last executing test programs:

4.82806377s ago: executing program 1 (id=2819):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyua\x00', 0x20804, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000031c0)='/dev/ttyua\x00', 0x109000, 0x0)
select$auto(0x8, 0x0, 0x0, &(0x7f0000000200)={[0x7fcf, 0xffffffffffffff4b, 0x0, 0x4, 0x8001, 0x1, 0xd, 0x3, 0x6, 0x40000000000000, 0x3, 0x8000000008, 0xfffffffffffffffa, 0x20000000000000ad, 0x2, 0x9]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)

4.72062781s ago: executing program 1 (id=2820):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r1, 0x0, 0x484, 0x0, 0x0)
write$auto(r0, &(0x7f0000000100)='\x10`rv\aaudioq\x00\fg\x9fg=\x05]X$\xa7\xc4\x8f\xf5\trb\\.S\x81k\xfe\xb3y\xa4\xaeR\xf0n\xde\xfcl*\xb9\x9a\xd9\xcf\xbb\xf1r\xeb\xa2%\xdfX\xbd\x87\x0fS\xea8\xc6\xfe\xea\xd1\xe4=\x84\x8b\x12\x04\xddC\xd2\xf4\x8c\x14\x92\x86\xa1\xa5\xfe\x9eiC&~\x87PS\xe2', 0x100000a3da)
socket(0x28, 0x5, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000240)={"ef65ce6c000000000000200000000000000000000000f8ffffff000000cadb00", 0x3ff, 0x408, 0xf, 0x400001, 0x6f6})
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0xa}, 0x0, 0xf4240, 0x1)
write$auto_tty_fops_tty_io(r2, &(0x7f00000009c0)="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", 0x734)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000b00), r3)
ioctl$auto_BLKSSZGET(0xffffffffffffffff, 0x1268, 0x0)
openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/mac80211_hwsim/hwsim13\x00', 0x22200, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
r6 = socket(0x22, 0x2, 0x0)
getsockopt$auto(r6, 0x29, 0x20, 0x0, 0x0)
sendmsg$auto_GTP_CMD_ECHOREQ(r3, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x000', @ANYRES16=r4, @ANYBLOB="01002abd7000ffdbdf2503000000080004007f0000010800010003000000"], 0x24}, 0x1, 0x0, 0x0, 0x4091}, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x6]}, 0x0)

4.063165983s ago: executing program 2 (id=2826):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/014/001\x00', 0xc0402, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/lru_gen/min_ttl_ms\x00', 0x2ab42, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000280)={0x6, 0x3, 0x6, 0x9649, &(0x7f0000000080)="93880f0b44339995a5721154d9b328d607d8ae1d48f2e274f6c70e74ac9411a5d67f4326979685aaf25f95ffd514a4d62fb829821cc8794a04a41a55ef5e8a6aaa8f9106bc6528d502a1a59fae7660bb55f76b93aaf3e18638828a3adeb1ffbd146fdf1dcb5d3951fe40b8c2c9b7643dc0b2cd6112d42fe69a6c035d6e62641ce62bbacfe4080d9506822eb8a4d3182a7a4d5f7829606c", 0x1, 0xff, 0x8001, @stream_id=0x5, 0x40, 0x71f, &(0x7f00000001c0)="1c51b05b85f192013c2f4e22e169c21fdcefdd1564087855109afe418141a7ce", [{0x80, 0x7e32, 0x1000}, {0x3, 0x4, 0x80}, {0x0, 0x7fff}, {0xb, 0x9, 0xffff}]})
pwritev$auto(r1, &(0x7f0000000180)={&(0x7f0000000100), 0x1}, 0x2, 0xa, 0x7fff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/011/001\x00', 0x101202, 0x0)
prctl$auto_PR_SET_MM_ARG_END(0x8, 0x9, 0x0, 0x0, 0x4)
r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000300), 0xffffffffffffffff)
r3 = socket(0x11, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r5)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r7=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="2f212cbd7010ca705d845526cc0008000380", @ANYRES32=r7], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x8810)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000600)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000005c0)={&(0x7f00000004c0)={0x100, r6, 0x2, 0x7fffffff, 0x25dfdbfc, {}, [@NL80211_ATTR_TIMEOUT_REASON={0x8, 0xf8, 0x8}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0x40}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x3f, 0xac, "3ef4f0476800aa75270fb1d29181dd781712fcaa0377badf49fb1a02b3a2e3a7ad2334b3d4eb5851fca8874a81ada78a728414902ef060f716cea5"}, @NL80211_ATTR_MNTR_FLAGS={0x9a, 0x17, "be239bcd973525c9e1fbc2619a366e306d02fbd2d2bcfef4549a0eae10d41527c523e3f12f5b62f6bd6c87246761c2f91bc61ef608b9737e3713fa6a8fa67ceafc09b1a0ac295c427cd11f56cb925ccebf79d8d653de666231ef1f4a4b2e51b93e2fd92f877730887791a4774e02f8b56aad181b43f8008c9093eb791c706a926db50818d9755581facea689ca6dc7fc25844f043f2b"}]}, 0x100}, 0x1, 0x0, 0x0, 0x40004}, 0x8800)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000440)={'bridge_slave_0\x00', <r8=>0x0})
bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x3, 0x4, 0xf, 0x63, 0x400, 0xfffffffd, 0x1, 0x80f0c8, 0x0, "38c1d5cbcb9f6b5e511f0cd8ed068f65", r8, 0x200002, 0xffffffffffffffff, 0xe4, 0x2, 0x5, 0x3b1, 0x3, 0x0, 0x78, @attach_btf_obj_fd, 0x6, 0xffff, 0x2, 0x81, 0xfffffffe, <r9=>0xffffffffffffffff}, 0x4a)
process_vm_writev$auto(0x0, 0x0, 0x200000000017, 0x0, 0x7, 0x0)
r10 = getpgid(0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_DP_CMD_NEW(r9, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x4c, r2, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x1}, @OVS_DP_ATTR_IFINDEX={0x8, 0x9, r8}, @OVS_DP_ATTR_UPCALL_PID={0x8}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x5}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0xf}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, r10}, @OVS_DP_ATTR_UPCALL_PID={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x2}, 0x800)
ioctl$auto_USBDEVFS_DISCARDURB(r0, 0x550b, 0x0)
openat$auto_tracing_saved_cmdlines_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/saved_cmdlines_size\x00', 0x20000, 0x0)

4.028566042s ago: executing program 0 (id=2827):
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4)
mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000)
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aab4)
epoll_create$auto(0x3e)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
socket(0x10, 0x3, 0x6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/resend_igmp\x00', 0x1e2142, 0x0)
r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r1, 0xffffffffffffffff, 0x0)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0xa200, 0x0)
ioctl$auto(r2, 0xc058560f, r2)
timer_create$auto(0x2, 0x0, 0x0)
timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r3, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0)
kexec_load$auto(0x200000000007, 0x1, &(0x7f0000000040)={@kbuf=0x0, 0x2aaa, 0x6c0000c000, 0xc000}, 0x4)

3.924000257s ago: executing program 2 (id=2828):
r0 = socket(0x2a, 0x2, 0x1)
bind$auto(0x3, &(0x7f0000000080)=@qipcrtr={0x2a, 0x1, 0x1}, 0x6b)
r1 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x820181, 0x0)
write$auto_nvram_misc_fops_nvram(r1, 0x0, 0x0)
connect$auto(r0, &(0x7f0000000140)=@qipcrtr={0x2a, 0x1, 0x4000}, 0x57)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop5\x00', 0x111000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_BLKROGET(r2, 0x125e, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x25, 0x800, 0x80)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda\x00', 0x14fa02, 0x0)
futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x5)
futex$auto(&(0x7f0000000300), 0x5, 0x200, 0x0, &(0x7f0000000100)=0x3, 0x1ff)
open(0x0, 0x430003, 0x10e)
clock_settime$auto(0x3, &(0x7f0000000340)={0x8, 0x10})
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram12\x00', 0x14f602, 0x0)
connect$auto(0xffffffffffffffff, &(0x7f0000000000)=@sco, 0x8)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/hung_task_check_interval_secs\x00', 0x88542, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f0000000200)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x520100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="f45b10a0", @ANYRES16, @ANYBLOB="020025bd7000fedbdf250100000006001a004e2100000800110003000000"], 0x24}, 0x1, 0x0, 0x0, 0x45}, 0x4080)
socket(0x10, 0x3, 0x6)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x40, r5, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0x15, 0x0, 0x0, @fd}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r6 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000040), 0x80302, 0x0)
ioctl$auto_SW_SYNC_IOC_INC(r6, 0x40045701, &(0x7f0000000080)=0xffffffff)
mmap$auto(0x0, 0x400006, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

3.879638692s ago: executing program 3 (id=2829):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(r0, &(0x7f00000003c0)={{0x0, 0xfc2, 0x0, 0x7, &(0x7f0000000300)="198c4f4d2282dd68e10a768807754db909196243eb5cc4de177c102495af72071d87583e452f7165da3599158638dabe9a0c59ea019792cf59a0b062366bdba330b5fafb0c07285d35bdc084b4c1e5ddbcc51455d05555a5d940082b872c30f806f411fd", 0xff, 0x8}, 0xfffffff9}, 0x2, 0x2)
rename$auto(&(0x7f0000000180)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0)
prctl$auto(0x29, 0x17000000, 0x0, 0x0, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
llistxattr$auto(&(0x7f0000000400)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', &(0x7f0000000500)='*!*!\'}#*&@U\x00', 0xfb6)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r1 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000000), 0x10, 0x0, 0x9, 0x0, 0x4, 0x9}, 0x800009}, 0x7, 0x20000000)
setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0xffffffffffffffff, 0x0, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x181b80, 0x0)
shmctl$auto_SHM_STAT(0x2, 0xd, 0x0)
connect$auto(0x3, 0x0, 0x50)
connect$auto(0xffffffffffffffff, 0x0, 0x3a)
sendmmsg$auto(0x3, 0x0, 0x81, 0x0)
socket(0x1e, 0x5, 0x0)
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

3.632053914s ago: executing program 1 (id=2830):
r0 = openat$auto_proc_pid_set_timerslack_ns_operations_base(0xffffffffffffff9c, &(0x7f0000000000), 0x220, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x8000009b72, r0, 0x8000)
mmap$auto(0x3, 0x1, 0x3, 0xc76, 0xfffffffffffffffa, 0x1)
socket(0xa, 0x2, 0x0)
r1 = pidfd_open$auto(0x1, 0x0)
setns(r1, 0x2000000)
ioctl$auto_VHOST_SET_VRING_CALL2(r1, 0x4008af21, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r3, &(0x7f0000000300)={&(0x7f0000000180)="b872afd7c943b820c7823fbc1365790061c12cdb4e5bfca21c9d65908a6261c1b8d1170edacceff5fb196119011cd572045d50af3e4a4b6593d8b8ef60ce17cea2950b2bff2acc63854ebfa397527ac39b22eccd0b8acff02b4eb027006fc29941f08824b6c62a6b7fa0ddf149e349b926dae02b0eff9b16bebfe77b2346eea747792004eb8a821151c2ee93e317b13c24fa0bafdf0db7569630d7706784a57b1edfdb1b3e98eb6688b90c426f76a920baeaf9a2015834bc957c9a78742e7039e2f500afffa40591971c7c12c899b092488977bcb472af86a86ff1a6721ff3", 0x1001}, 0x3)
r4 = socket(0x1d, 0x5, 0x0)
syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff)
sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(r4, 0x0, 0x30004850)
msync$auto(0x1ffff000, 0x1800000000000ff, 0xfffffffc)
close_range$auto(0xffffffffffffffff, r3, 0x4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
mmap$auto(0x0, 0x404008, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = socket(0x2, 0x801, 0x100)
r6 = open(&(0x7f00000002c0)='./cgroup.cpu/cgroup.procs\x00', 0x80400, 0xb5d1af1605322ddc)
r7 = open_by_handle_at$auto(r6, &(0x7f0000001280)={0x8, 0x2, "0200000000000000"}, 0x6)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000280), r5)
sendfile$auto(r7, r6, 0x0, 0x2)
io_uring_setup$auto(0xfffffff9, &(0x7f0000000000)={0x3fe, 0x10002, 0x7d, 0x3, 0x5, 0x5, 0xffffffffffffffff, [], {0x0, 0x10, 0x6, 0x6, 0x40, 0x4, 0x7, 0x3, 0x80000000}, {0x7, 0x4, 0x80000001, 0x8, 0x6b, 0x5, 0x0, 0xfffffffa, 0xb0}})

3.378032903s ago: executing program 0 (id=2831):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nbd2\x00', 0x0, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="51245394af93b40b345b2fbf5a64f56826f46f557d1a468110ab5f7c371219a651d24a8b0bff9b3f55c26b0109f033081c30762c361b52a1bce472b6db25e4f409e431107fe351a8629ee7bb0aef19a3759981"], 0x44}, 0x1, 0x0, 0x0, 0x44001}, 0x4044000)
r0 = epoll_create1$auto(0xb)
setns(r0, 0x20000000)
mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0x10, 0x2, 0x9)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x23, 0x0)
r1 = socket(0xa, 0x3, 0x6)
getsockopt$auto(r1, 0x40000000029, 0x50, 0xfffffffffffffffe, 0x0)
socket(0x1, 0x1, 0x0)
bind$auto(0x3, 0x0, 0x6b)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/free_buffer\x00', 0x4000, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0xb4202, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x802, 0x0)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, 0x0, 0x800, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
write$auto(r2, &(0x7f0000000340)=',,2.15.4 ]\x98\x0f7V\xd4l\xf2AC\x04\xecQ=\xa2\xce\nO}\x1d\xd7\xb5\x92\xf7\xb2\xc2\xddm\xfbR\xfb\x92x\xd8\xb2\x8a&\xda\\\xa1}&^\x03\x02\xf28\xfd|\xed~\a\xaf\x14\xb5.\x92\"-6.\xb2$\x88\xeb\xdc\x0f\xba$?c\x8b\xcb\xf4q\r\xf5<B5\x86\x94a90v\x8a\v\xb9\xd4\xe6\x94\x01e0u_4F\x87\x16>>}4\x99(\xb8D\x15\xb8\xc9U\x14\xd6r\xc9\x81\xbbI\xc9+^\x00\xf6\xb5\xd9\x1e\x89G?/\xc5\x86\xd0\xab\xb3\xfd\xc9?\xa7B\x1b\xdc\xff\xab\xb6~\x96\xd6\x9f\x1d\xfb\xa1dg\x9d\x8d]\xdek\x9c0\xea\xb3\nV\x1d\x10g\xaa\xf9\xf0\xc9\n\x8c\xf25G\x9c\x19\xe5\xd8\xa3\xee\x11\x12f\xd5o\x00\xeaY\n\xe0\x9f\r\xd4\x8e9G\x01\x04\xb2j\xbfYX\x9a)OQ\xedk\xb9\x85\x03c\xf3\x80\x10eG(\x94m81PL\x8d\xa47\x1a\x16\x11\xcd\xcdf\x15\r\x19\xc3\x90\xbe\x12\x85V\xeb\x8d\x97\xf0\x9c!\x86:\xe8\x8b\xa7@l', 0x3)
r3 = socket(0x11, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r3, 0x8955, 0x0)
r4 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TCP_METRICS_CMD_GET(r5, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="9bff29bd70000c40f2976445c622"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$auto_TCP_METRICS_CMD_GET(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f0000000200)={0x30, r4, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@TCP_METRICS_ATTR_ADDR_IPV6={0x14, 0x2, @remote}, @TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @empty}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x48044)

2.901553962s ago: executing program 2 (id=2832):
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/syscall\x00', 0x0, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x0, 0x0)
poll$auto(0x0, 0x5, 0x10001)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x149b01, 0x0)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x9}, 0x7)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/platform/vivid.0/video4linux/vbi26/dev\x00', 0x111000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty19\x00', 0x800, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00')
syz_open_procfs$namespace(0x0, &(0x7f0000000040))
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0x1e, 0x5, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/arp_tables_matches\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x2, 0x80802, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0xa, 0x3, 0x3b)
connect$auto(r1, &(0x7f0000000040)=@generic={0x8, "00010100"}, 0x5c)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x1a, 0x940, 0x1ffe0, 0x7f, 0x6, 0x2, 0x7f, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x20, 0x0, 0x0, 0x202, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x2, [0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x478, 0x0, 0x5, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x7ffd, 0x0, 0x6, 0xffffffffffffffff, 0x0, 0xb, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)

2.872214212s ago: executing program 0 (id=2833):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r1, 0x0, 0x484, 0x0, 0x0)
write$auto(r0, &(0x7f0000000100)='\x10`rv\aaudioq\x00\fg\x9fg=\x05]X$\xa7\xc4\x8f\xf5\trb\\.S\x81k\xfe\xb3y\xa4\xaeR\xf0n\xde\xfcl*\xb9\x9a\xd9\xcf\xbb\xf1r\xeb\xa2%\xdfX\xbd\x87\x0fS\xea8\xc6\xfe\xea\xd1\xe4=\x84\x8b\x12\x04\xddC\xd2\xf4\x8c\x14\x92\x86\xa1\xa5\xfe\x9eiC&~\x87PS\xe2', 0x100000a3da)
socket(0x28, 0x5, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000240)={"ef65ce6c000000000000200000000000000000000000f8ffffff000000cadb00", 0x3ff, 0x408, 0xf, 0x400001, 0x6f6})
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0xa}, 0x0, 0xf4240, 0x1)
write$auto_tty_fops_tty_io(r2, &(0x7f00000009c0)="8939cc4d36227fdb35e4a7779345a4d999cb1552f41b34b4003355454e96e6647b34e58345a013e46d9380cd77dcd9b5804ab378df5b19fd93b23d547b6a39e0563f1da27d880a0c7a41ada96f5899128a2f138a38855f3a0e5090cfcb022a807fd8d8410e21962aea3354ff7d28917ad17443189afcba863b21eedff9ef8944e15848033f30ec1ce206287db0755992c3d95fa6c7a2ecb44696ce661038bdc304c775605215501e237d8713947274ff5249f4fefe090d0581a07ac675fdc5da272124ae5975977941ead35326b8dd9ef2562c730a1df3116a5e25f19463fb391d3ba275758c4dd50d5bb8ecd6b3b07ebadfc8c978bb7e15a95c5bd06356d6d9d9e89db59312c4f8452f55ba7013b2691ca80c7db06df2026b190ae22bd233128b0459f8e22f77579ee7f7c6054e4eb33480be2d6e034dd96379f65937a7edf67a2d6b9fc5bb4253bb95d4bedd94da5d5cd944ccfa98c65c25dc3ab8fda6e68d77806b21e624aae3a6435c313b15894332942eb58e2bc6a0582aceaeb594578a2908b49a6f2ce66aac2e2ee4cadfc452cb953a51449039dbb5c7e84405d9cb335afbed3384ffc695b954cc51531bb083df05e2af461c2a7a0a697d0d59c565f5cfd3b354f051d5637fd1f72aeb79be3567215c648ae85541c9f3c4856229247b1225d327ed57fa7981424b39ebbb77a0f6ca5778ed0c9713d68aedd19627de8edf485f9155261ede5c803da5ce248f4c93a1b9925ee07d3f42c8f999252655c582ff47da1e6d010449345c4f3a43336547112ef4e8e0bd0829027b6dcb8fb127171eeb7a38470592c8422bc5c9bb784c281d20847eb79fef43fd38aa88f1a8639728267aef7a74fc40cc54cefea2807f598cd25f3c1bd8ab17fc88aac82179057717177355a1103433d8f7468a8f49d7d5dd8093f6882a791ce983aa4e03bf1a91e938b8da4f9cb41d6371579d9feb55636d8626b9e339d5e54a2397537e9b2f5bb846f1d0dd4614ad5f68fa35ea3f366a12eb4d51aad810856db0f11974bda08daf259c9477053847f17074fbbcbce75472cb9acada0b400f4fa85b71a97e7c686b2ba98e3d2bbb905d9e82430a2730d8d3465d9b632ba07fd746b2a394feb76db7501208f559be2a151c205103c4481cae7352f7117e6c626f25f0b3367d50a1ea87a38136b6ca64e1ef51207c0d6c06dfe86336b65caeee24138f1ca0955135c5d2b49743b0e51f98b7a8bd3a5ac50ca3a5d6e8e17cdf154bae7fa031b40b83b285b58eb47277920fc28ef916d5ae8536458577a37b73ae29312fee7885c405417d454e38dbe50ef1a8603e28611bf4d6b63251a1abc190581c6efe832d62d6ce8f6c4a64c7e018427b5fadddc1cec3896ed51c977d9e3f7c0d1e8f8d75693e1ead5a7a3714843fb3517bd0ddc68936c801692cce52ba003036764dc7f016e342a54f99916fc595dba1fc76222c5e814a1b71c6b9b735240e6bf747a900f6048b2836af70c6aa717701312c61c965d8ca1bdafb5d3623b2ee9b7e4a767ed76defd661a9f18bffaeada811ac2ad6731bf96274b019498c5552b38678ff0aedb465713d895595b92e2bc9e1b3acec28f3ee5831951582f2ad1831ddce1300dcc4547ec444eae5c614719be9c3d397fc1db1a76d954cbc9b7a0d7c8d1eab3eeccd70b17dcd7c3543b6d9effbea67c4ade126c6fbfdee281fe3479c3052e68cf8441a50a6adc59dec8de4261a117e0286eea92ecc88230fdfdca1ed438026e238e6dbfdc4772dccb17737c398add9644b47bfb1a3e3a4b1316ec25ea07f90f858736e80dbb9c882701e7188d315391c538469695f33d266550fb873f47a12518717c83bec4e0cce65958d08a0e287df6a08efd979e087814b1822681ba6ea015714fd66af5100967e152262973b065ed349398aa13bb4329b4f56081aba2ba73ede47a2f1b2dbd5daeaf4d4f790a030e3c1fac30da1b5f6149074de6d76b1635adf44016027efd4ac08c93983e0935c1c8b38a675d5c356483539624e1f402439e6a55529a44c17207d6a5f9d0a2b1745ccb5d4e7332a2b2467c9690c9b7fb9fa73b4da5d3eadd347b89bf05a6aacac989ce9f1398729a4b3383c64c64cc68a8638735ebd80fb9ba2ee9e30e65a56d5676f2b607567f2a07adba966b210339d6a8cc404ffdcbf8ac02216239cc9e0abec2e2aa1d27d658913c83ae08657439bf32213d6b3c3fbb37f978a1820d23be11511869e5884ccab0de2a2ac982d58f01e88b54a54b0f50cc0ff699e39f86d74371f1667927ea4ba96af4c98b05e2b1d4115ef892332ab7ac777f1537f3ce78a2889fab969aa6a11f9e855ec1ba09096346fe930737e6760688c91a60bce3f173c24fa1efcbe5d12869ba34883f95e6bc90c61994f6761c305f5de4a0f79f6b3403249190542edd86d7231f0d89d1519ccab3ef35e3dc9e35a5031ab1cb888a8ace8cbe67073c19f8060ea78bf6d6a8970ed1aae35246df0b825d325279ae4c2a838e0e1f40a3c9615b06b2c4e929942a2d820a82ef19d355754caa45119d5e07f9052bf02ed05de6e07bf46758255d8ef077fd04e971b5117f8ef54f20559c98a9c51df5ed7d2db8f2085ce9947b474c7f00f4a1585507e2344a53a597292a338dd39592df962267a835d091dc9f1c5e7a6a0f1215a0015d9083720aee97b7fa1aa7f4fbcf698018980ebe5cd928e6ea1f1c4e6087678cfa687f1f6cea280fb9f24496211fb00b3788bf4ac4cf5d0972c398baa70fc54dc28a9fd3b838a5732b5039602d5049afc135cfef8053a20359287d53bcce117c7c36147288178cef8dac66f4b941333dd74cf2e9e22ce1be287f1ea2c0d5f476ea74a996d5952c98714a9939084f87bb525f287214567bf1da94d8d098640215d14800f09367aaade0f57ad08dc581dc19d21bdd640d1d3cf54336bb0feafc14d9709f719b1212eee75d9f8b958783cce8a535cb6a1b890e002fefa0e60597275ca2d516b28ef1d1ce3f25184b20726cb59ccab574b8d0ffd30fce23936ec84224991a6f9d2fd74def41248726f86e413dd13e9be77f1856fa1b5803312b8a9179914980bb70873a380278f1c6ad42186b14933892427939f83556e9d130607c1b3e1292da5ba6908b642a11d2814b7ea8b7442ae9aaea89948a58cba34807e617404af7e34ecc449be8c403ee536f311af194d63c9120e0268c3f7e2cafc739b6a0575396d61e55707820fe6eb6a71ce094b931d67b8be93937542e3f7e5bb80ab033d979b3c1bff4ff367934c73198fd04571e7a74b9376894d4b0c45a53b7711cecdd98fc87980b82019db23bf4f41ad8182b6861cab9fdb8f882eddc568f5f35e798350857b3818e2e0ef189cf08825355a9ffec231c0f5039b80764f3c7d1f2371fc71216e8f8d83bce4273bcbf22908d81b7c28d664e574e396098ad8fb0bcd68dbc3d1bb0f0bf295df0ae59339381ee231536c7d3b949072a5a2ba5245cb57848dfbb7cbcb7cbdae9b96752c824410eb46f6978051ae5734c278292a90f3c395f098162d4a43c7f449b1cd8208e15fe97c11c25b663a837348b45e059998a10f1c05490dae27b12508decaafec265eb2c22f3df91291922c80e33f479a77078717a7beea74972a7817e791e2cedcaafb43d1bb71ae86242f3375633bdcf0176ef26075446d3cf999df207983af46406defa8aaab0071a24c273a6b2ef78c47efdc0950a3bf486e1f0c26587b8de77a7fbfeb10a22485a6ec662f3afa0508343f9019a8a04118a30c78d89311da9fddfab1cd44f0c2c2f934ba94e88862fb2121893dab164b3edd2d3b0f4658624f6883099353b1bd0e0601f5397c5a5d6689890b207189602ee61524acc886ab1276aecf1a0bb4fbc85ff7e4881a977513ea0abd446b757464f6caa3485c3d08a4dc810ce21d85cfffc4fa07015ae41b1c7a6ba1858566db8ecaa0dd1cd6e5b7e3cc2a344399e89103954e380ee58b62cd508c587c9946b05433af55959a2ad30fb9b521c64f57321a23e4ac9866f356d28b29302f9604303bc66215696874eaf63e7a37056f78ac3034dc63db9315edb5bc7ada518e02b28281893792ac39374220645694c8e437358b5117f1e2d8269125111afc070ff118ec3a38d949c9ca4a7a1ce6dcac1e2a8e63af511d140b23a86cb78a7a47c4a9e2dcd4587ae32a36e47ed7a7a6e84bf1dbc60b0b00773b4bc0c9ebd38f0e8ccaa0eef5199229057f93c12988cd52317e64c9668b74e946a5cf837320f0889a427f84431f20540dc17eeb0587e51bd05ae9478dd42d215849d50cb745dd9d2d90c294a404ec95941d39ffacbe0e02c0fb6b017042986f1bb00e675a26eb0e65654eb130e5ad3b67cf73b89783effdebf50788f5287ebf2b1d96a4a94e37f39a9bfa0e6c95791a6fd5b5bc083af38afd3fb3ae0f17736f020d8b055a8081121d9f5d563cba2d8b803c4c687ea9184aa09445af016c77d946b03fca370c157f3c7b61ada339a9d3b1b5d18d68e3d66db596164720b09b1426bae1b96c7c5c201a5b232742cfcba1c45164165b5f342548354c2e040fc3a9dbb77dd35ae1f84aa89360fbd232637c0522c64088d7e4313311708c5525538c2e0db4d25143306e93492170413f1f85c3e582ca354164e14b5d3bb33fd808a8b608e29f744333fc670f3816829c1a8583a7b158154a988f5b3b97c38add8146f2faa7c30acc309763eee280251c0a1e1b2d26bd377531a00a2dc54696b90045b17bba7e76dcef64714fecd12c3e84bcc7cffa17b18c6bbcc39960f4156ef05e368c4f205e8dc05a668b09548c2ced5927e6dab63a9e196aa42034ac8f4b9fb9ee4d8cd9c0fb435efaf5c7f4059607a2ac5669f5ebfd5c6db2579e465a3ca09c2a8441fabd977ada9ef15d795c891810ff1cf95bf071ecd4cd4b8fff8a1e63e08e790edef1aced37d8cab6d66696bbfce01ed7e22aefa9dc81de1fb212c4153ca29647d85b84def3234bfeaac52f6e1d567987d0b92ef04f9822acd1c25f532ba96c513954af88288b2d3a100bb9bc33df9b86ba471b2c7eed43d64422831455d144709d2ca4582559fb2a8cdc1c0686c686bbd04bd81f6116c7b8480c990651c4eab199dd27fecce28ab10965b60d0d062f66c0055cf7c0bf5b9779a65960dc059cdbb15c8f2a984d852e05f90203847b6f8bfbdf6d908055d28c7a96249b090935", 0xe67)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000b00), r3)
ioctl$auto_BLKSSZGET(0xffffffffffffffff, 0x1268, 0x0)
openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/mac80211_hwsim/hwsim13\x00', 0x22200, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
r6 = socket(0x22, 0x2, 0x0)
getsockopt$auto(r6, 0x29, 0x20, 0x0, 0x0)
sendmsg$auto_GTP_CMD_ECHOREQ(r3, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x000', @ANYRES16=r4, @ANYBLOB="01002abd7000ffdbdf2503000000080004007f0000010800010003000000"], 0x24}, 0x1, 0x0, 0x0, 0x4091}, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x6]}, 0x0)

2.664961165s ago: executing program 3 (id=2834):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/sound/ctl-led/speaker/card2/reset\x00', 0xa001, 0x0)
mmap$auto(0x0, 0x400, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x20280, 0x0)
ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
migrate_pages$auto(0x0, 0x9, &(0x7f0000000100)=0x7, &(0x7f0000000040)=0x101)
read$auto(0x3, 0x0, 0x8080)
socket(0x2b, 0x1, 0x0)
mknod$auto(0x0, 0x1001, 0x4)
open(0x0, 0x161342, 0x100)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
close_range$auto(r0, 0x8, 0x3)
fadvise64$auto_POSIX_FADV_WILLNEED(r1, 0x7, 0x8000000000000001, 0x3)
io_uring_setup$auto(0x8000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/packets_per_slave\x00', 0x182b02, 0x0)
mmap$auto(0x4, 0x8000000000000003, 0x8000000000000000, 0x13, 0x1, 0x808002)
get_mempolicy$auto(0x0, 0x0, 0x3, 0x1ff, 0x3)
write$auto(r0, &(0x7f0000000440)='1\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\x03\x00\x00\x00\x00\x00\x00\x00*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d\xbcs!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xc4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xf7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85C /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\x9bA\xac\x9c\x8e\r(\x1d\x98\x84\x98\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1)
r2 = openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x103103, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/sys/fs/inode-state\x00', 0x0, 0x0)
r4 = socket(0x2a, 0x2, 0x1)
connect$auto(r4, &(0x7f0000000000)=@vsock={0x28, 0x0, 0x2711}, 0x53)
read$auto_proc_sys_file_operations_proc_sysctl(r3, 0x0, 0x0)
ioctl$auto(r2, 0x6f2d, r2)

2.47553843s ago: executing program 3 (id=2835):
openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cpu/0/msr\x00', 0x8142, 0x0)
mmap$auto(0x0, 0x8000, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x8000, 0x0)
socket(0x15, 0x5, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40a642, 0x0)
io_uring_setup$auto(0xc, 0x0)
socket(0x2, 0x5, 0x0)
pipe2$auto(0x0, 0x80)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mprotect$auto(0x1, 0x1ff, 0x7)
sysfs$auto(0x2, 0xd, 0x0)
r0 = fsopen$auto(0x0, 0x1)
fsconfig$auto_FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000300)='\v\'\bn\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x1e7\xbb\xedO#\x14mC\x97\x06\xd9bZ\xddL\'\x03\x00\xff\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\xc6\xc0\x8b\xc0CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xed<\x86[c4%\xa3\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6\b\xe5\xaaJ+\x02\x9b#\xa9\x9b\x17\x82\xd7\xee\xd1\xbf2\x03\x00\x00\x00\x00\x00\x00\x00B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\x00\x00\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\xb2\x1d\xb3\xef#\xcb}b\x90\xafR\xf5\x8cg\x95A\x89\x8d\x9a\xfcV\x9bm\xd4\x82\x7f9EF\xd3\xfc\xe7\b/o\x1c\xeagjF4#x\x12\x98\x1c\x8e\x1f\xdc\xe5Y\x7f\xe8\xe1g%\xb8\xf9b!\xc8\xa0\xf7\x06\xbb\xdf\x1d\xfb\x00\x979\x8e\xd0AP\xbf\x1fM\x1fd~\xeeS^8v\x80\x1b\xb1I\xb1\xa4\x89\xc7\x9d\xf2P\x04\x99N{\x9a\xfa\xf3\xcb\xc3Bx\xb5\xb8*\xa0-\xda\x84\xc5S\xe2\xc6\x92/\xed\xc2\xceK\xad\x00\x00*)Hh\x8d', &(0x7f0000000200), 0x5)
openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x10014)
bind$auto(0x3, &(0x7f0000000080)=@tipc=@name={0x1e, 0x2, 0x3, {{0x41, 0x3}}}, 0x6a)
socket(0x2, 0x2, 0x40)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/nbd6/sched/write0_fifo_list\x00', 0x400, 0x0)
socket(0xa, 0x1, 0x84)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop15\x00', 0x6600, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x0, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)

1.964151702s ago: executing program 2 (id=2836):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x0)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram2/partscan\x00', 0x80200, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
io_uring_setup$auto(0x5b, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x10000, 0x1, 0x29f, 0x100, 0xfff, 0x101, 0x6, 0x2}, {0xfb, 0x1001, 0x10001, 0x7, 0x1, 0x40, 0x176c5, 0x400005, 0x100000005}})
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000240)='/dev/binderfs/binder0\x00', 0x80000, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/input/event1\x00', 0x40000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
r0 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000040), 0x30040, 0x0)
fremovexattr$auto(r0, &(0x7f0000000180)='/dev/input/event1\x00')
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sysfs$auto(0x2, 0x0, 0x0)
fsopen$auto(0x0, 0x1)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/asound/card0/pcm0p/oss\x00', 0x8f3b7a51b80ebc01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000140)="5a854c", 0x3)
close_range$auto(0x2, 0x8000, 0x0)

1.859126334s ago: executing program 0 (id=2837):
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/syscall\x00', 0x0, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x0, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/bus/netdevsim/new_device\x00', 0x149b01, 0x0)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x9}, 0x7)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/platform/vivid.0/video4linux/vbi26/dev\x00', 0x111000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty19\x00', 0x800, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00')
syz_open_procfs$namespace(0x0, &(0x7f0000000040))
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0x1e, 0x5, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/arp_tables_matches\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x2, 0x80802, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0xa, 0x3, 0x3b)
connect$auto(r1, &(0x7f0000000040)=@generic={0x8, "00010100"}, 0x5c)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x1a, 0x940, 0x1ffe0, 0x7f, 0x6, 0x2, 0x7f, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x20, 0x0, 0x0, 0x202, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x2, [0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x478, 0x0, 0x5, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x7ffd, 0x0, 0x6, 0xffffffffffffffff, 0x0, 0xb, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)

1.848099937s ago: executing program 3 (id=2838):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r1, 0x0, 0x484, 0x0, 0x0)
write$auto(r0, &(0x7f0000000100)='\x10`rv\aaudioq\x00\fg\x9fg=\x05]X$\xa7\xc4\x8f\xf5\trb\\.S\x81k\xfe\xb3y\xa4\xaeR\xf0n\xde\xfcl*\xb9\x9a\xd9\xcf\xbb\xf1r\xeb\xa2%\xdfX\xbd\x87\x0fS\xea8\xc6\xfe\xea\xd1\xe4=\x84\x8b\x12\x04\xddC\xd2\xf4\x8c\x14\x92\x86\xa1\xa5\xfe\x9eiC&~\x87PS\xe2', 0x100000a3da)
socket(0x28, 0x5, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000240)={"ef65ce6c000000000000200000000000000000000000f8ffffff000000cadb00", 0x3ff, 0x408, 0xf, 0x400001, 0x6f6})
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0xa}, 0x0, 0xf4240, 0x1)
write$auto_tty_fops_tty_io(r2, &(0x7f00000009c0)="8939cc4d36227fdb35e4a7779345a4d999cb1552f41b34b4003355454e96e6647b34e58345a013e46d9380cd77dcd9b5804ab378df5b19fd93b23d547b6a39e0563f1da27d880a0c7a41ada96f5899128a2f138a38855f3a0e5090cfcb022a807fd8d8410e21962aea3354ff7d28917ad17443189afcba863b21eedff9ef8944e15848033f30ec1ce206287db0755992c3d95fa6c7a2ecb44696ce661038bdc304c775605215501e237d8713947274ff5249f4fefe090d0581a07ac675fdc5da272124ae5975977941ead35326b8dd9ef2562c730a1df3116a5e25f19463fb391d3ba275758c4dd50d5bb8ecd6b3b07ebadfc8c978bb7e15a95c5bd06356d6d9d9e89db59312c4f8452f55ba7013b2691ca80c7db06df2026b190ae22bd233128b0459f8e22f77579ee7f7c6054e4eb33480be2d6e034dd96379f65937a7edf67a2d6b9fc5bb4253bb95d4bedd94da5d5cd944ccfa98c65c25dc3ab8fda6e68d77806b21e624aae3a6435c313b15894332942eb58e2bc6a0582aceaeb594578a2908b49a6f2ce66aac2e2ee4cadfc452cb953a51449039dbb5c7e84405d9cb335afbed3384ffc695b954cc51531bb083df05e2af461c2a7a0a697d0d59c565f5cfd3b354f051d5637fd1f72aeb79be3567215c648ae85541c9f3c4856229247b1225d327ed57fa7981424b39ebbb77a0f6ca5778ed0c9713d68aedd19627de8edf485f9155261ede5c803da5ce248f4c93a1b9925ee07d3f42c8f999252655c582ff47da1e6d010449345c4f3a43336547112ef4e8e0bd0829027b6dcb8fb127171eeb7a38470592c8422bc5c9bb784c281d20847eb79fef43fd38aa88f1a8639728267aef7a74fc40cc54cefea2807f598cd25f3c1bd8ab17fc88aac82179057717177355a1103433d8f7468a8f49d7d5dd8093f6882a791ce983aa4e03bf1a91e938b8da4f9cb41d6371579d9feb55636d8626b9e339d5e54a2397537e9b2f5bb846f1d0dd4614ad5f68fa35ea3f366a12eb4d51aad810856db0f11974bda08daf259c9477053847f17074fbbcbce75472cb9acada0b400f4fa85b71a97e7c686b2ba98e3d2bbb905d9e82430a2730d8d3465d9b632ba07fd746b2a394feb76db7501208f559be2a151c205103c4481cae7352f7117e6c626f25f0b3367d50a1ea87a38136b6ca64e1ef51207c0d6c06dfe86336b65caeee24138f1ca0955135c5d2b49743b0e51f98b7a8bd3a5ac50ca3a5d6e8e17cdf154bae7fa031b40b83b285b58eb47277920fc28ef916d5ae8536458577a37b73ae29312fee7885c405417d454e38dbe50ef1a8603e28611bf4d6b63251a1abc190581c6efe832d62d6ce8f6c4a64c7e018427b5fadddc1cec3896ed51c977d9e3f7c0d1e8f8d75693e1ead5a7a3714843fb3517bd0ddc68936c801692cce52ba003036764dc7f016e342a54f99916fc595dba1fc76222c5e814a1b71c6b9b735240e6bf747a900f6048b2836af70c6aa717701312c61c965d8ca1bdafb5d3623b2ee9b7e4a767ed76defd661a9f18bffaeada811ac2ad6731bf96274b019498c5552b38678ff0aedb465713d895595b92e2bc9e1b3acec28f3ee5831951582f2ad1831ddce1300dcc4547ec444eae5c614719be9c3d397fc1db1a76d954cbc9b7a0d7c8d1eab3eeccd70b17dcd7c3543b6d9effbea67c4ade126c6fbfdee281fe3479c3052e68cf8441a50a6adc59dec8de4261a117e0286eea92ecc88230fdfdca1ed438026e238e6dbfdc4772dccb17737c398add9644b47bfb1a3e3a4b1316ec25ea07f90f858736e80dbb9c882701e7188d315391c538469695f33d266550fb873f47a12518717c83bec4e0cce65958d08a0e287df6a08efd979e087814b1822681ba6ea015714fd66af5100967e152262973b065ed349398aa13bb4329b4f56081aba2ba73ede47a2f1b2dbd5daeaf4d4f790a030e3c1fac30da1b5f6149074de6d76b1635adf44016027efd4ac08c93983e0935c1c8b38a675d5c356483539624e1f402439e6a55529a44c17207d6a5f9d0a2b1745ccb5d4e7332a2b2467c9690c9b7fb9fa73b4da5d3eadd347b89bf05a6aacac989ce9f1398729a4b3383c64c64cc68a8638735ebd80fb9ba2ee9e30e65a56d5676f2b607567f2a07adba966b210339d6a8cc404ffdcbf8ac02216239cc9e0abec2e2aa1d27d658913c83ae08657439bf32213d6b3c3fbb37f978a1820d23be11511869e5884ccab0de2a2ac982d58f01e88b54a54b0f50cc0ff699e39f86d74371f1667927ea4ba96af4c98b05e2b1d4115ef892332ab7ac777f1537f3ce78a2889fab969aa6a11f9e855ec1ba09096346fe930737e6760688c91a60bce3f173c24fa1efcbe5d12869ba34883f95e6bc90c61994f6761c305f5de4a0f79f6b3403249190542edd86d7231f0d89d1519ccab3ef35e3dc9e35a5031ab1cb888a8ace8cbe67073c19f8060ea78bf6d6a8970ed1aae35246df0b825d325279ae4c2a838e0e1f40a3c9615b06b2c4e929942a2d820a82ef19d355754caa45119d5e07f9052bf02ed05de6e07bf46758255d8ef077fd04e971b5117f8ef54f20559c98a9c51df5ed7d2db8f2085ce9947b474c7f00f4a1585507e2344a53a597292a338dd39592df962267a835d091dc9f1c5e7a6a0f1215a0015d9083720aee97b7fa1aa7f4fbcf698018980ebe5cd928e6ea1f1c4e6087678cfa687f1f6cea280fb9f24496211fb00b3788bf4ac4cf5d0972c398baa70fc54dc28a9fd3b838a5732b5039602d5049afc135cfef8053a20359287d53bcce117c7c36147288178cef8dac66f4b941333dd74cf2e9e22ce1be287f1ea2c0d5f476ea74a996d5952c98714a9939084f87bb525f287214567bf1da94d8d098640215d14800f09367aaade0f57ad08dc581dc19d21bdd640d1d3cf54336bb0feafc14d9709f719b1212eee75d9f8b958783cce8a535cb6a1b890e002fefa0e60597275ca2d516b28ef1d1ce3f25184b20726cb59ccab574b8d0ffd30fce23936ec84224991a6f9d2fd74def41248726f86e413dd13e9be77f1856fa1b5803312b8a9179914980bb70873a380278f1c6ad42186b14933892427939f83556e9d130607c1b3e1292da5ba6908b642a11d2814b7ea8b7442ae9aaea89948a58cba34807e617404af7e34ecc449be8c403ee536f311af194d63c9120e0268c3f7e2cafc739b6a0575396d61e55707820fe6eb6a71ce094b931d67b8be93937542e3f7e5bb80ab033d979b3c1bff4ff367934c73198fd04571e7a74b9376894d4b0c45a53b7711cecdd98fc87980b82019db23bf4f41ad8182b6861cab9fdb8f882eddc568f5f35e798350857b3818e2e0ef189cf08825355a9ffec231c0f5039b80764f3c7d1f2371fc71216e8f8d83bce4273bcbf22908d81b7c28d664e574e396098ad8fb0bcd68dbc3d1bb0f0bf295df0ae59339381ee231536c7d3b949072a5a2ba5245cb57848dfbb7cbcb7cbdae9b96752c824410eb46f6978051ae5734c278292a90f3c395f098162d4a43c7f449b1cd8208e15fe97c11c25b663a837348b45e059998a10f1c05490dae27b12508decaafec265eb2c22f3df91291922c80e33f479a77078717a7beea74972a7817e791e2cedcaafb43d1bb71ae86242f3375633bdcf0176ef26075446d3cf999df207983af46406defa8aaab0071a24c273a6b2ef78c47efdc0950a3bf486e1f0c26587b8de77a7fbfeb10a22485a6ec662f3afa0508343f9019a8a04118a30c78d89311da9fddfab1cd44f0c2c2f934ba94e88862fb2121893dab164b3edd2d3b0f4658624f6883099353b1bd0e0601f5397c5a5d6689890b207189602ee61524acc886ab1276aecf1a0bb4fbc85ff7e4881a977513ea0abd446b757464f6caa3485c3d08a4dc810ce21d85cfffc4fa07015ae41b1c7a6ba1858566db8ecaa0dd1cd6e5b7e3cc2a344399e89103954e380ee58b62cd508c587c9946b05433af55959a2ad30fb9b521c64f57321a23e4ac9866f356d28b29302f9604303bc66215696874eaf63e7a37056f78ac3034dc63db9315edb5bc7ada518e02b28281893792ac39374220645694c8e437358b5117f1e2d8269125111afc070ff118ec3a38d949c9ca4a7a1ce6dcac1e2a8e63af511d140b23a86cb78a7a47c4a9e2dcd4587ae32a36e47ed7a7a6e84bf1dbc60b0b00773b4bc0c9ebd38f0e8ccaa0eef5199229057f93c12988cd52317e64c9668b74e946a5cf837320f0889a427f84431f20540dc17eeb0587e51bd05ae9478dd42d215849d50cb745dd9d2d90c294a404ec95941d39ffacbe0e02c0fb6b017042986f1bb00e675a26eb0e65654eb130e5ad3b67cf73b89783effdebf50788f5287ebf2b1d96a4a94e37f39a9bfa0e6c95791a6fd5b5bc083af38afd3fb3ae0f17736f020d8b055a8081121d9f5d563cba2d8b803c4c687ea9184aa09445af016c77d946b03fca370c157f3c7b61ada339a9d3b1b5d18d68e3d66db596164720b09b1426bae1b96c7c5c201a5b232742cfcba1c45164165b5f342548354c2e040fc3a9dbb77dd35ae1f84aa89360fbd232637c0522c64088d7e4313311708c5525538c2e0db4d25143306e93492170413f1f85c3e582ca354164e14b5d3bb33fd808a8b608e29f744333fc670f3816829c1a8583a7b158154a988f5b3b97c38add8146f2faa7c30acc309763eee280251c0a1e1b2d26bd377531a00a2dc54696b90045b17bba7e76dcef64714fecd12c3e84bcc7cffa17b18c6bbcc39960f4156ef05e368c4f205e8dc05a668b09548c2ced5927e6dab63a9e196aa42034ac8f4b9fb9ee4d8cd9c0fb435efaf5c7f4059607a2ac5669f5ebfd5c6db2579e465a3ca09c2a8441fabd977ada9ef15d795c891810ff1cf95bf071ecd4cd4b8fff8a1e63e08e790edef1aced37d8cab6d66696bbfce01ed7e22aefa9dc81de1fb212c4153ca29647d85b84def3234bfeaac52f6e1d567987d0b92ef04f9822acd1c25f532ba96c513954af88288b2d3a100bb9bc33df9b86ba471b2c7eed43d64422831455d144709d2ca4582559fb2a8cdc1c0686c686bbd04bd81f6116c7b8480c990651c4eab199dd27fecce28ab10965b60d0d062f66c0055cf7c0bf5b9779a65960dc059cdbb15c8f2a984d852e05f90203847b6f8bfbdf6d908055d28c7a96249b090935", 0xe67)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000b00), r3)
ioctl$auto_BLKSSZGET(0xffffffffffffffff, 0x1268, 0x0)
openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/mac80211_hwsim/hwsim13\x00', 0x22200, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
r6 = socket(0x22, 0x2, 0x0)
getsockopt$auto(r6, 0x29, 0x20, 0x0, 0x0)
sendmsg$auto_GTP_CMD_ECHOREQ(r3, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x000', @ANYRES16=r4, @ANYBLOB="01002abd7000ffdbdf2503000000080004007f0000010800010003000000"], 0x24}, 0x1, 0x0, 0x0, 0x4091}, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x6]}, 0x0)

1.587914731s ago: executing program 0 (id=2839):
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/syscall\x00', 0x0, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x0, 0x0)
poll$auto(0x0, 0x5, 0x10001)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/bus/netdevsim/new_device\x00', 0x149b01, 0x0)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x9}, 0x7)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/platform/vivid.0/video4linux/vbi26/dev\x00', 0x111000, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00')
syz_open_procfs$namespace(0x0, &(0x7f0000000040))
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0x1e, 0x5, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/arp_tables_matches\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x2, 0x80802, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0xa, 0x3, 0x3b)
connect$auto(r1, &(0x7f0000000040)=@generic={0x8, "00010100"}, 0x5c)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x1a, 0x940, 0x1ffe0, 0x7f, 0x6, 0x2, 0x7f, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x20, 0x0, 0x0, 0x202, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x2, [0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x478, 0x0, 0x5, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x7ffd, 0x0, 0x6, 0xffffffffffffffff, 0x0, 0xb, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)

1.587259051s ago: executing program 1 (id=2840):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(r0, &(0x7f00000003c0)={{0x0, 0xfc2, 0x0, 0x7, &(0x7f0000000300)="198c4f4d2282dd68e10a768807754db909196243eb5cc4de177c102495af72071d87583e452f7165da3599158638dabe9a0c59ea019792cf59a0b062366bdba330b5fafb0c07285d35bdc084b4c1e5ddbcc51455d05555a5d940082b872c30f806f411fd", 0xff, 0x8}, 0xfffffff9}, 0x2, 0x2)
rename$auto(&(0x7f0000000180)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0)
prctl$auto(0x29, 0x17000000, 0x0, 0x0, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
llistxattr$auto(&(0x7f0000000400)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', &(0x7f0000000500)='*!*!\'}#*&@U\x00', 0xfb6)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r1 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000000), 0x10, 0x0, 0x9, 0x0, 0x4, 0x9}, 0x800009}, 0x7, 0x20000000)
setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0xffffffffffffffff, 0x0, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x181b80, 0x0)
shmctl$auto_SHM_STAT(0x2, 0xd, 0x0)
connect$auto(0x3, 0x0, 0x50)
connect$auto(0xffffffffffffffff, 0x0, 0x3a)
sendmmsg$auto(0x3, 0x0, 0x81, 0x0)
socket(0x1e, 0x5, 0x0)
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0)
mmap$auto(0x0, 0x2020009, 0x126, 0xf8, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

1.582924298s ago: executing program 2 (id=2841):
r0 = socket(0x2a, 0x2, 0x1)
bind$auto(0x3, &(0x7f0000000080)=@qipcrtr={0x2a, 0x1, 0x1}, 0x6b)
r1 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x820181, 0x0)
write$auto_nvram_misc_fops_nvram(r1, 0x0, 0x0)
connect$auto(r0, &(0x7f0000000140)=@qipcrtr={0x2a, 0x1, 0x4000}, 0x57)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x111000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_BLKROGET(r2, 0x125e, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x25, 0x800, 0x80)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda\x00', 0x14fa02, 0x0)
futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x5)
futex$auto(&(0x7f0000000300), 0x5, 0x200, 0x0, &(0x7f0000000100)=0x3, 0x1ff)
open(0x0, 0x430003, 0x10e)
clock_settime$auto(0x3, &(0x7f0000000340)={0x8, 0x10})
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram12\x00', 0x14f602, 0x0)
connect$auto(0xffffffffffffffff, &(0x7f0000000000)=@sco, 0x8)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/hung_task_check_interval_secs\x00', 0x88542, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f0000000200)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x520100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="f45b10a0", @ANYRES16, @ANYBLOB="020025bd7000fedbdf250100000006001a004e2100000800110003000000"], 0x24}, 0x1, 0x0, 0x0, 0x45}, 0x4080)
socket(0x10, 0x3, 0x6)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x40, r5, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0x15, 0x0, 0x0, @fd}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r6 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000040), 0x80302, 0x0)
ioctl$auto_SW_SYNC_IOC_INC(r6, 0x40045701, &(0x7f0000000080)=0xffffffff)
mmap$auto(0x0, 0x400006, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

921.592079ms ago: executing program 3 (id=2842):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/014/001\x00', 0xc0402, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/lru_gen/min_ttl_ms\x00', 0x2ab42, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000280)={0x6, 0x3, 0x6, 0x9649, &(0x7f0000000500)="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", 0x3, 0xff, 0x8001, @stream_id=0x5, 0x40, 0x71f, &(0x7f00000001c0)="1c51b05b85f192013c2f4e22e169c21fdcefdd15640878d5109afe418141a7ce", [{0x80, 0x7e32, 0x1000}, {0x3, 0x4, 0x80}, {0x0, 0x7fff}, {0xb, 0x9, 0xffff}]})
pwritev$auto(r1, &(0x7f0000000180)={&(0x7f0000000100), 0x1}, 0x2, 0xa, 0x7fff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/011/001\x00', 0x101202, 0x0)
r2 = prctl$auto_PR_SET_MM_ARG_END(0x8, 0x9, 0x0, 0x0, 0x4)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
rt_sigtimedwait$auto(&(0x7f0000000040)={0xfffffffffffffbff}, 0x0, 0x0, 0x8)
r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000300), 0xffffffffffffffff)
socket(0x2, 0x3, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a)
r4 = socket(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000440)={'bridge_slave_0\x00', <r5=>0x0})
bpf$auto(0x4, &(0x7f00000006c0)=@token_create={0x4, r0}, 0x4a)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0)
write$auto(r6, &(0x7f0000000180)='1\x00\\\xa0\x04|\x9d$\xdcM)\xb9\xdd\xd6', 0x5)
r7 = getpgid(0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r8)
read$auto(r8, &(0x7f0000000080)='\x00', 0xff09)
process_vm_writev$auto(r7, 0x0, 0x200000000017, 0x0, 0x7, 0x0)
r9 = getpgid(0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="020028bd7000fedbdf2501000000080007000100000008000900", @ANYRES32=r5, @ANYBLOB="08000200", @ANYRES32=r7, @ANYBLOB="0800050005000000080005000f00000008000200", @ANYRES32=r9, @ANYBLOB="08000200", @ANYRES32, @ANYBLOB="ede040a99130d06f415a3eb1597b"], 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)
ioctl$auto_USBDEVFS_DISCARDURB(r0, 0x550b, 0x0)
openat$auto_tracing_saved_cmdlines_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/saved_cmdlines_size\x00', 0x20000, 0x0)

920.777343ms ago: executing program 1 (id=2850):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(r0, &(0x7f00000003c0)={{0x0, 0xfc2, 0x0, 0x7, &(0x7f0000000300)="198c4f4d2282dd68e10a768807754db909196243eb5cc4de177c102495af72071d87583e452f7165da3599158638dabe9a0c59ea019792cf59a0b062366bdba330b5fafb0c07285d35bdc084b4c1e5ddbcc51455d05555a5d940082b872c30f806f411fd", 0xff, 0x8}, 0xfffffff9}, 0x2, 0x2)
rename$auto(&(0x7f0000000180)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0)
prctl$auto(0x29, 0x17000000, 0x0, 0x0, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
llistxattr$auto(&(0x7f0000000400)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', &(0x7f0000000500)='*!*!\'}#*&@U\x00', 0xfb6)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r1 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000000), 0x10, 0x0, 0x9, 0x0, 0x4, 0x9}, 0x800009}, 0x7, 0x20000000)
setsockopt$auto(0x3, 0x1, 0x2f, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0xffffffffffffffff, 0x0, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x181b80, 0x0)
shmctl$auto_SHM_STAT(0x2, 0xd, 0x0)
connect$auto(0x3, 0x0, 0x50)
connect$auto(0xffffffffffffffff, 0x0, 0x3a)
sendmmsg$auto(0x3, 0x0, 0x81, 0x0)
socket(0x1e, 0x5, 0x0)
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x126, 0xf8, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

639.438903ms ago: executing program 0 (id=2843):
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
socket(0x28, 0x3, 0x1)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000040))
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
r2 = io_uring_setup$auto(0x1, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xa)
r3 = socket(0x2, 0x1, 0x106)
bind$auto(r3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000)
unshare$auto(0x40000080)
ioctl$auto_FS_IOC_REMOVE_ENCRYPTION_KEY(r2, 0xc0406618, &(0x7f0000000080)={{0xfffff270}, 0x1})
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/conf/geneve0/disable_policy\x00', 0x40180, 0x0)
close_range$auto(0x2, 0x8, 0x0)
semctl$auto(0xa, 0x2, 0x13, 0xde)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
recvmmsg$auto(0x3, 0x0, 0x80000401, 0x4000, 0x0)
write$auto(r4, 0x0, 0x5)
socket(0x11, 0xa, 0x9)
io_uring_setup$auto(0x6, 0x0)

598.355158ms ago: executing program 2 (id=2844):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb3, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x8002, 0x2)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
mmap$auto(0x0, 0x20006, 0x1ff, 0x100000000000eb1, 0x8000000000000024, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x11, 0x80002, 0x73)
socket(0x6, 0x80000, 0x84)
capset$auto(0x0, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0xa0681, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x795e82, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0x7fffffff, 0x18, 0x7, 0x28000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0xa2741, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
ioctl$auto_SNDCTL_SYNTH_MEMAVL(r1, 0xc004510e, 0x0)
connect$auto(0x3, 0x0, 0x55)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x88c2, 0x0)
write$auto(r0, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xe7k', 0x2)
getrandom$auto(&(0x7f0000000080)='+\x00', 0x8000000000000000, 0x3c5b)
mmap$auto(0x9000, 0x0, 0x7, 0x11, 0xdd, 0xfffffffffffffffc)

581.458355ms ago: executing program 1 (id=2845):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r1, 0x0, 0x484, 0x0, 0x0)
write$auto(r0, &(0x7f0000000100)='\x10`rv\aaudioq\x00\fg\x9fg=\x05]X$\xa7\xc4\x8f\xf5\trb\\.S\x81k\xfe\xb3y\xa4\xaeR\xf0n\xde\xfcl*\xb9\x9a\xd9\xcf\xbb\xf1r\xeb\xa2%\xdfX\xbd\x87\x0fS\xea8\xc6\xfe\xea\xd1\xe4=\x84\x8b\x12\x04\xddC\xd2\xf4\x8c\x14\x92\x86\xa1\xa5\xfe\x9eiC&~\x87PS\xe2', 0x100000a3da)
socket(0x28, 0x5, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000240)={"ef65ce6c000000000000200000000000000000000000f8ffffff000000cadb00", 0x3ff, 0x408, 0xf, 0x400001, 0x6f6})
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0xa}, 0x0, 0xf4240, 0x1)
write$auto_tty_fops_tty_io(r2, &(0x7f00000009c0)="8939cc4d36227fdb35e4a7779345a4d999cb1552f41b34b4003355454e96e6647b34e58345a013e46d9380cd77dcd9b5804ab378df5b19fd93b23d547b6a39e0563f1da27d880a0c7a41ada96f5899128a2f138a38855f3a0e5090cfcb022a807fd8d8410e21962aea3354ff7d28917ad17443189afcba863b21eedff9ef8944e15848033f30ec1ce206287db0755992c3d95fa6c7a2ecb44696ce661038bdc304c775605215501e237d8713947274ff5249f4fefe090d0581a07ac675fdc5da272124ae5975977941ead35326b8dd9ef2562c730a1df3116a5e25f19463fb391d3ba275758c4dd50d5bb8ecd6b3b07ebadfc8c978bb7e15a95c5bd06356d6d9d9e89db59312c4f8452f55ba7013b2691ca80c7db06df2026b190ae22bd233128b0459f8e22f77579ee7f7c6054e4eb33480be2d6e034dd96379f65937a7edf67a2d6b9fc5bb4253bb95d4bedd94da5d5cd944ccfa98c65c25dc3ab8fda6e68d77806b21e624aae3a6435c313b15894332942eb58e2bc6a0582aceaeb594578a2908b49a6f2ce66aac2e2ee4cadfc452cb953a51449039dbb5c7e84405d9cb335afbed3384ffc695b954cc51531bb083df05e2af461c2a7a0a697d0d59c565f5cfd3b354f051d5637fd1f72aeb79be3567215c648ae85541c9f3c4856229247b1225d327ed57fa7981424b39ebbb77a0f6ca5778ed0c9713d68aedd19627de8edf485f9155261ede5c803da5ce248f4c93a1b9925ee07d3f42c8f999252655c582ff47da1e6d010449345c4f3a43336547112ef4e8e0bd0829027b6dcb8fb127171eeb7a38470592c8422bc5c9bb784c281d20847eb79fef43fd38aa88f1a8639728267aef7a74fc40cc54cefea2807f598cd25f3c1bd8ab17fc88aac82179057717177355a1103433d8f7468a8f49d7d5dd8093f6882a791ce983aa4e03bf1a91e938b8da4f9cb41d6371579d9feb55636d8626b9e339d5e54a2397537e9b2f5bb846f1d0dd4614ad5f68fa35ea3f366a12eb4d51aad810856db0f11974bda08daf259c9477053847f17074fbbcbce75472cb9acada0b400f4fa85b71a97e7c686b2ba98e3d2bbb905d9e82430a2730d8d3465d9b632ba07fd746b2a394feb76db7501208f559be2a151c205103c4481cae7352f7117e6c626f25f0b3367d50a1ea87a38136b6ca64e1ef51207c0d6c06dfe86336b65caeee24138f1ca0955135c5d2b49743b0e51f98b7a8bd3a5ac50ca3a5d6e8e17cdf154bae7fa031b40b83b285b58eb47277920fc28ef916d5ae8536458577a37b73ae29312fee7885c405417d454e38dbe50ef1a8603e28611bf4d6b63251a1abc190581c6efe832d62d6ce8f6c4a64c7e018427b5fadddc1cec3896ed51c977d9e3f7c0d1e8f8d75693e1ead5a7a3714843fb3517bd0ddc68936c801692cce52ba003036764dc7f016e342a54f99916fc595dba1fc76222c5e814a1b71c6b9b735240e6bf747a900f6048b2836af70c6aa717701312c61c965d8ca1bdafb5d3623b2ee9b7e4a767ed76defd661a9f18bffaeada811ac2ad6731bf96274b019498c5552b38678ff0aedb465713d895595b92e2bc9e1b3acec28f3ee5831951582f2ad1831ddce1300dcc4547ec444eae5c614719be9c3d397fc1db1a76d954cbc9b7a0d7c8d1eab3eeccd70b17dcd7c3543b6d9effbea67c4ade126c6fbfdee281fe3479c3052e68cf8441a50a6adc59dec8de4261a117e0286eea92ecc88230fdfdca1ed438026e238e6dbfdc4772dccb17737c398add9644b47bfb1a3e3a4b1316ec25ea07f90f858736e80dbb9c882701e7188d315391c538469695f33d266550fb873f47a12518717c83bec4e0cce65958d08a0e287df6a08efd979e087814b1822681ba6ea015714fd66af5100967e152262973b065ed349398aa13bb4329b4f56081aba2ba73ede47a2f1b2dbd5daeaf4d4f790a030e3c1fac30da1b5f6149074de6d76b1635adf44016027efd4ac08c93983e0935c1c8b38a675d5c356483539624e1f402439e6a55529a44c17207d6a5f9d0a2b1745ccb5d4e7332a2b2467c9690c9b7fb9fa73b4da5d3eadd347b89bf05a6aacac989ce9f1398729a4b3383c64c64cc68a8638735ebd80fb9ba2ee9e30e65a56d5676f2b607567f2a07adba966b210339d6a8cc404ffdcbf8ac02216239cc9e0abec2e2aa1d27d658913c83ae08657439bf32213d6b3c3fbb37f978a1820d23be11511869e5884ccab0de2a2ac982d58f01e88b54a54b0f50cc0ff699e39f86d74371f1667927ea4ba96af4c98b05e2b1d4115ef892332ab7ac777f1537f3ce78a2889fab969aa6a11f9e855ec1ba09096346fe930737e6760688c91a60bce3f173c24fa1efcbe5d12869ba34883f95e6bc90c61994f6761c305f5de4a0f79f6b3403249190542edd86d7231f0d89d1519ccab3ef35e3dc9e35a5031ab1cb888a8ace8cbe67073c19f8060ea78bf6d6a8970ed1aae35246df0b825d325279ae4c2a838e0e1f40a3c9615b06b2c4e929942a2d820a82ef19d355754caa45119d5e07f9052bf02ed05de6e07bf46758255d8ef077fd04e971b5117f8ef54f20559c98a9c51df5ed7d2db8f2085ce9947b474c7f00f4a1585507e2344a53a597292a338dd39592df962267a835d091dc9f1c5e7a6a0f1215a0015d9083720aee97b7fa1aa7f4fbcf698018980ebe5cd928e6ea1f1c4e6087678cfa687f1f6cea280fb9f24496211fb00b3788bf4ac4cf5d0972c398baa70fc54dc28a9fd3b838a5732b5039602d5049afc135cfef8053a20359287d53bcce117c7c36147288178cef8dac66f4b941333dd74cf2e9e22ce1be287f1ea2c0d5f476ea74a996d5952c98714a9939084f87bb525f287214567bf1da94d8d098640215d14800f09367aaade0f57ad08dc581dc19d21bdd640d1d3cf54336bb0feafc14d9709f719b1212eee75d9f8b958783cce8a535cb6a1b890e002fefa0e60597275ca2d516b28ef1d1ce3f25184b20726cb59ccab574b8d0ffd30fce23936ec84224991a6f9d2fd74def41248726f86e413dd13e9be77f1856fa1b5803312b8a9179914980bb70873a380278f1c6ad42186b14933892427939f83556e9d130607c1b3e1292da5ba6908b642a11d2814b7ea8b7442ae9aaea89948a58cba34807e617404af7e34ecc449be8c403ee536f311af194d63c9120e0268c3f7e2cafc739b6a0575396d61e55707820fe6eb6a71ce094b931d67b8be93937542e3f7e5bb80ab033d979b3c1bff4ff367934c73198fd04571e7a74b9376894d4b0c45a53b7711cecdd98fc87980b82019db23bf4f41ad8182b6861cab9fdb8f882eddc568f5f35e798350857b3818e2e0ef189cf08825355a9ffec231c0f5039b80764f3c7d1f2371fc71216e8f8d83bce4273bcbf22908d81b7c28d664e574e396098ad8fb0bcd68dbc3d1bb0f0bf295df0ae59339381ee231536c7d3b949072a5a2ba5245cb57848dfbb7cbcb7cbdae9b96752c824410eb46f6978051ae5734c278292a90f3c395f098162d4a43c7f449b1cd8208e15fe97c11c25b663a837348b45e059998a10f1c05490dae27b12508decaafec265eb2c22f3df91291922c80e33f479a77078717a7beea74972a7817e791e2cedcaafb43d1bb71ae86242f3375633bdcf0176ef26075446d3cf999df207983af46406defa8aaab0071a24c273a6b2ef78c47efdc0950a3bf486e1f0c26587b8de77a7fbfeb10a22485a6ec662f3afa0508343f9019a8a04118a30c78d89311da9fddfab1cd44f0c2c2f934ba94e88862fb2121893dab164b3edd2d3b0f4658624f6883099353b1bd0e0601f5397c5a5d6689890b207189602ee61524acc886ab1276aecf1a0bb4fbc85ff7e4881a977513ea0abd446b75", 0xace)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000b00), r3)
ioctl$auto_BLKSSZGET(0xffffffffffffffff, 0x1268, 0x0)
openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/mac80211_hwsim/hwsim13\x00', 0x22200, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
r6 = socket(0x22, 0x2, 0x0)
getsockopt$auto(r6, 0x29, 0x20, 0x0, 0x0)
sendmsg$auto_GTP_CMD_ECHOREQ(r3, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x000', @ANYRES16=r4, @ANYBLOB="01002abd7000ffdbdf2503000000080004007f0000010800010003000000"], 0x24}, 0x1, 0x0, 0x0, 0x4091}, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x6]}, 0x0)

0s ago: executing program 3 (id=2846):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r1, 0x0, 0x484, 0x0, 0x0)
write$auto(r0, &(0x7f0000000100)='\x10`rv\aaudioq\x00\fg\x9fg=\x05]X$\xa7\xc4\x8f\xf5\trb\\.S\x81k\xfe\xb3y\xa4\xaeR\xf0n\xde\xfcl*\xb9\x9a\xd9\xcf\xbb\xf1r\xeb\xa2%\xdfX\xbd\x87\x0fS\xea8\xc6\xfe\xea\xd1\xe4=\x84\x8b\x12\x04\xddC\xd2\xf4\x8c\x14\x92\x86\xa1\xa5\xfe\x9eiC&~\x87PS\xe2', 0x100000a3da)
socket(0x28, 0x5, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000240)={"ef65ce6c000000000000200000000000000000000000f8ffffff000000cadb00", 0x3ff, 0x408, 0xf, 0x400001, 0x6f6})
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0xa}, 0x0, 0xf4240, 0x1)
write$auto_tty_fops_tty_io(r2, &(0x7f00000009c0)="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", 0xe67)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000b00), r3)
ioctl$auto_BLKSSZGET(0xffffffffffffffff, 0x1268, 0x0)
openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/mac80211_hwsim/hwsim13\x00', 0x22200, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
r6 = socket(0x22, 0x2, 0x0)
getsockopt$auto(r6, 0x29, 0x20, 0x0, 0x0)
sendmsg$auto_GTP_CMD_ECHOREQ(r3, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x000', @ANYRES16=r4, @ANYBLOB="01002abd7000ffdbdf2503000000080004007f0000010800010003000000"], 0x24}, 0x1, 0x0, 0x0, 0x4091}, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x6]}, 0x0)

kernel console output (not intermixed with test programs):

e
[  535.734113][T14543] RAX: ffffffffffffffda RBX: 00007fb5bce16090 RCX: 00007fb5bcb9cdd9
[  535.734130][T14543] RDX: 0000000000000000 RSI: 0000200000003140 RDI: 0000000000000004
[  535.734146][T14543] RBP: 00007fb5bdaa4090 R08: 0000000000000000 R09: 0000000000000000
[  535.734162][T14543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  535.734178][T14543] R13: 00007fb5bce16128 R14: 00007fb5bce16090 R15: 00007ffebbc37478
[  535.734213][T14543]  </TASK>
[  536.977804][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805d2a2c00: rx timeout, send abort
[  536.988222][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805d2a2c00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  538.509810][T14589] FAULT_INJECTION: forcing a failure.
[  538.509810][T14589] name fail_futex, interval 1, probability 0, space 0, times 0
[  538.572352][T14589] CPU: 1 UID: 0 PID: 14589 Comm: syz.2.1808 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  538.572394][T14589] Tainted: [L]=SOFTLOCKUP
[  538.572403][T14589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  538.572417][T14589] Call Trace:
[  538.572422][T14589]  <TASK>
[  538.572428][T14589]  dump_stack_lvl+0x100/0x190
[  538.572449][T14589]  should_fail_ex.cold+0x5/0xa
[  538.572469][T14589]  get_futex_key+0xf78/0x1510
[  538.572486][T14589]  ? __pfx_get_futex_key+0x10/0x10
[  538.572500][T14589]  ? lock_acquire+0x1b1/0x370
[  538.572519][T14589]  futex_wake+0xea/0x530
[  538.572539][T14589]  ? __pfx_futex_wake+0x10/0x10
[  538.572558][T14589]  ? exit_mm_release+0x19/0x30
[  538.572585][T14589]  do_futex+0x32b/0x350
[  538.572601][T14589]  ? __pfx_do_futex+0x10/0x10
[  538.572615][T14589]  ? __might_fault+0xc5/0x140
[  538.572642][T14589]  mm_release+0x24a/0x2f0
[  538.572661][T14589]  do_exit+0x707/0x2a60
[  538.572686][T14589]  ? __pfx_do_exit+0x10/0x10
[  538.572708][T14589]  ? do_raw_spin_lock+0x128/0x260
[  538.572724][T14589]  ? find_held_lock+0x2b/0x80
[  538.572742][T14589]  ? get_signal+0x7e0/0x21e0
[  538.572763][T14589]  do_group_exit+0xd5/0x2a0
[  538.572791][T14589]  get_signal+0x1ec7/0x21e0
[  538.572812][T14589]  ? __sys_recvfrom+0x266/0x300
[  538.572829][T14589]  ? __pfx_get_signal+0x10/0x10
[  538.572848][T14589]  ? do_futex+0x192/0x350
[  538.572866][T14589]  arch_do_signal_or_restart+0x91/0x770
[  538.572890][T14589]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  538.572917][T14589]  ? __pfx___x64_sys_futex+0x10/0x10
[  538.572934][T14589]  ? rcu_is_watching+0x12/0xc0
[  538.572969][T14589]  exit_to_user_mode_loop+0x86/0x4a0
[  538.573000][T14589]  ? do_syscall_64+0x519/0xf80
[  538.573037][T14589]  do_syscall_64+0x6f2/0xf80
[  538.573068][T14589]  ? clear_bhb_loop+0x40/0x90
[  538.573101][T14589]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  538.573129][T14589] RIP: 0033:0x7fb5bcb9cdd9
[  538.573150][T14589] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  538.573176][T14589] RSP: 002b:00007fb5bdaa40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  538.573202][T14589] RAX: fffffffffffffe00 RBX: 00007fb5bce16098 RCX: 00007fb5bcb9cdd9
[  538.573221][T14589] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb5bce16098
[  538.573237][T14589] RBP: 00007fb5bce16090 R08: 0000000000000000 R09: 0000000000000000
[  538.573253][T14589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  538.573269][T14589] R13: 00007fb5bce16128 R14: 00007ffebbc37390 R15: 00007ffebbc37478
[  538.573305][T14589]  </TASK>
[  538.863163][T14597] Format for adding new device is "id port_count num_queues" (uint uint uint).
[  538.912911][T14597] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1811'.
[  538.952060][T14606] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1810'.
[  541.398748][T14669] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1824'.
[  542.154166][T14675] FAULT_INJECTION: forcing a failure.
[  542.154166][T14675] name failslab, interval 1, probability 0, space 0, times 0
[  542.214127][T14675] CPU: 0 UID: 0 PID: 14675 Comm: syz.2.1827 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  542.214153][T14675] Tainted: [L]=SOFTLOCKUP
[  542.214158][T14675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  542.214167][T14675] Call Trace:
[  542.214172][T14675]  <TASK>
[  542.214178][T14675]  dump_stack_lvl+0x100/0x190
[  542.214199][T14675]  should_fail_ex.cold+0x5/0xa
[  542.214218][T14675]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x100/0x2f0
[  542.214242][T14675]  should_failslab+0xc2/0x120
[  542.214260][T14675]  __kmalloc_noprof+0xe0/0x850
[  542.214281][T14675]  ? lockdep_hardirqs_on+0x78/0x100
[  542.214304][T14675]  genl_family_rcv_msg_attrs_parse.isra.0+0x100/0x2f0
[  542.214331][T14675]  genl_family_rcv_msg_doit+0xc7/0x300
[  542.214355][T14675]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  542.214377][T14675]  ? genl_get_cmd+0x3e7/0x760
[  542.214402][T14675]  ? __dev_queue_xmit+0xa10/0x4950
[  542.214422][T14675]  ? __radix_tree_lookup+0x217/0x2b0
[  542.214442][T14675]  genl_rcv_msg+0x560/0x800
[  542.214465][T14675]  ? __pfx_genl_rcv_msg+0x10/0x10
[  542.214487][T14675]  ? __pfx_ovs_dp_cmd_get+0x10/0x10
[  542.214532][T14675]  netlink_rcv_skb+0x159/0x420
[  542.214552][T14675]  ? __pfx_genl_rcv_msg+0x10/0x10
[  542.214575][T14675]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  542.214602][T14675]  ? netlink_deliver_tap+0x1ae/0xcc0
[  542.214623][T14675]  genl_rcv+0x28/0x40
[  542.214642][T14675]  netlink_unicast+0x585/0x850
[  542.214664][T14675]  ? __pfx_netlink_unicast+0x10/0x10
[  542.214689][T14675]  netlink_sendmsg+0x8b0/0xda0
[  542.214711][T14675]  ? __pfx_netlink_sendmsg+0x10/0x10
[  542.214730][T14675]  ? __import_iovec+0x1d2/0x640
[  542.214750][T14675]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  542.214775][T14675]  ____sys_sendmsg+0x9e1/0xb70
[  542.214794][T14675]  ? __pfx_netlink_sendmsg+0x10/0x10
[  542.214815][T14675]  ? __pfx_____sys_sendmsg+0x10/0x10
[  542.214845][T14675]  ___sys_sendmsg+0x190/0x1e0
[  542.214868][T14675]  ? __pfx____sys_sendmsg+0x10/0x10
[  542.214929][T14675]  __sys_sendmsg+0x170/0x220
[  542.214946][T14675]  ? __pfx___sys_sendmsg+0x10/0x10
[  542.214969][T14675]  ? rcu_is_watching+0x12/0xc0
[  542.214990][T14675]  do_syscall_64+0x10b/0xf80
[  542.215008][T14675]  ? clear_bhb_loop+0x40/0x90
[  542.215035][T14675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  542.215063][T14675] RIP: 0033:0x7fb5bcb9cdd9
[  542.215076][T14675] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  542.215090][T14675] RSP: 002b:00007fb5bdac5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  542.215111][T14675] RAX: ffffffffffffffda RBX: 00007fb5bce15fa0 RCX: 00007fb5bcb9cdd9
[  542.215121][T14675] RDX: 0000000004000024 RSI: 00002000000002c0 RDI: 0000000000000004
[  542.215130][T14675] RBP: 00007fb5bdac5090 R08: 0000000000000000 R09: 0000000000000000
[  542.215139][T14675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  542.215147][T14675] R13: 00007fb5bce16038 R14: 00007fb5bce15fa0 R15: 00007ffebbc37478
[  542.215166][T14675]  </TASK>
[  544.356729][T14712] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13
[  544.572349][T14712] input: failed to attach handler evdev to device input13, error: -4
[  545.247505][T14741] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1839'.
[  547.640707][T14786] FAULT_INJECTION: forcing a failure.
[  547.640707][T14786] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  547.695409][T14786] CPU: 0 UID: 0 PID: 14786 Comm: syz.3.1848 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  547.695448][T14786] Tainted: [L]=SOFTLOCKUP
[  547.695457][T14786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  547.695472][T14786] Call Trace:
[  547.695481][T14786]  <TASK>
[  547.695490][T14786]  dump_stack_lvl+0x100/0x190
[  547.695511][T14786]  should_fail_ex.cold+0x5/0xa
[  547.695530][T14786]  _copy_from_user+0x2e/0xd0
[  547.695555][T14786]  kvm_vm_ioctl+0x1453/0x4050
[  547.695581][T14786]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  547.695614][T14786]  ? kasan_quarantine_put+0x104/0x240
[  547.695637][T14786]  ? lockdep_hardirqs_on+0x78/0x100
[  547.695657][T14786]  ? find_held_lock+0x2b/0x80
[  547.695676][T14786]  ? tomoyo_path_number_perm+0x28f/0x580
[  547.695691][T14786]  ? tomoyo_path_number_perm+0x28f/0x580
[  547.695709][T14786]  ? tomoyo_path_number_perm+0x188/0x580
[  547.695725][T14786]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  547.695746][T14786]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  547.695769][T14786]  ? do_vfs_ioctl+0x226/0x13e0
[  547.695784][T14786]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  547.695803][T14786]  ? find_held_lock+0x2b/0x80
[  547.695831][T14786]  ? __fget_files+0x215/0x3d0
[  547.695859][T14786]  ? hook_file_ioctl_common+0x149/0x410
[  547.695882][T14786]  ? __fget_files+0x21f/0x3d0
[  547.695901][T14786]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  547.695921][T14786]  __x64_sys_ioctl+0x18e/0x210
[  547.695937][T14786]  do_syscall_64+0x10b/0xf80
[  547.695955][T14786]  ? clear_bhb_loop+0x40/0x90
[  547.695973][T14786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  547.695989][T14786] RIP: 0033:0x7f919fb9cdd9
[  547.696002][T14786] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  547.696016][T14786] RSP: 002b:00007f91a0996028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  547.696030][T14786] RAX: ffffffffffffffda RBX: 00007f919fe15fa0 RCX: 00007f919fb9cdd9
[  547.696040][T14786] RDX: 0000000000000000 RSI: 000000004008ae61 RDI: 0000000000000003
[  547.696049][T14786] RBP: 00007f91a0996090 R08: 0000000000000000 R09: 0000000000000000
[  547.696058][T14786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  547.696066][T14786] R13: 00007f919fe16038 R14: 00007f919fe15fa0 R15: 00007ffeaad5a308
[  547.696091][T14786]  </TASK>
[  549.657227][T14832] FAULT_INJECTION: forcing a failure.
[  549.657227][T14832] name failslab, interval 1, probability 0, space 0, times 0
[  549.702687][T14832] CPU: 0 UID: 0 PID: 14832 Comm: syz.2.1857 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  549.702720][T14832] Tainted: [L]=SOFTLOCKUP
[  549.702729][T14832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  549.702743][T14832] Call Trace:
[  549.702752][T14832]  <TASK>
[  549.702762][T14832]  dump_stack_lvl+0x100/0x190
[  549.702797][T14832]  should_fail_ex.cold+0x5/0xa
[  549.702825][T14832]  should_failslab+0xc2/0x120
[  549.702856][T14832]  __kmalloc_cache_noprof+0x7a/0x6f0
[  549.702895][T14832]  ? sctp_add_bind_addr+0xae/0x3e0
[  549.702944][T14832]  sctp_add_bind_addr+0xae/0x3e0
[  549.702985][T14832]  sctp_copy_local_addr_list+0x349/0x550
[  549.703013][T14832]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  549.703040][T14832]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  549.703072][T14832]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  549.703114][T14832]  sctp_bind_addr_copy+0xe0/0x530
[  549.703159][T14832]  sctp_connect_new_asoc+0x1c9/0x770
[  549.703194][T14832]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  549.703227][T14832]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  549.703257][T14832]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  549.703299][T14832]  __sctp_connect+0x3e7/0xc70
[  549.703342][T14832]  ? __pfx___sctp_connect+0x10/0x10
[  549.703378][T14832]  ? __pfx_sctp_inet_connect+0x10/0x10
[  549.703410][T14832]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  549.703449][T14832]  ? __pfx_sctp_inet_connect+0x10/0x10
[  549.703478][T14832]  sctp_inet_connect+0x15f/0x220
[  549.703549][T14832]  __sys_connect_file+0x141/0x1a0
[  549.703609][T14832]  __sys_connect+0x141/0x170
[  549.703644][T14832]  ? __pfx___sys_connect+0x10/0x10
[  549.703680][T14832]  ? __fget_files+0x21f/0x3d0
[  549.703722][T14832]  ? __pfx_ksys_write+0x10/0x10
[  549.703758][T14832]  __x64_sys_connect+0x72/0xb0
[  549.703793][T14832]  ? lockdep_hardirqs_on+0x78/0x100
[  549.703828][T14832]  do_syscall_64+0x10b/0xf80
[  549.703854][T14832]  ? clear_bhb_loop+0x40/0x90
[  549.703873][T14832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  549.703888][T14832] RIP: 0033:0x7fb5bcb9cdd9
[  549.703901][T14832] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  549.703915][T14832] RSP: 002b:00007fb5bdac5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  549.703930][T14832] RAX: ffffffffffffffda RBX: 00007fb5bce15fa0 RCX: 00007fb5bcb9cdd9
[  549.703940][T14832] RDX: 0000000000000054 RSI: 00002000000000c0 RDI: 0000000000000003
[  549.703949][T14832] RBP: 00007fb5bdac5090 R08: 0000000000000000 R09: 0000000000000000
[  549.703958][T14832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  549.703966][T14832] R13: 00007fb5bce16038 R14: 00007fb5bce15fa0 R15: 00007ffebbc37478
[  549.703986][T14832]  </TASK>
[  551.968637][T14880] random: crng reseeded on system resumption
[  554.309652][T14924] vhci_hcd vhci_hcd.0: ClearPortFeature: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  554.346684][T14924] netlink: 'syz.2.1874': attribute type 4 has an invalid length.
[  554.362046][T14924] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1874'.
[  554.363331][T14912] random: crng reseeded on system resumption
[  558.241305][T14974] random: crng reseeded on system resumption
[  560.969400][T15026] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1892'.
[  560.991214][T15026] macvlan0: entered promiscuous mode
[  561.007566][T15026] macvlan0: entered allmulticast mode
[  561.165429][T15026] veth1_vlan: entered allmulticast mode
[  562.869252][ T1315] ieee802154 phy0 wpan0: encryption failed: -22
[  562.877363][ T1315] ieee802154 phy1 wpan1: encryption failed: -22
[  565.865056][T15111] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  570.719970][T15188] vhci_hcd vhci_hcd.0: ClearPortFeature: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  570.778550][T15188] netlink: 'syz.1.1922': attribute type 4 has an invalid length.
[  570.797487][T15188] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1922'.
[  574.043072][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  574.894310][T15247] random: crng reseeded on system resumption
[  576.754483][T15288] sd 0:0:1:0: PR command failed: 1026
[  576.805899][T15288] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  576.865841][T15288] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  579.969611][    T0] NOHZ tick-stop error: local softirq work is pending, handler #8a!!!
[  580.940323][T15357] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input14
[  582.984586][T15383] FAULT_INJECTION: forcing a failure.
[  582.984586][T15383] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  582.984632][T15383] CPU: 0 UID: 0 PID: 15383 Comm: syz.2.1957 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  582.984671][T15383] Tainted: [L]=SOFTLOCKUP
[  582.984681][T15383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  582.984697][T15383] Call Trace:
[  582.984706][T15383]  <TASK>
[  582.984715][T15383]  dump_stack_lvl+0x100/0x190
[  582.984750][T15383]  should_fail_ex.cold+0x5/0xa
[  582.984785][T15383]  _copy_from_user+0x2e/0xd0
[  582.984837][T15383]  io_uring_setup+0xc0/0x160
[  582.984868][T15383]  ? ksys_write+0x190/0x250
[  582.984903][T15383]  ? __pfx_io_uring_setup+0x10/0x10
[  582.984935][T15383]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  582.984971][T15383]  ? kernel_write+0x623/0x6c0
[  582.985002][T15383]  ? __fget_files+0x215/0x3d0
[  582.985035][T15383]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  582.985086][T15383]  ? fput+0x79/0x100
[  582.985123][T15383]  ? ksys_write+0x1ac/0x250
[  582.985153][T15383]  ? __pfx_ksys_write+0x10/0x10
[  582.985190][T15383]  __x64_sys_io_uring_setup+0xc2/0x170
[  582.985224][T15383]  do_syscall_64+0x10b/0xf80
[  582.985258][T15383]  ? clear_bhb_loop+0x40/0x90
[  582.985291][T15383]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.985319][T15383] RIP: 0033:0x7fb5bcb9cdd9
[  582.985341][T15383] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  582.985368][T15383] RSP: 002b:00007fb5bdac5028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  582.985397][T15383] RAX: ffffffffffffffda RBX: 00007fb5bce15fa0 RCX: 00007fb5bcb9cdd9
[  582.985416][T15383] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  582.985432][T15383] RBP: 00007fb5bdac5090 R08: 0000000000000000 R09: 0000000000000000
[  582.985448][T15383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  582.985463][T15383] R13: 00007fb5bce16038 R14: 00007fb5bce15fa0 R15: 00007ffebbc37478
[  582.985504][T15383]  </TASK>
[  589.748367][T15551] FAULT_INJECTION: forcing a failure.
[  589.748367][T15551] name failslab, interval 1, probability 0, space 0, times 0
[  589.787480][T15551] CPU: 1 UID: 0 PID: 15551 Comm: syz.2.1986 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  589.787524][T15551] Tainted: [L]=SOFTLOCKUP
[  589.787535][T15551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  589.787551][T15551] Call Trace:
[  589.787560][T15551]  <TASK>
[  589.787570][T15551]  dump_stack_lvl+0x100/0x190
[  589.787605][T15551]  should_fail_ex.cold+0x5/0xa
[  589.787640][T15551]  ? tomoyo_encode2+0xfb/0x3c0
[  589.787672][T15551]  should_failslab+0xc2/0x120
[  589.787710][T15551]  __kmalloc_noprof+0xe0/0x850
[  589.787753][T15551]  ? d_absolute_path+0x136/0x1b0
[  589.787787][T15551]  tomoyo_encode2+0xfb/0x3c0
[  589.787826][T15551]  tomoyo_encode+0x29/0x50
[  589.787858][T15551]  tomoyo_realpath_from_path+0x18c/0x690
[  589.787902][T15551]  tomoyo_path_number_perm+0x23c/0x580
[  589.787934][T15551]  ? tomoyo_path_number_perm+0x22e/0x580
[  589.787965][T15551]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  589.788032][T15551]  ? find_held_lock+0x2b/0x80
[  589.788068][T15551]  ? __fget_files+0x215/0x3d0
[  589.788098][T15551]  ? hook_file_ioctl_common+0x149/0x410
[  589.788126][T15551]  ? __fget_files+0x215/0x3d0
[  589.788165][T15551]  ? __fget_files+0x21f/0x3d0
[  589.788204][T15551]  security_file_ioctl+0xd3/0x230
[  589.788234][T15551]  __x64_sys_ioctl+0xb7/0x210
[  589.788265][T15551]  do_syscall_64+0x10b/0xf80
[  589.788301][T15551]  ? clear_bhb_loop+0x40/0x90
[  589.788335][T15551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  589.788363][T15551] RIP: 0033:0x7fb5bcb9cdd9
[  589.788386][T15551] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  589.788412][T15551] RSP: 002b:00007fb5bdac5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  589.788438][T15551] RAX: ffffffffffffffda RBX: 00007fb5bce15fa0 RCX: 00007fb5bcb9cdd9
[  589.788457][T15551] RDX: 0000000000000006 RSI: 00000000c0485619 RDI: 0000000000000008
[  589.788474][T15551] RBP: 00007fb5bdac5090 R08: 0000000000000000 R09: 0000000000000000
[  589.788491][T15551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  589.788511][T15551] R13: 00007fb5bce16038 R14: 00007fb5bce15fa0 R15: 00007ffebbc37478
[  589.788549][T15551]  </TASK>
[  589.791618][T15551] ERROR: Out of memory at tomoyo_realpath_from_path.
[  590.460259][T15564] random: crng reseeded on system resumption
[  591.450633][T15593] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1996'.
[  591.907780][   T29] audit: type=1107 audit(1843104597.820:7): pid=15599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  592.307503][T15622] random: crng reseeded on system resumption
[  593.809369][T15654] FAULT_INJECTION: forcing a failure.
[  593.809369][T15654] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  593.843541][T15654] CPU: 1 UID: 0 PID: 15654 Comm: syz.3.2009 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  593.843582][T15654] Tainted: [L]=SOFTLOCKUP
[  593.843591][T15654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  593.843606][T15654] Call Trace:
[  593.843615][T15654]  <TASK>
[  593.843625][T15654]  dump_stack_lvl+0x100/0x190
[  593.843657][T15654]  should_fail_ex.cold+0x5/0xa
[  593.843685][T15654]  ? prepare_alloc_pages+0x16d/0x5f0
[  593.843722][T15654]  should_fail_alloc_page+0xeb/0x140
[  593.843754][T15654]  prepare_alloc_pages+0x1f0/0x5f0
[  593.843795][T15654]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  593.843839][T15654]  ? find_held_lock+0x1/0x80
[  593.843871][T15654]  ? clockevents_program_event+0x23e/0x820
[  593.843902][T15654]  ? clockevents_program_event+0x23e/0x820
[  593.843941][T15654]  ? ktime_get+0x9f/0x320
[  593.843980][T15654]  ? ktime_get+0x1a4/0x320
[  593.844023][T15654]  ? lapic_next_event+0x10/0x20
[  593.844053][T15654]  ? clockevents_program_event+0x1ef/0x820
[  593.844086][T15654]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  593.844139][T15654]  ? __lock_acquire+0x4a5/0x2630
[  593.844165][T15654]  ? __lock_acquire+0x4a5/0x2630
[  593.844188][T15654]  ? css_rstat_updated+0x1ce/0x5a0
[  593.844243][T15654]  ? lock_acquire+0x1b1/0x370
[  593.844268][T15654]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  593.844311][T15654]  ? policy_nodemask+0xed/0x4f0
[  593.844346][T15654]  alloc_pages_mpol+0x1fb/0x540
[  593.844380][T15654]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  593.844416][T15654]  ? __lock_acquire+0x4a5/0x2630
[  593.844450][T15654]  folio_alloc_mpol_noprof+0x36/0x260
[  593.844487][T15654]  vma_alloc_folio_noprof+0xed/0x1d0
[  593.844521][T15654]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  593.844568][T15654]  do_anonymous_page+0xb46/0x2050
[  593.844609][T15654]  ? rcu_read_unlock+0x2d/0xb0
[  593.844653][T15654]  __handle_mm_fault+0x1d2c/0x2a00
[  593.844697][T15654]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  593.844731][T15654]  ? __pfx___handle_mm_fault+0x10/0x10
[  593.844775][T15654]  ? pte_offset_map_lock+0x174/0x320
[  593.844805][T15654]  ? find_held_lock+0x2b/0x80
[  593.844846][T15654]  ? follow_page_pte+0x4d0/0x13f0
[  593.844882][T15654]  handle_mm_fault+0x36d/0xa20
[  593.844924][T15654]  __get_user_pages+0x1178/0x32a0
[  593.844971][T15654]  ? __pfx___get_user_pages+0x10/0x10
[  593.845013][T15654]  populate_vma_page_range+0x267/0x3f0
[  593.845050][T15654]  ? __pfx_populate_vma_page_range+0x10/0x10
[  593.845084][T15654]  ? __pfx_find_vma_intersection+0x10/0x10
[  593.845117][T15654]  ? do_mmap+0x93f/0x12f0
[  593.845153][T15654]  __mm_populate+0x107/0x3a0
[  593.845188][T15654]  ? __pfx___mm_populate+0x10/0x10
[  593.845226][T15654]  ? up_write+0x28c/0x4f0
[  593.845259][T15654]  vm_mmap_pgoff+0x37f/0x470
[  593.845298][T15654]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  593.845332][T15654]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  593.845372][T15654]  ? __fget_files+0x215/0x3d0
[  593.845406][T15654]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  593.845456][T15654]  ksys_mmap_pgoff+0xe4/0x610
[  593.845492][T15654]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  593.845521][T15654]  ? fput+0x79/0x100
[  593.845556][T15654]  ? ksys_write+0x1ac/0x250
[  593.845586][T15654]  ? __pfx_ksys_write+0x10/0x10
[  593.845620][T15654]  __x64_sys_mmap+0x125/0x190
[  593.845653][T15654]  do_syscall_64+0x10b/0xf80
[  593.845688][T15654]  ? clear_bhb_loop+0x40/0x90
[  593.845721][T15654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.845749][T15654] RIP: 0033:0x7f919fb9cdd9
[  593.845772][T15654] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  593.845797][T15654] RSP: 002b:00007f91a0996028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  593.845824][T15654] RAX: ffffffffffffffda RBX: 00007f919fe15fa0 RCX: 00007f919fb9cdd9
[  593.845842][T15654] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  593.845859][T15654] RBP: 00007f91a0996090 R08: 0000000000000002 R09: 0000000000008000
[  593.845875][T15654] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002
[  593.845892][T15654] R13: 00007f919fe16038 R14: 00007f919fe15fa0 R15: 00007ffeaad5a308
[  593.845929][T15654]  </TASK>
[  595.019770][T15671] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2010'.
[  598.397528][T15758] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2026'.
[  600.260295][T15800] FAULT_INJECTION: forcing a failure.
[  600.260295][T15800] name failslab, interval 1, probability 0, space 0, times 0
[  600.313336][T15800] CPU: 0 UID: 0 PID: 15800 Comm: syz.2.2035 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  600.313381][T15800] Tainted: [L]=SOFTLOCKUP
[  600.313391][T15800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  600.313408][T15800] Call Trace:
[  600.313417][T15800]  <TASK>
[  600.313427][T15800]  dump_stack_lvl+0x100/0x190
[  600.313463][T15800]  should_fail_ex.cold+0x5/0xa
[  600.313497][T15800]  should_failslab+0xc2/0x120
[  600.313529][T15800]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  600.313567][T15800]  ? skb_clone+0x190/0x400
[  600.313601][T15800]  skb_clone+0x190/0x400
[  600.313637][T15800]  netlink_deliver_tap+0xaed/0xcc0
[  600.313678][T15800]  netlink_unicast+0x62b/0x850
[  600.313719][T15800]  ? __pfx_netlink_unicast+0x10/0x10
[  600.313766][T15800]  netlink_sendmsg+0x8b0/0xda0
[  600.313808][T15800]  ? __pfx_netlink_sendmsg+0x10/0x10
[  600.313843][T15800]  ? __import_iovec+0x1d2/0x640
[  600.313874][T15800]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  600.313921][T15800]  ____sys_sendmsg+0x9e1/0xb70
[  600.313955][T15800]  ? __pfx_netlink_sendmsg+0x10/0x10
[  600.313996][T15800]  ? __pfx_____sys_sendmsg+0x10/0x10
[  600.314047][T15800]  ___sys_sendmsg+0x190/0x1e0
[  600.314089][T15800]  ? __pfx____sys_sendmsg+0x10/0x10
[  600.314169][T15800]  __sys_sendmsg+0x170/0x220
[  600.314200][T15800]  ? __pfx___sys_sendmsg+0x10/0x10
[  600.314245][T15800]  ? rcu_is_watching+0x12/0xc0
[  600.314284][T15800]  do_syscall_64+0x10b/0xf80
[  600.314319][T15800]  ? clear_bhb_loop+0x40/0x90
[  600.314352][T15800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.314380][T15800] RIP: 0033:0x7fb5bcb9cdd9
[  600.314403][T15800] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  600.314431][T15800] RSP: 002b:00007fb5bdac5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  600.314457][T15800] RAX: ffffffffffffffda RBX: 00007fb5bce15fa0 RCX: 00007fb5bcb9cdd9
[  600.314477][T15800] RDX: 0000000020008004 RSI: 0000200000002ac0 RDI: 0000000000000003
[  600.314494][T15800] RBP: 00007fb5bdac5090 R08: 0000000000000000 R09: 0000000000000000
[  600.314512][T15800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  600.314528][T15800] R13: 00007fb5bce16038 R14: 00007fb5bce15fa0 R15: 00007ffebbc37478
[  600.314569][T15800]  </TASK>
[  600.318018][T15800] netlink: 'syz.2.2035': attribute type 4 has an invalid length.
[  601.256785][T15823] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2041'.
[  602.141482][T15834] random: crng reseeded on system resumption
[  604.421595][T15902] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2054'.
[  604.610745][T15904] netlink: 'syz.2.2055': attribute type 4 has an invalid length.
[  605.300027][T15920] random: crng reseeded on system resumption
[  606.799317][T15952] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input15
[  607.150029][T15959] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2068'.
[  609.953780][T16032] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2080'.
[  614.917701][T16136] random: crng reseeded on system resumption
[  616.051178][T16167] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2105'.
[  617.163662][T16194] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2110'.
[  617.483474][T16200] random: crng reseeded on system resumption
[  619.405535][T16233] can: request_module (can-proto-0) failed.
[  619.880693][T16253] random: crng reseeded on system resumption
[  621.230855][T16282] random: crng reseeded on system resumption
[  623.001219][   T29] audit: type=1804 audit(1843104540.770:8): pid=16307 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2132" name="/newroot/528/file0" dev="tmpfs" ino=2746 res=1 errno=0
[  623.055375][T15859] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  623.699402][T16344] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2139'.
[  623.768072][T16338] netlink: 62 bytes leftover after parsing attributes in process `syz.3.2136'.
[  624.014617][T16346] netlink: 354 bytes leftover after parsing attributes in process `syz.1.2140'.
[  624.307651][ T1315] ieee802154 phy0 wpan0: encryption failed: -22
[  624.314604][ T1315] ieee802154 phy1 wpan1: encryption failed: -22
[  626.655825][T16413] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2152'.
[  629.456220][T16476] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2163'.
[  631.856157][T16522] can: request_module (can-proto-0) failed.
[  631.978702][T16526] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2171'.
[  633.116760][T16543] syz.0.2176 (16543): attempted to duplicate a private mapping with mremap.  This is not supported.
[  633.969532][T16576] __vm_enough_memory: pid: 16576, comm: syz.1.2183, bytes: 4398046457856 not enough memory for the allocation
[  634.378821][T16580] ubi0: attaching mtd0
[  634.532600][T16580] ubi0: scanning is finished
[  634.574146][T16580] ubi0: empty MTD device detected
[  635.077041][T16580] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  635.133191][T16580] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  635.240807][T16580] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  635.312200][T16580] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  635.354689][T16580] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  635.420551][T16580] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  635.473222][T16580] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1635344813
[  635.488276][T16607] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2190'.
[  635.542221][T16580] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  635.597876][T16596] ubi0: background thread "ubi_bgt0d" started, PID 16596
[  635.849688][T16615] netlink: 'syz.3.2192': attribute type 11 has an invalid length.
[  636.168485][T16621] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  639.499020][T16681] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2203'.
[  640.048787][T16687] can: request_module (can-proto-0) failed.
[  641.608380][T16709] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2209'.
[  642.150143][T16721] FAULT_INJECTION: forcing a failure.
[  642.150143][T16721] name failslab, interval 1, probability 0, space 0, times 0
[  642.176558][T16721] CPU: 0 UID: 0 PID: 16721 Comm: syz.1.2213 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  642.176604][T16721] Tainted: [L]=SOFTLOCKUP
[  642.176614][T16721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  642.176632][T16721] Call Trace:
[  642.176641][T16721]  <TASK>
[  642.176651][T16721]  dump_stack_lvl+0x100/0x190
[  642.176690][T16721]  should_fail_ex.cold+0x5/0xa
[  642.176728][T16721]  should_failslab+0xc2/0x120
[  642.176763][T16721]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  642.176808][T16721]  ? skb_clone+0x190/0x400
[  642.176844][T16721]  skb_clone+0x190/0x400
[  642.176876][T16721]  netlink_deliver_tap+0xaed/0xcc0
[  642.176921][T16721]  netlink_unicast+0x62b/0x850
[  642.176965][T16721]  ? __pfx_netlink_unicast+0x10/0x10
[  642.177015][T16721]  netlink_sendmsg+0x8b0/0xda0
[  642.177057][T16721]  ? __pfx_netlink_sendmsg+0x10/0x10
[  642.177095][T16721]  ? __import_iovec+0x1d2/0x640
[  642.177141][T16721]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  642.177193][T16721]  ____sys_sendmsg+0x9e1/0xb70
[  642.177237][T16721]  ? __pfx_netlink_sendmsg+0x10/0x10
[  642.177281][T16721]  ? __pfx_____sys_sendmsg+0x10/0x10
[  642.177334][T16721]  ? __pfx_futex_wake_mark+0x10/0x10
[  642.177379][T16721]  ___sys_sendmsg+0x190/0x1e0
[  642.177422][T16721]  ? __pfx____sys_sendmsg+0x10/0x10
[  642.177506][T16721]  __sys_sendmsg+0x170/0x220
[  642.177538][T16721]  ? __pfx___sys_sendmsg+0x10/0x10
[  642.177567][T16721]  ? __x64_sys_futex+0x34f/0x4d0
[  642.177613][T16721]  ? rcu_is_watching+0x12/0xc0
[  642.177652][T16721]  do_syscall_64+0x10b/0xf80
[  642.177688][T16721]  ? clear_bhb_loop+0x40/0x90
[  642.177723][T16721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  642.177752][T16721] RIP: 0033:0x7f0ef9d9cdd9
[  642.177775][T16721] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  642.177803][T16721] RSP: 002b:00007f0efad15028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  642.177834][T16721] RAX: ffffffffffffffda RBX: 00007f0efa015fa0 RCX: 00007f0ef9d9cdd9
[  642.177855][T16721] RDX: 0000000020000000 RSI: 00002000000008c0 RDI: 000000000000000a
[  642.177873][T16721] RBP: 00007f0ef9e32d69 R08: 0000000000000000 R09: 0000000000000000
[  642.177892][T16721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  642.177910][T16721] R13: 00007f0efa016038 R14: 00007f0efa015fa0 R15: 00007ffeb5940ca8
[  642.177949][T16721]  </TASK>
[  642.798251][T16741] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2216'.
[  643.517227][T16752] can: request_module (can-proto-0) failed.
[  644.353473][T16772] can: request_module (can-proto-0) failed.
[  645.038042][T16789] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2230'.
[  646.979839][T16813] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2236'.
[  647.733380][T16839] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2242'.
[  647.787029][T16831] FAULT_INJECTION: forcing a failure.
[  647.787029][T16831] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  647.801947][T16831] CPU: 1 UID: 0 PID: 16831 Comm: syz.3.2240 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  647.801992][T16831] Tainted: [L]=SOFTLOCKUP
[  647.802002][T16831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  647.802020][T16831] Call Trace:
[  647.802029][T16831]  <TASK>
[  647.802040][T16831]  dump_stack_lvl+0x100/0x190
[  647.802079][T16831]  should_fail_ex.cold+0x5/0xa
[  647.802114][T16831]  _copy_from_user+0x2e/0xd0
[  647.802159][T16831]  snd_seq_oss_write+0x395/0x800
[  647.802210][T16831]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  647.802261][T16831]  ? apparmor_file_permission+0x13f/0x1c0
[  647.802291][T16831]  ? bpf_lsm_file_permission+0x9/0x10
[  647.802325][T16831]  odev_write+0x51/0xa0
[  647.802362][T16831]  vfs_write+0x2aa/0x1070
[  647.802396][T16831]  ? __pfx_odev_write+0x10/0x10
[  647.802435][T16831]  ? __pfx_vfs_write+0x10/0x10
[  647.802465][T16831]  ? find_held_lock+0x2b/0x80
[  647.802499][T16831]  ? __fget_files+0x215/0x3d0
[  647.802529][T16831]  ? __fget_files+0x215/0x3d0
[  647.802563][T16831]  ? __fget_files+0x21f/0x3d0
[  647.802605][T16831]  ksys_write+0x12a/0x250
[  647.802635][T16831]  ? __pfx_ksys_write+0x10/0x10
[  647.802669][T16831]  ? rcu_is_watching+0x12/0xc0
[  647.802706][T16831]  do_syscall_64+0x10b/0xf80
[  647.802742][T16831]  ? clear_bhb_loop+0x40/0x90
[  647.802776][T16831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  647.802811][T16831] RIP: 0033:0x7f919fb9cdd9
[  647.802834][T16831] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  647.802862][T16831] RSP: 002b:00007f91a0996028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  647.802888][T16831] RAX: ffffffffffffffda RBX: 00007f919fe15fa0 RCX: 00007f919fb9cdd9
[  647.802906][T16831] RDX: 000000000000a3d9 RSI: 0000000000000000 RDI: 000000000000000a
[  647.802923][T16831] RBP: 00007f919fc32d69 R08: 0000000000000000 R09: 0000000000000000
[  647.802939][T16831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  647.802955][T16831] R13: 00007f919fe16038 R14: 00007f919fe15fa0 R15: 00007ffeaad5a308
[  647.802991][T16831]  </TASK>
[  648.141735][T16838] random: crng reseeded on system resumption
[  649.040593][T16857] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2246'.
[  649.190246][T16862] FAULT_INJECTION: forcing a failure.
[  649.190246][T16862] name failslab, interval 1, probability 0, space 0, times 0
[  649.243207][T16862] CPU: 1 UID: 0 PID: 16862 Comm: syz.3.2248 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  649.243253][T16862] Tainted: [L]=SOFTLOCKUP
[  649.243263][T16862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  649.243278][T16862] Call Trace:
[  649.243287][T16862]  <TASK>
[  649.243297][T16862]  dump_stack_lvl+0x100/0x190
[  649.243332][T16862]  should_fail_ex.cold+0x5/0xa
[  649.243366][T16862]  ? tomoyo_realpath_from_path+0xb6/0x690
[  649.243408][T16862]  should_failslab+0xc2/0x120
[  649.243438][T16862]  __kmalloc_noprof+0xe0/0x850
[  649.243479][T16862]  ? kfree+0x1dd/0x6c0
[  649.243521][T16862]  tomoyo_realpath_from_path+0xb6/0x690
[  649.243562][T16862]  tomoyo_path_number_perm+0x23c/0x580
[  649.243589][T16862]  ? tomoyo_path_number_perm+0x22e/0x580
[  649.243620][T16862]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  649.243684][T16862]  ? find_held_lock+0x2b/0x80
[  649.243718][T16862]  ? __fget_files+0x215/0x3d0
[  649.243748][T16862]  ? hook_file_ioctl_common+0x149/0x410
[  649.243776][T16862]  ? __fget_files+0x215/0x3d0
[  649.243811][T16862]  ? __fget_files+0x21f/0x3d0
[  649.243848][T16862]  security_file_ioctl+0xd3/0x230
[  649.243879][T16862]  __x64_sys_ioctl+0xb7/0x210
[  649.243909][T16862]  do_syscall_64+0x10b/0xf80
[  649.243942][T16862]  ? clear_bhb_loop+0x40/0x90
[  649.243976][T16862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  649.244005][T16862] RIP: 0033:0x7f919fb9cdd9
[  649.244027][T16862] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  649.244051][T16862] RSP: 002b:00007f91a0996028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  649.244077][T16862] RAX: ffffffffffffffda RBX: 00007f919fe15fa0 RCX: 00007f919fb9cdd9
[  649.244096][T16862] RDX: 0000000000000000 RSI: 00000000000007a7 RDI: 0000000000000003
[  649.244112][T16862] RBP: 00007f91a0996090 R08: 0000000000000000 R09: 0000000000000000
[  649.244129][T16862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  649.244145][T16862] R13: 00007f919fe16038 R14: 00007f919fe15fa0 R15: 00007ffeaad5a308
[  649.244181][T16862]  </TASK>
[  649.248978][T16862] ERROR: Out of memory at tomoyo_realpath_from_path.
[  650.271793][T16888] ovs_: entered promiscuous mode
[  650.399034][T16896] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2254'.
[  651.352695][T16920] program syz.1.2263 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  652.056314][T16938] FAULT_INJECTION: forcing a failure.
[  652.056314][T16938] name failslab, interval 1, probability 0, space 0, times 0
[  652.090554][T16938] CPU: 1 UID: 0 PID: 16938 Comm: syz.0.2268 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  652.090596][T16938] Tainted: [L]=SOFTLOCKUP
[  652.090605][T16938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  652.090621][T16938] Call Trace:
[  652.090628][T16938]  <TASK>
[  652.090633][T16938]  dump_stack_lvl+0x100/0x190
[  652.090654][T16938]  should_fail_ex.cold+0x5/0xa
[  652.090673][T16938]  ? tomoyo_realpath_from_path+0xb6/0x690
[  652.090692][T16938]  should_failslab+0xc2/0x120
[  652.090710][T16938]  __kmalloc_noprof+0xe0/0x850
[  652.090732][T16938]  ? kfree+0x1dd/0x6c0
[  652.090754][T16938]  tomoyo_realpath_from_path+0xb6/0x690
[  652.090777][T16938]  tomoyo_path_number_perm+0x23c/0x580
[  652.090792][T16938]  ? tomoyo_path_number_perm+0x22e/0x580
[  652.090808][T16938]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  652.090841][T16938]  ? find_held_lock+0x2b/0x80
[  652.090860][T16938]  ? __fget_files+0x215/0x3d0
[  652.090876][T16938]  ? hook_file_ioctl_common+0x149/0x410
[  652.090891][T16938]  ? __fget_files+0x215/0x3d0
[  652.090910][T16938]  ? __fget_files+0x21f/0x3d0
[  652.090930][T16938]  security_file_ioctl+0xd3/0x230
[  652.090946][T16938]  __x64_sys_ioctl+0xb7/0x210
[  652.090962][T16938]  do_syscall_64+0x10b/0xf80
[  652.090981][T16938]  ? clear_bhb_loop+0x40/0x90
[  652.091011][T16938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  652.091027][T16938] RIP: 0033:0x7fb68799cdd9
[  652.091040][T16938] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  652.091059][T16938] RSP: 002b:00007fb6888bb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  652.091074][T16938] RAX: ffffffffffffffda RBX: 00007fb687c15fa0 RCX: 00007fb68799cdd9
[  652.091083][T16938] RDX: 0000000000000038 RSI: 0000000040505331 RDI: 0000000000000004
[  652.091093][T16938] RBP: 00007fb6888bb090 R08: 0000000000000000 R09: 0000000000000000
[  652.091102][T16938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  652.091111][T16938] R13: 00007fb687c16038 R14: 00007fb687c15fa0 R15: 00007ffee717e778
[  652.091130][T16938]  </TASK>
[  652.091136][T16938] ERROR: Out of memory at tomoyo_realpath_from_path.
[  652.636049][T16946] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2270'.
[  653.709102][T16974] ubi: mtd0 is already attached to ubi0
[  654.849879][T16997] can: request_module (can-proto-0) failed.
[  655.042578][T17006] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2283'.
[  656.423991][T17039] can: request_module (can-proto-0) failed.
[  656.901065][T17054] FAULT_INJECTION: forcing a failure.
[  656.901065][T17054] name failslab, interval 1, probability 0, space 0, times 0
[  656.913836][T17054] CPU: 1 UID: 0 PID: 17054 Comm: syz.1.2293 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  656.913879][T17054] Tainted: [L]=SOFTLOCKUP
[  656.913888][T17054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  656.913904][T17054] Call Trace:
[  656.913913][T17054]  <TASK>
[  656.913924][T17054]  dump_stack_lvl+0x100/0x190
[  656.913959][T17054]  should_fail_ex.cold+0x5/0xa
[  656.913995][T17054]  should_failslab+0xc2/0x120
[  656.914027][T17054]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  656.914070][T17054]  ? do_getname+0x35/0x390
[  656.914108][T17054]  ? find_held_lock+0x2b/0x80
[  656.914144][T17054]  ? ksys_write+0x190/0x250
[  656.914180][T17054]  do_getname+0x35/0x390
[  656.914223][T17054]  do_sys_openat2+0xc5/0x1e0
[  656.914265][T17054]  ? __pfx_do_sys_openat2+0x10/0x10
[  656.914304][T17054]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  656.914347][T17054]  ? __fget_files+0x21f/0x3d0
[  656.914384][T17054]  __x64_sys_openat+0x12d/0x210
[  656.914437][T17054]  ? __pfx___x64_sys_openat+0x10/0x10
[  656.914477][T17054]  ? ksys_write+0x1ac/0x250
[  656.914514][T17054]  ? rcu_is_watching+0x12/0xc0
[  656.914552][T17054]  do_syscall_64+0x10b/0xf80
[  656.914586][T17054]  ? clear_bhb_loop+0x40/0x90
[  656.914620][T17054]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.914649][T17054] RIP: 0033:0x7f0ef9d9cdd9
[  656.914671][T17054] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  656.914698][T17054] RSP: 002b:00007f0efacf4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  656.914724][T17054] RAX: ffffffffffffffda RBX: 00007f0efa016090 RCX: 00007f0ef9d9cdd9
[  656.914743][T17054] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  656.914761][T17054] RBP: 00007f0efacf4090 R08: 0000000000000000 R09: 0000000000000000
[  656.914778][T17054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  656.914793][T17054] R13: 00007f0efa016128 R14: 00007f0efa016090 R15: 00007ffeb5940ca8
[  656.914826][T17054]  </TASK>
[  659.949779][T17107] can: request_module (can-proto-0) failed.
[  664.243063][T17205] can: request_module (can-proto-0) failed.
[  664.272600][T17210] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  664.284804][T17210] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  664.296946][T17210] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  664.307361][T17210] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  664.317078][T17210] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  665.535561][T14400] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  665.914174][T14400] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.098765][T14400] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.185286][T14400] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.320380][T14400] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.383221][T17210] Bluetooth: hci4: command tx timeout
[  666.613727][T17209] bridge0: port 1(bridge_slave_0) entered blocking state
[  666.634809][T17209] bridge0: port 1(bridge_slave_0) entered disabled state
[  666.658023][T17209] bridge_slave_0: entered allmulticast mode
[  666.677132][T17209] bridge_slave_0: entered promiscuous mode
[  666.770722][T17209] bridge0: port 2(bridge_slave_1) entered blocking state
[  666.795335][T17209] bridge0: port 2(bridge_slave_1) entered disabled state
[  666.811146][T17209] bridge_slave_1: entered allmulticast mode
[  666.832008][T17209] bridge_slave_1: entered promiscuous mode
[  666.952492][T17209] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  667.039706][T17209] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  667.180096][T17209] team0: Port device team_slave_0 added
[  667.206126][T17209] team0: Port device team_slave_1 added
[  667.321188][T17209] batman_adv: batadv0: Adding interface: batadv_slave_0
[  667.359925][T17209] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  667.449056][T17209] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  667.465204][T17209] batman_adv: batadv0: Adding interface: batadv_slave_1
[  667.482985][T17209] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  667.535786][T17209] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  667.642530][T14400] gretap0: left allmulticast mode
[  667.668814][T14400] bridge0: port 3(gretap0) entered disabled state
[  667.714593][T14400] bridge_slave_1: left allmulticast mode
[  667.730071][T14400] bridge_slave_1: left promiscuous mode
[  667.757947][T14400] bridge0: port 2(bridge_slave_1) entered disabled state
[  667.779320][T14400] bridge_slave_0: left allmulticast mode
[  667.794058][T14400] bridge_slave_0: left promiscuous mode
[  667.806202][T14400] bridge0: port 1(bridge_slave_0) entered disabled state
[  668.469952][T17210] Bluetooth: hci4: command tx timeout
[  668.569744][T14400] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  668.586249][T14400] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  668.604559][T14400] bond0 (unregistering): Released all slaves
[  668.661518][ T5288] 8021q: adding VLAN 0 to HW filter on device eth1
[  668.747083][T17209] hsr_slave_0: entered promiscuous mode
[  668.767741][T17209] hsr_slave_1: entered promiscuous mode
[  668.787281][T17209] debugfs: 'hsr0' already exists in 'hsr'
[  668.800944][T17209] Cannot create hsr debugfs directory
[  670.273980][ T5288] 8021q: adding VLAN 0 to HW filter on device eth2
[  670.553206][T17210] Bluetooth: hci4: command tx timeout
[  671.475127][T17209] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  671.545182][T17209] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  671.615233][T17209] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  671.687782][T17209] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  671.792537][T17209] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  671.849650][T17209] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  671.882158][T17209] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  671.902775][T17209] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  672.563882][T17209] 8021q: adding VLAN 0 to HW filter on device bond0
[  672.626564][T17210] Bluetooth: hci4: command tx timeout
[  672.700916][T17209] 8021q: adding VLAN 0 to HW filter on device team0
[  672.770525][T15860] bridge0: port 1(bridge_slave_0) entered blocking state
[  672.777737][T15860] bridge0: port 1(bridge_slave_0) entered forwarding state
[  672.832497][T15861] bridge0: port 2(bridge_slave_1) entered blocking state
[  672.840335][T15861] bridge0: port 2(bridge_slave_1) entered forwarding state
[  675.238858][T17209] 8021q: adding VLAN 0 to HW filter on device batadv0
[  675.629415][T17209] veth0_vlan: entered promiscuous mode
[  675.722910][T17209] veth1_vlan: entered promiscuous mode
[  675.873474][T17209] veth0_macvtap: entered promiscuous mode
[  675.888725][T17209] veth1_macvtap: entered promiscuous mode
[  675.937546][T17209] batman_adv: batadv0: Interface activated: batadv_slave_0
[  675.978921][T17209] batman_adv: batadv0: Interface activated: batadv_slave_1
[  676.018004][T15860] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  676.041806][T15860] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  676.075163][T15860] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  676.086401][T15860] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  676.442171][T14390] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  676.485885][T14390] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  676.682830][T15859] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  676.717272][T15859] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  677.811522][T17486] bridge0: port 3(gretap0) entered blocking state
[  677.818329][T17486] bridge0: port 3(gretap0) entered disabled state
[  677.885475][T17486] gretap0: entered allmulticast mode
[  677.928174][T17486] gretap0: entered promiscuous mode
[  677.964463][T17486] bridge0: port 3(gretap0) entered blocking state
[  677.971012][T17486] bridge0: port 3(gretap0) entered forwarding state
[  680.062262][T17525] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2359'.
[  681.499534][T14400] hsr_slave_0: left promiscuous mode
[  681.511043][T14400] hsr_slave_1: left promiscuous mode
[  681.517525][T14400] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  681.528287][T14400] batman_adv: batadv0: Removing interface: batadv_slave_0
[  681.544683][T14400] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  681.552394][T14400] batman_adv: batadv0: Removing interface: batadv_slave_1
[  681.595804][T14400] veth1_macvtap: left promiscuous mode
[  681.602268][T14400] veth0_macvtap: left promiscuous mode
[  681.608586][T14400] veth1_vlan: left promiscuous mode
[  681.614313][T14400] veth0_vlan: left promiscuous mode
[  682.350426][T14400] team0 (unregistering): Port device team_slave_1 removed
[  682.391731][T14400] team0 (unregistering): Port device team_slave_0 removed
[  683.017842][T17587] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2372'.
[  684.220841][T14576] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  684.241633][T14576] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  684.251688][T14576] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  684.267548][T14576] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  684.276322][T14576] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  684.847398][T17622] random: crng reseeded on system resumption
[  685.201208][T15859] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  685.519677][T17638] can: request_module (can-proto-0) failed.
[  685.595665][T15859] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  685.745325][ T1315] ieee802154 phy0 wpan0: encryption failed: -22
[  685.752243][ T1315] ieee802154 phy1 wpan1: encryption failed: -22
[  685.839926][T15859] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  686.040343][T15859] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  686.386534][T17210] Bluetooth: hci2: command tx timeout
[  686.530671][T15859] gretap0: left allmulticast mode
[  686.540882][T15859] bridge0: port 3(gretap0) entered disabled state
[  686.557375][T15859] bridge_slave_1: left allmulticast mode
[  686.565730][T15859] bridge_slave_1: left promiscuous mode
[  686.571701][T15859] bridge0: port 2(bridge_slave_1) entered disabled state
[  686.587514][T15859] bridge_slave_0: left allmulticast mode
[  686.593306][T15859] bridge_slave_0: left promiscuous mode
[  686.599520][T15859] bridge0: port 1(bridge_slave_0) entered disabled state
[  686.653258][T17660] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2386'.
[  686.883946][T15859] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  686.896990][T17668] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  686.914464][T15859] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  686.939941][T15859] bond0 (unregistering): Released all slaves
[  687.437879][T17611] bridge0: port 1(bridge_slave_0) entered blocking state
[  687.476704][T17611] bridge0: port 1(bridge_slave_0) entered disabled state
[  687.494147][T17611] bridge_slave_0: entered allmulticast mode
[  687.544328][T17611] bridge_slave_0: entered promiscuous mode
[  687.586663][T17611] bridge0: port 2(bridge_slave_1) entered blocking state
[  687.653919][T17611] bridge0: port 2(bridge_slave_1) entered disabled state
[  687.672571][T17611] bridge_slave_1: entered allmulticast mode
[  687.686271][T17611] bridge_slave_1: entered promiscuous mode
[  687.892083][T17611] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  687.999960][T17611] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  688.172629][T17611] team0: Port device team_slave_0 added
[  688.200457][T17611] team0: Port device team_slave_1 added
[  688.442436][ T5288] 8021q: adding VLAN 0 to HW filter on device eth1
[  688.464914][T17210] Bluetooth: hci2: command tx timeout
[  688.481207][T17611] batman_adv: batadv0: Adding interface: batadv_slave_0
[  688.516700][T17611] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  688.669605][T17611] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  688.760815][T17611] batman_adv: batadv0: Adding interface: batadv_slave_1
[  688.773492][T17611] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  688.834721][T17611] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  689.198059][T17611] hsr_slave_0: entered promiscuous mode
[  689.219927][T17611] hsr_slave_1: entered promiscuous mode
[  689.236855][T17611] debugfs: 'hsr0' already exists in 'hsr'
[  689.257473][T17611] Cannot create hsr debugfs directory
[  689.547518][T17728] can: request_module (can-proto-0) failed.
[  690.159034][ T5288] 8021q: adding VLAN 0 to HW filter on device eth2
[  690.554574][T17210] Bluetooth: hci2: command tx timeout
[  691.400292][T17769] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2399'.
[  691.755745][T17611] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  691.789986][T17611] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  691.835455][T17611] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  691.869185][T17611] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  691.887211][T17611] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  691.942220][T17611] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  691.982143][T17611] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  692.028644][T17611] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  692.626260][T17210] Bluetooth: hci2: command tx timeout
[  692.655574][T17611] 8021q: adding VLAN 0 to HW filter on device bond0
[  692.830201][T17611] 8021q: adding VLAN 0 to HW filter on device team0
[  692.932635][T15865] bridge0: port 1(bridge_slave_0) entered blocking state
[  692.939792][T15865] bridge0: port 1(bridge_slave_0) entered forwarding state
[  693.057924][T15865] bridge0: port 2(bridge_slave_1) entered blocking state
[  693.065078][T15865] bridge0: port 2(bridge_slave_1) entered forwarding state
[  693.285528][T17611] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  693.355677][T17824] can: request_module (can-proto-0) failed.
[  694.361320][T17845] FAULT_INJECTION: forcing a failure.
[  694.361320][T17845] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  694.406923][T17845] CPU: 1 UID: 0 PID: 17845 Comm: syz.0.2409 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  694.406970][T17845] Tainted: [L]=SOFTLOCKUP
[  694.406980][T17845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  694.406998][T17845] Call Trace:
[  694.407007][T17845]  <TASK>
[  694.407018][T17845]  dump_stack_lvl+0x100/0x190
[  694.407054][T17845]  should_fail_ex.cold+0x5/0xa
[  694.407093][T17845]  _copy_from_user+0x2e/0xd0
[  694.407142][T17845]  snd_seq_oss_write+0x395/0x800
[  694.407194][T17845]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  694.407243][T17845]  ? apparmor_file_permission+0x13f/0x1c0
[  694.407273][T17845]  ? bpf_lsm_file_permission+0x9/0x10
[  694.407307][T17845]  odev_write+0x51/0xa0
[  694.407343][T17845]  vfs_write+0x2aa/0x1070
[  694.407379][T17845]  ? __pfx_odev_write+0x10/0x10
[  694.407417][T17845]  ? __pfx_vfs_write+0x10/0x10
[  694.407446][T17845]  ? find_held_lock+0x2b/0x80
[  694.407486][T17845]  ? __fget_files+0x215/0x3d0
[  694.407519][T17845]  ? __fget_files+0x215/0x3d0
[  694.407558][T17845]  ? __fget_files+0x21f/0x3d0
[  694.407599][T17845]  ksys_write+0x12a/0x250
[  694.407631][T17845]  ? __pfx_ksys_write+0x10/0x10
[  694.407666][T17845]  ? rcu_is_watching+0x12/0xc0
[  694.407705][T17845]  do_syscall_64+0x10b/0xf80
[  694.407742][T17845]  ? clear_bhb_loop+0x40/0x90
[  694.407777][T17845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  694.407821][T17845] RIP: 0033:0x7fb68799cdd9
[  694.407844][T17845] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  694.407873][T17845] RSP: 002b:00007fb6888bb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  694.407901][T17845] RAX: ffffffffffffffda RBX: 00007fb687c15fa0 RCX: 00007fb68799cdd9
[  694.407921][T17845] RDX: 000000000000a3d9 RSI: 0000000000000000 RDI: 000000000000000a
[  694.407937][T17845] RBP: 00007fb687a32d69 R08: 0000000000000000 R09: 0000000000000000
[  694.407954][T17845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  694.407970][T17845] R13: 00007fb687c16038 R14: 00007fb687c15fa0 R15: 00007ffee717e778
[  694.408008][T17845]  </TASK>
[  694.889259][T17611] 8021q: adding VLAN 0 to HW filter on device batadv0
[  695.025292][T17611] veth0_vlan: entered promiscuous mode
[  695.050972][T17611] veth1_vlan: entered promiscuous mode
[  695.410851][T17611] veth0_macvtap: entered promiscuous mode
[  695.497052][T17611] veth1_macvtap: entered promiscuous mode
[  695.578901][T17611] batman_adv: batadv0: Interface activated: batadv_slave_0
[  695.702529][T17611] batman_adv: batadv0: Interface activated: batadv_slave_1
[  695.834032][T15865] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  695.862746][T15865] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  695.862816][T15865] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  695.862860][T15865] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  696.377640][T15861] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  696.419017][T15861] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  696.438145][T15859] hsr_slave_0: left promiscuous mode
[  696.459647][T15859] hsr_slave_1: left promiscuous mode
[  696.476489][T15859] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  696.495753][T15859] batman_adv: batadv0: Removing interface: batadv_slave_0
[  696.525869][T15859] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  696.571838][T15859] batman_adv: batadv0: Removing interface: batadv_slave_1
[  696.618722][T15859] veth1_macvtap: left promiscuous mode
[  696.640335][T15859] veth0_macvtap: left promiscuous mode
[  696.664623][T15859] veth1_vlan: left promiscuous mode
[  696.692714][T15859] veth0_vlan: left promiscuous mode
[  696.769243][T17908] can: request_module (can-proto-0) failed.
[  697.279701][T17926] can: request_module (can-proto-0) failed.
[  697.491615][T15859] team0 (unregistering): Port device team_slave_1 removed
[  697.560364][T15859] team0 (unregistering): Port device team_slave_0 removed
[  697.982193][T14390] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  698.010888][T14390] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  700.455027][T14576] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  700.475633][T14576] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  700.497608][T14576] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  700.508805][T14576] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  700.529756][T14576] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  701.129537][T15865] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  701.596705][T15865] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  701.840489][T15865] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  702.007133][T15865] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  702.407588][T18033] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2441'.
[  702.527701][T15865] gretap0: left allmulticast mode
[  702.551106][T15865] bridge0: port 3(gretap0) entered disabled state
[  702.601272][T15865] bridge_slave_1: left allmulticast mode
[  702.621282][T15865] bridge_slave_1: left promiscuous mode
[  702.628207][T14576] Bluetooth: hci3: command tx timeout
[  702.653428][T15865] bridge0: port 2(bridge_slave_1) entered disabled state
[  702.707557][T15865] bridge_slave_0: left allmulticast mode
[  702.729138][T15865] bridge_slave_0: left promiscuous mode
[  702.744538][T15865] bridge0: port 1(bridge_slave_0) entered disabled state
[  703.202621][T15865] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  703.252793][T15865] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  703.299685][T15865] bond0 (unregistering): Released all slaves
[  703.468404][T15865] ovs_: left promiscuous mode
[  703.483082][T18057] can: request_module (can-proto-0) failed.
[  703.640880][T18068] can: request_module (can-proto-0) failed.
[  703.711652][ T5288] 8021q: adding VLAN 0 to HW filter on device eth1
[  704.039896][T17989] bridge0: port 1(bridge_slave_0) entered blocking state
[  704.079566][T17989] bridge0: port 1(bridge_slave_0) entered disabled state
[  704.089561][T17989] bridge_slave_0: entered allmulticast mode
[  704.101071][T17989] bridge_slave_0: entered promiscuous mode
[  704.179794][T17989] bridge0: port 2(bridge_slave_1) entered blocking state
[  704.221303][T17989] bridge0: port 2(bridge_slave_1) entered disabled state
[  704.250034][T17989] bridge_slave_1: entered allmulticast mode
[  704.319824][T17989] bridge_slave_1: entered promiscuous mode
[  704.569427][T17989] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  704.661451][T17989] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  704.703084][T14576] Bluetooth: hci3: command tx timeout
[  704.827096][ T5288] 8021q: adding VLAN 0 to HW filter on device eth2
[  704.856142][T18096] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2446'.
[  704.889914][T17989] team0: Port device team_slave_0 added
[  704.956063][T17989] team0: Port device team_slave_1 added
[  705.105572][T17989] batman_adv: batadv0: Adding interface: batadv_slave_0
[  705.169220][T17989] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  705.195453][T17989] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  705.284334][T17989] batman_adv: batadv0: Adding interface: batadv_slave_1
[  705.304480][T17989] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  705.366515][T17989] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  705.692675][T17989] hsr_slave_0: entered promiscuous mode
[  705.751698][T17989] hsr_slave_1: entered promiscuous mode
[  705.775621][T17989] debugfs: 'hsr0' already exists in 'hsr'
[  705.792426][T17989] Cannot create hsr debugfs directory
[  706.344712][ T5288] 8021q: adding VLAN 0 to HW filter on device eth4
[  706.793053][T14576] Bluetooth: hci3: command tx timeout
[  708.043624][T18159] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2455'.
[  708.072613][T17989] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  708.109211][T17989] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  708.123396][T17989] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  708.186759][T17989] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  708.282278][T17989] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  708.346277][T17989] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  708.355861][T17989] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  708.371827][T17989] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  708.863159][T14576] Bluetooth: hci3: command tx timeout
[  708.980097][T18182] FAULT_INJECTION: forcing a failure.
[  708.980097][T18182] name failslab, interval 1, probability 0, space 0, times 0
[  709.048012][T17989] 8021q: adding VLAN 0 to HW filter on device bond0
[  709.063307][T18182] CPU: 0 UID: 0 PID: 18182 Comm: syz.3.2458 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  709.063330][T18182] Tainted: [L]=SOFTLOCKUP
[  709.063335][T18182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  709.063344][T18182] Call Trace:
[  709.063349][T18182]  <TASK>
[  709.063355][T18182]  dump_stack_lvl+0x100/0x190
[  709.063376][T18182]  should_fail_ex.cold+0x5/0xa
[  709.063395][T18182]  ? kernfs_fop_write_iter+0x26a/0x5f0
[  709.063416][T18182]  should_failslab+0xc2/0x120
[  709.063433][T18182]  __kmalloc_noprof+0xe0/0x850
[  709.063456][T18182]  ? __pfx_aa_file_perm+0x10/0x10
[  709.063478][T18182]  kernfs_fop_write_iter+0x26a/0x5f0
[  709.063502][T18182]  do_iter_readv_writev+0x6ee/0x920
[  709.063519][T18182]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  709.063543][T18182]  vfs_writev+0x360/0xe10
[  709.063559][T18182]  ? trace_contention_end+0x122/0x170
[  709.063578][T18182]  ? __pfx_vfs_writev+0x10/0x10
[  709.063594][T18182]  ? find_held_lock+0x2b/0x80
[  709.063612][T18182]  ? ksys_write+0x190/0x250
[  709.063638][T18182]  ? __fget_files+0x21f/0x3d0
[  709.063660][T18182]  ? do_writev+0x13e/0x340
[  709.063674][T18182]  do_writev+0x13e/0x340
[  709.063690][T18182]  ? __pfx_do_writev+0x10/0x10
[  709.063707][T18182]  ? rcu_is_watching+0x12/0xc0
[  709.063727][T18182]  do_syscall_64+0x10b/0xf80
[  709.063746][T18182]  ? clear_bhb_loop+0x40/0x90
[  709.063764][T18182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  709.063778][T18182] RIP: 0033:0x7f919fb9cdd9
[  709.063791][T18182] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  709.063806][T18182] RSP: 002b:00007f91a0996028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  709.063820][T18182] RAX: ffffffffffffffda RBX: 00007f919fe15fa0 RCX: 00007f919fb9cdd9
[  709.063830][T18182] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003
[  709.063838][T18182] RBP: 00007f91a0996090 R08: 0000000000000000 R09: 0000000000000000
[  709.063847][T18182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  709.063867][T18182] R13: 00007f919fe16038 R14: 00007f919fe15fa0 R15: 00007ffeaad5a308
[  709.063888][T18182]  </TASK>
[  709.524734][T17989] 8021q: adding VLAN 0 to HW filter on device team0
[  709.539787][T14400] bridge0: port 1(bridge_slave_0) entered blocking state
[  709.546897][T14400] bridge0: port 1(bridge_slave_0) entered forwarding state
[  709.561915][T14400] bridge0: port 2(bridge_slave_1) entered blocking state
[  709.569058][T14400] bridge0: port 2(bridge_slave_1) entered forwarding state
[  709.827210][T18220] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2461'.
[  710.661974][T18242] can: request_module (can-proto-0) failed.
[  710.997343][T18259] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2465'.
[  711.152221][T17989] 8021q: adding VLAN 0 to HW filter on device batadv0
[  711.362106][T17989] veth0_vlan: entered promiscuous mode
[  711.389935][T17989] veth1_vlan: entered promiscuous mode
[  711.577411][T17989] veth0_macvtap: entered promiscuous mode
[  711.634118][T17989] veth1_macvtap: entered promiscuous mode
[  711.791220][T17989] batman_adv: batadv0: Interface activated: batadv_slave_0
[  711.904920][T17989] batman_adv: batadv0: Interface activated: batadv_slave_1
[  711.939354][T15860] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  711.960015][T15860] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  711.990646][T15860] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  712.024976][T15860] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  712.434402][T14400] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  712.478131][T18298] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2471'.
[  712.482668][T14400] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  712.670278][T15859] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  712.694785][T15859] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  713.611398][T18329] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  713.736090][T17210] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  713.756937][T17210] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  713.764378][T17210] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  713.767817][T17210] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  713.769862][T17210] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  714.085785][T18351] FAULT_INJECTION: forcing a failure.
[  714.085785][T18351] name failslab, interval 1, probability 0, space 0, times 0
[  714.158383][T18351] CPU: 0 UID: 0 PID: 18351 Comm: syz.1.2481 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  714.158413][T18351] Tainted: [L]=SOFTLOCKUP
[  714.158418][T18351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  714.158427][T18351] Call Trace:
[  714.158433][T18351]  <TASK>
[  714.158439][T18351]  dump_stack_lvl+0x100/0x190
[  714.158460][T18351]  should_fail_ex.cold+0x5/0xa
[  714.158480][T18351]  should_failslab+0xc2/0x120
[  714.158498][T18351]  __kvmalloc_node_noprof+0xfa/0xa00
[  714.158512][T18351]  ? file_tty_write.isra.0+0x64e/0x890
[  714.158540][T18351]  file_tty_write.isra.0+0x64e/0x890
[  714.158561][T18351]  ? security_file_permission+0x76/0x210
[  714.158579][T18351]  ? rw_verify_area+0xce/0x6d0
[  714.158596][T18351]  vfs_write+0x6ac/0x1070
[  714.158613][T18351]  ? __pfx_tty_write+0x10/0x10
[  714.158635][T18351]  ? __pfx_vfs_write+0x10/0x10
[  714.158650][T18351]  ? find_held_lock+0x2b/0x80
[  714.158681][T18351]  ksys_write+0x12a/0x250
[  714.158697][T18351]  ? __pfx_ksys_write+0x10/0x10
[  714.158715][T18351]  ? rcu_is_watching+0x12/0xc0
[  714.158736][T18351]  do_syscall_64+0x10b/0xf80
[  714.158754][T18351]  ? clear_bhb_loop+0x40/0x90
[  714.158773][T18351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  714.158788][T18351] RIP: 0033:0x7f5c6739cdd9
[  714.158800][T18351] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  714.158815][T18351] RSP: 002b:00007f5c682c1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  714.158829][T18351] RAX: ffffffffffffffda RBX: 00007f5c67615fa0 RCX: 00007f5c6739cdd9
[  714.158839][T18351] RDX: 0000000000000e68 RSI: 00002000000009c0 RDI: 0000000000000003
[  714.158848][T18351] RBP: 00007f5c682c1090 R08: 0000000000000000 R09: 0000000000000000
[  714.158857][T18351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  714.158866][T18351] R13: 00007f5c67616038 R14: 00007f5c67615fa0 R15: 00007ffca74ce338
[  714.158885][T18351]  </TASK>
[  714.501686][T18353] can: request_module (can-proto-0) failed.
[  714.650619][T15865] hsr_slave_0: left promiscuous mode
[  714.652418][T15865] hsr_slave_1: left promiscuous mode
[  714.653266][T15865] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  714.653282][T15865] batman_adv: batadv0: Removing interface: batadv_slave_0
[  714.655814][T15865] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  714.655830][T15865] batman_adv: batadv0: Removing interface: batadv_slave_1
[  714.670113][T15865] veth1_macvtap: left promiscuous mode
[  714.670163][T15865] veth0_macvtap: left promiscuous mode
[  714.670258][T15865] veth1_vlan: left allmulticast mode
[  714.671094][T15865] veth1_vlan: left promiscuous mode
[  714.992981][T15865] veth0_vlan: left promiscuous mode
[  715.149746][T18377] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2483'.
[  715.619412][T15865] team0 (unregistering): Port device team_slave_1 removed
[  715.661914][T15865] team0 (unregistering): Port device team_slave_0 removed
[  715.823418][T17210] Bluetooth: hci0: command tx timeout
[  716.410264][T15865] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  716.555314][T15865] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  716.785851][T15865] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  717.037631][T15865] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  717.303501][T18411] FAULT_INJECTION: forcing a failure.
[  717.303501][T18411] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  717.375888][T18411] CPU: 1 UID: 0 PID: 18411 Comm: syz.2.2490 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  717.375933][T18411] Tainted: [L]=SOFTLOCKUP
[  717.375943][T18411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  717.375959][T18411] Call Trace:
[  717.375968][T18411]  <TASK>
[  717.375978][T18411]  dump_stack_lvl+0x100/0x190
[  717.376014][T18411]  should_fail_ex.cold+0x5/0xa
[  717.376050][T18411]  _copy_from_user+0x2e/0xd0
[  717.376101][T18411]  snd_seq_oss_write+0x395/0x800
[  717.376151][T18411]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  717.376198][T18411]  ? apparmor_file_permission+0x13f/0x1c0
[  717.376229][T18411]  ? bpf_lsm_file_permission+0x9/0x10
[  717.376268][T18411]  odev_write+0x51/0xa0
[  717.376307][T18411]  vfs_write+0x2aa/0x1070
[  717.376341][T18411]  ? __pfx_odev_write+0x10/0x10
[  717.376379][T18411]  ? __pfx_vfs_write+0x10/0x10
[  717.376409][T18411]  ? find_held_lock+0x2b/0x80
[  717.376442][T18411]  ? __fget_files+0x215/0x3d0
[  717.376473][T18411]  ? __fget_files+0x215/0x3d0
[  717.376511][T18411]  ? __fget_files+0x21f/0x3d0
[  717.376554][T18411]  ksys_write+0x12a/0x250
[  717.376584][T18411]  ? __pfx_ksys_write+0x10/0x10
[  717.376619][T18411]  ? rcu_is_watching+0x12/0xc0
[  717.376655][T18411]  do_syscall_64+0x10b/0xf80
[  717.376690][T18411]  ? clear_bhb_loop+0x40/0x90
[  717.376725][T18411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  717.376754][T18411] RIP: 0033:0x7ff101b9cdd9
[  717.376778][T18411] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  717.376806][T18411] RSP: 002b:00007ff102a59028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  717.376834][T18411] RAX: ffffffffffffffda RBX: 00007ff101e15fa0 RCX: 00007ff101b9cdd9
[  717.376854][T18411] RDX: 000000000000a3d9 RSI: 0000000000000000 RDI: 000000000000000a
[  717.376873][T18411] RBP: 00007ff101c32d69 R08: 0000000000000000 R09: 0000000000000000
[  717.376891][T18411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  717.376908][T18411] R13: 00007ff101e16038 R14: 00007ff101e15fa0 R15: 00007ffc4e5ae8d8
[  717.376945][T18411]  </TASK>
[  717.652606][T15865] gretap0: left allmulticast mode
[  717.659059][T15865] bridge0: port 3(gretap0) entered disabled state
[  717.688989][T15865] bridge_slave_1: left allmulticast mode
[  717.697871][T15865] bridge_slave_1: left promiscuous mode
[  717.719802][T15865] bridge0: port 2(bridge_slave_1) entered disabled state
[  717.750004][T18424] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  717.785978][T15865] bridge_slave_0: left allmulticast mode
[  717.807898][T15865] bridge_slave_0: left promiscuous mode
[  717.825431][T17210] Bluetooth: hci2: unexpected event 0x09 length: 435 > 3
[  717.840995][T15865] bridge0: port 1(bridge_slave_0) entered disabled state
[  717.932403][T17210] Bluetooth: hci0: command tx timeout
[  718.351314][T15865] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  718.379188][T15865] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  718.428734][T15865] bond0 (unregistering): Released all slaves
[  718.949909][T18336] bridge0: port 1(bridge_slave_0) entered blocking state
[  718.980265][T18336] bridge0: port 1(bridge_slave_0) entered disabled state
[  719.016488][T18336] bridge_slave_0: entered allmulticast mode
[  719.041501][T18336] bridge_slave_0: entered promiscuous mode
[  719.075851][T18336] bridge0: port 2(bridge_slave_1) entered blocking state
[  719.098667][T18336] bridge0: port 2(bridge_slave_1) entered disabled state
[  719.153575][T18336] bridge_slave_1: entered allmulticast mode
[  719.175568][T18336] bridge_slave_1: entered promiscuous mode
[  719.220671][ T5288] 8021q: adding VLAN 0 to HW filter on device eth1
[  719.399880][T18336] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  719.455997][T18336] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  719.584556][T18336] team0: Port device team_slave_0 added
[  719.612645][T18336] team0: Port device team_slave_1 added
[  719.722492][T18336] batman_adv: batadv0: Adding interface: batadv_slave_0
[  719.752382][T18336] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  719.780854][T18336] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  719.847077][T18336] batman_adv: batadv0: Adding interface: batadv_slave_1
[  719.864483][T18336] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  719.893693][T18336] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  719.983970][T17210] Bluetooth: hci0: command tx timeout
[  720.076386][T18336] hsr_slave_0: entered promiscuous mode
[  720.088282][T18336] hsr_slave_1: entered promiscuous mode
[  721.155356][ T5288] 8021q: adding VLAN 0 to HW filter on device eth2
[  722.066757][T17210] Bluetooth: hci0: command tx timeout
[  722.144377][T18336] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  722.188175][T18336] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  722.206600][T18336] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  722.255619][T18336] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  722.292820][T18336] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  722.367820][T18336] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  722.432154][T18336] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  722.488919][T18336] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  723.149421][T18336] 8021q: adding VLAN 0 to HW filter on device bond0
[  723.276683][T18336] 8021q: adding VLAN 0 to HW filter on device team0
[  723.356128][T14400] bridge0: port 1(bridge_slave_0) entered blocking state
[  723.363302][T14400] bridge0: port 1(bridge_slave_0) entered forwarding state
[  723.391675][T14400] bridge0: port 2(bridge_slave_1) entered blocking state
[  723.398855][T14400] bridge0: port 2(bridge_slave_1) entered forwarding state
[  723.662204][T18571] FAULT_INJECTION: forcing a failure.
[  723.662204][T18571] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  723.690547][T18571] CPU: 1 UID: 0 PID: 18571 Comm: syz.1.2514 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  723.690592][T18571] Tainted: [L]=SOFTLOCKUP
[  723.690602][T18571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  723.690619][T18571] Call Trace:
[  723.690628][T18571]  <TASK>
[  723.690638][T18571]  dump_stack_lvl+0x100/0x190
[  723.690676][T18571]  should_fail_ex.cold+0x5/0xa
[  723.690712][T18571]  _copy_from_user+0x2e/0xd0
[  723.690760][T18571]  snd_seq_oss_write+0x395/0x800
[  723.690812][T18571]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  723.690861][T18571]  ? apparmor_file_permission+0x13f/0x1c0
[  723.690893][T18571]  ? bpf_lsm_file_permission+0x9/0x10
[  723.690926][T18571]  odev_write+0x51/0xa0
[  723.690963][T18571]  vfs_write+0x2aa/0x1070
[  723.690996][T18571]  ? __pfx_odev_write+0x10/0x10
[  723.691035][T18571]  ? __pfx_vfs_write+0x10/0x10
[  723.691066][T18571]  ? find_held_lock+0x2b/0x80
[  723.691103][T18571]  ? __fget_files+0x215/0x3d0
[  723.691135][T18571]  ? __fget_files+0x215/0x3d0
[  723.691173][T18571]  ? __fget_files+0x21f/0x3d0
[  723.691216][T18571]  ksys_write+0x12a/0x250
[  723.691247][T18571]  ? __pfx_ksys_write+0x10/0x10
[  723.691279][T18571]  ? trace_irq_enable.constprop.0+0x31/0x160
[  723.691327][T18571]  ? rcu_is_watching+0x12/0xc0
[  723.691365][T18571]  do_syscall_64+0x10b/0xf80
[  723.691403][T18571]  ? clear_bhb_loop+0x40/0x90
[  723.691437][T18571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  723.691467][T18571] RIP: 0033:0x7f5c6739cdd9
[  723.691497][T18571] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  723.691526][T18571] RSP: 002b:00007f5c682c1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  723.691553][T18571] RAX: ffffffffffffffda RBX: 00007f5c67615fa0 RCX: 00007f5c6739cdd9
[  723.691573][T18571] RDX: 000000000000a3d9 RSI: 0000000000000000 RDI: 000000000000000a
[  723.691589][T18571] RBP: 00007f5c67432d69 R08: 0000000000000000 R09: 0000000000000000
[  723.691606][T18571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  723.691622][T18571] R13: 00007f5c67616038 R14: 00007f5c67615fa0 R15: 00007ffca74ce338
[  723.691660][T18571]  </TASK>
[  724.307593][T18578] FAULT_INJECTION: forcing a failure.
[  724.307593][T18578] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  724.356810][T18588] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2517'.
[  724.400155][T18578] CPU: 1 UID: 0 PID: 18578 Comm: syz.2.2516 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  724.400183][T18578] Tainted: [L]=SOFTLOCKUP
[  724.400189][T18578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  724.400198][T18578] Call Trace:
[  724.400204][T18578]  <TASK>
[  724.400211][T18578]  dump_stack_lvl+0x100/0x190
[  724.400232][T18578]  should_fail_ex.cold+0x5/0xa
[  724.400251][T18578]  _copy_from_user+0x2e/0xd0
[  724.400276][T18578]  snd_seq_oss_write+0x395/0x800
[  724.400303][T18578]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  724.400328][T18578]  ? apparmor_file_permission+0x13f/0x1c0
[  724.400344][T18578]  ? bpf_lsm_file_permission+0x9/0x10
[  724.400361][T18578]  odev_write+0x51/0xa0
[  724.400380][T18578]  vfs_write+0x2aa/0x1070
[  724.400404][T18578]  ? __pfx_odev_write+0x10/0x10
[  724.400423][T18578]  ? __pfx_vfs_write+0x10/0x10
[  724.400439][T18578]  ? find_held_lock+0x2b/0x80
[  724.400458][T18578]  ? __fget_files+0x215/0x3d0
[  724.400475][T18578]  ? __fget_files+0x215/0x3d0
[  724.400494][T18578]  ? __fget_files+0x21f/0x3d0
[  724.400515][T18578]  ksys_write+0x12a/0x250
[  724.400531][T18578]  ? __pfx_ksys_write+0x10/0x10
[  724.400549][T18578]  ? rcu_is_watching+0x12/0xc0
[  724.400569][T18578]  do_syscall_64+0x10b/0xf80
[  724.400587][T18578]  ? clear_bhb_loop+0x40/0x90
[  724.400605][T18578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.400622][T18578] RIP: 0033:0x7ff101b9cdd9
[  724.400635][T18578] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  724.400650][T18578] RSP: 002b:00007ff102a59028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  724.400665][T18578] RAX: ffffffffffffffda RBX: 00007ff101e15fa0 RCX: 00007ff101b9cdd9
[  724.400675][T18578] RDX: 000000000000a3d9 RSI: 0000000000000000 RDI: 000000000000000a
[  724.400683][T18578] RBP: 00007ff101c32d69 R08: 0000000000000000 R09: 0000000000000000
[  724.400692][T18578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  724.400701][T18578] R13: 00007ff101e16038 R14: 00007ff101e15fa0 R15: 00007ffc4e5ae8d8
[  724.400721][T18578]  </TASK>
[  725.155570][T18336] 8021q: adding VLAN 0 to HW filter on device batadv0
[  725.359241][T18336] veth0_vlan: entered promiscuous mode
[  725.505953][T18336] veth1_vlan: entered promiscuous mode
[  725.619520][T18336] veth0_macvtap: entered promiscuous mode
[  725.661241][T18336] veth1_macvtap: entered promiscuous mode
[  725.783573][T18336] batman_adv: batadv0: Interface activated: batadv_slave_0
[  725.928198][T18336] batman_adv: batadv0: Interface activated: batadv_slave_1
[  726.041808][T15856] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  726.142216][T15856] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  726.195801][T15865] hsr_slave_0: left promiscuous mode
[  726.212236][T15865] hsr_slave_1: left promiscuous mode
[  726.229214][T15865] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  726.236756][T15865] batman_adv: batadv0: Removing interface: batadv_slave_0
[  726.248030][T15865] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  726.260126][T15865] batman_adv: batadv0: Removing interface: batadv_slave_1
[  726.282833][T15865] veth1_macvtap: left promiscuous mode
[  726.288674][T15865] veth0_macvtap: left promiscuous mode
[  726.296406][T15865] veth1_vlan: left promiscuous mode
[  726.306415][T15865] veth0_vlan: left promiscuous mode
[  726.791473][T15865] team0 (unregistering): Port device team_slave_1 removed
[  726.813584][T15865] team0 (unregistering): Port device team_slave_0 removed
[  726.963799][T15856] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  726.977869][T15856] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  727.243886][T14400] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  727.294405][T14400] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  727.336625][T15860] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  727.359302][T15860] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  727.749281][T18653] FAULT_INJECTION: forcing a failure.
[  727.749281][T18653] name failslab, interval 1, probability 0, space 0, times 0
[  727.786959][T18653] CPU: 0 UID: 0 PID: 18653 Comm: syz.3.2474 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  727.787012][T18653] Tainted: [L]=SOFTLOCKUP
[  727.787022][T18653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  727.787039][T18653] Call Trace:
[  727.787048][T18653]  <TASK>
[  727.787060][T18653]  dump_stack_lvl+0x100/0x190
[  727.787100][T18653]  should_fail_ex.cold+0x5/0xa
[  727.787136][T18653]  ? ops_init+0x77/0x5f0
[  727.787165][T18653]  should_failslab+0xc2/0x120
[  727.787198][T18653]  __kmalloc_noprof+0xe0/0x850
[  727.787250][T18653]  ops_init+0x77/0x5f0
[  727.787286][T18653]  setup_net+0x118/0x3a0
[  727.787318][T18653]  ? __pfx_setup_net+0x10/0x10
[  727.787350][T18653]  ? mutex_init_lockdep+0xf1/0x120
[  727.787387][T18653]  copy_net_ns+0x46f/0x7c0
[  727.787426][T18653]  create_new_namespaces+0x3ea/0xac0
[  727.787472][T18653]  unshare_nsproxy_namespaces+0xf2/0x220
[  727.787514][T18653]  ksys_unshare+0x438/0xab0
[  727.787558][T18653]  ? __pfx_ksys_unshare+0x10/0x10
[  727.787599][T18653]  ? xfd_validate_state+0x129/0x190
[  727.787638][T18653]  __x64_sys_unshare+0x31/0x40
[  727.787678][T18653]  do_syscall_64+0x10b/0xf80
[  727.787724][T18653]  ? clear_bhb_loop+0x40/0x90
[  727.787758][T18653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.787787][T18653] RIP: 0033:0x7ff75df9cdd9
[  727.787811][T18653] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  727.787838][T18653] RSP: 002b:00007ff75c1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  727.787868][T18653] RAX: ffffffffffffffda RBX: 00007ff75e215fa0 RCX: 00007ff75df9cdd9
[  727.787887][T18653] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  727.787904][T18653] RBP: 00007ff75e032d69 R08: 0000000000000000 R09: 0000000000000000
[  727.787921][T18653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  727.787938][T18653] R13: 00007ff75e216038 R14: 00007ff75e215fa0 R15: 00007ffd83eddba8
[  727.787975][T18653]  </TASK>
[  728.091551][T18662] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input18
[  730.360936][T18696] can: request_module (can-proto-0) failed.
[  730.418036][T18692] FAULT_INJECTION: forcing a failure.
[  730.418036][T18692] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  730.477828][T18692] CPU: 0 UID: 0 PID: 18692 Comm: syz.3.2536 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  730.477875][T18692] Tainted: [L]=SOFTLOCKUP
[  730.477886][T18692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  730.477903][T18692] Call Trace:
[  730.477913][T18692]  <TASK>
[  730.477924][T18692]  dump_stack_lvl+0x100/0x190
[  730.477962][T18692]  should_fail_ex.cold+0x5/0xa
[  730.478001][T18692]  _copy_from_user+0x2e/0xd0
[  730.478048][T18692]  snd_seq_oss_write+0x395/0x800
[  730.478101][T18692]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  730.478150][T18692]  ? apparmor_file_permission+0x13f/0x1c0
[  730.478182][T18692]  ? bpf_lsm_file_permission+0x9/0x10
[  730.478216][T18692]  odev_write+0x51/0xa0
[  730.478252][T18692]  vfs_write+0x2aa/0x1070
[  730.478286][T18692]  ? __pfx_odev_write+0x10/0x10
[  730.478325][T18692]  ? __pfx_vfs_write+0x10/0x10
[  730.478355][T18692]  ? find_held_lock+0x2b/0x80
[  730.478390][T18692]  ? __fget_files+0x215/0x3d0
[  730.478423][T18692]  ? __fget_files+0x215/0x3d0
[  730.478462][T18692]  ? __fget_files+0x21f/0x3d0
[  730.478505][T18692]  ksys_write+0x12a/0x250
[  730.478537][T18692]  ? __pfx_ksys_write+0x10/0x10
[  730.478573][T18692]  ? rcu_is_watching+0x12/0xc0
[  730.478612][T18692]  do_syscall_64+0x10b/0xf80
[  730.478655][T18692]  ? clear_bhb_loop+0x40/0x90
[  730.478691][T18692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  730.478721][T18692] RIP: 0033:0x7ff75df9cdd9
[  730.478744][T18692] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  730.478776][T18692] RSP: 002b:00007ff75c1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  730.478804][T18692] RAX: ffffffffffffffda RBX: 00007ff75e215fa0 RCX: 00007ff75df9cdd9
[  730.478824][T18692] RDX: 000000000000a3d9 RSI: 0000000000000000 RDI: 000000000000000a
[  730.478842][T18692] RBP: 00007ff75e032d69 R08: 0000000000000000 R09: 0000000000000000
[  730.478859][T18692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  730.478877][T18692] R13: 00007ff75e216038 R14: 00007ff75e215fa0 R15: 00007ffd83eddba8
[  730.478915][T18692]  </TASK>
[  732.462054][T18725] can: request_module (can-proto-0) failed.
[  732.943541][T18732] netlink: 'syz.3.2546': attribute type 11 has an invalid length.
[  733.482075][T18744] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2548'.
[  733.685789][T18749] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2552'.
[  733.697122][T18749] netlink: 'syz.1.2552': attribute type 1 has an invalid length.
[  733.732038][T18749] netlink: 'syz.1.2552': attribute type 4 has an invalid length.
[  733.759394][T18749] netlink: 'syz.1.2552': attribute type 5 has an invalid length.
[  733.787457][T18749] netlink: 51465 bytes leftover after parsing attributes in process `syz.1.2552'.
[  734.047635][T18756] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2554'.
[  734.273210][T18754] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  734.979820][T18779] FAULT_INJECTION: forcing a failure.
[  734.979820][T18779] name failslab, interval 1, probability 0, space 0, times 0
[  734.994503][T18779] CPU: 0 UID: 0 PID: 18779 Comm: syz.3.2556 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  734.994528][T18779] Tainted: [L]=SOFTLOCKUP
[  734.994534][T18779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  734.994543][T18779] Call Trace:
[  734.994550][T18779]  <TASK>
[  734.994556][T18779]  dump_stack_lvl+0x100/0x190
[  734.994578][T18779]  should_fail_ex.cold+0x5/0xa
[  734.994598][T18779]  should_failslab+0xc2/0x120
[  734.994619][T18779]  __kmalloc_cache_noprof+0x7a/0x6f0
[  734.994640][T18779]  ? init_srcu_struct_fields+0xa69/0xfa0
[  734.994655][T18779]  ? __kasan_kmalloc+0xaa/0xb0
[  734.994669][T18779]  ? lockdep_init_map_type+0x5c/0x250
[  734.994686][T18779]  init_srcu_struct_fields+0xa69/0xfa0
[  734.994703][T18779]  kvm_dev_ioctl+0x593/0x1a50
[  734.994727][T18779]  ? find_held_lock+0x2b/0x80
[  734.994745][T18779]  ? __fget_files+0x215/0x3d0
[  734.994761][T18779]  ? hook_file_ioctl_common+0x149/0x410
[  734.994777][T18779]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  734.994800][T18779]  ? __fget_files+0x21f/0x3d0
[  734.994819][T18779]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  734.994845][T18779]  __x64_sys_ioctl+0x18e/0x210
[  734.994862][T18779]  do_syscall_64+0x10b/0xf80
[  734.994882][T18779]  ? clear_bhb_loop+0x40/0x90
[  734.994899][T18779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.994914][T18779] RIP: 0033:0x7ff75df9cdd9
[  734.994928][T18779] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  734.994942][T18779] RSP: 002b:00007ff75c1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  734.994958][T18779] RAX: ffffffffffffffda RBX: 00007ff75e215fa0 RCX: 00007ff75df9cdd9
[  734.994968][T18779] RDX: 000000004a010000 RSI: 000000000000ae01 RDI: 0000000000000008
[  734.994978][T18779] RBP: 00007ff75e032d69 R08: 0000000000000000 R09: 0000000000000000
[  734.994987][T18779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  734.994997][T18779] R13: 00007ff75e216038 R14: 00007ff75e215fa0 R15: 00007ffd83eddba8
[  734.995016][T18779]  </TASK>
[  735.596518][T18788] can: request_module (can-proto-0) failed.
[  739.378521][T18853] Format for adding new device is "id port_count num_queues" (uint uint uint).
[  739.546746][T18857] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2576'.
[  739.912211][T18846] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2575'.
[  741.139016][T18880] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2581'.
[  741.257855][T18877] FAULT_INJECTION: forcing a failure.
[  741.257855][T18877] name failslab, interval 1, probability 0, space 0, times 0
[  741.277093][T18877] CPU: 0 UID: 0 PID: 18877 Comm: syz.2.2582 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  741.277119][T18877] Tainted: [L]=SOFTLOCKUP
[  741.277125][T18877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  741.277134][T18877] Call Trace:
[  741.277139][T18877]  <TASK>
[  741.277145][T18877]  dump_stack_lvl+0x100/0x190
[  741.277167][T18877]  should_fail_ex.cold+0x5/0xa
[  741.277186][T18877]  should_failslab+0xc2/0x120
[  741.277204][T18877]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  741.277227][T18877]  ? __proc_create+0x2cb/0x8c0
[  741.277249][T18877]  __proc_create+0x2cb/0x8c0
[  741.277268][T18877]  ? __pfx___proc_create+0x10/0x10
[  741.277289][T18877]  ? _raw_write_unlock+0x28/0x50
[  741.277307][T18877]  ? proc_register+0x559/0x8a0
[  741.277327][T18877]  proc_create_reg+0x75/0x170
[  741.277347][T18877]  proc_create_net_data+0x8e/0x1c0
[  741.277367][T18877]  ? __pfx_proc_create_net_data+0x10/0x10
[  741.277385][T18877]  ? sctp_defaults_init+0x720/0xd90
[  741.277417][T18877]  sctp_proc_init+0xfb/0x270
[  741.277439][T18877]  ? __pfx_sctp_defaults_init+0x10/0x10
[  741.277461][T18877]  sctp_defaults_init+0x758/0xd90
[  741.277484][T18877]  ? __pfx_sctp_defaults_init+0x10/0x10
[  741.277507][T18877]  ops_init+0x1e2/0x5f0
[  741.277526][T18877]  setup_net+0x118/0x3a0
[  741.277542][T18877]  ? __pfx_setup_net+0x10/0x10
[  741.277559][T18877]  ? mutex_init_lockdep+0xf1/0x120
[  741.277578][T18877]  copy_net_ns+0x46f/0x7c0
[  741.277597][T18877]  create_new_namespaces+0x3ea/0xac0
[  741.277621][T18877]  unshare_nsproxy_namespaces+0xf2/0x220
[  741.277642][T18877]  ksys_unshare+0x438/0xab0
[  741.277665][T18877]  ? __pfx_ksys_unshare+0x10/0x10
[  741.277685][T18877]  ? xfd_validate_state+0x129/0x190
[  741.277707][T18877]  __x64_sys_unshare+0x31/0x40
[  741.277728][T18877]  do_syscall_64+0x10b/0xf80
[  741.277746][T18877]  ? clear_bhb_loop+0x40/0x90
[  741.277763][T18877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.277778][T18877] RIP: 0033:0x7ff101b9cdd9
[  741.277791][T18877] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  741.277806][T18877] RSP: 002b:00007ff102a59028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  741.277821][T18877] RAX: ffffffffffffffda RBX: 00007ff101e15fa0 RCX: 00007ff101b9cdd9
[  741.277830][T18877] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  741.277839][T18877] RBP: 00007ff101c32d69 R08: 0000000000000000 R09: 0000000000000000
[  741.277848][T18877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  741.277857][T18877] R13: 00007ff101e16038 R14: 00007ff101e15fa0 R15: 00007ffc4e5ae8d8
[  741.277876][T18877]  </TASK>
[  741.557742][T18886] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  742.779097][T18906] can: request_module (can-proto-0) failed.
[  744.249742][T18936] can: request_module (can-proto-0) failed.
[  746.821291][T18984] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2608'.
[  747.188761][ T1315] ieee802154 phy0 wpan0: encryption failed: -22
[  747.195239][ T1315] ieee802154 phy1 wpan1: encryption failed: -22
[  748.245334][T19012] can: request_module (can-proto-0) failed.
[  749.507024][T19036] Format for adding new device is "id port_count num_queues" (uint uint uint).
[  749.667399][T19040] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2620'.
[  750.577680][T19056] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2625'.
[  751.332681][T19069] can: request_module (can-proto-0) failed.
[  751.390633][T19065] can: request_module (can-proto-0) failed.
[  754.455167][T19128] [U] 
[  754.853982][T19143] [U] 
[  759.223027][T19255] can: request_module (can-proto-0) failed.
[  759.582646][T19262] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2681'.
[  759.608967][T19262] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2681'.
[  759.730982][T19272] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2680'.
[  759.770998][T19263] can: request_module (can-proto-0) failed.
[  760.794514][T19292] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2686'.
[  761.610570][T19307] can: request_module (can-proto-0) failed.
[  761.719644][T19306] No such timeout policy "
"
[  761.742552][T19306] netlink: Failed to associated timeout policy '
'
[  762.159428][T19328] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2696'.
[  763.454982][T19357] can: request_module (can-proto-0) failed.
[  763.587886][T19355] can: request_module (can-proto-0) failed.
[  764.258219][T19369] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2705'.
[  764.777270][T19376] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2707'.
[  765.863429][T19408] Format for adding new device is "id port_count num_queues" (uint uint uint).
[  765.876147][T19409] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2722'.
[  766.019546][T19411] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2715'.
[  766.520030][T19421] can: request_module (can-proto-0) failed.
[  768.752567][T19465] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2728'.
[  771.204931][T19518] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2739'.
[  772.781403][T19558] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2751'.
[  773.347170][T19572] can: request_module (can-proto-0) failed.
[  773.349761][T19569] usb usb37: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  773.366382][T19569] vhci_hcd vhci_hcd.2: invalid port number 111
[  773.393438][T19569] vhci_hcd vhci_hcd.2: invalid port number 111
[  773.565777][T19571] NFSD: Failed to start, no listeners configured.
[  774.432802][T19601] blktrace: Concurrent blktraces are not allowed on loop2
[  774.605192][T19609] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2760'.
[  775.084409][T19610] Failed to create region snapshot
[  775.562339][T19622] vivid-007: =================  START STATUS  =================
[  775.579559][T19622] vivid-007: Generate PTS: true
[  775.603384][T19622] vivid-007: Generate SCR: true
[  775.622738][T19622] tpg source WxH: 320x240 (Y'CbCr)
[  775.641247][T19622] tpg field: 1
[  775.645885][T19622] tpg crop: (0,0)/320x240
[  775.650428][T19622] tpg compose: (0,0)/320x240
[  775.655867][T19622] tpg colorspace: 8
[  775.661365][T19622] tpg transfer function: 0/0
[  775.681288][T19625] FAULT_INJECTION: forcing a failure.
[  775.681288][T19625] name failslab, interval 1, probability 0, space 0, times 0
[  775.695878][T19622] tpg Y'CbCr encoding: 0/0
[  775.700581][T19622] tpg quantization: 0/0
[  775.714505][T19622] tpg RGB range: 0/2
[  775.728624][T19622] vivid-007: ==================  END STATUS  ==================
[  775.741153][T19625] CPU: 1 UID: 0 PID: 19625 Comm: syz.2.2763 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  775.741193][T19625] Tainted: [L]=SOFTLOCKUP
[  775.741201][T19625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  775.741211][T19625] Call Trace:
[  775.741217][T19625]  <TASK>
[  775.741223][T19625]  dump_stack_lvl+0x100/0x190
[  775.741243][T19625]  should_fail_ex.cold+0x5/0xa
[  775.741263][T19625]  should_failslab+0xc2/0x120
[  775.741280][T19625]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  775.741304][T19625]  ? __alloc_skb+0x140/0x710
[  775.741322][T19625]  __alloc_skb+0x140/0x710
[  775.741336][T19625]  ? __pfx___alloc_skb+0x10/0x10
[  775.741352][T19625]  ? tcp_send_mss+0x1ae/0x2a0
[  775.741376][T19625]  mptcp_sendmsg_frag+0x7e3/0x3030
[  775.741400][T19625]  ? do_raw_spin_lock+0x128/0x260
[  775.741418][T19625]  ? __pfx_mptcp_sendmsg_frag+0x10/0x10
[  775.741437][T19625]  __subflow_push_pending+0x34b/0xb70
[  775.741462][T19625]  __mptcp_push_pending+0x2cc/0x540
[  775.741484][T19625]  ? __pfx___mptcp_push_pending+0x10/0x10
[  775.741509][T19625]  mptcp_sendmsg+0xda9/0x2210
[  775.741535][T19625]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  775.741558][T19625]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  775.741577][T19625]  inet_sendmsg+0x11c/0x140
[  775.741600][T19625]  sock_sendmsg+0x337/0x3d0
[  775.741620][T19625]  ? __pfx_inet_sendmsg+0x10/0x10
[  775.741641][T19625]  ? __pfx_sock_sendmsg+0x10/0x10
[  775.741658][T19625]  ? kfree+0x223/0x6c0
[  775.741690][T19625]  splice_to_socket+0xb4c/0x11b0
[  775.741718][T19625]  ? __pfx_splice_to_socket+0x10/0x10
[  775.741760][T19625]  ? lockdep_init_map_type+0x5c/0x250
[  775.741776][T19625]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  775.741793][T19625]  ? __pfx_splice_to_socket+0x10/0x10
[  775.741814][T19625]  direct_splice_actor+0x192/0x6c0
[  775.741834][T19625]  splice_direct_to_actor+0x345/0xa30
[  775.741854][T19625]  ? __pfx_direct_splice_actor+0x10/0x10
[  775.741881][T19625]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  775.741905][T19625]  do_splice_direct+0x174/0x240
[  775.741924][T19625]  ? __pfx_do_splice_direct+0x10/0x10
[  775.741943][T19625]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  775.741962][T19625]  ? bpf_lsm_file_permission+0x9/0x10
[  775.741976][T19625]  ? security_file_permission+0x76/0x210
[  775.741995][T19625]  ? rw_verify_area+0xce/0x6d0
[  775.742012][T19625]  do_sendfile+0xadc/0xe20
[  775.742031][T19625]  ? __pfx_do_sendfile+0x10/0x10
[  775.742047][T19625]  ? __fget_files+0x21f/0x3d0
[  775.742069][T19625]  __x64_sys_sendfile64+0x1d8/0x220
[  775.742089][T19625]  ? ksys_write+0x1ac/0x250
[  775.742105][T19625]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  775.742129][T19625]  ? rcu_is_watching+0x12/0xc0
[  775.742149][T19625]  do_syscall_64+0x10b/0xf80
[  775.742168][T19625]  ? clear_bhb_loop+0x40/0x90
[  775.742186][T19625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  775.742201][T19625] RIP: 0033:0x7ff101b9cdd9
[  775.742215][T19625] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  775.742229][T19625] RSP: 002b:00007ff102a38028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  775.742244][T19625] RAX: ffffffffffffffda RBX: 00007ff101e16090 RCX: 00007ff101b9cdd9
[  775.742254][T19625] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  775.742263][T19625] RBP: 00007ff102a38090 R08: 0000000000000000 R09: 0000000000000000
[  775.742272][T19625] R10: 0000400000000006 R11: 0000000000000246 R12: 0000000000000001
[  775.742281][T19625] R13: 00007ff101e16128 R14: 00007ff101e16090 R15: 00007ffc4e5ae8d8
[  775.742301][T19625]  </TASK>
[  777.176371][T19656] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2772'.
[  777.965193][T19676] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2775'.
[  778.451485][T19678] can: request_module (can-proto-0) failed.
[  779.210262][T19701] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2781'.
[  779.525543][T19712] futex_wake_op: syz.3.2784 tries to shift op by -2048; fix this program
[  779.841835][T19715] FAULT_INJECTION: forcing a failure.
[  779.841835][T19715] name failslab, interval 1, probability 0, space 0, times 0
[  779.896909][T19715] CPU: 0 UID: 0 PID: 19715 Comm: syz.2.2785 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  779.896951][T19715] Tainted: [L]=SOFTLOCKUP
[  779.896959][T19715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  779.896972][T19715] Call Trace:
[  779.896980][T19715]  <TASK>
[  779.896989][T19715]  dump_stack_lvl+0x100/0x190
[  779.897017][T19715]  should_fail_ex.cold+0x5/0xa
[  779.897036][T19715]  should_failslab+0xc2/0x120
[  779.897054][T19715]  __kvmalloc_node_noprof+0xfa/0xa00
[  779.897069][T19715]  ? seq_read_iter+0x819/0x1270
[  779.897090][T19715]  seq_read_iter+0x819/0x1270
[  779.897113][T19715]  seq_read+0x33b/0x4c0
[  779.897129][T19715]  ? __pfx_seq_read+0x10/0x10
[  779.897143][T19715]  ? __pfx___might_resched+0x10/0x10
[  779.897161][T19715]  ? lock_acquire+0x1b1/0x370
[  779.897183][T19715]  ? rw_verify_area+0xce/0x6d0
[  779.897198][T19715]  ? __pfx_seq_read+0x10/0x10
[  779.897213][T19715]  vfs_read+0x1e4/0xb30
[  779.897232][T19715]  ? __pfx_vfs_read+0x10/0x10
[  779.897248][T19715]  ? __fget_files+0x215/0x3d0
[  779.897268][T19715]  ? __fget_files+0x21f/0x3d0
[  779.897290][T19715]  ksys_read+0x12a/0x250
[  779.897306][T19715]  ? __pfx_ksys_read+0x10/0x10
[  779.897324][T19715]  ? rcu_is_watching+0x12/0xc0
[  779.897344][T19715]  do_syscall_64+0x10b/0xf80
[  779.897366][T19715]  ? clear_bhb_loop+0x40/0x90
[  779.897383][T19715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  779.897398][T19715] RIP: 0033:0x7ff101b9cdd9
[  779.897411][T19715] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  779.897425][T19715] RSP: 002b:00007ff102a59028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  779.897440][T19715] RAX: ffffffffffffffda RBX: 00007ff101e15fa0 RCX: 00007ff101b9cdd9
[  779.897449][T19715] RDX: 00000000fffffe39 RSI: 00002000000002c0 RDI: 0000000000000004
[  779.897459][T19715] RBP: 00007ff102a59090 R08: 0000000000000000 R09: 0000000000000000
[  779.897467][T19715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  779.897476][T19715] R13: 00007ff101e16038 R14: 00007ff101e15fa0 R15: 00007ffc4e5ae8d8
[  779.897495][T19715]  </TASK>
[  780.538730][T19728] ovs_: entered promiscuous mode
[  780.845005][T19743] FAULT_INJECTION: forcing a failure.
[  780.845005][T19743] name failslab, interval 1, probability 0, space 0, times 0
[  780.895537][T19743] CPU: 1 UID: 0 PID: 19743 Comm: syz.0.2790 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  780.895563][T19743] Tainted: [L]=SOFTLOCKUP
[  780.895569][T19743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  780.895578][T19743] Call Trace:
[  780.895583][T19743]  <TASK>
[  780.895590][T19743]  dump_stack_lvl+0x100/0x190
[  780.895611][T19743]  should_fail_ex.cold+0x5/0xa
[  780.895631][T19743]  should_failslab+0xc2/0x120
[  780.895649][T19743]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  780.895672][T19743]  ? sp_alloc+0x27/0x160
[  780.895696][T19743]  sp_alloc+0x27/0x160
[  780.895715][T19743]  mpol_set_shared_policy+0xa5/0x890
[  780.895739][T19743]  ? __pfx_shmem_set_policy+0x10/0x10
[  780.895756][T19743]  mbind_range+0x339/0x550
[  780.895778][T19743]  do_mbind+0x7dc/0xfd0
[  780.895802][T19743]  ? __pfx_do_mbind+0x10/0x10
[  780.895822][T19743]  ? ksys_write+0x190/0x250
[  780.895847][T19743]  ? __pfx_get_nodes+0x10/0x10
[  780.895866][T19743]  kernel_mbind+0x1b7/0x200
[  780.895887][T19743]  ? __pfx_kernel_mbind+0x10/0x10
[  780.895908][T19743]  ? rcu_is_watching+0x12/0xc0
[  780.895928][T19743]  do_syscall_64+0x10b/0xf80
[  780.895946][T19743]  ? clear_bhb_loop+0x40/0x90
[  780.895964][T19743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  780.895979][T19743] RIP: 0033:0x7f654f99cdd9
[  780.895993][T19743] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  780.896007][T19743] RSP: 002b:00007f655083a028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  780.896022][T19743] RAX: ffffffffffffffda RBX: 00007f654fc16180 RCX: 00007f654f99cdd9
[  780.896032][T19743] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000
[  780.896041][T19743] RBP: 00007f654fa32d69 R08: 0000002000000006 R09: 0000000000000002
[  780.896050][T19743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  780.896059][T19743] R13: 00007f654fc16218 R14: 00007f654fc16180 R15: 00007ffdcd241a78
[  780.896078][T19743]  </TASK>
[  781.350801][T19745] Failed to create region snapshot
[  781.396363][T19752] FAULT_INJECTION: forcing a failure.
[  781.396363][T19752] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  781.437465][T19753] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2791'.
[  781.576256][T19752] CPU: 0 UID: 0 PID: 19752 Comm: syz.0.2792 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  781.576297][T19752] Tainted: [L]=SOFTLOCKUP
[  781.576306][T19752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  781.576321][T19752] Call Trace:
[  781.576330][T19752]  <TASK>
[  781.576339][T19752]  dump_stack_lvl+0x100/0x190
[  781.576373][T19752]  should_fail_ex.cold+0x5/0xa
[  781.576401][T19752]  ? prepare_alloc_pages+0x16d/0x5f0
[  781.576436][T19752]  should_fail_alloc_page+0xeb/0x140
[  781.576468][T19752]  prepare_alloc_pages+0x1f0/0x5f0
[  781.576501][T19752]  ? kernel_text_address+0x8d/0x100
[  781.576532][T19752]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  781.576587][T19752]  ? copy_splice_read+0x1a3/0xb90
[  781.576619][T19752]  ? stack_trace_save+0x8e/0xc0
[  781.576654][T19752]  ? __pfx_stack_trace_save+0x10/0x10
[  781.576692][T19752]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  781.576740][T19752]  ? copy_splice_read+0x1a3/0xb90
[  781.576768][T19752]  ? kasan_save_stack+0x3f/0x50
[  781.576792][T19752]  ? kasan_save_stack+0x30/0x50
[  781.576816][T19752]  ? kasan_save_track+0x14/0x30
[  781.576838][T19752]  ? __kasan_kmalloc+0xaa/0xb0
[  781.576862][T19752]  ? __kmalloc_noprof+0x301/0x850
[  781.576906][T19752]  ? copy_splice_read+0x1a3/0xb90
[  781.576940][T19752]  ? do_syscall_64+0x10b/0xf80
[  781.576972][T19752]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  781.577019][T19752]  alloc_pages_bulk_noprof+0x657/0x1390
[  781.577077][T19752]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  781.577137][T19752]  ? __kmalloc_noprof+0x320/0x850
[  781.577185][T19752]  copy_splice_read+0x1e1/0xb90
[  781.577224][T19752]  ? __pfx_copy_splice_read+0x10/0x10
[  781.577255][T19752]  ? look_up_lock_class+0x55/0x120
[  781.577292][T19752]  ? lockdep_init_map_type+0x5c/0x250
[  781.577319][T19752]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  781.577348][T19752]  ? __pfx_filemap_splice_read+0x10/0x10
[  781.577377][T19752]  do_splice_read+0x2bd/0x370
[  781.577415][T19752]  splice_direct_to_actor+0x2a1/0xa30
[  781.577450][T19752]  ? __pfx_direct_splice_actor+0x10/0x10
[  781.577489][T19752]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  781.577532][T19752]  do_splice_direct+0x174/0x240
[  781.577567][T19752]  ? __pfx_do_splice_direct+0x10/0x10
[  781.577601][T19752]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  781.577634][T19752]  ? bpf_lsm_file_permission+0x9/0x10
[  781.577659][T19752]  ? security_file_permission+0x76/0x210
[  781.577691][T19752]  ? rw_verify_area+0xce/0x6d0
[  781.577718][T19752]  do_sendfile+0xadc/0xe20
[  781.577754][T19752]  ? __pfx_do_sendfile+0x10/0x10
[  781.577783][T19752]  ? __fget_files+0x21f/0x3d0
[  781.577821][T19752]  __x64_sys_sendfile64+0x1d8/0x220
[  781.577856][T19752]  ? ksys_write+0x1ac/0x250
[  781.577887][T19752]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  781.577926][T19752]  ? rcu_is_watching+0x12/0xc0
[  781.577961][T19752]  do_syscall_64+0x10b/0xf80
[  781.577993][T19752]  ? clear_bhb_loop+0x40/0x90
[  781.578027][T19752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  781.578055][T19752] RIP: 0033:0x7f654f99cdd9
[  781.578078][T19752] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  781.578103][T19752] RSP: 002b:00007f655085b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  781.578135][T19752] RAX: ffffffffffffffda RBX: 00007f654fc16090 RCX: 00007f654f99cdd9
[  781.578154][T19752] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  781.578169][T19752] RBP: 00007f655085b090 R08: 0000000000000000 R09: 0000000000000000
[  781.578185][T19752] R10: 0000400000000006 R11: 0000000000000246 R12: 0000000000000001
[  781.578201][T19752] R13: 00007f654fc16128 R14: 00007f654fc16090 R15: 00007ffdcd241a78
[  781.578235][T19752]  </TASK>
[  782.266068][T19764] Format for unlinking a device is "netnsfd:ifidx" (int uint).
[  782.294220][   T29] audit: type=1804 audit(1843104700.070:9): pid=19764 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2802" name="/newroot/108/file0" dev="tmpfs" ino=560 res=1 errno=0
[  783.524086][T19800] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2799'.
[  783.807626][T19803] FAULT_INJECTION: forcing a failure.
[  783.807626][T19803] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  783.847399][T19803] CPU: 1 UID: 0 PID: 19803 Comm: syz.0.2800 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  783.847446][T19803] Tainted: [L]=SOFTLOCKUP
[  783.847456][T19803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  783.847472][T19803] Call Trace:
[  783.847480][T19803]  <TASK>
[  783.847489][T19803]  dump_stack_lvl+0x100/0x190
[  783.847526][T19803]  should_fail_ex.cold+0x5/0xa
[  783.847562][T19803]  _copy_from_user+0x2e/0xd0
[  783.847598][T19803]  snd_seq_oss_write+0x395/0x800
[  783.847626][T19803]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  783.847650][T19803]  ? apparmor_file_permission+0x13f/0x1c0
[  783.847667][T19803]  ? bpf_lsm_file_permission+0x9/0x10
[  783.847684][T19803]  odev_write+0x51/0xa0
[  783.847702][T19803]  vfs_write+0x2aa/0x1070
[  783.847720][T19803]  ? __pfx_odev_write+0x10/0x10
[  783.847740][T19803]  ? __pfx_vfs_write+0x10/0x10
[  783.847755][T19803]  ? find_held_lock+0x2b/0x80
[  783.847773][T19803]  ? __fget_files+0x215/0x3d0
[  783.847789][T19803]  ? __fget_files+0x215/0x3d0
[  783.847808][T19803]  ? __fget_files+0x21f/0x3d0
[  783.847848][T19803]  ksys_write+0x12a/0x250
[  783.847865][T19803]  ? __pfx_ksys_write+0x10/0x10
[  783.847884][T19803]  ? rcu_is_watching+0x12/0xc0
[  783.847904][T19803]  do_syscall_64+0x10b/0xf80
[  783.847922][T19803]  ? clear_bhb_loop+0x40/0x90
[  783.847940][T19803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  783.847955][T19803] RIP: 0033:0x7f654f99cdd9
[  783.847969][T19803] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  783.847983][T19803] RSP: 002b:00007f655087c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  783.847998][T19803] RAX: ffffffffffffffda RBX: 00007f654fc15fa0 RCX: 00007f654f99cdd9
[  783.848008][T19803] RDX: 000000000000a3d9 RSI: 0000000000000000 RDI: 0000000000000009
[  783.848017][T19803] RBP: 00007f654fa32d69 R08: 0000000000000000 R09: 0000000000000000
[  783.848026][T19803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  783.848035][T19803] R13: 00007f654fc16038 R14: 00007f654fc15fa0 R15: 00007ffdcd241a78
[  783.848055][T19803]  </TASK>
[  784.196074][T19806] FAULT_INJECTION: forcing a failure.
[  784.196074][T19806] name failslab, interval 1, probability 0, space 0, times 0
[  784.231813][T19806] CPU: 0 UID: 0 PID: 19806 Comm: syz.1.2801 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  784.231857][T19806] Tainted: [L]=SOFTLOCKUP
[  784.231867][T19806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  784.231883][T19806] Call Trace:
[  784.231892][T19806]  <TASK>
[  784.231901][T19806]  dump_stack_lvl+0x100/0x190
[  784.231935][T19806]  should_fail_ex.cold+0x5/0xa
[  784.231966][T19806]  ? tomoyo_encode2+0xfb/0x3c0
[  784.231997][T19806]  should_failslab+0xc2/0x120
[  784.232028][T19806]  __kmalloc_noprof+0xe0/0x850
[  784.232067][T19806]  ? d_absolute_path+0x136/0x1b0
[  784.232099][T19806]  tomoyo_encode2+0xfb/0x3c0
[  784.232136][T19806]  tomoyo_encode+0x29/0x50
[  784.232166][T19806]  tomoyo_realpath_from_path+0x18c/0x690
[  784.232207][T19806]  tomoyo_path_number_perm+0x23c/0x580
[  784.232235][T19806]  ? tomoyo_path_number_perm+0x22e/0x580
[  784.232265][T19806]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  784.232330][T19806]  ? find_held_lock+0x2b/0x80
[  784.232365][T19806]  ? __fget_files+0x215/0x3d0
[  784.232395][T19806]  ? hook_file_ioctl_common+0x149/0x410
[  784.232422][T19806]  ? __fget_files+0x215/0x3d0
[  784.232458][T19806]  ? __fget_files+0x21f/0x3d0
[  784.232495][T19806]  security_file_ioctl+0xd3/0x230
[  784.232524][T19806]  __x64_sys_ioctl+0xb7/0x210
[  784.232553][T19806]  do_syscall_64+0x10b/0xf80
[  784.232582][T19806]  ? clear_bhb_loop+0x40/0x90
[  784.232612][T19806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  784.232636][T19806] RIP: 0033:0x7f5c6739cdd9
[  784.232655][T19806] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  784.232676][T19806] RSP: 002b:00007f5c682c1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  784.232699][T19806] RAX: ffffffffffffffda RBX: 00007f5c67615fa0 RCX: 00007f5c6739cdd9
[  784.232715][T19806] RDX: 0000000000000005 RSI: 000000004008af83 RDI: 0000000000000003
[  784.232730][T19806] RBP: 00007f5c682c1090 R08: 0000000000000000 R09: 0000000000000000
[  784.232744][T19806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  784.232758][T19806] R13: 00007f5c67616038 R14: 00007f5c67615fa0 R15: 00007ffca74ce338
[  784.232796][T19806]  </TASK>
[  784.501875][T19806] ERROR: Out of memory at tomoyo_realpath_from_path.
[  785.453860][T19854] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2814'.
[  785.732442][T19865] FAULT_INJECTION: forcing a failure.
[  785.732442][T19865] name failslab, interval 1, probability 0, space 0, times 0
[  785.754084][T19865] CPU: 1 UID: 0 PID: 19865 Comm: syz.0.2818 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  785.754127][T19865] Tainted: [L]=SOFTLOCKUP
[  785.754137][T19865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  785.754152][T19865] Call Trace:
[  785.754161][T19865]  <TASK>
[  785.754170][T19865]  dump_stack_lvl+0x100/0x190
[  785.754205][T19865]  should_fail_ex.cold+0x5/0xa
[  785.754239][T19865]  ? tomoyo_encode2+0xfb/0x3c0
[  785.754269][T19865]  should_failslab+0xc2/0x120
[  785.754300][T19865]  __kmalloc_noprof+0xe0/0x850
[  785.754345][T19865]  ? d_absolute_path+0x136/0x1b0
[  785.754379][T19865]  tomoyo_encode2+0xfb/0x3c0
[  785.754417][T19865]  tomoyo_encode+0x29/0x50
[  785.754447][T19865]  tomoyo_realpath_from_path+0x18c/0x690
[  785.754489][T19865]  tomoyo_path_number_perm+0x23c/0x580
[  785.754516][T19865]  ? tomoyo_path_number_perm+0x22e/0x580
[  785.754547][T19865]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  785.754624][T19865]  ? find_held_lock+0x2b/0x80
[  785.754659][T19865]  ? __fget_files+0x215/0x3d0
[  785.754692][T19865]  ? hook_file_ioctl_common+0x149/0x410
[  785.754717][T19865]  ? __fget_files+0x215/0x3d0
[  785.754752][T19865]  ? __fget_files+0x21f/0x3d0
[  785.754789][T19865]  security_file_ioctl+0xd3/0x230
[  785.754819][T19865]  __x64_sys_ioctl+0xb7/0x210
[  785.754849][T19865]  do_syscall_64+0x10b/0xf80
[  785.754883][T19865]  ? clear_bhb_loop+0x40/0x90
[  785.754916][T19865]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  785.754944][T19865] RIP: 0033:0x7f654f99cdd9
[  785.754966][T19865] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  785.754991][T19865] RSP: 002b:00007f655087c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  785.755017][T19865] RAX: ffffffffffffffda RBX: 00007f654fc15fa0 RCX: 00007f654f99cdd9
[  785.755035][T19865] RDX: 0000000000000000 RSI: 000000000000550b RDI: 0000000000000003
[  785.755052][T19865] RBP: 00007f655087c090 R08: 0000000000000000 R09: 0000000000000000
[  785.755069][T19865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  785.755085][T19865] R13: 00007f654fc16038 R14: 00007f654fc15fa0 R15: 00007ffdcd241a78
[  785.755122][T19865]  </TASK>
[  785.755209][T19865] ERROR: Out of memory at tomoyo_realpath_from_path.
[  786.263909][T19880] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2823'.
[  787.600193][T19913] can: request_module (can-proto-0) failed.
[  787.843965][T19921] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2832'.
[  789.173018][T19958] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2839'.
[  789.233032][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[  790.227384][T17210] Bluetooth: hci4: command 0x0406 tx timeout
[  790.841127][T19979] ==================================================================
[  790.841150][T19979] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0x94e/0xc60
[  790.841194][T19979] Read of size 26 at addr ffff888035ae1dea by task syz.2.2844/19979
[  790.841219][T19979] 
[  790.841234][T19979] CPU: 1 UID: 0 PID: 19979 Comm: syz.2.2844 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  790.841273][T19979] Tainted: [L]=SOFTLOCKUP
[  790.841284][T19979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  790.841304][T19979] Call Trace:
[  790.841313][T19979]  <TASK>
[  790.841324][T19979]  dump_stack_lvl+0x100/0x190
[  790.841355][T19979]  print_report+0x13d/0x4b0
[  790.841397][T19979]  ? __virt_addr_valid+0x239/0x430
[  790.841444][T19979]  ? fbcon_prepare_logo+0x94e/0xc60
[  790.841473][T19979]  kasan_report+0xdf/0x1d0
[  790.841503][T19979]  ? fbcon_prepare_logo+0x94e/0xc60
[  790.841534][T19979]  kasan_check_range+0x10f/0x1e0
[  790.841553][T19979]  __asan_memcpy+0x23/0x60
[  790.841578][T19979]  fbcon_prepare_logo+0x94e/0xc60
[  790.841612][T19979]  fbcon_init+0x1065/0x1830
[  790.841644][T19979]  visual_init+0x320/0x620
[  790.841677][T19979]  do_bind_con_driver.isra.0+0x636/0x9c0
[  790.841721][T19979]  store_bind+0x609/0x730
[  790.841761][T19979]  ? __pfx_store_bind+0x10/0x10
[  790.841780][T19979]  dev_attr_store+0x58/0x80
[  790.841797][T19979]  ? __pfx_dev_attr_store+0x10/0x10
[  790.841814][T19979]  sysfs_kf_write+0xf2/0x150
[  790.841838][T19979]  kernfs_fop_write_iter+0x3e0/0x5f0
[  790.841857][T19979]  ? __pfx_sysfs_kf_write+0x10/0x10
[  790.841880][T19979]  vfs_write+0x6ac/0x1070
[  790.841896][T19979]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  790.841917][T19979]  ? __pfx_vfs_write+0x10/0x10
[  790.841937][T19979]  ksys_write+0x12a/0x250
[  790.841953][T19979]  ? __pfx_ksys_write+0x10/0x10
[  790.841969][T19979]  ? rcu_is_watching+0x12/0xc0
[  790.841988][T19979]  do_syscall_64+0x10b/0xf80
[  790.842007][T19979]  ? clear_bhb_loop+0x40/0x90
[  790.842031][T19979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  790.842047][T19979] RIP: 0033:0x7ff101b9cdd9
[  790.842059][T19979] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  790.842076][T19979] RSP: 002b:00007ff102a59028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  790.842091][T19979] RAX: ffffffffffffffda RBX: 00007ff101e15fa0 RCX: 00007ff101b9cdd9
[  790.842102][T19979] RDX: 0000000000000002 RSI: 0000200000000140 RDI: 0000000000000003
[  790.842111][T19979] RBP: 00007ff101c32d69 R08: 0000000000000000 R09: 0000000000000000
[  790.842120][T19979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  790.842130][T19979] R13: 00007ff101e16038 R14: 00007ff101e15fa0 R15: 00007ffc4e5ae8d8
[  790.842145][T19979]  </TASK>
[  790.842150][T19979] 
[  790.842154][T19979] Allocated by task 19983:
[  790.842167][T19979]  kasan_save_stack+0x30/0x50
[  790.842182][T19979]  kasan_save_track+0x14/0x30
[  790.842196][T19979]  __kasan_kmalloc+0xaa/0xb0
[  790.842208][T19979]  __kmalloc_noprof+0x301/0x850
[  790.842229][T19979]  __register_sysctl_table+0xbe4/0x1650
[  790.842247][T19979]  neigh_sysctl_register+0x326/0x660
[  790.842261][T19979]  addrconf_sysctl_register+0xb9/0x200
[  790.842280][T19979]  ipv6_add_dev+0xaf2/0x1520
[  790.842295][T19979]  addrconf_notify+0x5db/0x1ba0
[  790.842315][T19979]  notifier_call_chain+0x99/0x400
[  790.842336][T19979]  call_netdevice_notifiers_info+0xbe/0x110
[  790.842354][T19979]  register_netdevice+0x18fe/0x24b0
[  790.842369][T19979]  register_netdev+0x34/0x50
[  790.842383][T19979]  ip6_tnl_init_net+0x2ff/0x480
[  790.842397][T19979]  ops_init+0x1e2/0x5f0
[  790.842411][T19979]  setup_net+0x118/0x3a0
[  790.842424][T19979]  copy_net_ns+0x46f/0x7c0
[  790.842440][T19979]  create_new_namespaces+0x3ea/0xac0
[  790.842457][T19979]  unshare_nsproxy_namespaces+0xf2/0x220
[  790.842474][T19979]  ksys_unshare+0x438/0xab0
[  790.842494][T19979]  __x64_sys_unshare+0x31/0x40
[  790.842513][T19979]  do_syscall_64+0x10b/0xf80
[  790.842530][T19979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  790.842543][T19979] 
[  790.842547][T19979] The buggy address belongs to the object at ffff888035ae1d00
[  790.842547][T19979]  which belongs to the cache kmalloc-192 of size 192
[  790.842559][T19979] The buggy address is located 42 bytes to the right of
[  790.842559][T19979]  allocated 192-byte region [ffff888035ae1d00, ffff888035ae1dc0)
[  790.842574][T19979] 
[  790.842578][T19979] The buggy address belongs to the physical page:
[  790.842584][T19979] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x35ae1
[  790.842601][T19979] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  790.842617][T19979] page_type: f5(slab)
[  790.842630][T19979] raw: 00fff00000000000 ffff88813fe2e3c0 dead000000000100 dead000000000122
[  790.842647][T19979] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  790.842656][T19979] page dumped because: kasan: bad access detected
[  790.842666][T19979] page_owner tracks the page as allocated
[  790.842671][T19979] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd2cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 23112527986, free_ts 23096842778
[  790.842697][T19979]  post_alloc_hook+0x153/0x170
[  790.842732][T19979]  get_page_from_freelist+0x11a6/0x33b0
[  790.842772][T19979]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  790.842795][T19979]  new_slab+0xa6/0x6c0
[  790.842812][T19979]  refill_objects+0x277/0x420
[  790.842836][T19979]  __pcs_replace_empty_main+0x375/0x650
[  790.842874][T19979]  __kmalloc_node_track_caller_noprof+0x694/0x850
[  790.842899][T19979]  krealloc_node_align_noprof+0x1f9/0x3e0
[  790.842923][T19979]  add_sysfs_param+0xdb/0x970
[  790.842940][T19979]  param_sysfs_builtin_init+0x313/0x3f0
[  790.842954][T19979]  do_one_initcall+0x121/0x750
[  790.842972][T19979]  kernel_init_freeable+0x6ea/0x7b0
[  790.842988][T19979]  kernel_init+0x1f/0x1e0
[  790.843009][T19979]  ret_from_fork+0x72b/0xd50
[  790.843029][T19979]  ret_from_fork_asm+0x1a/0x30
[  790.843048][T19979] page last free pid 994 tgid 994 stack trace:
[  790.843056][T19979]  __free_frozen_pages+0x747/0x1040
[  790.843075][T19979]  vfree+0x15f/0x8d0
[  790.843090][T19979]  delayed_vfree_work+0x56/0x80
[  790.843106][T19979]  process_one_work+0xa0e/0x1980
[  790.843120][T19979]  worker_thread+0x5ef/0xe50
[  790.843132][T19979]  kthread+0x370/0x450
[  790.843143][T19979]  ret_from_fork+0x72b/0xd50
[  790.843164][T19979]  ret_from_fork_asm+0x1a/0x30
[  790.843197][T19979] 
[  790.843200][T19979] Memory state around the buggy address:
[  790.843208][T19979]  ffff888035ae1c80: 00 00 00 04 fc fc fc fc fc fc fc fc fc fc fc fc
[  790.843218][T19979]  ffff888035ae1d00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  790.843228][T19979] >ffff888035ae1d80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[  790.843236][T19979]                                                           ^
[  790.843245][T19979]  ffff888035ae1e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  790.843255][T19979]  ffff888035ae1e80: 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc
[  790.843263][T19979] ==================================================================
[  790.855010][T19979] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  790.855044][T19979] CPU: 1 UID: 0 PID: 19979 Comm: syz.2.2844 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  790.855086][T19979] Tainted: [L]=SOFTLOCKUP
[  790.855097][T19979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  790.855115][T19979] Call Trace:
[  790.855124][T19979]  <TASK>
[  790.855135][T19979]  dump_stack_lvl+0x100/0x190
[  790.855170][T19979]  vpanic+0x552/0x970
[  790.855198][T19979]  ? __pfx_vpanic+0x10/0x10
[  790.855232][T19979]  ? fbcon_prepare_logo+0x94e/0xc60
[  790.855263][T19979]  panic+0xd1/0xe0
[  790.855288][T19979]  ? __pfx_panic+0x10/0x10
[  790.855313][T19979]  ? fbcon_prepare_logo+0x94e/0xc60
[  790.855329][T19979]  ? preempt_schedule_common+0x42/0xc0
[  790.855353][T19979]  check_panic_on_warn.cold+0x19/0x34
[  790.855369][T19979]  end_report.part.0+0x3a/0x90
[  790.855391][T19979]  kasan_report.cold+0xe/0x18
[  790.855412][T19979]  ? fbcon_prepare_logo+0x94e/0xc60
[  790.855430][T19979]  kasan_check_range+0x10f/0x1e0
[  790.855450][T19979]  __asan_memcpy+0x23/0x60
[  790.855471][T19979]  fbcon_prepare_logo+0x94e/0xc60
[  790.855491][T19979]  fbcon_init+0x1065/0x1830
[  790.855509][T19979]  visual_init+0x320/0x620
[  790.855527][T19979]  do_bind_con_driver.isra.0+0x636/0x9c0
[  790.855550][T19979]  store_bind+0x609/0x730
[  790.855571][T19979]  ? __pfx_store_bind+0x10/0x10
[  790.855590][T19979]  dev_attr_store+0x58/0x80
[  790.855608][T19979]  ? __pfx_dev_attr_store+0x10/0x10
[  790.855625][T19979]  sysfs_kf_write+0xf2/0x150
[  790.855648][T19979]  kernfs_fop_write_iter+0x3e0/0x5f0
[  790.855667][T19979]  ? __pfx_sysfs_kf_write+0x10/0x10
[  790.855690][T19979]  vfs_write+0x6ac/0x1070
[  790.855707][T19979]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  790.855728][T19979]  ? __pfx_vfs_write+0x10/0x10
[  790.855749][T19979]  ksys_write+0x12a/0x250
[  790.855764][T19979]  ? __pfx_ksys_write+0x10/0x10
[  790.855781][T19979]  ? rcu_is_watching+0x12/0xc0
[  790.855799][T19979]  do_syscall_64+0x10b/0xf80
[  790.855817][T19979]  ? clear_bhb_loop+0x40/0x90
[  790.855834][T19979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  790.855849][T19979] RIP: 0033:0x7ff101b9cdd9
[  790.855861][T19979] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  790.855876][T19979] RSP: 002b:00007ff102a59028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  790.855891][T19979] RAX: ffffffffffffffda RBX: 00007ff101e15fa0 RCX: 00007ff101b9cdd9
[  790.855902][T19979] RDX: 0000000000000002 RSI: 0000200000000140 RDI: 0000000000000003
[  790.855912][T19979] RBP: 00007ff101c32d69 R08: 0000000000000000 R09: 0000000000000000
[  790.855922][T19979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  790.855932][T19979] R13: 00007ff101e16038 R14: 00007ff101e15fa0 R15: 00007ffc4e5ae8d8
[  790.855947][T19979]  </TASK>
[  790.856440][T19979] Kernel Offset: disabled