last executing test programs:

8m23.938474467s ago: executing program 3 (id=3663):
r0 = socket(0x2, 0x801, 0x6)
mmap$auto(0x0, 0x8, 0xe2, 0xeb1, 0x69a5, 0xa800000000000000)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x0)
r4 = socket(0xa, 0x3, 0xff)
connect$auto(r4, &(0x7f00000018c0)=@generic={0xa}, 0x55)
write$auto_proc_mem_operations_base(r3, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="13002ebd7000dddbdf250200000008000300", @ANYRES32=r5, @ANYBLOB="05003d005c"], 0x24}, 0x1, 0x0, 0x0, 0x4c0d4}, 0x20040894)
connect$auto(0x3, &(0x7f0000000080)=@xdp={0x2c, 0x1, r5, 0x9}, 0x3)
r6 = socket(0x1d, 0x2, 0x6)
flistxattr$auto(r6, 0x0, 0x95)
setsockopt$auto(r0, 0x1, 0x12, 0x0, 0xa4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/misc/hw_random/rng_current\x00', 0x129102, 0x0)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8)
r7 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x0, 0x0)
ioctl$auto(r7, 0x64ce, r7)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x800008000)
r8 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
r9 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
socketpair$auto(0x1f, 0x5, 0x8000000000000000, 0x0)
ioctl$auto_TCFLSH2(r9, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r8, 0x5423, 0x0)
ioctl$auto(r8, 0x89f2, r8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x51c, 0x8000)
socket(0xa, 0x2, 0x73)

8m22.48462277s ago: executing program 0 (id=3668):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
dup$auto(0xffffffffffffffff)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r0, 0x400, 0x1)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video39\x00', 0x800, 0x0)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0)
execve$auto(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/250, 0xfa)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, &(0x7f0000000100)={"fda256c4", 0x3, 0x2, 0x4, 0x9b4, 0x9, "0800aafc241cd010c7543bfbca2ce1", "0200", '\x00\x00 \x00', "2ff43123", ['\x00', "f8ff0b00fbf2ffff0000b401", "0004154db00b0004000400", "5fe10eedab02ea39549a4892"]})
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
socket(0xa, 0x801, 0x84)
getrlimit$auto(0x98, &(0x7f0000000000)={0x6, 0x200})
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

8m21.794269779s ago: executing program 3 (id=3670):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/pcm0c/sub1/sw_params\x00', 0x208000, 0x0)
epoll_ctl$auto_EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyua\x00', 0x20804, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
getgroups$auto(0xeda, 0x0)
madvise$auto(0x110c230000, 0x1, 0xa)
ioctl$auto_USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, 0x0)
read$auto_proc_pid_set_timerslack_ns_operations_base(r0, 0x0, 0x0)
connect$auto(0xffffffffffffffff, 0x0, 0x9)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r1, 0xc1105511, 0x0)
msync$auto(0x110c230000, 0x200001, 0x6)

8m21.349194378s ago: executing program 0 (id=3673):
r0 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x6)
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x3, @rand_addr=0x64010100}, 0x4)
setsockopt$auto(0x3, 0x0, 0x2, 0x0, 0x3)
read$auto_stats_fops_(0xffffffffffffffff, &(0x7f0000000840)=""/4096, 0x1000)
write$auto(r0, &(0x7f0000000080)='/dev/loop6\x00', 0x800000000000006)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x7, 0xb}, 0x6}, 0x8, 0x2)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x18dd01, 0x0)
open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x9}, 0x3)
r1 = socket(0x11, 0x3, 0x9)
mmap$auto(0x0, 0xf4, 0xdf, 0xeb1, 0x69a5, 0xa800000000000000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
setreuid$auto(0x7, 0x0)
socket(0x2, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x5, 0x100000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r6=>0x0})
sendmsg$auto_NET_SHAPER_CMD_DELETE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="090027bd7000fbdbdf250200000008000800", @ANYRES32=r6, @ANYBLOB="0c0001800800010002"], 0x28}, 0x1, 0x0, 0x0, 0x44000}, 0xc050)
bpf$auto_BPF_ITER_CREATE(0x21, &(0x7f0000000180)=@bpf_attr_0={0x5900, 0xb919, 0x4, 0xc, 0x5, 0xffffffffffffffff, 0x1ff, "e5c72d1af9f0399cd542422f19e4d629", r6, r1, 0x2, 0x5, 0x4, 0xdd7b, r2}, 0x200)
epoll_ctl$auto(0x5, 0xa, r3, 0x0)
sendmmsg$auto(r1, &(0x7f0000000400)={{0x0, 0x5aa, &(0x7f0000000100)={&(0x7f0000000440)="661b0cbd", 0x49}, 0x1, &(0x7f0000000200), 0x5, 0x3}, 0x5}, 0x2, 0x100)
mmap$auto(0x0, 0x40009, 0x6, 0x9b72, 0x7, 0x68000)
bpf$auto(0x0, &(0x7f0000000780)=@link_detach={r0}, 0xa3)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)

8m20.904232883s ago: executing program 0 (id=3674):
r0 = memfd_secret$auto(0x0)
socket(0x1a, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40201, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000180), 0x60880, 0x0)
close_range$auto(r1, r0, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
pipe$auto(0x0)
dup2$auto(0x5, 0x4)
vmsplice$auto(0x4, &(0x7f0000000040)={0x0, 0x80000000002}, 0x3, 0x4)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x40080, 0x0)
mmap$auto(0x0, 0x4000002, 0xfffffffffffffe01, 0x8051, 0x3, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
socket(0x2b, 0x1, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mlock$auto(0x112, 0x80006)
mlockall$auto(0x800000000000005)
madvise$auto(0x0, 0x200007, 0x19)
write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000000)="4c91f2c388274610e12c861bb2bfd9", 0xf)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)

8m20.464792356s ago: executing program 3 (id=3677):
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffff6, 0x8000)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
getdents64$auto(r0, 0x0, 0x400)
clone$auto(0x100000020003b49, 0x80000000002, 0x0, 0x0, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x18, 0x401, 0x6)
r2 = io_uring_setup$auto(0x1, 0x0)
setsockopt$auto(0x3, 0x0, 0x2, 0x0, 0x3)
read$auto_stats_fops_(r2, &(0x7f0000000840)=""/4096, 0x1000)
mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22040, 0x75)
r3 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
io_uring_setup$auto(0x9, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r3, 0x403c6f2b, 0x0)
read$auto(r1, 0x0, 0x80)
write$auto(r1, &(0x7f0000000000)='/dev/loop6\x00', 0x6)
write$auto_fops_init_pkru_pkeys(r2, &(0x7f0000000280)="e7c2da8ba23469d9b78d2e257333bedaec957355b8c2c4c78f4a98e7180a2dfeddb935038a6350c625940925fc61f1b8b51df8f60e61c078ff39654003ba", 0x3e)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd0\x00', 0x18dd01, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x9}, 0x3)
r4 = socket(0x11, 0x3, 0x9)
sendmmsg$auto(r4, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000440)="661b0cbd4a", 0x49}, 0x1, &(0x7f0000000200), 0x5, 0x3}, 0x5}, 0x2, 0x100)
mmap$auto(0x0, 0x40009, 0x6, 0x9b72, 0x7, 0x28000)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)

8m19.616941593s ago: executing program 0 (id=3678):
memfd_secret$auto(0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
socket(0x1a, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
socket(0x2b, 0x1, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mlock$auto(0x112, 0x80006)
mlockall$auto(0x800000000000005)
madvise$auto(0x0, 0x200007, 0x19)
write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000000)="4c91f2c388274610e12c861bb2bfd9", 0xf)
close_range$auto(0x2, 0x8, 0x2000)
socket(0x2, 0x80002, 0x73)
r2 = socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(r2, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
write$auto(0xca, &(0x7f0000000000)='\x04>\x01\x01\x00\x00\x00\x00\x01_\x9e\x99:R\xcc\x96\b\'\x02\xb0\x93l\xeb\x87\r\b\x87\x14\xf8e6\x9c%\xb6\x9a\\S\xa2(Q\xcc', 0x7f)

8m18.436354428s ago: executing program 3 (id=3684):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/loginuid\x00', 0x309c02, 0xffff)
bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={0x2, 0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x6, 0x8001}, 0x101)

8m17.860438013s ago: executing program 0 (id=3686):
r0 = openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mmap$auto(0xffffffffffff8000, 0x40000a, 0xdf, 0x9b72, r0, 0x8001)
read$auto(0x3, 0x0, 0x80)
close_range$auto(r0, r0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mkdir$auto(0x0, 0x8001)
mount$auto(0x0, 0x0, 0x0, 0x3, 0x0)
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000040)=',\x00^\xa2\x02\x00\x05\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xee\x0f_o\xc0\xee?\xce\xa3\x04\x95Hq\xf4\x00\x00\x00\x00\x00\x00\x006\xe0\xb1d)X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2\xec\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a', 0x80000000000)
listen$auto(0x3, 0x81)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/nbd9/queue/iosched/read_expire\x00', 0x206a1, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)='-7', 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000000c0), r2)
pwrite64$auto(0xffffffffffffffff, 0x0, 0x2, 0xc)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x3c, r3, 0x1, 0x70bd2d, 0x25dfdbf9, {}, [@L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x58}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x8}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_FD={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x82000, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
ioctl$auto(0x3, 0x40505330, 0x38)
r4 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x0, 0x0)
ioctl$auto_tracing_buffers_fops_trace(r4, 0x5220, 0x0)
close_range$auto(0x2, 0x8, 0x0)

8m16.87915869s ago: executing program 0 (id=3688):
munmap$auto(0x200000008000, 0xffffffff)
r0 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000000500), 0x80, 0x0)
read$auto_ptdump_fops_(r0, &(0x7f0000000540)=""/87, 0x57)
set_mempolicy$auto(0x1, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080)

8m16.564496182s ago: executing program 3 (id=3689):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYRES64=r0, @ANYRES16=<r1=>0x0, @ANYRES32=r0], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc1)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES8=r1, @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x8800)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x2, &(0x7f0000000440)={0x0, 0xc4}, 0x1, 0x0, 0xdf09, 0x9}, 0x7}, 0xc, 0x0)
r2 = openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0)
r3 = socketpair$auto(0x1e, 0x5, 0x2, 0x0)
r4 = getpgid$auto(0x0)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000380)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x980b6853ea4f137c}, 0xc, &(0x7f0000000340)={&(0x7f0000000140)=ANY=[@ANYBLOB="e8010000", @ANYBLOB="10022dbd704187dbdf25050000009c", @ANYRES32=r4, @ANYBLOB="04008e800800", @ANYBLOB="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"], 0x1e8}, 0x1, 0x0, 0x0, 0x4000000}, 0x10)
mmap$auto(0x2, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8008)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket(0xa, 0x2, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/netfs/cookies\x00', 0x500, 0x0)
socketpair$auto(0x10000005, 0x0, 0x8000000000000000, 0x0)
close_range$auto(0xffffffffffffffff, r3, 0x4)
socket(0x1a, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r6, 0x4048aecb, 0x0)
timer_create$auto_CLOCK_BOOTTIME(0x7, &(0x7f0000000580)={@sival_ptr=&(0x7f0000000400)="79df9039fced6fed93bcb67e5d1541512c1b6b264861551495d12265ee5ee5c62e5a61f0f2", @inferred=r2, 0x5, @_tid=r4}, &(0x7f00000005c0)=0x1000003)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x11, 0x401, 0x30)
epoll_create$auto(0x3e)

8m15.199150223s ago: executing program 3 (id=3694):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
read$auto_ptdump_fops_(r1, &(0x7f00000000c0)=""/161, 0xa1)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mremap$auto(0x8000000000000001, 0x800, 0x3, 0x9e, 0xffefeffffffffffc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r3, 0x0, 0x40)
writev$auto(r2, &(0x7f0000000240)={0x0, 0x7}, 0x3)
shmctl$auto_SHM_UNLOCK(0x101, 0xc, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x3)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/input/event0\x00', 0xe0000, 0x0)
r4 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/bluetooth/hci1/rfkill6\x00', 0x200, 0x0)
ioctl$auto_BTRFS_IOC_SNAP_CREATE(r4, 0x50009401, &(0x7f0000000280)={@raw=0x8, "b583c743c942bd0b2010bfde45e823a43f9f1d47a6fe5e6a0b9fef799144be120fc5d8feb5ba1e0fed4b57bda89ca8366e424976852cd77b78eed9671ad36f067897080de7517733d597acbb793edf147f1be05d6f5c8d3a04eaad2448e671ee0c2d3236002f797177b295d1e3d3799a692ed8374756d8e05f3442a37af2a0571fd72208c05bdb0ec07c9a9300dc7ea922d869d15424f6de3da3348ea9218fea077512255a29e8d3bcf21c0b7f6038aabcb2f742ffc262b4ab29b6d8deb9c6fa86b351b3f3ca72a5309aae4da405321aadd4a81496f8cdf1b48158c5af0ce9d892a549ed3603ffa5ed51e83b5f9f8436c597fa5224063644368815d7a230ffb11217762ae716ccea1a97f901fa7319747d3c05a22aad9bc8150ac3738b9b5275b2818d107663a6c3a96f5332e25106cb809092784871f91d44d555e826825fb16e798374405837bff0bbb046ac6357db1a1fe754e97ab7ce571662a101020fe5e526837415807ba3cb410ec0ccb730a42e1a3dbc7feddf7afb6e9d0776da19bec9ce7b9941985980721463297c13ffc521e410eae9dff451c39313cb41af6f057b80a715c38094559f040545f8906c486dfe9610421387cc342bff82585e0f7ca7b6948301c689ed34d4806d9454130a82dbe4d2ccfc3875fd0badf2f1d7df584ced897860f5dffe139e570fe5a926dc12c60a2230d6829aa16916d489a0b92e374d28c347a8235db6f11b7f33e9e1e52545b2965f6372708d6e1c43a3f7c0de1638e7186277bda98d965f16bb8caf01ceca45ede25d8e5294d3ffadbb37d373d42d53e3cd05b3a6e1405613eae7d38a32c06eb833e55bdc15ba09b7ddfb320c5ee263b196a685d8df17f4a78925a64f85036d297373ea8643bbbaa0048bc93f6a0618f2779dfcccc5522c45a31e108701124400c51914d26e4b7b7dfdeb19775d29f2f83c6013c9e8704f8d0920c3ef215cdd177250ba98404c284d2c697f7875a034973fbc84ff7ecafce255d2f978ab7feedcdad9a6e8217777fa5f34ac32e2a4e4a52da70bf9f1989eaece6f800131b5bfdd9c56d41da2472c013075932e5124ec654b18a93e8cbd759535c14a75e02f902886a95cce866dc9fa39fae3689876f9a660d109a20b3bbbc048d5116db3be4c7e113068722ae55c0e22a56442a618b87bf0e1027ba47d0f5f4d3f6e990bcf7f78ea034aea2ff617f944e998e6a1a8eb56cfffcf75740ebc032af66fb04964858d5f316f9ae2a28a8043dc9a59d01213e48d193793f697ee9cf10b564acffd7f616470ba41a11b3a53c803d07e0184868459fcd9048e1f9128e154c73497447edb72f32f6be04b12508f1906a915a5d0f397edf485da4f0df4055c0ead92b35db4841f367f6e1cd173bd6f90c24626183074345918fc85a1f30e5ffacd17f28fcd8521f9ce8d0563df5d3e75fc81d9cb825e31ac7321a78c25929cbd012ce8352f78d3e5de698b40cef4443ef12c75b291ee0f9791a206da5e4e4c0466447d48c5a2994606aeb82dac98272e5e5b3c37ac74f02f7c1082f442b849817708b13ae851727ba3e5ba5199ff066ea5e73393c6200d6100db4b764be226cfbd2b543e4aba42705de490525ffaebd585e8317de7051cdbfc3141b8460cf3de692415fff6411b6ccc67f544a9d4c57f2b7723e04c6717179c81f82f253b9c8e023f6f3dba6ab4d9eebf97d66f2313612616faf61582f7cb0e82d4f39b7636688bac83cf43668174374194ef117fcf9c78b4aba6d45181ebfcd29a617592cdf691d48b27de498806c86378029edf27d757f709eacb2e98ebe23fdc926d00212d97585ff03dd218caecc049f5b98f111433a1617f74ebfdd264a8666e96a0edbcea711a518d6b94f7b80819013a92fa7fe60b2823766dad92389f4c67fc1c19285f141b1ad403480dd1c33d8425b74c78d39cf5168601fab108615a50865a497b4ed5775b19707ddbe76ea545af45c68e683424fb9f1cc3e57b989f509a340c59884435af8e186e8f06e28d50dbeb71358581dc91efd743971049765491e8425f8afaf79cca50b101469299f1730fd3822faa2ac60dba3a2a4dfc7b9b016693c4aa8a9b885547f192adb10d5436781090389ec0675d5c9e146bce2f31e01dd6196b75330d0b450cc28d180dee2a79624cf7165b0f80db228d95e7f5a0e4f3a65b6e9b75e55cbf5d04cb2d512d228607ca433c2953872bc69ea43bcd3efa169dbea7e7ff150493227d40807ad92b0530af03108a4bc6c1c5adf43daa0d0f998cc796d89af6a897667c1f3d022cc43a9215aa38df9d7805afbb2e79506216c1754da4bbd1248e59e7d81a93a12844ca993ba7c488094a28070f7eee480393fb4a2cd2e57cea9e3863ca9334c64ce8c2626bb5c47be1237e47ea9f88d7d008246ce93e36bbc5e26253e77ccb9a0f539857e846bd8dbdbcd8b1b2dd9108e4d499de91ae84e974804f2a970edd4fda96ed3c18acdb07838d7222eec4ef6a536129567ab44e9eb6a878c86a7b6013d806a69c01918f557f74225ca84486473229c607648b6754157a35b5114c2cbe65c4f755cc7269928a67548a6b87a020eda359ee9377c70b6dba089ffedf392bdfbdc9b21572528ed367857f1f4fdbe2f06cf9fcc2848e3869944fc78e116c4049ec3770e3bea0c36624418249bbfccf702de668296e0a281c7090d09c7b786e0af127d6a8ef063a46108b2c4b81800237c9328783adc2151574de20c01898f083958e7a3037fa08f2574bcb9b69e09bc36902ebc27fd0de50e56c8b19addd0dfc87559c4085344d42c7dd135b49d71c206a9d13a5bebd19a72e3ab4992082d7b82a9a2846c5d37f88914435a630ae2ee90ea246c45de28b959bfb0129d05240453ed35fdbfb90e08e8eec10d9b4f2b5a5c1490526fc882b20d02624a33bde78bb41fc48370fb62e61cfb460020dc7c7bfcc57bc00570ef2e7d159e7381d94f55765b4e92731372f68c9581d0bcd0f6b0bfc94e21e8aa65f991974480d375cc90c69ce46f3d9e09eb845b7dd5d75070d243c9392de7f34851f2581454e760d29f2f634b0ac65975db047372f75d848b668208ee67d90ee1c3eda33096dcbfc5a2e3df9e18a93370ddcd63a8c14fec2a5ff1c22551109d1f1b18abec8ebd86c0d60fdfb1796fa5e6e57569527ba92fe3f23befca241fb5658db9baeb62eefeb0060eb03d9bb6a46c764cf3549328869856ab374c6fa2c42bd1dc1f40ec9dbf7fa17ac710dfc89d9c3af13e3e6a1b1a722486aabbd9d12b756c3f0e1d48da44e02093d18314be48946e8f881d8013544c34c55208ef6bbf82bafb1fa4c6ee05da25dad087069db5f927f5af447ac2887e75780bc2e9e76d0edd8e192c3996ce1e871b2989573addf25d4bb761c8d937f8ff2d27033d25b2df519eefac82a89346cd21c9260054811beed74b0edccee97facd4be5c82874710517b8e7360fae03277431d2a359d01ec284c459525848adecc62839bc6619cba0a22b9ec89d803e0b92368c0514b1cd3815f20d0784e7a8dc3b46662486a0237adfe82631a3320108314b94a59248369d6967c8f938aff122c9927286867e7f5c3c42eff661ca78ec1bf82ea5fdf5353515698c8f77a976ba641997338ccc6829a91b9ffc947ebfa3aa9d06eb42d15ff91da0043d1d64c06f6ca651bef009fe307423ad1bf9830cfcede67d6753c93b81bcf3e6a07d1c0f46b000f3cdce4b67f42d7b5b1d17fe68cc262adf98292f565e7bc5f26c778b2186a9bbb7be91fcd900f6fae019586b0b3ad1ef1aa742888a8ec5ce4efdd6f250f4392ad892b7133af990465be80a60e4ee6081350df960a3dace70d6f2031e1a0f240814f02dff30b7dbf80c6789b512b955956e2d9546b884e65908fb3ea48e634825c96b844837ec5d96375c7d91119ad26ff7138a1efed3c216179b09ece86928c0321235816475779c7035c53409205fc374fd1abd8c5c3276cf03f4247078083d4e40afcfe6e7bfd3317868e3b6d7b85f312e2eeb3ac07f3e43598e92bde261a74048e7992a3b95cb57322d0865215a6f7f0d2836d16200aa6cdfa3620977b062ac789496875942b001af7b741727f3220ef057a70f17081062fccfbf21b136d1e77dabe185194f5d997f10c68d2bc4c2ec03a31b42c2f978d2e14f9c2e588ff27e11633bb43940bf1abddd3394aea1419a416e16a5ba53848d071191473b6e1dafd483c94d7bbc61336f5fe5068cc1bc9e889e0d25047351159afb0845058bc6c84188c33cd173e021328472116080da85cfb3960724610e84044a158cdee6b8371f87fc23168baa4d264a0d135d9bfb638be25443e83ad1eec97e7220d048997fdb16e65e2f87d13f6c84332f02af954363f27c08fcd9cddab65f10c0f11e1f83b8ce51661aa8a56fe68c8f9aef2ef64cd3901e3694a35ec490e11f2b2eb4cdf6068ba8920da5efa0ceaa1b4e2570df08aa6ecacb9cc3ce407959f22e7b418a569bbcc0d0b832a80cf67b8e62cb4e3dbd2a4f0adba2ba539bb7e4d136fad21681dd0da14cb7e5a693cb655c991c3e0d59d2da9fbc702c266097daed7a45ae950f698cd50bd336afa1a506795d6e664eb5d903d928c940aecdabfa806cb047797b2f84780d1bfe536b6d05074316f5a66e0bca1352029fc2ddf825d5664a8a586c3de3ee8f976abdf78e642e03ed5f1cc5317f2bd6f286629d5145641c3866afec918b120b1fe14738787e912c7665b6c61522ce6b448890cc7d11129678277901c7ab296966931129584771ab926115320ed6cd242830bf4179d275f9c2af60088254f594ad31149389c5eb3f8bf229ca10c31805c58474f395f21a945763bf1fb87a55b18b6ff446a85d10cae6db72b88486f7804ff676029b883971c4728f86a5c47a46706d1285c8c049f391695223aa14de034c625286372e6fd3497feb86ee6862f9ff212ed6dc0cf2146d67bc8567109cec14e498ac7164272a943f4ecc60bb88f37727da2ede7188ac3072347c1e4bc73b0793d135bb0a345fd30873b7d1467e4c92c2ba80bb2bb983078c249adb5488a8e31bf8c5081fac6a710a0ff049fbcda69253b9d1fc364bf0ddf404378a9fb0167f71f6e13381c396b73c2df84fd95ea0de25aac351ef22721652ad48b55eb24dcb741715746dd44f924b9935b90af9e3b0d37ee68c86e6d294be13ecebd698decf7f20dd12fce6bb87247104e1f622478c97c3e177c8221c43eda622113482518a584aaba6b91d02e8055f2a87d5ec1128f5665c8e2a22289fbabf6317c4fa0ee9cf32a267e7ec78a85e5f58af53a7eba93c022030537d9444288796f4b833febccd62a82fcf3a6e55f8bd574127e0541fbcf18e27ffc7f379d2fd781b6b962aadcac29212b0a7827e47f41189c0977f20ad279c9a17a3519de06245927103ef79b922525aa8a5fe329c9b8d27b0605cdf93bd9ecb817d1ad0c0c0e8f3222497e7412165cc7da2fb38567033bc03adcc15d2dd64e73ac4da8c5eaa39c2622b613fa103a2e827566cfc6fbfeb2ba3ed4ab8886ba57aa370c1afae10cbb5e5e1eb691270cf2bf0a31e3843aaa577fde2b7bf16b7985ca4285c213eeb8727af6167d01d6340f28a5f9a44bcee6dcd3b9ee9e59b81a2f21864b063fe386d0155f91542e737e02e0424e5d700c341b70c58a840fd62bc675227786ad128701cc7586c6f1d2f98124ae7d4f7034840114a69be6db1140a063f9a2149c8b141dd39a7304b95be8c1761718c650858a23c95b10798c0508a525ca3"})
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

8m1.589780191s ago: executing program 32 (id=3688):
munmap$auto(0x200000008000, 0xffffffff)
r0 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000000500), 0x80, 0x0)
read$auto_ptdump_fops_(r0, &(0x7f0000000540)=""/87, 0x57)
set_mempolicy$auto(0x1, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080)

8m0.043910398s ago: executing program 33 (id=3694):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
read$auto_ptdump_fops_(r1, &(0x7f00000000c0)=""/161, 0xa1)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mremap$auto(0x8000000000000001, 0x800, 0x3, 0x9e, 0xffefeffffffffffc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r3, 0x0, 0x40)
writev$auto(r2, &(0x7f0000000240)={0x0, 0x7}, 0x3)
shmctl$auto_SHM_UNLOCK(0x101, 0xc, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x3)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/input/event0\x00', 0xe0000, 0x0)
r4 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/bluetooth/hci1/rfkill6\x00', 0x200, 0x0)
ioctl$auto_BTRFS_IOC_SNAP_CREATE(r4, 0x50009401, &(0x7f0000000280)={@raw=0x8, "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"})
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

10.458987521s ago: executing program 2 (id=5231):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/pcm0c/sub1/sw_params\x00', 0x208000, 0x0)
epoll_ctl$auto_EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyua\x00', 0x20804, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
getgroups$auto(0xeda, 0x0)
madvise$auto(0x110c230000, 0x1, 0xa)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r1, 0xc0185500, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.7/usb8/configuration\x00', 0x10b800, 0x0)
readv$auto(r2, &(0x7f0000000080)={0x0, 0x5}, 0x2)
read$auto_proc_pid_set_timerslack_ns_operations_base(r0, 0x0, 0x0)
connect$auto(0xffffffffffffffff, 0x0, 0x9)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r3, 0xc1105511, 0x0)
msync$auto(0x110c230000, 0x200001, 0x6)

9.366132418s ago: executing program 2 (id=5239):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x8300, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000240)=""/122, 0x7a)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x101202, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r2, 0x4c07, 0x0)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0xfffffffd, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
recvmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, 0x0, 0x73, 0x0, 0x0, 0x29}, 0x7}, 0x400003, 0x0)
ioctl$auto_RTC_PIE_ON(r0, 0x7005, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r4 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r4, r4, 0x0)
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
ioctl$auto(0xffffffffffffffff, 0xc10c5541, r5)

8.810209395s ago: executing program 2 (id=5244):
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
listen$auto(0x3, 0xfffffffe)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x4, 0xdf, 0x9b7b, 0x2, 0x3ff)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/nbd12\x00', 0x44003, 0x0)
write$auto_cpu_latency_qos_fops_qos(0xffffffffffffffff, &(0x7f00000000c0)="4d46f158ba101c8c2d9356700b866489eff04b4760b3539b045b1af49ea855e368af3d1e6e1f4357d9e208a8ed480f4eff72480ed222ec48dbb1c4c6d0fd8e8a7b798aa8066160cb78be83de9b691f6907f58b4f87e18d4d420de6c18f156d749715ddbf8127891d08247d8c919da0fbb26ace2399e1c632f1e2b0c8ffe8ce7dc7b80b98438f066bd662d0d89bd610fc61", 0x91)
r2 = getpid()
process_vm_readv$auto(r2, &(0x7f0000000080)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
ioctl$auto_BLKPG(r1, 0x1269, 0x300)
prctl$auto(0x1000000003b, 0x1, 0x4, 0xd73, 0x7)
madvise$auto(0xfffffffffffffffa, 0x9, 0x19)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/rpc/auth.rpcsec.init/flush\x00', 0xb4300, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xfc4f}, 0x1, 0x0, 0x0, 0x9}, 0x8}, 0x3, 0x0)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, r0)
r3 = socket(0x2, 0x80002, 0x73)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002dbd7000f6dbdf250100000008000a0008000000050007003b000000080009009c781e01060002000000000008001700", @ANYRES32=r3, @ANYBLOB="f02bc055b53915858938d58752c2adc92b18f3b1244c36340a924fe15625e54a57a1e9c680cad11c5e0bacb71a92849ee24c505c8c22c939d1ce25693ffd865c67cf4805e46d87e52c73a77f8a2aa3c82db30c7d17eb36585fb9ba61d518f12c1fd03cbabd337b53a42664d164f5b43d05af9030e473323bfbe222bae478302f3f6986db8df5d7d71bfd8063ca07340e1292cb05d8f03083158dff0a1adde1f73ce581988a7f129509f1767fde77109e7b857d63d66b94e36d147ba7176c"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon37\x00', 0x400000, 0x0)
socket(0x1d, 0x3, 0x1)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/ram4/queue/read_ahead_kb\x00', 0x40800, 0x0)
sendfile$auto(r6, r6, 0x0, 0x3)

7.598562221s ago: executing program 1 (id=5248):
unshare$auto(0x40000080)
bind$auto(0x3, 0x0, 0x7fff)
r0 = socket(0xa, 0x2, 0x0)
mmap$auto(0xc8, 0xe2, 0xfffffffffffffffd, 0xeb1, r0, 0x8003)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48010}, 0x20004800)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x300, &(0x7f0000000000), 0x3)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
sysfs$auto(0x2, 0x100000000000030, 0x0)
r1 = fsopen$auto(0x0, 0x1)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8402, 0x0)
mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0)
fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0)
gettid()
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x101202, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r2, 0x4c01, 0x0)

7.162998246s ago: executing program 4 (id=5250):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x1, 0x6)
setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x0, 0x0)
ioctl$auto(r1, 0x401070cd, 0x5)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip6gre0\x00'})
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x10008, 0x4000000000df, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(r2, 0x0, 0x7ffffff9, 0x70da, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r3 = clone$auto(0x1, 0x0, 0x0, 0x0, 0x42)
syz_clone3(&(0x7f0000000180)={0xa7102000, 0x0, 0x0, 0x0, {0x2a}, 0x0, 0x0, 0x0, &(0x7f0000000100)=[r3], 0x1}, 0x58)

5.525867771s ago: executing program 2 (id=5253):
kexec_load$auto(0x8, 0x8, &(0x7f0000000300)={@buf=0x0, 0x4, 0x4, 0x9}, 0x0) (async)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/sctp/remaddr\x00', 0x101d00, 0x0) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0)
r1 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0x70a82, 0x0)
write$auto_drm_edid_fops_drm_debugfs(r1, &(0x7f0000000580)="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", 0x4e00) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
acct$auto(&(0x7f0000000000)='/dev/dsp\x00') (async)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) (async)
shmctl$auto_SHM_UNLOCK(0x0, 0xc, 0x0)
close_range$auto(0x2, 0xa, 0x0) (async)
socket(0x10, 0x2, 0xc) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3) (async)
ioctl$auto_KVM_GET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x2ff, 0x2, 0x40001}]}) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/ptp/ptp0/n_vclocks\x00', 0x8502, 0x0) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/wlan1/mcast_solicit\x00', 0x2000, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp1\x00', 0x84800, 0x0)
write$auto_snd_pcm_oss_f_reg_pcm_oss(r4, &(0x7f0000000240), 0x0) (async)
io_uring_register$auto_IORING_REGISTER_PERSONALITY(r0, 0x9, &(0x7f00000001c0)="7e9d22a2fb5b424c2be7a8bf6ac94877342774", 0x68)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000340)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYBLOB="01002abd7000fcdbdf4400000005", @ANYRES32, @ANYBLOB], 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop6/queue/rq_affinity\x00', 0x121281, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000200)='5', 0x1)

5.494964475s ago: executing program 1 (id=5254):
sched_setaffinity$auto(0x0, 0x100, &(0x7f0000000200)=0x2)
r0 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x29, 0x2, 0x0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
recvmmsg$auto(r2, &(0x7f0000000000)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x801}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r1, 0x8931, 0x24)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r3 = socket(0xa, 0x2, 0x73)
bind$auto(r3, &(0x7f0000000000)=@generic={0xa, "dfffffffffffffff00000100"}, 0x9)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
unshare$auto(0x7)
unshare$auto(0x20000080)
syz_clone3(&(0x7f0000000300)={0x2c022000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
sendfile$auto(0x2, 0x3, 0x0, 0xc3e0)
r4 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r4, 0x107, 0xf, 0x0, 0x6)
fcntl$auto_F_NOTIFY(r0, 0x402, 0x12000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000000), 0x5a9, &(0x7f0000000100)={0x0, 0x200007}, 0x1, 0x0, 0x6, 0x1}, 0x5}, 0x2000004, 0x100)
ioctl$auto_RNDADDENTROPY2(r0, 0x40085203, 0x0)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/sit0/accept_dad\x00', 0x2, 0x0)
sendfile$auto(r5, r5, 0x0, 0x1)

4.684780366s ago: executing program 4 (id=5255):
r0 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
r1 = io_uring_setup$auto(0x1, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x0, 0x2, 0x0, 0xa)
read$auto_stats_fops_(r1, &(0x7f0000000840)=""/4096, 0x1000)
write$auto(r0, &(0x7f0000000000)='/dev/loop6\x00', 0x6)
write$auto_fops_init_pkru_pkeys(r1, &(0x7f0000000280)="e7c2da8ba23469d9b78d2e257333bedaec957355b8c2c4c78f4a98e7180a2dfeddb935038a6350c625940925fc61f1b8b51df8f60e61c078ff39654003ba", 0x3e)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0)
openat$auto_iommufd_fops_main(0xffffffffffffff9c, 0x0, 0x80001, 0x0)
ioctl$auto(0xffffffffffffffff, 0x8946, 0x24)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.4/usb5/5-0:1.0/usb5-port1/power/pm_qos_no_power_off\x00', 0x20b42, 0x0)
write$auto(r2, 0x0, 0x8)
write$auto(0xca, &(0x7f00000000c0)='\x04>\x01\x01\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x96\b\'\x02\xb0\x93l\xeb\x87\r\b\x87\x14\xf8e6\x9c\f\xb6,NS\xa2(Q\xcc', 0x7f)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_GET_RADIO(0xffffffffffffffff, 0x0, 0x20000010)
statmount$auto(0x0, 0x0, 0x9, 0xd)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
shutdown$auto(r0, 0xfffffffc)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x285882, 0x0)
socketpair$auto(0x7, 0xa, 0x13, &(0x7f0000000040)=0x40007)
r4 = socket(0x2, 0x802, 0x1)
setsockopt$auto_SO_WIFI_STATUS(r4, 0x0, 0x29, 0x0, 0x8000)
read$auto_v4l2_fops_v4l2_dev(r3, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0xa, 0xdf, 0x17, 0xffffffffffffffff, 0x8000)

4.55965727s ago: executing program 1 (id=5256):
socket(0x8, 0x2, 0x7)
r0 = socket(0xa, 0x801, 0x84)
listen$auto(0x3, 0x81)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(0x0, r3)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x20a000, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r4, &(0x7f0000000040)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03d4c62b24ede44c0c76c34edf7bde061903c2ee4c64110ac668239fa53ba42933ae74c3d173663248ff0945dd2e405e0d378b5a8e4643a7bc3b35a7248431450ca8901467ea6dc5d86de1e90f869f6a04ac10043676f3b2c7f1339b2d7468133fb8447d17846b6b78079ecc31d7d0f74caa4a3db1ac4d312bfdb34bd331f1f771a2396108561a52153d63a7b2a3a077a7e4c1a22bcb23e1f3e511fee310baa67904d2aad4d6671e8b77c7720e37e84e0efecb60a35f188cbe8b8b2fb3967b78aa482aabb103f23083baa9b2ae653731d5993db4054233dea4af25795e12eb4d6b046bdeea6adce8626e0def15dd32b0ec16a85d93e1dea980794033f4b46973062c64c0209f9d3efc6ea7704c8e8dfea8cdfbe2cb1e367bf634a1952190e0660994f79f0c622d47ee8f93ce1c2852db907ae68a29bcc960b26e0e634173287fd012c4bb3063c41d35c92e896b44080bc5a98e90907cd1d01cc0708019cc1c93c71f29bfe841c873ad2aa0565dfaeb86c8b8e58ea2075de2a562ba1b5dc4ca452df21f25453b7c7f9a3e31547f4e803cefbac3b94715f2ab1f9fc66570244472f2f29deb9bdf6dc5b18d54e3c2264f9598f2ea749d170a66d351acf003c3f37fe74a09a8a964ce2818e4b4efd1eb0e3bca5dfd2a053eeb5735b96d282d2e03866bd6581b5e5e541c74f0b92b932b234ac117342f156b4b23fc6dcbc92ada00ce404f54443b6e7fdac9acb79e5258a865ced633ff5356d13a3e9923bcd8e6d177c9fb8618f9393798d90d70c78207e40f95bb2b0a9308f29f4331bbdfc1021dface5a740473b462c47286fee1c9d0036c78134e108b5b218d3022fd277e1cdf0cdf8cd4b37d74c8dd47e00e50fcf8d336978a0e7624f94b8fdcd1c94592", 0x2ed)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/cards\x00', 0x2, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r5, &(0x7f00000000c0)=""/147, 0x93)
mmap$auto(0x0, 0x8, 0x2, 0x7fffffff, 0xffffffffffffffff, 0x10c)
sysfs$auto(0x2, 0x3b, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
accept$auto(r0, 0x0, 0x0)

4.132457697s ago: executing program 2 (id=5257):
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000380)={{&(0x7f0000000000)="a36d3fa58cc14c483eaeefbda25ed11e6584b0e06b6f7d2a0920bb3dac705aa384572b6a4be4e53907a7b25826ea5b2e", 0x7fff, 0x0, 0x6, 0x0, 0x2, 0x8}, 0x403}, 0xfffffffd, 0x3, 0x0)
mmap$auto(0x0, 0x402000a, 0x1006, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x2, 0x88)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'wg0\x00', <r3=>0x0})
r4 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1, <r5=>r1, @relative_id=0x13, 0xe600}, 0xf)
bpf$auto(0x0, &(0x7f0000000280)=@bpf_attr_3={0x3, 0x7f, 0x7, 0x800, 0x0, 0x4, 0x5, 0x800, 0x8001, "18abd411513dcbd69c0577fd701f03bb", 0x0, 0xc5e0, r4, 0xff, 0xe22d, 0x10, 0x4, 0x8, 0x4, 0xffffff81, @attach_prog_fd, 0x4, 0x1, 0x3e, 0x7fffffff, 0x6, r1, r5}, 0x96)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001f80), 0xffffffffffffffff)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x440, 0x0)
socket(0x29, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b82, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r8, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r9], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xfc7c, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40c0}, 0x48050)
sendmmsg$auto(r10, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r11=>0x0})
sendmsg$auto_BATADV_CMD_GET_BLA_CLAIM(r6, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000500)=ANY=[@ANYRES8=r11, @ANYRES16=r7, @ANYBLOB="7d3f30bd7000fddbdf250b00000008000300", @ANYRES8=r7, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x48018}, 0x400c880)
r12 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.7/usb8/remove\x00', 0xa001, 0x0)
write$auto(r12, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\x9du\xbc\xe8\xd3j\x06\xc25x\xde\x84\xad\x17(\x0f\xc0\x14<6\x1eyY`\xd4g\xc3\xdeIJr\f\xbb \x0ew4\xa3\xde{\xa6\x93\x8fC\xe4@\xce\xbf\r.\x98\x8c\x0f\x90\n\xfa\"\xaa&?\xfdW\xdd\xd8<\n\x81\x9bU\xa3+wN\xd64O2\n\xa1\x937J`\xa1\xfd\x90S\x90\x93\xd7YL}\xd2\xcfL\x89', 0x98c7)

4.087633868s ago: executing program 4 (id=5259):
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, 0x0, 0x58)
socket(0x1f, 0x6, 0xfffffffd)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, 0xffffffffffffffff, 0x0)
epoll_create$auto(0x4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x101, 0x6, 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0)
renameat2$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x5)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x1a5d80, 0x0)
mmap$auto(0x200000000, 0x2020005, 0x3, 0xcb1, r0, 0x4)
close_range$auto(0x2, 0x8, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

3.011817505s ago: executing program 2 (id=5260):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
prlimit64$auto(0xffffffffffffffff, 0x101, 0x0, 0x0)
write$auto_ftrace_subsystem_filter_fops_trace_events(r0, &(0x7f0000000240)="8f0447fef2afea7e35a0274f508a73119aff3bc0528f45fd27fea1bb4baa95f757cf9e57a14e04353736f4a23ce2a531c678ed7d6d28d43aaea2a69abe3e93453380adf35653f5875227ce319330afe5e4cc7601a8eccbb3729f9869ca35edaf6343e41fe91304ef53273ed0943b28e00e9c2f919d54fe990911e4c265c3d23eb66229", 0x83)
syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap$auto(0x8000000000000001, 0x2020009, 0x3, 0x1fb, 0xfffffffffffffffa, 0xc000000000000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r1, 0x0, 0x2)
ioctl$auto_FS_IOC_FSGETXATTR(r1, 0x801c581f, 0xa)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/i8042/serio0/err_count\x00', 0x800, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44f, 0xa, 0x10, 0x1007181, 0x0, 0x62, 0x7, 0x800, 0x9e, 0x26, 0x4, 0x200003fffffe, 0xfffffffffffffff5, 0x941, 0x0, 0x0, 0x0, 0x0, 0x862, 0xf, 0x22002, 0x200, 0x0, 0x62f, 0x6, 0x0, 0x0, 0x0, 0xb626, [0xfffffffffffffffe, 0xffffffffffff04ef, 0x0, 0x7, 0x0, 0x0, 0x0, 0xe9e, 0x400, 0x9e, 0x0, 0xa7, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0xff39, 0x40, 0x81, 0x8a0, 0xb, 0x81, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x80, 0x0, 0x0, 0x0, 0x8, 0x0, 0x100002, 0x0, 0x3ff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4000000000000]}, 0x800000000000b, 0xbc)
r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
clock_nanosleep$auto(0x9, 0x0, &(0x7f0000000000)={0x0, 0x200}, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffff7effffd0c, &(0x7f00000001c0))
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000280)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0)
mount$auto(0x0, &(0x7f00000001c0)='}[,&*}\x00', 0x0, 0x7fff, 0x0)
statfs$auto(&(0x7f0000000000)='}[,&*}\x00', &(0x7f0000000200)={0x1, 0x180000000000000, 0x10000, 0x7ff, 0x36d, 0x9, 0x56bb, {[0x2c81, 0x3]}, 0x10001, 0x8, 0x7, [0x6, 0x3, 0x6, 0x9]})
ioctl$auto_BLKZEROOUT(r2, 0x127f, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
madvise$auto(0x0, 0x2000000080000001, 0x3)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
write$auto_tap_fops_tap(r4, &(0x7f0000000000), 0x0)
shutdown$auto(r4, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/slab/kmalloc-64/total_objects\x00', 0x80000, 0x0)

2.994717667s ago: executing program 4 (id=5261):
sched_setaffinity$auto(0x0, 0x100, &(0x7f0000000200)=0x2)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
bind$auto(0xffffffffffffffff, 0x0, 0x9)
unshare$auto(0x7)
syz_clone3(&(0x7f0000000300)={0x2c02203f, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)

2.910236017s ago: executing program 5 (id=5262):
mmap$auto(0x0, 0x1, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
r2 = socket(0x10, 0x2, 0x4)
write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef) (async)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000003c0), r1)
sendmsg$auto_NL80211_CMD_COLOR_CHANGE_REQUEST(r2, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x44, r3, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x5}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "1260902e9cd0a7f54b5cefc58eb7d31116a25b2b79567300"}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x7a}, @NL80211_ATTR_PRIVACY={0x4}]}, 0x44}}, 0x4000000) (async)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000140)="3318cb") (async)
ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
write$auto_snd_pcm_oss_f_reg_pcm_oss(r0, &(0x7f0000000000)="18694c8569886abd783b7152d57829fbf0b4b4e1264326f9a6285901cc495f8b23766f0c5f02f3d44ba01933b5fd4f615ee8ec1eefca75c06c665c3655fc9395c289e8494d3bd1b83d1b7cfbe5f6c1396c7e00c9a5575d853ae5c8af93e07f30978017e62002cf42df15ac6e4e645c6051ec027723dbd0d226f30d3bf330da5866840b1057009806a10243b801df5108261c3c765e94ab65cb173c99bfc06dc4bec5f77a4a0139466f7ab5f55651fe89419d97", 0xb3)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r1)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x3c, r4, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_HE_BSS_COLOR={0x18, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_COLOR={0x5, 0x1, 0x7}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}]}, @NL80211_ATTR_WIPHY_FREQ_HINT={0x8, 0xc9, 0xc}, @NL80211_ATTR_AP_SETTINGS_FLAGS={0x8, 0x135, 0x800000}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4081}, 0x801) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0xe983, 0xc, 0xeb1, 0xffffffffffffffff, 0x100000001) (async)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000340), r1)
mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r5)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r5, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r6, 0x805, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000) (async)
write$auto(0x3, 0x0, 0x7fffffff)

2.833646771s ago: executing program 4 (id=5263):
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$auto(0x0, 0x7, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = memfd_create$auto(0x0, 0x4)
r1 = socket(0xa, 0x2, 0x3a)
statx$auto(r0, 0x0, 0x1000, 0xbdfc, 0x0)
setsockopt$auto(r1, 0x29, 0x14, 0x0, 0x56b)
fcntl$auto_F_GETOWNER_UIDS(r0, 0x11, 0x5)
setsockopt$auto(r1, 0x29, 0x14, 0x0, 0x10052b)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
socket(0xf, 0x3, 0x2)

2.689054429s ago: executing program 4 (id=5264):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendto$auto(0xffffffffffffffff, 0x0, 0x3804400000000, 0xfffffffe, 0x0, 0x120018) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0xffffffffffffffff, 0x28000) (async)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
fallocate$auto(r0, 0x1, 0x820, 0x7fff) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003040), r1)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f0000000100)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010025bd7000fbdbdf25120000000810490001e9ffff1700018014000200626f6e725f736c6176655f3000000000"], 0x34}, 0x1, 0x0, 0x0, 0x4000004}, 0x20048880) (async, rerun: 64)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) (rerun: 64)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
fsconfig$auto_FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000040)='$\x00', &(0x7f0000000140)="c4392b13788645c22e60d011a438efef875c132aba948e2d5744db10cac202b719d1393ebb3b2322dff78349d9b4512c2f5efcd88e9afbfb776a8c9e595fb4b11bd8ef76bce6e1628b2795ca75a3dc33cb454d08cd90d66d3387e2feca242dca0a6210c087297b5e85870591a78c1b96e60cd0b1c7434b92c3e3e58d4a7521cf7cfc6ef2f74e88040fb24f3c623cbabacd380c16954f04370ccad33809257e92846ef67a1ebd83df420077baaa8294bef57f2f3231f4ccc143297120fc92c016a85f07a7b9a8b5d5131d9ea119d7910981cfcce8c69cc74a010b5c57f98fdd5d1ddf26020e59f20226ebc0b697b54c2272f790c571393e0182293b6bbc44835446b33bb395960b85851285bc2098716d86afd63693d865a35931369143879a5a04a2b2e01e27df7b691197217eba5470049bc3dc61fb6f01c6434cdbd779e3ed5b1169b1ab504042cc5b0f09628e3d7b9754ac91b4c7c29b5991aece619612e478e3dd516e021d88867c50760314a3e9ec9b8f9a1ac5b0bb714e04b4a7d476a952c82a0c4c7f835912e99ee745df1d5a5115e1ce47e51a5a34c2777da7e851b986e04e7a7d2034208baafbcdf42b00896ca4880637d7d6823a57f457e61d332b0d2df2f93eb45c16b734977bdeeda5c0f0590781afa67d8f99cbd189beac7233016b3dafafa9b510e0f8c57d43f6aa0c7e78624282d0342235399b3b8d2b417c9bf1169cb55755981b79381046b301c4302bc491a89d132c40f9f62221ebf17f9f8c59d1bdb3d4ff2a798def3733cb3d954be286cd62ce2fd68dd6077505c198fa4b05c2e7f622d0e0acc10814608c28222e0024c1c9ccaac85bc33e8d1c6f01b5c3672517fa8af1fb29a25206518599408b0d98e6fc3075cd618c1a3805ccbdbb25da4bd53ee890b2f598dd68f801a6084ea1b9a7477bfbc39f88f847fa903832418c9eb42848a682c98ced20841b1dffd4e81c0a538d67a86ea8c6f221f50bec7c650f30b3365c093fe89be302b41a38dedfb93c8a4720fa9dc1e1f1ffbd21bc5f4bffcf38ab8c41e80834c579663f6b0e82d3ffb3e1c2dbb331cfa3c2882f7a75f3810005af7723acf445bd22ea37fccb244791811899c28d9a35a306c9aa2437d37d395d72274adf9b10fab3f5734f6c751f6d84fdd60b87d0877e1490e91dbc4df0e0bf65f51b96436ebdc12734908a1176fb25f7a5fa1b187e4c97b5d2db5de295bbcc4f51bc4d18e3d6fe89f6b18bf9fbfd7d9ee32232bbe6d9a1ab893cf36c2cbfc6789a8764830bd48c76d0587e023b46443fafd3ffd16f564ce65db871ff4d0ae78a4856d3a8eb878575288ddfd2416577c4a2383098ee8432689400dd26571f28dc14e3f8e4acda960be2a67c167fd5e06ea8aa0ef490705aac06e363ea2b39c0e3590a988406c10e590e379d2d93e5ea92e04fb966af1c1733ed20ba88fff333d46c6dd78126faa34bf4d4027b2b58d688eace1704db63f14ef764eec463fced97cfcd5909782248c6ba032cb98324b7ed0cf31c685abc6ce7f6df8c1b24c82395ddcfd005137d29200f627fffd0c015e19a2fb6d2d099fe3ec226a627c6cd51be131e322c5e314d5ce6fea0ef8a33cff9904ab3703acfc87e29820a5cb7afd27cc85db021f21aa5de40d51f79398f8ef64e275d6cf8109624701c5e41e9326815205b9407e5d0e374098bb996c017d69252a319113507f7872bebf504ea3bef68bfccdb829f3f0acca9200d750d54509ea97570121cb2a654c70780c7ecbdbe71219d42ec5d897101b455841d9173b4bba7f89291cc0051478c4fc33ce2bc2d9015aadca78634383432c208d79353819a7cda169d7448f0ae38713912abdf8e32912ab7b3e7de170c86d543a801ed430e916d8f3bfb78df6a83194f2b89bbd0442ff4fb502ed323ac530561601ad8a9e6709101a0a8d505589a845501ffd5708d054723fc8ff283353a8e4aeeb847e6ea80a1b967cf64faf8811dd11e29e8a6f6436fe6c36aedc43bcd96f72aca3bada988502d379f07aa8ffcfd230f5af8f48311e56acb2aba37cab4fb2dd43d0e2a0e0f3b7312537d85b650666e4f518d66284f9fbcfde73491ed38b7e4f00267d9d38af287c15c40eb94099c8c3935d3ccea250ef87be6a82877ad4609bc0e30fd6d45206eb143a96fceba2654d22779fdfc127aa07d1851767ad46b2204a15980d0c94642cb2bb99ccc340fe860f7bc2f957d74bfc2770b53d254b588b9e88c4e36dda01e4823418a1defeac06fe1c1d09c182af195fc09d1eea12146e210734eb093e95bab6c450611cc0d8d61534eac16534713279a4b21fa2d9dff8159d55d5a5b1c4bff5f81407b992953adeaa6dfb6b7d9aa318a182bb5fbadd75542e0d6b2e960d74080d6d5bb1b5ab11bf3eed08b79595541b4c927baf27cfcf3d06fda8eb3c8b73b6528f8faf05a22f4a28ecc3e2d4267d244a1d96cb4f055f9822187f673020ff6ccb0b3bb6f43149b9fd4e4a2303a147adb021f2c692816c6c8c3c91b11827bf18b7ccd99930b87f2ef76461dc9d9285381261e785a73bc15e9fe0b50a02b8bd6850fd8a165c96f0d4091c1409ca4c8e10b358645ed4185f6b4475ad90bed86db751e5f1bdad57c7476a7fd6fd41f8c7bd194433f72740751e3967c7795aabbbd964e515d3e655d289e3e04635a7090e1dfa57939d3d5e521b4d5e828f169e4876f8bf95a6b66b0ab60e808ef8413cf32dd768dc750ddd1549b2db470234715a5a96a82afce4ad96010122405a7e5b00513a48328c07cbaccf49dd4411c7af9fd16b921c23e477dfbc941fcdfd5d6c5472de85d33883b48db3b89794ddfe6aa37373e995b8a860f7ee22817cb6559c67ae491eb8051676eded74c7e6cf25e71b38186911b298c3870bfbd47db007b4ea5abc3478194c1e0c501198555593dec7bd007dc6edfc9c20ea350265bf05c29730b17fd11594aba71751a644c3223652522f6c98fe27a7bbbca80317fe704696d849e950c61e4928aa57414429042d1cf254063fd65c7462fcbe1938ff13628d40f0dc826c8616aff821f0fcdaa9d3bbb9b7c72ad49bc35dcdde36a669db02c5c93c35d4e0ff3209837ae1fe58fa35bf27467947cb2104db3166bcacc9b15dc11af7b5823d0152de9d35ec3b8ee02901d4a1ab54f364ede0e1aa0b3288930a2944838b34f603ec9d6d1269c58fc20d524c86e63f75cdce833821b3f31278a18344f63f3940861db515fb8db012b3d994750b94d06db038361cda8d7f7c5489f257ca9408397258009df994bfaa4b8b6b3cea3bd38dcb7b58354ce58b298c110301daa74915f35c2452f2b479a5eff53f523bed36d556de659465abc9586469e4128412233b7f840447f949c420263f5f5ea51372817e9d78101eb91de1cb89553f543b9be7021dd302ed73133ba7d0caee3e7af2eef386eaa90435fab71727f46f121c25fefcfb3e92337bc7653248ca27af2de38248b68963f341df3051c1f2c87b7a607f1ba62304a93e35f7756d3735f00d897892e3ecc28d8c21d287fe46fc2c45389241b6f92e303c9a5926eb8111f42921fb610e929bfda16216ccb52b39a5536b4d52e308360378c63783c2fc19fd112c2dfe1c1ec6484be82e6dc43adecd3e20e8395d077fea2e9f472bf45b6df9e6c7fcb1421494adb7920d169ffe49c2bd746732593f10ccd1b379842f8476fb605fe176fb4a56e47f7adf3257937870f3f24d4c34cbda6c5c6aff4f8fa20c8ba5d4bc0ef68ff01c66f9cbe5108a0b831d3cceaf8aed89b8641ea1c0933665bd2b29887332f818155322190e3f118c6e1f90878aaaae4c4f48f92cfd798a13cbab0a4d96b8a7d6a55b7a47abd9210410fff401cb6160e0a5477ad35d7eb446deab50bcf37ea2e12dd22d595a02ae2812826a1f8f32dc0eb37a56cbb633b7fec34719d4659f84c764e696756bfca4bd57d91a113d6a921d8debfa6c4c8bec71b2fd2e9c423e246ef2b042778554ddf3df8f5e3d70dcb954b273cad8476f98ec8a223185c62a4ea18b2cb732414538eee93edccbd95ebf270e7347540a78dc753ff2333225c58150c4cff42c2b07747ab634b0e5ff3c0135d494822ea8d6ccaf0d4161a28572419667ebc8cf7931e77c9093ef47140f848994cc114547504d6447669b0849f7b02a6f339d9ac2d3a5011cf6312ce4a795facc8ef9121e3d914d7994e4e755f04f13e818a16d96d19c0e35fee679d1aaf09110698b9076fb27c6278381729f33818f99c339465cb2ae18827a8262dac6818064311dd52a24e0eca305616da679dbd044be317df3aaa2ca0ae93616cf9431c8433c4bc8be261443eb3b5b62d7b6ce956f6d1c5c2e4f5467fc136c3a327532cdad38b7b7d4bc9addf168f7e1116d9f46d0d45652c68e6bb521c2c4834ccf587ede2575de1dc2573d181b2a4dda7beaacc8708a041935a281d8ab4f96253dfb94d98af777ef1721619bd262bef20df25971ccb2eff2d3a599ed3e39ab0f8ce23bb50722e4b3d4afd163688090992894324126d937e5359a0021bbcdcd5179087cfc22bd21ca474aa0716cd7b8182efe7a6a375e2b69b1a612416bd2212c11caab605307e0fd38ee17a40abae570619b1d081a2560a100f6aad3645220fd7cbd39f3b87509d993185b33bc0305a5d2de96e3965a1c044ba14f0c339cfc1844c62b294ddb2ee78dce6e751526dccf677ad713bd73f791ef3a2543ef3d26c448a773ecda3079cad29623034cd05fb8d56660afca8211ca82e4ad606b788713fd6c52c127a00c867e8d2efc4b972a22c196bd65649ad1cab28faf06223c57a86c897888c2dcd68005b7658f073781c459acfe551bf28cdccd0af0f0ea1fe38bbb62a4cd4c950a5f8bb03fbc2eb40fc54e3e7d586c397429fcb39910403469ff485fa2a5887ae3b0c1bada0264fdf382e2d9dd4cf04ed8294ec1f0e52252c6f42964d30eec65f6f22660b363b31e67a37db8329729128122d4b57eab8351cee504eb2fe9296f7cb0fe754e017e6c9c18ad972c6d815337dd8ea4355164e8e7ad3bcdab15dca87859a5891ae3e12ae2ec5758ae33dabb6200738c045d5b9f0877c0088b409f5dfae2c9a551b8d551dc5a45d8413726109d3c68eb189d95bfbb263a55ca91bd9fbc36bb7f87a2c1d92f00ffcda110f2a5a3b729488818325266ce5489e9f9b13d5907ef066aea6195141e6701e8d5a51efb15d46db378eb316a0707174a270cd3d74967ab0c59e8cb21412af23389139f6b98bb30d1f270a1f0cf1dcd1c92de4a47368129dba43a8e0ed5e9e518133f9c942963439375420b13218e87a35834683def5ab06dd347e154d4f672d69fb1dc58daa7b05de19d5e2de485a97d39ba1dd655c2b618e72c23eaf789373c56b25144b25afea6f9df4bce15212a935f1aa31d7f282f15a2292cf106aba637e264080229ffb7da86b6024704b702c9014bbba8aaee9b300f08310f6a12dd109566000f0be96488c61af65f49177fcbf9ac2ffa3054c42ed4a0ab558e04d13950fbc9a3f7e7fa7bcb3fcde163c71af6eeec218d217597bdad3f0f11de393bad976da8df3832045a4a2788596cb5eaeec3162ed9ddac0770f0594afa4f6d67c714b91e9e6a2e050b67d27fef1ead8dc36b392025ea15ea3d1d99aac4c265db32813da00509b630300de092267b6f526deae0062c99d0c8d29abcd3cf6cde8cdccf5ac1450afa5ba147e32b6d0047ab402334cc2be48ad77c7ca59d137c130301d9732e47c3195bc6591b961323472becb4c1a602067d25010be7d2dea", 0x6)
close_range$auto(0x2, r3, 0x0) (async)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) (async, rerun: 32)
ioctl$auto(0x3, 0xae41, r4) (async, rerun: 32)
ioctl$auto_KVM_GET_MSRS(r3, 0xc008ae88, &(0x7f0000000100)={0x3, 0x0, [{0x4d0, 0x10, 0x1}]})

2.50302571s ago: executing program 5 (id=5265):
r0 = socket(0xa, 0x80002, 0x73)
sendmmsg$auto(r0, &(0x7f0000000200)={{&(0x7f0000000000), 0x3ff, &(0x7f0000000180)={0x0, 0x434b}, 0x9, &(0x7f00000001c0), 0x3ff, 0x24000000}, 0xb6}, 0x2, 0x2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b73, 0x2, 0x8003)
openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/loginuid\x00', 0x309c02, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop15/queue/minimum_io_size\x00', 0x40480, 0x0)
read$auto(r1, 0x0, 0x10001)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/ati_remote2/parameters/mode_mask\x00', 0x80401, 0x0)
write$auto(r2, 0x0, 0x800f)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000080)={0x2c, 0x0, 0x1, 0x70bd27, 0x25dfdc02, {}, [@ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x90}, 0x80014)
sendmsg$auto_OVS_VPORT_CMD_DEL(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80880802}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x40054)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram8/queue/discard_max_bytes\x00', 0x181842, 0x0)
sendfile$auto(r0, r1, &(0x7f0000000040)=0x100000001, 0xffffffff)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={0x2, 0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x6, 0x8001}, 0x101)

2.284535179s ago: executing program 1 (id=5266):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/current_tracer\x00', 0x0, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
eventfd$auto(0x1)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
inotify_init1$auto(0x3000000000000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/kernel/pid_max\x00', 0x0, 0x0)
socket(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x15, 0x5, 0x0)
openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/arch_status\x00', 0x100382, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/platform/dummy_hcd.6/usb7/bNumConfigurations\x00', 0x80000, 0x0)
socket(0xa, 0x2, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x100)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(0x3, 0x40106f52, r0)

1.939823747s ago: executing program 5 (id=5267):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2b, 0x1, 0x1)
setsockopt$auto(r0, 0x0, 0x25, 0x0, 0xc)
openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x400000, 0x0)
r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/pcmC1D1c\x00', 0x1, 0x0)
ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR642(r1, 0xc0884123, 0x0)
ioperm$auto(0x3b, 0xf99b, 0x6)
r2 = io_uring_setup$auto(0x406, 0x0)
io_uring_enter$auto(r2, 0x7, 0x7ffffffb, 0x3, 0x0, 0x3)
io_uring_enter$auto(0x3, 0x5, 0x5f3, 0x14, 0x0, 0x6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r3 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r3, 0x6, 0xc, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x59, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xfc\x04\x00\x00)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/wlan1/forwarding\x00', 0x202, 0x0)
ioctl$auto(0x3, 0x8905, 0x38)
mmap$auto(0x0, 0x2020005, 0x98, 0x15, 0xffffffffffffffff, 0xfffffffd)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)

1.583696163s ago: executing program 1 (id=5268):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x51c, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/class/firmware/timeout\x00', 0x100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000540)=""/150, 0x96)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0)
ioctl$auto(r1, 0x5100, 0xffffffffffffffff)
r2 = socket(0xa, 0x2, 0x73)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/block/nbd9/trace/end_lba\x00', 0x2062, 0x0)
write$auto(r3, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/bus/usb/028/001\x00', 0xa801, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB32(r4, 0x802c550a, &(0x7f0000000300)=ANY=[@ANYBLOB="020000060000e6ff040000000100400008"])
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
shmctl$auto_IPC_RMID(0x0, 0x0, &(0x7f0000000140)={{0xbb, <r5=>0xee01, 0xee01, 0x3ff, 0x7, 0x4, 0x1000}, 0x74b92387, 0x8, 0xffffffff00000001, 0x7fffffff, @inferred, @inferred=0xffffffffffffffff, 0xa62c, 0x0, &(0x7f0000000040)="f4856138bf13dc0628e65614d7cc1c7367af2e98e96ee3434a0f7f36a68b5afb232be2caf053a61fa2aab1ab46543c5912ea3a336a498798d900e4a4258657dafcc3fdaca20e770dd10360beab127f24079c8ed9847ad3d5fa118f86d5d9ef4977dc097b95bc5b9661e8baa42a2ec52abf81e6ac286382105e6399ae848c0d5c1c2380de05e6c98b9df7beea792ed1488b74d96e811e392c136456145ed0f6", &(0x7f0000000100)})
r6 = openat$dir(0xffffffffffffff9c, &(0x7f00000010c0)='./file0\x00', 0x2001, 0x8)
r7 = getuid()
r8 = getegid()
setregid$auto(r8, r8)
statx$auto(r6, &(0x7f0000001100)='./file0\x00', 0x0, 0x10001, &(0x7f0000001140)={0x3, 0x6, 0x9, 0x8, r7, r8, 0x5, 0x1, 0x3, 0xffff, 0xb, 0xb6, {0x10, 0xfffffffa}, {0x1, 0x2}, {0x5, 0x8001}, {0x8, 0x101}, 0x7e05b10d, 0x7, 0x7b6, 0x1, 0xb, 0x7, 0xa, 0x2, 0x5, 0x3, 0x3, 0x1c5, [0x3ff, 0x2, 0x80000001, 0x8, 0x96, 0x0, 0x20, 0x0, 0xffffffffffff0000]})
lstat$auto(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)={0xf8e, 0x4, 0x9a, 0x4, r5, r8, 0x0, 0xea9, 0x14a, 0xd, 0x7, 0xfff, 0x0, 0x3, 0xfffffffffffffff8, 0xa, 0x8})
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
ioctl$auto(r4, 0x4004550c, r4)
ioctl$auto(r2, 0x8918, 0x38)

1.350102654s ago: executing program 5 (id=5269):
r0 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x18dd01, 0x0)
openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000054c0)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x20a01, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r1 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x42842, 0x95)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000180), r0)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, r2, 0x8, 0x70bd26, 0x25dfdbfe, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0xffff}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0xb}, @CTRL_ATTR_OP={0x8, 0xa, 0xe60d}, @CTRL_ATTR_FAMILY_NAME={0xf, 0x2, '@].%(:\xf1!%.\x00'}, @CTRL_ATTR_OP={0x8, 0xa, 0xee34}, @CTRL_ATTR_OP={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4}, 0x4000091)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r3, &(0x7f0000000640)={{&(0x7f0000000000), 0x5ae, &(0x7f0000000100)={&(0x7f0000000780)="4c030000000000002106000000000000005f6bba441810", 0x49}, 0x5, 0x0, 0x5, 0x1}, 0x1}, 0x2, 0x100)
sendmsg$auto_NL80211_CMD_PROBE_CLIENT(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x6}, 0x20000000)
read$auto(r1, 0x0, 0x1)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
get_robust_list$auto(0x0, 0x0, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
r4 = memfd_create$auto(0x0, 0xe)
ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r4, 0x7cb, 0x0)
ioctl$auto_EXT4_IOC_CHECKPOINT(r4, 0x4004662b, &(0x7f0000000000)=0x6)
listen$auto(0xffffffffffffffff, 0xff)

1.021499596s ago: executing program 5 (id=5270):
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, 0x0, 0x58)
socket(0x1f, 0x6, 0xfffffffd)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, 0xffffffffffffffff, 0x0)
epoll_create$auto(0x4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x101, 0x6, 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0)
renameat2$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x5)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x1a5d80, 0x0)
mmap$auto(0x200000000, 0x2020005, 0x3, 0xcb1, r0, 0x4)
close_range$auto(0x2, 0x8, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

308.12828ms ago: executing program 1 (id=5271):
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0002, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0xc2842, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
getrlimit$auto(0x1, 0x0)
ioctl$auto_BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0)
r2 = ioctl$auto_TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r3)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="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", @ANYRES16=r4, @ANYRES32=r0], 0x6c}, 0x1, 0x0, 0x0, 0x20040840}, 0x40000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r5)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r8=>0x0})
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002cbd7000fcdbdf25190000000c00018008000100", @ANYRES32=r8, @ANYBLOB="14000000"], 0x34}, 0x1, 0x0, 0x0, 0x802}, 0x4000000)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r4, @ANYBLOB="000828800800015d93f89400001000"/26, @ANYRES32=r8, @ANYBLOB="080003000002000014000200766c616e30000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="3c0001801400020064756d6d793000000000000000000000080003000300000008000300ff03000014000200"/60], 0x80}, 0x1, 0x0, 0x0, 0x48000}, 0x1040)
r9 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r9, 0xc0045002, 0x0)
ioctl$auto_BLKFLSBUF(0xffffffffffffffff, 0x1261, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
mmap$auto(0x8, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8003)
r10 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r10, 0x1261, 0x0)
epoll_wait$auto(r1, &(0x7f0000000200)={0xf, 0xf}, 0x4, 0x5)
ioctl$auto_BLKFLSBUF(r10, 0x1261, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x84)

0s ago: executing program 5 (id=5272):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)
write$auto(r1, &(0x7f0000000340)='%]{\fZ', 0xffffffff)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x2, 0x1, 0x84)
fsconfig$auto_FSCONFIG_CMD_CREATE_EXCL(r2, 0x8, &(0x7f0000000040)='/dev/cec23\x00', &(0x7f0000000100)="5aa0571766841467bb33c9be03b939b5e7711d3c2df55e3b1e30455b96462a945ca046ca850ff08d378e7763d28d229adef4", 0x9)
socket(0x2, 0x1, 0x104)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
r4 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/loginuid\x00', 0x8002, 0x0)
copy_file_range$auto(0xffffffffffffffff, 0x0, r4, &(0x7f00000000c0)=0x7ff, 0xb4, 0x1)
r5 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000001280)='/sys/kernel/debug/dri/vkms/gem_names\x00', 0x58000, 0x0)
ioctl$auto_XFS_IOC_READLINK_BY_HANDLE(0xffffffffffffffff, 0xc038586c, &(0x7f00000014c0)={r5, &(0x7f00000012c0)="13093d27c907395717acfb7d19e6924bdce2517cce603cc2e9", 0x3, &(0x7f0000001300)="cfa5e838a44357cf4313a6eff4a570231aa5131c64304b52091eb14ef6bb4bf626264c9fdde22c088422c19ec5b9140e34aeb07abbfb08dcee0d802981dd95a981a1df415a03f2b217adec662afafe5d90f24a21bb13b17df7e078198e56763b8677fe1a2537a3e38d236899ec99c74016804de4bed489dc96387f1606a824dd8c21e81c2a9915fbb907cbf403b2a1b2166b0ab90681f309e01fd65a122e50b7297fedaafba12c9bf43101cd11f43d49cd5deab68f696a3d9699ae9543b27e51b837dbe7fd24372a84ecd63b70109e79d13498dbf7b6e5a6c4336946832c4893a28526b0", 0x8001, &(0x7f0000001400)="24a74ff873dd07fca06e6427a979b5dfaef589eef9fabc1c5a23900a5ba8292e4cf535abfcb941d42f0be08c35e8ae10f7397744f6af834c1fad5b46e5ce0a43db9497ca4a34a292ac83ed17a573af9122c95642fefa44af3838e90d8a023d33567cd049c32cb98b3a", &(0x7f0000001480)=0xff})
syz_genetlink_get_family_id$auto_ovs_flow(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
r6 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r7 = open(0x0, 0x14c1c2, 0x106)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r8 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000780)='/proc/self/net/rpc/auth.rpcsec.init/channel\x00', 0x441, 0x0)
r9 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000001080)='/proc/stat\x00', 0x20200, 0x0)
read$auto_proc_mountinfo_operations_mnt_namespace(r9, &(0x7f0000000040)=""/4080, 0x1036)
write$auto(r8, &(0x7f0000000040)='\\@-,@n\xea\x9e\xa9\x1d\x1d\x8bK\xfb\xcf;\xd1\x97\xf3\\\x90\x8f5y\xa7\x02\x05T\x7f\xdb\xc2W_\x84|\xd8,\x8b,\xc7\xff\xcf)i\xce\xd1\xea\x84\xb0\x0en\x86B\xba\x15\xfe>S\x9ap\xd3K\xa1\xd2\xea\xf5J\xd6\x04\xf0bWaC\x9a\x0f', 0x295)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec23\x00', 0x2100, 0x0)
renameat2$auto(r7, &(0x7f0000001040)='./file0\x00', r7, &(0x7f00000010c0)='./file0\x00', 0x20000000)
sendmmsg$auto(0x3, &(0x7f0000001240)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
read$auto(r3, 0x0, 0x9)
sendmsg$auto_NL80211_CMD_GET_SURVEY(r6, &(0x7f0000001200)={&(0x7f0000001100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000011c0)={&(0x7f0000001180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022bbd7000fedbdf25320000000600ab000008000008004200040000000800db00", @ANYRES32=r7, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x8081)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/misc\x00', 0x40f40, 0x0)

kernel console output (not intermixed with test programs):

[T20629]  ? __pfx_register_netdevice+0x10/0x10
[ 1084.164062][T20629]  ? net_generic+0xea/0x2a0
[ 1084.164098][T20629]  ppp_dev_configure+0x986/0xcb0
[ 1084.164134][T20629]  ppp_ioctl+0x985/0x2800
[ 1084.164166][T20629]  ? find_held_lock+0x2b/0x80
[ 1084.164189][T20629]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1084.164224][T20629]  ? __fget_files+0x21f/0x3d0
[ 1084.164252][T20629]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1084.164283][T20629]  __x64_sys_ioctl+0x18e/0x210
[ 1084.164322][T20629]  do_syscall_64+0x106/0xf80
[ 1084.164352][T20629]  ? clear_bhb_loop+0x40/0x90
[ 1084.164383][T20629]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1084.164409][T20629] RIP: 0033:0x7fac1eb9c799
[ 1084.164430][T20629] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1084.164454][T20629] RSP: 002b:00007fac1fa24028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1084.164479][T20629] RAX: ffffffffffffffda RBX: 00007fac1ee15fa0 RCX: 00007fac1eb9c799
[ 1084.164495][T20629] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 000000000000000a
[ 1084.164511][T20629] RBP: 00007fac1ec32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1084.164526][T20629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1084.164548][T20629] R13: 00007fac1ee16038 R14: 00007fac1ee15fa0 R15: 00007ffc6c634598
[ 1084.164581][T20629]  </TASK>
[ 1085.999930][T20648] FAULT_INJECTION: forcing a failure.
[ 1085.999930][T20648] name failslab, interval 1, probability 0, space 0, times 0
[ 1086.013188][T20648] CPU: 0 UID: 0 PID: 20648 Comm: syz.5.4479 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1086.013239][T20648] Tainted: [L]=SOFTLOCKUP
[ 1086.013249][T20648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1086.013264][T20648] Call Trace:
[ 1086.013275][T20648]  <TASK>
[ 1086.013286][T20648]  dump_stack_lvl+0x100/0x190
[ 1086.013328][T20648]  should_fail_ex.cold+0x5/0xa
[ 1086.013358][T20648]  should_failslab+0xc2/0x120
[ 1086.013384][T20648]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1086.013422][T20648]  ? __kernfs_new_node+0xd2/0x960
[ 1086.013471][T20648]  __kernfs_new_node+0xd2/0x960
[ 1086.013504][T20648]  ? kernfs_add_one+0x583/0x850
[ 1086.013547][T20648]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1086.013589][T20648]  ? find_held_lock+0x2b/0x80
[ 1086.013613][T20648]  ? kernfs_root+0xee/0x2a0
[ 1086.013645][T20648]  ? kernfs_root+0xee/0x2a0
[ 1086.013686][T20648]  kernfs_new_node+0x11b/0x1a0
[ 1086.013730][T20648]  kernfs_create_dir_ns+0x4c/0x1a0
[ 1086.013775][T20648]  internal_create_group+0x36f/0xf40
[ 1086.013818][T20648]  ? __pfx_internal_create_group+0x10/0x10
[ 1086.013856][T20648]  ? __pfx_internal_create_group+0x10/0x10
[ 1086.013896][T20648]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1086.013937][T20648]  ? bus_to_subsys+0x114/0x150
[ 1086.013970][T20648]  dpm_sysfs_add+0x80/0x280
[ 1086.014011][T20648]  device_add+0x9ef/0x1950
[ 1086.014038][T20648]  ? __pfx_device_add+0x10/0x10
[ 1086.014062][T20648]  ? lockdep_init_map_type+0x5c/0x250
[ 1086.014096][T20648]  ? __init_waitqueue_head+0xca/0x150
[ 1086.014140][T20648]  netdev_register_kobject+0x1a9/0x3d0
[ 1086.014182][T20648]  register_netdevice+0x12e0/0x2210
[ 1086.014222][T20648]  ? idr_alloc+0xdd/0x130
[ 1086.014259][T20648]  ? __pfx_register_netdevice+0x10/0x10
[ 1086.014291][T20648]  ? net_generic+0xea/0x2a0
[ 1086.014326][T20648]  ppp_dev_configure+0x986/0xcb0
[ 1086.014362][T20648]  ppp_ioctl+0x985/0x2800
[ 1086.014394][T20648]  ? find_held_lock+0x2b/0x80
[ 1086.014417][T20648]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1086.014462][T20648]  ? __fget_files+0x21f/0x3d0
[ 1086.014490][T20648]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1086.014522][T20648]  __x64_sys_ioctl+0x18e/0x210
[ 1086.014560][T20648]  do_syscall_64+0x106/0xf80
[ 1086.014590][T20648]  ? clear_bhb_loop+0x40/0x90
[ 1086.014622][T20648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1086.014648][T20648] RIP: 0033:0x7ffaac19c799
[ 1086.014670][T20648] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1086.014695][T20648] RSP: 002b:00007ffaad0fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1086.014719][T20648] RAX: ffffffffffffffda RBX: 00007ffaac415fa0 RCX: 00007ffaac19c799
[ 1086.014736][T20648] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 000000000000000a
[ 1086.014752][T20648] RBP: 00007ffaac232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1086.014767][T20648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1086.014782][T20648] R13: 00007ffaac416038 R14: 00007ffaac415fa0 R15: 00007ffdce36b1d8
[ 1086.014814][T20648]  </TASK>
[ 1087.238025][T20659] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4481'.
[ 1088.840344][T20688] FAULT_INJECTION: forcing a failure.
[ 1088.840344][T20688] name failslab, interval 1, probability 0, space 0, times 0
[ 1088.854581][T20688] CPU: 0 UID: 0 PID: 20688 Comm: syz.1.4490 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1088.854620][T20688] Tainted: [L]=SOFTLOCKUP
[ 1088.854628][T20688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1088.854644][T20688] Call Trace:
[ 1088.854652][T20688]  <TASK>
[ 1088.854662][T20688]  dump_stack_lvl+0x100/0x190
[ 1088.854704][T20688]  should_fail_ex.cold+0x5/0xa
[ 1088.854733][T20688]  should_failslab+0xc2/0x120
[ 1088.854759][T20688]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1088.854796][T20688]  ? __kernfs_new_node+0xd2/0x960
[ 1088.854837][T20688]  __kernfs_new_node+0xd2/0x960
[ 1088.854881][T20688]  ? kernfs_add_one+0x583/0x850
[ 1088.854923][T20688]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1088.854966][T20688]  ? find_held_lock+0x2b/0x80
[ 1088.854989][T20688]  ? kernfs_root+0xee/0x2a0
[ 1088.855022][T20688]  ? kernfs_root+0xee/0x2a0
[ 1088.855062][T20688]  kernfs_new_node+0x11b/0x1a0
[ 1088.855106][T20688]  kernfs_create_dir_ns+0x4c/0x1a0
[ 1088.855150][T20688]  internal_create_group+0x36f/0xf40
[ 1088.855193][T20688]  ? __pfx_internal_create_group+0x10/0x10
[ 1088.855230][T20688]  ? __pfx_internal_create_group+0x10/0x10
[ 1088.855270][T20688]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1088.855311][T20688]  ? bus_to_subsys+0x114/0x150
[ 1088.855343][T20688]  dpm_sysfs_add+0x80/0x280
[ 1088.855383][T20688]  device_add+0x9ef/0x1950
[ 1088.855410][T20688]  ? __pfx_device_add+0x10/0x10
[ 1088.855434][T20688]  ? lockdep_init_map_type+0x5c/0x250
[ 1088.855468][T20688]  ? __init_waitqueue_head+0xca/0x150
[ 1088.855512][T20688]  netdev_register_kobject+0x1a9/0x3d0
[ 1088.855554][T20688]  register_netdevice+0x12e0/0x2210
[ 1088.855591][T20688]  ? idr_alloc+0xdd/0x130
[ 1088.855620][T20688]  ? __pfx_register_netdevice+0x10/0x10
[ 1088.855651][T20688]  ? net_generic+0xea/0x2a0
[ 1088.855686][T20688]  ppp_dev_configure+0x986/0xcb0
[ 1088.855725][T20688]  ppp_ioctl+0x985/0x2800
[ 1088.855757][T20688]  ? find_held_lock+0x2b/0x80
[ 1088.855781][T20688]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1088.855816][T20688]  ? __fget_files+0x21f/0x3d0
[ 1088.855849][T20688]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1088.855881][T20688]  __x64_sys_ioctl+0x18e/0x210
[ 1088.855920][T20688]  do_syscall_64+0x106/0xf80
[ 1088.855950][T20688]  ? clear_bhb_loop+0x40/0x90
[ 1088.855981][T20688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1088.856008][T20688] RIP: 0033:0x7f16c3d9c799
[ 1088.856029][T20688] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1088.856054][T20688] RSP: 002b:00007f16c4cd0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1088.856078][T20688] RAX: ffffffffffffffda RBX: 00007f16c4015fa0 RCX: 00007f16c3d9c799
[ 1088.856095][T20688] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 000000000000000a
[ 1088.856111][T20688] RBP: 00007f16c3e32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1088.856127][T20688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1088.856143][T20688] R13: 00007f16c4016038 R14: 00007f16c4015fa0 R15: 00007ffcea1a5ae8
[ 1088.856175][T20688]  </TASK>
[ 1092.498255][T20730] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4497'.
[ 1094.582064][T20766] vivid-007: =================  START STATUS  =================
[ 1094.589907][T20766] vivid-007: Generate PTS: true
[ 1094.599635][T20766] vivid-007: Generate SCR: true
[ 1094.622380][T20766] tpg source WxH: 320x240 (Y'CbCr)
[ 1094.637031][T20766] tpg field: 1
[ 1094.647219][T20766] tpg crop: (0,0)/320x240
[ 1094.658722][T20766] tpg compose: (0,0)/320x240
[ 1094.677792][T20766] tpg colorspace: 8
[ 1094.712675][T20766] tpg transfer function: 0/0
[ 1094.717391][T20766] tpg Y'CbCr encoding: 0/0
[ 1094.757702][T20766] tpg quantization: 0/0
[ 1094.794110][T20766] tpg RGB range: 0/2
[ 1094.902296][T20766] vivid-007: ==================  END STATUS  ==================
[ 1097.606844][T20820] vivid-007: =================  START STATUS  =================
[ 1097.648996][T20820] vivid-007: Generate PTS: true
[ 1097.667042][T20820] vivid-007: Generate SCR: true
[ 1097.672129][T20820] tpg source WxH: 320x240 (Y'CbCr)
[ 1097.722999][T20820] tpg field: 1
[ 1097.726481][T20820] tpg crop: (0,0)/320x240
[ 1097.730882][T20820] tpg compose: (0,0)/320x240
[ 1097.758154][T20820] tpg colorspace: 8
[ 1097.779154][T20820] tpg transfer function: 0/0
[ 1097.854922][T20820] tpg Y'CbCr encoding: 0/0
[ 1097.859730][T20820] tpg quantization: 0/0
[ 1097.891881][T20820] tpg RGB range: 0/2
[ 1097.921284][T20820] vivid-007: ==================  END STATUS  ==================
[ 1098.012847][T20834] vivid-007: =================  START STATUS  =================
[ 1098.053218][T20834] vivid-007: Generate PTS: true
[ 1098.068480][T20834] vivid-007: Generate SCR: true
[ 1098.086970][T20834] tpg source WxH: 320x240 (Y'CbCr)
[ 1098.213529][T20834] tpg field: 1
[ 1098.217109][T20834] tpg crop: (0,0)/320x240
[ 1098.251587][T20834] tpg compose: (0,0)/320x240
[ 1098.275367][T20834] tpg colorspace: 8
[ 1098.299697][T20834] tpg transfer function: 0/0
[ 1098.321481][T20834] tpg Y'CbCr encoding: 0/0
[ 1098.357629][T20834] tpg quantization: 0/0
[ 1098.402720][T20834] tpg RGB range: 0/2
[ 1098.417371][T20834] vivid-007: ==================  END STATUS  ==================
[ 1099.351737][T20851] FAULT_INJECTION: forcing a failure.
[ 1099.351737][T20851] name failslab, interval 1, probability 0, space 0, times 0
[ 1099.507265][T20851] CPU: 1 UID: 0 PID: 20851 Comm: syz.1.4516 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1099.507305][T20851] Tainted: [L]=SOFTLOCKUP
[ 1099.507315][T20851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1099.507330][T20851] Call Trace:
[ 1099.507338][T20851]  <TASK>
[ 1099.507348][T20851]  dump_stack_lvl+0x100/0x190
[ 1099.507389][T20851]  should_fail_ex.cold+0x5/0xa
[ 1099.507425][T20851]  should_failslab+0xc2/0x120
[ 1099.507458][T20851]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1099.507492][T20851]  ? watch_queue_init+0x45/0x170
[ 1099.507530][T20851]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[ 1099.507584][T20851]  watch_queue_init+0x45/0x170
[ 1099.507628][T20851]  create_pipe_files+0x672/0x970
[ 1099.507658][T20851]  do_pipe2+0xbd/0x1e0
[ 1099.507683][T20851]  ? __pfx_do_pipe2+0x10/0x10
[ 1099.507708][T20851]  ? xfd_validate_state+0x129/0x190
[ 1099.507753][T20851]  __x64_sys_pipe2+0x54/0x80
[ 1099.507779][T20851]  do_syscall_64+0x106/0xf80
[ 1099.507809][T20851]  ? clear_bhb_loop+0x40/0x90
[ 1099.507839][T20851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1099.507865][T20851] RIP: 0033:0x7f16c3d9c799
[ 1099.507885][T20851] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1099.507909][T20851] RSP: 002b:00007f16c4caf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000125
[ 1099.507933][T20851] RAX: ffffffffffffffda RBX: 00007f16c4016090 RCX: 00007f16c3d9c799
[ 1099.507950][T20851] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000000
[ 1099.507967][T20851] RBP: 00007f16c3e32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1099.507983][T20851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1099.507997][T20851] R13: 00007f16c4016128 R14: 00007f16c4016090 R15: 00007ffcea1a5ae8
[ 1099.508029][T20851]  </TASK>
[ 1099.725792][T20855] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4517'.
[ 1101.272801][T20874] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4522'.
[ 1101.588633][T20888] vivid-007: =================  START STATUS  =================
[ 1101.624008][T20888] vivid-007: Generate PTS: true
[ 1101.638413][T20888] vivid-007: Generate SCR: true
[ 1101.665477][T20888] tpg source WxH: 320x240 (Y'CbCr)
[ 1101.702342][T20888] tpg field: 1
[ 1101.719321][T20888] tpg crop: (0,0)/320x240
[ 1101.736486][T20888] tpg compose: (0,0)/320x240
[ 1101.784119][T20888] tpg colorspace: 8
[ 1101.788385][T20888] tpg transfer function: 0/0
[ 1101.793163][T20888] tpg Y'CbCr encoding: 0/0
[ 1101.823142][T20888] tpg quantization: 0/0
[ 1101.830917][T20888] tpg RGB range: 0/2
[ 1101.840818][T20888] vivid-007: ==================  END STATUS  ==================
[ 1102.901888][T20902] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4527'.
[ 1103.069819][T20904] FAULT_INJECTION: forcing a failure.
[ 1103.069819][T20904] name failslab, interval 1, probability 0, space 0, times 0
[ 1103.150176][T20904] CPU: 0 UID: 0 PID: 20904 Comm: syz.1.4528 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1103.150233][T20904] Tainted: [L]=SOFTLOCKUP
[ 1103.150245][T20904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1103.150267][T20904] Call Trace:
[ 1103.150280][T20904]  <TASK>
[ 1103.150295][T20904]  dump_stack_lvl+0x100/0x190
[ 1103.150353][T20904]  should_fail_ex.cold+0x5/0xa
[ 1103.150394][T20904]  should_failslab+0xc2/0x120
[ 1103.150431][T20904]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1103.150493][T20904]  ? __kernfs_new_node+0xd2/0x960
[ 1103.150554][T20904]  __kernfs_new_node+0xd2/0x960
[ 1103.150609][T20904]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1103.150669][T20904]  ? find_held_lock+0x2b/0x80
[ 1103.150703][T20904]  ? kernfs_root+0xee/0x2a0
[ 1103.150748][T20904]  ? kernfs_root+0xee/0x2a0
[ 1103.150804][T20904]  kernfs_new_node+0x11b/0x1a0
[ 1103.150864][T20904]  __kernfs_create_file+0x53/0x350
[ 1103.150908][T20904]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1103.150961][T20904]  sysfs_merge_group+0x194/0x340
[ 1103.151011][T20904]  ? __pfx_sysfs_merge_group+0x10/0x10
[ 1103.151067][T20904]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1103.151126][T20904]  ? bus_to_subsys+0x114/0x150
[ 1103.151172][T20904]  dpm_sysfs_add+0x237/0x280
[ 1103.151229][T20904]  device_add+0x9ef/0x1950
[ 1103.151266][T20904]  ? __pfx_device_add+0x10/0x10
[ 1103.151299][T20904]  ? lockdep_init_map_type+0x5c/0x250
[ 1103.151346][T20904]  ? __init_waitqueue_head+0xca/0x150
[ 1103.151408][T20904]  netdev_register_kobject+0x1a9/0x3d0
[ 1103.151464][T20904]  register_netdevice+0x12e0/0x2210
[ 1103.151532][T20904]  ? idr_alloc+0xdd/0x130
[ 1103.151572][T20904]  ? __pfx_register_netdevice+0x10/0x10
[ 1103.151614][T20904]  ? net_generic+0xea/0x2a0
[ 1103.151661][T20904]  ppp_dev_configure+0x986/0xcb0
[ 1103.151711][T20904]  ppp_ioctl+0x985/0x2800
[ 1103.151752][T20904]  ? find_held_lock+0x2b/0x80
[ 1103.151784][T20904]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1103.151831][T20904]  ? __fget_files+0x21f/0x3d0
[ 1103.151868][T20904]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1103.151909][T20904]  __x64_sys_ioctl+0x18e/0x210
[ 1103.151957][T20904]  do_syscall_64+0x106/0xf80
[ 1103.151998][T20904]  ? clear_bhb_loop+0x40/0x90
[ 1103.152040][T20904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1103.152077][T20904] RIP: 0033:0x7f16c3d9c799
[ 1103.152104][T20904] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1103.152138][T20904] RSP: 002b:00007f16c4cd0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1103.152171][T20904] RAX: ffffffffffffffda RBX: 00007f16c4015fa0 RCX: 00007f16c3d9c799
[ 1103.152193][T20904] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 000000000000000a
[ 1103.152221][T20904] RBP: 00007f16c3e32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1103.152243][T20904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1103.152265][T20904] R13: 00007f16c4016038 R14: 00007f16c4015fa0 R15: 00007ffcea1a5ae8
[ 1103.152311][T20904]  </TASK>
[ 1103.962078][T20922] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4532'.
[ 1105.234524][T20940] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4537'.
[ 1106.845850][T20964] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4541'.
[ 1107.149375][T20952] netlink: 346 bytes leftover after parsing attributes in process `syz.1.4539'.
[ 1107.646380][T20979] vivid-007: =================  START STATUS  =================
[ 1107.654935][T20979] vivid-007: Generate PTS: true
[ 1107.660817][T20979] vivid-007: Generate SCR: true
[ 1107.665985][T20979] tpg source WxH: 320x240 (Y'CbCr)
[ 1107.671819][T20979] tpg field: 1
[ 1107.675259][T20979] tpg crop: (0,0)/320x240
[ 1107.691677][T20979] tpg compose: (0,0)/320x240
[ 1107.701256][T20979] tpg colorspace: 8
[ 1107.728065][T20979] tpg transfer function: 0/0
[ 1107.732754][T20979] tpg Y'CbCr encoding: 0/0
[ 1107.737249][T20979] tpg quantization: 0/0
[ 1107.771031][T20979] tpg RGB range: 0/2
[ 1107.775146][T20979] vivid-007: ==================  END STATUS  ==================
[ 1108.036357][T20993] vivid-007: =================  START STATUS  =================
[ 1108.078970][T20993] vivid-007: Generate PTS: true
[ 1108.090033][T20993] vivid-007: Generate SCR: true
[ 1108.102311][T20993] tpg source WxH: 320x240 (Y'CbCr)
[ 1108.132088][T20993] tpg field: 1
[ 1108.162075][T20993] tpg crop: (0,0)/320x240
[ 1108.188206][T20993] tpg compose: (0,0)/320x240
[ 1108.193235][T20993] tpg colorspace: 8
[ 1108.199437][T20993] tpg transfer function: 0/0
[ 1108.223384][T20993] tpg Y'CbCr encoding: 0/0
[ 1108.248656][T20993] tpg quantization: 0/0
[ 1108.300515][T20993] tpg RGB range: 0/2
[ 1108.304487][T20993] vivid-007: ==================  END STATUS  ==================
[ 1109.154850][T21008] FAULT_INJECTION: forcing a failure.
[ 1109.154850][T21008] name failslab, interval 1, probability 0, space 0, times 0
[ 1109.167811][T21008] CPU: 1 UID: 0 PID: 21008 Comm: syz.2.4549 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1109.167850][T21008] Tainted: [L]=SOFTLOCKUP
[ 1109.167859][T21008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1109.167874][T21008] Call Trace:
[ 1109.167884][T21008]  <TASK>
[ 1109.167900][T21008]  dump_stack_lvl+0x100/0x190
[ 1109.167943][T21008]  should_fail_ex.cold+0x5/0xa
[ 1109.167973][T21008]  should_failslab+0xc2/0x120
[ 1109.167999][T21008]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1109.168086][T21008]  ? __kernfs_new_node+0xd2/0x960
[ 1109.168128][T21008]  __kernfs_new_node+0xd2/0x960
[ 1109.168167][T21008]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1109.168211][T21008]  ? find_held_lock+0x2b/0x80
[ 1109.168234][T21008]  ? kernfs_root+0xee/0x2a0
[ 1109.168267][T21008]  ? kernfs_root+0xee/0x2a0
[ 1109.168308][T21008]  kernfs_new_node+0x11b/0x1a0
[ 1109.168352][T21008]  __kernfs_create_file+0x53/0x350
[ 1109.168384][T21008]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1109.168424][T21008]  internal_create_group+0x593/0xf40
[ 1109.168469][T21008]  ? __pfx_internal_create_group+0x10/0x10
[ 1109.168510][T21008]  ? kernfs_create_link+0x1bd/0x240
[ 1109.168543][T21008]  internal_create_groups+0x9d/0x150
[ 1109.168636][T21008]  device_add+0x7c8/0x1950
[ 1109.168675][T21008]  ? __pfx_device_add+0x10/0x10
[ 1109.168713][T21008]  ? lockdep_init_map_type+0x5c/0x250
[ 1109.168747][T21008]  ? __init_waitqueue_head+0xca/0x150
[ 1109.168792][T21008]  netdev_register_kobject+0x1a9/0x3d0
[ 1109.168833][T21008]  register_netdevice+0x12e0/0x2210
[ 1109.168908][T21008]  ? idr_alloc+0xdd/0x130
[ 1109.168939][T21008]  ? __pfx_register_netdevice+0x10/0x10
[ 1109.168971][T21008]  ? net_generic+0xea/0x2a0
[ 1109.169006][T21008]  ppp_dev_configure+0x986/0xcb0
[ 1109.169107][T21008]  ppp_ioctl+0x985/0x2800
[ 1109.169141][T21008]  ? find_held_lock+0x2b/0x80
[ 1109.169164][T21008]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1109.169200][T21008]  ? __fget_files+0x21f/0x3d0
[ 1109.169231][T21008]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1109.169262][T21008]  __x64_sys_ioctl+0x18e/0x210
[ 1109.169301][T21008]  do_syscall_64+0x106/0xf80
[ 1109.169332][T21008]  ? clear_bhb_loop+0x40/0x90
[ 1109.169363][T21008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1109.169389][T21008] RIP: 0033:0x7fac1eb9c799
[ 1109.169409][T21008] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1109.169434][T21008] RSP: 002b:00007fac1fa24028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1109.169461][T21008] RAX: ffffffffffffffda RBX: 00007fac1ee15fa0 RCX: 00007fac1eb9c799
[ 1109.169477][T21008] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 000000000000000a
[ 1109.169493][T21008] RBP: 00007fac1ec32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1109.169508][T21008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1109.169523][T21008] R13: 00007fac1ee16038 R14: 00007fac1ee15fa0 R15: 00007ffc6c634598
[ 1109.169556][T21008]  </TASK>
[ 1110.303071][T21030] vivid-007: =================  START STATUS  =================
[ 1110.333963][T21030] vivid-007: Generate PTS: true
[ 1110.369005][T21030] vivid-007: Generate SCR: true
[ 1110.410727][T21030] tpg source WxH: 320x240 (Y'CbCr)
[ 1110.445353][T21030] tpg field: 1
[ 1110.457128][T21030] tpg crop: (0,0)/320x240
[ 1110.513518][T21030] tpg compose: (0,0)/320x240
[ 1110.558869][T21030] tpg colorspace: 8
[ 1110.619625][T21030] tpg transfer function: 0/0
[ 1110.624713][T21030] tpg Y'CbCr encoding: 0/0
[ 1110.649482][T21030] tpg quantization: 0/0
[ 1110.724559][T21030] tpg RGB range: 0/2
[ 1110.766306][T21030] vivid-007: ==================  END STATUS  ==================
[ 1110.890559][T21043] vivid-007: =================  START STATUS  =================
[ 1110.901462][T21043] vivid-007: Generate PTS: true
[ 1110.906505][T21043] vivid-007: Generate SCR: true
[ 1110.912889][T21043] tpg source WxH: 320x240 (Y'CbCr)
[ 1110.918085][T21043] tpg field: 1
[ 1110.926223][T21043] tpg crop: (0,0)/320x240
[ 1110.944076][T21043] tpg compose: (0,0)/320x240
[ 1110.948728][T21043] tpg colorspace: 8
[ 1110.985097][T21043] tpg transfer function: 0/0
[ 1111.004834][T21043] tpg Y'CbCr encoding: 0/0
[ 1111.012028][T21043] tpg quantization: 0/0
[ 1111.087746][T21043] tpg RGB range: 0/2
[ 1111.114275][T21043] vivid-007: ==================  END STATUS  ==================
[ 1114.021262][T21096] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4567'.
[ 1114.352833][T21108] FAULT_INJECTION: forcing a failure.
[ 1114.352833][T21108] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1114.375853][T21108] CPU: 1 UID: 0 PID: 21108 Comm: syz.4.4568 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1114.375904][T21108] Tainted: [L]=SOFTLOCKUP
[ 1114.375916][T21108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1114.375936][T21108] Call Trace:
[ 1114.375947][T21108]  <TASK>
[ 1114.375960][T21108]  dump_stack_lvl+0x100/0x190
[ 1114.376015][T21108]  should_fail_ex.cold+0x5/0xa
[ 1114.376062][T21108]  _copy_from_user+0x2e/0xd0
[ 1114.376099][T21108]  copy_msghdr_from_user+0x9f/0x4f0
[ 1114.376157][T21108]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1114.376215][T21108]  ? rcu_is_watching+0x12/0xc0
[ 1114.376265][T21108]  ? ___sys_recvmsg+0x177/0x1a0
[ 1114.376313][T21108]  ? kfree+0x2ec/0x6b0
[ 1114.376363][T21108]  ___sys_recvmsg+0xdd/0x1a0
[ 1114.376414][T21108]  ? __pfx____sys_recvmsg+0x10/0x10
[ 1114.376489][T21108]  ? __pfx___might_resched+0x10/0x10
[ 1114.376547][T21108]  do_recvmmsg+0x301/0x760
[ 1114.376606][T21108]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1114.376655][T21108]  ? ksys_write+0x190/0x250
[ 1114.376684][T21108]  ? ksys_write+0x190/0x250
[ 1114.376720][T21108]  ? __mutex_unlock_slowpath+0x15c/0x790
[ 1114.376776][T21108]  ? __fget_files+0x21f/0x3d0
[ 1114.376814][T21108]  __x64_sys_recvmmsg+0x22a/0x280
[ 1114.376859][T21108]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1114.376915][T21108]  do_syscall_64+0x106/0xf80
[ 1114.376953][T21108]  ? clear_bhb_loop+0x40/0x90
[ 1114.376994][T21108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1114.377029][T21108] RIP: 0033:0x7f96d119c799
[ 1114.377067][T21108] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1114.377100][T21108] RSP: 002b:00007f96d20e7028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1114.377131][T21108] RAX: ffffffffffffffda RBX: 00007f96d1416180 RCX: 00007f96d119c799
[ 1114.377153][T21108] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000004
[ 1114.377173][T21108] RBP: 00007f96d20e7090 R08: 0000000000000000 R09: 0000000000000000
[ 1114.377193][T21108] R10: 000000000000000e R11: 0000000000000246 R12: 0000000000000001
[ 1114.377213][T21108] R13: 00007f96d1416218 R14: 00007f96d1416180 R15: 00007ffddaf14328
[ 1114.377258][T21108]  </TASK>
[ 1115.142199][T21120] vivid-007: =================  START STATUS  =================
[ 1115.195175][T21120] vivid-007: Generate PTS: true
[ 1115.200118][T21120] vivid-007: Generate SCR: true
[ 1115.238768][T21120] tpg source WxH: 320x240 (Y'CbCr)
[ 1115.271967][T21120] tpg field: 1
[ 1115.281460][T21120] tpg crop: (0,0)/320x240
[ 1115.321281][T21120] tpg compose: (0,0)/320x240
[ 1115.340928][T21120] tpg colorspace: 8
[ 1115.366019][T21120] tpg transfer function: 0/0
[ 1115.370771][T21120] tpg Y'CbCr encoding: 0/0
[ 1115.424020][T21120] tpg quantization: 0/0
[ 1115.428354][T21120] tpg RGB range: 0/2
[ 1115.506441][T21120] vivid-007: ==================  END STATUS  ==================
[ 1116.428560][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.436317][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.930735][T21152] FAULT_INJECTION: forcing a failure.
[ 1116.930735][T21152] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.945241][T21152] CPU: 1 UID: 0 PID: 21152 Comm: syz.5.4576 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1116.945295][T21152] Tainted: [L]=SOFTLOCKUP
[ 1116.945309][T21152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1116.945331][T21152] Call Trace:
[ 1116.945345][T21152]  <TASK>
[ 1116.945362][T21152]  dump_stack_lvl+0x100/0x190
[ 1116.945405][T21152]  should_fail_ex.cold+0x5/0xa
[ 1116.945434][T21152]  should_failslab+0xc2/0x120
[ 1116.945466][T21152]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1116.945504][T21152]  ? __kernfs_new_node+0xd2/0x960
[ 1116.945545][T21152]  __kernfs_new_node+0xd2/0x960
[ 1116.945584][T21152]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1116.945626][T21152]  ? find_held_lock+0x2b/0x80
[ 1116.945649][T21152]  ? kernfs_root+0xee/0x2a0
[ 1116.945681][T21152]  ? kernfs_root+0xee/0x2a0
[ 1116.945722][T21152]  kernfs_new_node+0x11b/0x1a0
[ 1116.945764][T21152]  __kernfs_create_file+0x53/0x350
[ 1116.945796][T21152]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1116.945836][T21152]  sysfs_merge_group+0x194/0x340
[ 1116.945873][T21152]  ? __pfx_sysfs_merge_group+0x10/0x10
[ 1116.945914][T21152]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1116.945955][T21152]  ? bus_to_subsys+0x114/0x150
[ 1116.945989][T21152]  dpm_sysfs_add+0x237/0x280
[ 1116.946030][T21152]  device_add+0x9ef/0x1950
[ 1116.946056][T21152]  ? __pfx_device_add+0x10/0x10
[ 1116.946080][T21152]  ? lockdep_init_map_type+0x5c/0x250
[ 1116.946113][T21152]  ? __init_waitqueue_head+0xca/0x150
[ 1116.946157][T21152]  netdev_register_kobject+0x1a9/0x3d0
[ 1116.946197][T21152]  register_netdevice+0x12e0/0x2210
[ 1116.946233][T21152]  ? idr_alloc+0xdd/0x130
[ 1116.946263][T21152]  ? __pfx_register_netdevice+0x10/0x10
[ 1116.946293][T21152]  ? net_generic+0xea/0x2a0
[ 1116.946327][T21152]  ppp_dev_configure+0x986/0xcb0
[ 1116.946363][T21152]  ppp_ioctl+0x985/0x2800
[ 1116.946394][T21152]  ? find_held_lock+0x2b/0x80
[ 1116.946417][T21152]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1116.946452][T21152]  ? __fget_files+0x21f/0x3d0
[ 1116.946487][T21152]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1116.946518][T21152]  __x64_sys_ioctl+0x18e/0x210
[ 1116.946557][T21152]  do_syscall_64+0x106/0xf80
[ 1116.946587][T21152]  ? clear_bhb_loop+0x40/0x90
[ 1116.946618][T21152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.946644][T21152] RIP: 0033:0x7ffaac19c799
[ 1116.946664][T21152] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1116.946690][T21152] RSP: 002b:00007ffaad0fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1116.946714][T21152] RAX: ffffffffffffffda RBX: 00007ffaac415fa0 RCX: 00007ffaac19c799
[ 1116.946731][T21152] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 000000000000000a
[ 1116.946746][T21152] RBP: 00007ffaac232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1116.946762][T21152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1116.946777][T21152] R13: 00007ffaac416038 R14: 00007ffaac415fa0 R15: 00007ffdce36b1d8
[ 1116.946809][T21152]  </TASK>
[ 1117.321602][T21166] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4578'.
[ 1118.101815][T21185] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4583'.
[ 1120.377352][T21220] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4588'.
[ 1121.521252][T21245] vivid-007: =================  START STATUS  =================
[ 1121.554881][T21245] vivid-007: Generate PTS: true
[ 1121.587329][T21245] vivid-007: Generate SCR: true
[ 1121.592311][T21245] tpg source WxH: 320x240 (Y'CbCr)
[ 1121.655445][T21245] tpg field: 1
[ 1121.669510][T21245] tpg crop: (0,0)/320x240
[ 1121.674109][T21245] tpg compose: (0,0)/320x240
[ 1121.731662][T21245] tpg colorspace: 8
[ 1121.755318][T21245] tpg transfer function: 0/0
[ 1121.790607][T21245] tpg Y'CbCr encoding: 0/0
[ 1121.817449][T21245] tpg quantization: 0/0
[ 1121.821873][T21245] tpg RGB range: 0/2
[ 1121.870531][T21245] vivid-007: ==================  END STATUS  ==================
[ 1124.931887][T21329] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4613'.
[ 1125.733421][T21339] FAULT_INJECTION: forcing a failure.
[ 1125.733421][T21339] name failslab, interval 1, probability 0, space 0, times 0
[ 1125.786480][T21339] CPU: 0 UID: 0 PID: 21339 Comm: syz.4.4615 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1125.786533][T21339] Tainted: [L]=SOFTLOCKUP
[ 1125.786546][T21339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1125.786567][T21339] Call Trace:
[ 1125.786578][T21339]  <TASK>
[ 1125.786592][T21339]  dump_stack_lvl+0x100/0x190
[ 1125.786649][T21339]  should_fail_ex.cold+0x5/0xa
[ 1125.786699][T21339]  should_failslab+0xc2/0x120
[ 1125.786754][T21339]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1125.786792][T21339]  ? __kernfs_new_node+0xd2/0x960
[ 1125.786834][T21339]  __kernfs_new_node+0xd2/0x960
[ 1125.786899][T21339]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1125.786959][T21339]  ? find_held_lock+0x2b/0x80
[ 1125.786983][T21339]  ? kernfs_root+0xee/0x2a0
[ 1125.787016][T21339]  ? kernfs_root+0xee/0x2a0
[ 1125.787057][T21339]  kernfs_new_node+0x11b/0x1a0
[ 1125.787100][T21339]  __kernfs_create_file+0x53/0x350
[ 1125.787132][T21339]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1125.787172][T21339]  sysfs_merge_group+0x194/0x340
[ 1125.787210][T21339]  ? __pfx_sysfs_merge_group+0x10/0x10
[ 1125.787250][T21339]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1125.787298][T21339]  ? bus_to_subsys+0x114/0x150
[ 1125.787330][T21339]  dpm_sysfs_add+0x237/0x280
[ 1125.787371][T21339]  device_add+0x9ef/0x1950
[ 1125.787398][T21339]  ? __pfx_device_add+0x10/0x10
[ 1125.787422][T21339]  ? lockdep_init_map_type+0x5c/0x250
[ 1125.787455][T21339]  ? __init_waitqueue_head+0xca/0x150
[ 1125.787499][T21339]  netdev_register_kobject+0x1a9/0x3d0
[ 1125.787540][T21339]  register_netdevice+0x12e0/0x2210
[ 1125.787577][T21339]  ? idr_alloc+0xdd/0x130
[ 1125.787606][T21339]  ? __pfx_register_netdevice+0x10/0x10
[ 1125.787637][T21339]  ? net_generic+0xea/0x2a0
[ 1125.787672][T21339]  ppp_dev_configure+0x986/0xcb0
[ 1125.787707][T21339]  ppp_ioctl+0x985/0x2800
[ 1125.787745][T21339]  ? find_held_lock+0x2b/0x80
[ 1125.787768][T21339]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1125.787803][T21339]  ? __fget_files+0x21f/0x3d0
[ 1125.787831][T21339]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1125.787861][T21339]  __x64_sys_ioctl+0x18e/0x210
[ 1125.787899][T21339]  do_syscall_64+0x106/0xf80
[ 1125.787929][T21339]  ? clear_bhb_loop+0x40/0x90
[ 1125.787960][T21339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1125.787986][T21339] RIP: 0033:0x7f96d119c799
[ 1125.788007][T21339] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1125.788031][T21339] RSP: 002b:00007f96d2129028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1125.788055][T21339] RAX: ffffffffffffffda RBX: 00007f96d1415fa0 RCX: 00007f96d119c799
[ 1125.788072][T21339] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 000000000000000a
[ 1125.788088][T21339] RBP: 00007f96d1232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1125.788103][T21339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1125.788118][T21339] R13: 00007f96d1416038 R14: 00007f96d1415fa0 R15: 00007ffddaf14328
[ 1125.788150][T21339]  </TASK>
[ 1126.720470][T21353] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4618'.
[ 1127.342717][T21370] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4622'.
[ 1127.919059][T21379] vivid-007: =================  START STATUS  =================
[ 1127.926822][T21379] vivid-007: Generate PTS: true
[ 1127.933279][T21379] vivid-007: Generate SCR: true
[ 1127.940476][T21379] tpg source WxH: 320x240 (Y'CbCr)
[ 1127.945684][T21379] tpg field: 1
[ 1127.949159][T21379] tpg crop: (0,0)/320x240
[ 1127.953642][T21379] tpg compose: (0,0)/320x240
[ 1127.958423][T21379] tpg colorspace: 8
[ 1127.964792][T21379] tpg transfer function: 0/0
[ 1127.971018][T21379] tpg Y'CbCr encoding: 0/0
[ 1127.975629][T21379] tpg quantization: 0/0
[ 1127.981367][T21379] tpg RGB range: 0/2
[ 1127.987719][T21379] vivid-007: ==================  END STATUS  ==================
[ 1129.063041][T21408] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4631'.
[ 1131.030266][T21445] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4639'.
[ 1131.048255][T21445] openvswitch: HfR: Dropping previously announced user features
[ 1131.346782][T21452] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4641'.
[ 1136.643353][T21558] FAULT_INJECTION: forcing a failure.
[ 1136.643353][T21558] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1136.658408][T21558] CPU: 0 UID: 0 PID: 21558 Comm: syz.2.4665 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1136.658466][T21558] Tainted: [L]=SOFTLOCKUP
[ 1136.658475][T21558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1136.658490][T21558] Call Trace:
[ 1136.658499][T21558]  <TASK>
[ 1136.658509][T21558]  dump_stack_lvl+0x100/0x190
[ 1136.658551][T21558]  should_fail_ex.cold+0x5/0xa
[ 1136.658580][T21558]  _copy_from_user+0x2e/0xd0
[ 1136.658605][T21558]  snd_rawmidi_kernel_write1+0x390/0x7c0
[ 1136.658679][T21558]  snd_rawmidi_write+0x2dc/0xc60
[ 1136.658713][T21558]  ? __pfx_snd_rawmidi_write+0x10/0x10
[ 1136.658743][T21558]  ? __pfx_default_wake_function+0x10/0x10
[ 1136.658771][T21558]  ? bpf_lsm_file_permission+0x9/0x10
[ 1136.658818][T21558]  ? security_file_permission+0x76/0x210
[ 1136.658848][T21558]  ? rw_verify_area+0xce/0x6d0
[ 1136.658886][T21558]  vfs_write+0x2aa/0x1070
[ 1136.658930][T21558]  ? __pfx_snd_rawmidi_write+0x10/0x10
[ 1136.658960][T21558]  ? __pfx_vfs_write+0x10/0x10
[ 1136.658997][T21558]  ? find_held_lock+0x2b/0x80
[ 1136.659020][T21558]  ? __fget_files+0x215/0x3d0
[ 1136.659042][T21558]  ? __fget_files+0x215/0x3d0
[ 1136.659069][T21558]  ? __fget_files+0x21f/0x3d0
[ 1136.659100][T21558]  ksys_write+0x1f8/0x250
[ 1136.659122][T21558]  ? __pfx_ksys_write+0x10/0x10
[ 1136.659153][T21558]  do_syscall_64+0x106/0xf80
[ 1136.659183][T21558]  ? clear_bhb_loop+0x40/0x90
[ 1136.659214][T21558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1136.659240][T21558] RIP: 0033:0x7fac1eb9c799
[ 1136.659261][T21558] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1136.659285][T21558] RSP: 002b:00007fac1fa24028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1136.659308][T21558] RAX: ffffffffffffffda RBX: 00007fac1ee15fa0 RCX: 00007fac1eb9c799
[ 1136.659327][T21558] RDX: 000000100000a3d9 RSI: 0000200000000400 RDI: 0000000000000007
[ 1136.659343][T21558] RBP: 00007fac1ec32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1136.659358][T21558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1136.659373][T21558] R13: 00007fac1ee16038 R14: 00007fac1ee15fa0 R15: 00007ffc6c634598
[ 1136.659405][T21558]  </TASK>
[ 1142.155545][T21672] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4692'.
[ 1143.946302][T21713] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4702'.
[ 1143.961618][T21714] FAULT_INJECTION: forcing a failure.
[ 1143.961618][T21714] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1144.010298][T21714] CPU: 1 UID: 0 PID: 21714 Comm: syz.2.4703 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1144.010351][T21714] Tainted: [L]=SOFTLOCKUP
[ 1144.010364][T21714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1144.010384][T21714] Call Trace:
[ 1144.010396][T21714]  <TASK>
[ 1144.010409][T21714]  dump_stack_lvl+0x100/0x190
[ 1144.010465][T21714]  should_fail_ex.cold+0x5/0xa
[ 1144.010501][T21714]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1144.010543][T21714]  should_fail_alloc_page+0xeb/0x140
[ 1144.010582][T21714]  prepare_alloc_pages+0x1f0/0x5f0
[ 1144.010627][T21714]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 1144.010683][T21714]  ? look_up_lock_class+0x64/0x120
[ 1144.010734][T21714]  ? register_lock_class+0x40/0x560
[ 1144.010775][T21714]  ? find_held_lock+0x2b/0x80
[ 1144.010805][T21714]  ? ima_match_policy+0x8c4/0x2350
[ 1144.010837][T21714]  ? ima_match_policy+0x8c4/0x2350
[ 1144.010875][T21714]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1144.010951][T21714]  ? __pfx___might_resched+0x10/0x10
[ 1144.011001][T21714]  ? find_held_lock+0x2b/0x80
[ 1144.011030][T21714]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1144.011087][T21714]  ? policy_nodemask+0xed/0x4f0
[ 1144.011125][T21714]  alloc_pages_mpol+0x1fb/0x550
[ 1144.011163][T21714]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1144.011210][T21714]  alloc_pages_noprof+0x131/0x390
[ 1144.011248][T21714]  __pmd_alloc+0x3b/0x950
[ 1144.011290][T21714]  __handle_mm_fault+0xa99/0x2b60
[ 1144.011342][T21714]  ? mt_find+0x45e/0x8e0
[ 1144.011387][T21714]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1144.011428][T21714]  ? __pfx_mt_find+0x10/0x10
[ 1144.011494][T21714]  ? find_vma+0xbf/0x140
[ 1144.011524][T21714]  ? __pfx_find_vma+0x10/0x10
[ 1144.011561][T21714]  handle_mm_fault+0x36d/0xa20
[ 1144.011614][T21714]  do_user_addr_fault+0x74c/0x12f0
[ 1144.011681][T21714]  exc_page_fault+0x6f/0xd0
[ 1144.011728][T21714]  asm_exc_page_fault+0x26/0x30
[ 1144.011762][T21714] RIP: 0010:__put_user_4+0xd/0x20
[ 1144.011801][T21714] Code: 66 89 01 31 c9 0f 01 ca e9 c0 d0 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 97 d0 03 00 0f 1f 80 00 00 00 00 90 90 90
[ 1144.011835][T21714] RSP: 0018:ffffc9000a857b10 EFLAGS: 00050246
[ 1144.011863][T21714] RAX: 00000000000001c0 RBX: 0000000000000000 RCX: 0000000000000000
[ 1144.011884][T21714] RDX: ffff888078a81e80 RSI: ffffffff8255fed1 RDI: ffffffff8c1afaa0
[ 1144.011906][T21714] RBP: 0000000000000000 R08: 0000000000000001 R09: 00000000000001c9
[ 1144.011926][T21714] R10: 0000000000000200 R11: 0000000000000000 R12: 00000000000001c0
[ 1144.011946][T21714] R13: ffffffff87d58f63 R14: ffff88802c8b0000 R15: ffff88802c8b0590
[ 1144.011970][T21714]  ? rtc_dev_read+0x323/0x520
[ 1144.012156][T21714]  ? __might_fault+0x111/0x140
[ 1144.012208][T21714]  rtc_dev_read+0x481/0x520
[ 1144.012255][T21714]  ? rtc_dev_read+0x18f/0x520
[ 1144.012307][T21714]  ? __pfx_rtc_dev_read+0x10/0x10
[ 1144.012354][T21714]  ? __pfx_default_wake_function+0x10/0x10
[ 1144.012392][T21714]  ? bpf_lsm_file_permission+0x9/0x10
[ 1144.012443][T21714]  ? security_file_permission+0x76/0x210
[ 1144.012480][T21714]  ? rw_verify_area+0xce/0x6d0
[ 1144.012530][T21714]  ? __pfx_rtc_dev_read+0x10/0x10
[ 1144.012572][T21714]  vfs_readv+0x5d8/0x8d0
[ 1144.012632][T21714]  ? __pfx_vfs_readv+0x10/0x10
[ 1144.012680][T21714]  ? find_held_lock+0x2b/0x80
[ 1144.012741][T21714]  ? __fget_files+0x21f/0x3d0
[ 1144.012783][T21714]  ? do_readv+0x13e/0x340
[ 1144.012828][T21714]  do_readv+0x13e/0x340
[ 1144.012877][T21714]  ? __pfx_do_readv+0x10/0x10
[ 1144.012937][T21714]  do_syscall_64+0x106/0xf80
[ 1144.012976][T21714]  ? clear_bhb_loop+0x40/0x90
[ 1144.013017][T21714]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1144.013052][T21714] RIP: 0033:0x7fac1eb9c799
[ 1144.013080][T21714] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1144.013113][T21714] RSP: 002b:00007fac1fa24028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[ 1144.013143][T21714] RAX: ffffffffffffffda RBX: 00007fac1ee15fa0 RCX: 00007fac1eb9c799
[ 1144.013166][T21714] RDX: 0000000000000005 RSI: 00002000000004c0 RDI: 0000000000000003
[ 1144.013186][T21714] RBP: 00007fac1fa24090 R08: 0000000000000000 R09: 0000000000000000
[ 1144.013208][T21714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1144.013227][T21714] R13: 00007fac1ee16038 R14: 00007fac1ee15fa0 R15: 00007ffc6c634598
[ 1144.013274][T21714]  </TASK>
[ 1145.969382][T21748] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4713'.
[ 1147.313154][T21779] vivid-007: =================  START STATUS  =================
[ 1147.338470][T21779] vivid-007: Generate PTS: true
[ 1147.343460][T21779] vivid-007: Generate SCR: true
[ 1147.380823][T21779] tpg source WxH: 320x240 (Y'CbCr)
[ 1147.386145][T21779] tpg field: 1
[ 1147.418852][T21779] tpg crop: (0,0)/320x240
[ 1147.423282][T21779] tpg compose: (0,0)/320x240
[ 1147.428324][T21779] tpg colorspace: 8
[ 1147.432197][T21779] tpg transfer function: 0/0
[ 1147.437184][T21779] tpg Y'CbCr encoding: 0/0
[ 1147.479170][T21779] tpg quantization: 0/0
[ 1147.483414][T21779] tpg RGB range: 0/2
[ 1147.487382][T21779] vivid-007: ==================  END STATUS  ==================
[ 1148.749226][T21809] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12)
[ 1150.519126][T21842] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4734'.
[ 1150.787934][T21848] tipc: Publication distribution failure
[ 1152.472220][T21878] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4744'.
[ 1152.525562][T21881] misc userio: Invalid payload size
[ 1153.982457][T21909] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12)
[ 1154.037585][T21912] snd_virmidi snd_virmidi.0: control 61678:131081:3:y�:8 is already present
[ 1154.490033][T21922] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4753'.
[ 1154.618323][T21926] netlink: 202 bytes leftover after parsing attributes in process `syz.2.4755'.
[ 1156.199326][T21953] vivid-007: =================  START STATUS  =================
[ 1156.232175][T21953] vivid-007: Generate PTS: true
[ 1156.237171][T21953] vivid-007: Generate SCR: true
[ 1156.255746][T21953] tpg source WxH: 320x240 (Y'CbCr)
[ 1156.265889][T21953] tpg field: 1
[ 1156.269359][T21953] tpg crop: (0,0)/320x240
[ 1156.292248][T21953] tpg compose: (0,0)/320x240
[ 1156.297478][T21953] tpg colorspace: 8
[ 1156.301352][T21953] tpg transfer function: 0/0
[ 1156.326644][T21953] tpg Y'CbCr encoding: 0/0
[ 1156.332456][T21953] tpg quantization: 0/0
[ 1156.336677][T21953] tpg RGB range: 0/2
[ 1156.340706][T21953] vivid-007: ==================  END STATUS  ==================
[ 1156.542044][T21968] netlink: 330 bytes leftover after parsing attributes in process `syz.2.4766'.
[ 1157.608270][T21987] FAULT_INJECTION: forcing a failure.
[ 1157.608270][T21987] name failslab, interval 1, probability 0, space 0, times 0
[ 1157.683522][T21987] CPU: 0 UID: 0 PID: 21987 Comm: syz.5.4771 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1157.683574][T21987] Tainted: [L]=SOFTLOCKUP
[ 1157.683587][T21987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1157.683607][T21987] Call Trace:
[ 1157.683618][T21987]  <TASK>
[ 1157.683631][T21987]  dump_stack_lvl+0x100/0x190
[ 1157.683686][T21987]  should_fail_ex.cold+0x5/0xa
[ 1157.683726][T21987]  should_failslab+0xc2/0x120
[ 1157.683760][T21987]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1157.683803][T21987]  ? __do_sys_getcwd+0xe5/0x960
[ 1157.683846][T21987]  ? do_futex+0x192/0x350
[ 1157.683904][T21987]  __do_sys_getcwd+0xe5/0x960
[ 1157.683953][T21987]  ? __x64_sys_futex+0x34f/0x4d0
[ 1157.683993][T21987]  ? __x64_sys_futex+0x358/0x4d0
[ 1157.684035][T21987]  ? __pfx___do_sys_getcwd+0x10/0x10
[ 1157.684088][T21987]  ? xfd_validate_state+0x129/0x190
[ 1157.684150][T21987]  do_syscall_64+0x106/0xf80
[ 1157.684189][T21987]  ? clear_bhb_loop+0x40/0x90
[ 1157.684229][T21987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1157.684263][T21987] RIP: 0033:0x7ffaac19c799
[ 1157.684300][T21987] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1157.684333][T21987] RSP: 002b:00007ffaad0fe028 EFLAGS: 00000246 ORIG_RAX: 000000000000004f
[ 1157.684366][T21987] RAX: ffffffffffffffda RBX: 00007ffaac415fa0 RCX: 00007ffaac19c799
[ 1157.684389][T21987] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000000
[ 1157.684409][T21987] RBP: 00007ffaac232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1157.684430][T21987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1157.684450][T21987] R13: 00007ffaac416038 R14: 00007ffaac415fa0 R15: 00007ffdce36b1d8
[ 1157.684494][T21987]  </TASK>
[ 1159.620240][T22025] Invalid ELF header magic: != ELF
[ 1161.986065][T22075] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4794'.
[ 1162.437400][T22086] usb usb24: usbfs: process 22086 (syz.2.4797) did not claim interface 0 before use
[ 1163.041177][T22106] vivid-007: =================  START STATUS  =================
[ 1163.081776][T22106] vivid-007: Generate PTS: true
[ 1163.092867][T22106] vivid-007: Generate SCR: true
[ 1163.105673][T22106] tpg source WxH: 320x240 (Y'CbCr)
[ 1163.115814][T22106] tpg field: 1
[ 1163.119278][T22106] tpg crop: (0,0)/320x240
[ 1163.132686][T22106] tpg compose: (0,0)/320x240
[ 1163.145676][T22106] tpg colorspace: 8
[ 1163.150756][T22106] tpg transfer function: 0/0
[ 1163.160171][T22106] tpg Y'CbCr encoding: 0/0
[ 1163.170091][T22106] tpg quantization: 0/0
[ 1163.176128][T22106] tpg RGB range: 0/2
[ 1163.183443][T22106] vivid-007: ==================  END STATUS  ==================
[ 1163.293097][T22096] netlink: 354 bytes leftover after parsing attributes in process `syz.1.4801'.
[ 1163.861188][T22126] netlink: 472 bytes leftover after parsing attributes in process `syz.1.4806'.
[ 1165.213862][T22163] vivid-007: =================  START STATUS  =================
[ 1165.261953][T22163] vivid-007: Generate PTS: true
[ 1165.279451][T22163] vivid-007: Generate SCR: true
[ 1165.305362][T22163] tpg source WxH: 320x240 (Y'CbCr)
[ 1165.336837][T22163] tpg field: 1
[ 1165.340309][T22163] tpg crop: (0,0)/320x240
[ 1165.344670][T22163] tpg compose: (0,0)/320x240
[ 1165.393994][T22163] tpg colorspace: 8
[ 1165.447144][T22163] tpg transfer function: 0/0
[ 1165.451831][T22163] tpg Y'CbCr encoding: 0/0
[ 1165.456386][T22163] tpg quantization: 0/0
[ 1165.517674][T22163] tpg RGB range: 0/2
[ 1165.521672][T22163] vivid-007: ==================  END STATUS  ==================
[ 1168.615799][T22243] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4829'.
[ 1169.114338][T22255] vivid-007: =================  START STATUS  =================
[ 1169.134060][T22255] vivid-007: Generate PTS: true
[ 1169.153483][T22255] vivid-007: Generate SCR: true
[ 1169.161614][T22255] tpg source WxH: 320x240 (Y'CbCr)
[ 1169.167113][T22255] tpg field: 1
[ 1169.194928][T22255] tpg crop: (0,0)/320x240
[ 1169.202392][T22255] tpg compose: (0,0)/320x240
[ 1169.207382][T22255] tpg colorspace: 8
[ 1169.212788][T22255] tpg transfer function: 0/0
[ 1169.218118][T22255] tpg Y'CbCr encoding: 0/0
[ 1169.238429][T22255] tpg quantization: 0/0
[ 1169.259195][T22255] tpg RGB range: 0/2
[ 1169.263420][T22255] vivid-007: ==================  END STATUS  ==================
[ 1170.582453][T22285] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4294950720 (549753692160 ns) > initial count (26496 ns). Using initial count to start timer.
[ 1170.941448][T22292] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4842'.
[ 1172.209433][T22312] ubi0: attaching mtd0
[ 1172.234867][T22312] ubi0: scanning is finished
[ 1172.260275][T22312] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1172.498450][T22312] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1172.549868][T22320] vivid-007: =================  START STATUS  =================
[ 1172.569868][T22320] vivid-007: Generate PTS: true
[ 1172.576842][T22320] vivid-007: Generate SCR: true
[ 1172.590401][T22320] tpg source WxH: 320x240 (Y'CbCr)
[ 1172.600066][T22320] tpg field: 1
[ 1172.610731][T22320] tpg crop: (0,0)/320x240
[ 1172.615246][T22320] tpg compose: (0,0)/320x240
[ 1172.632782][T22320] tpg colorspace: 8
[ 1172.636692][T22320] tpg transfer function: 0/0
[ 1172.651535][T22320] tpg Y'CbCr encoding: 0/0
[ 1172.661382][T22320] tpg quantization: 0/0
[ 1172.677842][T22320] tpg RGB range: 0/2
[ 1172.687998][T22320] vivid-007: ==================  END STATUS  ==================
[ 1172.892731][T22332] program syz.5.4850 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1174.039804][T22360] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4859'.
[ 1176.499869][ T8750] Bluetooth: hci4: unexpected event 0x3e length: 508 > 260
[ 1176.499910][ T8750] Bluetooth: hci4: unexpected subevent 0x02 length: 507 > 260
[ 1176.516097][ T8750] Bluetooth: hci4: Dropping invalid advertising data
[ 1176.525780][ T8750] Bluetooth: hci4: unknown advertising packet type: 0xe9
[ 1176.525824][ T8750] Bluetooth: hci4: Dropping invalid advertising data
[ 1176.540796][ T8750] Bluetooth: hci4: Malformed LE Event: 0x02
[ 1177.019651][T22421] vivid-007: =================  START STATUS  =================
[ 1177.042896][T22421] vivid-007: Generate PTS: true
[ 1177.047874][T22421] vivid-007: Generate SCR: true
[ 1177.072669][T22421] tpg source WxH: 320x240 (Y'CbCr)
[ 1177.082949][T22421] tpg field: 1
[ 1177.086421][T22421] tpg crop: (0,0)/320x240
[ 1177.090809][T22421] tpg compose: (0,0)/320x240
[ 1177.200541][T22421] tpg colorspace: 8
[ 1177.235356][T22421] tpg transfer function: 0/0
[ 1177.283899][T22421] tpg Y'CbCr encoding: 0/0
[ 1177.288413][T22421] tpg quantization: 0/0
[ 1177.312966][T22421] tpg RGB range: 0/2
[ 1177.316962][T22421] vivid-007: ==================  END STATUS  ==================
[ 1177.899003][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.905842][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 1180.074108][T22475] vivid-007: =================  START STATUS  =================
[ 1180.100169][T22475] vivid-007: Generate PTS: true
[ 1180.114160][T22475] vivid-007: Generate SCR: true
[ 1180.125019][T22475] tpg source WxH: 320x240 (Y'CbCr)
[ 1180.146699][T22475] tpg field: 1
[ 1180.156711][T22475] tpg crop: (0,0)/320x240
[ 1180.165901][T22475] tpg compose: (0,0)/320x240
[ 1180.177053][T22475] tpg colorspace: 8
[ 1180.185312][T22475] tpg transfer function: 0/0
[ 1180.202916][T22475] tpg Y'CbCr encoding: 0/0
[ 1180.213087][T22475] tpg quantization: 0/0
[ 1180.222190][T22475] tpg RGB range: 0/2
[ 1180.232423][T22475] vivid-007: ==================  END STATUS  ==================
[ 1185.573192][T22570] vivid-007: =================  START STATUS  =================
[ 1185.581149][T22570] vivid-007: Generate PTS: true
[ 1185.591866][T22570] vivid-007: Generate SCR: true
[ 1185.598090][T22570] tpg source WxH: 320x240 (Y'CbCr)
[ 1185.603473][T22570] tpg field: 1
[ 1185.607459][T22570] tpg crop: (0,0)/320x240
[ 1185.611935][T22570] tpg compose: (0,0)/320x240
[ 1185.617263][T22570] tpg colorspace: 8
[ 1185.621256][T22570] tpg transfer function: 0/0
[ 1185.626130][T22570] tpg Y'CbCr encoding: 0/0
[ 1185.640227][T22570] tpg quantization: 0/0
[ 1185.660019][T22570] tpg RGB range: 0/2
[ 1185.666433][T22570] vivid-007: ==================  END STATUS  ==================
[ 1186.522580][T22594] vivid-007: =================  START STATUS  =================
[ 1186.575481][T22594] vivid-007: Generate PTS: true
[ 1186.598605][T22594] vivid-007: Generate SCR: true
[ 1186.603755][T22594] tpg source WxH: 320x240 (Y'CbCr)
[ 1186.609108][T22594] tpg field: 1
[ 1186.612573][T22594] tpg crop: (0,0)/320x240
[ 1186.648592][T22594] tpg compose: (0,0)/320x240
[ 1186.694520][T22594] tpg colorspace: 8
[ 1186.705798][T22594] tpg transfer function: 0/0
[ 1186.720095][T22594] tpg Y'CbCr encoding: 0/0
[ 1186.772018][T22594] tpg quantization: 0/0
[ 1186.776245][T22594] tpg RGB range: 0/2
[ 1186.806664][T22594] vivid-007: ==================  END STATUS  ==================
[ 1188.633730][T22635] vivid-007: =================  START STATUS  =================
[ 1188.644411][T22635] vivid-007: Generate PTS: true
[ 1188.651196][T22635] vivid-007: Generate SCR: true
[ 1188.656489][T22635] tpg source WxH: 320x240 (Y'CbCr)
[ 1188.662501][T22635] tpg field: 1
[ 1188.666862][T22635] tpg crop: (0,0)/320x240
[ 1188.678624][T22635] tpg compose: (0,0)/320x240
[ 1188.692189][T22635] tpg colorspace: 8
[ 1188.696173][T22635] tpg transfer function: 0/0
[ 1188.739800][T22635] tpg Y'CbCr encoding: 0/0
[ 1188.748690][T22635] tpg quantization: 0/0
[ 1188.766535][T22635] tpg RGB range: 0/2
[ 1188.824687][T22635] vivid-007: ==================  END STATUS  ==================
[ 1191.468030][T22677] FAULT_INJECTION: forcing a failure.
[ 1191.468030][T22677] name failslab, interval 1, probability 0, space 0, times 0
[ 1191.519807][T22677] CPU: 1 UID: 0 PID: 22677 Comm: syz.2.4933 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1191.519860][T22677] Tainted: [L]=SOFTLOCKUP
[ 1191.519873][T22677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1191.519893][T22677] Call Trace:
[ 1191.519905][T22677]  <TASK>
[ 1191.519917][T22677]  dump_stack_lvl+0x100/0x190
[ 1191.519985][T22677]  should_fail_ex.cold+0x5/0xa
[ 1191.520030][T22677]  should_failslab+0xc2/0x120
[ 1191.520069][T22677]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1191.520123][T22677]  ? vm_area_dup+0x27/0x8e0
[ 1191.520177][T22677]  vm_area_dup+0x27/0x8e0
[ 1191.520225][T22677]  __split_vma+0x18c/0xd90
[ 1191.520279][T22677]  ? __pfx___split_vma+0x10/0x10
[ 1191.520335][T22677]  ? __pfx___vma_start_write+0x10/0x10
[ 1191.520378][T22677]  ? __pfx_mas_prev+0x10/0x10
[ 1191.520437][T22677]  vms_gather_munmap_vmas+0x39f/0x1500
[ 1191.520498][T22677]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[ 1191.520555][T22677]  ? mas_walk+0x6ef/0x9b0
[ 1191.520607][T22677]  __mmap_region+0x492/0x29e0
[ 1191.520657][T22677]  ? kmem_cache_free+0x44b/0x6a0
[ 1191.520701][T22677]  ? __fput_deferred+0x3e6/0x490
[ 1191.520740][T22677]  ? fput_close+0x118/0x250
[ 1191.520780][T22677]  ? path_openat+0xfec/0x31a0
[ 1191.520813][T22677]  ? do_file_open+0x20e/0x430
[ 1191.520847][T22677]  ? __pfx___mmap_region+0x10/0x10
[ 1191.520892][T22677]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1191.520932][T22677]  ? css_rstat_updated+0x1ce/0x5a0
[ 1191.520973][T22677]  ? __pfx_css_rstat_updated+0x10/0x10
[ 1191.521035][T22677]  ? __lock_acquire+0x4a5/0x2630
[ 1191.521097][T22677]  ? lock_acquire+0x1cf/0x380
[ 1191.521140][T22677]  ? find_held_lock+0x2b/0x80
[ 1191.521172][T22677]  ? finish_task_switch.isra.0+0x200/0xb80
[ 1191.521210][T22677]  ? finish_task_switch.isra.0+0x200/0xb80
[ 1191.521265][T22677]  ? trace_sched_exit_tp+0x13a/0x180
[ 1191.521307][T22677]  ? __schedule+0x1000/0x6120
[ 1191.521400][T22677]  ? rcu_is_watching+0x12/0xc0
[ 1191.521452][T22677]  ? cap_capable+0x107/0x460
[ 1191.521510][T22677]  mmap_region+0x180/0x3e0
[ 1191.521570][T22677]  do_mmap+0xc63/0x12f0
[ 1191.521616][T22677]  ? __pfx_do_mmap+0x10/0x10
[ 1191.521654][T22677]  ? __pfx_down_write_killable+0x10/0x10
[ 1191.521712][T22677]  vm_mmap_pgoff+0x29e/0x470
[ 1191.521759][T22677]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1191.521802][T22677]  ? do_futex+0x192/0x350
[ 1191.521846][T22677]  ? __pfx_do_futex+0x10/0x10
[ 1191.521886][T22677]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1191.521939][T22677]  ksys_mmap_pgoff+0xe1/0x650
[ 1191.521975][T22677]  ? __x64_sys_futex+0x34f/0x4d0
[ 1191.522025][T22677]  ? __x64_sys_futex+0x358/0x4d0
[ 1191.522064][T22677]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 1191.522097][T22677]  ? xfd_validate_state+0x129/0x190
[ 1191.522146][T22677]  __x64_sys_mmap+0x125/0x190
[ 1191.522194][T22677]  do_syscall_64+0x106/0xf80
[ 1191.522228][T22677]  ? clear_bhb_loop+0x40/0x90
[ 1191.522263][T22677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1191.522293][T22677] RIP: 0033:0x7fac1eb9c799
[ 1191.522319][T22677] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1191.522348][T22677] RSP: 002b:00007fac1fa03028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1191.522376][T22677] RAX: ffffffffffffffda RBX: 00007fac1ee16090 RCX: 00007fac1eb9c799
[ 1191.522396][T22677] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1191.522415][T22677] RBP: 00007fac1ec32c99 R08: 0000000000000002 R09: 0000000000008000
[ 1191.522433][T22677] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1191.522451][T22677] R13: 00007fac1ee16128 R14: 00007fac1ee16090 R15: 00007ffc6c634598
[ 1191.522490][T22677]  </TASK>
[ 1195.113351][T22731] vivid-007: =================  START STATUS  =================
[ 1195.121088][T22731] vivid-007: Generate PTS: true
[ 1195.172189][T22731] vivid-007: Generate SCR: true
[ 1195.241703][T22731] tpg source WxH: 320x240 (Y'CbCr)
[ 1195.261700][T22731] tpg field: 1
[ 1195.265342][T22731] tpg crop: (0,0)/320x240
[ 1195.324003][T22731] tpg compose: (0,0)/320x240
[ 1195.409002][T22731] tpg colorspace: 8
[ 1195.471948][T22731] tpg transfer function: 0/0
[ 1195.476870][T22731] tpg Y'CbCr encoding: 0/0
[ 1195.481375][T22731] tpg quantization: 0/0
[ 1195.587979][T22731] tpg RGB range: 0/2
[ 1195.695161][T22731] vivid-007: ==================  END STATUS  ==================
[ 1198.054730][T22790] vivid-007: =================  START STATUS  =================
[ 1198.105642][T22790] vivid-007: Generate PTS: true
[ 1198.115769][T22790] vivid-007: Generate SCR: true
[ 1198.120801][T22790] tpg source WxH: 320x240 (Y'CbCr)
[ 1198.196247][T22790] tpg field: 1
[ 1198.199717][T22790] tpg crop: (0,0)/320x240
[ 1198.223166][T22790] tpg compose: (0,0)/320x240
[ 1198.227903][T22790] tpg colorspace: 8
[ 1198.232011][T22790] tpg transfer function: 0/0
[ 1198.254673][T22790] tpg Y'CbCr encoding: 0/0
[ 1198.259298][T22790] tpg quantization: 0/0
[ 1198.263947][T22790] tpg RGB range: 0/2
[ 1198.291614][T22790] vivid-007: ==================  END STATUS  ==================
[ 1199.330641][T22808] block nbd0: NBD_DISCONNECT
[ 1199.343912][T22808] block nbd0: Send disconnect failed -32
[ 1200.204422][T22828] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4968'.
[ 1200.246794][T22828] bond0: (slave bond_slave_0): Releasing backup interface
[ 1200.549614][T22834] zswap: compressor  not available
[ 1201.076519][T22850] vivid-007: =================  START STATUS  =================
[ 1201.104851][T22850] vivid-007: Generate PTS: true
[ 1201.109828][T22850] vivid-007: Generate SCR: true
[ 1201.166725][T22850] tpg source WxH: 320x240 (Y'CbCr)
[ 1201.171953][T22850] tpg field: 1
[ 1201.193629][T22850] tpg crop: (0,0)/320x240
[ 1201.226166][T22850] tpg compose: (0,0)/320x240
[ 1201.231706][T22850] tpg colorspace: 8
[ 1201.244770][T22850] tpg transfer function: 0/0
[ 1201.262675][T22850] tpg Y'CbCr encoding: 0/0
[ 1201.414949][T22850] tpg quantization: 0/0
[ 1201.462208][T22850] tpg RGB range: 0/2
[ 1201.496363][T22850] vivid-007: ==================  END STATUS  ==================
[ 1202.038211][T22860] FAULT_INJECTION: forcing a failure.
[ 1202.038211][T22860] name failslab, interval 1, probability 0, space 0, times 0
[ 1202.115253][T22860] CPU: 1 UID: 0 PID: 22860 Comm: syz.4.4973 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1202.115305][T22860] Tainted: [L]=SOFTLOCKUP
[ 1202.115318][T22860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1202.115339][T22860] Call Trace:
[ 1202.115351][T22860]  <TASK>
[ 1202.115364][T22860]  dump_stack_lvl+0x100/0x190
[ 1202.115466][T22860]  should_fail_ex.cold+0x5/0xa
[ 1202.115508][T22860]  should_failslab+0xc2/0x120
[ 1202.115543][T22860]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1202.115595][T22860]  ? __pmd_alloc+0xbf/0x950
[ 1202.115654][T22860]  __pmd_alloc+0xbf/0x950
[ 1202.115691][T22860]  ? __pud_alloc+0x52e/0x6e0
[ 1202.115733][T22860]  copy_page_range+0x4531/0x6570
[ 1202.115792][T22860]  ? __lock_acquire+0x4a5/0x2630
[ 1202.115865][T22860]  ? mas_wr_store_entry+0x6d2/0x2390
[ 1202.115918][T22860]  ? __pfx_copy_page_range+0x10/0x10
[ 1202.115974][T22860]  ? mas_store+0x666/0xac0
[ 1202.116025][T22860]  ? __pfx_mas_store+0x10/0x10
[ 1202.116084][T22860]  ? __pfx___vma_start_write+0x10/0x10
[ 1202.116141][T22860]  dup_mmap+0xd25/0x2180
[ 1202.116200][T22860]  ? __pfx_dup_mmap+0x10/0x10
[ 1202.116238][T22860]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1202.116287][T22860]  ? __lock_acquire+0x4a5/0x2630
[ 1202.116332][T22860]  ? find_held_lock+0x2b/0x80
[ 1202.116363][T22860]  ? __percpu_counter_init_many+0x2bc/0x3b0
[ 1202.116527][T22860]  copy_process+0x73d7/0x7a10
[ 1202.116567][T22860]  ? futex_unqueue+0x133/0x2c0
[ 1202.116630][T22860]  ? __pfx_copy_process+0x10/0x10
[ 1202.116691][T22860]  ? _copy_from_user+0x59/0xd0
[ 1202.116733][T22860]  kernel_clone+0xfc/0x9a0
[ 1202.116778][T22860]  ? __pfx_kernel_clone+0x10/0x10
[ 1202.116828][T22860]  ? __pfx_futex_wait+0x10/0x10
[ 1202.116892][T22860]  __do_sys_clone3+0x214/0x290
[ 1202.116934][T22860]  ? __pfx___do_sys_clone3+0x10/0x10
[ 1202.117034][T22860]  do_syscall_64+0x106/0xf80
[ 1202.117076][T22860]  ? clear_bhb_loop+0x40/0x90
[ 1202.117121][T22860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1202.117158][T22860] RIP: 0033:0x7f96d119c799
[ 1202.117189][T22860] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1202.117224][T22860] RSP: 002b:00007f96d2128ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 1202.117258][T22860] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f96d119c799
[ 1202.117281][T22860] RDX: 00007f96d2128f10 RSI: 0000000000000058 RDI: 00007f96d2128f10
[ 1202.117304][T22860] RBP: 00007f96d1232c99 R08: 0000000000000000 R09: 0000000000000058
[ 1202.117326][T22860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1202.117347][T22860] R13: 00007f96d1416038 R14: 00007f96d1415fa0 R15: 00007ffddaf14328
[ 1202.117394][T22860]  </TASK>
[ 1203.746960][T22888] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4981'.
[ 1207.345709][T22940] FAULT_INJECTION: forcing a failure.
[ 1207.345709][T22940] name failslab, interval 1, probability 0, space 0, times 0
[ 1207.487251][T22940] CPU: 0 UID: 0 PID: 22940 Comm: syz.5.4989 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1207.487290][T22940] Tainted: [L]=SOFTLOCKUP
[ 1207.487298][T22940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1207.487312][T22940] Call Trace:
[ 1207.487320][T22940]  <TASK>
[ 1207.487329][T22940]  dump_stack_lvl+0x100/0x190
[ 1207.487369][T22940]  should_fail_ex.cold+0x5/0xa
[ 1207.487398][T22940]  should_failslab+0xc2/0x120
[ 1207.487422][T22940]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1207.487458][T22940]  ? alloc_empty_file+0x55/0x1c0
[ 1207.487493][T22940]  alloc_empty_file+0x55/0x1c0
[ 1207.487523][T22940]  alloc_file_pseudo+0x13a/0x230
[ 1207.487555][T22940]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1207.487587][T22940]  ? hugetlbfs_get_inode+0x36e/0x750
[ 1207.487616][T22940]  hugetlb_file_setup+0x2a8/0x5b0
[ 1207.487646][T22940]  newseg+0xabb/0xed0
[ 1207.487728][T22940]  ? __pfx_newseg+0x10/0x10
[ 1207.487761][T22940]  ? down_write+0x146/0x1f0
[ 1207.487804][T22940]  ? ksys_write+0x190/0x250
[ 1207.487824][T22940]  ? ksys_write+0x190/0x250
[ 1207.487850][T22940]  ipcget+0xee/0xf50
[ 1207.487876][T22940]  ? __fget_files+0x215/0x3d0
[ 1207.487900][T22940]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1207.487935][T22940]  ? __pfx_ipcget+0x10/0x10
[ 1207.487970][T22940]  __x64_sys_shmget+0x13b/0x1b0
[ 1207.487998][T22940]  ? __pfx___x64_sys_shmget+0x10/0x10
[ 1207.488033][T22940]  do_syscall_64+0x106/0xf80
[ 1207.488061][T22940]  ? clear_bhb_loop+0x40/0x90
[ 1207.488090][T22940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1207.488115][T22940] RIP: 0033:0x7ffaac19c799
[ 1207.488135][T22940] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1207.488159][T22940] RSP: 002b:00007ffaad0dd028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d
[ 1207.488182][T22940] RAX: ffffffffffffffda RBX: 00007ffaac416090 RCX: 00007ffaac19c799
[ 1207.488198][T22940] RDX: 0000000000004824 RSI: 0000000000000009 RDI: 0000000100000000
[ 1207.488218][T22940] RBP: 00007ffaad0dd090 R08: 0000000000000000 R09: 0000000000000000
[ 1207.488233][T22940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1207.488248][T22940] R13: 00007ffaac416128 R14: 00007ffaac416090 R15: 00007ffdce36b1d8
[ 1207.488279][T22940]  </TASK>
[ 1211.671906][T22990] vivid-007: =================  START STATUS  =================
[ 1211.709947][T22990] vivid-007: Generate PTS: true
[ 1211.714978][T22990] vivid-007: Generate SCR: true
[ 1211.755870][T22990] tpg source WxH: 320x240 (Y'CbCr)
[ 1211.780028][T22990] tpg field: 1
[ 1211.783720][T22990] tpg crop: (0,0)/320x240
[ 1211.799914][T22990] tpg compose: (0,0)/320x240
[ 1211.809748][T22990] tpg colorspace: 8
[ 1211.825451][T22990] tpg transfer function: 0/0
[ 1211.859969][T22990] tpg Y'CbCr encoding: 0/0
[ 1211.879742][T22990] tpg quantization: 0/0
[ 1211.894376][T22990] tpg RGB range: 0/2
[ 1211.898367][T22990] vivid-007: ==================  END STATUS  ==================
[ 1212.962010][T23018] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5008'.
[ 1215.472479][T23059] vivid-007: =================  START STATUS  =================
[ 1215.531902][T23059] vivid-007: Generate PTS: true
[ 1215.536878][T23059] vivid-007: Generate SCR: true
[ 1215.552232][T23059] tpg source WxH: 320x240 (Y'CbCr)
[ 1215.557620][T23059] tpg field: 1
[ 1215.561051][T23059] tpg crop: (0,0)/320x240
[ 1215.610359][T23059] tpg compose: (0,0)/320x240
[ 1215.625393][T23059] tpg colorspace: 8
[ 1215.629339][T23059] tpg transfer function: 0/0
[ 1215.660594][T23059] tpg Y'CbCr encoding: 0/0
[ 1215.683567][T23059] tpg quantization: 0/0
[ 1215.687902][T23059] tpg RGB range: 0/2
[ 1215.692715][T23059] vivid-007: ==================  END STATUS  ==================
[ 1216.726483][T23091] FAULT_INJECTION: forcing a failure.
[ 1216.726483][T23091] name failslab, interval 1, probability 0, space 0, times 0
[ 1216.739414][T23091] CPU: 1 UID: 0 PID: 23091 Comm: syz.2.5023 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1216.739465][T23091] Tainted: [L]=SOFTLOCKUP
[ 1216.739477][T23091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1216.739496][T23091] Call Trace:
[ 1216.739507][T23091]  <TASK>
[ 1216.739520][T23091]  dump_stack_lvl+0x100/0x190
[ 1216.739575][T23091]  should_fail_ex.cold+0x5/0xa
[ 1216.739614][T23091]  should_failslab+0xc2/0x120
[ 1216.739650][T23091]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1216.739698][T23091]  ? __break_lease+0x129/0x19b0
[ 1216.739741][T23091]  __break_lease+0x129/0x19b0
[ 1216.739776][T23091]  ? __lock_acquire+0x4a5/0x2630
[ 1216.739824][T23091]  ? __pfx___break_lease+0x10/0x10
[ 1216.739865][T23091]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1216.739913][T23091]  ? path_get+0x61/0x80
[ 1216.739946][T23091]  ? path_get+0x61/0x80
[ 1216.739982][T23091]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1216.740026][T23091]  do_dentry_open+0xd3a/0x1660
[ 1216.740072][T23091]  vfs_open+0x82/0x3f0
[ 1216.740120][T23091]  path_openat+0x208c/0x31a0
[ 1216.740169][T23091]  ? __pfx_path_openat+0x10/0x10
[ 1216.740207][T23091]  ? stack_trace_save+0x8e/0xc0
[ 1216.740240][T23091]  ? __pfx_stack_trace_save+0x10/0x10
[ 1216.740278][T23091]  do_file_open+0x20e/0x430
[ 1216.740315][T23091]  ? __pfx_do_file_open+0x10/0x10
[ 1216.740357][T23091]  ? kasan_save_track+0x14/0x30
[ 1216.740406][T23091]  ? __kasan_slab_alloc+0x89/0x90
[ 1216.740436][T23091]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1216.740521][T23091]  do_open_execat+0xd1/0x360
[ 1216.740569][T23091]  ? __pfx_do_open_execat+0x10/0x10
[ 1216.740619][T23091]  ? __might_fault+0xc5/0x140
[ 1216.740664][T23091]  ? __might_fault+0xc5/0x140
[ 1216.740719][T23091]  alloc_bprm+0x2d/0x710
[ 1216.740772][T23091]  do_execveat_common.isra.0+0x19c/0x580
[ 1216.740825][T23091]  ? do_getname+0x191/0x390
[ 1216.740868][T23091]  __x64_sys_execve+0x93/0xd0
[ 1216.740920][T23091]  do_syscall_64+0x106/0xf80
[ 1216.740960][T23091]  ? clear_bhb_loop+0x40/0x90
[ 1216.741002][T23091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1216.741036][T23091] RIP: 0033:0x7fac1eb9c799
[ 1216.741064][T23091] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1216.741094][T23091] RSP: 002b:00007fac1fa03028 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[ 1216.741124][T23091] RAX: ffffffffffffffda RBX: 00007fac1ee16090 RCX: 00007fac1eb9c799
[ 1216.741145][T23091] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000040
[ 1216.741165][T23091] RBP: 00007fac1fa03090 R08: 0000000000000000 R09: 0000000000000000
[ 1216.741186][T23091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1216.741206][T23091] R13: 00007fac1ee16128 R14: 00007fac1ee16090 R15: 00007ffc6c634598
[ 1216.741249][T23091]  </TASK>
[ 1220.036439][T23140] FAULT_INJECTION: forcing a failure.
[ 1220.036439][T23140] name failslab, interval 1, probability 0, space 0, times 0
[ 1220.066932][T23140] CPU: 0 UID: 0 PID: 23140 Comm: syz.4.5036 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1220.066987][T23140] Tainted: [L]=SOFTLOCKUP
[ 1220.067000][T23140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1220.067021][T23140] Call Trace:
[ 1220.067033][T23140]  <TASK>
[ 1220.067047][T23140]  dump_stack_lvl+0x100/0x190
[ 1220.067109][T23140]  should_fail_ex.cold+0x5/0xa
[ 1220.067146][T23140]  should_failslab+0xc2/0x120
[ 1220.067178][T23140]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1220.067225][T23140]  ? __kernfs_new_node+0xd2/0x960
[ 1220.067277][T23140]  __kernfs_new_node+0xd2/0x960
[ 1220.067324][T23140]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1220.067378][T23140]  ? find_held_lock+0x2b/0x80
[ 1220.067406][T23140]  ? kernfs_root+0xee/0x2a0
[ 1220.067449][T23140]  ? kernfs_root+0xee/0x2a0
[ 1220.067506][T23140]  kernfs_new_node+0x11b/0x1a0
[ 1220.067567][T23140]  __kernfs_create_file+0x53/0x350
[ 1220.067612][T23140]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1220.067668][T23140]  internal_create_group+0x593/0xf40
[ 1220.067730][T23140]  ? __pfx_internal_create_group+0x10/0x10
[ 1220.067787][T23140]  ? kernfs_create_link+0x1bd/0x240
[ 1220.067833][T23140]  internal_create_groups+0x9d/0x150
[ 1220.067888][T23140]  device_add+0x7c8/0x1950
[ 1220.067929][T23140]  ? __pfx_device_add+0x10/0x10
[ 1220.067962][T23140]  ? lockdep_init_map_type+0x5c/0x250
[ 1220.068008][T23140]  ? __init_waitqueue_head+0xca/0x150
[ 1220.068076][T23140]  netdev_register_kobject+0x1a9/0x3d0
[ 1220.068129][T23140]  register_netdevice+0x12e0/0x2210
[ 1220.068178][T23140]  ? idr_alloc+0xdd/0x130
[ 1220.068214][T23140]  ? __pfx_register_netdevice+0x10/0x10
[ 1220.068253][T23140]  ? net_generic+0xea/0x2a0
[ 1220.068299][T23140]  ppp_dev_configure+0x986/0xcb0
[ 1220.068354][T23140]  ppp_ioctl+0x985/0x2800
[ 1220.068399][T23140]  ? find_held_lock+0x2b/0x80
[ 1220.068431][T23140]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1220.068481][T23140]  ? __fget_files+0x21f/0x3d0
[ 1220.068521][T23140]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1220.068563][T23140]  __x64_sys_ioctl+0x18e/0x210
[ 1220.068618][T23140]  do_syscall_64+0x106/0xf80
[ 1220.068659][T23140]  ? clear_bhb_loop+0x40/0x90
[ 1220.068702][T23140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1220.068738][T23140] RIP: 0033:0x7f96d119c799
[ 1220.068768][T23140] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1220.068803][T23140] RSP: 002b:00007f96d2129028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1220.068836][T23140] RAX: ffffffffffffffda RBX: 00007f96d1415fa0 RCX: 00007f96d119c799
[ 1220.068859][T23140] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000009
[ 1220.068880][T23140] RBP: 00007f96d1232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1220.068901][T23140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1220.068922][T23140] R13: 00007f96d1416038 R14: 00007f96d1415fa0 R15: 00007ffddaf14328
[ 1220.068969][T23140]  </TASK>
[ 1220.728788][T23143] vivid-007: =================  START STATUS  =================
[ 1220.736612][T23143] vivid-007: Generate PTS: true
[ 1220.741562][T23143] vivid-007: Generate SCR: true
[ 1220.746558][T23143] tpg source WxH: 320x240 (Y'CbCr)
[ 1220.751774][T23143] tpg field: 1
[ 1220.755276][T23143] tpg crop: (0,0)/320x240
[ 1220.759766][T23143] tpg compose: (0,0)/320x240
[ 1220.764596][T23143] tpg colorspace: 8
[ 1220.768457][T23143] tpg transfer function: 0/0
[ 1220.773159][T23143] tpg Y'CbCr encoding: 0/0
[ 1220.778118][T23143] tpg quantization: 0/0
[ 1220.799919][T23143] tpg RGB range: 0/2
[ 1220.835740][T23143] vivid-007: ==================  END STATUS  ==================
[ 1227.520445][T23261] futex_wake_op: syz.5.5065 tries to shift op by -2048; fix this program
[ 1228.771456][T23276] FAULT_INJECTION: forcing a failure.
[ 1228.771456][T23276] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1228.817392][T23276] CPU: 1 UID: 0 PID: 23276 Comm: syz.4.5067 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1228.817441][T23276] Tainted: [L]=SOFTLOCKUP
[ 1228.817452][T23276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1228.817471][T23276] Call Trace:
[ 1228.817482][T23276]  <TASK>
[ 1228.817494][T23276]  dump_stack_lvl+0x100/0x190
[ 1228.817545][T23276]  should_fail_ex.cold+0x5/0xa
[ 1228.817581][T23276]  _copy_from_user+0x2e/0xd0
[ 1228.817612][T23276]  copy_msghdr_from_user+0x9f/0x4f0
[ 1228.817664][T23276]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1228.817730][T23276]  ___sys_sendmsg+0x106/0x1e0
[ 1228.817780][T23276]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1228.817874][T23276]  __sys_sendmsg+0x170/0x220
[ 1228.817914][T23276]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1228.817975][T23276]  do_syscall_64+0x106/0xf80
[ 1228.818013][T23276]  ? clear_bhb_loop+0x40/0x90
[ 1228.818050][T23276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1228.818081][T23276] RIP: 0033:0x7f96d119c799
[ 1228.818107][T23276] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1228.818136][T23276] RSP: 002b:00007f96d2129028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1228.818165][T23276] RAX: ffffffffffffffda RBX: 00007f96d1415fa0 RCX: 00007f96d119c799
[ 1228.818186][T23276] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000003
[ 1228.818204][T23276] RBP: 00007f96d2129090 R08: 0000000000000000 R09: 0000000000000000
[ 1228.818222][T23276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1228.818240][T23276] R13: 00007f96d1416038 R14: 00007f96d1415fa0 R15: 00007ffddaf14328
[ 1228.818280][T23276]  </TASK>
[ 1230.630476][   T30] audit: type=1326 audit(1773205678.384:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23287 comm="syz.4.5071" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f96d119c799 code=0x0
[ 1232.333895][T23329] FAULT_INJECTION: forcing a failure.
[ 1232.333895][T23329] name failslab, interval 1, probability 0, space 0, times 0
[ 1232.399749][T23329] CPU: 1 UID: 0 PID: 23329 Comm: syz.5.5081 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1232.399790][T23329] Tainted: [L]=SOFTLOCKUP
[ 1232.399799][T23329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1232.399815][T23329] Call Trace:
[ 1232.399823][T23329]  <TASK>
[ 1232.399834][T23329]  dump_stack_lvl+0x100/0x190
[ 1232.399876][T23329]  should_fail_ex.cold+0x5/0xa
[ 1232.399905][T23329]  should_failslab+0xc2/0x120
[ 1232.399935][T23329]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1232.399972][T23329]  ? __kernfs_new_node+0xd2/0x960
[ 1232.400014][T23329]  __kernfs_new_node+0xd2/0x960
[ 1232.400052][T23329]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1232.400098][T23329]  ? find_held_lock+0x2b/0x80
[ 1232.400155][T23329]  ? kernfs_root+0xee/0x2a0
[ 1232.400202][T23329]  ? kernfs_root+0xee/0x2a0
[ 1232.400260][T23329]  kernfs_new_node+0x11b/0x1a0
[ 1232.400323][T23329]  __kernfs_create_file+0x53/0x350
[ 1232.400368][T23329]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1232.400425][T23329]  sysfs_merge_group+0x194/0x340
[ 1232.400475][T23329]  ? __pfx_sysfs_merge_group+0x10/0x10
[ 1232.400530][T23329]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1232.400597][T23329]  ? bus_to_subsys+0x114/0x150
[ 1232.400642][T23329]  dpm_sysfs_add+0x237/0x280
[ 1232.400694][T23329]  device_add+0x9ef/0x1950
[ 1232.400722][T23329]  ? __pfx_device_add+0x10/0x10
[ 1232.400745][T23329]  ? lockdep_init_map_type+0x5c/0x250
[ 1232.400779][T23329]  ? __init_waitqueue_head+0xca/0x150
[ 1232.400823][T23329]  netdev_register_kobject+0x1a9/0x3d0
[ 1232.400864][T23329]  register_netdevice+0x12e0/0x2210
[ 1232.400901][T23329]  ? idr_alloc+0xdd/0x130
[ 1232.400930][T23329]  ? __pfx_register_netdevice+0x10/0x10
[ 1232.400962][T23329]  ? net_generic+0xea/0x2a0
[ 1232.400996][T23329]  ppp_dev_configure+0x986/0xcb0
[ 1232.401032][T23329]  ppp_ioctl+0x985/0x2800
[ 1232.401065][T23329]  ? find_held_lock+0x2b/0x80
[ 1232.401088][T23329]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1232.401123][T23329]  ? __fget_files+0x21f/0x3d0
[ 1232.401150][T23329]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1232.401181][T23329]  __x64_sys_ioctl+0x18e/0x210
[ 1232.401219][T23329]  do_syscall_64+0x106/0xf80
[ 1232.401249][T23329]  ? clear_bhb_loop+0x40/0x90
[ 1232.401279][T23329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1232.401305][T23329] RIP: 0033:0x7ffaac19c799
[ 1232.401326][T23329] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1232.401350][T23329] RSP: 002b:00007ffaad0fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1232.401374][T23329] RAX: ffffffffffffffda RBX: 00007ffaac415fa0 RCX: 00007ffaac19c799
[ 1232.401391][T23329] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000009
[ 1232.401426][T23329] RBP: 00007ffaac232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1232.401441][T23329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1232.401456][T23329] R13: 00007ffaac416038 R14: 00007ffaac415fa0 R15: 00007ffdce36b1d8
[ 1232.401488][T23329]  </TASK>
[ 1233.687460][T23347] zero sized request
[ 1233.696949][T23347] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5084'.
[ 1235.837296][T23381] netlink: 342 bytes leftover after parsing attributes in process `syz.5.5095'.
[ 1237.640423][T23432] vivid-007: =================  START STATUS  =================
[ 1237.648463][T23432] vivid-007: Generate PTS: true
[ 1237.657470][T23432] vivid-007: Generate SCR: true
[ 1237.662623][T23432] tpg source WxH: 320x240 (Y'CbCr)
[ 1237.668580][T23432] tpg field: 1
[ 1237.672035][T23432] tpg crop: (0,0)/320x240
[ 1237.677072][T23432] tpg compose: (0,0)/320x240
[ 1237.681751][T23432] tpg colorspace: 8
[ 1237.696128][T23432] tpg transfer function: 0/0
[ 1237.701528][T23432] tpg Y'CbCr encoding: 0/0
[ 1237.707017][T23432] tpg quantization: 0/0
[ 1237.713138][T23432] tpg RGB range: 0/2
[ 1237.717174][T23432] vivid-007: ==================  END STATUS  ==================
[ 1239.378062][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 1239.384574][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.865163][T23460] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5115'.
[ 1242.991871][T23514] FAULT_INJECTION: forcing a failure.
[ 1242.991871][T23514] name failslab, interval 1, probability 0, space 0, times 0
[ 1243.029059][T23514] CPU: 1 UID: 0 PID: 23514 Comm: syz.4.5129 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1243.029146][T23514] Tainted: [L]=SOFTLOCKUP
[ 1243.029161][T23514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1243.029186][T23514] Call Trace:
[ 1243.029199][T23514]  <TASK>
[ 1243.029215][T23514]  dump_stack_lvl+0x100/0x190
[ 1243.029278][T23514]  should_fail_ex.cold+0x5/0xa
[ 1243.029325][T23514]  should_failslab+0xc2/0x120
[ 1243.029366][T23514]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1243.029418][T23514]  ? kstrdup_quotable_cmdline+0x52/0x210
[ 1243.029466][T23514]  ? get_cmdline+0x86/0x360
[ 1243.029518][T23514]  kstrdup_quotable_cmdline+0x52/0x210
[ 1243.029572][T23514]  __report_access+0x77/0x230
[ 1243.029615][T23514]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1243.029664][T23514]  task_work_run+0x150/0x240
[ 1243.029723][T23514]  ? __pfx_task_work_run+0x10/0x10
[ 1243.029788][T23514]  ? xfd_validate_state+0x129/0x190
[ 1243.029854][T23514]  exit_to_user_mode_loop+0x100/0x4a0
[ 1243.029912][T23514]  do_syscall_64+0x668/0xf80
[ 1243.029959][T23514]  ? clear_bhb_loop+0x40/0x90
[ 1243.030007][T23514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1243.030048][T23514] RIP: 0033:0x7f96d119c799
[ 1243.030081][T23514] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1243.030119][T23514] RSP: 002b:00007f96d2129028 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[ 1243.030157][T23514] RAX: ffffffffffffffff RBX: 00007f96d1415fa0 RCX: 00007f96d119c799
[ 1243.030184][T23514] RDX: 0000000000000012 RSI: 0000200000002980 RDI: 0000000000000001
[ 1243.030209][T23514] RBP: 00007f96d1232c99 R08: 0000000000000004 R09: 0000000000000000
[ 1243.030234][T23514] R10: 0000200000002a40 R11: 0000000000000246 R12: 0000000000000000
[ 1243.030260][T23514] R13: 00007f96d1416038 R14: 00007f96d1415fa0 R15: 00007ffddaf14328
[ 1243.030310][T23514]  </TASK>
[ 1243.030556][T23514] ptrace attach of "./syz-executor exec"[16243] was attempted by "(null)"[23514]
[ 1244.418640][T23526] vivid-007: =================  START STATUS  =================
[ 1244.426775][T23526] vivid-007: Generate PTS: true
[ 1244.431837][T23526] vivid-007: Generate SCR: true
[ 1244.437613][T23526] tpg source WxH: 320x240 (Y'CbCr)
[ 1244.442906][T23526] tpg field: 1
[ 1244.461861][T23526] tpg crop: (0,0)/320x240
[ 1244.467450][T23526] tpg compose: (0,0)/320x240
[ 1244.474525][T23526] tpg colorspace: 8
[ 1244.488869][T23526] tpg transfer function: 0/0
[ 1244.506072][T23526] tpg Y'CbCr encoding: 0/0
[ 1244.523793][T23526] tpg quantization: 0/0
[ 1244.533937][T23526] tpg RGB range: 0/2
[ 1244.566474][T23526] vivid-007: ==================  END STATUS  ==================
[ 1245.808985][ T8750] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[ 1246.053192][T23557] FAULT_INJECTION: forcing a failure.
[ 1246.053192][T23557] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1246.116479][T23557] CPU: 1 UID: 0 PID: 23557 Comm: syz.5.5139 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1246.116537][T23557] Tainted: [L]=SOFTLOCKUP
[ 1246.116551][T23557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1246.116573][T23557] Call Trace:
[ 1246.116585][T23557]  <TASK>
[ 1246.116598][T23557]  dump_stack_lvl+0x100/0x190
[ 1246.116657][T23557]  should_fail_ex.cold+0x5/0xa
[ 1246.116692][T23557]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1246.116736][T23557]  should_fail_alloc_page+0xeb/0x140
[ 1246.116776][T23557]  prepare_alloc_pages+0x1f0/0x5f0
[ 1246.116814][T23557]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1246.116856][T23557]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 1246.116911][T23557]  ? __kernel_text_address+0xd/0x30
[ 1246.116977][T23557]  ? unwind_get_return_address+0x59/0xa0
[ 1246.117015][T23557]  ? arch_stack_walk+0xa6/0xf0
[ 1246.117059][T23557]  ? __lock_acquire+0x4a5/0x2630
[ 1246.117107][T23557]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1246.117159][T23557]  ? __pfx_stack_trace_save+0x10/0x10
[ 1246.117202][T23557]  ? stack_depot_save_flags+0x27/0x9d0
[ 1246.117266][T23557]  ? __lock_acquire+0x4a5/0x2630
[ 1246.117318][T23557]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1246.117379][T23557]  ? policy_nodemask+0xed/0x4f0
[ 1246.117419][T23557]  alloc_pages_mpol+0x1fb/0x550
[ 1246.117458][T23557]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1246.117514][T23557]  alloc_pages_noprof+0x131/0x390
[ 1246.117554][T23557]  __pmd_alloc+0x3b/0x950
[ 1246.117598][T23557]  __handle_mm_fault+0xa99/0x2b60
[ 1246.117650][T23557]  ? mt_find+0x45e/0x8e0
[ 1246.117697][T23557]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1246.117742][T23557]  ? __pfx_mt_find+0x10/0x10
[ 1246.117811][T23557]  ? find_vma+0xbf/0x140
[ 1246.117842][T23557]  ? __pfx_find_vma+0x10/0x10
[ 1246.117879][T23557]  handle_mm_fault+0x36d/0xa20
[ 1246.117935][T23557]  do_user_addr_fault+0x74c/0x12f0
[ 1246.118011][T23557]  exc_page_fault+0x6f/0xd0
[ 1246.118054][T23557]  asm_exc_page_fault+0x26/0x30
[ 1246.118090][T23557] RIP: 0010:rep_movs_alternative+0xf/0x90
[ 1246.118146][T23557] Code: c4 10 c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66
[ 1246.118180][T23557] RSP: 0018:ffffc9000653f938 EFLAGS: 00050202
[ 1246.118210][T23557] RAX: 0000000000000001 RBX: ffff888025c60028 RCX: 0000000000000007
[ 1246.118231][T23557] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffff888025c60028
[ 1246.118251][T23557] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed1004b8c005
[ 1246.118271][T23557] R10: ffff888025c6002e R11: 0000000000000000 R12: ffffc9000653fc40
[ 1246.118294][T23557] R13: 0000000000000000 R14: 0000000000000007 R15: 0000000000000000
[ 1246.118344][T23557]  _copy_from_iter+0x355/0x1690
[ 1246.118385][T23557]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1246.118424][T23557]  ? __pfx__copy_from_iter+0x10/0x10
[ 1246.118458][T23557]  ? __sk_mem_raise_allocated+0x789/0x15a0
[ 1246.118523][T23557]  mptcp_sendmsg+0x100d/0x1e40
[ 1246.118653][T23557]  ? __pfx_mptcp_sendmsg+0x10/0x10
[ 1246.118702][T23557]  ? __pfx_mptcp_sendmsg+0x10/0x10
[ 1246.118743][T23557]  inet_sendmsg+0x11c/0x140
[ 1246.118838][T23557]  sock_write_iter+0x4ea/0x5a0
[ 1246.118890][T23557]  ? __pfx_inet_sendmsg+0x10/0x10
[ 1246.118944][T23557]  ? __pfx_sock_write_iter+0x10/0x10
[ 1246.119030][T23557]  ? bpf_lsm_file_permission+0x9/0x10
[ 1246.119085][T23557]  ? security_file_permission+0x76/0x210
[ 1246.119123][T23557]  ? rw_verify_area+0xce/0x6d0
[ 1246.119175][T23557]  vfs_write+0x6ac/0x1070
[ 1246.119229][T23557]  ? __pfx_sock_write_iter+0x10/0x10
[ 1246.119281][T23557]  ? __pfx_vfs_write+0x10/0x10
[ 1246.119332][T23557]  ? find_held_lock+0x2b/0x80
[ 1246.119391][T23557]  ksys_write+0x1f8/0x250
[ 1246.119422][T23557]  ? __pfx_ksys_write+0x10/0x10
[ 1246.119466][T23557]  do_syscall_64+0x106/0xf80
[ 1246.119506][T23557]  ? clear_bhb_loop+0x40/0x90
[ 1246.119548][T23557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1246.119582][T23557] RIP: 0033:0x7ffaac19c799
[ 1246.119610][T23557] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1246.119644][T23557] RSP: 002b:00007ffaad0fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1246.119676][T23557] RAX: ffffffffffffffda RBX: 00007ffaac415fa0 RCX: 00007ffaac19c799
[ 1246.119698][T23557] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000003
[ 1246.119725][T23557] RBP: 00007ffaac232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1246.119748][T23557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1246.119769][T23557] R13: 00007ffaac416038 R14: 00007ffaac415fa0 R15: 00007ffdce36b1d8
[ 1246.119816][T23557]  </TASK>
[ 1247.658917][T23587] [U] 0�="�/�
[ 1247.663224][T23587] [U] 
[ 1247.666052][T23587] [U] E�e�Q��@�
[ 1247.848737][ T8750] Bluetooth: hci3: command 0x0406 tx timeout
[ 1247.899165][ T8752] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1247.910514][ T8752] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1247.920130][ T8752] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1247.937510][ T8752] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1247.957257][ T8752] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1248.398435][T23586] [U] 
[ 1249.466981][T23591] chnl_net:caif_netlink_parms(): no params data found
[ 1249.725099][T23591] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1249.735107][T23591] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1249.743524][T23591] bridge_slave_0: entered allmulticast mode
[ 1249.754782][T23591] bridge_slave_0: entered promiscuous mode
[ 1249.819593][T23591] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1249.844596][T23591] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1249.896165][T23591] bridge_slave_1: entered allmulticast mode
[ 1249.921438][T23591] bridge_slave_1: entered promiscuous mode
[ 1249.929217][T23551] Bluetooth: hci3: command 0x0406 tx timeout
[ 1250.009304][ T8750] Bluetooth: hci0: command tx timeout
[ 1250.040476][T23591] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1250.097103][T23591] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1250.200514][T23620] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1250.229980][   T30] audit: type=1804 audit(1773205697.975:8): pid=23620 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.5152" name=2F6E6577726F6F742F3334322F04 dev="tmpfs" ino=1804 res=1 errno=0
[ 1250.256863][T23591] team0: Port device team_slave_0 added
[ 1250.276392][T23591] team0: Port device team_slave_1 added
[ 1250.392387][T23591] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1250.413905][T23591] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1250.444207][T23591] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1250.528379][T23591] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1250.539633][T23591] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1250.579316][T23591] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1250.802946][T23591] hsr_slave_0: entered promiscuous mode
[ 1250.810443][T23591] hsr_slave_1: entered promiscuous mode
[ 1250.817813][T23591] debugfs: 'hsr0' already exists in 'hsr'
[ 1250.828058][T23591] Cannot create hsr debugfs directory
[ 1251.528314][T23643] vivid-007: =================  START STATUS  =================
[ 1251.564524][T23643] vivid-007: Generate PTS: true
[ 1251.569519][T23643] vivid-007: Generate SCR: true
[ 1251.578373][ T8750] Bluetooth: hci5: unexpected subevent 0x01 length: 123 > 18
[ 1251.594983][T23643] tpg source WxH: 320x240 (Y'CbCr)
[ 1251.606326][T23643] tpg field: 1
[ 1251.622148][T23643] tpg crop: (0,0)/320x240
[ 1251.633693][T23643] tpg compose: (0,0)/320x240
[ 1251.659334][T23643] tpg colorspace: 8
[ 1251.688242][T23643] tpg transfer function: 0/0
[ 1251.703307][T23591] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1251.715219][T23643] tpg Y'CbCr encoding: 0/0
[ 1251.728853][T23643] tpg quantization: 0/0
[ 1251.781688][T23643] tpg RGB range: 0/2
[ 1251.808357][T23643] vivid-007: ==================  END STATUS  ==================
[ 1251.912614][T23591] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1252.098523][ T8750] Bluetooth: hci0: command tx timeout
[ 1252.266576][T23591] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1252.432350][T23591] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1252.891208][T23591] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1252.923994][T23591] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1252.975194][T23591] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1253.021468][T23591] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1253.191582][T23661] lo: entered allmulticast mode
[ 1253.267999][T23661] lo: left allmulticast mode
[ 1253.613791][T23551] Bluetooth: hci5: command 0x2016 tx timeout
[ 1253.814668][T23665] FAULT_INJECTION: forcing a failure.
[ 1253.814668][T23665] name failslab, interval 1, probability 0, space 0, times 0
[ 1253.829038][T23665] CPU: 1 UID: 0 PID: 23665 Comm: syz.2.5162 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1253.829085][T23665] Tainted: [L]=SOFTLOCKUP
[ 1253.829093][T23665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1253.829108][T23665] Call Trace:
[ 1253.829116][T23665]  <TASK>
[ 1253.829126][T23665]  dump_stack_lvl+0x100/0x190
[ 1253.829167][T23665]  should_fail_ex.cold+0x5/0xa
[ 1253.829194][T23665]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1253.829223][T23665]  should_failslab+0xc2/0x120
[ 1253.829247][T23665]  __kmalloc_noprof+0xe0/0x850
[ 1253.829316][T23665]  tomoyo_realpath_from_path+0xb6/0x690
[ 1253.829367][T23665]  tomoyo_path_number_perm+0x23c/0x580
[ 1253.829425][T23665]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1253.829465][T23665]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1253.829532][T23665]  ? find_held_lock+0x2b/0x80
[ 1253.829554][T23665]  ? __fget_files+0x215/0x3d0
[ 1253.829575][T23665]  ? hook_file_ioctl_common+0x146/0x410
[ 1253.829619][T23665]  ? __fget_files+0x21f/0x3d0
[ 1253.829645][T23665]  security_file_ioctl+0xd3/0x230
[ 1253.829686][T23665]  __x64_sys_ioctl+0xb7/0x210
[ 1253.829722][T23665]  do_syscall_64+0x106/0xf80
[ 1253.829751][T23665]  ? clear_bhb_loop+0x40/0x90
[ 1253.829781][T23665]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1253.829805][T23665] RIP: 0033:0x7fac1eb9c799
[ 1253.829836][T23665] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1253.829861][T23665] RSP: 002b:00007fac1fa24028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1253.829884][T23665] RAX: ffffffffffffffda RBX: 00007fac1ee15fa0 RCX: 00007fac1eb9c799
[ 1253.829900][T23665] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000007
[ 1253.829915][T23665] RBP: 00007fac1fa24090 R08: 0000000000000000 R09: 0000000000000000
[ 1253.829930][T23665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1253.829944][T23665] R13: 00007fac1ee16038 R14: 00007fac1ee15fa0 R15: 00007ffc6c634598
[ 1253.829975][T23665]  </TASK>
[ 1253.833091][T23665] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1253.861380][T23591] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1254.185304][ T8750] Bluetooth: hci0: command tx timeout
[ 1254.447818][T23591] 8021q: adding VLAN 0 to HW filter on device team0
[ 1254.659698][T15787] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1254.667037][T15787] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1254.862826][T15789] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1254.870052][T15789] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1255.565860][T23591] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1255.689092][T23591] veth0_vlan: entered promiscuous mode
[ 1255.695478][ T8750] Bluetooth: hci5: command 0x2016 tx timeout
[ 1255.742826][T23591] veth1_vlan: entered promiscuous mode
[ 1255.845851][T23591] veth0_macvtap: entered promiscuous mode
[ 1255.878747][T23591] veth1_macvtap: entered promiscuous mode
[ 1255.950835][T23591] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1255.996904][T23591] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1256.013345][T15792] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1256.037004][T15792] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1256.099246][T15792] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1256.123287][T15792] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1256.258186][T23551] Bluetooth: hci0: command tx timeout
[ 1256.587989][T21156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1256.641364][T21156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1256.794675][T21156] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1256.837573][T21156] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1256.871242][T23727] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5172'.
[ 1256.926880][T23727] openvswitch: HfR: Dropping previously announced user features
[ 1257.128030][   T30] audit: type=1800 audit(1773205704.871:9): pid=23731 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5145" name="features" dev="configfs" ino=103475 res=0 errno=0
[ 1258.055343][ T8750] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1258.081687][ T8750] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1258.090443][ T8750] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1258.102086][ T8750] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1258.115923][ T8750] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1258.458323][T23755] vivid-007: =================  START STATUS  =================
[ 1258.467170][T23755] vivid-007: Generate PTS: true
[ 1258.472372][T23755] vivid-007: Generate SCR: true
[ 1258.480788][T23755] tpg source WxH: 320x240 (Y'CbCr)
[ 1258.486135][T23755] tpg field: 1
[ 1258.489757][T23755] tpg crop: (0,0)/320x240
[ 1258.496647][T23755] tpg compose: (0,0)/320x240
[ 1258.501401][T23755] tpg colorspace: 8
[ 1258.505391][T23755] tpg transfer function: 0/0
[ 1258.512379][T23755] tpg Y'CbCr encoding: 0/0
[ 1258.520953][T23755] tpg quantization: 0/0
[ 1258.526589][T23755] tpg RGB range: 0/2
[ 1258.530722][T23755] vivid-007: ==================  END STATUS  ==================
[ 1258.930701][T23744] chnl_net:caif_netlink_parms(): no params data found
[ 1259.242427][T23744] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1259.250809][T23744] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1259.258854][T23744] bridge_slave_0: entered allmulticast mode
[ 1259.270175][T23744] bridge_slave_0: entered promiscuous mode
[ 1259.282291][T23744] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1259.291553][T23744] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1259.299875][T23744] bridge_slave_1: entered allmulticast mode
[ 1259.312636][T23744] bridge_slave_1: entered promiscuous mode
[ 1259.367065][T23744] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1259.386783][T23744] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1259.438653][T23744] team0: Port device team_slave_0 added
[ 1259.451296][T23744] team0: Port device team_slave_1 added
[ 1259.525639][T23744] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1259.536334][T23744] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1259.568248][T23744] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1259.582206][T23744] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1259.590118][T23744] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1259.653840][T23744] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1259.799793][T23744] hsr_slave_0: entered promiscuous mode
[ 1259.808313][T23744] hsr_slave_1: entered promiscuous mode
[ 1259.825588][T23744] debugfs: 'hsr0' already exists in 'hsr'
[ 1259.831397][T23744] Cannot create hsr debugfs directory
[ 1260.175230][ T8750] Bluetooth: hci1: command tx timeout
[ 1260.736181][T23744] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1260.939091][T23744] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1261.136589][T23809] openvswitch: netlink: Tunnel attr 242 out of range max 16
[ 1261.176777][T23744] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1261.409573][T23744] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1261.915671][T23744] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1261.950720][T23744] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1262.029176][T23744] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1262.062348][T23744] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1262.256452][ T8750] Bluetooth: hci1: command tx timeout
[ 1262.458267][T23744] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1262.571840][T23744] 8021q: adding VLAN 0 to HW filter on device team0
[ 1262.637752][T15792] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1262.645014][T15792] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1262.730405][T15792] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1262.737735][T15792] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1263.186270][T23857] FAULT_INJECTION: forcing a failure.
[ 1263.186270][T23857] name failslab, interval 1, probability 0, space 0, times 0
[ 1263.234323][T23857] CPU: 1 UID: 0 PID: 23857 Comm: syz.4.5197 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1263.234378][T23857] Tainted: [L]=SOFTLOCKUP
[ 1263.234390][T23857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1263.234411][T23857] Call Trace:
[ 1263.234422][T23857]  <TASK>
[ 1263.234436][T23857]  dump_stack_lvl+0x100/0x190
[ 1263.234495][T23857]  should_fail_ex.cold+0x5/0xa
[ 1263.234536][T23857]  should_failslab+0xc2/0x120
[ 1263.234585][T23857]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1263.234630][T23857]  ? vidtv_psi_pat_program_init+0x4d/0x1f0
[ 1263.234782][T23857]  vidtv_psi_pat_program_init+0x4d/0x1f0
[ 1263.234818][T23857]  vidtv_channel_si_init+0x2cc/0x18d0
[ 1263.234890][T23857]  vidtv_mux_init+0x526/0xbf0
[ 1263.234934][T23857]  vidtv_start_feed+0x33e/0x4c0
[ 1263.235003][T23857]  ? __pfx_vidtv_start_feed+0x10/0x10
[ 1263.235053][T23857]  ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10
[ 1263.235109][T23857]  ? mark_held_locks+0x40/0x70
[ 1263.235151][T23857]  ? __pfx_vidtv_start_feed+0x10/0x10
[ 1263.235197][T23857]  dmx_ts_feed_start_filtering+0xf6/0x220
[ 1263.235366][T23857]  dvb_dmxdev_start_feed+0x273/0x3f0
[ 1263.235436][T23857]  dvb_dmxdev_filter_start+0x1b6/0xdd0
[ 1263.235486][T23857]  ? dvb_dmxdev_add_pid+0x2a1/0x380
[ 1263.235541][T23857]  dvb_demux_do_ioctl+0xe64/0x1200
[ 1263.235617][T23857]  dvb_usercopy+0x167/0x340
[ 1263.235663][T23857]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[ 1263.235720][T23857]  ? __pfx_dvb_usercopy+0x10/0x10
[ 1263.235777][T23857]  ? __fget_files+0x21f/0x3d0
[ 1263.235811][T23857]  dvb_demux_ioctl+0x29/0x40
[ 1263.235852][T23857]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[ 1263.235894][T23857]  __x64_sys_ioctl+0x18e/0x210
[ 1263.235939][T23857]  do_syscall_64+0x106/0xf80
[ 1263.235975][T23857]  ? clear_bhb_loop+0x40/0x90
[ 1263.236012][T23857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1263.236043][T23857] RIP: 0033:0x7f96d119c799
[ 1263.236070][T23857] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1263.236101][T23857] RSP: 002b:00007f96d2129028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1263.236129][T23857] RAX: ffffffffffffffda RBX: 00007f96d1415fa0 RCX: 00007f96d119c799
[ 1263.236150][T23857] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003
[ 1263.236169][T23857] RBP: 00007f96d1232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1263.236188][T23857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1263.236206][T23857] R13: 00007f96d1416038 R14: 00007f96d1415fa0 R15: 00007ffddaf14328
[ 1263.236245][T23857]  </TASK>
[ 1263.929892][T23744] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1264.345558][ T8750] Bluetooth: hci1: command tx timeout
[ 1264.570881][T23851] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5194'.
[ 1264.750280][T23744] veth0_vlan: entered promiscuous mode
[ 1264.908943][T23744] veth1_vlan: entered promiscuous mode
[ 1264.977672][T23888] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1265.051272][T23744] veth0_macvtap: entered promiscuous mode
[ 1265.079901][T23888] FAULT_INJECTION: forcing a failure.
[ 1265.079901][T23888] name failslab, interval 1, probability 0, space 0, times 0
[ 1265.110288][T23744] veth1_macvtap: entered promiscuous mode
[ 1265.119235][T23888] CPU: 1 UID: 0 PID: 23888 Comm: syz.1.5200 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1265.119279][T23888] Tainted: [L]=SOFTLOCKUP
[ 1265.119289][T23888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1265.119307][T23888] Call Trace:
[ 1265.119316][T23888]  <TASK>
[ 1265.119327][T23888]  dump_stack_lvl+0x100/0x190
[ 1265.119374][T23888]  should_fail_ex.cold+0x5/0xa
[ 1265.119406][T23888]  ? __register_sysctl_table+0xbe4/0x1650
[ 1265.119460][T23888]  should_failslab+0xc2/0x120
[ 1265.119490][T23888]  __kmalloc_noprof+0xe0/0x850
[ 1265.119540][T23888]  __register_sysctl_table+0xbe4/0x1650
[ 1265.119594][T23888]  ? __pfx___register_sysctl_table+0x10/0x10
[ 1265.119639][T23888]  ? is_module_address+0x69/0xf0
[ 1265.119674][T23888]  ? register_net_sysctl_sz+0x222/0x430
[ 1265.119819][T23888]  __devinet_sysctl_register+0x1b9/0x360
[ 1265.119862][T23888]  ? trace_kmalloc+0x101/0x130
[ 1265.119891][T23888]  ? __pfx___devinet_sysctl_register+0x10/0x10
[ 1265.119938][T23888]  ? __asan_memcpy+0x3c/0x60
[ 1265.119983][T23888]  devinet_init_net+0x303/0x8d0
[ 1265.120025][T23888]  ? __pfx_devinet_init_net+0x10/0x10
[ 1265.120063][T23888]  ops_init+0x1e2/0x5f0
[ 1265.120103][T23888]  setup_net+0x118/0x3a0
[ 1265.120140][T23888]  ? __pfx_setup_net+0x10/0x10
[ 1265.120175][T23888]  ? lockdep_init_map_type+0x5c/0x250
[ 1265.120213][T23888]  ? mutex_init_lockep+0x110/0x150
[ 1265.120256][T23888]  copy_net_ns+0x46f/0x7c0
[ 1265.120299][T23888]  create_new_namespaces+0x3ea/0xac0
[ 1265.120336][T23888]  unshare_nsproxy_namespaces+0xc3/0x1f0
[ 1265.120370][T23888]  ksys_unshare+0x473/0xad0
[ 1265.120407][T23888]  ? __pfx_ksys_unshare+0x10/0x10
[ 1265.120461][T23888]  __x64_sys_unshare+0x31/0x40
[ 1265.120496][T23888]  do_syscall_64+0x106/0xf80
[ 1265.120530][T23888]  ? clear_bhb_loop+0x40/0x90
[ 1265.120564][T23888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1265.120592][T23888] RIP: 0033:0x7f9d0579c799
[ 1265.120615][T23888] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1265.120642][T23888] RSP: 002b:00007f9d0669c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1265.120668][T23888] RAX: ffffffffffffffda RBX: 00007f9d05a15fa0 RCX: 00007f9d0579c799
[ 1265.120687][T23888] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1265.120705][T23888] RBP: 00007f9d05832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1265.120722][T23888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1265.120740][T23888] R13: 00007f9d05a16038 R14: 00007f9d05a15fa0 R15: 00007ffe2304ce28
[ 1265.120775][T23888]  </TASK>
[ 1265.120788][T23888] sysctl could not get directory: /net/ipv4/conf/all -12
[ 1265.440938][T23744] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1265.497818][T23744] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1265.590108][T15792] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1265.599821][T15792] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1265.619580][T15792] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1265.636924][T15792] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1266.010139][T21156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1266.026780][T21156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1266.134070][T15789] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1266.170389][T15789] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1266.423343][ T8750] Bluetooth: hci1: command tx timeout
[ 1266.995390][T23927] netlink: 'syz.5.5204': attribute type 21 has an invalid length.
[ 1267.003771][T23927] netlink: 326 bytes leftover after parsing attributes in process `syz.5.5204'.
[ 1268.503767][ T8750] Bluetooth: hci5: unexpected subevent 0x01 length: 123 > 18
[ 1269.263834][T23965] FAULT_INJECTION: forcing a failure.
[ 1269.263834][T23965] name failslab, interval 1, probability 0, space 0, times 0
[ 1269.288700][T23965] CPU: 1 UID: 0 PID: 23965 Comm: syz.2.5209 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1269.288762][T23965] Tainted: [L]=SOFTLOCKUP
[ 1269.288775][T23965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1269.288795][T23965] Call Trace:
[ 1269.288807][T23965]  <TASK>
[ 1269.288821][T23965]  dump_stack_lvl+0x100/0x190
[ 1269.288876][T23965]  should_fail_ex.cold+0x5/0xa
[ 1269.288917][T23965]  should_failslab+0xc2/0x120
[ 1269.288954][T23965]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1269.289000][T23965]  ? proc_thread_self_get_link+0x1a6/0x210
[ 1269.289062][T23965]  proc_thread_self_get_link+0x1a6/0x210
[ 1269.289126][T23965]  pick_link+0xac2/0x13c0
[ 1269.289175][T23965]  ? __pfx_proc_thread_self_get_link+0x10/0x10
[ 1269.289233][T23965]  step_into_slowpath+0x9ba/0xf90
[ 1269.289295][T23965]  ? __pfx_step_into_slowpath+0x10/0x10
[ 1269.289354][T23965]  ? lookup_fast+0x2da/0x600
[ 1269.289401][T23965]  ? inode_permission+0x374/0x620
[ 1269.289452][T23965]  link_path_walk+0xf28/0x1cc0
[ 1269.289519][T23965]  path_openat+0x1be/0x31a0
[ 1269.289553][T23965]  ? kasan_save_stack+0x3f/0x50
[ 1269.289602][T23965]  ? kasan_save_stack+0x30/0x50
[ 1269.289652][T23965]  ? kasan_save_track+0x14/0x30
[ 1269.289705][T23965]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1269.289768][T23965]  ? __pfx_path_openat+0x10/0x10
[ 1269.289820][T23965]  do_file_open+0x20e/0x430
[ 1269.289871][T23965]  ? __pfx_do_file_open+0x10/0x10
[ 1269.289938][T23965]  ? alloc_fd+0x476/0x790
[ 1269.289976][T23965]  ? do_getname+0x191/0x390
[ 1269.290023][T23965]  do_sys_openat2+0x10d/0x1e0
[ 1269.290068][T23965]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1269.290135][T23965]  __x64_sys_openat+0x12d/0x210
[ 1269.290183][T23965]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1269.290244][T23965]  do_syscall_64+0x106/0xf80
[ 1269.290285][T23965]  ? clear_bhb_loop+0x40/0x90
[ 1269.290323][T23965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1269.290354][T23965] RIP: 0033:0x7f1ec239c799
[ 1269.290379][T23965] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1269.290408][T23965] RSP: 002b:00007f1ec05ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1269.290440][T23965] RAX: ffffffffffffffda RBX: 00007f1ec2615fa0 RCX: 00007f1ec239c799
[ 1269.290461][T23965] RDX: 0000000000008000 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[ 1269.290480][T23965] RBP: 00007f1ec2432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1269.290499][T23965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1269.290517][T23965] R13: 00007f1ec2616038 R14: 00007f1ec2615fa0 R15: 00007ffe305fea48
[ 1269.290554][T23965]  </TASK>
[ 1270.581941][T23551] Bluetooth: hci5: command 0x2016 tx timeout
[ 1271.003118][T24028] vivid-007: =================  START STATUS  =================
[ 1271.025212][T24028] vivid-007: Generate PTS: true
[ 1271.038738][T24028] vivid-007: Generate SCR: true
[ 1271.057248][T24028] tpg source WxH: 320x240 (Y'CbCr)
[ 1271.076417][T24028] tpg field: 1
[ 1271.086210][T24028] tpg crop: (0,0)/320x240
[ 1271.096413][T24028] tpg compose: (0,0)/320x240
[ 1271.167754][T24028] tpg colorspace: 8
[ 1271.180334][T24028] tpg transfer function: 0/0
[ 1271.217891][T24028] tpg Y'CbCr encoding: 0/0
[ 1271.275189][T24028] tpg quantization: 0/0
[ 1271.329686][T24028] tpg RGB range: 0/2
[ 1271.333680][T24028] vivid-007: ==================  END STATUS  ==================
[ 1272.408069][T24065] vivid-007: =================  START STATUS  =================
[ 1272.416869][T24065] vivid-007: Generate PTS: true
[ 1272.426862][T24065] vivid-007: Generate SCR: true
[ 1272.530439][T24065] tpg source WxH: 320x240 (Y'CbCr)
[ 1272.536013][T24065] tpg field: 1
[ 1272.539528][T24065] tpg crop: (0,0)/320x240
[ 1272.601114][T24065] tpg compose: (0,0)/320x240
[ 1272.605934][T24065] tpg colorspace: 8
[ 1272.631173][T24065] tpg transfer function: 0/0
[ 1272.635972][T24065] tpg Y'CbCr encoding: 0/0
[ 1272.651633][T24065] tpg quantization: 0/0
[ 1272.656025][T24065] tpg RGB range: 0/2
[ 1272.660062][T24065] vivid-007: ==================  END STATUS  ==================
[ 1272.670911][ T8750] Bluetooth: hci5: command 0x2016 tx timeout
[ 1273.782745][T24084] FAULT_INJECTION: forcing a failure.
[ 1273.782745][T24084] name failslab, interval 1, probability 0, space 0, times 0
[ 1273.830949][T24084] CPU: 0 UID: 0 PID: 24084 Comm: syz.4.5226 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1273.831007][T24084] Tainted: [L]=SOFTLOCKUP
[ 1273.831020][T24084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1273.831041][T24084] Call Trace:
[ 1273.831053][T24084]  <TASK>
[ 1273.831067][T24084]  dump_stack_lvl+0x100/0x190
[ 1273.831125][T24084]  should_fail_ex.cold+0x5/0xa
[ 1273.831166][T24084]  should_failslab+0xc2/0x120
[ 1273.831204][T24084]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1273.831272][T24084]  ? __kernfs_new_node+0xd2/0x960
[ 1273.831331][T24084]  __kernfs_new_node+0xd2/0x960
[ 1273.831387][T24084]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1273.831447][T24084]  ? find_held_lock+0x2b/0x80
[ 1273.831478][T24084]  ? kernfs_root+0xee/0x2a0
[ 1273.831523][T24084]  ? kernfs_root+0xee/0x2a0
[ 1273.831578][T24084]  kernfs_new_node+0x11b/0x1a0
[ 1273.831636][T24084]  __kernfs_create_file+0x53/0x350
[ 1273.831679][T24084]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1273.831734][T24084]  internal_create_group+0x593/0xf40
[ 1273.831796][T24084]  ? __pfx_internal_create_group+0x10/0x10
[ 1273.831854][T24084]  ? kernfs_create_link+0x1bd/0x240
[ 1273.831900][T24084]  internal_create_groups+0x9d/0x150
[ 1273.831953][T24084]  device_add+0x7c8/0x1950
[ 1273.831992][T24084]  ? __pfx_device_add+0x10/0x10
[ 1273.832026][T24084]  ? lockdep_init_map_type+0x5c/0x250
[ 1273.832072][T24084]  ? __init_waitqueue_head+0xca/0x150
[ 1273.832132][T24084]  netdev_register_kobject+0x1a9/0x3d0
[ 1273.832188][T24084]  register_netdevice+0x12e0/0x2210
[ 1273.832237][T24084]  ? idr_alloc+0xdd/0x130
[ 1273.832285][T24084]  ? __pfx_register_netdevice+0x10/0x10
[ 1273.832317][T24084]  ? net_generic+0xea/0x2a0
[ 1273.832352][T24084]  ppp_dev_configure+0x986/0xcb0
[ 1273.832388][T24084]  ppp_ioctl+0x985/0x2800
[ 1273.832437][T24084]  ? find_held_lock+0x2b/0x80
[ 1273.832461][T24084]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1273.832495][T24084]  ? __fget_files+0x21f/0x3d0
[ 1273.832523][T24084]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1273.832554][T24084]  __x64_sys_ioctl+0x18e/0x210
[ 1273.832593][T24084]  do_syscall_64+0x106/0xf80
[ 1273.832623][T24084]  ? clear_bhb_loop+0x40/0x90
[ 1273.832654][T24084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1273.832679][T24084] RIP: 0033:0x7f96d119c799
[ 1273.832700][T24084] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1273.832725][T24084] RSP: 002b:00007f96d2129028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1273.832748][T24084] RAX: ffffffffffffffda RBX: 00007f96d1415fa0 RCX: 00007f96d119c799
[ 1273.832768][T24084] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000008
[ 1273.832783][T24084] RBP: 00007f96d1232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1273.832799][T24084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1273.832813][T24084] R13: 00007f96d1416038 R14: 00007f96d1415fa0 R15: 00007ffddaf14328
[ 1273.832845][T24084]  </TASK>
[ 1274.198129][T24091] vivid-003: =================  START STATUS  =================
[ 1274.206078][T24091] vivid-003: Radio HW Seek Mode: Bounded
[ 1274.212912][T24091] vivid-003: Radio Programmable HW Seek: false
[ 1274.219204][T24091] vivid-003: RDS Rx I/O Mode: Block I/O
[ 1274.224911][T24091] vivid-003: Generate RBDS Instead of RDS: false
[ 1274.231380][T24091] vivid-003: RDS Reception: true
[ 1274.236404][T24091] vivid-003: RDS Program Type: 0 inactive
[ 1274.245946][T24091] vivid-003: RDS PS Name:  inactive
[ 1274.251469][T24091] vivid-003: RDS Radio Text:  inactive
[ 1274.257009][T24091] vivid-003: RDS Traffic Announcement: false inactive
[ 1274.265869][T24091] vivid-003: RDS Traffic Program: false inactive
[ 1274.272563][T24091] vivid-003: RDS Music: false inactive
[ 1274.278182][T24091] vivid-003: ==================  END STATUS  ==================
[ 1274.348242][T24086] zswap: compressor  not available
[ 1280.610613][T23551] Bluetooth: hci5: unexpected subevent 0x01 length: 123 > 18
[ 1280.783669][T23551] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[ 1281.320436][T24215] FAULT_INJECTION: forcing a failure.
[ 1281.320436][T24215] name failslab, interval 1, probability 0, space 0, times 0
[ 1281.357097][T24217] netlink: 354 bytes leftover after parsing attributes in process `syz.2.5257'.
[ 1281.369753][T24215] CPU: 0 UID: 0 PID: 24215 Comm: syz.4.5259 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1281.369809][T24215] Tainted: [L]=SOFTLOCKUP
[ 1281.369824][T24215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1281.369845][T24215] Call Trace:
[ 1281.369857][T24215]  <TASK>
[ 1281.369870][T24215]  dump_stack_lvl+0x100/0x190
[ 1281.369928][T24215]  should_fail_ex.cold+0x5/0xa
[ 1281.369967][T24215]  should_failslab+0xc2/0x120
[ 1281.370004][T24215]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1281.370056][T24215]  ? __kernfs_new_node+0xd2/0x960
[ 1281.370116][T24215]  __kernfs_new_node+0xd2/0x960
[ 1281.370182][T24215]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1281.370244][T24215]  ? find_held_lock+0x2b/0x80
[ 1281.370276][T24215]  ? kernfs_root+0xee/0x2a0
[ 1281.370321][T24215]  ? kernfs_root+0xee/0x2a0
[ 1281.370378][T24215]  kernfs_new_node+0x11b/0x1a0
[ 1281.370436][T24215]  __kernfs_create_file+0x53/0x350
[ 1281.370482][T24215]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1281.370537][T24215]  sysfs_merge_group+0x194/0x340
[ 1281.370588][T24215]  ? __pfx_sysfs_merge_group+0x10/0x10
[ 1281.370643][T24215]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1281.370700][T24215]  ? bus_to_subsys+0x114/0x150
[ 1281.370742][T24215]  dpm_sysfs_add+0x237/0x280
[ 1281.370797][T24215]  device_add+0x9ef/0x1950
[ 1281.370834][T24215]  ? __pfx_device_add+0x10/0x10
[ 1281.370870][T24215]  ? lockdep_init_map_type+0x5c/0x250
[ 1281.370918][T24215]  ? __init_waitqueue_head+0xca/0x150
[ 1281.370983][T24215]  netdev_register_kobject+0x1a9/0x3d0
[ 1281.371042][T24215]  register_netdevice+0x12e0/0x2210
[ 1281.371096][T24215]  ? idr_alloc+0xdd/0x130
[ 1281.371147][T24215]  ? __pfx_register_netdevice+0x10/0x10
[ 1281.371209][T24215]  ? net_generic+0xea/0x2a0
[ 1281.371259][T24215]  ppp_dev_configure+0x986/0xcb0
[ 1281.371317][T24215]  ppp_ioctl+0x985/0x2800
[ 1281.371362][T24215]  ? find_held_lock+0x2b/0x80
[ 1281.371395][T24215]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1281.371444][T24215]  ? __fget_files+0x21f/0x3d0
[ 1281.371484][T24215]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1281.371527][T24215]  __x64_sys_ioctl+0x18e/0x210
[ 1281.371582][T24215]  do_syscall_64+0x106/0xf80
[ 1281.371622][T24215]  ? clear_bhb_loop+0x40/0x90
[ 1281.371667][T24215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1281.371703][T24215] RIP: 0033:0x7f96d119c799
[ 1281.371733][T24215] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1281.371767][T24215] RSP: 002b:00007f96d2129028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1281.371803][T24215] RAX: ffffffffffffffda RBX: 00007f96d1415fa0 RCX: 00007f96d119c799
[ 1281.371847][T24215] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000009
[ 1281.371869][T24215] RBP: 00007f96d1232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1281.371892][T24215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1281.371913][T24215] R13: 00007f96d1416038 R14: 00007f96d1415fa0 R15: 00007ffddaf14328
[ 1281.371960][T24215]  </TASK>
[ 1282.613242][T24239] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1282.688394][ T8750] Bluetooth: hci5: command 0x2016 tx timeout
[ 1282.839718][T24245] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5264'.
[ 1282.850447][T24245] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5264'.
[ 1282.860152][T24245] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5264'.
[ 1282.897195][T24245] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5264'.
[ 1284.355437][T24273] FAULT_INJECTION: forcing a failure.
[ 1284.355437][T24273] name failslab, interval 1, probability 0, space 0, times 0
[ 1284.386178][T24273] CPU: 1 UID: 0 PID: 24273 Comm: syz.5.5270 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1284.386237][T24273] Tainted: [L]=SOFTLOCKUP
[ 1284.386250][T24273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1284.386270][T24273] Call Trace:
[ 1284.386281][T24273]  <TASK>
[ 1284.386295][T24273]  dump_stack_lvl+0x100/0x190
[ 1284.386353][T24273]  should_fail_ex.cold+0x5/0xa
[ 1284.386406][T24273]  should_failslab+0xc2/0x120
[ 1284.386444][T24273]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1284.386497][T24273]  ? __kernfs_new_node+0xd2/0x960
[ 1284.386557][T24273]  __kernfs_new_node+0xd2/0x960
[ 1284.386613][T24273]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1284.386672][T24273]  ? find_held_lock+0x2b/0x80
[ 1284.386704][T24273]  ? kernfs_root+0xee/0x2a0
[ 1284.386751][T24273]  ? kernfs_root+0xee/0x2a0
[ 1284.386809][T24273]  kernfs_new_node+0x11b/0x1a0
[ 1284.386870][T24273]  __kernfs_create_file+0x53/0x350
[ 1284.386915][T24273]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1284.386972][T24273]  sysfs_merge_group+0x194/0x340
[ 1284.387025][T24273]  ? __pfx_sysfs_merge_group+0x10/0x10
[ 1284.387083][T24273]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1284.387140][T24273]  ? bus_to_subsys+0x114/0x150
[ 1284.387185][T24273]  dpm_sysfs_add+0x237/0x280
[ 1284.387242][T24273]  device_add+0x9ef/0x1950
[ 1284.387277][T24273]  ? __pfx_device_add+0x10/0x10
[ 1284.387310][T24273]  ? lockdep_init_map_type+0x5c/0x250
[ 1284.387356][T24273]  ? __init_waitqueue_head+0xca/0x150
[ 1284.387423][T24273]  netdev_register_kobject+0x1a9/0x3d0
[ 1284.387471][T24273]  register_netdevice+0x12e0/0x2210
[ 1284.387516][T24273]  ? idr_alloc+0xdd/0x130
[ 1284.387550][T24273]  ? __pfx_register_netdevice+0x10/0x10
[ 1284.387587][T24273]  ? net_generic+0xea/0x2a0
[ 1284.387628][T24273]  ppp_dev_configure+0x986/0xcb0
[ 1284.387671][T24273]  ppp_ioctl+0x985/0x2800
[ 1284.387709][T24273]  ? find_held_lock+0x2b/0x80
[ 1284.387735][T24273]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1284.387776][T24273]  ? __fget_files+0x21f/0x3d0
[ 1284.387808][T24273]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1284.387844][T24273]  __x64_sys_ioctl+0x18e/0x210
[ 1284.387889][T24273]  do_syscall_64+0x106/0xf80
[ 1284.387924][T24273]  ? clear_bhb_loop+0x40/0x90
[ 1284.387960][T24273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1284.387990][T24273] RIP: 0033:0x7ffaac19c799
[ 1284.388016][T24273] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1284.388045][T24273] RSP: 002b:00007ffaad0fe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1284.388079][T24273] RAX: ffffffffffffffda RBX: 00007ffaac415fa0 RCX: 00007ffaac19c799
[ 1284.388099][T24273] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000009
[ 1284.388117][T24273] RBP: 00007ffaac232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1284.388136][T24273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1284.388154][T24273] R13: 00007ffaac416038 R14: 00007ffaac415fa0 R15: 00007ffdce36b1d8
[ 1284.388192][T24273]  </TASK>
[ 1284.785096][T23551] Bluetooth: hci5: command 0x2016 tx timeout
[ 1285.374375][T24279] vivid-007: =================  START STATUS  =================
[ 1285.385616][T24279] vivid-007: Generate PTS: true
[ 1285.392645][T24279] vivid-007: Generate SCR: true
[ 1285.417009][T24279] tpg source WxH: 320x240 (Y'CbCr)
[ 1285.422225][T24279] tpg field: 1
[ 1285.453569][T24279] tpg crop: (0,0)/320x240
[ 1285.466717][T24279] tpg compose: (0,0)/320x240
[ 1285.481127][T24279] tpg colorspace: 8
[ 1285.485048][T24279] tpg transfer function: 0/0
[ 1285.509405][T24279] tpg Y'CbCr encoding: 0/0
[ 1285.513929][T24279] tpg quantization: 0/0
[ 1285.566834][T24279] tpg RGB range: 0/2
[ 1285.566863][T24279] vivid-007: ==================  END STATUS  ==================
[ 1285.669492][T24283] ==================================================================
[ 1285.669521][T24283] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0x94e/0xc60
[ 1285.669645][T24283] Read of size 256 at addr ffff888032b47f60 by task syz.1.5271/24283
[ 1285.669674][T24283] 
[ 1285.669693][T24283] CPU: 1 UID: 0 PID: 24283 Comm: syz.1.5271 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1285.669736][T24283] Tainted: [L]=SOFTLOCKUP
[ 1285.669748][T24283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1285.669767][T24283] Call Trace:
[ 1285.669778][T24283]  <TASK>
[ 1285.669790][T24283]  dump_stack_lvl+0x100/0x190
[ 1285.669835][T24283]  print_report+0x156/0x4c9
[ 1285.669878][T24283]  ? __virt_addr_valid+0x81/0x620
[ 1285.669923][T24283]  ? __phys_addr+0xe8/0x180
[ 1285.669961][T24283]  ? fbcon_prepare_logo+0x94e/0xc60
[ 1285.670006][T24283]  kasan_report+0xdf/0x1e0
[ 1285.670038][T24283]  ? fbcon_prepare_logo+0x94e/0xc60
[ 1285.670087][T24283]  kasan_check_range+0x10f/0x1e0
[ 1285.670123][T24283]  __asan_memcpy+0x23/0x60
[ 1285.670162][T24283]  fbcon_prepare_logo+0x94e/0xc60
[ 1285.670214][T24283]  fbcon_init+0x10a0/0x1820
[ 1285.670263][T24283]  visual_init+0x320/0x620
[ 1285.670326][T24283]  do_bind_con_driver.isra.0+0x636/0x9c0
[ 1285.670368][T24283]  store_bind+0x609/0x730
[ 1285.670406][T24283]  ? __pfx_store_bind+0x10/0x10
[ 1285.670438][T24283]  dev_attr_store+0x58/0x80
[ 1285.670516][T24283]  ? __pfx_dev_attr_store+0x10/0x10
[ 1285.670564][T24283]  sysfs_kf_write+0xf2/0x150
[ 1285.670601][T24283]  kernfs_fop_write_iter+0x3e0/0x5f0
[ 1285.670632][T24283]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1285.670668][T24283]  vfs_write+0x6ac/0x1070
[ 1285.670714][T24283]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1285.670746][T24283]  ? __pfx_vfs_write+0x10/0x10
[ 1285.670802][T24283]  ksys_write+0x12a/0x250
[ 1285.670827][T24283]  ? __pfx_ksys_write+0x10/0x10
[ 1285.670858][T24283]  do_syscall_64+0x106/0xf80
[ 1285.670900][T24283]  ? clear_bhb_loop+0x40/0x90
[ 1285.670936][T24283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1285.670968][T24283] RIP: 0033:0x7f9d0579c799
[ 1285.670992][T24283] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1285.671024][T24283] RSP: 002b:00007f9d0665a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1285.671053][T24283] RAX: ffffffffffffffda RBX: 00007f9d05a16180 RCX: 00007f9d0579c799
[ 1285.671075][T24283] RDX: 0000000000000084 RSI: 0000200000000040 RDI: 0000000000000003
[ 1285.671095][T24283] RBP: 00007f9d05832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1285.671115][T24283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1285.671134][T24283] R13: 00007f9d05a16218 R14: 00007f9d05a16180 R15: 00007ffe2304ce28
[ 1285.671165][T24283]  </TASK>
[ 1285.671176][T24283] 
[ 1285.671184][T24283] The buggy address belongs to the physical page:
[ 1285.671198][T24283] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888032b44680 pfn:0x32b44
[ 1285.671227][T24283] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1285.671251][T24283] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1285.671279][T24283] page_type: f8(unknown)
[ 1285.671305][T24283] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000
[ 1285.671341][T24283] raw: ffff888032b44680 0000000000000000 00000000f8000000 0000000000000000
[ 1285.671370][T24283] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000
[ 1285.671398][T24283] head: ffff888032b44680 0000000000000000 00000000f8000000 0000000000000000
[ 1285.671426][T24283] head: 00fff00000000002 ffffea0000cad101 00000000ffffffff 00000000ffffffff
[ 1285.671453][T24283] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[ 1285.671490][T24283] page dumped because: kasan: bad access detected
[ 1285.671513][T24283] page_owner tracks the page as allocated
[ 1285.671525][T24283] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x140dc0(GFP_USER|__GFP_ZERO|__GFP_COMP), pid 24283, tgid 24276 (syz.1.5271), ts 1285552100111, free_ts 1285520050184
[ 1285.671578][T24283]  post_alloc_hook+0x153/0x170
[ 1285.671618][T24283]  get_page_from_freelist+0x111d/0x3140
[ 1285.671661][T24283]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[ 1285.671705][T24283]  alloc_pages_mpol+0x1fb/0x550
[ 1285.671734][T24283]  ___kmalloc_large_node+0x104/0x150
[ 1285.671765][T24283]  __kmalloc_large_node_noprof+0x1c/0x70
[ 1285.671799][T24283]  __kmalloc_noprof+0x5be/0x850
[ 1285.671839][T24283]  vc_do_resize+0x1da/0x10f0
[ 1285.671869][T24283]  fbcon_init+0x10ba/0x1820
[ 1285.671917][T24283]  visual_init+0x320/0x620
[ 1285.671941][T24283]  do_bind_con_driver.isra.0+0x636/0x9c0
[ 1285.671973][T24283]  store_bind+0x609/0x730
[ 1285.672003][T24283]  dev_attr_store+0x58/0x80
[ 1285.672047][T24283]  sysfs_kf_write+0xf2/0x150
[ 1285.672078][T24283]  kernfs_fop_write_iter+0x3e0/0x5f0
[ 1285.672106][T24283]  vfs_write+0x6ac/0x1070
[ 1285.672148][T24283] page last free pid 24283 tgid 24276 stack trace:
[ 1285.672165][T24283]  __free_frozen_pages+0x7e1/0x10d0
[ 1285.672199][T24283]  vc_do_resize+0xe45/0x10f0
[ 1285.672227][T24283]  fbcon_startup+0x423/0xbf0
[ 1285.672269][T24283]  do_bind_con_driver.isra.0+0x2ac/0x9c0
[ 1285.672301][T24283]  store_bind+0x609/0x730
[ 1285.672329][T24283]  dev_attr_store+0x58/0x80
[ 1285.672371][T24283]  sysfs_kf_write+0xf2/0x150
[ 1285.672404][T24283]  kernfs_fop_write_iter+0x3e0/0x5f0
[ 1285.672432][T24283]  vfs_write+0x6ac/0x1070
[ 1285.672475][T24283]  ksys_write+0x12a/0x250
[ 1285.672497][T24283]  do_syscall_64+0x106/0xf80
[ 1285.672529][T24283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1285.672559][T24283] 
[ 1285.672567][T24283] Memory state around the buggy address:
[ 1285.672583][T24283]  ffff888032b47e00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[ 1285.672604][T24283]  ffff888032b47e80: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[ 1285.672626][T24283] >ffff888032b47f00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[ 1285.672642][T24283]                                                        ^
[ 1285.672659][T24283]  ffff888032b47f80: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[ 1285.672680][T24283]  ffff888032b48000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1285.672697][T24283] ==================================================================
[ 1285.672724][T24283] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1285.672750][T24283] CPU: 1 UID: 0 PID: 24283 Comm: syz.1.5271 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1285.672795][T24283] Tainted: [L]=SOFTLOCKUP
[ 1285.672807][T24283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[ 1285.672826][T24283] Call Trace:
[ 1285.672837][T24283]  <TASK>
[ 1285.672849][T24283]  dump_stack_lvl+0x100/0x190
[ 1285.672900][T24283]  vpanic+0x552/0x970
[ 1285.672929][T24283]  ? __pfx_vpanic+0x10/0x10
[ 1285.672959][T24283]  ? __pfx_vprintk_emit+0x10/0x10
[ 1285.672992][T24283]  ? fbcon_prepare_logo+0x94e/0xc60
[ 1285.673037][T24283]  panic+0xd1/0xe0
[ 1285.673063][T24283]  ? __pfx_panic+0x10/0x10
[ 1285.673096][T24283]  ? fbcon_prepare_logo+0x94e/0xc60
[ 1285.673143][T24283]  check_panic_on_warn.cold+0x19/0x34
[ 1285.673175][T24283]  end_report.part.0+0x3a/0x90
[ 1285.673216][T24283]  kasan_report.cold+0xe/0x18
[ 1285.673258][T24283]  ? fbcon_prepare_logo+0x94e/0xc60
[ 1285.673306][T24283]  kasan_check_range+0x10f/0x1e0
[ 1285.673342][T24283]  __asan_memcpy+0x23/0x60
[ 1285.673382][T24283]  fbcon_prepare_logo+0x94e/0xc60
[ 1285.673436][T24283]  fbcon_init+0x10a0/0x1820
[ 1285.673485][T24283]  visual_init+0x320/0x620
[ 1285.673513][T24283]  do_bind_con_driver.isra.0+0x636/0x9c0
[ 1285.673553][T24283]  store_bind+0x609/0x730
[ 1285.673590][T24283]  ? __pfx_store_bind+0x10/0x10
[ 1285.673622][T24283]  dev_attr_store+0x58/0x80
[ 1285.673668][T24283]  ? __pfx_dev_attr_store+0x10/0x10
[ 1285.673714][T24283]  sysfs_kf_write+0xf2/0x150
[ 1285.673752][T24283]  kernfs_fop_write_iter+0x3e0/0x5f0
[ 1285.673781][T24283]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1285.673818][T24283]  vfs_write+0x6ac/0x1070
[ 1285.673864][T24283]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1285.673910][T24283]  ? __pfx_vfs_write+0x10/0x10
[ 1285.673969][T24283]  ksys_write+0x12a/0x250
[ 1285.673996][T24283]  ? __pfx_ksys_write+0x10/0x10
[ 1285.674028][T24283]  do_syscall_64+0x106/0xf80
[ 1285.674064][T24283]  ? clear_bhb_loop+0x40/0x90
[ 1285.674098][T24283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1285.674129][T24283] RIP: 0033:0x7f9d0579c799
[ 1285.674153][T24283] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1285.674185][T24283] RSP: 002b:00007f9d0665a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1285.674214][T24283] RAX: ffffffffffffffda RBX: 00007f9d05a16180 RCX: 00007f9d0579c799
[ 1285.674236][T24283] RDX: 0000000000000084 RSI: 0000200000000040 RDI: 0000000000000003
[ 1285.674255][T24283] RBP: 00007f9d05832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1285.674274][T24283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1285.674293][T24283] R13: 00007f9d05a16218 R14: 00007f9d05a16180 R15: 00007ffe2304ce28
[ 1285.674323][T24283]  </TASK>
[ 1285.674951][T24283] Kernel Offset: disabled