last executing test programs:

6.009548897s ago: executing program 3 (id=985):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x10000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
ioctl$auto_BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f00000009c0)={0xffffffff, 0x9, "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", "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"})
mq_notify$auto(r1, &(0x7f0000000180)={@sival_ptr=0x0, @raw=0x1, 0x1, @_sigev_thread={0x0, 0x0}})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
removexattrat$auto(0xffffffffffffffff, 0x0, 0x7, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0xa001, 0x0)
close_range$auto(0x2, r2, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/lapb4/ifalias\x00', 0x1a1842, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty51\x00', 0x40001, 0x0)
r4 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x2000, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r4, 0xc4c85512, &(0x7f00000006c0)={{@raw=0x1, 0x2, 0x2, 0x1, "162629e6b2259bee9878f8e7b039aa20b33e487d34917b4a9acce903cb72dd4cd8dde6d41c914d63af7a9de9", @raw}, 0x0, @integer=@value=[0x400000000006, 0x12d800000000000, 0x179, 0xfffffffffffff8ad, 0x5, 0x7, 0x89, 0x8, 0x4, 0x7, 0x6, 0x7, 0x100000001, 0x3, 0x9, 0x8, 0x81, 0x9f, 0x8, 0x9, 0xb1, 0x0, 0x3, 0x8, 0x2, 0x10001, 0x1, 0x80000000, 0x8000, 0xffffffff8db4d983, 0x0, 0x80000000, 0xf, 0xfffffffffffffffe, 0x4, 0x1, 0x3, 0x0, 0x804, 0x7, 0x3, 0x4f3, 0xc, 0x4, 0xe02, 0x0, 0xe4, 0x5, 0x6, 0x81, 0x401, 0x4, 0x7, 0x0, 0x6, 0x800, 0x0, 0x7, 0x101, 0x82, 0xc9d, 0x401, 0x9, 0x5, 0x640c, 0x3, 0x1000, 0x6, 0x201, 0x0, 0xec31, 0x9, 0x1ff, 0x0, 0xfff0000000000000, 0x4, 0xbd2a, 0x903, 0x7, 0x7fffffffffffffff, 0x5, 0x1, 0xfffffffffffffffe, 0x0, 0x7eda8566, 0x7, 0x8000000000000001, 0x7, 0x401, 0xfffffffffffffff7, 0x9, 0x14000000000000, 0x6, 0xfffffffffffffffe, 0x0, 0x9, 0x8000000000000001, 0x5, 0x1ff, 0x1, 0x40, 0x1, 0x7, 0x2, 0x3, 0x8, 0x1f, 0x8001, 0xc13, 0x6, 0xbf5, 0x2, 0xff, 0x7, 0xf, 0xe0, 0x3, 0x8, 0x3, 0x7fffffff, 0x6, 0x2, 0x1, 0xa, 0x5, 0x1, 0x100, 0xffff], "54a5f1d1dd2f17b169e8263c3a740d6611142f4b3c69d0f6e967c91125d235ac53e1b00d9fddc53d8f56969329274a57d5f4213fb46616a4faa700873d91426befc561500a5391d522c480bd37f8e7f0050cedfc627c6702978a8f018ad9a7b04711dc3a5c6a755e7a506645ea28e2baa4a6786ca43b3d5d976157eb07c3cdb8"})
write$auto(0x3, 0x0, 0xfdef)
ioctl$auto(0x3, 0x540a, r3)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
write$auto(0x3, 0x0, 0xfdef)
write$auto(0xffffffffffffffff, 0x0, 0xb)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)

4.158788144s ago: executing program 2 (id=997):
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x10002}, 0x1)

3.926156499s ago: executing program 2 (id=998):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000780)='/proc/self/net/rpc/auth.rpcsec.init/channel\x00', 0x441, 0x0)
write$auto(r0, &(0x7f0000000080)='/ ys -ernel/tracing/set_event_notrace_pid\x00', 0x9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram10\x00', 0x60742, 0x0)
rseq$auto(&(0x7f0000000180)={0x6, 0x1, 0x0, 0x10000, 0x39c9, 0x7, "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"}, 0x40, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x15c, r2, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@HWSIM_ATTR_MULTI_RADIO={0x4, 0x1e}, @HWSIM_ATTR_MULTI_RADIO={0x4}, @HWSIM_ATTR_ADDR_TRANSMITTER={0x1b, 0x2, "d5ee63aea75a9d66346ce6fe2d5358bacb69eb3339afc4"}, @HWSIM_ATTR_PMSR_RESULT={0x124, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x120, 0x5, 0x0, 0x1, [{0x118, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xac, 0x1, "28e38e4c630e07759c5ce434a620566c1bc45cbc1143219f2a5666d7a88181015d76521283bdf4b956c64ade1d6524cdbadf571d3e18f821548f2d97c4916c91acac1f21e130391e465ed29b079802838a4f2276f1ab33acbe7ca5cfdadba6ba07cf47f5dca3fae4a035da2ba3e575d03095a9f5484f3eeffc275464868acfe4dca1984f3cd7d5f1ecbed6ca9861aadfb812993ef7c9014690aaa06a99f07b1d83c1795353c604c6"}, @NL80211_PMSR_PEER_ATTR_ADDR={0x67, 0x1, "5ac908e428d1dbf742f7d5a658c554e6b7095c98c41087f57de389de219d6ad92b8bfbb06d42b633d6780464550a1f04124f42a12f94d4eda4da737666ad3586609b23ea2f4a3d3f6147185bf51d410a98f124d3f056216ec43f338c1867a46e44f868"}]}, {0x4}]}]}]}, 0x15c}, 0x1, 0x0, 0x0, 0x8000}, 0x4880)
pwrite64$auto(0xc8, &(0x7f00000011c0)='\vX\xb5n\x91\vI\x1eRN8\x99\x88\xca\xd9\xec\x1epJ\"ds\x1cJr\xde:\x00!\r>\x94\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\x15\x0e\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9\xb7\x9d\xb6r9\x02\x00\x00\x00\x00\x00\x00\xc3\xc3\xdbS\xdc\xfc\x19\xba\xab\xe4\x8b\xdeT3^\a\xb2\xf3}\t4\xa2^\xe4b?\xb2Q\x8d\x8c\x83\x8e\xfe\x8e\b\x93M\x9e3\xa5`hN\xe36\xc3\x99\xe7L\x12\xaar}\x90\x05>\xab\xc9\xb7^\xcc\r\xb9V\x10\xa5\x81\x96e\x80\'\xc6\x06', 0x10, 0x0)

3.809193547s ago: executing program 3 (id=999):
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x100, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sequencer2\x00', 0x4100, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x22c02, 0x0)
poll$auto(0x0, 0x5, 0x108)
r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$auto_VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000180)=0x5)
ioctl$auto_VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f0000000000)=0x5)

3.665857789s ago: executing program 3 (id=1000):
signalfd$auto(0xffffffffffffffff, 0x0, 0x8)
r0 = socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x66)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.4/usb5/power/level\x00', 0x129882, 0x0)
sendfile$auto(r1, r1, 0x0, 0x7)
mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0xd, 0x0)
r2 = fsopen$auto(0x0, 0x1)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x805, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, &(0x7f00000007c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000780)={&(0x7f0000000540)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16, @ANYBLOB="00042abd7000fcdbdf2501000002320b50a92d63c4c5d7270066004e01000571467b1e2a6708fa1e1813c23848949d7732463e134d36a966331f97c7f6748ed3eadc7a1831de1f1492d65cd95ace209521406b7d2478be34ab1aacce5be0c150c9c06e30ccb4197bcd74e87140501dda3cc13c827cd085c4d65f36a3bfb4d80d"], 0x7c}, 0x1, 0x0, 0x0, 0x20040000}, 0x804)
fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0)
fsconfig$auto_FSCONFIG_SET_FD(r2, 0x5, &(0x7f00000000c0)='[\x99}/:H\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/ram7/queue/chunk_sectors\x00', 0x0, 0x0)
pipe2$auto(&(0x7f0000000500)=r1, 0x7)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/sctp/remaddr\x00', 0xb00, 0x0)
pread64$auto(r3, 0x0, 0xf469, 0xbc3ab41)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000900)='/dev/snd/midiC2D0\x00', 0x0, 0x0)
r5 = syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000100), 0xffffffffffffffff)
clone3$auto(&(0x7f0000000140)={0x1ff, 0x4, 0x5387, 0x12000, 0x6, 0x7, 0xffffffffffffffff, 0x3, 0x0, 0x60, 0x6}, 0x8)
poll$auto(&(0x7f00000004c0)={r0, 0xa9, 0x6}, 0x3ff, 0x9)
syz_clone3(&(0x7f0000000440)={0xc000000, &(0x7f00000001c0), 0x0, &(0x7f0000000240), {0x8}, &(0x7f0000000280)=""/234, 0xea, &(0x7f0000000380)=""/117, &(0x7f0000000400)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0], 0x5}, 0x58)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_RADIO(r4, &(0x7f00000008c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000880)={&(0x7f0000000940)=ANY=[@ANYBLOB="6415b44602ee2bc6df797ed458d48671f59658e66fc9f62fe710f2d7bf35ac8e7f49875458d04150730e5e3e1ce0446f22bc5bca8e58e2d54496ffaaf0a949519357fe118657b9b780fc2d0e554c7c1ab28c360ec7c561a0e229a4e35d8e6f908a0bd03109f40a993734a7dbb2be46b7b8f789d879ab43d1100257f09724d175fbf43db4be3dc67121d603f122fddd8129a7900c4e6043a01cc836732e65866dbdbe4a2e3ea9795a752374494c9a481e1ba53a166bf5f61d360b0459a64c56d21dc02e", @ANYRESOCT=r2, @ANYRESHEX=r4, @ANYRES16=0x0, @ANYRESHEX=0x0, @ANYRESOCT=r5], 0x3a8}, 0x1, 0x0, 0x0, 0x20000881}, 0x8000)
r6 = openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/error_log\x00', 0xa0102, 0x0)
pread64$auto(r6, &(0x7f0000000100)='nl80211\x00', 0xffff, 0xee)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/netdevsim/unlink_device\x00', 0x10b081, 0x0)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media10\x00', 0x400200, 0x0)
prctl$auto_PR_MCE_KILL(0x21, 0x100000001, 0x10001, 0x7ff, 0x0)

3.504561253s ago: executing program 2 (id=1001):
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
io_uring_setup$auto(0x59, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/oom_adj\x00', 0x980, 0x0)
read$auto(r0, 0x0, 0x4)
pread64$auto(r0, 0x0, 0x3, 0x413c)
clock_nanosleep$auto(0xfffffff2, 0x5, 0x0, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0xc100, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x3)

3.175303354s ago: executing program 1 (id=1003):
select$auto(0x5, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x6})

3.12537716s ago: executing program 2 (id=1004):
mmap$auto(0x100000000, 0x2000d, 0x1, 0xeb1, 0xffffffffffffffff, 0x100000000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0)
semget$auto(0x0, 0x13c, 0x1ff)
recvmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5, 0x0, 0x9, 0x0, 0x800000000005, 0x7ffffffd}, 0x8}, 0x3, 0x1, 0x0)
semtimedop$auto(0x0, 0x0, 0x1f4, 0x0)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0)
r1 = openat2$auto(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)={0x982, 0x6, 0x4}, 0x7f)
sendmsg$auto_IEEE802154_ADD_IFACE(r1, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@IEEE802154_ATTR_FRAME_RETRIES={0x5, 0x28, 0xd4}, @IEEE802154_ATTR_DEST_PAN_ID={0x6, 0x10, 0xac6a}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x40}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x525a05df5b8ef67a)
r2 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000180), r1)
r3 = getpid()
process_vm_readv$auto(r3, &(0x7f0000000080)={0x0, 0x10001}, 0x400040000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x200000000)
sendmsg$auto_NCSI_CMD_SEND_CMD(r1, &(0x7f0000001600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000015c0)={&(0x7f00000009c0)={0x9f8, r2, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@NCSI_ATTR_PACKAGE_LIST={0x251, 0x2, 0x0, 0x1, [@nested={0xb0, 0x2, 0x0, 0x1, [@typed={0x4, 0xf4}, @nested={0x4, 0x5f}, @generic, @nested={0x4, 0x157}, @typed={0x8, 0xe8, 0x0, 0x0, @u32=0xff}, @nested={0x4, 0x154}, @generic, @typed={0x4, 0x6d}, @generic="b03e7e90dece3f94572d88354e9e657e5dc68391f9bfbe7efbc7e501634b5f8fc8b6e49f553a63257c3222ad72304cad6ba0403f58f5e30eb57240302c504e8995aef06b10249f25d680c666c3e35f578b98fe5b63414c53aa8ca88cd05ea04d72520e0450ca36192adb8b2b855760826708b0634b71d433663fec6cb086a06fc7d821ec8bc532e08d048cee51d22c4a"]}, @typed={0xb4, 0x116, 0x0, 0x0, @binary="026c47db5c9783a00552bf620e858dfb1bc04eb805514cd1f724865552bf3315404f8c406145bded10f139819dc0cebfda3b7c970e8e55a09652b0f4d8d1aae4a2f2ba8540f904d72b57b5600050716762397945e8d951fc65b52cf05de1096c1ee9f8ab1717842dd3a179513fbf27ee4dd0bab06bf942ce769bd2c6bcf3e03ef9cc4d197c5eb5970cd455bb7a08b392a321e821d3b38bfc4ff078c9ce2e4fa2e9991a5c3b2a5862fe93e6f6e6be9df2"}, @generic="8d839b04032c1f677776804c34d4a502a008a3e53fd471ef51900be2f2eb8e6d71d7d83903661a9b80a28e3b7eba2854ee8f3840d0", @typed={0xb3, 0xfb, 0x0, 0x0, @binary="c27af9e84690d71aed7c17150f9cab7adeae205966073a5caecbf58597c38c93b68c79891016547576c78b89e515a2d085cdb77ed0448a07af361c949ac83a39cc13667632426024331858d06ac7a5e5f5fea965c340a9cbbe31453a2121e70077e7b6ec1793e26573515f08246bf508840b71242918d494e9bdb75215e065b3221c81752ca92c4a95a142c777e30fb881dbe6e87e4bd1716f54f0b0d5b2369001757e66cf6982a1017f69514cea13"}]}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x3ba67bd8}, @NCSI_ATTR_PACKAGE_ID={0x8, 0x3, 0xb49}, @NCSI_ATTR_MULTI_FLAG={0x4}, @NCSI_ATTR_DATA={0x77a, 0x5, "f928e09d7bd7fa2202977becacbfba05779299539e9087c29bdcfb7e759354020deebb22ec4bd883dbb7deea7425a87316ae9678267fecc436029b01e0ddc119fc3e4773eb5acadcfedf56a5cc5227743accf629c50812ae37af5cde21bcc23362ab755f2630ac53e3dfcc67731cb38a4be45a151fc54e296eab4b67d8e1816732a34c3255ee7541ff4e75615890783b19a98f05211738c03f34fa2113b6d768ccabd78c5e2780c2c0da118f0d282c44f4fb6133389f4ab50bb5c224255a6c7e9e3ae7314ea96ace9e25f2b3be2182b1eb0deff67feb536c5fe5f005b6a7a0b3b5582a69abc83c37a4d8038e829d60a991d7ffd9851edb138fdce06abb8867a2be56a5dbebd5e7ef3d7362ea7e6723b8ad49689b4363c54afdea8d7e7448499f38e48320398a4234fa61a3d20c09ba7d4baa283e7122deea61454d68879cdb549df69234ea91c57e5472579702e21a80a1537ec61e189b1fc21d7ffbbf5cf6962454217baa5d903e28f3a697a883b279e211f7ed6716fe84d6ff67f82602ff77a0e798d6692440fdebe9a433ae69b89b55aeba6241f29aef20ad6fcfc85fcbd4e9e59f159ce4a4cc77ccae8332290b4cde9437607273c950478e91905f51b234f42a18f6cd00da83811e1c385767bb91b1b792b79c154f4fc49dcf5876ffcb4e701d522917a0d253e3469bdc1c498a062706b8338e16bd44bcb04a28b79a71f4924e8f52ef66838f35ab5d569765b5b13860986c53cfe5a07018594b69ca399427013a1871f599564b7269f44edecaeaa1b84ed56c249d5968235b9e23c37bf71f0ab9a741176fb33b8c83afcbfb6efae66c56310915cddbd681b9dc72b8ec14a881f1fa9e193b9db73e0a2cba79616d28bda7bf0b31202c1a24711c2bfc85bf689d34e439409ad93bb4eadb1ecf761626375fbe5656e9760086eb85116f83b5d99d22a6bc0cce98cf77533b22f0d305a1e00f651dae93dc7bd3aacf3ff45d6df754f35d901ec6ac3014f505ac13dbfe184f3f37bb1c29482fcc86f419d8cfed35fee9e8a612574f9e3afe27e9ee3ae5f8ff22734150611188de68af93f3b156b2fe92165a0ed97e1ece3f5751e4df65eff481c7f2391c8f45f7d082b104e353ec2092e616bd9d83c663cb176deb7b25a216f8b903c461f93b3b771f9cee918043cc21fa9ea85c42326cb2dd3c846d0dcf1fe33fc61d2bff8f1cf63e38329e2d508b484106f1050a4f396b38449571995d111c345e6363388844bc7e7403199a52acdee14a4e661a8dbef77e25e57ad16a90dba607182afb1f891c7178f923130db86b4a501cd43de8571eed672cf02408586440be582c91b64f7212971886f75ac25cb9c3adedbccf226b5252f26d3f7fef415b748fa39cac970d1b07ac8b7ce6b026a95cfc1a1532d300345dd274259cf0602ada400278fd0d09c687b4c324cb9714be58e51cd8dd36619ad89e4090eae95e0589245f210cb05e9fa90318d39007ea4fc8ccbd9dae613027ea6c95940a7ed72efc660c622095bb42173939eb42f4400f5ad6184540d718946926f5b987fbffaf115bed18f27c946a77ae78ff5b5e72d2a64aac60aaed728ea3ede4d78de9f79b11ec917623a885d4027d2a999b98298e2af8b9aeabf1380b5c3feeba52a1814a05e7a8ce3ee85d1b42a1dd9adb23381dbd76cb6688a238e76ce6f4098063ea755f1ef7abbfa23490a6544099a6f9530259faf5e3d0c07b2c8bf986aeb5028268ebe4d908e0413e964fd8b2d5ddb3d47b9b0e68de5096732bea7dc3b1b3466f7dff45721a9b1d5811a4e1874ec2be961d37a9d9d2ef50492bb75ab96504dafd326decc198ac8805a18e350c38e4de47ef2350d18f3501b50bb285023023d03fa66cf215ec6a34564affb95aca93f3677d4154b6aa9c1fbda430511f31eb6468825fbbe8a124a886ab881b7da7b71a1159bdeada0ce632d3e54e561468f4dd26640cc2d9f1587b7023928741d0f71fd00e58ae6f58d9eec0f2c07da2ccb093512d538bf1f4ea2311d4faeec03187739b1ff36129da3bf1c5999fafaeacb9be63fe3ae8765b827fe1711a0b134494c8a5f067642946e42ada782618ed9daac32eb165bc327e278c3ff030a593d85b93e3ccb751fe67c6d8bf647bcaa91c66b859db93c60a88686d07eb250e91d16a1f90c099d4835b71ba0bc03d950690a626fe5575633b90216163e1443d5213286194c0df5aa891ba17db5893fc758c282639bc7ec6ed7d27421dbdb73d01e9e149799ca2860748c06a69b41c74def7bbf31e42be43ccb4b8a5e64459f476eac90023c0677c94c6d785435e4ac8ab6891161f9b7e1d0be6bd44d17de9672aa470df2dee31ca60875388a25a90271c4b4fcf4ecc75651090ee9530d72cf969e4c1f0a3ab036bd131cc02b87bfbefa7472d8623ac7be17a1c56cf5b3c4818af0a0a2b910948e7492048f50d855efee2a12d8c63b7ddf9da4cef69ffdcf551b18936d45158aa1e6ade7060979b2f1e60e679dcdee9b45f203d4f23f30205596485409ed517525f2c922ba15574d1191711355495f0de907f42fea54bb1157d2eac8afa28574f6b460b519d8eeedacaec0815abc980a4b96289d3f9ae2a3145d15240fca1d5cbe7a53e149a6e083b7befb52f51c679e115a0a366197c0e95a4c2a1b5511155ec9815bc0402d19d9f125a7bc5c63290ac29"}]}, 0x9f8}, 0x1, 0x0, 0x0, 0x4010}, 0x811)
ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r0, 0x80045105, 0x0)
socket(0x1e, 0x80000, 0x9)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x2c402, 0x0)
write$auto_dev_fops_plock(0xffffffffffffffff, &(0x7f0000000200)="ea579eafbef6a78ace20c66c3ed28a307811ba5a77e0d6f20eee070874ce267321ef2da8ccef77a2a57912658cfac38b23199ba898ef2c29ea039494e108e23fc3d3de801c6cdb8c585be1ec026d327ad05a0c7812805bb6d050f902f2e77e549ec276c282a2bb8c2847f2e7105018d493a4", 0x72)
r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xf8f)
prctl$auto(0x16, 0x21, 0x6, 0xfffffffffffffffe, 0x5)
sendfile$auto(r5, r4, 0x0, 0x1fff5)
close_range$auto(0x2, 0x8, 0x0)
semctl$auto_GETNCNT(0x0, 0x4, 0xe, 0x4)
io_uring_setup$auto(0x4bf15e08, 0x0)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)
unshare$auto(0x40000080)

3.012208898s ago: executing program 1 (id=1005):
sendmsg$auto_NL80211_CMD_UNEXPECTED_FRAME(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x0, 0x110, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20044044}, 0x4000044)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x8100, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x86a7, 0x10, 0xfffffffe, 0x6, 0x7fff, 0xa, 0xffffffffffffffff, [0x0, 0x40, 0x20000], {0x6, 0x10001, 0x7, 0x2de, 0x8e, 0x0, 0x101, 0x6, 0x2000008}, {0xfff7fffd, 0x3407, 0x52, 0x5, 0x10001, 0x4040, 0x76c5, 0x8, 0x8000000000040000}})
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000500)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE2(r0, 0xc2604110, 0x0)

3.001155743s ago: executing program 3 (id=1006):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x440, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:03.0/resource0\x00', 0x103000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x5, &(0x7f00000000c0)=@test={0xffffffffffffffff, 0xa, 0xa, 0x7fffffff, 0x108800000, 0xff, 0x6, 0x2be2b3fd, 0x8000, 0x10000, 0x2, 0x7, 0xfffff890, 0x1, 0x2}, 0x80)
readv$auto(0x3, &(0x7f0000000040)={&(0x7f0000003040), 0x1}, 0x9)
mmap$auto(0x0, 0x3, 0x1000000000001, 0x11, r1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
kexec_load$auto(0x0, 0x2, 0x0, 0x1000000000004)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
fallocate$auto(r3, 0x0, 0x7, 0x4cbd5d)
rename$auto(&(0x7f0000000480)='./file0\x00', &(0x7f0000000100)='./file1\x00')
ioctl$auto_SW_SYNC_GET_DEADLINE(r0, 0xc0105702, &(0x7f0000000080)={0x5, 0x0, r2})
getcwd$auto(0x0, 0xffffffffffffffff)
rename$auto(&(0x7f0000000280)='./file1\x00', 0x0)
rename$auto(0x0, &(0x7f0000000100)='./file1\x00')
r4 = socket$nl_generic(0x10, 0x3, 0x10)
fstat$auto(r4, &(0x7f0000000180)={0x9, 0xfffffffffffffffd, 0x86, 0xd4, <r5=>0x0, 0x0, 0x0, 0x2, 0x8, 0x9, 0xffffffff, 0x5b0000000000, 0x10, 0x4, 0x3f, 0x9})
r6 = pipe2$auto(0x0, 0x80)
msgctl$auto_MSG_INFO(0x800, 0xc, &(0x7f00000000c0)={{0x7, <r7=>0xee01, 0xffffffffffffffff, 0x1, 0x2, 0x7, 0x4}, &(0x7f0000000040)=0x1, &(0x7f0000000080)=0x63, 0xffffffff, 0x1, 0x3, 0x1, 0x7, 0xfff7, 0x10, 0x200, @inferred, @raw=0x5})
r8 = setfsgid$auto(0xffffffffffffffff)
statx$auto(r6, &(0x7f0000000000)='./file1\x00', 0x4, 0x7fffffff, &(0x7f0000000140)={0x9, 0xf, 0xb476, 0x0, r7, r8, 0xffff, 0xb9, 0x3, 0x7, 0x3, 0x80, {0x7, 0x10000}, {0x2, 0x9}, {0x7378, 0x7}, {0x5, 0x1}, 0x8, 0xfffffffc, 0x1, 0x401, 0x400000000006, 0x7, 0x6, 0x2, 0x40, 0x6, 0x0, 0x9, [0x3, 0x10, 0x7fffffffffffffff, 0x81, 0xd, 0x8001, 0x5, 0x3, 0x9]})
lchown$auto(&(0x7f0000000140)='./file1\x00', r5, r8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff)

2.509220065s ago: executing program 1 (id=1010):
mmap$auto(0x0, 0x40006, 0xdf, 0x200009b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x80802, 0x0)
setsockopt$auto_SO_MAX_PACING_RATE(r0, 0x2, 0x2f, &(0x7f0000000180)='${{\x00', 0x7)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000080)={{0x0, 0x6, 0x1, 0xf90c, 0x3}, "63a7fd5d30ff15ebae22170f51993785e29eccd965ebd804c2c765f3e36826ff"})
chdir$auto(0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x200000, 0x0)
preadv2$auto(r1, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e)
socket(0x15, 0x5, 0x0)
unshare$auto(0x40000080)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000280), r3)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="ffff0000", @ANYRES16=0x0, @ANYBLOB="e5b725bd7000fcdbdd25190000000c0001800800030007000000"], 0x20}, 0x1, 0x0, 0x0, 0x4010}, 0x4048800)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
map_shadow_stack$auto(0x40, 0x7, 0x1ff)
open(0x0, 0x4242, 0xe1d2b27bdc14aabc)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r4, 0xc0481273, &(0x7f00000000c0)={"ef65ce6c00cf81000000ffffffffffffff291d000000000700000000000300", 0x3ff, 0x408, 0xfff, 0x400004, 0x200000000040000d})
ioctl$auto_BLKTRACETEARDOWN(r4, 0x1276, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0xa, 0x3)
bpf$auto_BPF_MAP_FREEZE(0x16, &(0x7f00000000c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0xffff, 0xccf, 0xe, 0x7, 0xffffffffffffffff, 0x55e2, 0xfffffffffffff000}, 0x8e2)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef)
ioctl$auto(r5, 0x4b67, 0x1)
r6 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a)
sendmmsg$auto(r6, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)

2.431691193s ago: executing program 2 (id=1011):
syz_clone3(&(0x7f0000000700)={0x100, 0x0, 0x0, 0x0, {0x1}, &(0x7f0000000640), 0x0, 0x0, 0x0}, 0x58)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x0, 0x0) (async)
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005) (async)
ioctl$auto_BLKPG2(0xffffffffffffffff, 0x1269, 0x0) (async)
ioctl$auto_MEMGETINFO(0xffffffffffffffff, 0x80204d01, 0x0) (async)
r1 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, 0x0, 0x40200, 0x0)
read$auto(0x3, 0x0, 0xfffffdef)
syz_genetlink_get_family_id$auto_batadv(&(0x7f00000002c0), 0xffffffffffffffff) (async, rerun: 64)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000080), 0xffffffffffffffff) (rerun: 64)
mmap$auto(0x0, 0x9f9e, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
getsockopt$auto_SO_SNDBUF(r1, 0x73, 0x7, &(0x7f0000000100)='SEG\x85\x00', &(0x7f0000000140)=0x9d9) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mbind$auto(0x1c0000, 0x800097, 0x1, 0x0, 0x3, 0x1) (async)
mbind$auto(0x0, 0x800605, 0x1, &(0x7f0000000500)=0xffff, 0xa, 0x3)
ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.1/usb2/2-0:1.0/usb2-port1/disable\x00', 0x102, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) (rerun: 32)
write$auto(0x3, 0x0, 0x6)

2.290746728s ago: executing program 0 (id=1012):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r0, 0x4, 0x100000000)
ptrace$auto_PTRACE_SINGLESTEP(0x9, r0, 0x401, 0x8)

2.015318918s ago: executing program 0 (id=1013):
r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP_SET_WEDGE(r0, 0x4004550f, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000000), r1)
sendmsg$auto_NL80211_CMD_ASSOCIATE(r1, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000340)={&(0x7f0000001200)=ANY=[@ANYBLOB="3d60f7348a5f6179cba6a2544580dbf3e9699dc6a3a7196ddbdfb51e026b5d9ac441456f40c4e8b189a8d12f0fd020b4000ebf6a40ee300618d206191d741b3df477c213dd9f888398b447689c0c9b70122eed70b35d47cdcffe0d9be84b1a28e63220760aed305919bc5bc507881aee82b5bc6735d5ae7b8a644c2d1b89a45688b240a4eedfb65949825178112e349552c7529ec297bd53e8a102155443552f1d5313c9d5ce76b652a64abb1b544f9a1955155a300201bbf61f6dd36614af4acfa12260a3d431b095d8ddd61752701431ba0d7fbd7022a421306ee21e14f98fd297b65c278f", @ANYRES16=r1, @ANYBLOB="00022cbd7000ffdbdf25260000000600ab00fbff00004500bb002bec6a08f15bd4de207646237f076bf14476181f57b59dd885c51753faad6614ed35796546e8a5c114752bb5b3d20fb7e5cd86b286387f7576999b91d01ac1197800000009003400aae35aa11500000005005300090000000600b40005000000"], 0x80}, 0x1, 0x0, 0x0, 0x80024}, 0x44041)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0xa0b02, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, 0x0)
write$auto(0x3, 0x0, 0x100082)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/sound/ctl-led/speaker/mode\x00', 0x182, 0x0)
r3 = openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, 0x0, 0x141402, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001100)='/sys/module/ipaq/parameters/connect_retries\x00', 0xc0b02, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x100000000000029, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0x81a0ae8c, 0x0)
read$auto_trace_clock_fops_trace(r3, &(0x7f00000000c0)=""/4096, 0x1000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, r4, 0x8000)
r7 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001b80)='/dev/sequencer2\x00', 0x81083, 0x0)
ioctl$auto_SNDCTL_TMR_TIMEBASE(r7, 0xc0045401, &(0x7f0000000600)="5ba8d4")
r8 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/loop6\x00', 0x101282, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r8, 0x4c0a, 0x0)

1.668287425s ago: executing program 0 (id=1014):
r0 = syz_clone(0x92004300, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r1, 0x6, 0xd, 0x0, 0x4)
mmap$auto(0xfffffffffffffffe, 0x20009, 0x7fffffff, 0xeb1, r1, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_objects_fops_(0xffffffffffffff9c, &(0x7f00000002c0), 0x40042, 0x0)
r2 = fanotify_init$auto(0x5, 0x0)
fanotify_mark$auto(r2, 0x205, 0xa, 0x4, 0x0)
write$auto(r2, &(0x7f0000000040)='.&\x00', 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz7\x00', 0x48f41, 0x0)
ioctl$auto(0x3, 0x402c542d, r4)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/radio28\x00', 0xc0400, 0x0)
ioctl$auto(0x3, 0xc0585609, r3)
ptrace$auto(0x10, r0, 0x4, 0x100000000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/lock_policy\x00', 0x82, 0x0)
sendfile$auto(r5, r5, 0x0, 0x5)
ptrace$auto_PTRACE_SINGLESTEP(0x9, r0, 0x401, 0x8)

1.507915208s ago: executing program 1 (id=1015):
mmap$auto(0xef, 0x400008, 0xffffffff80000001, 0xbd2, 0x2, 0xfffffffffffffffc)
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
capset$auto(0x0, 0x0)
getsockopt$auto(0x3, 0x200000000001, 0x1f, 0x0, 0x0)
r0 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram2/partscan\x00', 0x80200, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
r1 = openat$auto_bridges_fops_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/dri/vkms/encoder-0/bridges\x00', 0x80000, 0x0)
io_uring_setup$auto(0x5b, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x10000, 0x1, 0x29f, 0x100, 0xfff, 0x101, 0x6, 0x2}, {0xfb, 0x1001, 0x10001, 0x7, 0x1, 0x40, 0x176c5, 0x400005, 0x100000005}})
r2 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000240)='/dev/binderfs/binder0\x00', 0x80000, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/input/event1\x00', 0x40000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0xd, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x9, 0xffffffffffffffff, 0x1, 0x5, 0x4, 0x15f4da0e, 0x7, 0x9, 0x100000000000000c, 0x8, 0xfffffffffffffffe, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r2, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
setuid$auto(0xe)
bpf$auto_BPF_BTF_LOAD(0x12, &(0x7f0000000300)=@task_fd_query={0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x7, 0x9, 0x362, 0xffffffffffffffff, 0xce, 0x4}, 0x7)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(r0, 0xb, &(0x7f0000000180), 0x1)
io_uring_register$auto(0x2, 0x23, 0x0, 0x0)
mmap$auto(0x0, 0x9, 0x2, 0x9b72, r1, 0x8000)
open(&(0x7f0000000140)='./file0\x00', 0x105b00, 0x4)
socket(0xa, 0x801, 0x106)
listen$auto(0x3, 0x83)
setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x0)
lseek$auto(0xffffffffffffffff, 0x8a05, 0x1)

1.44496378s ago: executing program 0 (id=1016):
getrandom$auto(&(0x7f0000000000)='ns/pid_for_children\x00', 0x14, 0x1)
r0 = landlock_create_ruleset$auto(&(0x7f0000000140)={0xdaa0, 0x1, 0x9}, 0x9, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x1, 0x1000)
socket(0x15, 0x5, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
socket(0x2, 0x80002, 0x73)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
setresuid$auto(0x0, 0x7, 0x8080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x20100, 0x0)
landlock_restrict_self$auto(r0, 0xb)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00')
bind$auto(r0, &(0x7f0000000080)=@phonet={0x23, 0x6, 0x9a, 0x5}, 0x1)

1.326270873s ago: executing program 2 (id=1017):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000d, 0x3, 0xeb1, 0x404, 0x100010008000)
mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000)
r0 = io_uring_setup$auto(0x7, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x2a, 0x2, 0x1)
connect$auto(r1, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x3, 0xfffffffe}, 0x52)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x10002}, 0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap$auto(0x8bf4, 0x6, 0xdf, 0x9b72, 0x7, 0x28000)
io_uring_register$auto(r0, 0x1e, 0x0, 0x9)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0)
fcntl$auto_F_DUPFD(0xffffffffffffffff, 0x0, r3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
rename$auto(0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
statmount$auto(0x0, &(0x7f0000000180)={0x7d2, 0x1, 0x401c2, 0x2081, 0x3b, 0x7ffc, 0x1ffde, 0x8001, 0x2, 0x1, 0x9, 0x3, 0xb738, 0x8, 0x3004, 0x9, 0x6, 0x10002, 0x80, 0x400, 0xa9, 0xa, 0x1ffc, 0x8203, 0xfffffffe, 0xa0000002, 0x1, 0x0, 0x800040, 0x7, 0x4, [0x88000000003, 0xa9f, 0x0, 0xffffffffffffffc, 0x9, 0x183, 0x0, 0x81, 0x0, 0x200000000000000, 0xfc6a, 0x7, 0x10000, 0x40000000000, 0x4, 0x400000000000, 0x280000000000000, 0x0, 0xffffffffff7ffffc, 0x6, 0x3, 0x0, 0xfff, 0x200, 0xfffffffffffffffd, 0x3, 0x0, 0x6, 0x1, 0x2, 0x2, 0x20000000, 0x0, 0x0, 0x9, 0xfffffffffffffffc, 0x5, 0xfffffffffffffffc, 0x3, 0x1, 0x9, 0xffffffffffbffffc, 0x90d7400000000000]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="00000000000060ce1e8d081d8a359da8f242fd00000000000000a98aa4060008c40869004172dc796b4d2e027cb9d6a3e48e42210e8e7dec8374922a", @ANYRESDEC=0x0], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x4000)
r4 = socket(0xa, 0x5, 0x0)
mmap$auto(0x80000000004, 0x7, 0x3, 0xeb1, r4, 0x7ffe)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x0, 0x0)

927.233403ms ago: executing program 1 (id=1018):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv6/conf/veth1_to_hsr/mldv1_unsolicited_report_interval\x00', 0xb01, 0x0)
mmap$auto(0x2, 0xff, 0x3, 0xeb1, r0, 0x8000)
madvise$auto(0x0, 0xffffffffffff0081, 0x15)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f00000000c0), 0x404040, 0x0)
ioctl$auto_PPPIOCGDEBUG(r1, 0x80047441, &(0x7f0000000140)=0xfffffff2)
socket(0x26, 0x2, 0x0)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media1\x00', 0x22001, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/block/loop14/queue/write_zeroes_max_bytes\x00', 0x68102, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x400000000000, 0x0)
mmap$auto(0x10000000, 0x2000c, 0x9, 0xeb1, 0x401, 0x8000)
mmap$auto(0xff8d, 0x8, 0x22d, 0x117, 0x401, 0x200)
sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, 0x0, 0x48880)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x80, 0x0)
read$auto(r1, 0x0, 0x8010002)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x2d41, 0x0)
writev$auto(r2, &(0x7f0000000240)={0x0, 0x7}, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x3, 0x645, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vhci_hcd.5/usb20/serial\x00', 0x8ae05, 0x0)
read$auto(r3, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.8/usb26/descriptors\x00', 0x9)
unshare$auto(0x8000000)
r4 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
execveat$auto(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
semtimedop$auto(0x10, 0x0, 0x8, 0x0)
mkdir$auto(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd)
sysfs$auto(0x2, 0x24, 0x0)
r5 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r5, 0x0, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x4000804)

880.584377ms ago: executing program 0 (id=1019):
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8b02, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x8000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop6/integrity/read_verify\x00', 0x2262, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x0)
r1 = socket(0xa, 0x3, 0xff)
connect$auto(r1, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
open$dir(&(0x7f00000001c0)='./file0\x00', 0x201, 0x0)
open(&(0x7f00000002c0)='./file0\x00', 0x40a00, 0x0)

273.357203ms ago: executing program 1 (id=1020):
mmap$auto(0x100000000, 0x2000d, 0x1, 0xeb1, 0xffffffffffffffff, 0x100000000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0)
semget$auto(0x0, 0x13c, 0x1ff)
recvmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5, 0x0, 0x9, 0x0, 0x800000000005, 0x7ffffffd}, 0x8}, 0x3, 0x1, 0x0)
semtimedop$auto(0x0, 0x0, 0x1f4, 0x0)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0)
r1 = openat2$auto(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)={0x982, 0x6, 0x4}, 0x7f)
sendmsg$auto_IEEE802154_ADD_IFACE(r1, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@IEEE802154_ATTR_FRAME_RETRIES={0x5, 0x28, 0xd4}, @IEEE802154_ATTR_DEST_PAN_ID={0x6, 0x10, 0xac6a}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x40}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x525a05df5b8ef67a)
r2 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000180), r1)
r3 = getpid()
process_vm_readv$auto(r3, &(0x7f0000000080)={0x0, 0x10001}, 0x400040000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x200000000)
sendmsg$auto_NCSI_CMD_SEND_CMD(r1, &(0x7f0000001600)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000015c0)={&(0x7f00000009c0)={0x9f8, r2, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@NCSI_ATTR_PACKAGE_LIST={0x251, 0x2, 0x0, 0x1, [@nested={0xb0, 0x2, 0x0, 0x1, [@typed={0x4, 0xf4}, @nested={0x4, 0x5f}, @generic, @nested={0x4, 0x157}, @typed={0x8, 0xe8, 0x0, 0x0, @u32=0xff}, @nested={0x4, 0x154}, @generic, @typed={0x4, 0x6d}, @generic="b03e7e90dece3f94572d88354e9e657e5dc68391f9bfbe7efbc7e501634b5f8fc8b6e49f553a63257c3222ad72304cad6ba0403f58f5e30eb57240302c504e8995aef06b10249f25d680c666c3e35f578b98fe5b63414c53aa8ca88cd05ea04d72520e0450ca36192adb8b2b855760826708b0634b71d433663fec6cb086a06fc7d821ec8bc532e08d048cee51d22c4a"]}, @typed={0xb4, 0x116, 0x0, 0x0, @binary="026c47db5c9783a00552bf620e858dfb1bc04eb805514cd1f724865552bf3315404f8c406145bded10f139819dc0cebfda3b7c970e8e55a09652b0f4d8d1aae4a2f2ba8540f904d72b57b5600050716762397945e8d951fc65b52cf05de1096c1ee9f8ab1717842dd3a179513fbf27ee4dd0bab06bf942ce769bd2c6bcf3e03ef9cc4d197c5eb5970cd455bb7a08b392a321e821d3b38bfc4ff078c9ce2e4fa2e9991a5c3b2a5862fe93e6f6e6be9df2"}, @generic="8d839b04032c1f677776804c34d4a502a008a3e53fd471ef51900be2f2eb8e6d71d7d83903661a9b80a28e3b7eba2854ee8f3840d0", @typed={0xb3, 0xfb, 0x0, 0x0, @binary="c27af9e84690d71aed7c17150f9cab7adeae205966073a5caecbf58597c38c93b68c79891016547576c78b89e515a2d085cdb77ed0448a07af361c949ac83a39cc13667632426024331858d06ac7a5e5f5fea965c340a9cbbe31453a2121e70077e7b6ec1793e26573515f08246bf508840b71242918d494e9bdb75215e065b3221c81752ca92c4a95a142c777e30fb881dbe6e87e4bd1716f54f0b0d5b2369001757e66cf6982a1017f69514cea13"}]}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x3ba67bd8}, @NCSI_ATTR_PACKAGE_ID={0x8, 0x3, 0xb49}, @NCSI_ATTR_MULTI_FLAG={0x4}, @NCSI_ATTR_DATA={0x77a, 0x5, "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"}]}, 0x9f8}, 0x1, 0x0, 0x0, 0x4010}, 0x811)
ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r0, 0x80045105, 0x0)
socket(0x1e, 0x80000, 0x9)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x2c402, 0x0)
write$auto_dev_fops_plock(0xffffffffffffffff, &(0x7f0000000200)="ea579eafbef6a78ace20c66c3ed28a307811ba5a77e0d6f20eee070874ce267321ef2da8ccef77a2a57912658cfac38b23199ba898ef2c29ea039494e108e23fc3d3de801c6cdb8c585be1ec026d327ad05a0c7812805bb6d050f902f2e77e549ec276c282a2bb8c2847f2e7105018d493a4", 0x72)
r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xf8f)
prctl$auto(0x16, 0x21, 0x6, 0xfffffffffffffffe, 0x5)
sendfile$auto(r5, r4, 0x0, 0x1fff5)
close_range$auto(0x2, 0x8, 0x0)
semctl$auto_GETNCNT(0x0, 0x4, 0xe, 0x4)
io_uring_setup$auto(0x4bf15e08, 0x0)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)
unshare$auto(0x40000080)

269.718009ms ago: executing program 3 (id=1021):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000780)='/proc/self/net/rpc/auth.rpcsec.init/channel\x00', 0x441, 0x0)
write$auto(r0, &(0x7f0000000080)='/ ys -ernel/tracing/set_event_notrace_pid\x00', 0x9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram10\x00', 0x60742, 0x0)
rseq$auto(&(0x7f0000000180)={0x6, 0x1, 0x0, 0x10000, 0x39c9, 0x7, "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"}, 0x40, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x15c, r2, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@HWSIM_ATTR_MULTI_RADIO={0x4, 0x1e}, @HWSIM_ATTR_MULTI_RADIO={0x4}, @HWSIM_ATTR_ADDR_TRANSMITTER={0x1b, 0x2, "d5ee63aea75a9d66346ce6fe2d5358bacb69eb3339afc4"}, @HWSIM_ATTR_PMSR_RESULT={0x124, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x120, 0x5, 0x0, 0x1, [{0x118, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xac, 0x1, "28e38e4c630e07759c5ce434a620566c1bc45cbc1143219f2a5666d7a88181015d76521283bdf4b956c64ade1d6524cdbadf571d3e18f821548f2d97c4916c91acac1f21e130391e465ed29b079802838a4f2276f1ab33acbe7ca5cfdadba6ba07cf47f5dca3fae4a035da2ba3e575d03095a9f5484f3eeffc275464868acfe4dca1984f3cd7d5f1ecbed6ca9861aadfb812993ef7c9014690aaa06a99f07b1d83c1795353c604c6"}, @NL80211_PMSR_PEER_ATTR_ADDR={0x67, 0x1, "5ac908e428d1dbf742f7d5a658c554e6b7095c98c41087f57de389de219d6ad92b8bfbb06d42b633d6780464550a1f04124f42a12f94d4eda4da737666ad3586609b23ea2f4a3d3f6147185bf51d410a98f124d3f056216ec43f338c1867a46e44f868"}]}, {0x4}]}]}]}, 0x15c}, 0x1, 0x0, 0x0, 0x8000}, 0x4880)
pwrite64$auto(0xc8, &(0x7f00000011c0)='\vX\xb5n\x91\vI\x1eRN8\x99\x88\xca\xd9\xec\x1epJ\"ds\x1cJr\xde:\x00!\r>\x94\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\x15\x0e\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9\xb7\x9d\xb6r9\x02\x00\x00\x00\x00\x00\x00\xc3\xc3\xdbS\xdc\xfc\x19\xba\xab\xe4\x8b\xdeT3^\a\xb2\xf3}\t4\xa2^\xe4b?\xb2Q\x8d\x8c\x83\x8e\xfe\x8e\b\x93M\x9e3\xa5`hN\xe36\xc3\x99\xe7L\x12\xaar}\x90\x05>\xab\xc9\xb7^\xcc\r\xb9V\x10\xa5\x81\x96e\x80\'\xc6\x06', 0x10, 0x0)

154.425984ms ago: executing program 3 (id=1022):
mmap$auto(0x0, 0x4020007, 0xdf, 0xebf, 0xffffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x8002, 0x2)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
mmap$auto(0x5, 0x1bbf, 0x1ff, 0x19, r0, 0x8020000007ffd)
close_range$auto(0x2, r0, 0x0)
socket(0x2b, 0x4, 0x10000033)
socket(0xa, 0x1, 0x84)
capset$auto(0x0, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0xa0681, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/fail-nth\x00', 0x1c9c82, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x1bf8c0, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
writev$auto(r2, &(0x7f0000000100)={0x0, 0x9}, 0x2)
mmap$auto(0x0, 0x400008, 0x8000000000000df, 0x9b72, r1, 0x6)
socketpair$auto(0x1, 0x6, 0x0, 0x0)
r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
ioctl$auto_SNDCTL_SYNTH_MEMAVL(r3, 0xc004510e, 0x0)
connect$auto(0x3, 0x0, 0x55)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x88c2, 0x0)
write$auto(r2, &(0x7f00000000c0)='7\x00\\\x1c\xe7k\x00\x00\x00\x00\x00\x00\x00\x00', 0x8083a)
getrandom$auto(&(0x7f0000000200)='+\x00^rp\xcb\" \x81u5z\b\x06m7\x84\xc8\xd8\\\x12GM\x02G\xda(\x7f\xe0\x8b\n\n\a\x9f\xcd\xa9\x97i\xe2\xa0\xdd4/^\x13\xde5\x96j\xf4\xcc\xc6g8\xe5\xf6k\xe4\xa0\xc5XF\xd9R5\x81\xa8\xc5\x11\x1a\x8b\xb3Y\xa4\xa1d\xe0\xbe.&\x7f\xd9o*\"\x1c\xe3\xe9%y\xf7\x8ffm\f\xe5\xb0\x13\x16\xa0\x8b>\x7f\xcea\x9b\xe4\x8e\xd4\xf2\xeb\xa5\xb7\xf4\xef\x90\xea\xd4\xa5$\\\x03\a\xf76\xa6z~,7\xccH\xac,\xb4\x8b\xa5\x8b\xcc\xedRFp[h\x14\rn\x1c\x17\x03\x80:\xcaDS\x8b\x01ssn\xc3a\xa8\xfb\x97\xf4\xb0\f\x99\xe2\x16m\v\x9aa\xb8R', 0x6, 0x3c5f)
mmap$auto(0x9000, 0x3fffff, 0x7, 0x11, r1, 0x20000040)

0s ago: executing program 0 (id=1023):
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000008c0)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x2, 0x0)
write$auto(0xca, &(0x7f0000000140)='\x04\x0e\x06\xd5\x89|d\v\x00\x00@\x00\x81\x00\x00\x00\xf6\xf5\x00\xdf\xff\x00', 0x10)
mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
sysfs$auto(0x2, 0x3c, 0x0)
r0 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r0, 0x3, &(0x7f0000000000)='Q**\xf9', &(0x7f0000000040), 0x0)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCR(0xffffffffffffffff, 0x0, 0x40)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x20000080)
syz_clone3(&(0x7f0000000300)={0x28020400, 0x0, 0x0, 0x0, {0x35}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x43102, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/security/tomoyo/query\x00', 0x42e01, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x2000c840)
memfd_secret$auto(0x9)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setrlimit$auto(0x9, 0x0)
mremap$auto(0x110c231000, 0x4, 0x4, 0x7, 0x100000000)
madvise$auto(0x110c230000, 0x1, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000000000007ffe)
io_setup$auto(0x7ffe, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.31' (ED25519) to the list of known hosts.
[   72.470373][ T5614] cgroup: Unknown subsys name 'net'
[   72.537714][ T5614] cgroup: Unknown subsys name 'cpuset'
[   72.547613][ T5614] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   74.091300][ T5614] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   75.899920][ T5631] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   75.909721][ T5628] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   75.919266][ T5631] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   75.926398][ T5628] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   75.936165][ T5628] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   75.942035][ T5633] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   75.943430][ T5628] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   75.952755][ T5633] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   75.960268][ T5628] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   75.967007][ T5633] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   75.972804][ T5628] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   75.986179][ T5628] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   75.997573][ T5628] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   76.005371][ T5628] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   76.013071][ T5628] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   76.027010][ T5631] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   76.037312][ T5633] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   76.047548][ T5633] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   76.059709][ T5633] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   76.067422][ T5633] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   77.442862][ T5639] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.451277][ T5639] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.459971][ T5639] bridge_slave_0: entered allmulticast mode
[   77.467391][ T5639] bridge_slave_0: entered promiscuous mode
[   77.498263][ T5639] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.505687][ T5639] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.512814][ T5639] bridge_slave_1: entered allmulticast mode
[   77.519950][ T5639] bridge_slave_1: entered promiscuous mode
[   77.562427][ T5635] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.569638][ T5635] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.576866][ T5635] bridge_slave_0: entered allmulticast mode
[   77.584139][ T5635] bridge_slave_0: entered promiscuous mode
[   77.614881][ T5635] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.622085][ T5635] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.629485][ T5635] bridge_slave_1: entered allmulticast mode
[   77.636565][ T5635] bridge_slave_1: entered promiscuous mode
[   77.674674][ T5639] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.710577][ T5639] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.739323][ T5635] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.769045][ T5625] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.776541][ T5625] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.783726][ T5625] bridge_slave_0: entered allmulticast mode
[   77.790703][ T5625] bridge_slave_0: entered promiscuous mode
[   77.800051][ T5635] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.829900][ T5625] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.837314][ T5625] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.844908][ T5625] bridge_slave_1: entered allmulticast mode
[   77.851880][ T5625] bridge_slave_1: entered promiscuous mode
[   77.869159][ T5639] team0: Port device team_slave_0 added
[   77.875019][ T5626] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.882170][ T5626] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.889633][ T5626] bridge_slave_0: entered allmulticast mode
[   77.896621][ T5626] bridge_slave_0: entered promiscuous mode
[   77.927161][ T5639] team0: Port device team_slave_1 added
[   77.932919][ T5626] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.940157][ T5626] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.947549][ T5626] bridge_slave_1: entered allmulticast mode
[   77.954724][ T5626] bridge_slave_1: entered promiscuous mode
[   77.971394][ T5635] team0: Port device team_slave_0 added
[   77.998121][ T5625] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   78.004546][ T5628] Bluetooth: hci1: command tx timeout
[   78.010524][ T5625] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   78.025266][ T5635] team0: Port device team_slave_1 added
[   78.070146][ T5639] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.077423][ T5639] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   78.083779][ T5628] Bluetooth: hci2: command tx timeout
[   78.104263][ T5633] Bluetooth: hci3: command tx timeout
[   78.109221][ T4944] Bluetooth: hci0: command tx timeout
[   78.115228][ T5639] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.134078][ T5626] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   78.160622][ T5639] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.167834][ T5639] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   78.193821][ T5639] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.207595][ T5626] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   78.218819][ T5625] team0: Port device team_slave_0 added
[   78.225509][ T5635] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.232462][ T5635] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   78.258422][ T5635] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.293180][ T5625] team0: Port device team_slave_1 added
[   78.299492][ T5635] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.306579][ T5635] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   78.332972][ T5635] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.381009][ T5625] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.388254][ T5625] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   78.414561][ T5625] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.427282][ T5625] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.434310][ T5625] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   78.460449][ T5625] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.473343][ T5626] team0: Port device team_slave_0 added
[   78.507654][ T5626] team0: Port device team_slave_1 added
[   78.528347][ T5639] hsr_slave_0: entered promiscuous mode
[   78.534900][ T5639] hsr_slave_1: entered promiscuous mode
[   78.568257][ T5635] hsr_slave_0: entered promiscuous mode
[   78.574543][ T5635] hsr_slave_1: entered promiscuous mode
[   78.580992][ T5635] debugfs: 'hsr0' already exists in 'hsr'
[   78.586952][ T5635] Cannot create hsr debugfs directory
[   78.629643][ T5626] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.636720][ T5626] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   78.662773][ T5626] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.708759][ T5626] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.715870][ T5626] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   78.742014][ T5626] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.757204][ T5625] hsr_slave_0: entered promiscuous mode
[   78.763381][ T5625] hsr_slave_1: entered promiscuous mode
[   78.769598][ T5625] debugfs: 'hsr0' already exists in 'hsr'
[   78.775500][ T5625] Cannot create hsr debugfs directory
[   78.926403][ T5626] hsr_slave_0: entered promiscuous mode
[   78.932820][ T5626] hsr_slave_1: entered promiscuous mode
[   78.939127][ T5626] debugfs: 'hsr0' already exists in 'hsr'
[   78.945034][ T5626] Cannot create hsr debugfs directory
[   79.238794][ T5639] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   79.251717][ T5639] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   79.259913][ T5639] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   79.271993][ T5639] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   79.296814][ T5639] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   79.308379][ T5639] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   79.317171][ T5639] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   79.326711][ T5639] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   79.389086][ T5635] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   79.399792][ T5635] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   79.408087][ T5635] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   79.418898][ T5635] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   79.428226][ T5635] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   79.438219][ T5635] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   79.460922][ T5635] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   79.472255][ T5635] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   79.550899][ T5625] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   79.561496][ T5625] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   79.572977][ T5625] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   79.582609][ T5625] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   79.597741][ T5625] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   79.608177][ T5625] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   79.616464][ T5625] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   79.626097][ T5625] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   79.722408][ T5626] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   79.732728][ T5626] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   79.741408][ T5626] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   79.751220][ T5626] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   79.766692][ T5626] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   79.777082][ T5626] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   79.785789][ T5626] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   79.794976][ T5626] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   79.818006][ T5639] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.886820][ T5639] 8021q: adding VLAN 0 to HW filter on device team0
[   79.912929][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.920396][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.941497][ T5635] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.960507][ T1123] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.967643][ T1123] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.029485][ T5635] 8021q: adding VLAN 0 to HW filter on device team0
[   80.054396][ T5625] 8021q: adding VLAN 0 to HW filter on device bond0
[   80.063564][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.070750][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.083866][ T5628] Bluetooth: hci1: command tx timeout
[   80.100475][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.107590][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.165898][ T4944] Bluetooth: hci3: command tx timeout
[   80.166154][ T5633] Bluetooth: hci0: command tx timeout
[   80.171400][ T5628] Bluetooth: hci2: command tx timeout
[   80.199746][ T5625] 8021q: adding VLAN 0 to HW filter on device team0
[   80.239148][ T5626] 8021q: adding VLAN 0 to HW filter on device bond0
[   80.260415][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.267630][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.303167][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.310407][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.358563][ T5626] 8021q: adding VLAN 0 to HW filter on device team0
[   80.393234][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.400449][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.450451][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.457682][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.982165][ T5639] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.134163][ T5639] veth0_vlan: entered promiscuous mode
[   81.170742][ T5639] veth1_vlan: entered promiscuous mode
[   81.272460][ T5635] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.283250][ T5639] veth0_macvtap: entered promiscuous mode
[   81.320343][ T5639] veth1_macvtap: entered promiscuous mode
[   81.388100][ T5639] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.438665][ T5639] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.520990][   T48] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.533253][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.550827][ T5625] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.559521][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.568402][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.596875][ T5635] veth0_vlan: entered promiscuous mode
[   81.621870][ T5626] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.654378][ T5635] veth1_vlan: entered promiscuous mode
[   81.748020][ T3274] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.756673][ T5625] veth0_vlan: entered promiscuous mode
[   81.763402][ T3274] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.816508][ T5626] veth0_vlan: entered promiscuous mode
[   81.834907][ T5625] veth1_vlan: entered promiscuous mode
[   81.850446][ T1123] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.858319][ T5626] veth1_vlan: entered promiscuous mode
[   81.870254][ T1123] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.871487][ T5635] veth0_macvtap: entered promiscuous mode
[   81.898877][ T5635] veth1_macvtap: entered promiscuous mode
[   81.967996][ T5625] veth0_macvtap: entered promiscuous mode
[   81.992734][ T5626] veth0_macvtap: entered promiscuous mode
[   82.002637][ T5639] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   82.006625][ T5625] veth1_macvtap: entered promiscuous mode
[   82.029089][ T5635] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.038825][ T5626] veth1_macvtap: entered promiscuous mode
[   82.056307][ T5635] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.098933][ T3286] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.122977][ T3286] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.151434][ T3286] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.161541][ T3286] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.170505][ T5633] Bluetooth: hci1: command tx timeout
[   82.182864][ T5626] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.207416][ T5625] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.244395][ T5633] Bluetooth: hci0: command tx timeout
[   82.244650][ T4944] Bluetooth: hci3: command tx timeout
[   82.255483][ T5628] Bluetooth: hci2: command tx timeout
[   82.287973][ T5625] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.312906][ T5626] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.346209][ T3286] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.372373][ T3286] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.396826][ T3286] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.409613][ T3286] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.447378][ T3286] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.464185][ T3286] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.493289][ T3286] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.502302][ T3286] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.513132][ T3274] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.529968][ T3274] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.652006][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.668534][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.721783][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.738882][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.808961][ T1123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.828237][ T1123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.117897][ T3286] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.129605][ T3286] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.227191][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.270848][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.111251][ T5811] netlink: 'syz.3.4': attribute type 11 has an invalid length.
[   84.152263][ T5811] netlink: 'syz.3.4': attribute type 11 has an invalid length.
[   84.188484][ T5811] netlink: 'syz.3.4': attribute type 11 has an invalid length.
[   84.245357][ T5628] Bluetooth: hci1: command tx timeout
[   84.326214][ T5628] Bluetooth: hci2: command tx timeout
[   84.326241][ T4944] Bluetooth: hci3: command tx timeout
[   84.332117][ T5633] Bluetooth: hci0: command tx timeout
[   85.704227][ T5854] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[   85.744895][ T5849] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   89.041391][ T5898] zswap: compressor  not available
[   89.195737][ T5911] smpboot: CPU 1 is now offline
[   89.340551][   T24] cfg80211: failed to load regulatory.db
[   91.312681][ T5943] netlink: 28 bytes leftover after parsing attributes in process `syz.3.25'.
[   92.379096][ T5963] sg_write: data in/out 131052/209 bytes for SCSI command 0x67-- guessing data in;
[   92.379096][ T5963]    program syz.1.30 not setting count and/or reply_len properly
[   92.699956][ T5970] ICMPv6: process `syz.0.33' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead
[   93.016178][ T5974] syz.0.33 uses obsolete (PF_INET,SOCK_PACKET)
[   93.113977][ T5967] smpboot: Booting Node 0 Processor 1 APIC 0x1
[   94.214281][ T5991] Zero length message leads to an empty skb
[   94.368784][ T5996] netlink: 28 bytes leftover after parsing attributes in process `syz.3.38'.
[   94.387373][ T5996] bridge_slave_1: left allmulticast mode
[   94.398803][ T5996] bridge_slave_1: left promiscuous mode
[   94.421348][ T5996] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.451508][ T5996] bridge_slave_0: left allmulticast mode
[   94.457692][ T5996] bridge_slave_0: left promiscuous mode
[   94.469583][ T5996] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.491149][ T6002] netlink: 8 bytes leftover after parsing attributes in process `syz.2.37'.
[   94.812750][ T6005] WARNING! power/level is deprecated; use power/control instead
[   96.056691][ T6019] netlink: 8 bytes leftover after parsing attributes in process `syz.1.42'.
[   97.282726][ T6037] smpboot: CPU 1 is now offline
[   97.552308][ T6032] mmap: syz.2.46 (6032) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   97.868773][ T6049] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[   98.726961][ T6065] bridge0: port 3(gretap0) entered blocking state
[   98.750342][ T6065] bridge0: port 3(gretap0) entered disabled state
[   98.773847][ T6065] gretap0: entered allmulticast mode
[   98.801417][ T6065] gretap0: entered promiscuous mode
[   98.821263][ T6065] FAULT_INJECTION: forcing a failure.
[   98.821263][ T6065] name failslab, interval 1, probability 0, space 0, times 1
[   98.873087][ T6065] CPU: 0 UID: 0 PID: 6065 Comm: syz.1.52 Not tainted syzkaller #0 PREEMPT(full) 
[   98.873110][ T6065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[   98.873124][ T6065] Call Trace:
[   98.873134][ T6065]  <TASK>
[   98.873141][ T6065]  dump_stack_lvl+0x100/0x190
[   98.873166][ T6065]  should_fail_ex.cold+0x5/0xa
[   98.873186][ T6065]  should_failslab+0xc2/0x120
[   98.873204][ T6065]  __kvmalloc_node_noprof+0xfa/0xa00
[   98.873219][ T6065]  ? bucket_table_alloc.isra.0+0x88/0x460
[   98.873246][ T6065]  bucket_table_alloc.isra.0+0x88/0x460
[   98.873269][ T6065]  rhashtable_init_noprof+0x43b/0x890
[   98.873292][ T6065]  nbp_vlan_init+0x238/0x500
[   98.873316][ T6065]  ? __pfx_nbp_vlan_init+0x10/0x10
[   98.873340][ T6065]  ? __local_bh_enable_ip+0x9e/0x120
[   98.873359][ T6065]  ? lockdep_hardirqs_on+0x78/0x100
[   98.873378][ T6065]  ? br_fdb_add_local+0x43/0x60
[   98.873397][ T6065]  ? __local_bh_enable_ip+0x9e/0x120
[   98.873419][ T6065]  br_add_if+0xf79/0x1b40
[   98.873442][ T6065]  ? veth_get_iflink+0x233/0x2c0
[   98.873464][ T6065]  add_del_if+0x114/0x160
[   98.873479][ T6065]  br_dev_siocdevprivate+0x8ac/0x1650
[   98.873495][ T6065]  ? __pfx_br_dev_siocdevprivate+0x10/0x10
[   98.873514][ T6065]  ? do_raw_spin_lock+0x128/0x260
[   98.873532][ T6065]  ? find_held_lock+0x2b/0x80
[   98.873551][ T6065]  ? debug_mutex_remove_waiter+0xa8/0x320
[   98.873569][ T6065]  ? debug_mutex_remove_waiter+0xa8/0x320
[   98.873594][ T6065]  ? netdev_name_node_lookup+0x107/0x150
[   98.873616][ T6065]  ? __mutex_lock+0x838/0x1b10
[   98.873640][ T6065]  dev_ifsioc+0xc2f/0x1f10
[   98.873656][ T6065]  ? __pfx_dev_ifsioc+0x10/0x10
[   98.873669][ T6065]  ? __pfx___mutex_lock+0x10/0x10
[   98.873694][ T6065]  ? dev_load+0x8e/0x240
[   98.873706][ T6065]  ? dev_load+0x8e/0x240
[   98.873723][ T6065]  dev_ioctl+0x70e/0x1070
[   98.873739][ T6065]  sock_ioctl+0x494/0x6b0
[   98.873760][ T6065]  ? __pfx_sock_ioctl+0x10/0x10
[   98.873779][ T6065]  ? hook_file_ioctl_common+0x149/0x410
[   98.873798][ T6065]  ? __fget_files+0x21f/0x3d0
[   98.873818][ T6065]  ? __pfx_sock_ioctl+0x10/0x10
[   98.873839][ T6065]  __x64_sys_ioctl+0x18e/0x210
[   98.873855][ T6065]  do_syscall_64+0x10b/0xf80
[   98.873873][ T6065]  ? clear_bhb_loop+0x40/0x90
[   98.873891][ T6065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.873906][ T6065] RIP: 0033:0x7fd794d9cdd9
[   98.873920][ T6065] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   98.873933][ T6065] RSP: 002b:00007fd795c00028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   98.873948][ T6065] RAX: ffffffffffffffda RBX: 00007fd795016090 RCX: 00007fd794d9cdd9
[   98.873958][ T6065] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008
[   98.873967][ T6065] RBP: 00007fd794e32d69 R08: 0000000000000000 R09: 0000000000000000
[   98.873975][ T6065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   98.873984][ T6065] R13: 00007fd795016128 R14: 00007fd795016090 R15: 00007ffc6fa058e8
[   98.874003][ T6065]  </TASK>
[   99.918750][ T6065] bridge0: port 3(gretap0) entered blocking state
[   99.925309][ T6065] bridge0: port 3(gretap0) entered forwarding state
[  100.383016][ T6080] input: f¬
 as /devices/virtual/input/input6
[  101.962747][ T6105] FAULT_INJECTION: forcing a failure.
[  101.962747][ T6105] name failslab, interval 1, probability 0, space 0, times 0
[  102.027965][ T6105] CPU: 0 UID: 0 PID: 6105 Comm: syz.3.62 Not tainted syzkaller #0 PREEMPT(full) 
[  102.027988][ T6105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  102.027997][ T6105] Call Trace:
[  102.028003][ T6105]  <TASK>
[  102.028009][ T6105]  dump_stack_lvl+0x100/0x190
[  102.028032][ T6105]  should_fail_ex.cold+0x5/0xa
[  102.028052][ T6105]  should_failslab+0xc2/0x120
[  102.028069][ T6105]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  102.028085][ T6105]  ? kasprintf+0xc7/0x100
[  102.028099][ T6105]  ? __lock_acquire+0x4a5/0x2630
[  102.028116][ T6105]  kvasprintf+0xbc/0x150
[  102.028131][ T6105]  ? __pfx_kvasprintf+0x10/0x10
[  102.028153][ T6105]  kasprintf+0xc7/0x100
[  102.028167][ T6105]  ? __pfx_kasprintf+0x10/0x10
[  102.028182][ T6105]  ? __is_module_percpu_address+0x1c2/0x430
[  102.028212][ T6105]  alloc_workqueue_noprof+0x114/0x200
[  102.028233][ T6105]  ? __pfx_alloc_workqueue_noprof+0x10/0x10
[  102.028258][ T6105]  ? __pfx___debug_object_init+0x10/0x10
[  102.028285][ T6105]  nci_register_device+0x394/0xb80
[  102.028301][ T6105]  ? __pfx_nci_register_device+0x10/0x10
[  102.028318][ T6105]  ? lockdep_init_map_type+0x5c/0x250
[  102.028336][ T6105]  virtual_ncidev_open+0x141/0x220
[  102.028359][ T6105]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  102.028380][ T6105]  misc_open+0x26d/0x450
[  102.028397][ T6105]  ? __pfx_misc_open+0x10/0x10
[  102.028414][ T6105]  chrdev_open+0x234/0x6a0
[  102.028432][ T6105]  ? __pfx_apparmor_file_open+0x10/0x10
[  102.028455][ T6105]  ? __pfx_chrdev_open+0x10/0x10
[  102.028473][ T6105]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  102.028496][ T6105]  do_dentry_open+0x6d8/0x1660
[  102.028515][ T6105]  ? __pfx_chrdev_open+0x10/0x10
[  102.028537][ T6105]  vfs_open+0x82/0x3f0
[  102.028560][ T6105]  path_openat+0x208c/0x31a0
[  102.028585][ T6105]  ? __pfx_path_openat+0x10/0x10
[  102.028610][ T6105]  do_file_open+0x20e/0x430
[  102.028629][ T6105]  ? __pfx_do_file_open+0x10/0x10
[  102.028663][ T6105]  ? alloc_fd+0x476/0x790
[  102.028683][ T6105]  ? do_getname+0x191/0x390
[  102.028705][ T6105]  do_sys_openat2+0x10d/0x1e0
[  102.028727][ T6105]  ? __pfx_do_sys_openat2+0x10/0x10
[  102.028755][ T6105]  __x64_sys_openat+0x12d/0x210
[  102.028778][ T6105]  ? __pfx___x64_sys_openat+0x10/0x10
[  102.028803][ T6105]  ? rcu_is_watching+0x12/0xc0
[  102.028823][ T6105]  do_syscall_64+0x10b/0xf80
[  102.028841][ T6105]  ? clear_bhb_loop+0x40/0x90
[  102.028859][ T6105]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.028881][ T6105] RIP: 0033:0x7f1dd1d9cdd9
[  102.028895][ T6105] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  102.028909][ T6105] RSP: 002b:00007f1dd2b91028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  102.028925][ T6105] RAX: ffffffffffffffda RBX: 00007f1dd2015fa0 RCX: 00007f1dd1d9cdd9
[  102.028935][ T6105] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  102.028945][ T6105] RBP: 00007f1dd1e32d69 R08: 0000000000000000 R09: 0000000000000000
[  102.028954][ T6105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  102.028963][ T6105] R13: 00007f1dd2016038 R14: 00007f1dd2015fa0 R15: 00007ffe8dec03c8
[  102.028983][ T6105]  </TASK>
[  103.384675][ T6122] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  103.479316][ T6127] smpboot: CPU 1 is now offline
[  105.816862][ T6157] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  107.655636][ T6179] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  107.839124][ T6180] smpboot: CPU 1 is now offline
[  109.592378][ T6204] netlink: 342 bytes leftover after parsing attributes in process `syz.2.80'.
[  109.848188][ T6209] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  110.087643][ T6210] smpboot: CPU 1 is now offline
[  110.283889][ T6214] capability: warning: `syz.0.82' uses 32-bit capabilities (legacy support in use)
[  111.496229][ T6233] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  111.628582][   T22] IRQ fixup: irq 34 move in progress, old vector 49
[  111.636891][ T6235] smpboot: CPU 1 is now offline
[  114.104518][ T6259] Process accounting resumed
[  114.192089][ T6280] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  114.398247][ T6284] smpboot: CPU 1 is now offline
[  117.521504][ T6321] FAULT_INJECTION: forcing a failure.
[  117.521504][ T6321] name failslab, interval 1, probability 0, space 0, times 0
[  117.615131][ T6321] CPU: 0 UID: 0 PID: 6321 Comm: syz.2.99 Not tainted syzkaller #0 PREEMPT(full) 
[  117.615156][ T6321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  117.615165][ T6321] Call Trace:
[  117.615171][ T6321]  <TASK>
[  117.615177][ T6321]  dump_stack_lvl+0x100/0x190
[  117.615214][ T6321]  should_fail_ex.cold+0x5/0xa
[  117.615239][ T6321]  ? lsm_blob_alloc+0x68/0x90
[  117.615258][ T6321]  should_failslab+0xc2/0x120
[  117.615275][ T6321]  __kmalloc_noprof+0xe0/0x850
[  117.615299][ T6321]  ? trace_kmem_cache_alloc+0xd5/0x100
[  117.615319][ T6321]  lsm_blob_alloc+0x68/0x90
[  117.615338][ T6321]  security_prepare_creds+0x2d/0x290
[  117.615357][ T6321]  prepare_creds+0x5d6/0x950
[  117.615375][ T6321]  copy_creds+0xa7/0xa50
[  117.615393][ T6321]  copy_process+0x1347/0x7e00
[  117.615413][ T6321]  ? futex_unqueue+0x133/0x2c0
[  117.615428][ T6321]  ? futex_unqueue+0x133/0x2c0
[  117.615451][ T6321]  ? __pfx_copy_process+0x10/0x10
[  117.615475][ T6321]  ? _copy_from_user+0x59/0xd0
[  117.615500][ T6321]  kernel_clone+0x12e/0x9c0
[  117.615520][ T6321]  ? futex_hash+0x141/0x370
[  117.615533][ T6321]  ? __pfx_kernel_clone+0x10/0x10
[  117.615556][ T6321]  ? __pfx_futex_wait+0x10/0x10
[  117.615588][ T6321]  __do_sys_clone3+0x214/0x290
[  117.615609][ T6321]  ? __pfx___do_sys_clone3+0x10/0x10
[  117.615629][ T6321]  ? __hrtimer_rearm_deferred+0x24d/0x740
[  117.615657][ T6321]  ? irqentry_exit+0x246/0x790
[  117.615686][ T6321]  ? rcu_is_watching+0x12/0xc0
[  117.615705][ T6321]  do_syscall_64+0x10b/0xf80
[  117.615723][ T6321]  ? clear_bhb_loop+0x40/0x90
[  117.615741][ T6321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.615756][ T6321] RIP: 0033:0x7f489439cdd9
[  117.615773][ T6321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  117.615787][ T6321] RSP: 002b:00007f48952e8ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  117.615802][ T6321] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f489439cdd9
[  117.615812][ T6321] RDX: 00007f48952e8f10 RSI: 0000000000000058 RDI: 00007f48952e8f10
[  117.615821][ T6321] RBP: 00007f4894432d69 R08: 0000000000000000 R09: 0000000000000058
[  117.615831][ T6321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  117.615839][ T6321] R13: 00007f4894616038 R14: 00007f4894615fa0 R15: 00007ffeee250228
[  117.615858][ T6321]  </TASK>
[  118.352395][ T6328] [U]  
[  118.355291][ T6328] [U] 
[  118.357964][ T6328] [U] 
[  118.360632][ T6328] [U] 
[  119.125606][ T6326] [U] 
[  119.762815][ T6349] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  119.863185][ T6352] smpboot: CPU 1 is now offline
[  123.509332][ T6397] netlink: 4 bytes leftover after parsing attributes in process `syz.3.117'.
[  123.546851][ T6397] netlink: 25 bytes leftover after parsing attributes in process `syz.3.117'.
[  123.756109][ T6397] ACPI: \_SB_.LNKS: No IRQ available. Try pci=noacpi or acpi=off
[  123.812470][ T6397] pci 0000:00:01.3: PCI INT A: no GSI
[  123.886182][ T6402] netlink: 'syz.1.119': attribute type 4 has an invalid length.
[  126.115184][ T6431] syz.3.127 (6431) used greatest stack depth: 17696 bytes left
[  126.397126][ T6437] ima: policy update failed
[  126.429619][   T29] audit: type=1802 audit(1777726100.850:2): pid=6437 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.129" res=0 errno=0
[  130.469175][ T6502] netlink: 8 bytes leftover after parsing attributes in process `syz.3.139'.
[  131.088783][ T6515] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  131.212321][   T22] IRQ fixup: irq 33 move in progress, old vector 47
[  131.221320][ T6516] smpboot: CPU 1 is now offline
[  131.500023][ T5628] Bluetooth: hci1: unexpected event 0x36 length: 123 > 7
[  132.043822][   T29] audit: type=1400 audit(1777726106.450:3): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=6525 comm="syz.0.145"
[  132.307737][ T6541] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  132.415208][ T6544] smpboot: CPU 1 is now offline
[  132.807306][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  132.820038][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  136.017811][ T6593] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  137.538757][ T6612] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  137.689820][ T6613] smpboot: CPU 1 is now offline
[  143.778710][ T6664] futex_wake_op: syz.1.172 tries to shift op by -2048; fix this program
[  143.827420][ T6678] netlink: 28 bytes leftover after parsing attributes in process `syz.3.175'.
[  143.828467][ T6667] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  144.019518][   T22] IRQ fixup: irq 34 move in progress, old vector 49
[  144.020934][ T6680] smpboot: CPU 1 is now offline
[  144.527397][ T6683] Process accounting paused
[  145.514289][ T6704] netlink: 24 bytes leftover after parsing attributes in process `syz.0.180'.
[  146.266308][ T6712] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  146.511629][ T6717] smpboot: CPU 1 is now offline
[  149.820267][ T6760] netlink: 28 bytes leftover after parsing attributes in process `syz.1.190'.
[  151.151369][ T6780] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  151.174822][ T6784] input: f¬
 as /devices/virtual/input/input7
[  151.442669][ T6785] smpboot: CPU 1 is now offline
[  152.760225][ T6820] netlink: 20 bytes leftover after parsing attributes in process `syz.2.201'.
[  153.832838][ T6840] netlink: 'syz.3.206': attribute type 1 has an invalid length.
[  153.874886][ T6840] netlink: 9 bytes leftover after parsing attributes in process `syz.3.206'.
[  154.950976][ T6857] binder: 6856:6857 ioctl 400c620e 0 returned -14
[  156.420740][ T6882] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations!
[  157.255625][ T6896] FAULT_INJECTION: forcing a failure.
[  157.255625][ T6896] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  157.370850][ T6896] CPU: 0 UID: 0 PID: 6896 Comm: syz.0.221 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  157.370875][ T6896] Tainted: [L]=SOFTLOCKUP
[  157.370880][ T6896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  157.370889][ T6896] Call Trace:
[  157.370894][ T6896]  <TASK>
[  157.370900][ T6896]  dump_stack_lvl+0x100/0x190
[  157.370922][ T6896]  should_fail_ex.cold+0x5/0xa
[  157.370942][ T6896]  _copy_to_user+0x32/0xd0
[  157.370968][ T6896]  simple_read_from_buffer+0xcb/0x170
[  157.370987][ T6896]  proc_fail_nth_read+0x1af/0x230
[  157.371011][ T6896]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  157.371035][ T6896]  ? rw_verify_area+0xce/0x6d0
[  157.371049][ T6896]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  157.371071][ T6896]  vfs_read+0x1e4/0xb30
[  157.371090][ T6896]  ? __pfx_vfs_read+0x10/0x10
[  157.371112][ T6896]  ? __fget_files+0x215/0x3d0
[  157.371133][ T6896]  ? __fget_files+0x21f/0x3d0
[  157.371155][ T6896]  ksys_read+0x12a/0x250
[  157.371171][ T6896]  ? __pfx_ksys_read+0x10/0x10
[  157.371186][ T6896]  ? _raw_read_unlock+0x28/0x50
[  157.371205][ T6896]  ? rcu_is_watching+0x12/0xc0
[  157.371225][ T6896]  do_syscall_64+0x10b/0xf80
[  157.371243][ T6896]  ? clear_bhb_loop+0x40/0x90
[  157.371261][ T6896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.371276][ T6896] RIP: 0033:0x7f0ca355d60e
[  157.371288][ T6896] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  157.371302][ T6896] RSP: 002b:00007f0ca4465fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  157.371316][ T6896] RAX: ffffffffffffffda RBX: 00007f0ca44666c0 RCX: 00007f0ca355d60e
[  157.371328][ T6896] RDX: 000000000000000f RSI: 00007f0ca44660a0 RDI: 0000000000000003
[  157.371337][ T6896] RBP: 00007f0ca4466090 R08: 0000000000000000 R09: 0000000000000000
[  157.371345][ T6896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  157.371354][ T6896] R13: 00007f0ca3816038 R14: 00007f0ca3815fa0 R15: 00007ffd4cbf8d28
[  157.371372][ T6896]  </TASK>
[  158.967319][ T6914] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  159.062320][ T6914] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  159.354072][ T6914] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  159.466918][ T6914] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  159.554119][ T6914] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  159.652422][ T6914] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  159.835264][ T6914] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  159.931831][ T6914] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  160.062341][ T6914] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  160.240641][ T6914] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  160.332157][ T6914] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  160.403816][ T5628] Bluetooth: hci0: command 0x0c1a tx timeout
[  160.463531][ T6914] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  161.523845][ T5628] Bluetooth: hci1: command 0x0c1a tx timeout
[  161.843889][ T5628] Bluetooth: hci2: command 0x0c1a tx timeout
[  162.044258][ T6943] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  162.246686][ T5628] Bluetooth: hci3: command 0x0c1a tx timeout
[  162.395771][   T22] IRQ fixup: irq 33 move in progress, old vector 47
[  162.408884][ T6949] smpboot: CPU 1 is now offline
[  162.483692][ T5628] Bluetooth: hci0: command 0x0c1a tx timeout
[  163.603872][ T5628] Bluetooth: hci1: command 0x0c1a tx timeout
[  163.924123][ T5628] Bluetooth: hci2: command 0x0c1a tx timeout
[  164.323982][ T5628] Bluetooth: hci3: command 0x0c1a tx timeout
[  164.564976][ T5628] Bluetooth: hci0: command 0x0c1a tx timeout
[  165.683702][ T5628] Bluetooth: hci1: command 0x0c1a tx timeout
[  166.005088][ T5628] Bluetooth: hci2: command 0x0c1a tx timeout
[  166.403972][ T5628] Bluetooth: hci3: command 0x0c1a tx timeout
[  167.484505][ T7026] netlink: 54 bytes leftover after parsing attributes in process `syz.0.249'.
[  167.561552][ T5628] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  169.604172][ T5633] Bluetooth: hci0: command 0x0c1a tx timeout
[  171.437562][ T7093] ima: policy update failed
[  171.543864][   T29] audit: type=1802 audit(1777726145.960:4): pid=7093 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.266" res=0 errno=0
[  171.684119][ T5633] Bluetooth: hci0: command 0x0c1a tx timeout
[  173.958145][ T7128] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  175.860978][ T7157] Process accounting resumed
[  176.247319][ T7177] netlink: 8 bytes leftover after parsing attributes in process `syz.0.285'.
[  176.563226][ T7185] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  176.972283][ T7202] FAULT_INJECTION: forcing a failure.
[  176.972283][ T7202] name failslab, interval 1, probability 0, space 0, times 0
[  177.005574][ T7202] CPU: 1 UID: 0 PID: 7202 Comm: syz.0.292 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  177.005599][ T7202] Tainted: [L]=SOFTLOCKUP
[  177.005604][ T7202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  177.005616][ T7202] Call Trace:
[  177.005622][ T7202]  <TASK>
[  177.005628][ T7202]  dump_stack_lvl+0x100/0x190
[  177.005650][ T7202]  should_fail_ex.cold+0x5/0xa
[  177.005671][ T7202]  should_failslab+0xc2/0x120
[  177.005691][ T7202]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  177.005713][ T7202]  ? prepare_creds+0x2c/0x950
[  177.005729][ T7202]  ? get_random_u64+0x575/0x7c0
[  177.005748][ T7202]  prepare_creds+0x2c/0x950
[  177.005765][ T7202]  copy_creds+0xa7/0xa50
[  177.005783][ T7202]  copy_process+0x1347/0x7e00
[  177.005803][ T7202]  ? futex_unqueue+0x133/0x2c0
[  177.005818][ T7202]  ? futex_unqueue+0x133/0x2c0
[  177.005840][ T7202]  ? __pfx_copy_process+0x10/0x10
[  177.005864][ T7202]  ? _copy_from_user+0x59/0xd0
[  177.005890][ T7202]  kernel_clone+0x12e/0x9c0
[  177.005909][ T7202]  ? futex_hash+0x141/0x370
[  177.005922][ T7202]  ? __pfx_kernel_clone+0x10/0x10
[  177.005945][ T7202]  ? __pfx_futex_wait+0x10/0x10
[  177.005968][ T7202]  ? __pfx_kernel_waitid+0x10/0x10
[  177.005999][ T7202]  __do_sys_clone3+0x214/0x290
[  177.006025][ T7202]  ? __pfx___do_sys_clone3+0x10/0x10
[  177.006052][ T7202]  ? rcu_read_unlock+0x17/0x60
[  177.006069][ T7202]  ? rcu_read_unlock+0x17/0x60
[  177.006097][ T7202]  ? rcu_is_watching+0x12/0xc0
[  177.006117][ T7202]  do_syscall_64+0x10b/0xf80
[  177.006136][ T7202]  ? clear_bhb_loop+0x40/0x90
[  177.006153][ T7202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.006169][ T7202] RIP: 0033:0x7f0ca359cdd9
[  177.006183][ T7202] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  177.006196][ T7202] RSP: 002b:00007f0ca4465ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  177.006211][ T7202] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f0ca359cdd9
[  177.006220][ T7202] RDX: 00007f0ca4465f10 RSI: 0000000000000058 RDI: 00007f0ca4465f10
[  177.006230][ T7202] RBP: 00007f0ca3632d69 R08: 0000000000000000 R09: 0000000000000058
[  177.006238][ T7202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  177.006247][ T7202] R13: 00007f0ca3816038 R14: 00007f0ca3815fa0 R15: 00007ffd4cbf8d28
[  177.006266][ T7202]  </TASK>
[  179.866113][ T7262] block2mtd: illegal erase size
[  181.668725][ T7301] FAULT_INJECTION: forcing a failure.
[  181.668725][ T7301] name failslab, interval 1, probability 0, space 0, times 0
[  181.732037][ T7301] CPU: 1 UID: 0 PID: 7301 Comm: syz.2.316 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  181.732080][ T7301] Tainted: [L]=SOFTLOCKUP
[  181.732090][ T7301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  181.732106][ T7301] Call Trace:
[  181.732115][ T7301]  <TASK>
[  181.732124][ T7301]  dump_stack_lvl+0x100/0x190
[  181.732158][ T7301]  should_fail_ex.cold+0x5/0xa
[  181.732192][ T7301]  should_failslab+0xc2/0x120
[  181.732224][ T7301]  __kmalloc_cache_noprof+0x7a/0x6f0
[  181.732266][ T7301]  ? snd_pcm_hw_param_near.constprop.0+0xbc/0x850
[  181.732305][ T7301]  ? kfree+0x223/0x6c0
[  181.732344][ T7301]  snd_pcm_hw_param_near.constprop.0+0xbc/0x850
[  181.732387][ T7301]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  181.732426][ T7301]  ? calc_src_frames.isra.0+0x17c/0x1c0
[  181.732472][ T7301]  snd_pcm_oss_change_params_locked+0x193a/0x39f0
[  181.732525][ T7301]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  181.732589][ T7301]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  181.732628][ T7301]  snd_pcm_oss_read+0x3d4/0x730
[  181.732669][ T7301]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[  181.732709][ T7301]  vfs_read+0x1e4/0xb30
[  181.732744][ T7301]  ? __pfx_vfs_read+0x10/0x10
[  181.732771][ T7301]  ? find_held_lock+0x2b/0x80
[  181.732805][ T7301]  ? __fget_files+0x215/0x3d0
[  181.732835][ T7301]  ? __fget_files+0x215/0x3d0
[  181.732870][ T7301]  ? __fget_files+0x21f/0x3d0
[  181.732909][ T7301]  ksys_read+0x12a/0x250
[  181.732937][ T7301]  ? __pfx_ksys_read+0x10/0x10
[  181.732970][ T7301]  ? rcu_is_watching+0x12/0xc0
[  181.733016][ T7301]  do_syscall_64+0x10b/0xf80
[  181.733050][ T7301]  ? clear_bhb_loop+0x40/0x90
[  181.733085][ T7301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.733112][ T7301] RIP: 0033:0x7f489439cdd9
[  181.733134][ T7301] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  181.733162][ T7301] RSP: 002b:00007f48952e9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  181.733187][ T7301] RAX: ffffffffffffffda RBX: 00007f4894615fa0 RCX: 00007f489439cdd9
[  181.733204][ T7301] RDX: 0000000000008080 RSI: 0000000000000000 RDI: 0000000000000003
[  181.733221][ T7301] RBP: 00007f4894432d69 R08: 0000000000000000 R09: 0000000000000000
[  181.733239][ T7301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  181.733254][ T7301] R13: 00007f4894616038 R14: 00007f4894615fa0 R15: 00007ffeee250228
[  181.733292][ T7301]  </TASK>
[  185.957045][ T7397] smpboot: CPU 1 is now offline
[  187.537466][ T7424] netlink: 342 bytes leftover after parsing attributes in process `syz.3.338'.
[  189.449991][ T7460] udc dummy_udc.0: soft-connect without a gadget driver
[  190.902084][ T7499] input: f¬
 as /devices/virtual/input/input8
[  192.208223][ T7506] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  192.538109][ T7531] smpboot: CPU 1 is now offline
[  194.209486][ T7559] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  194.248967][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  194.258965][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  194.434764][ T7560] smpboot: CPU 1 is now offline
[  194.446375][ T7563] netlink: 'syz.3.369': attribute type 11 has an invalid length.
[  194.488711][ T7563] netlink: 'syz.3.369': attribute type 11 has an invalid length.
[  194.538856][ T7563] netlink: 'syz.3.369': attribute type 11 has an invalid length.
[  194.564840][ T5628] Bluetooth: hci2: unexpected event for opcode 0x7c89
[  194.685339][ T7568] FAULT_INJECTION: forcing a failure.
[  194.685339][ T7568] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.982996][ T7568] CPU: 0 UID: 0 PID: 7568 Comm: syz.2.368 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  194.983022][ T7568] Tainted: [L]=SOFTLOCKUP
[  194.983027][ T7568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  194.983035][ T7568] Call Trace:
[  194.983041][ T7568]  <TASK>
[  194.983046][ T7568]  dump_stack_lvl+0x100/0x190
[  194.983068][ T7568]  should_fail_ex.cold+0x5/0xa
[  194.983087][ T7568]  strncpy_from_user+0x3b/0x2d0
[  194.983105][ T7568]  do_getname+0x78/0x390
[  194.983129][ T7568]  __do_sys_fsconfig+0x69f/0xcb0
[  194.983153][ T7568]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  194.983175][ T7568]  ? fput+0x79/0x100
[  194.983198][ T7568]  ? rcu_is_watching+0x12/0xc0
[  194.983219][ T7568]  do_syscall_64+0x10b/0xf80
[  194.983238][ T7568]  ? clear_bhb_loop+0x40/0x90
[  194.983257][ T7568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.983271][ T7568] RIP: 0033:0x7f489439cdd9
[  194.983285][ T7568] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  194.983299][ T7568] RSP: 002b:00007f48952c8028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  194.983313][ T7568] RAX: ffffffffffffffda RBX: 00007f4894616090 RCX: 00007f489439cdd9
[  194.983323][ T7568] RDX: 0000200000000000 RSI: 0000000000000003 RDI: 0000000000000004
[  194.983331][ T7568] RBP: 00007f48952c8090 R08: 0000000000000000 R09: 0000000000000000
[  194.983339][ T7568] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[  194.983348][ T7568] R13: 00007f4894616128 R14: 00007f4894616090 R15: 00007ffeee250228
[  194.983374][ T7568]  </TASK>
[  195.361542][ T5628] Bluetooth: hci3: unexpected event for opcode 0x0040
[  195.519800][ T7588] FAULT_INJECTION: forcing a failure.
[  195.519800][ T7588] name fail_futex, interval 1, probability 0, space 0, times 1
[  195.805063][ T7588] CPU: 0 UID: 0 PID: 7588 Comm: syz.0.372 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  195.805090][ T7588] Tainted: [L]=SOFTLOCKUP
[  195.805096][ T7588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  195.805105][ T7588] Call Trace:
[  195.805110][ T7588]  <TASK>
[  195.805116][ T7588]  dump_stack_lvl+0x100/0x190
[  195.805137][ T7588]  should_fail_ex.cold+0x5/0xa
[  195.805156][ T7588]  get_futex_key+0x1d2/0x1510
[  195.805174][ T7588]  ? __pfx_get_futex_key+0x10/0x10
[  195.805191][ T7588]  ? blk_finish_plug+0x83/0xa0
[  195.805207][ T7588]  ? madvise_do_behavior+0x1fc/0x510
[  195.805228][ T7588]  futex_wake+0xea/0x530
[  195.805245][ T7588]  ? madvise_unlock+0x154/0x220
[  195.805266][ T7588]  ? __pfx_futex_wake+0x10/0x10
[  195.805288][ T7588]  ? madvise_unlock+0xa9/0x220
[  195.805308][ T7588]  do_futex+0x32b/0x350
[  195.805324][ T7588]  ? __pfx_do_futex+0x10/0x10
[  195.805344][ T7588]  __x64_sys_futex+0x34f/0x4d0
[  195.805363][ T7588]  ? __pfx___x64_sys_futex+0x10/0x10
[  195.805382][ T7588]  ? rcu_is_watching+0x12/0xc0
[  195.805402][ T7588]  do_syscall_64+0x10b/0xf80
[  195.805420][ T7588]  ? clear_bhb_loop+0x40/0x90
[  195.805438][ T7588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.805453][ T7588] RIP: 0033:0x7f0ca359cdd9
[  195.805467][ T7588] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  195.805481][ T7588] RSP: 002b:00007f0ca44030e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  195.805495][ T7588] RAX: ffffffffffffffda RBX: 00007f0ca3816278 RCX: 00007f0ca359cdd9
[  195.805505][ T7588] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0ca381627c
[  195.805514][ T7588] RBP: 00007f0ca3816270 R08: 0000000000000001 R09: 0000000000000000
[  195.805523][ T7588] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  195.805532][ T7588] R13: 00007f0ca3816308 R14: 00007ffd4cbf8c40 R15: 00007ffd4cbf8d28
[  195.805550][ T7588]  </TASK>
[  197.426396][ T5628] Bluetooth: hci0: unexpected event for opcode 0x7c89
[  199.308715][ T7649] netlink: 342 bytes leftover after parsing attributes in process `syz.0.381'.
[  199.374200][ T5628] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  199.386106][ T5628] Bluetooth: hci3: Injecting HCI hardware error event
[  199.394463][ T5628] Bluetooth: hci3: hardware error 0x00
[  200.192451][ T7670] netlink: 'syz.1.385': attribute type 11 has an invalid length.
[  200.242069][ T7670] netlink: 'syz.1.385': attribute type 11 has an invalid length.
[  200.305450][ T7670] netlink: 'syz.1.385': attribute type 11 has an invalid length.
[  200.836166][ T7679] netlink: 28 bytes leftover after parsing attributes in process `syz.1.386'.
[  200.967989][ T7679] hsr_slave_1 (unregistering): left promiscuous mode
[  201.445510][ T5628] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  202.397876][ T7725] netlink: 8 bytes leftover after parsing attributes in process `syz.1.394'.
[  202.562113][ T7727] vhci_hcd vhci_hcd.2: invalid port number 111
[  202.681633][ T7727] vhci_hcd vhci_hcd.2: default hub control req: a356 va1b7 i006f l5094
[  203.162102][ T7714] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[  203.209619][ T7714] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[  203.251765][ T7714] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  204.077172][ T7767] nbd: must specify an index to disconnect
[  206.227102][ T7796] Process accounting paused
[  206.343309][ T7812] netlink: 24 bytes leftover after parsing attributes in process `syz.1.411'.
[  206.746803][ T5628] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  207.341750][ T7825] netlink: 342 bytes leftover after parsing attributes in process `syz.1.414'.
[  208.434047][ T7847] netlink: 'syz.0.419': attribute type 4 has an invalid length.
[  208.671313][ T7854] netlink: 206 bytes leftover after parsing attributes in process `syz.1.420'.
[  208.804574][ T5633] Bluetooth: hci1: command 0x0c1a tx timeout
[  210.696729][ T7888] random: crng reseeded on system resumption
[  210.884724][ T5628] Bluetooth: hci1: command 0x0c1a tx timeout
[  213.771377][ T7944] netlink: 'syz.3.444': attribute type 11 has an invalid length.
[  213.792355][ T7944] netlink: 'syz.3.444': attribute type 11 has an invalid length.
[  213.819918][ T7944] netlink: 'syz.3.444': attribute type 11 has an invalid length.
[  215.641521][ T7984] netlink: 'syz.3.455': attribute type 11 has an invalid length.
[  215.681965][ T7984] netlink: 'syz.3.455': attribute type 11 has an invalid length.
[  215.727136][ T7984] netlink: 'syz.3.455': attribute type 11 has an invalid length.
[  216.737399][ T8000] netlink: 12 bytes leftover after parsing attributes in process `syz.3.457'.
[  217.007777][ T7990] HfR: entered promiscuous mode
[  217.080495][ T8000] HfR: left promiscuous mode
[  217.409445][ T8003] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  217.409604][ T8003] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  217.409735][ T8003] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  218.069818][ T8019] netlink: 'syz.3.466': attribute type 11 has an invalid length.
[  218.132525][ T8019] netlink: 'syz.3.466': attribute type 11 has an invalid length.
[  218.194677][ T8019] netlink: 'syz.3.466': attribute type 11 has an invalid length.
[  218.357855][ T8024] random: crng reseeded on system resumption
[  219.443906][ T5633] Bluetooth: hci2: command 0x0c1a tx timeout
[  219.449998][ T5628] Bluetooth: hci1: command 0x0c1a tx timeout
[  219.456095][ T4944] Bluetooth: hci0: command 0x0c1a tx timeout
[  220.203243][   T29] audit: type=1800 audit(1777726194.620:5): pid=8041 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.469" name="file0" dev="tmpfs" ino=707 res=0 errno=0
[  220.507206][ T8051] netlink: 342 bytes leftover after parsing attributes in process `syz.3.471'.
[  221.071675][   T29] audit: type=1804 audit(1777726195.490:6): pid=8059 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.473" name="/newroot/90/file0" dev="tmpfs" ino=496 res=1 errno=0
[  221.601080][ T8074] netlink: 342 bytes leftover after parsing attributes in process `syz.3.480'.
[  221.884404][ T8082] netlink: 342 bytes leftover after parsing attributes in process `syz.0.481'.
[  221.970950][ T8083] netlink: 342 bytes leftover after parsing attributes in process `syz.0.481'.
[  222.079736][ T8086] netlink: 338 bytes leftover after parsing attributes in process `syz.0.481'.
[  222.251642][ T8090] netlink: 4 bytes leftover after parsing attributes in process `syz.2.483'.
[  222.294251][ T8090] netlink: 17 bytes leftover after parsing attributes in process `syz.2.483'.
[  222.365693][ T8091] netlink: 342 bytes leftover after parsing attributes in process `syz.3.482'.
[  223.852001][ T8107] netlink: 'syz.1.486': attribute type 11 has an invalid length.
[  223.887193][ T8107] netlink: 'syz.1.486': attribute type 11 has an invalid length.
[  223.908540][ T8107] netlink: 'syz.1.486': attribute type 11 has an invalid length.
[  226.353370][ T8141] futex_wake_op: syz.0.491 tries to shift op by -2048; fix this program
[  226.639265][ T8140] loop6: detected capacity change from 0 to 8
[  227.321640][ T8146] netlink: 4 bytes leftover after parsing attributes in process `syz.3.495'.
[  227.614373][ T8146] netlink: 4 bytes leftover after parsing attributes in process `syz.3.495'.
[  229.035466][ T8172] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  229.240013][ T8179] smpboot: CPU 1 is now offline
[  233.386030][ T8248] netlink: 280 bytes leftover after parsing attributes in process `syz.0.521'.
[  233.592708][ T8250] netlink: 'syz.0.522': attribute type 11 has an invalid length.
[  233.620846][ T8250] netlink: 'syz.0.522': attribute type 11 has an invalid length.
[  233.658119][ T8250] netlink: 'syz.0.522': attribute type 11 has an invalid length.
[  234.522918][ T8274] input: f¬
 as /devices/virtual/input/input13
[  235.776479][ T8297] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  235.776479][ T8297] The task syz.2.534 (8297) triggered the difference, watch for misbehavior.
[  236.617228][ T8306] Process accounting resumed
[  237.429079][ T8323] netlink: 'syz.0.539': attribute type 11 has an invalid length.
[  237.625318][ T8329] netlink: 342 bytes leftover after parsing attributes in process `syz.0.540'.
[  237.955672][ T8335] block2mtd: illegal erase size
[  238.207483][ T8341] netlink: 'syz.2.543': attribute type 11 has an invalid length.
[  238.261106][ T8341] netlink: 'syz.2.543': attribute type 11 has an invalid length.
[  238.307518][ T8341] netlink: 'syz.2.543': attribute type 11 has an invalid length.
[  239.630159][ T8366] netlink: 342 bytes leftover after parsing attributes in process `syz.2.550'.
[  239.867617][ T8372] netlink: 'syz.1.552': attribute type 11 has an invalid length.
[  239.899583][ T8372] netlink: 'syz.1.552': attribute type 11 has an invalid length.
[  239.931989][ T8372] netlink: 'syz.1.552': attribute type 11 has an invalid length.
[  240.007303][ T8373] ecryptfs_miscdev_write: Invalid packet size [0]
[  241.232067][ T5633] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  241.606532][ T8393] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[  242.287149][ T8408] i2c i2c-0: new_device: Missing parameters
[  242.518399][ T8415] Console: switching to colour VGA+ 80x25
[  242.897961][ T8421] netlink: 342 bytes leftover after parsing attributes in process `syz.1.560'.
[  243.283932][ T5633] Bluetooth: hci2: command 0x0c1a tx timeout
[  244.229422][ T8455] nbd: must specify a device to reconfigure
[  245.365932][ T5633] Bluetooth: hci2: command 0x0c1a tx timeout
[  245.671511][ T8483] netlink: 330 bytes leftover after parsing attributes in process `syz.1.574'.
[  245.737244][ T8483] ›: renamed from bond_slave_0 (while UP)
[  245.805871][ T8483] netlink: 330 bytes leftover after parsing attributes in process `syz.1.574'.
[  246.100106][ T8496] netlink: 'syz.3.578': attribute type 11 has an invalid length.
[  246.157393][ T8496] netlink: 'syz.3.578': attribute type 11 has an invalid length.
[  246.196754][ T8496] netlink: 'syz.3.578': attribute type 11 has an invalid length.
[  246.602886][ T8511] netlink: 206 bytes leftover after parsing attributes in process `syz.0.581'.
[  248.649322][ T8560] FAULT_INJECTION: forcing a failure.
[  248.649322][ T8560] name failslab, interval 1, probability 0, space 0, times 0
[  248.707158][ T8560] CPU: 0 UID: 0 PID: 8560 Comm: syz.2.593 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  248.707185][ T8560] Tainted: [L]=SOFTLOCKUP
[  248.707190][ T8560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  248.707206][ T8560] Call Trace:
[  248.707211][ T8560]  <TASK>
[  248.707218][ T8560]  dump_stack_lvl+0x100/0x190
[  248.707239][ T8560]  should_fail_ex.cold+0x5/0xa
[  248.707260][ T8560]  should_failslab+0xc2/0x120
[  248.707277][ T8560]  __kmalloc_cache_noprof+0x7a/0x6f0
[  248.707298][ T8560]  ? trace_pid_list_alloc+0x2fe/0x480
[  248.707322][ T8560]  trace_pid_list_alloc+0x2fe/0x480
[  248.707344][ T8560]  trace_pid_write+0x110/0x460
[  248.707365][ T8560]  ? __pfx_trace_pid_write+0x10/0x10
[  248.707396][ T8560]  event_pid_write.isra.0+0x1e4/0x7d0
[  248.707419][ T8560]  ? __pfx_event_pid_write.isra.0+0x10/0x10
[  248.707446][ T8560]  vfs_write+0x2aa/0x1070
[  248.707464][ T8560]  ? __pfx_ftrace_event_npid_write+0x10/0x10
[  248.707487][ T8560]  ? __pfx_vfs_write+0x10/0x10
[  248.707503][ T8560]  ? __fget_files+0x215/0x3d0
[  248.707525][ T8560]  ? __fget_files+0x21f/0x3d0
[  248.707547][ T8560]  ksys_write+0x12a/0x250
[  248.707563][ T8560]  ? __pfx_ksys_write+0x10/0x10
[  248.707581][ T8560]  ? rcu_is_watching+0x12/0xc0
[  248.707602][ T8560]  do_syscall_64+0x10b/0xf80
[  248.707620][ T8560]  ? clear_bhb_loop+0x40/0x90
[  248.707639][ T8560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.707654][ T8560] RIP: 0033:0x7f489439cdd9
[  248.707670][ T8560] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  248.707684][ T8560] RSP: 002b:00007f48952e9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  248.707699][ T8560] RAX: ffffffffffffffda RBX: 00007f4894615fa0 RCX: 00007f489439cdd9
[  248.707708][ T8560] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  248.707717][ T8560] RBP: 00007f4894432d69 R08: 0000000000000000 R09: 0000000000000000
[  248.707726][ T8560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  248.707735][ T8560] R13: 00007f4894616038 R14: 00007f4894615fa0 R15: 00007ffeee250228
[  248.707755][ T8560]  </TASK>
[  250.333270][   T29] audit: type=1800 audit(1777726224.750:7): pid=8585 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.600" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  250.688000][ T8594] can: request_module (can-proto-0) failed.
[  252.002604][ T8625] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  252.247050][ T8634] smpboot: CPU 1 is now offline
[  252.324419][ T8625] FAULT_INJECTION: forcing a failure.
[  252.324419][ T8625] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  252.423330][ T8625] CPU: 0 UID: 0 PID: 8625 Comm: syz.2.610 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  252.423355][ T8625] Tainted: [L]=SOFTLOCKUP
[  252.423360][ T8625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  252.423369][ T8625] Call Trace:
[  252.423374][ T8625]  <TASK>
[  252.423380][ T8625]  dump_stack_lvl+0x100/0x190
[  252.423401][ T8625]  should_fail_ex.cold+0x5/0xa
[  252.423420][ T8625]  _copy_to_iter+0x5a4/0x1720
[  252.423448][ T8625]  ? __pfx__copy_to_iter+0x10/0x10
[  252.423473][ T8625]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  252.423488][ T8625]  ? seq_read_iter+0x819/0x1270
[  252.423509][ T8625]  seq_read_iter+0xdab/0x1270
[  252.423532][ T8625]  seq_read+0x33b/0x4c0
[  252.423548][ T8625]  ? __pfx_seq_read+0x10/0x10
[  252.423566][ T8625]  ? lock_acquire+0x1b1/0x370
[  252.423587][ T8625]  ? __pfx_seq_read+0x10/0x10
[  252.423603][ T8625]  proc_reg_read+0x240/0x330
[  252.423623][ T8625]  ? __pfx_proc_reg_read+0x10/0x10
[  252.423641][ T8625]  vfs_read+0x1e4/0xb30
[  252.423660][ T8625]  ? __pfx_vfs_read+0x10/0x10
[  252.423675][ T8625]  ? __fget_files+0x215/0x3d0
[  252.423697][ T8625]  ? __fget_files+0x21f/0x3d0
[  252.423718][ T8625]  ksys_read+0x12a/0x250
[  252.423734][ T8625]  ? __pfx_ksys_read+0x10/0x10
[  252.423751][ T8625]  ? rcu_is_watching+0x12/0xc0
[  252.423771][ T8625]  do_syscall_64+0x10b/0xf80
[  252.423790][ T8625]  ? clear_bhb_loop+0x40/0x90
[  252.423808][ T8625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.423823][ T8625] RIP: 0033:0x7f489439cdd9
[  252.423835][ T8625] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  252.423849][ T8625] RSP: 002b:00007f48952e9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  252.423863][ T8625] RAX: ffffffffffffffda RBX: 00007f4894615fa0 RCX: 00007f489439cdd9
[  252.423879][ T8625] RDX: 0000000000005642 RSI: 0000200000000040 RDI: 0000000000000007
[  252.423888][ T8625] RBP: 00007f48952e9090 R08: 0000000000000000 R09: 0000000000000000
[  252.423897][ T8625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  252.423905][ T8625] R13: 00007f4894616038 R14: 00007f4894615fa0 R15: 00007ffeee250228
[  252.423924][ T8625]  </TASK>
[  255.687845][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  255.697361][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  255.852173][ T8689] kexec: Could not allocate control_code_buffer
[  256.118931][ T8707] netlink: 342 bytes leftover after parsing attributes in process `syz.3.633'.
[  261.381524][ T8800] process 'syz.0.654' launched ':,' with NULL argv: empty string added
[  261.749879][ T8805] netlink: 330 bytes leftover after parsing attributes in process `syz.0.655'.
[  263.287612][ T8837] netlink: 12 bytes leftover after parsing attributes in process `syz.1.662'.
[  263.337862][ T8837] netlink: 8 bytes leftover after parsing attributes in process `syz.1.662'.
[  264.519906][ T8859] netlink: 'syz.2.666': attribute type 11 has an invalid length.
[  264.554342][ T8859] netlink: 'syz.2.666': attribute type 11 has an invalid length.
[  264.591597][ T8859] netlink: 'syz.2.666': attribute type 11 has an invalid length.
[  264.922286][ T8866] netlink: 'syz.2.667': attribute type 11 has an invalid length.
[  264.965557][ T8866] netlink: 'syz.2.667': attribute type 11 has an invalid length.
[  265.003514][ T8866] netlink: 'syz.2.667': attribute type 11 has an invalid length.
[  266.390754][ T8899] block2mtd: illegal erase size
[  266.522361][ T8902] netlink: 342 bytes leftover after parsing attributes in process `syz.3.675'.
[  266.717866][ T8905] netlink: 'syz.0.676': attribute type 11 has an invalid length.
[  266.769986][ T8905] netlink: 'syz.0.676': attribute type 11 has an invalid length.
[  266.812360][ T8905] netlink: 'syz.0.676': attribute type 11 has an invalid length.
[  266.923283][ T8895] Process accounting paused
[  267.335934][ T8912] netlink: 342 bytes leftover after parsing attributes in process `syz.1.678'.
[  267.690030][ T8920] bridge0: port 3(gretap0) entered blocking state
[  267.755919][ T8920] bridge0: port 3(gretap0) entered disabled state
[  267.799446][ T8920] gretap0: entered allmulticast mode
[  267.834817][ T8920] gretap0: entered promiscuous mode
[  267.864761][ T8920] bridge0: port 3(gretap0) entered blocking state
[  267.871232][ T8920] FAULT_INJECTION: forcing a failure.
[  267.871232][ T8920] name failslab, interval 1, probability 0, space 0, times 0
[  267.883876][ T8920] CPU: 0 UID: 0 PID: 8920 Comm: syz.2.680 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  267.883901][ T8920] Tainted: [L]=SOFTLOCKUP
[  267.883907][ T8920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  267.883916][ T8920] Call Trace:
[  267.883922][ T8920]  <TASK>
[  267.883929][ T8920]  dump_stack_lvl+0x100/0x190
[  267.883950][ T8920]  should_fail_ex.cold+0x5/0xa
[  267.883969][ T8920]  ? switchdev_deferred_enqueue+0x3e/0x2d0
[  267.883988][ T8920]  should_failslab+0xc2/0x120
[  267.884005][ T8920]  __kmalloc_noprof+0xe0/0x850
[  267.884032][ T8920]  ? __pfx_switchdev_port_attr_set_deferred+0x10/0x10
[  267.884051][ T8920]  switchdev_deferred_enqueue+0x3e/0x2d0
[  267.884070][ T8920]  switchdev_port_attr_set+0xb5/0x100
[  267.884089][ T8920]  __set_ageing_time+0xc2/0x140
[  267.884105][ T8920]  ? __pfx___set_ageing_time+0x10/0x10
[  267.884124][ T8920]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  267.884144][ T8920]  br_init_port+0x18a/0x210
[  267.884162][ T8920]  br_stp_enable_port+0x15/0x50
[  267.884178][ T8920]  br_add_if+0x1781/0x1b40
[  267.884200][ T8920]  ? veth_get_iflink+0x233/0x2c0
[  267.884220][ T8920]  add_del_if+0x114/0x160
[  267.884235][ T8920]  br_dev_siocdevprivate+0x8ac/0x1650
[  267.884251][ T8920]  ? __pfx_br_dev_siocdevprivate+0x10/0x10
[  267.884270][ T8920]  ? do_raw_spin_lock+0x128/0x260
[  267.884287][ T8920]  ? find_held_lock+0x2b/0x80
[  267.884305][ T8920]  ? debug_mutex_remove_waiter+0xa8/0x320
[  267.884324][ T8920]  ? debug_mutex_remove_waiter+0xa8/0x320
[  267.884350][ T8920]  ? netdev_name_node_lookup+0x107/0x150
[  267.884371][ T8920]  ? __mutex_lock+0x838/0x1b10
[  267.884392][ T8920]  dev_ifsioc+0xc2f/0x1f10
[  267.884408][ T8920]  ? __pfx_dev_ifsioc+0x10/0x10
[  267.884421][ T8920]  ? __pfx___mutex_lock+0x10/0x10
[  267.884446][ T8920]  ? dev_load+0x8e/0x240
[  267.884458][ T8920]  ? dev_load+0x8e/0x240
[  267.884475][ T8920]  dev_ioctl+0x70e/0x1070
[  267.884490][ T8920]  sock_ioctl+0x494/0x6b0
[  267.884511][ T8920]  ? __pfx_sock_ioctl+0x10/0x10
[  267.884530][ T8920]  ? hook_file_ioctl_common+0x149/0x410
[  267.884549][ T8920]  ? __fget_files+0x21f/0x3d0
[  267.884577][ T8920]  ? __pfx_sock_ioctl+0x10/0x10
[  267.884598][ T8920]  __x64_sys_ioctl+0x18e/0x210
[  267.884614][ T8920]  do_syscall_64+0x10b/0xf80
[  267.884633][ T8920]  ? clear_bhb_loop+0x40/0x90
[  267.884651][ T8920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.884666][ T8920] RIP: 0033:0x7f489439cdd9
[  267.884680][ T8920] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  267.884694][ T8920] RSP: 002b:00007f48952c8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  267.884709][ T8920] RAX: ffffffffffffffda RBX: 00007f4894616090 RCX: 00007f489439cdd9
[  267.884719][ T8920] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008
[  267.884728][ T8920] RBP: 00007f4894432d69 R08: 0000000000000000 R09: 0000000000000000
[  267.884737][ T8920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  267.884745][ T8920] R13: 00007f4894616128 R14: 00007f4894616090 R15: 00007ffeee250228
[  267.884765][ T8920]  </TASK>
[  267.884785][ T8920] gretap0: failed to offload ageing time
[  268.191216][ T8920] bridge0: port 3(gretap0) entered forwarding state
[  268.750636][ T8942] netlink: 342 bytes leftover after parsing attributes in process `syz.1.686'.
[  269.520625][ T8957] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  269.527945][ T8957] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  271.094352][ T5628] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  271.385840][ T9000] netlink: 16 bytes leftover after parsing attributes in process `syz.2.700'.
[  271.397705][ T8988] block nbd0: Unsupported socket: should be TCP or UNIX.
[  272.442281][ T9025] zswap: compressor  not available
[  274.071145][ T9044] NFSD: Failed to start, no listeners configured.
[  274.224410][ T9057] netlink: 'syz.0.714': attribute type 11 has an invalid length.
[  274.265630][ T9057] netlink: 'syz.0.714': attribute type 11 has an invalid length.
[  274.317048][ T9057] netlink: 'syz.0.714': attribute type 11 has an invalid length.
[  275.097148][ T9085] netlink: 'syz.3.719': attribute type 11 has an invalid length.
[  275.115339][ T9068] zswap: compressor  not available
[  275.132204][ T9085] netlink: 'syz.3.719': attribute type 11 has an invalid length.
[  275.158705][ T9085] netlink: 'syz.3.719': attribute type 11 has an invalid length.
[  275.495458][ T9090] netlink: 4 bytes leftover after parsing attributes in process `syz.3.720'.
[  276.801510][ T9110] netlink: 4 bytes leftover after parsing attributes in process `syz.3.725'.
[  276.876375][ T9110] netlink: 25 bytes leftover after parsing attributes in process `syz.3.725'.
[  277.674570][ T5628] Bluetooth: hci2: unexpected event 0x3e length: 358 > 260
[  277.674594][ T5628] Bluetooth: hci2: unexpected subevent 0x1b length: 357 > 260
[  278.580015][ T5628] Bluetooth: hci0: Malformed HCI Event: 0x22
[  279.134912][ T9176] netlink: 'syz.2.739': attribute type 11 has an invalid length.
[  279.166697][ T9176] netlink: 'syz.2.739': attribute type 11 has an invalid length.
[  279.199553][ T9176] netlink: 'syz.2.739': attribute type 11 has an invalid length.
[  279.810085][ T9152] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  280.463435][ T9201] FAULT_INJECTION: forcing a failure.
[  280.463435][ T9201] name failslab, interval 1, probability 0, space 0, times 0
[  280.570040][ T9201] CPU: 0 UID: 0 PID: 9201 Comm: syz.2.745 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  280.570066][ T9201] Tainted: [L]=SOFTLOCKUP
[  280.570071][ T9201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  280.570080][ T9201] Call Trace:
[  280.570085][ T9201]  <TASK>
[  280.570092][ T9201]  dump_stack_lvl+0x100/0x190
[  280.570113][ T9201]  should_fail_ex.cold+0x5/0xa
[  280.570133][ T9201]  should_failslab+0xc2/0x120
[  280.570151][ T9201]  __kmalloc_cache_noprof+0x7a/0x6f0
[  280.570172][ T9201]  ? snd_pcm_oss_change_params_locked+0x81c/0x39f0
[  280.570194][ T9201]  ? _snd_pcm_hw_param_min+0x1ea/0x670
[  280.570217][ T9201]  snd_pcm_oss_change_params_locked+0x81c/0x39f0
[  280.570242][ T9201]  ? snd_pcm_oss_make_ready+0xcb/0x1b0
[  280.570267][ T9201]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  280.570288][ T9201]  ? __pfx___mutex_lock+0x10/0x10
[  280.570321][ T9201]  snd_pcm_oss_make_ready+0xeb/0x1b0
[  280.570344][ T9201]  snd_pcm_oss_sync+0x1de/0x840
[  280.570368][ T9201]  snd_pcm_oss_release+0x238/0x300
[  280.570389][ T9201]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  280.570410][ T9201]  __fput+0x3ff/0xb50
[  280.570438][ T9201]  task_work_run+0x150/0x240
[  280.570454][ T9201]  ? __pfx_task_work_run+0x10/0x10
[  280.570470][ T9201]  ? rcu_is_watching+0x12/0xc0
[  280.570491][ T9201]  exit_to_user_mode_loop+0x100/0x4a0
[  280.570513][ T9201]  ? do_syscall_64+0x519/0xf80
[  280.570534][ T9201]  do_syscall_64+0x6f2/0xf80
[  280.570552][ T9201]  ? clear_bhb_loop+0x40/0x90
[  280.570570][ T9201]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.570586][ T9201] RIP: 0033:0x7f489439cdd9
[  280.570599][ T9201] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  280.570613][ T9201] RSP: 002b:00007f48952e9028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  280.570628][ T9201] RAX: 0000000000000000 RBX: 00007f4894615fa0 RCX: 00007f489439cdd9
[  280.570637][ T9201] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  280.570646][ T9201] RBP: 00007f4894432d69 R08: 0000000000000000 R09: 0000000000000000
[  280.570654][ T9201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  280.570663][ T9201] R13: 00007f4894616038 R14: 00007f4894615fa0 R15: 00007ffeee250228
[  280.570683][ T9201]  </TASK>
[  283.135733][ T5628] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  283.380200][ T9235] FAULT_INJECTION: forcing a failure.
[  283.380200][ T9235] name failslab, interval 1, probability 0, space 0, times 0
[  283.470379][ T9235] CPU: 0 UID: 0 PID: 9235 Comm: syz.1.752 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  283.470405][ T9235] Tainted: [L]=SOFTLOCKUP
[  283.470410][ T9235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  283.470420][ T9235] Call Trace:
[  283.470425][ T9235]  <TASK>
[  283.470431][ T9235]  dump_stack_lvl+0x100/0x190
[  283.470452][ T9235]  should_fail_ex.cold+0x5/0xa
[  283.470472][ T9235]  ? __list_lru_init+0xd9/0x4b0
[  283.470495][ T9235]  should_failslab+0xc2/0x120
[  283.470512][ T9235]  __kmalloc_noprof+0xe0/0x850
[  283.470538][ T9235]  __list_lru_init+0xd9/0x4b0
[  283.470561][ T9235]  alloc_super+0x926/0xd20
[  283.470579][ T9235]  ? __pfx_mqueue_fill_super+0x10/0x10
[  283.470600][ T9235]  sget_fc+0x117/0xc70
[  283.470614][ T9235]  ? __pfx_set_anon_super_fc+0x10/0x10
[  283.470630][ T9235]  ? __pfx_mqueue_fill_super+0x10/0x10
[  283.470649][ T9235]  get_tree_nodev+0x28/0x190
[  283.470671][ T9235]  mqueue_get_tree+0xf1/0x130
[  283.470691][ T9235]  vfs_get_tree+0x92/0x320
[  283.470706][ T9235]  fc_mount_longterm+0x1a/0x270
[  283.470722][ T9235]  mq_init_ns+0x482/0x820
[  283.470746][ T9235]  copy_ipcs+0x3dd/0x7e0
[  283.470761][ T9235]  create_new_namespaces+0x20a/0xac0
[  283.470780][ T9235]  ? security_capable+0x80/0x260
[  283.470803][ T9235]  unshare_nsproxy_namespaces+0xf2/0x220
[  283.470824][ T9235]  ksys_unshare+0x438/0xab0
[  283.470846][ T9235]  ? __pfx_ksys_unshare+0x10/0x10
[  283.470866][ T9235]  ? xfd_validate_state+0x129/0x190
[  283.470888][ T9235]  __x64_sys_unshare+0x31/0x40
[  283.470909][ T9235]  do_syscall_64+0x10b/0xf80
[  283.470927][ T9235]  ? clear_bhb_loop+0x40/0x90
[  283.470945][ T9235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.470960][ T9235] RIP: 0033:0x7fd794d9cdd9
[  283.470974][ T9235] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  283.470988][ T9235] RSP: 002b:00007fd795bbe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  283.471003][ T9235] RAX: ffffffffffffffda RBX: 00007fd795016270 RCX: 00007fd794d9cdd9
[  283.471012][ T9235] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000
[  283.471021][ T9235] RBP: 00007fd794e32d69 R08: 0000000000000000 R09: 0000000000000000
[  283.471030][ T9235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  283.471038][ T9235] R13: 00007fd795016308 R14: 00007fd795016270 R15: 00007ffc6fa058e8
[  283.471057][ T9235]  </TASK>
[  283.713048][ T9213] vivid-008: =================  START STATUS  =================
[  283.720943][ T9213] vivid-008: ==================  END STATUS  ==================
[  285.206427][ T5633] Bluetooth: hci0: command 0x0c1a tx timeout
[  286.779810][ T9278] openvswitch: netlink: Key type 29 is not supported
[  286.931104][ T9278] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  287.076325][ T9284] smpboot: CPU 1 is now offline
[  287.284567][ T5633] Bluetooth: hci0: command 0x0c1a tx timeout
[  289.149244][ T9318] netlink: 'syz.2.772': attribute type 2 has an invalid length.
[  289.592848][ T9324] netlink: 'syz.3.774': attribute type 11 has an invalid length.
[  289.621375][ T9324] netlink: 'syz.3.774': attribute type 11 has an invalid length.
[  289.652478][ T9324] netlink: 'syz.3.774': attribute type 11 has an invalid length.
[  290.244242][ T5628] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  290.587332][ T9350] FAULT_INJECTION: forcing a failure.
[  290.587332][ T9350] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  290.662082][ T9350] CPU: 0 UID: 0 PID: 9350 Comm: syz.2.781 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  290.662108][ T9350] Tainted: [L]=SOFTLOCKUP
[  290.662113][ T9350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  290.662121][ T9350] Call Trace:
[  290.662127][ T9350]  <TASK>
[  290.662133][ T9350]  dump_stack_lvl+0x100/0x190
[  290.662154][ T9350]  should_fail_ex.cold+0x5/0xa
[  290.662171][ T9350]  ? prepare_alloc_pages+0x16d/0x5f0
[  290.662192][ T9350]  should_fail_alloc_page+0xeb/0x140
[  290.662210][ T9350]  prepare_alloc_pages+0x1f0/0x5f0
[  290.662231][ T9350]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  290.662255][ T9350]  ? clockevents_program_event+0x1ef/0x820
[  290.662277][ T9350]  ? __pfx_clockevents_program_event+0x10/0x10
[  290.662299][ T9350]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  290.662322][ T9350]  ? __lock_acquire+0x4a5/0x2630
[  290.662338][ T9350]  ? irqentry_exit+0x246/0x790
[  290.662361][ T9350]  ? lock_acquire+0x1b1/0x370
[  290.662375][ T9350]  ? find_held_lock+0x2b/0x80
[  290.662393][ T9350]  ? page_table_check_set+0x477/0x920
[  290.662409][ T9350]  ? page_table_check_set+0x477/0x920
[  290.662424][ T9350]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  290.662447][ T9350]  ? policy_nodemask+0xed/0x4f0
[  290.662465][ T9350]  alloc_pages_mpol+0x1fb/0x540
[  290.662483][ T9350]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  290.662500][ T9350]  ? __pfx___page_table_check_ptes_set+0x10/0x10
[  290.662516][ T9350]  ? __pfx_pfn_pte+0x10/0x10
[  290.662532][ T9350]  alloc_pages_noprof+0x1a/0x160
[  290.662552][ T9350]  pte_alloc_one+0x1c/0x3d0
[  290.662572][ T9350]  __pte_alloc+0x6d/0x3e0
[  290.662588][ T9350]  ? __pfx___pte_alloc+0x10/0x10
[  290.662604][ T9350]  ? find_held_lock+0x2b/0x80
[  290.662632][ T9350]  ? find_held_lock+0x2b/0x80
[  290.662650][ T9350]  ? walk_to_pmd+0x302/0x4c0
[  290.662670][ T9350]  get_locked_pte+0xa1/0xc0
[  290.662690][ T9350]  insert_page+0xcc/0x220
[  290.662710][ T9350]  ? __pfx_insert_page+0x10/0x10
[  290.662728][ T9350]  ? __pfx_down_read_trylock+0x10/0x10
[  290.662749][ T9350]  vm_insert_page+0x2c0/0x400
[  290.662770][ T9350]  kcov_mmap+0xca/0x130
[  290.662791][ T9350]  __mmap_region+0x13e1/0x2da0
[  290.662816][ T9350]  ? __pfx___mmap_region+0x10/0x10
[  290.662849][ T9350]  ? __pfx_min_vruntime_cb_rotate+0x10/0x10
[  290.662876][ T9350]  ? find_held_lock+0x2b/0x80
[  290.662894][ T9350]  ? ima_match_policy+0x8c4/0x2350
[  290.662909][ T9350]  ? ima_match_policy+0x8c4/0x2350
[  290.662941][ T9350]  ? process_measurement+0x4c8/0x2350
[  290.662993][ T9350]  mmap_region+0x527/0x620
[  290.663008][ T9350]  ? __pfx_mmap_region+0x10/0x10
[  290.663024][ T9350]  ? cap_mmap_addr+0x4b/0x120
[  290.663044][ T9350]  ? bpf_lsm_mmap_addr+0x9/0x30
[  290.663058][ T9350]  ? security_mmap_addr+0x71/0x1e0
[  290.663074][ T9350]  ? __get_unmapped_area+0x255/0x3e0
[  290.663094][ T9350]  do_mmap+0xc63/0x12f0
[  290.663115][ T9350]  ? __pfx_do_mmap+0x10/0x10
[  290.663132][ T9350]  ? __pfx_down_write_killable+0x10/0x10
[  290.663157][ T9350]  vm_mmap_pgoff+0x29e/0x470
[  290.663180][ T9350]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  290.663196][ T9350]  ? __fget_files+0x215/0x3d0
[  290.663216][ T9350]  ? __fget_files+0x21f/0x3d0
[  290.663236][ T9350]  ksys_mmap_pgoff+0x3cb/0x610
[  290.663254][ T9350]  ? __x64_sys_futex+0x358/0x4d0
[  290.663270][ T9350]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  290.663287][ T9350]  ? xfd_validate_state+0x129/0x190
[  290.663302][ T9350]  ? ksys_write+0x1ac/0x250
[  290.663321][ T9350]  __x64_sys_mmap+0x125/0x190
[  290.663339][ T9350]  do_syscall_64+0x10b/0xf80
[  290.663357][ T9350]  ? clear_bhb_loop+0x40/0x90
[  290.663375][ T9350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.663390][ T9350] RIP: 0033:0x7f489439cdd9
[  290.663404][ T9350] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  290.663418][ T9350] RSP: 002b:00007f48952c8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  290.663432][ T9350] RAX: ffffffffffffffda RBX: 00007f4894616090 RCX: 00007f489439cdd9
[  290.663442][ T9350] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000000000
[  290.663451][ T9350] RBP: 00007f4894432d69 R08: 00000000000000dd R09: 0000000000000000
[  290.663461][ T9350] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  290.663469][ T9350] R13: 00007f4894616128 R14: 00007f4894616090 R15: 00007ffeee250228
[  290.663489][ T9350]  </TASK>
[  291.094385][ T9352] netlink: 12 bytes leftover after parsing attributes in process `syz.3.782'.
[  291.275307][ T9350] kcov: kcov: vm_insert_page() failed
[  291.730927][ T9369] netlink: 206 bytes leftover after parsing attributes in process `syz.2.786'.
[  292.733517][ T9388] netlink: 346 bytes leftover after parsing attributes in process `syz.1.792'.
[  293.081136][ T9397] netlink: 'syz.2.793': attribute type 11 has an invalid length.
[  293.128349][ T9397] netlink: 'syz.2.793': attribute type 11 has an invalid length.
[  293.161239][ T9397] netlink: 'syz.2.793': attribute type 11 has an invalid length.
[  294.357753][ T9420] cougar: G6 mapped to space
[  295.550850][ T9443] netlink: 12 bytes leftover after parsing attributes in process `syz.1.812'.
[  298.996041][ T9453] Process accounting resumed
[  300.256701][ T9526] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  302.622288][ T9617] FAULT_INJECTION: forcing a failure.
[  302.622288][ T9617] name failslab, interval 1, probability 0, space 0, times 0
[  302.721183][ T9617] CPU: 0 UID: 0 PID: 9617 Comm: syz.2.848 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  302.721219][ T9617] Tainted: [L]=SOFTLOCKUP
[  302.721228][ T9617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  302.721243][ T9617] Call Trace:
[  302.721252][ T9617]  <TASK>
[  302.721262][ T9617]  dump_stack_lvl+0x100/0x190
[  302.721297][ T9617]  should_fail_ex.cold+0x5/0xa
[  302.721332][ T9617]  should_failslab+0xc2/0x120
[  302.721364][ T9617]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  302.721408][ T9617]  ? alloc_inode+0x68/0x250
[  302.721451][ T9617]  ? simple_start_creating+0xb0/0x110
[  302.721484][ T9617]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  302.721526][ T9617]  alloc_inode+0x68/0x250
[  302.721563][ T9617]  new_inode+0x22/0x1c0
[  302.721586][ T9617]  __debugfs_create_file+0x105/0x4f0
[  302.721610][ T9617]  debugfs_create_file_full+0x41/0x60
[  302.721634][ T9617]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  302.721653][ T9617]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  302.721686][ T9617]  ? lockdep_init_map_type+0x5c/0x250
[  302.721704][ T9617]  preinit_net.part.0+0x43b/0x920
[  302.721722][ T9617]  copy_net_ns+0x339/0x7c0
[  302.721742][ T9617]  create_new_namespaces+0x3ea/0xac0
[  302.721765][ T9617]  unshare_nsproxy_namespaces+0xf2/0x220
[  302.721787][ T9617]  ksys_unshare+0x438/0xab0
[  302.721810][ T9617]  ? __pfx_ksys_unshare+0x10/0x10
[  302.721830][ T9617]  ? xfd_validate_state+0x129/0x190
[  302.721844][ T9617]  ? ksys_write+0x1ac/0x250
[  302.721867][ T9617]  __x64_sys_unshare+0x31/0x40
[  302.721888][ T9617]  do_syscall_64+0x10b/0xf80
[  302.721906][ T9617]  ? clear_bhb_loop+0x40/0x90
[  302.721925][ T9617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.721940][ T9617] RIP: 0033:0x7f489439cdd9
[  302.721952][ T9617] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  302.721965][ T9617] RSP: 002b:00007f48952c8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  302.721980][ T9617] RAX: ffffffffffffffda RBX: 00007f4894616090 RCX: 00007f489439cdd9
[  302.721989][ T9617] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  302.721998][ T9617] RBP: 00007f4894432d69 R08: 0000000000000000 R09: 0000000000000000
[  302.722006][ T9617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  302.722015][ T9617] R13: 00007f4894616128 R14: 00007f4894616090 R15: 00007ffeee250228
[  302.722033][ T9617]  </TASK>
[  302.722039][ T9617] debugfs: out of free dentries, can not create file 'net_notrefcnt@ffff88807c1ad078'
[  302.987954][ T9615] binder: 9614:9615 ioctl c018620c 200000000300 returned -22
[  303.118517][ T9609] NFSD: Failed to start, no listeners configured.
[  303.536342][ T9625] netlink: 8 bytes leftover after parsing attributes in process `syz.1.851'.
[  304.527480][ T9650] FAULT_INJECTION: forcing a failure.
[  304.527480][ T9650] name failslab, interval 1, probability 0, space 0, times 0
[  304.583719][ T9650] CPU: 0 UID: 0 PID: 9650 Comm: syz.1.856 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  304.583744][ T9650] Tainted: [L]=SOFTLOCKUP
[  304.583750][ T9650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  304.583759][ T9650] Call Trace:
[  304.583765][ T9650]  <TASK>
[  304.583770][ T9650]  dump_stack_lvl+0x100/0x190
[  304.583791][ T9650]  should_fail_ex.cold+0x5/0xa
[  304.583811][ T9650]  ? constrain_params_by_rules+0x175/0xcc0
[  304.583835][ T9650]  should_failslab+0xc2/0x120
[  304.583853][ T9650]  __kmalloc_noprof+0xe0/0x850
[  304.583875][ T9650]  ? unwind_get_return_address+0x59/0xa0
[  304.583898][ T9650]  constrain_params_by_rules+0x175/0xcc0
[  304.583927][ T9650]  ? stack_trace_save+0x8e/0xc0
[  304.583953][ T9650]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  304.583981][ T9650]  ? __kasan_kmalloc+0xaa/0xb0
[  304.583994][ T9650]  ? snd_pcm_oss_change_params_locked+0x247/0x39f0
[  304.584015][ T9650]  ? snd_pcm_oss_make_ready+0xeb/0x1b0
[  304.584036][ T9650]  ? snd_pcm_oss_sync+0x1de/0x840
[  304.584060][ T9650]  ? rcu_is_watching+0x12/0xc0
[  304.584078][ T9650]  ? snd_interval_refine+0x2d0/0x580
[  304.584097][ T9650]  snd_pcm_hw_refine+0x7e7/0xad0
[  304.584122][ T9650]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  304.584151][ T9650]  ? __asan_memset+0x23/0x50
[  304.584172][ T9650]  ? _snd_pcm_hw_param_min+0x1ea/0x670
[  304.584194][ T9650]  snd_pcm_oss_change_params_locked+0x2594/0x39f0
[  304.584215][ T9650]  ? trace_contention_end+0x40/0x170
[  304.584233][ T9650]  ? snd_pcm_oss_make_ready+0xcb/0x1b0
[  304.584256][ T9650]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  304.584277][ T9650]  ? __pfx___mutex_lock+0x10/0x10
[  304.584310][ T9650]  snd_pcm_oss_make_ready+0xeb/0x1b0
[  304.584332][ T9650]  snd_pcm_oss_sync+0x1de/0x840
[  304.584356][ T9650]  snd_pcm_oss_release+0x238/0x300
[  304.584377][ T9650]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  304.584399][ T9650]  __fput+0x3ff/0xb50
[  304.584430][ T9650]  task_work_run+0x150/0x240
[  304.584446][ T9650]  ? __pfx_task_work_run+0x10/0x10
[  304.584463][ T9650]  ? rcu_is_watching+0x12/0xc0
[  304.584486][ T9650]  exit_to_user_mode_loop+0x100/0x4a0
[  304.584500][ T9650]  ? do_syscall_64+0x519/0xf80
[  304.584520][ T9650]  do_syscall_64+0x6f2/0xf80
[  304.584537][ T9650]  ? clear_bhb_loop+0x40/0x90
[  304.584556][ T9650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.584570][ T9650] RIP: 0033:0x7fd794d9cdd9
[  304.584584][ T9650] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  304.584598][ T9650] RSP: 002b:00007fd795c21028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  304.584613][ T9650] RAX: 0000000000000000 RBX: 00007fd795015fa0 RCX: 00007fd794d9cdd9
[  304.584622][ T9650] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  304.584631][ T9650] RBP: 00007fd794e32d69 R08: 0000000000000000 R09: 0000000000000000
[  304.584640][ T9650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  304.584649][ T9650] R13: 00007fd795016038 R14: 00007fd795015fa0 R15: 00007ffc6fa058e8
[  304.584669][ T9650]  </TASK>
[  305.691342][ T9662] GUP no longer grows the stack in syz.3.857 (9662): 5000-1fc000 (4000)
[  305.729823][ T9662] CPU: 0 UID: 0 PID: 9662 Comm: syz.3.857 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  305.729849][ T9662] Tainted: [L]=SOFTLOCKUP
[  305.729854][ T9662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  305.729863][ T9662] Call Trace:
[  305.729868][ T9662]  <TASK>
[  305.729874][ T9662]  dump_stack_lvl+0x100/0x190
[  305.729896][ T9662]  gup_vma_lookup.cold+0x83/0x96
[  305.729919][ T9662]  __get_user_pages+0x241/0x32a0
[  305.729942][ T9662]  ? down_read_killable+0x307/0x4b0
[  305.729967][ T9662]  ? __pfx___get_user_pages+0x10/0x10
[  305.729991][ T9662]  __gup_longterm_locked+0x87d/0x16f0
[  305.730009][ T9662]  ? trace_pelt_se_tp+0x13b/0x190
[  305.730028][ T9662]  ? __pfx___gup_longterm_locked+0x10/0x10
[  305.730047][ T9662]  ? lock_acquire+0x1b1/0x370
[  305.730071][ T9662]  gup_fast_fallback+0x16dc/0x2790
[  305.730103][ T9662]  ? __pfx_gup_fast_fallback+0x10/0x10
[  305.730123][ T9662]  ? __lock_acquire+0x4a5/0x2630
[  305.730137][ T9662]  ? finish_task_switch.isra.0+0x2cb/0x1010
[  305.730156][ T9662]  ? lockdep_hardirqs_on+0x78/0x100
[  305.730178][ T9662]  get_user_pages_fast+0xa7/0xf0
[  305.730197][ T9662]  ? __pfx_get_user_pages_fast+0x10/0x10
[  305.730220][ T9662]  __iov_iter_get_pages_alloc+0x8f2/0x1f20
[  305.730248][ T9662]  ? pipe_lock+0x69/0x80
[  305.730266][ T9662]  ? __pfx___iov_iter_get_pages_alloc+0x10/0x10
[  305.730296][ T9662]  ? __pfx___mutex_lock+0x10/0x10
[  305.730318][ T9662]  ? iovec_from_user+0xda/0x140
[  305.730336][ T9662]  iov_iter_get_pages2+0xa3/0x100
[  305.730365][ T9662]  ? __pfx_iov_iter_get_pages2+0x10/0x10
[  305.730388][ T9662]  ? wait_for_space+0x2ca/0x3b0
[  305.730410][ T9662]  __do_sys_vmsplice+0x7dd/0x13c0
[  305.730438][ T9662]  ? __pfx___do_sys_vmsplice+0x10/0x10
[  305.730462][ T9662]  ? __pfx_futex_wait+0x10/0x10
[  305.730512][ T9662]  ? do_syscall_64+0x10b/0xf80
[  305.730529][ T9662]  do_syscall_64+0x10b/0xf80
[  305.730547][ T9662]  ? clear_bhb_loop+0x40/0x90
[  305.730565][ T9662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  305.730580][ T9662] RIP: 0033:0x7f1dd1d9cdd9
[  305.730593][ T9662] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  305.730607][ T9662] RSP: 002b:00007f1dcfff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[  305.730621][ T9662] RAX: ffffffffffffffda RBX: 00007f1dd2016180 RCX: 00007f1dd1d9cdd9
[  305.730631][ T9662] RDX: 0000000000000006 RSI: 0000200000000000 RDI: 0000000000000000
[  305.730640][ T9662] RBP: 00007f1dd1e32d69 R08: 0000000000000000 R09: 0000000000000000
[  305.730648][ T9662] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[  305.730657][ T9662] R13: 00007f1dd2016218 R14: 00007f1dd2016180 R15: 00007ffe8dec03c8
[  305.730676][ T9662]  </TASK>
[  306.013524][ T9655] zswap: compressor -Wï­Bg)

 not available
[  307.122641][ T9677] FAULT_INJECTION: forcing a failure.
[  307.122641][ T9677] name failslab, interval 1, probability 0, space 0, times 0
[  307.199487][ T9677] CPU: 0 UID: 0 PID: 9677 Comm: syz.1.860 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  307.199513][ T9677] Tainted: [L]=SOFTLOCKUP
[  307.199518][ T9677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  307.199527][ T9677] Call Trace:
[  307.199532][ T9677]  <TASK>
[  307.199538][ T9677]  dump_stack_lvl+0x100/0x190
[  307.199559][ T9677]  should_fail_ex.cold+0x5/0xa
[  307.199579][ T9677]  should_failslab+0xc2/0x120
[  307.199597][ T9677]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  307.199619][ T9677]  ? security_inode_alloc+0x3b/0x2c0
[  307.199642][ T9677]  ? lockdep_init_map_type+0x5c/0x250
[  307.199660][ T9677]  security_inode_alloc+0x3b/0x2c0
[  307.199682][ T9677]  inode_init_always_gfp+0xcc0/0x1000
[  307.199703][ T9677]  alloc_inode+0x8e/0x250
[  307.199725][ T9677]  sock_alloc+0x44/0x280
[  307.199740][ T9677]  ? security_socket_create+0x7f/0x250
[  307.199763][ T9677]  __sock_create+0xc2/0x860
[  307.199785][ T9677]  __sys_socket+0x14d/0x260
[  307.199804][ T9677]  ? exc_page_fault+0x6f/0xd0
[  307.199822][ T9677]  ? __pfx___sys_socket+0x10/0x10
[  307.199847][ T9677]  __x64_sys_socket+0x72/0xb0
[  307.199866][ T9677]  ? lockdep_hardirqs_on+0x78/0x100
[  307.199884][ T9677]  do_syscall_64+0x10b/0xf80
[  307.199902][ T9677]  ? clear_bhb_loop+0x40/0x90
[  307.199920][ T9677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.199935][ T9677] RIP: 0033:0x7fd794d9e647
[  307.199948][ T9677] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  307.199962][ T9677] RSP: 002b:00007fd795c1ff98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[  307.199977][ T9677] RAX: ffffffffffffffda RBX: 00007fd795015fa0 RCX: 00007fd794d9e647
[  307.199986][ T9677] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  307.199995][ T9677] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[  307.200003][ T9677] R10: 0000200000000080 R11: 0000000000000286 R12: 0000000000000000
[  307.200012][ T9677] R13: 00007fd795016038 R14: 00007fd795015fa0 R15: 00007ffc6fa058e8
[  307.200031][ T9677]  </TASK>
[  307.200059][ T9677] socket: no more sockets
[  308.121650][ T9693] netlink: 8 bytes leftover after parsing attributes in process `syz.3.865'.
[  308.827469][ T9715] netlink: 8 bytes leftover after parsing attributes in process `syz.3.869'.
[  311.085458][ T9771] FAULT_INJECTION: forcing a failure.
[  311.085458][ T9771] name failslab, interval 1, probability 0, space 0, times 0
[  311.159769][ T9771] CPU: 0 UID: 0 PID: 9771 Comm: syz.1.883 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  311.159795][ T9771] Tainted: [L]=SOFTLOCKUP
[  311.159801][ T9771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  311.159810][ T9771] Call Trace:
[  311.159823][ T9771]  <TASK>
[  311.159829][ T9771]  dump_stack_lvl+0x100/0x190
[  311.159851][ T9771]  should_fail_ex.cold+0x5/0xa
[  311.159870][ T9771]  ? constrain_params_by_rules+0x175/0xcc0
[  311.159894][ T9771]  should_failslab+0xc2/0x120
[  311.159911][ T9771]  __kmalloc_noprof+0xe0/0x850
[  311.159933][ T9771]  ? unwind_get_return_address+0x59/0xa0
[  311.159958][ T9771]  constrain_params_by_rules+0x175/0xcc0
[  311.159986][ T9771]  ? stack_trace_save+0x8e/0xc0
[  311.160008][ T9771]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  311.160035][ T9771]  ? __kasan_kmalloc+0xaa/0xb0
[  311.160048][ T9771]  ? snd_pcm_oss_change_params_locked+0x247/0x39f0
[  311.160068][ T9771]  ? snd_pcm_oss_make_ready+0xeb/0x1b0
[  311.160088][ T9771]  ? snd_pcm_oss_sync+0x1de/0x840
[  311.160113][ T9771]  ? rcu_is_watching+0x12/0xc0
[  311.160130][ T9771]  ? snd_interval_refine+0x2d0/0x580
[  311.160148][ T9771]  snd_pcm_hw_refine+0x7e7/0xad0
[  311.160174][ T9771]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  311.160203][ T9771]  ? __asan_memset+0x23/0x50
[  311.160224][ T9771]  ? _snd_pcm_hw_param_min+0x1ea/0x670
[  311.160246][ T9771]  snd_pcm_oss_change_params_locked+0x2594/0x39f0
[  311.160268][ T9771]  ? trace_contention_end+0x40/0x170
[  311.160286][ T9771]  ? snd_pcm_oss_make_ready+0xcb/0x1b0
[  311.160310][ T9771]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  311.160331][ T9771]  ? __pfx___mutex_lock+0x10/0x10
[  311.160364][ T9771]  snd_pcm_oss_make_ready+0xeb/0x1b0
[  311.160389][ T9771]  snd_pcm_oss_sync+0x1de/0x840
[  311.160413][ T9771]  snd_pcm_oss_release+0x238/0x300
[  311.160434][ T9771]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  311.160455][ T9771]  __fput+0x3ff/0xb50
[  311.160479][ T9771]  task_work_run+0x150/0x240
[  311.160495][ T9771]  ? __pfx_task_work_run+0x10/0x10
[  311.160511][ T9771]  ? rcu_is_watching+0x12/0xc0
[  311.160530][ T9771]  exit_to_user_mode_loop+0x100/0x4a0
[  311.160545][ T9771]  ? do_syscall_64+0x519/0xf80
[  311.160565][ T9771]  do_syscall_64+0x6f2/0xf80
[  311.160582][ T9771]  ? clear_bhb_loop+0x40/0x90
[  311.160600][ T9771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.160615][ T9771] RIP: 0033:0x7fd794d9cdd9
[  311.160628][ T9771] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  311.160643][ T9771] RSP: 002b:00007fd795c21028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  311.160657][ T9771] RAX: 0000000000000000 RBX: 00007fd795015fa0 RCX: 00007fd794d9cdd9
[  311.160667][ T9771] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  311.160675][ T9771] RBP: 00007fd794e32d69 R08: 0000000000000000 R09: 0000000000000000
[  311.160684][ T9771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  311.160692][ T9771] R13: 00007fd795016038 R14: 00007fd795015fa0 R15: 00007ffc6fa058e8
[  311.160712][ T9771]  </TASK>
[  311.552213][ T9773] netlink: 342 bytes leftover after parsing attributes in process `syz.3.884'.
[  314.133518][ T9832] netlink: 8 bytes leftover after parsing attributes in process `syz.0.896'.
[  314.158253][ T5628] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  314.308837][ T9834] raw_sendmsg: syz.1.897 forgot to set AF_INET. Fix it!
[  314.446362][ T9837] random: crng reseeded on system resumption
[  315.648718][ T9863] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint
[  315.900754][ T9872] netlink: 'syz.3.906': attribute type 11 has an invalid length.
[  315.962037][ T9872] netlink: 'syz.3.906': attribute type 11 has an invalid length.
[  316.025566][ T9872] netlink: 'syz.3.906': attribute type 11 has an invalid length.
[  316.243780][ T5633] Bluetooth: hci1: command 0x0c1a tx timeout
[  316.632483][ T9889] FAULT_INJECTION: forcing a failure.
[  316.632483][ T9889] name failslab, interval 1, probability 0, space 0, times 0
[  316.706691][ T9889] CPU: 0 UID: 0 PID: 9889 Comm: syz.2.911 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  316.706718][ T9889] Tainted: [L]=SOFTLOCKUP
[  316.706723][ T9889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  316.706733][ T9889] Call Trace:
[  316.706738][ T9889]  <TASK>
[  316.706744][ T9889]  dump_stack_lvl+0x100/0x190
[  316.706766][ T9889]  should_fail_ex.cold+0x5/0xa
[  316.706786][ T9889]  ? constrain_params_by_rules+0x175/0xcc0
[  316.706809][ T9889]  should_failslab+0xc2/0x120
[  316.706828][ T9889]  __kmalloc_noprof+0xe0/0x850
[  316.706850][ T9889]  ? unwind_get_return_address+0x59/0xa0
[  316.706874][ T9889]  constrain_params_by_rules+0x175/0xcc0
[  316.706901][ T9889]  ? stack_trace_save+0x8e/0xc0
[  316.706923][ T9889]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  316.706950][ T9889]  ? __kasan_kmalloc+0xaa/0xb0
[  316.706963][ T9889]  ? snd_pcm_oss_change_params_locked+0x247/0x39f0
[  316.706988][ T9889]  ? snd_pcm_oss_make_ready+0xeb/0x1b0
[  316.707008][ T9889]  ? snd_pcm_oss_sync+0x1de/0x840
[  316.707033][ T9889]  ? rcu_is_watching+0x12/0xc0
[  316.707051][ T9889]  ? snd_interval_refine+0x2d0/0x580
[  316.707070][ T9889]  snd_pcm_hw_refine+0x7e7/0xad0
[  316.707096][ T9889]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  316.707125][ T9889]  ? __asan_memset+0x23/0x50
[  316.707146][ T9889]  ? _snd_pcm_hw_param_min+0x1ea/0x670
[  316.707168][ T9889]  snd_pcm_oss_change_params_locked+0x2594/0x39f0
[  316.707190][ T9889]  ? trace_contention_end+0x40/0x170
[  316.707208][ T9889]  ? snd_pcm_oss_make_ready+0xcb/0x1b0
[  316.707232][ T9889]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  316.707252][ T9889]  ? __pfx___mutex_lock+0x10/0x10
[  316.707286][ T9889]  snd_pcm_oss_make_ready+0xeb/0x1b0
[  316.707309][ T9889]  snd_pcm_oss_sync+0x1de/0x840
[  316.707333][ T9889]  snd_pcm_oss_release+0x238/0x300
[  316.707354][ T9889]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  316.707376][ T9889]  __fput+0x3ff/0xb50
[  316.707404][ T9889]  task_work_run+0x150/0x240
[  316.707421][ T9889]  ? __pfx_task_work_run+0x10/0x10
[  316.707438][ T9889]  ? rcu_is_watching+0x12/0xc0
[  316.707465][ T9889]  exit_to_user_mode_loop+0x100/0x4a0
[  316.707481][ T9889]  ? do_syscall_64+0x519/0xf80
[  316.707502][ T9889]  do_syscall_64+0x6f2/0xf80
[  316.707519][ T9889]  ? clear_bhb_loop+0x40/0x90
[  316.707539][ T9889]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.707555][ T9889] RIP: 0033:0x7f489439cdd9
[  316.707569][ T9889] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  316.707583][ T9889] RSP: 002b:00007f48952e9028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  316.707598][ T9889] RAX: 0000000000000000 RBX: 00007f4894615fa0 RCX: 00007f489439cdd9
[  316.707608][ T9889] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  316.707617][ T9889] RBP: 00007f4894432d69 R08: 0000000000000000 R09: 0000000000000000
[  316.707626][ T9889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  316.707635][ T9889] R13: 00007f4894616038 R14: 00007f4894615fa0 R15: 00007ffeee250228
[  316.707655][ T9889]  </TASK>
[  317.442159][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  317.449481][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  317.751379][ T9900] FAULT_INJECTION: forcing a failure.
[  317.751379][ T9900] name failslab, interval 1, probability 0, space 0, times 0
[  317.777133][ T9900] CPU: 0 UID: 0 PID: 9900 Comm: syz.3.915 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  317.777160][ T9900] Tainted: [L]=SOFTLOCKUP
[  317.777165][ T9900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  317.777174][ T9900] Call Trace:
[  317.777180][ T9900]  <TASK>
[  317.777186][ T9900]  dump_stack_lvl+0x100/0x190
[  317.777208][ T9900]  should_fail_ex.cold+0x5/0xa
[  317.777228][ T9900]  ? constrain_params_by_rules+0x175/0xcc0
[  317.777251][ T9900]  should_failslab+0xc2/0x120
[  317.777275][ T9900]  __kmalloc_noprof+0xe0/0x850
[  317.777297][ T9900]  ? unwind_get_return_address+0x59/0xa0
[  317.777321][ T9900]  constrain_params_by_rules+0x175/0xcc0
[  317.777348][ T9900]  ? stack_trace_save+0x8e/0xc0
[  317.777370][ T9900]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  317.777397][ T9900]  ? __kasan_kmalloc+0xaa/0xb0
[  317.777410][ T9900]  ? snd_pcm_oss_change_params_locked+0x247/0x39f0
[  317.777431][ T9900]  ? snd_pcm_oss_make_ready+0xeb/0x1b0
[  317.777451][ T9900]  ? snd_pcm_oss_sync+0x1de/0x840
[  317.777476][ T9900]  ? rcu_is_watching+0x12/0xc0
[  317.777494][ T9900]  ? snd_interval_refine+0x2d0/0x580
[  317.777512][ T9900]  snd_pcm_hw_refine+0x7e7/0xad0
[  317.777538][ T9900]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  317.777567][ T9900]  ? __asan_memset+0x23/0x50
[  317.777588][ T9900]  ? _snd_pcm_hw_param_min+0x1ea/0x670
[  317.777610][ T9900]  snd_pcm_oss_change_params_locked+0x2594/0x39f0
[  317.777632][ T9900]  ? trace_contention_end+0x40/0x170
[  317.777649][ T9900]  ? snd_pcm_oss_make_ready+0xcb/0x1b0
[  317.777673][ T9900]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  317.777694][ T9900]  ? __pfx___mutex_lock+0x10/0x10
[  317.777727][ T9900]  snd_pcm_oss_make_ready+0xeb/0x1b0
[  317.777749][ T9900]  snd_pcm_oss_sync+0x1de/0x840
[  317.777773][ T9900]  snd_pcm_oss_release+0x238/0x300
[  317.777794][ T9900]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  317.777815][ T9900]  __fput+0x3ff/0xb50
[  317.777839][ T9900]  task_work_run+0x150/0x240
[  317.777855][ T9900]  ? __pfx_task_work_run+0x10/0x10
[  317.777871][ T9900]  ? rcu_is_watching+0x12/0xc0
[  317.777890][ T9900]  exit_to_user_mode_loop+0x100/0x4a0
[  317.777905][ T9900]  ? do_syscall_64+0x519/0xf80
[  317.777924][ T9900]  do_syscall_64+0x6f2/0xf80
[  317.777942][ T9900]  ? clear_bhb_loop+0x40/0x90
[  317.777959][ T9900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.777975][ T9900] RIP: 0033:0x7f1dd1d9cdd9
[  317.777989][ T9900] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  317.778003][ T9900] RSP: 002b:00007f1dd2b91028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  317.778017][ T9900] RAX: 0000000000000000 RBX: 00007f1dd2015fa0 RCX: 00007f1dd1d9cdd9
[  317.778027][ T9900] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  317.778035][ T9900] RBP: 00007f1dd1e32d69 R08: 0000000000000000 R09: 0000000000000000
[  317.778043][ T9900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  317.778052][ T9900] R13: 00007f1dd2016038 R14: 00007f1dd2015fa0 R15: 00007ffe8dec03c8
[  317.778072][ T9900]  </TASK>
[  318.136631][ T9903] FAULT_INJECTION: forcing a failure.
[  318.136631][ T9903] name failslab, interval 1, probability 0, space 0, times 0
[  318.149668][ T9903] CPU: 0 UID: 0 PID: 9903 Comm: syz.1.923 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  318.149693][ T9903] Tainted: [L]=SOFTLOCKUP
[  318.149698][ T9903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  318.149708][ T9903] Call Trace:
[  318.149713][ T9903]  <TASK>
[  318.149719][ T9903]  dump_stack_lvl+0x100/0x190
[  318.149739][ T9903]  should_fail_ex.cold+0x5/0xa
[  318.149759][ T9903]  should_failslab+0xc2/0x120
[  318.149777][ T9903]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  318.149800][ T9903]  ? ptlock_alloc+0x1f/0x70
[  318.149820][ T9903]  ? do_raw_spin_lock+0x128/0x260
[  318.149836][ T9903]  ? find_held_lock+0x2b/0x80
[  318.149857][ T9903]  ptlock_alloc+0x1f/0x70
[  318.149877][ T9903]  pte_alloc_one+0x82/0x3d0
[  318.149897][ T9903]  __pte_alloc+0x6d/0x3e0
[  318.149913][ T9903]  ? __pfx___pte_alloc+0x10/0x10
[  318.149931][ T9903]  ? walk_to_pmd+0x302/0x4c0
[  318.149950][ T9903]  get_locked_pte+0xa1/0xc0
[  318.149970][ T9903]  insert_page+0xcc/0x220
[  318.149989][ T9903]  ? __pfx_insert_page+0x10/0x10
[  318.150006][ T9903]  ? __pfx_down_read_trylock+0x10/0x10
[  318.150027][ T9903]  vm_insert_page+0x2c0/0x400
[  318.150048][ T9903]  kcov_mmap+0xca/0x130
[  318.150069][ T9903]  __mmap_region+0x13e1/0x2da0
[  318.150094][ T9903]  ? __pfx___mmap_region+0x10/0x10
[  318.150133][ T9903]  ? find_held_lock+0x2b/0x80
[  318.150151][ T9903]  ? ima_match_policy+0x8c4/0x2350
[  318.150166][ T9903]  ? ima_match_policy+0x8c4/0x2350
[  318.150198][ T9903]  ? process_measurement+0x4c8/0x2350
[  318.150250][ T9903]  mmap_region+0x527/0x620
[  318.150265][ T9903]  ? __pfx_mmap_region+0x10/0x10
[  318.150289][ T9903]  ? cap_mmap_addr+0x4b/0x120
[  318.150310][ T9903]  ? bpf_lsm_mmap_addr+0x9/0x30
[  318.150324][ T9903]  ? security_mmap_addr+0x71/0x1e0
[  318.150341][ T9903]  ? __get_unmapped_area+0x255/0x3e0
[  318.150361][ T9903]  do_mmap+0xc63/0x12f0
[  318.150382][ T9903]  ? __pfx_do_mmap+0x10/0x10
[  318.150399][ T9903]  ? __pfx_down_write_killable+0x10/0x10
[  318.150425][ T9903]  vm_mmap_pgoff+0x29e/0x470
[  318.150447][ T9903]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  318.150463][ T9903]  ? __fget_files+0x215/0x3d0
[  318.150484][ T9903]  ? __fget_files+0x21f/0x3d0
[  318.150504][ T9903]  ksys_mmap_pgoff+0x3cb/0x610
[  318.150521][ T9903]  ? __x64_sys_futex+0x358/0x4d0
[  318.150538][ T9903]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  318.150555][ T9903]  ? xfd_validate_state+0x129/0x190
[  318.150569][ T9903]  ? ksys_write+0x1ac/0x250
[  318.150589][ T9903]  __x64_sys_mmap+0x125/0x190
[  318.150607][ T9903]  do_syscall_64+0x10b/0xf80
[  318.150625][ T9903]  ? clear_bhb_loop+0x40/0x90
[  318.150643][ T9903]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.150659][ T9903] RIP: 0033:0x7fd794d9cdd9
[  318.150672][ T9903] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  318.150686][ T9903] RSP: 002b:00007fd795c00028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  318.150700][ T9903] RAX: ffffffffffffffda RBX: 00007fd795016090 RCX: 00007fd794d9cdd9
[  318.150710][ T9903] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000000000
[  318.150719][ T9903] RBP: 00007fd794e32d69 R08: 00000000000000dd R09: 0000000000000000
[  318.150728][ T9903] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  318.150737][ T9903] R13: 00007fd795016128 R14: 00007fd795016090 R15: 00007ffc6fa058e8
[  318.150757][ T9903]  </TASK>
[  318.521778][ T5628] Bluetooth: hci1: command 0x0c1a tx timeout
[  320.470439][ T9940] netlink: 'syz.0.924': attribute type 11 has an invalid length.
[  320.504966][ T9940] netlink: 'syz.0.924': attribute type 11 has an invalid length.
[  320.541774][ T9940] netlink: 'syz.0.924': attribute type 11 has an invalid length.
[  323.359105][ T9989] random: crng reseeded on system resumption
[  323.582619][ T9996] netlink: 4 bytes leftover after parsing attributes in process `syz.0.936'.
[  324.159774][T10010] netlink: 4 bytes leftover after parsing attributes in process `syz.0.941'.
[  324.198937][T10010] netlink: 17 bytes leftover after parsing attributes in process `syz.0.941'.
[  325.929228][T10044] netlink: 330 bytes leftover after parsing attributes in process `syz.3.949'.
[  326.271468][T10058] futex_wake_op: syz.1.952 tries to shift op by -2048; fix this program
[  330.511992][T10113] Process accounting paused
[  331.474530][T10180] netlink: 'syz.0.986': attribute type 11 has an invalid length.
[  331.500109][T10180] netlink: 'syz.0.986': attribute type 11 has an invalid length.
[  331.526583][T10180] netlink: 'syz.0.986': attribute type 11 has an invalid length.
[  332.415012][T10207] netlink: 28 bytes leftover after parsing attributes in process `syz.2.991'.
[  332.491711][T10207] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  332.592268][T10207] batman_adv: batadv0: Removing interface: batadv_slave_1
[  333.493271][T10224] netlink: 'syz.2.998': attribute type 11 has an invalid length.
[  333.551032][T10224] netlink: 'syz.2.998': attribute type 11 has an invalid length.
[  333.587454][T10224] netlink: 'syz.2.998': attribute type 11 has an invalid length.
[  333.736299][T10229] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1008'.
[  334.067257][T10239] netlink: 'syz.0.1002': attribute type 11 has an invalid length.
[  334.098639][T10239] netlink: 'syz.0.1002': attribute type 11 has an invalid length.
[  334.135757][T10239] netlink: 'syz.0.1002': attribute type 11 has an invalid length.
[  335.057948][T10264] futex_wake_op: syz.2.1011 tries to shift op by -2048; fix this program
[  335.155131][T10268] blktrace: Concurrent blktraces are not allowed on loop2
[  336.550810][T10251] kexec: Could not allocate control_code_buffer
[  336.559957][T10303] FAULT_INJECTION: forcing a failure.
[  336.559957][T10303] name failslab, interval 1, probability 0, space 0, times 0
[  336.631573][T10303] CPU: 0 UID: 0 PID: 10303 Comm: syz.0.1019 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  336.631600][T10303] Tainted: [L]=SOFTLOCKUP
[  336.631637][T10303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  336.631646][T10303] Call Trace:
[  336.631652][T10303]  <TASK>
[  336.631658][T10303]  dump_stack_lvl+0x100/0x190
[  336.631681][T10303]  should_fail_ex.cold+0x5/0xa
[  336.631702][T10303]  ? constrain_params_by_rules+0x175/0xcc0
[  336.631726][T10303]  should_failslab+0xc2/0x120
[  336.631743][T10303]  __kmalloc_noprof+0xe0/0x850
[  336.631765][T10303]  ? unwind_get_return_address+0x59/0xa0
[  336.631789][T10303]  constrain_params_by_rules+0x175/0xcc0
[  336.631816][T10303]  ? stack_trace_save+0x8e/0xc0
[  336.631838][T10303]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  336.631865][T10303]  ? __kasan_kmalloc+0xaa/0xb0
[  336.631878][T10303]  ? snd_pcm_oss_change_params_locked+0x247/0x39f0
[  336.631899][T10303]  ? snd_pcm_oss_make_ready+0xeb/0x1b0
[  336.631919][T10303]  ? snd_pcm_oss_sync+0x1de/0x840
[  336.631944][T10303]  ? rcu_is_watching+0x12/0xc0
[  336.631962][T10303]  ? snd_interval_refine+0x2d0/0x580
[  336.631980][T10303]  snd_pcm_hw_refine+0x7e7/0xad0
[  336.632006][T10303]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  336.632035][T10303]  ? __asan_memset+0x23/0x50
[  336.632056][T10303]  ? _snd_pcm_hw_param_min+0x1ea/0x670
[  336.632079][T10303]  snd_pcm_oss_change_params_locked+0x2594/0x39f0
[  336.632100][T10303]  ? trace_contention_end+0x40/0x170
[  336.632118][T10303]  ? snd_pcm_oss_make_ready+0xcb/0x1b0
[  336.632141][T10303]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  336.632165][T10303]  ? __pfx___mutex_lock+0x10/0x10
[  336.632198][T10303]  snd_pcm_oss_make_ready+0xeb/0x1b0
[  336.632220][T10303]  snd_pcm_oss_sync+0x1de/0x840
[  336.632244][T10303]  snd_pcm_oss_release+0x238/0x300
[  336.632264][T10303]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  336.632290][T10303]  __fput+0x3ff/0xb50
[  336.632316][T10303]  task_work_run+0x150/0x240
[  336.632332][T10303]  ? __pfx_task_work_run+0x10/0x10
[  336.632349][T10303]  ? rcu_is_watching+0x12/0xc0
[  336.632368][T10303]  exit_to_user_mode_loop+0x100/0x4a0
[  336.632383][T10303]  ? do_syscall_64+0x519/0xf80
[  336.632403][T10303]  do_syscall_64+0x6f2/0xf80
[  336.632420][T10303]  ? clear_bhb_loop+0x40/0x90
[  336.632438][T10303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.632453][T10303] RIP: 0033:0x7f0ca359cdd9
[  336.632467][T10303] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  336.632481][T10303] RSP: 002b:00007f0ca4466028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  336.632496][T10303] RAX: 0000000000000000 RBX: 00007f0ca3815fa0 RCX: 00007f0ca359cdd9
[  336.632506][T10303] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  336.632515][T10303] RBP: 00007f0ca3632d69 R08: 0000000000000000 R09: 0000000000000000
[  336.632524][T10303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  336.632532][T10303] R13: 00007f0ca3816038 R14: 00007f0ca3815fa0 R15: 00007ffd4cbf8d28
[  336.632553][T10303]  </TASK>
[  337.079046][T10306] netlink: 'syz.3.1021': attribute type 11 has an invalid length.
[  337.086928][T10306] netlink: 'syz.3.1021': attribute type 11 has an invalid length.
[  337.095131][T10306] netlink: 'syz.3.1021': attribute type 11 has an invalid length.
[  337.477015][T10313] ==================================================================
[  337.477029][T10313] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0x94e/0xc60
[  337.477052][T10313] Read of size 26 at addr ffff88804e1899ea by task syz.3.1022/10313
[  337.477065][T10313] 
[  337.477074][T10313] CPU: 0 UID: 0 PID: 10313 Comm: syz.3.1022 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  337.477095][T10313] Tainted: [L]=SOFTLOCKUP
[  337.477100][T10313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  337.477109][T10313] Call Trace:
[  337.477114][T10313]  <TASK>
[  337.477120][T10313]  dump_stack_lvl+0x100/0x190
[  337.477136][T10313]  print_report+0x13d/0x4b0
[  337.477158][T10313]  ? __virt_addr_valid+0x239/0x430
[  337.477187][T10313]  ? fbcon_prepare_logo+0x94e/0xc60
[  337.477203][T10313]  kasan_report+0xdf/0x1d0
[  337.477220][T10313]  ? fbcon_prepare_logo+0x94e/0xc60
[  337.477237][T10313]  kasan_check_range+0x10f/0x1e0
[  337.477257][T10313]  __asan_memcpy+0x23/0x60
[  337.477278][T10313]  fbcon_prepare_logo+0x94e/0xc60
[  337.477298][T10313]  fbcon_init+0x1065/0x1830
[  337.477315][T10313]  visual_init+0x320/0x620
[  337.477332][T10313]  do_bind_con_driver.isra.0+0x636/0x9c0
[  337.477354][T10313]  store_bind+0x609/0x730
[  337.477374][T10313]  ? __pfx_store_bind+0x10/0x10
[  337.477392][T10313]  dev_attr_store+0x58/0x80
[  337.477409][T10313]  ? __pfx_dev_attr_store+0x10/0x10
[  337.477426][T10313]  sysfs_kf_write+0xf2/0x150
[  337.477448][T10313]  kernfs_fop_write_iter+0x3e0/0x5f0
[  337.477468][T10313]  ? __pfx_sysfs_kf_write+0x10/0x10
[  337.477490][T10313]  vfs_write+0x6ac/0x1070
[  337.477506][T10313]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  337.477526][T10313]  ? __pfx_vfs_write+0x10/0x10
[  337.477554][T10313]  ksys_write+0x12a/0x250
[  337.477570][T10313]  ? __pfx_ksys_write+0x10/0x10
[  337.477587][T10313]  ? rcu_is_watching+0x12/0xc0
[  337.477605][T10313]  do_syscall_64+0x10b/0xf80
[  337.477623][T10313]  ? clear_bhb_loop+0x40/0x90
[  337.477640][T10313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.477654][T10313] RIP: 0033:0x7f1dd1d9cdd9
[  337.477667][T10313] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  337.477681][T10313] RSP: 002b:00007f1dd2b70028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  337.477696][T10313] RAX: ffffffffffffffda RBX: 00007f1dd2016090 RCX: 00007f1dd1d9cdd9
[  337.477706][T10313] RDX: 000000000008083a RSI: 00002000000000c0 RDI: 0000000000000002
[  337.477715][T10313] RBP: 00007f1dd1e32d69 R08: 0000000000000000 R09: 0000000000000000
[  337.477724][T10313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  337.477733][T10313] R13: 00007f1dd2016128 R14: 00007f1dd2016090 R15: 00007ffe8dec03c8
[  337.477747][T10313]  </TASK>
[  337.477753][T10313] 
[  337.477756][T10313] Allocated by task 10311:
[  337.477769][T10313]  kasan_save_stack+0x30/0x50
[  337.477783][T10313]  kasan_save_track+0x14/0x30
[  337.477796][T10313]  __kasan_kmalloc+0xaa/0xb0
[  337.477808][T10313]  __kmalloc_noprof+0x301/0x850
[  337.477833][T10313]  __register_sysctl_table+0xbe4/0x1650
[  337.477851][T10313]  mpls_dev_sysctl_register+0x185/0x2a0
[  337.477869][T10313]  mpls_dev_notify+0x365/0x920
[  337.477885][T10313]  notifier_call_chain+0x99/0x400
[  337.477911][T10313]  call_netdevice_notifiers_info+0xbe/0x110
[  337.477929][T10313]  register_netdevice+0x18fe/0x24b0
[  337.477944][T10313]  __ip_tunnel_create+0x52b/0x670
[  337.477961][T10313]  ip_tunnel_init_net+0x230/0x780
[  337.477978][T10313]  ops_init+0x1e2/0x5f0
[  337.477991][T10313]  setup_net+0x118/0x3a0
[  337.478005][T10313]  copy_net_ns+0x46f/0x7c0
[  337.478020][T10313]  create_new_namespaces+0x3ea/0xac0
[  337.478036][T10313]  unshare_nsproxy_namespaces+0xf2/0x220
[  337.478054][T10313]  ksys_unshare+0x438/0xab0
[  337.478073][T10313]  __x64_sys_unshare+0x31/0x40
[  337.478092][T10313]  do_syscall_64+0x10b/0xf80
[  337.478109][T10313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.478122][T10313] 
[  337.478126][T10313] The buggy address belongs to the object at ffff88804e189900
[  337.478126][T10313]  which belongs to the cache kmalloc-192 of size 192
[  337.478138][T10313] The buggy address is located 42 bytes to the right of
[  337.478138][T10313]  allocated 192-byte region [ffff88804e189900, ffff88804e1899c0)
[  337.478153][T10313] 
[  337.478160][T10313] The buggy address belongs to the physical page:
[  337.478166][T10313] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4e189
[  337.478183][T10313] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  337.478199][T10313] page_type: f5(slab)
[  337.478216][T10313] raw: 00fff00000000000 ffff88813fe2e3c0 dead000000000100 dead000000000122
[  337.478232][T10313] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  337.478241][T10313] page dumped because: kasan: bad access detected
[  337.478251][T10313] page_owner tracks the page as allocated
[  337.478256][T10313] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd2cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6762, tgid 6761 (syz.2.192), ts 149491921443, free_ts 149287653047
[  337.478281][T10313]  post_alloc_hook+0x153/0x170
[  337.478301][T10313]  get_page_from_freelist+0x11a6/0x33b0
[  337.478323][T10313]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  337.478345][T10313]  new_slab+0xa6/0x6c0
[  337.478363][T10313]  refill_objects+0x277/0x420
[  337.478382][T10313]  __pcs_replace_empty_main+0x375/0x650
[  337.478403][T10313]  __kmalloc_noprof+0x688/0x850
[  337.478424][T10313]  __register_sysctl_table+0xbe4/0x1650
[  337.478441][T10313]  __addrconf_sysctl_register+0x1a2/0x360
[  337.478457][T10313]  addrconf_init_net+0x5dd/0x8e0
[  337.478472][T10313]  ops_init+0x1e2/0x5f0
[  337.478485][T10313]  setup_net+0x118/0x3a0
[  337.478499][T10313]  copy_net_ns+0x46f/0x7c0
[  337.478514][T10313]  create_new_namespaces+0x3ea/0xac0
[  337.478542][T10313]  unshare_nsproxy_namespaces+0xf2/0x220
[  337.478560][T10313]  ksys_unshare+0x438/0xab0
[  337.478579][T10313] page last free pid 4994 tgid 4994 stack trace:
[  337.478588][T10313]  __free_frozen_pages+0x747/0x1040
[  337.478607][T10313]  qlist_free_all+0x47/0xf0
[  337.478628][T10313]  kasan_quarantine_reduce+0x1a0/0x1f0
[  337.478641][T10313]  __kasan_slab_alloc+0x69/0x90
[  337.478655][T10313]  kmem_cache_alloc_noprof+0x241/0x6e0
[  337.478676][T10313]  do_getname+0x35/0x390
[  337.478697][T10313]  do_readlinkat+0xa9/0x370
[  337.478715][T10313]  __x64_sys_readlink+0x78/0xc0
[  337.478734][T10313]  do_syscall_64+0x10b/0xf80
[  337.478751][T10313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.478765][T10313] 
[  337.478768][T10313] Memory state around the buggy address:
[  337.478776][T10313]  ffff88804e189880: 00 00 00 04 fc fc fc fc fc fc fc fc fc fc fc fc
[  337.478786][T10313]  ffff88804e189900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  337.478796][T10313] >ffff88804e189980: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[  337.478804][T10313]                                                           ^
[  337.478812][T10313]  ffff88804e189a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  337.478822][T10313]  ffff88804e189a80: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[  337.478830][T10313] ==================================================================
[  337.483082][T10313] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  337.483099][T10313] CPU: 0 UID: 0 PID: 10313 Comm: syz.3.1022 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  337.483123][T10313] Tainted: [L]=SOFTLOCKUP
[  337.483128][T10313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  337.483137][T10313] Call Trace:
[  337.483143][T10313]  <TASK>
[  337.483149][T10313]  dump_stack_lvl+0x100/0x190
[  337.483168][T10313]  vpanic+0x552/0x970
[  337.483183][T10313]  ? __pfx_vpanic+0x10/0x10
[  337.483199][T10313]  ? fbcon_prepare_logo+0x94e/0xc60
[  337.483215][T10313]  panic+0xd1/0xe0
[  337.483229][T10313]  ? __pfx_panic+0x10/0x10
[  337.483244][T10313]  ? fbcon_prepare_logo+0x94e/0xc60
[  337.483259][T10313]  ? preempt_schedule_common+0x42/0xc0
[  337.483279][T10313]  check_panic_on_warn.cold+0x19/0x34
[  337.483295][T10313]  end_report.part.0+0x3a/0x90
[  337.483316][T10313]  kasan_report.cold+0xe/0x18
[  337.483337][T10313]  ? fbcon_prepare_logo+0x94e/0xc60
[  337.483356][T10313]  kasan_check_range+0x10f/0x1e0
[  337.483376][T10313]  __asan_memcpy+0x23/0x60
[  337.483397][T10313]  fbcon_prepare_logo+0x94e/0xc60
[  337.483416][T10313]  fbcon_init+0x1065/0x1830
[  337.483433][T10313]  visual_init+0x320/0x620
[  337.483451][T10313]  do_bind_con_driver.isra.0+0x636/0x9c0
[  337.483474][T10313]  store_bind+0x609/0x730
[  337.483495][T10313]  ? __pfx_store_bind+0x10/0x10
[  337.483514][T10313]  dev_attr_store+0x58/0x80
[  337.483553][T10313]  ? __pfx_dev_attr_store+0x10/0x10
[  337.483570][T10313]  sysfs_kf_write+0xf2/0x150
[  337.483594][T10313]  kernfs_fop_write_iter+0x3e0/0x5f0
[  337.483617][T10313]  ? __pfx_sysfs_kf_write+0x10/0x10
[  337.483640][T10313]  vfs_write+0x6ac/0x1070
[  337.483656][T10313]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  337.483677][T10313]  ? __pfx_vfs_write+0x10/0x10
[  337.483698][T10313]  ksys_write+0x12a/0x250
[  337.483714][T10313]  ? __pfx_ksys_write+0x10/0x10
[  337.483731][T10313]  ? rcu_is_watching+0x12/0xc0
[  337.483749][T10313]  do_syscall_64+0x10b/0xf80
[  337.483767][T10313]  ? clear_bhb_loop+0x40/0x90
[  337.483784][T10313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.483799][T10313] RIP: 0033:0x7f1dd1d9cdd9
[  337.483811][T10313] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  337.483826][T10313] RSP: 002b:00007f1dd2b70028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  337.483841][T10313] RAX: ffffffffffffffda RBX: 00007f1dd2016090 RCX: 00007f1dd1d9cdd9
[  337.483851][T10313] RDX: 000000000008083a RSI: 00002000000000c0 RDI: 0000000000000002
[  337.483861][T10313] RBP: 00007f1dd1e32d69 R08: 0000000000000000 R09: 0000000000000000
[  337.483870][T10313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  337.483879][T10313] R13: 00007f1dd2016128 R14: 00007f1dd2016090 R15: 00007ffe8dec03c8
[  337.483895][T10313]  </TASK>
[  337.483950][T10313] Kernel Offset: disabled