x100000001, 0x100) (async)
readlink$auto(0x0, 0x0, 0x6) (async)
r3 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sysvipc/sem\x00', 0x88000, 0x0)
pread64$auto(r3, &(0x7f0000000140), 0x7fff, 0x3) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'bond_slave_1\x00'})
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/bonding/bond0\x00', 0xc0000, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0)
read$auto(r4, 0x0, 0x20) (async)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async)
openat$auto_proc_coredump_filter_operations_base(0xffffffffffffff9c, &(0x7f0000000100), 0x204080, 0x0) (async)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'wlan0\x00', <r8=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r8], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80) (async)
sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)={0x578, r6, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_IE_RIC={0x4a3, 0xb2, "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"}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x3}, @NL80211_ATTR_AUTH_DATA={0xac, 0x9c, "e20c310cabf76119f664543fc436c7951339f7e0306e3e96b5c6ddaf24bb6210c75339dad5fcd29e9454d76264973b4c0e5170174d39439c6eb47021b63e8e470102e6ee008cbf3ae1ec79e42e472f1cda6eb913153448875188b3e2ab7786161c02169129cfc24eb911b77d07836d4ac695dcda8e5a8ffe644e3b77d0093c293c15d66ad0b7069df03b30c33c6d82a09100b5a5eb427d3051a7f060d0338215310ff3098f8adbe6"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x253}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}]}, 0x578}}, 0x0)

2m18.290825923s ago: executing program 2 (id=2795):
ioperm$auto(0x7, 0x6, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
ioctl$auto(0x3, 0x2287, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)

2m17.905890723s ago: executing program 2 (id=2796):
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x2a801, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x4000000000, 0x4020009, 0x40000db, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
getrandom$auto(0x0, 0x6000000, 0x3) (async)
getrandom$auto(0x0, 0x6000000, 0x3)
listmount$auto(0x0, 0x0, 0xf4240, 0x1)
close_range$auto(r0, 0xfffffffffffff000, 0x2) (async)
close_range$auto(r0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x2, 0x1) (async)
r1 = socket(0x2, 0x2, 0x1)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r1, 0x10000}, 0x10)
get_mempolicy$auto(0x0, 0x0, 0x7, 0xfff, 0x3) (async)
get_mempolicy$auto(0x0, 0x0, 0x7, 0xfff, 0x3)
r2 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000240)='/dev/usbmon32\x00', 0x640, 0x0)
read$auto_mon_fops_binary_mon_bin(r2, 0x0, 0x0) (async)
read$auto_mon_fops_binary_mon_bin(r2, 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x80202, 0x0)
timer_settime$auto(0x10000009, 0xfffbf38f, 0x0, 0x0) (async)
timer_settime$auto(0x10000009, 0xfffbf38f, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="7d472dbd700049b5", @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x8}, 0x4000044)
r3 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf8d5feacf8510"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c001)
write$auto(r3, &(0x7f0000000000)='-\x00', 0x2fb)
socket(0x28, 0x801, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51)
shutdown$auto(0x200000003, 0x0)
mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0x7, 0x28000)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/input/event1\x00', 0x101, 0x0) (async)
r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/input/event1\x00', 0x101, 0x0)
ioctl$auto_EVIOCGRAB(r4, 0x40044590, &(0x7f0000000140)=0x3) (async)
ioctl$auto_EVIOCGRAB(r4, 0x40044590, &(0x7f0000000140)=0x3)

2m16.069070927s ago: executing program 2 (id=2801):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_LINK_RESET_STATS(r0, &(0x7f0000003e40)={0x0, 0x0, &(0x7f0000003e00)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="01002cbd7000fd370f4a04823ab429dbdf250a000000ca026f0f91e0c8c74d84ce3908ce17cba1e7c9ce3e51c3af0b4f7096acc7cbac173327d2e3eaf0b04a2b7b6449a3ecf003ab9fd1c97de7481eeaddd7b1d00f2e807d9ad17ce68151a8ce7e3282165a73d0f7634a5caf79fed20539f6bd30c2fb506ec973098e83e3013263ede94acf3b88b738b160cb1fb94392dba95bac51d5be83dbe6c2547c4c4481661c9480c1a5a4bf15fd0ffdbdee0d204acbfd74d84d42a0ba91b7ef508ceea369668a15df8b3c43a1"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x40040050)
r2 = signalfd$auto(0xffffffff, &(0x7f0000000000)={0x7}, 0x8)
r3 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/loop9/hctx0/active\x00', 0x800, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r3, &(0x7f00000002c0)=""/243, 0xf3)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto(r4, 0x80045430, 0xffffffffffffffff)
fremovexattr$auto(0x3, &(0x7f0000000080)='\\-\x00')
socket(0x10, 0x2, 0x0)
r5 = socket(0x2, 0x3, 0x1)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
getsockopt$auto_SO_DEBUG(r5, 0xff, 0x1, 0x0, 0x0)
r6 = socket(0x11, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r6, 0x8954, 0x0)
r7 = timerfd_create$auto_CLOCK_BOOTTIME(0x7, 0x7)
sendmsg$auto_BATADV_CMD_TP_METER(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYRES32=r2, @ANYRES16=0x0, @ANYBLOB="00022ebd700001dcdf2502000000080036000300000008000d0000000080"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vhci_hcd.11/usb31/31-0:1.0/usb31-port7/connect_type\x00', 0x400400, 0x0)
r9 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
r10 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
ioctl$auto_TUNSETVNETLE2(r10, 0x400454dc, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LIST(r9, 0xc0505510, &(0x7f0000000080)={0x3, 0x26, 0x1c5, @inferred, 0x0, "0100000000000000a5ff59c61ed5b9f7fe26fe87659c9dd52e8000000000dce62ff200"})
read$auto_kernfs_file_fops_kernfs_internal(r8, &(0x7f0000000180)=""/76, 0x4c)

2m0.757813739s ago: executing program 34 (id=2801):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_LINK_RESET_STATS(r0, &(0x7f0000003e40)={0x0, 0x0, &(0x7f0000003e00)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="01002cbd7000fd370f4a04823ab429dbdf250a000000ca026f0f91e0c8c74d84ce3908ce17cba1e7c9ce3e51c3af0b4f7096acc7cbac173327d2e3eaf0b04a2b7b6449a3ecf003ab9fd1c97de7481eeaddd7b1d00f2e807d9ad17ce68151a8ce7e3282165a73d0f7634a5caf79fed20539f6bd30c2fb506ec973098e83e3013263ede94acf3b88b738b160cb1fb94392dba95bac51d5be83dbe6c2547c4c4481661c9480c1a5a4bf15fd0ffdbdee0d204acbfd74d84d42a0ba91b7ef508ceea369668a15df8b3c43a1"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x40040050)
r2 = signalfd$auto(0xffffffff, &(0x7f0000000000)={0x7}, 0x8)
r3 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/loop9/hctx0/active\x00', 0x800, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r3, &(0x7f00000002c0)=""/243, 0xf3)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto(r4, 0x80045430, 0xffffffffffffffff)
fremovexattr$auto(0x3, &(0x7f0000000080)='\\-\x00')
socket(0x10, 0x2, 0x0)
r5 = socket(0x2, 0x3, 0x1)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
getsockopt$auto_SO_DEBUG(r5, 0xff, 0x1, 0x0, 0x0)
r6 = socket(0x11, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r6, 0x8954, 0x0)
r7 = timerfd_create$auto_CLOCK_BOOTTIME(0x7, 0x7)
sendmsg$auto_BATADV_CMD_TP_METER(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYRES32=r2, @ANYRES16=0x0, @ANYBLOB="00022ebd700001dcdf2502000000080036000300000008000d0000000080"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vhci_hcd.11/usb31/31-0:1.0/usb31-port7/connect_type\x00', 0x400400, 0x0)
r9 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
r10 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
ioctl$auto_TUNSETVNETLE2(r10, 0x400454dc, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LIST(r9, 0xc0505510, &(0x7f0000000080)={0x3, 0x26, 0x1c5, @inferred, 0x0, "0100000000000000a5ff59c61ed5b9f7fe26fe87659c9dd52e8000000000dce62ff200"})
read$auto_kernfs_file_fops_kernfs_internal(r8, &(0x7f0000000180)=""/76, 0x4c)

9.61862608s ago: executing program 0 (id=3218):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/system/clockevents/clockevent0/current_device\x00', 0x80500, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x1af201, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000340)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xcas\x1cJ\x99\x00:\x00!\r>\xa7\x1a\xd3\xd3\x1d\xf8\xbeb]>\xa7\xde\xf1\x0fZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd\xa6\xa4vM\xbe\xa2', 0x10, 0x2)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYBLOB="1a00"], 0x1ac}, 0x1, 0x0, 0x0, 0x24000005}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
recvmmsg$auto(r1, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0x1b}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000000000)="351ff6218163cce8505bf40fca856149f185354f86f6766b73aeb066b2a65290e689cb5a9cd45a63766508ae821ea42a555887244ce3a5676c4a8f62c1dadfd6efc8b8dd0eae0c03292f536b2b5042c923", 0x51)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

9.029343069s ago: executing program 0 (id=3221):
socket(0x1, 0x5, 0x0) (async)
r0 = socket(0x1, 0x5, 0x0)
epoll_ctl$auto(0x5, 0x1, r0, 0x0) (async)
epoll_ctl$auto(0x5, 0x1, r0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010b27bd7000fda5c5a62073660008000300", @ANYRES32=r4], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4040080) (async)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010b27bd7000fda5c5a62073660008000300", @ANYRES32=r4], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4040080)
sendmsg$auto_NL80211_CMD_SET_REG(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000040)={0x15c, r2, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0x2}, @NL80211_ATTR_FILS_ERP_RRK={0x3d, 0xfc, "1e70de7030eeb4b3c54222057fd1cb7cce2657dbdd835db6a3e1686f8d86857aa7780f3d9ac7c9fef48cb2198a7a500e7160fabc537cc73f1a"}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x100, 0xbe, "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"}]}, 0x15c}, 0x1, 0x0, 0x0, 0x90}, 0x3d9b086898c73983)
close_range$auto(0x2, 0x8, 0x0)
r5 = socket(0x11, 0x3, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptyw5\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x40045431, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r5, 0x40045431, 0x0)

8.712174346s ago: executing program 0 (id=3222):
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy11/netdev:wlan1/hw_queues\x00', 0x0, 0x0)
r0 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x88041, 0x0)
mmap$auto(0xd1, 0x4020009, 0x0, 0xeb1, r0, 0x8000)
socket(0x29, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000280), 0x81, 0x0)
socket(0x2, 0x801, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x8000000000000000, 0x2000000002, 0x0, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = socketpair$auto(0x61, 0x5, 0x80000001, 0x0)
close_range$auto(r1, 0xffffffffffffffff, 0x0)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0xa200, 0x0)
ioctl$auto(r2, 0xc0585611, r2)
r3 = socketpair$auto(0x8a700000, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r5 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$sock_SIOCGIFINDEX(r5, 0x80086601, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r6)
prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x6, 0x0, 0x4, 0x800)
ioctl$auto_KVM_CREATE_VM(r4, 0x4048aecb, 0x0)
io_uring_register$auto(r3, 0xffff, &(0x7f0000000080)="eea8ae31edc16e892e179be029c13177fb2205212fa74d594ed5ef704a60275b5cdd2e95a25e652f159c4245dfe6629a0d8e54d0e385af5ce7df4e738543867fafb73be23373433c76bbb010f4157e9b55a21aa9ed0e4f2f8eb0d8329818758aadfa042c7241d2ef714fcef8f93830983751", 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

8.286059325s ago: executing program 0 (id=3223):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptysa\x00', 0x40001, 0x0)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x8800, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, r0, 0x8000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r1, 0x80111500, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mlockall$auto(0x7)
mmap$auto(0x0, 0x400008, 0xdc, 0x9b72, 0x2, 0x8000)
mprotect$auto(0x0, 0x7, 0x9)
writev$auto(r0, &(0x7f0000000100)={0x0, 0x40710e}, 0xf)

7.845395239s ago: executing program 3 (id=3226):
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto_fake_panic_fops_(0xffffffffffffffff, 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ad00, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
r0 = socket(0xa, 0x801, 0x84)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
msgctl$auto_IPC_INFO(0x100, 0x3, &(0x7f00000012c0)={{0x632, 0xffffffffffffffff, 0xee00, 0x1, 0x5, 0x1, 0x80}, 0x0, 0x0, 0x1b, 0x7, 0x5, 0x7, 0x1, 0xdd34, 0x7, 0x8, @raw=0xffff})
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000000580)=ANY=[@ANYBLOB=',\x00\x00'], 0x2c}, 0x1, 0x0, 0x0, 0x44050}, 0x4008000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x54)
get_robust_list$auto(0x0, 0x0, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
setsockopt$auto(r0, 0x1, 0x3f, 0x0, 0xb)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r4, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, r3, 0x1, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4c005)

7.710832253s ago: executing program 6 (id=3227):
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x40014}, 0x24008040)
write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0xfffffffffffffffd, 0x20009, 0x4000000000e2, 0xc52, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
pread64$auto(r0, 0x0, 0x44, 0x800000000000e2c)
socket(0x2c, 0x80003, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80040, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x20)
read$auto(r1, 0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000900), 0x20000, 0x0)
openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/options/fields\x00', 0x121082, 0x0)
writev$auto(0x4, &(0x7f0000000080)={0x0, 0x8}, 0x1)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
select$auto(0x981, 0x0, &(0x7f0000000980)={[0x1, 0x1, 0xffffffff, 0x72634de1, 0x4000000000, 0x9, 0x0, 0x4, 0x1, 0x3, 0xc76a, 0x5, 0x2, 0x2, 0x7, 0x9]}, &(0x7f0000000180)={[0x4, 0xd, 0x5, 0x6e, 0x1, 0x8, 0x6, 0xfffffffffffff800, 0xfffffffffffffffc, 0x200, 0x7, 0x8, 0x2, 0x6, 0x3, 0x9]}, &(0x7f0000000a80)={0x100000000, 0x2})
connect$auto(0x3, &(0x7f00000000c0)=@l2tp={0x2, 0x0, @remote}, 0x55)
mmap$auto(0x7f, 0x7, 0x2, 0x13, 0x602, 0x5)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x0)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
openat$auto_proc_mountstats_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000040), 0x52080, 0x0)

7.487887976s ago: executing program 6 (id=3228):
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) (async)
socket(0x10, 0x2, 0x6) (async)
socketpair$auto(0x10001e, 0x4, 0x8000000000000000, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async, rerun: 64)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0xdd, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0) (async, rerun: 32)
io_uring_setup$auto(0x6, 0x0) (async, rerun: 32)
socket(0x840000000002, 0x3, 0xff)
connect$auto(0x3, &(0x7f0000000040), 0x55)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x3}, 0x3, 0x818) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
open(0x0, 0x22240, 0x55) (async)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
r0 = io_uring_setup$auto(0x4, 0x0)
close_range$auto(0x2, r0, 0x0) (async, rerun: 64)
arch_prctl$auto_ARCH_MAP_VDSO_32(0x2002, 0x3) (async, rerun: 64)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) (async)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) (async, rerun: 64)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) (async, rerun: 64)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) (async)
write$auto(0x3, 0x0, 0x800)

5.877180626s ago: executing program 6 (id=3230):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0xe882, 0x3, 0xffffffffffffffff, 0x0, 0x0)
getsockopt$auto_SO_PEEK_OFF(r1, 0x6, 0x2a, &(0x7f0000000040)='(\xe2\x00', &(0x7f0000000080)=0x2)
r2 = timerfd_create$auto_CLOCK_MONOTONIC(0x1, 0x9)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r1)
r4 = getpid()
sendmsg$auto_NL80211_CMD_GET_SURVEY(r2, &(0x7f0000000e80)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000140)={0xce0, r3, 0x4, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_BEACON_TAIL={0x85a, 0xf, "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"}, @NL80211_ATTR_PROBE_RESP={0x42, 0x91, "c5ee8331b6418b96838b2172e10068e949797971b6dcb21920a31a58cf33b1a9fccbc2ea1be65124a438806cf0d6dc78649ec3b62e78f14897119455eda2"}, @NL80211_ATTR_KEY_SEQ={0x10, 0xa, "daf0fab548eff3f8c036a61d"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x9}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_MESH_CONFIG={0x33f, 0x23, 0x0, 0x1, [@nested={0x1a8, 0x30, 0x0, 0x1, [@typed={0x14, 0x14c, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @typed={0x8, 0x8b, 0x0, 0x0, @pid=r4}, @nested={0x4, 0xa2}, @generic="47233f06489ca68581136b867aa5d94fe712b05df9522dc6fbb6cfe7fd2359832ec3be1eebd316083d9b38c008aa09c28853c7ad1a7b1ba90e877c41b43b687dd8b0e4dc577a120ebfd886df990322e0a43527fdc5b5a0de6b1de6ba5457f3a5508777d214913b6328f87e8b42f593227e22bd2cf4", @generic="e36236e29f5778ae007c81a21056ba73477e4656c5ee5ca2af00ba42b7c1fdf521d87d091429b251d0c19223c83037b375c9a050d929ad958696f0001b37079e0d59a6824825950269af91af57e5ef79b0071ca31d6f656c075f563f669d5476ccbbd5041a117de8592ec3b74050b3332eafe5be15b690382ce4a31d1857d89c37a3a7c59b0e9eb4ee5ed6", @nested={0x4, 0xcd}, @nested={0x4, 0x71}, @typed={0x75, 0x64, 0x0, 0x0, @binary="732b2433d18c56c36ee48c6aca95fd97359a34a915b5f0bb5d0ef0ad758ded0143af5fb19adcffa1c585759d6db4f49f6843900405fc4934b9efa2e2d8ad524f1dcd42f8290c759f950392a9bf9de19b0301122834485cdacd02b7138c1561cb703c5b62ad705e5aff3073ef5122c71fc6"}, @nested={0x4, 0x11}]}, @generic="b66157ac4b4a0df52536a680e1dc6fad39b6f878f169048181187e0f82346145381cc17fc46000e1bb3b9b2202f442149ded74502c1cdf02f23983ea4df562a88f7daf1c66f844504f036c5fbfaf106cd92820dd6454be75ab55f7a029d5dfd1b88fdffcad791e7332e6247f5a8fa64ffe782140bbfea071ec947620806517e454bc2ab36a30a0ebff346368b6f7efdb6f7610826ea16d952e3d073f8b321e4e6ab043d7a3e4f1fffd9d4bc7bbbb800f2422e1cccd1144f335070beebe36de54e35be516e9f50f9fa9081e05cb6552ad3b385db4", @generic="c8da7cd3c40abc31f7d0afa17b1c332f3623e848b1f197cb2a490f3edb88ed0260e2a0a5a57cb6e4f65893f557dd1125e1b40e368f2175b5de253ed929c1dd85701e1eb531c2d76f912c5c74246c0dec9065e34f61afdaac1046b59d648f1a1b74293982f2e7f150e5c39ea7b607ee1ad423cab78cfe77a8b379500fd3e5962ff7c519a4bd39e95da5f36f1820f89b5c5d8204fc7ae84e6ae13b68208e53926997243903c79dcaf412575ece61a75952163da7697a3b91e3003d8380e2f3ba"]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0x26, 0xe8, "7e6c872808541a2e9bc5790acdd2e5ccda9ad1d33dc887714fbb0a66d31949111489"}, @NL80211_ATTR_MAC={0x9d, 0x6, "5d4162c5fcce9e1397434ebbb819010d8ccb08bf101c3443399cf1a870a91de91eb8fbbc5f1017076d207122b22ebe922992c01d376798a7638b74cacc0f94b479f6a1f6ff4ae336aa81b22e2b11839839b6bf7830d1db78874b822b7dba416bd2817a670c2120c75af71fcc6cf95f2b38f8224e5bd520aac35c4b0b6a45e61153e13de394ef1c35b4fea5aeb21db6043b0a370b24f897d54e"}, @NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0xfffc}]}, 0xce0}}, 0x8090)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)

5.310515925s ago: executing program 0 (id=3232):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) (async)
pselect6$auto(0x5, 0x0, &(0x7f0000000180)={[0x2, 0x8, 0x9, 0x3, 0x80000000101, 0x1c00000, 0xa1, 0x400000008, 0x48, 0x8, 0x5, 0x4, 0x1, 0x0, 0x80e, 0x80000001]}, 0x0, 0x0, &(0x7f00000000c0)) (async)
r0 = open(&(0x7f00000000c0)='./cgroup\x00', 0x105040, 0x0)
open_by_handle_at$auto(r0, 0x0, 0x8000061) (async, rerun: 32)
mmap$auto(0x2, 0x7, 0x2, 0xeb1, 0xffffffffffffffff, 0x1e138) (rerun: 32)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64)
r1 = socket(0xa, 0x801, 0x84) (rerun: 64)
r2 = socket(0x2, 0x3, 0x1) (async)
setsockopt$auto(0x3, 0x0, 0x3, 0xffffffffffffffff, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'veth1_to_bridge\x00'})
mount$auto(0x0, &(0x7f0000000100)=':,\x00', &(0x7f00000002c0)='2V\xe8*\x1f\xa4%|7\xb3\x00\aTU1_\f\xd4\x84\x19K\xff\xe9\x14\xe9Qf\xa1\xc3?\'\x15\xce\xbb\xbc\xac\xa6\xdb\xd1!0\xfcYN\xa4mH\fk\x1b\'!\xde\x80DW\xa7\xc8Ry\xf5\x98\xec\xc4}7-\xb7\xc3\x9cL)\x92\x86!\xe4\xd7\xa2\x9dK\xce.\xf6\xc9\xce@\xadd\xa6U\xbf\xc6\xc3<E\xee\xdfBA7X?\x1fX\xbd]\xa1\x00\x972\xb9\xec,\xaeX,\xc6$\xf5\x81\b0\xa1\x9d~\xa8Y\x99\xc1\x82\xb9\xae\xca\xb90\x82\xa5KC\x87\xab\x9fCx\xa6D\xbd\xda%y\xb7$\xe6\x85g=T\x15\xce\x1bz\x8a\a\xb9)\x92^\v\xdbLq9\xb8\xaa\xe8\'=Q\xe8\x16\v\x92\x91\x01Qb\xc1\x06\x8e\xb6\xb21\x7f\x88\x1e\xdf\xc5\xa5\x85yY\xf7\xbd:\xf6\x9f\xbf\x8e1BF\xc9\xd1\xbdw\x19yF?\\\xf2jV\xabNxc\xc2G\r\x84\t\x11\xcd\xde(\xbb@^r*\xdd\xcfC!\xa4\x19\xbb\x0e\x98]\xd3\xbf\xf7', 0x8, 0x0) (async)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) (async, rerun: 64)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) (async, rerun: 64)
mount$auto(0x0, &(0x7f0000000100), 0x0, 0x2000000000100000, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0xf000, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="240008002f792fef406d367824a735032886ffec5f848cee26844fac20e7e3366eae702a020fc13db71ffc7a4ba803c9b6fac434746c1eb349744339e5542b7f9661436fee14dac85301d0fee7ff7119748dc18c7fd7c18e830000000000", @ANYRES16=r3, @ANYBLOB="130026bd7000dddbdf250200000008000300", @ANYRES32=r5, @ANYBLOB='\b\x00a\x00\x00\x00\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894)
set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x200000007b, 0x4) (async)
syz_clone(0x83118900, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) (async)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async, rerun: 32)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) (async, rerun: 32)
prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x0, 0xffffffffffffffff, 0x9, 0x7) (async, rerun: 32)
r7 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/20u\x00', 0x82800, 0x0) (rerun: 32)
pread64$auto(r7, 0x0, 0x56, 0x7)
socket(0x2, 0x1, 0x7) (async, rerun: 64)
setsockopt$auto(r2, 0x4, 0x5, &(0x7f0000000080)='*\x00', 0x200000e6) (rerun: 64)

5.214060346s ago: executing program 3 (id=3233):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
readv$auto(r0, &(0x7f0000000000)={0x0, 0xffff}, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
madvise$auto(0x110c230000, 0x1, 0x9)
io_submit$auto(0x3ff, 0x0, &(0x7f0000000100)=&(0x7f00000000c0)={0x7fffffff, 0x1d0, 0x9, 0x0, 0x4, r0, 0x2, 0x0, 0x2, 0x0, 0x7, <r1=>r0})
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_TP_METER(r1, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x48, r2, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@BATADV_ATTR_DAT_CACHE_HWADDRESS={0xa, 0x24, @remote}, @BATADV_ATTR_LOG_LEVEL={0x8, 0x36, 0x3}, @BATADV_ATTR_DAT_CACHE_IP4ADDRESS={0x8, 0x23, @remote}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x7}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_BANDWIDTH_UP={0x8, 0x1b, 0x4}]}, 0x48}, 0x1, 0x0, 0x0, 0x4080}, 0x4000000)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000180)=""/178, 0xb2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0) (async)
readv$auto(r0, &(0x7f0000000000)={0x0, 0xffff}, 0x5) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
getrandom$auto(0x0, 0x6000000, 0x3) (async)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0) (async)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) (async)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) (async)
madvise$auto(0x110c230000, 0x1, 0x9) (async)
io_submit$auto(0x3ff, 0x0, &(0x7f0000000100)=&(0x7f00000000c0)={0x7fffffff, 0x1d0, 0x9, 0x0, 0x4, r0, 0x2, 0x0, 0x2, 0x0, 0x7, r0}) (async)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000240), 0xffffffffffffffff) (async)
sendmsg$auto_BATADV_CMD_TP_METER(r1, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x48, r2, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@BATADV_ATTR_DAT_CACHE_HWADDRESS={0xa, 0x24, @remote}, @BATADV_ATTR_LOG_LEVEL={0x8, 0x36, 0x3}, @BATADV_ATTR_DAT_CACHE_IP4ADDRESS={0x8, 0x23, @remote}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x7}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_BANDWIDTH_UP={0x8, 0x1b, 0x4}]}, 0x48}, 0x1, 0x0, 0x0, 0x4080}, 0x4000000) (async)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) (async)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4) (async)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000180)=""/178, 0xb2) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)

3.92774895s ago: executing program 5 (id=3235):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0xffffffffffffffff, 0x0, 0x103)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x1, 0x4000000000df, 0xeb1, 0x401, 0x8000)
futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa)
sendmsg$auto_MACSEC_CMD_UPD_RXSC(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x48010)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/block/parameters/events_dfl_poll_msecs\x00', 0x80002, 0x0)
mmap$auto(0x0, 0x4000b, 0x7, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
inotify_init1$auto(0x3000000000000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x25, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x15, 0x5, 0x0)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/arch_status\x00', 0x100382, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
inotify_init1$auto(0x3000000000000)
socket(0xa, 0x2, 0x3a)
r1 = io_uring_setup$auto(0x4, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, r1, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(0x3, 0x40106f52, r2)
openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000280)='/dev/etherd/revalidate\x00', 0x541, 0x0)

3.840530334s ago: executing program 6 (id=3236):
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x40014}, 0x24008040)
write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0xfffffffffffffffd, 0x20009, 0x4000000000e2, 0xc52, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
pread64$auto(r0, 0x0, 0x44, 0x800000000000e2c)
socket(0x2c, 0x80003, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80040, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x20)
read$auto(r1, 0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000900), 0x20000, 0x0)
openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/options/fields\x00', 0x121082, 0x0)
writev$auto(0x4, &(0x7f0000000080)={0x0, 0x8}, 0x1)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
select$auto(0x981, 0x0, &(0x7f0000000980)={[0x1, 0x1, 0xffffffff, 0x72634de1, 0x4000000000, 0x9, 0x0, 0x4, 0x1, 0x3, 0xc76a, 0x5, 0x2, 0x2, 0x7, 0x9]}, &(0x7f0000000180)={[0x4, 0xd, 0x5, 0x6e, 0x1, 0x8, 0x6, 0xfffffffffffff800, 0xfffffffffffffffc, 0x200, 0x7, 0x8, 0x2, 0x6, 0x3, 0x9]}, &(0x7f0000000a80)={0x100000000, 0x2})
connect$auto(0x3, &(0x7f00000000c0)=@l2tp={0x2, 0x0, @remote}, 0x55)
mmap$auto(0x7f, 0x7, 0x2, 0x13, 0x602, 0x5)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x0)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
openat$auto_proc_mountstats_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000040), 0x52080, 0x0)

3.602596904s ago: executing program 6 (id=3237):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/mtd0\x00', 0x10000, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/pn533_usb/version\x00', 0x210000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000280)=""/234, 0xea)
bpf$auto(0x0, &(0x7f00000003c0)=@bpf_attr_3={0x101, 0x0, 0x0, 0x96d3, 0x9, 0xa0f, 0x3eec, 0x1, 0x9, "b8e32d5408612f8d6dee86c572b764ba", 0x0, 0x4, <r2=>r0, 0x8, 0xfffffffffffffffc, 0xfffffffd, 0x0, 0x2, 0xf8e, 0x4, @attach_btf_obj_fd=<r3=>r1, 0x0, 0xb, 0x6, 0x33, 0x5, <r4=>r0, r1}, 0x6f8)
read$auto(0x3, 0x0, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
readv$auto(r0, 0x0, 0x401)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x83) (async)
getrandom$auto(0x0, 0x6000000, 0x83)
ioctl$auto_SNDCTL_DSP_GETOSPACE(0xffffffffffffffff, 0x8010500c, &(0x7f0000004040))
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0)
mmap$auto(0x100000000005, 0x783, 0x3, 0x8000000008011, r5, 0x40)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) (async)
r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/authorized\x00', 0x482a02, 0x0)
sendfile$auto(r6, r4, 0x0, 0x1000200)
write$auto(0x3, 0x0, 0xfffffdef) (async)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfffffdef)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x1, 0x1)
socket(0x10, 0x2, 0x0) (async)
r7 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r7, &(0x7f0000000080)={{0x0, 0xc, 0x0, 0xf3, 0x0, 0x20, 0x3}, 0x5b3}, 0x200, 0x100)
sendmsg$auto_NL80211_CMD_GET_REG(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYRES8=r3, @ANYRESDEC=r0, @ANYRESOCT=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x4048000}, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYRES8=r3, @ANYRESDEC=r0, @ANYRESOCT=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x4048000}, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)
recvmmsg$auto(r7, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) (async)
recvmmsg$auto(r7, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x1000000000009b72, 0x2, 0x8000)

3.193175402s ago: executing program 3 (id=3238):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x1, 0x100)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/bonding/primary_reselect\x00', 0x1e2142, 0x0)
sendfile$auto(r1, r1, 0x0, 0x7fff)
unshare$auto(0xa4)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
unshare$auto(0x9)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r3, 0x4c06, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)
write$auto(r4, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9)
r5 = syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x10004010)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x64f4040a6ccda016}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="fffffffd", @ANYRES16=r5, @ANYBLOB="00012cbd7000fcdbdf250a00000005000200000000000600010061c5000008000a000c000000060001005d00000008000a001803000006000100b438000008000a000100010008000a000200000008000a000600"], 0x5c}, 0x1, 0x0, 0x0, 0x220088c0}, 0x40)
ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r4, 0x80045105, &(0x7f0000000300)="48c9c499a9a55fc2a836723fb70537445460c9f0892a287c9eb350e6b7502695a40747d57c6d503a9321dfb65dfcdd31e011f135fea8b10f802afe673cf64aa66c9f61a38fcb31374ce2e32ab0609681ba696929e2d96bb3682b03969701b37156ff8b4721ea5f896578a106c1f2650052e1d1590d649f180185beeb9d020a557604128a5fd3")
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f00000003c0))
syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x6, 0x7, 0x4000000000de, 0x440eb1, 0x401, 0x300000000002)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r6 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/tty/drivers\x00', 0x2000, 0x0)
read$auto(r6, &(0x7f0000000000)='/proc/scsi/sg/devices\x00', 0xc9e3)
r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/net/rpc/auth.rpcsec.init/channel\x00', 0x441, 0x0)
write$auto(r7, &(0x7f0000000000)='\\@-,@n', 0x60)
socket$nl_generic(0x10, 0x3, 0x10)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xe, 0x5, @_sigchld={0x0, 0x0, 0x401, 0x5, 0x3}}})

2.89430209s ago: executing program 5 (id=3239):
select$auto(0x50, &(0x7f0000000140)={[0xaeb, 0x10001, 0x80000001, 0x4, 0x3, 0x1ff, 0x7, 0x5, 0x8, 0x2, 0x6, 0x6, 0xff, 0xbe, 0x9, 0x6]}, &(0x7f00000001c0)={[0x2, 0x9, 0xf, 0x2, 0x1000, 0x81, 0x2, 0x8000000000000001, 0x5, 0x8, 0x100000000, 0x5, 0x7, 0x1, 0xfffffffffffffff7, 0x7f]}, &(0x7f0000000240)={[0x100000001, 0x5, 0x8, 0x7, 0x3, 0x401, 0x80000000, 0x6, 0x8000000000000000, 0x3, 0xdc, 0x9, 0x3, 0x46eb, 0x0, 0x8000000000000001]}, &(0x7f0000000080)={0xfff, 0x8})
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop9\x00', 0x0, 0x0)
ioctl$auto(r0, 0x127d, r0)
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x8)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x220900, 0xae)
rename$auto(&(0x7f0000000100)='./file1\x00', &(0x7f00000004c0)='./file1\x00')
mmap$auto(0x2, 0x800, 0x80, 0x12, r1, 0x9)

2.728109813s ago: executing program 5 (id=3240):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0x8, 0x9b7e, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0xffffffffffffffff, 0x2020009, 0x3, 0xda15, 0xfffffffffffffffa, 0x8000)
process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000140), r1)
sendmsg$auto_IOAM6_CMD_DUMP_SCHEMAS(r1, &(0x7f00000000c0)={0x0, 0xa6ff, &(0x7f00000001c0)={&(0x7f0000001ec0)={0x14, r2, 0x721, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000001}, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/mempolicy/weighted_interleave/node0\x00', 0xc2082, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000001600)=""/4098, 0x1002)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xa083, 0x0)
r5 = open(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', 0x220080, 0xb5d1af1605322c72)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x0)
pidfd_open$auto(0x1, 0x0)
open_by_handle_at$auto(r5, &(0x7f0000000040)={0x8, 0x100fe, 'w\x00\x00\x00\x00\x00\x00\x00'}, 0x2)
r6 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/controlC2\x00', 0x80, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_TLV_COMMAND(r6, 0x5452, &(0x7f0000000080)={0x80, 0xbed0})
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
ioctl$auto(0x3, 0x80000541b, 0x38)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)

1.74843296s ago: executing program 3 (id=3241):
r0 = socket(0x10, 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='^\x00', @ANYRES32, @ANYRES32, @ANYRES64, @ANYRES32], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, 0x0, 0x40090)
r2 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_GET(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000400)={0x1298, r4, 0x100, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_PUBL={0x19a, 0x3, 0x0, 0x1, [@nested={0x14, 0x114, 0x0, 0x1, [@typed={0x8, 0x111, 0x0, 0x0, @u32=0x8e}, @nested={0x4, 0x12d}, @nested={0x4, 0x2b}]}, @generic="ff0c391973967b8e9fd3ba8627dd0c51bee01b9bef96126939a588dd5c247fb13512ea23d207df7fa0c90818d3a37d6d6a514afdb6e95dc2f716bb22ced4a78c678ccd83192c", @generic="8568b85989042ccaa2f480df4ba2154a21674e1356ee7ed1394bb6ba8def22994a78e2b32d5696535e8055b18f6613fd81e51c7b614b897114019ca026f364970f00a8f7ed5b9ca22dc6a6a1894adf52a5a6306f69089a3eae249a47a0065c12eca0075bf0f74926e59a18c4e6bed22664cb78df5fc9f4cf283defff5a144df6da87cf3378aa4ab32c724155b9d57f29768a300da88390a1f6f504368c6c1d559447912f8c22b2d21aa1d8842f34f59c53e2742636c2f5f386dfee755addc92020aecad4fe756dbcbea10a353ad9d972cfa6086eec1e9ad26050102714d8ae02", @nested={0x4, 0xfa}, @nested={0x55, 0xac, 0x0, 0x1, [@typed={0x14, 0x7, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @typed={0x8, 0x9b, 0x0, 0x0, @fd=r0}, @nested={0x4, 0xe2}, @typed={0x8, 0x141, 0x0, 0x0, @fd=r2}, @generic="9c9abf00123dd8113d5d0be23d3c3ee1a6", @typed={0xc, 0xb2, 0x0, 0x0, @str='ethtool\x00'}, @typed={0xc, 0xfc, 0x0, 0x0, @u64=0xa}]}]}, @TIPC_NLA_PUBL={0x10e7, 0x3, 0x0, 0x1, [@generic="02861f2a776a339bf17d157ede4dcd000141358e46f427c6481f3cd549ff471715c4ae18dfe4798cceaca6f06c8b642a841f65f7fa9d76a7a490e88044d5e70e77fa382518362466ef5b095ad1ec7dec84b6a40c802479eb32a005827610076d87a80b5082dd6dcee76c3c845c5bdbf066f9a8876d1aad6975dba7efbca2387f03a1e28cf7d005", @typed={0xc, 0x3c, 0x0, 0x0, @u64=0x5}, @generic="3745356d1c70b7b6211f75a14fb324688abed8e53aaae32f694cc917bc0951ee49170d853fd6a1ff83d4d452fff1c62a102cbddee4b151b850a2b52758bd8ed4baca3f9e0be0240e", @typed={0x1004, 0x10b, 0x0, 0x0, @binary="706430ad30a45adad8f991c0c2991687d1733739a9c2dfec24188bec0b6399af1c4f75eef21768991cac5d87aefd3d078693dfea6d26f5a5cd9d469d1fb4a4bcdf0210a6e8a15fa401be8614e9f5d747e49f9025acca8a7b78e39aa5d2979cda0e66dfedabf536cc5f8ae4ae04c5b850d9820edb7c4698049ae708f4ad64ddeab9afe9525c275c2734c70c0d7a776bfcde7a5160127dd216fd1cb4acdcf5988d7a095d7bbdae38967fe0da452be3c86190392704866b7fc07b29d3821fc3bea402f30e27a5f190fb91454757221186249038354ad1f707174e5285a8d109741394ecb118f81138c27aef000d8d7bcb26232aabf750f231d25b3381ba7f8d0a1bac97e22b87b5e4758e4c6499327cadfa327e57c9031333cc0f04ef5b89287189dc844230ddfef668e3fe0b127fcab52649d0ea45e1d2d57a35b76b5d9aecd54e44e49ec228aa64d74bc954518f065a66f80c53695ead2f37ce736dc83cf1f51133678dc6157656588d813bd0e8ea608dd0a7a666f032146044c9bd7fa082da362f264f0fddbd7c264b8e0fce3dcda1b234b9f6016721d57507194098dc271d5b6869df7ce431e2ca119b925c516ddd19d14ff16cf2b7e65dafb504403487ec22327db613883d108c40a0a2beb4bfc9401b13fb7caf4efde07d6fb2163f8e4d0a80ec1425b0cba08f846900ef1eacb163d03724311c99f3c5ba4bf4ae13f9187e6d393bbc99464e3af6137e4603b6d34089c90899e2a9d45a16dd008902bd3b85e06c283af86c5ffde3cc0d414ad33f7f0f1c5ae42f61d2cabae2efd23d90f673052d823cfe32748aa18d75fa3254b615ed4fc5c3d1d0a3833e5a7e64e4851acacb29b9830db88808315f332f625279c7856ba13789f5637b71186d4634819a7cdd4695997e58cb310ca1506c7cdd8961ca0f11bc35d26349c4922c2e83e18980b5445fdea2c6c5d7338d2e298eb46e02faf98e8b476fac5badac4064f3ee48ec7fb13d9d61288445e893640906ecd8c6a4415833592142aa734894502292a983f0056557a30c7531a88a7c2d8eaa8a2c85d24d26a383e29dab3915dce4b63a2b6d2eb2e1e0543073a695912091dc5aa9b7953dc2281807ca63c9959d0ac15bd63497f0ad8b73a4669f5e35229b88e1ccbe15b7fa320083ad4f6975df4abee7d46bc13453f668234db9bbf07c4e08b71a9eb124d22f2f04cfbe2348f4883c7063acd07b4c78b54631d0a2f4b1e191804c4922f3bc974185970d21bbbd57d3dc564bc89b7e357f5d46797d2aed10e9a7e34cc88b766b54d201e978ffeb58512ccd4668d139679aa9ae1319e3bb34de48828d08adbe8cd2fe934ba0566b1b83c5a26a88c0a4029dc83adde87c294f537c189326172dcf7689c90fa513048be12307ecf45036f0d6488d398217d21dc345dd3ce706cc7879817c4be9235955ab06f395654e3158864df3383e95674ac2d00b7b5e9aa499c6b2e028aad5c5a87efe8c266da8c5ff38a4476a0688495cd40277e92f139ffc885422d5527574b0e99362b8d23b67c5d29008174f58938cfc22b70b90f351edea2dde99ae69047566862453d96dbd197e69fbe23c6a4caa5c7df92cb4695ef54d105c0fd02cf66e1c1760b9715deb29f73e68641b6205909753ec72a6adcbe0084917296950677e065dad10cf0589a9e0de748e5e72313f0f67191d0b2ba20a0a1ee709917ec7404fa813ab468cba7714da30f27fd0b8bd954b4b0e0bbf499965193a534a2eb0aae9d05a5f29bf96869aa7956b601290e11442ee16feb1860953200d1f65b19bb3a744fa229cc6a9933e50b40a7912b10dc3ad01ec24f195a104e1fa9f79a2885592af4fbdb8fcfccd1e0c9a748cb4dcb28044a3ce7fa002e741e21890ff56aadc0657f37c4e86b7ab71b9fcad5280031f3b15193405f9deeaa7703c412d2c3d4ac6288fe5bd72d3a51d5dd3732acefbe0d00f3eba909b95d62048cdc577da740d0532b1911d62f4d19ab4b0bb44f2c87f50e8d576706c90ecaca48dd2d9faadc4776bbfada7f9a333045503d21ae69e703520fb5e35a135b9adb09d98d752fb6eb07213ea9857a457503bee8afe435f59c09bf1369e0323fbfcace751ae3c288c9aeb9613a989f5c9f7ac93b87d373f9a52cd1d22ea9f2bea599c900d6a4b6be20ee28956e7381821b30233260221e679fc29d102cf5b527b91d19c5560e42e35d3661889acc8f333693fbee31ca2f2dcd1ab4276d5e6cb7356e71c4087913fbdd68731981fb591d82fce1c9ba8d1746e21e394da831bff302cee05e5d0acd5ae252eab7e82375164389ba97ad69477001ad2a3ee80620c9a57fe857e49f07679df5d35ac62569ace7b68b2d34dc13749107c1be0a4bd5e7d25bc890230b9a3b213b3a1a8b1d732637cb4bcdd2a6c87a9e62f7750a0f8e68d61e2efb13c1e5c04f65a74d4ccf2bbb322a992da0223fc57eba99fc854f74df267ad4abfb7f5b17b71215563948a2d1a39641003b3b3cdbfdf865e3dc1756afd130fd5fc08e5b646f8ffddec2874490bc9ce2aee809c8b7a4928009482894222409b0cc5a4ca6235220fd5188e8ad26756c1c41b2518a2c4801f742349f662584da4920912cc4ddbac2b0b6c356b6c661aec527c5218735400c49d2f4aa6bee5f83dee824d44851bb21b0631a02cae3e81e1f87ef882ba995c261bcf6f18d95646333a231c5fea0aaf6a8f5bea7d302aa6f272123325a2f6be832bb44d643ddcb093f8b22af89e3da003f96a675b68d037226adc8233d9dec72ce7a7a190c2d9d4b8f6e90a68b74dd1751534c2739e04ea3555198037fe2c143414047061c9dbfbef6e0ab57731028a9c3abd2a48c8e7a617688fb1807402644797c5d02576d9bfc737e9fd6078452b9e34053664a96e5316e2f0e3a656eb67f35d138d5d2df7bb676602417c0a3bed5d1299ec27e1935e2f250a08042423d11445731cb286ce133d1272574da43caf17321ead3ebf5904e05c104152679fa8c94ef50c6155c502abfabdc7befa8136891b856862c872e82c63f1a333bd8145841ed58cf2a7400f1d37596327b78dff74b0c798624b4395041656c60e3bbbb6f2e06441b6f08711c332faa472e2797eef1b4b6ade3d6dabcd2fa1839e67bf2135dd7c85678c95bf3c083a8858e2ff0c72ab6adff3f4fa757d32cd7d8269d22074639597cf0df60270b49e09f7b1de894ae0765b0b2f4443aec3bcccecc0417fa67cdf7a89c6eea32f1a9949543288b505f0489d0288f38e7ba56256840a5e74a3efd4fd1cf20b5042c81e0e3fab4c45dbc8290548104fa04e4169253ed4f5e58d25669039194941a9eedd00b97f95442678dafe49cdc0332441c626250d84c30e54f393173cd369dadd64f5f7985f9e86b57769556d1f942d9a7a59533943a9361d9e0fab85080df5f108bb0568df901a9cad605e59fd02d4385c7105eb38ad7497fabefabb98e7270d292313eae8e7c15e16cfae1d0b73643f851217c6e23d1c1f66f129c436aa994f7ce508ba1adb27667ea934a50d77b8ba00bd42f13e2528421a82b8493a2dafa14f2c678c193cafd04e13c7f9b4e87583e7c3acee6f61b5ff2ddb98e7e0d83c60edb56a2961457910e43be259fd100e0b9dcc2233fab59cad91d960dc5cac8464b0ca0ed2dbd489d8b1489c21dd40a55c48560d6cbf8159df398bcf240b3f0f59f6e056415e91204a50af5920bf61aa38a05d74bbe4dddbec48ff75238c886a0e3e279e6a3923f7138a583d8590e94bcac00b4ce2ff53fc9a43d4974c2986fa2fdbf7638e26a1bbd009c5f13ee3373300f90ce0283af4d68db95fe62d6d3b154790aa16429b4fdf9345387e54bf7944374f7b8ab393b136b76a7725741fb76d2107440d98fd6b59a187c8b99bad620e8af3afa389ff9ef9fdf3705074b52aae111d2775d0f0b3d6f0da7dcefcde3f4405675e6823420b1c141204034e0b771b70275aa6256c5f7d00690c190693ad08dee38c1c2a4b9622f6964bc7781939194894f5ae21406d60078c85cd5b51dadf51e23234e0f250371f6f815692244df544653f07ebf50a62d03a44bb1368b902cc26e3a197c0040e00c4d97547c4ef7c4382f490fd71eacd24894a8768b1082ecd64c331fddedd12cc11a74a48d5d2b269d900b79927da1b269f8be5e7ec78c7645519cb5874b4c6216042de3a808c251000b38c756d606cb08c022ca761917cdb6eb5b89b05a9a3d3275c7551bd9a56a92d4613ea521a67ad21c0e544084d51e87a5a7d51423489f7b0324ec2a8a2531746f818831a193ba65d52ca4e778a630b832313ad7d654bd0aed43866e3054d6d287b49510b046a33e4c0210fc16fb7a1833e218863887fe3f293d14fb12cfd84c3eb47360573fda09fcaf0d5f0d1f41906d7e6ed4768af7b8945ce0889007c2f7e4abe4d1da2208632367a0b7b9ad1dd07122e774cab0990acd32c9ceca41af081910d02dd3a15f33ba7337258d2fb1910a4288ab20d975ffee926e415366dde9773960dd168b5c415adc927897b2ffabfe66c771b81ba55b26fb0f026fcd1be44ab5a29ea95fe17d1b9639e9c2ac5c56e756f7153494db4b00125b92fcc9fbb020d20f2befcbc2e2c64e1053b086517b47928133e4eb4aa82b80c0eca037d2ddfdde9a3f2fe0493bca17131f9dba24c2426215377f1a7f406447f378a8cd1f4b69965aefc5df890092c29f8df283d9ce9b32edd0241bbd5ab093541c62f90bee590d71ef4bc2907acac2e7eb1c0b7f034667547d5ff70f011ef3fa6009ee212417ba7d7a11d5889f85841ad48cd06e38de76d01593ab6338a36858683960af838ae379ad6caac739dc5dabf49f482fd7d9ebb5899ff30ab3e03204cab711b8f0fbfc668f8121524e4cc4478bff4884f10cc53885d098724456b3fed757ebf943ac7d162817d51f4996d8218aa29c8f8a2e5431b2ef995c3f14600278d196e47bafe72e05b206ed6ff386ad7c15d99047f340affcfd1c9cdd576acb6d8ed723e176b1250ee5a755436679ff8869267d247ab365d58b91f64d69bdcf2be1feca200b19c8fb4e3a234f732ece0c8066740aa6e356a57a0311fec7e7ee79236d16ae2fd9e80f76aefdc95904e3d8f18180a1862e219537eb3da39fa6ed72005d8fde84de9906010a5ce42db3eb73063aa65355428253decee065e31be25b2963b2f5fd7387905c36d9af4ac4546f53a378d3759369a2356ad9e066e148bec477946e9c4d4c0cb96a0cf762fd8101d9f8b2166f6ac0dd0a78d9e6ab2d5cd783b23069acf19702a7e8fba5bc077bb87465cc6a7683e1e0d8a0efdc8c5096fbcc51a4989afe8205643ecd06a24b859f988337eece28924eef3806cc0251c7f0d2e3c31771541db688495de7b9e9e353107e8312484e22dd1a8af27c3e657c6f55851ac7ea2d521f256d0f11e393a791c83e55a176f22efd8019852351dec1bad68c26a4dca61f36713ce5d84ce84b9eff74d85e40b10dccfac147194a19e19410c45f8e80206d4185711707bab2b67b3c252fc230aa061820805ac12c213c843015760ff9b032583357df733882a9e4ef03225e28db43bbac09918a329ed0c7686f81d1e0f772b564d5d5a4a35edc64ca337aead5f0baabf3c86b2bfb5d5d9af00b1cd9c0ecd4e2b283186f7ac5f1d9b7f1fb1ee08d172aae1b119f1e046fa51913f9474de0315e9b9fdacc2a28553643fc298e84407812086ee2bd48b7164ca1518423db24b813703186438059edc73957e4dfdca9e9ee4f0a9db49bb8c14b4f09c22f9f6e664ab239d48"}, @typed={0x4, 0x7c}]}]}, 0x1298}, 0x1, 0x0, 0x0, 0xc080}, 0x20000894)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010027bd7000fcdbdf250a0000ff00000000140001"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0)

1.625253454s ago: executing program 6 (id=3242):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x0, 0x30, 0x0, 0x10001)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), r1)
writev$auto(r0, &(0x7f0000000100)={0x0, 0x407114}, 0x8)
r2 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0)
getsockopt$auto_SO_BINDTOIFINDEX(r2, 0x459, 0x3e, &(0x7f0000000040)='/sys/kernel/debug/lru_gen\x00', &(0x7f00000000c0)=0x6)

1.47778692s ago: executing program 0 (id=3243):
syz_clone(0x10800011, 0x0, 0x0, 0x0, 0x0, 0x0)
gettid()
open(&(0x7f0000000100)='./file0\x00', 0x0, 0x152)
rseq$auto(&(0x7f0000000080)={0x9, 0x8, 0x0, 0x7, 0xffffffff, 0x2}, 0x7ffd, 0xfffffff4, 0xa)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x100000000000000, 0x2, 0x4000000000df, 0x40df, 0x401, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x202000f, 0x2000000000000000, 0x80000000000eb1, 0xfffffffffffffffa, 0x8000)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
ioprio_set$auto(0x2, 0x800000000, 0x8)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
write$auto(0xffffffffffffffff, &(0x7f0000000140)='\x00', 0x0)
rt_sigtimedwait$auto(0x0, 0x0, 0x0, 0x8)
r0 = bpf$auto(0x0, 0x0, 0xa3)
unshare$auto(0x40000080)
fallocate$auto(0x8000000000000003, 0x2, 0x6, 0xcbd5d)
r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
ioctl$auto(r1, 0xc0404d1a, r1)
socket(0x12, 0x4, 0x440a)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0)
write$auto(r2, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff)
ioctl$auto_SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000040))
socket(0x25, 0x5, 0x0)
sendfile$auto(0x6, 0x3, 0x0, 0xfdef)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x200dc0, 0x0)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
recvmmsg$auto(r0, &(0x7f0000000440)={{&(0x7f0000000180)="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", 0x4, &(0x7f00000000c0)={&(0x7f0000000280)="833bb6b6b4cd556e47b1bbba4ed843ba7545cc01a14c1d2f90a7884b8a2d74585d8dae4658ddd904f4c7c966b0a1216cb381624a5c14e2098ef3fa3bef9568c580c23dbe5d489dcb2c84e4f617f9415c8f6d0811bcc20a48dab56588f5a8ae3d2c9bd8c82172cf3b27956acbeeed67abd7a0ae8f869b831cfa1980e978ab72262cdb287b93c529acc5", 0x5}, 0x2, &(0x7f0000000340)="d2d2c76fe857309c558d44b0c8ffc7ef0a1e695f148a67d7f49dfc5368c4d543f5617eeadd5f252d3388efc1638bec178dc596a1c51c2aafed910a0c1c3b49c47a6d207f568eeea2aa7a3004f3fb78bb6e3c0c70c6945c26e675ec341f4613b27a5693f2ee32c7a361de3a10bae3d0dc00431d07227eeb3e85e86230d3242e9fcc9edaac069757", 0x9, 0x2}, 0x7ff}, 0x9, 0x8, &(0x7f0000000480)={0x9, 0xe})
syncfs$auto(r3)

1.420118621s ago: executing program 3 (id=3244):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
madvise$auto(0x2, 0xa7a9, 0x16000) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
madvise$auto(0x0, 0x400053, 0x9)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x608402, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = openat$auto_null_fops_mem(0xffffffffffffff9c, &(0x7f00000000c0), 0x6f4ccf2bee9fe3e6, 0x0)
read$auto_null_fops_mem(r0, &(0x7f0000000100)=""/98, 0x62) (async)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x24c802, 0x0) (async)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) (async)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000440)='/dev/tty34\x00', 0x2200, 0x0) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
lsm_set_self_attr$auto(0xf, &(0x7f0000000480)={0x6, 0x9b, 0x4, 0x70, "3bec44683a00546ba66a6e0d3a8e2f6a007201a9fa6276505c77dfd68983cc8a7080740885b87c6315302f68c64e962090fecbb8b4092683e39967b4aff3ba4f001a692787714c59090a9704b0665bdb0a0a81553e2a73d94b1466f0c4b68011168661985bb14d01ecce1d1b9df0ca2c"}, 0x4, 0x462e) (async)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async)
syz_clone3(&(0x7f0000000200)={0x4000, 0x0, 0x0, 0x0, {0x2f}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) (async)
ioctl$auto_PPPIOCGIDLE64(r2, 0x8010743f, &(0x7f0000000540)={0x1008, 0x3})
mmap$auto(0x2000, 0x40009, 0xdf, 0x9b72, 0x7, 0x27ffc)
prctl$auto_PR_SET_MM_ARG_END(0x9, 0x9, 0xffffffffffffffff, 0xd, 0x13) (async)
sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff) (async)
capset$auto(&(0x7f0000000340)={0x19980330}, 0x0) (async)
open(0x0, 0x22240, 0x154) (async)
select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x3, 0x4618ecd2, 0x0, 0x4, 0x6, 0x9a8c, 0x9, 0x10001]}, &(0x7f0000000200)={[0x8, 0x4, 0x1, 0xb, 0x1, 0x9, 0x0, 0x7fff, 0xa, 0x190, 0xfffffffffffffff9, 0x3, 0xa89, 0x1000, 0x1, 0x1]}, &(0x7f0000000380)={[0x8000000000000001, 0x5, 0x1, 0x10001, 0xe, 0xf, 0x4, 0x3, 0x59fc8000, 0x6, 0x8000000000000000, 0x3, 0x800, 0x7, 0x1ff, 0x5]}, &(0x7f0000000280)={0x6, 0xc8})

1.323848246s ago: executing program 5 (id=3245):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x1ff, 0x0, 0x7c3ffc59}, 0x7, 0xf65)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000003680)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_NEW_KEY(r3, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000004880)={&(0x7f0000000100)={0x24, r2, 0x1, 0x70bd29, 0x25dfdc00, {}, [@NL80211_ATTR_KEY={0x8, 0x50, 0x0, 0x1, [@typed={0x4, 0x1}]}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x890)
socket$nl_generic(0x10, 0x3, 0x10) (async)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x1ff, 0x0, 0x7c3ffc59}, 0x7, 0xf65) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000003680)={'wlan0\x00'}) (async)
sendmsg$auto_NL80211_CMD_NEW_KEY(r3, &(0x7f00000048c0)={0x0, 0x0, &(0x7f0000004880)={&(0x7f0000000100)={0x24, r2, 0x1, 0x70bd29, 0x25dfdc00, {}, [@NL80211_ATTR_KEY={0x8, 0x50, 0x0, 0x1, [@typed={0x4, 0x1}]}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x890) (async)

1.013242693s ago: executing program 5 (id=3246):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x20000000) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
readlink$auto(0x0, 0x0, 0x800) (async)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x202, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) (async, rerun: 64)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0)
signalfd$auto(r0, 0x0, 0x8)
socket(0x1d, 0x2, 0x6)
socket(0x2, 0x2, 0x1) (async)
r1 = io_uring_setup$auto(0x6, 0x0) (async)
r2 = io_uring_setup$auto(0x6, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) (async)
io_uring_setup$auto(0x2, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x181e81, 0x0) (async)
socketpair$auto(0x4004, 0xf, 0x4, 0x0) (async)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
ioctl$auto_TCFLSH2(r3, 0x540b, 0x0) (async)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x100, 0x0)
read$auto(r5, 0x0, 0x20) (async)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r7 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0)
sendfile$auto(r7, r7, 0x0, 0x10000800000003)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000428bd7000ff00df2501000000e7015f7dfeffffff"], 0x1c}}, 0x40008c0)
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=ANY=[@ANYBLOB='Q\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002bbd8f08ffdbdf25020048004f54c3a13f62eb3adc711f525f945d0ea7f38da66a977b"], 0x14}, 0x1, 0x0, 0x0, 0x8044}, 0x4001090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYRESDEC=r1, @ANYRESOCT=r2], 0x1ac}}, 0x20000880) (async)
select$auto(0xfffffffd, 0x0, 0x0, 0x0, 0x0)

144.260923ms ago: executing program 3 (id=3247):
r0 = socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x2, 0x88)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'team0\x00', <r3=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1, r1, @relative_id=0x13, 0x1}, 0xf)
r4 = open(&(0x7f0000000280)='./file0\x00', 0x261c2, 0x84)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
r5 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r6 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x2280, 0x0)
read$auto(r6, 0x0, 0x67)
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
ioctl$auto_RNDRESEEDCRNG2(r5, 0x5207, 0x0)
bpf$auto(0x2, &(0x7f00000000c0)=@raw_tracepoint={0x5, r4, 0x0, 0x3}, 0x91)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0xffffffff, &(0x7f00000001c0)=@task_fd_query={0x0, r0, 0x800, 0x10008, 0x6, 0x1000049, 0xffffffffffffffff, 0x9, 0x3}, 0x6f3)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r7 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r7, 0x4004556a, r7)
write$auto(0x3, 0x0, 0x5c8)
acct$auto(&(0x7f0000000040)='/dev/media5\x00')

0s ago: executing program 5 (id=3248):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0xe882, 0x3, 0xffffffffffffffff, 0x0, 0x0)
getsockopt$auto_SO_PEEK_OFF(r1, 0x6, 0x2a, &(0x7f0000000040)='(\xe2\x00', &(0x7f0000000080)=0x2)
r2 = timerfd_create$auto_CLOCK_MONOTONIC(0x1, 0x9)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r1)
r4 = getpid()
sendmsg$auto_NL80211_CMD_GET_SURVEY(r2, &(0x7f0000000e80)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000140)={0xce0, r3, 0x4, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_BEACON_TAIL={0x85a, 0xf, "d964e68ac8db2ad46c78f39e41bc0e160d4fe5a6df04393a0cdcf9225e983685f1187ed632771aebe1b617f038606cdc45dba1280f5bdd4499e8cde278abfb906690a18beac93ec308db5303718e1e2288df30f60d86acc5b3997fcdadd2c533554017abf91223d0064381ae4fbdcb78ab2402a25c94e689a20c4a7fce1f5a39bc888096986cb508ab325907cdfd58c04140321834f700afcfd2771f96f5ab467914bd5c7d8a61f0380b81f96bc6b87f65ae65736fbfcd28d236eefb5ca7ef3650ca0ce11c9672f569ceb2cbcc641bc08ea43b75b52666e45a1a820202631dfd38022222fa44484e592913e2f679a5ce2bedc49ce0bc9d3ee6975c4b4ea61323cc003e8a24afc2ae7e232327ecfa565c1a607e02ac1c1368abf6fc4bb6c6830fbb42581dc2886595f98fef2545bbabec69d7c2e0baa87b6b3220f06a55dc228052b6a3d2ec349b529f373e885b49c8dd44784731d694e7da7bca782ada2f9b5ed6bcecbe50bd4fce59bc8138e1713f6d2c81ae07e2e3d80c0237c0629e3b52e646382488037a649f0494b0aac0c65f531057a4d05bb57efd333fc044aea7e5fa26b808dbecb5dcd066b92487da5f7a8ccb4a4ec262db56e7ce862c00fb5af58a88b240a3b2e615a8f02f4a25c5a2811183cdc059803deef511400eaefc42770adc65a9eb47cacea6653f0a00db087cdf56dfbc20bc993354ffd9c1bb01702ad645e34fb3e297d6c2684e891546c1b22848e88b7f22160c83083d98d47b70dcf18273e3df943b81b9e30c5ed205aa7c57d348dcf25260598ec93052b53a390f740ae84e65869247dad9a967ac796f48d627c1c5c1e3b4db0eea67934ebeaba8a1422a02100c016854526f69bae7e945a8aebb62ccc289f85bab53dfe0d118f73086ab57e17ffdceb9c21a28f9c20a1798c2e86134e4e1bffd88d2762856bc57c5e3b1e28e999a7887d8864231d3cdca6dda56af1562997b9069e586d159a092cfcde3f648d585ac5c2a4f347bbdc6d2a0af8b549c38986fb7b53bae19451fdc3d9a036359c535459a286b47dcab5403b84b0e7ddee3487a9e78dd5fa0f6874ef5f3143c3aaa1e8a6c6081d32d82baef9085aa56bf73afbfa9f95749e5bc35f802f255caa816940c7551bb08653897306a96bde89905fa1fdcd4660e613623a7b559f66bd6369aafb3b8dc12492edf073a62ce842f2123d02d7136f4b6538c9314d7664cea71a5635a310e8e80481408c302c02caf2d1f69134a4fba1f806bf901eb06d82555281ef1ea9a78249c7d046108498b1289fb6800dab2847ed5e48b694e65ba4e6880335e34c65ad2711e9a9b3e2be2b8228174f45150b11d616e2ba029c714ffd3b167d44ceb1e6842980dbf517bebd82bad91ae94eab1d3b610ac19d9d41458179c38744b65e56fe0a472ec943ed4bf0f443279d9e9b0f684904f297153ea6a93bf18e1589c643aff7013194042d79e15000558f28c81ce8877457842c54e09a58858b0d8447c0f883e477ccfb2ae4ae6058a1eb65f6904a8afa20ccf40a93063d4a1851bde67ea69b202fe94161627706aefaf8c7a9814b959b54d1db18267c6f8e6397bfa4c3b7705b4dcfd62e56e017e286b97cae20af024068a36e69fc1eaaed94d1fa922c0c9fdc2cd4ac8f92b85aeb7e8223d4fb25dabf10e4957ae11a4d0d542aa415ffeee1ebbb32b14279d02448e1ec5c815187d1ac0dcc6413befba8ad6c763bb0a9807a717da5b8b93d788cb0c12272bcbef803ac9946aa95d6ad6fa6754c8bde474decea86e013b08f939d699c046c28e3c2b376a569e76cd6e5988cc0b001c1b83c44efe298021694c030e4f82c7de6ebeda923fe1fd368aac23c15d2fa827083e945a18f404966186a2153f0deb875dc22f647be180320c747f2c9fb28afe3c1559ac68ed1b4d1e8c78de721a627b7f5d71b7a8f513d150c145fad74f3060a81acea8e93bf87470f51786a1e090c5e009706f08a731c70bfc020df37a269f301aa1218f9d471f7fa5bc0a8aadb32e0a58e371b21bc3b59f30c5356170c434867e9265e553ddcd86cf3575fe46789ff7b38a8133921a77fe9843659ec02c54485d2d86dec29df2f0680f239e20161dda8b0300a803e134b0e8ffa7bdf6ad9f4f686c849bd2ddf5bbe6653efa42074d3bba586a38f6d3bb8970796d34ce87a194005ac6d3a881812fefefce7c1d5cb1397cf2f0ee27f094203cfe6ae39c6de546b057e852905de80fb65ab570f21a59fbbf4f4174f2c818ee7823da8a8b72d1f63e66a151101f54f21bb9b2a5799b3af5c0a6a8d5d94106b7b24c90bfcab7c7b57fcd85d1e837ea6f66c24b53cadbb22e309113212b00467e167d6f367a240dd56847b7ecd75ae011f1018c2baada90a4d8ca432e5fddf04fe3795e8fa68c1b19730be56f4632dadd109ab4e4eeea5c493fd748b302045f354dc71cae7941c4da6fb93f5d30f400e5ff166cd1358b0e5e3982341015a93cb4db16e870beca38dea488c5cdf3cbda603696b68fdf33fc52ad135e93e4298b075fb73b81a583674b29d8141e630afb598bb4088cfa979cb9121a1ba299e9bc71e97ac595e0d9664a402309ca4ab3836ba9070a7d0ac739d5c7eb207cbc39ba52e5b0c10938affeceda8df7af752dd012284fbd9ad04d000d2276d1f8ef86ecc24ba385bea695b6beb90ea4d256faaa52bac19c1386a925858f120d66ce1fc29693271f7afbf2e3f1c28baa0725c261cd202bbd7c220182cf04ccc2996c0a6655911da03fb5a916a5fe84323149acfc7dc8c1ec78f2210c788a2bb3da8318839b230a7203144e937617e8c083ab7774544cd369fc3f3f21cd4bdfc1e68ff8fffce80d0ae6f8d5bb29005b11d1583428e270e5a19624edd491c1153ae191a86a0a256bf8275414ba7be413f8b170b2b05b3dd4b581f9447b1ad6aa0ca638da09939df152c8b84fe0f9e798f9de3f8cd924800d19e6abfeb3f24d41cc0dab7f636c6b51c5012aaa17a1424b86f35ab2f5a0b824ab"}, @NL80211_ATTR_PROBE_RESP={0x42, 0x91, "c5ee8331b6418b96838b2172e10068e949797971b6dcb21920a31a58cf33b1a9fccbc2ea1be65124a438806cf0d6dc78649ec3b62e78f14897119455eda2"}, @NL80211_ATTR_KEY_SEQ={0x10, 0xa, "daf0fab548eff3f8c036a61d"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x9}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_MESH_CONFIG={0x33f, 0x23, 0x0, 0x1, [@nested={0x1a8, 0x30, 0x0, 0x1, [@typed={0x14, 0x14c, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @typed={0x8, 0x8b, 0x0, 0x0, @pid=r4}, @nested={0x4, 0xa2}, @generic="47233f06489ca68581136b867aa5d94fe712b05df9522dc6fbb6cfe7fd2359832ec3be1eebd316083d9b38c008aa09c28853c7ad1a7b1ba90e877c41b43b687dd8b0e4dc577a120ebfd886df990322e0a43527fdc5b5a0de6b1de6ba5457f3a5508777d214913b6328f87e8b42f593227e22bd2cf4", @generic="e36236e29f5778ae007c81a21056ba73477e4656c5ee5ca2af00ba42b7c1fdf521d87d091429b251d0c19223c83037b375c9a050d929ad958696f0001b37079e0d59a6824825950269af91af57e5ef79b0071ca31d6f656c075f563f669d5476ccbbd5041a117de8592ec3b74050b3332eafe5be15b690382ce4a31d1857d89c37a3a7c59b0e9eb4ee5ed6", @nested={0x4, 0xcd}, @nested={0x4, 0x71}, @typed={0x75, 0x64, 0x0, 0x0, @binary="732b2433d18c56c36ee48c6aca95fd97359a34a915b5f0bb5d0ef0ad758ded0143af5fb19adcffa1c585759d6db4f49f6843900405fc4934b9efa2e2d8ad524f1dcd42f8290c759f950392a9bf9de19b0301122834485cdacd02b7138c1561cb703c5b62ad705e5aff3073ef5122c71fc6"}, @nested={0x4, 0x11}]}, @generic="b66157ac4b4a0df52536a680e1dc6fad39b6f878f169048181187e0f82346145381cc17fc46000e1bb3b9b2202f442149ded74502c1cdf02f23983ea4df562a88f7daf1c66f844504f036c5fbfaf106cd92820dd6454be75ab55f7a029d5dfd1b88fdffcad791e7332e6247f5a8fa64ffe782140bbfea071ec947620806517e454bc2ab36a30a0ebff346368b6f7efdb6f7610826ea16d952e3d073f8b321e4e6ab043d7a3e4f1fffd9d4bc7bbbb800f2422e1cccd1144f335070beebe36de54e35be516e9f50f9fa9081e05cb6552ad3b385db4", @generic="c8da7cd3c40abc31f7d0afa17b1c332f3623e848b1f197cb2a490f3edb88ed0260e2a0a5a57cb6e4f65893f557dd1125e1b40e368f2175b5de253ed929c1dd85701e1eb531c2d76f912c5c74246c0dec9065e34f61afdaac1046b59d648f1a1b74293982f2e7f150e5c39ea7b607ee1ad423cab78cfe77a8b379500fd3e5962ff7c519a4bd39e95da5f36f1820f89b5c5d8204fc7ae84e6ae13b68208e53926997243903c79dcaf412575ece61a75952163da7697a3b91e3003d8380e2f3ba"]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0x26, 0xe8, "7e6c872808541a2e9bc5790acdd2e5ccda9ad1d33dc887714fbb0a66d31949111489"}, @NL80211_ATTR_MAC={0x9d, 0x6, "5d4162c5fcce9e1397434ebbb819010d8ccb08bf101c3443399cf1a870a91de91eb8fbbc5f1017076d207122b22ebe922992c01d376798a7638b74cacc0f94b479f6a1f6ff4ae336aa81b22e2b11839839b6bf7830d1db78874b822b7dba416bd2817a670c2120c75af71fcc6cf95f2b38f8224e5bd520aac35c4b0b6a45e61153e13de394ef1c35b4fea5aeb21db6043b0a370b24f897d54e"}, @NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0xfffc}]}, 0xce0}}, 0x8090)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)

kernel console output (not intermixed with test programs):

__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 3017, tgid 3017 (kworker/u8:6), ts 98343102866, free_ts 98293466710
[  266.791826][ T8749]  post_alloc_hook+0x181/0x1b0
[  266.796871][ T8749]  get_page_from_freelist+0x135c/0x3920
[  266.837313][ T8749]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  266.843314][ T8749]  alloc_pages_mpol+0x1fb/0x550
[  266.861751][ T8749]  new_slab+0x244/0x340
[  266.917277][ T8749]  ___slab_alloc+0xd9c/0x1940
[  266.922037][ T8749]  __slab_alloc.constprop.0+0x56/0xb0
[  266.937363][ T8749]  __kmalloc_noprof+0x2f2/0x510
[  266.942303][ T8749]  ieee802_11_parse_elems_full+0x1d7/0x3780
[  267.007234][ T8749]  ieee80211_inform_bss+0x10b/0x1140
[  267.012688][ T8749]  cfg80211_inform_single_bss_data+0x8e7/0x1df0
[  267.057289][ T8749]  cfg80211_inform_bss_data+0x224/0x3bd0
[  267.063013][ T8749]  cfg80211_inform_bss_frame_data+0x26e/0x7a0
[  267.077251][ T8749]  ieee80211_bss_info_update+0x310/0xab0
[  267.082954][ T8749]  ieee80211_ibss_rx_queued_mgmt+0x1905/0x2fd0
[  267.137359][ T8749]  ieee80211_iface_work+0xbf4/0x1020
[  267.142768][ T8749] page last free pid 5867 tgid 5867 stack trace:
[  267.167224][ T8749]  __free_frozen_pages+0x69d/0xff0
[  267.187238][ T8749]  __put_partials+0x16d/0x1c0
[  267.217271][ T8749]  qlist_free_all+0x4e/0x120
[  267.221968][ T8749]  kasan_quarantine_reduce+0x195/0x1e0
[  267.262848][ T8749]  __kasan_slab_alloc+0x69/0x90
[  267.277257][ T8749]  kmem_cache_alloc_node_noprof+0x1d5/0x3b0
[  267.295860][ T8749]  __alloc_skb+0x2b2/0x380
[  267.307234][ T8749]  mld_newpack.isra.0+0x18e/0xa20
[  267.313681][ T8749]  add_grhead+0x299/0x340
[  267.339601][ T8749]  add_grec+0x112a/0x1680
[  267.357280][ T8749]  mld_send_initial_cr.part.0+0xe2/0x260
[  267.363005][ T8749]  mld_dad_work+0x51/0x2d0
[  267.407270][ T8749]  process_one_work+0x9cc/0x1b70
[  267.412344][ T8749]  worker_thread+0x6c8/0xf10
[  267.416993][ T8749]  kthread+0x3c2/0x780
[  267.457221][ T8749]  ret_from_fork+0x45/0x80
[  267.539930][ T8750] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888078006000 pfn:0x78000
[  267.580737][ T8750] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  267.610773][ T8750] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[  267.652646][ T8750] page_type: f5(slab)
[  267.656688][ T8750] raw: 00fff00000000240 ffff88801b442140 ffffea00004c2810 ffffea0001f15e10
[  267.720682][ T8750] raw: ffff888078006000 0000000000040002 00000000f5000000 0000000000000000
[  267.747682][ T8750] head: 00fff00000000240 ffff88801b442140 ffffea00004c2810 ffffea0001f15e10
[  267.786689][ T8750] head: ffff888078006000 0000000000040002 00000000f5000000 0000000000000000
[  267.828570][ T8750] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  267.847859][ T8750] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  267.877403][ T8750] page dumped because: unmovable page
[  267.882914][ T8750] page_owner tracks the page as allocated
[  267.939598][ T8750] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5201, tgid 5201 (udevd), ts 116506426762, free_ts 116476043982
[  267.995324][ T8750]  post_alloc_hook+0x181/0x1b0
[  268.007298][ T8750]  get_page_from_freelist+0x135c/0x3920
[  268.012909][ T8750]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  268.057377][ T8750]  alloc_pages_mpol+0x1fb/0x550
[  268.067254][ T8750]  new_slab+0x244/0x340
[  268.077245][ T8750]  ___slab_alloc+0xd9c/0x1940
[  268.081984][ T8750]  __slab_alloc.constprop.0+0x56/0xb0
[  268.117254][ T8750]  __kmalloc_noprof+0x2f2/0x510
[  268.133251][ T8750]  tomoyo_realpath_from_path+0xc2/0x6e0
[  268.147296][ T8750]  tomoyo_path_perm+0x274/0x460
[  268.167428][ T8750]  tomoyo_path_unlink+0x91/0xe0
[  268.172371][ T8750]  security_path_unlink+0x145/0x2b0
[  268.232810][ T8750]  do_unlinkat+0x463/0x6a0
[  268.244996][ T8750]  __x64_sys_unlink+0xc5/0x110
[  268.260156][ T8750]  do_syscall_64+0xcd/0x230
[  268.273718][ T8750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.298036][ T8750] page last free pid 5201 tgid 5201 stack trace:
[  268.320232][ T8750]  __free_frozen_pages+0x69d/0xff0
[  268.346298][ T8750]  __put_partials+0x16d/0x1c0
[  268.361496][ T8750]  qlist_free_all+0x4e/0x120
[  268.371622][ T8750]  kasan_quarantine_reduce+0x195/0x1e0
[  268.427240][ T8750]  __kasan_slab_alloc+0x69/0x90
[  268.432823][ T8750]  __kmalloc_noprof+0x1d4/0x510
[  268.477540][ T8750]  tomoyo_realpath_from_path+0xc2/0x6e0
[  268.483178][ T8750]  tomoyo_path_perm+0x274/0x460
[  268.527279][ T8750]  security_inode_getattr+0x116/0x290
[  268.533352][ T8750]  vfs_fstat+0x4b/0xd0
[  268.560820][ T8750]  vfs_fstatat+0xbc/0xf0
[  268.565157][ T8750]  __do_sys_newfstatat+0xa1/0x130
[  268.590625][ T8750]  do_syscall_64+0xcd/0x230
[  268.595281][ T8750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.196405][   T55] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5
[  270.357550][ T8800] i2c i2c-0: new_device: Invalid device name
[  270.673415][ T8805] can: request_module (can-proto-0) failed.
[  270.709954][ T8810] can: request_module (can-proto-0) failed.
[  271.699514][ T8831] netlink: zone id is out of range
[  272.958478][ T8856] netlink: 12 bytes leftover after parsing attributes in process `syz.3.564'.
[  275.428119][ T8927] Invalid ELF header magic: != ELF
[  277.085727][ T8936] Invalid ELF header magic: != ELF
[  277.648622][ T8971] tty tty34: ldisc open failed (-12), clearing slot 33
[  277.694423][ T8973] tty tty34: ldisc open failed (-12), clearing slot 33
[  278.095567][   T30] audit: type=1800 audit(6040761565.731:14): pid=8985 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.589" name="dbroot" dev="configfs" ino=22304 res=0 errno=0
[  278.819370][ T8998] Invalid ELF header magic: != ELF
[  281.766761][ T9041] netlink: 22060 bytes leftover after parsing attributes in process `syz.2.599'.
[  282.401623][ T9058] netlink: 338 bytes leftover after parsing attributes in process `syz.0.602'.
[  282.448123][ T9059] netlink: 338 bytes leftover after parsing attributes in process `syz.0.602'.
[  284.121301][ T9085] program syz.0.612 is using a deprecated SCSI ioctl, please convert it to SG_IO
						
	

	
				
	
	



	
	
	

	
		
	

	
		

	
		

	


	
	

		
	
		
	
	

	



			








	


		

	




			

		


		


	

		


















	


	
	








	




	




		









		


	


	



		


	































	
	


	


	
				



	

















	







	

	
	
	

		


	



		




	



	
	

	

	


	
		
		
	

	

	
				
	
	
	

	

	
	

	
	
	

	
		
	
			


	

	

	
		
	

	

		
		

	
	
	

	
	
	

	
		

	
		

	


	
	

		
	
		
	
	

	



			








	





	




	













		

	















	













	
		






	








	
	








	




	





		







	

	
		
	

	
		
	

	
		
	

	
		
				

	

	
			
	
	

	
		

	
		

	


	
	

		
	
		
	
	

	



			








	





	













	
	










		

		

		


		
		


		


	

		


















	


	
	








	




	





		










	

	
		
[  967.964747][T19671] netlink: 'syz.2.2646': attribute type 11 has an invalid length.
[  967.984857][T19671] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2646'.
[  970.277188][T19709] ptrace attach of "./syz-executor exec"[17060] was attempted by "./syz-executor exec"[19709]
[  970.316100][T19709] ptrace attach of "./syz-executor exec"[17060] was attempted by "./syz-executor exec"[19709]
[  971.361334][T19721] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2655'.
[  972.839881][T19743] FAULT_INJECTION: forcing a failure.
[  972.839881][T19743] name failslab, interval 1, probability 0, space 0, times 0
[  972.854488][T19743] CPU: 0 UID: 0 PID: 19743 Comm: syz.0.2659 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  972.854535][T19743] Tainted: [U]=USER
[  972.854545][T19743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  972.854564][T19743] Call Trace:
[  972.854574][T19743]  <TASK>
[  972.854586][T19743]  dump_stack_lvl+0x16c/0x1f0
[  972.854628][T19743]  should_fail_ex+0x512/0x640
[  972.854670][T19743]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  972.854726][T19743]  should_failslab+0xc2/0x120
[  972.854774][T19743]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  972.854812][T19743]  ? __d_alloc+0x31/0xaa0
[  972.854852][T19743]  __d_alloc+0x31/0xaa0
[  972.854890][T19743]  d_alloc+0x4a/0x1e0
[  972.854925][T19743]  d_alloc_parallel+0xe3/0x12e0
[  972.854973][T19743]  ? is_bpf_text_address+0x94/0x1a0
[  972.855013][T19743]  ? kernel_text_address+0x8d/0x100
[  972.855064][T19743]  ? __x64_sys_ioctl+0x190/0x200
[  972.855106][T19743]  ? __kernel_text_address+0xd/0x40
[  972.855153][T19743]  ? unwind_get_return_address+0x59/0xa0
[  972.855192][T19743]  ? __pfx_d_alloc_parallel+0x10/0x10
[  972.855239][T19743]  ? lockdep_init_map_type+0x5c/0x280
[  972.855284][T19743]  ? lockdep_init_map_type+0x5c/0x280
[  972.855334][T19743]  __lookup_slow+0x193/0x460
[  972.855377][T19743]  ? __pfx___lookup_slow+0x10/0x10
[  972.855422][T19743]  ? __SetPageMovable+0x2a0/0x4a0
[  972.855479][T19743]  ? __SetPageMovable+0x2a0/0x4a0
[  972.855528][T19743]  ? d_lookup+0xe7/0x190
[  972.855575][T19743]  lookup_one_len+0x17f/0x1b0
[  972.855616][T19743]  ? __pfx_lookup_one_len+0x10/0x10
[  972.855659][T19743]  ? mntput+0x10/0x90
[  972.855708][T19743]  start_creating.part.0+0x12f/0x3a0
[  972.855757][T19743]  __debugfs_create_file+0xa7/0x6b0
[  972.855827][T19743]  debugfs_create_file_full+0x41/0x60
[  972.855874][T19743]  kvm_dev_ioctl+0x14ff/0x1ad0
[  972.855924][T19743]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  972.855973][T19743]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  972.856012][T19743]  __x64_sys_ioctl+0x190/0x200
[  972.856066][T19743]  do_syscall_64+0xcd/0x230
[  972.856104][T19743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  972.856132][T19743] RIP: 0033:0x7f4e3138e969
[  972.856155][T19743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  972.856183][T19743] RSP: 002b:00007f4e32145038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  972.856210][T19743] RAX: ffffffffffffffda RBX: 00007f4e315b5fa0 RCX: 00007f4e3138e969
[  972.856246][T19743] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  972.856265][T19743] RBP: 00007f4e31410ab1 R08: 0000000000000000 R09: 0000000000000000
[  972.856284][T19743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  972.856302][T19743] R13: 0000000000000000 R14: 00007f4e315b5fa0 R15: 00007ffc9d0a9378
[  972.856341][T19743]  </TASK>
[  973.338620][T19731] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2657'.
[  977.528737][T19817] can: request_module (can-proto-3) failed.
[  979.934233][T19854] openvswitch: netlink: Invalid MD length 0 for MD type 0
[  980.504586][T15487] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  980.790115][T19876] openvswitch: netlink: Key type 2816 is out of range max 32
[  981.464667][T19886] FAULT_INJECTION: forcing a failure.
[  981.464667][T19886] name failslab, interval 1, probability 0, space 0, times 0
[  981.521123][T19886] CPU: 0 UID: 0 PID: 19886 Comm: syz.3.2693 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  981.521189][T19886] Tainted: [U]=USER
[  981.521200][T19886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  981.521218][T19886] Call Trace:
[  981.521228][T19886]  <TASK>
[  981.521239][T19886]  dump_stack_lvl+0x16c/0x1f0
[  981.521280][T19886]  should_fail_ex+0x512/0x640
[  981.521321][T19886]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  981.521373][T19886]  should_failslab+0xc2/0x120
[  981.521408][T19886]  __kmalloc_cache_noprof+0x6a/0x3e0
[  981.521469][T19886]  ? kvm_dev_ioctl+0x1396/0x1ad0
[  981.521509][T19886]  kvm_dev_ioctl+0x1396/0x1ad0
[  981.521556][T19886]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  981.521603][T19886]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  981.521641][T19886]  __x64_sys_ioctl+0x190/0x200
[  981.521684][T19886]  do_syscall_64+0xcd/0x230
[  981.521724][T19886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  981.521753][T19886] RIP: 0033:0x7f87f858e969
[  981.521778][T19886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  981.521806][T19886] RSP: 002b:00007f87f9439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  981.521835][T19886] RAX: ffffffffffffffda RBX: 00007f87f87b5fa0 RCX: 00007f87f858e969
[  981.521856][T19886] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  981.521873][T19886] RBP: 00007f87f8610ab1 R08: 0000000000000000 R09: 0000000000000000
[  981.521892][T19886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  981.521909][T19886] R13: 0000000000000000 R14: 00007f87f87b5fa0 R15: 00007ffcda5a13e8
[  981.521946][T19886]  </TASK>
[  982.711032][T19906] bridge0: port 3(team0) entered blocking state
[  982.747059][T19906] bridge0: port 3(team0) entered disabled state
[  982.795112][T19906] team0: entered allmulticast mode
[  982.812977][T19906] team_slave_0: entered allmulticast mode
[  982.825855][T19906] team_slave_1: entered allmulticast mode
[  982.870752][T19906] team0: entered promiscuous mode
[  982.876339][T19906] team_slave_0: entered promiscuous mode
[  983.007229][T19906] team_slave_1: entered promiscuous mode
[  983.140668][T19906] bridge0: port 3(team0) entered blocking state
[  983.147741][T19906] bridge0: port 3(team0) entered forwarding state
[  984.794107][T19949] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2702'.
[  985.920308][T19979] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(2.0.1), cmd(7)
[  986.760554][T19992] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2710'.
[  986.791493][T19992] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2710'.
[  986.902466][T19992] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2710'.
[  987.034547][T19992] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2710'.
[  989.078790][T20042] Process accounting paused
[  991.333096][T20089] Invalid ELF header magic: != ELF
[  995.743585][T15487] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  997.725385][T20162] FAULT_INJECTION: forcing a failure.
[  997.725385][T20162] name failslab, interval 1, probability 0, space 0, times 0
[  997.786908][T20162] CPU: 1 UID: 0 PID: 20162 Comm: syz.2.2738 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[  997.786995][T20162] Tainted: [U]=USER
[  997.787014][T20162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  997.787031][T20162] Call Trace:
[  997.787040][T20162]  <TASK>
[  997.787051][T20162]  dump_stack_lvl+0x16c/0x1f0
[  997.787089][T20162]  should_fail_ex+0x512/0x640
[  997.787125][T20162]  ? __kmalloc_noprof+0xbf/0x510
[  997.787159][T20162]  ? __register_sysctl_table+0xb3/0x1900
[  997.787192][T20162]  should_failslab+0xc2/0x120
[  997.787229][T20162]  __kmalloc_noprof+0xd2/0x510
[  997.787267][T20162]  __register_sysctl_table+0xb3/0x1900
[  997.787301][T20162]  ? is_module_address+0x5f/0xf0
[  997.787345][T20162]  ? __pfx___register_sysctl_table+0x10/0x10
[  997.787377][T20162]  ? is_module_address+0x69/0xf0
[  997.787417][T20162]  ? register_net_sysctl_sz+0x228/0x3e0
[  997.787459][T20162]  __devinet_sysctl_register+0x1b9/0x360
[  997.787491][T20162]  ? __pfx___devinet_sysctl_register+0x10/0x10
[  997.787517][T20162]  ? trace_kmalloc+0x2b/0xd0
[  997.787549][T20162]  ? devinet_init_net+0xeb/0x910
[  997.787577][T20162]  ? __asan_memcpy+0x3c/0x60
[  997.787618][T20162]  devinet_init_net+0x315/0x910
[  997.787645][T20162]  ? __pfx_devinet_init_net+0x10/0x10
[  997.787671][T20162]  ops_init+0x1df/0x5f0
[  997.787700][T20162]  setup_net+0x21e/0x850
[  997.787728][T20162]  ? __pfx_setup_net+0x10/0x10
[  997.787752][T20162]  ? lockdep_init_map_type+0x5c/0x280
[  997.787784][T20162]  ? __pfx_down_read_killable+0x10/0x10
[  997.787821][T20162]  ? debug_mutex_init+0x37/0x70
[  997.787877][T20162]  copy_net_ns+0x2a6/0x5f0
[  997.787912][T20162]  create_new_namespaces+0x3ea/0xad0
[  997.787949][T20162]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  997.787982][T20162]  ksys_unshare+0x45b/0xa40
[  997.788019][T20162]  ? __pfx_ksys_unshare+0x10/0x10
[  997.788054][T20162]  ? xfd_validate_state+0x5d/0x180
[  997.788098][T20162]  ? rcu_is_watching+0x12/0xc0
[  997.788131][T20162]  __x64_sys_unshare+0x31/0x40
[  997.788169][T20162]  do_syscall_64+0xcd/0x230
[  997.788205][T20162]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  997.788232][T20162] RIP: 0033:0x7fe8e338e969
[  997.788254][T20162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  997.788281][T20162] RSP: 002b:00007fe8e4263038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  997.788308][T20162] RAX: ffffffffffffffda RBX: 00007fe8e35b5fa0 RCX: 00007fe8e338e969
[  997.788326][T20162] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  997.788343][T20162] RBP: 00007fe8e3410ab1 R08: 0000000000000000 R09: 0000000000000000
[  997.788361][T20162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  997.788378][T20162] R13: 0000000000000000 R14: 00007fe8e35b5fa0 R15: 00007ffc568ea2f8
[  997.788416][T20162]  </TASK>
[  998.120040][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  998.127011][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 1000.049135][T20211] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2750'.
[ 1000.277570][T20211] team0: left allmulticast mode
[ 1000.297278][T20211] team_slave_0: left allmulticast mode
[ 1000.303355][T20211] team_slave_1: left allmulticast mode
[ 1000.424327][T20211] team0: left promiscuous mode
[ 1000.593980][T20211] team_slave_0: left promiscuous mode
[ 1000.646253][T20211] team_slave_1: left promiscuous mode
[ 1000.685293][T20211] bridge0: port 3(team0) entered disabled state
[ 1000.702945][T20188] ptrace attach of "./syz-executor exec"[17060] was attempted by ""[20188]
[ 1000.749890][T20211] bridge_slave_1: left allmulticast mode
[ 1000.756135][T20211] bridge_slave_1: left promiscuous mode
[ 1000.841069][T20211] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1000.883347][T20211] bridge_slave_0: left allmulticast mode
[ 1000.929743][T20211] bridge_slave_0: left promiscuous mode
[ 1000.977716][T20211] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1003.131873][T20233] vivid-003: =================  START STATUS  =================
[ 1003.140597][T20233] vivid-003: Radio HW Seek Mode: Bounded
[ 1003.147756][T20233] vivid-003: Radio Programmable HW Seek: false
[ 1003.158144][T20233] vivid-003: RDS Rx I/O Mode: Block I/O
[ 1003.164947][T20233] vivid-003: Generate RBDS Instead of RDS: false
[ 1003.265768][T20233] vivid-003: RDS Reception: true
[ 1003.287466][T20233] vivid-003: RDS Program Type: 0 inactive
[ 1003.431127][T20233] vivid-003: RDS PS Name:  inactive
[ 1003.442908][T20233] vivid-003: RDS Radio Text:  inactive
[ 1003.526324][T20233] vivid-003: RDS Traffic Announcement: false inactive
[ 1003.677663][T20233] vivid-003: RDS Traffic Program: false inactive
[ 1003.761718][T20233] vivid-003: RDS Music: false inactive
[ 1003.801347][T20233] vivid-003: ==================  END STATUS  ==================
[ 1005.249781][T20252] ceph: Failed to parse sending metrics switch value 'P^'
[ 1005.641149][T20255] Invalid ELF header magic: != ELF
[ 1007.270119][T20271] FAULT_INJECTION: forcing a failure.
[ 1007.270119][T20271] name failslab, interval 1, probability 0, space 0, times 0
[ 1007.369985][T20271] CPU: 1 UID: 0 PID: 20271 Comm: syz.2.2762 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1007.370047][T20271] Tainted: [U]=USER
[ 1007.370061][T20271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1007.370082][T20271] Call Trace:
[ 1007.370094][T20271]  <TASK>
[ 1007.370108][T20271]  dump_stack_lvl+0x16c/0x1f0
[ 1007.370154][T20271]  should_fail_ex+0x512/0x640
[ 1007.370212][T20271]  ? __kmalloc_noprof+0xbf/0x510
[ 1007.370249][T20271]  ? sk_prot_alloc+0x1a8/0x2a0
[ 1007.370285][T20271]  should_failslab+0xc2/0x120
[ 1007.370323][T20271]  __kmalloc_noprof+0xd2/0x510
[ 1007.370367][T20271]  sk_prot_alloc+0x1a8/0x2a0
[ 1007.370407][T20271]  sk_alloc+0x36/0xc20
[ 1007.370454][T20271]  __netlink_create+0x5e/0x2c0
[ 1007.370499][T20271]  ? __wake_up+0x3f/0x60
[ 1007.370535][T20271]  netlink_create+0x39e/0x620
[ 1007.370581][T20271]  ? __pfx_genl_bind+0x10/0x10
[ 1007.370614][T20271]  ? __pfx_genl_unbind+0x10/0x10
[ 1007.370647][T20271]  ? __pfx_genl_release+0x10/0x10
[ 1007.370689][T20271]  __sock_create+0x335/0x8d0
[ 1007.370747][T20271]  __sys_socket+0x14d/0x260
[ 1007.370789][T20271]  ? __pfx___sys_socket+0x10/0x10
[ 1007.370833][T20271]  ? rcu_is_watching+0x12/0xc0
[ 1007.370869][T20271]  __x64_sys_socket+0x72/0xb0
[ 1007.370907][T20271]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1007.370943][T20271]  do_syscall_64+0xcd/0x230
[ 1007.370982][T20271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1007.371023][T20271] RIP: 0033:0x7fe8e338e969
[ 1007.371048][T20271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1007.371080][T20271] RSP: 002b:00007fe8e4263038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1007.371111][T20271] RAX: ffffffffffffffda RBX: 00007fe8e35b5fa0 RCX: 00007fe8e338e969
[ 1007.371132][T20271] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[ 1007.371151][T20271] RBP: 00007fe8e3410ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1007.371171][T20271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1007.371190][T20271] R13: 0000000000000000 R14: 00007fe8e35b5fa0 R15: 00007ffc568ea2f8
[ 1007.371231][T20271]  </TASK>
[ 1009.038769][T20308] CIFS mount error: No usable UNC path provided in device string!
[ 1009.038769][T20308] 
[ 1009.056921][T20308] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1013.112979][T20365] FAULT_INJECTION: forcing a failure.
[ 1013.112979][T20365] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1013.247836][T20365] CPU: 0 UID: 0 PID: 20365 Comm: syz.5.2778 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1013.247911][T20365] Tainted: [U]=USER
[ 1013.247922][T20365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1013.247940][T20365] Call Trace:
[ 1013.247950][T20365]  <TASK>
[ 1013.247962][T20365]  dump_stack_lvl+0x16c/0x1f0
[ 1013.248005][T20365]  should_fail_ex+0x512/0x640
[ 1013.248052][T20365]  should_fail_alloc_page+0xe7/0x130
[ 1013.248093][T20365]  prepare_alloc_pages+0x3c2/0x610
[ 1013.248159][T20365]  ? rcu_is_watching+0x12/0xc0
[ 1013.248193][T20365]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 1013.248230][T20365]  ? __kernel_text_address+0xd/0x40
[ 1013.248280][T20365]  ? unwind_get_return_address+0x59/0xa0
[ 1013.248325][T20365]  ? arch_stack_walk+0xa6/0x100
[ 1013.248376][T20365]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1013.248413][T20365]  ? stack_trace_save+0x8e/0xc0
[ 1013.248444][T20365]  ? __pfx_stack_trace_save+0x10/0x10
[ 1013.248475][T20365]  ? stack_depot_save_flags+0x28/0xa50
[ 1013.248519][T20365]  ? find_held_lock+0x2b/0x80
[ 1013.248556][T20365]  ? kasan_save_stack+0x42/0x60
[ 1013.248593][T20365]  ? __lock_acquire+0xaa4/0x1ba0
[ 1013.248629][T20365]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1013.248675][T20365]  ? policy_nodemask+0xea/0x4e0
[ 1013.248717][T20365]  alloc_pages_mpol+0x1fb/0x550
[ 1013.248761][T20365]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1013.248798][T20365]  ? __page_table_check_ptes_set+0x1ae/0x420
[ 1013.248836][T20365]  ? find_held_lock+0x2b/0x80
[ 1013.248872][T20365]  alloc_pages_noprof+0x131/0x390
[ 1013.248911][T20365]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1013.248943][T20365]  get_free_pages_noprof+0xc/0x40
[ 1013.248982][T20365]  kasan_populate_vmalloc_pte+0x2d/0x160
[ 1013.249016][T20365]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1013.249049][T20365]  __apply_to_page_range+0x617/0xd60
[ 1013.249102][T20365]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1013.249141][T20365]  ? __pfx___apply_to_page_range+0x10/0x10
[ 1013.249189][T20365]  ? alloc_vmap_area+0x872/0x2970
[ 1013.249242][T20365]  alloc_vmap_area+0x919/0x2970
[ 1013.249304][T20365]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 1013.249367][T20365]  __get_vm_area_node+0x1a7/0x300
[ 1013.249423][T20365]  __vmalloc_node_range_noprof+0x277/0x1540
[ 1013.249476][T20365]  ? __do_sys_listmount+0x1c2/0xed0
[ 1013.249534][T20365]  ? __do_sys_listmount+0x1c2/0xed0
[ 1013.249590][T20365]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1013.249660][T20365]  __kvmalloc_node_noprof+0x2ff/0x600
[ 1013.249694][T20365]  ? __do_sys_listmount+0x1c2/0xed0
[ 1013.249741][T20365]  ? __do_sys_listmount+0x1c2/0xed0
[ 1013.249795][T20365]  ? __do_sys_listmount+0x1c2/0xed0
[ 1013.249839][T20365]  __do_sys_listmount+0x1c2/0xed0
[ 1013.249902][T20365]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1013.249933][T20365]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1013.249967][T20365]  ? __pfx___do_sys_listmount+0x10/0x10
[ 1013.250011][T20365]  ? xfd_validate_state+0x5d/0x180
[ 1013.250077][T20365]  do_syscall_64+0xcd/0x230
[ 1013.250119][T20365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1013.250149][T20365] RIP: 0033:0x7fac5e78e969
[ 1013.250173][T20365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1013.250203][T20365] RSP: 002b:00007fac5c5d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 1013.250233][T20365] RAX: ffffffffffffffda RBX: 00007fac5e9b6080 RCX: 00007fac5e78e969
[ 1013.250253][T20365] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 1013.250273][T20365] RBP: 00007fac5e810ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1013.250292][T20365] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 1013.250311][T20365] R13: 0000000000000000 R14: 00007fac5e9b6080 R15: 00007ffc72fd9708
[ 1013.250367][T20365]  </TASK>
[ 1013.250557][T20365] syz.5.2778: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1014.120305][T20365] CPU: 1 UID: 0 PID: 20365 Comm: syz.5.2778 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1014.120341][T20365] Tainted: [U]=USER
[ 1014.120349][T20365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1014.120362][T20365] Call Trace:
[ 1014.120369][T20365]  <TASK>
[ 1014.120378][T20365]  dump_stack_lvl+0x16c/0x1f0
[ 1014.120409][T20365]  warn_alloc+0x248/0x3a0
[ 1014.120435][T20365]  ? __pfx_warn_alloc+0x10/0x10
[ 1014.120461][T20365]  ? kfree+0x2b6/0x4d0
[ 1014.120511][T20365]  ? __get_vm_area_node+0x1e5/0x300
[ 1014.120548][T20365]  __vmalloc_node_range_noprof+0xd31/0x1540
[ 1014.120590][T20365]  ? __do_sys_listmount+0x1c2/0xed0
[ 1014.120625][T20365]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1014.120669][T20365]  __kvmalloc_node_noprof+0x2ff/0x600
[ 1014.120691][T20365]  ? __do_sys_listmount+0x1c2/0xed0
[ 1014.120721][T20365]  ? __do_sys_listmount+0x1c2/0xed0
[ 1014.120755][T20365]  ? __do_sys_listmount+0x1c2/0xed0
[ 1014.120783][T20365]  __do_sys_listmount+0x1c2/0xed0
[ 1014.120817][T20365]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1014.120839][T20365]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1014.120861][T20365]  ? __pfx___do_sys_listmount+0x10/0x10
[ 1014.120891][T20365]  ? xfd_validate_state+0x5d/0x180
[ 1014.120935][T20365]  do_syscall_64+0xcd/0x230
[ 1014.120962][T20365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1014.120983][T20365] RIP: 0033:0x7fac5e78e969
[ 1014.120999][T20365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1014.121025][T20365] RSP: 002b:00007fac5c5d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 1014.121045][T20365] RAX: ffffffffffffffda RBX: 00007fac5e9b6080 RCX: 00007fac5e78e969
[ 1014.121073][T20365] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 1014.121086][T20365] RBP: 00007fac5e810ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1014.121098][T20365] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 1014.121110][T20365] R13: 0000000000000000 R14: 00007fac5e9b6080 R15: 00007ffc72fd9708
[ 1014.121134][T20365]  </TASK>
[ 1014.121140][T20365] Mem-Info:
[ 1014.121150][T20365] active_anon:59255 inactive_anon:0 isolated_anon:0
[ 1014.121150][T20365]  active_file:13653 inactive_file:45222 isolated_file:0
[ 1014.121150][T20365]  unevictable:769 dirty:4 writeback:0
[ 1014.121150][T20365]  slab_reclaimable:11360 slab_unreclaimable:102436
[ 1014.121150][T20365]  mapped:48195 shmem:37519 pagetables:1101
[ 1014.121150][T20365]  sec_pagetables:0 bounce:0
[ 1014.121150][T20365]  kernel_misc_reclaimable:0
[ 1014.121150][T20365]  free:1262166 free_pcp:957 free_cma:0
[ 1014.121201][T20365] Node 0 active_anon:237020kB inactive_anon:0kB active_file:54612kB inactive_file:180884kB unevictable:1540kB isolated(anon):0kB isolated(file):0kB mapped:192780kB dirty:16kB writeback:0kB shmem:139512kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12468kB pagetables:4404kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1014.121274][T20365] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:10564kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1014.121327][T20365] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1014.121383][T20365] lowmem_reserve[]: 0 2484 2486 2486 2486
[ 1014.121422][T20365] Node 0 DMA32 free:1125864kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:236976kB inactive_anon:0kB active_file:54612kB inactive_file:179068kB unevictable:1540kB writepending:16kB present:3129332kB managed:2544212kB mlocked:4kB bounce:0kB free_pcp:2252kB local_pcp:688kB free_cma:0kB
[ 1014.121481][T20365] lowmem_reserve[]: 0 0 1 1 1
[ 1014.121518][T20365] Node 0 Normal free:28kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1816kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:4kB free_cma:0kB
[ 1014.121574][T20365] lowmem_reserve[]: 0 0 0 0 0
[ 1014.121611][T20365] Node 1 Normal free:3907412kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:1564kB local_pcp:1564kB free_cma:0kB
[ 1014.121669][T20365] lowmem_reserve[]: 0 0 0 0 0
[ 1014.121706][T20365] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1014.121829][T20365] Node 0 DMA32: 773*4kB (UE) 249*8kB (UE) 74*16kB (UME) 52*32kB (UME) 108*64kB (UME) 305*128kB (UME) 255*256kB (UME) 168*512kB (UM) 123*1024kB (UME) 24*2048kB (UM) 182*4096kB (UME) = 1125756kB
[ 1014.122000][T20365] Node 0 Normal: 1*4kB (M) 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28kB
[ 1014.122127][T20365] Node 1 Normal: 215*4kB (UM) 59*8kB (UME) 44*16kB (UME) 213*32kB (UME) 103*64kB (UME) 40*128kB (UME) 11*256kB (UM) 8*512kB (UME) 3*1024kB (UM) 3*2048kB (UE) 945*4096kB (M) = 3907412kB
[ 1014.122309][T20365] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1014.122326][T20365] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1014.122343][T20365] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1014.122359][T20365] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[ 1014.122375][T20365] 96394 total pagecache pages
[ 1014.122383][T20365] 0 pages in swap cache
[ 1014.122390][T20365] Free swap  = 124996kB
[ 1014.122398][T20365] Total swap = 124996kB
[ 1014.122406][T20365] 2097051 pages RAM
[ 1014.122413][T20365] 0 pages HighMem/MovableOnly
[ 1014.122420][T20365] 428892 pages reserved
[ 1014.122427][T20365] 0 pages cma reserved
[ 1014.249788][T20377] rnbd_client L202: map_device: Unknown parameter or missing value '('
[ 1014.859727][T20369] vivid-003: =================  START STATUS  =================
[ 1014.859778][T20369] vivid-003: Radio HW Seek Mode: Bounded
[ 1014.859837][T20369] vivid-003: Radio Programmable HW Seek: false
[ 1014.859870][T20369] vivid-003: RDS Rx I/O Mode: Block I/O
[ 1014.859904][T20369] vivid-003: Generate RBDS Instead of RDS: false
[ 1014.859938][T20369] vivid-003: RDS Reception: true
[ 1014.859969][T20369] vivid-003: RDS Program Type: 0 inactive
[ 1014.860010][T20369] vivid-003: RDS PS Name:  inactive
[ 1014.860048][T20369] vivid-003: RDS Radio Text:  inactive
[ 1014.860531][T20369] vivid-003: RDS Traffic Announcement: false inactive
[ 1014.860830][T20369] vivid-003: RDS Traffic Program: false inactive
[ 1014.861179][T20369] vivid-003: RDS Music: false inactive
[ 1014.925440][T20369] vivid-003: ==================  END STATUS  ==================
[ 1016.903987][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1017.256237][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1017.289849][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1017.431893][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1019.297173][T20382] tty tty45: ldisc open failed (-12), clearing slot 44
[ 1019.348078][T20383] pty pty90: ldisc open failed (-12), clearing slot 90
[ 1019.399096][T20382] Process accounting resumed
[ 1020.598823][T20422] vcan0: tx drop: invalid da for name 0x000000000000003f
[ 1020.928754][T20430] ima: policy update failed
[ 1020.933921][   T30] audit: type=1802 audit(4294967424.040:38): pid=20430 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2791" res=0 errno=0
[ 1020.959931][T20430] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2791'.
[ 1021.528957][T20423] FAULT_INJECTION: forcing a failure.
[ 1021.528957][T20423] name failslab, interval 1, probability 0, space 0, times 0
[ 1021.585915][T20423] CPU: 1 UID: 0 PID: 20423 Comm: syz.3.2789 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1021.585968][T20423] Tainted: [U]=USER
[ 1021.585979][T20423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1021.585997][T20423] Call Trace:
[ 1021.586009][T20423]  <TASK>
[ 1021.586021][T20423]  dump_stack_lvl+0x16c/0x1f0
[ 1021.586064][T20423]  should_fail_ex+0x512/0x640
[ 1021.586108][T20423]  ? fs_reclaim_acquire+0xae/0x150
[ 1021.586156][T20423]  ? tomoyo_encode2+0x100/0x3e0
[ 1021.586195][T20423]  should_failslab+0xc2/0x120
[ 1021.586234][T20423]  __kmalloc_noprof+0xd2/0x510
[ 1021.586265][T20423]  ? d_absolute_path+0x136/0x1a0
[ 1021.586307][T20423]  tomoyo_encode2+0x100/0x3e0
[ 1021.586353][T20423]  tomoyo_encode+0x29/0x50
[ 1021.586390][T20423]  tomoyo_realpath_from_path+0x18f/0x6e0
[ 1021.586442][T20423]  tomoyo_check_open_permission+0x2ab/0x3c0
[ 1021.586481][T20423]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1021.586578][T20423]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1021.586653][T20423]  tomoyo_file_open+0x6b/0x90
[ 1021.586712][T20423]  security_file_open+0x84/0x1e0
[ 1021.586756][T20423]  do_dentry_open+0x596/0x1c10
[ 1021.586803][T20423]  vfs_open+0x82/0x3f0
[ 1021.586852][T20423]  path_openat+0x1e5e/0x2d40
[ 1021.586899][T20423]  ? __pfx_path_openat+0x10/0x10
[ 1021.586943][T20423]  do_filp_open+0x20b/0x470
[ 1021.586973][T20423]  ? __pfx_do_filp_open+0x10/0x10
[ 1021.587036][T20423]  ? alloc_fd+0x471/0x7d0
[ 1021.587098][T20423]  do_sys_openat2+0x11b/0x1d0
[ 1021.587141][T20423]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1021.587202][T20423]  __x64_sys_openat+0x174/0x210
[ 1021.587245][T20423]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1021.587291][T20423]  ? rcu_is_watching+0x12/0xc0
[ 1021.587332][T20423]  do_syscall_64+0xcd/0x230
[ 1021.587376][T20423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1021.587407][T20423] RIP: 0033:0x7f87f858e969
[ 1021.587433][T20423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1021.587466][T20423] RSP: 002b:00007f87f9439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1021.587497][T20423] RAX: ffffffffffffffda RBX: 00007f87f87b5fa0 RCX: 00007f87f858e969
[ 1021.587520][T20423] RDX: 0000000000000440 RSI: 0000200000000140 RDI: ffffffffffffff9c
[ 1021.587541][T20423] RBP: 00007f87f8610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1021.587562][T20423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1021.587592][T20423] R13: 0000000000000000 R14: 00007f87f87b5fa0 R15: 00007ffcda5a13e8
[ 1021.587636][T20423]  </TASK>
[ 1021.947353][T20423] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1024.754513][T20481] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2800'.
[ 1026.492702][T20521] writes to the poll attribute are ignored.
[ 1026.517088][T20521] please use driver specific parameters instead.
[ 1027.746102][T20536] ptrace attach of "./syz-executor exec"[18580] was attempted by "./syz-executor exec"[20536]
[ 1029.790220][T20582] FAULT_INJECTION: forcing a failure.
[ 1029.790220][T20582] name failslab, interval 1, probability 0, space 0, times 0
[ 1029.846819][T20582] CPU: 0 UID: 0 PID: 20582 Comm: syz.0.2822 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1029.846867][T20582] Tainted: [U]=USER
[ 1029.846877][T20582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1029.846894][T20582] Call Trace:
[ 1029.846904][T20582]  <TASK>
[ 1029.846915][T20582]  dump_stack_lvl+0x16c/0x1f0
[ 1029.846954][T20582]  should_fail_ex+0x512/0x640
[ 1029.847002][T20582]  ? fs_reclaim_acquire+0xae/0x150
[ 1029.847048][T20582]  should_failslab+0xc2/0x120
[ 1029.847082][T20582]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1029.847114][T20582]  ? security_inode_alloc+0x3b/0x2b0
[ 1029.847151][T20582]  security_inode_alloc+0x3b/0x2b0
[ 1029.847182][T20582]  inode_init_always_gfp+0xce4/0x1030
[ 1029.847233][T20582]  alloc_inode+0x86/0x240
[ 1029.847267][T20582]  new_inode+0x22/0x1c0
[ 1029.847297][T20582]  ? start_creating.part.0+0x25d/0x3a0
[ 1029.847339][T20582]  __debugfs_create_file+0x11c/0x6b0
[ 1029.847402][T20582]  debugfs_create_file_full+0x41/0x60
[ 1029.847451][T20582]  kvm_dev_ioctl+0x14ff/0x1ad0
[ 1029.847499][T20582]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[ 1029.847549][T20582]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[ 1029.847586][T20582]  __x64_sys_ioctl+0x190/0x200
[ 1029.847629][T20582]  do_syscall_64+0xcd/0x230
[ 1029.847669][T20582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1029.847700][T20582] RIP: 0033:0x7f4e3138e969
[ 1029.847725][T20582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1029.847756][T20582] RSP: 002b:00007f4e32145038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1029.847785][T20582] RAX: ffffffffffffffda RBX: 00007f4e315b5fa0 RCX: 00007f4e3138e969
[ 1029.847805][T20582] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006
[ 1029.847823][T20582] RBP: 00007f4e31410ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1029.847843][T20582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1029.847861][T20582] R13: 0000000000000000 R14: 00007f4e315b5fa0 R15: 00007ffc9d0a9378
[ 1029.847898][T20582]  </TASK>
[ 1029.847931][T20582] debugfs: out of free dentries, can not create file 'max_mmu_rmap_size'
[ 1030.776612][T20596] sp0: Synchronizing with TNC
[ 1031.575610][T20600] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2821'.
[ 1031.606776][T20600] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[ 1032.413630][T20620] FAULT_INJECTION: forcing a failure.
[ 1032.413630][T20620] name failslab, interval 1, probability 0, space 0, times 0
[ 1032.516960][T20620] CPU: 0 UID: 0 PID: 20620 Comm: syz.0.2832 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1032.517009][T20620] Tainted: [U]=USER
[ 1032.517019][T20620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1032.517036][T20620] Call Trace:
[ 1032.517046][T20620]  <TASK>
[ 1032.517058][T20620]  dump_stack_lvl+0x16c/0x1f0
[ 1032.517096][T20620]  should_fail_ex+0x512/0x640
[ 1032.517136][T20620]  ? fs_reclaim_acquire+0xae/0x150
[ 1032.517182][T20620]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1032.517221][T20620]  should_failslab+0xc2/0x120
[ 1032.517256][T20620]  __kmalloc_noprof+0xd2/0x510
[ 1032.517296][T20620]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1032.517356][T20620]  ? tomoyo_profile+0x47/0x60
[ 1032.517400][T20620]  tomoyo_path_number_perm+0x245/0x580
[ 1032.517449][T20620]  ? tomoyo_path_number_perm+0x237/0x580
[ 1032.517487][T20620]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1032.517522][T20620]  ? find_held_lock+0x2b/0x80
[ 1032.517583][T20620]  ? find_held_lock+0x2b/0x80
[ 1032.517610][T20620]  ? hook_file_ioctl_common+0x145/0x410
[ 1032.517650][T20620]  ? __fget_files+0x20e/0x3c0
[ 1032.517701][T20620]  security_file_ioctl+0x9b/0x240
[ 1032.517736][T20620]  __x64_sys_ioctl+0xb7/0x200
[ 1032.517781][T20620]  do_syscall_64+0xcd/0x230
[ 1032.517821][T20620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1032.517850][T20620] RIP: 0033:0x7f4e3138e969
[ 1032.517873][T20620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1032.517901][T20620] RSP: 002b:00007f4e32145038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1032.517928][T20620] RAX: ffffffffffffffda RBX: 00007f4e315b5fa0 RCX: 00007f4e3138e969
[ 1032.517947][T20620] RDX: 00002000000001c0 RSI: 00000000c0045006 RDI: 0000000000000003
[ 1032.517965][T20620] RBP: 00007f4e32145090 R08: 0000000000000000 R09: 0000000000000000
[ 1032.517987][T20620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1032.518001][T20620] R13: 0000000000000000 R14: 00007f4e315b5fa0 R15: 00007ffc9d0a9378
[ 1032.518032][T20620]  </TASK>
[ 1032.518109][T20620] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1033.497350][T20635] netlink: 165 bytes leftover after parsing attributes in process `syz.3.2835'.
[ 1035.343082][T20687] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2847'.
[ 1037.794720][T20704] FAULT_INJECTION: forcing a failure.
[ 1037.794720][T20704] name failslab, interval 1, probability 0, space 0, times 0
[ 1037.877393][T20704] CPU: 0 UID: 0 PID: 20704 Comm: syz.0.2850 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1037.877453][T20704] Tainted: [U]=USER
[ 1037.877463][T20704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1037.877482][T20704] Call Trace:
[ 1037.877493][T20704]  <TASK>
[ 1037.877504][T20704]  dump_stack_lvl+0x16c/0x1f0
[ 1037.877547][T20704]  should_fail_ex+0x512/0x640
[ 1037.877594][T20704]  should_failslab+0xc2/0x120
[ 1037.877632][T20704]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1037.877668][T20704]  ? zswap_store+0x839/0x25c0
[ 1037.877719][T20704]  zswap_store+0x839/0x25c0
[ 1037.877770][T20704]  ? find_held_lock+0x2b/0x80
[ 1037.877805][T20704]  ? __pfx_zswap_store+0x10/0x10
[ 1037.877847][T20704]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1037.877890][T20704]  ? find_held_lock+0x2b/0x80
[ 1037.877919][T20704]  ? folio_free_swap+0x171/0x580
[ 1037.877958][T20704]  ? do_raw_spin_unlock+0x172/0x230
[ 1037.878000][T20704]  ? swp_swap_info+0xce/0x130
[ 1037.878038][T20704]  ? __pfx_swp_swap_info+0x10/0x10
[ 1037.878086][T20704]  swap_writepage+0x3bd/0x1170
[ 1037.878129][T20704]  ? folio_clear_dirty_for_io+0x112/0x810
[ 1037.878184][T20704]  pageout+0x3b0/0xa90
[ 1037.878213][T20704]  ? __pfx_pageout+0x10/0x10
[ 1037.878302][T20704]  ? on_each_cpu_cond_mask+0x5a/0x90
[ 1037.878351][T20704]  ? arch_tlbbatch_flush+0x279/0x3c0
[ 1037.878402][T20704]  shrink_folio_list+0x2f27/0x40e0
[ 1037.878454][T20704]  ? __pfx_shrink_folio_list+0x10/0x10
[ 1037.878485][T20704]  ? __page_table_check_zero+0x323/0x5b0
[ 1037.878537][T20704]  ? __lock_acquire+0x5ca/0x1ba0
[ 1037.878581][T20704]  ? __lock_acquire+0x5ca/0x1ba0
[ 1037.878664][T20704]  reclaim_folio_list+0xd7/0x5d0
[ 1037.878699][T20704]  ? cgroup_rstat_updated+0x2a/0xb20
[ 1037.878748][T20704]  ? __pfx_reclaim_folio_list+0x10/0x10
[ 1037.878796][T20704]  ? lru_gen_update_size+0x543/0xe10
[ 1037.878836][T20704]  ? lru_gen_del_folio+0x32b/0x540
[ 1037.878870][T20704]  reclaim_pages+0x47b/0x650
[ 1037.878906][T20704]  ? __pfx_reclaim_pages+0x10/0x10
[ 1037.878937][T20704]  ? find_held_lock+0x2b/0x80
[ 1037.878966][T20704]  ? madvise_cold_or_pageout_pte_range+0x601/0x20f0
[ 1037.879017][T20704]  madvise_cold_or_pageout_pte_range+0x13a9/0x20f0
[ 1037.879074][T20704]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[ 1037.879135][T20704]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[ 1037.879178][T20704]  walk_pgd_range+0xba7/0x1a90
[ 1037.879226][T20704]  ? mt_find+0x3ef/0xa30
[ 1037.879273][T20704]  ? __pfx_walk_pgd_range+0x10/0x10
[ 1037.879321][T20704]  __walk_page_range+0x163/0x820
[ 1037.879361][T20704]  ? find_vma+0xbf/0x140
[ 1037.879400][T20704]  ? __pfx_find_vma+0x10/0x10
[ 1037.879451][T20704]  ? walk_page_test+0x9b/0x180
[ 1037.879489][T20704]  walk_page_range_mm+0x54d/0x8a0
[ 1037.879531][T20704]  ? __pfx_walk_page_range_mm+0x10/0x10
[ 1037.879574][T20704]  ? find_held_lock+0x2b/0x80
[ 1037.879604][T20704]  ? mlock_drain_local+0x22d/0x4f0
[ 1037.879642][T20704]  walk_page_range+0x63/0x90
[ 1037.879679][T20704]  madvise_pageout+0x316/0x800
[ 1037.879724][T20704]  ? __pfx_madvise_pageout+0x10/0x10
[ 1037.879782][T20704]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1037.879829][T20704]  madvise_vma_behavior+0x416/0x1d50
[ 1037.879876][T20704]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 1037.879918][T20704]  ? find_vma_prev+0xda/0x160
[ 1037.879970][T20704]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 1037.880010][T20704]  ? find_vma+0xbf/0x140
[ 1037.880048][T20704]  ? __pfx_find_vma+0x10/0x10
[ 1037.880097][T20704]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 1037.880135][T20704]  madvise_walk_vmas+0x1ce/0x2c0
[ 1037.880176][T20704]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 1037.880224][T20704]  madvise_do_behavior+0x12b/0x3b0
[ 1037.880262][T20704]  ? __pfx___might_resched+0x10/0x10
[ 1037.880295][T20704]  ? read_tsc+0x9/0x20
[ 1037.880330][T20704]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 1037.880393][T20704]  ? __pfx_sched_clock_cpu+0x10/0x10
[ 1037.880440][T20704]  do_madvise+0x10b/0x170
[ 1037.880480][T20704]  __x64_sys_madvise+0xa9/0x110
[ 1037.880516][T20704]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1037.880548][T20704]  do_syscall_64+0xcd/0x230
[ 1037.880587][T20704]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1037.880616][T20704] RIP: 0033:0x7f4e3138e969
[ 1037.880639][T20704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1037.880667][T20704] RSP: 002b:00007f4e32124038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 1037.880712][T20704] RAX: ffffffffffffffda RBX: 00007f4e315b6080 RCX: 00007f4e3138e969
[ 1037.880733][T20704] RDX: 0000000000000015 RSI: 8000000000000000 RDI: 0000000000000000
[ 1037.880752][T20704] RBP: 00007f4e31410ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1037.880771][T20704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1037.880789][T20704] R13: 0000000000000000 R14: 00007f4e315b6080 R15: 00007ffc9d0a9378
[ 1037.880829][T20704]  </TASK>
[ 1040.250217][T13776] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1040.264483][T13776] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1040.274476][T13776] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1040.284803][T13776] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1040.294714][T13776] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1041.141636][T20744] chnl_net:caif_netlink_parms(): no params data found
[ 1041.770925][T20744] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1041.799490][T20744] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1041.830150][T20744] bridge_slave_0: entered allmulticast mode
[ 1041.858611][T20744] bridge_slave_0: entered promiscuous mode
[ 1041.951548][T20744] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1041.992178][T20744] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1042.068241][T20744] bridge_slave_1: entered allmulticast mode
[ 1042.077231][T20744] bridge_slave_1: entered promiscuous mode
[ 1042.352839][T20744] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1042.388817][T20744] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1042.457018][T13776] Bluetooth: hci0: command tx timeout
[ 1042.633167][T20776] FAULT_INJECTION: forcing a failure.
[ 1042.633167][T20776] name failslab, interval 1, probability 0, space 0, times 0
[ 1042.686838][T20776] CPU: 0 UID: 0 PID: 20776 Comm: syz.3.2866 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1042.686883][T20776] Tainted: [U]=USER
[ 1042.686892][T20776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1042.686911][T20776] Call Trace:
[ 1042.686920][T20776]  <TASK>
[ 1042.686930][T20776]  dump_stack_lvl+0x16c/0x1f0
[ 1042.686968][T20776]  should_fail_ex+0x512/0x640
[ 1042.687003][T20776]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1042.687050][T20776]  should_failslab+0xc2/0x120
[ 1042.687084][T20776]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1042.687137][T20776]  ? snd_pcm_oss_change_params_locked+0x211/0x3b40
[ 1042.687180][T20776]  snd_pcm_oss_change_params_locked+0x211/0x3b40
[ 1042.687217][T20776]  ? preempt_count_sub+0xc7/0x160
[ 1042.687250][T20776]  ? trace_contention_end+0xdd/0x130
[ 1042.687288][T20776]  ? __mutex_lock+0x1ca/0xb90
[ 1042.687336][T20776]  ? rcu_is_watching+0x12/0xc0
[ 1042.687366][T20776]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1042.687417][T20776]  ? __pfx___mutex_lock+0x10/0x10
[ 1042.687458][T20776]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1042.687504][T20776]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1042.687546][T20776]  snd_pcm_oss_set_channels+0x23a/0x370
[ 1042.687604][T20776]  ? __pfx_snd_pcm_oss_set_channels+0x10/0x10
[ 1042.687638][T20776]  ? __might_fault+0x13b/0x190
[ 1042.687681][T20776]  snd_pcm_oss_ioctl+0x219d/0x37a0
[ 1042.687719][T20776]  ? find_held_lock+0x2b/0x80
[ 1042.687745][T20776]  ? hook_file_ioctl_common+0x145/0x410
[ 1042.687778][T20776]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1042.687820][T20776]  ? __fget_files+0x20e/0x3c0
[ 1042.687868][T20776]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1042.687909][T20776]  __x64_sys_ioctl+0x190/0x200
[ 1042.687952][T20776]  do_syscall_64+0xcd/0x230
[ 1042.687991][T20776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1042.688020][T20776] RIP: 0033:0x7f87f858e969
[ 1042.688044][T20776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1042.688071][T20776] RSP: 002b:00007f87f9439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1042.688097][T20776] RAX: ffffffffffffffda RBX: 00007f87f87b5fa0 RCX: 00007f87f858e969
[ 1042.688122][T20776] RDX: 00002000000001c0 RSI: 00000000c0045006 RDI: 0000000000000003
[ 1042.688139][T20776] RBP: 00007f87f9439090 R08: 0000000000000000 R09: 0000000000000000
[ 1042.688157][T20776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1042.688174][T20776] R13: 0000000000000000 R14: 00007f87f87b5fa0 R15: 00007ffcda5a13e8
[ 1042.688211][T20776]  </TASK>
[ 1043.121443][T20744] team0: Port device team_slave_0 added
[ 1043.179597][T20744] team0: Port device team_slave_1 added
[ 1043.425035][T20744] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1043.444397][T20744] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1043.521990][T20744] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1043.568459][T20744] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1043.586409][T20744] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1043.688229][T20744] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1043.915047][T20744] hsr_slave_0: entered promiscuous mode
[ 1043.944275][T20744] hsr_slave_1: entered promiscuous mode
[ 1044.544092][T13776] Bluetooth: hci0: command tx timeout
[ 1044.937544][T20802] FAULT_INJECTION: forcing a failure.
[ 1044.937544][T20802] name failslab, interval 1, probability 0, space 0, times 0
[ 1045.001567][T20802] CPU: 0 UID: 0 PID: 20802 Comm: syz.5.2874 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1045.001614][T20802] Tainted: [U]=USER
[ 1045.001624][T20802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1045.001642][T20802] Call Trace:
[ 1045.001651][T20802]  <TASK>
[ 1045.001661][T20802]  dump_stack_lvl+0x16c/0x1f0
[ 1045.001700][T20802]  should_fail_ex+0x512/0x640
[ 1045.001737][T20802]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1045.001785][T20802]  should_failslab+0xc2/0x120
[ 1045.001820][T20802]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1045.001866][T20802]  ? snd_pcm_oss_change_params_locked+0x247/0x3b40
[ 1045.001910][T20802]  snd_pcm_oss_change_params_locked+0x247/0x3b40
[ 1045.001957][T20802]  ? preempt_count_sub+0xc7/0x160
[ 1045.001991][T20802]  ? trace_contention_end+0xdd/0x130
[ 1045.002030][T20802]  ? __mutex_lock+0x1ca/0xb90
[ 1045.002062][T20802]  ? rcu_is_watching+0x12/0xc0
[ 1045.002090][T20802]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1045.002129][T20802]  ? __pfx___mutex_lock+0x10/0x10
[ 1045.002173][T20802]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1045.002221][T20802]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1045.002266][T20802]  snd_pcm_oss_set_channels+0x23a/0x370
[ 1045.002307][T20802]  ? __pfx_snd_pcm_oss_set_channels+0x10/0x10
[ 1045.002343][T20802]  ? __might_fault+0x13b/0x190
[ 1045.002387][T20802]  snd_pcm_oss_ioctl+0x219d/0x37a0
[ 1045.002426][T20802]  ? find_held_lock+0x2b/0x80
[ 1045.002453][T20802]  ? hook_file_ioctl_common+0x145/0x410
[ 1045.002486][T20802]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1045.002529][T20802]  ? __fget_files+0x20e/0x3c0
[ 1045.002581][T20802]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1045.002620][T20802]  __x64_sys_ioctl+0x190/0x200
[ 1045.002663][T20802]  do_syscall_64+0xcd/0x230
[ 1045.002703][T20802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1045.002732][T20802] RIP: 0033:0x7fac5e78e969
[ 1045.002754][T20802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1045.002783][T20802] RSP: 002b:00007fac5c5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1045.002810][T20802] RAX: ffffffffffffffda RBX: 00007fac5e9b5fa0 RCX: 00007fac5e78e969
[ 1045.002830][T20802] RDX: 00002000000001c0 RSI: 00000000c0045006 RDI: 0000000000000003
[ 1045.002848][T20802] RBP: 00007fac5c5f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1045.002866][T20802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1045.002884][T20802] R13: 0000000000000000 R14: 00007fac5e9b5fa0 R15: 00007ffc72fd9708
[ 1045.002922][T20802]  </TASK>
[ 1045.372130][T20744] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1045.542683][T20744] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1045.699771][T20744] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1045.798980][T20744] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1046.616928][T13776] Bluetooth: hci0: command tx timeout
[ 1047.181048][T20744] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1047.319522][T20744] 8021q: adding VLAN 0 to HW filter on device team0
[ 1047.328810][T16469] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1047.328941][T16469] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1047.382432][T16469] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1047.382538][T16469] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1047.946390][T20846] FAULT_INJECTION: forcing a failure.
[ 1047.946390][T20846] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1047.996046][T20846] CPU: 0 UID: 0 PID: 20846 Comm: syz.3.2884 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1047.996098][T20846] Tainted: [U]=USER
[ 1047.996109][T20846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1047.996128][T20846] Call Trace:
[ 1047.996139][T20846]  <TASK>
[ 1047.996152][T20846]  dump_stack_lvl+0x16c/0x1f0
[ 1047.996195][T20846]  should_fail_ex+0x512/0x640
[ 1047.996245][T20846]  _copy_to_user+0x32/0xd0
[ 1047.996308][T20846]  simple_read_from_buffer+0xcb/0x170
[ 1047.996356][T20846]  proc_fail_nth_read+0x197/0x270
[ 1047.996400][T20846]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1047.996455][T20846]  ? rw_verify_area+0xcf/0x680
[ 1047.996495][T20846]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1047.996536][T20846]  vfs_read+0x1de/0xc70
[ 1047.996566][T20846]  ? __pfx___mutex_lock+0x10/0x10
[ 1047.996601][T20846]  ? __pfx_vfs_read+0x10/0x10
[ 1047.996635][T20846]  ? __fget_files+0x20e/0x3c0
[ 1047.996689][T20846]  ksys_read+0x12a/0x240
[ 1047.996721][T20846]  ? __pfx_ksys_read+0x10/0x10
[ 1047.996744][T20846]  ? rcu_is_watching+0x12/0xc0
[ 1047.996792][T20846]  do_syscall_64+0xcd/0x230
[ 1047.996835][T20846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1047.996862][T20846] RIP: 0033:0x7f87f858d37c
[ 1047.996882][T20846] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1047.996908][T20846] RSP: 002b:00007f87f9439030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1047.996934][T20846] RAX: ffffffffffffffda RBX: 00007f87f87b5fa0 RCX: 00007f87f858d37c
[ 1047.996952][T20846] RDX: 000000000000000f RSI: 00007f87f94390a0 RDI: 0000000000000004
[ 1047.996969][T20846] RBP: 00007f87f9439090 R08: 0000000000000000 R09: 0000000000000000
[ 1047.996987][T20846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1047.997003][T20846] R13: 0000000000000000 R14: 00007f87f87b5fa0 R15: 00007ffcda5a13e8
[ 1047.997039][T20846]  </TASK>
[ 1048.140199][T20744] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1048.627841][T20858] FAULT_INJECTION: forcing a failure.
[ 1048.627841][T20858] name failslab, interval 1, probability 0, space 0, times 0
[ 1048.676831][T20858] CPU: 1 UID: 0 PID: 20858 Comm: syz.3.2886 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1048.676875][T20858] Tainted: [U]=USER
[ 1048.676885][T20858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1048.676900][T20858] Call Trace:
[ 1048.676910][T20858]  <TASK>
[ 1048.676921][T20858]  dump_stack_lvl+0x16c/0x1f0
[ 1048.676966][T20858]  should_fail_ex+0x512/0x640
[ 1048.677004][T20858]  ? __kmalloc_noprof+0xbf/0x510
[ 1048.677036][T20858]  ? constrain_params_by_rules+0x175/0xca0
[ 1048.677073][T20858]  should_failslab+0xc2/0x120
[ 1048.677106][T20858]  __kmalloc_noprof+0xd2/0x510
[ 1048.677133][T20858]  ? unwind_get_return_address+0x59/0xa0
[ 1048.677166][T20858]  ? arch_stack_walk+0xa6/0x100
[ 1048.677203][T20858]  constrain_params_by_rules+0x175/0xca0
[ 1048.677249][T20858]  ? stack_trace_save+0x8e/0xc0
[ 1048.677278][T20858]  ? stack_depot_save_flags+0x28/0xa50
[ 1048.677317][T20858]  ? __pfx_constrain_params_by_rules+0x10/0x10
[ 1048.677361][T20858]  ? __kasan_kmalloc+0xaa/0xb0
[ 1048.677387][T20858]  ? snd_pcm_oss_change_params_locked+0x247/0x3b40
[ 1048.677423][T20858]  ? snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1048.677459][T20858]  ? snd_pcm_oss_set_channels+0x23a/0x370
[ 1048.677504][T20858]  ? rcu_is_watching+0x12/0xc0
[ 1048.677529][T20858]  ? snd_interval_refine+0x2fa/0x580
[ 1048.677594][T20858]  snd_pcm_hw_refine+0x7de/0xad0
[ 1048.677657][T20858]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[ 1048.677709][T20858]  ? __asan_memset+0x23/0x50
[ 1048.677754][T20858]  ? _snd_pcm_hw_param_min+0x259/0x630
[ 1048.677798][T20858]  snd_pcm_oss_change_params_locked+0x65e/0x3b40
[ 1048.677839][T20858]  ? preempt_count_sub+0xc0/0x160
[ 1048.677879][T20858]  ? __mutex_lock+0x1ca/0xb90
[ 1048.677911][T20858]  ? rcu_is_watching+0x12/0xc0
[ 1048.677941][T20858]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1048.677993][T20858]  ? __pfx___mutex_lock+0x10/0x10
[ 1048.678054][T20858]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1048.678101][T20858]  snd_pcm_oss_set_channels+0x23a/0x370
[ 1048.678143][T20858]  ? __pfx_snd_pcm_oss_set_channels+0x10/0x10
[ 1048.678181][T20858]  ? __might_fault+0x13b/0x190
[ 1048.678225][T20858]  snd_pcm_oss_ioctl+0x219d/0x37a0
[ 1048.678264][T20858]  ? find_held_lock+0x2b/0x80
[ 1048.678291][T20858]  ? hook_file_ioctl_common+0x145/0x410
[ 1048.678325][T20858]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1048.678370][T20858]  ? __fget_files+0x20e/0x3c0
[ 1048.678420][T20858]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1048.678464][T20858]  __x64_sys_ioctl+0x190/0x200
[ 1048.678507][T20858]  do_syscall_64+0xcd/0x230
[ 1048.678546][T20858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1048.678577][T20858] RIP: 0033:0x7f87f858e969
[ 1048.678601][T20858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1048.678631][T20858] RSP: 002b:00007f87f9439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1048.678659][T20858] RAX: ffffffffffffffda RBX: 00007f87f87b5fa0 RCX: 00007f87f858e969
[ 1048.678678][T20858] RDX: 00002000000001c0 RSI: 00000000c0045006 RDI: 0000000000000003
[ 1048.678698][T20858] RBP: 00007f87f9439090 R08: 0000000000000000 R09: 0000000000000000
[ 1048.678717][T20858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1048.678734][T20858] R13: 0000000000000000 R14: 00007f87f87b5fa0 R15: 00007ffcda5a13e8
[ 1048.678773][T20858]  </TASK>
[ 1049.348840][T13776] Bluetooth: hci0: command tx timeout
[ 1049.461241][T20865] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2888'.
[ 1049.534857][T20865] Process accounting paused
[ 1050.373131][T20744] veth0_vlan: entered promiscuous mode
[ 1050.447949][T20744] veth1_vlan: entered promiscuous mode
[ 1050.784437][T20744] veth0_macvtap: entered promiscuous mode
[ 1051.048625][T20744] veth1_macvtap: entered promiscuous mode
[ 1051.095682][T20907] FAULT_INJECTION: forcing a failure.
[ 1051.095682][T20907] name failslab, interval 1, probability 0, space 0, times 0
[ 1051.151468][T20744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1051.157102][T20907] CPU: 1 UID: 0 PID: 20907 Comm: syz.5.2897 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1051.157151][T20907] Tainted: [U]=USER
[ 1051.157162][T20907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1051.157198][T20907] Call Trace:
[ 1051.157208][T20907]  <TASK>
[ 1051.157221][T20907]  dump_stack_lvl+0x16c/0x1f0
[ 1051.157267][T20907]  should_fail_ex+0x512/0x640
[ 1051.157321][T20907]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1051.157375][T20907]  should_failslab+0xc2/0x120
[ 1051.157434][T20907]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1051.157505][T20907]  ? _snd_pcm_hw_param_min+0x259/0x630
[ 1051.157543][T20907]  ? snd_pcm_oss_change_params_locked+0x6f4/0x3b40
[ 1051.157593][T20907]  snd_pcm_oss_change_params_locked+0x6f4/0x3b40
[ 1051.157649][T20907]  ? __mutex_lock+0x1ca/0xb90
[ 1051.157686][T20907]  ? rcu_is_watching+0x12/0xc0
[ 1051.157720][T20907]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1051.157770][T20907]  ? __pfx___mutex_lock+0x10/0x10
[ 1051.157844][T20907]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1051.157896][T20907]  snd_pcm_oss_set_channels+0x23a/0x370
[ 1051.157941][T20907]  ? __pfx_snd_pcm_oss_set_channels+0x10/0x10
[ 1051.157983][T20907]  ? __might_fault+0x13b/0x190
[ 1051.158031][T20907]  snd_pcm_oss_ioctl+0x219d/0x37a0
[ 1051.158074][T20907]  ? find_held_lock+0x2b/0x80
[ 1051.158108][T20907]  ? hook_file_ioctl_common+0x145/0x410
[ 1051.158145][T20907]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1051.158194][T20907]  ? __fget_files+0x20e/0x3c0
[ 1051.158250][T20907]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1051.158297][T20907]  __x64_sys_ioctl+0x190/0x200
[ 1051.158345][T20907]  do_syscall_64+0xcd/0x230
[ 1051.158389][T20907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1051.158422][T20907] RIP: 0033:0x7fac5e78e969
[ 1051.158448][T20907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1051.158480][T20907] RSP: 002b:00007fac5c5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1051.158511][T20907] RAX: ffffffffffffffda RBX: 00007fac5e9b5fa0 RCX: 00007fac5e78e969
[ 1051.158533][T20907] RDX: 00002000000001c0 RSI: 00000000c0045006 RDI: 0000000000000003
[ 1051.158553][T20907] RBP: 00007fac5c5f6090 R08: 0000000000000000 R09: 0000000000000000
[ 1051.158573][T20907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1051.158602][T20907] R13: 0000000000000000 R14: 00007fac5e9b5fa0 R15: 00007ffc72fd9708
[ 1051.158650][T20907]  </TASK>
[ 1051.857434][T20744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1051.868809][T20744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1051.880453][T20744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1051.891418][T20744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1051.903334][T20744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1051.914359][T20744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1051.926041][T20744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1051.952352][T20744] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1052.090953][T20744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1052.144332][T20744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.226772][T20744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1052.249172][T20744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.334129][T20744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1052.382994][T20744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.396842][T20744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1052.416855][T20744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1052.429509][T20744] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1052.442203][T20744] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1052.452115][T20744] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1052.462240][T20744] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1052.472473][T20744] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1052.965956][ T6288] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1053.003467][ T6288] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1053.103199][ T6294] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1053.157524][ T6294] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1054.028654][T20953] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2907'.
[ 1057.011679][T21001] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2918'.
[ 1057.327486][T21004] netlink: 350 bytes leftover after parsing attributes in process `syz.3.2917'.
[ 1057.909054][T21022] netlink: 'syz.6.2922': attribute type 1 has an invalid length.
[ 1059.231928][T21044] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1059.265885][T21044] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1059.272721][T21044] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1059.279976][T21044] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1059.286574][T21044] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1059.422387][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.429864][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 1059.444851][T21044] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1059.454308][T21044] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1059.466882][T21044] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1059.808103][T21044] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1060.426552][T21061] FAULT_INJECTION: forcing a failure.
[ 1060.426552][T21061] name failslab, interval 1, probability 0, space 0, times 0
[ 1060.490710][T21061] CPU: 0 UID: 0 PID: 21061 Comm: syz.3.2933 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1060.490764][T21061] Tainted: [U]=USER
[ 1060.490775][T21061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1060.490795][T21061] Call Trace:
[ 1060.490807][T21061]  <TASK>
[ 1060.490819][T21061]  dump_stack_lvl+0x16c/0x1f0
[ 1060.490873][T21061]  should_fail_ex+0x512/0x640
[ 1060.490915][T21061]  ? __kmalloc_noprof+0xbf/0x510
[ 1060.490953][T21061]  ? constrain_params_by_rules+0x175/0xca0
[ 1060.490993][T21061]  should_failslab+0xc2/0x120
[ 1060.491031][T21061]  __kmalloc_noprof+0xd2/0x510
[ 1060.491062][T21061]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1060.491104][T21061]  constrain_params_by_rules+0x175/0xca0
[ 1060.491145][T21061]  ? arch_stack_walk+0xa6/0x100
[ 1060.491203][T21061]  ? __pfx_constrain_params_by_rules+0x10/0x10
[ 1060.491244][T21061]  ? stack_trace_save+0x8e/0xc0
[ 1060.491274][T21061]  ? __pfx_stack_trace_save+0x10/0x10
[ 1060.491322][T21061]  ? snd_pcm_oss_change_params_locked+0x9cd/0x3b40
[ 1060.491363][T21061]  ? snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1060.491402][T21061]  ? snd_pcm_oss_set_channels+0x23a/0x370
[ 1060.491440][T21061]  ? snd_pcm_oss_ioctl+0x219d/0x37a0
[ 1060.491477][T21061]  ? __x64_sys_ioctl+0x190/0x200
[ 1060.491514][T21061]  ? do_syscall_64+0xcd/0x230
[ 1060.491549][T21061]  ? snd_interval_refine+0x2fa/0x580
[ 1060.491603][T21061]  snd_pcm_hw_refine+0x7de/0xad0
[ 1060.491651][T21061]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[ 1060.491718][T21061]  snd_pcm_hw_param_last+0x32d/0x710
[ 1060.491770][T21061]  snd_pcm_hw_param_near.constprop.0+0x570/0x8e0
[ 1060.491817][T21061]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[ 1060.491859][T21061]  ? kfree+0x2b6/0x4d0
[ 1060.491904][T21061]  ? snd_pcm_oss_change_params_locked+0x958/0x3b40
[ 1060.491952][T21061]  snd_pcm_oss_change_params_locked+0x9cd/0x3b40
[ 1060.492013][T21061]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1060.492096][T21061]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1060.492140][T21061]  snd_pcm_oss_set_channels+0x23a/0x370
[ 1060.492187][T21061]  ? __pfx_snd_pcm_oss_set_channels+0x10/0x10
[ 1060.492222][T21061]  ? __might_fault+0x13b/0x190
[ 1060.492264][T21061]  snd_pcm_oss_ioctl+0x219d/0x37a0
[ 1060.492302][T21061]  ? find_held_lock+0x2b/0x80
[ 1060.492328][T21061]  ? hook_file_ioctl_common+0x145/0x410
[ 1060.492359][T21061]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1060.492401][T21061]  ? __fget_files+0x20e/0x3c0
[ 1060.492448][T21061]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1060.492488][T21061]  __x64_sys_ioctl+0x190/0x200
[ 1060.492529][T21061]  do_syscall_64+0xcd/0x230
[ 1060.492567][T21061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1060.492596][T21061] RIP: 0033:0x7f87f858e969
[ 1060.492618][T21061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1060.492647][T21061] RSP: 002b:00007f87f9439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1060.492674][T21061] RAX: ffffffffffffffda RBX: 00007f87f87b5fa0 RCX: 00007f87f858e969
[ 1060.492694][T21061] RDX: 00002000000001c0 RSI: 00000000c0045006 RDI: 0000000000000003
[ 1060.492712][T21061] RBP: 00007f87f9439090 R08: 0000000000000000 R09: 0000000000000000
[ 1060.492729][T21061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1060.492746][T21061] R13: 0000000000000000 R14: 00007f87f87b5fa0 R15: 00007ffcda5a13e8
[ 1060.492784][T21061]  </TASK>
[ 1061.266831][T13776] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1061.348216][T13776] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1061.348698][T15487] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1061.355390][T13776] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1061.496999][T13776] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1061.504313][T15486] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1062.101682][T21079] hub 3-0:1.0: USB hub found
[ 1062.112726][T21080] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2938'.
[ 1062.160270][T21080] macvtap0: entered promiscuous mode
[ 1062.170852][T21079] hub 3-0:1.0: 1 port detected
[ 1062.180121][T21080] macvtap0: entered allmulticast mode
[ 1062.214096][T21080] veth0_macvtap: entered allmulticast mode
[ 1062.348075][T21079] usb usb3: authorized to connect
[ 1062.855369][T21103] FAULT_INJECTION: forcing a failure.
[ 1062.855369][T21103] name failslab, interval 1, probability 0, space 0, times 0
[ 1063.120288][T21103] CPU: 0 UID: 0 PID: 21103 Comm: syz.0.2944 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1063.120336][T21103] Tainted: [U]=USER
[ 1063.120347][T21103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1063.120364][T21103] Call Trace:
[ 1063.120374][T21103]  <TASK>
[ 1063.120385][T21103]  dump_stack_lvl+0x16c/0x1f0
[ 1063.120425][T21103]  should_fail_ex+0x512/0x640
[ 1063.120474][T21103]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1063.120523][T21103]  should_failslab+0xc2/0x120
[ 1063.120557][T21103]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1063.120600][T21103]  ? snd_pcm_hw_param_last+0x306/0x710
[ 1063.120633][T21103]  ? snd_pcm_hw_param_near.constprop.0+0x72f/0x8e0
[ 1063.120668][T21103]  ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[ 1063.120710][T21103]  snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[ 1063.120748][T21103]  ? rate_src_frames+0x221/0x2c0
[ 1063.120808][T21103]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[ 1063.120847][T21103]  ? calc_src_frames.isra.0+0x187/0x1d0
[ 1063.120903][T21103]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[ 1063.120970][T21103]  snd_pcm_oss_change_params_locked+0x1398/0x3b40
[ 1063.121044][T21103]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1063.121118][T21103]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1063.121168][T21103]  snd_pcm_oss_set_channels+0x23a/0x370
[ 1063.121212][T21103]  ? __pfx_snd_pcm_oss_set_channels+0x10/0x10
[ 1063.121252][T21103]  ? __might_fault+0x13b/0x190
[ 1063.121298][T21103]  snd_pcm_oss_ioctl+0x219d/0x37a0
[ 1063.121340][T21103]  ? find_held_lock+0x2b/0x80
[ 1063.121368][T21103]  ? hook_file_ioctl_common+0x145/0x410
[ 1063.121403][T21103]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1063.121448][T21103]  ? __fget_files+0x20e/0x3c0
[ 1063.121503][T21103]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1063.121546][T21103]  __x64_sys_ioctl+0x190/0x200
[ 1063.121592][T21103]  do_syscall_64+0xcd/0x230
[ 1063.121635][T21103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1063.121666][T21103] RIP: 0033:0x7f4e3138e969
[ 1063.121691][T21103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1063.121721][T21103] RSP: 002b:00007f4e32145038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1063.121764][T21103] RAX: ffffffffffffffda RBX: 00007f4e315b5fa0 RCX: 00007f4e3138e969
[ 1063.121888][T21103] RDX: 00002000000001c0 RSI: 00000000c0045006 RDI: 0000000000000003
[ 1063.121909][T21103] RBP: 00007f4e32145090 R08: 0000000000000000 R09: 0000000000000000
[ 1063.121928][T21103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1063.121946][T21103] R13: 0000000000000000 R14: 00007f4e315b5fa0 R15: 00007ffc9d0a9378
[ 1063.121988][T21103]  </TASK>
[ 1063.460794][T13776] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1063.576787][T13776] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1063.845584][   T30] audit: type=1400 audit(4294967322.660:39): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=21089 comm="syz.6.2942"
[ 1065.193522][T21123] FAULT_INJECTION: forcing a failure.
[ 1065.193522][T21123] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1065.226825][T21123] CPU: 0 UID: 0 PID: 21123 Comm: syz.6.2948 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1065.226886][T21123] Tainted: [U]=USER
[ 1065.226895][T21123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1065.226911][T21123] Call Trace:
[ 1065.226920][T21123]  <TASK>
[ 1065.226930][T21123]  dump_stack_lvl+0x16c/0x1f0
[ 1065.226967][T21123]  should_fail_ex+0x512/0x640
[ 1065.227029][T21123]  should_fail_alloc_page+0xe7/0x130
[ 1065.227068][T21123]  prepare_alloc_pages+0x3c2/0x610
[ 1065.227112][T21123]  ? rcu_is_watching+0x12/0xc0
[ 1065.227142][T21123]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 1065.227177][T21123]  ? kasan_save_stack+0x33/0x60
[ 1065.227215][T21123]  ? __lock_acquire+0xaa4/0x1ba0
[ 1065.227256][T21123]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1065.227294][T21123]  ? look_up_lock_class+0x59/0x150
[ 1065.227336][T21123]  ? __lock_acquire+0x5ca/0x1ba0
[ 1065.227375][T21123]  ? __lock_acquire+0x5ca/0x1ba0
[ 1065.227411][T21123]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1065.227453][T21123]  ? policy_nodemask+0xea/0x4e0
[ 1065.227491][T21123]  alloc_pages_mpol+0x1fb/0x550
[ 1065.227528][T21123]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1065.227564][T21123]  ? __lock_acquire+0x5ca/0x1ba0
[ 1065.227607][T21123]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 1065.227651][T21123]  vma_alloc_folio_noprof+0xed/0x1e0
[ 1065.227691][T21123]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1065.227744][T21123]  do_pte_missing+0x223d/0x3fb0
[ 1065.227786][T21123]  __handle_mm_fault+0x103d/0x2a40
[ 1065.227826][T21123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1065.227860][T21123]  ? __pte_offset_map_lock+0x155/0x2f0
[ 1065.227901][T21123]  ? find_held_lock+0x2b/0x80
[ 1065.227926][T21123]  ? find_held_lock+0x2b/0x80
[ 1065.227976][T21123]  handle_mm_fault+0x3fe/0xad0
[ 1065.228011][T21123]  __get_user_pages+0x771/0x36f0
[ 1065.228075][T21123]  ? __pfx_mt_find+0x10/0x10
[ 1065.228112][T21123]  ? __pfx___get_user_pages+0x10/0x10
[ 1065.228166][T21123]  populate_vma_page_range+0x278/0x3a0
[ 1065.228212][T21123]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1065.228255][T21123]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1065.228295][T21123]  ? do_mmap+0x69c/0x11b0
[ 1065.228337][T21123]  __mm_populate+0x1d8/0x380
[ 1065.228364][T21123]  ? __pfx___mm_populate+0x10/0x10
[ 1065.228411][T21123]  ? up_write+0x1b2/0x520
[ 1065.228450][T21123]  vm_mmap_pgoff+0x362/0x450
[ 1065.228493][T21123]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1065.228540][T21123]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1065.228566][T21123]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1065.228600][T21123]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1065.228638][T21123]  ? rcu_is_watching+0x12/0xc0
[ 1065.228666][T21123]  __x64_sys_mmap+0x125/0x190
[ 1065.228697][T21123]  do_syscall_64+0xcd/0x230
[ 1065.228734][T21123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1065.228760][T21123] RIP: 0033:0x7fcc3078e969
[ 1065.228781][T21123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1065.228825][T21123] RSP: 002b:00007fcc3155e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1065.228858][T21123] RAX: ffffffffffffffda RBX: 00007fcc309b5fa0 RCX: 00007fcc3078e969
[ 1065.228877][T21123] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1065.228895][T21123] RBP: 00007fcc30810ab1 R08: 0000000000000002 R09: 0000000000008000
[ 1065.228913][T21123] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1065.228931][T21123] R13: 0000000000000000 R14: 00007fcc309b5fa0 R15: 00007ffd138d6098
[ 1065.228969][T21123]  </TASK>
[ 1065.694989][T13776] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1066.617244][T21132] input: jJǸ-���9�%v����l��Q�	J8fi� as /devices/virtual/input/input80
[ 1068.814114][T21167] program syz.3.2958 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1068.900903][T21169] EXT4-fs error (device sda1): ext4_lookup:1789: inode #248: comm syz.6.2959: iget: checksum invalid
[ 1068.962176][T21169] platform regulatory.0: loading /lib/firmware/updates/6.15.0-rc3-syzkaller-00342-g5bc1018675ec/regulatory.db failed with error -74
[ 1069.022953][T21169] EXT4-fs error (device sda1): ext4_lookup:1789: inode #248: comm syz.6.2959: iget: checksum invalid
[ 1069.099326][T21169] platform regulatory.0: loading /lib/firmware/updates/regulatory.db failed with error -74
[ 1069.117122][T21169] EXT4-fs error (device sda1): ext4_lookup:1789: inode #248: comm syz.6.2959: iget: checksum invalid
[ 1069.157889][T21169] platform regulatory.0: loading /lib/firmware/6.15.0-rc3-syzkaller-00342-g5bc1018675ec/regulatory.db failed with error -74
[ 1069.220866][T21169] EXT4-fs error (device sda1): ext4_lookup:1789: inode #248: comm syz.6.2959: iget: checksum invalid
[ 1069.279992][T21169] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -74
[ 1069.326851][T21169] platform regulatory.0: Direct firmware load for regulatory.db failed with error -74
[ 1069.394257][T21169] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1069.644875][T21172] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1069.652014][T21172] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1069.689378][T21172] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1069.706352][T21172] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1069.746507][T21172] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1069.805432][T21172] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1071.577361][T13776] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1071.657067][T13776] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1071.736872][T13776] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1071.743526][T13776] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1071.816864][T13776] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1071.823620][T15486] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1073.131625][T21211] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2970'.
[ 1073.630844][T21211] veth1_macvtap: left promiscuous mode
[ 1074.110478][T13776] Bluetooth: hci4: unexpected event 0x3e length: 508 > 260
[ 1074.110534][T13776] Bluetooth: hci4: unexpected subevent 0x02 length: 507 > 260
[ 1074.128223][T13776] Bluetooth: hci4: Dropping invalid advertising data
[ 1074.136631][T13776] Bluetooth: hci4: unknown advertising packet type: 0xe9
[ 1074.525384][T21223] mmap: syz.5.2972 (21223): VmData 37597184 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[ 1074.608821][T21230] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2973'.
[ 1074.748430][T21230] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1074.842285][T21230] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1074.976488][T21230] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1074.991679][T21230] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1078.089266][T21268] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2983'.
[ 1078.529774][T21272] qrtr: Invalid version 8
[ 1079.656070][T21295] input input81: cannot allocate more than FF_MAX_EFFECTS effects
[ 1079.917305][T21300] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2989'.
[ 1081.366315][T21281] Process accounting resumed
[ 1082.585526][T21308] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input82
[ 1083.534678][T21354] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3000'.
[ 1085.951134][ T6288] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1086.397066][ T6288] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1086.612284][ T6288] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1086.950216][ T6288] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1088.040869][ T6288] bridge_slave_1: left allmulticast mode
[ 1088.047335][ T6288] bridge_slave_1: left promiscuous mode
[ 1088.055987][ T6288] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1088.274539][ T6288] bridge_slave_0: left allmulticast mode
[ 1088.306907][ T6288] bridge_slave_0: left promiscuous mode
[ 1088.313245][ T6288] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1088.829947][T21403] FAULT_INJECTION: forcing a failure.
[ 1088.829947][T21403] name failslab, interval 1, probability 0, space 0, times 0
[ 1088.886790][T21403] CPU: 0 UID: 0 PID: 21403 Comm: syz.0.3009 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1088.886846][T21403] Tainted: [U]=USER
[ 1088.886855][T21403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1088.886872][T21403] Call Trace:
[ 1088.886882][T21403]  <TASK>
[ 1088.886892][T21403]  dump_stack_lvl+0x16c/0x1f0
[ 1088.886949][T21403]  should_fail_ex+0x512/0x640
[ 1088.886988][T21403]  ? __kmalloc_noprof+0xbf/0x510
[ 1088.887023][T21403]  ? constrain_params_by_rules+0x175/0xca0
[ 1088.887061][T21403]  should_failslab+0xc2/0x120
[ 1088.887095][T21403]  __kmalloc_noprof+0xd2/0x510
[ 1088.887124][T21403]  ? kasan_quarantine_put+0x10a/0x240
[ 1088.887153][T21403]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1088.887194][T21403]  constrain_params_by_rules+0x175/0xca0
[ 1088.887230][T21403]  ? constrain_params_by_rules+0xa09/0xca0
[ 1088.887284][T21403]  ? constrain_params_by_rules+0xa0e/0xca0
[ 1088.887328][T21403]  ? __pfx_constrain_params_by_rules+0x10/0x10
[ 1088.887377][T21403]  ? __pfx_constrain_params_by_rules+0x10/0x10
[ 1088.887429][T21403]  ? __mutex_trylock_common+0xe9/0x250
[ 1088.887482][T21403]  snd_pcm_hw_refine+0x7de/0xad0
[ 1088.887530][T21403]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[ 1088.887579][T21403]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[ 1088.887634][T21403]  snd_pcm_hw_param_first+0x334/0x6f0
[ 1088.887681][T21403]  snd_pcm_hw_params+0x5ad/0x1b40
[ 1088.887727][T21403]  ? do_raw_spin_unlock+0x172/0x230
[ 1088.887772][T21403]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[ 1088.887815][T21403]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1088.887856][T21403]  ? mark_held_locks+0x49/0x80
[ 1088.887891][T21403]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1088.887920][T21403]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1088.887960][T21403]  snd_pcm_kernel_ioctl+0x147/0x2e0
[ 1088.888005][T21403]  snd_pcm_oss_change_params_locked+0x1432/0x3b40
[ 1088.888063][T21403]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1088.888142][T21403]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1088.888185][T21403]  snd_pcm_oss_set_channels+0x23a/0x370
[ 1088.888223][T21403]  ? __pfx_snd_pcm_oss_set_channels+0x10/0x10
[ 1088.888262][T21403]  ? __might_fault+0x13b/0x190
[ 1088.888304][T21403]  snd_pcm_oss_ioctl+0x219d/0x37a0
[ 1088.888339][T21403]  ? find_held_lock+0x2b/0x80
[ 1088.888363][T21403]  ? hook_file_ioctl_common+0x145/0x410
[ 1088.888393][T21403]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1088.888434][T21403]  ? __fget_files+0x20e/0x3c0
[ 1088.888480][T21403]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1088.888519][T21403]  __x64_sys_ioctl+0x190/0x200
[ 1088.888558][T21403]  do_syscall_64+0xcd/0x230
[ 1088.888595][T21403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1088.888622][T21403] RIP: 0033:0x7f4e3138e969
[ 1088.888644][T21403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1088.888671][T21403] RSP: 002b:00007f4e32145038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1088.888696][T21403] RAX: ffffffffffffffda RBX: 00007f4e315b5fa0 RCX: 00007f4e3138e969
[ 1088.888714][T21403] RDX: 00002000000001c0 RSI: 00000000c0045006 RDI: 0000000000000003
[ 1088.888731][T21403] RBP: 00007f4e32145090 R08: 0000000000000000 R09: 0000000000000000
[ 1088.888748][T21403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1088.888764][T21403] R13: 0000000000000000 R14: 00007f4e315b5fa0 R15: 00007ffc9d0a9378
[ 1088.888800][T21403]  </TASK>
[ 1090.782078][T21426] Invalid ELF header magic: != ELF
[ 1091.164224][ T6288] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1091.210350][ T6288] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1091.258607][ T6288] bond0 (unregistering): Released all slaves
[ 1091.326139][T21424] .SR: entered promiscuous mode
[ 1093.309199][T13776] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[ 1093.309240][T13776] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260
[ 1093.326468][T13776] Bluetooth: hci4: Unknown advertising packet type: 0x7f
[ 1093.326523][T13776] Bluetooth: hci4: adv larger than maximum supported
[ 1093.335607][T13776] Bluetooth: hci4: Malformed LE Event: 0x0d
[ 1094.310578][ T6288] hsr_slave_0: left promiscuous mode
[ 1094.340806][ T6288] hsr_slave_1: left promiscuous mode
[ 1094.434877][ T6288] veth1_macvtap: left promiscuous mode
[ 1094.452320][ T6288] veth0_macvtap: left promiscuous mode
[ 1094.462093][ T6288] veth1_vlan: left promiscuous mode
[ 1094.472633][ T6288] veth0_vlan: left promiscuous mode
[ 1096.904705][ T6288] team0 (unregistering): Port device team_slave_1 removed
[ 1097.067737][ T6288] team0 (unregistering): Port device team_slave_0 removed
[ 1098.560595][T21528] ip_vti0: entered allmulticast mode
[ 1098.621213][T21550] FAULT_INJECTION: forcing a failure.
[ 1098.621213][T21550] name failslab, interval 1, probability 0, space 0, times 0
[ 1098.688863][T21550] CPU: 0 UID: 0 PID: 21550 Comm: syz.5.3032 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1098.688911][T21550] Tainted: [U]=USER
[ 1098.688921][T21550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1098.688939][T21550] Call Trace:
[ 1098.688948][T21550]  <TASK>
[ 1098.688958][T21550]  dump_stack_lvl+0x16c/0x1f0
[ 1098.688998][T21550]  should_fail_ex+0x512/0x640
[ 1098.689037][T21550]  ? __kmalloc_noprof+0xbf/0x510
[ 1098.689071][T21550]  ? __register_sysctl_table+0xb3/0x1900
[ 1098.689102][T21550]  should_failslab+0xc2/0x120
[ 1098.689135][T21550]  __kmalloc_noprof+0xd2/0x510
[ 1098.689174][T21550]  __register_sysctl_table+0xb3/0x1900
[ 1098.689211][T21550]  ? is_module_address+0x5f/0xf0
[ 1098.689274][T21550]  ? __pfx___register_sysctl_table+0x10/0x10
[ 1098.689305][T21550]  ? is_module_address+0x69/0xf0
[ 1098.689344][T21550]  ? register_net_sysctl_sz+0x228/0x3e0
[ 1098.689396][T21550]  ? __asan_memcpy+0x3c/0x60
[ 1098.689452][T21550]  devinet_init_net+0x378/0x910
[ 1098.689491][T21550]  ? __pfx_devinet_init_net+0x10/0x10
[ 1098.689524][T21550]  ops_init+0x1df/0x5f0
[ 1098.689559][T21550]  setup_net+0x21e/0x850
[ 1098.689597][T21550]  ? __pfx_setup_net+0x10/0x10
[ 1098.689626][T21550]  ? lockdep_init_map_type+0x5c/0x280
[ 1098.689668][T21550]  ? __pfx_down_read_killable+0x10/0x10
[ 1098.689717][T21550]  ? debug_mutex_init+0x37/0x70
[ 1098.689774][T21550]  copy_net_ns+0x2a6/0x5f0
[ 1098.689812][T21550]  create_new_namespaces+0x3ea/0xad0
[ 1098.689859][T21550]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1098.689898][T21550]  ksys_unshare+0x45b/0xa40
[ 1098.689943][T21550]  ? __pfx_ksys_unshare+0x10/0x10
[ 1098.689985][T21550]  ? xfd_validate_state+0x5d/0x180
[ 1098.690036][T21550]  ? rcu_is_watching+0x12/0xc0
[ 1098.690072][T21550]  __x64_sys_unshare+0x31/0x40
[ 1098.690112][T21550]  do_syscall_64+0xcd/0x230
[ 1098.690163][T21550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1098.690192][T21550] RIP: 0033:0x7fac5e78e969
[ 1098.690215][T21550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1098.690247][T21550] RSP: 002b:00007fac5c5d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1098.690275][T21550] RAX: ffffffffffffffda RBX: 00007fac5e9b6080 RCX: 00007fac5e78e969
[ 1098.690299][T21550] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1098.690316][T21550] RBP: 00007fac5e810ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1098.690334][T21550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1098.690352][T21550] R13: 0000000000000000 R14: 00007fac5e9b6080 R15: 00007ffc72fd9708
[ 1098.690398][T21550]  </TASK>
[ 1101.422945][T21604] FAULT_INJECTION: forcing a failure.
[ 1101.422945][T21604] name failslab, interval 1, probability 0, space 0, times 0
[ 1101.500481][T21604] CPU: 1 UID: 0 PID: 21604 Comm: syz.3.3042 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1101.500536][T21604] Tainted: [U]=USER
[ 1101.500547][T21604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1101.500566][T21604] Call Trace:
[ 1101.500577][T21604]  <TASK>
[ 1101.500590][T21604]  dump_stack_lvl+0x16c/0x1f0
[ 1101.500635][T21604]  should_fail_ex+0x512/0x640
[ 1101.500677][T21604]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1101.500716][T21604]  should_failslab+0xc2/0x120
[ 1101.500757][T21604]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1101.500791][T21604]  ? __pmd_alloc+0xc3/0x870
[ 1101.500860][T21604]  __pmd_alloc+0xc3/0x870
[ 1101.500911][T21604]  __handle_mm_fault+0x948/0x2a40
[ 1101.500956][T21604]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1101.501025][T21604]  handle_mm_fault+0x3fe/0xad0
[ 1101.501065][T21604]  __get_user_pages+0x771/0x36f0
[ 1101.501126][T21604]  ? __pfx_mt_find+0x10/0x10
[ 1101.501168][T21604]  ? __pfx___get_user_pages+0x10/0x10
[ 1101.501235][T21604]  populate_vma_page_range+0x278/0x3a0
[ 1101.501290][T21604]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1101.501342][T21604]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1101.501391][T21604]  ? do_mmap+0x69c/0x11b0
[ 1101.501523][T21604]  __mm_populate+0x1d8/0x380
[ 1101.501559][T21604]  ? __pfx___mm_populate+0x10/0x10
[ 1101.501616][T21604]  ? up_write+0x1b2/0x520
[ 1101.501665][T21604]  vm_mmap_pgoff+0x362/0x450
[ 1101.501717][T21604]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1101.501780][T21604]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1101.501814][T21604]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1101.501854][T21604]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1101.501901][T21604]  ? rcu_is_watching+0x12/0xc0
[ 1101.501936][T21604]  __x64_sys_mmap+0x125/0x190
[ 1101.501973][T21604]  do_syscall_64+0xcd/0x230
[ 1101.502016][T21604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1101.502050][T21604] RIP: 0033:0x7f87f858e969
[ 1101.502077][T21604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1101.502111][T21604] RSP: 002b:00007f87f9439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1101.502142][T21604] RAX: ffffffffffffffda RBX: 00007f87f87b5fa0 RCX: 00007f87f858e969
[ 1101.502165][T21604] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1101.502201][T21604] RBP: 00007f87f8610ab1 R08: fffffffffffffffe R09: 0000000000008000
[ 1101.502224][T21604] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1101.502245][T21604] R13: 0000000000000000 R14: 00007f87f87b5fa0 R15: 00007ffcda5a13e8
[ 1101.502288][T21604]  </TASK>
[ 1103.618692][T21640] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1103.730849][T21640] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1103.862098][T21650] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3049'.
[ 1104.400278][T21664] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1105.791748][T21696] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input83
[ 1106.361549][T21697] cifs: Unknown parameter '�~�.���K����u���%�m�%1��^�0܆�G)?p'
[ 1106.987024][T21722] ubi0: attaching mtd0
[ 1107.016454][T21722] ubi0: scanning is finished
[ 1107.025975][T21722] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[ 1107.077868][T21724] .SR: entered promiscuous mode
[ 1107.145760][T21724] Invalid ELF header magic: != ELF
[ 1108.760552][T21722] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1108.969418][T21758] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3064'.
[ 1109.940141][T21787] serio: Serial port pty64
[ 1110.030724][T21788] netlink: 326 bytes leftover after parsing attributes in process `syz.0.3069'.
[ 1110.979424][T21820] random: crng reseeded on system resumption
[ 1111.190875][T21825] netlink: 'syz.5.3074': attribute type 11 has an invalid length.
[ 1111.227307][T21825] netlink: 330 bytes leftover after parsing attributes in process `syz.5.3074'.
[ 1112.260494][T21854] Invalid ELF header magic: != ELF
[ 1112.637617][T21842] Process accounting paused
[ 1114.086478][T21912] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3091'.
[ 1114.115386][T21895] could not allocate digest TFM handle 
[ 1114.143314][T21913] netlink: 93 bytes leftover after parsing attributes in process `syz.0.3091'.
[ 1117.937219][T21999] ubi0: attaching mtd0
[ 1117.952740][T21999] ubi0: scanning is finished
[ 1117.971388][T21999] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[ 1118.079867][T22002] netlink: 130 bytes leftover after parsing attributes in process `syz.5.3107'.
[ 1118.123561][T22001] Invalid ELF header magic: != ELF
[ 1118.421950][T21999] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1120.668907][T22035] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input85
[ 1120.864807][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[ 1120.876565][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[ 1123.940548][T22119] netlink: zone id is out of range
[ 1123.949634][T22119] netlink: zone id is out of range
[ 1123.978691][T22119] netlink: zone id is out of range
[ 1123.984353][T22119] netlink: zone id is out of range
[ 1124.155784][T22119] netlink: zone id is out of range
[ 1124.276701][T22119] netlink: zone id is out of range
[ 1124.282377][T22119] netlink: zone id is out of range
[ 1124.334806][T22119] netlink: zone id is out of range
[ 1124.436735][T22119] netlink: zone id is out of range
[ 1124.442421][T22119] netlink: zone id is out of range
[ 1126.551868][T22182] FAULT_INJECTION: forcing a failure.
[ 1126.551868][T22182] name failslab, interval 1, probability 0, space 0, times 0
[ 1126.646149][T22182] CPU: 0 UID: 0 PID: 22182 Comm: syz.5.3129 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1126.646227][T22182] Tainted: [U]=USER
[ 1126.646244][T22182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1126.646272][T22182] Call Trace:
[ 1126.646281][T22182]  <TASK>
[ 1126.646292][T22182]  dump_stack_lvl+0x16c/0x1f0
[ 1126.646330][T22182]  should_fail_ex+0x512/0x640
[ 1126.646368][T22182]  ? __kmalloc_noprof+0xbf/0x510
[ 1126.646401][T22182]  ? ima_write_template_field_data+0x5d/0x1f0
[ 1126.646434][T22182]  should_failslab+0xc2/0x120
[ 1126.646467][T22182]  __kmalloc_noprof+0xd2/0x510
[ 1126.646512][T22182]  ima_write_template_field_data+0x5d/0x1f0
[ 1126.646553][T22182]  ima_eventname_init_common+0x1b8/0x260
[ 1126.646591][T22182]  ? __pfx_ima_eventname_init_common+0x10/0x10
[ 1126.646633][T22182]  ? trace_kmalloc+0x2b/0xd0
[ 1126.646672][T22182]  ? __kmalloc_noprof+0x242/0x510
[ 1126.646710][T22182]  ima_alloc_init_template+0x39d/0x720
[ 1126.646747][T22182]  ima_add_violation+0x123/0x3d0
[ 1126.646778][T22182]  ? __pfx_ima_add_violation+0x10/0x10
[ 1126.646804][T22182]  ? ima_d_path+0x12b/0x2a0
[ 1126.646831][T22182]  ? __pfx_ima_d_path+0x10/0x10
[ 1126.646867][T22182]  ? lockdep_init_map_type+0x5c/0x280
[ 1126.646906][T22182]  ? ima_inode_get+0x39e/0x580
[ 1126.646951][T22182]  process_measurement+0x1783/0x23e0
[ 1126.647005][T22182]  ? __pfx_process_measurement+0x10/0x10
[ 1126.647042][T22182]  ? __lock_acquire+0x5ca/0x1ba0
[ 1126.647082][T22182]  ? trace_ignore_this_task+0xc3/0x100
[ 1126.647163][T22182]  ? wake_up_q+0xb0/0x160
[ 1126.647186][T22182]  ? do_raw_spin_unlock+0x172/0x230
[ 1126.647236][T22182]  ima_file_mmap+0x1b1/0x1d0
[ 1126.647276][T22182]  ? __pfx_ima_file_mmap+0x10/0x10
[ 1126.647326][T22182]  security_mmap_file+0x88c/0x990
[ 1126.647363][T22182]  vm_mmap_pgoff+0xec/0x450
[ 1126.647406][T22182]  ? find_held_lock+0x2b/0x80
[ 1126.647431][T22182]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1126.647478][T22182]  ? __fget_files+0x20e/0x3c0
[ 1126.647538][T22182]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1126.647580][T22182]  ? rcu_is_watching+0x12/0xc0
[ 1126.647609][T22182]  __x64_sys_mmap+0x125/0x190
[ 1126.647641][T22182]  do_syscall_64+0xcd/0x230
[ 1126.647679][T22182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1126.647708][T22182] RIP: 0033:0x7fac5e78e969
[ 1126.647743][T22182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1126.647772][T22182] RSP: 002b:00007fac5c5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1126.647800][T22182] RAX: ffffffffffffffda RBX: 00007fac5e9b5fa0 RCX: 00007fac5e78e969
[ 1126.647819][T22182] RDX: 00000000000003ff RSI: 0000000000000001 RDI: 000000000000f000
[ 1126.647837][T22182] RBP: 00007fac5e810ab1 R08: 0000000000000003 R09: 0000000000000000
[ 1126.647854][T22182] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000000
[ 1126.647872][T22182] R13: 0000000000000000 R14: 00007fac5e9b5fa0 R15: 00007ffc72fd9708
[ 1126.647909][T22182]  </TASK>
[ 1127.058680][   T30] audit: type=1804 audit(4294967385.840:40): pid=22182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3129" name="/newroot/243/file0" dev="tmpfs" ino=1305 res=0 errno=0
[ 1127.178969][   T30] audit: type=1800 audit(4294967385.920:41): pid=22182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3129" name="file0" dev="tmpfs" ino=1305 res=0 errno=0
[ 1128.399267][T22216] netlink: 'syz.3.3134': attribute type 4 has an invalid length.
[ 1128.443194][T22216] netlink: 314 bytes leftover after parsing attributes in process `syz.3.3134'.
[ 1130.145744][T13776] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[ 1134.603976][T22358] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input86
[ 1136.893301][T22396] netlink: 'syz.6.3166': attribute type 33 has an invalid length.
[ 1136.918436][T22396] netlink: 322 bytes leftover after parsing attributes in process `syz.6.3166'.
[ 1137.034337][T22396] netlink: 'syz.6.3166': attribute type 33 has an invalid length.
[ 1137.114729][T22396] netlink: 322 bytes leftover after parsing attributes in process `syz.6.3166'.
[ 1139.376795][T22438] cgroup: fork rejected by pids controller in /syz3
[ 1142.647108][T22458] Process accounting resumed
[ 1143.044077][T22635] aoe: invalid device specification 
[ 1144.119029][T22655] FAULT_INJECTION: forcing a failure.
[ 1144.119029][T22655] name failslab, interval 1, probability 0, space 0, times 0
[ 1144.177741][T22655] CPU: 1 UID: 0 PID: 22655 Comm: syz.5.3191 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1144.177793][T22655] Tainted: [U]=USER
[ 1144.177803][T22655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1144.177821][T22655] Call Trace:
[ 1144.177831][T22655]  <TASK>
[ 1144.177842][T22655]  dump_stack_lvl+0x16c/0x1f0
[ 1144.177884][T22655]  should_fail_ex+0x512/0x640
[ 1144.177926][T22655]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1144.177966][T22655]  should_failslab+0xc2/0x120
[ 1144.178003][T22655]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1144.178035][T22655]  ? trace_cap_capable+0x18d/0x200
[ 1144.178063][T22655]  ? create_new_namespaces+0x30/0xad0
[ 1144.178111][T22655]  create_new_namespaces+0x30/0xad0
[ 1144.178141][T22655]  ? bpf_lsm_capable+0x9/0x10
[ 1144.178169][T22655]  ? security_capable+0x7e/0x260
[ 1144.178239][T22655]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1144.178275][T22655]  ksys_unshare+0x45b/0xa40
[ 1144.178317][T22655]  ? __pfx_ksys_unshare+0x10/0x10
[ 1144.178356][T22655]  ? xfd_validate_state+0x5d/0x180
[ 1144.178406][T22655]  ? rcu_is_watching+0x12/0xc0
[ 1144.178453][T22655]  __x64_sys_unshare+0x31/0x40
[ 1144.178489][T22655]  do_syscall_64+0xcd/0x230
[ 1144.178526][T22655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1144.178554][T22655] RIP: 0033:0x7fac5e78e969
[ 1144.178576][T22655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1144.178612][T22655] RSP: 002b:00007fac5c5f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1144.178638][T22655] RAX: ffffffffffffffda RBX: 00007fac5e9b5fa0 RCX: 00007fac5e78e969
[ 1144.178656][T22655] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
[ 1144.178673][T22655] RBP: 00007fac5e810ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1144.178691][T22655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1144.178708][T22655] R13: 0000000000000000 R14: 00007fac5e9b5fa0 R15: 00007ffc72fd9708
[ 1144.178744][T22655]  </TASK>
[ 1144.529190][T22655] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3191'.
[ 1144.556032][T22655] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3191'.
[ 1144.618883][T22658] netlink: 290 bytes leftover after parsing attributes in process `syz.5.3191'.
[ 1144.654741][T22666] netlink: 198 bytes leftover after parsing attributes in process `syz.3.3185'.
[ 1145.752804][T22683] mkiss: ax0: crc mode is auto.
[ 1145.889779][T22680] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1146.133675][T22691] FAULT_INJECTION: forcing a failure.
[ 1146.133675][T22691] name failslab, interval 1, probability 0, space 0, times 0
[ 1146.209733][T22691] CPU: 0 UID: 0 PID: 22691 Comm: syz.6.3197 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1146.209785][T22691] Tainted: [U]=USER
[ 1146.209796][T22691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1146.209814][T22691] Call Trace:
[ 1146.209824][T22691]  <TASK>
[ 1146.209836][T22691]  dump_stack_lvl+0x16c/0x1f0
[ 1146.209878][T22691]  should_fail_ex+0x512/0x640
[ 1146.209919][T22691]  ? __kmalloc_noprof+0xbf/0x510
[ 1146.209955][T22691]  ? ops_init+0x77/0x5f0
[ 1146.209983][T22691]  should_failslab+0xc2/0x120
[ 1146.210020][T22691]  __kmalloc_noprof+0xd2/0x510
[ 1146.210052][T22691]  ? debug_mutex_init+0x37/0x70
[ 1146.210105][T22691]  ops_init+0x77/0x5f0
[ 1146.210140][T22691]  setup_net+0x21e/0x850
[ 1146.210175][T22691]  ? __pfx_setup_net+0x10/0x10
[ 1146.210204][T22691]  ? lockdep_init_map_type+0x5c/0x280
[ 1146.210245][T22691]  ? __pfx_down_read_killable+0x10/0x10
[ 1146.210291][T22691]  ? debug_mutex_init+0x37/0x70
[ 1146.210343][T22691]  copy_net_ns+0x2a6/0x5f0
[ 1146.210380][T22691]  create_new_namespaces+0x3ea/0xad0
[ 1146.210423][T22691]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1146.210480][T22691]  ksys_unshare+0x45b/0xa40
[ 1146.210520][T22691]  ? __pfx_ksys_unshare+0x10/0x10
[ 1146.210557][T22691]  ? xfd_validate_state+0x5d/0x180
[ 1146.210605][T22691]  ? rcu_is_watching+0x12/0xc0
[ 1146.210641][T22691]  __x64_sys_unshare+0x31/0x40
[ 1146.210680][T22691]  do_syscall_64+0xcd/0x230
[ 1146.210721][T22691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1146.210754][T22691] RIP: 0033:0x7fcc3078e969
[ 1146.210780][T22691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1146.210810][T22691] RSP: 002b:00007fcc3155e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1146.210839][T22691] RAX: ffffffffffffffda RBX: 00007fcc309b5fa0 RCX: 00007fcc3078e969
[ 1146.210860][T22691] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1146.210878][T22691] RBP: 00007fcc30810ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1146.210897][T22691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1146.210915][T22691] R13: 0000000000000000 R14: 00007fcc309b5fa0 R15: 00007ffd138d6098
[ 1146.210954][T22691]  </TASK>
[ 1146.458748][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1146.768521][T22702] FAULT_INJECTION: forcing a failure.
[ 1146.768521][T22702] name failslab, interval 1, probability 0, space 0, times 0
[ 1146.783497][T22702] CPU: 0 UID: 0 PID: 22702 Comm: syz.5.3198 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1146.783542][T22702] Tainted: [U]=USER
[ 1146.783553][T22702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1146.783569][T22702] Call Trace:
[ 1146.783579][T22702]  <TASK>
[ 1146.783590][T22702]  dump_stack_lvl+0x16c/0x1f0
[ 1146.783629][T22702]  should_fail_ex+0x512/0x640
[ 1146.783665][T22702]  ? __kmalloc_noprof+0xbf/0x510
[ 1146.783696][T22702]  ? constrain_params_by_rules+0x175/0xca0
[ 1146.783733][T22702]  should_failslab+0xc2/0x120
[ 1146.783767][T22702]  __kmalloc_noprof+0xd2/0x510
[ 1146.783795][T22702]  ? unwind_get_return_address+0x59/0xa0
[ 1146.783827][T22702]  ? arch_stack_walk+0xa6/0x100
[ 1146.783864][T22702]  constrain_params_by_rules+0x175/0xca0
[ 1146.783909][T22702]  ? stack_trace_save+0x8e/0xc0
[ 1146.783937][T22702]  ? stack_depot_save_flags+0x28/0xa50
[ 1146.783979][T22702]  ? __pfx_constrain_params_by_rules+0x10/0x10
[ 1146.784024][T22702]  ? __kasan_kmalloc+0xaa/0xb0
[ 1146.784049][T22702]  ? snd_pcm_oss_change_params_locked+0x247/0x3b40
[ 1146.784086][T22702]  ? snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1146.784121][T22702]  ? snd_pcm_oss_ioctl+0x31aa/0x37a0
[ 1146.784164][T22702]  ? rcu_is_watching+0x12/0xc0
[ 1146.784188][T22702]  ? snd_interval_refine+0x2fa/0x580
[ 1146.784237][T22702]  snd_pcm_hw_refine+0x7de/0xad0
[ 1146.784278][T22702]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[ 1146.784326][T22702]  ? __asan_memset+0x23/0x50
[ 1146.784369][T22702]  ? _snd_pcm_hw_param_min+0x259/0x630
[ 1146.784416][T22702]  snd_pcm_oss_change_params_locked+0x65e/0x3b40
[ 1146.784456][T22702]  ? preempt_count_sub+0xc0/0x160
[ 1146.784495][T22702]  ? __mutex_lock+0x1ca/0xb90
[ 1146.784532][T22702]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1146.784574][T22702]  ? __pfx___mutex_lock+0x10/0x10
[ 1146.784622][T22702]  ? find_held_lock+0x2b/0x80
[ 1146.784654][T22702]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[ 1146.784698][T22702]  snd_pcm_oss_ioctl+0x31aa/0x37a0
[ 1146.784735][T22702]  ? find_held_lock+0x2b/0x80
[ 1146.784760][T22702]  ? hook_file_ioctl_common+0x145/0x410
[ 1146.784791][T22702]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1146.784831][T22702]  ? __fget_files+0x20e/0x3c0
[ 1146.784879][T22702]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[ 1146.784918][T22702]  __x64_sys_ioctl+0x190/0x200
[ 1146.784957][T22702]  do_syscall_64+0xcd/0x230
[ 1146.784995][T22702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1146.785041][T22702] RIP: 0033:0x7fac5e78e969
[ 1146.785066][T22702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1146.785096][T22702] RSP: 002b:00007fac5c191038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1146.785125][T22702] RAX: ffffffffffffffda RBX: 00007fac5e9b6240 RCX: 00007fac5e78e969
[ 1146.785145][T22702] RDX: 0000000000000000 RSI: 00000000c0045005 RDI: 0000000000000008
[ 1146.785163][T22702] RBP: 00007fac5e810ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1146.785182][T22702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1146.785200][T22702] R13: 0000000000000000 R14: 00007fac5e9b6240 R15: 00007ffc72fd9708
[ 1146.785248][T22702]  </TASK>
[ 1147.126579][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1147.385342][T15486] Bluetooth: hci4: unexpected event 0x3e length: 1020 > 260
[ 1147.385390][T15486] Bluetooth: hci4: unexpected subevent 0x01 length: 1019 > 18
[ 1147.501710][T22707] mkiss: ax0: crc mode is auto.
[ 1148.815332][T22746] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3209'.
[ 1149.331621][T22760] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3211'.
[ 1150.861841][T22802] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3218'.
[ 1150.921304][T22796] ima: policy update failed
[ 1150.926470][   T30] audit: type=1802 audit(4294967409.740:42): pid=22796 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3218" res=0 errno=0
[ 1155.315294][T22866] netlink: 78 bytes leftover after parsing attributes in process `syz.0.3232'.
[ 1156.586240][T22900] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1157.529515][T22917] random: crng reseeded on system resumption
[ 1160.415779][T22963] 
[ 1160.418386][T22963] ============================================
[ 1160.425160][T22963] WARNING: possible recursive locking detected
[ 1160.431945][T22963] 6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 Tainted: G     U             
[ 1160.441503][T22963] --------------------------------------------
[ 1160.448295][T22963] syz.3.3247/22963 is trying to acquire lock:
[ 1160.454985][T22963] ffffffff8e44b590 (trace_event_sem){++++}-{4:4}, at: print_event_fields+0x70e/0xc90
[ 1160.465483][T22963] 
[ 1160.465483][T22963] but task is already holding lock:
[ 1160.473595][T22963] ffffffff8e44b590 (trace_event_sem){++++}-{4:4}, at: tracing_read_pipe+0x3e0/0xc60
[ 1160.483991][T22963] 
[ 1160.483991][T22963] other info that might help us debug this:
[ 1160.492882][T22963]  Possible unsafe locking scenario:
[ 1160.492882][T22963] 
[ 1160.501086][T22963]        CPU0
[ 1160.504718][T22963]        ----
[ 1160.508337][T22963]   lock(trace_event_sem);
[ 1160.513220][T22963]   lock(trace_event_sem);
[ 1160.518110][T22963] 
[ 1160.518110][T22963]  *** DEADLOCK ***
[ 1160.518110][T22963] 
[ 1160.527086][T22963]  May be due to missing lock nesting notation
[ 1160.527086][T22963] 
[ 1160.536259][T22963] 4 locks held by syz.3.3247/22963:
[ 1160.541989][T22963]  #0: ffff888027fc37b8 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[ 1160.551989][T22963]  #1: ffff8880785f8090 (&iter->mutex){+.+.}-{4:4}, at: tracing_read_pipe+0x65/0xc60
[ 1160.562479][T22963]  #2: ffffffff8e44b590 (trace_event_sem){++++}-{4:4}, at: tracing_read_pipe+0x3e0/0xc60
[ 1160.573367][T22963]  #3: ffffffff8e443170 (all_cpu_access_lock){++++}-{4:4}, at: tracing_read_pipe+0x8c7/0xc60
[ 1160.584627][T22963] 
[ 1160.584627][T22963] stack backtrace:
[ 1160.591129][T22963] CPU: 0 UID: 0 PID: 22963 Comm: syz.3.3247 Tainted: G     U              6.15.0-rc3-syzkaller-00342-g5bc1018675ec #0 PREEMPT(full) 
[ 1160.591197][T22963] Tainted: [U]=USER
[ 1160.591208][T22963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1160.591236][T22963] Call Trace:
[ 1160.591258][T22963]  <TASK>
[ 1160.591269][T22963]  dump_stack_lvl+0x116/0x1f0
[ 1160.591308][T22963]  print_deadlock_bug+0x1e9/0x240
[ 1160.591344][T22963]  __lock_acquire+0xff7/0x1ba0
[ 1160.591382][T22963]  ? seq_buf_vprintf+0x124/0x1d0
[ 1160.591419][T22963]  lock_acquire+0x179/0x350
[ 1160.591455][T22963]  ? print_event_fields+0x70e/0xc90
[ 1160.591501][T22963]  ? __pfx___might_resched+0x10/0x10
[ 1160.591531][T22963]  ? __trace_find_cmdline+0x13d/0x1c0
[ 1160.591566][T22963]  down_read+0x9b/0x480
[ 1160.591602][T22963]  ? print_event_fields+0x70e/0xc90
[ 1160.591646][T22963]  ? __pfx_down_read+0x10/0x10
[ 1160.591685][T22963]  ? trace_seq_puts+0x13d/0x260
[ 1160.591732][T22963]  print_event_fields+0x70e/0xc90
[ 1160.591776][T22963]  ? __find_next_entry+0x3d8/0x560
[ 1160.591822][T22963]  print_trace_line+0x129a/0x17a0
[ 1160.591854][T22963]  ? __pfx_print_trace_line+0x10/0x10
[ 1160.591888][T22963]  tracing_read_pipe+0x4b9/0xc60
[ 1160.591920][T22963]  ? rw_verify_area+0xcf/0x680
[ 1160.591962][T22963]  ? __pfx_tracing_read_pipe+0x10/0x10
[ 1160.591992][T22963]  vfs_read+0x1de/0xc70
[ 1160.592020][T22963]  ? __pfx___mutex_lock+0x10/0x10
[ 1160.592055][T22963]  ? __pfx_vfs_read+0x10/0x10
[ 1160.592084][T22963]  ? __fget_files+0x20e/0x3c0
[ 1160.592133][T22963]  ksys_read+0x12a/0x240
[ 1160.592156][T22963]  ? __pfx_ksys_read+0x10/0x10
[ 1160.592190][T22963]  ? syscall_user_dispatch+0x78/0x140
[ 1160.592240][T22963]  do_syscall_64+0xcd/0x230
[ 1160.592292][T22963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1160.592321][T22963] RIP: 0033:0x7f87f858e969
[ 1160.592343][T22963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1160.592370][T22963] RSP: 002b:00007f87f9439038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1160.592407][T22963] RAX: ffffffffffffffda RBX: 00007f87f87b5fa0 RCX: 00007f87f858e969
[ 1160.592424][T22963] RDX: 0000000000000067 RSI: 0000000000000000 RDI: 0000000000000007
[ 1160.592440][T22963] RBP: 00007f87f8610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1160.592475][T22963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1160.592493][T22963] R13: 0000000000000000 R14: 00007f87f87b5fa0 R15: 00007ffcda5a13e8
[ 1160.592518][T22963]  </TASK>
[ 1161.828830][T22936] caif:caif_disconnect_client(): nothing to disconnect