last executing test programs:

3m16.070998174s ago: executing program 0 (id=118):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000040), r0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0xa, 0x2, 0x0)
ioctl$auto(0x3, 0xae41, r4)
r5 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000001c0), r3)
r6 = setfsuid$auto(0xee00)
setreuid$auto(r6, 0x0)
r7 = getpid()
process_vm_readv$auto(r7, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
sendmsg$auto_TIPC_NL_SOCK_GET(r4, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)={0x2bc, r5, 0x200, 0x70bd29, 0x25dfdbfe, {}, [@TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@nested={0x20, 0x11f, 0x0, 0x1, [@nested={0x4, 0x7e}, @typed={0x8, 0xb1, 0x0, 0x0, @u32=0xfffffff7}, @typed={0x4, 0x66}, @typed={0xc, 0x40, 0x0, 0x0, @u64=0x8a}]}, @typed={0x8, 0x9, 0x0, 0x0, @ipv4=@private=0xa010100}]}, @TIPC_NLA_PUBL={0x40, 0x3, 0x0, 0x1, [@typed={0x8, 0xf, 0x0, 0x0, @uid=r6}, @generic="edf68c9beeb0bbd03486bf35ddb54d63064c6f695c9cbf6ef24f21740eeb12738176ea", @generic="b710621558c65c3bfef1ffa2b5033043c6"]}, @TIPC_NLA_UNSPEC={0xdc, 0x0, "b2a90db0733bc80cd3f2cc122bed214e9c34cc48e9d1e9f420d11438a34d995162f07614740b1462e9d7c6a8a74b8e0f787ee83e10eebb5131cfafb3b2a49b54aab474a434c434ecc221f7e312cf1f30e1adea5df1efc913ab297bec2349816e88cb8a85a497523b93e4005149cad62fb7da0d8b9f492eee124ec50d70a4285c9ccbe930b696440b6bcead1aab29e5c347ce35bd46a7caac3e0f802698ef761b89567b4304751774da5277bf8ced80278b4476e18076a036357020b5347e0307543f08bd1931219b9cc2c8c89321c7871a25f08d2d259dfe"}, @TIPC_NLA_MON={0x128, 0x9, 0x0, 0x1, [@typed={0x31, 0x11e, 0x0, 0x0, @binary="dbd67b693d8066a3f3dfd09a6c2d8952049934be11d2e9da6940c15bce3937b302e0dc1b3237b1f91e2805f275"}, @generic="66777a6408115c60cb9146a979b40b2e1f51556c62429eeccae27d1f1d2d7f28fccfa2e6097214542ae1adae4ad9c4fff5e3fe3ed62196643cba4ab46d1c4e6d3706e4a6f15f4e54bbe8e0fec76fbb357904ac9827148b6861d28296cc92ee5dafcbcaf8b26079924bbf5e35478947322cd7fe1bc29f0a8ce624e38119dc8e2bf1ac9a81920910c003aa232c6b6396942f3916855a11fab349247a6ec58b74e443f5d4", @typed={0x8, 0x127, 0x0, 0x0, @pid=r7}, @nested={0x8, 0xc1, 0x0, 0x1, [@nested={0x4, 0xc0}]}, @generic="8d5b51ef242307a8be61ff30f2e8dd66fbbc7d15316b03f57920b5a78af0c5e2f1ce5277604c4e4bd4c1c05a2fa7c431a93c808a26cf4c6d9bdd8ebef1", @generic]}, @TIPC_NLA_UNSPEC={0x11, 0x0, "94155bed11b34e0225c4d88e39"}, @TIPC_NLA_NODE={0x24, 0x6, 0x0, 0x1, [@typed={0xc, 0xa3, 0x0, 0x0, @u64=0x49bf}, @nested={0x14, 0x126, 0x0, 0x1, [@typed={0xc, 0xbf, 0x0, 0x0, @u64=0x5}, @nested={0x4, 0x147}]}]}]}, 0x2bc}, 0x1, 0x0, 0x0, 0x8000}, 0x14000090)
socketpair$auto(0x7ffffffd, 0x8000003, 0x40, 0x0)
ioctl$auto(0x3, 0x8905, 0x38)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r8=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r8], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097d751f33e}, 0x80)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xcb, 0x0, 0x4)
r9 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000240)='/dev/bus/usb/002/001\x00', 0x40101, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r9, 0xc0185500, &(0x7f00000000c0)={0xa1, 0x9, 0x200, 0x4, 0xfff8, 0xfffffffe, 0x0})
sendmsg$auto_NETDEV_CMD_QSTATS_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, r1, 0x301, 0x70bd29, 0x25dfdbfe, {}, [@NETDEV_A_QSTATS_IFINDEX={0x8, 0x1, r8}]}, 0x1c}}, 0x40000)

3m15.620699019s ago: executing program 0 (id=119):
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
statmount$auto(0x0, &(0x7f0000000380)={0x4, 0xfffffffd, 0x9, 0x3, 0x16, 0x4, 0x5, 0x3, 0x800000000000006, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x3, 0xb414, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffffffe, [0x0, 0x8000000000000, 0x0, 0x0, 0x1, 0x3, 0xfffffffffffffffc, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80000000, 0x0, 0x1000000000, 0x0, 0x0, 0xfffffffffffffffd, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x20000000000000], "c4cbb7ab40a4d6220aa6d6ea4305f533c9e9bee6fcfc61722ccb678e0e2cba7194bc385b26d84c96723400de3b5aacff44f65a10b6c36a9a55945d88270da0f18327ed7c66498ace94f97e799732311e069e26edbb6db1b0ddede50878458b27f5e2fb6581"}, 0x200, 0x81)
setfsuid$auto(0xee00)
sysfs$auto(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
write$auto(0x3, 0x0, 0x1)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0xe)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x11f, 0x0, 0xfffffffffffffffd)
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
sendfile$auto(0x3, r1, 0x0, 0x400000000006)
socket(0x18, 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x202, 0x0)
mmap$auto(0x0, 0x6, 0x3, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
socket(0x2, 0x1, 0x84)
socket(0x2, 0x1, 0x0)
r2 = socket(0x2, 0x2, 0x0)
sendmmsg$auto(r2, 0x0, 0x6, 0x20000000)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
write$auto(r3, &(0x7f00000004c0)='7\x00\\\xa0k\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa4\xf6\xfe\x81\xea\b/\x16|:#\x81\xd3\x8f\x1e[\x11K5\x1d\xcbV9x\'Am\xef+\xf5\x02\x8f\xf0\xa3\x8f`y\x19\xf8\x84\x1f\x13>$\xa7@<C+\x04\x0fHc\x15\xa1\tz\xaf\xad\xd7\xae\r\xa4\x8a\x8f\xbe\xc7\xfa\x9e\xf7N\x15\xbd\x10\n\xfc\x055\x17\t\xd0\xbcP\xd3U\xb7@\xfd\x9e\xdf]l\x04Y\'\xf8!\xe9\x8c\x80\x175\x1bT\x02\x13\x186\xf1\x9f_\xf7q9\bk]8 \xc9\x14}\xcbbEr\x1b\xf8\x85B\xa4&o\xd0.\x86\xf7\xcf\xee\x0eV\x97\xd7z\'\x97r\xe7\xe8\x1aX59\xdc\x9d\x82\xf5\x9e\xee\xea\xd4\\e\xd6\x1cQ2\xda\xe4\xba\x9e\x18\xd6\xb5\x19o\x8c\xef\x89\x92A\xaf$\xadt\xf5q\x81\xe8\x8b(i\xedR0\x10\xa1\xda\xb1\xfaBD[\xcbL\xa2}\xe2\n\x0e\xc6@\xb5\xfe\xdd\xd2A8jS\x87\xe1\xe9\x984\f\xc4\x1ce\xd2\xa8gv\xa4\x00'/260, 0x81)
write$auto(0x3, 0x0, 0x100082)

3m14.083511652s ago: executing program 0 (id=124):
ioctl$auto_CEC_S_MODE(0xffffffffffffffff, 0x40046109, 0x0) (async)
mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x54000, 0x0) (rerun: 64)
r0 = set_tid_address$auto(0x0) (async)
r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) (async, rerun: 64)
socket(0x2, 0x1, 0x0) (async, rerun: 64)
socket(0x2, 0x80802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_smc_gen_netlink(0x0, 0xffffffffffffffff) (async)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x103281, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000001df, 0xeb1, 0x401, 0x8000) (async)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) (async, rerun: 64)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) (rerun: 64)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) (async, rerun: 32)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) (async, rerun: 32)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bond0\x00', <r3=>0x0})
r4 = socket(0xa, 0x3, 0x6)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r3, 0x7f, 0x99, 0x8, 0x1, @relative_fd=r4, 0xd}, 0x92) (async)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x2000, 0x0) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
clone$auto(0x2, 0x2, 0x0, 0x0, 0xb5e) (async, rerun: 32)
r5 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) (rerun: 32)
write$auto(r5, 0x0, 0xc3) (async)
ioctl$auto_TUNGETIFF(r1, 0x800454d2, 0x0) (async)
syslog$auto(0xffff8001, &(0x7f0000000340)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\b 3\'\xc5tw\x97\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2)\x19T\xd2_\xd0\xd6kk\xe1\xf9):\xff\x7f\x85\x8a\xb8U-\xec\xbf\x13\x9e\tqV\x84\xcf\xf0u\xd3\f\xaf\xfb\x19\xcb\xb6w\xb9\xb0\x9bu\xfd\xe3\xa4w\x01\x18\xfa\xe0E\x8b\xef\xb5\x92H<\xfc\x1f\x00F\xd5[\xdd~\x16.\xde\x05\xf6pU\x16d\xba\xdd\xd8\xa2jR$iPAuFS\xdd1\x82,\x19\x84\x9d\xb0\x13\xd6\xbb\xd53|\xc3\x18\xf8Q\xba\xe1;Y\xe3\xdd.>\xa5\xf0U\xe2\x0eJ>r\x8bX\xc2\x88\xf3,Q\x96u\x92\xba\x88\x01lO\xde\x86w(\x84UP\xf5K\nr>B2\xbf9\xc5\xf9\\\x1b\xd1\xc2\xde\x04[\x06FE\xa6\xce\xdb\xc4\x95\xd3ny\x01\xea\xb7S\x19=M\x81\x01:1\xa2\xb2q\xd0\xe0k{\x015U\xf3\'H\xab|\xd0qmz\xfck%\xa8\x8e\xe6\x17\x9b\tS\x86.\xa41\x15;T24\x1a\xc5k\xf8\xc2J\x05\xd6N\xef\xa0P\x7f\xddB\xd5\x9f`Y\x1bk\x89\x87\x81\xde\xc4\xab\xe67#\x122', 0xe0a)
syz_open_procfs$namespace(r0, &(0x7f0000000080))

3m11.042442964s ago: executing program 0 (id=133):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r1, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0xffffffffffffff7f, 0x368e, 0x2, {0xffffffff, 0x20000000010000}, 0x5, 0x6, 0xfffffffffffffffd, 0x7, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0xdead, 0x804})
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x581402, 0x0)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000080), 0xc0402, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0xc0403d11, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
waitid$auto_P_ALL(0x0, 0x3b000, 0x0, 0x3, &(0x7f0000000300)={{0xda0000000000000, 0x969d}, {0x2, 0x6}, 0x8000000000000000, 0xa, 0x8, 0x9, 0xb871, 0x6, 0x9ffd, 0x81, 0x0, 0x1000000000f8c5, 0x1000, 0x81, 0xc, 0xd})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x9, 0x7)
clock_gettime$auto(0x1, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x18, 0x4, 0x8002)
open(&(0x7f0000000040)='./cgroup\x00', 0x80, 0xb5d1af1605322de0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
close_range$auto(0x2, 0x8, 0x0)

3m3.978426893s ago: executing program 0 (id=146):
mmap$auto(0x0, 0x10004, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x3, 0x120003b)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, <r1=>0x4, 0x1ff, 0x3, 0x8, 0xc, 0x2e, 0x0, 0x3}, 0x6f4)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffc, 0x800, 0x1000011d, 0x7fffffff, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x40e00, 0x0)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000300), 0x8281, 0x0)
ioctl$auto_PPPIOCATTACH(r3, 0x4004743d, 0x0)
r4 = openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/bonding/xmit_hash_policy\x00', 0x10b062, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
rt_sigqueueinfo$auto(0x0, 0x9, &(0x7f00000000c0)={@_si_pad})
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto(r4, 0x9, r0)
shmget$auto(0x8, 0x10565, 0x7ff)
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)
r5 = socket(0xa, 0x2, 0x3a)
getsockopt$auto(r5, 0x0, 0xf, 0xfffffffffffffffe, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r1)
getpgid(0x0)
mmap$auto(0x200000000000, 0x2020009, 0xffff7f00, 0xeb1, 0xffffffffffffffff, 0x8000)

2m56.79546427s ago: executing program 0 (id=162):
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC1D0c\x00', 0x20000, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_DROP2(r0, 0x4143, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0xf1, &(0x7f0000000100)={@_si_pad})
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ')

2m39.099342165s ago: executing program 32 (id=162):
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC1D0c\x00', 0x20000, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_DROP2(r0, 0x4143, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0xf1, &(0x7f0000000100)={@_si_pad})
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ')

20.984405651s ago: executing program 4 (id=525):
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000b00), 0xffffffffffffffff)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) (async)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x100000000, 0x66)
lstat$auto(&(0x7f0000000200)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) (async)
move_pages$auto(0x0, 0x8, 0x0, 0x0, 0x0, 0x2) (async)
mmap$auto(0x0, 0x20009, 0xe, 0xeb1, 0x403, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000080), 0xffffffffffffffff) (async)
sendmsg$auto_NET_SHAPER_CMD_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008844}, 0x40444c1) (async)
unshare$auto(0x40000080) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
ioctl$auto(0xffffffffffffffff, 0xc01070ce, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4000000) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) (async)
ioctl$auto_FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x7) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
shmctl$auto_SHM_STAT(0x2, 0xd, 0x0) (async)
madvise$auto_MADV_WILLNEED(0x5, 0x3, 0x3) (async)
socket(0x2, 0x3, 0x6) (async)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x4e24, @remote}, 0x6a) (async)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800008}, 0x5, 0x20000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0xb2c, 0x2, 0x20000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1bff, &(0x7f00000002c0)={0x0, 0xc4}, 0xfffffffffffffffc, 0x0, 0x0, 0x9}, 0x5}, 0x5, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
socket(0x1d, 0x2, 0x6) (async)
write$auto(0x3, 0x0, 0x100085)

16.337859103s ago: executing program 1 (id=533):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
socket(0x11, 0x2, 0x6)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/021/001\x00', 0x602, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000000c0), 0x222680, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/hugepages-64kB/stats/nr_anon\x00', 0x0, 0x0)
openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000200), 0x103240, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
socketpair$auto(0x4004, 0x8, 0x7, 0x0)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0)
ioctl$auto_TCFLSH2(r0, 0x5408, 0x0)

15.717194325s ago: executing program 4 (id=534):
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x18200, 0x0)
openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/gid_map\x00', 0x2080, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
prctl$auto_PR_SET_THP_DISABLE(0x29, 0x0, 0x5, 0x8, 0x0)
write$auto(0x3, 0x0, 0x100082)
process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={0x0, 0x40000000001243}, 0x4, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0x8800, 0x0)
ioctl$auto_BTRFS_IOC_DEVICES_READY(r2, 0x90009427, &(0x7f0000001080)={@inferred, "90f76cafdf9350e097b7b41c4bce9027e1427278beb634e4ff4a9bbba4d7f7e88a63db963884a3b5a9618d36b67bc26208db95f99006c537550d92cbc7484a20b3546e5a8518601c773244d928695cd77cbef7d4fb0065edd10d670a4b9f830839535277ad4a024d17a5f6d8ba6e4cad2d70a72aa060b12931eed03755ed42a5412922e6d8d5a98f4b050a5513c6ff1bc983dbbf96b7bd1ae2a514ce48e2d0a50079b4a93680f99112c5bbcd06f22b360f7d07d20fe0a4ed4d2f465d1b0e4ad600a62fd9518c4bef013761ed260766cef5622f52b078105bde182758a9a3e56958d275d9f281386ccba530f8905f57b3f0d3de06b2ef1684af704f73038baffaf929e9d43b2c1131b4a47bda7f18af6cd990419d76076c11cc99425cd9e001ba205b9e587a9e45e8de4fd5a77c31d7dc4c481bec73c665b64ed01215c396e33c19022ca522c509f00291367ed6e2bade11ce0308dafd07dc7601654d75d9db66c3c4595b8788a657208607a8ff2b5d57616668ddc6016d8227a85dafbfa4b7986ba00ecb90c8852f84179d3e7ac2987e72ba9cb2e49486db6670cbf15255cf0be32f5e65fb97d1ce34318cb8251bc47892f36be9420992b9fcf4ead79667866aa2206732d9211a1f4a58438c10ade99862b6563d2bf98bd491aada2b5343f11546154f89d0b22d3a4a1e29ffe58b797917cac97585fa43644075c18ef89f011883f136ef39beb7886d3d28954b460d170859e2168a1d2c552d6fd76e8a76bd11b7025dda3c41759bb6b81fa28916ae9c41eb4a6f5e8d32db3bebc15ed74fa29c3fc0fffba2851e12aa8c8cb20a5432c1c7a89d7dac97cfd7b067491cb489204ad67d7ee39c2bdd9e932a1db11c0600bca8353c1712bb6ca6a1bb41ac80f613e8ba3cfca16169b617e4b5df142b8107bf7300999ed255ffda3c16e36587c5e24bd3e01521cb44b0fd0dab4af45baf2d4bcadb035a656084a3dc9b3cd858a823fecce56b18334556a95ff2cca445e214b3da494b08938a4b4c0e1b90997a53532bc2849c2e12d589d6d99cffeef1535ebb9922d4e5418ecc10df5fed72e1b6307af3cb73fff67e8c5629fc43c88124d510958bc346cfdeac05b7b49a44a3951c0dbe373234a2d50d2e8d8f5dfd75f045b273e7540e524c9d54b3dd11c8456f80066fb6c43df197fafe816be352be2e0393701ec7b1eab80acd83fa00903eba4e2bebb07dd8aabec9847b2c41c93563f5f9da171bf5eb083daa38d686f7911dc02118478db7b658a44bf57762bede58d36030d6297068c62004e7f7caa2aa0fbe20c2a0a6bc64db45016b7395ba4841a4f41ad7e9ef1fd22126ff72f9bfcd3615f00f23368be20cb7a429e4443b04b5ff856435c2311aa1c87e51bda28b49fc7a7f53e815dcd018bad063ab5a0a5b12d2c5e55e3780c399b0f047a58d5244c05e42ebf788cf7d135d00416c18128da52ec36d5eb5b5098838884a14d3d92f088e7831fdbd9d68eafdf75dfb41abf28d2e7fc314745e2d2ea99ed867bab04167058bc7c27124c07f86e772ddddf654bfe997d0382c4a3735fb3a7443fadcf1bf478785a70e0070a141780bac8f4bd64bd15784cec607f6d613f7f3529acb3ff275adfb37f1573761a3f36257780f0e3fba020d62b6eb45e933df36b7d5390e80f413212fd1cbf686d9ca9173a9d5f7dcd185c85f1d525333b2f669b5904943688b7a7198ba851bfd70b5511d2315c5cef3be254c3b49464fb2595f6b91c532189dbac160d6249bd0b8ac3330d1ce0d50bcee80ed87e831cff2f7e64711e1cf3d5da5a6fb8002c57397be9b919ae802710c281def52ee3001b6399c7e4570bbb1a4fba8d877e8fb5f31987a17b918bc44bb68c27d055028b4360b12ed94bbfe46b8f00360438733b605833ad856ac04a0239eae9ca8b2b28d8f66475f4fbeac8439dc62443822c9c38b2536b70b7b00c7d0dc1349eedede1ca6f82da5f033e0f359908fb70269dd0304a086515010bc84a5e895504544a4d4b557d17420bd7e8e4629b9d2a0a7823fe8b54b1a09936811146532e8e0bb8400545dc49103e88f4508bd354638c7111db72e22ab7ec6ad396265928d8ea68e58a7a88bd714b53386ef0b06b204f1a1eb9ba8d0c2296f1d0678ce91ead03eebbcd59fa3fed37bdecb717e8e26a9ebc477d15e6b7c0159227331787d90eaa0d4e69a97319551671e18611c4b547a35fae8a6e01ee1ba4926bb3608306b0a9189c3de83551da3021537c40f51d859d569e38499b76cf8efced00c9e4f3ae00621e4a74c29c72b9a6c62e20f96366c25c5108dd1d25f72dd64db48a63b17fa41aa024bd6390a913a838e4001dad1e656c8dc1304f46e50e3c00f721da50415309886a2dd0841029178c1106dab067406c42abc2734ae6a747c67251661e51cd7dd7e7a5df845f6fb53af99990c40e9505dc5795f0953dcda33619d8c8bfc4d2e9e2414ab80bc77bdb922e75e9d84e4c507324b0a0004e622f5ed89fc6ebc9e49dbd4cad15fa6fc38f012199afd62b6c6c5c58766134dd3cb58af513addac79fd1f776d3a13fbc544c1aeeea3103715069d459cebb455aa173511d68768869ec185ad41054bb0a6ed61c376f869078fa662426f12b427ebb153d12544fdd8c08ba55bdb6be0c94ec82d2b76b399d03da67ab9a242dec3b02d0b788b00fee9249c277b4a295017d02d8e08d6f17eb300f5a1dc9ac5eef3224d7e3ff7027fdf220f0afee826f2882a4f2a78ff767de88c48e79d0adcb55fee06319b60bf0954b8279354900387836d17f9b644875b9907e59a68a3b11403c1f6c3238cace2fa1ec86d04bea605fa86bdcd8cf12c448e662a32a3c59bfcd1cd33425e0b7caee3c88899bc891d7e20c265b03b1642ce0e642088c38a16eb693a644904774b82de1e3bc71a224bf716356211606d878015748a1ad6a58fe691c1727e231380309fdea45f45ee28c3c80ade9e251ddd396d783fac205512c8751fc4f3da9107e33a457b6237e1121088a2c97dc450b46ba6c4850277ba46e7e222713c5fa4f4438470118d1450d4d72f2acf456d94d755791e1f84cd5b680a0a60f6e9458ab87f60f0e391f53784424f48dbd8b58bf28f989f93eb78f82037164eb15eefad2d8eea33a4e1f95a6914abf7f5757a7d3821266363f961d1f2415c7f9f55dab2e8e53fddbba63e45850325667dc951e7a58108b31556dd47cc40a9963159beffb1d480ceddff6245f553cbb78223e98db356e4bdcbe9953fcdd6527827eae5419f0320825ce2648e14e29e848c6c2e7b01417a2b9fd4f069c3aeedf983cd4412af2f82264c5d4f7a956582b1041564e5d6ab4fee2ca9ebffcb27218c99d8b6541477f2b5b9c4ae10d60c748f6999010b40e99ef45fe453fb79cefe2e61e4a3e3fc6fb1ce42ad26e41f2a02b52c598a0d5629000429824760e01cf4fd5ef33aa3ccc6d3a718b1f7c2ba5fbe7b0eec2fa7cc27911417ce434809aa874c219c635ae7cefb7968e1b3a62497eaaf1eee046967cfd0c9f6540e05d3f415aae01a11a1f9824a767a3327f0dac933db32a04a7c8e82ab2dd0def4bc847d06a4469fd85ce58da8fb3c40a608bfccb6277fbda2a59cbbb0362dcb0594e15612d50b3a4b7de1435a6b4138008ef5115ead122fd080aa43b435861dd928b1a18e807fab349c7fc0e87f252692bef5b5db3187eaf876b574ca7ef7199091d9a1e13094cd9efea25fc8ce0fee0f9b3be269ef9bfef83f179e8ddd1ef429f7144e58f76d87d5c9256235960b9546645be7557f43d56fbebaa2fe98600320a50832ab33540afde9524551c3cd3460e585fef92e6bd633e6c422d99b1d3875ea9d4c66a1b5536792dfae3aa29cba98c00d595ff2f3e62165d1a115e25b8b52ef05c88b2e348fff927eb8a3a8f82123547368cb6b23ff3a956e55eb5580db2a10b5ecd08f65772a02fbee728ebfc61578ffd4c5e27cfb2acbeb7d2d3be6b438c63fd61b67856f6bcf3387ee551827266ea98c4d074a86b8839e08a7bd65a309f3d05291fd02ede1b865e92070dcc4625e2bd6080c49d092da1e8873fdd6036d5ffe9f4c0c8b46e9aa4a3643a87e5a5e85e4a55863537e5b5154871d93b7a42edc728d5a91da814097433821e9c083823edab3d3e4639c03d60a9f8ed46afcfe0a1349e0d94d88e71eed3cc84bf5af7eb50a8ae4b049b9efd394a2337e6db8342c0ca78b9306222a475db6d7925fcb484cf711dbd03bb75fa77b7da29a86f0b5128f0c87c0d797c91ed583705790826f711a087db787be9c56bb7fbdcd2b408104716866295e5da3075c42fd0307779ee46f7367de7c941ff72a8c038a5c020f1e238620e77ee056119ae7f7951d995a5d5e2a863a558ad8d29f0450e5a9262df963be362e225c27b205e97e21f18c93e4bc032dc39e4c69703b1117f14ed080e7db327a4fab222c7767c683af3d7c0b2d2bb4c7ccc92eec8666fb6d707383ee3fdcf77a649e9efb3d95aef25fcbb73323eed03a6dc1ab01eadaf86ea70799ab33e06933528f98398296f21fb3fbfdbaf4c0ee7a68c445fe9d93b8bbbf6485415856ebba787ee7b792335d70436d7d546f0e76972691ff6142e5eb94f68789c35d9b4f0948571080850ab113ad2fcd5511f9e58bcb96465584c0d41bd05bb02777a4c53cd1c184a8ef9b0d438a018c2507036a96d1009144672935dd1b3c7c623b30d5151c32e326ffa5642fa044f5c31d78837814cda04628b3afc952216f896025ea58bac9541c578a43ad4906cd7ba0612e29592d5df29607f03ffefd1b9c48d08c93923bc94f645eae9fd6b7634980bba114f74bd5ed18f594016a6476434b04461c4d3b34fe200e5450869799f298cc29ffc4ea57219a453c6c5803d5aa04757fce3d5aa26467d3fb684a6c6af8d70ae8757d232172570b0af0f6b7695cb9940cfb06aeaef049d4d6603919c30b26fdaf4f36f6d9390c1951f027e79b5ac6fc690872a7d197a57b07d5547909c79e106e336ce55be78b2498857eaa2dd7685ad9bfd8537d6543c0881f1180da6531018876858ab1583d91cf8bb04335b832af8efe9df32bd9a21d01c73de685c9594c0ca550d4918ba27c48feb590f9075329004350ab97be1bac240659d590e1a368a2a1df7966abd8d64810d88988d2ec08c85888b7d1644ed805f446769b000bbc376a0f275bc079f16238fcd9c7826c06dc8993d8a2e788ffec2a1f03bed3a2758a8071d714079e245e3afaadc49355570358212112092783c35e5de496ba6608a3436c8ac3139f78eaedb61aed51d4098438219f5099da1d8fb92e73c396876e5bd8c4349b3456454246d3bd0803e71d7813edacf216cfbb0cb1bcdf1bbf489637d6c91da9bc729de9aedcee243da70744c1c3051edd7d7e444c817b64219757d542831e521bf8fb7c488497c232bc1dbc01f46d42448b9a0212f92e97a4c6a846b4909d556dbf8db2f74ec7aae264a85555fd605416955390f62d82e50a0038b5cbda96011c7eefc8f4610afc088669a4746363215547e519d21265af8fd5579f99581afc398d83b62030c2d9d731e0d1549df34e5a66dd20027cf19ce4fbef7ff057331eca9b37c93f4b8f8d1ff98ccd4549c6f46b92e1d2a840c82864f584815d867e13a91117c2c25c7980df8af39b367e35d928714d17c1a51a636d0d761e7c83f68d688e6e1ff91da5b60e9ace8aa814f932bb42ab96c8de6dafa1cf111c3cfe45ce8c5b0b2764b491891f35c86474316c8210906e05341b00"})
read$auto(0x3, 0x0, 0xfdef)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
lseek$auto(0x3, 0xffffffffff800002, 0x10)
write$auto_ftrace_subsystem_filter_fops_trace_events(r0, 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptyzd\x00', 0x1419c0, 0x0)
r3 = prctl$auto(0xa, 0x3, 0x0, 0x6, 0x1)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
fallocate$auto(0x8000000000000003, 0x101, 0x6a0a, 0x4cbd5d)
fallocate$auto(r4, 0x1, 0x820, 0xfffffffffffffffa)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f0000000180))
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x5)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/smbd_max_receive_size\x00', 0x103742, 0x0)
preadv$auto(r3, &(0x7f0000000200)={&(0x7f0000000180)="c0992dabdff10a8ddaa936c8b6f96d50edb6f04c62e1c25d0d12af575a2c7b16323f88c53ef53ca26a10a9fc7e37157e0d696896b890930bd1d7ce4daf6bbe5be67e2f38bd0da87300efc767bd647bee101ffcd5c898c389e5a535e8ad2e13043297e4012d0a12e6e852c81e175a23a9fb977c1f7853804eaafe0d", 0x4}, 0x7, 0xe06, 0x1dcc)
unshare$auto(0x40000080)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D2\x00', 0x121001, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)

15.610080938s ago: executing program 1 (id=535):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0)
preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x5}, 0x3, 0xf8, 0xffffffffffffffff)
r0 = socket(0xa, 0x2, 0x73)
mmap$auto(0xfffffffffffffc, 0xd8f0, 0x7, 0xeb1, r0, 0xbf47)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0)
r1 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0)
readv$auto(r1, &(0x7f0000000680)={0x0, 0x40200}, 0x3)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x2, 0x3, 0x15)
unshare$auto(0x20000)
unshare$auto(0x20000)

12.536478896s ago: executing program 4 (id=539):
mmap$auto(0xffffffffffffffff, 0x20005, 0x1ff, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2020008, 0xffffffffffffffff, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0x20499d, 0x9)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
socket(0x29, 0x2, 0x0)
mmap$auto(0x0, 0x0, 0x0, 0x20008000011, 0xffffffffffffffff, 0x3)
mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000)
socket(0x2, 0x1, 0x106)
connect$auto(0x3, 0x0, 0x54)
mmap$auto(0x0, 0x400008, 0x2, 0x400000000009b72, 0x2, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/transparent_hugepage/shmem_enabled\x00', 0xc8002, 0x0)
writev$auto(r0, &(0x7f0000000080)={0x0, 0x9}, 0x4)
ioprio_set$auto(0x3, 0x0, 0x4b34)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_clone(0x4100000, 0x0, 0x0, 0x0, 0x0, 0x0)
futex$auto(0x0, 0x86, 0x8, 0x0, 0x0, 0x7)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x5, 0xfffffffffffffffc, 0x2)
sysfs$auto(0x2, 0x8c, 0x4)
r1 = socket(0x2, 0x5, 0x0)
getsockopt$auto(r1, 0x84, 0x82, 0x0, 0x0)
madvise$auto(0x1000000, 0xffffffffffff0006, 0x17)
mmap$auto(0x0, 0x9, 0x200000000e2, 0x17, 0x7, 0x28000)
madvise$auto(0x8, 0xffffffffffff0005, 0x1b)

12.484252034s ago: executing program 3 (id=540):
mmap$auto(0x0, 0x353, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0xa, 0x2, 0x0)
r1 = socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
io_uring_setup$auto(0x6, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
getsockopt$auto(r1, 0x84, 0x6c, 0x0, &(0x7f0000000280)=0x1000c0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x18, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r0)
r4 = socket(0xa, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x1, 0x0)
ioctl$auto(0x3, 0x5411, 0x10000000000402)
setsockopt$auto(r4, 0x1, 0x1, &(0x7f0000000000)='\x98\x00', 0xb559)
listen$auto(0x3, 0x81)
ioctl$auto_KVM_CREATE_VM(r2, 0x4048aecb, 0x0)

11.825832271s ago: executing program 1 (id=541):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
lseek$auto(0x3, 0x20000, 0x1)
clone$auto(0x21002, 0xfffffffffffffffb, 0xfffffffffffffffe, 0xfffffffffffffffd, 0xff)

11.412996733s ago: executing program 1 (id=542):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x29, 0x2, 0x0)
ioctl$auto(r0, 0x89e2, 0x38)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
fanotify_init$auto(0x5, 0x800)
ioprio_set$auto(0x2, 0x800000000, 0x8)
clone$auto(0x10051c, 0x6, 0x0, 0xffffffffffffffff, 0x80000001)
pipe2$auto(0x0, 0x80)

11.103797263s ago: executing program 1 (id=544):
mmap$auto(0x0, 0x10004, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x3, 0x120003b)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, <r1=>0x4, 0x1ff, 0x3, 0x8, 0xc, 0x2e, 0x0, 0x3}, 0x6f4)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffc, 0x800, 0x1000011d, 0x7fffffff, 0xffffffffffffffff, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x18, r3, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@HWSIM_ATTR_MULTI_RADIO={0x4, 0x1e}]}, 0x18}, 0x1, 0x0, 0x0, 0x8000}, 0x4880)
r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x40e00, 0x0)
ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0)
r5 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000300), 0x8281, 0x0)
ioctl$auto_PPPIOCATTACH(r5, 0x4004743d, 0x0)
r6 = openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/bonding/xmit_hash_policy\x00', 0x10b062, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
rt_sigqueueinfo$auto(0x0, 0x9, &(0x7f00000000c0)={@_si_pad})
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto(r6, 0x9, r0)
shmget$auto(0x8, 0x10565, 0x7ff)
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)
r7 = socket(0xa, 0x2, 0x3a)
getsockopt$auto(r7, 0x0, 0xf, 0xfffffffffffffffe, 0x0)
openat$auto_nst_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r1)
getpgid(0x0)
mmap$auto(0x200000000000, 0x2020009, 0x0, 0xeb1, 0xffffffffffffffff, 0x8000)

10.944983231s ago: executing program 3 (id=545):
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000)
write$auto(r0, 0x0, 0x2)
getrlimit$auto(0x3, 0x0)
fdatasync$auto(r0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sda\x00', 0x141882, 0x0)
ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0x1102, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000)
r3 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r3, 0x84, 0x70, 0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xc8d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\xc6\x00\x89\te\x8d\a\xfb\\n\x89C:\x84D\x10u\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k', 0x100000a3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ea182, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
ioctl$auto_BLKGETZONESZ(r2, 0x80041284, &(0x7f0000000180)=0x7)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r4, 0xffffffffffdffe00, &(0x7f0000000140)=';')
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)

6.979072954s ago: executing program 4 (id=546):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/loop9/queue/nr_requests\x00', 0xa022, 0x0)
pwrite64$auto(r0, &(0x7f0000000280)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x9b\xaa\xb7\xee\x02L\x00\x82\xfe\xb3\x9a<\xa6\xd56]\xd9n\xb7,\x90\xf5\xcb\xc8\x93\x99;\xd8Z|\xfb\xddn\xa3\b\xd8\xf1\xeb\xdf\xc9\xef\x7f\x11\xb7U\xee\xacf5>\xf8\x92h\xe3\xab\xc5\xa1\xa6J3X\x19\xc1\xf3\xa2\xd0\xf1\xa2\xc9\x1dIB\xe9\xc8\xde \xaanr2\x954\xc7\xa49\x8c\x88\x12\xeds\x1dV\xab\x1a\x02QT{\xf3\xb0\xe3\xe8\x139\xd9\xaa\x87\xee\x87\xe3\xdb\xaf\xa1\x11\x82\xcd\xfb>uF#\xc7\xe574Q).\xdb\xa7+\xb2\xd7\x85\xcb\x84m8-\xe0\xc5\xcfkt\'\x925\xbd\x86J\xa7Z V\x83\xb1\xdc\xc1\xads\x91\x9c\xecZ,\x90\xe9\x804-p\x0f\x85ap\x88\xbb\x8e\xfa\x01\x14\xe2\xdf\xc5\xcdzC\x1b\x03\xacJ<\xfd\xa3\xb8\xe0\xa6\x8ap\x84:r\xb3\x122\x1d\xc3\x88\xc8\x88\xb3?;\xe3\x01!be\xc1\xd3s^\xe4\x8e\xdb\a\x19\x05R\xe0F0\xf1\xc1\x04\xf7\x9c\xab\x9a\x1f\xa5\xd4\x83K^\xe6a\x12Z\xcb\xcdS\xa3+\xf5\xaf\xa6\xc8\xa2\r\xe2\xf9\xf0B\x8c\xd5\xbe\xc7*\xc7\xc1\x80h\xdea\x9fC\xeaz\x1c\xe5\xaa\xcbM2^\'\xd1R}v\x064:\xd0\xe3.\x8f\xd9U\x85{s\xcb\x13Q\x98\xb4)\xe0\xcbt%\xe5-\x1a@\x00\xa0\x88p\xce\x97\x0f&\x97\x9a\x7fJ\xc0\b\xecx\xbf\xae\xff\r\xea\xf0q&}\"\xf9\x17\xa2\n&z\xac\x14\x8bV\x8c\x8f\a\xb0h\x18}\xc4K\x04[\xc8Cb\xb3\x9b^z\xcd\x82|\xbb.;+\xd4\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x7fff, 0xc)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop15/queue/virt_boundary_mask\x00', 0x80882, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101840, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000100), 0xe0620, 0x0)
unshare$auto(0x40000080)
ioctl$auto_SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000040))
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x3, 0xdb, 0xeb1, 0x401, 0x8004)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0xf)
ioctl$auto_TCFLSH2(r2, 0x540b, &(0x7f0000000180)="f9dfae19c6d30c47e99390d1caaea9fe4795f1bcea2211a979ef8063b1a242750e0abedb843a2feb8cd3d83a4ce9ba0fef069adb77b9e04bfd8dc64664f19ed56d04a237f352abe8eb283109a27fcb21a7cf98b7e7e427cd0ee2d0d55fb4026a13d3de7e0aee96998dc0db12bd05d06ef6f1a87d7c8350d2f5c9974819730a9348cc06607eb7f5d546aee3306b9ac9db9764bbab7a7e2b48c20850c6e2527eecf3fafe4468e98c1233b6074c8d6ccb7479e8125b4c3f20319c9f3232f603a95bba1b31924d42d0")
getsockopt$auto(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x1000000000, 0x100000400008, 0x1000000000000df, 0x4000009b73, r3, 0x8000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'veth0_to_hsr\x00'})
mmap$auto(0x0, 0x202000c, 0x3, 0xeb4, 0xfffffffffffffffa, 0x8000)
symlink$auto(&(0x7f0000000080)='./cgroup.cpu/cpuset.cpus\x00', &(0x7f00000000c0)='./cgroup.cpu/cpuset.cpus\x00')
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/sound/ctl-led/speaker/brightness\x00', 0x80000, 0x0)
read$auto(r4, 0x0, 0x20)
r5 = openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/tracing_on\x00', 0x8001, 0x0)
writev$auto(r5, &(0x7f00000017c0)={0x0, 0x3}, 0x3)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)

6.881378367s ago: executing program 3 (id=547):
mmap$auto(0x0, 0x1, 0x18e, 0x8000000000000011, 0xffffffffffffffff, 0x9)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
syz_genetlink_get_family_id$auto_tipcv2(0x0, r0)
prctl$auto(0x1, 0x6, 0x0, 0xb117, 0x9)
sendmsg$auto_TIPC_NL_BEARER_ADD(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048804}, 0x4000)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x25, 0x5, 0x2)
socket(0x848000000015, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000240)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x23}}, 0x6b)
connect$auto(0x3, &(0x7f00000002c0)=@generic={0xa, "5457c29004e0b991da88f70ef61b"}, 0x55)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x103880, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7)
close_range$auto(0x2, 0x8, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSTI2(r2, 0x545c, 0x0)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r3)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000017c0)={0x110c, r4, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_NETNS_FD={0x8}, @NL80211_ATTR_REG_RULES={0x10ed, 0x22, 0x0, 0x1, [@typed={0x8, 0x10c, 0x0, 0x0, @u32=0x1}, @typed={0x4, 0x127}, @typed={0xc, 0x5, 0x0, 0x0, @u64=0x3}, @generic="9b94577b53a9c9c7e9", @typed={0x8, 0x157, 0x0, 0x0, @uid}, @typed={0x8, 0x73, 0x0, 0x0, @fd=r3}, @typed={0x8, 0xc8, 0x0, 0x0, @pid}, @typed={0x8, 0x69, 0x0, 0x0, @ipv4=@remote}, @nested={0x10a5, 0x104, 0x0, 0x1, [@nested={0x18, 0xfd, 0x0, 0x1, [@nested={0x14, 0x94, 0x0, 0x1, [@typed={0x8, 0x1b, 0x0, 0x0, @ipv4=@loopback}, @typed={0x8, 0x4e, 0x0, 0x0, @pid}]}]}, @typed={0xc, 0x77, 0x0, 0x0, @u64=0x100000001}, @generic="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", @generic="fa3f8124b3289bd6d7a2dc5b73a5e3be533e2da6d9aa6e97a2da9c180fbf310fa38781b09d8f4306afb64eae4da9b31b1627e738c3ef64c65d24d1ead9b410ea3556acf7ab80ac13886a5d912622256e341763f5c520a1f2809db50963", @typed={0x5, 0x145, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x31, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x8, 0x142, 0x0, 0x0, @fd}, @typed={0x8, 0x4f, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x36}}]}]}]}, 0x110c}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
r5 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$auto(0x0, 0x20005, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
fcntl$auto_F_RDLCK(r5, 0x5, 0x0)
recvmmsg$auto(r3, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)
openat$auto_proc_sessionid_operations_base(0xffffffffffffff9c, &(0x7f0000001080)='/proc/thread-self/sessionid\x00', 0x0, 0x0)
exit$auto(0x7)

5.36567075s ago: executing program 2 (id=548):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66)
mremap$auto(0x1ff000, 0xff, 0x843, 0x3, 0xfffff000)
ioctl$auto_XFS_IOC_FD_TO_HANDLE(0xffffffffffffffff, 0xc038586a, &(0x7f00000011c0)={0xffffffffffffffff, 0x0, 0x18000, &(0x7f0000000080)="d4cac46dfbb9645f28dbfcad70e26137fafa96bce969d482025e375c24f5cd837692a52176e63ca4f3ba1004b90152764423ccb1b4b58bf2ccf7e48bab49089a7295acf51f385c4ead130f65b308cfbd03a64173d2fd18099b92bd95634328f447e917a278439687e4ede969b6df1ed0fa9d44157e1ad77a170a5654c2f68f48c6f6162afea5a245ba07d7342b340e61a0595f9bb369290c322107709283290607501a9b", 0xc, &(0x7f0000000180)="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", &(0x7f0000001180)=0x401})
socket(0x29, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1ff000)
r0 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0)
pwrite64$auto(r0, 0x0, 0x400000, 0xc)

4.393938348s ago: executing program 2 (id=549):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/net/dummy0/netdev_group\x00', 0x82, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS0\x00', 0x101e81, 0x0)
write$auto_tty_fops_tty_io(r1, &(0x7f0000000680)="1f9319c707498de36a6eedfcfaa139bb5f55cf18b4ee56510d38c0f1006a40000000000000003a556e204dbdd72555ac78fe153001040009", 0x38)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000100)='8', 0x1)
r2 = getpid()
process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0x8f}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000440)="13", 0x40000000001243}, 0xa, 0x0)
kill$auto_SIGCONT(r2, 0x12)

4.39313343s ago: executing program 3 (id=557):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
r0 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3d}}, 0x6a)
listen$auto(0x3, 0x81)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x128}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
close_range$auto(0x2, 0xa, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x4000002, 0xfefffffffffffe01, 0x2000008051, 0x3, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(r1, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000)
connect$auto(0x4, 0x0, 0x10)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
close_range$auto(0x2, 0x8, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2003f0, 0x17)
writev$auto(0x3, 0x0, 0x8)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)

4.341552988s ago: executing program 1 (id=550):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x818140, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x20ae01, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0x4018aebd, r2)
mmap$auto(0x0, 0x61, 0x100001000000003, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x1, 0x0)
ioctl$auto(0xffffffffffffffff, 0x80046f45, 0x38)
close_range$auto(0x2, r2, 0x0)
pipe2$auto(0x0, 0x0)
poll$auto(&(0x7f0000000d40)={r0, 0x1, 0x401}, 0x1, 0x400)
close_range$auto(0x2, 0x8, 0x0)
socket(0x25, 0x1, 0x7fff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x40000000000003, 0x2003fa, 0x7fff)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)=ANY=[@ANYRES8=r1, @ANYBLOB="36a252bc793374b97e952e84d2b356e3c0badaf15326e755583734ceff651ccdac7ceb0403c79bb08ac36032b8b12cb8eecddd4a93bdd95adaf4f11e4813e40fa682cffe1f38b5d1172b59c0960324643082a1c87baa4037eccc48ff387a94188cb237fb75c1170e1015c2c874efb79c7ba87a8fd3d96cda011f1ee2b95b575dd35b7e023e"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20040004)
setfsuid$auto(0x0)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000240)={"ef65ce6c00cf81000000ffffffffffffff291d000000000700", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d})
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5)
r5 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
fchdir$auto(r5)

3.9879095s ago: executing program 2 (id=551):
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b76, 0x2, 0x8000)
r0 = getpid()
process_vm_readv$auto(r0, &(0x7f00000000c0)={0x0, 0xfff}, 0x1, 0x0, 0x4, 0x2000000000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r3 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/tracing/trace_options\x00', 0x2, 0x0)
write$auto(r3, 0x0, 0x6)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x8, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/transparent_hugepage/hugepages-8kB/shmem_enabled\x00', 0x1a1842, 0x0)
sendfile$auto(r4, r4, 0x0, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r5, 0x0, 0x8000)
pwrite64$auto(r5, &(0x7f0000000040)='/dev/net/tun\x00', 0x2, 0x1000000002)
r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x4a083, 0x0)
ioctl$auto_BLKRRPART(r6, 0x125f, 0x0)
ioctl$auto(0x3, 0x400454ca, 0x38)
prctl$auto(0x34, 0x17, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sysfs$auto(0x4, 0x200042, 0x1ffffffffffffc)
prctl$auto_PR_SYS_DISPATCH_ON(0x2, 0x1, 0x0, 0x0, 0x7)
write$auto(0x3, 0x0, 0xfdf3)
sendmsg$auto_NL80211_CMD_REMOVE_LINK(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x480a4)

3.42067155s ago: executing program 3 (id=552):
mmap$auto(0x0, 0x10004, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x3, 0x120003b)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, <r1=>0x4, 0x1ff, 0x3, 0x8, 0xc, 0x2e, 0x0, 0x3}, 0x6f4)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffc, 0x800, 0x1000011d, 0x7fffffff, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x40e00, 0x0)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000300), 0x8281, 0x0)
ioctl$auto_PPPIOCATTACH(r3, 0x4004743d, 0x0)
r4 = openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/bonding/xmit_hash_policy\x00', 0x10b062, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
rt_sigqueueinfo$auto(0x0, 0x9, &(0x7f00000000c0)={@_si_pad})
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto(r4, 0x9, r0)
shmget$auto(0x8, 0x10565, 0x7ff)
shmat$auto(0x0, 0x0, 0xfffffffa)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)
r5 = socket(0xa, 0x2, 0x3a)
getsockopt$auto(r5, 0x0, 0xf, 0xfffffffffffffffe, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r1)
getpgid(0x0)
mmap$auto(0x200000000000, 0x2020009, 0x0, 0xeb1, 0xffffffffffffffff, 0x8000)

3.166537865s ago: executing program 4 (id=553):
mmap$auto(0x0, 0x10004, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x3, 0x120003b)
bpf$auto(0x0, 0x0, 0x6f4)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffc, 0x800, 0x1000011d, 0x7fffffff, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x40e00, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000300), 0x8281, 0x0)
ioctl$auto_PPPIOCATTACH(r2, 0x4004743d, 0x0)
r3 = openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/bonding/xmit_hash_policy\x00', 0x10b062, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
rt_sigqueueinfo$auto(0x0, 0x9, &(0x7f00000000c0)={@_si_pad})
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto(r3, 0x9, r0)
shmget$auto(0x8, 0x10565, 0x7ff)
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)
r4 = socket(0xa, 0x2, 0x3a)
getsockopt$auto(r4, 0x0, 0xf, 0xfffffffffffffffe, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), 0xffffffffffffffff)
getpgid(0x0)
mmap$auto(0x200000000000, 0x2020009, 0x0, 0xeb1, 0xffffffffffffffff, 0x8000)

2.337264726s ago: executing program 2 (id=554):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000002c0)={0x9, &(0x7f0000000000)={0x50, 0xf2, 0xb0, @raw=0x2}})
write$auto(0x3, 0x0, 0xfdef)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{&(0x7f0000000000), 0x406a37, 0x0, 0x4, 0x0, 0x3, 0x5}, 0x8}, 0xb, 0xdb22, 0x0)
mmap$auto(0x0, 0x400008, 0xa, 0xfffffffffffffffe, 0xffffffffffffffff, 0x7ffb)
r1 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000002240)='/proc/thread-self/environ\x00', 0x8400, 0x0)
read$auto_proc_environ_operations_base(r1, 0x0, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/power/runtime_suspended_time\x00', 0x200, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000080)=""/247, 0xe5)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r3 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r3, 0x29, 0x48, &(0x7f0000000040)='\x15\xbe\x9f)\xe3\x98\x8eB\xb5\x8b,\xfc\xa5!\xa8^./\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xfe\xdaN2\xfc\x89G\x85\xa7\x81\xe4\xe6zD\x96I\x18\xc8@\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x92,\xe2=y\x9bR\xbcf\xa0c\x16~\x86_\r\x05\xe1G\x111\xe8\x8e\xcb\xed\x8f\xdf\xeeDX\xccm\xc6Mne=\x18\'\x97\x00\xc2\x01VQ\xb86\x03\xff\x88\x03\xd7\bX\xd4>\x91\x1eV-\x92\xa7\xb2\x1b(q\v\xd2\x1f\x9a\x14O\xf6\x18\x84\xe9Z\x80\xf3\x05\x12-\x8c\x8b;%Z\xdaX$K\xb6\xa6\xda\xa1B\xe0\x85\x15\xf0\xa7T\x01[\x8d\xc6\xcc\xb4\x16\xb3\x0eG\xa2\xa5\xa3\x1f\x0e\x89\x871O:c\xd9\x8d\x7f\x86\x9b\xfd@\x959\xbd\x18\xb9\xe7;\xb7\xa9P\x15\xdc\x9b\xce6\xb6\x16\x117\n\x95\xb2f\x10\x14e\xba2M\x8a^\x10\xee*\xbf\xac\x99\x9d\x12\x86\xcc\xb8\x8d\xc2\x06?\xc6\xc7\xad\x10\x97P:\xbf\x1c\xd7]\xfd\xf8\xeeb\xf2\xa0\xf1\xb1\x03\x10\xe3\xb6\xc3ASU\xa4*G;8\xfa\xd3\xaf\x99\xda4\xf7', 0x10000110)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xc9\xb3\xbc\x8c\x1dga08\x90\x86\xdde\x1cJ\x99\x00\x11:\x14\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xfe\x80\x12\x00\x00\x00\x00\x00\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd8\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3)
r4 = io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r5 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0)
ioctl$auto_IOCTL_VM_SOCKETS_GET_LOCAL_CID(r5, 0x7b9, 0x0)
close_range$auto(0x2, 0x8, 0x0)
write$auto_dfs_global_fops_debug(r4, 0x0, 0x0)
msgget$auto(0x0, 0x5)
msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x7)
msgsnd$auto(0x0, &(0x7f0000000040)={0x40000007fc, 0x7}, 0x400, 0x2)
msgrcv$auto(0x0, 0x0, 0x4bd, 0x40000007fc, 0xf1)

1.27777427s ago: executing program 2 (id=555):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram10/queue/max_sectors_kb\x00', 0xe3102, 0x0)
pipe2$auto(&(0x7f00000000c0)=r0, 0x0)
sendfile$auto(r0, r0, 0x0, 0x3)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0)
unshare$auto(0x40000080)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x289c0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0x20000000eb1, r0, 0x1ff)
getcwd$auto(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
inotify_init1$auto(0x10000003)
inotify_add_watch$auto(0x4, 0x0, 0xe6e)
r1 = inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(r1, 0x0, 0x2)
inotify_add_watch$auto(r1, 0x0, 0x20000e6e)
openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0)
mount_setattr$auto(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000640)={0x8, 0x100009}, 0x283)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/pts/ptmx\x00', 0xa0540, 0x0)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@generic={0x0, "94720003fc8df50bf18af7c35ab0"}, 0x6e)
lstat$auto(0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/pnp0/00:04/00:04:0/00:04:0.0/tty/ttyS0/xmit_fifo_size\x00', 0x480800, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x81, 0x0)
ioctl$auto_TIOCSTI2(r2, 0x5412, &(0x7f0000000080)="00130f0ae457582578ea8c8627fd38ab080f07d0ed54475190ae038d")
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r3, 0x0, 0x4048800)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)

98.037602ms ago: executing program 2 (id=556):
ioctl$auto_TUNSETOWNER(0xffffffffffffffff, 0x400454cc, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
sendmsg$auto_OVS_VPORT_CMD_NEW(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001000)=ANY=[@ANYBLOB="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"], 0x79c}, 0x1, 0x0, 0x0, 0x10010}, 0x8840)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r1 = socket(0x2, 0x1, 0x0)
setsockopt$auto(r1, 0x6, 0x1f, 0x0, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000)
recvmmsg$auto(r4, &(0x7f0000000140)={{0x0, 0x3, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x2000000200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
write$auto_proc_clear_refs_operations_internal(r3, 0x0, 0xffffff4b)
pwrite64$auto(0xffffffffffffffff, 0x0, 0x3, 0x4200000000000005)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$auto_KVM_GET_MSRS(r5, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x485, 0x7, 0xe08}]})

97.752469ms ago: executing program 3 (id=558):
fcntl$auto(0x3, 0x4, 0xa553)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8301, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
unshare$auto(0x40000080)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-0/xps_cpus\x00', 0x10b062, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x88880, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
write$auto(0x3, 0x0, 0x5c8)
close_range$auto(0x2, 0x8, 0x0)
write$auto(r0, &(0x7f0000000400)='3\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x9b\xcf\x1a@4\x1d>\x9b\xb8\xe7\t\x88\xe0\x85\x97\x1a\a-T\xf8\xcfHx|j\xa0\n\xc7q\x93\x8e\bOp\xd8\x05\x94\xb77\x8d.\xb3t\xbd\x15\xfdR\xfd3\xa0\xe4\xecz8\x1a\xa1V8\xa4\xe3O\xc8w|\xd4\x7f\xea\xa2X\x86\xa0\xec\xd7\x91\xb1B\xcdd9\x1a[\x96\xf7=\x9aU\xeb\r\xb5\x8e\x8b\xaeq\xa12\xc9\\\xb2\xd5\xfd\xf5\xfb\x88R\xa7\xb5\xfd\xe3\xf9\x10\xf2f\xe7\t}\xe61\xcb\x14\x88\xa2\x0f\xfa\xb5T%\xc6 \\\xa3\xa1\x10@y\xbd\x16\xe1\xdfh\xee\xde\xaa\xa2U\xd7\xf4\xa8\xd6\xc1\xe0X\x8f{m\'(\xfb\xab\x8bXW\x9a>Hl\x9d\xcb\xa3T\x9a%\x1e\x92|a\x9f\xbc\xe4\xd0\xa7\xeb\xb1\xe6\x8e\xae\x02\x964q#u\x8c\x19\x17\xeb\xfc\x16\xab\xb7\b_\xdfh\r\f\xa8/N\xc6\f\xef\xda\xaay\xf8fm\f\xabH\x9f\f\xd1\xc2fZ8\xcd\xb61\xcd\xd8\xcc|p:7\x15\xb2\xcb\xf5\x13\xcc\xb6\x97\x18=[\x8a\x92<k9[\x1e\xf3\x9e$u\x00cWg\f\xe2\xfah\x9d \xaf\x9d\xb5\r6\x98\xae\x87\fx\x83N\'\xd8\xa3\xd9\xd4MC\xcc\x93%\xc1\xa1c\x94\xafd~\xbcn', 0xf)
close_range$auto(0x2, 0x8, 0x0)
write$auto_qrtr_tun_ops_tun(0xffffffffffffffff, 0x0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/batadv0/mcast_solicit\x00', 0x2000, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x80, 0x0)

0s ago: executing program 4 (id=559):
mmap$auto(0x0, 0x400008, 0x338, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07)
ioctl$auto_TUNSETVNETHDRSZ(0xffffffffffffffff, 0x400454d8, 0x0)
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0x4, 0x80000001, 0x8}, 0x6f4)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
r1 = socket(0x2, 0x1, 0x106)
bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, 0x0, 0x54)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/pressure/memory\x00', 0xa2102, 0x0)
write$auto(r2, 0x0, 0xa)
r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cec4\x00', 0x10b703, 0x0)
ioctl$auto_CEC_S_MODE(r3, 0x40046109, &(0x7f0000002c40)=0xd0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_NEW_KEY(0xffffffffffffffff, 0x0, 0x864)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
close_range$auto(0x2, 0x8, 0x0)
statx$auto(0xffffffffffffff9c, 0x0, 0xffff, 0x401, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptya7\x00', 0x101e81, 0x0)
openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$auto(0x3, 0x0, 0x8)
read$auto(0x3, 0x0, 0x7fffffff)
r4 = epoll_create$auto(0x3e)
rseq$auto(&(0x7f0000000200)={0x8000006, 0x8, 0x6, 0x1000005, 0xbce2, 0x8, "00a3ed0ac44781536259692838185689be4597233ee8595a36b2f7841a3b577e8fd6b1a96cca5ce14aa7b2e62e9b819a62ee63e2429fd47834c75606bae6e46dfa5f1dcd764e"}, 0x6, 0x7fffffff, 0x6)
epoll_ctl$auto(r4, 0x1, r0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

kernel console output (not intermixed with test programs):

T5811] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   90.182627][ T5832] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   90.192102][ T5832] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   90.200389][ T5832] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   90.216557][ T5838] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   90.224506][ T5838] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   90.227933][ T5834] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   90.236903][ T5838] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   90.242567][ T5834] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   90.249078][ T5838] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   90.258815][ T5834] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   90.268111][ T5838] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   90.268306][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   90.283463][ T5839] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   90.292145][ T5834] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   90.300514][   T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   90.302293][ T5834] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   90.324713][   T51] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   90.333278][ T5146] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   90.341889][ T5146] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   90.350584][ T5146] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   90.824968][ T5824] chnl_net:caif_netlink_parms(): no params data found
[   91.064596][ T5825] chnl_net:caif_netlink_parms(): no params data found
[   91.117898][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.125984][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.133264][ T5824] bridge_slave_0: entered allmulticast mode
[   91.142070][ T5824] bridge_slave_0: entered promiscuous mode
[   91.156249][ T5826] chnl_net:caif_netlink_parms(): no params data found
[   91.199725][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.206940][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.214360][ T5824] bridge_slave_1: entered allmulticast mode
[   91.222572][ T5824] bridge_slave_1: entered promiscuous mode
[   91.266632][ T5823] chnl_net:caif_netlink_parms(): no params data found
[   91.337227][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.350646][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.472702][ T5824] team0: Port device team_slave_0 added
[   91.478677][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.486031][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.493256][ T5825] bridge_slave_0: entered allmulticast mode
[   91.501046][ T5825] bridge_slave_0: entered promiscuous mode
[   91.530344][ T5824] team0: Port device team_slave_1 added
[   91.536702][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.544002][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.551506][ T5825] bridge_slave_1: entered allmulticast mode
[   91.559521][ T5825] bridge_slave_1: entered promiscuous mode
[   91.566686][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.573856][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.581513][ T5826] bridge_slave_0: entered allmulticast mode
[   91.589190][ T5826] bridge_slave_0: entered promiscuous mode
[   91.640455][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.647797][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.654997][ T5826] bridge_slave_1: entered allmulticast mode
[   91.662651][ T5826] bridge_slave_1: entered promiscuous mode
[   91.717981][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.725250][ T5823] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.733551][ T5823] bridge_slave_0: entered allmulticast mode
[   91.741059][ T5823] bridge_slave_0: entered promiscuous mode
[   91.749928][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.757134][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.784057][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.799565][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.821019][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.828314][ T5823] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.836209][ T5823] bridge_slave_1: entered allmulticast mode
[   91.843727][ T5823] bridge_slave_1: entered promiscuous mode
[   91.854938][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.862056][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.888295][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.901994][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.927425][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.973979][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.999365][ T5823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.012301][ T5823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.027511][ T5825] team0: Port device team_slave_0 added
[   92.070839][ T5825] team0: Port device team_slave_1 added
[   92.102635][ T5823] team0: Port device team_slave_0 added
[   92.123232][ T5826] team0: Port device team_slave_0 added
[   92.132085][ T5826] team0: Port device team_slave_1 added
[   92.151875][ T5823] team0: Port device team_slave_1 added
[   92.188922][ T5824] hsr_slave_0: entered promiscuous mode
[   92.196366][ T5824] hsr_slave_1: entered promiscuous mode
[   92.214720][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.222115][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.248248][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.287016][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.294053][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.320927][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.333775][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.341513][ T5829] Bluetooth: hci3: command tx timeout
[   92.347316][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.373360][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.386106][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.393089][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.417762][ T5829] Bluetooth: hci2: command tx timeout
[   92.419747][ T5823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.426314][ T5146] Bluetooth: hci0: command tx timeout
[   92.435206][   T51] Bluetooth: hci1: command tx timeout
[   92.468421][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.475628][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.502159][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.514651][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.521911][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.547975][ T5823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.701908][ T5825] hsr_slave_0: entered promiscuous mode
[   92.708883][ T5825] hsr_slave_1: entered promiscuous mode
[   92.715174][ T5825] debugfs: 'hsr0' already exists in 'hsr'
[   92.721962][ T5825] Cannot create hsr debugfs directory
[   92.771642][ T5823] hsr_slave_0: entered promiscuous mode
[   92.778753][ T5823] hsr_slave_1: entered promiscuous mode
[   92.784949][ T5823] debugfs: 'hsr0' already exists in 'hsr'
[   92.790863][ T5823] Cannot create hsr debugfs directory
[   92.820625][ T5826] hsr_slave_0: entered promiscuous mode
[   92.827537][ T5826] hsr_slave_1: entered promiscuous mode
[   92.834114][ T5826] debugfs: 'hsr0' already exists in 'hsr'
[   92.840018][ T5826] Cannot create hsr debugfs directory
[   93.264859][ T5824] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   93.294355][ T5824] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   93.317254][ T5824] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   93.328797][ T5824] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   93.408491][ T5823] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   93.422711][ T5823] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   93.448337][ T5823] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   93.461512][ T5823] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   93.557995][ T5826] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   93.583360][ T5826] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   93.594051][ T5826] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   93.629386][ T5826] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   93.725177][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.732729][ T5825] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   93.744821][ T5825] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   93.758468][ T5825] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   93.769877][ T5825] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   93.835166][ T5824] 8021q: adding VLAN 0 to HW filter on device team0
[   93.857667][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.874510][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.881940][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.921658][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.928940][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.989258][ T5823] 8021q: adding VLAN 0 to HW filter on device team0
[   94.018206][  T704] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.025357][  T704] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.054515][  T704] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.061722][  T704] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.163737][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.208730][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.235333][ T5826] 8021q: adding VLAN 0 to HW filter on device team0
[   94.287475][  T704] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.294681][  T704] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.310525][ T5825] 8021q: adding VLAN 0 to HW filter on device team0
[   94.335293][  T704] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.342600][  T704] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.402115][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.409364][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.429835][   T51] Bluetooth: hci3: command tx timeout
[   94.471874][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.479224][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.499771][   T51] Bluetooth: hci0: command tx timeout
[   94.501085][ T5146] Bluetooth: hci2: command tx timeout
[   94.506413][   T51] Bluetooth: hci1: command tx timeout
[   94.812555][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.918794][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.042975][ T5824] veth0_vlan: entered promiscuous mode
[   95.078840][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.111951][ T5824] veth1_vlan: entered promiscuous mode
[   95.134476][ T5823] veth0_vlan: entered promiscuous mode
[   95.181295][ T5823] veth1_vlan: entered promiscuous mode
[   95.197951][ T5824] veth0_macvtap: entered promiscuous mode
[   95.221022][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.248436][ T5824] veth1_macvtap: entered promiscuous mode
[   95.290294][ T5826] veth0_vlan: entered promiscuous mode
[   95.301782][ T5823] veth0_macvtap: entered promiscuous mode
[   95.322128][ T5823] veth1_macvtap: entered promiscuous mode
[   95.339045][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.349392][ T5826] veth1_vlan: entered promiscuous mode
[   95.373228][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.405149][  T704] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.415180][  T704] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.432989][  T704] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.442761][  T704] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.461559][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.491266][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.511054][ T5825] veth0_vlan: entered promiscuous mode
[   95.525143][ T5826] veth0_macvtap: entered promiscuous mode
[   95.555850][ T5826] veth1_macvtap: entered promiscuous mode
[   95.564434][   T75] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.574413][   T75] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.584211][ T5825] veth1_vlan: entered promiscuous mode
[   95.599046][   T75] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.608705][   T75] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.672255][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.728905][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.778337][   T49] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.788707][   T49] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.813137][ T5825] veth0_macvtap: entered promiscuous mode
[   95.823165][   T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.834489][   T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.842555][   T49] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.851893][   T49] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.877683][  T704] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.893046][  T704] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.930020][ T1130] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.939979][ T1130] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.953992][ T5825] veth1_macvtap: entered promiscuous mode
[   96.011104][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.028717][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.040262][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.077755][ T5824] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   96.100988][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.136812][  T704] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.149966][  T704] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.172766][  T704] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.220723][  T704] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.267125][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.275029][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.405190][ T5916] ACPI: \_SB_.LNKS: No IRQ available. Try pci=noacpi or acpi=off
[   96.428381][ T5917] FAULT_INJECTION: forcing a failure.
[   96.428381][ T5917] name failslab, interval 1, probability 0, space 0, times 1
[   96.444052][ T5916] pci 0000:00:01.3: PCI INT A: no GSI
[   96.462033][ T5917] CPU: 0 UID: 0 PID: 5917 Comm: syz.1.2 Not tainted syzkaller #0 PREEMPT(full) 
[   96.462076][ T5917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   96.462103][ T5917] Call Trace:
[   96.462114][ T5917]  <TASK>
[   96.462130][ T5917]  dump_stack_lvl+0x100/0x190
[   96.462200][ T5917]  should_fail_ex.cold+0x5/0xa
[   96.462239][ T5917]  should_failslab+0xc2/0x120
[   96.462292][ T5917]  __kmalloc_cache_noprof+0x7a/0x6f0
[   96.462355][ T5917]  ? snd_seq_prioq_new+0x3f/0x110
[   96.462402][ T5917]  snd_seq_prioq_new+0x3f/0x110
[   96.462436][ T5917]  snd_seq_queue_alloc+0x12b/0x590
[   96.462494][ T5917]  snd_seq_ioctl_create_queue+0xa9/0x370
[   96.462549][ T5917]  call_seq_client_ctl+0xa3/0x130
[   96.462597][ T5917]  snd_seq_kernel_client_ctl+0x77/0xd0
[   96.462644][ T5917]  alloc_seq_queue+0xdb/0x180
[   96.462690][ T5917]  ? __pfx_alloc_seq_queue+0x10/0x10
[   96.462757][ T5917]  ? mark_held_locks+0x40/0x70
[   96.462805][ T5917]  ? _raw_spin_unlock_irq+0x23/0x50
[   96.462837][ T5917]  ? lockdep_hardirqs_on+0x78/0x100
[   96.462878][ T5917]  snd_seq_oss_open+0x2b2/0xa10
[   96.462934][ T5917]  odev_open+0x79/0xc0
[   96.462975][ T5917]  ? __pfx_odev_open+0x10/0x10
[   96.463017][ T5917]  soundcore_open+0x2e3/0x5a0
[   96.463065][ T5917]  ? __pfx_soundcore_open+0x10/0x10
[   96.463109][ T5917]  chrdev_open+0x234/0x6a0
[   96.463142][ T5917]  ? __pfx_chrdev_open+0x10/0x10
[   96.463180][ T5917]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[   96.463242][ T5917]  do_dentry_open+0x6d8/0x1660
[   96.463285][ T5917]  ? __pfx_chrdev_open+0x10/0x10
[   96.463317][ T5917]  vfs_open+0x82/0x3f0
[   96.463352][ T5917]  path_openat+0x208c/0x31a0
[   96.463390][ T5917]  ? __pfx_path_openat+0x10/0x10
[   96.463429][ T5917]  do_file_open+0x20e/0x430
[   96.463457][ T5917]  ? __pfx_do_file_open+0x10/0x10
[   96.463511][ T5917]  ? alloc_fd+0x476/0x790
[   96.463564][ T5917]  ? do_getname+0x191/0x390
[   96.463599][ T5917]  do_sys_openat2+0x10d/0x1e0
[   96.463634][ T5917]  ? __pfx_do_sys_openat2+0x10/0x10
[   96.463681][ T5917]  __x64_sys_openat+0x12d/0x210
[   96.463723][ T5917]  ? __pfx___x64_sys_openat+0x10/0x10
[   96.463782][ T5917]  do_syscall_64+0x106/0xf80
[   96.463819][ T5917]  ? clear_bhb_loop+0x40/0x90
[   96.463860][ T5917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.463893][ T5917] RIP: 0033:0x7f874e79c629
[   96.464068][ T5917] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   96.464106][ T5917] RSP: 002b:00007f874f630028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   96.464141][ T5917] RAX: ffffffffffffffda RBX: 00007f874ea15fa0 RCX: 00007f874e79c629
[   96.464161][ T5917] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[   96.464191][ T5917] RBP: 00007f874e832b39 R08: 0000000000000000 R09: 0000000000000000
[   96.464212][ T5917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   96.464230][ T5917] R13: 00007f874ea16038 R14: 00007f874ea15fa0 R15: 00007ffcf8e4d358
[   96.464272][ T5917]  </TASK>
[   96.509940][   T51] Bluetooth: hci3: command tx timeout
[   96.609541][ T5146] Bluetooth: hci1: command tx timeout
[   96.612660][   T51] Bluetooth: hci2: command tx timeout
[   96.615222][ T5146] Bluetooth: hci0: command tx timeout
[   96.816498][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.828894][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.878443][ T5919] kAFS: unparsable volume name
[   96.926822][  T704] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.946968][  T704] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.113126][  T704] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.140578][  T704] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.338499][ T5927] program syz.0.5 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   97.398435][   T42] cfg80211: failed to load regulatory.db
[   97.506885][ T5933] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6'.
[   97.548074][ T5933] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   97.720062][ T5146] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[   97.720105][ T5146] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260
[   97.735774][ T5146] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[   97.735846][ T5146] Bluetooth: hci3: adv larger than maximum supported
[   97.743201][ T5146] Bluetooth: hci3: adv larger than maximum supported
[   97.751300][ T5146] Bluetooth: hci3: Malformed LE Event: 0x0d
[   98.150398][ T5941] netlink: 342 bytes leftover after parsing attributes in process `syz.1.7'.
[   98.159613][ T5941] Zero length message leads to an empty skb
[   98.656404][ T5146] Bluetooth: hci2: command tx timeout
[   98.657809][ T5829] Bluetooth: hci1: command tx timeout
[   98.662428][ T5146] Bluetooth: hci3: command tx timeout
[   98.796174][ T5945] program syz.3.8 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   98.831484][ T5146] Bluetooth: hci0: command tx timeout
[   99.325752][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   99.895919][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  100.044973][ T5945] kexec: Could not allocate control_code_buffer
[  100.134399][   T29] audit: type=1800 audit(1772094399.658:2): pid=5958 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.11" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  100.401687][ T5967] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  100.417810][ T5962] bond0: invalid ARP target specified
[  101.026057][ T5965] syz.3.13 uses obsolete (PF_INET,SOCK_PACKET)
[  101.117355][ T5974] netlink: 186 bytes leftover after parsing attributes in process `syz.0.15'.
[  101.127652][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.137124][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[  101.465683][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.716994][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.958278][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.967190][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.977408][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.986107][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  102.056668][ T5995] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  102.499379][ T5998] =======================================================
[  102.499379][ T5998] WARNING: The mand mount option has been deprecated and
[  102.499379][ T5998]          and is ignored by this kernel. Remove the mand
[  102.499379][ T5998]          option from the mount to silence this warning.
[  102.499379][ T5998] =======================================================
[  103.231024][ T5996] netlink: 40 bytes leftover after parsing attributes in process `syz.1.19'.
[  103.552869][ T6016] netlink: 8 bytes leftover after parsing attributes in process `syz.1.23'.
[  103.598319][ T6016] FAULT_INJECTION: forcing a failure.
[  103.598319][ T6016] name failslab, interval 1, probability 0, space 0, times 0
[  103.670418][ T6016] CPU: 0 UID: 0 PID: 6016 Comm: syz.1.23 Not tainted syzkaller #0 PREEMPT(full) 
[  103.670470][ T6016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  103.670488][ T6016] Call Trace:
[  103.670498][ T6016]  <TASK>
[  103.670511][ T6016]  dump_stack_lvl+0x100/0x190
[  103.670567][ T6016]  should_fail_ex.cold+0x5/0xa
[  103.670605][ T6016]  should_failslab+0xc2/0x120
[  103.670637][ T6016]  __kmalloc_cache_noprof+0x7a/0x6f0
[  103.670677][ T6016]  ? kstrdup_quotable_cmdline+0x52/0x210
[  103.670713][ T6016]  ? get_cmdline+0x86/0x360
[  103.670753][ T6016]  kstrdup_quotable_cmdline+0x52/0x210
[  103.670796][ T6016]  __report_access+0x77/0x230
[  103.670828][ T6016]  ? _raw_spin_unlock_irq+0x23/0x50
[  103.670865][ T6016]  task_work_run+0x150/0x240
[  103.670914][ T6016]  ? __pfx_task_work_run+0x10/0x10
[  103.670960][ T6016]  ? xfd_validate_state+0x129/0x190
[  103.671015][ T6016]  exit_to_user_mode_loop+0x100/0x4a0
[  103.671064][ T6016]  do_syscall_64+0x668/0xf80
[  103.671100][ T6016]  ? clear_bhb_loop+0x40/0x90
[  103.671141][ T6016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.671175][ T6016] RIP: 0033:0x7f874e79c629
[  103.671203][ T6016] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  103.671234][ T6016] RSP: 002b:00007f874f630028 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[  103.671267][ T6016] RAX: ffffffffffffffff RBX: 00007f874ea15fa0 RCX: 00007f874e79c629
[  103.671289][ T6016] RDX: 0000000000000012 RSI: 0000200000002980 RDI: 0000000000000001
[  103.671308][ T6016] RBP: 00007f874e832b39 R08: 0000000000000004 R09: 0000000000000000
[  103.671328][ T6016] R10: 0000200000002a40 R11: 0000000000000246 R12: 0000000000000000
[  103.671347][ T6016] R13: 00007f874ea16038 R14: 00007f874ea15fa0 R15: 00007ffcf8e4d358
[  103.671387][ T6016]  </TASK>
[  103.671570][ T6016] ptrace attach of "./syz-executor exec"[5824] was attempted by "(null)"[6016]
[  105.393849][ T6030] netlink: 28 bytes leftover after parsing attributes in process `syz.1.26'.
[  111.186632][ T6068] mmap: syz.3.31 (6068) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  111.327816][ T6071] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  111.511084][ T6074] netlink: 350 bytes leftover after parsing attributes in process `syz.0.33'.
[  112.455949][   T29] audit: type=1800 audit(1772094411.988:3): pid=6086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.36" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  112.891371][ T6096] process 'syz.3.39' launched './file0' with NULL argv: empty string added
[  113.181894][ T6091] zswap: compressor  not available
[  114.366139][ T6118] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  114.501649][ T6120] FAULT_INJECTION: forcing a failure.
[  114.501649][ T6120] name fail_futex, interval 1, probability 0, space 0, times 1
[  114.546393][ T6120] CPU: 0 UID: 0 PID: 6120 Comm: syz.3.43 Not tainted syzkaller #0 PREEMPT(full) 
[  114.546438][ T6120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  114.546453][ T6120] Call Trace:
[  114.546461][ T6120]  <TASK>
[  114.546469][ T6120]  dump_stack_lvl+0x100/0x190
[  114.546510][ T6120]  should_fail_ex.cold+0x5/0xa
[  114.546544][ T6120]  get_futex_key+0x1d2/0x1620
[  114.546576][ T6120]  ? __pfx_get_futex_key+0x10/0x10
[  114.546615][ T6120]  futex_wake+0xea/0x530
[  114.546654][ T6120]  ? __pfx_futex_wake+0x10/0x10
[  114.546690][ T6120]  ? __call_rcu_common.constprop.0+0x3f0/0x9b0
[  114.546733][ T6120]  do_futex+0x32b/0x350
[  114.546764][ T6120]  ? __pfx_do_futex+0x10/0x10
[  114.546795][ T6120]  ? __pfx___might_resched+0x10/0x10
[  114.546830][ T6120]  ? blkcg_maybe_throttle_current+0x5df/0xeb0
[  114.546863][ T6120]  __x64_sys_futex+0x34f/0x4d0
[  114.546896][ T6120]  ? __pfx_task_work_run+0x10/0x10
[  114.546930][ T6120]  ? __pfx___x64_sys_futex+0x10/0x10
[  114.546962][ T6120]  ? exit_to_user_mode_loop+0xdd/0x4a0
[  114.547001][ T6120]  do_syscall_64+0x106/0xf80
[  114.547028][ T6120]  ? clear_bhb_loop+0x40/0x90
[  114.547057][ T6120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.547082][ T6120] RIP: 0033:0x7fbb1699c629
[  114.547101][ T6120] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  114.547123][ T6120] RSP: 002b:00007fbb1783d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  114.547146][ T6120] RAX: ffffffffffffffda RBX: 00007fbb16c16188 RCX: 00007fbb1699c629
[  114.547162][ T6120] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbb16c1618c
[  114.547176][ T6120] RBP: 00007fbb16c16180 R08: 0000000000000000 R09: 0000000000000000
[  114.547191][ T6120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  114.547204][ T6120] R13: 00007fbb16c16218 R14: 00007ffec160e350 R15: 00007ffec160e438
[  114.547234][ T6120]  </TASK>
[  116.092539][ T6137] netlink: 28 bytes leftover after parsing attributes in process `syz.1.47'.
[  116.101936][ T6137] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  116.264211][ T6137] batman_adv: batadv0: Removing interface: batadv_slave_1
[  119.187526][ T6132] zswap: compressor � not available
[  119.306651][ T6140] Setting dangerous option i915.mitigations - tainting kernel
[  121.588900][ T6193] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  121.649519][ T6185] Invalid ELF header magic: != ELF
[  121.872783][ T6196] netlink: 'syz.3.57': attribute type 4 has an invalid length.
[  121.886290][ T6196] netlink: 'syz.3.57': attribute type 5 has an invalid length.
[  121.909685][ T6196] netlink: 10 bytes leftover after parsing attributes in process `syz.3.57'.
��I��jn����9�_U���VQ8��j@:Un M��%U�x�0
	[  126.188104][ T6242] nvme_fabrics: missing parameter 'transport=%s'
[  126.202353][ T6242] nvme_fabrics: missing parameter 'nqn=%s'
[  126.743702][ T6259] FAULT_INJECTION: forcing a failure.
[  126.743702][ T6259] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  126.760993][ T6259] CPU: 1 UID: 0 PID: 6259 Comm: syz.1.71 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  126.761044][ T6259] Tainted: [U]=USER
[  126.761054][ T6259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  126.761075][ T6259] Call Trace:
[  126.761085][ T6259]  <TASK>
[  126.761098][ T6259]  dump_stack_lvl+0x100/0x190
[  126.761169][ T6259]  should_fail_ex.cold+0x5/0xa
[  126.761201][ T6259]  ? prepare_alloc_pages+0x16d/0x5f0
[  126.761242][ T6259]  should_fail_alloc_page+0xeb/0x140
[  126.761278][ T6259]  prepare_alloc_pages+0x1f0/0x5f0
[  126.761321][ T6259]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  126.761377][ T6259]  ? rcu_is_watching+0x12/0xc0
[  126.761426][ T6259]  ? trace_mm_page_alloc+0x17a/0x1d0
[  126.761468][ T6259]  ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0
[  126.761515][ T6259]  ? write_profile+0x71/0x150
[  126.761545][ T6259]  ? is_bpf_text_address+0x8a/0x1a0
[  126.761595][ T6259]  ? lock_release+0x263/0x320
[  126.761634][ T6259]  ? bpf_ksym_find+0x124/0x1c0
[  126.761672][ T6259]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  126.761726][ T6259]  ? kernel_text_address+0x8d/0x100
[  126.761774][ T6259]  ? __kernel_text_address+0xd/0x30
[  126.761822][ T6259]  ? unwind_get_return_address+0x59/0xa0
[  126.761857][ T6259]  ? arch_stack_walk+0xa6/0xf0
[  126.761917][ T6259]  alloc_pages_bulk_noprof+0x782/0x1490
[  126.761964][ T6259]  ? check_noncircular+0x97/0x160
[  126.762017][ T6259]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  126.762082][ T6259]  ? alloc_pages_noprof+0x233/0x390
[  126.762119][ T6259]  __kasan_populate_vmalloc+0xf0/0x210
[  126.762176][ T6259]  alloc_vmap_area+0x95d/0x2bd0
[  126.762251][ T6259]  ? __pfx_alloc_vmap_area+0x10/0x10
[  126.762319][ T6259]  __get_vm_area_node+0x1ca/0x330
[  126.762363][ T6259]  __vmalloc_node_range_noprof+0x213/0x1530
[  126.762405][ T6259]  ? bdev_disk_changed+0x44b/0xc80
[  126.762463][ T6259]  ? __x64_sys_ioctl+0x18e/0x210
[  126.762507][ T6259]  ? do_syscall_64+0x106/0xf80
[  126.762542][ T6259]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.762586][ T6259]  ? bdev_disk_changed+0x44b/0xc80
[  126.762654][ T6259]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  126.762714][ T6259]  ? bdev_disk_changed+0x44b/0xc80
[  126.762768][ T6259]  __vmalloc_node_noprof+0xad/0xf0
[  126.762802][ T6259]  ? bdev_disk_changed+0x44b/0xc80
[  126.762857][ T6259]  bdev_disk_changed+0x44b/0xc80
[  126.762912][ T6259]  ? lockdep_init_map_type+0x5c/0x250
[  126.762956][ T6259]  ? __pfx_bdev_disk_changed+0x10/0x10
[  126.763003][ T6259]  ? file_init_path+0x48e/0x670
[  126.763042][ T6259]  blkdev_get_whole+0x187/0x290
[  126.763072][ T6259]  bdev_open+0x2c7/0xe40
[  126.763128][ T6259]  bdev_file_open_by_dev+0x179/0x210
[  126.763162][ T6259]  disk_scan_partitions+0x1ef/0x320
[  126.763205][ T6259]  blkdev_common_ioctl+0x12a1/0x2ba0
[  126.763249][ T6259]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  126.763296][ T6259]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  126.763349][ T6259]  ? do_vfs_ioctl+0x226/0x13e0
[  126.763392][ T6259]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  126.763446][ T6259]  ? find_held_lock+0x2b/0x80
[  126.763485][ T6259]  ? __fget_files+0x215/0x3d0
[  126.763542][ T6259]  blkdev_ioctl+0x43b/0x6f0
[  126.763578][ T6259]  ? __pfx_blkdev_ioctl+0x10/0x10
[  126.763620][ T6259]  ? __pfx_blkdev_ioctl+0x10/0x10
[  126.763657][ T6259]  __x64_sys_ioctl+0x18e/0x210
[  126.763706][ T6259]  do_syscall_64+0x106/0xf80
[  126.763744][ T6259]  ? clear_bhb_loop+0x40/0x90
[  126.763786][ T6259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.763817][ T6259] RIP: 0033:0x7f874e79c629
[  126.763854][ T6259] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  126.763888][ T6259] RSP: 002b:00007f874f60f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  126.763926][ T6259] RAX: ffffffffffffffda RBX: 00007f874ea16090 RCX: 00007f874e79c629
[  126.763948][ T6259] RDX: 0000000000000000 RSI: 000000000000125f RDI: 000000000000000b
[  126.763966][ T6259] RBP: 00007f874e832b39 R08: 0000000000000000 R09: 0000000000000000
[  126.763985][ T6259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  126.764002][ T6259] R13: 00007f874ea16128 R14: 00007f874ea16090 R15: 00007ffcf8e4d358
[  126.764045][ T6259]  </TASK>
[  126.764406][ T6259] syz.1.71: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  127.311114][ T6259] CPU: 1 UID: 0 PID: 6259 Comm: syz.1.71 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  127.311165][ T6259] Tainted: [U]=USER
[  127.311177][ T6259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  127.311197][ T6259] Call Trace:
[  127.311208][ T6259]  <TASK>
[  127.311220][ T6259]  dump_stack_lvl+0x100/0x190
[  127.311277][ T6259]  warn_alloc.cold+0x95/0x1c1
[  127.311333][ T6259]  ? __pfx_warn_alloc+0x10/0x10
[  127.311375][ T6259]  ? lockdep_hardirqs_on+0x78/0x100
[  127.311425][ T6259]  ? __get_vm_area_node+0x2c5/0x330
[  127.311469][ T6259]  ? __get_vm_area_node+0x208/0x330
[  127.311512][ T6259]  __vmalloc_node_range_noprof+0xbf4/0x1530
[  127.311550][ T6259]  ? __x64_sys_ioctl+0x18e/0x210
[  127.311591][ T6259]  ? do_syscall_64+0x106/0xf80
[  127.311625][ T6259]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.311666][ T6259]  ? bdev_disk_changed+0x44b/0xc80
[  127.311729][ T6259]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  127.311785][ T6259]  ? bdev_disk_changed+0x44b/0xc80
[  127.311836][ T6259]  __vmalloc_node_noprof+0xad/0xf0
[  127.311873][ T6259]  ? bdev_disk_changed+0x44b/0xc80
[  127.311928][ T6259]  bdev_disk_changed+0x44b/0xc80
[  127.311990][ T6259]  ? lockdep_init_map_type+0x5c/0x250
[  127.312041][ T6259]  ? __pfx_bdev_disk_changed+0x10/0x10
[  127.312096][ T6259]  ? file_init_path+0x48e/0x670
[  127.312141][ T6259]  blkdev_get_whole+0x187/0x290
[  127.312175][ T6259]  bdev_open+0x2c7/0xe40
[  127.312232][ T6259]  bdev_file_open_by_dev+0x179/0x210
[  127.312271][ T6259]  disk_scan_partitions+0x1ef/0x320
[  127.312319][ T6259]  blkdev_common_ioctl+0x12a1/0x2ba0
[  127.312363][ T6259]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  127.312436][ T6259]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  127.312493][ T6259]  ? do_vfs_ioctl+0x226/0x13e0
[  127.312537][ T6259]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  127.312593][ T6259]  ? find_held_lock+0x2b/0x80
[  127.312622][ T6259]  ? __fget_files+0x215/0x3d0
[  127.312678][ T6259]  blkdev_ioctl+0x43b/0x6f0
[  127.312715][ T6259]  ? __pfx_blkdev_ioctl+0x10/0x10
[  127.312758][ T6259]  ? __pfx_blkdev_ioctl+0x10/0x10
[  127.312797][ T6259]  __x64_sys_ioctl+0x18e/0x210
[  127.312844][ T6259]  do_syscall_64+0x106/0xf80
[  127.312879][ T6259]  ? clear_bhb_loop+0x40/0x90
[  127.312918][ T6259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.312951][ T6259] RIP: 0033:0x7f874e79c629
[  127.312978][ T6259] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  127.313009][ T6259] RSP: 002b:00007f874f60f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  127.313040][ T6259] RAX: ffffffffffffffda RBX: 00007f874ea16090 RCX: 00007f874e79c629
[  127.313061][ T6259] RDX: 0000000000000000 RSI: 000000000000125f RDI: 000000000000000b
[  127.313080][ T6259] RBP: 00007f874e832b39 R08: 0000000000000000 R09: 0000000000000000
[  127.313099][ T6259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  127.313118][ T6259] R13: 00007f874ea16128 R14: 00007f874ea16090 R15: 00007ffcf8e4d358
[  127.313160][ T6259]  </TASK>
[  127.654898][ T6259] Mem-Info:
[  127.658311][ T6259] active_anon:28547 inactive_anon:0 isolated_anon:0
[  127.658311][ T6259]  active_file:16224 inactive_file:40409 isolated_file:0
[  127.658311][ T6259]  unevictable:768 dirty:548 writeback:0
[  127.658311][ T6259]  slab_reclaimable:10865 slab_unreclaimable:90410
[  127.658311][ T6259]  mapped:25852 shmem:18812 pagetables:1124
[  127.658311][ T6259]  sec_pagetables:0 bounce:0
[  127.658311][ T6259]  kernel_misc_reclaimable:0
[  127.658311][ T6259]  free:1295358 free_pcp:19468 free_cma:0
[  127.754573][ T6259] Node 0 active_anon:108036kB inactive_anon:0kB active_file:64896kB inactive_file:161436kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:102708kB dirty:2188kB writeback:0kB shmem:69512kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:20480kB kernel_stack:11524kB pagetables:4364kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  127.857449][ T6259] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:132kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  127.888140][ T6259] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  127.965637][ T6259] lowmem_reserve[]: 0 2477 2479 2479 2479
[  127.971518][ T6259] Node 0 DMA32 free:1253496kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB free_highatomic:0KB active_anon:93416kB inactive_anon:0kB active_file:64896kB inactive_file:161436kB unevictable:1536kB writepending:2188kB zspages:0kB present:3129332kB managed:2537456kB mlocked:0kB bounce:0kB free_pcp:69676kB local_pcp:40864kB free_cma:0kB
[  128.075616][ T6259] lowmem_reserve[]: 0 0 1 1 1
[  128.115456][ T6259] Node 0 Normal free:0kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1060kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  128.158705][ T6259] lowmem_reserve[]: 0 0 0 0 0
[  128.174231][ T6259] Node 1 Normal free:3940808kB boost:0kB min:55580kB low:69472kB high:83364kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  128.258195][ T6259] lowmem_reserve[]: 0 0 0 0 0
[  128.269060][ T6259] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  128.297787][ T6259] Node 0 DMA32: 2271*4kB (UM) 1609*8kB (UME) 635*16kB (UME) 458*32kB (UME) 498*64kB (UME) 360*128kB (UME) 181*256kB (UM) 54*512kB (UME) 20*1024kB (UME) 5*2048kB (UME) 255*4096kB (UM) = 1273908kB
[  128.333035][ T6259] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  128.349029][ T6259] Node 1 Normal: 10*4kB (UM) 12*8kB (UM) 18*16kB (UME) 11*32kB (UME) 5*64kB (UME) 5*128kB (UME) 5*256kB (UME) 3*512kB (UME) 2*1024kB (UM) 1*2048kB (E) 960*4096kB (M) = 3940808kB
[  128.367336][ T6259] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  128.389379][ T6259] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  128.419236][ T6259] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  128.431825][ T6259] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  128.441513][ T6259] 68046 total pagecache pages
[  128.461575][ T6259] 0 pages in swap cache
[  128.465953][ T6259] Free swap  = 124996kB
[  128.470249][ T6259] Total swap = 124996kB
[  128.474457][ T6259] 2097051 pages RAM
[  128.481212][ T6259] 0 pages HighMem/MovableOnly
[  128.489293][ T6259] 430807 pages reserved
[  128.493618][ T6259] 0 pages cma reserved
[  129.381680][   T29] audit: type=1800 audit(1772094428.918:4): pid=6297 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.77" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  130.399009][ T6311] mkiss: ax0: crc mode is auto.
[  130.885097][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805b767000: rx timeout, send abort
[  131.394428][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805b767000: abort rx timeout. Force session deactivation
[  132.472043][ T6332] FAULT_INJECTION: forcing a failure.
[  132.472043][ T6332] name fail_futex, interval 1, probability 0, space 0, times 0
[  132.519090][ T6332] CPU: 0 UID: 0 PID: 6332 Comm: syz.2.86 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  132.519137][ T6332] Tainted: [U]=USER
[  132.519148][ T6332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  132.519166][ T6332] Call Trace:
[  132.519176][ T6332]  <TASK>
[  132.519188][ T6332]  dump_stack_lvl+0x100/0x190
[  132.519241][ T6332]  should_fail_ex.cold+0x5/0xa
[  132.519272][ T6332]  ? rcu_is_watching+0x12/0xc0
[  132.519324][ T6332]  get_futex_key+0x106f/0x1620
[  132.519368][ T6332]  ? __pfx_get_futex_key+0x10/0x10
[  132.519403][ T6332]  ? lock_acquire+0x1cf/0x380
[  132.519456][ T6332]  futex_wake+0xea/0x530
[  132.519509][ T6332]  ? __pfx_futex_wake+0x10/0x10
[  132.519557][ T6332]  ? exit_mm_release+0x19/0x30
[  132.519607][ T6332]  do_futex+0x32b/0x350
[  132.519657][ T6332]  ? __pfx_do_futex+0x10/0x10
[  132.519696][ T6332]  ? __might_fault+0xc5/0x140
[  132.519750][ T6332]  mm_release+0x24a/0x2f0
[  132.519783][ T6332]  do_exit+0x675/0x2aa0
[  132.519830][ T6332]  ? __pfx_do_exit+0x10/0x10
[  132.519871][ T6332]  ? do_raw_spin_lock+0x128/0x260
[  132.519916][ T6332]  ? find_held_lock+0x2b/0x80
[  132.519944][ T6332]  ? get_signal+0x7e0/0x21e0
[  132.519981][ T6332]  do_group_exit+0xd5/0x2a0
[  132.520026][ T6332]  get_signal+0x1ec7/0x21e0
[  132.520074][ T6332]  ? __pfx_get_signal+0x10/0x10
[  132.520114][ T6332]  ? do_futex+0x192/0x350
[  132.520160][ T6332]  arch_do_signal_or_restart+0x91/0x770
[  132.520202][ T6332]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  132.520253][ T6332]  ? __pfx___x64_sys_futex+0x10/0x10
[  132.520294][ T6332]  ? ksys_write+0x1ac/0x250
[  132.520350][ T6332]  exit_to_user_mode_loop+0x86/0x4a0
[  132.520396][ T6332]  do_syscall_64+0x668/0xf80
[  132.520431][ T6332]  ? clear_bhb_loop+0x40/0x90
[  132.520470][ T6332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.520503][ T6332] RIP: 0033:0x7f93fa79c629
[  132.520530][ T6332] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  132.520560][ T6332] RSP: 002b:00007f93fb6340e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  132.520590][ T6332] RAX: fffffffffffffe00 RBX: 00007f93faa16188 RCX: 00007f93fa79c629
[  132.520610][ T6332] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f93faa16188
[  132.520629][ T6332] RBP: 00007f93faa16180 R08: 0000000000000000 R09: 0000000000000000
[  132.520654][ T6332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  132.520672][ T6332] R13: 00007f93faa16218 R14: 00007ffc82d1cdb0 R15: 00007ffc82d1ce98
[  132.520713][ T6332]  </TASK>
[  133.239758][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  133.246449][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  135.548011][ T6397] netlink: 146 bytes leftover after parsing attributes in process `syz.0.101'.
[  135.909639][ T6404] HfR: entered promiscuous mode
[  137.972762][ T6428] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[6428]
[  139.582008][ T6474] netlink: 8 bytes leftover after parsing attributes in process `syz.0.118'.
[  139.652607][ T6476] usb usb2: usbfs: process 6476 (syz.0.118) did not claim interface 4 before use
[  140.998845][ T6496] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input5
[  143.780300][ T6539] netlink: 186 bytes leftover after parsing attributes in process `syz.1.128'.
[  144.576232][ T6559] rnbd_client L213: map_device: Parameters missing
[  145.386251][ T6570] netlink: 8 bytes leftover after parsing attributes in process `syz.2.135'.
[  148.027205][ T6587] capability: warning: `syz.3.138' uses 32-bit capabilities (legacy support in use)
[  149.862223][ T6599] bridge0: port 3(team0) entered blocking state
[  149.900072][ T6599] bridge0: port 3(team0) entered disabled state
[  149.955711][ T6599] team0: entered allmulticast mode
[  150.055572][ T6599] team_slave_0: entered allmulticast mode
[  150.061392][ T6599] team_slave_1: entered allmulticast mode
[  150.138513][ T6599] team0: entered promiscuous mode
[  150.155948][ T6599] team_slave_0: entered promiscuous mode
[  150.175995][ T6599] team_slave_1: entered promiscuous mode
[  150.203307][ T6599] bridge0: port 3(team0) entered blocking state
[  150.210065][ T6599] bridge0: port 3(team0) entered forwarding state
[  152.513213][ T6631] NFSD: Failed to start, no listeners configured.
[  152.808659][ T6640] FAULT_INJECTION: forcing a failure.
[  152.808659][ T6640] name failslab, interval 1, probability 0, space 0, times 0
[  152.898531][ T6640] CPU: 0 UID: 0 PID: 6640 Comm: syz.1.149 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  152.898586][ T6640] Tainted: [U]=USER
[  152.898597][ T6640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  152.898617][ T6640] Call Trace:
[  152.898628][ T6640]  <TASK>
[  152.898641][ T6640]  dump_stack_lvl+0x100/0x190
[  152.898697][ T6640]  should_fail_ex.cold+0x5/0xa
[  152.898737][ T6640]  should_failslab+0xc2/0x120
[  152.898769][ T6640]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  152.898842][ T6640]  ? __d_alloc+0x34/0xa80
[  152.898876][ T6640]  ? security_inode_alloc+0xcf/0x2c0
[  152.898927][ T6640]  __d_alloc+0x34/0xa80
[  152.898957][ T6640]  ? __ns_ref_active_get+0x9f/0x1b0
[  152.899001][ T6640]  path_from_stashed+0x427/0x750
[  152.899033][ T6640]  ? do_raw_spin_unlock+0x145/0x1e0
[  152.899087][ T6640]  ns_get_path+0x60/0x80
[  152.899117][ T6640]  proc_ns_get_link+0x121/0x230
[  152.899160][ T6640]  ? __pfx_proc_ns_get_link+0x10/0x10
[  152.899206][ T6640]  ? atime_needs_update+0x8b/0x6b0
[  152.899254][ T6640]  pick_link+0xd17/0x13c0
[  152.899297][ T6640]  ? __pfx_proc_ns_get_link+0x10/0x10
[  152.899344][ T6640]  step_into_slowpath+0x9ba/0xf90
[  152.899398][ T6640]  ? __pfx_step_into_slowpath+0x10/0x10
[  152.899444][ T6640]  ? find_held_lock+0x2b/0x80
[  152.899486][ T6640]  path_openat+0xf95/0x31a0
[  152.899530][ T6640]  ? __pfx_path_openat+0x10/0x10
[  152.899576][ T6640]  do_file_open+0x20e/0x430
[  152.899610][ T6640]  ? __pfx_do_file_open+0x10/0x10
[  152.899670][ T6640]  ? alloc_fd+0x476/0x790
[  152.899724][ T6640]  ? do_getname+0x191/0x390
[  152.899766][ T6640]  do_sys_openat2+0x10d/0x1e0
[  152.899814][ T6640]  ? __pfx_do_sys_openat2+0x10/0x10
[  152.899858][ T6640]  ? __fget_files+0x21f/0x3d0
[  152.899916][ T6640]  __x64_sys_openat+0x12d/0x210
[  152.899959][ T6640]  ? __pfx___x64_sys_openat+0x10/0x10
[  152.900017][ T6640]  do_syscall_64+0x106/0xf80
[  152.900053][ T6640]  ? clear_bhb_loop+0x40/0x90
[  152.900094][ T6640]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.900127][ T6640] RIP: 0033:0x7f874e75cece
[  152.900155][ T6640] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  152.900186][ T6640] RSP: 002b:00007f874f62fec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  152.900218][ T6640] RAX: ffffffffffffffda RBX: 00007f874f6306c0 RCX: 00007f874e75cece
[  152.900240][ T6640] RDX: 0000000000000002 RSI: 00007f874f62ff90 RDI: ffffffffffffff9c
[  152.900260][ T6640] RBP: 00007f874e832b39 R08: 0000000000000000 R09: 0000000000000000
[  152.900280][ T6640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  152.900299][ T6640] R13: 00007f874ea16038 R14: 00007f874ea15fa0 R15: 00007ffcf8e4d358
[  152.900340][ T6640]  </TASK>
[  157.835903][ T6668] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  158.386106][ T6673] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6
[  159.152709][ T6676] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8
[  160.982512][ T6734] could not allocate digest TFM handle 
[  162.126118][ T5146] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5
[  162.233864][ T6765] binder: 6763:6765 ioctl 8905 38 returned -22
[  168.442464][ T6853] bridge0: port 4(gretap0) entered blocking state
[  168.456370][ T6853] bridge0: port 4(gretap0) entered disabled state
[  168.463664][ T6853] gretap0: entered allmulticast mode
[  168.564757][ T6853] gretap0: entered promiscuous mode
[  168.615857][ T6853] FAULT_INJECTION: forcing a failure.
[  168.615857][ T6853] name failslab, interval 1, probability 0, space 0, times 0
[  168.715487][ T6853] CPU: 0 UID: 0 PID: 6853 Comm: syz.2.189 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  168.715525][ T6853] Tainted: [U]=USER
[  168.715533][ T6853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  168.715547][ T6853] Call Trace:
[  168.715560][ T6853]  <TASK>
[  168.715569][ T6853]  dump_stack_lvl+0x100/0x190
[  168.715615][ T6853]  should_fail_ex.cold+0x5/0xa
[  168.715643][ T6853]  should_failslab+0xc2/0x120
[  168.715666][ T6853]  __kvmalloc_node_noprof+0xfa/0xa00
[  168.715702][ T6853]  ? bucket_table_alloc.isra.0+0x88/0x460
[  168.715743][ T6853]  bucket_table_alloc.isra.0+0x88/0x460
[  168.715779][ T6853]  rhashtable_init_noprof+0x43b/0x7d0
[  168.715816][ T6853]  nbp_vlan_init+0x238/0x500
[  168.715839][ T6853]  ? __pfx_nbp_vlan_init+0x10/0x10
[  168.715866][ T6853]  ? __local_bh_enable_ip+0x9e/0x120
[  168.715891][ T6853]  ? lockdep_hardirqs_on+0x78/0x100
[  168.715917][ T6853]  ? br_fdb_add_local+0x43/0x60
[  168.715956][ T6853]  ? __local_bh_enable_ip+0x9e/0x120
[  168.715985][ T6853]  br_add_if+0xf79/0x1b40
[  168.716008][ T6853]  ? veth_get_iflink+0x243/0x2c0
[  168.716040][ T6853]  add_del_if+0x114/0x160
[  168.716065][ T6853]  br_dev_siocdevprivate+0x8ac/0x1650
[  168.716091][ T6853]  ? __lock_acquire+0x4a5/0x2630
[  168.716121][ T6853]  ? __pfx_br_dev_siocdevprivate+0x10/0x10
[  168.716157][ T6853]  ? do_raw_spin_lock+0x128/0x260
[  168.716197][ T6853]  ? mark_held_locks+0x40/0x70
[  168.716230][ T6853]  ? netdev_name_node_lookup+0x107/0x150
[  168.716270][ T6853]  ? __mutex_lock+0x26a/0x1b90
[  168.716300][ T6853]  dev_ifsioc+0xc1e/0x1e90
[  168.716329][ T6853]  ? __pfx_dev_ifsioc+0x10/0x10
[  168.716350][ T6853]  ? __pfx___mutex_lock+0x10/0x10
[  168.716387][ T6853]  ? dev_load+0x8e/0x240
[  168.716407][ T6853]  ? dev_load+0x8e/0x240
[  168.716434][ T6853]  dev_ioctl+0x70e/0x1070
[  168.716460][ T6853]  sock_ioctl+0x494/0x6b0
[  168.716496][ T6853]  ? __pfx_sock_ioctl+0x10/0x10
[  168.716529][ T6853]  ? hook_file_ioctl_common+0x146/0x410
[  168.716583][ T6853]  ? __fget_files+0x21f/0x3d0
[  168.716624][ T6853]  ? __pfx_sock_ioctl+0x10/0x10
[  168.716662][ T6853]  __x64_sys_ioctl+0x18e/0x210
[  168.716697][ T6853]  do_syscall_64+0x106/0xf80
[  168.716729][ T6853]  ? clear_bhb_loop+0x40/0x90
[  168.716763][ T6853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.716796][ T6853] RIP: 0033:0x7f93fa79c629
[  168.716819][ T6853] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  168.716846][ T6853] RSP: 002b:00007f93fb634028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  168.716869][ T6853] RAX: ffffffffffffffda RBX: 00007f93faa16180 RCX: 00007f93fa79c629
[  168.716884][ T6853] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 000000000000000b
[  168.716903][ T6853] RBP: 00007f93fa832b39 R08: 0000000000000000 R09: 0000000000000000
[  168.716921][ T6853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  168.716935][ T6853] R13: 00007f93faa16218 R14: 00007f93faa16180 R15: 00007ffc82d1ce98
[  168.716965][ T6853]  </TASK>
[  168.717501][ T6853] bridge0: port 4(gretap0) entered blocking state
[  169.024515][ T6853] bridge0: port 4(gretap0) entered forwarding state
[  170.213858][ T6865] ima: policy update failed
[  170.237857][   T29] audit: type=1807 audit(4294967300.120:5): UNKNOWN=0"�]$|�1j�0B|d���ӉO��+��/��x����WӦ��^��gq%Ḧr�O� res=0
[  170.275432][   T29] audit: type=1802 audit(4294967300.120:6): pid=6865 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.193" res=0 errno=0
[  170.346903][   T29] audit: type=1802 audit(4294967300.130:7): pid=6865 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.193" res=0 errno=0
[  171.768742][ T6875] netlink: 338 bytes leftover after parsing attributes in process `syz.3.197'.
[  171.778796][ T6877] netlink: 338 bytes leftover after parsing attributes in process `syz.3.197'.
[  176.859947][ T5829] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  176.869854][ T5829] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  176.890152][ T5829] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  176.905845][ T5829] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  176.935549][ T5829] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  177.644572][ T6914] chnl_net:caif_netlink_parms(): no params data found
[  178.418283][ T6914] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.605927][ T6914] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.621077][ T6914] bridge_slave_0: entered allmulticast mode
[  178.637335][ T6914] bridge_slave_0: entered promiscuous mode
[  178.661003][ T6914] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.691127][ T6914] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.721610][ T6914] bridge_slave_1: entered allmulticast mode
[  178.737755][ T6914] bridge_slave_1: entered promiscuous mode
[  178.850370][ T6914] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  178.879430][ T6914] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  178.975469][ T5146] Bluetooth: hci4: command tx timeout
[  179.012156][ T6914] team0: Port device team_slave_0 added
[  179.046547][ T6914] team0: Port device team_slave_1 added
[  179.216802][ T6914] batman_adv: batadv0: Adding interface: batadv_slave_0
[  179.223831][ T6914] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  179.321559][ T6914] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  179.355575][ T6914] batman_adv: batadv0: Adding interface: batadv_slave_1
[  179.362594][ T6914] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  179.536200][ T6914] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  181.066887][ T5146] Bluetooth: hci4: command tx timeout
[  181.743055][ T6914] hsr_slave_0: entered promiscuous mode
[  181.795599][ T6914] hsr_slave_1: entered promiscuous mode
[  181.802179][ T6914] debugfs: 'hsr0' already exists in 'hsr'
[  181.859155][ T6914] Cannot create hsr debugfs directory
[  182.076604][ T6519] syz.0.124 (6519) used greatest stack depth: 19256 bytes left
[  182.912590][ T6914] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  183.065654][ T6914] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  183.134624][ T5146] Bluetooth: hci4: command tx timeout
[  183.285685][   T29] audit: type=1400 audit(4294967300.691:8): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=6983 comm="syz.3.219"
[  183.334203][ T6914] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  183.950349][ T6914] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  184.173802][ T6525] syz.0.124 (6525) used greatest stack depth: 18904 bytes left
[  184.429815][ T6914] 8021q: adding VLAN 0 to HW filter on device bond0
[  184.486957][ T6914] 8021q: adding VLAN 0 to HW filter on device team0
[  184.727868][   T75] bridge0: port 1(bridge_slave_0) entered blocking state
[  184.735156][   T75] bridge0: port 1(bridge_slave_0) entered forwarding state
[  184.784282][  T704] bridge0: port 2(bridge_slave_1) entered blocking state
[  184.791538][  T704] bridge0: port 2(bridge_slave_1) entered forwarding state
[  184.998960][ T6524] syz.0.124 (6524) used greatest stack depth: 18824 bytes left
[  185.215852][ T5146] Bluetooth: hci4: command tx timeout
[  185.303157][ T6523] syz.0.124 (6523) used greatest stack depth: 17576 bytes left
[  186.239438][ T6914] 8021q: adding VLAN 0 to HW filter on device batadv0
[  187.050706][   T75] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.244369][   T75] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.268330][ T7046] syz.2.229 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  187.589327][   T75] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.659511][ T6914] veth0_vlan: entered promiscuous mode
[  187.713504][ T6914] veth1_vlan: entered promiscuous mode
[  187.757770][ T6914] veth0_macvtap: entered promiscuous mode
[  187.785792][ T6914] veth1_macvtap: entered promiscuous mode
[  188.053557][   T75] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.129890][ T6914] batman_adv: batadv0: Interface activated: batadv_slave_0
[  188.180564][ T6914] batman_adv: batadv0: Interface activated: batadv_slave_1
[  188.216613][ T1015] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  188.242413][ T1015] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  188.270097][ T1015] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  188.338648][ T1015] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  188.574613][   T75] bridge_slave_1: left allmulticast mode
[  188.582953][   T75] bridge_slave_1: left promiscuous mode
[  188.616314][   T75] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.704674][   T75] bridge_slave_0: left allmulticast mode
[  188.710621][   T75] bridge_slave_0: left promiscuous mode
[  188.716842][   T75] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.488740][   T75] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  189.508293][   T75] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  189.535182][   T75] bond0 (unregistering): Released all slaves
[  189.742003][   T75] HfR: left promiscuous mode
[  189.895495][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  189.922856][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  190.515227][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  190.574503][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  191.029940][   T75] hsr_slave_0: left promiscuous mode
[  191.048765][   T75] hsr_slave_1: left promiscuous mode
[  191.073887][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.090222][   T75] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.111153][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.139673][   T75] batman_adv: batadv0: Removing interface: batadv_slave_1
[  191.216047][   T75] veth1_macvtap: left promiscuous mode
[  191.240765][   T75] veth0_macvtap: left promiscuous mode
[  191.249957][   T75] veth1_vlan: left promiscuous mode
[  191.255529][   T75] veth0_vlan: left promiscuous mode
[  192.241108][   T75] team0 (unregistering): Port device team_slave_1 removed
[  192.301758][   T75] team0 (unregistering): Port device team_slave_0 removed
[  194.175891][ T7118] zswap: compressor  not available
[  194.662645][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  194.669181][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  197.267063][   T29] audit: type=1800 audit(4294967314.658:9): pid=7183 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.247" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  198.115734][ T7197] netlink: 342 bytes leftover after parsing attributes in process `syz.4.249'.
[  198.125450][ T7197] IPv6: NLM_F_REPLACE set, but no existing node found!
[  198.299628][ T7203] QAT: Device 0 not found
[  202.147003][ T7270] zswap: compressor  not available
[  202.447003][ T7289] FAULT_INJECTION: forcing a failure.
[  202.447003][ T7289] name failslab, interval 1, probability 0, space 0, times 0
[  202.470390][ T7289] CPU: 0 UID: 0 PID: 7289 Comm: syz.1.264 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  202.470439][ T7289] Tainted: [U]=USER
[  202.470446][ T7289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  202.470460][ T7289] Call Trace:
[  202.470470][ T7289]  <TASK>
[  202.470480][ T7289]  dump_stack_lvl+0x100/0x190
[  202.470521][ T7289]  should_fail_ex.cold+0x5/0xa
[  202.470549][ T7289]  should_failslab+0xc2/0x120
[  202.470577][ T7289]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  202.470612][ T7289]  ? security_inode_alloc+0x3b/0x2c0
[  202.470646][ T7289]  ? lockdep_init_map_type+0x5c/0x250
[  202.470682][ T7289]  security_inode_alloc+0x3b/0x2c0
[  202.470717][ T7289]  inode_init_always_gfp+0xced/0x1040
[  202.470761][ T7289]  alloc_inode+0x8e/0x250
[  202.470790][ T7289]  iget_locked+0x1d9/0x6d0
[  202.470821][ T7289]  ? __pfx_iget_locked+0x10/0x10
[  202.470849][ T7289]  ? kernfs_root+0xee/0x2a0
[  202.470880][ T7289]  ? kernfs_root+0xee/0x2a0
[  202.470917][ T7289]  kernfs_get_inode+0x46/0x470
[  202.470949][ T7289]  kernfs_iop_lookup+0x1a7/0x2d0
[  202.470985][ T7289]  lookup_open.isra.0+0x631/0x11b0
[  202.471025][ T7289]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  202.471075][ T7289]  ? mnt_get_write_access+0x1e9/0x2f0
[  202.471110][ T7289]  path_openat+0xa98/0x31a0
[  202.471142][ T7289]  ? __pfx_path_openat+0x10/0x10
[  202.471176][ T7289]  do_file_open+0x20e/0x430
[  202.471200][ T7289]  ? __pfx_do_file_open+0x10/0x10
[  202.471244][ T7289]  ? alloc_fd+0x476/0x790
[  202.471284][ T7289]  ? do_getname+0x191/0x390
[  202.471314][ T7289]  do_sys_openat2+0x10d/0x1e0
[  202.471350][ T7289]  ? __pfx_do_sys_openat2+0x10/0x10
[  202.471382][ T7289]  ? __fget_files+0x21f/0x3d0
[  202.471425][ T7289]  __x64_sys_openat+0x12d/0x210
[  202.471455][ T7289]  ? __pfx___x64_sys_openat+0x10/0x10
[  202.471497][ T7289]  do_syscall_64+0x106/0xf80
[  202.471523][ T7289]  ? clear_bhb_loop+0x40/0x90
[  202.471552][ T7289]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.471582][ T7289] RIP: 0033:0x7f874e79c629
[  202.471602][ T7289] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  202.471625][ T7289] RSP: 002b:00007f874f630028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  202.471647][ T7289] RAX: ffffffffffffffda RBX: 00007f874ea15fa0 RCX: 00007f874e79c629
[  202.471663][ T7289] RDX: 0000000000041102 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  202.471678][ T7289] RBP: 00007f874e832b39 R08: 0000000000000000 R09: 0000000000000000
[  202.471692][ T7289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  202.471706][ T7289] R13: 00007f874ea16038 R14: 00007f874ea15fa0 R15: 00007ffcf8e4d358
[  202.471737][ T7289]  </TASK>
[  202.744209][ T7277] zswap: compressor � not available
[  205.013616][ T7313] FAULT_INJECTION: forcing a failure.
[  205.013616][ T7313] name fail_futex, interval 1, probability 0, space 0, times 0
[  205.031787][ T7313] CPU: 0 UID: 0 PID: 7313 Comm: syz.2.270 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  205.031835][ T7313] Tainted: [U]=USER
[  205.031844][ T7313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  205.031867][ T7313] Call Trace:
[  205.031876][ T7313]  <TASK>
[  205.031886][ T7313]  dump_stack_lvl+0x100/0x190
[  205.031924][ T7313]  should_fail_ex.cold+0x5/0xa
[  205.031950][ T7313]  get_futex_key+0x1d2/0x1620
[  205.031981][ T7313]  ? __pfx_get_futex_key+0x10/0x10
[  205.032005][ T7313]  ? lock_acquire+0x1cf/0x380
[  205.032043][ T7313]  futex_wake+0xea/0x530
[  205.032080][ T7313]  ? __pfx_futex_wake+0x10/0x10
[  205.032116][ T7313]  ? exit_mm_release+0x19/0x30
[  205.032152][ T7313]  do_futex+0x32b/0x350
[  205.032182][ T7313]  ? __pfx_do_futex+0x10/0x10
[  205.032209][ T7313]  ? __might_fault+0xc5/0x140
[  205.032246][ T7313]  mm_release+0x24a/0x2f0
[  205.032269][ T7313]  do_exit+0x675/0x2aa0
[  205.032302][ T7313]  ? __pfx_do_exit+0x10/0x10
[  205.032331][ T7313]  ? do_raw_spin_lock+0x128/0x260
[  205.032369][ T7313]  ? find_held_lock+0x2b/0x80
[  205.032389][ T7313]  ? get_signal+0x7e0/0x21e0
[  205.032415][ T7313]  do_group_exit+0xd5/0x2a0
[  205.032447][ T7313]  get_signal+0x1ec7/0x21e0
[  205.032481][ T7313]  ? __pfx_get_signal+0x10/0x10
[  205.032505][ T7313]  ? do_futex+0x192/0x350
[  205.032537][ T7313]  arch_do_signal_or_restart+0x91/0x770
[  205.032567][ T7313]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  205.032636][ T7313]  ? __pfx___x64_sys_futex+0x10/0x10
[  205.032685][ T7313]  exit_to_user_mode_loop+0x86/0x4a0
[  205.032735][ T7313]  do_syscall_64+0x668/0xf80
[  205.032762][ T7313]  ? clear_bhb_loop+0x40/0x90
[  205.032789][ T7313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.032813][ T7313] RIP: 0033:0x7f93fa79c629
[  205.032832][ T7313] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  205.032853][ T7313] RSP: 002b:00007f93fb6340e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  205.032875][ T7313] RAX: fffffffffffffe00 RBX: 00007f93faa16188 RCX: 00007f93fa79c629
[  205.032890][ T7313] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f93faa16188
[  205.032904][ T7313] RBP: 00007f93faa16180 R08: 0000000000000000 R09: 0000000000000000
[  205.032918][ T7313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  205.032937][ T7313] R13: 00007f93faa16218 R14: 00007ffc82d1cdb0 R15: 00007ffc82d1ce98
[  205.032966][ T7313]  </TASK>
[  206.943078][ T7366] FAULT_INJECTION: forcing a failure.
[  206.943078][ T7366] name failslab, interval 1, probability 0, space 0, times 0
[  207.010013][ T7375] FAULT_INJECTION: forcing a failure.
[  207.010013][ T7375] name fail_futex, interval 1, probability 0, space 0, times 0
[  207.037369][ T7366] CPU: 1 UID: 0 PID: 7366 Comm: syz.1.282 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  207.037417][ T7366] Tainted: [U]=USER
[  207.037427][ T7366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  207.037444][ T7366] Call Trace:
[  207.037455][ T7366]  <TASK>
[  207.037466][ T7366]  dump_stack_lvl+0x100/0x190
[  207.037519][ T7366]  should_fail_ex.cold+0x5/0xa
[  207.037556][ T7366]  should_failslab+0xc2/0x120
[  207.037588][ T7366]  __kmalloc_cache_noprof+0x7a/0x6f0
[  207.037625][ T7366]  ? ptp_open+0xe4/0x550
[  207.037670][ T7366]  ptp_open+0xe4/0x550
[  207.037712][ T7366]  ? __pfx_ptp_open+0x10/0x10
[  207.037764][ T7366]  ? __pfx_ptp_open+0x10/0x10
[  207.037802][ T7366]  posix_clock_open+0x17b/0x290
[  207.037839][ T7366]  ? __pfx_posix_clock_open+0x10/0x10
[  207.037873][ T7366]  chrdev_open+0x234/0x6a0
[  207.037902][ T7366]  ? __pfx_apparmor_file_open+0x10/0x10
[  207.037946][ T7366]  ? __pfx_chrdev_open+0x10/0x10
[  207.037978][ T7366]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  207.038040][ T7366]  do_dentry_open+0x6d8/0x1660
[  207.038089][ T7366]  ? __pfx_chrdev_open+0x10/0x10
[  207.038129][ T7366]  vfs_open+0x82/0x3f0
[  207.038179][ T7366]  path_openat+0x208c/0x31a0
[  207.038223][ T7366]  ? __pfx_path_openat+0x10/0x10
[  207.038269][ T7366]  do_file_open+0x20e/0x430
[  207.038301][ T7366]  ? __pfx_do_file_open+0x10/0x10
[  207.038369][ T7366]  ? alloc_fd+0x476/0x790
[  207.038422][ T7366]  ? do_getname+0x191/0x390
[  207.038461][ T7366]  do_sys_openat2+0x10d/0x1e0
[  207.038498][ T7366]  ? __pfx_do_sys_openat2+0x10/0x10
[  207.038540][ T7366]  ? __fget_files+0x21f/0x3d0
[  207.038597][ T7366]  __x64_sys_openat+0x12d/0x210
[  207.038638][ T7366]  ? __pfx___x64_sys_openat+0x10/0x10
[  207.038692][ T7366]  do_syscall_64+0x106/0xf80
[  207.038725][ T7366]  ? clear_bhb_loop+0x40/0x90
[  207.038763][ T7366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.038795][ T7366] RIP: 0033:0x7f874e79c629
[  207.038819][ T7366] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  207.038848][ T7366] RSP: 002b:00007f874f630028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  207.038877][ T7366] RAX: ffffffffffffffda RBX: 00007f874ea15fa0 RCX: 00007f874e79c629
[  207.038898][ T7366] RDX: 0000000000008000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  207.038917][ T7366] RBP: 00007f874e832b39 R08: 0000000000000000 R09: 0000000000000000
[  207.038935][ T7366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  207.038952][ T7366] R13: 00007f874ea16038 R14: 00007f874ea15fa0 R15: 00007ffcf8e4d358
[  207.038994][ T7366]  </TASK>
[  207.069431][ T7375] CPU: 0 UID: 0 PID: 7375 Comm: syz.3.283 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  207.069561][ T7375] Tainted: [U]=USER
[  207.069591][ T7375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  207.069640][ T7375] Call Trace:
[  207.069650][ T7375]  <TASK>
[  207.069663][ T7375]  dump_stack_lvl+0x100/0x190
[  207.069846][ T7375]  should_fail_ex.cold+0x5/0xa
[  207.069953][ T7375]  get_futex_key+0x1d2/0x1620
[  207.070073][ T7375]  ? __pfx_get_futex_key+0x10/0x10
[  207.070222][ T7375]  futex_wake+0xea/0x530
[  207.070361][ T7375]  ? __pfx_futex_wake+0x10/0x10
[  207.070500][ T7375]  ? putname+0xb1/0x110
[  207.070582][ T7375]  ? kmem_cache_free+0x124/0x6a0
[  207.070710][ T7375]  do_futex+0x32b/0x350
[  207.070819][ T7375]  ? __pfx_do_futex+0x10/0x10
[  207.070923][ T7375]  ? __pfx_do_sys_openat2+0x10/0x10
[  207.071039][ T7375]  ? __fget_files+0x21f/0x3d0
[  207.071254][ T7375]  __x64_sys_futex+0x34f/0x4d0
[  207.071387][ T7375]  ? __x64_sys_openat+0x12d/0x210
[  207.071495][ T7375]  ? __pfx___x64_sys_futex+0x10/0x10
[  207.071654][ T7375]  do_syscall_64+0x106/0xf80
[  207.071744][ T7375]  ? clear_bhb_loop+0x40/0x90
[  207.071848][ T7375]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.071944][ T7375] RIP: 0033:0x7fbb1699c629
[  207.072016][ T7375] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  207.072100][ T7375] RSP: 002b:00007fbb1787f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  207.072163][ T7375] RAX: ffffffffffffffda RBX: 00007fbb16c15fa8 RCX: 00007fbb1699c629
[  207.072223][ T7375] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbb16c15fac
[  207.072274][ T7375] RBP: 00007fbb16c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  207.072320][ T7375] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  207.072371][ T7375] R13: 00007fbb16c16038 R14: 00007ffec160e350 R15: 00007ffec160e438
[  207.072479][ T7375]  </TASK>
[  207.986068][ T5146] Bluetooth: hci3: unexpected subevent 0x01 length: 3 < 18
[  209.171392][ T7398] zswap: compressor  not available
[  209.709185][ T7414] Console: switching to colour VGA+ 80x25
[  209.930472][ T7399] tipc: can't start tipc receive workqueue
[  211.446571][ T7448] netlink: 'syz.4.297': attribute type 10 has an invalid length.
[  211.477310][ T7448] netlink: 230 bytes leftover after parsing attributes in process `syz.4.297'.
[  211.654985][ T7448] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  211.835354][ T7463] netlink: 28 bytes leftover after parsing attributes in process `syz.2.300'.
[  211.971015][ T7463] veth1_macvtap: left promiscuous mode
[  212.155647][ T7470] FAULT_INJECTION: forcing a failure.
[  212.155647][ T7470] name failslab, interval 1, probability 0, space 0, times 0
[  212.210074][ T7470] CPU: 1 UID: 0 PID: 7470 Comm: syz.4.301 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  212.210125][ T7470] Tainted: [U]=USER
[  212.210135][ T7470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  212.210155][ T7470] Call Trace:
[  212.210165][ T7470]  <TASK>
[  212.210177][ T7470]  dump_stack_lvl+0x100/0x190
[  212.210233][ T7470]  should_fail_ex.cold+0x5/0xa
[  212.210271][ T7470]  should_failslab+0xc2/0x120
[  212.210303][ T7470]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  212.210359][ T7470]  ? __d_alloc+0x34/0xa80
[  212.210402][ T7470]  __d_alloc+0x34/0xa80
[  212.210441][ T7470]  d_alloc_pseudo+0x1c/0xc0
[  212.210485][ T7470]  alloc_file_pseudo+0xcf/0x230
[  212.210527][ T7470]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  212.210564][ T7470]  ? alloc_fd+0x476/0x790
[  212.210619][ T7470]  ? do_raw_spin_unlock+0x145/0x1e0
[  212.210674][ T7470]  __anon_inode_getfile+0xe8/0x280
[  212.210716][ T7470]  anon_inode_getfile_fmode+0x37/0xa0
[  212.210756][ T7470]  __do_sys_fanotify_init+0xa79/0xe50
[  212.210811][ T7470]  do_syscall_64+0x106/0xf80
[  212.210847][ T7470]  ? clear_bhb_loop+0x40/0x90
[  212.210889][ T7470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.210923][ T7470] RIP: 0033:0x7f24aa39c629
[  212.210950][ T7470] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  212.210981][ T7470] RSP: 002b:00007f24ab255028 EFLAGS: 00000246 ORIG_RAX: 000000000000012c
[  212.211013][ T7470] RAX: ffffffffffffffda RBX: 00007f24aa615fa0 RCX: 00007f24aa39c629
[  212.211035][ T7470] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  212.211053][ T7470] RBP: 00007f24aa432b39 R08: 0000000000000000 R09: 0000000000000000
[  212.211072][ T7470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  212.211091][ T7470] R13: 00007f24aa616038 R14: 00007f24aa615fa0 R15: 00007ffc6550e6c8
[  212.211133][ T7470]  </TASK>
[  215.310948][ T7517] block nbd8: shutting down sockets
[  216.417767][ T7598] FAULT_INJECTION: forcing a failure.
[  216.417767][ T7598] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  216.467036][ T7598] CPU: 0 UID: 0 PID: 7598 Comm: syz.1.315 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  216.467104][ T7598] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  216.467116][ T7598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  216.467136][ T7598] Call Trace:
[  216.467146][ T7598]  <TASK>
[  216.467159][ T7598]  dump_stack_lvl+0x100/0x190
[  216.467219][ T7598]  should_fail_ex.cold+0x5/0xa
[  216.467256][ T7598]  ? prepare_alloc_pages+0x16d/0x5f0
[  216.467297][ T7598]  should_fail_alloc_page+0xeb/0x140
[  216.467334][ T7598]  prepare_alloc_pages+0x1f0/0x5f0
[  216.467377][ T7598]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  216.467428][ T7598]  ? __pfx_css_rstat_updated+0x10/0x10
[  216.467468][ T7598]  ? lock_acquire+0x1cf/0x380
[  216.467518][ T7598]  ? rcu_is_watching+0x12/0xc0
[  216.467575][ T7598]  ? mod_memcg_lruvec_state+0x1a6/0x630
[  216.467625][ T7598]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  216.467675][ T7598]  ? rcu_read_unlock+0x17/0x60
[  216.467723][ T7598]  ? folio_remove_rmap_pmd+0x69c/0xed0
[  216.467773][ T7598]  ? split_huge_pmd_locked+0x3ba/0x3cf0
[  216.467816][ T7598]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  216.467874][ T7598]  ? policy_nodemask+0xed/0x4f0
[  216.467911][ T7598]  alloc_pages_mpol+0x1fb/0x550
[  216.467945][ T7598]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  216.467975][ T7598]  ? __split_huge_pmd+0x203/0x350
[  216.468015][ T7598]  ? __split_huge_pmd+0x203/0x350
[  216.468073][ T7598]  alloc_pages_noprof+0x131/0x390
[  216.468109][ T7598]  pte_alloc_one+0x1e/0x3e0
[  216.468149][ T7598]  __pte_alloc+0x6d/0x3f0
[  216.468179][ T7598]  ? __pfx___pte_alloc+0x10/0x10
[  216.468210][ T7598]  ? _raw_spin_unlock+0x28/0x50
[  216.468241][ T7598]  ? __pmd_alloc+0x6aa/0x9c0
[  216.468280][ T7598]  move_page_tables+0x257e/0x4500
[  216.468332][ T7598]  ? __pfx_copy_vma+0x10/0x10
[  216.468395][ T7598]  ? __pfx_move_page_tables+0x10/0x10
[  216.468473][ T7598]  copy_vma_and_data+0x25c/0x7c0
[  216.468526][ T7598]  ? __pfx_copy_vma_and_data+0x10/0x10
[  216.468589][ T7598]  ? __vma_start_write+0x17f/0x280
[  216.468631][ T7598]  ? __pfx___vma_start_write+0x10/0x10
[  216.468684][ T7598]  move_vma+0x51b/0x1890
[  216.468736][ T7598]  ? __pfx_move_vma+0x10/0x10
[  216.468786][ T7598]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[  216.468824][ T7598]  ? cap_mmap_addr+0x4b/0x120
[  216.468866][ T7598]  ? bpf_lsm_mmap_addr+0x9/0x30
[  216.468915][ T7598]  ? security_mmap_addr+0x71/0x1e0
[  216.468947][ T7598]  ? __get_unmapped_area+0x255/0x3e0
[  216.468986][ T7598]  ? vrm_set_new_addr+0x204/0x290
[  216.469034][ T7598]  mremap_to+0x1b7/0x450
[  216.469089][ T7598]  do_mremap+0xb76/0x2130
[  216.469155][ T7598]  ? __pfx_do_mremap+0x10/0x10
[  216.469212][ T7598]  ? ksys_write+0x190/0x250
[  216.469276][ T7598]  __do_sys_mremap+0x126/0x170
[  216.469324][ T7598]  ? __pfx___do_sys_mremap+0x10/0x10
[  216.469383][ T7598]  ? __x64_sys_futex+0x34f/0x4d0
[  216.469453][ T7598]  do_syscall_64+0x106/0xf80
[  216.469491][ T7598]  ? clear_bhb_loop+0x40/0x90
[  216.469532][ T7598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.469567][ T7598] RIP: 0033:0x7f874e79c629
[  216.469596][ T7598] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  216.469628][ T7598] RSP: 002b:00007f874f630028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  216.469662][ T7598] RAX: ffffffffffffffda RBX: 00007f874ea15fa0 RCX: 00007f874e79c629
[  216.469684][ T7598] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000
[  216.469704][ T7598] RBP: 00007f874e832b39 R08: 0000000100000000 R09: 0000000000000000
[  216.469724][ T7598] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  216.469743][ T7598] R13: 00007f874ea16038 R14: 00007f874ea15fa0 R15: 00007ffcf8e4d358
[  216.469787][ T7598]  </TASK>
[  217.266692][ T5830] Bluetooth: hci1: command 0x0406 tx timeout
[  217.273058][ T5839] Bluetooth: hci2: command 0x0406 tx timeout
[  217.282401][ T5834] Bluetooth: hci3: command 0x0406 tx timeout
[  218.020185][ T7619] netlink: 28 bytes leftover after parsing attributes in process `syz.2.327'.
[  218.092893][ T7619] hsr_slave_0: left promiscuous mode
[  218.161575][ T7619] hsr_slave_1: left promiscuous mode
[  220.044075][ T7629] block nbd8: shutting down sockets
[  221.587060][ T7670] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4294967104 (549755789312 ns) > initial count (26496 ns). Using initial count to start timer.
[  224.077102][ T7685] block nbd8: shutting down sockets
[  224.657339][ T7694] netlink: 342 bytes leftover after parsing attributes in process `syz.2.336'.
[  224.954871][ T7698] netlink: 28 bytes leftover after parsing attributes in process `syz.3.337'.
[  225.083015][ T7698] hsr_slave_0: left promiscuous mode
[  225.203907][ T7698] hsr_slave_1: left promiscuous mode
[  226.343280][ T7707] can: request_module (can-proto-3) failed.
[  228.105996][ T7728] FAULT_INJECTION: forcing a failure.
[  228.105996][ T7728] name failslab, interval 1, probability 0, space 0, times 0
[  228.276357][ T7728] CPU: 1 UID: 0 PID: 7728 Comm: syz.3.351 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  228.276413][ T7728] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  228.276425][ T7728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  228.276443][ T7728] Call Trace:
[  228.276454][ T7728]  <TASK>
[  228.276466][ T7728]  dump_stack_lvl+0x100/0x190
[  228.276521][ T7728]  should_fail_ex.cold+0x5/0xa
[  228.276558][ T7728]  ? __list_lru_init+0xd9/0x4b0
[  228.276601][ T7728]  should_failslab+0xc2/0x120
[  228.276634][ T7728]  __kmalloc_noprof+0xe0/0x850
[  228.276681][ T7728]  ? lockdep_init_map_type+0x5c/0x250
[  228.276731][ T7728]  __list_lru_init+0xd9/0x4b0
[  228.276779][ T7728]  alloc_super+0x8d8/0xd20
[  228.276830][ T7728]  ? __pfx_mqueue_fill_super+0x10/0x10
[  228.276874][ T7728]  sget_fc+0x117/0xc70
[  228.276921][ T7728]  ? __pfx_set_anon_super_fc+0x10/0x10
[  228.276955][ T7728]  ? __pfx_mqueue_fill_super+0x10/0x10
[  228.276990][ T7728]  get_tree_nodev+0x28/0x190
[  228.277027][ T7728]  mqueue_get_tree+0xf1/0x130
[  228.277056][ T7728]  vfs_get_tree+0x92/0x320
[  228.277087][ T7728]  fc_mount_longterm+0x1a/0x270
[  228.277122][ T7728]  mq_init_ns+0x482/0x820
[  228.277157][ T7728]  copy_ipcs+0x3dd/0x7e0
[  228.277193][ T7728]  create_new_namespaces+0x20a/0xac0
[  228.277220][ T7728]  ? security_capable+0x80/0x260
[  228.277255][ T7728]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  228.277283][ T7728]  ksys_unshare+0x473/0xad0
[  228.277314][ T7728]  ? __pfx_ksys_unshare+0x10/0x10
[  228.277428][ T7728]  __x64_sys_unshare+0x31/0x40
[  228.277478][ T7728]  do_syscall_64+0x106/0xf80
[  228.277514][ T7728]  ? clear_bhb_loop+0x40/0x90
[  228.277601][ T7728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.277634][ T7728] RIP: 0033:0x7fbb1699c629
[  228.277654][ T7728] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  228.277676][ T7728] RSP: 002b:00007fbb1787f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  228.277699][ T7728] RAX: ffffffffffffffda RBX: 00007fbb16c15fa0 RCX: 00007fbb1699c629
[  228.277715][ T7728] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000
[  228.277729][ T7728] RBP: 00007fbb16a32b39 R08: 0000000000000000 R09: 0000000000000000
[  228.277744][ T7728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  228.277758][ T7728] R13: 00007fbb16c16038 R14: 00007fbb16c15fa0 R15: 00007ffec160e438
[  228.277788][ T7728]  </TASK>
[  229.554663][ T7725] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE�r��҄y�*�"�l-���y–��
[  232.621872][ T7766] netlink: 28 bytes leftover after parsing attributes in process `syz.1.353'.
[  232.686003][ T7766] hsr_slave_0: left promiscuous mode
[  232.695939][ T7767] loop6: detected capacity change from 0 to 8192
[  232.697243][ T7766] hsr_slave_1: left promiscuous mode
[  232.921047][ T7771] netlink: 152 bytes leftover after parsing attributes in process `syz.3.354'.
[  232.999776][ T7771] openvswitch: netlink: Flow key attr not present in new flow.
[  233.763633][ T7785] netlink: 8 bytes leftover after parsing attributes in process `syz.3.356'.
[  234.189770][ T7790] vivid-003: =================  START STATUS  =================
[  234.225537][ T7790] vivid-003: Radio HW Seek Mode: Bounded
[  234.268134][ T7790] vivid-003: Radio Programmable HW Seek: false
[  234.275520][ T7790] vivid-003: RDS Rx I/O Mode: Block I/O
[  234.287242][ T7790] vivid-003: Generate RBDS Instead of RDS: false
[  234.305756][ T7790] vivid-003: RDS Reception: true
[  234.320987][ T7790] vivid-003: RDS Program Type: 0 inactive
[  234.337620][ T7790] vivid-003: RDS PS Name:  inactive
[  234.354229][ T7790] vivid-003: RDS Radio Text:  inactive
[  234.361521][ T7790] vivid-003: RDS Traffic Announcement: false inactive
[  234.372179][ T7790] vivid-003: RDS Traffic Program: false inactive
[  234.386659][ T7790] vivid-003: RDS Music: false inactive
[  234.403545][ T7790] vivid-003: ==================  END STATUS  ==================
[  236.212510][ T7811] netlink: 980 bytes leftover after parsing attributes in process `syz.2.363'.
[  236.751491][ T7808] hub 1-0:1.0: USB hub found
[  236.801094][ T7808] hub 1-0:1.0: 1 port detected
[  239.241998][ T7837] FAULT_INJECTION: forcing a failure.
[  239.241998][ T7837] name failslab, interval 1, probability 0, space 0, times 0
[  239.289591][ T7837] CPU: 0 UID: 0 PID: 7837 Comm: syz.4.368 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  239.289651][ T7837] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  239.289665][ T7837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  239.289684][ T7837] Call Trace:
[  239.289695][ T7837]  <TASK>
[  239.289708][ T7837]  dump_stack_lvl+0x100/0x190
[  239.289766][ T7837]  should_fail_ex.cold+0x5/0xa
[  239.289805][ T7837]  ? drm_atomic_state_init+0x190/0x490
[  239.289858][ T7837]  should_failslab+0xc2/0x120
[  239.289890][ T7837]  __kmalloc_noprof+0xe0/0x850
[  239.289946][ T7837]  drm_atomic_state_init+0x190/0x490
[  239.289999][ T7837]  ? kasan_save_track+0x14/0x30
[  239.290052][ T7837]  drm_atomic_state_alloc+0xd3/0x120
[  239.290107][ T7837]  drm_client_modeset_commit_atomic+0xcc/0x7e0
[  239.290148][ T7837]  ? trace_contention_end+0x140/0x180
[  239.290194][ T7837]  ? __mutex_lock+0x26a/0x1b90
[  239.290242][ T7837]  ? __mutex_lock+0x26a/0x1b90
[  239.290281][ T7837]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  239.290323][ T7837]  ? drm_master_internal_acquire+0x21/0x80
[  239.290399][ T7837]  drm_client_modeset_commit_locked+0x14d/0x580
[  239.290444][ T7837]  drm_client_modeset_commit+0x4f/0x80
[  239.290482][ T7837]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  239.290526][ T7837]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  239.290568][ T7837]  drm_fbdev_client_restore+0x1b/0x30
[  239.290618][ T7837]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  239.290669][ T7837]  drm_client_dev_restore+0x205/0x2a0
[  239.290714][ T7837]  drm_release+0x2c6/0x360
[  239.290747][ T7837]  ? __pfx_drm_release+0x10/0x10
[  239.290780][ T7837]  __fput+0x3ff/0xb40
[  239.290826][ T7837]  task_work_run+0x150/0x240
[  239.290876][ T7837]  ? __pfx_task_work_run+0x10/0x10
[  239.290937][ T7837]  exit_to_user_mode_loop+0x100/0x4a0
[  239.290986][ T7837]  do_syscall_64+0x668/0xf80
[  239.291029][ T7837]  ? clear_bhb_loop+0x40/0x90
[  239.291071][ T7837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.291105][ T7837] RIP: 0033:0x7f24aa39c629
[  239.291134][ T7837] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  239.291165][ T7837] RSP: 002b:00007f24ab255028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  239.291204][ T7837] RAX: 0000000000000000 RBX: 00007f24aa615fa0 RCX: 00007f24aa39c629
[  239.291224][ T7837] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  239.291243][ T7837] RBP: 00007f24aa432b39 R08: 0000000000000000 R09: 0000000000000000
[  239.291262][ T7837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  239.291281][ T7837] R13: 00007f24aa616038 R14: 00007f24aa615fa0 R15: 00007ffc6550e6c8
[  239.291325][ T7837]  </TASK>
[  241.304891][ T7866] netlink: 8 bytes leftover after parsing attributes in process `syz.1.377'.
[  245.370451][ T5146] Bluetooth: hci4: Malformed LE Event: 0x0b
[  246.785343][ T5146] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  246.785393][ T5146] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  246.800294][ T5146] Bluetooth: hci3: Dropping invalid advertising data
[  246.807122][ T5146] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  246.807163][ T5146] Bluetooth: hci3: Dropping invalid advertising data
[  246.821037][ T5146] Bluetooth: hci3: Malformed LE Event: 0x02
[  247.642173][ T7925] netlink: 326 bytes leftover after parsing attributes in process `syz.3.392'.
[  248.086426][ T5146] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  249.265140][ T7921] hub 1-0:1.0: USB hub found
[  249.292598][ T7921] hub 1-0:1.0: 1 port detected
[  249.704995][ T7949] netlink: 12 bytes leftover after parsing attributes in process `syz.4.396'.
[  250.320706][ T7957] vivid-003: =================  START STATUS  =================
[  250.381575][ T7957] vivid-003: Radio HW Seek Mode: Bounded
[  250.405312][ T7957] vivid-003: Radio Programmable HW Seek: false
[  250.471457][ T7957] vivid-003: RDS Rx I/O Mode: Block I/O
[  250.495592][ T7957] vivid-003: Generate RBDS Instead of RDS: false
[  250.560122][ T7957] vivid-003: RDS Reception: true
[  250.569396][ T7957] vivid-003: RDS Program Type: 0 inactive
[  250.594092][ T7957] vivid-003: RDS PS Name:  inactive
[  250.650018][ T7957] vivid-003: RDS Radio Text:  inactive
[  250.700445][ T7957] vivid-003: RDS Traffic Announcement: false inactive
[  250.731937][ T7957] vivid-003: RDS Traffic Program: false inactive
[  250.779048][ T7957] vivid-003: RDS Music: false inactive
[  250.808492][ T7957] vivid-003: ==================  END STATUS  ==================
[  252.326634][ T7975] netlink: 28 bytes leftover after parsing attributes in process `syz.2.402'.
[  253.460079][ T7986] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 700000007
[  255.556108][ T7983] can: request_module (can-proto-3) failed.
[  256.069656][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  256.076523][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  256.243334][ T8025] netlink: 28 bytes leftover after parsing attributes in process `syz.3.413'.
[  256.696290][ T8021] zswap: compressor  not available
[  260.790787][ T8055] netlink: 'syz.3.418': attribute type 15 has an invalid length.
[  260.874774][ T8055] netlink: 'syz.3.418': attribute type 16 has an invalid length.
[  260.954790][ T8055] netlink: 194 bytes leftover after parsing attributes in process `syz.3.418'.
[  261.771060][ T8067] can: request_module (can-proto-3) failed.
[  265.439153][ T8119] netlink: 8 bytes leftover after parsing attributes in process `syz.1.434'.
[  265.736812][ T8119] netlink: 4 bytes leftover after parsing attributes in process `syz.1.434'.
[  265.782922][ T8121] netlink: 25 bytes leftover after parsing attributes in process `syz.1.434'.
[  271.419914][ T8177] FAULT_INJECTION: forcing a failure.
[  271.419914][ T8177] name failslab, interval 1, probability 0, space 0, times 0
[  271.641811][ T8177] CPU: 1 UID: 0 PID: 8177 Comm: syz.1.447 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  271.641864][ T8177] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  271.641873][ T8177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  271.641891][ T8177] Call Trace:
[  271.641899][ T8177]  <TASK>
[  271.641913][ T8177]  dump_stack_lvl+0x100/0x190
[  271.641956][ T8177]  should_fail_ex.cold+0x5/0xa
[  271.641983][ T8177]  ? kernfs_fop_write_iter+0x26a/0x5f0
[  271.642006][ T8177]  should_failslab+0xc2/0x120
[  271.642029][ T8177]  __kmalloc_noprof+0xe0/0x850
[  271.642070][ T8177]  kernfs_fop_write_iter+0x26a/0x5f0
[  271.642097][ T8177]  vfs_write+0x6ac/0x1070
[  271.642134][ T8177]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  271.642159][ T8177]  ? __pfx_vfs_write+0x10/0x10
[  271.642214][ T8177]  ksys_write+0x12a/0x250
[  271.642258][ T8177]  ? __pfx_ksys_write+0x10/0x10
[  271.642303][ T8177]  do_syscall_64+0x106/0xf80
[  271.642330][ T8177]  ? clear_bhb_loop+0x40/0x90
[  271.642359][ T8177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.642384][ T8177] RIP: 0033:0x7f874e79c629
[  271.642404][ T8177] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  271.642427][ T8177] RSP: 002b:00007f874f630028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  271.642453][ T8177] RAX: ffffffffffffffda RBX: 00007f874ea15fa0 RCX: 00007f874e79c629
[  271.642469][ T8177] RDX: 0000000000080001 RSI: 00002000000003c0 RDI: 0000000000000005
[  271.642483][ T8177] RBP: 00007f874e832b39 R08: 0000000000000000 R09: 0000000000000000
[  271.642497][ T8177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  271.642511][ T8177] R13: 00007f874ea16038 R14: 00007f874ea15fa0 R15: 00007ffcf8e4d358
[  271.642542][ T8177]  </TASK>
[  273.776648][ T8198] FAULT_INJECTION: forcing a failure.
[  273.776648][ T8198] name failslab, interval 1, probability 0, space 0, times 0
[  273.820390][ T8198] CPU: 1 UID: 0 PID: 8198 Comm: syz.3.455 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  273.820446][ T8198] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  273.820459][ T8198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  273.820478][ T8198] Call Trace:
[  273.820488][ T8198]  <TASK>
[  273.820501][ T8198]  dump_stack_lvl+0x100/0x190
[  273.820558][ T8198]  should_fail_ex.cold+0x5/0xa
[  273.820595][ T8198]  ? process_vm_rw_core.constprop.0+0x1d7/0x950
[  273.820648][ T8198]  should_failslab+0xc2/0x120
[  273.820679][ T8198]  __kmalloc_noprof+0xe0/0x850
[  273.820726][ T8198]  ? find_held_lock+0x2b/0x80
[  273.820762][ T8198]  process_vm_rw_core.constprop.0+0x1d7/0x950
[  273.820818][ T8198]  ? futex_unqueue+0x13d/0x2c0
[  273.820870][ T8198]  ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10
[  273.820925][ T8198]  ? import_ubuf+0x1b6/0x220
[  273.821002][ T8198]  ? iovec_from_user+0xda/0x140
[  273.821060][ T8198]  process_vm_rw+0x226/0x2d0
[  273.821113][ T8198]  ? __pfx_process_vm_rw+0x10/0x10
[  273.821173][ T8198]  ? ksys_write+0x190/0x250
[  273.821259][ T8198]  ? xfd_validate_state+0x129/0x190
[  273.821314][ T8198]  __x64_sys_process_vm_readv+0xe2/0x1c0
[  273.821366][ T8198]  ? do_syscall_64+0x95/0xf80
[  273.821403][ T8198]  ? lockdep_hardirqs_on+0x78/0x100
[  273.821440][ T8198]  do_syscall_64+0x106/0xf80
[  273.821473][ T8198]  ? clear_bhb_loop+0x40/0x90
[  273.821514][ T8198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.821549][ T8198] RIP: 0033:0x7fbb1699c629
[  273.821576][ T8198] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  273.821608][ T8198] RSP: 002b:00007fbb1787f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  273.821640][ T8198] RAX: ffffffffffffffda RBX: 00007fbb16c15fa0 RCX: 00007fbb1699c629
[  273.821663][ T8198] RDX: 0000040000000001 RSI: 0000200000000000 RDI: 0000000000000000
[  273.821683][ T8198] RBP: 00007fbb16a32b39 R08: 0000000000000004 R09: 0000000000000000
[  273.821702][ T8198] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000000
[  273.821721][ T8198] R13: 00007fbb16c16038 R14: 00007fbb16c15fa0 R15: 00007ffec160e438
[  273.821762][ T8198]  </TASK>
[  274.400500][ T8206] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  276.786082][ T8231] FAULT_INJECTION: forcing a failure.
[  276.786082][ T8231] name failslab, interval 1, probability 0, space 0, times 0
[  276.799506][ T8231] CPU: 1 UID: 0 PID: 8231 Comm: syz.4.460 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  276.799572][ T8231] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  276.799585][ T8231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  276.799604][ T8231] Call Trace:
[  276.799614][ T8231]  <TASK>
[  276.799628][ T8231]  dump_stack_lvl+0x100/0x190
[  276.799684][ T8231]  should_fail_ex.cold+0x5/0xa
[  276.799723][ T8231]  should_failslab+0xc2/0x120
[  276.799757][ T8231]  __kmalloc_cache_noprof+0x7a/0x6f0
[  276.799798][ T8231]  ? vhost_vsock_dev_open+0x79/0x670
[  276.799848][ T8231]  ? __pfx_vhost_vsock_dev_open+0x10/0x10
[  276.799894][ T8231]  vhost_vsock_dev_open+0x79/0x670
[  276.799938][ T8231]  ? __pfx_vhost_vsock_dev_open+0x10/0x10
[  276.799984][ T8231]  misc_open+0x26d/0x450
[  276.800035][ T8231]  ? __pfx_misc_open+0x10/0x10
[  276.800086][ T8231]  chrdev_open+0x234/0x6a0
[  276.800116][ T8231]  ? __pfx_apparmor_file_open+0x10/0x10
[  276.800163][ T8231]  ? __pfx_chrdev_open+0x10/0x10
[  276.800197][ T8231]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  276.800259][ T8231]  do_dentry_open+0x6d8/0x1660
[  276.800312][ T8231]  ? __pfx_chrdev_open+0x10/0x10
[  276.800354][ T8231]  vfs_open+0x82/0x3f0
[  276.800399][ T8231]  path_openat+0x208c/0x31a0
[  276.800445][ T8231]  ? __pfx_path_openat+0x10/0x10
[  276.800492][ T8231]  do_file_open+0x20e/0x430
[  276.800535][ T8231]  ? __pfx_do_file_open+0x10/0x10
[  276.800599][ T8231]  ? alloc_fd+0x476/0x790
[  276.800656][ T8231]  ? do_getname+0x191/0x390
[  276.800699][ T8231]  do_sys_openat2+0x10d/0x1e0
[  276.800740][ T8231]  ? __pfx_do_sys_openat2+0x10/0x10
[  276.800797][ T8231]  __x64_sys_openat+0x12d/0x210
[  276.800840][ T8231]  ? __pfx___x64_sys_openat+0x10/0x10
[  276.800899][ T8231]  do_syscall_64+0x106/0xf80
[  276.800936][ T8231]  ? clear_bhb_loop+0x40/0x90
[  276.800978][ T8231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.801014][ T8231] RIP: 0033:0x7f24aa39c629
[  276.801041][ T8231] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  276.801073][ T8231] RSP: 002b:00007f24ab255028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  276.801105][ T8231] RAX: ffffffffffffffda RBX: 00007f24aa615fa0 RCX: 00007f24aa39c629
[  276.801135][ T8231] RDX: 0000000000141000 RSI: 0000200000000300 RDI: ffffffffffffff9c
[  276.801157][ T8231] RBP: 00007f24aa432b39 R08: 0000000000000000 R09: 0000000000000000
[  276.801177][ T8231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  276.801197][ T8231] R13: 00007f24aa616038 R14: 00007f24aa615fa0 R15: 00007ffc6550e6c8
[  276.801241][ T8231]  </TASK>
[  278.225501][ T8242] blktrace: Concurrent blktraces are not allowed on loop2
[  280.722796][ T8258] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  280.755916][ T8258] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  280.764525][ T8258] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  280.864756][ T8258] page_type: f5(slab)
[  280.868910][ T8258] raw: 00fff00000000040 ffff8881404bfb40 dead000000000100 dead000000000122
[  280.914855][ T8258] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  280.924166][ T8258] head: 00fff00000000040 ffff8881404bfb40 dead000000000100 dead000000000122
[  281.011517][ T8258] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  281.030568][ T8258] head: 00fff00000000002 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  281.077190][ T8258] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  281.105520][ T8258] page dumped because: unmovable page
[  281.130465][ T8258] page_owner tracks the page as allocated
[  281.164902][ T8258] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 59, tgid 59 (kworker/u8:4), ts 255145793633, free_ts 99267022173
[  281.217360][ T8258]  post_alloc_hook+0x153/0x170
[  281.238422][ T8258]  get_page_from_freelist+0x111d/0x3140
[  281.278595][ T8258]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  281.316080][ T8258]  alloc_pages_mpol+0x1fb/0x550
[  281.354514][ T8258]  new_slab+0x43a/0x6d0
[  281.367092][ T8258]  ___slab_alloc+0x2a0/0x850
[  281.385494][ T8258]  kmem_cache_alloc_node_noprof+0x349/0x6f0
[  281.397535][ T8258]  kmalloc_reserve+0x148/0x350
[  281.408824][ T8258]  __alloc_skb+0x185/0x710
[  281.434467][ T8258]  skb_copy+0x1ca/0x3a0
[  281.438753][ T8258]  mac80211_hwsim_tx_frame_no_nl.isra.0+0xbf6/0x1370
[  281.447652][ T8258]  mac80211_hwsim_tx_frame+0x1f6/0x2a0
[  281.499216][ T8258]  mac80211_hwsim_beacon_tx+0x57e/0xa00
[  281.531743][ T8258]  __iterate_interfaces+0x2e6/0x650
[  281.552507][ T8258]  ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0
[  281.568346][ T8258]  mac80211_hwsim_beacon+0x105/0x1b0
[  281.573815][ T8258] page last free pid 49 tgid 49 stack trace:
[  281.581344][ T8258]  __free_frozen_pages+0x7e1/0x10d0
[  281.587378][ T8258]  qlist_free_all+0x47/0xe0
[  281.592746][ T8258]  kasan_quarantine_reduce+0x1a0/0x1f0
[  281.608681][ T8258]  __kasan_slab_alloc+0x69/0x90
[  281.616141][ T8258]  kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  281.636807][ T8258]  __alloc_skb+0x140/0x710
[  281.653212][ T8258]  mpls_netconf_notify_devconf+0x4a/0x100
[  281.674812][ T8258]  mpls_dev_notify+0x6ce/0x920
[  281.691137][ T8258]  notifier_call_chain+0x99/0x420
[  281.703320][ T8258]  call_netdevice_notifiers_info+0xbe/0x110
[  281.724789][ T8258]  unregister_netdevice_many_notify+0x1208/0x2580
[  281.738005][ T8258]  ops_undo_list+0x8ff/0xab0
[  281.752535][ T8258]  cleanup_net+0x499/0x920
[  281.781092][ T8258]  process_one_work+0x9d7/0x1920
[  281.818991][ T8258]  worker_thread+0x5da/0xe40
[  281.823697][ T8258]  kthread+0x370/0x450
[  281.891627][ T8261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  281.914217][ T8261] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  281.922812][ T8261] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  281.932796][ T8261] page_type: f5(slab)
[  281.944618][ T8261] raw: 00fff00000000040 ffff8881404bfb40 dead000000000100 dead000000000122
[  281.958472][ T8261] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  282.064179][ T8261] head: 00fff00000000040 ffff8881404bfb40 dead000000000100 dead000000000122
[  282.072961][ T8261] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  282.134543][ T8261] head: 00fff00000000002 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  282.143320][ T8261] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  282.201068][ T8261] page dumped because: unmovable page
[  282.216195][ T8261] page_owner tracks the page as allocated
[  282.221998][ T8261] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 59, tgid 59 (kworker/u8:4), ts 255145793633, free_ts 99267022173
[  282.346854][ T8271] program syz.3.469 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  282.354142][ T8261]  post_alloc_hook+0x153/0x170
[  282.360949][ T8261]  get_page_from_freelist+0x111d/0x3140
[  282.404014][ T8261]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  282.410032][ T8261]  alloc_pages_mpol+0x1fb/0x550
[  282.453913][ T8261]  new_slab+0x43a/0x6d0
[  282.458194][ T8261]  ___slab_alloc+0x2a0/0x850
[  282.462865][ T8261]  kmem_cache_alloc_node_noprof+0x349/0x6f0
[  282.513906][ T8261]  kmalloc_reserve+0x148/0x350
[  282.525900][ T8261]  __alloc_skb+0x185/0x710
[  282.530437][ T8261]  skb_copy+0x1ca/0x3a0
[  282.550247][ T8261]  mac80211_hwsim_tx_frame_no_nl.isra.0+0xbf6/0x1370
[  282.576932][ T8261]  mac80211_hwsim_tx_frame+0x1f6/0x2a0
[  282.584953][ T8261]  mac80211_hwsim_beacon_tx+0x57e/0xa00
[  282.610127][ T8261]  __iterate_interfaces+0x2e6/0x650
[  282.631862][ T8261]  ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0
[  282.656085][ T8261]  mac80211_hwsim_beacon+0x105/0x1b0
[  282.692248][ T8261] page last free pid 49 tgid 49 stack trace:
[  282.733849][ T8261]  __free_frozen_pages+0x7e1/0x10d0
[  282.739280][ T8261]  qlist_free_all+0x47/0xe0
[  282.753842][ T8261]  kasan_quarantine_reduce+0x1a0/0x1f0
[  282.783814][ T8261]  __kasan_slab_alloc+0x69/0x90
[  282.788886][ T8261]  kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  282.864159][ T8261]  __alloc_skb+0x140/0x710
[  282.868709][ T8261]  mpls_netconf_notify_devconf+0x4a/0x100
[  282.926067][ T8261]  mpls_dev_notify+0x6ce/0x920
[  282.939058][ T8261]  notifier_call_chain+0x99/0x420
[  282.945436][ T8261]  call_netdevice_notifiers_info+0xbe/0x110
[  282.951490][ T8261]  unregister_netdevice_many_notify+0x1208/0x2580
[  282.960102][ T8261]  ops_undo_list+0x8ff/0xab0
[  282.966103][ T8261]  cleanup_net+0x499/0x920
[  282.970724][ T8261]  process_one_work+0x9d7/0x1920
[  282.976255][ T8261]  worker_thread+0x5da/0xe40
[  282.983220][ T8261]  kthread+0x370/0x450
[  283.469526][ T8279] netlink: 24 bytes leftover after parsing attributes in process `syz.4.470'.
[  283.734984][ T5146] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[  283.735027][ T5146] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260
[  283.753422][ T5146] Bluetooth: hci4: Unknown advertising packet type: 0x7f
[  283.753480][ T5146] Bluetooth: hci4: adv larger than maximum supported
[  283.762006][ T5146] Bluetooth: hci4: adv larger than maximum supported
[  283.768973][ T5146] Bluetooth: hci4: Malformed LE Event: 0x0d
[  284.604373][ T8285] netlink: 342 bytes leftover after parsing attributes in process `syz.3.471'.
[  288.430152][ T8327] program syz.4.481 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  290.179668][ T8330] netlink: 40 bytes leftover after parsing attributes in process `syz.3.483'.
[  290.498107][ T8342] netlink: 342 bytes leftover after parsing attributes in process `syz.4.484'.
[  292.061519][ T8361] netlink: 28 bytes leftover after parsing attributes in process `syz.2.490'.
[  293.522017][ T8365] bond0: invalid ARP target specified
[  294.292478][ T8382] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  294.328270][ T8382] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  294.418237][ T8382] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  294.425883][ T8382] page_type: f5(slab)
[  294.608014][ T8382] raw: 00fff00000000040 ffff8881404bfb40 dead000000000100 dead000000000122
[  294.677982][ T8382] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  294.718921][ T8382] head: 00fff00000000040 ffff8881404bfb40 dead000000000100 dead000000000122
[  294.758200][ T8382] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  294.780949][ T8382] head: 00fff00000000002 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  294.789900][ T8382] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  294.828008][ T8382] page dumped because: unmovable page
[  294.898515][ T8382] page_owner tracks the page as allocated
[  294.904308][ T8382] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 59, tgid 59 (kworker/u8:4), ts 255145793633, free_ts 99267022173
[  295.024775][ T8382]  post_alloc_hook+0x153/0x170
[  295.057995][ T8382]  get_page_from_freelist+0x111d/0x3140
[  295.073085][ T8382]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  295.083230][ T8382]  alloc_pages_mpol+0x1fb/0x550
[  295.092424][ T8382]  new_slab+0x43a/0x6d0
[  295.099174][ T8382]  ___slab_alloc+0x2a0/0x850
[  295.109728][ T8382]  kmem_cache_alloc_node_noprof+0x349/0x6f0
[  295.157618][ T8382]  kmalloc_reserve+0x148/0x350
[  295.189144][ T8382]  __alloc_skb+0x185/0x710
[  295.193688][ T8382]  skb_copy+0x1ca/0x3a0
[  295.211546][ T8382]  mac80211_hwsim_tx_frame_no_nl.isra.0+0xbf6/0x1370
[  295.225027][ T8382]  mac80211_hwsim_tx_frame+0x1f6/0x2a0
[  295.291606][ T8382]  mac80211_hwsim_beacon_tx+0x57e/0xa00
[  295.297236][ T8382]  __iterate_interfaces+0x2e6/0x650
[  295.367936][ T8382]  ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0
[  295.376189][ T8382]  mac80211_hwsim_beacon+0x105/0x1b0
[  295.437505][ T8382] page last free pid 49 tgid 49 stack trace:
[  295.443714][ T8382]  __free_frozen_pages+0x7e1/0x10d0
[  295.457969][ T8382]  qlist_free_all+0x47/0xe0
[  295.462604][ T8382]  kasan_quarantine_reduce+0x1a0/0x1f0
[  295.476090][ T8382]  __kasan_slab_alloc+0x69/0x90
[  295.533425][ T8382]  kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  295.599426][ T8382]  __alloc_skb+0x140/0x710
[  295.661119][ T8382]  mpls_netconf_notify_devconf+0x4a/0x100
[  295.688475][ T8382]  mpls_dev_notify+0x6ce/0x920
[  295.710157][ T8382]  notifier_call_chain+0x99/0x420
[  295.737493][ T8382]  call_netdevice_notifiers_info+0xbe/0x110
[  295.760329][ T8382]  unregister_netdevice_many_notify+0x1208/0x2580
[  295.807490][ T8382]  ops_undo_list+0x8ff/0xab0
[  295.817517][ T8382]  cleanup_net+0x499/0x920
[  295.822057][ T8382]  process_one_work+0x9d7/0x1920
[  295.850427][ T8382]  worker_thread+0x5da/0xe40
[  295.855207][ T8382]  kthread+0x370/0x450
[  296.007297][ T8389] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  296.099538][ T8389] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  296.213287][ T8389] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  296.361856][ T8389] page_type: f5(slab)
[  296.365965][ T8389] raw: 00fff00000000040 ffff8881404bfb40 dead000000000100 dead000000000122
[  296.437959][ T8389] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  296.462776][ T8389] head: 00fff00000000040 ffff8881404bfb40 dead000000000100 dead000000000122
[  296.507120][ T8389] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  296.515904][ T8389] head: 00fff00000000002 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  296.535009][ T8389] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  296.619034][ T8389] page dumped because: unmovable page
[  296.652368][ T8389] page_owner tracks the page as allocated
[  296.689267][ T8389] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 59, tgid 59 (kworker/u8:4), ts 255145793633, free_ts 99267022173
[  296.816844][ T8389]  post_alloc_hook+0x153/0x170
[  296.821749][ T8389]  get_page_from_freelist+0x111d/0x3140
[  296.886813][ T8389]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  296.892835][ T8389]  alloc_pages_mpol+0x1fb/0x550
[  296.920780][ T8389]  new_slab+0x43a/0x6d0
[  296.925051][ T8389]  ___slab_alloc+0x2a0/0x850
[  296.962657][ T8389]  kmem_cache_alloc_node_noprof+0x349/0x6f0
[  296.981639][ T8389]  kmalloc_reserve+0x148/0x350
[  297.016708][ T8389]  __alloc_skb+0x185/0x710
[  297.026771][ T8389]  skb_copy+0x1ca/0x3a0
[  297.047062][ T8389]  mac80211_hwsim_tx_frame_no_nl.isra.0+0xbf6/0x1370
[  297.080535][ T8389]  mac80211_hwsim_tx_frame+0x1f6/0x2a0
[  297.119568][ T8389]  mac80211_hwsim_beacon_tx+0x57e/0xa00
[  297.125239][ T8389]  __iterate_interfaces+0x2e6/0x650
[  297.170293][ T8389]  ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0
[  297.212794][ T8389]  mac80211_hwsim_beacon+0x105/0x1b0
[  297.228579][ T8389] page last free pid 49 tgid 49 stack trace:
[  297.234798][ T8389]  __free_frozen_pages+0x7e1/0x10d0
[  297.240812][ T8389]  qlist_free_all+0x47/0xe0
[  297.245417][ T8389]  kasan_quarantine_reduce+0x1a0/0x1f0
[  297.286509][ T8389]  __kasan_slab_alloc+0x69/0x90
[  297.291483][ T8389]  kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  297.360090][ T8389]  __alloc_skb+0x140/0x710
[  297.387658][ T8389]  mpls_netconf_notify_devconf+0x4a/0x100
[  297.393554][ T8389]  mpls_dev_notify+0x6ce/0x920
[  297.436894][ T8389]  notifier_call_chain+0x99/0x420
[  297.442044][ T8389]  call_netdevice_notifiers_info+0xbe/0x110
[  297.488447][ T8389]  unregister_netdevice_many_notify+0x1208/0x2580
[  297.494991][ T8389]  ops_undo_list+0x8ff/0xab0
[  297.529427][ T8389]  cleanup_net+0x499/0x920
[  297.534021][ T8389]  process_one_work+0x9d7/0x1920
[  297.539694][ T8389]  worker_thread+0x5da/0xe40
[  297.544384][ T8389]  kthread+0x370/0x450
[  297.954866][ T8395] netlink: 40 bytes leftover after parsing attributes in process `syz.4.495'.
[  299.076056][ T5829] Bluetooth: hci4: command 0x0406 tx timeout
[  300.196807][ T8423] netlink: 28 bytes leftover after parsing attributes in process `syz.3.503'.
[  300.229365][ T8424] netlink: 28 bytes leftover after parsing attributes in process `syz.1.501'.
[  301.782194][ T8445] netlink: 186 bytes leftover after parsing attributes in process `syz.4.507'.
[  304.135988][ T8455] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  304.343088][ T8455] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  304.533761][ T8455] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  304.604589][ T8455] page_type: f5(slab)
[  304.608702][ T8455] raw: 00fff00000000040 ffff8881404bfb40 dead000000000100 dead000000000122
[  304.903454][ T8455] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  304.984592][ T8455] head: 00fff00000000040 ffff8881404bfb40 dead000000000100 dead000000000122
[  305.053483][ T8455] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  305.062289][ T8455] head: 00fff00000000002 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  305.182675][ T8455] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  305.263323][ T8455] page dumped because: unmovable page
[  305.268800][ T8455] page_owner tracks the page as allocated
[  305.455200][ T8455] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 59, tgid 59 (kworker/u8:4), ts 255145793633, free_ts 99267022173
[  305.552575][ T8455]  post_alloc_hook+0x153/0x170
[  305.557465][ T8455]  get_page_from_freelist+0x111d/0x3140
[  305.604511][ T8455]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  305.632842][ T8455]  alloc_pages_mpol+0x1fb/0x550
[  305.637807][ T8455]  new_slab+0x43a/0x6d0
[  305.642043][ T8455]  ___slab_alloc+0x2a0/0x850
[  305.702419][ T8455]  kmem_cache_alloc_node_noprof+0x349/0x6f0
[  305.709912][ T8455]  kmalloc_reserve+0x148/0x350
[  305.762376][ T8455]  __alloc_skb+0x185/0x710
[  305.766933][ T8455]  skb_copy+0x1ca/0x3a0
[  305.771152][ T8455]  mac80211_hwsim_tx_frame_no_nl.isra.0+0xbf6/0x1370
[  305.832325][ T8455]  mac80211_hwsim_tx_frame+0x1f6/0x2a0
[  305.837916][ T8455]  mac80211_hwsim_beacon_tx+0x57e/0xa00
[  305.872400][ T8455]  __iterate_interfaces+0x2e6/0x650
[  305.877731][ T8455]  ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0
[  305.974024][ T8455]  mac80211_hwsim_beacon+0x105/0x1b0
[  305.979442][ T8455] page last free pid 49 tgid 49 stack trace:
[  306.062221][ T8455]  __free_frozen_pages+0x7e1/0x10d0
[  306.067539][ T8455]  qlist_free_all+0x47/0xe0
[  306.125636][ T8455]  kasan_quarantine_reduce+0x1a0/0x1f0
[  306.134831][ T8455]  __kasan_slab_alloc+0x69/0x90
[  306.202140][ T8455]  kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  306.212442][ T8455]  __alloc_skb+0x140/0x710
[  306.218495][ T8455]  mpls_netconf_notify_devconf+0x4a/0x100
[  306.282584][ T8455]  mpls_dev_notify+0x6ce/0x920
[  306.287472][ T8455]  notifier_call_chain+0x99/0x420
[  306.326171][ T8455]  call_netdevice_notifiers_info+0xbe/0x110
[  306.345383][ T8455]  unregister_netdevice_many_notify+0x1208/0x2580
[  306.375616][ T8455]  ops_undo_list+0x8ff/0xab0
[  306.380330][ T8455]  cleanup_net+0x499/0x920
[  306.444271][ T8455]  process_one_work+0x9d7/0x1920
[  306.449350][ T8455]  worker_thread+0x5da/0xe40
[  306.541962][ T8455]  kthread+0x370/0x450
[  306.693518][ T8457] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  306.739092][ T8457] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  306.818758][ T8457] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  306.886073][ T8457] page_type: f5(slab)
[  306.912074][ T8457] raw: 00fff00000000040 ffff8881404bfb40 dead000000000100 dead000000000122
[  306.951810][ T8457] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  306.972055][ T8457] head: 00fff00000000040 ffff8881404bfb40 dead000000000100 dead000000000122
[  307.068327][ T8457] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  307.171706][ T8457] head: 00fff00000000002 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  307.180493][ T8457] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  307.291522][ T8457] page dumped because: unmovable page
[  307.296993][ T8457] page_owner tracks the page as allocated
[  307.401779][ T8457] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 59, tgid 59 (kworker/u8:4), ts 255145793633, free_ts 99267022173
[  307.564625][ T8457]  post_alloc_hook+0x153/0x170
[  307.569770][ T8457]  get_page_from_freelist+0x111d/0x3140
[  307.601372][ T8457]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  307.607410][ T8457]  alloc_pages_mpol+0x1fb/0x550
[  307.701298][ T8457]  new_slab+0x43a/0x6d0
[  307.705572][ T8457]  ___slab_alloc+0x2a0/0x850
[  307.710241][ T8457]  kmem_cache_alloc_node_noprof+0x349/0x6f0
[  307.783058][ T8457]  kmalloc_reserve+0x148/0x350
[  307.801369][ T8457]  __alloc_skb+0x185/0x710
[  307.805902][ T8457]  skb_copy+0x1ca/0x3a0
[  307.810138][ T8457]  mac80211_hwsim_tx_frame_no_nl.isra.0+0xbf6/0x1370
[  307.891398][ T8457]  mac80211_hwsim_tx_frame+0x1f6/0x2a0
[  307.896991][ T8457]  mac80211_hwsim_beacon_tx+0x57e/0xa00
[  307.966508][ T8457]  __iterate_interfaces+0x2e6/0x650
[  308.051642][ T8457]  ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0
[  308.060391][ T8457]  mac80211_hwsim_beacon+0x105/0x1b0
[  308.163089][ T8457] page last free pid 49 tgid 49 stack trace:
[  308.169169][ T8457]  __free_frozen_pages+0x7e1/0x10d0
[  308.268302][ T8457]  qlist_free_all+0x47/0xe0
[  308.284161][ T8457]  kasan_quarantine_reduce+0x1a0/0x1f0
[  308.289752][ T8457]  __kasan_slab_alloc+0x69/0x90
[  308.360993][ T8457]  kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  308.391574][ T8457]  __alloc_skb+0x140/0x710
[  308.396163][ T8457]  mpls_netconf_notify_devconf+0x4a/0x100
[  308.441290][ T8457]  mpls_dev_notify+0x6ce/0x920
[  308.446232][ T8457]  notifier_call_chain+0x99/0x420
[  308.511389][ T8457]  call_netdevice_notifiers_info+0xbe/0x110
[  308.517431][ T8457]  unregister_netdevice_many_notify+0x1208/0x2580
[  308.591399][ T8457]  ops_undo_list+0x8ff/0xab0
[  308.596102][ T8457]  cleanup_net+0x499/0x920
[  308.600585][ T8457]  process_one_work+0x9d7/0x1920
[  308.675548][ T8457]  worker_thread+0x5da/0xe40
[  308.680374][ T8457]  kthread+0x370/0x450
[  309.679446][ T8469] FAULT_INJECTION: forcing a failure.
[  309.679446][ T8469] name failslab, interval 1, probability 0, space 0, times 0
[  309.790316][ T8469] CPU: 1 UID: 0 PID: 8469 Comm: syz.3.513 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  309.790373][ T8469] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  309.790385][ T8469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  309.790404][ T8469] Call Trace:
[  309.790415][ T8469]  <TASK>
[  309.790427][ T8469]  dump_stack_lvl+0x100/0x190
[  309.790481][ T8469]  should_fail_ex.cold+0x5/0xa
[  309.790525][ T8469]  ? tomoyo_encode2+0xfb/0x3c0
[  309.790557][ T8469]  should_failslab+0xc2/0x120
[  309.790589][ T8469]  __kmalloc_noprof+0xe0/0x850
[  309.790635][ T8469]  ? d_absolute_path+0x136/0x1b0
[  309.790685][ T8469]  tomoyo_encode2+0xfb/0x3c0
[  309.790737][ T8469]  tomoyo_encode+0x29/0x50
[  309.790769][ T8469]  tomoyo_realpath_from_path+0x18c/0x690
[  309.790815][ T8469]  tomoyo_check_open_permission+0x2af/0x3c0
[  309.790870][ T8469]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  309.790967][ T8469]  ? do_raw_spin_lock+0x128/0x260
[  309.791018][ T8469]  ? path_get+0x61/0x80
[  309.791057][ T8469]  tomoyo_file_open+0x6b/0x90
[  309.791100][ T8469]  security_file_open+0xb5/0x1e0
[  309.791132][ T8469]  do_dentry_open+0x5aa/0x1660
[  309.791194][ T8469]  ? security_inode_permission+0xbf/0x250
[  309.791252][ T8469]  vfs_open+0x82/0x3f0
[  309.791296][ T8469]  path_openat+0x208c/0x31a0
[  309.791342][ T8469]  ? __pfx_path_openat+0x10/0x10
[  309.791390][ T8469]  do_file_open+0x20e/0x430
[  309.791425][ T8469]  ? __pfx_do_file_open+0x10/0x10
[  309.791491][ T8469]  ? alloc_fd+0x476/0x790
[  309.791549][ T8469]  ? do_getname+0x191/0x390
[  309.791592][ T8469]  do_sys_openat2+0x10d/0x1e0
[  309.791635][ T8469]  ? __pfx_do_sys_openat2+0x10/0x10
[  309.791692][ T8469]  __x64_sys_openat+0x12d/0x210
[  309.791741][ T8469]  ? __pfx___x64_sys_openat+0x10/0x10
[  309.791801][ T8469]  do_syscall_64+0x106/0xf80
[  309.791838][ T8469]  ? clear_bhb_loop+0x40/0x90
[  309.791879][ T8469]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.791913][ T8469] RIP: 0033:0x7fbb1699c629
[  309.791941][ T8469] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  309.791973][ T8469] RSP: 002b:00007fbb1787f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  309.792004][ T8469] RAX: ffffffffffffffda RBX: 00007fbb16c15fa0 RCX: 00007fbb1699c629
[  309.792026][ T8469] RDX: 0000000000141000 RSI: 0000200000000300 RDI: ffffffffffffff9c
[  309.792048][ T8469] RBP: 00007fbb16a32b39 R08: 0000000000000000 R09: 0000000000000000
[  309.792067][ T8469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  309.792087][ T8469] R13: 00007fbb16c16038 R14: 00007fbb16c15fa0 R15: 00007ffec160e438
[  309.792132][ T8469]  </TASK>
[  310.070533][ T8469] ERROR: Out of memory at tomoyo_realpath_from_path.
[  311.041071][ T8481] netlink: 28 bytes leftover after parsing attributes in process `syz.2.514'.
[  313.840845][ T8506] misc userio: Invalid payload size
[  314.932982][ T8519] netlink: 28 bytes leftover after parsing attributes in process `syz.2.527'.
[  317.474344][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  317.481472][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  320.124657][ T8553] syz.3.543 (8553): attempted to duplicate a private mapping with mremap.  This is not supported.
[  320.265783][ T8558] FAULT_INJECTION: forcing a failure.
[  320.265783][ T8558] name failslab, interval 1, probability 0, space 0, times 0
[  320.559460][ T8558] CPU: 1 UID: 0 PID: 8558 Comm: syz.4.534 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  320.559518][ T8558] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  320.559530][ T8558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  320.559548][ T8558] Call Trace:
[  320.559559][ T8558]  <TASK>
[  320.559571][ T8558]  dump_stack_lvl+0x100/0x190
[  320.559628][ T8558]  should_fail_ex.cold+0x5/0xa
[  320.559667][ T8558]  ? process_vm_rw_core.constprop.0+0x1d7/0x950
[  320.559716][ T8558]  should_failslab+0xc2/0x120
[  320.559747][ T8558]  __kmalloc_noprof+0xe0/0x850
[  320.559802][ T8558]  ? find_held_lock+0x2b/0x80
[  320.559845][ T8558]  process_vm_rw_core.constprop.0+0x1d7/0x950
[  320.559887][ T8558]  ? futex_unqueue+0x13d/0x2c0
[  320.559923][ T8558]  ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10
[  320.559963][ T8558]  ? import_ubuf+0x1b6/0x220
[  320.560010][ T8558]  ? iovec_from_user+0xda/0x140
[  320.560050][ T8558]  process_vm_rw+0x226/0x2d0
[  320.560089][ T8558]  ? __pfx_process_vm_rw+0x10/0x10
[  320.560131][ T8558]  ? ksys_write+0x190/0x250
[  320.560191][ T8558]  ? xfd_validate_state+0x129/0x190
[  320.560231][ T8558]  __x64_sys_process_vm_readv+0xe2/0x1c0
[  320.560267][ T8558]  ? do_syscall_64+0x95/0xf80
[  320.560293][ T8558]  ? lockdep_hardirqs_on+0x78/0x100
[  320.560318][ T8558]  do_syscall_64+0x106/0xf80
[  320.560343][ T8558]  ? clear_bhb_loop+0x40/0x90
[  320.560372][ T8558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.560396][ T8558] RIP: 0033:0x7f24aa39c629
[  320.560416][ T8558] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  320.560438][ T8558] RSP: 002b:00007f24ab255028 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  320.560460][ T8558] RAX: ffffffffffffffda RBX: 00007f24aa615fa0 RCX: 00007f24aa39c629
[  320.560475][ T8558] RDX: 0000040000000001 RSI: 0000200000000000 RDI: 0000000000000000
[  320.560490][ T8558] RBP: 00007f24aa432b39 R08: 0000000000000004 R09: 0000000000000000
[  320.560504][ T8558] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000000
[  320.560518][ T8558] R13: 00007f24aa616038 R14: 00007f24aa615fa0 R15: 00007ffc6550e6c8
[  320.560548][ T8558]  </TASK>
[  325.943679][ T8606] Invalid ELF header magic: != ELF
��I��jn����9�_U���VQ8��j@:Un M��%U�x�0
	[  335.737662][ T8668] ==================================================================
[  335.737690][ T8668] BUG: KASAN: slab-out-of-bounds in do_con_write+0x386f/0x8540
[  335.737740][ T8668] Write of size 2 at addr ffff888037925fb0 by task syz.2.556/8668
[  335.737767][ T8668] 
[  335.737786][ T8668] CPU: 1 UID: 0 PID: 8668 Comm: syz.2.556 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  335.737834][ T8668] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  335.737846][ T8668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  335.737865][ T8668] Call Trace:
[  335.737875][ T8668]  <TASK>
[  335.737887][ T8668]  dump_stack_lvl+0x100/0x190
[  335.737937][ T8668]  print_report+0x156/0x4c9
[  335.737983][ T8668]  ? __virt_addr_valid+0x81/0x620
[  335.738024][ T8668]  ? __phys_addr+0xe8/0x180
[  335.738066][ T8668]  ? do_con_write+0x386f/0x8540
[  335.738102][ T8668]  kasan_report+0xdf/0x1e0
[  335.738133][ T8668]  ? do_con_write+0x386f/0x8540
[  335.738185][ T8668]  do_con_write+0x386f/0x8540
[  335.738237][ T8668]  ? __pfx_do_con_write+0x10/0x10
[  335.738286][ T8668]  con_write+0x23/0xb0
[  335.738322][ T8668]  n_tty_write+0x44f/0x12d0
[  335.738377][ T8668]  ? __pfx_n_tty_write+0x10/0x10
[  335.738424][ T8668]  ? __pfx_woken_wake_function+0x10/0x10
[  335.738477][ T8668]  ? __pfx___might_resched+0x10/0x10
[  335.738525][ T8668]  ? __pfx_n_tty_write+0x10/0x10
[  335.738572][ T8668]  file_tty_write.isra.0+0x4d2/0x890
[  335.738614][ T8668]  redirected_tty_write+0xd4/0x120
[  335.738653][ T8668]  vfs_write+0x6ac/0x1070
[  335.738704][ T8668]  ? __pfx_redirected_tty_write+0x10/0x10
[  335.738745][ T8668]  ? __pfx_vfs_write+0x10/0x10
[  335.738792][ T8668]  ? find_held_lock+0x2b/0x80
[  335.738836][ T8668]  ksys_write+0x12a/0x250
[  335.738886][ T8668]  ? __pfx_ksys_write+0x10/0x10
[  335.738941][ T8668]  do_syscall_64+0x106/0xf80
[  335.738978][ T8668]  ? clear_bhb_loop+0x40/0x90
[  335.739019][ T8668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.739055][ T8668] RIP: 0033:0x7f93fa79c629
[  335.739082][ T8668] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  335.739116][ T8668] RSP: 002b:00007f93fb676028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  335.739149][ T8668] RAX: ffffffffffffffda RBX: 00007f93faa15fa0 RCX: 00007f93fa79c629
[  335.739181][ T8668] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000005
[  335.739203][ T8668] RBP: 00007f93fa832b39 R08: 0000000000000000 R09: 0000000000000000
[  335.739224][ T8668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  335.739244][ T8668] R13: 00007f93faa16038 R14: 00007f93faa15fa0 R15: 00007ffc82d1ce98
[  335.739278][ T8668]  </TASK>
[  335.739289][ T8668] 
[  335.739297][ T8668] Allocated by task 8646:
[  335.739314][ T8668]  kasan_save_stack+0x30/0x50
[  335.739360][ T8668]  kasan_save_track+0x14/0x30
[  335.739405][ T8668]  __kasan_kmalloc+0xaa/0xb0
[  335.739450][ T8668]  kobject_uevent_env+0x263/0x18b0
[  335.739494][ T8668]  net_rx_queue_update_kobjects+0x1dd/0x760
[  335.739537][ T8668]  netdev_register_kobject+0x290/0x3d0
[  335.739577][ T8668]  register_netdevice+0x12e0/0x2210
[  335.739614][ T8668]  __ip_tunnel_create+0x52b/0x670
[  335.739651][ T8668]  ip_tunnel_init_net+0x230/0x780
[  335.739688][ T8668]  vti_init_net+0x2e/0x140
[  335.739727][ T8668]  ops_init+0x1e2/0x5f0
[  335.739759][ T8668]  setup_net+0x118/0x3a0
[  335.739793][ T8668]  copy_net_ns+0x46f/0x7c0
[  335.739831][ T8668]  create_new_namespaces+0x3ea/0xac0
[  335.739862][ T8668]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  335.739894][ T8668]  ksys_unshare+0x473/0xad0
[  335.739931][ T8668]  __x64_sys_unshare+0x31/0x40
[  335.739968][ T8668]  do_syscall_64+0x106/0xf80
[  335.740000][ T8668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.740033][ T8668] 
[  335.740040][ T8668] Freed by task 8646:
[  335.740055][ T8668]  kasan_save_stack+0x30/0x50
[  335.740101][ T8668]  kasan_save_track+0x14/0x30
[  335.740145][ T8668]  kasan_save_free_info+0x3b/0x70
[  335.740193][ T8668]  __kasan_slab_free+0x5f/0x80
[  335.740240][ T8668]  kfree+0x1f6/0x6b0
[  335.740276][ T8668]  kobject_uevent_env+0x2e2/0x18b0
[  335.740320][ T8668]  net_rx_queue_update_kobjects+0x1dd/0x760
[  335.740363][ T8668]  netdev_register_kobject+0x290/0x3d0
[  335.740406][ T8668]  register_netdevice+0x12e0/0x2210
[  335.740444][ T8668]  __ip_tunnel_create+0x52b/0x670
[  335.740478][ T8668]  ip_tunnel_init_net+0x230/0x780
[  335.740517][ T8668]  vti_init_net+0x2e/0x140
[  335.740556][ T8668]  ops_init+0x1e2/0x5f0
[  335.740589][ T8668]  setup_net+0x118/0x3a0
[  335.740623][ T8668]  copy_net_ns+0x46f/0x7c0
[  335.740663][ T8668]  create_new_namespaces+0x3ea/0xac0
[  335.740694][ T8668]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  335.740726][ T8668]  ksys_unshare+0x473/0xad0
[  335.740763][ T8668]  __x64_sys_unshare+0x31/0x40
[  335.740801][ T8668]  do_syscall_64+0x106/0xf80
[  335.740834][ T8668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.740867][ T8668] 
[  335.740875][ T8668] The buggy address belongs to the object at ffff888037924000
[  335.740875][ T8668]  which belongs to the cache kmalloc-4k of size 4096
[  335.740903][ T8668] The buggy address is located 4016 bytes to the right of
[  335.740903][ T8668]  allocated 4096-byte region [ffff888037924000, ffff888037925000)
[  335.740940][ T8668] 
[  335.740949][ T8668] The buggy address belongs to the physical page:
[  335.740963][ T8668] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x37920
[  335.740994][ T8668] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  335.741021][ T8668] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  335.741050][ T8668] page_type: f5(slab)
[  335.741078][ T8668] raw: 00fff00000000040 ffff88813fe3d140 dead000000000100 dead000000000122
[  335.741107][ T8668] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  335.741137][ T8668] head: 00fff00000000040 ffff88813fe3d140 dead000000000100 dead000000000122
[  335.741178][ T8668] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  335.741211][ T8668] head: 00fff00000000003 ffffea0000de4801 00000000ffffffff 00000000ffffffff
[  335.741242][ T8668] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  335.741261][ T8668] page dumped because: kasan: bad access detected
[  335.741278][ T8668] page_owner tracks the page as allocated
[  335.741289][ T8668] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5207, tgid 5207 (udevd), ts 53624826174, free_ts 53538236869
[  335.741344][ T8668]  post_alloc_hook+0x153/0x170
[  335.741384][ T8668]  get_page_from_freelist+0x111d/0x3140
[  335.741427][ T8668]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  335.741474][ T8668]  new_slab+0xa6/0x6d0
[  335.741525][ T8668]  refill_objects+0x26b/0x400
[  335.741565][ T8668]  __pcs_replace_empty_main+0x19f/0x600
[  335.741611][ T8668]  __kmalloc_noprof+0x688/0x850
[  335.741654][ T8668]  tomoyo_realpath_from_path+0xb6/0x690
[  335.741688][ T8668]  tomoyo_check_open_permission+0x2af/0x3c0
[  335.741738][ T8668]  tomoyo_file_open+0x6b/0x90
[  335.741774][ T8668]  security_file_open+0xb5/0x1e0
[  335.741803][ T8668]  do_dentry_open+0x5aa/0x1660
[  335.741851][ T8668]  vfs_open+0x82/0x3f0
[  335.741883][ T8668]  path_openat+0x208c/0x31a0
[  335.741911][ T8668]  do_file_open+0x20e/0x430
[  335.741939][ T8668]  do_sys_openat2+0x10d/0x1e0
[  335.741974][ T8668] page last free pid 5207 tgid 5207 stack trace:
[  335.741992][ T8668]  __free_frozen_pages+0x7e1/0x10d0
[  335.742027][ T8668]  qlist_free_all+0x47/0xe0
[  335.742068][ T8668]  kasan_quarantine_reduce+0x1a0/0x1f0
[  335.742114][ T8668]  __kasan_slab_alloc+0x69/0x90
[  335.742171][ T8668]  __kmalloc_noprof+0x2b9/0x850
[  335.742214][ T8668]  tomoyo_realpath_from_path+0xb6/0x690
[  335.742248][ T8668]  tomoyo_check_open_permission+0x2af/0x3c0
[  335.742298][ T8668]  tomoyo_file_open+0x6b/0x90
[  335.742335][ T8668]  security_file_open+0xb5/0x1e0
[  335.742365][ T8668]  do_dentry_open+0x5aa/0x1660
[  335.742413][ T8668]  vfs_open+0x82/0x3f0
[  335.742449][ T8668]  path_openat+0x208c/0x31a0
[  335.742476][ T8668]  do_file_open+0x20e/0x430
[  335.742502][ T8668]  do_sys_openat2+0x10d/0x1e0
[  335.742538][ T8668]  __x64_sys_openat+0x12d/0x210
[  335.742574][ T8668]  do_syscall_64+0x106/0xf80
[  335.742608][ T8668] 
[  335.742616][ T8668] Memory state around the buggy address:
[  335.742633][ T8668]  ffff888037925e80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  335.742657][ T8668]  ffff888037925f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  335.742682][ T8668] >ffff888037925f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  335.742702][ T8668]                                      ^
[  335.742721][ T8668]  ffff888037926000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  335.742745][ T8668]  ffff888037926080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  335.742764][ T8668] ==================================================================
[  335.742867][ T8668] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  335.742895][ T8668] CPU: 1 UID: 0 PID: 8668 Comm: syz.2.556 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  335.742947][ T8668] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  335.742960][ T8668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  335.742981][ T8668] Call Trace:
[  335.742992][ T8668]  <TASK>
[  335.743007][ T8668]  dump_stack_lvl+0x100/0x190
[  335.743058][ T8668]  vpanic+0x552/0x970
[  335.743090][ T8668]  ? __pfx_vpanic+0x10/0x10
[  335.743127][ T8668]  ? do_con_write+0x386f/0x8540
[  335.743175][ T8668]  panic+0xd1/0xe0
[  335.743205][ T8668]  ? __pfx_panic+0x10/0x10
[  335.743239][ T8668]  ? do_con_write+0x386f/0x8540
[  335.743278][ T8668]  ? preempt_schedule_common+0x42/0xc0
[  335.743320][ T8668]  check_panic_on_warn.cold+0x19/0x34
[  335.743358][ T8668]  end_report.part.0+0x3a/0x90
[  335.743403][ T8668]  kasan_report.cold+0xe/0x18
[  335.743447][ T8668]  ? do_con_write+0x386f/0x8540
[  335.743489][ T8668]  do_con_write+0x386f/0x8540
[  335.743539][ T8668]  ? __pfx_do_con_write+0x10/0x10
[  335.743584][ T8668]  con_write+0x23/0xb0
[  335.743619][ T8668]  n_tty_write+0x44f/0x12d0
[  335.743675][ T8668]  ? __pfx_n_tty_write+0x10/0x10
[  335.743724][ T8668]  ? __pfx_woken_wake_function+0x10/0x10
[  335.743777][ T8668]  ? __pfx___might_resched+0x10/0x10
[  335.743827][ T8668]  ? __pfx_n_tty_write+0x10/0x10
[  335.743877][ T8668]  file_tty_write.isra.0+0x4d2/0x890
[  335.743923][ T8668]  redirected_tty_write+0xd4/0x120
[  335.743963][ T8668]  vfs_write+0x6ac/0x1070
[  335.744014][ T8668]  ? __pfx_redirected_tty_write+0x10/0x10
[  335.744057][ T8668]  ? __pfx_vfs_write+0x10/0x10
[  335.744131][ T8668]  ? find_held_lock+0x2b/0x80
[  335.744182][ T8668]  ksys_write+0x12a/0x250
[  335.744235][ T8668]  ? __pfx_ksys_write+0x10/0x10
[  335.744293][ T8668]  do_syscall_64+0x106/0xf80
[  335.744329][ T8668]  ? clear_bhb_loop+0x40/0x90
[  335.744368][ T8668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.744404][ T8668] RIP: 0033:0x7f93fa79c629
[  335.744431][ T8668] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  335.744465][ T8668] RSP: 002b:00007f93fb676028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  335.744499][ T8668] RAX: ffffffffffffffda RBX: 00007f93faa15fa0 RCX: 00007f93fa79c629
[  335.744520][ T8668] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000005
[  335.744540][ T8668] RBP: 00007f93fa832b39 R08: 0000000000000000 R09: 0000000000000000
[  335.744560][ T8668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  335.744580][ T8668] R13: 00007f93faa16038 R14: 00007f93faa15fa0 R15: 00007ffc82d1ce98
[  335.744613][ T8668]  </TASK>
[  335.745225][ T8668] Kernel Offset: disabled