last executing test programs:

6.94095676s ago: executing program 1 (id=1028):
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0x0, 0x3, 0x1000000000001, 0x8000000008011, 0x3, 0x0)
mmap$auto(0xf0, 0x20009, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000)

6.739022087s ago: executing program 1 (id=1029):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0x11, 0x3, 0x4)
capset$auto(0x0, &(0x7f0000000000)={0x8, 0x7, 0x802})
sendmmsg$auto(r0, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f00000000c0)={&(0x7f0000000100)='L', 0x49}, 0x2, 0x0, 0x5, 0x1}, 0x5}, 0x2, 0x1ef)
r1 = ioctl$auto_userfaultfd_dev_fops_userfaultfd(0xffffffffffffffff, 0xc5, &(0x7f00000000c0)="e2903aafc2c45131524a3e784a4e84e76d2ba44efd32b3fd711559dc28b357e961560ebc5ca85fa0bd35da0f95d1f442efddd0f6d7227384e2c8aaa05c3f81d9739e86304cb7cc14e1ac4312ff629ae3b0d3c4c773b855e39809c8b657c37b7fc9f05de558d3")
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'veth0_virt_wifi\x00', <r4=>0x0})
r5 = openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000240), 0x18080, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mlockall$auto(0x800000000000005)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
ioctl$auto_XFS_IOC_FREESP(0xffffffffffffffff, 0x4030580b, &(0x7f0000000280)={0x4, 0x4, 0x253e, 0x9, 0x3, <r6=>0xffffffffffffffff})
msgctl$auto_MSG_INFO(0x1, 0xc, &(0x7f0000000340)={{0xffffffff, <r7=>0xee01, 0xee01, 0x2, 0x5, 0x7fffffff, 0x6}, &(0x7f00000002c0)=0x8, &(0x7f0000000300)=0x60, 0xd2, 0x637e, 0x7ff, 0xfff, 0x3, 0x6, 0x6, 0x1, @inferred=0xffffffffffffffff, @raw=0x800})
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/bond0/bonding/slaves\x00', 0x80002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r8, &(0x7f0000000000)="2dc2f4045de01fe67fa93d2c44e76f6e3fef497c029b61208f4342190a", 0x1d)
newfstatat$auto(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x3, 0x0, 0x41, 0x9, <r9=>0xee01, 0xee00, 0x0, 0x64, 0x8, 0x401, 0x7, 0x0, 0xe2, 0x2, 0x2, 0x1, 0xb6f9}, 0xe2ee)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000540)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="00022cbd7000fddbdf258800000008005700f713b148"], 0x1c}, 0x1, 0x0, 0x0, 0x40800}, 0x200040c1)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r1, &(0x7f0000001140)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x5910c002}, 0xc, &(0x7f0000001100)={&(0x7f0000001180)=ANY=[@ANYBLOB="80060000", @ANYRES16=r2, @ANYBLOB="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", @ANYRES64=r4, @ANYBLOB="050003000100000008000400", @ANYRES32=r3, @ANYBLOB="050003000f00000005fd02000900000008000400", @ANYRES32=r4, @ANYBLOB="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", @ANYRES32=0xee01, @ANYBLOB="08002600030000000800a800ac1414bb18003a8008000e00ffffffff08002b00", @ANYRES32=r5, @ANYBLOB="04003d8028001a00", @ANYRES32=r6, @ANYBLOB="4600f58008002e00", @ANYRES32=r7, @ANYBLOB="0400f28008004900", @ANYRES32=0xee01, @ANYBLOB="b213fa05f51fcd70fa33a76fc12a15e45ef9116bf84bea429a829b9d98c448a253a196f5a4bce97435520a3d58e0000014009200fc00000000000000000000000000000108004a00ac14142208001d00", @ANYRES32=r9, @ANYBLOB="05001e00030000000400870077001501b9a7e6254006446d07ddc128cce93308eb36a6f2b3bfbd94b61d6df3227aaa0f2d12398abb1b545186bcf1946ab5feb09229102c3233a4c7b63e361e7c372f27ae3465557d977d59a70f3c76687425b40098c083cfad0f3a205e230af728df569a1cec391df6023d2373bed1526b9b7f8f0874000800f80001000000"], 0x680}, 0x1, 0x0, 0x0, 0xedb723f5da6ab081}, 0x8080)
r10 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000400)='/dev/fb0\x00', 0x2, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
preadv$auto(r10, &(0x7f0000000080)={0x0, 0xfffffffd}, 0xa, 0x3, 0x5)
gettid()
r11 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0)
write$auto(r11, &(0x7f0000000800)='0\"\xfb]$|\xcb1j\xeb0B|d\x1e\x99\xb9\xfd\xd3\x89O\x9f\xac+\xf6\xd7/\xc9\xe9x\xd4\xf3\xc8\xf5\x7fW\xd3\xa6\x96\xd3^\xb8\xb4gq%H\xcc\x88r\xeaO\x8e\x10\t\xc7 P\xcf\xa7H\b\x04\x87\x98\x16`\xa3S\xd46\x10Wf\xc9<7\xcf\xc9\xf1\b\x9b\x8c\x9fu;\xc48(u\xf9Bx\n\xafW%/bBT\xa9\a\xed\xd2H4\x96\xa3U\xca\xf1\xef\x14dU\x15\x16\xa7\xdd\x01\x0e\xda\xc8\xd3\x00\xc5\b\x1a\xb0mN\x01\xb1\xc8B.U\xd1\x02\'\x9a\'\xf1;\xedJ\xf6@\xac\a\xf5\xf5 |\x1ex\xb7@=\xad\xe7\xff\xd6\xc1\xcf\x11\x0f\x99+v\x873\xc4\x17]\x17!]ct\xff\t\xb2A\x0f\x91\x02\xca&\x91<x\xe6\xc3q{KWa\xc6\x7f\xc7j\xa7\xaan8\xc3\xb5%\x8d(\x85\xcc&GH\xf4\x06\xda\xc4\xcc\xb5U?\xf3a(yG\xe2\xd7<W\xa1\xa5\xf2\x12\xdb\xca\xca\xf3\xd9\x95\x1d\xe5\x11\xcb\xdf\x85\xa3vU]?M\xd4\x9d\x10\xcb\x15\x92gp%\xae\x14`da\xe0\x90\xe3\x04q\xfaUtK,`V\x02H\xb4T|S\x12\xbap\xc0u\xa0\b_\x8f\xa3\xfcGM\xc7_\xaff\xd5C\x17\xea\xf1S\x19\xde\x03\nr\xab5G\xf3\x1a@+l\xfcH]o\xd3\xf8\xa9\v\x85\xa3\x8b\xd7\xa70I\xc0<b\xda\xce\x03\xac*]\x10\br\b1\x19\xf9\xd2b\x12\xb6\x81_h\f5\xac\xe8\x99\x85\xe9\xdb\xc6\x1e%\xba\xfc\xaa\xc2\xa0\xf9\xa4<\xc2\x11\x96\xdcB\x00\xa4\xc3\x17g&1/b\xca\x95\xcd\xcc\x8e\xaa^3H\xad\xbc\xc4Nv\x15\xa0d\xdd\xa1\xc8\xbe?\x98x2HT\x1b\a\xe2\xbf\x134\x13\xfc\x12\x05\xc4\xdd\xdfr\xe5]\xe5\xe8Z\xae_\x96=\x1e\xdf\x00\x14B\xbd\xab\vT\x16\x03C \f\x9e\x9a\x8f\x94\x97(?f\x00\xfb\xfd\xc4\xfd_\xee\f(LBj\x1d\xbc;\n\x9f!\xc4\x8b\xbd\xf9\xa2\xa2\xac(Te\xa2\xae\\\xd6\x9c^\\\x891\x9bI\xdc\x7f\xb5\x87\x0e\xc3\x811]\xa5\xa0\xd8c\xb7B\xb0\x19\xb6\xd2\xcaw\xe7A\xd5\xf8\x90t\xb6+\xd4G\x06/\x10\x98z\t\x8f{~\xa7\x1fC8B(\xeaq\xb0\xb2\x83\x88\xed\t\x86\x94\xedB\xaf!\x04\xb3S\x1a\xe7\xb4\x89\x85\x05\x95`\x9a\xa6\x99\xd76\x16\x93\xf4\r\x82:_\x86\x12!\xae\xea>n\xc1\x9e\xcb\x1b\xec\x972\xa9\x00', 0x4000002)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0x0, 0x3, 0x1000000000001, 0x8000000008011, 0x3, 0x0)

5.76795417s ago: executing program 0 (id=1032):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'team_slave_0\x00', <r1=>0x0})
bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x3, 0x24, 0xf, 0x63, 0x400, 0x0, 0xffffffffffffffff, 0x80f0c8, 0x20, "38c1d5cbcb9f6b5e511f0cd8ed068f65", r1, 0x5, 0xffffffffffffffff, 0xe4, 0x6, 0x5, 0x4, 0x8, 0x0, 0x3, @attach_prog_fd=<r2=>0xffffffffffffffff, 0x4, 0xffff, 0x8, 0x4, 0x0, 0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x47)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x40000003, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r5 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/ieee80211/phy1/airtime_flags\x00', 0x8000, 0x0)
readahead$auto(r4, 0x8, 0x96b)
read$auto_debugfs_full_proxy_file_operations_internal(r5, 0x0, 0x0)
r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
statx$auto(0x2, 0x0, 0x1000, 0xbdfa, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x49, 0x4000001, 0x6, 0x1, 0x4, 0x7181, 0x3ffde, 0xbb41, 0x10, 0x9, 0x80006, 0x80803, 0x4, 0x11ffffffffffd, 0x85, 0xfffffffffffffffe, 0x9, 0x50007, 0x0, 0x0, 0x0, 0x80000001, 0x10000, 0x202, 0x9, 0x7ffc, 0x0, 0x0, 0x7fffffff, 0x3, 0xfffffffc, [0x1, 0x0, 0x0, 0x0, 0xd, 0xfff, 0x3, 0x2, 0x800005, 0x6, 0x4, 0x0, 0x0, 0xfffffffffffffffe, 0x3, 0x2000000800000000, 0x6, 0x0, 0x0, 0xfffffffffffffffe, 0x2, 0xfffffffffffffffe, 0x3, 0x4, 0x6, 0x80000000, 0x0, 0x20000000, 0x2, 0x1, 0x0, 0x0, 0x800000009, 0xfffffffffffffffe, 0x4, 0x8001, 0x6, 0x0, 0x1000000000000001, 0x7ff, 0xbffffffffffffffb, 0xfffffffffffffffc, 0x6]}, 0x8, 0xd)
r7 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r7, 0xfffffffffffffd02, &(0x7f00000001c0))
mmap$auto(0x4, 0x9f, 0x419, 0xf6, r6, 0x0)
lseek$auto(r5, 0x4, 0x2781c)
r8 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001f00), 0xffffffffffffffff)
write$auto_uinput_fops_uinput(r2, &(0x7f0000000040)="65504fd66509acc5c3cc3d60b77e1c6a3b4102fd6f86f57c8a1cf219cf0d9983c952833e2fcc656f9a95296c9316fff0990e769a516a679236440e72c7c40949b9d09171350e", 0x46)
prctl$auto(0x23, 0x4, 0x7fffffffefff, 0x0, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r3)
sendmsg$auto_NL80211_CMD_UNEXPECTED_FRAME(r4, &(0x7f0000000480)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000011}, 0x24044001)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000003a80)={0x0, 0x0, &(0x7f0000003a40)={&(0x7f0000000340)={0x18, r8, 0x1, 0x70bd2e, 0x25dfdbfb, {0x3, 0x0, 0x300}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1}, 0x24040804)

5.59345703s ago: executing program 1 (id=1033):
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
listen$auto(0x3, 0x83)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000140)=r0)
mmap$auto(0x0, 0x2020009, 0x4, 0xeb1, 0xffffffffffffffff, 0x800)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/cad_pid\x00', 0x242, 0x0)
write$auto(0x3, 0x0, 0xfdef)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="249e139e242a38e71a170cfb2ffe000000", @ANYRES16=r2, @ANYBLOB="010027bd7000fddbdf250200000008000300", @ANYRES32=r4, @ANYBLOB="08000c0102000000"], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x80)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r3)
sendmsg$auto_NL80211_CMD_SET_COALESCE(r1, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x1c, r5, 0x1, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x49}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004844)
unshare$auto(0x40000080)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000001500)='/proc/kpagecgroup\x00', 0x101000, 0x0)
ioctl$auto_SNDCTL_SEQ_CTRLRATE(0xffffffffffffffff, 0xc0045103, &(0x7f0000000300)="10d9ff")
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
read$auto_snd_timer_f_ops_timer(0xffffffffffffffff, 0x0, 0x0)

5.451147406s ago: executing program 0 (id=1034):
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
listen$auto(0x3, 0x83)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000140)=r0)
mmap$auto(0x0, 0x2020009, 0x4, 0xeb1, 0xffffffffffffffff, 0x800)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/cad_pid\x00', 0x242, 0x0)
write$auto(0x3, 0x0, 0xfdef)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="249e139e242a38e71a170cfb2ffe000000", @ANYRES16=r2, @ANYBLOB="010027bd7000fddbdf250200000008000300", @ANYRES32=r4, @ANYBLOB="08000c0102000000"], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x80)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r3)
sendmsg$auto_NL80211_CMD_SET_COALESCE(r1, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x1c, r5, 0x1, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x49}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004844)
unshare$auto(0x40000080)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000001500)='/proc/kpagecgroup\x00', 0x101000, 0x0)
ioctl$auto_SNDCTL_SEQ_CTRLRATE(0xffffffffffffffff, 0xc0045103, &(0x7f0000000300)="10d9ff")
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
read$auto_snd_timer_f_ops_timer(0xffffffffffffffff, 0x0, 0x0)

4.945262917s ago: executing program 1 (id=1036):
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x40, 0x0)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x4, 0x10000000400008, 0x5, 0x979, 0x2, 0x40000008000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyxc\x00', 0x800, 0x0)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/pcmC0D0c\x00', 0x80000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x2000c001}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
recvmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0xfffffffffffffffe}, 0x6, 0x0, 0x8, 0x7fc}, 0x9000}, 0xffffffff, 0x4, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x6}, 0x3, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0)

4.409008736s ago: executing program 0 (id=1038):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x4020005, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/v4l-touch8\x00', 0x80f00, 0x0)
unshare$auto(0x40000080)
write$auto(0xca, 0x0, 0x7d)
r1 = openat$auto_tracing_saved_cmdlines_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/tracing/saved_cmdlines\x00', 0x143382, 0x0)
preadv$auto(r1, &(0x7f0000000140)={0x0, 0x3}, 0x5, 0x1ff, 0x81)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x101100, 0x0)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0xe40, 0x0)
poll$auto(&(0x7f00000001c0)={0xffffffffffffffff, 0x9, 0xa}, 0x0, 0x3fe)
read$auto(0x3, 0x0, 0x7fffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@nl=@unspec, 0x6a)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0x10001}, 0x50, 0x20000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
prctl$auto(0x23, 0x80000000000a, 0x80000001, 0x0, 0x0)
openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/environ\x00', 0x92000, 0x0)
ioctl$auto(r0, 0x5646, r0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000280)="0f0bc9769f916e1475e01dcc394e4d0eb47160544a8f706acd1f638c5eda2b85bfe914a8cc830d6ab21463c1ae9561182021a76df58e4ead6a777e0d31786b1df9b27fcf2db03bc846b7af6bc1ef8d58e471776ff9497da32a6658f9774e7514cc586fe393e6c2499f970cf9ec168a9536d7c706264a2acd487d79a99376e6cc973c3cda85d54a06e57bfdf19f2288420fe95b0e2c716f435981c45afa0c7e569431e7b93cdcf5b49b70c8347f489b8d95f6cf2558cac4da0f0e33b788ef7c22697b93e353a508a0d1ee720c53d40612e8d87a060982c61dabd740b89f7ca9d1c150f4d41036233b", 0x1}, 0x3, 0x0, 0x80000000, 0x5}}, 0x8bd4, 0x6, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x10, 0x3e, 0x0, 0x9)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000003f40)=""/156, 0x9c)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, 0x0, 0x80)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb5, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)

3.837431647s ago: executing program 1 (id=1040):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone3$auto(&(0x7f0000000000)={0x9, 0xd3d, 0xf, 0x10200000, 0x3, 0x200, 0x4000000050, 0x5, 0x3, 0xb, 0xd}, 0x5)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x82000, 0x0)
read$auto_bm_entry_operations_binfmt_misc(r2, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r3)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x24, r4, 0x805, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_4ADDR={0x5, 0x53, 0x10}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x200005}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r1)
sendmsg$auto_NL80211_CMD_UNEXPECTED_FRAME(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r5, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_PUNCT_BITMAP={0x8, 0x142, 0xb9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x881}, 0x4000040)
ioctl$auto(r0, 0x64c6, 0x1e2)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmsg$auto_NL802154_CMD_SET_CCA_ED_LEVEL(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)={0x1c, 0x0, 0x8, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8001}, 0x40000)
r6 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43142, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r6, &(0x7f0000000180)=""/178, 0xb2)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x2000c840)
madvise$auto(0x1d4000, 0x7, 0x9)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000000000008000)
r7 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
select$auto(0x8, 0x0, 0x0, 0x0, 0x0)
io_setup$auto(0x7ffe, 0x0)
madvise$auto(0x1, 0x6, 0x3)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fspick$auto(r7, &(0x7f0000000040)='./file0\x00', 0xed)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/usb_storage/parameters/delay_use\x00', 0x181942, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)

3.102405174s ago: executing program 3 (id=1046):
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x20, 0x0, 0x1b, 0x70bc26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x4}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_CGROUPSTATS_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="13000000", @ANYRES16=0x0, @ANYBLOB="2586f2bd7000fedbdf2504"], 0x1c}, 0x1, 0x0, 0x0, 0x400c9d0}, 0x4080)
r0 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB='r'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0)

2.655418451s ago: executing program 3 (id=1047):
close_range$auto(0x0, 0xe903, 0x2)
socket(0x1e, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x1, 0x2, 0x4, 0x1f, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x9, 0x26, 0x940, 0x1ffde, 0x3, 0x6, 0x8000004, 0x9, 0x5, 0x0, 0x4, 0xb0, 0x7, 0x5, 0x3, 0x205, 0x7, 0x0, 0x803ffff, 0x0, 0x3, 0x7069, 0x0, 0x2000000, 0x0, 0x2, 0x0, 0x3, [0x0, 0x0, 0x0, 0x8, 0x5, 0x8, 0x0, 0x2, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x100000000, 0x0, 0x100, 0x0, 0x1, 0x0, 0x0, 0x1001, 0x4, 0x0, 0x0, 0x2000000000000000]}, 0x2, 0x7d)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
landlock_restrict_self$auto(0xffffffffffffffff, 0xc)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x208480, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x60000000, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

2.634523352s ago: executing program 2 (id=1048):
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x600347, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x15, 0x5, 0x0)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
getsockopt$auto(r0, 0x110, 0x40002715, 0xfffffffffffffffc, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r1, 0x40095505, &(0x7f0000000100)={0x5, 0x0, 0x4, 0x21, 0x4, 0xbb, 0x47, 0x5})
faccessat$auto(r1, &(0x7f0000000040)='./file0\x00', 0x2)
io_uring_setup$auto(0x2, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80040, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6ab82, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000280), r3)
sendmsg$auto_HWSIM_CMD_REGISTER(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="010028bd7000fddb428114000000"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f00000003c0)='\a', 0x5ea}, 0x5, 0x0, 0x0, 0x1001}, 0x5}, 0x2, 0x100)
socket(0x2, 0x2, 0x0)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media1\x00', 0x22001, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x14, 0x401, 0x300000000000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r5, 0x0, 0x10001)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x2d41, 0x0)
writev$auto(r6, &(0x7f0000000240)={0x0, 0x7}, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
semctl$auto(0x0, 0x8, 0x1, 0x8)

2.407424978s ago: executing program 3 (id=1049):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/video2\x00', 0x80000, 0x0)
ppoll$auto(&(0x7f0000000000)={r0, 0x5687, 0x8}, 0x3, 0x0, 0x0, 0x8)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dri/card0\x00', 0x3c3180, 0x0)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x600347, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = socket(0x15, 0x5, 0x0)
bind$auto(r1, &(0x7f0000000040)=@xdp={0x2c, 0xd, 0x0, 0xa}, 0x67)
getsockopt$auto(0xffffffffffffffff, 0x114, 0x2715, 0xfffffffffffffffc, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socketpair$auto(0x80, 0x1, 0x8000000000000000, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r3, 0x40095505, &(0x7f0000000100)={0x5, 0x0, 0x4, 0x21, 0x4, 0xbb, 0x47, 0x5})
faccessat$auto(r3, &(0x7f0000000040)='./file0\x00', 0x2)
unshare$auto(0x40000080)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
ioctl$auto_BLKFLSBUF(r4, 0x1261, 0x0)
madvise$auto(0x0, 0x2003f2, 0x15)
io_uring_setup$auto(0x2, 0x0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80040, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6ab82, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000280), r6)
sendmsg$auto_HWSIM_CMD_REGISTER(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=ANY=[@ANYBLOB="14dcf66dba7f539aa470c88d76336882382052c786064f0089e05c57870e", @ANYRES16=r2, @ANYBLOB="0400810004000000000000000000"], 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f00000003c0)='\a', 0x5ea}, 0x5, 0x0, 0x0, 0x1001}, 0x5}, 0x2, 0x100)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/uid_map\x00', 0x602000, 0x0)

2.277735431s ago: executing program 2 (id=1050):
r0 = syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4$auto(r0, 0x0, 0x80000001, 0x0)
ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f0000000000)={0x77, 0x6, 0x100, 0x3, 0x8, <r1=>0x0})
r2 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000040), 0x101400, 0x0)
kcmp$auto_KCMP_EPOLL_TFD(r0, r1, 0x7, r2, 0x120)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0x0, 0x3, 0x1000000000001, 0x8000000008011, 0x3, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
setpriority$auto_PRIO_PGRP(0x1, 0x0, 0x1)
mmap$auto(0x0, 0x2000a, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x27, 0x0)
mmap$auto(0x8, 0x2, 0xffff, 0x18, 0xffffffffffffffff, 0x7a)
r3 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r3, 0x5, 0x0, 0x0, 0x0)
ioctl$auto_RTC_IRQP_READ(r3, 0x8008700b, &(0x7f0000000000)=0x7fff)
bpf$auto_BPF_LINK_DETACH(0x22, &(0x7f0000001040)=@link_update={r3, @new_prog_fd=r3, 0xfffffffd, @old_map_fd=r3}, 0x8)
read$auto_zero_fops_mem(r3, &(0x7f0000000040)=""/4096, 0x1000)
openat$auto_tracing_total_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/buffer_total_size_kb\x00', 0x705400, 0x0)
r4 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r4, 0x7a7, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, 0x6)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x2282, 0x0)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f00000001c0), 0x7111}, 0x8)
adjtimex$auto(0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40802, 0x0)
r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
r6 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r5, 0x5603, r6)

1.912276529s ago: executing program 0 (id=1051):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x0)
ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, &(0x7f00000000c0)={0x8, @raw=0x3ff, @inferred, 0x401, 0x5, '\x00', {0x3, 0x9, 0xe0fd, <r1=>0x0, 0xee00, 0x5, 0x10000000, 0x200, {0x1, 0x7fff}, {0x4, 0x39}, {0x6, 0x1ff}, 0x4, 0x4000, 0x2b6, 0x1, 0x849, 0x9, 0x0, 0x3, 0x6, 0x746, '\x00', 0xffffffff, 0xe838, 0xfff9, 0x8}})
lstat$auto(0x0, &(0x7f0000000180)={0x10, 0x2, 0x1, 0x5, r1, 0x0, 0x0, 0xfa9b, 0xfffffffffffffff9, 0x7ffffffffffffffe, 0x4, 0x3, 0x7fffffffffff7ffb, 0x5f3, 0x7, 0x81, 0x6})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x29, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0xa, 0x3, 0x87)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "00800000ffefffffff0200000001"}, 0x55)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x5dc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x34)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket(0x2, 0x80002, 0x73)
bpf$auto_BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000240)=@bpf_attr_1={r4, 0xffffffffffffffff, @next_key=0xba58, 0x3}, 0x5)
ioctl$auto(r3, 0x8917, 0x24)
semtimedop$auto(0x9, &(0x7f0000000000)={0x8, 0x2, 0x45}, 0x4, &(0x7f0000000300)={0x4, 0x100})
ioctl$sock_SIOCGIFINDEX(r2, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0xe0180, 0x0)
socket(0xa, 0x1, 0x100)
getrandom$auto(0x0, 0x8000, 0x5)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r5 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r5, 0x84, 0xc, 0x0, 0x0)
r6 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0)
ioctl$auto_I2C_SMBUS(r6, 0x720, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0x0, 0x3, 0x1000000000001, 0x8000000008011, 0x3, 0x0)
mmap$auto(0x4, 0x5, 0x6, 0x5d, r4, 0xa)

1.745579737s ago: executing program 2 (id=1052):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'team_slave_0\x00', <r1=>0x0})
bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x3, 0x24, 0xf, 0x63, 0x400, 0x0, 0xffffffffffffffff, 0x80f0c8, 0x20, "38c1d5cbcb9f6b5e511f0cd8ed068f65", r1, 0x5, 0xffffffffffffffff, 0xe4, 0x6, 0x5, 0x4, 0x8, 0x0, 0x3, @attach_prog_fd=<r2=>0xffffffffffffffff, 0x4, 0xffff, 0x8, 0x4, 0x0, 0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x47)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x40000003, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r5 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/ieee80211/phy1/airtime_flags\x00', 0x8000, 0x0)
readahead$auto(r4, 0x8, 0x96b)
read$auto_debugfs_full_proxy_file_operations_internal(r5, 0x0, 0x0)
r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
statx$auto(0x2, 0x0, 0x1000, 0xbdfa, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x49, 0x4000001, 0x6, 0x1, 0x4, 0x7181, 0x3ffde, 0xbb41, 0x10, 0x9, 0x80006, 0x80803, 0x4, 0x11ffffffffffd, 0x85, 0xfffffffffffffffe, 0x9, 0x50007, 0x0, 0x0, 0x0, 0x80000001, 0x10000, 0x202, 0x9, 0x7ffc, 0x0, 0x0, 0x7fffffff, 0x3, 0xfffffffc, [0x1, 0x0, 0x0, 0x0, 0xd, 0xfff, 0x3, 0x2, 0x800005, 0x6, 0x4, 0x0, 0x0, 0xfffffffffffffffe, 0x3, 0x2000000800000000, 0x6, 0x0, 0x0, 0xfffffffffffffffe, 0x2, 0xfffffffffffffffe, 0x3, 0x4, 0x6, 0x80000000, 0x0, 0x20000000, 0x2, 0x1, 0x0, 0x0, 0x800000009, 0xfffffffffffffffe, 0x4, 0x8001, 0x6, 0x0, 0x1000000000000001, 0x7ff, 0xbffffffffffffffb, 0xfffffffffffffffc, 0x6]}, 0x8, 0xd)
r7 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r7, 0xfffffffffffffd02, &(0x7f00000001c0))
mmap$auto(0x4, 0x9f, 0x419, 0xf6, r6, 0x0)
lseek$auto(r5, 0x4, 0x2781c)
r8 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001f00), 0xffffffffffffffff)
write$auto_uinput_fops_uinput(r2, &(0x7f0000000040)="65504fd66509acc5c3cc3d60b77e1c6a3b4102fd6f86f57c8a1cf219cf0d9983c952833e2fcc656f9a95296c9316fff0990e769a516a679236440e72c7c40949b9d09171350e", 0x46)
prctl$auto(0x23, 0x4, 0x7fffffffefff, 0x0, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r3)
sendmsg$auto_NL80211_CMD_UNEXPECTED_FRAME(r4, &(0x7f0000000480)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000011}, 0x24044001)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000003a80)={0x0, 0x0, &(0x7f0000003a40)={&(0x7f0000000340)={0x18, r8, 0x1, 0x70bd2e, 0x25dfdbfb, {0x3, 0x0, 0x300}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1}, 0x24040804)

1.495303338s ago: executing program 2 (id=1053):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
connect$auto(r1, 0x0, 0x54)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x7, 0x734f, 0x37, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0x83ad, 0x9, 0x6, 0x6, 0x81, 0x4, 0x1cd7, 0x8, 0x2000, 0x203, 0x0, 0x84, 0xfffffffffffffffa, 0x0, 0x0, 0x2, 0x101, [0x0, 0x0, 0x8003, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa04, 0x0, 0xfffffffffffffffc, 0x3, 0x4, 0x1ff, 0x0, 0x9, 0x0, 0x40000000, 0x0, 0x7, 0x0, 0x2, 0x7ff, 0x0, 0x0, 0x3, 0x40000000000000, 0x0, 0x0, 0x0, 0xff, 0x0, 0x8, 0x0, 0x3c3, 0x100000, 0x2]}, 0x1fe, 0x2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x13, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8040)
r2 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x0, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x0, 0x0)
r3 = openat$auto_transactions_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x20040, 0x0)
read$auto_transactions_fops_(r3, &(0x7f0000000080)=""/18, 0x12)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000080)={0x0, 0xfc2}, 0x2, &(0x7f0000000100), 0x3, 0x2}, 0x10000}, 0xffffffff, 0x4008)

1.35599517s ago: executing program 3 (id=1054):
io_uring_register$auto_IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, &(0x7f00000000c0)="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", 0x7f)
mmap$auto(0x0, 0x2020209, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="00010000", @ANYRES16=0x0, @ANYBLOB="000326bd7000fcdbdf2503000000790008805b4f2525b2dc3a73ec37e7122e6f0d55382854d419b883b7ed64bd3c7b9fb15273e787030718751e0a22cc6cabcae114aa6448d0356183e1ca7c01536c5c6f37915b26a3e75515ab02807fe932b8a415a581dcdc7800f91e231c001d800400d3800c002000f3000000002b3c0c7e9b"], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x42)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x15)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0001, 0x0)
ioctl$auto(0x3, 0xc0104d03, r1)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0xffffffffffffffcf, 0x0, 0xd9, 0x9}, 0x7}, 0x3, 0x0)
io_uring_register$auto_IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, &(0x7f00000000c0)="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", 0x7f) (async)
mmap$auto(0x0, 0x2020209, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="00010000", @ANYRES16=0x0, @ANYBLOB="000326bd7000fcdbdf2503000000790008805b4f2525b2dc3a73ec37e7122e6f0d55382854d419b883b7ed64bd3c7b9fb15273e787030718751e0a22cc6cabcae114aa6448d0356183e1ca7c01536c5c6f37915b26a3e75515ab02807fe932b8a415a581dcdc7800f91e231c001d800400d3800c002000f3000000002b3c0c7e9b"], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x42) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x10, 0x2, 0x15) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0001, 0x0) (async)
ioctl$auto(0x3, 0xc0104d03, r1) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) (async)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0xffffffffffffffcf, 0x0, 0xd9, 0x9}, 0x7}, 0x3, 0x0) (async)

1.143831054s ago: executing program 0 (id=1055):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
madvise$auto(0x0, 0x200007, 0x19)
io_uring_setup$auto(0x2, &(0x7f0000000080)={0x80000003, 0x9, 0x4002, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x4000006, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x104, 0x8, 0x100000000}})
ioctl$auto_UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000040)={{0x0, 0xf2cf, 0x1ff, 0x4}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x8})
r0 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r0, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f00000000c0)={&(0x7f0000000080)="4c0300006bba861b000004000000a32457895897441b", 0x49}, 0x2, &(0x7f0000000700), 0x5, 0x1}, 0x5}, 0x2, 0x100)
clone3$auto(&(0x7f0000000000)={0x1, 0x6, 0x100000003, 0xc000000000000, 0x9, 0x4, 0xdc, 0xe, 0x2, 0x2, 0x40}, 0x103)
socket(0x29, 0x2, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/vbi14\x00', 0x103040, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x180, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/003/001\x00', 0x42082, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/fail-nth\x00', 0xa8802, 0x0)
sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0100f9020000fbdbdf250100000008000b00ac141420080001"], 0x24}, 0x1, 0x0, 0x0, 0x14}, 0x0)
r1 = socket(0x11, 0xa, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/controlC0\x00', 0x880, 0x0)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x8800, 0x0)
socket(0xa, 0x2, 0x0)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001280)='/dev/sequencer2\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r1, @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x2000c082)
write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef)

992.044347ms ago: executing program 3 (id=1056):
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x20, 0x0, 0x1b, 0x70bc26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x4}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_CGROUPSTATS_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="13000000", @ANYRES16=0x0, @ANYBLOB="2586f2bd7000fedbdf2504"], 0x1c}, 0x1, 0x0, 0x0, 0x400c9d0}, 0x4080)
r0 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB='r'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0)

970.313041ms ago: executing program 1 (id=1057):
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
listen$auto(0x3, 0x83)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x8, 0x9)
ioctl$auto_VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000140)=r0)
mmap$auto(0x0, 0x2020009, 0x4, 0xeb1, 0xffffffffffffffff, 0x800)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/cad_pid\x00', 0x242, 0x0)
write$auto(0x3, 0x0, 0xfdef)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="249e139e242a38e71a170cfb2ffe000000", @ANYRES16=r3, @ANYBLOB="010027bd7000fddbdf250200000008000300", @ANYRES32=r5, @ANYBLOB="08000c0102000000"], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x80)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r4)
sendmsg$auto_NL80211_CMD_SET_COALESCE(r1, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x1c, r6, 0x1, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x49}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004844)
unshare$auto(0x40000080)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000001500)='/proc/kpagecgroup\x00', 0x101000, 0x0)
ioctl$auto_SNDCTL_SEQ_CTRLRATE(0xffffffffffffffff, 0xc0045103, &(0x7f0000000300)="10d9ff")
close_range$auto(r2, 0x8, 0x0)
read$auto_snd_timer_f_ops_timer(0xffffffffffffffff, 0x0, 0x0)

406.869751ms ago: executing program 2 (id=1058):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x3, 0x6)
r2 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000001c0), r1)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r0, &(0x7f0000000880)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000840)={&(0x7f0000000400)={0x410, r2, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_SERVICE={0x2bd, 0x1, 0x0, 0x1, [@generic="25b8a19868bbc2ff8cb98cf0fcae047be46c94e991c6e1a1209e4cdfd282ea89ff33372355784e0c1b2a3c76bcbd12c3cbbfc60edfb0af406ad278d497febc1b1b35d4f27474c0a2fef5078667", @generic="24be7f36267f13bd894d5b0ab8a1f9f749d06a27e38d12f4a951fd6dced012f51d5e2bff6a3116ba13285c33305f447dc4d9be43e2987adb6ae3aba8e6ffe3589a9f9137c89584ce63bc0d82bfd535e7eb3c610e5748a43b7e3b9c09c97859abe18aa7ae81b267cec1fe505c011b72b3075418152dc31f74ff3a6d6886efcfa2fcc34fbc4a1e8a67a92df75dd882f8db5b4266861002190d95693ba777cb16d6debce55b20cd1bb002512e6d314ba76b1793eaa8312005afc4921c6166f209a8b34b59c9a851cf733b7ee0d1424c323cd4426517", @generic="14b20cf69c15341e99005b3a6a47f56e539f0c9d7740c80f6a6c4474c26e7eebdde0d9485413f58582554b0c596d818f13222133cf564c4f0c885556098b186b37e50a39a356225670144e5ec1ffe9bb5424", @typed={0x8, 0xdb, 0x0, 0x0, @fd=r0}, @typed={0x4, 0x6}, @generic="21f099407a1a102096339b187a78e63327dc31fd59cfa9e1f2fedb3bc9cb82f2c0d097c888fcd9c573e2b10ce6bf4936394f90b70edea5ad4e7c49ac7cfc24491950eccc26d83494120431b1b7e7427f15eee859aaa0c57e8e860ed24a4cb999c1144d3e8f2abfa479d51fcba6538020f72d5839ae6148e72c9247da12b7d72c08d6e51d42c43f8bd02c4452f3fea5a2f5c6665e6bb81c69a8b518be6eb173589d091d0752", @generic="a77c776dc04a6ef91f2a4889662d21c2841878636bb989fa645bdaa043ab3bf7e3751530811cccae12307e5bc833781d3fe8cf6cb98cd531", @generic="40ac56a44c71b4394df5d77e611e921936018df38692bdade5079c4c0a13b1f714651d2f80ac", @generic="2e9d04072b884bdb159fd99057bcb2aed504c6413ee07e2bf4a2a01409d68bee30721d805f8ea1a9bea55a04c4dd13c8c6fae7a66a69af"]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xee2d}, @IPVS_CMD_ATTR_DEST={0x12c, 0x2, 0x0, 0x1, [@nested={0x8, 0xe5, 0x0, 0x1, [@nested={0x4, 0xb5}]}, @typed={0xc, 0x11a, 0x0, 0x0, @u64=0x2}, @nested={0x4, 0x14b, 0x0, 0x1, [@generic]}, @nested={0x30, 0x24, 0x0, 0x1, [@generic="9d00cd495f3ac6fa82efb9b732cb031baf0014d433dd30681094c849921ec29c9c665175f0f57dc00b6bb539"]}, @typed={0x8, 0x106, 0x0, 0x0, @fd=r1}, @generic="9aac80547cb1979c76de34d61b21816c98cbceff3f44d9acb1deb6b9a9a8a095e31cd85e5a28a06dd16748013b98c3e876955f26a77d96ba683cda1a34874a50be37d782d59be89df42f99e2d41de6bb0fffe49502d59c09f0ffd508c04743551af3dc83cc62dd7e2a3701faa345425938009fc1b2b0cfe18df5e666bcb3d3878c00c08c40cbea35e00ef867f2142e664fcb2c33d31dedeb77cf256920987d90bb48273a5315a2c335284904086e45e49f8b210eb056a9926304dd47", @typed={0x14, 0x2c, 0x0, 0x0, @ipv6=@private2}, @typed={0x5, 0xea, 0x0, 0x0, @binary='~'}]}]}, 0x410}, 0x1, 0x0, 0x0, 0x24000410}, 0x80) (async)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r0, &(0x7f0000000880)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000840)={&(0x7f0000000400)={0x410, r2, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_SERVICE={0x2bd, 0x1, 0x0, 0x1, [@generic="25b8a19868bbc2ff8cb98cf0fcae047be46c94e991c6e1a1209e4cdfd282ea89ff33372355784e0c1b2a3c76bcbd12c3cbbfc60edfb0af406ad278d497febc1b1b35d4f27474c0a2fef5078667", @generic="24be7f36267f13bd894d5b0ab8a1f9f749d06a27e38d12f4a951fd6dced012f51d5e2bff6a3116ba13285c33305f447dc4d9be43e2987adb6ae3aba8e6ffe3589a9f9137c89584ce63bc0d82bfd535e7eb3c610e5748a43b7e3b9c09c97859abe18aa7ae81b267cec1fe505c011b72b3075418152dc31f74ff3a6d6886efcfa2fcc34fbc4a1e8a67a92df75dd882f8db5b4266861002190d95693ba777cb16d6debce55b20cd1bb002512e6d314ba76b1793eaa8312005afc4921c6166f209a8b34b59c9a851cf733b7ee0d1424c323cd4426517", @generic="14b20cf69c15341e99005b3a6a47f56e539f0c9d7740c80f6a6c4474c26e7eebdde0d9485413f58582554b0c596d818f13222133cf564c4f0c885556098b186b37e50a39a356225670144e5ec1ffe9bb5424", @typed={0x8, 0xdb, 0x0, 0x0, @fd=r0}, @typed={0x4, 0x6}, @generic="21f099407a1a102096339b187a78e63327dc31fd59cfa9e1f2fedb3bc9cb82f2c0d097c888fcd9c573e2b10ce6bf4936394f90b70edea5ad4e7c49ac7cfc24491950eccc26d83494120431b1b7e7427f15eee859aaa0c57e8e860ed24a4cb999c1144d3e8f2abfa479d51fcba6538020f72d5839ae6148e72c9247da12b7d72c08d6e51d42c43f8bd02c4452f3fea5a2f5c6665e6bb81c69a8b518be6eb173589d091d0752", @generic="a77c776dc04a6ef91f2a4889662d21c2841878636bb989fa645bdaa043ab3bf7e3751530811cccae12307e5bc833781d3fe8cf6cb98cd531", @generic="40ac56a44c71b4394df5d77e611e921936018df38692bdade5079c4c0a13b1f714651d2f80ac", @generic="2e9d04072b884bdb159fd99057bcb2aed504c6413ee07e2bf4a2a01409d68bee30721d805f8ea1a9bea55a04c4dd13c8c6fae7a66a69af"]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xee2d}, @IPVS_CMD_ATTR_DEST={0x12c, 0x2, 0x0, 0x1, [@nested={0x8, 0xe5, 0x0, 0x1, [@nested={0x4, 0xb5}]}, @typed={0xc, 0x11a, 0x0, 0x0, @u64=0x2}, @nested={0x4, 0x14b, 0x0, 0x1, [@generic]}, @nested={0x30, 0x24, 0x0, 0x1, [@generic="9d00cd495f3ac6fa82efb9b732cb031baf0014d433dd30681094c849921ec29c9c665175f0f57dc00b6bb539"]}, @typed={0x8, 0x106, 0x0, 0x0, @fd=r1}, @generic="9aac80547cb1979c76de34d61b21816c98cbceff3f44d9acb1deb6b9a9a8a095e31cd85e5a28a06dd16748013b98c3e876955f26a77d96ba683cda1a34874a50be37d782d59be89df42f99e2d41de6bb0fffe49502d59c09f0ffd508c04743551af3dc83cc62dd7e2a3701faa345425938009fc1b2b0cfe18df5e666bcb3d3878c00c08c40cbea35e00ef867f2142e664fcb2c33d31dedeb77cf256920987d90bb48273a5315a2c335284904086e45e49f8b210eb056a9926304dd47", @typed={0x14, 0x2c, 0x0, 0x0, @ipv6=@private2}, @typed={0x5, 0xea, 0x0, 0x0, @binary='~'}]}]}, 0x410}, 0x1, 0x0, 0x0, 0x24000410}, 0x80)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x168, r3, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_OURS={0x153, 0x3, 0x0, 0x1, [@typed={0x8, 0xc2, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x4, 0x2a}, @typed={0x4, 0x11}, @typed={0x8, 0x2e, 0x0, 0x0, @fd=r1}, @generic="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bc", @nested={0xa4, 0x5, 0x0, 0x1, [@nested={0xa0, 0x63, 0x0, 0x1, [@nested={0x9c, 0x9e, 0x0, 0x1, [@generic="243a3e44f05a7b37b886f6a2634fe5f418d06aceaf3d839ac2f5b69dcde48027477484338dff0fa22de3e83b038a34577a753bfe33b5f26bf1a5f964347eb8dcaf49dee38345360991984eb47467995ddad6e8f78a8127a7ea224c1f88c14733ac0358d8a5c6c414e9c5bdefc3abd938d01ea5feeb0863b9dcd098a89ea8f1b2276875ba83b650bb97d784d27baaa22f316676e5", @typed={0x4, 0x81}]}]}]}]}]}, 0x168}, 0x1, 0x0, 0x0, 0x4810}, 0x2404c810)
r4 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000003f80)={0x3c, r4, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0xc}]}, @OVS_PACKET_ATTR_PACKET={0x12}, @OVS_PACKET_ATTR_KEY={0x4}, @OVS_PACKET_ATTR_PROBE={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x50}, 0x400c880) (async)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000003f80)={0x3c, r4, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0xc}]}, @OVS_PACKET_ATTR_PACKET={0x12}, @OVS_PACKET_ATTR_KEY={0x4}, @OVS_PACKET_ATTR_PROBE={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x50}, 0x400c880)
r5 = syz_genetlink_get_family_id$auto_net_dm(0x0, 0xffffffffffffffff)
sendmsg$auto_NET_DM_CMD_CONFIG(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r5, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@NET_DM_ATTR_ALERT_MODE={0x5, 0x1, 0x9}, @NET_DM_ATTR_SW_DROPS={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000080}, 0x4044840)
sendmsg$auto_NET_DM_CMD_CONFIG_GET(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r5, 0x200, 0x70bd25, 0x25dfdbff, {}, [@NET_DM_ATTR_QUEUE_LEN={0x8, 0xb, 0x2}, @NET_DM_ATTR_HW_DROPS={0x4}, @NET_DM_ATTR_HW_DROPS={0x4}, @NET_DM_ATTR_SW_DROPS={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x80) (async)
sendmsg$auto_NET_DM_CMD_CONFIG_GET(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r5, 0x200, 0x70bd25, 0x25dfdbff, {}, [@NET_DM_ATTR_QUEUE_LEN={0x8, 0xb, 0x2}, @NET_DM_ATTR_HW_DROPS={0x4}, @NET_DM_ATTR_HW_DROPS={0x4}, @NET_DM_ATTR_SW_DROPS={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x80)

356.041827ms ago: executing program 3 (id=1059):
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x600347, 0x0)
r0 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x0, 0x0, 0x4)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
r1 = getsockopt$auto(0xffffffffffffffff, 0x114, 0x2715, 0xfffffffffffffffc, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r3, 0x40095505, &(0x7f0000000100)={0x5, 0x0, 0x4, 0x21, 0x4, 0xbb, 0x47, 0x5})
faccessat$auto(r1, &(0x7f0000000180)='./file0\x00', 0xa4)
io_uring_setup$auto(0x2, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80040, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6ef80, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000280), r5)
sendmsg$auto_HWSIM_CMD_REGISTER(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000600)=ANY=[@ANYBLOB="bc0000005cc279108ff8805333e38dbce5081e37e7548370a7480844023c81f34a42d62eab102b07aa8e41e9e3a11f468924167d4004fa68b31a6f2cf8546b89912ba9a1db", @ANYRES16=r6, @ANYBLOB="010028bd7000fddbdf2501000000a20001007fb6681804aff9ca1b37f5b3555a4371bbb8e6735b623f4d3aee04a3d6c450a1dda563222dc668cee1b6d4652a27c5d3614e9c12475fae3462a013f457e3917dba1a67b388197788a7d25601b180e79e8d570e51ebd4f53c9cfd981b1bb5d1f86b1d4b8062319809ae96180987054f2ade78f3ae1bd7046b5b17683e97d194b68d284e94b8cb3a734f50097806fb41308ac546819dbe28308c1f0937be79000004000e00"], 0xbc}, 0x1, 0x0, 0x0, 0x81}, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f00000003c0)='\a', 0x5ea}, 0x5, 0x0, 0x0, 0x1001}, 0x5}, 0x2, 0x100)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/uid_map\x00', 0x602000, 0x0)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptypb\x00', 0x101f81, 0x0)
socketpair$auto(0x3, 0x1, 0x8, 0x0)
ioctl$auto_TIOCSETD2(r7, 0x5423, 0x0)
r8 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r10=>0x0})
sendmsg$auto_BATADV_CMD_SET_MESH(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="24002500d7cfb1af5ee575e614534d5d3027837317b9bb0c103442b34c5a97eed487a31daadb53d7346ae6d9f595910f1f03f5b76b6cfb7b5246f1e061d9c54598e68259b9dc92fd59f0bf131b890b148ac522a8352cb3d0bb2ba2db7c0ed8ea0bee579ea3a7ca830132f2d29b1a79f4c0c387b53d86a22c67a930f0fe7a4870aa6b9ef3167593c03f4ece527a7ba2f3c3dd4ad80554b46289d4d83449426491348937ad772277d0af9aefe9144173638d61ad621f71fad13f5a3b1308f1", @ANYRES16=r8, @ANYBLOB="010028bd7001fbdbdf250100000005002e00fd00080008000300", @ANYRES32=r10], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x140080e4)
ioctl$auto_TIOCVHANGUP2(r4, 0x5437, 0x0)

176.959871ms ago: executing program 0 (id=1060):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x29, 0x2, 0x0)
ioctl$auto(r0, 0x89a1, 0x24)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x11, 0xa, 0x300) (async)
socket(0x11, 0xa, 0x300)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
prctl$auto(0x3b, 0x1, 0x0, 0x1, 0x9)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
wait4$auto(0xffffffffffffffff, &(0x7f0000000040)=0x8, 0xd5, &(0x7f00000000c0)={{0x6, 0x7}, {0x2d, 0x10}, 0x7, 0xd3c8, 0x1ff, 0x80000001, 0x9, 0x9, 0x0, 0x15869c08, 0x1, 0x100000001, 0x9, 0x9, 0xfffffffffffff297, 0x8}) (async)
r2 = wait4$auto(0xffffffffffffffff, &(0x7f0000000040)=0x8, 0xd5, &(0x7f00000000c0)={{0x6, 0x7}, {0x2d, 0x10}, 0x7, 0xd3c8, 0x1ff, 0x80000001, 0x9, 0x9, 0x0, 0x15869c08, 0x1, 0x100000001, 0x9, 0x9, 0xfffffffffffff297, 0x8})
prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x800, 0x2, r2, 0x0, 0x0) (async)
prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x800, 0x2, r2, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/nfs/exports\x00', 0x400, 0x0)
pread64$auto(r3, 0x0, 0x1ff, 0x8800000000) (async)
pread64$auto(r3, 0x0, 0x1ff, 0x8800000000)
mmap$auto(0x2, 0xb04, 0x7, 0x19, r1, 0x8)
fcntl$auto_F_SETLEASE(r1, 0x400, 0x8)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), 0xffffffffffffffff)
timer_delete$auto(0x0) (async)
timer_delete$auto(0x0)
r4 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/hugetlb.1GB.rsvd.max_usage_in_bytes\x00', 0x80480, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000003c0)=""/4089, 0xff9)
read$auto(r4, 0x0, 0x80000000006)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x5, 0x0) (async)
socket(0x28, 0x5, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710}, 0x55) (async)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710}, 0x55)
listen$auto(0x3, 0x81) (async)
listen$auto(0x3, 0x81)

0s ago: executing program 2 (id=1061):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram1\x00', 0x6281, 0x0)
ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0)
lseek$auto(0x3, 0xffffffffff800002, 0x10)
ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x20201, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x80000001, 0x1, 0x40000000df, 0x200000009b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x5, 0x0)
io_uring_register$auto(0x2, 0x23, &(0x7f0000000080), 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
unshare$auto(0x40000080)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900), 0x0)

kernel console output (not intermixed with test programs):

594][ T7550]  ? rcu_is_watching+0x12/0xc0
[  230.393635][ T7550]  do_syscall_64+0x10b/0xf80
[  230.393668][ T7550]  ? clear_bhb_loop+0x40/0x90
[  230.393695][ T7550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.393717][ T7550] RIP: 0033:0x7f5e6d99ce59
[  230.393734][ T7550] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  230.393755][ T7550] RSP: 002b:00007f5e6bbee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  230.393775][ T7550] RAX: ffffffffffffffda RBX: 00007f5e6dc15fa0 RCX: 00007f5e6d99ce59
[  230.393789][ T7550] RDX: 0000000000000009 RSI: 0000200000000580 RDI: 000000000000000b
[  230.393802][ T7550] RBP: 00007f5e6bbee090 R08: 0000000000000000 R09: 0000000000000000
[  230.393815][ T7550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  230.393827][ T7550] R13: 00007f5e6dc16038 R14: 00007f5e6dc15fa0 R15: 00007ffee1ebaec8
[  230.393855][ T7550]  </TASK>
[  230.415564][ T7550] netlink: 28 bytes leftover after parsing attributes in process `syz.0.378'.
[  230.939746][ T7559] netlink: 28 bytes leftover after parsing attributes in process `syz.0.379'.
[  231.086515][ T7542] Process accounting paused
[  231.911487][ T7541] Process accounting paused
[  232.802205][ T7582] syz.3.385 uses obsolete (PF_INET,SOCK_PACKET)
[  235.716074][ T7625] netlink: 28 bytes leftover after parsing attributes in process `syz.0.393'.
[  237.797700][ T7659] netlink: 'syz.3.404': attribute type 11 has an invalid length.
[  237.863901][ T7659] netlink: 'syz.3.404': attribute type 1 has an invalid length.
[  238.584781][ T7676] netlink: 28 bytes leftover after parsing attributes in process `syz.1.407'.
[  238.887462][ T7678] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  240.368573][ T7710] netlink: 86 bytes leftover after parsing attributes in process `syz.3.414'.
[  241.637659][ T7722] nbd: socks must be embedded in a SOCK_ITEM attr
[  241.688793][ T7722] block nbd0: shutting down sockets
[  241.994379][ T7728] FAULT_INJECTION: forcing a failure.
[  241.994379][ T7728] name failslab, interval 1, probability 0, space 0, times 0
[  242.035953][ T7728] CPU: 0 UID: 0 PID: 7728 Comm: syz.0.418 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  242.036005][ T7728] Tainted: [L]=SOFTLOCKUP
[  242.036017][ T7728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  242.036040][ T7728] Call Trace:
[  242.036050][ T7728]  <TASK>
[  242.036062][ T7728]  dump_stack_lvl+0x100/0x190
[  242.036104][ T7728]  should_fail_ex.cold+0x5/0xa
[  242.036147][ T7728]  should_failslab+0xc2/0x120
[  242.036187][ T7728]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  242.036242][ T7728]  ? alloc_inode+0x68/0x250
[  242.036294][ T7728]  ? simple_start_creating+0xb0/0x110
[  242.036335][ T7728]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  242.036394][ T7728]  alloc_inode+0x68/0x250
[  242.036446][ T7728]  new_inode+0x22/0x1c0
[  242.036501][ T7728]  __debugfs_create_file+0x105/0x4f0
[  242.036558][ T7728]  debugfs_create_file_full+0x41/0x60
[  242.036615][ T7728]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  242.036657][ T7728]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  242.036735][ T7728]  ? lockdep_init_map_type+0x5c/0x250
[  242.036775][ T7728]  preinit_net.part.0+0x43b/0x920
[  242.036817][ T7728]  copy_net_ns+0x339/0x7c0
[  242.036865][ T7728]  create_new_namespaces+0x3ea/0xac0
[  242.036919][ T7728]  unshare_nsproxy_namespaces+0xf2/0x220
[  242.036967][ T7728]  ksys_unshare+0x438/0xab0
[  242.037018][ T7728]  ? __pfx_ksys_unshare+0x10/0x10
[  242.037065][ T7728]  ? xfd_validate_state+0x129/0x190
[  242.037098][ T7728]  ? ksys_write+0x1ac/0x250
[  242.037148][ T7728]  __x64_sys_unshare+0x31/0x40
[  242.037197][ T7728]  do_syscall_64+0x10b/0xf80
[  242.037245][ T7728]  ? clear_bhb_loop+0x40/0x90
[  242.037284][ T7728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.037317][ T7728] RIP: 0033:0x7f5e6d99ce59
[  242.037344][ T7728] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  242.037383][ T7728] RSP: 002b:00007f5e6bbee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  242.037422][ T7728] RAX: ffffffffffffffda RBX: 00007f5e6dc15fa0 RCX: 00007f5e6d99ce59
[  242.037444][ T7728] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  242.037464][ T7728] RBP: 00007f5e6da32d6f R08: 0000000000000000 R09: 0000000000000000
[  242.037484][ T7728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  242.037503][ T7728] R13: 00007f5e6dc16038 R14: 00007f5e6dc15fa0 R15: 00007ffee1ebaec8
[  242.037546][ T7728]  </TASK>
[  242.039090][ T7728] debugfs: out of free dentries, can not create file 'net_notrefcnt@ffff8880350629b8'
[  243.036162][ T7742] FAULT_INJECTION: forcing a failure.
[  243.036162][ T7742] name fail_futex, interval 1, probability 0, space 0, times 0
[  243.065964][ T7742] CPU: 0 UID: 0 PID: 7742 Comm: syz.0.420 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  243.066012][ T7742] Tainted: [L]=SOFTLOCKUP
[  243.066023][ T7742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  243.066039][ T7742] Call Trace:
[  243.066050][ T7742]  <TASK>
[  243.066060][ T7742]  dump_stack_lvl+0x100/0x190
[  243.066105][ T7742]  should_fail_ex.cold+0x5/0xa
[  243.066144][ T7742]  get_futex_key+0x1d2/0x1510
[  243.066179][ T7742]  ? __pfx_get_futex_key+0x10/0x10
[  243.066212][ T7742]  ? do_mmap+0x93f/0x12f0
[  243.066248][ T7742]  ? __pfx_userfaultfd_unmap_complete+0x10/0x10
[  243.066307][ T7742]  futex_wake+0xea/0x530
[  243.066350][ T7742]  ? __pfx_futex_wake+0x10/0x10
[  243.066406][ T7742]  do_futex+0x32b/0x350
[  243.066440][ T7742]  ? __pfx_do_futex+0x10/0x10
[  243.066483][ T7742]  __x64_sys_futex+0x34f/0x4d0
[  243.066519][ T7742]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  243.066558][ T7742]  ? __pfx___x64_sys_futex+0x10/0x10
[  243.066598][ T7742]  ? rcu_is_watching+0x12/0xc0
[  243.066661][ T7742]  do_syscall_64+0x10b/0xf80
[  243.066718][ T7742]  ? clear_bhb_loop+0x40/0x90
[  243.066756][ T7742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.066786][ T7742] RIP: 0033:0x7f5e6d99ce59
[  243.066812][ T7742] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  243.066859][ T7742] RSP: 002b:00007f5e6bbcd0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  243.066889][ T7742] RAX: ffffffffffffffda RBX: 00007f5e6dc16098 RCX: 00007f5e6d99ce59
[  243.066910][ T7742] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5e6dc1609c
[  243.066929][ T7742] RBP: 00007f5e6dc16090 R08: 0000000000000001 R09: 0000000000000000
[  243.066948][ T7742] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  243.066967][ T7742] R13: 00007f5e6dc16128 R14: 00007ffee1ebade0 R15: 00007ffee1ebaec8
[  243.067007][ T7742]  </TASK>
[  243.894373][   T50] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  244.140572][ T7754] netlink: 28 bytes leftover after parsing attributes in process `syz.1.424'.
[  244.205529][ T7754] bond0: (slave bond_slave_0): Releasing backup interface
[  245.580034][ T7793] FAULT_INJECTION: forcing a failure.
[  245.580034][ T7793] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  245.615391][ T7793] CPU: 0 UID: 0 PID: 7793 Comm: syz.1.437 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  245.615453][ T7793] Tainted: [L]=SOFTLOCKUP
[  245.615464][ T7793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  245.615481][ T7793] Call Trace:
[  245.615491][ T7793]  <TASK>
[  245.615503][ T7793]  dump_stack_lvl+0x100/0x190
[  245.615543][ T7793]  should_fail_ex.cold+0x5/0xa
[  245.615582][ T7793]  _copy_to_user+0x32/0xd0
[  245.615616][ T7793]  simple_read_from_buffer+0xcb/0x170
[  245.615657][ T7793]  proc_fail_nth_read+0x1af/0x230
[  245.615707][ T7793]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  245.615760][ T7793]  ? rw_verify_area+0xce/0x6d0
[  245.615790][ T7793]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  245.615839][ T7793]  vfs_read+0x1e4/0xb30
[  245.615880][ T7793]  ? __pfx_vfs_read+0x10/0x10
[  245.615913][ T7793]  ? __fget_files+0x215/0x3d0
[  245.615958][ T7793]  ? __fget_files+0x21f/0x3d0
[  245.616005][ T7793]  ksys_read+0x12a/0x250
[  245.616039][ T7793]  ? __pfx_ksys_read+0x10/0x10
[  245.616078][ T7793]  ? rcu_is_watching+0x12/0xc0
[  245.616135][ T7793]  do_syscall_64+0x10b/0xf80
[  245.616177][ T7793]  ? clear_bhb_loop+0x40/0x90
[  245.616213][ T7793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.616242][ T7793] RIP: 0033:0x7f6e8d15d68e
[  245.616265][ T7793] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  245.616292][ T7793] RSP: 002b:00007f6e8df74fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  245.616342][ T7793] RAX: ffffffffffffffda RBX: 00007f6e8df756c0 RCX: 00007f6e8d15d68e
[  245.616361][ T7793] RDX: 000000000000000f RSI: 00007f6e8df750a0 RDI: 0000000000000004
[  245.616379][ T7793] RBP: 00007f6e8df75090 R08: 0000000000000000 R09: 0000000000000000
[  245.616398][ T7793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  245.616415][ T7793] R13: 00007f6e8d416038 R14: 00007f6e8d415fa0 R15: 00007ffd62d8bf18
[  245.616456][ T7793]  </TASK>
[  246.345562][ T7801] netlink: 86 bytes leftover after parsing attributes in process `syz.1.438'.
[  246.880582][ T7808] tipc: Started in network mode
[  246.886080][ T7808] tipc: Node identity 3, cluster identity 4711
[  246.893937][ T7808] tipc: Node number set to 3
[  247.157578][ T7818] openvswitch: netlink: Message has 4 unknown bytes.
[  247.615073][ T7829] netlink: 28 bytes leftover after parsing attributes in process `syz.2.445'.
[  248.457243][ T7846] FAULT_INJECTION: forcing a failure.
[  248.457243][ T7846] name failslab, interval 1, probability 0, space 0, times 0
[  248.502245][ T7845] netlink: 86 bytes leftover after parsing attributes in process `syz.1.449'.
[  248.552478][ T7846] CPU: 0 UID: 0 PID: 7846 Comm: syz.0.448 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  248.552543][ T7846] Tainted: [L]=SOFTLOCKUP
[  248.552555][ T7846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  248.552574][ T7846] Call Trace:
[  248.552584][ T7846]  <TASK>
[  248.552596][ T7846]  dump_stack_lvl+0x100/0x190
[  248.552638][ T7846]  should_fail_ex.cold+0x5/0xa
[  248.552680][ T7846]  should_failslab+0xc2/0x120
[  248.552723][ T7846]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  248.552774][ T7846]  ? __d_alloc+0x34/0xa40
[  248.552846][ T7846]  __d_alloc+0x34/0xa40
[  248.552896][ T7846]  d_alloc+0x4a/0x1e0
[  248.552942][ T7846]  lookup_one_qstr_excl+0x171/0x250
[  248.553013][ T7846]  start_dirop+0x59/0xb0
[  248.553054][ T7846]  simple_start_creating+0xf9/0x110
[  248.553097][ T7846]  ? __pfx_simple_start_creating+0x10/0x10
[  248.553139][ T7846]  ? mntput+0x70/0xa0
[  248.553175][ T7846]  ? simple_pin_fs+0xa3/0x190
[  248.553212][ T7846]  debugfs_start_creating.part.0+0x82/0x170
[  248.553267][ T7846]  __debugfs_create_file+0xb3/0x4f0
[  248.553326][ T7846]  debugfs_create_file_full+0x41/0x60
[  248.553383][ T7846]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  248.553427][ T7846]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  248.553468][ T7846]  ? ida_alloc_range+0x70d/0x830
[  248.553557][ T7846]  ? lockdep_init_map_type+0x5c/0x250
[  248.553600][ T7846]  preinit_net.part.0+0x252/0x920
[  248.553646][ T7846]  copy_net_ns+0x339/0x7c0
[  248.553694][ T7846]  create_new_namespaces+0x3ea/0xac0
[  248.553748][ T7846]  unshare_nsproxy_namespaces+0xf2/0x220
[  248.553806][ T7846]  ksys_unshare+0x438/0xab0
[  248.553861][ T7846]  ? __pfx_ksys_unshare+0x10/0x10
[  248.553910][ T7846]  ? xfd_validate_state+0x129/0x190
[  248.553945][ T7846]  ? ksys_write+0x1ac/0x250
[  248.553997][ T7846]  __x64_sys_unshare+0x31/0x40
[  248.554048][ T7846]  do_syscall_64+0x10b/0xf80
[  248.554096][ T7846]  ? clear_bhb_loop+0x40/0x90
[  248.554137][ T7846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.554171][ T7846] RIP: 0033:0x7f5e6d99ce59
[  248.554199][ T7846] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  248.554237][ T7846] RSP: 002b:00007f5e6bbcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  248.554271][ T7846] RAX: ffffffffffffffda RBX: 00007f5e6dc16090 RCX: 00007f5e6d99ce59
[  248.554293][ T7846] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  248.554313][ T7846] RBP: 00007f5e6da32d6f R08: 0000000000000000 R09: 0000000000000000
[  248.554333][ T7846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  248.554353][ T7846] R13: 00007f5e6dc16128 R14: 00007f5e6dc16090 R15: 00007ffee1ebaec8
[  248.554397][ T7846]  </TASK>
[  252.021263][ T7895] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  252.984410][ T7915] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  253.765235][ T7927] smpboot: CPU 1 is now offline
[  254.270322][ T7929] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  254.315227][ T7929] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  254.359832][ T7929] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  254.391007][ T7929] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  254.841312][ T7946] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  255.815303][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[  255.821852][ T1314] ieee802154 phy1 wpan1: encryption failed: -22
[  256.212777][   T50] Bluetooth: hci0: command 0x0c1a tx timeout
[  256.374662][ T4943] Bluetooth: hci1: command 0x0c1a tx timeout
[  256.380882][   T50] Bluetooth: hci2: command 0x0c1a tx timeout
[  256.453355][   T50] Bluetooth: hci3: command 0x0c1a tx timeout
[  257.132244][ T7976] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  257.229177][ T7981] netlink: 4 bytes leftover after parsing attributes in process `syz.0.481'.
[  257.834700][ T7998] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  259.896387][ T8026] netlink: 4 bytes leftover after parsing attributes in process `syz.2.493'.
[  259.947612][ T8023] netlink: 16 bytes leftover after parsing attributes in process `syz.1.491'.
[  260.008582][ T8026] netlink: 'syz.2.493': attribute type 3 has an invalid length.
[  260.212595][ T8029] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  260.296863][ T8035] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  261.190833][ T8043] netlink: 86 bytes leftover after parsing attributes in process `syz.1.496'.
[  261.415152][ T8043] Process accounting resumed
[  261.762090][ T8054] netlink: 'syz.0.499': attribute type 1 has an invalid length.
[  261.808865][ T8054] netlink: 33 bytes leftover after parsing attributes in process `syz.0.499'.
[  262.311904][ T8047] Process accounting resumed
[  262.395933][ T8067] netlink: 4 bytes leftover after parsing attributes in process `syz.3.502'.
[  263.100022][ T8073] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  267.508139][ T8169] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  267.549663][ T8169] netlink: 28 bytes leftover after parsing attributes in process `syz.3.521'.
[  270.479086][ T8206] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  271.715568][ T8220] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  271.771707][ T8220] netlink: 28 bytes leftover after parsing attributes in process `syz.1.531'.
[  273.159029][ T8234] random: crng reseeded on system resumption
[  277.679478][ T8277] FAULT_INJECTION: forcing a failure.
[  277.679478][ T8277] name failslab, interval 1, probability 0, space 0, times 0
[  277.900584][ T8277] CPU: 0 UID: 0 PID: 8277 Comm: syz.2.543 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  277.900622][ T8277] Tainted: [L]=SOFTLOCKUP
[  277.900630][ T8277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  277.900645][ T8277] Call Trace:
[  277.900652][ T8277]  <TASK>
[  277.900664][ T8277]  dump_stack_lvl+0x100/0x190
[  277.900695][ T8277]  should_fail_ex.cold+0x5/0xa
[  277.900726][ T8277]  should_failslab+0xc2/0x120
[  277.900754][ T8277]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  277.900794][ T8277]  ? __d_alloc+0x34/0xa40
[  277.900833][ T8277]  __d_alloc+0x34/0xa40
[  277.900868][ T8277]  d_alloc+0x4a/0x1e0
[  277.900903][ T8277]  lookup_one_qstr_excl+0x171/0x250
[  277.900944][ T8277]  start_dirop+0x59/0xb0
[  277.900972][ T8277]  simple_start_creating+0xf9/0x110
[  277.901002][ T8277]  ? __pfx_simple_start_creating+0x10/0x10
[  277.901032][ T8277]  ? mntput+0x70/0xa0
[  277.901057][ T8277]  ? simple_pin_fs+0xa3/0x190
[  277.901084][ T8277]  debugfs_start_creating.part.0+0x82/0x170
[  277.901124][ T8277]  __debugfs_create_file+0xb3/0x4f0
[  277.901165][ T8277]  debugfs_create_file_full+0x41/0x60
[  277.901206][ T8277]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  277.901247][ T8277]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  277.901277][ T8277]  ? ida_alloc_range+0x70d/0x830
[  277.901339][ T8277]  ? lockdep_init_map_type+0x5c/0x250
[  277.901368][ T8277]  preinit_net.part.0+0x252/0x920
[  277.901399][ T8277]  copy_net_ns+0x339/0x7c0
[  277.901434][ T8277]  create_new_namespaces+0x3ea/0xac0
[  277.901473][ T8277]  unshare_nsproxy_namespaces+0xf2/0x220
[  277.901508][ T8277]  ksys_unshare+0x438/0xab0
[  277.901546][ T8277]  ? __pfx_ksys_unshare+0x10/0x10
[  277.901581][ T8277]  ? xfd_validate_state+0x129/0x190
[  277.901605][ T8277]  ? ksys_write+0x1ac/0x250
[  277.901641][ T8277]  __x64_sys_unshare+0x31/0x40
[  277.901678][ T8277]  do_syscall_64+0x10b/0xf80
[  277.901713][ T8277]  ? clear_bhb_loop+0x40/0x90
[  277.901741][ T8277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.901766][ T8277] RIP: 0033:0x7f855a99ce59
[  277.901785][ T8277] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  277.901808][ T8277] RSP: 002b:00007f855b7ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  277.901830][ T8277] RAX: ffffffffffffffda RBX: 00007f855ac16090 RCX: 00007f855a99ce59
[  277.901845][ T8277] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  277.901859][ T8277] RBP: 00007f855aa32d6f R08: 0000000000000000 R09: 0000000000000000
[  277.901873][ T8277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  277.901887][ T8277] R13: 00007f855ac16128 R14: 00007f855ac16090 R15: 00007ffd1ab3e808
[  277.901917][ T8277]  </TASK>
[  278.754057][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805c3fd400: rx timeout, send abort
[  278.766793][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805c3fd400: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  281.594886][ T8317] nvme_fcloop: unknown parameter or missing value '7'
[  282.355997][ T8332] openvswitch: netlink: IP tunnel dst address not specified
[  284.627885][ T8352] 
[  284.651453][ T8352] random: crng reseeded on system resumption
[  285.397791][   T50] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  285.405491][   T50] Bluetooth: hci2: Invalid handle: 0x3a4a > 0x0eff
[  288.734401][ T8363] Process accounting resumed
[  288.907173][ T8378] Process accounting resumed
[  289.071400][ T8385] FAULT_INJECTION: forcing a failure.
[  289.071400][ T8385] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  289.225788][ T8388] sctp: [Deprecated]: syz.2.564 (pid 8388) Use of struct sctp_assoc_value in delayed_ack socket option.
[  289.225788][ T8388] Use struct sctp_sack_info instead
[  289.328606][ T8385] CPU: 0 UID: 0 PID: 8385 Comm: syz.2.564 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  289.328644][ T8385] Tainted: [L]=SOFTLOCKUP
[  289.328652][ T8385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  289.328667][ T8385] Call Trace:
[  289.328674][ T8385]  <TASK>
[  289.328683][ T8385]  dump_stack_lvl+0x100/0x190
[  289.328713][ T8385]  should_fail_ex.cold+0x5/0xa
[  289.328739][ T8385]  ? prepare_alloc_pages+0x16d/0x5f0
[  289.328773][ T8385]  should_fail_alloc_page+0xeb/0x140
[  289.328804][ T8385]  prepare_alloc_pages+0x1f0/0x5f0
[  289.328840][ T8385]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  289.328887][ T8385]  ? rcu_is_watching+0x12/0xc0
[  289.328917][ T8385]  ? trace_mm_page_alloc+0x163/0x1d0
[  289.328949][ T8385]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  289.328992][ T8385]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  289.329039][ T8385]  ? find_held_lock+0x2b/0x80
[  289.329070][ T8385]  ? is_bpf_text_address+0x8a/0x1a0
[  289.329104][ T8385]  ? is_bpf_text_address+0x8a/0x1a0
[  289.329140][ T8385]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  289.329180][ T8385]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  289.329217][ T8385]  ? is_bpf_text_address+0x94/0x1a0
[  289.329251][ T8385]  ? kernel_text_address+0x8d/0x100
[  289.329275][ T8385]  ? ima_match_policy+0x8c4/0x2350
[  289.329309][ T8385]  ? __kernel_text_address+0xd/0x30
[  289.329334][ T8385]  ? unwind_get_return_address+0x59/0xa0
[  289.329375][ T8385]  alloc_pages_bulk_noprof+0x657/0x1390
[  289.329406][ T8385]  ? policy_nodemask+0xed/0x4f0
[  289.329436][ T8385]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  289.329463][ T8385]  ? kasan_save_stack+0x30/0x50
[  289.329498][ T8385]  __kasan_populate_vmalloc+0xf0/0x210
[  289.329544][ T8385]  alloc_vmap_area+0x95d/0x2b70
[  289.329587][ T8385]  ? __pfx_alloc_vmap_area+0x10/0x10
[  289.329623][ T8385]  __get_vm_area_node+0x1ca/0x330
[  289.329659][ T8385]  __vmalloc_node_range_noprof+0x228/0x1630
[  289.329693][ T8385]  ? kernel_clone+0x12e/0x9c0
[  289.329736][ T8385]  ? kernel_clone+0x12e/0x9c0
[  289.329777][ T8385]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  289.329818][ T8385]  ? rcu_is_watching+0x12/0xc0
[  289.329846][ T8385]  ? trace_kmem_cache_alloc+0xd5/0x100
[  289.329878][ T8385]  ? kernel_clone+0x12e/0x9c0
[  289.329910][ T8385]  __vmalloc_node_noprof+0xad/0xf0
[  289.329943][ T8385]  ? kernel_clone+0x12e/0x9c0
[  289.329979][ T8385]  copy_process+0x7fb/0x7ed0
[  289.330012][ T8385]  ? __futex_wait+0x256/0x300
[  289.330046][ T8385]  ? __pfx___futex_wait+0x10/0x10
[  289.330088][ T8385]  ? __pfx_copy_process+0x10/0x10
[  289.330126][ T8385]  ? futex_hash+0x141/0x370
[  289.330155][ T8385]  kernel_clone+0x12e/0x9c0
[  289.330187][ T8385]  ? __pfx_futex_wait+0x10/0x10
[  289.330220][ T8385]  ? __pfx_kernel_clone+0x10/0x10
[  289.330270][ T8385]  __do_sys_clone+0xd9/0x120
[  289.330310][ T8385]  ? __pfx___do_sys_clone+0x10/0x10
[  289.330355][ T8385]  ? ksys_write+0x1ac/0x250
[  289.330388][ T8385]  ? rcu_is_watching+0x12/0xc0
[  289.330421][ T8385]  do_syscall_64+0x10b/0xf80
[  289.330457][ T8385]  ? clear_bhb_loop+0x40/0x90
[  289.330487][ T8385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.330512][ T8385] RIP: 0033:0x7f855a99ce59
[  289.330531][ T8385] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  289.330554][ T8385] RSP: 002b:00007f855b7dafd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  289.330578][ T8385] RAX: ffffffffffffffda RBX: 00007f855ac15fa0 RCX: 00007f855a99ce59
[  289.330594][ T8385] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  289.330608][ T8385] RBP: 00007f855aa32d6f R08: 0000000000000000 R09: 0000000000000000
[  289.330623][ T8385] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  289.330636][ T8385] R13: 00007f855ac16038 R14: 00007f855ac15fa0 R15: 00007ffd1ab3e808
[  289.330666][ T8385]  </TASK>
[  290.117810][ T8385] syz.2.564: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  290.201959][ T8385] CPU: 0 UID: 0 PID: 8385 Comm: syz.2.564 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  290.201998][ T8385] Tainted: [L]=SOFTLOCKUP
[  290.202006][ T8385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  290.202020][ T8385] Call Trace:
[  290.202028][ T8385]  <TASK>
[  290.202037][ T8385]  dump_stack_lvl+0x100/0x190
[  290.202068][ T8385]  warn_alloc.cold+0x95/0x1c1
[  290.202094][ T8385]  ? __pfx_warn_alloc+0x10/0x10
[  290.202132][ T8385]  ? lockdep_hardirqs_on+0x78/0x100
[  290.202172][ T8385]  ? __get_vm_area_node+0x2c5/0x330
[  290.202215][ T8385]  ? __get_vm_area_node+0x208/0x330
[  290.202251][ T8385]  __vmalloc_node_range_noprof+0xccd/0x1630
[  290.202295][ T8385]  ? kernel_clone+0x12e/0x9c0
[  290.202338][ T8385]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  290.202379][ T8385]  ? rcu_is_watching+0x12/0xc0
[  290.202408][ T8385]  ? trace_kmem_cache_alloc+0xd5/0x100
[  290.202440][ T8385]  ? kernel_clone+0x12e/0x9c0
[  290.202472][ T8385]  __vmalloc_node_noprof+0xad/0xf0
[  290.202505][ T8385]  ? kernel_clone+0x12e/0x9c0
[  290.202541][ T8385]  copy_process+0x7fb/0x7ed0
[  290.202574][ T8385]  ? __futex_wait+0x256/0x300
[  290.202608][ T8385]  ? __pfx___futex_wait+0x10/0x10
[  290.202650][ T8385]  ? __pfx_copy_process+0x10/0x10
[  290.202691][ T8385]  ? futex_hash+0x141/0x370
[  290.202720][ T8385]  kernel_clone+0x12e/0x9c0
[  290.202753][ T8385]  ? __pfx_futex_wait+0x10/0x10
[  290.202786][ T8385]  ? __pfx_kernel_clone+0x10/0x10
[  290.202835][ T8385]  __do_sys_clone+0xd9/0x120
[  290.202870][ T8385]  ? __pfx___do_sys_clone+0x10/0x10
[  290.202915][ T8385]  ? ksys_write+0x1ac/0x250
[  290.202947][ T8385]  ? rcu_is_watching+0x12/0xc0
[  290.202980][ T8385]  do_syscall_64+0x10b/0xf80
[  290.203015][ T8385]  ? clear_bhb_loop+0x40/0x90
[  290.203044][ T8385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.203068][ T8385] RIP: 0033:0x7f855a99ce59
[  290.203088][ T8385] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  290.203124][ T8385] RSP: 002b:00007f855b7dafd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  290.203145][ T8385] RAX: ffffffffffffffda RBX: 00007f855ac15fa0 RCX: 00007f855a99ce59
[  290.203160][ T8385] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  290.203173][ T8385] RBP: 00007f855aa32d6f R08: 0000000000000000 R09: 0000000000000000
[  290.203192][ T8385] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  290.203205][ T8385] R13: 00007f855ac16038 R14: 00007f855ac15fa0 R15: 00007ffd1ab3e808
[  290.203233][ T8385]  </TASK>
[  290.972994][ T8401] random: crng reseeded on system resumption
[  292.767308][ T8385] Mem-Info:
[  292.790819][ T8385] active_anon:68163 inactive_anon:37 isolated_anon:0
[  292.790819][ T8385]  active_file:18535 inactive_file:41065 isolated_file:0
[  292.790819][ T8385]  unevictable:768 dirty:123 writeback:0
[  292.790819][ T8385]  slab_reclaimable:10761 slab_unreclaimable:91001
[  292.790819][ T8385]  mapped:25583 shmem:58833 pagetables:1171
[  292.790819][ T8385]  sec_pagetables:0 bounce:0
[  292.790819][ T8385]  kernel_misc_reclaimable:0
[  292.790819][ T8385]  free:1252730 free_pcp:24051 free_cma:0
[  293.196911][ T8385] Node 0 active_anon:233368kB inactive_anon:148kB active_file:74140kB inactive_file:164048kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:104292kB dirty:552kB writeback:0kB shmem:201604kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11520kB pagetables:4624kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  293.519441][ T8385] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:212kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:20kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  293.888781][ T8385] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  294.224024][ T8385] lowmem_reserve[]: 0 2477 2478 2478 2478
[  294.295028][ T8385] Node 0 DMA32 free:1184516kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:172596kB inactive_anon:148kB active_file:74140kB inactive_file:164048kB unevictable:1536kB writepending:756kB zspages:520kB present:3129332kB managed:2537308kB mlocked:0kB bounce:0kB free_pcp:72332kB local_pcp:72332kB free_cma:0kB
[  294.661321][ T8385] lowmem_reserve[]: 0 0 1 1 1
[  294.709355][ T8385] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1100kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[  294.985045][ T8385] lowmem_reserve[]: 0 0 0 0 0
[  295.021393][ T8385] Node 1 Normal free:3923140kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:212kB unevictable:1536kB writepending:20kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:11896kB local_pcp:11896kB free_cma:0kB
[  295.207613][ T8385] lowmem_reserve[]: 0 0 0 0 0
[  295.235145][ T8385] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  295.304275][ T8385] Node 0 DMA32: 14237*4kB (UME) 4827*8kB (UM) 3125*16kB (UME) 1721*32kB (UME) 1106*64kB (UME) 454*128kB (UME) 208*256kB (UME) 65*512kB (UME) 30*1024kB (UM) 5*2048kB (UM) 193*4096kB (UM) = 1247548kB
[  295.385379][ T8385] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  295.436815][ T8385] Node 1 Normal: 6*4kB (UM) 19*8kB (UM) 12*16kB (UM) 8*32kB (UM) 10*64kB (UM) 4*128kB (UM) 6*256kB (UM) 4*512kB (M) 2*1024kB (M) 2*2048kB (UM) 955*4096kB (UM) = 3923184kB
[  295.541348][ T8385] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  295.586936][ T8385] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  295.608712][ T8439] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  295.630021][ T8385] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  295.674877][ T8385] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  295.717051][ T8385] 79390 total pagecache pages
[  295.742865][ T8385] 39 pages in swap cache
[  295.765970][ T8385] Free swap  = 122552kB
[  295.782749][ T8385] Total swap = 124996kB
[  295.801926][ T8385] 2097051 pages RAM
[  295.824499][ T8385] 0 pages HighMem/MovableOnly
[  295.846263][ T8385] 430834 pages reserved
[  295.865584][ T8385] 0 pages cma reserved
[  295.959184][ T8385] Process accounting paused
[  297.676941][ T8465] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  298.087942][ T8469] nvme_fabrics: missing parameter 'transport=%s'
[  298.134396][ T8469] nvme_fabrics: missing parameter 'nqn=%s'
[  298.387227][ T8468] nvme_fabrics: missing parameter 'transport=%s'
[  298.439447][ T8468] nvme_fabrics: missing parameter 'nqn=%s'
[  300.159213][   T30] audit: type=1800 audit(1843104607.660:4): pid=8491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.591" name="lu_gp_id" dev="configfs" ino=24201 res=0 errno=0
[  300.898325][ T8508] netlink: 'syz.1.595': attribute type 1 has an invalid length.
[  301.373294][   T50] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  303.493289][   T50] Bluetooth: hci2: command 0x0c1a tx timeout
[  304.808792][ T8556] netlink: 12 bytes leftover after parsing attributes in process `syz.2.607'.
[  305.236362][ T8539] kexec: Could not allocate control_code_buffer
[  305.478902][ T8565] netlink: 20 bytes leftover after parsing attributes in process `syz.2.609'.
[  305.573393][ T4943] Bluetooth: hci2: command 0x0c1a tx timeout
[  306.014268][ T8574] netlink: 16 bytes leftover after parsing attributes in process `syz.2.611'.
[  306.048391][ T8574] mac80211_hwsim hwsim11 wlan2: entered promiscuous mode
[  306.076740][ T8574] mac80211_hwsim hwsim11 wlan2: entered allmulticast mode
[  306.279552][ T8575] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5645] was attempted by "ci-qemu-gce-upstream-auto/syz-executor exec"[8575]
[  309.112071][ T8616] FAULT_INJECTION: forcing a failure.
[  309.112071][ T8616] name failslab, interval 1, probability 0, space 0, times 0
[  309.215489][ T8616] CPU: 0 UID: 0 PID: 8616 Comm: syz.2.620 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  309.215533][ T8616] Tainted: [L]=SOFTLOCKUP
[  309.215541][ T8616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  309.215555][ T8616] Call Trace:
[  309.215563][ T8616]  <TASK>
[  309.215571][ T8616]  dump_stack_lvl+0x100/0x190
[  309.215603][ T8616]  should_fail_ex.cold+0x5/0xa
[  309.215634][ T8616]  should_failslab+0xc2/0x120
[  309.215662][ T8616]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  309.215703][ T8616]  ? __d_alloc+0x34/0xa40
[  309.215741][ T8616]  __d_alloc+0x34/0xa40
[  309.215778][ T8616]  d_alloc+0x4a/0x1e0
[  309.215816][ T8616]  lookup_one_qstr_excl+0x171/0x250
[  309.215857][ T8616]  start_dirop+0x59/0xb0
[  309.215886][ T8616]  simple_start_creating+0xf9/0x110
[  309.215916][ T8616]  ? __pfx_simple_start_creating+0x10/0x10
[  309.215946][ T8616]  ? mntput+0x70/0xa0
[  309.215972][ T8616]  ? simple_pin_fs+0xa3/0x190
[  309.215998][ T8616]  debugfs_start_creating.part.0+0x82/0x170
[  309.216038][ T8616]  __debugfs_create_file+0xb3/0x4f0
[  309.216080][ T8616]  debugfs_create_file_full+0x41/0x60
[  309.216121][ T8616]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  309.216152][ T8616]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  309.216208][ T8616]  ? lockdep_init_map_type+0x5c/0x250
[  309.216237][ T8616]  preinit_net.part.0+0x43b/0x920
[  309.216268][ T8616]  copy_net_ns+0x339/0x7c0
[  309.216303][ T8616]  create_new_namespaces+0x3ea/0xac0
[  309.216341][ T8616]  unshare_nsproxy_namespaces+0xf2/0x220
[  309.216376][ T8616]  ksys_unshare+0x438/0xab0
[  309.216414][ T8616]  ? __pfx_ksys_unshare+0x10/0x10
[  309.216449][ T8616]  ? xfd_validate_state+0x129/0x190
[  309.216473][ T8616]  ? ksys_write+0x1ac/0x250
[  309.216517][ T8616]  __x64_sys_unshare+0x31/0x40
[  309.216554][ T8616]  do_syscall_64+0x10b/0xf80
[  309.216590][ T8616]  ? clear_bhb_loop+0x40/0x90
[  309.216619][ T8616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.216643][ T8616] RIP: 0033:0x7f855a99ce59
[  309.216663][ T8616] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  309.216685][ T8616] RSP: 002b:00007f855b7ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  309.216708][ T8616] RAX: ffffffffffffffda RBX: 00007f855ac16090 RCX: 00007f855a99ce59
[  309.216723][ T8616] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  309.216737][ T8616] RBP: 00007f855aa32d6f R08: 0000000000000000 R09: 0000000000000000
[  309.216751][ T8616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  309.216765][ T8616] R13: 00007f855ac16128 R14: 00007f855ac16090 R15: 00007ffd1ab3e808
[  309.216795][ T8616]  </TASK>
[  311.489608][ T8630] deleting an unspecified loop device is not supported.
[  312.051037][ T8642] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  313.103050][ T8664] FAULT_INJECTION: forcing a failure.
[  313.103050][ T8664] name failslab, interval 1, probability 0, space 0, times 0
[  313.170760][ T8664] CPU: 0 UID: 0 PID: 8664 Comm: syz.1.632 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  313.170797][ T8664] Tainted: [L]=SOFTLOCKUP
[  313.170809][ T8664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  313.170823][ T8664] Call Trace:
[  313.170831][ T8664]  <TASK>
[  313.170839][ T8664]  dump_stack_lvl+0x100/0x190
[  313.170870][ T8664]  should_fail_ex.cold+0x5/0xa
[  313.170901][ T8664]  should_failslab+0xc2/0x120
[  313.170930][ T8664]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  313.170970][ T8664]  ? __d_alloc+0x34/0xa40
[  313.171009][ T8664]  __d_alloc+0x34/0xa40
[  313.171044][ T8664]  d_alloc+0x4a/0x1e0
[  313.171079][ T8664]  lookup_one_qstr_excl+0x171/0x250
[  313.171119][ T8664]  start_dirop+0x59/0xb0
[  313.171147][ T8664]  simple_start_creating+0xf9/0x110
[  313.171184][ T8664]  ? __pfx_simple_start_creating+0x10/0x10
[  313.171215][ T8664]  ? mntput+0x70/0xa0
[  313.171240][ T8664]  ? simple_pin_fs+0xa3/0x190
[  313.171267][ T8664]  debugfs_start_creating.part.0+0x82/0x170
[  313.171307][ T8664]  debugfs_create_dir+0x72/0x440
[  313.171346][ T8664]  drm_debugfs_clients_add+0x6f/0x210
[  313.171384][ T8664]  drm_file_alloc+0x5c6/0xb40
[  313.171425][ T8664]  drm_open_helper+0x1fc/0x540
[  313.171480][ T8664]  drm_open+0x1a0/0x3e0
[  313.171516][ T8664]  ? __pfx_drm_open+0x10/0x10
[  313.171551][ T8664]  drm_stub_open+0x20f/0x380
[  313.171588][ T8664]  ? __pfx_drm_stub_open+0x10/0x10
[  313.171623][ T8664]  chrdev_open+0x234/0x6a0
[  313.171652][ T8664]  ? __pfx_apparmor_file_open+0x10/0x10
[  313.171710][ T8664]  ? __pfx_chrdev_open+0x10/0x10
[  313.171743][ T8664]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  313.171781][ T8664]  do_dentry_open+0x6d8/0x1660
[  313.171823][ T8664]  ? __pfx_chrdev_open+0x10/0x10
[  313.171860][ T8664]  vfs_open+0x82/0x3f0
[  313.171898][ T8664]  path_openat+0x208c/0x31a0
[  313.171937][ T8664]  ? __pfx_path_openat+0x10/0x10
[  313.171977][ T8664]  do_file_open+0x20e/0x430
[  313.172009][ T8664]  ? __pfx_do_file_open+0x10/0x10
[  313.172078][ T8664]  ? alloc_fd+0x476/0x790
[  313.172110][ T8664]  ? do_getname+0x191/0x390
[  313.172149][ T8664]  do_sys_openat2+0x10d/0x1e0
[  313.172193][ T8664]  ? __pfx_do_sys_openat2+0x10/0x10
[  313.172232][ T8664]  ? do_sock_setsockopt+0x101/0x1d0
[  313.172263][ T8664]  ? kfree+0x1dd/0x6c0
[  313.172303][ T8664]  __x64_sys_openat+0x12d/0x210
[  313.172342][ T8664]  ? __pfx___x64_sys_openat+0x10/0x10
[  313.172386][ T8664]  ? rcu_is_watching+0x12/0xc0
[  313.172420][ T8664]  do_syscall_64+0x10b/0xf80
[  313.172455][ T8664]  ? clear_bhb_loop+0x40/0x90
[  313.172484][ T8664]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.172509][ T8664] RIP: 0033:0x7f6e8d19ce59
[  313.172528][ T8664] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  313.172551][ T8664] RSP: 002b:00007f6e8df75028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  313.172573][ T8664] RAX: ffffffffffffffda RBX: 00007f6e8d415fa0 RCX: 00007f6e8d19ce59
[  313.172588][ T8664] RDX: 0000000000028900 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  313.172603][ T8664] RBP: 00007f6e8d232d6f R08: 0000000000000000 R09: 0000000000000000
[  313.172617][ T8664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  313.172631][ T8664] R13: 00007f6e8d416038 R14: 00007f6e8d415fa0 R15: 00007ffd62d8bf18
[  313.172661][ T8664]  </TASK>
[  313.687765][ T8656] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  314.271891][ T8656] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  314.511589][ T8656] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  314.810157][ T8656] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.432036][ T8703] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  316.645030][ T8703] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub
[  317.254137][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[  317.263724][ T1314] ieee802154 phy1 wpan1: encryption failed: -22
[  318.200794][ T8724] FAULT_INJECTION: forcing a failure.
[  318.200794][ T8724] name failslab, interval 1, probability 0, space 0, times 0
[  318.381816][ T8724] CPU: 0 UID: 0 PID: 8724 Comm: syz.3.646 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  318.381855][ T8724] Tainted: [L]=SOFTLOCKUP
[  318.381863][ T8724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  318.381877][ T8724] Call Trace:
[  318.381885][ T8724]  <TASK>
[  318.381894][ T8724]  dump_stack_lvl+0x100/0x190
[  318.381924][ T8724]  should_fail_ex.cold+0x5/0xa
[  318.381955][ T8724]  should_failslab+0xc2/0x120
[  318.381985][ T8724]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  318.382029][ T8724]  ? alloc_inode+0x68/0x250
[  318.382067][ T8724]  ? simple_start_creating+0xb0/0x110
[  318.382097][ T8724]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  318.382134][ T8724]  alloc_inode+0x68/0x250
[  318.382171][ T8724]  new_inode+0x22/0x1c0
[  318.382211][ T8724]  __debugfs_create_file+0x105/0x4f0
[  318.382253][ T8724]  debugfs_create_file_full+0x41/0x60
[  318.382298][ T8724]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  318.382329][ T8724]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  318.382359][ T8724]  ? ida_alloc_range+0x70d/0x830
[  318.382420][ T8724]  ? lockdep_init_map_type+0x5c/0x250
[  318.382450][ T8724]  preinit_net.part.0+0x252/0x920
[  318.382481][ T8724]  copy_net_ns+0x339/0x7c0
[  318.382514][ T8724]  create_new_namespaces+0x3ea/0xac0
[  318.382554][ T8724]  unshare_nsproxy_namespaces+0xf2/0x220
[  318.382589][ T8724]  ksys_unshare+0x438/0xab0
[  318.382627][ T8724]  ? __pfx_ksys_unshare+0x10/0x10
[  318.382662][ T8724]  ? xfd_validate_state+0x129/0x190
[  318.382685][ T8724]  ? ksys_write+0x1ac/0x250
[  318.382721][ T8724]  __x64_sys_unshare+0x31/0x40
[  318.382757][ T8724]  do_syscall_64+0x10b/0xf80
[  318.382799][ T8724]  ? clear_bhb_loop+0x40/0x90
[  318.382828][ T8724]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.382853][ T8724] RIP: 0033:0x7f55f699ce59
[  318.382871][ T8724] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  318.382894][ T8724] RSP: 002b:00007f55f7860028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  318.382916][ T8724] RAX: ffffffffffffffda RBX: 00007f55f6c16090 RCX: 00007f55f699ce59
[  318.382931][ T8724] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  318.382945][ T8724] RBP: 00007f55f6a32d6f R08: 0000000000000000 R09: 0000000000000000
[  318.382959][ T8724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  318.382973][ T8724] R13: 00007f55f6c16128 R14: 00007f55f6c16090 R15: 00007ffc0795b718
[  318.383003][ T8724]  </TASK>
[  318.997800][ T8730] netlink: 4 bytes leftover after parsing attributes in process `syz.0.647'.
[  319.033698][ T8730] netlink: 98 bytes leftover after parsing attributes in process `syz.0.647'.
[  319.088168][ T8736] netlink: 4 bytes leftover after parsing attributes in process `syz.2.648'.
[  319.353549][ T8744] netlink: 342 bytes leftover after parsing attributes in process `syz.2.650'.
[  319.499314][ T8747] FAULT_INJECTION: forcing a failure.
[  319.499314][ T8747] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  319.549922][ T8747] CPU: 0 UID: 0 PID: 8747 Comm: syz.2.650 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  319.549958][ T8747] Tainted: [L]=SOFTLOCKUP
[  319.549966][ T8747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  319.549980][ T8747] Call Trace:
[  319.549987][ T8747]  <TASK>
[  319.549995][ T8747]  dump_stack_lvl+0x100/0x190
[  319.550025][ T8747]  should_fail_ex.cold+0x5/0xa
[  319.550049][ T8747]  ? prepare_alloc_pages+0x16d/0x5f0
[  319.550082][ T8747]  should_fail_alloc_page+0xeb/0x140
[  319.550112][ T8747]  prepare_alloc_pages+0x1f0/0x5f0
[  319.550142][ T8747]  ? css_rstat_updated+0x1ce/0x5a0
[  319.550182][ T8747]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  319.550222][ T8747]  ? xa_load+0x153/0x2c0
[  319.550249][ T8747]  ? rcu_is_watching+0x12/0xc0
[  319.550280][ T8747]  ? __lock_acquire+0x4a5/0x2630
[  319.550301][ T8747]  ? workingset_refault+0x383/0xfd0
[  319.550326][ T8747]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  319.550377][ T8747]  ? __lock_acquire+0x4a5/0x2630
[  319.550398][ T8747]  ? __lock_acquire+0x4a5/0x2630
[  319.550429][ T8747]  ? lock_acquire+0x1b1/0x370
[  319.550448][ T8747]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  319.550485][ T8747]  ? policy_nodemask+0xed/0x4f0
[  319.550515][ T8747]  alloc_pages_mpol+0x1fb/0x540
[  319.550543][ T8747]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  319.550571][ T8747]  ? swap_entry_swapped+0x20c/0x2a0
[  319.550599][ T8747]  ? __pfx_swap_entry_swapped+0x10/0x10
[  319.550637][ T8747]  folio_alloc_mpol_noprof+0x36/0x260
[  319.550671][ T8747]  swap_cache_alloc_folio+0x1a8/0x300
[  319.550711][ T8747]  ? __pfx_swap_cache_alloc_folio+0x10/0x10
[  319.550752][ T8747]  ? rcu_read_unlock+0x17/0x60
[  319.550786][ T8747]  swap_cluster_readahead+0x411/0x770
[  319.550830][ T8747]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  319.550874][ T8747]  ? swap_table_get+0x10d/0x2c0
[  319.550922][ T8747]  shmem_swapin_folio+0x2194/0x2b20
[  319.550964][ T8747]  ? filemap_get_entry+0x22d/0x450
[  319.550994][ T8747]  ? filemap_get_entry+0x237/0x450
[  319.551016][ T8747]  ? __pfx_shmem_swapin_folio+0x10/0x10
[  319.551053][ T8747]  ? __pfx_filemap_get_entry+0x10/0x10
[  319.551087][ T8747]  ? xas_start+0x153/0x790
[  319.551126][ T8747]  ? xas_find+0x32c/0x8e0
[  319.551161][ T8747]  shmem_get_folio_gfp+0x56c/0x1900
[  319.551189][ T8747]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  319.551211][ T8747]  ? filemap_map_pages+0x9c1/0x2140
[  319.551231][ T8747]  ? find_held_lock+0x2b/0x80
[  319.551262][ T8747]  shmem_fault+0x1f9/0xa20
[  319.551285][ T8747]  ? __pfx_shmem_fault+0x10/0x10
[  319.551306][ T8747]  ? __pfx_mt_find+0x10/0x10
[  319.551327][ T8747]  ? __pfx_filemap_map_pages+0x10/0x10
[  319.551365][ T8747]  ? find_held_lock+0x2b/0x80
[  319.551397][ T8747]  __do_fault+0x10b/0x440
[  319.551421][ T8747]  do_fault+0xa99/0x1750
[  319.551472][ T8747]  __handle_mm_fault+0x187d/0x2a00
[  319.551512][ T8747]  ? mt_find+0x45e/0x8e0
[  319.551533][ T8747]  ? __pfx___handle_mm_fault+0x10/0x10
[  319.551567][ T8747]  ? __pfx_mt_find+0x10/0x10
[  319.551602][ T8747]  ? find_vma+0xbf/0x140
[  319.551628][ T8747]  ? __pfx_find_vma+0x10/0x10
[  319.551661][ T8747]  handle_mm_fault+0x36d/0xa20
[  319.551702][ T8747]  do_user_addr_fault+0x74c/0x12f0
[  319.551735][ T8747]  ? trace_page_fault_kernel+0x7a/0x200
[  319.551766][ T8747]  exc_page_fault+0x6f/0xd0
[  319.551801][ T8747]  asm_exc_page_fault+0x26/0x30
[  319.551823][ T8747] RIP: 0010:__get_user_nocheck_1+0x6/0x20
[  319.551853][ T8747] Code: e9 cf 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 01 cb 0f ae e8 <0f> b6 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00
[  319.551875][ T8747] RSP: 0018:ffffc9000545feb0 EFLAGS: 00050202
[  319.551894][ T8747] RAX: 0000000000000007 RBX: ffffc9000545ff48 RCX: ffffc90008151000
[  319.551909][ T8747] RDX: 0000000000080000 RSI: ffffffff81758396 RDI: ffffc9000545ff48
[  319.551923][ T8747] RBP: ffff88802ac45c40 R08: 0000000000000005 R09: 0000000000000000
[  319.551937][ T8747] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88802ac45c40
[  319.551950][ T8747] R13: 00000000000000ca R14: 0000000000000020 R15: 00000000000000ca
[  319.551972][ T8747]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  319.552012][ T8747]  syscall_user_dispatch+0x76/0x130
[  319.552039][ T8747]  ? do_syscall_64+0x90/0xf80
[  319.552074][ T8747]  ? lockdep_hardirqs_on+0x78/0x100
[  319.552109][ T8747]  do_syscall_64+0x526/0xf80
[  319.552142][ T8747]  ? clear_bhb_loop+0x40/0x90
[  319.552170][ T8747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.552193][ T8747] RIP: 0033:0x7f855a99ce59
[  319.552211][ T8747] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  319.552233][ T8747] RSP: 002b:00007f855b7ba0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  319.552253][ T8747] RAX: ffffffffffffffda RBX: 00007f855ac16098 RCX: 00007f855a99ce59
[  319.552267][ T8747] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f855ac1609c
[  319.552281][ T8747] RBP: 00007f855ac16090 R08: 0000000000000001 R09: 0000000000000000
[  319.552294][ T8747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  319.552308][ T8747] R13: 00007f855ac16128 R14: 00007ffd1ab3e720 R15: 00007ffd1ab3e808
[  319.552336][ T8747]  </TASK>
[  320.068108][ T8747] [U] ^R
[  320.505759][ T8724] debugfs: out of free dentries, can not create file 'net_refcnt@ffff8880789b0280'
[  321.305179][ T8726] slcan: can't register candev
[  321.646220][ T8723] Process accounting paused
[  321.811868][ T8726] Process accounting paused
[  323.335529][ T8779] netlink: 4 bytes leftover after parsing attributes in process `syz.2.658'.
[  323.397011][ T8777] netlink: 98 bytes leftover after parsing attributes in process `syz.2.658'.
[  323.625826][ T8781] capability: warning: `syz.3.659' uses 32-bit capabilities (legacy support in use)
[  323.971788][ T8800] FAULT_INJECTION: forcing a failure.
[  323.971788][ T8800] name failslab, interval 1, probability 0, space 0, times 0
[  324.039360][ T8800] CPU: 0 UID: 0 PID: 8800 Comm: syz.3.663 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  324.039399][ T8800] Tainted: [L]=SOFTLOCKUP
[  324.039407][ T8800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  324.039421][ T8800] Call Trace:
[  324.039428][ T8800]  <TASK>
[  324.039437][ T8800]  dump_stack_lvl+0x100/0x190
[  324.039468][ T8800]  should_fail_ex.cold+0x5/0xa
[  324.039499][ T8800]  should_failslab+0xc2/0x120
[  324.039527][ T8800]  __kmalloc_cache_noprof+0x7a/0x6f0
[  324.039563][ T8800]  ? tipc_sub_subscribe+0x15c/0x730
[  324.039600][ T8800]  ? find_held_lock+0x2b/0x80
[  324.039637][ T8800]  tipc_sub_subscribe+0x15c/0x730
[  324.039678][ T8800]  tipc_conn_rcv_sub+0x21e/0x3d0
[  324.039718][ T8800]  tipc_topsrv_kern_subscr+0x20b/0x3c0
[  324.039756][ T8800]  ? __pfx_tipc_topsrv_kern_subscr+0x10/0x10
[  324.039794][ T8800]  ? net_generic+0xea/0x2a0
[  324.039834][ T8800]  tipc_group_create+0x4ab/0x660
[  324.039875][ T8800]  tipc_setsockopt+0x611/0xe30
[  324.039902][ T8800]  ? __pfx_tipc_setsockopt+0x10/0x10
[  324.039940][ T8800]  ? __pfx_tipc_setsockopt+0x10/0x10
[  324.039967][ T8800]  do_sock_setsockopt+0xf3/0x1d0
[  324.040003][ T8800]  __sys_setsockopt+0x119/0x190
[  324.040034][ T8800]  __x64_sys_setsockopt+0xbd/0x160
[  324.040059][ T8800]  ? do_syscall_64+0x90/0xf80
[  324.040095][ T8800]  ? lockdep_hardirqs_on+0x78/0x100
[  324.040131][ T8800]  do_syscall_64+0x10b/0xf80
[  324.040166][ T8800]  ? clear_bhb_loop+0x40/0x90
[  324.040195][ T8800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.040219][ T8800] RIP: 0033:0x7f55f699ce59
[  324.040237][ T8800] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  324.040260][ T8800] RSP: 002b:00007f55f7881028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  324.040289][ T8800] RAX: ffffffffffffffda RBX: 00007f55f6c15fa0 RCX: 00007f55f699ce59
[  324.040304][ T8800] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000003
[  324.040319][ T8800] RBP: 00007f55f6a32d6f R08: 0000000000000014 R09: 0000000000000000
[  324.040333][ T8800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  324.040346][ T8800] R13: 00007f55f6c16038 R14: 00007f55f6c15fa0 R15: 00007ffc0795b718
[  324.040376][ T8800]  </TASK>
[  324.042361][ T8800] tipc: Subscription rejected, no memory
[  325.470134][ T8822] netlink: 4 bytes leftover after parsing attributes in process `syz.0.669'.
[  325.528195][ T8822] netlink: 98 bytes leftover after parsing attributes in process `syz.0.669'.
[  325.940730][ T8827] binder: 8826:8827 ioctl c018620c 200000000180 returned -22
[  326.397562][ T8832] Process accounting resumed
[  326.784375][ T8837] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.885617][   T30] audit: type=1800 audit(1843104636.390:5): pid=8859 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.679" name="lu_gp_id" dev="configfs" ino=26423 res=0 errno=0
[  332.922764][ T8931] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  336.905595][ T8961] netlink: 4 bytes leftover after parsing attributes in process `syz.2.700'.
[  336.958993][ T8961] netlink: 98 bytes leftover after parsing attributes in process `syz.2.700'.
[  337.941570][ T8978] FAULT_INJECTION: forcing a failure.
[  337.941570][ T8978] name failslab, interval 1, probability 0, space 0, times 0
[  338.042006][ T8978] CPU: 0 UID: 0 PID: 8978 Comm: syz.2.704 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  338.042049][ T8978] Tainted: [L]=SOFTLOCKUP
[  338.042057][ T8978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  338.042070][ T8978] Call Trace:
[  338.042077][ T8978]  <TASK>
[  338.042086][ T8978]  dump_stack_lvl+0x100/0x190
[  338.042118][ T8978]  should_fail_ex.cold+0x5/0xa
[  338.042147][ T8978]  should_failslab+0xc2/0x120
[  338.042175][ T8978]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  338.042213][ T8978]  ? security_inode_alloc+0x3b/0x2c0
[  338.042235][ T8978]  ? lockdep_init_map_type+0x5c/0x250
[  338.042263][ T8978]  security_inode_alloc+0x3b/0x2c0
[  338.042286][ T8978]  inode_init_always_gfp+0xcc0/0x1000
[  338.042320][ T8978]  alloc_inode+0x8e/0x250
[  338.042357][ T8978]  alloc_anon_inode+0x2a/0x3e0
[  338.042390][ T8978]  anon_inode_make_secure_inode+0x2f/0x140
[  338.042429][ T8978]  __anon_inode_getfile+0x1cf/0x280
[  338.042467][ T8978]  new_userfaultfd+0x255/0x400
[  338.042498][ T8978]  __x64_sys_userfaultfd+0x4b/0xb0
[  338.042528][ T8978]  do_syscall_64+0x10b/0xf80
[  338.042563][ T8978]  ? clear_bhb_loop+0x40/0x90
[  338.042590][ T8978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.042614][ T8978] RIP: 0033:0x7f855a99ce59
[  338.042632][ T8978] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  338.042654][ T8978] RSP: 002b:00007f855b7ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000143
[  338.042676][ T8978] RAX: ffffffffffffffda RBX: 00007f855ac16090 RCX: 00007f855a99ce59
[  338.042691][ T8978] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  338.042704][ T8978] RBP: 00007f855aa32d6f R08: 0000000000000000 R09: 0000000000000000
[  338.042717][ T8978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  338.042730][ T8978] R13: 00007f855ac16128 R14: 00007f855ac16090 R15: 00007ffd1ab3e808
[  338.042759][ T8978]  </TASK>
[  338.499766][ T8974] netlink: 8 bytes leftover after parsing attributes in process `syz.3.703'.
[  338.987719][ T8981] bridge0: port 3(vlan1) entered blocking state
[  339.085256][ T8981] bridge0: port 3(vlan1) entered disabled state
[  339.141064][ T8981] vlan1: entered allmulticast mode
[  339.168519][ T8981] veth0_vlan: entered allmulticast mode
[  339.200096][ T8981] vlan1: entered promiscuous mode
[  339.263409][ T8981] bridge0: port 3(vlan1) entered blocking state
[  339.271179][ T8981] bridge0: port 3(vlan1) entered forwarding state
[  339.780382][ T8994] netlink: 148 bytes leftover after parsing attributes in process `syz.0.707'.
[  342.163423][ T9011] netlink: 28 bytes leftover after parsing attributes in process `syz.2.712'.
[  342.241861][ T9011] bridge0: port 2(bridge_slave_1) entered disabled state
[  342.251089][ T9011] bridge0: port 1(bridge_slave_0) entered disabled state
[  342.413946][ T9011] bridge0: entered promiscuous mode
[  343.975320][ T9037] netlink: 4 bytes leftover after parsing attributes in process `syz.3.721'.
[  344.028870][ T9037] netlink: 98 bytes leftover after parsing attributes in process `syz.3.721'.
[  346.250611][ T9078] FAULT_INJECTION: forcing a failure.
[  346.250611][ T9078] name failslab, interval 1, probability 0, space 0, times 0
[  346.386227][ T9078] CPU: 0 UID: 0 PID: 9078 Comm: syz.2.728 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  346.386295][ T9078] Tainted: [L]=SOFTLOCKUP
[  346.386303][ T9078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  346.386317][ T9078] Call Trace:
[  346.386325][ T9078]  <TASK>
[  346.386333][ T9078]  dump_stack_lvl+0x100/0x190
[  346.386364][ T9078]  should_fail_ex.cold+0x5/0xa
[  346.386395][ T9078]  should_failslab+0xc2/0x120
[  346.386424][ T9078]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  346.386465][ T9078]  ? __d_alloc+0x34/0xa40
[  346.386503][ T9078]  __d_alloc+0x34/0xa40
[  346.386539][ T9078]  d_alloc+0x4a/0x1e0
[  346.386573][ T9078]  lookup_one_qstr_excl+0x171/0x250
[  346.386614][ T9078]  start_dirop+0x59/0xb0
[  346.386642][ T9078]  simple_start_creating+0xf9/0x110
[  346.386673][ T9078]  ? __pfx_simple_start_creating+0x10/0x10
[  346.386703][ T9078]  ? mntput+0x70/0xa0
[  346.386728][ T9078]  ? simple_pin_fs+0xa3/0x190
[  346.386754][ T9078]  debugfs_start_creating.part.0+0x82/0x170
[  346.386796][ T9078]  __debugfs_create_file+0xb3/0x4f0
[  346.386838][ T9078]  debugfs_create_file_full+0x41/0x60
[  346.386879][ T9078]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  346.386910][ T9078]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  346.386965][ T9078]  ? lockdep_init_map_type+0x5c/0x250
[  346.386995][ T9078]  preinit_net.part.0+0x43b/0x920
[  346.387026][ T9078]  copy_net_ns+0x339/0x7c0
[  346.387060][ T9078]  create_new_namespaces+0x3ea/0xac0
[  346.387099][ T9078]  unshare_nsproxy_namespaces+0xf2/0x220
[  346.387134][ T9078]  ksys_unshare+0x438/0xab0
[  346.387173][ T9078]  ? __pfx_ksys_unshare+0x10/0x10
[  346.387221][ T9078]  ? xfd_validate_state+0x129/0x190
[  346.387244][ T9078]  ? ksys_write+0x1ac/0x250
[  346.387301][ T9078]  __x64_sys_unshare+0x31/0x40
[  346.387338][ T9078]  do_syscall_64+0x10b/0xf80
[  346.387374][ T9078]  ? clear_bhb_loop+0x40/0x90
[  346.387403][ T9078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.387427][ T9078] RIP: 0033:0x7f855a99ce59
[  346.387446][ T9078] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  346.387468][ T9078] RSP: 002b:00007f855b7ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  346.387490][ T9078] RAX: ffffffffffffffda RBX: 00007f855ac16090 RCX: 00007f855a99ce59
[  346.387505][ T9078] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  346.387519][ T9078] RBP: 00007f855aa32d6f R08: 0000000000000000 R09: 0000000000000000
[  346.387534][ T9078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  346.387547][ T9078] R13: 00007f855ac16128 R14: 00007f855ac16090 R15: 00007ffd1ab3e808
[  346.387577][ T9078]  </TASK>
[  347.520989][ T9085] zswap: compressor � not available
[  347.556752][ T9090] block2mtd: illegal erase size
[  347.836373][ T9093] 
[  347.861420][ T9093] netlink: 'syz.0.731': attribute type 5 has an invalid length.
[  347.924007][ T9093] netlink: 'syz.0.731': attribute type 1 has an invalid length.
[  348.525705][ T9101] netlink: 4 bytes leftover after parsing attributes in process `syz.0.733'.
[  348.586574][ T9102] netlink: 98 bytes leftover after parsing attributes in process `syz.0.733'.
[  351.713651][ T9137] device-mapper: ioctl: Invalid ioctl structure: name ��������d, dev 3000000000
[  352.029523][ T9134] Process accounting resumed
[  352.520568][ T9146] netlink: 4 bytes leftover after parsing attributes in process `syz.1.743'.
[  352.588814][ T9146] netlink: 98 bytes leftover after parsing attributes in process `syz.1.743'.
[  352.824762][ T9139] Process accounting resumed
[  354.163246][ T9167] netlink: 'syz.2.747': attribute type 1 has an invalid length.
[  354.193113][ T9167] netlink: 9 bytes leftover after parsing attributes in process `syz.2.747'.
[  355.948151][ T9200] netlink: 4 bytes leftover after parsing attributes in process `syz.1.754'.
[  355.986657][ T9200] netlink: 98 bytes leftover after parsing attributes in process `syz.1.754'.
[  357.668540][ T9224] FAULT_INJECTION: forcing a failure.
[  357.668540][ T9224] name failslab, interval 1, probability 0, space 0, times 0
[  357.829390][ T9224] CPU: 0 UID: 0 PID: 9224 Comm: syz.1.759 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  357.829430][ T9224] Tainted: [L]=SOFTLOCKUP
[  357.829438][ T9224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  357.829453][ T9224] Call Trace:
[  357.829461][ T9224]  <TASK>
[  357.829470][ T9224]  dump_stack_lvl+0x100/0x190
[  357.829502][ T9224]  should_fail_ex.cold+0x5/0xa
[  357.829533][ T9224]  should_failslab+0xc2/0x120
[  357.829562][ T9224]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  357.829603][ T9224]  ? __d_alloc+0x34/0xa40
[  357.829642][ T9224]  __d_alloc+0x34/0xa40
[  357.829678][ T9224]  d_alloc+0x4a/0x1e0
[  357.829713][ T9224]  lookup_one_qstr_excl+0x171/0x250
[  357.829754][ T9224]  start_dirop+0x59/0xb0
[  357.829783][ T9224]  simple_start_creating+0xf9/0x110
[  357.829813][ T9224]  ? __pfx_simple_start_creating+0x10/0x10
[  357.829843][ T9224]  ? mntput+0x70/0xa0
[  357.829869][ T9224]  ? simple_pin_fs+0xa3/0x190
[  357.829896][ T9224]  debugfs_start_creating.part.0+0x82/0x170
[  357.829936][ T9224]  __debugfs_create_file+0xb3/0x4f0
[  357.829979][ T9224]  debugfs_create_file_full+0x41/0x60
[  357.830020][ T9224]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  357.830051][ T9224]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  357.830107][ T9224]  ? lockdep_init_map_type+0x5c/0x250
[  357.830140][ T9224]  preinit_net.part.0+0x43b/0x920
[  357.830172][ T9224]  copy_net_ns+0x339/0x7c0
[  357.830208][ T9224]  create_new_namespaces+0x3ea/0xac0
[  357.830246][ T9224]  unshare_nsproxy_namespaces+0xf2/0x220
[  357.830289][ T9224]  ksys_unshare+0x438/0xab0
[  357.830328][ T9224]  ? __pfx_ksys_unshare+0x10/0x10
[  357.830363][ T9224]  ? xfd_validate_state+0x129/0x190
[  357.830388][ T9224]  ? ksys_write+0x1ac/0x250
[  357.830425][ T9224]  __x64_sys_unshare+0x31/0x40
[  357.830462][ T9224]  do_syscall_64+0x10b/0xf80
[  357.830498][ T9224]  ? clear_bhb_loop+0x40/0x90
[  357.830527][ T9224]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.830552][ T9224] RIP: 0033:0x7f6e8d19ce59
[  357.830572][ T9224] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  357.830596][ T9224] RSP: 002b:00007f6e8b3f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  357.830618][ T9224] RAX: ffffffffffffffda RBX: 00007f6e8d416090 RCX: 00007f6e8d19ce59
[  357.830635][ T9224] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  357.830649][ T9224] RBP: 00007f6e8d232d6f R08: 0000000000000000 R09: 0000000000000000
[  357.830664][ T9224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  357.830678][ T9224] R13: 00007f6e8d416128 R14: 00007f6e8d416090 R15: 00007ffd62d8bf18
[  357.830723][ T9224]  </TASK>
[  359.547792][ T9209] Process accounting paused
[  360.694050][ T9256] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2)
[  360.711293][ T9254] netlink: 4 bytes leftover after parsing attributes in process `syz.0.764'.
[  360.761470][ T9254] netlink: 98 bytes leftover after parsing attributes in process `syz.0.764'.
[  362.641825][ T9283] FAULT_INJECTION: forcing a failure.
[  362.641825][ T9283] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  362.745406][ T9283] CPU: 0 UID: 0 PID: 9283 Comm: syz.2.769 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  362.745442][ T9283] Tainted: [L]=SOFTLOCKUP
[  362.745451][ T9283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  362.745465][ T9283] Call Trace:
[  362.745472][ T9283]  <TASK>
[  362.745481][ T9283]  dump_stack_lvl+0x100/0x190
[  362.745510][ T9283]  should_fail_ex.cold+0x5/0xa
[  362.745540][ T9283]  _copy_from_user+0x2e/0xd0
[  362.745564][ T9283]  copy_msghdr_from_user+0x9f/0x4f0
[  362.745601][ T9283]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  362.745641][ T9283]  ? rcu_is_watching+0x12/0xc0
[  362.745668][ T9283]  ? ___sys_recvmsg+0x177/0x1a0
[  362.745701][ T9283]  ? kfree+0x1dd/0x6c0
[  362.745738][ T9283]  ___sys_recvmsg+0xdd/0x1a0
[  362.745773][ T9283]  ? __pfx____sys_recvmsg+0x10/0x10
[  362.745822][ T9283]  ? __pfx___might_resched+0x10/0x10
[  362.745855][ T9283]  do_recvmmsg+0x301/0x760
[  362.745899][ T9283]  ? __pfx_do_recvmmsg+0x10/0x10
[  362.745935][ T9283]  ? ksys_write+0x190/0x250
[  362.745967][ T9283]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  362.746003][ T9283]  ? kernel_write+0x6a3/0x6c0
[  362.746050][ T9283]  ? __fget_files+0x21f/0x3d0
[  362.746082][ T9283]  __x64_sys_recvmmsg+0x22a/0x280
[  362.746112][ T9283]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  362.746142][ T9283]  ? rcu_is_watching+0x12/0xc0
[  362.746172][ T9283]  do_syscall_64+0x10b/0xf80
[  362.746205][ T9283]  ? clear_bhb_loop+0x40/0x90
[  362.746232][ T9283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.746255][ T9283] RIP: 0033:0x7f855a99ce59
[  362.746273][ T9283] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  362.746294][ T9283] RSP: 002b:00007f855b7ba028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  362.746315][ T9283] RAX: ffffffffffffffda RBX: 00007f855ac16090 RCX: 00007f855a99ce59
[  362.746329][ T9283] RDX: 0000000000011000 RSI: 0000000000000000 RDI: 0000000000000003
[  362.746342][ T9283] RBP: 00007f855b7ba090 R08: 0000000000000000 R09: 0000000000000000
[  362.746355][ T9283] R10: 00000000000004ff R11: 0000000000000246 R12: 0000000000000001
[  362.746369][ T9283] R13: 00007f855ac16128 R14: 00007f855ac16090 R15: 00007ffd1ab3e808
[  362.746397][ T9283]  </TASK>
[  365.254261][ T9316] cgroup: fork rejected by pids controller in /syz1
[  365.290149][ T9342] netlink: 8 bytes leftover after parsing attributes in process `syz.3.775'.
[  365.349784][ T9344] FAULT_INJECTION: forcing a failure.
[  365.349784][ T9344] name failslab, interval 1, probability 0, space 0, times 0
[  365.402585][ T9344] CPU: 0 UID: 0 PID: 9344 Comm: syz.0.776 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  365.402628][ T9344] Tainted: [L]=SOFTLOCKUP
[  365.402639][ T9344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  365.402654][ T9344] Call Trace:
[  365.402661][ T9344]  <TASK>
[  365.402670][ T9344]  dump_stack_lvl+0x100/0x190
[  365.402701][ T9344]  should_fail_ex.cold+0x5/0xa
[  365.402732][ T9344]  should_failslab+0xc2/0x120
[  365.402760][ T9344]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  365.402801][ T9344]  ? __d_alloc+0x34/0xa40
[  365.402840][ T9344]  __d_alloc+0x34/0xa40
[  365.402875][ T9344]  d_alloc_pseudo+0x1c/0xc0
[  365.402899][ T9344]  alloc_file_pseudo+0xcf/0x230
[  365.402937][ T9344]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  365.402975][ T9344]  ? alloc_fd+0x476/0x790
[  365.403009][ T9344]  sock_alloc_file+0x50/0x210
[  365.403041][ T9344]  __sys_socket+0x1c0/0x260
[  365.403078][ T9344]  ? __pfx___sys_socket+0x10/0x10
[  365.403114][ T9344]  ? ksys_write+0x1ac/0x250
[  365.403148][ T9344]  __x64_sys_socket+0x72/0xb0
[  365.403184][ T9344]  ? lockdep_hardirqs_on+0x78/0x100
[  365.403221][ T9344]  do_syscall_64+0x10b/0xf80
[  365.403256][ T9344]  ? clear_bhb_loop+0x40/0x90
[  365.403286][ T9344]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.403312][ T9344] RIP: 0033:0x7f5e6d99ce59
[  365.403331][ T9344] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  365.403355][ T9344] RSP: 002b:00007f5e6bbee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  365.403377][ T9344] RAX: ffffffffffffffda RBX: 00007f5e6dc15fa0 RCX: 00007f5e6d99ce59
[  365.403393][ T9344] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000002d
[  365.403407][ T9344] RBP: 00007f5e6da32d6f R08: 0000000000000000 R09: 0000000000000000
[  365.403421][ T9344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  365.403435][ T9344] R13: 00007f5e6dc16038 R14: 00007f5e6dc15fa0 R15: 00007ffee1ebaec8
[  365.403465][ T9344]  </TASK>
[  370.921521][ T9395] __vm_enough_memory: pid: 9395, comm: syz.2.786, bytes: 4398046457856 not enough memory for the allocation
[  373.945194][ T9408] 
�: entered promiscuous mode
[  374.387796][ T9423] FAULT_INJECTION: forcing a failure.
[  374.387796][ T9423] name failslab, interval 1, probability 0, space 0, times 0
[  374.470104][ T9423] CPU: 0 UID: 0 PID: 9423 Comm: syz.3.793 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  374.470142][ T9423] Tainted: [L]=SOFTLOCKUP
[  374.470150][ T9423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  374.470164][ T9423] Call Trace:
[  374.470172][ T9423]  <TASK>
[  374.470180][ T9423]  dump_stack_lvl+0x100/0x190
[  374.470211][ T9423]  should_fail_ex.cold+0x5/0xa
[  374.470241][ T9423]  should_failslab+0xc2/0x120
[  374.470270][ T9423]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  374.470310][ T9423]  ? alloc_inode+0x68/0x250
[  374.470361][ T9423]  ? simple_start_creating+0xb0/0x110
[  374.470408][ T9423]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  374.470446][ T9423]  alloc_inode+0x68/0x250
[  374.470484][ T9423]  new_inode+0x22/0x1c0
[  374.470524][ T9423]  __debugfs_create_file+0x105/0x4f0
[  374.470567][ T9423]  debugfs_create_file_full+0x41/0x60
[  374.470608][ T9423]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  374.470640][ T9423]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  374.470696][ T9423]  ? lockdep_init_map_type+0x5c/0x250
[  374.470725][ T9423]  preinit_net.part.0+0x43b/0x920
[  374.470758][ T9423]  copy_net_ns+0x339/0x7c0
[  374.470792][ T9423]  create_new_namespaces+0x3ea/0xac0
[  374.470838][ T9423]  unshare_nsproxy_namespaces+0xf2/0x220
[  374.470873][ T9423]  ksys_unshare+0x438/0xab0
[  374.470912][ T9423]  ? __pfx_ksys_unshare+0x10/0x10
[  374.470947][ T9423]  ? xfd_validate_state+0x129/0x190
[  374.470972][ T9423]  ? ksys_write+0x1ac/0x250
[  374.471008][ T9423]  __x64_sys_unshare+0x31/0x40
[  374.471045][ T9423]  do_syscall_64+0x10b/0xf80
[  374.471081][ T9423]  ? clear_bhb_loop+0x40/0x90
[  374.471110][ T9423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.471134][ T9423] RIP: 0033:0x7f55f699ce59
[  374.471154][ T9423] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  374.471178][ T9423] RSP: 002b:00007f55f7860028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  374.471200][ T9423] RAX: ffffffffffffffda RBX: 00007f55f6c16090 RCX: 00007f55f699ce59
[  374.471216][ T9423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  374.471230][ T9423] RBP: 00007f55f6a32d6f R08: 0000000000000000 R09: 0000000000000000
[  374.471245][ T9423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  374.471259][ T9423] R13: 00007f55f6c16128 R14: 00007f55f6c16090 R15: 00007ffc0795b718
[  374.471289][ T9423]  </TASK>
[  374.471298][ T9423] debugfs: out of free dentries, can not create file 'net_notrefcnt@ffff88805ce7a9b8'
[  375.414798][ T9427] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  375.732342][ T9438] netlink: 8 bytes leftover after parsing attributes in process `syz.0.795'.
[  376.093902][ T1056] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:7: bg 2: bad block bitmap checksum
[  376.143224][ T1056] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 6 with max blocks 3 with error 74
[  376.200730][ T1056] EXT4-fs (sda1): This should not happen!! Data will be lost
[  376.200730][ T1056] 
[  377.083025][ T9453] nbd: must specify an index to disconnect
[  377.314133][ T4943] Bluetooth: hci0: unexpected subevent 0x01 length: 3 < 18
[  378.699134][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[  378.709866][ T1314] ieee802154 phy1 wpan1: encryption failed: -22
[  379.834969][ T9475] netlink: 8 bytes leftover after parsing attributes in process `syz.2.802'.
[  379.906546][ T9482] Scaler: =================  START STATUS  =================
[  379.921212][ T9482] Scaler: ==================  END STATUS  ==================
[  382.488823][ T9463] Process accounting paused
[  382.898308][ T9501] Process accounting paused
[  383.301757][ T9506] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  383.669752][ T4943] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  384.040242][ T9518] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  385.732868][   T50] Bluetooth: hci2: command 0x0c1a tx timeout
[  387.812755][ T4943] Bluetooth: hci2: command 0x0c1a tx timeout
[  389.042026][ T9578] random: crng reseeded on system resumption
[  389.334637][   T30] audit: type=1800 audit(1843104696.840:6): pid=9582 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.826" name="dbroot" dev="configfs" ino=30323 res=0 errno=0
[  390.493708][ T9591] netlink: 8 bytes leftover after parsing attributes in process `syz.0.828'.
[  390.796350][ T9325] syz.1.774 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  390.895858][ T9588] Process accounting resumed
[  391.121409][ T9325] CPU: 0 UID: 0 PID: 9325 Comm: syz.1.774 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  391.121446][ T9325] Tainted: [L]=SOFTLOCKUP
[  391.121454][ T9325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  391.121468][ T9325] Call Trace:
[  391.121474][ T9325]  <TASK>
[  391.121483][ T9325]  dump_stack_lvl+0x100/0x190
[  391.121514][ T9325]  dump_header+0xfb/0x606
[  391.121540][ T9325]  oom_kill_process.cold+0xd/0x330
[  391.121568][ T9325]  out_of_memory+0x340/0x14f0
[  391.121612][ T9325]  ? __pfx_out_of_memory+0x10/0x10
[  391.121657][ T9325]  mem_cgroup_out_of_memory+0xc6/0x130
[  391.121693][ T9325]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  391.121728][ T9325]  ? find_held_lock+0x2b/0x80
[  391.121765][ T9325]  ? do_raw_spin_unlock+0x145/0x1e0
[  391.121793][ T9325]  ? _raw_spin_unlock+0x28/0x50
[  391.121828][ T9325]  try_charge_memcg+0x6e5/0xdf0
[  391.121862][ T9325]  ? __pfx_try_charge_memcg+0x10/0x10
[  391.121889][ T9325]  ? find_held_lock+0x2b/0x80
[  391.121919][ T9325]  ? rcu_read_unlock+0x17/0x60
[  391.121948][ T9325]  ? rcu_read_unlock+0x17/0x60
[  391.121977][ T9325]  ? find_held_lock+0x2b/0x80
[  391.122008][ T9325]  ? rcu_read_unlock+0x17/0x60
[  391.122043][ T9325]  charge_memcg+0x19f/0x210
[  391.122072][ T9325]  __mem_cgroup_charge+0x2b/0x1c0
[  391.122106][ T9325]  shmem_alloc_and_add_folio+0x451/0xd40
[  391.122152][ T9325]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  391.122195][ T9325]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  391.122225][ T9325]  shmem_get_folio_gfp+0x6ab/0x1900
[  391.122254][ T9325]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  391.122286][ T9325]  shmem_write_begin+0x1a4/0x420
[  391.122312][ T9325]  ? __pfx_shmem_write_begin+0x10/0x10
[  391.122355][ T9325]  ? balance_dirty_pages_ratelimited_flags+0x91/0x1170
[  391.122385][ T9325]  ? lockdep_hardirqs_on+0x78/0x100
[  391.122423][ T9325]  generic_perform_write+0x292/0xa40
[  391.122467][ T9325]  ? __pfx_generic_perform_write+0x10/0x10
[  391.122507][ T9325]  ? file_update_time_flags+0x373/0x500
[  391.122545][ T9325]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  391.122573][ T9325]  shmem_file_write_iter+0x10e/0x140
[  391.122603][ T9325]  __kernel_write_iter+0x2ac/0x920
[  391.122637][ T9325]  ? __pfx___kernel_write_iter+0x10/0x10
[  391.122665][ T9325]  ? __up_read+0x2c1/0x6e0
[  391.122693][ T9325]  ? dump_user_range+0x65e/0xad0
[  391.122734][ T9325]  dump_user_range+0x3f9/0xad0
[  391.122774][ T9325]  ? __pfx_dump_user_range+0x10/0x10
[  391.122818][ T9325]  ? __pfx_writenote+0x10/0x10
[  391.122860][ T9325]  elf_core_dump+0x2d5f/0x3d10
[  391.122912][ T9325]  ? __pfx_elf_core_dump+0x10/0x10
[  391.122948][ T9325]  ? kasan_save_stack+0x3f/0x50
[  391.122970][ T9325]  ? kasan_save_stack+0x30/0x50
[  391.122996][ T9325]  ? do_raw_spin_lock+0x128/0x260
[  391.123026][ T9325]  ? 0xffffffffff600000
[  391.123046][ T9325]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  391.123120][ T9325]  ? vfs_coredump+0x29a0/0x5770
[  391.123152][ T9325]  vfs_coredump+0x29a0/0x5770
[  391.123197][ T9325]  ? __pfx_vfs_coredump+0x10/0x10
[  391.123233][ T9325]  ? __lock_acquire+0x4a5/0x2630
[  391.123266][ T9325]  ? lock_acquire+0x1b1/0x370
[  391.123300][ T9325]  ? is_bpf_text_address+0x8a/0x1a0
[  391.123333][ T9325]  ? bpf_ksym_find+0x124/0x1c0
[  391.123370][ T9325]  ? __kernel_text_address+0xd/0x30
[  391.123394][ T9325]  ? unwind_get_return_address+0x59/0xa0
[  391.123426][ T9325]  ? arch_stack_walk+0xa6/0xf0
[  391.123465][ T9325]  ? __sigqueue_free+0xbe/0x2a0
[  391.123501][ T9325]  ? stack_trace_save+0x8e/0xc0
[  391.123533][ T9325]  ? __pfx_stack_trace_save+0x10/0x10
[  391.123566][ T9325]  ? stack_depot_save_flags+0x27/0x9d0
[  391.123595][ T9325]  ? __lock_acquire+0x4a5/0x2630
[  391.123663][ T9325]  ? proc_coredump_connector+0x2d3/0x4f0
[  391.123707][ T9325]  ? __pfx_proc_coredump_connector+0x10/0x10
[  391.123749][ T9325]  ? rcu_is_watching+0x12/0xc0
[  391.123783][ T9325]  get_signal+0x2162/0x2210
[  391.123824][ T9325]  ? __pfx_get_signal+0x10/0x10
[  391.123854][ T9325]  ? __pfx_force_sig_fault+0x10/0x10
[  391.123890][ T9325]  arch_do_signal_or_restart+0x91/0x7a0
[  391.123928][ T9325]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  391.123976][ T9325]  ? rcu_is_watching+0x12/0xc0
[  391.124007][ T9325]  irqentry_exit+0x410/0x7e0
[  391.124047][ T9325]  asm_exc_page_fault+0x26/0x30
[  391.124069][ T9325] RIP: 0033:0xf000
[  391.124091][ T9325] Code: Unable to access opcode bytes at 0xefd6.
[  391.124100][ T9325] RSP: 002b:000000000000000a EFLAGS: 00010206
[  391.124118][ T9325] RAX: 0000000000000000 RBX: 00007f6e8d416540 RCX: 00007f6e8d19ce59
[  391.124133][ T9325] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46
[  391.124147][ T9325] RBP: 00007f6e8d232d6f R08: 0000000000000002 R09: 0000000000000000
[  391.124160][ T9325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  391.124174][ T9325] R13: 00007f6e8d4165d8 R14: 00007f6e8d416540 R15: 00007ffd62d8bf18
[  391.124204][ T9325]  </TASK>
[  391.995072][ T9603] FAULT_INJECTION: forcing a failure.
[  391.995072][ T9603] name failslab, interval 1, probability 0, space 0, times 0
[  392.007809][ T9603] CPU: 0 UID: 0 PID: 9603 Comm: syz.2.832 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  392.007845][ T9603] Tainted: [L]=SOFTLOCKUP
[  392.007854][ T9603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  392.007868][ T9603] Call Trace:
[  392.007877][ T9603]  <TASK>
[  392.007886][ T9603]  dump_stack_lvl+0x100/0x190
[  392.007927][ T9603]  should_fail_ex.cold+0x5/0xa
[  392.007955][ T9603]  should_failslab+0xc2/0x120
[  392.007981][ T9603]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  392.008018][ T9603]  ? __d_alloc+0x34/0xa40
[  392.008052][ T9603]  __d_alloc+0x34/0xa40
[  392.008083][ T9603]  d_alloc+0x4a/0x1e0
[  392.008114][ T9603]  lookup_one_qstr_excl+0x171/0x250
[  392.008150][ T9603]  start_dirop+0x59/0xb0
[  392.008175][ T9603]  simple_start_creating+0xf9/0x110
[  392.008202][ T9603]  ? __pfx_simple_start_creating+0x10/0x10
[  392.008230][ T9603]  ? mntput+0x70/0xa0
[  392.008252][ T9603]  ? simple_pin_fs+0xa3/0x190
[  392.008275][ T9603]  debugfs_start_creating.part.0+0x82/0x170
[  392.008318][ T9603]  __debugfs_create_file+0xb3/0x4f0
[  392.008356][ T9603]  debugfs_create_file_full+0x41/0x60
[  392.008394][ T9603]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  392.008423][ T9603]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  392.008450][ T9603]  ? ida_alloc_range+0x70d/0x830
[  392.008506][ T9603]  ? lockdep_init_map_type+0x5c/0x250
[  392.008534][ T9603]  preinit_net.part.0+0x252/0x920
[  392.008565][ T9603]  copy_net_ns+0x339/0x7c0
[  392.008595][ T9603]  create_new_namespaces+0x3ea/0xac0
[  392.008630][ T9603]  unshare_nsproxy_namespaces+0xf2/0x220
[  392.008662][ T9603]  ksys_unshare+0x438/0xab0
[  392.008697][ T9603]  ? __pfx_ksys_unshare+0x10/0x10
[  392.008729][ T9603]  ? xfd_validate_state+0x129/0x190
[  392.008768][ T9603]  ? ksys_write+0x1ac/0x250
[  392.008803][ T9603]  __x64_sys_unshare+0x31/0x40
[  392.008838][ T9603]  do_syscall_64+0x10b/0xf80
[  392.008873][ T9603]  ? clear_bhb_loop+0x40/0x90
[  392.008901][ T9603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  392.008925][ T9603] RIP: 0033:0x7f855a99ce59
[  392.008944][ T9603] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  392.008967][ T9603] RSP: 002b:00007f855b7db028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  392.008989][ T9603] RAX: ffffffffffffffda RBX: 00007f855ac15fa0 RCX: 00007f855a99ce59
[  392.009004][ T9603] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  392.009019][ T9603] RBP: 00007f855aa32d6f R08: 0000000000000000 R09: 0000000000000000
[  392.009033][ T9603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  392.009046][ T9603] R13: 00007f855ac16038 R14: 00007f855ac15fa0 R15: 00007ffd1ab3e808
[  392.009075][ T9603]  </TASK>
[  392.781356][ T9616] netlink: 8 bytes leftover after parsing attributes in process `syz.3.834'.
[  393.690924][   T50] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  393.698549][   T50] Bluetooth: hci2: Invalid handle: 0x3a4a > 0x0eff
[  394.054009][ T9623] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  394.075118][ T9623] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  394.109865][ T9623] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  394.147811][ T9623] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  394.177641][ T9325] memory: usage 307200kB, limit 307200kB, failcnt 14014
[  394.351688][ T9325] memory+swap: usage 429728kB, limit 9007199254740988kB, failcnt 0
[  394.430404][ T9325] kmem: usage 4064kB, limit 9007199254740988kB, failcnt 0
[  394.477740][ T9325] Memory cgroup stats for /syz1:
[  394.478006][ T9325] cache 310067200
[  394.548410][ T9325] rss 327680
[  394.568712][ T9325] rss_huge 0
[  394.590542][ T9325] shmem 310067200
[  394.617601][ T9325] mapped_file 0
[  394.638522][ T9325] dirty 0
[  394.657087][ T9325] writeback 0
[  394.681887][ T9325] workingset_refault_anon 3938
[  394.704332][ T9325] workingset_refault_file 1978
[  394.728478][ T9325] swap 125468672
[  394.756445][ T9325] swapcached 181448704
[  394.781204][ T9325] pgpgin 295452
[  394.806050][ T9325] pgpgout 228048
[  394.828006][ T9325] pgfault 206588
[  394.848204][ T9325] pgmajfault 801
[  394.870192][ T9325] inactive_anon 30953472
[  394.894067][ T9325] active_anon 279457792
[  394.919309][ T9325] inactive_file 0
[  394.938387][ T9325] active_file 0
[  394.959526][ T9325] unevictable 0
[  394.984826][ T9325] hierarchical_memory_limit 314572800
[  395.016010][ T9325] hierarchical_memsw_limit 9223372036854771712
[  395.040842][ T9626] Process accounting resumed
[  395.056649][ T9325] total_cache 310067200
[  395.081121][ T9325] total_rss 327680
[  395.108799][ T9325] total_rss_huge 0
[  395.134875][ T9325] total_shmem 310067200
[  395.166066][ T9325] total_mapped_file 0
[  395.196534][ T9325] total_dirty 0
[  395.212554][ T9325] total_writeback 0
[  395.235368][ T9325] total_workingset_refault_anon 3938
[  395.340685][ T9325] total_workingset_refault_file 1978
[  395.368761][ T9325] total_swap 125468672
[  395.391632][ T9325] total_swapcached 181448704
[  395.420288][ T9325] total_pgpgin 295452
[  395.442154][ T9325] total_pgpgout 228048
[  395.465975][ T9325] total_pgfault 206588
[  395.498534][ T9325] total_pgmajfault 801
[  395.509557][ T9325] total_inactive_anon 30953472
[  395.531179][ T9325] total_active_anon 279457792
[  395.552073][ T9325] total_inactive_file 0
[  395.571540][ T9325] total_active_file 0
[  395.592680][ T9325] total_unevictable 0
[  395.609534][ T9325] anon_cost 0
[  395.626716][ T9325] file_cost 0
[  395.641734][ T9325] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.774,pid=9339,uid=0
[  395.665764][ T4943] Bluetooth: hci0: command 0x0c1a tx timeout
[  395.721808][ T9325] Memory cgroup out of memory: Killed process 9339 (syz.1.774) total-vm:99508kB, anon-rss:1388kB, file-rss:50144kB, shmem-rss:0kB, UID:0 pgtables:196kB oom_score_adj:1000
[  396.132722][ T4943] Bluetooth: hci2: command 0x0c1a tx timeout
[  396.138820][ T4943] Bluetooth: hci1: command 0x0c1a tx timeout
[  396.212731][ T4943] Bluetooth: hci3: command 0x0c1a tx timeout
[  397.637582][ T9668] ecryptfs_miscdev_write: Invalid packet size [0]
[  398.218580][ T9676] netlink: 8 bytes leftover after parsing attributes in process `syz.2.847'.
[  398.868522][   T32] oom_reaper: reaped process 9339 (syz.1.774), now anon-rss:0kB, file-rss:32560kB, shmem-rss:0kB
[  400.049494][ T9704] netlink: 8 bytes leftover after parsing attributes in process `syz.2.853'.
[  401.434133][ T9720] FAULT_INJECTION: forcing a failure.
[  401.434133][ T9720] name failslab, interval 1, probability 0, space 0, times 0
[  401.529857][ T9720] CPU: 0 UID: 0 PID: 9720 Comm: syz.3.858 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  401.529895][ T9720] Tainted: [L]=SOFTLOCKUP
[  401.529902][ T9720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  401.529917][ T9720] Call Trace:
[  401.529924][ T9720]  <TASK>
[  401.529933][ T9720]  dump_stack_lvl+0x100/0x190
[  401.529963][ T9720]  should_fail_ex.cold+0x5/0xa
[  401.529994][ T9720]  should_failslab+0xc2/0x120
[  401.530022][ T9720]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  401.530061][ T9720]  ? __d_alloc+0x34/0xa40
[  401.530098][ T9720]  __d_alloc+0x34/0xa40
[  401.530133][ T9720]  d_alloc+0x4a/0x1e0
[  401.530166][ T9720]  lookup_one_qstr_excl+0x171/0x250
[  401.530206][ T9720]  start_dirop+0x59/0xb0
[  401.530234][ T9720]  simple_start_creating+0xf9/0x110
[  401.530263][ T9720]  ? __pfx_simple_start_creating+0x10/0x10
[  401.530292][ T9720]  ? mntput+0x70/0xa0
[  401.530316][ T9720]  ? simple_pin_fs+0xa3/0x190
[  401.530342][ T9720]  debugfs_start_creating.part.0+0x82/0x170
[  401.530381][ T9720]  __debugfs_create_file+0xb3/0x4f0
[  401.530421][ T9720]  debugfs_create_file_full+0x41/0x60
[  401.530466][ T9720]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  401.530498][ T9720]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  401.530558][ T9720]  ? lockdep_init_map_type+0x5c/0x250
[  401.530587][ T9720]  preinit_net.part.0+0x43b/0x920
[  401.530619][ T9720]  copy_net_ns+0x339/0x7c0
[  401.530652][ T9720]  create_new_namespaces+0x3ea/0xac0
[  401.530690][ T9720]  unshare_nsproxy_namespaces+0xf2/0x220
[  401.530724][ T9720]  ksys_unshare+0x438/0xab0
[  401.530761][ T9720]  ? __pfx_ksys_unshare+0x10/0x10
[  401.530795][ T9720]  ? xfd_validate_state+0x129/0x190
[  401.530819][ T9720]  ? ksys_write+0x1ac/0x250
[  401.530859][ T9720]  __x64_sys_unshare+0x31/0x40
[  401.530894][ T9720]  do_syscall_64+0x10b/0xf80
[  401.530929][ T9720]  ? clear_bhb_loop+0x40/0x90
[  401.530957][ T9720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.530981][ T9720] RIP: 0033:0x7f55f699ce59
[  401.531001][ T9720] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  401.531025][ T9720] RSP: 002b:00007f55f7860028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  401.531046][ T9720] RAX: ffffffffffffffda RBX: 00007f55f6c16090 RCX: 00007f55f699ce59
[  401.531061][ T9720] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  401.531075][ T9720] RBP: 00007f55f6a32d6f R08: 0000000000000000 R09: 0000000000000000
[  401.531089][ T9720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  401.531102][ T9720] R13: 00007f55f6c16128 R14: 00007f55f6c16090 R15: 00007ffc0795b718
[  401.531132][ T9720]  </TASK>
[  402.794440][ T9323] syz.1.774 (9323) used greatest stack depth: 19560 bytes left
[  402.849085][ T9332] syz.1.774 (9332) used greatest stack depth: 19352 bytes left
[  402.921104][ T9326] syz.1.774 (9326) used greatest stack depth: 19016 bytes left
[  403.075503][ T9335] syz.1.774 (9335) used greatest stack depth: 18920 bytes left
[  403.433517][ T9728] FAULT_INJECTION: forcing a failure.
[  403.433517][ T9728] name failslab, interval 1, probability 0, space 0, times 0
[  403.556772][ T9728] CPU: 0 UID: 0 PID: 9728 Comm: syz.1.855 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  403.556810][ T9728] Tainted: [L]=SOFTLOCKUP
[  403.556819][ T9728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  403.556833][ T9728] Call Trace:
[  403.556841][ T9728]  <TASK>
[  403.556850][ T9728]  dump_stack_lvl+0x100/0x190
[  403.556881][ T9728]  should_fail_ex.cold+0x5/0xa
[  403.556912][ T9728]  should_failslab+0xc2/0x120
[  403.556941][ T9728]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  403.556982][ T9728]  ? __d_alloc+0x34/0xa40
[  403.557021][ T9728]  __d_alloc+0x34/0xa40
[  403.557057][ T9728]  d_alloc+0x4a/0x1e0
[  403.557091][ T9728]  lookup_one_qstr_excl+0x171/0x250
[  403.557132][ T9728]  start_dirop+0x59/0xb0
[  403.557161][ T9728]  simple_start_creating+0xf9/0x110
[  403.557190][ T9728]  ? __pfx_simple_start_creating+0x10/0x10
[  403.557221][ T9728]  ? mntput+0x70/0xa0
[  403.557246][ T9728]  ? simple_pin_fs+0xa3/0x190
[  403.557273][ T9728]  debugfs_start_creating.part.0+0x82/0x170
[  403.557321][ T9728]  __debugfs_create_file+0xb3/0x4f0
[  403.557363][ T9728]  debugfs_create_file_full+0x41/0x60
[  403.557405][ T9728]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  403.557438][ T9728]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  403.557494][ T9728]  ? lockdep_init_map_type+0x5c/0x250
[  403.557524][ T9728]  preinit_net.part.0+0x43b/0x920
[  403.557555][ T9728]  copy_net_ns+0x339/0x7c0
[  403.557589][ T9728]  create_new_namespaces+0x3ea/0xac0
[  403.557628][ T9728]  unshare_nsproxy_namespaces+0xf2/0x220
[  403.557664][ T9728]  ksys_unshare+0x438/0xab0
[  403.557702][ T9728]  ? __pfx_ksys_unshare+0x10/0x10
[  403.557737][ T9728]  ? xfd_validate_state+0x129/0x190
[  403.557762][ T9728]  ? ksys_write+0x1ac/0x250
[  403.557798][ T9728]  __x64_sys_unshare+0x31/0x40
[  403.557846][ T9728]  do_syscall_64+0x10b/0xf80
[  403.557880][ T9728]  ? clear_bhb_loop+0x40/0x90
[  403.557908][ T9728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.557931][ T9728] RIP: 0033:0x7f6e8d19ce59
[  403.557950][ T9728] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  403.557973][ T9728] RSP: 002b:00007f6e8b3f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  403.557994][ T9728] RAX: ffffffffffffffda RBX: 00007f6e8d416090 RCX: 00007f6e8d19ce59
[  403.558009][ T9728] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  403.558023][ T9728] RBP: 00007f6e8d232d6f R08: 0000000000000000 R09: 0000000000000000
[  403.558036][ T9728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  403.558054][ T9728] R13: 00007f6e8d416128 R14: 00007f6e8d416090 R15: 00007ffd62d8bf18
[  403.558083][ T9728]  </TASK>
[  404.310069][ T9737] netlink: 342 bytes leftover after parsing attributes in process `syz.0.860'.
[  404.600944][ T9737] input input6: cannot allocate more than FF_MAX_EFFECTS effects
[  404.914222][ T9744] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  405.024613][ T9744] netlink: 12 bytes leftover after parsing attributes in process `syz.2.861'.
[  405.112486][ T9744] openvswitch: netlink: Flow key attr not present in new flow.
[  410.634564][ T9844] FAULT_INJECTION: forcing a failure.
[  410.634564][ T9844] name failslab, interval 1, probability 0, space 0, times 0
[  410.722025][ T9844] CPU: 0 UID: 0 PID: 9844 Comm: syz.3.882 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  410.722063][ T9844] Tainted: [L]=SOFTLOCKUP
[  410.722072][ T9844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  410.722086][ T9844] Call Trace:
[  410.722093][ T9844]  <TASK>
[  410.722102][ T9844]  dump_stack_lvl+0x100/0x190
[  410.722132][ T9844]  should_fail_ex.cold+0x5/0xa
[  410.722161][ T9844]  should_failslab+0xc2/0x120
[  410.722189][ T9844]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  410.722227][ T9844]  ? security_inode_alloc+0x3b/0x2c0
[  410.722250][ T9844]  ? lockdep_init_map_type+0x5c/0x250
[  410.722278][ T9844]  security_inode_alloc+0x3b/0x2c0
[  410.722301][ T9844]  inode_init_always_gfp+0xcc0/0x1000
[  410.722335][ T9844]  alloc_inode+0x8e/0x250
[  410.722372][ T9844]  alloc_anon_inode+0x2a/0x3e0
[  410.722405][ T9844]  anon_inode_make_secure_inode+0x2f/0x140
[  410.722444][ T9844]  __anon_inode_getfile+0x1cf/0x280
[  410.722483][ T9844]  new_userfaultfd+0x255/0x400
[  410.722511][ T9844]  __x64_sys_userfaultfd+0x4b/0xb0
[  410.722541][ T9844]  do_syscall_64+0x10b/0xf80
[  410.722576][ T9844]  ? clear_bhb_loop+0x40/0x90
[  410.722604][ T9844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  410.722634][ T9844] RIP: 0033:0x7f55f699ce59
[  410.722658][ T9844] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  410.722682][ T9844] RSP: 002b:00007f55f7860028 EFLAGS: 00000246 ORIG_RAX: 0000000000000143
[  410.722704][ T9844] RAX: ffffffffffffffda RBX: 00007f55f6c16090 RCX: 00007f55f699ce59
[  410.722720][ T9844] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  410.722734][ T9844] RBP: 00007f55f6a32d6f R08: 0000000000000000 R09: 0000000000000000
[  410.722748][ T9844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  410.722762][ T9844] R13: 00007f55f6c16128 R14: 00007f55f6c16090 R15: 00007ffc0795b718
[  410.722791][ T9844]  </TASK>
[  412.808203][ T9879] netlink: 8 bytes leftover after parsing attributes in process `syz.2.891'.
[  413.256939][ T9863] Process accounting resumed
[  414.814178][ T9916] FAULT_INJECTION: forcing a failure.
[  414.814178][ T9916] name failslab, interval 1, probability 0, space 0, times 0
[  414.901274][ T9916] CPU: 0 UID: 0 PID: 9916 Comm: syz.1.900 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  414.901318][ T9916] Tainted: [L]=SOFTLOCKUP
[  414.901327][ T9916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  414.901341][ T9916] Call Trace:
[  414.901348][ T9916]  <TASK>
[  414.901357][ T9916]  dump_stack_lvl+0x100/0x190
[  414.901387][ T9916]  should_fail_ex.cold+0x5/0xa
[  414.901417][ T9916]  should_failslab+0xc2/0x120
[  414.901464][ T9916]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  414.901505][ T9916]  ? __d_alloc+0x34/0xa40
[  414.901557][ T9916]  __d_alloc+0x34/0xa40
[  414.901587][ T9916]  ? security_inode_alloc+0xcf/0x2c0
[  414.901612][ T9916]  d_alloc_pseudo+0x1c/0xc0
[  414.901635][ T9916]  alloc_file_pseudo+0xcf/0x230
[  414.901673][ T9916]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  414.901709][ T9916]  ? security_inode_init_security_anon+0x7b/0x230
[  414.901758][ T9916]  __anon_inode_getfile+0xe8/0x280
[  414.901799][ T9916]  new_userfaultfd+0x255/0x400
[  414.901828][ T9916]  __x64_sys_userfaultfd+0x4b/0xb0
[  414.901859][ T9916]  do_syscall_64+0x10b/0xf80
[  414.901895][ T9916]  ? clear_bhb_loop+0x40/0x90
[  414.901924][ T9916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.901948][ T9916] RIP: 0033:0x7f6e8d19ce59
[  414.901968][ T9916] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  414.901992][ T9916] RSP: 002b:00007f6e8b3f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000143
[  414.902015][ T9916] RAX: ffffffffffffffda RBX: 00007f6e8d416090 RCX: 00007f6e8d19ce59
[  414.902031][ T9916] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  414.902045][ T9916] RBP: 00007f6e8d232d6f R08: 0000000000000000 R09: 0000000000000000
[  414.902059][ T9916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  414.902074][ T9916] R13: 00007f6e8d416128 R14: 00007f6e8d416090 R15: 00007ffd62d8bf18
[  414.902104][ T9916]  </TASK>
[  415.240634][ T9921] FAULT_INJECTION: forcing a failure.
[  415.240634][ T9921] name failslab, interval 1, probability 0, space 0, times 0
[  415.253507][ T9921] CPU: 0 UID: 0 PID: 9921 Comm: syz.2.901 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  415.253544][ T9921] Tainted: [L]=SOFTLOCKUP
[  415.253553][ T9921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  415.253567][ T9921] Call Trace:
[  415.253576][ T9921]  <TASK>
[  415.253586][ T9921]  dump_stack_lvl+0x100/0x190
[  415.253627][ T9921]  should_fail_ex.cold+0x5/0xa
[  415.253669][ T9921]  should_failslab+0xc2/0x120
[  415.253699][ T9921]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  415.253740][ T9921]  ? __d_alloc+0x34/0xa40
[  415.253778][ T9921]  __d_alloc+0x34/0xa40
[  415.253825][ T9921]  d_alloc+0x4a/0x1e0
[  415.253859][ T9921]  lookup_one_qstr_excl+0x171/0x250
[  415.253900][ T9921]  start_dirop+0x59/0xb0
[  415.253928][ T9921]  simple_start_creating+0xf9/0x110
[  415.253958][ T9921]  ? __pfx_simple_start_creating+0x10/0x10
[  415.253988][ T9921]  ? mntput+0x70/0xa0
[  415.254013][ T9921]  ? simple_pin_fs+0xa3/0x190
[  415.254039][ T9921]  debugfs_start_creating.part.0+0x82/0x170
[  415.254103][ T9921]  __debugfs_create_file+0xb3/0x4f0
[  415.254145][ T9921]  debugfs_create_file_full+0x41/0x60
[  415.254187][ T9921]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  415.254218][ T9921]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  415.254273][ T9921]  ? lockdep_init_map_type+0x5c/0x250
[  415.254311][ T9921]  preinit_net.part.0+0x43b/0x920
[  415.254344][ T9921]  copy_net_ns+0x339/0x7c0
[  415.254378][ T9921]  create_new_namespaces+0x3ea/0xac0
[  415.254418][ T9921]  unshare_nsproxy_namespaces+0xf2/0x220
[  415.254453][ T9921]  ksys_unshare+0x438/0xab0
[  415.254491][ T9921]  ? __pfx_ksys_unshare+0x10/0x10
[  415.254526][ T9921]  ? xfd_validate_state+0x129/0x190
[  415.254550][ T9921]  ? ksys_write+0x1ac/0x250
[  415.254586][ T9921]  __x64_sys_unshare+0x31/0x40
[  415.254623][ T9921]  do_syscall_64+0x10b/0xf80
[  415.254659][ T9921]  ? clear_bhb_loop+0x40/0x90
[  415.254689][ T9921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  415.254714][ T9921] RIP: 0033:0x7f855a99ce59
[  415.254733][ T9921] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  415.254757][ T9921] RSP: 002b:00007f855b7ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  415.254780][ T9921] RAX: ffffffffffffffda RBX: 00007f855ac16090 RCX: 00007f855a99ce59
[  415.254796][ T9921] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  415.254811][ T9921] RBP: 00007f855aa32d6f R08: 0000000000000000 R09: 0000000000000000
[  415.254825][ T9921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  415.254840][ T9921] R13: 00007f855ac16128 R14: 00007f855ac16090 R15: 00007ffd1ab3e808
[  415.254870][ T9921]  </TASK>
[  415.810982][ T9925] FAULT_INJECTION: forcing a failure.
[  415.810982][ T9925] name failslab, interval 1, probability 0, space 0, times 0
[  415.832679][ T9925] CPU: 0 UID: 0 PID: 9925 Comm: syz.1.902 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  415.832718][ T9925] Tainted: [L]=SOFTLOCKUP
[  415.832727][ T9925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  415.832741][ T9925] Call Trace:
[  415.832749][ T9925]  <TASK>
[  415.832758][ T9925]  dump_stack_lvl+0x100/0x190
[  415.832789][ T9925]  should_fail_ex.cold+0x5/0xa
[  415.832819][ T9925]  should_failslab+0xc2/0x120
[  415.832849][ T9925]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  415.832890][ T9925]  ? __d_alloc+0x34/0xa40
[  415.832929][ T9925]  __d_alloc+0x34/0xa40
[  415.832965][ T9925]  d_alloc+0x4a/0x1e0
[  415.833002][ T9925]  lookup_one_qstr_excl+0x171/0x250
[  415.833042][ T9925]  start_dirop+0x59/0xb0
[  415.833071][ T9925]  simple_start_creating+0xf9/0x110
[  415.833101][ T9925]  ? __pfx_simple_start_creating+0x10/0x10
[  415.833131][ T9925]  ? mntput+0x70/0xa0
[  415.833157][ T9925]  ? simple_pin_fs+0xa3/0x190
[  415.833184][ T9925]  debugfs_start_creating.part.0+0x82/0x170
[  415.833225][ T9925]  __debugfs_create_file+0xb3/0x4f0
[  415.833274][ T9925]  debugfs_create_file_full+0x41/0x60
[  415.833316][ T9925]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  415.833348][ T9925]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  415.833378][ T9925]  ? ida_alloc_range+0x70d/0x830
[  415.833440][ T9925]  ? lockdep_init_map_type+0x5c/0x250
[  415.833470][ T9925]  preinit_net.part.0+0x252/0x920
[  415.833501][ T9925]  copy_net_ns+0x339/0x7c0
[  415.833541][ T9925]  create_new_namespaces+0x3ea/0xac0
[  415.833581][ T9925]  unshare_nsproxy_namespaces+0xf2/0x220
[  415.833617][ T9925]  ksys_unshare+0x438/0xab0
[  415.833656][ T9925]  ? __pfx_ksys_unshare+0x10/0x10
[  415.833691][ T9925]  ? xfd_validate_state+0x129/0x190
[  415.833715][ T9925]  ? ksys_write+0x1ac/0x250
[  415.833751][ T9925]  __x64_sys_unshare+0x31/0x40
[  415.833788][ T9925]  do_syscall_64+0x10b/0xf80
[  415.833823][ T9925]  ? clear_bhb_loop+0x40/0x90
[  415.833853][ T9925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  415.833877][ T9925] RIP: 0033:0x7f6e8d19ce59
[  415.833898][ T9925] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  415.833921][ T9925] RSP: 002b:00007f6e8b3f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  415.833944][ T9925] RAX: ffffffffffffffda RBX: 00007f6e8d416090 RCX: 00007f6e8d19ce59
[  415.833960][ T9925] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  415.833974][ T9925] RBP: 00007f6e8d232d6f R08: 0000000000000000 R09: 0000000000000000
[  415.833989][ T9925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  415.834003][ T9925] R13: 00007f6e8d416128 R14: 00007f6e8d416090 R15: 00007ffd62d8bf18
[  415.834033][ T9925]  </TASK>
[  421.308733][ T9988] Process accounting paused
[  423.931782][T10032] FAULT_INJECTION: forcing a failure.
[  423.931782][T10032] name failslab, interval 1, probability 0, space 0, times 0
[  424.095102][T10032] CPU: 0 UID: 0 PID: 10032 Comm: syz.1.928 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  424.095143][T10032] Tainted: [L]=SOFTLOCKUP
[  424.095152][T10032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  424.095167][T10032] Call Trace:
[  424.095174][T10032]  <TASK>
[  424.095183][T10032]  dump_stack_lvl+0x100/0x190
[  424.095214][T10032]  should_fail_ex.cold+0x5/0xa
[  424.095245][T10032]  should_failslab+0xc2/0x120
[  424.095273][T10032]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  424.095313][T10032]  ? alloc_inode+0x68/0x250
[  424.095352][T10032]  ? simple_start_creating+0xb0/0x110
[  424.095381][T10032]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  424.095418][T10032]  alloc_inode+0x68/0x250
[  424.095456][T10032]  new_inode+0x22/0x1c0
[  424.095523][T10032]  __debugfs_create_file+0x105/0x4f0
[  424.095565][T10032]  debugfs_create_file_full+0x41/0x60
[  424.095605][T10032]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  424.095636][T10032]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  424.095689][T10032]  ? lockdep_init_map_type+0x5c/0x250
[  424.095737][T10032]  preinit_net.part.0+0x43b/0x920
[  424.095770][T10032]  copy_net_ns+0x339/0x7c0
[  424.095804][T10032]  create_new_namespaces+0x3ea/0xac0
[  424.095844][T10032]  unshare_nsproxy_namespaces+0xf2/0x220
[  424.095879][T10032]  ksys_unshare+0x438/0xab0
[  424.095918][T10032]  ? __pfx_ksys_unshare+0x10/0x10
[  424.095953][T10032]  ? xfd_validate_state+0x129/0x190
[  424.095977][T10032]  ? ksys_write+0x1ac/0x250
[  424.096013][T10032]  __x64_sys_unshare+0x31/0x40
[  424.096049][T10032]  do_syscall_64+0x10b/0xf80
[  424.096086][T10032]  ? clear_bhb_loop+0x40/0x90
[  424.096115][T10032]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  424.096139][T10032] RIP: 0033:0x7f6e8d19ce59
[  424.096158][T10032] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  424.096182][T10032] RSP: 002b:00007f6e8b3f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  424.096204][T10032] RAX: ffffffffffffffda RBX: 00007f6e8d416090 RCX: 00007f6e8d19ce59
[  424.096220][T10032] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  424.096234][T10032] RBP: 00007f6e8d232d6f R08: 0000000000000000 R09: 0000000000000000
[  424.096249][T10032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  424.096263][T10032] R13: 00007f6e8d416128 R14: 00007f6e8d416090 R15: 00007ffd62d8bf18
[  424.096292][T10032]  </TASK>
[  424.096302][T10032] debugfs: out of free dentries, can not create file 'net_notrefcnt@ffff88802a19a9b8'
[  424.988195][T10046] device-mapper: ioctl: Invalid ioctl structure: name ��������d, dev 3000000000
[  425.074158][T10045] Process accounting paused
[  426.268559][T10038] FAULT_INJECTION: forcing a failure.
[  426.268559][T10038] name failslab, interval 1, probability 0, space 0, times 0
[  426.327664][T10049] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  426.429684][T10038] CPU: 0 UID: 0 PID: 10038 Comm: syz.2.929 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  426.429719][T10038] Tainted: [L]=SOFTLOCKUP
[  426.429727][T10038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  426.429740][T10038] Call Trace:
[  426.429747][T10038]  <TASK>
[  426.429754][T10038]  dump_stack_lvl+0x100/0x190
[  426.429783][T10038]  should_fail_ex.cold+0x5/0xa
[  426.429811][T10038]  should_failslab+0xc2/0x120
[  426.429837][T10038]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  426.429873][T10038]  ? alloc_inode+0x68/0x250
[  426.429908][T10038]  ? simple_start_creating+0xb0/0x110
[  426.429935][T10038]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  426.429969][T10038]  alloc_inode+0x68/0x250
[  426.430003][T10038]  new_inode+0x22/0x1c0
[  426.430040][T10038]  __debugfs_create_file+0x105/0x4f0
[  426.430078][T10038]  debugfs_create_file_full+0x41/0x60
[  426.430115][T10038]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  426.430143][T10038]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  426.430193][T10038]  ? lockdep_init_map_type+0x5c/0x250
[  426.430221][T10038]  preinit_net.part.0+0x43b/0x920
[  426.430249][T10038]  copy_net_ns+0x339/0x7c0
[  426.430280][T10038]  create_new_namespaces+0x3ea/0xac0
[  426.430324][T10038]  unshare_nsproxy_namespaces+0xf2/0x220
[  426.430356][T10038]  ksys_unshare+0x438/0xab0
[  426.430391][T10038]  ? __pfx_ksys_unshare+0x10/0x10
[  426.430422][T10038]  ? xfd_validate_state+0x129/0x190
[  426.430444][T10038]  ? ksys_write+0x1ac/0x250
[  426.430477][T10038]  __x64_sys_unshare+0x31/0x40
[  426.430510][T10038]  do_syscall_64+0x10b/0xf80
[  426.430542][T10038]  ? clear_bhb_loop+0x40/0x90
[  426.430567][T10038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.430590][T10038] RIP: 0033:0x7f855a99ce59
[  426.430607][T10038] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  426.430628][T10038] RSP: 002b:00007f855b7ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  426.430649][T10038] RAX: ffffffffffffffda RBX: 00007f855ac16090 RCX: 00007f855a99ce59
[  426.430666][T10038] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  426.430680][T10038] RBP: 00007f855aa32d6f R08: 0000000000000000 R09: 0000000000000000
[  426.430693][T10038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  426.430706][T10038] R13: 00007f855ac16128 R14: 00007f855ac16090 R15: 00007ffd1ab3e808
[  426.430733][T10038]  </TASK>
[  426.430752][T10038] debugfs: out of free dentries, can not create file 'net_notrefcnt@ffff88805ce7d078'
[  430.253536][T10130] FAULT_INJECTION: forcing a failure.
[  430.253536][T10130] name failslab, interval 1, probability 0, space 0, times 0
[  430.314259][T10130] CPU: 0 UID: 0 PID: 10130 Comm: syz.0.952 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  430.314304][T10130] Tainted: [L]=SOFTLOCKUP
[  430.314313][T10130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  430.314328][T10130] Call Trace:
[  430.314335][T10130]  <TASK>
[  430.314344][T10130]  dump_stack_lvl+0x100/0x190
[  430.314375][T10130]  should_fail_ex.cold+0x5/0xa
[  430.314405][T10130]  should_failslab+0xc2/0x120
[  430.314434][T10130]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  430.314474][T10130]  ? __d_alloc+0x34/0xa40
[  430.314513][T10130]  __d_alloc+0x34/0xa40
[  430.314549][T10130]  d_alloc+0x4a/0x1e0
[  430.314583][T10130]  lookup_one_qstr_excl+0x171/0x250
[  430.314625][T10130]  start_dirop+0x59/0xb0
[  430.314653][T10130]  simple_start_creating+0xf9/0x110
[  430.314683][T10130]  ? __pfx_simple_start_creating+0x10/0x10
[  430.314713][T10130]  ? mntput+0x70/0xa0
[  430.314739][T10130]  ? simple_pin_fs+0xa3/0x190
[  430.314765][T10130]  debugfs_start_creating.part.0+0x82/0x170
[  430.314805][T10130]  __debugfs_create_file+0xb3/0x4f0
[  430.314847][T10130]  debugfs_create_file_full+0x41/0x60
[  430.314888][T10130]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  430.314920][T10130]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  430.314982][T10130]  ? lockdep_init_map_type+0x5c/0x250
[  430.315012][T10130]  preinit_net.part.0+0x43b/0x920
[  430.315044][T10130]  copy_net_ns+0x339/0x7c0
[  430.315078][T10130]  create_new_namespaces+0x3ea/0xac0
[  430.315117][T10130]  unshare_nsproxy_namespaces+0xf2/0x220
[  430.315152][T10130]  ksys_unshare+0x438/0xab0
[  430.315190][T10130]  ? __pfx_ksys_unshare+0x10/0x10
[  430.315225][T10130]  ? xfd_validate_state+0x129/0x190
[  430.315249][T10130]  ? ksys_write+0x1ac/0x250
[  430.315286][T10130]  __x64_sys_unshare+0x31/0x40
[  430.315322][T10130]  do_syscall_64+0x10b/0xf80
[  430.315358][T10130]  ? clear_bhb_loop+0x40/0x90
[  430.315386][T10130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  430.315411][T10130] RIP: 0033:0x7f5e6d99ce59
[  430.315430][T10130] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  430.315454][T10130] RSP: 002b:00007f5e6bbcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  430.315476][T10130] RAX: ffffffffffffffda RBX: 00007f5e6dc16090 RCX: 00007f5e6d99ce59
[  430.315492][T10130] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  430.315506][T10130] RBP: 00007f5e6da32d6f R08: 0000000000000000 R09: 0000000000000000
[  430.315521][T10130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  430.315535][T10130] R13: 00007f5e6dc16128 R14: 00007f5e6dc16090 R15: 00007ffee1ebaec8
[  430.315565][T10130]  </TASK>
[  432.054621][T10140] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  432.078811][T10140] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  432.099295][T10140] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  432.119290][T10140] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  432.413553][T10157] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  433.518165][T10181] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5645] was attempted by "ci-qemu-gce-upstream-auto/syz-executor exec"[10181]
[  434.132839][ T4943] Bluetooth: hci3: command 0x0c1a tx timeout
[  434.138951][   T50] Bluetooth: hci2: command 0x0c1a tx timeout
[  434.145057][   T50] Bluetooth: hci1: command 0x0c1a tx timeout
[  434.151344][ T4943] Bluetooth: hci0: command 0x0c1a tx timeout
[  434.242024][T10168] kexec: Could not allocate control_code_buffer
[  436.032125][T10233] netlink: 206 bytes leftover after parsing attributes in process `syz.3.980'.
[  436.083770][T10233] netlink: 4 bytes leftover after parsing attributes in process `syz.3.980'.
[  436.603823][T10243] FAULT_INJECTION: forcing a failure.
[  436.603823][T10243] name failslab, interval 1, probability 0, space 0, times 0
[  436.752323][T10243] CPU: 0 UID: 0 PID: 10243 Comm: syz.2.983 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  436.752360][T10243] Tainted: [L]=SOFTLOCKUP
[  436.752368][T10243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  436.752389][T10243] Call Trace:
[  436.752396][T10243]  <TASK>
[  436.752423][T10243]  dump_stack_lvl+0x100/0x190
[  436.752453][T10243]  should_fail_ex.cold+0x5/0xa
[  436.752484][T10243]  should_failslab+0xc2/0x120
[  436.752513][T10243]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  436.752553][T10243]  ? __d_alloc+0x34/0xa40
[  436.752592][T10243]  __d_alloc+0x34/0xa40
[  436.752631][T10243]  d_alloc+0x4a/0x1e0
[  436.752666][T10243]  lookup_one_qstr_excl+0x171/0x250
[  436.752707][T10243]  start_dirop+0x59/0xb0
[  436.752736][T10243]  simple_start_creating+0xf9/0x110
[  436.752766][T10243]  ? __pfx_simple_start_creating+0x10/0x10
[  436.752796][T10243]  ? mntput+0x70/0xa0
[  436.752821][T10243]  ? simple_pin_fs+0xa3/0x190
[  436.752861][T10243]  debugfs_start_creating.part.0+0x82/0x170
[  436.752900][T10243]  __debugfs_create_file+0xb3/0x4f0
[  436.752940][T10243]  debugfs_create_file_full+0x41/0x60
[  436.752980][T10243]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  436.753010][T10243]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  436.753039][T10243]  ? ida_alloc_range+0x70d/0x830
[  436.753099][T10243]  ? lockdep_init_map_type+0x5c/0x250
[  436.753128][T10243]  preinit_net.part.0+0x252/0x920
[  436.753158][T10243]  copy_net_ns+0x339/0x7c0
[  436.753192][T10243]  create_new_namespaces+0x3ea/0xac0
[  436.753231][T10243]  unshare_nsproxy_namespaces+0xf2/0x220
[  436.753265][T10243]  ksys_unshare+0x438/0xab0
[  436.753302][T10243]  ? __pfx_ksys_unshare+0x10/0x10
[  436.753335][T10243]  ? xfd_validate_state+0x129/0x190
[  436.753359][T10243]  ? ksys_write+0x1ac/0x250
[  436.753410][T10243]  __x64_sys_unshare+0x31/0x40
[  436.753445][T10243]  do_syscall_64+0x10b/0xf80
[  436.753480][T10243]  ? clear_bhb_loop+0x40/0x90
[  436.753509][T10243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  436.753532][T10243] RIP: 0033:0x7f855a99ce59
[  436.753552][T10243] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  436.753575][T10243] RSP: 002b:00007f855b7ba028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  436.753596][T10243] RAX: ffffffffffffffda RBX: 00007f855ac16090 RCX: 00007f855a99ce59
[  436.753612][T10243] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  436.753626][T10243] RBP: 00007f855aa32d6f R08: 0000000000000000 R09: 0000000000000000
[  436.753640][T10243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  436.753653][T10243] R13: 00007f855ac16128 R14: 00007f855ac16090 R15: 00007ffd1ab3e808
[  436.753683][T10243]  </TASK>
[  437.400263][T10254] FAULT_INJECTION: forcing a failure.
[  437.400263][T10254] name failslab, interval 1, probability 0, space 0, times 0
[  437.429660][T10254] CPU: 0 UID: 0 PID: 10254 Comm: syz.3.986 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  437.429697][T10254] Tainted: [L]=SOFTLOCKUP
[  437.429705][T10254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  437.429719][T10254] Call Trace:
[  437.429726][T10254]  <TASK>
[  437.429735][T10254]  dump_stack_lvl+0x100/0x190
[  437.429764][T10254]  should_fail_ex.cold+0x5/0xa
[  437.429794][T10254]  should_failslab+0xc2/0x120
[  437.429822][T10254]  __kmalloc_cache_noprof+0x7a/0x6f0
[  437.429857][T10254]  ? ima_d_path+0xc9/0x260
[  437.429878][T10254]  ? xattr_resolve_name+0x27d/0x3f0
[  437.429909][T10254]  ima_d_path+0xc9/0x260
[  437.429932][T10254]  ? __pfx_ima_d_path+0x10/0x10
[  437.429959][T10254]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  437.429999][T10254]  process_measurement+0x1b25/0x2350
[  437.430042][T10254]  ? stack_trace_save+0x8e/0xc0
[  437.430075][T10254]  ? __pfx_process_measurement+0x10/0x10
[  437.430113][T10254]  ? __lock_acquire+0x4a5/0x2630
[  437.430135][T10254]  ? __kasan_slab_alloc+0x89/0x90
[  437.430158][T10254]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  437.430197][T10254]  ? init_file+0x95/0x480
[  437.430227][T10254]  ? alloc_empty_file+0x79/0x1c0
[  437.430260][T10254]  ? alloc_file_pseudo+0x13a/0x230
[  437.430295][T10254]  ? ksys_mmap_pgoff+0x242/0x610
[  437.430328][T10254]  ? __x64_sys_mmap+0x125/0x190
[  437.430353][T10254]  ? do_syscall_64+0x10b/0xf80
[  437.430413][T10254]  ? __pfx_aa_file_perm+0x10/0x10
[  437.430452][T10254]  ima_file_mmap+0x1c4/0x1f0
[  437.430490][T10254]  ? __pfx_ima_file_mmap+0x10/0x10
[  437.430533][T10254]  security_mmap_file+0x278/0x9b0
[  437.430562][T10254]  vm_mmap_pgoff+0xec/0x470
[  437.430607][T10254]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  437.430634][T10254]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  437.430668][T10254]  ? hugetlbfs_get_inode+0x3f5/0x700
[  437.430708][T10254]  ksys_mmap_pgoff+0x285/0x610
[  437.430738][T10254]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  437.430764][T10254]  ? xfd_validate_state+0x129/0x190
[  437.430792][T10254]  __x64_sys_mmap+0x125/0x190
[  437.430819][T10254]  do_syscall_64+0x10b/0xf80
[  437.430851][T10254]  ? clear_bhb_loop+0x40/0x90
[  437.430877][T10254]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.430899][T10254] RIP: 0033:0x7f55f699ce59
[  437.430916][T10254] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  437.430937][T10254] RSP: 002b:00007f55f7881028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  437.430962][T10254] RAX: ffffffffffffffda RBX: 00007f55f6c15fa0 RCX: 00007f55f699ce59
[  437.430977][T10254] RDX: 00004000000000df RSI: 0000000000000003 RDI: 0000000000000000
[  437.430990][T10254] RBP: 00007f55f6a32d6f R08: 0000000000000401 R09: 0000300000000000
[  437.431003][T10254] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  437.431016][T10254] R13: 00007f55f6c16038 R14: 00007f55f6c15fa0 R15: 00007ffc0795b718
[  437.431044][T10254]  </TASK>
[  438.082962][T10263] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  438.736273][T10269] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  438.940209][T10280] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  440.138640][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[  440.156696][ T1314] ieee802154 phy1 wpan1: encryption failed: -22
[  440.340058][T10312] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 5 with max blocks 3 with error 117
[  440.513940][T10312] EXT4-fs (sda1): This should not happen!! Data will be lost
[  440.513940][T10312] 
[  441.431445][T10337] FAULT_INJECTION: forcing a failure.
[  441.431445][T10337] name failslab, interval 1, probability 0, space 0, times 0
[  441.511585][T10337] CPU: 0 UID: 0 PID: 10337 Comm: syz.2.1011 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  441.511627][T10337] Tainted: [L]=SOFTLOCKUP
[  441.511637][T10337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  441.511652][T10337] Call Trace:
[  441.511661][T10337]  <TASK>
[  441.511671][T10337]  dump_stack_lvl+0x100/0x190
[  441.511705][T10337]  should_fail_ex.cold+0x5/0xa
[  441.511741][T10337]  should_failslab+0xc2/0x120
[  441.511773][T10337]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  441.511816][T10337]  ? vm_area_alloc+0x1f/0x160
[  441.511854][T10337]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  441.511908][T10337]  vm_area_alloc+0x1f/0x160
[  441.511938][T10337]  __mmap_region+0x104d/0x2da0
[  441.511984][T10337]  ? __pfx___mmap_region+0x10/0x10
[  441.512022][T10337]  ? find_held_lock+0x2b/0x80
[  441.512049][T10337]  ? process_measurement+0x4c8/0x2350
[  441.512082][T10337]  ? process_measurement+0x4c8/0x2350
[  441.512126][T10337]  ? process_measurement+0x1f4/0x2350
[  441.512162][T10337]  ? tomoyo_check_open_permission+0x1db/0x3c0
[  441.512185][T10337]  ? tomoyo_check_open_permission+0x1db/0x3c0
[  441.512241][T10337]  ? __lock_acquire+0x4a5/0x2630
[  441.512275][T10337]  ? find_held_lock+0x2b/0x80
[  441.512304][T10337]  ? is_bpf_text_address+0x8a/0x1a0
[  441.512379][T10337]  mmap_region+0x35d/0x620
[  441.512400][T10337]  ? rcu_is_watching+0x12/0xc0
[  441.512428][T10337]  ? __pfx_mmap_region+0x10/0x10
[  441.512452][T10337]  ? cap_mmap_addr+0x4b/0x120
[  441.512485][T10337]  ? bpf_lsm_mmap_addr+0x9/0x30
[  441.512506][T10337]  ? security_mmap_addr+0x71/0x1e0
[  441.512533][T10337]  ? __get_unmapped_area+0x255/0x3e0
[  441.512565][T10337]  do_mmap+0xc63/0x12f0
[  441.512597][T10337]  ? __pfx_do_mmap+0x10/0x10
[  441.512624][T10337]  ? __pfx_down_write_killable+0x10/0x10
[  441.512653][T10337]  vm_mmap_pgoff+0x29e/0x470
[  441.512687][T10337]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  441.512716][T10337]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  441.512752][T10337]  ? __fget_files+0x215/0x3d0
[  441.512780][T10337]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  441.512820][T10337]  ksys_mmap_pgoff+0xe4/0x610
[  441.512851][T10337]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  441.512876][T10337]  ? fput+0x79/0x100
[  441.512906][T10337]  ? ksys_write+0x1ac/0x250
[  441.512931][T10337]  ? __pfx_ksys_write+0x10/0x10
[  441.512964][T10337]  __x64_sys_mmap+0x125/0x190
[  441.512992][T10337]  do_syscall_64+0x10b/0xf80
[  441.513026][T10337]  ? clear_bhb_loop+0x40/0x90
[  441.513053][T10337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.513075][T10337] RIP: 0033:0x7f855a99ce59
[  441.513093][T10337] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  441.513115][T10337] RSP: 002b:00007f855b7db028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  441.513135][T10337] RAX: ffffffffffffffda RBX: 00007f855ac15fa0 RCX: 00007f855a99ce59
[  441.513150][T10337] RDX: ffffffffffffffff RSI: 0000000000020009 RDI: 0000000000000000
[  441.513163][T10337] RBP: 00007f855b7db090 R08: 0000000000000401 R09: 0000000000008000
[  441.513176][T10337] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001
[  441.513189][T10337] R13: 00007f855ac16038 R14: 00007f855ac15fa0 R15: 00007ffd1ab3e808
[  441.513217][T10337]  </TASK>
[  443.414085][T10368] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1008'.
[  444.088981][T10384] FAULT_INJECTION: forcing a failure.
[  444.088981][T10384] name failslab, interval 1, probability 0, space 0, times 0
[  444.215944][T10384] CPU: 0 UID: 0 PID: 10384 Comm: syz.3.1012 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  444.215983][T10384] Tainted: [L]=SOFTLOCKUP
[  444.215991][T10384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  444.216006][T10384] Call Trace:
[  444.216013][T10384]  <TASK>
[  444.216022][T10384]  dump_stack_lvl+0x100/0x190
[  444.216052][T10384]  should_fail_ex.cold+0x5/0xa
[  444.216101][T10384]  should_failslab+0xc2/0x120
[  444.216130][T10384]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  444.216171][T10384]  ? __d_alloc+0x34/0xa40
[  444.216211][T10384]  __d_alloc+0x34/0xa40
[  444.216247][T10384]  d_alloc+0x4a/0x1e0
[  444.216282][T10384]  lookup_one_qstr_excl+0x171/0x250
[  444.216323][T10384]  start_dirop+0x59/0xb0
[  444.216363][T10384]  simple_start_creating+0xf9/0x110
[  444.216393][T10384]  ? __pfx_simple_start_creating+0x10/0x10
[  444.216422][T10384]  ? mntput+0x70/0xa0
[  444.216447][T10384]  ? simple_pin_fs+0xa3/0x190
[  444.216473][T10384]  debugfs_start_creating.part.0+0x82/0x170
[  444.216511][T10384]  __debugfs_create_file+0xb3/0x4f0
[  444.216552][T10384]  debugfs_create_file_full+0x41/0x60
[  444.216592][T10384]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  444.216622][T10384]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  444.216652][T10384]  ? ida_alloc_range+0x70d/0x830
[  444.216711][T10384]  ? lockdep_init_map_type+0x5c/0x250
[  444.216747][T10384]  preinit_net.part.0+0x252/0x920
[  444.216778][T10384]  copy_net_ns+0x339/0x7c0
[  444.216811][T10384]  create_new_namespaces+0x3ea/0xac0
[  444.216850][T10384]  unshare_nsproxy_namespaces+0xf2/0x220
[  444.216884][T10384]  ksys_unshare+0x438/0xab0
[  444.216921][T10384]  ? __pfx_ksys_unshare+0x10/0x10
[  444.216955][T10384]  ? xfd_validate_state+0x129/0x190
[  444.216978][T10384]  ? ksys_write+0x1ac/0x250
[  444.217013][T10384]  __x64_sys_unshare+0x31/0x40
[  444.217048][T10384]  do_syscall_64+0x10b/0xf80
[  444.217083][T10384]  ? clear_bhb_loop+0x40/0x90
[  444.217111][T10384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.217135][T10384] RIP: 0033:0x7f55f699ce59
[  444.217153][T10384] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  444.217176][T10384] RSP: 002b:00007f55f7860028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  444.217198][T10384] RAX: ffffffffffffffda RBX: 00007f55f6c16090 RCX: 00007f55f699ce59
[  444.217218][T10384] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  444.217232][T10384] RBP: 00007f55f6a32d6f R08: 0000000000000000 R09: 0000000000000000
[  444.217246][T10384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  444.217260][T10384] R13: 00007f55f6c16128 R14: 00007f55f6c16090 R15: 00007ffc0795b718
[  444.217290][T10384]  </TASK>
[  445.610271][T10364] Process accounting paused
[  450.384043][T10468] bond0: option slaves: interface -��]���=,D�on?�I|�a �CB does not exist!
[  450.527280][   T30] audit: type=1807 audit(5529350915.307:7): UNKNOWN=0"�]$|�1j�0B|d���ӉO��+��/��x����WӦ��^��gq%Ḧr�O� res=0
[  450.568250][T10465] ima: policy update failed
[  450.589047][   T30] audit: type=1802 audit(5529350915.337:8): pid=10467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.1029" res=0 errno=0
[  450.700167][   T30] audit: type=1802 audit(5529350915.387:9): pid=10465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1029" res=0 errno=0
[  451.525171][T10494] Process accounting resumed
[  451.568205][   T30] audit: type=1804 audit(5529350916.337:10): pid=10501 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1036" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  452.011980][T10504] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  452.275903][T10515] ubi: mtd0 is already attached to ubi0
[  452.352272][T10518] ubi0: detaching mtd0
[  452.547675][T10518] ubi0: mtd0 is detached
[  452.763233][T10516] vivid-008: =================  START STATUS  =================
[  452.872384][T10516] vivid-008: ==================  END STATUS  ==================
[  455.128024][T10568] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1053'.
[  455.277770][T10569] Process accounting resumed
[  456.113016][T10589] netlink: 112 bytes leftover after parsing attributes in process `syz.2.1058'.
[  456.532312][T10604] ==================================================================
[  456.540456][T10604] BUG: KASAN: slab-out-of-bounds in cache_seq_start_rcu+0x3fe/0x420
[  456.548448][T10604] Read of size 8 at addr ffff88802ae97800 by task syz.0.1060/10604
[  456.556340][T10604] 
[  456.558681][T10604] CPU: 0 UID: 0 PID: 10604 Comm: syz.0.1060 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  456.558720][T10604] Tainted: [L]=SOFTLOCKUP
[  456.558729][T10604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  456.558743][T10604] Call Trace:
[  456.558752][T10604]  <TASK>
[  456.558762][T10604]  dump_stack_lvl+0x100/0x190
[  456.558789][T10604]  print_report+0x13d/0x4b0
[  456.558822][T10604]  ? __virt_addr_valid+0x239/0x430
[  456.558860][T10604]  ? cache_seq_start_rcu+0x3fe/0x420
[  456.558882][T10604]  kasan_report+0xdf/0x1d0
[  456.558909][T10604]  ? cache_seq_start_rcu+0x3fe/0x420
[  456.558934][T10604]  cache_seq_start_rcu+0x3fe/0x420
[  456.558959][T10604]  seq_read_iter+0x2c1/0x1270
[  456.558990][T10604]  seq_read+0x33b/0x4c0
[  456.559014][T10604]  ? __pfx_seq_read+0x10/0x10
[  456.559047][T10604]  ? __pfx_seq_read+0x10/0x10
[  456.559072][T10604]  proc_reg_read+0x240/0x330
[  456.559099][T10604]  ? __pfx_proc_reg_read+0x10/0x10
[  456.559126][T10604]  vfs_read+0x1e4/0xb30
[  456.559153][T10604]  ? __pfx_vfs_read+0x10/0x10
[  456.559177][T10604]  ? find_held_lock+0x2b/0x80
[  456.559207][T10604]  ? __fget_files+0x215/0x3d0
[  456.559233][T10604]  ? __fget_files+0x215/0x3d0
[  456.559262][T10604]  ? __fget_files+0x21f/0x3d0
[  456.559292][T10604]  __x64_sys_pread64+0x1eb/0x250
[  456.559320][T10604]  ? __pfx___x64_sys_pread64+0x10/0x10
[  456.559349][T10604]  ? rcu_is_watching+0x12/0xc0
[  456.559379][T10604]  do_syscall_64+0x10b/0xf80
[  456.559414][T10604]  ? clear_bhb_loop+0x40/0x90
[  456.559440][T10604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.559463][T10604] RIP: 0033:0x7f5e6d99ce59
[  456.559482][T10604] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  456.559505][T10604] RSP: 002b:00007f5e6bb8b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  456.559527][T10604] RAX: ffffffffffffffda RBX: 00007f5e6dc16270 RCX: 00007f5e6d99ce59
[  456.559543][T10604] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 000000000000000c
[  456.559557][T10604] RBP: 00007f5e6da32d6f R08: 0000000000000000 R09: 0000000000000000
[  456.559572][T10604] R10: 0000008800000000 R11: 0000000000000246 R12: 0000000000000000
[  456.559586][T10604] R13: 00007f5e6dc16308 R14: 00007f5e6dc16270 R15: 00007ffee1ebaec8
[  456.559609][T10604]  </TASK>
[  456.559616][T10604] 
[  456.788711][T10604] Allocated by task 5632:
[  456.793048][T10604]  kasan_save_stack+0x30/0x50
[  456.797737][T10604]  kasan_save_track+0x14/0x30
[  456.802449][T10604]  __kasan_kmalloc+0xaa/0xb0
[  456.807070][T10604]  __kmalloc_noprof+0x301/0x850
[  456.811928][T10604]  cache_create_net+0xa2/0x1f0
[  456.816720][T10604]  nfsd_export_init+0x62/0x250
[  456.821499][T10604]  nfsd_net_init+0x69/0x3e0
[  456.826023][T10604]  ops_init+0x1e2/0x5f0
[  456.830188][T10604]  setup_net+0x118/0x3a0
[  456.834441][T10604]  copy_net_ns+0x46f/0x7c0
[  456.838869][T10604]  create_new_namespaces+0x3ea/0xac0
[  456.844169][T10604]  unshare_nsproxy_namespaces+0xf2/0x220
[  456.849836][T10604]  ksys_unshare+0x438/0xab0
[  456.854372][T10604]  __x64_sys_unshare+0x31/0x40
[  456.859159][T10604]  do_syscall_64+0x10b/0xf80
[  456.863771][T10604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.869673][T10604] 
[  456.871995][T10604] The buggy address belongs to the object at ffff88802ae97000
[  456.871995][T10604]  which belongs to the cache kmalloc-2k of size 2048
[  456.886050][T10604] The buggy address is located 0 bytes to the right of
[  456.886050][T10604]  allocated 2048-byte region [ffff88802ae97000, ffff88802ae97800)
[  456.900667][T10604] 
[  456.903006][T10604] The buggy address belongs to the physical page:
[  456.909419][T10604] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2ae90
[  456.918186][T10604] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  456.926697][T10604] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  456.934273][T10604] page_type: f5(slab)
[  456.938285][T10604] raw: 00fff00000000040 ffff88813fe2f000 dead000000000100 dead000000000122
[  456.946886][T10604] raw: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000
[  456.955478][T10604] head: 00fff00000000040 ffff88813fe2f000 dead000000000100 dead000000000122
[  456.964160][T10604] head: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000
[  456.972999][T10604] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff
[  456.981694][T10604] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  456.990375][T10604] page dumped because: kasan: bad access detected
[  456.996801][T10604] page_owner tracks the page as allocated
[  457.002516][T10604] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5632, tgid 5632 (syz-executor), ts 96735358289, free_ts 96720501435
[  457.023887][T10604]  post_alloc_hook+0x153/0x170
[  457.028683][T10604]  get_page_from_freelist+0x11a6/0x33b0
[  457.034250][T10604]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  457.040168][T10604]  new_slab+0xa6/0x6c0
[  457.044264][T10604]  refill_objects+0x277/0x420
[  457.049100][T10604]  __pcs_replace_empty_main+0x375/0x650
[  457.054696][T10604]  __kmalloc_noprof+0x688/0x850
[  457.059571][T10604]  sk_prot_alloc+0x10b/0x2a0
[  457.064183][T10604]  sk_alloc+0x36/0xe80
[  457.068289][T10604]  __netlink_create+0x5e/0x2c0
[  457.073063][T10604]  __netlink_kernel_create+0xed/0x750
[  457.078461][T10604]  genl_pernet_init+0xbd/0x160
[  457.083263][T10604]  ops_init+0x1e2/0x5f0
[  457.087444][T10604]  setup_net+0x118/0x3a0
[  457.091713][T10604]  copy_net_ns+0x46f/0x7c0
[  457.096147][T10604]  create_new_namespaces+0x3ea/0xac0
[  457.101449][T10604] page last free pid 5676 tgid 5676 stack trace:
[  457.107781][T10604]  __free_frozen_pages+0x747/0x1040
[  457.113001][T10604]  qlist_free_all+0x47/0xf0
[  457.117511][T10604]  kasan_quarantine_reduce+0x1a0/0x1f0
[  457.122985][T10604]  __kasan_slab_alloc+0x69/0x90
[  457.127852][T10604]  kmem_cache_alloc_noprof+0x241/0x6e0
[  457.133337][T10604]  vm_area_alloc+0x1f/0x160
[  457.137964][T10604]  __mmap_region+0x104d/0x2da0
[  457.142749][T10604]  mmap_region+0x35d/0x620
[  457.147168][T10604]  do_mmap+0xc63/0x12f0
[  457.151335][T10604]  vm_mmap_pgoff+0x29e/0x470
[  457.155942][T10604]  vm_mmap+0x8e/0xc0
[  457.159867][T10604]  elf_load+0x46e/0x720
[  457.164059][T10604]  load_elf_binary+0x14b9/0x51b0
[  457.169018][T10604]  bprm_execve+0x8f5/0x1740
[  457.173525][T10604]  kernel_execve+0x31e/0x3a0
[  457.178119][T10604]  call_usermodehelper_exec_async+0x239/0x4b0
[  457.184208][T10604] 
[  457.186557][T10604] Memory state around the buggy address:
[  457.192206][T10604]  ffff88802ae97700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.200272][T10604]  ffff88802ae97780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  457.208336][T10604] >ffff88802ae97800: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  457.216399][T10604]                    ^
[  457.220483][T10604]  ffff88802ae97880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  457.228549][T10604]  ffff88802ae97900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  457.236620][T10604] ==================================================================
[  459.354874][T10604] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  459.362132][T10604] CPU: 0 UID: 0 PID: 10604 Comm: syz.0.1060 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  459.373085][T10604] Tainted: [L]=SOFTLOCKUP
[  459.377408][T10604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  459.387489][T10604] Call Trace:
[  459.390799][T10604]  <TASK>
[  459.393736][T10604]  dump_stack_lvl+0x100/0x190
[  459.398426][T10604]  vpanic+0x552/0x970
[  459.403042][T10604]  ? __pfx_vpanic+0x10/0x10
[  459.407568][T10604]  ? mark_held_locks+0x40/0x70
[  459.412343][T10604]  ? cache_seq_start_rcu+0x3fe/0x420
[  459.417638][T10604]  panic+0xd1/0xe0
[  459.421374][T10604]  ? __pfx_panic+0x10/0x10
[  459.425802][T10604]  ? cache_seq_start_rcu+0x3fe/0x420
[  459.431096][T10604]  ? preempt_schedule_common+0x42/0xc0
[  459.436577][T10604]  ? check_panic_on_warn+0x1f/0x90
[  459.441702][T10604]  check_panic_on_warn.cold+0x19/0x34
[  459.447084][T10604]  end_report.part.0+0x3a/0x90
[  459.451866][T10604]  kasan_report.cold+0xe/0x18
[  459.456561][T10604]  ? cache_seq_start_rcu+0x3fe/0x420
[  459.461866][T10604]  cache_seq_start_rcu+0x3fe/0x420
[  459.466992][T10604]  seq_read_iter+0x2c1/0x1270
[  459.471704][T10604]  seq_read+0x33b/0x4c0
[  459.475872][T10604]  ? __pfx_seq_read+0x10/0x10
[  459.480568][T10604]  ? __pfx_seq_read+0x10/0x10
[  459.485253][T10604]  proc_reg_read+0x240/0x330
[  459.489855][T10604]  ? __pfx_proc_reg_read+0x10/0x10
[  459.494995][T10604]  vfs_read+0x1e4/0xb30
[  459.499190][T10604]  ? __pfx_vfs_read+0x10/0x10
[  459.503886][T10604]  ? find_held_lock+0x2b/0x80
[  459.508590][T10604]  ? __fget_files+0x215/0x3d0
[  459.513292][T10604]  ? __fget_files+0x215/0x3d0
[  459.517992][T10604]  ? __fget_files+0x21f/0x3d0
[  459.522778][T10604]  __x64_sys_pread64+0x1eb/0x250
[  459.527740][T10604]  ? __pfx___x64_sys_pread64+0x10/0x10
[  459.533216][T10604]  ? rcu_is_watching+0x12/0xc0
[  459.538005][T10604]  do_syscall_64+0x10b/0xf80
[  459.542625][T10604]  ? clear_bhb_loop+0x40/0x90
[  459.547314][T10604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.553215][T10604] RIP: 0033:0x7f5e6d99ce59
[  459.557638][T10604] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  459.577257][T10604] RSP: 002b:00007f5e6bb8b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  459.585682][T10604] RAX: ffffffffffffffda RBX: 00007f5e6dc16270 RCX: 00007f5e6d99ce59
[  459.593661][T10604] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 000000000000000c
[  459.601650][T10604] RBP: 00007f5e6da32d6f R08: 0000000000000000 R09: 0000000000000000
[  459.609627][T10604] R10: 0000008800000000 R11: 0000000000000246 R12: 0000000000000000
[  459.620174][T10604] R13: 00007f5e6dc16308 R14: 00007f5e6dc16270 R15: 00007ffee1ebaec8
[  459.628172][T10604]  </TASK>
[  459.631263][T10604] Kernel Offset: disabled
[  459.635608][T10604] Rebooting in 86400 seconds..