last executing test programs:

8.873206556s ago: executing program 1 (id=1327):
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
msgctl$auto_MSG_STAT_ANY(0xffffffff, 0xd, &(0x7f0000000200)={{0x7, <r0=>0x0, <r1=>0xffffffffffffffff, 0xeff, 0xfff, 0x2, 0x448}, 0x0, 0x0, 0x8, 0x6, 0x402, 0xb0a, 0x2, 0x7f, 0x17f, 0x2, @inferred=<r2=>0x0, @raw=0x3})
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/zram0/initstate\x00', 0x42000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, 0x0, 0x0)
mmap$auto(0x200, 0x2020009, 0x80000000000003, 0x2d4, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/fail-nth\x00', 0x129842, 0x0)
msgctl$auto_IPC_STAT(0xff, 0x2, &(0x7f0000000340)={{0x681, r0, r1, 0x5, 0x95, 0x9, 0x5}, &(0x7f0000000280)=0x3, &(0x7f00000002c0)=0x2, 0xff, 0x9, 0x5, 0x3, 0x101, 0x3, 0x3, 0x5, @raw, @raw=0x4})
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r5, 0x0, 0x20)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x20000, 0x0)
r6 = prctl$auto_PR_SET_MM_BRK(0x7d5, 0x7, r2, 0x7ff, 0x1)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r7)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r9=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYRES16=r8, @ANYBLOB="2f212cbd7010ca705d845526cc0008000380", @ANYRES32=r9], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x8810)
bpf$auto(0x18, &(0x7f0000000040)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x5, 0x8, 0xffffffffffffffff, @relative_id=0x13, 0x41b5c1ff}, 0x92)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x2c, r11, 0x936355e497c8b7e3, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_TSINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x1000000, 0x0, 0x840}, 0x48000)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r7, &(0x7f0000000640)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x1c, r11, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x7}]}, 0x1c}}, 0x1)
r12 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
sendmmsg$auto(r12, 0x0, 0x7, 0x8)
setfsgid$auto(0xee01)
setsockopt$auto_SO_RCVPRIORITY(r7, 0x434, 0x52, 0x0, 0xb5)
sendmsg$auto_NL80211_CMD_SET_FILS_AAD(r6, 0x0, 0x8882)

8.65003781s ago: executing program 1 (id=1328):
madvise$auto(0x0, 0x400053, 0x9)
r0 = socket(0xb, 0x80000, 0x400003)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000002)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffffffffffffffb)
ioctl$auto_SOUND_PCM_READ_CHANNELS(r1, 0x80045006, &(0x7f0000000240))
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/020/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB32(r3, 0x802c550a, &(0x7f0000000180)=ANY=[@ANYBLOB="020000060000e6ff040000000100400008", @ANYRES16, @ANYRES16=r2, @ANYBLOB="cd8e5c3cd4a7726296c3242491487d190c3addb201fa0395a3997305bbb8a2e98e781cefb8e50a2940a2f9a63fd63bb0450eb42b3267", @ANYRES8])
ioctl$auto(0xffffffffffffffff, 0x4008550d, r3)
ioctl$auto(0xffffffffffffffff, 0x4b30, 0xffffffffffffffff)
write$auto(r0, 0x0, 0x200)
write$auto(0x3, 0x0, 0x100082)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x100102, 0x0)
write$auto(r5, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x3)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84L\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xff\a\x00\x00\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)

7.560762523s ago: executing program 1 (id=1333):
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x100000000000030, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000)
write$auto(r0, 0x0, 0x2)
getrlimit$auto(0x3, 0x0)
fdatasync$auto(r0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0x1102, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xc8d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\xc6\x00\x89\te\x8d\a\xfb\\n\x89C:\x84D\x10u\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k', 0x100000a3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/scheduler\x00', 0x103a42, 0x0)
sendfile$auto(r2, r2, 0x0, 0x9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ea182, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto_proc_oom_score_adj_operations_base(r1, &(0x7f0000000180)="935d7ffb5a823750183d8606bfeb9ec0f46e87fe6d51338572bc525208b14c13b3d107731a6ab5e87b1465313a26cf3d60b28356389faa014307f37b614afaa023c29be261d8eb4c2ec15447d0d0db1d620858e3dd4c9173cebefca0ab08899b92d2d6", 0x63)
capget$auto(0x0, 0xfffffffffffffffe)

7.452958505s ago: executing program 2 (id=1335):
madvise$auto(0x0, 0x400053, 0x9)
r0 = socket(0xb, 0x80000, 0x400003)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = socket(0x2b, 0x2, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000002)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffffffffffffffb)
ioctl$auto_SOUND_PCM_READ_CHANNELS(r1, 0x80045006, &(0x7f0000000240))
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/020/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB32(r4, 0x802c550a, &(0x7f0000000180)=ANY=[@ANYBLOB="020000060000e6ff040000000100400008", @ANYRES16, @ANYRES16=r3, @ANYBLOB="cd8e5c3cd4a7726296c3242491487d190c3addb201fa0395a3997305bbb8a2e98e781cefb8e50a2940a2f9a63fd63bb0", @ANYRES8=r2])
ioctl$auto(0xffffffffffffffff, 0x4008550d, r4)
close_range$auto(r4, 0x8, 0x7fffffff)
r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
ioctl$auto(r5, 0x4b30, 0xffffffffffffffff)
socket(0x10, 0x2, 0x4)
write$auto(r0, 0x0, 0x200)
write$auto(0x3, 0x0, 0x100082)
r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
bind$auto(0xffffffffffffffff, 0x0, 0x6a)
r7 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x100102, 0x0)
write$auto(r7, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x3)
write$auto(r6, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84L\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xff\a\x00\x00\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)

6.342117792s ago: executing program 2 (id=1337):
mmap$auto(0x0, 0x420009, 0xfff, 0xeb1, 0x401, 0x7ffd)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0xa, 0x1, 0xfffffeff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(r1, 0x0, 0x8000)
statmount$auto(0x0, 0x0, 0x1fa, 0x11)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0x100000a3d9)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x181500, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
openat$auto_dmaengine_summary_fops_(0xffffffffffffff9c, 0x0, 0x422000, 0x0)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/013/001\x00', 0xa901, 0x0)
kexec_load$auto(0x8134a6c, 0x1, 0x0, 0xff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0)
sysfs$auto(0x2, 0xe, 0x0)
sendmsg$auto_NL80211_CMD_SET_SAR_SPECS(0xffffffffffffffff, 0x0, 0x20000004)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r2, 0x40f, 0x4)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0)

5.43504736s ago: executing program 1 (id=1340):
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20044011}, 0x80)
r0 = socket(0x28, 0x5, 0x0)
r1 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x40, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000002c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1d\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"P\x8a\xbbY8@Z5`\xa2\x9aSVd\x1d\xac\xe8\x90e\x9d\x03tm\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7.\xbe\x01\x98\xd7l\x00\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfa\xf0\xd9\xc0K\x8b\xa3c\x00'/160, 0xa9)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_smc_pnetid(0x0, r0)
sendmsg$auto_SMC_PNETID_DEL(r2, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000d40)={0x14, r3, 0x1, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40091}, 0x20000000)
getgroups$auto(0x1a1, 0xfffffffffffffffd)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, 0x0, 0x20000054)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x4c2080, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20004000)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), r6)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r6, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01002bbd7000fcdbdfff0700000020000180050002006261746164763000000000010000000008000400000100cb55cec89261f15fe86dd6895220a2727515dcdb266a74c5862b4e4de0f4e1d87124fe51a10aafab92dec7b8113bbce07b"], 0x34}, 0x1, 0x0, 0x0, 0x24040000}, 0x700000000000000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$auto(0x3, 0x6f50, 0xffffffffffffffff)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x810004, 0x2000000efb, 0x8000000008011, r5, 0x8000)
setresgid$auto(0x0, 0x0, 0x0)
ioctl$auto_NS_GET_TGID_IN_PIDNS(r1, 0x8004b709, 0x0)
shmctl$auto_SHM_STAT(0x1, 0xd, 0x0)
ioctl$auto_BLKRRPART(r5, 0x125f, 0x0)
lseek$auto(r4, 0x7fff, 0x40001000)
madvise$auto(0x0, 0x400053, 0x9)
connect$auto(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @hyper}, 0x56)
read$auto(r0, &(0x7f0000000100)='(\x00', 0x1)

5.208605406s ago: executing program 2 (id=1342):
madvise$auto(0x0, 0x400053, 0x9)
r0 = socket(0xb, 0x80000, 0x400003)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000002)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffffffffffffffb)
ioctl$auto_SOUND_PCM_READ_CHANNELS(r1, 0x80045006, &(0x7f0000000240))
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/020/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB32(r3, 0x802c550a, &(0x7f0000000180)=ANY=[@ANYBLOB="020000060000e6ff040000000100400008", @ANYRES16, @ANYRES16=r2, @ANYBLOB="cd8e5c3cd4a7726296c3242491487d190c3addb201fa0395a3997305bbb8a2e98e781cefb8e50a2940a2f9a63fd63bb0450eb42b3267", @ANYRES8])
ioctl$auto(0xffffffffffffffff, 0x4008550d, r3)
ioctl$auto(0xffffffffffffffff, 0x4b30, 0xffffffffffffffff)
write$auto(r0, 0x0, 0x200)
write$auto(0x3, 0x0, 0x100082)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x100102, 0x0)
write$auto(r5, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x3)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84L\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xff\a\x00\x00\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)

5.040426311s ago: executing program 3 (id=1344):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x70bd2d, 0x25dfdbf6, {}, [@L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x3b}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x11e789c}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_FD={0x8}]}, 0x3c}, 0x1, 0x0, 0x3c, 0x40000}, 0x48080)

4.951669578s ago: executing program 3 (id=1345):
mmap$auto(0x0, 0x420009, 0xfff, 0xeb1, 0x401, 0x7ffd)
r0 = bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, 0x0, 0x8000)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0xa, 0x1, 0xfffffeff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000002740)={0x0, 0x0, &(0x7f0000002700)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2, @ANYBLOB="01e38c33c112d24e0429bd7000fddbdf2502e1ffff03000180"], 0x18}, 0x1, 0x0, 0x0, 0x2400c001}, 0x8000)
statmount$auto(0x0, 0x0, 0x1fa, 0x11)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\x97U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x181500, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
bpf$auto_BPF_MAP_DELETE_BATCH(0x1b, &(0x7f0000000280)=@token_create={0x7}, 0x8)
mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000)
fanotify_mark$auto(0xffffffffffffffff, 0x9, 0x1000000009, r0, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0xc8, 0x8924, 0x8)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_IPVS_CMD_GET_DAEMON(r3, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x40000)

4.242492147s ago: executing program 2 (id=1348):
mkdir$auto(&(0x7f0000004440)='./file0\x00', 0x1)
r0 = openat$auto_long_retry_limit_ops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy9/long_retry_limit\x00', 0x80, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x48000, 0x0)
ioctl$auto_KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f00000002c0)={0x80000000})
r2 = openat$auto_hwflags_ops_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy9/hwflags\x00', 0x4100, 0x0)
sendfile$auto(r0, r2, &(0x7f0000000080)=0x3b, 0x7fac)
socket(0x28, 0x5, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x26, 0x3, 0x0)
unshare$auto(0x40000080)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
r3 = socket(0x2, 0x801, 0x106)
sendmsg$auto_NL80211_CMD_SET_QOS_MAP(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x40080}, 0x24008041)
r4 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtd0\x00', 0x10142, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001100)='/sys/kernel/security/tomoyo/query\x00', 0x2400, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x7, 0xdf, 0x80000eb1, 0xffffffffffffffff, 0x8000)
r6 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000003cc0)='/dev/bus/usb/016/001\x00', 0x201, 0x0)
ioctl$auto_USBDEVFS_FREE_STREAMS(r6, 0x8008551d, 0x0)
getsockopt$auto(r5, 0x6, 0x18, 0x0, 0x0)
ioctl$auto_BLKPG2(r4, 0x1269, 0x0)
mmap$auto(0x0, 0x8000, 0x3, 0xeb1, 0xfffffffffffffffa, 0x10000000008000)
r7 = openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000980), 0x102001, 0x0)
r8 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto(r8, 0x2285, 0xffffffffffffffff)
unshare$auto(0x1)
pwrite64$auto(r7, 0x0, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f00000010c0), 0x0, 0x0)

4.116274456s ago: executing program 1 (id=1349):
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x100000000000030, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000)
write$auto(r0, 0x0, 0x2)
getrlimit$auto(0x3, 0x0)
fdatasync$auto(r0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0x1102, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xc8d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\xc6\x00\x89\te\x8d\a\xfb\\n\x89C:\x84D\x10u\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k', 0x100000a3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/scheduler\x00', 0x103a42, 0x0)
sendfile$auto(r2, r2, 0x0, 0x9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ea182, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto_proc_oom_score_adj_operations_base(r1, &(0x7f0000000180)="935d7ffb5a823750183d8606bfeb9ec0f46e87fe6d51338572bc525208b14c13b3d107731a6ab5e87b1465313a26cf3d60b28356389faa014307f37b614afaa023c29be261d8eb4c2ec15447d0d0db1d620858e3dd4c9173cebefca0ab08899b92d2d6", 0x63)
capget$auto(0x0, 0xfffffffffffffffe)

4.037617601s ago: executing program 0 (id=1350):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
socket(0x2, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffffff, &(0x7f0000000100)=""/169, 0xa9)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r0)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000011c0)=ANY=[], 0x1058}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r2 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r1, 0x805, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_NETNS_FD={0x8, 0xdb, r2}, @NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0x1000}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)
openat$auto_fops_x16_ro_(0xffffffffffffff9c, 0x0, 0x8040, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(r0, &(0x7f0000000280)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000480)={&(0x7f0000002380)=ANY=[@ANYBLOB="d4130000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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"], 0x13d4}}, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x3, 0x120003b)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x1ff, 0x3, 0x8, 0xc, 0x2e, 0x0, 0x3}, 0x6f4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000002340), 0xffffffffffffffff)
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffc, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x40e00, 0x0)

3.11614873s ago: executing program 3 (id=1351):
mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe2$auto(&(0x7f0000000000)=<r1=>r0, 0x9d74)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000780), r2)
sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000d40)={0x1c, r3, 0xed3b82d2a015943f, 0x70bd27, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4044091}, 0x20000000)
sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r3, 0x8, 0x70bd29, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x401}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x6}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x5}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x440}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r4, 0x4bfa, 0x1)
r5 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r5, 0x400, 0x1)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_PROTOCOL_FEATURES(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r6, 0x20, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000850}, 0xc08c)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
acct$auto(&(0x7f0000000000)='/dev/tty\x00`Mx\x9d\xfa\xb3\x1f\xc6k\x01\x13\x9b\x15[\xf7\xaan\x1fOgo\xbb(\xcbx\x9bJ\x91*\xa5a\x02\xf3\x1b\x9d\xddy\xef\xee\xe4h\xd5\nH\x80\x8a\xd7Y\xb8\xcb\x90')
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
sysfs$auto(0x2, 0x23, 0x0)
r7 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r7, 0x0, 0x4)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)

2.643974937s ago: executing program 0 (id=1352):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r0)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="07031abd70250c00587b22"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x40800)
writev$auto(0x3, &(0x7f0000000140)={&(0x7f0000000000), 0xdc7}, 0x4)

2.349184933s ago: executing program 0 (id=1353):
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_11={0xf, 0x800000009, 0x10001, 0x1, 0x5, 0x300, 0xe6ae}, 0x6f3)
ioctl$auto_XFS_IOC_ATTRMULTI_BY_HANDLE(r0, 0x4048587b, &(0x7f0000000340)={{r0, &(0x7f0000000000)="5963a72e0fb3c20ad7e273ed7d0362", 0x4, &(0x7f0000000040)="1e230efc6df6d124e0b31d31637a205eaf4e89e71148de42425d45225fccf8a89e46255b1b8a65838fc4089a4cfc42177df67acf90318c4e95fe5df8f6636e99f1eb872e446a3786da6f8d5169c5e38d34e145b56f4abc27675264a319ab61de6d73f1f16741b284a68a1827c418d447ee3a56b291d8d346de2aa7", 0x2, &(0x7f0000000140)="d0507ce69fcd1afb0741a14185a8f73dd4675eff4ab883c8f980910ebeb49589d4047d206b3ae75b330f72", &(0x7f0000000180)=0x1ff}, 0x2, &(0x7f0000000300)={0x6, 0x7fff, &(0x7f00000001c0)="6811c59cddb917fd127970567b4ec6412b0a5cd26381a1c6239527f23c4ac289f64d4f509b80d03a20cb83111d41fe80c66a4015eba0c626f9c7a9fb22622f9cf29e1e341a53bdeaea4ae49ae531e23d52e36c89933d9cd7c9ccf76047b9652530dfc5a68a7db7f9bea64d78aeb670f3bc07a6ab937cee7bc141e094b86bd54db005e61ecbff562379ba564982c1a4d0f3267f4b15cdd47338d18855e0142d751da75d19645d116fdec716f5e68daaaa13a9344ce72cb22bdcfb5b3a828bab6c9d7d613eef5c021ba7618b490b6cfd70b23bcd55f71c38d2753854660e319134940963", &(0x7f00000002c0)="3fe90cafe87c27db66de6e568623cc7e1ffffbf70f7a00", 0xce, 0x8}})
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
socket(0x2, 0x1, 0x106)
socket(0x6, 0x3, 0x37)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r1 = socket(0x26, 0x5, 0x8c68)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x101e41, 0x0)
ioperm$auto(0x4, 0x100000001, 0x4000005)
futex_waitv$auto(0x0, 0x7ff, 0x8, &(0x7f00000000c0)={0x1000000004, 0x10}, 0x4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x74c40, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x88000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sysfs$auto(0x2, 0x7, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r4 = ioctl$auto_TUNATTACHFILTER(r1, 0x401054d5, 0x0)
ioctl$auto_virtual_ncidev_fops_virtual_ncidev(r4, 0x6, 0x0)
r5 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r5, 0x40146f2c, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(r2, 0x200, 0x800000e4, 0x0, 0xfffffff8)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2b, 0x3, 0x5)

2.219705675s ago: executing program 2 (id=1354):
open(0x0, 0x161342, 0x100)
mmap$auto(0x0, 0x4020009, 0xdf, 0x1c, 0x401, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x4000000e983, 0x4539, 0x11, 0x401, 0x8000)
getgroups$auto(0x1a1, 0xfffffffffffffffd)
mmap$auto(0x200000000, 0x5, 0x8, 0x40009b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
write$auto(0x1, 0x0, 0x80000000)
write$auto(0x1, 0x0, 0x80000000)
munmap$auto(0x8000, 0xffffffff)
open(&(0x7f00000000c0)='./file0\x00', 0x161342, 0x130)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r0=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r0}, 0x6a)
sendto$auto(0xffffffffffffffff, 0x0, 0x6fffff9, 0xfffffff8, &(0x7f0000000440)=@can, 0x36)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
shmctl$auto_IPC_INFO(0x7, 0x3, 0x0)

2.07561913s ago: executing program 3 (id=1355):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/oom_adj\x00', 0x980, 0x0)
read$auto(r0, 0x0, 0x4)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0xc8)
r2 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$auto_UDMABUF_CREATE(r2, 0x40187542, &(0x7f00000000c0)={r1, 0x8, 0x2000000, 0x8000})
r3 = gettid()
rt_sigqueueinfo$auto(r3, 0x11, &(0x7f0000000000)={@siginfo_0_0={0x76bb, 0x3, 0x4, @_sigfault={0x0, @_trapno=0xfffffffe}}})
sendmsg$auto_NL80211_CMD_REMOVE_LINK(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)={0x10b4, 0x0, 0x800, 0x70bd2d, 0x25dfdbff, {}, [@NL80211_ATTR_NAN_FUNC={0x10a0, 0xf0, 0x0, 0x1, [@typed={0x14, 0x121, 0x0, 0x0, @ipv6=@private2}, @typed={0x8, 0x70, 0x0, 0x0, @pid=r3}, @nested={0x1079, 0xf, 0x0, 0x1, [@generic="06109452d80914b1630a34407ef12a334177e9366e11a804ec852bb727dbd3c9e14b9ca387d16d0f9521f1d8edd7d1d7b08ca88639fede29ff8f7240c1141d1659a1c94a2bc598669763e4db9b8416636d27df13dcd1ae0cf7bd80d3652fec797e313ee5315bb9d1a06091a0b52d24d12beb717ecb", @generic="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"]}, @typed={0x4, 0x159}]}]}, 0x10b4}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x4)
r5 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r5, &(0x7f0000000040)='nbd\x00', 0x4)

1.669034197s ago: executing program 0 (id=1356):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000940)={'batadv0\x00', <r3=>0x0})
sendmsg$auto_BATADV_CMD_TP_METER(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x30, r1, 0x77bed28568c43d3b, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_ORIG_ADDRESS={0xa}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xffffffff}]}, 0x30}, 0x1, 0x0, 0xf00000000000000}, 0x80)

1.25492001s ago: executing program 0 (id=1357):
r0 = gettid()
unshare$auto(0x40000080)
landlock_create_ruleset$auto(&(0x7f0000000080)={0x16, 0x8000000000000000, 0x3}, 0xaf57, 0x2)
prctl$auto(0x80003e, 0xfffffffffffffffd, r0, 0x3, 0x1000)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x28, 0x8, 0x0)
listen$auto(0x3, 0x81)
close_range$auto(0x0, 0x5, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r1 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
io_uring_setup$auto(0xf0, &(0x7f0000000180)={0x6, 0x18, 0xd64, 0xc852, 0x6, 0x7, r1, [0x1, 0x401, 0x1000], {0x7, 0x5, 0x1, 0x4, 0x95, 0xf4c, 0x7fff, 0xfffffffb, 0x65f29f6d}, {0x3, 0xadc, 0x10000, 0x0, 0x5, 0xffffffff, 0x1000, 0x54f, 0x5}})
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x0)
r2 = socket(0xa, 0x3, 0xff)
connect$auto(r2, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
write$auto_proc_mem_operations_base(0xffffffffffffffff, 0x0, 0x0)
syz_clone3(0x0, 0x0)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
io_uring_setup$auto(0x2, &(0x7f0000000080)={0x80000003, 0x9, 0x4002, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x4000006, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x104, 0x8, 0x100000000}})
syz_clone(0x1002000, 0x0, 0x0, 0x0, 0x0, 0x0)
futex_wake$auto(0x0, 0x5, 0x4, 0xa)
futex_wake$auto(0x0, 0xfffffffffffffff8, 0xfff, 0x7f)

1.092696594s ago: executing program 1 (id=1358):
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20044011}, 0x80)
r0 = socket(0x28, 0x5, 0x0)
r1 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x40, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000002c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1d\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"P\x8a\xbbY8@Z5`\xa2\x9aSVd\x1d\xac\xe8\x90e\x9d\x03tm\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7.\xbe\x01\x98\xd7l\x00\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfa\xf0\xd9\xc0K\x8b\xa3c\x00'/160, 0xa9)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_smc_pnetid(0x0, r0)
sendmsg$auto_SMC_PNETID_DEL(r2, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000d40)={0x14, r3, 0x1, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40091}, 0x20000000)
getgroups$auto(0x1a1, 0xfffffffffffffffd)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, 0x0, 0x20000054)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x4c2080, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20004000)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), r6)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r6, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01002bbd7000fcdbdfff0700000020000180050002006261746164763000000000010000000008000400000100cb55cec89261f15fe86dd6895220a2727515dcdb266a74c5862b4e4de0f4e1d87124fe51a10aafab92dec7b8113bbce07b411f5506c370aaf2255ab12eb0b16852"], 0x34}, 0x1, 0x0, 0x0, 0x24040000}, 0x700000000000000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$auto(0x3, 0x6f50, 0xffffffffffffffff)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x810004, 0x2000000efb, 0x8000000008011, r5, 0x8000)
setresgid$auto(0x0, 0x0, 0x0)
ioctl$auto_NS_GET_TGID_IN_PIDNS(r1, 0x8004b709, 0x0)
shmctl$auto_SHM_STAT(0x1, 0xd, 0x0)
ioctl$auto_BLKRRPART(r5, 0x125f, 0x0)
lseek$auto(r4, 0x7fff, 0x40001000)
madvise$auto(0x0, 0x400053, 0x9)
connect$auto(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @hyper}, 0x56)
read$auto(r0, &(0x7f0000000100)='(\x00', 0x1)

1.044632771s ago: executing program 2 (id=1359):
madvise$auto(0x0, 0x400053, 0x9)
r0 = socket(0xb, 0x80000, 0x400003)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = socket(0x2b, 0x2, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000002)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffffffffffffffb)
ioctl$auto_SOUND_PCM_READ_CHANNELS(r1, 0x80045006, &(0x7f0000000240))
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/020/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB32(r4, 0x802c550a, &(0x7f0000000180)=ANY=[@ANYBLOB="020000060000e6ff040000000100400008", @ANYRES16, @ANYRES16=r3, @ANYBLOB="cd8e5c3cd4a7726296c3242491487d190c3addb201fa0395a3997305bbb8a2e98e781cefb8e50a2940a2f9a63fd63bb0450eb4", @ANYRES8=r2])
ioctl$auto(0xffffffffffffffff, 0x4008550d, r4)
close_range$auto(r4, 0x8, 0x7fffffff)
r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
ioctl$auto(r5, 0x4b30, 0xffffffffffffffff)
socket(0x10, 0x2, 0x4)
write$auto(r0, 0x0, 0x200)
write$auto(0x3, 0x0, 0x100082)
r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
bind$auto(0xffffffffffffffff, 0x0, 0x6a)
r7 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x100102, 0x0)
write$auto(r7, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x3)
write$auto(r6, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84L\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xff\a\x00\x00\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)

1.013340233s ago: executing program 3 (id=1360):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r0 = gettid()
rt_sigqueueinfo$auto(r0, 0xe, &(0x7f0000000000)={@siginfo_0_0={0x76bb, 0x3, 0x4, @_sigfault={0x0}}})
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)={0x24, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x1}, @NETDEV_A_QUEUE_ID={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x9, 0x9, 0x6, 0x8000000000000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x14)
socket(0x11, 0x80003, 0x300)
socket(0x1d, 0x2, 0x7)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000040)=ANY=[@ANYBLOB="010027bd7000ffdb"], 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x0)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x2}, 0x3, 0x0)
mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)

390.028213ms ago: executing program 0 (id=1361):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/workqueue/scsi_tmf_0/power/autosuspend_delay_ms\x00', 0x8000, 0x0)
openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci8/force_wakeup\x00', 0x20000, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ib_srp/parameters/reconnect_delay\x00', 0x20681, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)='-7', 0x2)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r1 = socket(0x10, 0x4, 0xffffffc0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, 0x0, 0xc000)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
write$auto(0xffffffffffffffff, &(0x7f00000001c0)='c', 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x10, 0x2, 0xffffffff)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/bond_slave_1/disable_policy\x00', 0x202, 0x0)
sendfile$auto(r3, r3, 0x0, 0x3)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x20000000000008b, r4, 0x4, 0x100)
ptrace$auto_PTRACE_SET_THREAD_AREA(0x1a, r4, 0x4, 0x8)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x109500, 0x0)
pread64$auto(r5, 0x0, 0x8, 0xffff)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/free_buffer\x00', 0x20103, 0x0)
process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x4, 0x0)
linkat$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x400)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r6 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r6, 0xc004743e, 0x0)
capset$auto(0x0, 0x0)
ioctl$auto_PPPIOCSPASS(r6, 0x40107447, &(0x7f00000002c0)={0x9, &(0x7f0000000000)={0x50, 0xf2, 0xb0, @raw=0x2}})
syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000004680), 0xffffffffffffffff)

0s ago: executing program 3 (id=1362):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000340), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r3, 0x84, 0x2, 0x0, &(0x7f0000000080)=0x9c8)
mmap$auto(0x0, 0x387, 0x3, 0xeb1, 0xfffffffffffffffa, 0x10000000008000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001a80)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x101b00, 0x0)
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x40001, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x119)
openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/options/record-cmd\x00', 0x2802, 0x0)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdir$auto(&(0x7f0000004440)='./file0\x00', 0x1)
mount$auto(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='xfs\x00', 0x5, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/breakpoint/power/runtime_active_time\x00', 0x2440, 0x0)
read$auto(r4, 0x0, 0x20)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xe, 0x9, 0x5, 0x14, 0x944, 0x1ffe4, 0x3, 0x6, 0x4, 0x9, 0x400005, 0x4000fff, 0x8000007, 0x8001, 0xd, 0x5, 0x3, 0x4, 0x7, 0x20, 0x309, 0x8, 0x0, 0x7fffffff, 0x3, 0x0, 0x0, 0x78, 0x0, 0x0, [0x0, 0x0, 0x0, 0x200, 0x9, 0x0, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x4000000000000, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82, 0x800000000002, 0x9, 0x0, 0xbec, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1174b68040000, 0xfffffffffffffffe, 0xffffffffffffd059, 0x0, 0x0, 0x0, 0x2961, 0x0, 0x2]}, 0x2001fb, 0x7f)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
socket(0x10, 0x2, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0)
sendmsg$auto_SEG6_CMD_DUMPHMAC(r1, &(0x7f0000000440)={0x0, 0xf000, &(0x7f0000000400)={&(0x7f0000000040)={0x14, r2, 0x323, 0x70bd25, 0x25dfdbff}, 0x14}}, 0x20008804)
sendmsg$auto_SEG6_CMD_SETHMAC(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0xac, r2, 0x8, 0x70bd25, 0x25dfdbfe, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0xb}, @SEG6_ATTR_SECRET={0x7c, 0x4, "7b5ea241cca54c44d77f3eefab3cff8fba542e799b1dea75f77e3e43d928c4bd00f218df1ff5e3b944dc83aa17639f76916d0466d286830eb7ff789837582aba94574360665e62559de7c6e7df027cbff192d29f41f54aa19a65333b472d309a396537bc058a8095d0c4653ac0bb1c9ba8d1a595f3d625c7"}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x400}, @SEG6_ATTR_HMACINFO={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0x9, 0x0, 0x0, @uid}]}]}, 0xac}, 0x1, 0x0, 0x0, 0x20000004}, 0x90)

kernel console output (not intermixed with test programs):

] hsr_slave_0: entered promiscuous mode
[   93.441976][ T5830] hsr_slave_1: entered promiscuous mode
[   93.464674][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.472011][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.498131][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.556644][ T5833] Bluetooth: hci2: command tx timeout
[   93.566703][ T5833] Bluetooth: hci3: command tx timeout
[   93.566712][ T5150] Bluetooth: hci0: command tx timeout
[   93.579770][ T5828] team0: Port device team_slave_0 added
[   93.592736][ T5827] hsr_slave_0: entered promiscuous mode
[   93.599573][ T5827] hsr_slave_1: entered promiscuous mode
[   93.606015][ T5827] debugfs: 'hsr0' already exists in 'hsr'
[   93.611825][ T5827] Cannot create hsr debugfs directory
[   93.635654][ T5833] Bluetooth: hci1: command tx timeout
[   93.646418][ T5828] team0: Port device team_slave_1 added
[   93.712000][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.719413][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.745911][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.789087][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.796372][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.822393][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.847581][ T5829] hsr_slave_0: entered promiscuous mode
[   93.854105][ T5829] hsr_slave_1: entered promiscuous mode
[   93.860644][ T5829] debugfs: 'hsr0' already exists in 'hsr'
[   93.866497][ T5829] Cannot create hsr debugfs directory
[   94.057421][ T5828] hsr_slave_0: entered promiscuous mode
[   94.063829][ T5828] hsr_slave_1: entered promiscuous mode
[   94.070611][ T5828] debugfs: 'hsr0' already exists in 'hsr'
[   94.076674][ T5828] Cannot create hsr debugfs directory
[   94.314955][ T5830] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   94.336162][ T5830] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   94.371015][ T5830] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   94.399632][ T5830] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   94.484762][ T5827] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   94.497449][ T5827] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   94.515277][ T5827] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   94.527095][ T5827] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   94.644828][ T5829] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   94.655542][ T5829] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   94.668612][ T5829] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   94.682709][ T5829] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   94.804249][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.824467][ T5828] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   94.841875][ T5828] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   94.858929][ T5828] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   94.877121][ T5828] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   94.929707][ T5830] 8021q: adding VLAN 0 to HW filter on device team0
[   94.956567][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.963804][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.991765][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.998931][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.026502][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.094442][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[   95.123532][ T2964] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.130850][ T2964] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.151748][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.172128][ T2964] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.179339][ T2964] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.274234][ T5829] 8021q: adding VLAN 0 to HW filter on device team0
[   95.328342][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.335578][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.362974][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.370256][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.449149][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.527723][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   95.563162][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.570394][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.638357][ T5833] Bluetooth: hci0: command tx timeout
[   95.638386][ T5150] Bluetooth: hci3: command tx timeout
[   95.643883][ T5833] Bluetooth: hci2: command tx timeout
[   95.661067][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.668280][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.718837][ T5833] Bluetooth: hci1: command tx timeout
[   95.858587][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.922481][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.069097][ T5830] veth0_vlan: entered promiscuous mode
[   96.109343][ T5827] veth0_vlan: entered promiscuous mode
[   96.122903][ T5830] veth1_vlan: entered promiscuous mode
[   96.173359][ T5827] veth1_vlan: entered promiscuous mode
[   96.224281][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.248333][ T5830] veth0_macvtap: entered promiscuous mode
[   96.277990][ T5827] veth0_macvtap: entered promiscuous mode
[   96.299118][ T5830] veth1_macvtap: entered promiscuous mode
[   96.308572][ T5827] veth1_macvtap: entered promiscuous mode
[   96.323419][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.362025][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.383624][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.404831][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.429394][ T2964] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.440236][ T2964] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.451311][ T5829] veth0_vlan: entered promiscuous mode
[   96.461858][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.469855][ T2964] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.480101][ T2964] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.528649][ T5829] veth1_vlan: entered promiscuous mode
[   96.537745][   T49] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.551007][   T49] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.575119][   T49] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.611654][   T49] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.656882][ T5828] veth0_vlan: entered promiscuous mode
[   96.718381][ T5828] veth1_vlan: entered promiscuous mode
[   96.766174][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.774208][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.789191][ T5829] veth0_macvtap: entered promiscuous mode
[   96.825946][ T2984] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.834067][ T2984] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.843562][ T5829] veth1_macvtap: entered promiscuous mode
[   96.894865][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.910517][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.950520][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.990049][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.012332][ T2964] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.021481][ T2964] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.030966][ T5827] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   97.049539][ T5828] veth0_macvtap: entered promiscuous mode
[   97.059080][   T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.070150][   T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.093377][ T5828] veth1_macvtap: entered promiscuous mode
[   97.102326][   T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.125305][   T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.282283][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.338269][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.394405][ T5924] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   97.507601][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.526283][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.561643][ T2984] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.594233][ T2984] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.644175][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.716593][ T5833] Bluetooth: hci2: command tx timeout
[   97.717380][ T5836] Bluetooth: hci3: command tx timeout
[   97.722126][ T5150] Bluetooth: hci0: command tx timeout
[   97.748717][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.796112][ T5833] Bluetooth: hci1: command tx timeout
[   97.834475][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.867043][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.033209][ T2964] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.058273][ T2964] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.186792][ T2984] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.229645][ T2984] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.385787][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   98.797398][ T5939] Zero length message leads to an empty skb
[   99.098472][ T5944] netlink: 342 bytes leftover after parsing attributes in process `syz.2.7'.
[   99.796027][ T5833] Bluetooth: hci3: command tx timeout
[   99.802914][ T5150] Bluetooth: hci2: command tx timeout
[   99.802934][ T5836] Bluetooth: hci0: command tx timeout
[   99.882122][ T5150] Bluetooth: hci1: command tx timeout
[  100.530023][ T5951] FAULT_INJECTION: forcing a failure.
[  100.530023][ T5951] name failslab, interval 1, probability 0, space 0, times 1
[  100.555303][ T5959] netlink: 342 bytes leftover after parsing attributes in process `syz.0.10'.
[  100.596566][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  100.625581][ T5951] CPU: 1 UID: 0 PID: 5951 Comm: syz.1.9 Not tainted syzkaller #0 PREEMPT(full) 
[  100.625623][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  100.625651][ T5951] Call Trace:
[  100.625662][ T5951]  <TASK>
[  100.625674][ T5951]  dump_stack_lvl+0x100/0x190
[  100.625740][ T5951]  should_fail_ex.cold+0x5/0xa
[  100.625789][ T5951]  ? ops_init+0x77/0x5f0
[  100.625837][ T5951]  should_failslab+0xc2/0x120
[  100.625872][ T5951]  __kmalloc_noprof+0xe0/0x850
[  100.625931][ T5951]  ops_init+0x77/0x5f0
[  100.625986][ T5951]  setup_net+0x118/0x3a0
[  100.626037][ T5951]  ? __pfx_setup_net+0x10/0x10
[  100.626086][ T5951]  ? lockdep_init_map_type+0x5c/0x250
[  100.626142][ T5951]  ? mutex_init_lockep+0x110/0x150
[  100.626196][ T5951]  copy_net_ns+0x46f/0x7c0
[  100.626233][ T5951]  create_new_namespaces+0x3ea/0xac0
[  100.626278][ T5951]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  100.626319][ T5951]  ksys_unshare+0x473/0xad0
[  100.626365][ T5951]  ? __pfx_ksys_unshare+0x10/0x10
[  100.626425][ T5951]  __x64_sys_unshare+0x31/0x40
[  100.626467][ T5951]  do_syscall_64+0x106/0xf80
[  100.626515][ T5951]  ? clear_bhb_loop+0x40/0x90
[  100.626557][ T5951]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.626593][ T5951] RIP: 0033:0x7ff4b899c799
[  100.626629][ T5951] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  100.626666][ T5951] RSP: 002b:00007ff4b9774028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  100.626698][ T5951] RAX: ffffffffffffffda RBX: 00007ff4b8c15fa0 RCX: 00007ff4b899c799
[  100.626720][ T5951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  100.626739][ T5951] RBP: 00007ff4b8a32c99 R08: 0000000000000000 R09: 0000000000000000
[  100.626759][ T5951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  100.626805][ T5951] R13: 00007ff4b8c16038 R14: 00007ff4b8c15fa0 R15: 00007ffe84a252c8
[  100.626851][ T5951]  </TASK>
[  102.175913][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  103.725581][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  103.845575][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  104.200295][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  104.746069][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  104.816103][    T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!!
[  104.825227][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  104.947542][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  112.297281][ T6073] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  112.851272][ T6081] netlink: 4 bytes leftover after parsing attributes in process `syz.0.30'.
[  113.458562][ T6085] �: entered promiscuous mode
[  113.642154][ T6085] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  114.219942][ T6094] netlink: 342 bytes leftover after parsing attributes in process `syz.3.34'.
[  119.857779][ T6140] forcing mempool usage for bvec_alloc+0x197/0x210
[  122.326065][ T6158] rnbd_client L213: map_device: Parameters missing
[  122.918802][ T5150] Bluetooth: hci2: command 0x0c1a tx timeout
[  122.998064][ T6146] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  123.570922][ T6146] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  123.643190][ T6146] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  123.782574][ T6146] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  123.804728][ T6146] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  123.853315][ T6146] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  123.991771][ T6146] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  123.998552][ T6146] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  124.155547][ T6146] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  124.166519][ T6146] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  124.209254][ T6146] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  124.217108][ T6146] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  125.103755][ T5150] Bluetooth: hci2: command 0x0c1a tx timeout
[  125.800554][ T5150] Bluetooth: hci1: command 0x0c1a tx timeout
[  126.040507][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout
[  126.201934][ T5150] Bluetooth: hci3: command 0x0c1a tx timeout
[  127.180457][ T5150] Bluetooth: hci2: command 0x0c1a tx timeout
[  127.891345][ T5150] Bluetooth: hci1: command 0x0c1a tx timeout
[  128.121408][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout
[  128.291616][ T5150] Bluetooth: hci3: command 0x0c1a tx timeout
[  129.962776][ T5150] Bluetooth: hci1: command 0x0c1a tx timeout
[  130.215448][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout
[  130.363487][ T5150] Bluetooth: hci3: command 0x0c1a tx timeout
[  132.930601][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  132.937259][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  132.955171][ T6251] =======================================================
[  132.955171][ T6251] WARNING: The mand mount option has been deprecated and
[  132.955171][ T6251]          and is ignored by this kernel. Remove the mand
[  132.955171][ T6251]          option from the mount to silence this warning.
[  132.955171][ T6251] =======================================================
[  138.148432][ T6293] process 'syz.1.69' launched ':,' with NULL argv: empty string added
[  145.831842][ T6351] netlink: 4 bytes leftover after parsing attributes in process `syz.0.80'.
[  146.276370][ T6363] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  146.962278][ T6370] netlink: 4 bytes leftover after parsing attributes in process `syz.3.83'.
[  173.708707][ T6617] netlink: 342 bytes leftover after parsing attributes in process `syz.1.125'.
[  185.258268][ T6714] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  187.272984][ T6731] netlink: 4 bytes leftover after parsing attributes in process `syz.2.146'.
[  187.284977][ T6731] netlink: 54041 bytes leftover after parsing attributes in process `syz.2.146'.
[  194.256348][ T6809] FAULT_INJECTION: forcing a failure.
[  194.256348][ T6809] name failslab, interval 1, probability 0, space 0, times 0
[  194.319714][ T6809] CPU: 0 UID: 0 PID: 6809 Comm: syz.3.161 Not tainted syzkaller #0 PREEMPT(full) 
[  194.319758][ T6809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  194.319779][ T6809] Call Trace:
[  194.319791][ T6809]  <TASK>
[  194.319804][ T6809]  dump_stack_lvl+0x100/0x190
[  194.319861][ T6809]  should_fail_ex.cold+0x5/0xa
[  194.319901][ T6809]  should_failslab+0xc2/0x120
[  194.319940][ T6809]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  194.319990][ T6809]  ? alloc_empty_file+0x55/0x1c0
[  194.320031][ T6809]  ? __pfx_stack_trace_save+0x10/0x10
[  194.320070][ T6809]  alloc_empty_file+0x55/0x1c0
[  194.320115][ T6809]  path_openat+0xe8/0x31a0
[  194.320147][ T6809]  ? kasan_save_stack+0x3f/0x50
[  194.320198][ T6809]  ? kasan_save_stack+0x30/0x50
[  194.320259][ T6809]  ? kasan_save_track+0x14/0x30
[  194.320310][ T6809]  ? __kasan_slab_alloc+0x89/0x90
[  194.320341][ T6809]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  194.320388][ T6809]  ? do_getname+0x35/0x390
[  194.320425][ T6809]  ? do_sys_openat2+0xc5/0x1e0
[  194.320466][ T6809]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.320507][ T6809]  ? __pfx_path_openat+0x10/0x10
[  194.320557][ T6809]  do_file_open+0x20e/0x430
[  194.320593][ T6809]  ? __pfx_do_file_open+0x10/0x10
[  194.320657][ T6809]  ? alloc_fd+0x476/0x790
[  194.320692][ T6809]  ? do_getname+0x191/0x390
[  194.320738][ T6809]  do_sys_openat2+0x10d/0x1e0
[  194.320781][ T6809]  ? __pfx_do_sys_openat2+0x10/0x10
[  194.320848][ T6809]  __x64_sys_openat+0x12d/0x210
[  194.320897][ T6809]  ? __pfx___x64_sys_openat+0x10/0x10
[  194.320957][ T6809]  do_syscall_64+0x106/0xf80
[  194.321003][ T6809]  ? clear_bhb_loop+0x40/0x90
[  194.321046][ T6809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.321080][ T6809] RIP: 0033:0x7ff303b9c799
[  194.321119][ T6809] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  194.321158][ T6809] RSP: 002b:00007ff304b01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  194.321190][ T6809] RAX: ffffffffffffffda RBX: 00007ff303e15fa0 RCX: 00007ff303b9c799
[  194.321213][ T6809] RDX: 000000000000c000 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  194.321245][ T6809] RBP: 00007ff303c32c99 R08: 0000000000000000 R09: 0000000000000000
[  194.321265][ T6809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  194.321286][ T6809] R13: 00007ff303e16038 R14: 00007ff303e15fa0 R15: 00007ffe7d1c7068
[  194.321330][ T6809]  </TASK>
[  194.571527][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  194.577939][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  199.267930][ T6856] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  200.216014][ T6880] netlink: 4 bytes leftover after parsing attributes in process `syz.2.172'.
[  201.364901][ T6890] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  205.071090][ T6979] netlink: 4 bytes leftover after parsing attributes in process `syz.2.185'.
[  206.263491][ T6993] aoe: could not set interface list: too many interfaces
[  206.331315][ T6996] syz.1.189 uses obsolete (PF_INET,SOCK_PACKET)
[  207.544204][ T6997] [U] ^@
[  208.325496][ T7033] netlink: 4 bytes leftover after parsing attributes in process `syz.0.197'.
[  209.318778][ T7046] nbd: illegal input index 65535
[  209.637899][ T5150] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  211.683296][ T5150] Bluetooth: hci3: command 0x0c1a tx timeout
[  213.350640][ T7114] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  213.764432][ T5150] Bluetooth: hci3: command 0x0c1a tx timeout
[  216.722394][ T7159] FAULT_INJECTION: forcing a failure.
[  216.722394][ T7159] name fail_futex, interval 1, probability 0, space 0, times 1
[  216.737106][ T7159] CPU: 0 UID: 0 PID: 7159 Comm: syz.1.224 Not tainted syzkaller #0 PREEMPT(full) 
[  216.737145][ T7159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  216.737164][ T7159] Call Trace:
[  216.737173][ T7159]  <TASK>
[  216.737185][ T7159]  dump_stack_lvl+0x100/0x190
[  216.737238][ T7159]  should_fail_ex.cold+0x5/0xa
[  216.737283][ T7159]  get_futex_key+0x295/0x1620
[  216.737327][ T7159]  ? __pfx_get_futex_key+0x10/0x10
[  216.737362][ T7159]  ? lock_acquire+0x1cf/0x380
[  216.737415][ T7159]  futex_wake+0xea/0x530
[  216.737465][ T7159]  ? __pfx_futex_wake+0x10/0x10
[  216.737512][ T7159]  ? exit_mm_release+0x19/0x30
[  216.737562][ T7159]  do_futex+0x32b/0x350
[  216.737604][ T7159]  ? __pfx_do_futex+0x10/0x10
[  216.737642][ T7159]  ? __might_fault+0xc5/0x140
[  216.737698][ T7159]  mm_release+0x24a/0x2f0
[  216.737732][ T7159]  do_exit+0x704/0x2b60
[  216.737784][ T7159]  ? __pfx_do_exit+0x10/0x10
[  216.737825][ T7159]  ? do_raw_spin_lock+0x128/0x260
[  216.737870][ T7159]  ? find_held_lock+0x2b/0x80
[  216.737899][ T7159]  ? get_signal+0x7e0/0x21e0
[  216.737937][ T7159]  do_group_exit+0xd5/0x2a0
[  216.737984][ T7159]  get_signal+0x1ec7/0x21e0
[  216.738033][ T7159]  ? __pfx_get_signal+0x10/0x10
[  216.738068][ T7159]  ? do_futex+0x192/0x350
[  216.738113][ T7159]  arch_do_signal_or_restart+0x91/0x770
[  216.738155][ T7159]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  216.738207][ T7159]  ? __pfx___x64_sys_futex+0x10/0x10
[  216.738248][ T7159]  ? ksys_write+0x1ac/0x250
[  216.738295][ T7159]  exit_to_user_mode_loop+0x86/0x4a0
[  216.738342][ T7159]  do_syscall_64+0x668/0xf80
[  216.738386][ T7159]  ? clear_bhb_loop+0x40/0x90
[  216.738427][ T7159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.738460][ T7159] RIP: 0033:0x7ff4b899c799
[  216.738486][ T7159] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  216.738515][ T7159] RSP: 002b:00007ff4b638f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  216.738545][ T7159] RAX: fffffffffffffe00 RBX: 00007ff4b8c16368 RCX: 00007ff4b899c799
[  216.738566][ T7159] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff4b8c16368
[  216.738585][ T7159] RBP: 00007ff4b8c16360 R08: 0000000000000000 R09: 0000000000000000
[  216.738604][ T7159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  216.738623][ T7159] R13: 00007ff4b8c163f8 R14: 00007ffe84a251e0 R15: 00007ffe84a252c8
[  216.738665][ T7159]  </TASK>
[  218.712947][ T7190] netlink: 28 bytes leftover after parsing attributes in process `syz.2.232'.
[  219.207388][ T7187] zswap: compressor  not available
[  220.331555][ T7204] Invalid ELF header magic: != ELF
[  223.066775][ T7239] FAULT_INJECTION: forcing a failure.
[  223.066775][ T7239] name failslab, interval 1, probability 0, space 0, times 0
[  223.125374][ T7239] CPU: 0 UID: 0 PID: 7239 Comm: syz.0.242 Not tainted syzkaller #0 PREEMPT(full) 
[  223.125414][ T7239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  223.125428][ T7239] Call Trace:
[  223.125435][ T7239]  <TASK>
[  223.125443][ T7239]  dump_stack_lvl+0x100/0x190
[  223.125482][ T7239]  should_fail_ex.cold+0x5/0xa
[  223.125509][ T7239]  should_failslab+0xc2/0x120
[  223.125534][ T7239]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  223.125569][ T7239]  ? __pmd_alloc+0xbf/0x950
[  223.125601][ T7239]  __pmd_alloc+0xbf/0x950
[  223.125633][ T7239]  __handle_mm_fault+0xa99/0x2b60
[  223.125669][ T7239]  ? mt_find+0x45e/0x8e0
[  223.125706][ T7239]  ? __pfx___handle_mm_fault+0x10/0x10
[  223.125737][ T7239]  ? __pfx_mt_find+0x10/0x10
[  223.125787][ T7239]  ? find_vma+0xbf/0x140
[  223.125808][ T7239]  ? __pfx_find_vma+0x10/0x10
[  223.125834][ T7239]  handle_mm_fault+0x36d/0xa20
[  223.125871][ T7239]  do_user_addr_fault+0x74c/0x12f0
[  223.125918][ T7239]  exc_page_fault+0x6f/0xd0
[  223.125951][ T7239]  asm_exc_page_fault+0x26/0x30
[  223.125982][ T7239] RIP: 0010:rep_movs_alternative+0x30/0x90
[  223.126008][ T7239] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  223.126029][ T7239] RSP: 0018:ffffc90003a87d78 EFLAGS: 00050246
[  223.126047][ T7239] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000008
[  223.126061][ T7239] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90003a87e58
[  223.126075][ T7239] RBP: 0000000000000008 R08: 0000000000000001 R09: fffff52000750fcb
[  223.126088][ T7239] R10: ffffc90003a87e5f R11: 0000000000000000 R12: 0000000000000000
[  223.126102][ T7239] R13: ffffc90003a87e58 R14: 0000000000000000 R15: fffffffffffffff2
[  223.126136][ T7239]  _copy_from_user+0x98/0xd0
[  223.126164][ T7239]  raw_alloc_io_data+0x32/0x1c0
[  223.126192][ T7239]  raw_ioctl+0x114e/0x2b80
[  223.126222][ T7239]  ? __pfx_raw_ioctl+0x10/0x10
[  223.126250][ T7239]  ? __pfx_raw_ioctl+0x10/0x10
[  223.126274][ T7239]  __x64_sys_ioctl+0x18e/0x210
[  223.126311][ T7239]  do_syscall_64+0x106/0xf80
[  223.126346][ T7239]  ? clear_bhb_loop+0x40/0x90
[  223.126374][ T7239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.126397][ T7239] RIP: 0033:0x7f3c7919c799
[  223.126415][ T7239] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  223.126436][ T7239] RSP: 002b:00007f3c79ff8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  223.126455][ T7239] RAX: ffffffffffffffda RBX: 00007f3c79416090 RCX: 00007f3c7919c799
[  223.126470][ T7239] RDX: 0000000000000000 RSI: 00000000c0085508 RDI: 0000000000000005
[  223.126483][ T7239] RBP: 00007f3c79ff8090 R08: 0000000000000000 R09: 0000000000000000
[  223.126497][ T7239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  223.126510][ T7239] R13: 00007f3c79416128 R14: 00007f3c79416090 R15: 00007ffdea2225d8
[  223.126540][ T7239]  </TASK>
[  225.060411][ T7261] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  225.620804][ T7276] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  226.008862][ T7279] rnbd_client L213: map_device: Parameters missing
[  226.064381][ T7274] FAULT_INJECTION: forcing a failure.
[  226.064381][ T7274] name fail_futex, interval 1, probability 0, space 0, times 0
[  226.078778][ T7274] CPU: 1 UID: 0 PID: 7274 Comm: syz.1.247 Not tainted syzkaller #0 PREEMPT(full) 
[  226.078809][ T7274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  226.078822][ T7274] Call Trace:
[  226.078829][ T7274]  <TASK>
[  226.078838][ T7274]  dump_stack_lvl+0x100/0x190
[  226.078878][ T7274]  should_fail_ex.cold+0x5/0xa
[  226.078901][ T7274]  ? rcu_is_watching+0x12/0xc0
[  226.078940][ T7274]  get_futex_key+0x107c/0x1620
[  226.078972][ T7274]  ? __pfx_get_futex_key+0x10/0x10
[  226.078998][ T7274]  ? lock_acquire+0x1cf/0x380
[  226.079037][ T7274]  futex_wake+0xea/0x530
[  226.079075][ T7274]  ? __pfx_futex_wake+0x10/0x10
[  226.079110][ T7274]  ? exit_mm_release+0x19/0x30
[  226.079149][ T7274]  do_futex+0x32b/0x350
[  226.079179][ T7274]  ? __pfx_do_futex+0x10/0x10
[  226.079207][ T7274]  ? __might_fault+0xc5/0x140
[  226.079247][ T7274]  mm_release+0x24a/0x2f0
[  226.079270][ T7274]  do_exit+0x704/0x2b60
[  226.079304][ T7274]  ? __pfx_do_exit+0x10/0x10
[  226.079334][ T7274]  ? do_raw_spin_lock+0x128/0x260
[  226.079367][ T7274]  ? find_held_lock+0x2b/0x80
[  226.079387][ T7274]  ? get_signal+0x7e0/0x21e0
[  226.079420][ T7274]  do_group_exit+0xd5/0x2a0
[  226.079454][ T7274]  get_signal+0x1ec7/0x21e0
[  226.079488][ T7274]  ? __pfx_get_signal+0x10/0x10
[  226.079514][ T7274]  ? do_futex+0x192/0x350
[  226.079547][ T7274]  arch_do_signal_or_restart+0x91/0x770
[  226.079578][ T7274]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  226.079615][ T7274]  ? __pfx___x64_sys_futex+0x10/0x10
[  226.079645][ T7274]  ? ksys_write+0x1ac/0x250
[  226.079671][ T7274]  exit_to_user_mode_loop+0x86/0x4a0
[  226.079705][ T7274]  do_syscall_64+0x668/0xf80
[  226.079737][ T7274]  ? clear_bhb_loop+0x40/0x90
[  226.079766][ T7274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.079789][ T7274] RIP: 0033:0x7ff4b899c799
[  226.079808][ T7274] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  226.079829][ T7274] RSP: 002b:00007ff4b638f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  226.079850][ T7274] RAX: fffffffffffffe00 RBX: 00007ff4b8c16368 RCX: 00007ff4b899c799
[  226.079865][ T7274] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff4b8c16368
[  226.079879][ T7274] RBP: 00007ff4b8c16360 R08: 0000000000000000 R09: 0000000000000000
[  226.079893][ T7274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  226.079908][ T7274] R13: 00007ff4b8c163f8 R14: 00007ffe84a251e0 R15: 00007ffe84a252c8
[  226.079937][ T7274]  </TASK>
[  226.640096][ T7282] mmap: syz.0.251 (7282) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  226.963598][ T7289] netlink: 4 bytes leftover after parsing attributes in process `syz.1.252'.
[  227.258439][ T7292] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  227.928000][ T7302] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x75 pfn:0x78001
[  227.979661][ T7302] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  228.006415][ T7302] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  228.081041][ T7302] raw: 0000000000000075 0000000000000000 00000001ffffffff 0000000000000000
[  228.167943][ T7302] page dumped because: unmovable page
[  228.503450][ T7302] page_owner tracks the page as allocated
[  228.561800][ T7302] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO), pid 5996, tgid 5974 (syz.1.14), ts 106962674832, free_ts 106946655943
[  228.625573][ T7315] netlink: 28 bytes leftover after parsing attributes in process `syz.1.259'.
[  228.637198][ T7302]  post_alloc_hook+0x153/0x170
[  228.655850][ T7302]  get_page_from_freelist+0x111d/0x3140
[  228.683858][ T7302]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  228.702741][ T7302]  alloc_pages_mpol+0x1fb/0x550
[  228.711679][ T7302]  alloc_pages_noprof+0x131/0x390
[  228.722528][ T7302]  brd_submit_bio+0x116a/0x20d0
[  228.735399][ T7302]  __submit_bio+0x419/0x6c0
[  228.751180][ T7302]  submit_bio_noacct_nocheck+0x74f/0xc10
[  228.771921][ T7302]  submit_bio_noacct+0xd17/0x2010
[  228.829955][ T7302]  submit_bio_wait+0x110/0x250
[  228.873568][ T7302]  __blkdev_direct_IO_simple+0x49c/0x890
[  228.910251][ T7302]  blkdev_direct_IO+0xc76/0x1fb0
[  228.935737][ T7302]  blkdev_write_iter+0x703/0xd70
[  228.959719][ T7302]  iter_file_splice_write+0x830/0x10a0
[  228.975829][ T7302]  direct_splice_actor+0x192/0x6c0
[  228.990141][ T7302]  splice_direct_to_actor+0x345/0xa30
[  229.002431][ T7302] page last free pid 5996 tgid 5974 stack trace:
[  229.038612][ T7302]  __free_frozen_pages+0x7e1/0x10d0
[  229.101876][ T7302]  tlb_remove_table_rcu+0x2cf/0x380
[  229.107181][ T7302]  rcu_core+0x5a2/0x10d0
[  229.111500][ T7302]  handle_softirqs+0x1eb/0x9e0
[  229.155543][ T7302]  __irq_exit_rcu+0xef/0x150
[  229.177041][ T7302]  irq_exit_rcu+0x9/0x30
[  229.192685][ T7302]  sysvec_apic_timer_interrupt+0xa3/0xc0
[  229.215812][ T7302]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  230.225579][ T7336] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  230.917903][ T7355] aoe: could not set interface list: too many interfaces
[  230.986468][ T7348] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  231.912274][ T7371] rnbd_client L213: map_device: Parameters missing
[  232.496875][ T7384] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  235.099683][ T7430] netlink: 4 bytes leftover after parsing attributes in process `syz.2.280'.
[  236.596740][ T7460] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  237.879617][ T7481] FAULT_INJECTION: forcing a failure.
[  237.879617][ T7481] name failslab, interval 1, probability 0, space 0, times 0
[  238.003879][ T7481] CPU: 1 UID: 0 PID: 7481 Comm: syz.0.291 Not tainted syzkaller #0 PREEMPT(full) 
[  238.003912][ T7481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  238.003927][ T7481] Call Trace:
[  238.003934][ T7481]  <TASK>
[  238.003943][ T7481]  dump_stack_lvl+0x100/0x190
[  238.003985][ T7481]  should_fail_ex.cold+0x5/0xa
[  238.004013][ T7481]  ? kstrdup_quotable+0xc2/0x190
[  238.004046][ T7481]  should_failslab+0xc2/0x120
[  238.004072][ T7481]  __kmalloc_noprof+0xe0/0x850
[  238.004115][ T7481]  kstrdup_quotable+0xc2/0x190
[  238.004148][ T7481]  ? __pfx_kstrdup_quotable+0x10/0x10
[  238.004183][ T7481]  ? get_cmdline+0x86/0x360
[  238.004215][ T7481]  kstrdup_quotable_cmdline+0x127/0x210
[  238.004253][ T7481]  __report_access+0x4b/0x230
[  238.004284][ T7481]  ? _raw_spin_unlock_irq+0x23/0x50
[  238.004318][ T7481]  task_work_run+0x150/0x240
[  238.004358][ T7481]  ? __pfx_task_work_run+0x10/0x10
[  238.004394][ T7481]  ? xfd_validate_state+0x129/0x190
[  238.004436][ T7481]  exit_to_user_mode_loop+0x100/0x4a0
[  238.004474][ T7481]  do_syscall_64+0x668/0xf80
[  238.004508][ T7481]  ? clear_bhb_loop+0x40/0x90
[  238.004545][ T7481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.004570][ T7481] RIP: 0033:0x7f3c7919c799
[  238.004590][ T7481] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  238.004614][ T7481] RSP: 002b:00007f3c7a019028 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[  238.004636][ T7481] RAX: ffffffffffffffff RBX: 00007f3c79415fa0 RCX: 00007f3c7919c799
[  238.004653][ T7481] RDX: 0000000000000012 RSI: 0000200000002980 RDI: 0000000000000001
[  238.004667][ T7481] RBP: 00007f3c79232c99 R08: 0000000000000004 R09: 0000000000000000
[  238.004682][ T7481] R10: 0000200000002a40 R11: 0000000000000246 R12: 0000000000000000
[  238.004697][ T7481] R13: 00007f3c79416038 R14: 00007f3c79415fa0 R15: 00007ffdea2225d8
[  238.004728][ T7481]  </TASK>
[  238.004925][ T7481] ptrace attach of "(null)"[5830] was attempted by "./syz-executor exec"[7481]
[  243.021849][ T7544] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  244.204374][ T7557] FAULT_INJECTION: forcing a failure.
[  244.204374][ T7557] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  244.229514][ T7557] CPU: 0 UID: 0 PID: 7557 Comm: syz.2.306 Not tainted syzkaller #0 PREEMPT(full) 
[  244.229544][ T7557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  244.229569][ T7557] Call Trace:
[  244.229577][ T7557]  <TASK>
[  244.229585][ T7557]  dump_stack_lvl+0x100/0x190
[  244.229624][ T7557]  should_fail_ex.cold+0x5/0xa
[  244.229650][ T7557]  _copy_from_user+0x2e/0xd0
[  244.229678][ T7557]  vmci_host_unlocked_ioctl+0x9af/0x2070
[  244.229744][ T7557]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  244.229802][ T7557]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  244.229850][ T7557]  ? do_vfs_ioctl+0x226/0x13e0
[  244.229884][ T7557]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  244.229934][ T7557]  ? __fget_files+0x21f/0x3d0
[  244.229959][ T7557]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  244.229999][ T7557]  __x64_sys_ioctl+0x18e/0x210
[  244.230034][ T7557]  do_syscall_64+0x106/0xf80
[  244.230066][ T7557]  ? clear_bhb_loop+0x40/0x90
[  244.230095][ T7557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.230132][ T7557] RIP: 0033:0x7f240db9c799
[  244.230150][ T7557] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  244.230171][ T7557] RSP: 002b:00007f240e9f8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  244.230191][ T7557] RAX: ffffffffffffffda RBX: 00007f240de15fa0 RCX: 00007f240db9c799
[  244.230206][ T7557] RDX: 0000000000000000 RSI: 00000000000007a6 RDI: 0000000000000003
[  244.230219][ T7557] RBP: 00007f240e9f8090 R08: 0000000000000000 R09: 0000000000000000
[  244.230232][ T7557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  244.230245][ T7557] R13: 00007f240de16038 R14: 00007f240de15fa0 R15: 00007ffc001883a8
[  244.230273][ T7557]  </TASK>
[  244.231607][ T7557] netlink: 28 bytes leftover after parsing attributes in process `syz.2.306'.
[  245.241393][ T7567] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  246.310890][ T7581] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  246.389869][ T7582] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  247.770845][ T7607] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  248.564344][ T7619] netlink: 346 bytes leftover after parsing attributes in process `syz.1.318'.
[  250.195387][ T7624] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  250.217935][ T7624] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  250.263300][ T7624] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  250.292675][ T7624] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  250.790318][ T7647] rnbd_client L213: map_device: Parameters missing
[  250.902789][ T5833] Bluetooth: hci2: command 0x0c1a tx timeout
[  251.262562][ T7655] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  251.356035][ T7654] aoe: could not set interface list: too many interfaces
[  252.101585][ T7669] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  252.263436][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout
[  252.343525][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout
[  252.343589][ T5833] Bluetooth: hci3: command 0x0c1a tx timeout
��I��jn����9�_U���VQ8��j@:Un M��%U�x[  254.174232][ T7700] aoe: could not set interface list: too many interfaces
[  254.415286][ T7704] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  254.861937][ T7720] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  255.882947][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  255.895430][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  256.697546][ T7758] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  257.324807][ T7766] FAULT_INJECTION: forcing a failure.
[  257.324807][ T7766] name failslab, interval 1, probability 0, space 0, times 0
[  257.480088][ T7766] CPU: 1 UID: 0 PID: 7766 Comm: syz.0.350 Not tainted syzkaller #0 PREEMPT(full) 
[  257.480131][ T7766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  257.480150][ T7766] Call Trace:
[  257.480161][ T7766]  <TASK>
[  257.480173][ T7766]  dump_stack_lvl+0x100/0x190
[  257.480238][ T7766]  should_fail_ex.cold+0x5/0xa
[  257.480277][ T7766]  ? kstrdup_quotable+0xc2/0x190
[  257.480320][ T7766]  should_failslab+0xc2/0x120
[  257.480354][ T7766]  __kmalloc_noprof+0xe0/0x850
[  257.480414][ T7766]  kstrdup_quotable+0xc2/0x190
[  257.480458][ T7766]  ? __pfx_kstrdup_quotable+0x10/0x10
[  257.480515][ T7766]  ? get_cmdline+0x86/0x360
[  257.480559][ T7766]  kstrdup_quotable_cmdline+0x127/0x210
[  257.480611][ T7766]  __report_access+0x77/0x230
[  257.480652][ T7766]  ? _raw_spin_unlock_irq+0x23/0x50
[  257.480699][ T7766]  task_work_run+0x150/0x240
[  257.480758][ T7766]  ? __pfx_task_work_run+0x10/0x10
[  257.480805][ T7766]  ? xfd_validate_state+0x129/0x190
[  257.480862][ T7766]  exit_to_user_mode_loop+0x100/0x4a0
[  257.480911][ T7766]  do_syscall_64+0x668/0xf80
[  257.480957][ T7766]  ? clear_bhb_loop+0x40/0x90
[  257.480998][ T7766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.481032][ T7766] RIP: 0033:0x7f3c7919c799
[  257.481059][ T7766] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  257.481090][ T7766] RSP: 002b:00007f3c7a019028 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[  257.481120][ T7766] RAX: ffffffffffffffff RBX: 00007f3c79415fa0 RCX: 00007f3c7919c799
[  257.481141][ T7766] RDX: 0000000000000012 RSI: 0000200000002980 RDI: 0000000000000001
[  257.481161][ T7766] RBP: 00007f3c79232c99 R08: 0000000000000004 R09: 0000000000000000
[  257.481181][ T7766] R10: 0000200000002a40 R11: 0000000000000246 R12: 0000000000000000
[  257.481200][ T7766] R13: 00007f3c79416038 R14: 00007f3c79415fa0 R15: 00007ffdea2225d8
[  257.481242][ T7766]  </TASK>
[  257.481270][ T7766] ptrace attach of "./syz-executor exec"[5830] was attempted by "(null)"[7766]
[  258.261722][ T7789] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  258.572550][ T7794] netlink: 28 bytes leftover after parsing attributes in process `syz.0.357'.
[  259.008514][ T7802] netlink: 326 bytes leftover after parsing attributes in process `syz.3.360'.
[  259.067549][ T7802] netlink: 28 bytes leftover after parsing attributes in process `syz.3.360'.
[  261.226610][ T7837] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  261.465003][ T7840] Invalid ELF header magic: != ELF
[  271.269194][ T7965] netlink: 28 bytes leftover after parsing attributes in process `syz.3.395'.
[  272.562622][ T7986] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  274.730559][ T8030] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  275.454328][ T8041] rnbd_client L213: map_device: Parameters missing
[  275.687517][ T8047] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  277.873544][ T5833] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  278.038150][ T8076] netlink: 4 bytes leftover after parsing attributes in process `syz.3.421'.
[  279.953448][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout
[  280.101940][ T8108] netlink: 28 bytes leftover after parsing attributes in process `syz.1.429'.
[  280.241818][ T8111] FAULT_INJECTION: forcing a failure.
[  280.241818][ T8111] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  280.302858][ T8113] netlink: 28 bytes leftover after parsing attributes in process `syz.1.431'.
[  280.382514][ T8111] CPU: 0 UID: 0 PID: 8111 Comm: syz.1.431 Not tainted syzkaller #0 PREEMPT(full) 
[  280.382559][ T8111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  280.382573][ T8111] Call Trace:
[  280.382580][ T8111]  <TASK>
[  280.382589][ T8111]  dump_stack_lvl+0x100/0x190
[  280.382629][ T8111]  should_fail_ex.cold+0x5/0xa
[  280.382657][ T8111]  _copy_to_user+0x32/0xd0
[  280.382686][ T8111]  simple_read_from_buffer+0xcb/0x170
[  280.382725][ T8111]  proc_fail_nth_read+0x1af/0x230
[  280.382755][ T8111]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  280.382786][ T8111]  ? rw_verify_area+0xce/0x6d0
[  280.382820][ T8111]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  280.382848][ T8111]  vfs_read+0x1e4/0xb30
[  280.382889][ T8111]  ? __pfx_vfs_read+0x10/0x10
[  280.382931][ T8111]  ? __fget_files+0x215/0x3d0
[  280.382959][ T8111]  ? __fget_files+0x21f/0x3d0
[  280.382988][ T8111]  ksys_read+0x12a/0x250
[  280.383008][ T8111]  ? __pfx_ksys_read+0x10/0x10
[  280.383036][ T8111]  do_syscall_64+0x106/0xf80
[  280.383068][ T8111]  ? clear_bhb_loop+0x40/0x90
[  280.383125][ T8111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.383158][ T8111] RIP: 0033:0x7ff4b895cfce
[  280.383183][ T8111] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  280.383214][ T8111] RSP: 002b:00007ff4b9773fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  280.383236][ T8111] RAX: ffffffffffffffda RBX: 00007ff4b97746c0 RCX: 00007ff4b895cfce
[  280.383275][ T8111] RDX: 000000000000000f RSI: 00007ff4b97740a0 RDI: 0000000000000004
[  280.383294][ T8111] RBP: 00007ff4b9774090 R08: 0000000000000000 R09: 0000000000000000
[  280.383312][ T8111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.383330][ T8111] R13: 00007ff4b8c16038 R14: 00007ff4b8c15fa0 R15: 00007ffe84a252c8
[  280.383371][ T8111]  </TASK>
[  281.292414][ T8131] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  281.474777][ T8134] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  282.043303][ T5833] Bluetooth: hci0: command 0x0c1a tx timeout
[  282.242214][ T8142] FAULT_INJECTION: forcing a failure.
[  282.242214][ T8142] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  282.271588][ T8142] CPU: 1 UID: 0 PID: 8142 Comm: syz.1.437 Not tainted syzkaller #0 PREEMPT(full) 
[  282.271624][ T8142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  282.271638][ T8142] Call Trace:
[  282.271645][ T8142]  <TASK>
[  282.271653][ T8142]  dump_stack_lvl+0x100/0x190
[  282.271691][ T8142]  should_fail_ex.cold+0x5/0xa
[  282.271716][ T8142]  _copy_from_user+0x2e/0xd0
[  282.271745][ T8142]  core_sys_select+0x472/0xbb0
[  282.271788][ T8142]  ? __pfx_core_sys_select+0x10/0x10
[  282.271823][ T8142]  ? get_pid_task+0xfc/0x250
[  282.271856][ T8142]  ? get_pid_task+0x106/0x250
[  282.271902][ T8142]  ? __mutex_unlock_slowpath+0x15c/0x790
[  282.271936][ T8142]  ? __fget_files+0x215/0x3d0
[  282.271983][ T8142]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  282.272036][ T8142]  kern_select+0x20c/0x270
[  282.272089][ T8142]  ? __pfx_kern_select+0x10/0x10
[  282.272144][ T8142]  ? __pfx_ksys_write+0x10/0x10
[  282.272178][ T8142]  __x64_sys_select+0xbd/0x160
[  282.272205][ T8142]  ? do_syscall_64+0x95/0xf80
[  282.272256][ T8142]  ? lockdep_hardirqs_on+0x78/0x100
[  282.272319][ T8142]  do_syscall_64+0x106/0xf80
[  282.272362][ T8142]  ? clear_bhb_loop+0x40/0x90
[  282.272402][ T8142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.272433][ T8142] RIP: 0033:0x7ff4b899c799
[  282.272465][ T8142] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  282.272494][ T8142] RSP: 002b:00007ff4b9774028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  282.272524][ T8142] RAX: ffffffffffffffda RBX: 00007ff4b8c15fa0 RCX: 00007ff4b899c799
[  282.272545][ T8142] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  282.272563][ T8142] RBP: 00007ff4b9774090 R08: 0000000000000000 R09: 0000000000000000
[  282.272587][ T8142] R10: 0000200000000580 R11: 0000000000000246 R12: 0000000000000001
[  282.272601][ T8142] R13: 00007ff4b8c16038 R14: 00007ff4b8c15fa0 R15: 00007ffe84a252c8
[  282.272631][ T8142]  </TASK>
[  283.334030][ T8165] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  284.067612][ T8169] netlink: 4 bytes leftover after parsing attributes in process `syz.1.442'.
[  284.248007][ T8178] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  285.404752][ T8199] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  289.761878][ T8260] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  290.568027][ T8267] netlink: 'syz.0.462': attribute type 21 has an invalid length.
[  290.623414][ T8267] netlink: 326 bytes leftover after parsing attributes in process `syz.0.462'.
[  291.647777][ T8284] netlink: 4 bytes leftover after parsing attributes in process `syz.0.467'.
[  291.884809][ T8289] netlink: 342 bytes leftover after parsing attributes in process `syz.1.468'.
[  293.073319][ T8303] rnbd_client L213: map_device: Parameters missing
[  293.863035][ T8320] netlink: 4 bytes leftover after parsing attributes in process `syz.1.475'.
[  294.462055][ T8336] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  298.152553][ T8387] netlink: 4 bytes leftover after parsing attributes in process `syz.1.490'.
[  298.167671][ T8387] netlink: 54041 bytes leftover after parsing attributes in process `syz.1.490'.
[  299.441061][ T8401] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  299.961487][ T8412] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  301.998329][ T8451] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  302.532764][ T8461] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  303.174461][ T8475] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  303.271624][ T8479] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  303.921884][ T8487] binder: 8486:8487 ioctl c0306201 2000000000c0 returned -14
[  304.370879][ T8495] netlink: 28 bytes leftover after parsing attributes in process `syz.0.514'.
[  309.403348][ T8555] binder: 8554:8555 ioctl c0306201 2000000000c0 returned -14
[  309.434695][ T8553] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input14
[  312.116904][ T8594] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  315.832712][ T8652] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  317.332243][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  317.356568][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  322.457219][ T8741] FAULT_INJECTION: forcing a failure.
[  322.457219][ T8741] name fail_futex, interval 1, probability 0, space 0, times 0
[  322.524967][ T8741] CPU: 0 UID: 0 PID: 8741 Comm: syz.3.563 Not tainted syzkaller #0 PREEMPT(full) 
[  322.525013][ T8741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  322.525033][ T8741] Call Trace:
[  322.525055][ T8741]  <TASK>
[  322.525068][ T8741]  dump_stack_lvl+0x100/0x190
[  322.525126][ T8741]  should_fail_ex.cold+0x5/0xa
[  322.525167][ T8741]  get_futex_key+0x295/0x1620
[  322.525215][ T8741]  ? __pfx_get_futex_key+0x10/0x10
[  322.525256][ T8741]  ? lock_acquire+0x1cf/0x380
[  322.525318][ T8741]  futex_wake+0xea/0x530
[  322.525376][ T8741]  ? __pfx_futex_wake+0x10/0x10
[  322.525431][ T8741]  ? exit_mm_release+0x19/0x30
[  322.525488][ T8741]  do_futex+0x32b/0x350
[  322.525537][ T8741]  ? __pfx_do_futex+0x10/0x10
[  322.525580][ T8741]  ? __might_fault+0xc5/0x140
[  322.525645][ T8741]  mm_release+0x24a/0x2f0
[  322.525681][ T8741]  do_exit+0x704/0x2b60
[  322.525732][ T8741]  ? __pfx_do_exit+0x10/0x10
[  322.525778][ T8741]  ? do_raw_spin_lock+0x128/0x260
[  322.525828][ T8741]  ? find_held_lock+0x2b/0x80
[  322.525860][ T8741]  ? get_signal+0x7e0/0x21e0
[  322.525901][ T8741]  do_group_exit+0xd5/0x2a0
[  322.525953][ T8741]  get_signal+0x1ec7/0x21e0
[  322.526009][ T8741]  ? __pfx_get_signal+0x10/0x10
[  322.526068][ T8741]  ? do_futex+0x192/0x350
[  322.526120][ T8741]  arch_do_signal_or_restart+0x91/0x770
[  322.526169][ T8741]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  322.526227][ T8741]  ? __pfx___x64_sys_futex+0x10/0x10
[  322.526273][ T8741]  ? ksys_write+0x1ac/0x250
[  322.526315][ T8741]  exit_to_user_mode_loop+0x86/0x4a0
[  322.526367][ T8741]  do_syscall_64+0x668/0xf80
[  322.526418][ T8741]  ? clear_bhb_loop+0x40/0x90
[  322.526463][ T8741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.526500][ T8741] RIP: 0033:0x7ff303b9c799
[  322.526530][ T8741] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  322.526562][ T8741] RSP: 002b:00007ff304b010e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  322.526595][ T8741] RAX: fffffffffffffe00 RBX: 00007ff303e15fa8 RCX: 00007ff303b9c799
[  322.526618][ T8741] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff303e15fa8
[  322.526640][ T8741] RBP: 00007ff303e15fa0 R08: 0000000000000000 R09: 0000000000000000
[  322.526660][ T8741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  322.526681][ T8741] R13: 00007ff303e16038 R14: 00007ffe7d1c6f80 R15: 00007ffe7d1c7068
[  322.526729][ T8741]  </TASK>
[  323.497025][ T8762] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  329.230001][ T8834] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  331.313536][ T8864] Invalid ELF header magic: != ELF
[  332.150216][ T8870] netlink: 346 bytes leftover after parsing attributes in process `syz.0.589'.
[  333.681109][ T8870] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  333.687893][ T8870] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  333.694700][ T8870] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  333.700737][ T8870] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  334.833227][ T5833] Bluetooth: hci2: command 0x0c1a tx timeout
[  335.559140][ T8914] zswap: compressor  not available
[  335.713311][ T5833] Bluetooth: hci3: command 0x0c1a tx timeout
[  335.713827][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout
[  335.725694][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  335.802315][ T8932] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  336.348902][ T8942] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  338.073472][ T8964] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  342.232658][ T9019] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  344.172771][ T9045] sysfs_service_op_store: Client not running :-5:
[  345.649488][ T9069] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  345.978812][ T9065] Invalid ELF header magic: != ELF
[  348.954149][ T9118] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  350.255271][ T9137] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  351.157175][ T9154] FAULT_INJECTION: forcing a failure.
[  351.157175][ T9154] name failslab, interval 1, probability 0, space 0, times 0
[  351.204547][ T9154] CPU: 1 UID: 0 PID: 9154 Comm: syz.0.653 Not tainted syzkaller #0 PREEMPT(full) 
[  351.204581][ T9154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  351.204599][ T9154] Call Trace:
[  351.204673][ T9154]  <TASK>
[  351.204682][ T9154]  dump_stack_lvl+0x100/0x190
[  351.204748][ T9154]  should_fail_ex.cold+0x5/0xa
[  351.204789][ T9154]  should_failslab+0xc2/0x120
[  351.204832][ T9154]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  351.204880][ T9154]  ? __kernfs_new_node+0xd2/0x960
[  351.204937][ T9154]  __kernfs_new_node+0xd2/0x960
[  351.204976][ T9154]  ? __pfx___kernfs_new_node+0x10/0x10
[  351.205019][ T9154]  ? find_held_lock+0x2b/0x80
[  351.205054][ T9154]  ? kernfs_root+0xee/0x2a0
[  351.205133][ T9154]  ? kernfs_root+0xee/0x2a0
[  351.205191][ T9154]  kernfs_new_node+0x11b/0x1a0
[  351.205253][ T9154]  __kernfs_create_file+0x53/0x350
[  351.205299][ T9154]  sysfs_add_file_mode_ns+0x207/0x3c0
[  351.205350][ T9154]  internal_create_group+0x593/0xf40
[  351.205395][ T9154]  ? __pfx_internal_create_group+0x10/0x10
[  351.205436][ T9154]  ? kernfs_create_link+0x1bd/0x240
[  351.205469][ T9154]  internal_create_groups+0x9d/0x150
[  351.205509][ T9154]  device_add+0x71a/0x1950
[  351.205602][ T9154]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  351.205656][ T9154]  ? __pfx_device_add+0x10/0x10
[  351.205684][ T9154]  ? lockdep_init_map_type+0x5c/0x250
[  351.205718][ T9154]  ? __init_waitqueue_head+0xca/0x150
[  351.205764][ T9154]  netdev_register_kobject+0x1a9/0x3d0
[  351.205875][ T9154]  register_netdevice+0x12e0/0x2210
[  351.205955][ T9154]  ? __pfx_register_netdevice+0x10/0x10
[  351.206000][ T9154]  ? __pfx_loopback_net_init+0x10/0x10
[  351.206061][ T9154]  register_netdev+0x34/0x50
[  351.206104][ T9154]  loopback_net_init+0x7a/0x170
[  351.206130][ T9154]  ? __pfx_loopback_net_init+0x10/0x10
[  351.206155][ T9154]  ops_init+0x1e2/0x5f0
[  351.206227][ T9154]  setup_net+0x118/0x3a0
[  351.206265][ T9154]  ? __pfx_setup_net+0x10/0x10
[  351.206300][ T9154]  ? lockdep_init_map_type+0x5c/0x250
[  351.206334][ T9154]  ? mutex_init_lockep+0x110/0x150
[  351.206372][ T9154]  copy_net_ns+0x46f/0x7c0
[  351.206397][ T9154]  create_new_namespaces+0x3ea/0xac0
[  351.206437][ T9154]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  351.206467][ T9154]  ksys_unshare+0x473/0xad0
[  351.206507][ T9154]  ? __pfx_ksys_unshare+0x10/0x10
[  351.206549][ T9154]  __x64_sys_unshare+0x31/0x40
[  351.206580][ T9154]  do_syscall_64+0x106/0xf80
[  351.206660][ T9154]  ? clear_bhb_loop+0x40/0x90
[  351.206698][ T9154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.206723][ T9154] RIP: 0033:0x7f3c7919c799
[  351.206744][ T9154] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  351.206768][ T9154] RSP: 002b:00007f3c7a019028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  351.206812][ T9154] RAX: ffffffffffffffda RBX: 00007f3c79415fa0 RCX: 00007f3c7919c799
[  351.206829][ T9154] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  351.206843][ T9154] RBP: 00007f3c79232c99 R08: 0000000000000000 R09: 0000000000000000
[  351.206858][ T9154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  351.206873][ T9154] R13: 00007f3c79416038 R14: 00007f3c79415fa0 R15: 00007ffdea2225d8
[  351.206904][ T9154]  </TASK>
[  352.225516][ T9168] FAULT_INJECTION: forcing a failure.
[  352.225516][ T9168] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  352.303292][ T9168] CPU: 0 UID: 0 PID: 9168 Comm: syz.1.656 Not tainted syzkaller #0 PREEMPT(full) 
[  352.303335][ T9168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  352.303353][ T9168] Call Trace:
[  352.303364][ T9168]  <TASK>
[  352.303375][ T9168]  dump_stack_lvl+0x100/0x190
[  352.303430][ T9168]  should_fail_ex.cold+0x5/0xa
[  352.303467][ T9168]  _copy_from_user+0x2e/0xd0
[  352.303606][ T9168]  sctp_setsockopt+0x8cc/0xb370
[  352.303706][ T9168]  ? __pfx_aa_sk_perm+0x10/0x10
[  352.303776][ T9168]  ? __pfx_sctp_setsockopt+0x10/0x10
[  352.303815][ T9168]  ? aa_sock_opt_perm+0xfe/0x1b0
[  352.303911][ T9168]  ? sock_common_setsockopt+0x2e/0xf0
[  352.304007][ T9168]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  352.304060][ T9168]  do_sock_setsockopt+0xf3/0x1d0
[  352.304137][ T9168]  __sys_setsockopt+0x119/0x190
[  352.304187][ T9168]  __x64_sys_setsockopt+0xbd/0x160
[  352.304228][ T9168]  ? do_syscall_64+0x95/0xf80
[  352.304271][ T9168]  ? lockdep_hardirqs_on+0x78/0x100
[  352.304343][ T9168]  do_syscall_64+0x106/0xf80
[  352.304383][ T9168]  ? clear_bhb_loop+0x40/0x90
[  352.304420][ T9168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.304452][ T9168] RIP: 0033:0x7ff4b899c799
[  352.304477][ T9168] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  352.304505][ T9168] RSP: 002b:00007ff4b9774028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  352.304537][ T9168] RAX: ffffffffffffffda RBX: 00007ff4b8c15fa0 RCX: 00007ff4b899c799
[  352.304551][ T9168] RDX: 0000000000000076 RSI: 0000010000000084 RDI: 0000000000000003
[  352.304564][ T9168] RBP: 00007ff4b9774090 R08: 0000000000000008 R09: 0000000000000000
[  352.304578][ T9168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  352.304590][ T9168] R13: 00007ff4b8c16038 R14: 00007ff4b8c15fa0 R15: 00007ffe84a252c8
[  352.304619][ T9168]  </TASK>
[  357.074775][ T9209] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  357.075702][ T5150] Bluetooth: hci2: command 0x0c1a tx timeout
[  357.273711][ T9209] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  357.279912][ T9209] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  357.333380][ T9209] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  359.332516][ T5150] Bluetooth: hci1: command 0x0c1a tx timeout
[  359.332527][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout
[  359.396674][ T5150] Bluetooth: hci3: command 0x0c1a tx timeout
[  360.768266][ T9306] netlink: 28 bytes leftover after parsing attributes in process `syz.0.685'.
[  361.635951][ T9328] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  362.708217][ T9341] zswap: compressor  not available
[  363.081835][ T9344] zswap: compressor  not available
[  364.343949][ T9377] FAULT_INJECTION: forcing a failure.
[  364.343949][ T9377] name failslab, interval 1, probability 0, space 0, times 0
[  364.423245][ T9377] CPU: 0 UID: 0 PID: 9377 Comm: syz.2.699 Not tainted syzkaller #0 PREEMPT(full) 
[  364.423286][ T9377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  364.423303][ T9377] Call Trace:
[  364.423312][ T9377]  <TASK>
[  364.423323][ T9377]  dump_stack_lvl+0x100/0x190
[  364.423376][ T9377]  should_fail_ex.cold+0x5/0xa
[  364.423412][ T9377]  should_failslab+0xc2/0x120
[  364.423446][ T9377]  __kmalloc_cache_noprof+0x7a/0x6f0
[  364.423487][ T9377]  ? proc_thread_self_get_link+0x1a6/0x210
[  364.423542][ T9377]  proc_thread_self_get_link+0x1a6/0x210
[  364.423593][ T9377]  pick_link+0xac2/0x13c0
[  364.423671][ T9377]  ? __pfx_proc_thread_self_get_link+0x10/0x10
[  364.423724][ T9377]  step_into_slowpath+0x9ba/0xf90
[  364.423780][ T9377]  ? __pfx_step_into_slowpath+0x10/0x10
[  364.423844][ T9377]  ? lookup_fast+0x2da/0x600
[  364.423887][ T9377]  ? inode_permission+0x374/0x620
[  364.423933][ T9377]  link_path_walk+0xf28/0x1cc0
[  364.424001][ T9377]  path_openat+0x1be/0x31a0
[  364.424024][ T9377]  ? kasan_save_stack+0x3f/0x50
[  364.424059][ T9377]  ? kasan_save_stack+0x30/0x50
[  364.424093][ T9377]  ? kasan_save_track+0x14/0x30
[  364.424128][ T9377]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  364.424170][ T9377]  ? __pfx_path_openat+0x10/0x10
[  364.424205][ T9377]  do_file_open+0x20e/0x430
[  364.424230][ T9377]  ? __pfx_do_file_open+0x10/0x10
[  364.424274][ T9377]  ? alloc_fd+0x476/0x790
[  364.424311][ T9377]  ? do_getname+0x191/0x390
[  364.424342][ T9377]  do_sys_openat2+0x10d/0x1e0
[  364.424377][ T9377]  ? __pfx_do_sys_openat2+0x10/0x10
[  364.424430][ T9377]  __x64_sys_openat+0x12d/0x210
[  364.424461][ T9377]  ? __pfx___x64_sys_openat+0x10/0x10
[  364.424502][ T9377]  do_syscall_64+0x106/0xf80
[  364.424534][ T9377]  ? clear_bhb_loop+0x40/0x90
[  364.424562][ T9377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.424585][ T9377] RIP: 0033:0x7f240db5cfce
[  364.424603][ T9377] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  364.424624][ T9377] RSP: 002b:00007f240e9f7f98 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  364.424645][ T9377] RAX: ffffffffffffffda RBX: 00007f240e9f86c0 RCX: 00007f240db5cfce
[  364.424659][ T9377] RDX: 0000000000000002 RSI: 00007f240dc325a0 RDI: ffffffffffffff9c
[  364.424673][ T9377] RBP: 00007f240dc32c99 R08: 0000000000000000 R09: 0000000000000000
[  364.424686][ T9377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  364.424699][ T9377] R13: 00007f240de16038 R14: 00007f240de15fa0 R15: 00007ffc001883a8
[  364.424728][ T9377]  </TASK>
[  364.424967][ T9377] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  365.712444][ T9372] program syz.1.698 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  366.449236][ T9402] FAULT_INJECTION: forcing a failure.
[  366.449236][ T9402] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.490424][ T9402] CPU: 0 UID: 0 PID: 9402 Comm: syz.0.703 Not tainted syzkaller #0 PREEMPT(full) 
[  366.490466][ T9402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  366.490489][ T9402] Call Trace:
[  366.490500][ T9402]  <TASK>
[  366.490512][ T9402]  dump_stack_lvl+0x100/0x190
[  366.490566][ T9402]  should_fail_ex.cold+0x5/0xa
[  366.490604][ T9402]  copy_fpstate_to_sigframe+0x861/0xb20
[  366.490678][ T9402]  ? kmem_cache_free+0x124/0x6a0
[  366.490723][ T9402]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  366.490776][ T9402]  ? collect_signal+0x271/0x550
[  366.490818][ T9402]  ? x86_task_fpu+0x5f/0x90
[  366.490856][ T9402]  get_sigframe+0x3fb/0x940
[  366.490912][ T9402]  ? __pfx_get_sigframe+0x10/0x10
[  366.490964][ T9402]  ? rcu_is_watching+0x12/0xc0
[  366.491029][ T9402]  ? siginfo_layout+0x156/0x290
[  366.491087][ T9402]  x64_setup_rt_frame+0x12f/0xce0
[  366.491136][ T9402]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  366.491176][ T9402]  ? __pfx_vfs_read+0x10/0x10
[  366.491242][ T9402]  arch_do_signal_or_restart+0x587/0x770
[  366.491285][ T9402]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  366.491337][ T9402]  ? ksys_read+0x1ac/0x250
[  366.491373][ T9402]  exit_to_user_mode_loop+0x86/0x4a0
[  366.491420][ T9402]  do_syscall_64+0x668/0xf80
[  366.491482][ T9402]  ? clear_bhb_loop+0x40/0x90
[  366.491521][ T9402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.491572][ T9402] RIP: 0033:0x7f3c7919c799
[  366.491597][ T9402] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  366.491627][ T9402] RSP: 002b:00007f3c7a019028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  366.491661][ T9402] RAX: fffffffffffffffc RBX: 00007f3c79415fa0 RCX: 00007f3c7919c799
[  366.491682][ T9402] RDX: 0000000000000028 RSI: 0000200000000340 RDI: 0000000000000000
[  366.491702][ T9402] RBP: 00007f3c7a019090 R08: 0000000000000000 R09: 0000000000000000
[  366.491721][ T9402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.491740][ T9402] R13: 00007f3c79416038 R14: 00007f3c79415fa0 R15: 00007ffdea2225d8
[  366.491782][ T9402]  </TASK>
[  369.454929][ T9449] Invalid ELF header magic: != ELF
[  370.787539][ T9458] Invalid ELF header magic: != ELF
[  370.842738][ T9469] netlink: 28 bytes leftover after parsing attributes in process `syz.1.717'.
[  371.762061][   T13] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.016214][   T13] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.151935][   T13] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.366340][   T13] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.773193][ T9488] netlink: 334 bytes leftover after parsing attributes in process `syz.0.722'.
[  373.305221][ T5836] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  373.348135][ T5836] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  373.356491][ T5836] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  373.365115][ T5836] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  373.372881][ T5836] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  373.485855][   T13] bridge_slave_1: left allmulticast mode
[  373.492776][   T13] bridge_slave_1: left promiscuous mode
[  373.499945][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.560342][   T13] bridge_slave_0: left allmulticast mode
[  373.566430][   T13] bridge_slave_0: left promiscuous mode
[  373.572484][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.464832][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  374.489332][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  374.520484][   T13] bond0 (unregistering): Released all slaves
[  374.869885][ T9511] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  375.393334][ T5836] Bluetooth: hci3: command tx timeout
[  375.498531][ T9493] chnl_net:caif_netlink_parms(): no params data found
[  376.642554][ T9493] bridge0: port 1(bridge_slave_0) entered blocking state
[  376.709342][ T9493] bridge0: port 1(bridge_slave_0) entered disabled state
[  376.734723][ T9493] bridge_slave_0: entered allmulticast mode
[  376.782947][ T9493] bridge_slave_0: entered promiscuous mode
[  376.838638][ T9548] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  376.858995][ T9493] bridge0: port 2(bridge_slave_1) entered blocking state
[  376.870763][ T9493] bridge0: port 2(bridge_slave_1) entered disabled state
[  376.884254][ T9493] bridge_slave_1: entered allmulticast mode
[  376.895162][ T9493] bridge_slave_1: entered promiscuous mode
[  377.006298][ T9493] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  377.096184][ T9493] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  377.473259][ T5150] Bluetooth: hci3: command tx timeout
[  377.883146][ T9493] team0: Port device team_slave_0 added
[  377.904510][ T9493] team0: Port device team_slave_1 added
[  378.080968][ T9493] batman_adv: batadv0: Adding interface: batadv_slave_0
[  378.129115][ T9493] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  378.253246][ T9493] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  378.363711][ T9493] batman_adv: batadv0: Adding interface: batadv_slave_1
[  378.370801][ T9493] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  378.443099][ T9493] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  378.762658][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  378.772857][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  378.876772][ T9493] hsr_slave_0: entered promiscuous mode
[  378.931082][ T9493] hsr_slave_1: entered promiscuous mode
[  378.953599][ T9493] debugfs: 'hsr0' already exists in 'hsr'
[  378.959391][ T9493] Cannot create hsr debugfs directory
[  379.188561][   T13] hsr_slave_0: left promiscuous mode
[  379.205352][   T13] hsr_slave_1: left promiscuous mode
[  379.228582][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  379.272105][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  379.279904][ T9564] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2)
[  379.326252][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  379.353879][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  379.455177][   T13] veth1_macvtap: left promiscuous mode
[  379.494400][   T13] veth0_macvtap: left promiscuous mode
[  379.500947][   T13] veth1_vlan: left promiscuous mode
[  379.507233][   T13] veth0_vlan: left promiscuous mode
[  379.553262][ T5836] Bluetooth: hci3: command tx timeout
[  379.694815][ T9595] FAULT_INJECTION: forcing a failure.
[  379.694815][ T9595] name failslab, interval 1, probability 0, space 0, times 0
[  379.753351][ T9595] CPU: 0 UID: 0 PID: 9595 Comm: syz.2.737 Not tainted syzkaller #0 PREEMPT(full) 
[  379.753385][ T9595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  379.753399][ T9595] Call Trace:
[  379.753407][ T9595]  <TASK>
[  379.753416][ T9595]  dump_stack_lvl+0x100/0x190
[  379.753459][ T9595]  should_fail_ex.cold+0x5/0xa
[  379.753490][ T9595]  ? tomoyo_realpath_from_path+0xb6/0x690
[  379.753613][ T9595]  should_failslab+0xc2/0x120
[  379.753639][ T9595]  __kmalloc_noprof+0xe0/0x850
[  379.753684][ T9595]  tomoyo_realpath_from_path+0xb6/0x690
[  379.753725][ T9595]  tomoyo_check_open_permission+0x2af/0x3c0
[  379.753754][ T9595]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  379.753810][ T9595]  ? do_raw_spin_lock+0x128/0x260
[  379.753849][ T9595]  ? path_get+0x61/0x80
[  379.753879][ T9595]  tomoyo_file_open+0x6b/0x90
[  379.753917][ T9595]  security_file_open+0xb5/0x1e0
[  379.753978][ T9595]  do_dentry_open+0x5aa/0x1660
[  379.754005][ T9595]  ? security_inode_permission+0xbf/0x250
[  379.754037][ T9595]  vfs_open+0x82/0x3f0
[  379.754072][ T9595]  path_openat+0x208c/0x31a0
[  379.754107][ T9595]  ? __pfx_path_openat+0x10/0x10
[  379.754143][ T9595]  do_file_open+0x20e/0x430
[  379.754170][ T9595]  ? __pfx_do_file_open+0x10/0x10
[  379.754216][ T9595]  ? alloc_fd+0x476/0x790
[  379.754243][ T9595]  ? do_getname+0x191/0x390
[  379.754276][ T9595]  do_sys_openat2+0x10d/0x1e0
[  379.754308][ T9595]  ? __pfx_do_sys_openat2+0x10/0x10
[  379.754352][ T9595]  __x64_sys_openat+0x12d/0x210
[  379.754386][ T9595]  ? __pfx___x64_sys_openat+0x10/0x10
[  379.754430][ T9595]  do_syscall_64+0x106/0xf80
[  379.754465][ T9595]  ? clear_bhb_loop+0x40/0x90
[  379.754495][ T9595]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.754520][ T9595] RIP: 0033:0x7f240db9c799
[  379.754540][ T9595] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  379.754571][ T9595] RSP: 002b:00007f240e9f8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  379.754594][ T9595] RAX: ffffffffffffffda RBX: 00007f240de15fa0 RCX: 00007f240db9c799
[  379.754610][ T9595] RDX: 0000000000008002 RSI: 0000200000000200 RDI: ffffffffffffff9c
[  379.754626][ T9595] RBP: 00007f240dc32c99 R08: 0000000000000000 R09: 0000000000000000
[  379.754640][ T9595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  379.754655][ T9595] R13: 00007f240de16038 R14: 00007f240de15fa0 R15: 00007ffc001883a8
[  379.754686][ T9595]  </TASK>
[  380.025139][ T9595] ERROR: Out of memory at tomoyo_realpath_from_path.
[  380.343783][   T13] team0 (unregistering): Port device team_slave_1 removed
[  380.383750][   T13] team0 (unregistering): Port device team_slave_0 removed
[  381.633671][ T5836] Bluetooth: hci3: command tx timeout
[  382.711023][ T9630] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  383.790800][ T9493] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  383.845997][ T9493] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  383.904528][ T9493] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  383.935592][ T9493] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  384.309259][ T9493] 8021q: adding VLAN 0 to HW filter on device bond0
[  384.416460][ T9493] 8021q: adding VLAN 0 to HW filter on device team0
[  384.454927][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  384.463369][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  384.489637][ T9671] netlink: 4 bytes leftover after parsing attributes in process `syz.2.745'.
[  384.540988][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  384.548330][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  384.595418][ T9493] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  384.616399][ T9493] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  384.638064][ T9667] Invalid ELF header magic: != ELF
[  385.398626][ T9493] 8021q: adding VLAN 0 to HW filter on device batadv0
[  385.645453][ T9493] veth0_vlan: entered promiscuous mode
[  385.732075][ T9493] veth1_vlan: entered promiscuous mode
[  385.871334][ T9493] veth0_macvtap: entered promiscuous mode
[  385.893386][ T9493] veth1_macvtap: entered promiscuous mode
[  385.980296][ T9493] batman_adv: batadv0: Interface activated: batadv_slave_0
[  386.067911][ T9493] batman_adv: batadv0: Interface activated: batadv_slave_1
[  386.371378][ T2997] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  386.426393][ T2997] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  386.445998][ T2997] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  386.560540][ T2997] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  387.098739][ T2964] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  387.148203][ T2964] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  387.351833][ T2997] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  387.395793][ T2997] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  387.828590][ T9727] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  388.125226][ T9733] netlink: 4 bytes leftover after parsing attributes in process `syz.3.753'.
[  388.195694][ T9738] random: crng reseeded on system resumption
[  388.417828][ T9745] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  388.984443][ T9756] program syz.1.756 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  389.000441][ T9757] FAULT_INJECTION: forcing a failure.
[  389.000441][ T9757] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  389.076150][ T9757] CPU: 1 UID: 0 PID: 9757 Comm: syz.2.757 Not tainted syzkaller #0 PREEMPT(full) 
[  389.076190][ T9757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  389.076207][ T9757] Call Trace:
[  389.076217][ T9757]  <TASK>
[  389.076228][ T9757]  dump_stack_lvl+0x100/0x190
[  389.076281][ T9757]  should_fail_ex.cold+0x5/0xa
[  389.076321][ T9757]  _copy_to_user+0x32/0xd0
[  389.076360][ T9757]  simple_read_from_buffer+0xcb/0x170
[  389.076413][ T9757]  proc_fail_nth_read+0x1af/0x230
[  389.076453][ T9757]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  389.076495][ T9757]  ? rw_verify_area+0xce/0x6d0
[  389.076547][ T9757]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  389.076586][ T9757]  vfs_read+0x1e4/0xb30
[  389.076640][ T9757]  ? __pfx_vfs_read+0x10/0x10
[  389.076688][ T9757]  ? __fget_files+0x215/0x3d0
[  389.076727][ T9757]  ? __fget_files+0x21f/0x3d0
[  389.076767][ T9757]  ksys_read+0x12a/0x250
[  389.076795][ T9757]  ? __pfx_ksys_read+0x10/0x10
[  389.076836][ T9757]  do_syscall_64+0x106/0xf80
[  389.076880][ T9757]  ? clear_bhb_loop+0x40/0x90
[  389.076919][ T9757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.076951][ T9757] RIP: 0033:0x7f240db5cfce
[  389.076976][ T9757] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  389.077007][ T9757] RSP: 002b:00007f240e9d6fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  389.077036][ T9757] RAX: ffffffffffffffda RBX: 00007f240e9d76c0 RCX: 00007f240db5cfce
[  389.077056][ T9757] RDX: 000000000000000f RSI: 00007f240e9d70a0 RDI: 000000000000000e
[  389.077073][ T9757] RBP: 00007f240e9d7090 R08: 0000000000000000 R09: 0000000000000000
[  389.077091][ T9757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.077108][ T9757] R13: 00007f240de16128 R14: 00007f240de16090 R15: 00007ffc001883a8
[  389.077147][ T9757]  </TASK>
[  389.582854][ T9767] netlink: 28 bytes leftover after parsing attributes in process `syz.3.759'.
[  389.886231][ T9776] netlink: 342 bytes leftover after parsing attributes in process `syz.0.760'.
[  390.113708][ T9784] FAULT_INJECTION: forcing a failure.
[  390.113708][ T9784] name fail_futex, interval 1, probability 0, space 0, times 0
[  390.128434][ T9784] CPU: 1 UID: 0 PID: 9784 Comm: syz.3.762 Not tainted syzkaller #0 PREEMPT(full) 
[  390.128476][ T9784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  390.128496][ T9784] Call Trace:
[  390.128506][ T9784]  <TASK>
[  390.128519][ T9784]  dump_stack_lvl+0x100/0x190
[  390.128607][ T9784]  should_fail_ex.cold+0x5/0xa
[  390.128635][ T9784]  get_futex_key+0x1d2/0x1620
[  390.128689][ T9784]  ? __pfx_get_futex_key+0x10/0x10
[  390.128721][ T9784]  ? update_se+0x94/0x760
[  390.128757][ T9784]  futex_wait_setup+0x83/0x510
[  390.128803][ T9784]  __futex_wait+0x19f/0x300
[  390.128843][ T9784]  ? __pfx___futex_wait+0x10/0x10
[  390.128892][ T9784]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  390.128971][ T9784]  ? lockdep_hardirqs_on+0x78/0x100
[  390.129010][ T9784]  ? __pfx_futex_wake_mark+0x10/0x10
[  390.129053][ T9784]  ? find_held_lock+0x2b/0x80
[  390.129075][ T9784]  ? futex_wake+0x456/0x530
[  390.129119][ T9784]  futex_wait+0xed/0x380
[  390.129157][ T9784]  ? __pfx_futex_wait+0x10/0x10
[  390.129202][ T9784]  ? __lock_acquire+0x4a5/0x2630
[  390.129239][ T9784]  do_futex+0x1ef/0x350
[  390.129272][ T9784]  ? __pfx_do_futex+0x10/0x10
[  390.129305][ T9784]  ? __pfx_get_nodes+0x10/0x10
[  390.129342][ T9784]  ? find_held_lock+0x2b/0x80
[  390.129368][ T9784]  __x64_sys_futex+0x34f/0x4d0
[  390.129404][ T9784]  ? __pfx___x64_sys_futex+0x10/0x10
[  390.129451][ T9784]  do_syscall_64+0x106/0xf80
[  390.129486][ T9784]  ? clear_bhb_loop+0x40/0x90
[  390.129515][ T9784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.129541][ T9784] RIP: 0033:0x7ff303b9c799
[  390.129561][ T9784] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  390.129584][ T9784] RSP: 002b:00007ff304b010e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  390.129607][ T9784] RAX: ffffffffffffffda RBX: 00007ff303e15fa8 RCX: 00007ff303b9c799
[  390.129623][ T9784] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff303e15fa8
[  390.129639][ T9784] RBP: 00007ff303e15fa0 R08: 0000000000000000 R09: 0000000000000000
[  390.129653][ T9784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  390.129667][ T9784] R13: 00007ff303e16038 R14: 00007ffe7d1c6f80 R15: 00007ffe7d1c7068
[  390.129698][ T9784]  </TASK>
[  391.716346][ T9812] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  392.320091][ T9825] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  392.500316][ T9822] Invalid ELF header magic: != ELF
[  395.130925][ T9867] Invalid ELF header magic: != ELF
[  395.808126][ T9870] Invalid ELF header magic: != ELF
[  397.618263][ T9906] netlink: 4 bytes leftover after parsing attributes in process `syz.3.784'.
[  398.117221][ T9919] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  398.241148][ T9921] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  400.281558][ T9948] zswap: compressor  not available
[  401.173811][ T9973] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  401.331169][ T9978] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  402.780504][ T9994] misc userio: Invalid payload size
[  402.988023][T10008] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  404.359287][T10032] netlink: 334 bytes leftover after parsing attributes in process `syz.3.808'.
[  408.669509][T10090] Process accounting resumed
[  409.243207][T10100] netlink: 334 bytes leftover after parsing attributes in process `syz.0.822'.
[  411.100582][T10103] syz.3.823 (10103) used greatest stack depth: 17000 bytes left
[  411.661443][T10126] netlink: 334 bytes leftover after parsing attributes in process `syz.2.825'.
[  412.261005][T10131] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  412.990914][T10143] netlink: 334 bytes leftover after parsing attributes in process `syz.3.829'.
[  414.437686][T10157] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  420.767800][T10238] zswap: compressor  not available
[  421.685901][    C1] vcan0: j1939_tp_rxtimer: 0xffff888025bfd800: rx timeout, send abort
[  421.695882][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888025bfd800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  422.170923][T10260] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  422.451912][T10269] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  423.022732][T10280] vivid-003: =================  START STATUS  =================
[  423.038779][T10280] vivid-003: Radio HW Seek Mode: Bounded
[  423.061894][T10280] vivid-003: Radio Programmable HW Seek: false
[  423.083111][T10280] vivid-003: RDS Rx I/O Mode: Block I/O
[  423.110657][T10280] vivid-003: Generate RBDS Instead of RDS: false
[  423.119571][T10280] vivid-003: RDS Reception: true
[  423.135425][T10280] vivid-003: RDS Program Type: 0 inactive
[  423.141869][T10280] vivid-003: RDS PS Name:  inactive
[  423.148295][T10280] vivid-003: RDS Radio Text:  inactive
[  423.404644][T10280] vivid-003: RDS Traffic Announcement: false inactive
[  423.411568][T10280] vivid-003: RDS Traffic Program: false inactive
[  423.738515][T10280] vivid-003: RDS Music: false inactive
[  423.749875][T10280] vivid-003: ==================  END STATUS  ==================
[  424.086804][T10290] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  424.933126][T10320] bond0: option lp_interval: invalid value (/222)
[  424.943252][T10320] bond0: option lp_interval: allowed values 1 - 2147483647
[  424.981949][T10322] bond0: option lp_interval: invalid value (/222)
[  425.013499][T10304] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  425.026504][T10304] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  425.032908][T10304] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  425.033976][T10322] bond0: option lp_interval: allowed values 1 - 2147483647
[  425.063293][T10304] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  425.069317][T10304] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  425.215709][T10304] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  425.644641][T10335] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  426.280521][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  427.073205][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  427.073231][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout
[  427.079341][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  427.372133][T10363] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input18
[  429.153157][T10356] Bluetooth: hci3: command 0x0c1a tx timeout
[  431.173324][T10407] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  431.236989][T10356] Bluetooth: hci3: command 0x0c1a tx timeout
[  431.508263][T10413] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  431.736330][T10417] Invalid ELF header magic: != ELF
[  431.898409][T10423] netlink: 28 bytes leftover after parsing attributes in process `syz.1.886'.
[  432.417658][T10433] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  435.102770][T10457] netlink: 326 bytes leftover after parsing attributes in process `syz.0.892'.
[  435.720851][T10475] netlink: 334 bytes leftover after parsing attributes in process `syz.2.894'.
[  436.159220][T10477] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  438.122191][T10502] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  438.788626][T10516] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  439.222927][T10513] Process accounting paused
[  439.466033][T10527] zswap: compressor  not available
[  440.206461][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  440.219854][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  441.411167][T10558] zswap: compressor  not available
[  442.088678][T10578] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  442.964445][T10592] zswap: compressor  not available
[  444.216955][T10618] Invalid ELF header magic: != ELF
[  444.307746][T10621] zswap: compressor  not available
[  445.231317][T10640] netlink: 4 bytes leftover after parsing attributes in process `syz.2.929'.
[  448.284011][T10676] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  449.326211][T10685] zswap: compressor  not available
[  449.592606][T10693] zswap: compressor  not available
[  450.944773][T10731] rnbd_client L213: map_device: Parameters missing
[  451.264002][T10734] zswap: compressor  not available
[  452.871634][T10761] netlink: 4 bytes leftover after parsing attributes in process `syz.0.955'.
[  454.638129][T10779] netlink: 4 bytes leftover after parsing attributes in process `syz.3.958'.
[  455.484500][T10790] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  456.476960][T10800] syz.0.963 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  458.047972][T10832] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  458.104556][T10830] netlink: 4 bytes leftover after parsing attributes in process `syz.0.968'.
[  458.116398][T10823] Invalid ELF header magic: != ELF
[  458.826716][T10847] netlink: 28 bytes leftover after parsing attributes in process `syz.1.971'.
[  459.074589][T10848] Invalid ELF header magic: != ELF
[  459.608496][T10861] FAULT_INJECTION: forcing a failure.
[  459.608496][T10861] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  459.623182][T10861] CPU: 0 UID: 0 PID: 10861 Comm: syz.3.975 Not tainted syzkaller #0 PREEMPT(full) 
[  459.623223][T10861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  459.623243][T10861] Call Trace:
[  459.623254][T10861]  <TASK>
[  459.623266][T10861]  dump_stack_lvl+0x100/0x190
[  459.623324][T10861]  should_fail_ex.cold+0x5/0xa
[  459.623359][T10861]  ? prepare_alloc_pages+0x16d/0x5f0
[  459.623404][T10861]  should_fail_alloc_page+0xeb/0x140
[  459.623444][T10861]  prepare_alloc_pages+0x1f0/0x5f0
[  459.623491][T10861]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  459.623554][T10861]  ? __lock_acquire+0x4a5/0x2630
[  459.623622][T10861]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  459.623681][T10861]  ? find_held_lock+0x2b/0x80
[  459.623726][T10861]  ? finish_task_switch.isra.0+0x200/0xb80
[  459.623776][T10861]  ? __lock_acquire+0x4a5/0x2630
[  459.623822][T10861]  ? __lock_acquire+0x4a5/0x2630
[  459.623862][T10861]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  459.623921][T10861]  ? policy_nodemask+0xed/0x4f0
[  459.623959][T10861]  alloc_pages_mpol+0x1fb/0x550
[  459.623996][T10861]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  459.624028][T10861]  ? page_table_check_set+0x49a/0xa10
[  459.624072][T10861]  alloc_pages_noprof+0x131/0x390
[  459.624110][T10861]  pte_alloc_one+0x1c/0x3d0
[  459.624148][T10861]  __pte_alloc+0x6d/0x3e0
[  459.624182][T10861]  ? __pfx___pte_alloc+0x10/0x10
[  459.624214][T10861]  ? __pfx___might_resched+0x10/0x10
[  459.624260][T10861]  ? copy_page_range+0x1e9d/0x6570
[  459.624311][T10861]  copy_page_range+0x3e51/0x6570
[  459.624401][T10861]  ? __pfx_copy_page_range+0x10/0x10
[  459.624461][T10861]  ? __pfx___might_resched+0x10/0x10
[  459.624525][T10861]  ? up_write+0x290/0x4f0
[  459.624577][T10861]  dup_mmap+0xd25/0x2180
[  459.624641][T10861]  ? __pfx_dup_mmap+0x10/0x10
[  459.624678][T10861]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  459.624733][T10861]  ? __lock_acquire+0x4a5/0x2630
[  459.624776][T10861]  ? find_held_lock+0x2b/0x80
[  459.624806][T10861]  ? __percpu_counter_init_many+0x2bc/0x3b0
[  459.624971][T10861]  copy_process+0x7523/0x7a40
[  459.625031][T10861]  ? __pfx_copy_process+0x10/0x10
[  459.625070][T10861]  ? find_held_lock+0x2b/0x80
[  459.625117][T10861]  kernel_clone+0xfc/0x9a0
[  459.625149][T10861]  ? __pfx_futex_wait+0x10/0x10
[  459.625204][T10861]  ? __pfx_kernel_clone+0x10/0x10
[  459.625266][T10861]  __do_sys_clone+0xd9/0x120
[  459.625305][T10861]  ? __pfx___do_sys_clone+0x10/0x10
[  459.625343][T10861]  ? blkcg_maybe_throttle_current+0x5df/0xeb0
[  459.625466][T10861]  do_syscall_64+0x106/0xf80
[  459.625529][T10861]  ? clear_bhb_loop+0x40/0x90
[  459.625574][T10861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.625619][T10861] RIP: 0033:0x7ff303b9c799
[  459.625649][T10861] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  459.625681][T10861] RSP: 002b:00007ff304adffd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  459.625713][T10861] RAX: ffffffffffffffda RBX: 00007ff303e16090 RCX: 00007ff303b9c799
[  459.625736][T10861] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  459.625756][T10861] RBP: 00007ff303c32c99 R08: 0000000000000000 R09: 0000000000000000
[  459.625776][T10861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  459.625795][T10861] R13: 00007ff303e16128 R14: 00007ff303e16090 R15: 00007ffe7d1c7068
[  459.625840][T10861]  </TASK>
[  461.386260][T10881] zswap: compressor  not available
[  461.692769][T10901] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  462.665693][T10907] FAULT_INJECTION: forcing a failure.
[  462.665693][T10907] name failslab, interval 1, probability 0, space 0, times 0
[  462.724739][T10907] CPU: 1 UID: 0 PID: 10907 Comm: syz.1.983 Not tainted syzkaller #0 PREEMPT(full) 
[  462.724781][T10907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  462.724800][T10907] Call Trace:
[  462.724810][T10907]  <TASK>
[  462.724821][T10907]  dump_stack_lvl+0x100/0x190
[  462.724877][T10907]  should_fail_ex.cold+0x5/0xa
[  462.724915][T10907]  should_failslab+0xc2/0x120
[  462.724949][T10907]  __kmalloc_cache_noprof+0x7a/0x6f0
[  462.724991][T10907]  ? alloc_ldt_struct+0x5d/0x1b0
[  462.725042][T10907]  ? __pfx_down_write_killable+0x10/0x10
[  462.725103][T10907]  alloc_ldt_struct+0x5d/0x1b0
[  462.725154][T10907]  write_ldt+0x280/0xd40
[  462.725186][T10907]  ? __fget_files+0x21f/0x3d0
[  462.725220][T10907]  ? __pfx_write_ldt+0x10/0x10
[  462.725252][T10907]  ? fput+0x79/0x100
[  462.725288][T10907]  ? ksys_write+0x1ac/0x250
[  462.725339][T10907]  ? __pfx_ksys_write+0x10/0x10
[  462.725375][T10907]  __x64_sys_modify_ldt+0xb1/0x170
[  462.725407][T10907]  do_syscall_64+0x106/0xf80
[  462.725448][T10907]  ? clear_bhb_loop+0x40/0x90
[  462.725486][T10907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  462.725518][T10907] RIP: 0033:0x7f00d8d9c799
[  462.725543][T10907] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  462.725571][T10907] RSP: 002b:00007f00d9bdf028 EFLAGS: 00000246 ORIG_RAX: 000000000000009a
[  462.725600][T10907] RAX: ffffffffffffffda RBX: 00007f00d9015fa0 RCX: 00007f00d8d9c799
[  462.725620][T10907] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000001
[  462.725638][T10907] RBP: 00007f00d9bdf090 R08: 0000000000000000 R09: 0000000000000000
[  462.725656][T10907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  462.725673][T10907] R13: 00007f00d9016038 R14: 00007f00d9015fa0 R15: 00007fffa1a3ce28
[  462.725714][T10907]  </TASK>
[  464.045647][T10950] ima: policy update failed
[  464.058272][   T29] audit: type=1807 audit(1773629242.924:2): UNKNOWN=0"�]$|�1j�0B|d���ӉO��+��/��x����WӦ��^��gq%Ḧr�O� res=0
[  464.103110][   T29] audit: type=1802 audit(1773629242.934:3): pid=10950 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.991" res=0 errno=0
[  464.141172][   T29] audit: type=1802 audit(1773629242.934:4): pid=10950 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.991" res=0 errno=0
[  465.015040][T10970] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  465.773645][T10980] zswap: compressor  not available
[  468.346598][T11020] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1006'.
[  469.155006][T11027] Invalid ELF header magic: != ELF
[  469.492123][T11036] rnbd_client L213: map_device: Parameters missing
[  469.997278][T11047] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1011'.
[  470.885423][T11052] bcache: register_bcache() error : Not a bcache superblock (bad offset)
[  470.895839][T11052] FAULT_INJECTION: forcing a failure.
[  470.895839][T11052] name failslab, interval 1, probability 0, space 0, times 0
[  470.955745][T11052] CPU: 1 UID: 0 PID: 11052 Comm: syz.3.1013 Not tainted syzkaller #0 PREEMPT(full) 
[  470.955779][T11052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  470.955794][T11052] Call Trace:
[  470.955802][T11052]  <TASK>
[  470.955811][T11052]  dump_stack_lvl+0x100/0x190
[  470.955852][T11052]  should_fail_ex.cold+0x5/0xa
[  470.955881][T11052]  should_failslab+0xc2/0x120
[  470.955906][T11052]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  470.955944][T11052]  ? mas_alloc_nodes+0x280/0x390
[  470.956051][T11052]  mas_alloc_nodes+0x280/0x390
[  470.956086][T11052]  mas_preallocate+0x39c/0xf10
[  470.956122][T11052]  ? __memcg_slab_post_alloc_hook+0x440/0x990
[  470.956156][T11052]  ? __pfx_mas_preallocate+0x10/0x10
[  470.956202][T11052]  ? anon_vma_name+0x5a/0x250
[  470.956242][T11052]  __split_vma+0x33d/0xd90
[  470.956280][T11052]  ? __pfx___split_vma+0x10/0x10
[  470.956321][T11052]  ? __pfx_mas_prev+0x10/0x10
[  470.956366][T11052]  vms_gather_munmap_vmas+0x39f/0x1500
[  470.956403][T11052]  ? validate_mm+0x261/0x4e0
[  470.956435][T11052]  ? validate_mm+0x261/0x4e0
[  470.956471][T11052]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  470.956509][T11052]  ? validate_mm+0x392/0x4e0
[  470.956546][T11052]  ? __pfx_validate_mm+0x10/0x10
[  470.956586][T11052]  do_vmi_align_munmap+0x287/0x5f0
[  470.956626][T11052]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  470.956703][T11052]  do_vmi_munmap+0x1f8/0x3e0
[  470.956743][T11052]  __vm_munmap+0x196/0x390
[  470.956783][T11052]  ? __pfx___vm_munmap+0x10/0x10
[  470.956840][T11052]  __x64_sys_munmap+0x59/0x80
[  470.956868][T11052]  do_syscall_64+0x106/0xf80
[  470.956902][T11052]  ? clear_bhb_loop+0x40/0x90
[  470.956932][T11052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  470.956957][T11052] RIP: 0033:0x7ff303b9c5c7
[  470.956977][T11052] Code: 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  470.957000][T11052] RSP: 002b:00007ff304affd18 EFLAGS: 00000206 ORIG_RAX: 000000000000000b
[  470.957023][T11052] RAX: ffffffffffffffda RBX: 00007ff2fc000000 RCX: 00007ff303b9c5c7
[  470.957039][T11052] RDX: 0000000000000000 RSI: 0000000002400000 RDI: 00007ff2f9c00000
[  470.957054][T11052] RBP: 0000000000021000 R08: 00000000ffffffff R09: 0000000000000000
[  470.957080][T11052] R10: 0000000000000022 R11: 0000000000000206 R12: 0000000004000000
[  470.957094][T11052] R13: 0000000000001000 R14: 00007ff300000000 R15: 0000000002400000
[  470.957124][T11052]  </TASK>
[  471.212083][T10356] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  471.329702][T11016] Process accounting resumed
[  471.632389][T11060] FAULT_INJECTION: forcing a failure.
[  471.632389][T11060] name fail_futex, interval 1, probability 0, space 0, times 0
[  471.704556][T11060] CPU: 0 UID: 8 PID: 11060 Comm: syz.3.1015 Not tainted syzkaller #0 PREEMPT(full) 
[  471.704623][T11060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  471.704643][T11060] Call Trace:
[  471.704654][T11060]  <TASK>
[  471.704667][T11060]  dump_stack_lvl+0x100/0x190
[  471.704780][T11060]  should_fail_ex.cold+0x5/0xa
[  471.704846][T11060]  get_futex_key+0x1d2/0x1620
[  471.704893][T11060]  ? __pfx_get_futex_key+0x10/0x10
[  471.704931][T11060]  ? kasan_save_stack+0x3f/0x50
[  471.704982][T11060]  ? kasan_save_stack+0x30/0x50
[  471.705032][T11060]  ? kasan_record_aux_stack+0xa7/0xc0
[  471.705074][T11060]  ? __call_rcu_common.constprop.0+0xa5/0x9b0
[  471.705118][T11060]  ? __put_cred+0x10c/0x180
[  471.705164][T11060]  ? keyctl_session_to_parent+0x95a/0xae0
[  471.705300][T11060]  ? __do_sys_keyctl+0x2b1/0x5a0
[  471.705329][T11060]  ? do_syscall_64+0x106/0xf80
[  471.705377][T11060]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  471.705419][T11060]  futex_wake+0xea/0x530
[  471.705475][T11060]  ? __pfx_futex_wake+0x10/0x10
[  471.705554][T11060]  do_futex+0x32b/0x350
[  471.705598][T11060]  ? __pfx_do_futex+0x10/0x10
[  471.705651][T11060]  __x64_sys_futex+0x34f/0x4d0
[  471.705702][T11060]  ? __pfx___x64_sys_futex+0x10/0x10
[  471.705745][T11060]  ? __put_cred+0x111/0x180
[  471.705793][T11060]  ? keyctl_session_to_parent+0x39a/0xae0
[  471.705839][T11060]  do_syscall_64+0x106/0xf80
[  471.705883][T11060]  ? clear_bhb_loop+0x40/0x90
[  471.705923][T11060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  471.705957][T11060] RIP: 0033:0x7ff303b9c799
[  471.705985][T11060] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  471.706018][T11060] RSP: 002b:00007ff304ae00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  471.706051][T11060] RAX: ffffffffffffffda RBX: 00007ff303e16098 RCX: 00007ff303b9c799
[  471.706073][T11060] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff303e1609c
[  471.706094][T11060] RBP: 00007ff303e16090 R08: 0000000000000000 R09: 0000000000000000
[  471.706113][T11060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  471.706132][T11060] R13: 00007ff303e16128 R14: 00007ffe7d1c6f80 R15: 00007ffe7d1c7068
[  471.706177][T11060]  </TASK>
[  472.125744][T11055] zswap: compressor  not available
[  475.634210][T11132] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  476.358462][T11139] zswap: compressor  not available
[  476.999495][T11158] netlink: 138 bytes leftover after parsing attributes in process `syz.0.1034'.
[  477.105996][T11163] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1033'.
[  477.535316][T11167] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1036'.
[  484.235207][T11274] rnbd_client L213: map_device: Parameters missing
[  486.028016][T11298] zswap: compressor  not available
[  486.202915][T11307] zswap: compressor  not available
[  488.314154][T11360] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1081'.
[  488.524966][T11364] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  490.045542][T11394] random: crng reseeded on system resumption
[  490.481546][T11407] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  491.127287][T11422] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  491.259040][T11430] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1096'.
[  493.526331][T11468] Invalid ELF header magic: != ELF
[  494.282394][T11481] Invalid ELF header magic: != ELF
[  495.208971][T11486] zswap: compressor  not available
[  495.617936][T11501] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1112'.
[  495.707584][T11503] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  495.738444][T11503] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  495.745004][T11503] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  495.800471][T11503] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  496.176218][T11517] FAULT_INJECTION: forcing a failure.
[  496.176218][T11517] name failslab, interval 1, probability 0, space 0, times 0
[  496.195712][T11521] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1114'.
[  496.384156][T11517] CPU: 0 UID: 0 PID: 11517 Comm: syz.1.1116 Not tainted syzkaller #0 PREEMPT(full) 
[  496.384198][T11517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  496.384224][T11517] Call Trace:
[  496.384235][T11517]  <TASK>
[  496.384249][T11517]  dump_stack_lvl+0x100/0x190
[  496.384307][T11517]  should_fail_ex.cold+0x5/0xa
[  496.384345][T11517]  should_failslab+0xc2/0x120
[  496.384380][T11517]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  496.384429][T11517]  ? security_inode_alloc+0x3b/0x2c0
[  496.384463][T11517]  ? lockdep_init_map_type+0x5c/0x250
[  496.384512][T11517]  security_inode_alloc+0x3b/0x2c0
[  496.384547][T11517]  inode_init_always_gfp+0xced/0x1040
[  496.384585][T11517]  ? __pfx_nfsd_fill_super+0x10/0x10
[  496.384654][T11517]  alloc_inode+0x8e/0x250
[  496.384699][T11517]  new_inode+0x22/0x1c0
[  496.384743][T11517]  ? __pfx_nfsd_fill_super+0x10/0x10
[  496.384779][T11517]  nfsd_fill_super+0x145/0x560
[  496.384819][T11517]  ? __pfx_nfsd_fill_super+0x10/0x10
[  496.384855][T11517]  get_tree_keyed+0x10e/0x1d0
[  496.384908][T11517]  vfs_get_tree+0x92/0x320
[  496.384954][T11517]  path_mount+0x7d0/0x23d0
[  496.384999][T11517]  ? __pfx_path_mount+0x10/0x10
[  496.385045][T11517]  ? lockdep_hardirqs_on+0x78/0x100
[  496.385093][T11517]  ? putname+0xb1/0x110
[  496.385122][T11517]  ? kmem_cache_free+0x124/0x6a0
[  496.385178][T11517]  ? __x64_sys_mount+0x293/0x310
[  496.385212][T11517]  __x64_sys_mount+0x293/0x310
[  496.385259][T11517]  ? __pfx___x64_sys_mount+0x10/0x10
[  496.385307][T11517]  do_syscall_64+0x106/0xf80
[  496.385350][T11517]  ? clear_bhb_loop+0x40/0x90
[  496.385388][T11517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  496.385420][T11517] RIP: 0033:0x7f00d8d9c799
[  496.385445][T11517] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  496.385474][T11517] RSP: 002b:00007f00d9bbe028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  496.385502][T11517] RAX: ffffffffffffffda RBX: 00007f00d9016090 RCX: 00007f00d8d9c799
[  496.385522][T11517] RDX: 00002000000001c0 RSI: 00002000000000c0 RDI: 0000000000000000
[  496.385549][T11517] RBP: 00007f00d8e32c99 R08: 0000000000000000 R09: 0000000000000000
[  496.385568][T11517] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  496.385586][T11517] R13: 00007f00d9016128 R14: 00007f00d9016090 R15: 00007fffa1a3ce28
[  496.385626][T11517]  </TASK>
[  497.794059][T10356] Bluetooth: hci0: command 0x0c1a tx timeout
[  497.800202][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout
[  497.800220][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  497.889970][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  500.314315][T11583] rnbd_client L213: map_device: Parameters missing
[  501.649832][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  501.656335][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  501.895788][T11585] Process accounting paused
[  504.238202][T11656] Invalid ELF header magic: != ELF
[  505.172600][T11673] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  505.830799][T11685] zswap: compressor  not available
[  508.602011][T11741] Invalid ELF header magic: != ELF
[  508.958048][T11753] zswap: compressor  not available
[  510.858634][T11791] random: crng reseeded on system resumption
[  512.918622][T11852] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1188'.
[  512.963765][T11851] FAULT_INJECTION: forcing a failure.
[  512.963765][T11851] name failslab, interval 1, probability 0, space 0, times 0
[  512.979213][T11851] CPU: 1 UID: 0 PID: 11851 Comm: syz.1.1186 Not tainted syzkaller #0 PREEMPT(full) 
[  512.979259][T11851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  512.979278][T11851] Call Trace:
[  512.979289][T11851]  <TASK>
[  512.979301][T11851]  dump_stack_lvl+0x100/0x190
[  512.979359][T11851]  should_fail_ex.cold+0x5/0xa
[  512.979398][T11851]  should_failslab+0xc2/0x120
[  512.979432][T11851]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  512.979481][T11851]  ? __anon_vma_prepare+0x344/0x5e0
[  512.979533][T11851]  __anon_vma_prepare+0x344/0x5e0
[  512.979583][T11851]  __vmf_anon_prepare+0x11f/0x250
[  512.979623][T11851]  do_anonymous_page+0x552/0x1fb0
[  512.979669][T11851]  ? __handle_mm_fault+0x17a4/0x2b60
[  512.979729][T11851]  __handle_mm_fault+0x1d42/0x2b60
[  512.979786][T11851]  ? __pfx___handle_mm_fault+0x10/0x10
[  512.979834][T11851]  ? pte_offset_map_lock+0x174/0x320
[  512.979867][T11851]  ? find_held_lock+0x2b/0x80
[  512.979912][T11851]  ? follow_page_pte+0x5b3/0x1400
[  512.979958][T11851]  handle_mm_fault+0x36d/0xa20
[  512.980010][T11851]  __get_user_pages+0xf9c/0x34d0
[  512.980062][T11851]  ? __pfx___get_user_pages+0x10/0x10
[  512.980111][T11851]  populate_vma_page_range+0x267/0x3f0
[  512.980153][T11851]  ? __pfx_populate_vma_page_range+0x10/0x10
[  512.980191][T11851]  ? __pfx_find_vma_intersection+0x10/0x10
[  512.980227][T11851]  ? do_mmap+0x93f/0x12f0
[  512.980267][T11851]  __mm_populate+0x107/0x3a0
[  512.980308][T11851]  ? __pfx___mm_populate+0x10/0x10
[  512.980350][T11851]  ? up_write+0x290/0x4f0
[  512.980402][T11851]  vm_mmap_pgoff+0x37f/0x470
[  512.980474][T11851]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  512.980515][T11851]  ? do_futex+0x192/0x350
[  512.980559][T11851]  ? __pfx_do_futex+0x10/0x10
[  512.980610][T11851]  ksys_mmap_pgoff+0xe1/0x650
[  512.980644][T11851]  ? __x64_sys_futex+0x34f/0x4d0
[  512.980685][T11851]  ? __x64_sys_futex+0x358/0x4d0
[  512.980734][T11851]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  512.980770][T11851]  ? xfd_validate_state+0x129/0x190
[  512.980825][T11851]  __x64_sys_mmap+0x125/0x190
[  512.980880][T11851]  do_syscall_64+0x106/0xf80
[  512.980926][T11851]  ? clear_bhb_loop+0x40/0x90
[  512.980968][T11851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  512.981002][T11851] RIP: 0033:0x7f00d8d9c799
[  512.981029][T11851] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  512.981060][T11851] RSP: 002b:00007f00d9bdf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  512.981092][T11851] RAX: ffffffffffffffda RBX: 00007f00d9015fa0 RCX: 00007f00d8d9c799
[  512.981113][T11851] RDX: 00000000000000df RSI: 0000000000000009 RDI: 0000000000000000
[  512.981132][T11851] RBP: 00007f00d8e32c99 R08: 0000000000000000 R09: 0000000000008000
[  512.981153][T11851] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  512.981172][T11851] R13: 00007f00d9016038 R14: 00007f00d9015fa0 R15: 00007fffa1a3ce28
[  512.981215][T11851]  </TASK>
[  513.756266][T11873] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  513.877950][T11875] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  514.679196][T11887] zswap: compressor  not available
[  515.908288][T11934] FAULT_INJECTION: forcing a failure.
[  515.908288][T11934] name failslab, interval 1, probability 0, space 0, times 0
[  515.930362][T11934] CPU: 1 UID: 0 PID: 11934 Comm: syz.1.1206 Not tainted syzkaller #0 PREEMPT(full) 
[  515.930403][T11934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  515.930420][T11934] Call Trace:
[  515.930430][T11934]  <TASK>
[  515.930441][T11934]  dump_stack_lvl+0x100/0x190
[  515.930493][T11934]  should_fail_ex.cold+0x5/0xa
[  515.930529][T11934]  ? tomoyo_realpath_from_path+0xb6/0x690
[  515.930569][T11934]  should_failslab+0xc2/0x120
[  515.930601][T11934]  __kmalloc_noprof+0xe0/0x850
[  515.930657][T11934]  tomoyo_realpath_from_path+0xb6/0x690
[  515.930708][T11934]  tomoyo_path_number_perm+0x23c/0x580
[  515.930739][T11934]  ? tomoyo_path_number_perm+0x22e/0x580
[  515.930774][T11934]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  515.930845][T11934]  ? find_held_lock+0x2b/0x80
[  515.930872][T11934]  ? __fget_files+0x215/0x3d0
[  515.930898][T11934]  ? hook_file_ioctl_common+0x146/0x410
[  515.931024][T11934]  ? __fget_files+0x21f/0x3d0
[  515.931061][T11934]  security_file_ioctl+0xd3/0x230
[  515.931098][T11934]  __x64_sys_ioctl+0xb7/0x210
[  515.931146][T11934]  do_syscall_64+0x106/0xf80
[  515.931190][T11934]  ? clear_bhb_loop+0x40/0x90
[  515.931228][T11934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.931261][T11934] RIP: 0033:0x7f00d8d9c799
[  515.931286][T11934] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  515.931315][T11934] RSP: 002b:00007f00d9bdf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  515.931344][T11934] RAX: ffffffffffffffda RBX: 00007f00d9015fa0 RCX: 00007f00d8d9c799
[  515.931364][T11934] RDX: 0000200000000580 RSI: 00000000c0145401 RDI: 0000000000000003
[  515.931382][T11934] RBP: 00007f00d9bdf090 R08: 0000000000000000 R09: 0000000000000000
[  515.931399][T11934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  515.931417][T11934] R13: 00007f00d9016038 R14: 00007f00d9015fa0 R15: 00007fffa1a3ce28
[  515.931478][T11934]  </TASK>
[  515.931623][T11934] ERROR: Out of memory at tomoyo_realpath_from_path.
[  516.696553][T11944] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1210'.
[  516.746813][T11948] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1209'.
[  517.154061][T11954] FAULT_INJECTION: forcing a failure.
[  517.154061][T11954] name failslab, interval 1, probability 0, space 0, times 0
[  517.179354][T11954] CPU: 0 UID: 0 PID: 11954 Comm: syz.1.1212 Not tainted syzkaller #0 PREEMPT(full) 
[  517.179398][T11954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  517.179416][T11954] Call Trace:
[  517.179426][T11954]  <TASK>
[  517.179438][T11954]  dump_stack_lvl+0x100/0x190
[  517.179492][T11954]  should_fail_ex.cold+0x5/0xa
[  517.179529][T11954]  should_failslab+0xc2/0x120
[  517.179564][T11954]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  517.179613][T11954]  ? __d_alloc+0x34/0xa80
[  517.179649][T11954]  ? security_inode_alloc+0xcf/0x2c0
[  517.179687][T11954]  __d_alloc+0x34/0xa80
[  517.179720][T11954]  ? __ns_ref_active_get+0x9f/0x1b0
[  517.179765][T11954]  path_from_stashed+0x427/0x750
[  517.179800][T11954]  ? do_raw_spin_unlock+0x145/0x1e0
[  517.179857][T11954]  ns_get_path+0x60/0x80
[  517.179900][T11954]  proc_ns_get_link+0x121/0x230
[  517.179947][T11954]  ? __pfx_proc_ns_get_link+0x10/0x10
[  517.179998][T11954]  ? atime_needs_update+0x8b/0x6b0
[  517.180048][T11954]  pick_link+0xd17/0x13c0
[  517.180095][T11954]  ? __pfx_proc_ns_get_link+0x10/0x10
[  517.180147][T11954]  step_into_slowpath+0x9ba/0xf90
[  517.180203][T11954]  ? __pfx_step_into_slowpath+0x10/0x10
[  517.180249][T11954]  ? find_held_lock+0x2b/0x80
[  517.180294][T11954]  path_openat+0xf95/0x31a0
[  517.180340][T11954]  ? __pfx_path_openat+0x10/0x10
[  517.180389][T11954]  do_file_open+0x20e/0x430
[  517.180427][T11954]  ? __pfx_do_file_open+0x10/0x10
[  517.180489][T11954]  ? alloc_fd+0x476/0x790
[  517.180524][T11954]  ? do_getname+0x191/0x390
[  517.180570][T11954]  do_sys_openat2+0x10d/0x1e0
[  517.180613][T11954]  ? __pfx_do_sys_openat2+0x10/0x10
[  517.180660][T11954]  ? __fget_files+0x21f/0x3d0
[  517.180698][T11954]  __x64_sys_openat+0x12d/0x210
[  517.180743][T11954]  ? __pfx___x64_sys_openat+0x10/0x10
[  517.180804][T11954]  do_syscall_64+0x106/0xf80
[  517.180848][T11954]  ? clear_bhb_loop+0x40/0x90
[  517.180900][T11954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  517.180934][T11954] RIP: 0033:0x7f00d8d5cfce
[  517.180961][T11954] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  517.180994][T11954] RSP: 002b:00007f00d9bdeec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  517.181026][T11954] RAX: ffffffffffffffda RBX: 00007f00d9bdf6c0 RCX: 00007f00d8d5cfce
[  517.181047][T11954] RDX: 0000000000000002 RSI: 00007f00d9bdef90 RDI: ffffffffffffff9c
[  517.181068][T11954] RBP: 00007f00d8e32c99 R08: 0000000000000000 R09: 0000000000000000
[  517.181089][T11954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  517.181108][T11954] R13: 00007f00d9016038 R14: 00007f00d9015fa0 R15: 00007fffa1a3ce28
[  517.181151][T11954]  </TASK>
[  519.179617][T11983] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  520.113443][T12009] zswap: compressor  not available
[  520.932701][T12030] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1231'.
[  521.749376][T12048] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  522.461189][T12062] Invalid ELF header magic: != ELF
[  524.069266][T12091] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1246'.
[  524.123988][T12092] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1246'.
[  524.164455][T12089] netlink: 134 bytes leftover after parsing attributes in process `syz.2.1246'.
[  524.191165][T12089] sysfs_service_op_store: Client not running :-5:
[  524.368110][T12100] rnbd_client L213: map_device: Parameters missing
[  524.802482][T12111] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  525.297127][T12117] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1253'.
[  529.760402][T12199] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1275'.
[  529.890627][T12199] bridge0: port 2(bridge_slave_1) entered disabled state
[  529.899723][T12199] bridge0: port 1(bridge_slave_0) entered disabled state
[  530.395953][T12204] Invalid ELF header magic: != ELF
[  530.898464][T12223] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  531.253521][T12227] zswap: compressor  not available
[  532.429996][T12244] Process accounting resumed
[  532.957571][T12256] capability: warning: `syz.2.1288' uses 32-bit capabilities (legacy support in use)
[  532.981316][T12256] FAULT_INJECTION: forcing a failure.
[  532.981316][T12256] name failslab, interval 1, probability 0, space 0, times 0
[  533.013179][T12256] CPU: 1 UID: 0 PID: 12256 Comm: syz.2.1288 Not tainted syzkaller #0 PREEMPT(full) 
[  533.013225][T12256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  533.013245][T12256] Call Trace:
[  533.013257][T12256]  <TASK>
[  533.013269][T12256]  dump_stack_lvl+0x100/0x190
[  533.013325][T12256]  should_fail_ex.cold+0x5/0xa
[  533.013365][T12256]  ? tomoyo_encode2+0xfb/0x3c0
[  533.013407][T12256]  should_failslab+0xc2/0x120
[  533.013444][T12256]  __kmalloc_noprof+0xe0/0x850
[  533.013494][T12256]  ? rcu_is_watching+0x12/0xc0
[  533.013553][T12256]  tomoyo_encode2+0xfb/0x3c0
[  533.013604][T12256]  tomoyo_encode+0x29/0x50
[  533.013644][T12256]  tomoyo_realpath_from_path+0x18c/0x690
[  533.013699][T12256]  tomoyo_check_open_permission+0x2af/0x3c0
[  533.013739][T12256]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  533.013778][T12256]  ? d_splice_alias_ops+0x5c3/0x1320
[  533.013862][T12256]  ? lock_acquire+0x1cf/0x380
[  533.013904][T12256]  ? find_held_lock+0x2b/0x80
[  533.013957][T12256]  tomoyo_file_open+0x6b/0x90
[  533.014010][T12256]  security_file_open+0xb5/0x1e0
[  533.014055][T12256]  do_dentry_open+0x5aa/0x1660
[  533.014102][T12256]  vfs_open+0x82/0x3f0
[  533.014171][T12256]  path_openat+0x208c/0x31a0
[  533.014220][T12256]  ? __pfx_path_openat+0x10/0x10
[  533.014268][T12256]  do_file_open+0x20e/0x430
[  533.014307][T12256]  ? __pfx_do_file_open+0x10/0x10
[  533.014374][T12256]  ? alloc_fd+0x476/0x790
[  533.014413][T12256]  ? do_getname+0x191/0x390
[  533.014461][T12256]  do_sys_openat2+0x10d/0x1e0
[  533.014506][T12256]  ? __pfx_do_sys_openat2+0x10/0x10
[  533.014554][T12256]  ? vhost_vsock_dev_ioctl+0x2b4/0xb60
[  533.014757][T12256]  __x64_sys_openat+0x12d/0x210
[  533.014804][T12256]  ? __pfx___x64_sys_openat+0x10/0x10
[  533.014867][T12256]  do_syscall_64+0x106/0xf80
[  533.014915][T12256]  ? clear_bhb_loop+0x40/0x90
[  533.014967][T12256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  533.015003][T12256] RIP: 0033:0x7f240db9c799
[  533.015031][T12256] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  533.015064][T12256] RSP: 002b:00007f240e9f8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  533.015097][T12256] RAX: ffffffffffffffda RBX: 00007f240de15fa0 RCX: 00007f240db9c799
[  533.015119][T12256] RDX: 00000000000aa102 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  533.015140][T12256] RBP: 00007f240dc32c99 R08: 0000000000000000 R09: 0000000000000000
[  533.015160][T12256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  533.015180][T12256] R13: 00007f240de16038 R14: 00007f240de15fa0 R15: 00007ffc001883a8
[  533.015222][T12256]  </TASK>
[  533.015252][T12256] ERROR: Out of memory at tomoyo_realpath_from_path.
[  533.345985][T12256] FAULT_INJECTION: forcing a failure.
[  533.345985][T12256] name fail_futex, interval 1, probability 0, space 0, times 0
[  533.426332][T12256] CPU: 1 UID: 0 PID: 12256 Comm: syz.2.1288 Not tainted syzkaller #0 PREEMPT(full) 
[  533.426378][T12256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  533.426398][T12256] Call Trace:
[  533.426410][T12256]  <TASK>
[  533.426422][T12256]  dump_stack_lvl+0x100/0x190
[  533.426482][T12256]  should_fail_ex.cold+0x5/0xa
[  533.426516][T12256]  ? __kernel_text_address+0xd/0x30
[  533.426571][T12256]  get_futex_key+0x1d2/0x1620
[  533.426630][T12256]  ? __pfx_get_futex_key+0x10/0x10
[  533.426672][T12256]  ? putname+0xb1/0x110
[  533.426707][T12256]  ? stack_trace_save+0x8e/0xc0
[  533.426740][T12256]  ? __pfx_stack_trace_save+0x10/0x10
[  533.426787][T12256]  futex_wait_setup+0x83/0x510
[  533.426851][T12256]  __futex_wait+0x19f/0x300
[  533.426916][T12256]  ? __pfx___futex_wait+0x10/0x10
[  533.426977][T12256]  ? __pfx_futex_wake_mark+0x10/0x10
[  533.427035][T12256]  ? futex_hash+0x2c5/0x380
[  533.427088][T12256]  futex_wait+0xed/0x380
[  533.427140][T12256]  ? __pfx_futex_wait+0x10/0x10
[  533.427201][T12256]  ? putname+0xb1/0x110
[  533.427233][T12256]  ? kmem_cache_free+0x124/0x6a0
[  533.427287][T12256]  do_futex+0x1ef/0x350
[  533.427332][T12256]  ? __pfx_do_futex+0x10/0x10
[  533.427384][T12256]  ? __pfx_do_sys_openat2+0x10/0x10
[  533.427427][T12256]  ? vhost_vsock_dev_ioctl+0x2b4/0xb60
[  533.427484][T12256]  __x64_sys_futex+0x34f/0x4d0
[  533.427526][T12256]  ? __x64_sys_openat+0x12d/0x210
[  533.427568][T12256]  ? __pfx___x64_sys_futex+0x10/0x10
[  533.427625][T12256]  do_syscall_64+0x106/0xf80
[  533.427687][T12256]  ? clear_bhb_loop+0x40/0x90
[  533.427729][T12256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  533.427764][T12256] RIP: 0033:0x7f240db9c799
[  533.427792][T12256] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  533.427826][T12256] RSP: 002b:00007f240e9f80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  533.427859][T12256] RAX: ffffffffffffffda RBX: 00007f240de15fa8 RCX: 00007f240db9c799
[  533.427881][T12256] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f240de15fa8
[  533.427901][T12256] RBP: 00007f240de15fa0 R08: 0000000000000000 R09: 0000000000000000
[  533.427930][T12256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  533.427949][T12256] R13: 00007f240de16038 R14: 00007ffc001882c0 R15: 00007ffc001883a8
[  533.427993][T12256]  </TASK>
[  535.396887][T12299] Invalid ELF header magic: != ELF
[  536.365678][T12320] kfence: disabled
[  538.658095][T12363] zswap: compressor  not available
[  539.603765][T12394] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  540.198265][T12404] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  540.468673][   T29] audit: type=1800 audit(1773629319.354:5): pid=12413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1324" name="members" dev="configfs" ino=36152 res=0 errno=0
[  541.534439][T12436] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  542.718479][T12452] Invalid ELF header magic: != ELF
[  542.980782][T12468] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  543.333184][T12474] futex_wake_op: syz.0.1336 tries to shift op by -2048; fix this program
[  543.372031][T12474] futex_wake_op: syz.0.1336 tries to shift op by -2048; fix this program
[  545.086681][T12510] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  545.759937][T12524] futex_wake_op: syz.2.1348 tries to shift op by -2048; fix this program
[  545.892920][T12524] futex_wake_op: syz.2.1348 tries to shift op by -2048; fix this program
[  546.328644][T12532] Invalid ELF header magic: != ELF
[  546.367747][T12524] misc userio: No port type given on /dev/userio
[  548.117840][T12557] FAULT_INJECTION: forcing a failure.
[  548.117840][T12557] name failslab, interval 1, probability 0, space 0, times 0
[  548.197084][T12557] CPU: 1 UID: 0 PID: 12557 Comm: syz.3.1355 Not tainted syzkaller #0 PREEMPT(full) 
[  548.197129][T12557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  548.197151][T12557] Call Trace:
[  548.197162][T12557]  <TASK>
[  548.197176][T12557]  dump_stack_lvl+0x100/0x190
[  548.197236][T12557]  should_fail_ex.cold+0x5/0xa
[  548.197277][T12557]  ? tracepoint_add_func+0x2c5/0xf30
[  548.197312][T12557]  should_failslab+0xc2/0x120
[  548.197348][T12557]  __kmalloc_noprof+0xe0/0x850
[  548.197407][T12557]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  548.197469][T12557]  tracepoint_add_func+0x2c5/0xf30
[  548.197503][T12557]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  548.197537][T12557]  ? __pfx___mutex_lock+0x10/0x10
[  548.197595][T12557]  ? rcu_is_watching+0x12/0xc0
[  548.197653][T12557]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  548.197687][T12557]  tracepoint_probe_register+0xc4/0x110
[  548.197727][T12557]  ? __pfx_tracepoint_probe_register+0x10/0x10
[  548.197764][T12557]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  548.197798][T12557]  ? __lock_acquire+0x4a5/0x2630
[  548.197853][T12557]  tracing_start_sched_switch+0xaf/0x170
[  548.197911][T12557]  __ftrace_event_enable_disable+0x557/0x6f0
[  548.197955][T12557]  __ftrace_set_clr_event_nolock+0x390/0xc30
[  548.198008][T12557]  ftrace_set_clr_event+0x16e/0x330
[  548.198065][T12557]  ? __pfx_ftrace_set_clr_event+0x10/0x10
[  548.198108][T12557]  ? trace_get_user+0x3ae/0xa70
[  548.198157][T12557]  ftrace_event_write+0x259/0x2c0
[  548.198202][T12557]  ? __pfx_ftrace_event_write+0x10/0x10
[  548.198270][T12557]  vfs_write+0x2aa/0x1070
[  548.198304][T12557]  ? __pfx_ftrace_event_write+0x10/0x10
[  548.198354][T12557]  ? __pfx_vfs_write+0x10/0x10
[  548.198408][T12557]  ? __fget_files+0x215/0x3d0
[  548.198451][T12557]  ? __fget_files+0x21f/0x3d0
[  548.198496][T12557]  ksys_write+0x12a/0x250
[  548.198528][T12557]  ? __pfx_ksys_write+0x10/0x10
[  548.198573][T12557]  do_syscall_64+0x106/0xf80
[  548.198629][T12557]  ? clear_bhb_loop+0x40/0x90
[  548.198671][T12557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.198707][T12557] RIP: 0033:0x7ff303b9c799
[  548.198736][T12557] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  548.198775][T12557] RSP: 002b:00007ff304b01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  548.198811][T12557] RAX: ffffffffffffffda RBX: 00007ff303e15fa0 RCX: 00007ff303b9c799
[  548.198833][T12557] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000007
[  548.198853][T12557] RBP: 00007ff303c32c99 R08: 0000000000000000 R09: 0000000000000000
[  548.198873][T12557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  548.198892][T12557] R13: 00007ff303e16038 R14: 00007ff303e15fa0 R15: 00007ffe7d1c7068
[  548.198938][T12557]  </TASK>
[  548.199842][T12557] wakeup trace: Couldn't activate tracepoint probe to kernel_sched_wakeup
[  549.045120][T12580] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1360'.
[  549.334141][T12583] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  549.854137][T12590] ------------[ cut here ]------------
[  549.859829][T12590] IS_ERR(old)
[  549.859843][T12590] WARNING: kernel/tracepoint.c:367 at tracepoint_probe_unregister+0x837/0xd10, CPU#0: syz.3.1362/12590
[  549.874473][T12590] Modules linked in:
[  549.878583][T12590] CPU: 0 UID: 0 PID: 12590 Comm: syz.3.1362 Not tainted syzkaller #0 PREEMPT(full) 
[  549.888073][T12590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  549.898205][T12590] RIP: 0010:tracepoint_probe_unregister+0x837/0xd10
[  549.905226][T12590] Code: cc e8 6d 2b fe ff 48 8d 73 f0 48 c7 c2 20 dc 09 82 48 c7 c7 40 31 87 8e e8 e6 79 e2 ff eb ba bb fe ff ff ff e8 4a 2b fe ff 90 <0f> 0b 90 eb ac e8 3f 2b fe ff 49 89 dd 45 31 ff 49 be 00 00 00 00
[  549.925851][T12590] RSP: 0018:ffffc90004817ab8 EFLAGS: 00010287
[  549.932018][T12590] RAX: 0000000000001655 RBX: 00000000fffffffe RCX: ffffc90006f69000
[  549.940413][T12590] RDX: 0000000000080000 RSI: ffffffff8209ed16 RDI: ffff888029869e80
[  549.948564][T12590] RBP: ffff88801beb3dc8 R08: 0000000000000005 R09: 0000000000000000
[  549.956898][T12590] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff821007e0
[  549.964959][T12590] R13: 0000000000000000 R14: ffffffff8e878b40 R15: 0000000000000001
[  549.972948][T12590] FS:  00007ff304b016c0(0000) GS:ffff88812434a000(0000) knlGS:0000000000000000
[  549.982013][T12590] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  549.984036][   T29] audit: type=1804 audit(1773629328.734:6): pid=12590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1362" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  549.989927][T12590] CR2: 0000001b311f0ff8 CR3: 00000000429b0000 CR4: 00000000003526f0
[  550.023685][T12590] Call Trace:
[  550.027638][T12590]  <TASK>
[  550.030626][T12590]  tracing_stop_cmdline_record+0x66/0xa0
[  550.037707][T12590]  trace_event_enable_cmd_record+0x16a/0x260
[  550.044127][T12590]  set_tracer_flag+0x1df/0x4e0
[  550.049002][T12590]  trace_options_core_write+0x17a/0x250
[  550.054618][T12590]  ? __pfx_trace_options_core_write+0x10/0x10
[  550.060750][T12590]  ? __pfx_trace_options_core_write+0x10/0x10
[  550.066893][T12590]  vfs_writev+0x5ea/0xe10
[  550.071261][T12590]  ? rcu_is_watching+0x12/0xc0
[  550.076126][T12590]  ? __pfx_vfs_writev+0x10/0x10
[  550.081010][T12590]  ? fdget_pos+0x2aa/0x380
[  550.085531][T12590]  ? __fget_files+0x21f/0x3d0
[  550.090258][T12590]  ? do_writev+0x13e/0x340
[  550.094774][T12590]  do_writev+0x13e/0x340
[  550.099085][T12590]  ? __pfx_do_writev+0x10/0x10
[  550.104164][T12590]  do_syscall_64+0x106/0xf80
[  550.108877][T12590]  ? clear_bhb_loop+0x40/0x90
[  550.113860][T12590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.119823][T12590] RIP: 0033:0x7ff303b9c799
[  550.124375][T12590] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  550.144652][T12590] RSP: 002b:00007ff304b01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  550.153565][T12590] RAX: ffffffffffffffda RBX: 00007ff303e15fa0 RCX: 00007ff303b9c799
[  550.161596][T12590] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  550.169687][T12590] RBP: 00007ff303c32c99 R08: 0000000000000000 R09: 0000000000000000
[  550.177756][T12590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  550.185836][T12590] R13: 00007ff303e16038 R14: 00007ff303e15fa0 R15: 00007ffe7d1c7068
[  550.193929][T12590]  </TASK>
[  550.197021][T12590] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  550.204348][T12590] CPU: 0 UID: 0 PID: 12590 Comm: syz.3.1362 Not tainted syzkaller #0 PREEMPT(full) 
[  550.213774][T12590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  550.223866][T12590] Call Trace:
[  550.227215][T12590]  <TASK>
[  550.230175][T12590]  dump_stack_lvl+0x100/0x190
[  550.234938][T12590]  vpanic+0x552/0x970
[  550.238953][T12590]  ? __pfx_vpanic+0x10/0x10
[  550.243491][T12590]  panic+0xd1/0xe0
[  550.247263][T12590]  ? __pfx_panic+0x10/0x10
[  550.251741][T12590]  check_panic_on_warn.cold+0x19/0x34
[  550.257134][T12590]  ? tracepoint_probe_unregister+0x837/0xd10
[  550.263143][T12590]  __warn.cold+0x191/0x348
[  550.267620][T12590]  __report_bug+0x296/0x3d0
[  550.272267][T12590]  ? tracepoint_probe_unregister+0x837/0xd10
[  550.278288][T12590]  ? __pfx___report_bug+0x10/0x10
[  550.283356][T12590]  ? rcu_is_watching+0x12/0xc0
[  550.288168][T12590]  ? trace_contention_end+0x140/0x180
[  550.293588][T12590]  ? __mutex_lock+0x26a/0x1b90
[  550.298405][T12590]  ? tracepoint_probe_unregister+0x31/0xd10
[  550.304335][T12590]  ? tracepoint_probe_unregister+0x837/0xd10
[  550.310366][T12590]  report_bug+0xb2/0x220
[  550.314650][T12590]  ? tracepoint_probe_unregister+0x837/0xd10
[  550.320666][T12590]  handle_bug+0x16a/0x2a0
[  550.325045][T12590]  exc_invalid_op+0x17/0x50
[  550.329576][T12590]  asm_exc_invalid_op+0x1a/0x20
[  550.334469][T12590] RIP: 0010:tracepoint_probe_unregister+0x837/0xd10
[  550.341094][T12590] Code: cc e8 6d 2b fe ff 48 8d 73 f0 48 c7 c2 20 dc 09 82 48 c7 c7 40 31 87 8e e8 e6 79 e2 ff eb ba bb fe ff ff ff e8 4a 2b fe ff 90 <0f> 0b 90 eb ac e8 3f 2b fe ff 49 89 dd 45 31 ff 49 be 00 00 00 00
[  550.360737][T12590] RSP: 0018:ffffc90004817ab8 EFLAGS: 00010287
[  550.366840][T12590] RAX: 0000000000001655 RBX: 00000000fffffffe RCX: ffffc90006f69000
[  550.374843][T12590] RDX: 0000000000080000 RSI: ffffffff8209ed16 RDI: ffff888029869e80
[  550.382839][T12590] RBP: ffff88801beb3dc8 R08: 0000000000000005 R09: 0000000000000000
[  550.390849][T12590] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff821007e0
[  550.398906][T12590] R13: 0000000000000000 R14: ffffffff8e878b40 R15: 0000000000000001
[  550.406923][T12590]  ? __pfx_probe_sched_switch+0x10/0x10
[  550.412521][T12590]  ? tracepoint_probe_unregister+0x836/0xd10
[  550.418597][T12590]  ? tracepoint_probe_unregister+0x836/0xd10
[  550.424634][T12590]  tracing_stop_cmdline_record+0x66/0xa0
[  550.430334][T12590]  trace_event_enable_cmd_record+0x16a/0x260
[  550.436365][T12590]  set_tracer_flag+0x1df/0x4e0
[  550.441186][T12590]  trace_options_core_write+0x17a/0x250
[  550.446798][T12590]  ? __pfx_trace_options_core_write+0x10/0x10
[  550.452921][T12590]  ? __pfx_trace_options_core_write+0x10/0x10
[  550.459027][T12590]  vfs_writev+0x5ea/0xe10
[  550.463401][T12590]  ? rcu_is_watching+0x12/0xc0
[  550.468223][T12590]  ? __pfx_vfs_writev+0x10/0x10
[  550.473216][T12590]  ? fdget_pos+0x2aa/0x380
[  550.477697][T12590]  ? __fget_files+0x21f/0x3d0
[  550.482426][T12590]  ? do_writev+0x13e/0x340
[  550.486894][T12590]  do_writev+0x13e/0x340
[  550.491191][T12590]  ? __pfx_do_writev+0x10/0x10
[  550.496018][T12590]  do_syscall_64+0x106/0xf80
[  550.500657][T12590]  ? clear_bhb_loop+0x40/0x90
[  550.505379][T12590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.511305][T12590] RIP: 0033:0x7ff303b9c799
[  550.515749][T12590] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  550.535399][T12590] RSP: 002b:00007ff304b01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  550.543852][T12590] RAX: ffffffffffffffda RBX: 00007ff303e15fa0 RCX: 00007ff303b9c799
[  550.551877][T12590] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  550.559882][T12590] RBP: 00007ff303c32c99 R08: 0000000000000000 R09: 0000000000000000
[  550.567883][T12590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  550.575890][T12590] R13: 00007ff303e16038 R14: 00007ff303e15fa0 R15: 00007ffe7d1c7068
[  550.583915][T12590]  </TASK>
[  550.587564][T12590] Kernel Offset: disabled
[  550.591906][T12590] Rebooting in 86400 seconds..