last executing test programs:

8m30.338584071s ago: executing program 2 (id=3):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xbf)
futex$auto(0x0, 0x2, 0x8321, 0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x0, 0x12, 0x0, 0x82d7)
read$auto(0x3, 0x0, 0x80)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
ioctl$auto_VHOST_SET_VRING_KICK2(0xffffffffffffffff, 0x4008af20, &(0x7f00000001c0)={0x12b, <r0=>0xffffffffffffffff})
setsockopt$auto_SO_PRIORITY(r0, 0xed, 0xc, &(0x7f0000000200)='/dev/ubi_ctrl\x00', 0x8)
mmap$auto(0xfffffffffffffffd, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
r1 = socket(0xa, 0x3, 0xffdff125)
close$auto(r1)
open(0x0, 0x0, 0x408)
r2 = socketcall$auto_SYS_SOCKETPAIR(0x8, 0x0)
mmap$auto(0x0, 0x61, 0x100001000000005, 0xfa31, 0x400, 0x8000)
ioctl$auto_TIOCGETD2(r2, 0x5424, &(0x7f0000001480)="d4c62697697adb91296b35e3c0ecdfb470eca61865a4476ae1b113e5694596e86bb9c0bb7da0917bfc96089f6854ce2ea112fcd20f7a1fae22a1451bdc45f8b13bf9d33a0a7267fd9d3470b1732f5aae1fd2a1e359eaba0000000000000064262dc223a5daa888c6e4fe0055e8e15543bfcbd82bb40ef1df886aee16a90f6037ff7f04004a30101b37b1e93d55674a8495eb024e19a7c93f2f363089112eb02496b24f44d185030e1accfb4f00b7a0480d8a2b1144e839d5253c11cf946093ab36c28d7d65d5f121c800f2e0a108e8fc5508acc501b92f00"/227)
syz_clone(0x2360411, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000001300)={@siginfo_0_0={0xffffffff, 0x401, 0x1, @_sigchld={0x0, 0x0, 0x2, 0x4, 0xc91}}}, 0x5, &(0x7f0000000240)={{0xc4d, 0xffffffffffffff37}, {0xc00, 0x5}, 0x5, 0x0, 0x8000, 0x7, 0x4, 0x1, 0x100000000f, 0x40000000006, 0xf, 0x7f, 0x6, 0x5e97, 0xd, 0x5})
migrate_pages$auto(0x0, 0x8, &(0x7f0000000000)=0x4, &(0x7f0000000040)=0x3)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/irq/3/smp_affinity_list\x00', 0x41, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000300)=""/4096, 0x1000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zram0\x00', 0x6e642, 0x0)
sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000400)=ANY=[@ANYBLOB="b105d92077011d03dec51309b6ba897eb103d2fd9323d1bb78adaf614e31cb0991140f319567b91f5e86e991658b27abd16522b1cec8013c8e0a2d74ed6ebe24703a32e1982b1439bd24b3d76495cbd77273c0422d9f6bd36c7acb9178e2b6b5467679f470466b96aa55bbffa392cdf9056a7ebbefbaca308913101a4db579fd3d"], 0x2c}, 0x1, 0x0, 0x0, 0x4044844}, 0x40)
r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/security/tomoyo/profile\x00', 0x40802, 0x0)
read$auto(r4, &(0x7f00000008c0)='N\xd5\f\xb9GC\x00\x00\x00\x00\x00\x00\x00\x00\xa3`\xb1\xf2\xe7\xc04b$\x99.\xb4\xcc\xc0%\xaa\xd3\xd5\xef\xa4\xd35u\xc0\xa6\r\xcaJ\x11\xaf\x93\xde\xc3|\x17\x96\xd1\x15g\x10\x1ai1(=!\xf1\xe8\xe4\xcdm\xedKW\xe7\xfbL\\\xf2sj(\v\xcd\xe5\x02B\x81ss\xdd\x8199\xa5\x1e\xb0A\xa3\xcbj7\xe9\xc9L\xcc\xc6\xa4\xaf%\xba\xda\xee\xd8%:bXj\xd5[UG\x8a\x8ab\x9a\x18\xe8K\xafU\x8d\xb1\f~\xaa\xab(\x86(\xf9\b\xf7 %\xf2\x11\xa4\x9bj\xc1)\n\x1ft\xb6\xaf\xe2\xd4\x95\xa3\xe1\x1f\xf7\xff\x7f\a\xd0\x83{_>/\xff\xe9qb3\xf8%\xc8\xf6\xadA1\xb2\xcd=\x00oty\x8el\x15n\xc2\x95\x0f\"\x05\x91\xe0\x14z_.fj\x8f\x10\xce\x17\xf5\xf0m\xfd\xa5T\xd1\x9b\xbb\x8cPAZb\x14\\b\xb3x\xc4\xa8B\xa7l>]\xe99+\xcc\v\xad?\xdfet+Opg\"\xbbcX\xd2j\xa0\x06P\xf1~\x8ar\xa9\f+\xd2cb\xfaV\x94\xa7\xfd\xfe\x9c9 \x9f\xd7\xd71\xeb\xa1B\xffn\xaf-\xfc\xa7\xf5\xd2P\xcb\xdd\xf7\xdc\xb91\x93\xbfY\x88\xf5,\xd0\x02\x80j\x9b\xe0\xac\xb1\xeb\xd4\x8b\xf7\xaa#\xce\xcb\xc8\x9f\xaa\xfd\x8d.HK1ua\x89\xb4\xe7\x04)?_\xd4.y\x16-c\xc5\xf6\x93\xael\xafK', 0x81)
write$auto(r4, &(0x7f0000000040)='-\x00\x00\x00\xfe\xff\xff\xff', 0x8587)
socket(0x1e, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

8m29.233700952s ago: executing program 2 (id=6):
unshare$auto(0x40000080)
ioctl$auto_BLKPG(0xffffffffffffffff, 0x1269, 0x300)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000280)={0x4, 0xfc, 0x6, 0x3, 0x7f, 0x80, &(0x7f0000000180)="2bb5abdb977cf4ebec604e719e3bc8d34ed9b8b0b8032cc19c0c8bf6a4e969e38390edbf66cd1cb6501458ef76fc5bb39e5c945d2153ea364bd19f6a4ab35e5031b541e5fb3fbafb67432a1a9ef0a8bbecca0a"})
ioctl$auto_USBDEVFS_REAPURBNDELAY(r0, 0x4008550d, &(0x7f0000000300)=&(0x7f0000000280)="3f1cfd6972284eddf1aff69a3ef120b5148efd00b299266816aca97f7219e76191fa32b5d220f83bde70dc1951419e5201c5b587b698551fb051f8f7a3f1c829ca9d77")
timerfd_create$auto_CLOCK_MONOTONIC(0x1, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
openat$auto_minstrel_ht_stat_fops_rc80211_minstrel_ht_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ieee80211/phy5/netdev:wlan0/stations/08:02:11:00:00:01/rc_stats\x00', 0x2401, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/dummy_hcd.2/usb3/authorized\x00', 0x81, 0x0)
write$auto(r1, &(0x7f0000000080)='Y\x81=\"\xad\xff\x8d\xf9P\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb&\xe8\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0x48da548d)
keyctl$auto(0x8, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x6)
write$auto(r1, &(0x7f0000000180)='\x00', 0xffffffffffff8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x2, 0x1, 0x106)
ioctl$auto(0x3, 0x8902, 0x38)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setresuid$auto(0x0, 0x0, 0x0)
madvise$auto(0x0, 0x20000a, 0x4)
r2 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0)
read$auto_ht40allow_map_ops_debugfs(r0, &(0x7f0000000380)=""/186, 0xba)
ioctl$auto_MON_IOCX_MFETCH(r2, 0xc0109207, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)='nfs4\x00', 0x8, &(0x7f0000000240)="4543de480d189a5d3b5e91cc59b5d9899ddc5a4c91609a7e5e670b0fa89000aa39733c4488c2b9c9781dbb5741267c3fd67c8e0a6e9f66d6d2")
ioctl$auto_TUNGETIFF(r3, 0x800454d2, &(0x7f0000000000)=0x7ff3)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000340)='/dev/bus/usb/006/001\x00', 0x400281, 0x0)
r4 = openat$auto_ext4_dir_operations_ext4(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x4000, 0x0)
mmap$auto(0xfffffffffffffffd, 0x2020009, 0x3, 0xeb1, r4, 0x6)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ipvs(0x0, r5)

8m27.123117697s ago: executing program 2 (id=10):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(r1, 0x400454ca, 0x38)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x24040, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x300c00, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r4, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0)
r5 = socket(0x29, 0x2, 0x0)
ioctl$auto(r5, 0x89f1, 0x24)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)

8m11.866080678s ago: executing program 32 (id=10):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(r1, 0x400454ca, 0x38)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x24040, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x300c00, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf250a"], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r4, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0)
r5 = socket(0x29, 0x2, 0x0)
ioctl$auto(r5, 0x89f1, 0x24)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)

6.430990016s ago: executing program 3 (id=1843):
r0 = socket(0x1e, 0x4, 0x0)
connect$auto(r0, &(0x7f00000000c0)=@tipc=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}, 0x1003d}}, 0x4)
read$auto(0xffffffffffffffff, 0x0, 0x10001)
timer_create$auto(0x4, &(0x7f0000000140)={@sival_ptr=0x0, @raw=0x6, 0xe}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_udc.2/udc/dummy_udc.2/a_alt_hnp_support\x00', 0x2000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001c00)=""/4111, 0x100f)
pwritev2$auto(r1, 0x0, 0x8000000000000004, 0xffffffffffffffff, 0x9, 0xb)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
unshare$auto(0x20000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/hsr_slave_0/hop_limit\x00', 0x6c0200, 0x0)
ptrace$auto_PTRACE_INTERRUPT(0x4207, 0x0, 0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_net_shaper(&(0x7f00000001c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'dvmrp0\x00'})
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="c00900"], 0x9c0}, 0x1, 0x0, 0x0, 0x2400c884}, 0x20040894)
mmap$auto(0x101, 0x9, 0xeeb, 0xb3, r3, 0x9)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894)
sendmsg$auto_NET_SHAPER_CMD_GET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x5090)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x18b800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

5.849772266s ago: executing program 3 (id=1845):
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
madvise$auto(0x80000000, 0xffffffffffff0006, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
timer_create$auto(0x9, 0x0, 0x0)
timer_settime$auto(0x0, 0x9, &(0x7f00000000c0)={{0x400000000f, 0x10007}, {0x9}}, 0x0)
timer_gettime$auto(0x0, 0x0)
ioctl$auto(0x4000000000000c8, 0x400454d1, 0x6)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = openat$auto_bdi_debug_stats_fops_(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/bdi/mtd-0/stats\x00', 0x604400, 0x0)
mmap$auto(0x0, 0x1, 0xdf, 0x9b70, r0, 0x2)
io_uring_setup$auto(0xb, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x2)
futex$auto(&(0x7f0000000040)=0x1, 0x6, 0x7, 0x0, 0x0, 0xc687)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/pagemap\x00', 0x0, 0x0)
readv$auto(r1, &(0x7f0000000400)={0x0, 0x40}, 0x6)
futex$auto(&(0x7f0000000040)=0x40000000, 0x6, 0x8, 0x0, 0x0, 0xc687)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x82802, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000000240), 0xa2400, 0x0)
ioctl$auto(0x3, 0x541b, 0x10000000000402)
io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, 0x0, 0x1)

5.600440253s ago: executing program 4 (id=1848):
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000140)='-$!\x00\xfa\xef\t\xa4\xe9\xb2r\x8cQ \xa6\xb7v\x93\xb6\b\xba\xfe\x1e\xab\xe7KC6z\x1a\xf0\x83~\xcd\x9a\x83\b\xb6\xb2\xd6PR\xbe\xec\xea\t\xde.\xc6%\x16\xc8\\\xb2\xe86\xe1\x84k\xa8\x02\xcb\xc9 \x1flY\xcb\xfa\xd9\xe0\xb8\x93\x12\xbc\xcf\xc2\'\x90\x9d\x1c\xb0\x1d\xb8\x80\xb4V\x9c\xf6J\xe8\"\xef@\xcd t\xe8\xe9Ip\xa74\x82\xb0\x9a\xecj\x9f\x8f\x9a\xe22\x8e\xce1\x9d\x0fW\xe7\xfb\"[\x17\x83\xfc}\xc7\xab\x93\xe4\x1ekP1\x01\bB\xbf*a\x93\xbd\xa7\xc8', 0x5, 0x4)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r0 = socket(0x10, 0x3, 0x6)
sendmsg$auto_OVS_VPORT_CMD_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x1c, 0x0, 0x1, 0x70bd2b, 0x25dddbfd, {}, [@OVS_VPORT_ATTR_NAME={0x8, 0x3, '})[\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44040}, 0xc0)
r1 = socket(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0_to_team\x00', <r2=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa507}, 0x800}, 0x7, 0x8)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="f4ffffff", @ANYBLOB="0100"], 0x14}, 0x1, 0x0, 0x0, 0x8044}, 0x4001090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/sockstat\x00', 0x22000, 0x0)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380), 0x7b2}, 0x2, &(0x7f0000000340), 0x7, 0xa505}, 0x800}, 0x7, 0x8)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xfffffffffffffffd, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rt_sigtimedwait$auto(&(0x7f0000000040)={0x200}, &(0x7f0000000080)={@_si_pad}, &(0x7f0000000100)={0x7, 0x7}, 0x8)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
pselect6$auto(0x1, &(0x7f0000000300)={[0x5, 0xe9fa, 0x3, 0x3, 0x1, 0xbab, 0x9, 0x8, 0xaba7, 0x9, 0x847, 0x7, 0x23fd, 0x4, 0x5f5c1bc4, 0x2]}, &(0x7f0000000380)={[0x3, 0xc, 0x5, 0xfffffffffffffff9, 0x4, 0x1, 0x8, 0x4, 0x5, 0xffffffff, 0x3e99, 0x5, 0x9, 0x800000, 0x2, 0x7]}, &(0x7f0000000400)={[0xb7, 0x90a9, 0x0, 0x2, 0xffffffffffffffff, 0x251, 0x7, 0x800, 0x1, 0x9, 0xff, 0xe, 0xfffffffffffffffc, 0x0, 0x5, 0x8]}, &(0x7f0000000480)={0x4, 0xda8}, &(0x7f0000000840)="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")
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
open_tree_attr$auto(r4, 0x0, 0x45, 0x0, 0x2)
mmap$auto(0x0, 0x202000b, 0x2, 0xf8, 0xffffffffffffffff, 0x8000)
inotify_init1$auto(0x3000000000000)

4.827182908s ago: executing program 3 (id=1852):
close_range$auto(0x2, 0x8, 0x0)
prctl$auto_PR_SET_SECCOMP(0x16, 0x1, 0x212, 0x4, 0x1)

4.476653515s ago: executing program 0 (id=1853):
mincore$auto(0x80000000, 0xfffffffffffffffc, 0x0)
socket(0x10, 0x2, 0x4)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x218000, 0x41, 0x8}, 0x18)
getpgid$auto(0xffffffffffffffff)
unlinkat$auto(r1, &(0x7f0000000200)='./file0\x00', 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000240)='/Eev/aud\x8bo1\x00VI\xa3\xaa\xb1\x06\x00\x00\x00\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\xf2\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\\\xcb?(\xfaI\xe2\xaa,\x95k8\x83\xcf\xc5D\xcc\x15\x985\xd7y\x9f6\xb0\x10\x877h\xdf\x01\xa4\x8b\xbe\xf7\xcf_i\t\xdaL\x82\xdd+\xd5P\xa7\b\x8c\x81\xc3\xd0\xd0O\x91\x1dg\b\x1a\xfb\x15\x11\xfb\xf4\x1eL\xe8+\xc5]\th\xb3\x95\xe8\x80\x1c\xa7\xe4w\xce\xaeg\x0f=\r\xff\xf6\x12', 0xffffffffffffffff)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/net/dev_snmp6/ip6_vti0\x00', 0x100, 0x0)
io_uring_register$auto(r0, 0x6, &(0x7f0000000040)="27b07df95c88ba2c885d403b5278ce46955719894c8e02aa2734388fd0bbe82a5f454f6f84778eef866d884f8243b3632d1d5f022a3a98bf9ee040586dc1577f4872cf6e766b73e3e30b898e36bc5deb", 0x6b4950d4)
pread64$auto(r2, 0x0, 0x8100000041, 0x413e)

4.304388466s ago: executing program 1 (id=1854):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000100)={0x0, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0xe63c, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c2, 0x8000c, 0x100000000}})
r0 = socket(0x2b, 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/zram-control/hot_add\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000ec0)=""/4096, 0x1000)
arch_prctl$auto_ARCH_MAP_VDSO_32(0x2002, 0x4)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffbfffd}, 0xffff}, 0x4000, 0x20000043)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6})
acct$auto(&(0x7f0000000100)='./cgroup/cgroup.subtree_control\x00')
write$auto(0xffffffffffffffff, 0x0, 0x8000007f)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ram8\x00', 0x16fa02, 0x0)
sendfile$auto(0x3, r2, 0x0, 0x400000000006)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/kernel/task_delayacct\x00', 0x80282, 0x0)
select$auto(0x4, 0x0, 0x0, &(0x7f0000000080)={[0x1ff, 0x7, 0x3, 0x1, 0x7, 0x1000000000000004, 0x15f4da0a, 0x4000000400039, 0x3, 0x2bffffffffffffe, 0x80000002, 0x7a142c64, 0x6d3c, 0x5, 0x80, 0xfb]}, 0x0)
shutdown$auto(0x200000003, 0x2)

4.134232854s ago: executing program 4 (id=1855):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x890)
r0 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r0, 0x6, 0x17, &(0x7f0000000400)='\'\ak\xb6\xc8\vFx\xed\xd6\xf8\x00\x10\xa4#\x92`\xdb\xafL\x0f\xfbUV\xa6KH]Cv\xbf\xf2a\v', 0xeb66)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
r1 = io_uring_setup$auto(0x6, 0x0)
bind$auto(0x3, 0x0, 0x6a)
unshare$auto(0x40000080)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r2, &(0x7f0000000040)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03d4c62b24ede44c0c76c34edf7bde061903c2ee4c64110ac668239fa53ba42933ae74c3d173663248ff0945dd2e405e0d378b5a8e4643a7bc3b35a7248431450ca8901467ea6dc5d86de1e90f869f6a04ac10043676f3b2c7f1339b2d7468133fb8447d17846b6b78079ecc31d7d0f74caa4a3db1ac4d312bfdb34bd331f1f771a2396108561a52153d63a7b2a3a077a7e4c1a22bcb23e1f3e511fee310baa67904d2aad4d6671e8b77c7720e37e84e0efecb60a35f188cbe8b8b2fb3967b78aa482aabb103f23083baa9b2ae653731d5993db4054233dea4af25795e12eb4d6b046bdeea6adce8626e0def15dd32b0ec16a85d93e1dea980794033f4b46973062c64c0209f9d3efc6ea7704c8e8dfea8cdfbe2cb1e367bf634a1952190e0660994f79f0c622d47ee8f93ce1c2852db907ae68a29bcc960b26e0e634173287fd012c4bb3063c41d35c92e896b44080bc5a98e90907cd1d01cc0708019cc1c93c71f29bfe841c873ad2aa0565dfaeb86c8b8e58ea2075de2a562ba1b5dc4ca452df21f25453b7c7f9a3e31547f4e803cefbac3b94715f2ab1f9fc66570244472f2f29deb9bdf6dc5b18d54e3c2264f9598f2ea749d170a66d351acf003c3f37fe74a09a8a964ce2818e4b4efd1eb0e3bca5dfd2a053eeb5735b96d282d2e03866bd6581b5e5e541c74f0b92b932b234ac117342f156b4b23fc6dcbc92ada00ce404f54443b6e7fdac9acb79e5258a865ced633ff5356d13a3e9923bcd8e6d177c9fb8618f9393798d90d70c78207e40f95bb2b0a9308f29f4331bbdfc1021dface5a740473b462c47286fee1c9d0036c78134e108b5b218d3022fd277e1cdf0cdf8cd4b37d74c8dd47e00e50fcf8d336978a0e7624f94b8fdcd1c9459201231f343c7cb602083aa5", 0x2f8)
ioctl$auto_SNDRV_CTL_IOCTL_POWER(r1, 0xc00455d0, &(0x7f0000000340)=0x8)
write$auto_hwsim_simulate_radar_(r1, &(0x7f0000000380)="147cf439f4b9d510d7f6e92ace8b4b8400a0e718f93c5dce4e9b186ecb6c5c", 0x1f)
ioctl$auto_SNDCTL_SEQ_SYNC(r2, 0x5101, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1b, 0x0, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
faccessat$auto(0xffffffffffffffff, 0x0, 0x4)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91pds\x1c\xb2J\x99\x00:\x00!\r>\x94f\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcd\x01\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xb6\x00\x00\x00\x00\x00\x00', 0x48, 0x7)
ioctl$auto_SNDCTL_SEQ_PANIC(r2, 0x5111, 0x0)

3.889070198s ago: executing program 3 (id=1856):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/modprobe\x00', 0xc0781, 0x0)
mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x80040, 0x42, 0xf}, 0x18)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/nbd3\x00', 0x0, 0x0)
r1 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace\x00', 0x2, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
r3 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000001240), 0x40, 0x0)
ioctl$auto(r3, 0x3b8e, r2)
lseek$auto(r1, 0x3, 0xffff47c3)
write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0)
r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp1\x00', 0x103300, 0x0)
close_range$auto(0x2, r4, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3, @loopback}, 0x54)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x14, 0x0, 0x8)
read$auto(0x3, 0x0, 0x8080)
write$auto(0x3, 0x0, 0xffd8)

3.764301309s ago: executing program 0 (id=1857):
mmap$auto(0xfff, 0x5, 0xffffffffffffffc0, 0x100000000000017, 0x7, 0x28000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x5, 0x0)
r0 = socket(0x27, 0x3, 0x3f)
socket(0x2, 0x80002, 0x72)
socket(0x2, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x3, 0x0, 0x2)
syz_genetlink_get_family_id$auto_cifs(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, r0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, 0x0, 0x40)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x1a, 0x4, 0x3)
bpf$auto(0x0, &(0x7f0000000200)=@bpf_attr_4={0x1e, r1, 0x5}, 0xd)
bpf$auto(0x2, &(0x7f0000000080)=@iter_create={0xffffffffffffffff, 0x20000098}, 0x5)
mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x23, 0x0)
r2 = socket(0x1f, 0x6, 0x0)
getsockopt$auto(r2, 0x1, 0xfff, 0xfffffffffffffffe, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0xc048011)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r3, &(0x7f0000000200)="c80d1b5d399b3934d0e31880b38a83ed0864333b514aee5120c0b6064982a7c0bcb875111f5524125aaf8825cda0a2902b3530003b73c2a7b7d7fa4eacfb069feedae562a631d6b329563fef02ab28eeb9043fc4c02de98ef8d877c8c9832d90cb0f803e198eb7fc1eb8b60100df32f76ce287534f29d965ae8bb48074bdfd8533d3ac0a527512e7fd031ed300006162a38fa2de3d398711068d156eb674f832314daf1a0002ce000000000000000000000000dddb4d489cccce7d88be51815c6d006f855c7514fe1041cb86978fce4cc8a9e7e395921ccd8f388dc9", 0xdc)

3.62295172s ago: executing program 3 (id=1858):
mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x5, 0x100)
r1 = socket(0x1d, 0x2, 0x7)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r3}, 0x6a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r4=>0x0})
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r4}, 0x18)
sendmsg$auto_NL80211_CMD_RADAR_DETECT(r0, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000002}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4)
sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x6d7, 0x0, 0x7, 0x0, 0x3, 0x4}, 0xed7138c}, 0x9a6, 0xc21)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa0001, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8003)
read$auto(0xffffffffffffffff, 0x0, 0x4)
sendmsg$auto_NFC_CMD_VENDOR(0xffffffffffffffff, 0x0, 0x845)
mmap$auto(0x0, 0x202000b, 0xfffffffffffffffe, 0xeb1, 0xffffffffffffffff, 0x8000)
r5 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r5, 0xc004743e, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
userfaultfd$auto(0x1)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
epoll_create$auto(0x4)
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D2\x00', 0x1, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000080)=""/58, 0x3a)
r7 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x2000, 0x0)
ioctl$auto_FIONREAD(r7, 0x541b, 0x0)
select$auto(0xa, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x9, 0xd3e, 0x3, 0x949b, 0x2, 0x95f4da0a, 0x7f3, 0x79, 0x8000000000000001, 0x2a61, 0x14, 0x8, 0x1209, 0xe09, 0x4]}, 0x0)
write$auto(r6, &(0x7f0000000400)=' \x00\x00\x00\xf7\xff\xff\xff\xff\xff\xff\xff', 0x100000a3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/pci/drivers/pcieport/unbind\x00', 0x101002, 0x0)
select$auto(0x12, 0x0, 0x0, &(0x7f00000002c0)={[0x1fa, 0xfffffffffffffffe, 0x8f, 0x3, 0x9487, 0x8, 0x15f4da09, 0x0, 0xfffffffffffffff7, 0x20000000000005e, 0x6, 0x1040000000000007, 0x6d41, 0x3, 0x7, 0x7]}, 0x0)

3.194444253s ago: executing program 0 (id=1859):
mmap$auto(0x0, 0xf92e, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, 0x0, 0x7ffffffff000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x2, 0x1, 0x106)
sendmsg$auto_ETHTOOL_MSG_STATS_GET(r2, &(0x7f0000001840)={&(0x7f0000000000), 0xc, &(0x7f0000000980)={&(0x7f0000001880)=ANY=[@ANYBLOB="4c030000", @ANYRES16=0x0, @ANYRESHEX=r3, @ANYRES32=0x0, @ANYBLOB="6c0007000000000000000100000000000000000008cd1600", @ANYRES32=0x0, @ANYRES32=r3, @ANYRESHEX=r0, @ANYBLOB="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", @ANYRES32=r1, @ANYRES32=r3, @ANYRES32=0x0, @ANYBLOB="1400024074756e6c300000000000003617b56400080001", @ANYRES32=0x0, @ANYRESHEX=0x0], 0x34c}, 0x1, 0x0, 0x0, 0x1}, 0x8001)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
r5 = io_uring_setup$auto(0x86, 0x0)
r6 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001280)='/dev/v4l-subdev0\x00', 0x40201, 0x0)
ioctl$auto(r6, 0x4020565b, r5)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
socket(0x28, 0x5, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0)
r7 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sda1\x00', 0x24040, 0x0)
write$auto_tty_fops_tty_io(0xffffffffffffffff, &(0x7f00000009c0)="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", 0xe68)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000b00), r8)
ioctl$auto_BLKSSZGET(r7, 0x1268, 0x0)
sendmsg$auto_GTP_CMD_ECHOREQ(r8, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r9, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@GTPA_PEER_ADDRESS={0x8, 0x4, @multicast2}, @GTPA_LINK={0x8, 0x1, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x20004095}, 0x80)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0)

2.981372783s ago: executing program 1 (id=1860):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004c18}, 0x48880)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r2=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="2f21462f20dd7fbf77c25d00000008000300", @ANYRES32=r2], 0x1c}}, 0x4000000)
sendmsg$auto_NL80211_CMD_TDLS_MGMT(r0, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f0000000140)={0x18, r1, 0x20, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_DISABLE_VHT={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004c18}, 0x48880) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) (async)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="2f21462f20dd7fbf77c25d00000008000300", @ANYRES32=r2], 0x1c}}, 0x4000000) (async)
sendmsg$auto_NL80211_CMD_TDLS_MGMT(r0, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f0000000140)={0x18, r1, 0x20, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_DISABLE_VHT={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x80}, 0x4000000) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)

2.676024017s ago: executing program 1 (id=1861):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), 0xffffffffffffffff)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) (async)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
r0 = io_uring_setup$auto(0x86, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001280)='/dev/v4l-subdev0\x00', 0x40201, 0x0) (async)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001280)='/dev/v4l-subdev0\x00', 0x40201, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/pci/00/03.0\x00', 0xaa102, 0x0) (async)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/pci/00/03.0\x00', 0xaa102, 0x0)
write$auto(r2, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7ef)
ioctl$auto(r1, 0xc0845658, r0) (async)
ioctl$auto(r1, 0xc0845658, r0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, 0x0, 0x2600c800) (async)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, 0x0, 0x2600c800)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x402000d, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x60e00, 0x0)
ioctl$auto_TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, &(0x7f0000000180)={0x8000, &(0x7f00000000c0)={0x2, 0x3, 0x5, @raw=0xa77}})
socket(0x1d, 0x3, 0x1) (async)
socket(0x1d, 0x3, 0x1)
ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) (async)
ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0)
r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000300), 0x60081, 0x0)
ioctl$auto_PPPIOCATTACH(r4, 0x4004743d, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) (async)
r5 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
ioctl$auto_PPPIOCSDEBUG(r5, 0x40047440, &(0x7f0000000040)=0x12fa)
io_uring_setup$auto(0x386, &(0x7f0000000000)={0x5, 0x1, 0x4c, 0x0, 0x1, 0x8, 0xffffffffffffffff, [0xfffffffa, 0x8, 0xa], {0x8, 0x8, 0x3fc000, 0x4, 0x751, 0x3, 0x3b, 0xec5, 0xffff}, {0xd5, 0x80000000, 0x1bee, 0x5d, 0x400, 0x9, 0x7, 0x8000, 0x7f}})
openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x0, 0x0)
r6 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r6, 0x8, 0x0, 0x0, 0x0)
fsopen$auto(0x0, 0x1) (async)
r7 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r7, 0x6, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
prctl$auto_PR_GET_SHADOW_STACK_STATUS(0x4a, 0x7, 0x2, 0x6, 0xfffffffffffffc01)

2.577517441s ago: executing program 4 (id=1862):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vhci_hcd.0/detach\x00', 0x101001, 0x0)
r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/block/nbd10/hctx0/tags_bitmap\x00', 0x143000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
poll$auto(&(0x7f0000003640)={<r2=>r1, 0x7, 0x6}, 0x6, 0x100000)
r3 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000003980)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="01032bbd7000fddbdf250a00000077e8ce358a8c560f782a871f71e97e67706229759548f9dc6f5e578b3c"], 0x14}, 0x1, 0x0, 0x0, 0x2004c005}, 0x20000000)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r0, &(0x7f0000000040)=""/60, 0x3c)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r4)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/kvm/max_mmu_rmap_size\x00', 0xa2500, 0x0)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cuse\x00', 0x240, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x80a00, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card1/pcm1p/sub5/xrun_injection\x00', 0x440, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
socket(0x2, 0x801, 0x106)
socket(0x2, 0x3, 0xa)
socket(0x21, 0x2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x73)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0102, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtdblock0\x00', 0x14fe02, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x2, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

2.124980586s ago: executing program 0 (id=1863):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/001/001\x00', 0xa9202, 0x0)
fcntl$auto_F_GETOWN(0xffffffffffffffff, 0x9, 0xfffffffffffff75d)
futex$auto(&(0x7f0000000040)=0x80, 0x1ff, 0x4, 0x0, 0x0, 0x4)
utimensat$auto(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x10, 0xfb2}, 0x6)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PLCA_SET_CFG(0xffffffffffffffff, 0x0, 0x20048084)
openat$auto_dfs_sched_itmt_fops_itmt(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_UPDATE_CONNECT_PARAMS(0xffffffffffffffff, 0x0, 0x4044840)
sendmsg$auto_BATADV_CMD_GET_MESH(0xffffffffffffffff, 0x0, 0x20008805)
syz_genetlink_get_family_id$auto_thermal(0x0, 0xffffffffffffffff)
io_pgetevents$auto(0xd, 0x2, 0x10000, &(0x7f0000000080)={0xa9, 0xffffffff, 0x7fffffffffffffff, 0xffffffffffff7c87}, &(0x7f00000000c0)={0x1, 0xfffffffffffffffd}, &(0x7f0000000200)={&(0x7f0000000180)={0xd5}})
write$auto(0xffffffffffffffff, 0x0, 0xad)
getsockopt$auto_SO_WIFI_STATUS(0xffffffffffffffff, 0x6, 0x29, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_SET(r2, &(0x7f0000004900)={0x0, 0x0, &(0x7f00000048c0)={&(0x7f00000045c0)={0x30, r1, 0x413, 0x70bd26, 0x25dfdbfd, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x4008001}, 0x4000088)
open(0x0, 0x161342, 0x130)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
ioctl$auto_USBDEVFS_IOCTL32(r0, 0xc00c5512, 0x0)

2.016900584s ago: executing program 3 (id=1864):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff)
r0 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408)
write$auto(r0, 0x0, 0xfffffdf1)
linkat$auto(r0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xf6\x04W\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xed\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\x9bg\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
mknod$auto(&(0x7f0000000040)='&&\x00', 0xcb, 0x6862)
mprotect$auto(0x0, 0x8000000000000001, 0x8)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mprotect$auto(0x1000, 0x401000, 0x4)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/netfilter/nf_log/3\x00', 0xa0202, 0x0)
sendfile$auto(r1, r1, 0x0, 0xd)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
move_pages$auto(0x0, 0x4, 0x0, 0x0, 0x0, 0x400000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
bpf$auto_BPF_TOKEN_CREATE(0x24, &(0x7f0000000340)=@info={<r5=>r3, 0x6, 0x2}, 0x0)
r6 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000480), r3)
sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r5, &(0x7f0000000600)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000005c0)={&(0x7f00000004c0)={0xf8, r6, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@NCSI_ATTR_PACKAGE_LIST={0xc8, 0x2, 0x0, 0x1, [@typed={0x8, 0xa9, 0x0, 0x0, @u32=0x7}, @nested={0xb2, 0x52, 0x0, 0x1, [@generic="bd279af05c8340f26520dbabd5f83e6ce53bcff241ac3ab43057b3d42670527bcdcbe02b419d0c15584aa8ced528aef36a2fd16c2f3ae673b47410816ee712478e4c03c8aa123b811a3e14af373c134a0501866fd2ee581758bbafae75899922eca60b2f2768d36de5e95748204353fbee3505d57c0f6a06b9483bbd195bb09049bb46157187674872bca6acfd31c0ba27ccb37a8405ace6526f79f7255cdffe7c5b4e082c811794d910", @nested={0x4, 0xf8}]}, @typed={0x8, 0xa0, 0x0, 0x0, @u32=0x4}]}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x6e}, @NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x2}, @NCSI_ATTR_CHANNEL_ID={0x8}, @NCSI_ATTR_MULTI_FLAG={0x4}]}, 0xf8}, 0x1, 0x0, 0x0, 0x4040040}, 0x0)
writev$auto(r4, &(0x7f0000000080)={0x0, 0x1000}, 0x3)
syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff)
sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(0xffffffffffffffff, 0x0, 0x30004850)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
getcpu$auto(&(0x7f0000000240)=0x8c9, &(0x7f0000000280)=0xfffffff8, &(0x7f00000002c0)={[0x8000000000000000, 0x6, 0x7ce3, 0x72cd, 0x3, 0x2, 0x4, 0x6, 0xffffffffffffffed, 0x7fff, 0x923d, 0x7f5e, 0x3, 0x8f1d, 0x4, 0x8]})
ioctl$auto(0xffffffffffffffff, 0x4b47, 0x1)

1.995265327s ago: executing program 4 (id=1865):
symlink$auto(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000100)='./file0\x00') (async)
r0 = open(&(0x7f0000000280)='./file0\x00', 0x143242, 0x164)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/ifb0/queues/rx-0/rps_cpus\x00', 0x189002, 0x0)
sendfile$auto(r1, r1, 0x0, 0x1) (async, rerun: 32)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r0) (rerun: 32)

1.960698726s ago: executing program 0 (id=1866):
mmap$auto(0x0, 0x4020009, 0x1000000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendto$auto(0x3, 0x0, 0xfffffffffffffdef, 0x101, 0x0, 0x1c) (async)
ioctl$auto(0x3, 0x541b, 0x38) (async)
mmap$auto(0x0, 0x80000000, 0x8, 0x9b72, r0, 0x8000) (async)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000100), r0) (async)
sendmsg$auto_NBD_CMD_CONNECT(r0, 0x0, 0x4040000) (async)
mmap$auto(0x0, 0xe980, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8008000) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/vhci_hcd.14/usb37/37-0:1.0/usb37-port4/power/autosuspend_delay_ms\x00', 0x565447, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f0000000000), 0x82c00, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
io_uring_setup$auto(0x2, 0x0) (async)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyyb\x00', 0x0, 0x0)
socketpair$auto(0x5b, 0x2, 0x0, 0x0) (async)
sendmsg$auto_BATADV_CMD_TP_METER(r1, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40100034}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, 0x0, 0x100, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_BANDWIDTH_DOWN={0x8, 0x1c, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x8000) (async)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) (async)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0) (async)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) (async)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f0000000200)=<r4=>0x0)
r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyv3\x00', 0x0, 0x0)
write$auto_console_fops_tty_io(r5, &(0x7f0000000000)="c80d1b29429b", 0x6) (async)
accept$auto(r0, &(0x7f0000000180)=@nfc={0x27, r4, 0x1, 0x1}, &(0x7f00000001c0)=0x468)

1.847762699s ago: executing program 1 (id=1867):
connect$auto(0xffffffffffffffff, 0x0, 0x54)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mknod$auto(0x0, 0x1001, 0x4)
r0 = socket(0xa, 0x801, 0x84)
connect$auto(r0, 0x0, 0x54)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/gretap0/statistics/rx_nohandler\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x7, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0x2d, 0x3, 0x1, 0x2091, 0x83ad, 0x9, 0x6, 0x6, 0x81, 0x4, 0x1cd7, 0x8, 0x2000, 0x203, 0x0, 0x84, 0xfffffffffffffffa, 0x0, 0x0, 0x2, 0x101, [0x0, 0x3, 0x8003, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa04, 0x0, 0xfffffffffffffffc, 0x3, 0x4, 0x1ff, 0x0, 0x9, 0x0, 0x40000000, 0x0, 0x7, 0x0, 0x2, 0x7ff, 0x0, 0x0, 0x3, 0x40000000000000, 0x0, 0x0, 0x0, 0xff, 0x0, 0x8, 0x0, 0x3c3, 0x0, 0x2]}, 0x1fe, 0x2)
setsockopt$auto_SO_PROTOCOL(r1, 0x2, 0x26, &(0x7f0000000040)='/sys/devices/virtual/net/gretap0/statistics/rx_nohandler\x00', 0x6)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/orangefs/capcache/hard_limit\x00', 0x82042, 0x0)
write$auto_ocfs2_control_fops_stack_user(r2, &(0x7f0000000000)="2dc2", 0x2)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r3 = socket(0x2b, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysinfo$auto(0x0)
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x4e20, @loopback}, 0x6a)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_STATUS(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="01002bbd2505000000"], 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x40)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
rename$auto(&(0x7f0000000500)='./file0\x00', &(0x7f0000000100)='./cgroup\x00')
listen$auto(0x3, 0x81)
pwrite64$auto(0xc8, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\t/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x88\v\xae\xa9i8W\xe5\x00!\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00v\xd9\xe5H.-\x14\xee\xbc\xae\xe1\x85\xb2b\xd42\x89\x05e\x03z\xe6q\xcd\x91\tM\xd2\x90\xc91\xd9\x86\xe4\x8e\x0fI\xf0b2\nfa\xb8\x1a\xdb\xaa0P\xca\xb2W\xe3\x14\xb9Cx\x0e4\xc9\xb4\xdc4\xe3\x8f\x1c\xa5\x89\x8d\x84V\x97dg \x9f\xcd\x8fA\x16\x01\xc5.\x7fG\x86L\xa4\xd6h\xea\x11x\xce\x96t\xc7~# )\x8c6\x06\xd7\xfcu\x8c{t\xa5\x92JW\x8b\xb3Oj%\xb5H\x91F\x1b\x01\xef\x0e\xc5\xac\xcfK\xd5\x98\xce\xd6?\t\xa8\xb7\xce\x87\xdb\xb0\xaa\x8al8qF\re\xa7\xda\x1f\x9ad\b!\xddBD\xd9', 0x3f, 0x200001000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

1.640476387s ago: executing program 4 (id=1868):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv6/conf/bridge_slave_1/ndisc_evict_nocarrier\x00', 0x1, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x11, 0x80003, 0x300)
sendfile$auto(0x1, r0, 0x0, 0x8fb5)
dup2$auto(0x0, 0x3)
ioctl$auto(0x3, 0x5760, 0x10000000000402)
write$auto(0x3, 0x0, 0x1)
setresuid$auto(0x8, 0x8, 0x0)
setuid$auto(0x0)
epoll_create1$auto(0x9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x103200, 0x0)
select$auto(0x100, 0x0, 0x0, &(0x7f00000000c0)={[0x1ff, 0x7, 0x7, 0x1, 0x59e, 0x3, 0x15f4da08, 0x3, 0x3, 0x61, 0x80000000, 0x0, 0x6d3f, 0x8001, 0xb, 0xfffffffffffffffe]}, 0x0)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x1}, 0x7)
mmap$auto(0x0, 0x40005, 0xdf, 0x200089b72, 0x7, 0x28000)
mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x8a001, 0x0)
write$auto(0x3, 0x0, 0x81)
socket(0x1e, 0x4, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
epoll_create$auto(0x8800001)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x20009, 0x4, 0xeb3, 0x401, 0x8000)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
socket(0x2, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xd95f3ee0279b7857, 0x80003, 0x391bf3b9)

1.523402234s ago: executing program 1 (id=1869):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/001/001\x00', 0xa9202, 0x0)
open(0x0, 0x161342, 0x130)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
syz_open_procfs$namespace(0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x801, 0x84)
bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000040)=@token_create={0x5}, 0x9)
setsockopt$auto(0xffffffffffffffff, 0x9, 0x8, &(0x7f0000000000)='\x00', 0xfffffffe)
r1 = syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000010c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="20002cbd7000fbdbdf250100000008000900020000000800050008000000fea83604f90b7fb5ba165a55386710a630728f1fec2b261a3b68a97b0104dbbc0bb6957746cba7156912575ddfc56c1a917eeb74e6d34ac0f766e818371f75f1a556b1f1e40d1d412f5774cb68172acf67721b0f49ef734e9a2cdad8d6e938ff52f80fb5f15c51798a363805822a1dd36def64ecde48a6944e81ac41051c665235e0984dae2e4a868f17c1500f447b37d9a5719dddf706f9565ced8bcc"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x80d0)
sendmsg$auto_NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10040000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000425bd0000000800048004005000"/30], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={0xa, @new_map_fd=0x2, 0x7, @old_prog_fd=0x13b}, 0xa3)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7112}, 0x8)
setsockopt$auto(0x3, 0x10000000084, 0xa, 0x0, 0x20)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)
r2 = setfsuid$auto(0xee00)
setresuid$auto(0xffffffffffffffff, r2, 0xffffffffffffffff)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/asound/seq/oss\x00', 0x4a500, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r4, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x80000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000002000)='/dev/sequencer2\x00', 0x101040, 0x0)
prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x400000000009, 0x3fffffffff)
setreuid$auto(0x0, 0x5)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/kernel/auto_msgmni\x00', 0x101000, 0x0)
pread64$auto(r3, 0x0, 0x8, 0x8000)
ioctl$auto_USBDEVFS_IOCTL32(r0, 0xc00c5512, 0x0)

164.713891ms ago: executing program 4 (id=1870):
mmap$auto(0x0, 0xf6, 0xdf, 0xeb1, 0x401, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x189002, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0)
r0 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x101040, 0x0)
read$auto_rng_chrdev_ops_core(r0, &(0x7f0000000040)=""/4096, 0xfffffe82)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000032c0)=ANY=[@ANYBLOB='K9y0', @ANYRES16=r2, @ANYBLOB="1b0026bd7000fddbdf2503000000040008002f000380040014805c3d821c35763ea7303e3d317bf84757ed1f0eb95145236f471edea246cd151c7b134d49470eda0012000100898771f1c19f1779048590828847000004000280"], 0x60}, 0x1, 0x0, 0x0, 0x4004040}, 0x4814)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000b40), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SETHMAC(r3, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000340)=ANY=[@ANYRES8=r1, @ANYRESOCT=0x0, @ANYBLOB="1ed7504904c59df2465e774c34316d44c46efb883c56ebae51f17617795dd841eeee37d8e053918c3dbe3dc4d6dfc55c502308a45b3c6519bdc52004664c5f302c98357c767a0fbe347f09be4a8901c38ef8af5c11c4f1820462b55875bb9d07a0f046fa40c75c303aa085ab0c27a783f6d916f65376dbc9af089d128b1f81d7c76ee462c360c48cca18be507730b43ee6f79dbd7b73a22bbce5460128f1832f08e7141e3604adb59a73c02a7951bb", @ANYRES64=r4, @ANYRESOCT=r3, @ANYRES64=r4], 0x2c}, 0x1, 0x0, 0x0, 0x44}, 0x84)
sendmsg$auto_SEG6_CMD_DUMPHMAC(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4080}, 0x4000004)
unshare$auto(0x40000080)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r6 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r7 = getpid()
process_vm_readv$auto(r7, &(0x7f0000000000)={0x0, 0x20000001005}, 0x1, &(0x7f0000000040)={&(0x7f0000000080), 0xffffffff}, 0x4, 0x0)
process_vm_readv$auto(r7, 0x0, 0x8001, 0x0, 0x7ff, 0x9)
prctl$auto(0xc1, 0x1, r7, 0x8, 0x7)
write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\a\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4.\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d5)
socket(0x1f, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001080), r6)
sendmsg$auto_NL80211_CMD_TDLS_MGMT(r6, &(0x7f0000003280)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000003240)={&(0x7f00000010c0)=ANY=[], 0x2180}, 0x1, 0x0, 0x0, 0x4000004}, 0x2000c804)
pread64$auto(0xffffffffffffffff, 0x0, 0x8100000041, 0x413e)
clock_nanosleep$auto(0xfffffff2, 0x5, 0x0, 0x0)

135.412424ms ago: executing program 1 (id=1871):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zram0\x00', 0x6e642, 0x0)
sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000400)=ANY=[@ANYBLOB="b105d92077011d03dec51309b6ba897eb103d2fd9323d1bb78adaf614e31cb0991140f319567b91f5e86e991658b27abd16522b1cec8013c8e0a2d74ed6ebe24703a32e1982b1439bd24b3d76495cbd77273c0422d9f6bd36c7acb9178e2b6b5467679f470466b96aa55bbffa392cdf9056a7ebbefbaca308913101a4db579fd3d"], 0x2c}, 0x1, 0x0, 0x0, 0x4040005}, 0x40)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dmmidi2\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x5)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/security/tomoyo/profile\x00', 0x40802, 0x0)
read$auto(r2, &(0x7f00000008c0)='N\xd5\f\xb9GC\x00\x00\x00\x00\x00\x00\x00\x00\xa3`\xb1\xf2\xe7\xc04b$\x99.\xb4\xcc\xc0%\xaa\xd3\xd5\xef\xa4\xd35u\xc0\xa6\r\xcaJ\x11\xaf\x93\xde\xc3|\x17\x96\xd1\x15g\x10\x1ai1(=!\xf1\xe8\xe4\xcdm\xedKW\xe7\xfbL\\\xf2sj(\v\xcd\xe5\x02B\x81ss\xdd\x8199\xa5\x1e\xb0A\xa3\xcbj7\xe9\xc9L\xcc\xc6\xa4\xaf%\xba\xda\xee\xd8%:bXj\xd5[UG\x8a\x8ab\x9a\x18\xe8K\xafU\x8d\xb1\f~\xaa\xab(\x86(\xf9\b\xf7 %\xf2\x11\xa4\x9bj\xc1)\n\x1ft\xb6\xaf\xe2\xd4\x95\xa3\xe1\x1f\xf7\xff\x7f\a\xd0\x83{_>/\xff\xe9qb3\xf8%\xc8\xf6\xadA1\xb2\xcd=\x00oty\x8el\x15n\xc2\x95\x0f\"\x05\x91\xe0\x14z_.fj\x8f\x10\xce\x17\xf5\xf0m\xfd\xa5T\xd1\x9b\xbb\x8cPAZb\x14\\b\xb3x\xc4\xa8B\xa7l>]\xe99+\xcc\v\xad?\xdfet+Opg\"\xbbcX\xd2j\xa0\x06P\xf1~\x8ar\xa9\f+\xd2cb\xfaV\x94\xa7\xfd\xfe\x9c9 \x9f\xd7\xd71\xeb\xa1B\xffn\xaf-\xfc\xa7\xf5\xd2P\xcb\xdd\xf7\xdc\xb91\x93\xbfY\x88\xf5,\xd0\x02\x80j\x9b\xe0\xac\xb1\xeb\xd4\x8b\xf7\xaa#\xce\xcb\xc8\x9f\xaa\xfd\x8d.HK1ua\x89\xb4\xe7\x04)?_\xd4.y\x16-c\xc5\xf6\x93\xael\xafK', 0x82)
write$auto(r2, &(0x7f0000000040)='-\x00\x00\x00\xfe\xff\xff\xff', 0x8587)
close_range$auto(0x0, 0xe903, 0x2)
socket(0x1e, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/fs/nfs/net/nfs_client/identifier\x00', 0x82942, 0x0)
write$auto(r0, &(0x7f0000000400)='odev/audio1\x00', 0x100000a3d9)
r3 = waitid$auto_P_PID(0x1, 0xffffffffffffffff, &(0x7f0000000080)={@siginfo_0_0={0x400, 0x9, 0x4, @_timer={0x0, 0x2, @sival_int=0x4, 0x3}}}, 0xf, &(0x7f0000000100)={{0x3, 0xfffffffffffffff9}, {0x9}, 0x7, 0x6, 0x3, 0x0, 0x4, 0x95, 0x2f, 0x100, 0xfffffffffffffff9, 0x9d38, 0x7, 0x2, 0x6, 0xa01})
capget$auto(&(0x7f0000000200)={0x9, r3}, &(0x7f0000000240)={0xdcf9, 0x9, 0x800000})

0s ago: executing program 0 (id=1872):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0)
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x5)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000300), r1)
sendmsg$auto_MACSEC_CMD_ADD_RXSA(r1, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="010027bd0500ffdb2725000000009471bcab64ce96c25f25eea2f6c6946b6e7b085a7d87a457abbf7e48ab50dd8a02c4dc23dd33a4ca4bf7a0ffc695665f2d785ca5"], 0x14}, 0x1, 0x0, 0x0, 0x4884}, 0x4008884)
madvise$auto(0x0, 0x200007, 0x19)
ioctl$auto_TIOCGDEV2(r0, 0x80045432, &(0x7f00000000c0)=0x2)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
ioctl$auto_USB_RAW_IOCTL_EP0_READ(r0, 0xc0085504, &(0x7f0000000280)={0x0, 0x10, 0x8})
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xa200, 0x0)
r3 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
setreuid$auto(0xffffffffffffffff, 0x8)
ioctl$auto_NVRAM_SETCKS(r3, 0x7041, 0x0)
bpf$auto(0x1, &(0x7f0000000340)=@batch={0xfffffffffffffffb, 0x44, 0x2, 0x9, 0x81, 0xffffffffffffffff, 0x2, 0x8}, 0x100000cf)
r4 = socket(0x10, 0x2, 0x0)
madvise$auto(0xfff, 0x7ac1, 0x7)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200"], 0x1ac}}, 0x40000)
recvmmsg$auto(r4, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
semctl$auto_SETALL(0x0, 0x8, 0x11, 0x58c2f7b2)
setfsuid$auto(0xee00)
r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC0\x00', 0x440881, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_CARD_INFO(r5, 0x81785501, &(0x7f0000000080)={0x4612, 0x0, "f8de1856ac345e50c37763b265f7869f", "83eefbfcc82266e81edc86f33bddeedf", "dcfd65c3ccbabdf9b8574c242a42928f92d7084bfa0409ade1f7b78dbe0e810e", "c3bd8a55f24f24a0cb6cf19a5fb06e0f2743312b14f4e013a66e2986dd1fc8f57b26e8a3626b9fc80704cce44b0f1802305380455db066d7a3c0b0be51695054c3136bad9126f0627cdb0b533a68e64d", "6822d37e69c03810ab830f6eff7edbc0", "0b705eacbfa88548eba50b4d3f05e5600b488ec14e4619ca840839c00dbc5f690c50155d667ce47bf39759d3524b55afd8f1458cafde26c46be20e03f615dc48b6a71933d554c7e38be14c397e18be43", "b1a2bb514be3315940df66ed9a56249180ad75c60eeb1c7b1fa30048a0eac31083c3e7f8355c0c6d486f20c510372b3eec0d103ed1e4d07d34a0319c32ef5ce3be75b106324f25b7115464b7fa2a6a14dd7480909b7d87b9a1bd097bf9d01358edd49bf83fc82d314c4860c8d6feeb20da035b57d056a6732a4b99d1d90a2074"})
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0x1, 0x2)

kernel console output (not intermixed with test programs):

[  412.561869][T11224] netlink: zone id is out of range
[  412.568772][T11224] netlink: zone id is out of range
[  412.574696][T11224] netlink: zone id is out of range
[  412.580027][T11224] netlink: zone id is out of range
[  412.586377][T11224] netlink: zone id is out of range
[  412.591667][T11224] netlink: zone id is out of range
[  412.597999][T11224] netlink: zone id is out of range
[  412.878834][T11230] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1041'.
[  414.535789][T11250] Process accounting resumed
[  414.884160][T11272] NFSD: Failed to start, no listeners configured.
[  417.602836][T11302] ubi0: attaching mtd0
[  417.653986][T11302] ubi0 warning: ubi_attach: valid VID header but corrupted EC header at PEB 0
[  417.709439][T11302] ubi0 error: ubi_add_to_av: two LEBs with same sequence number 1
[  417.723117][T11302] eraseblock attaching information dump:
[  417.742708][T11302] 	ec       -1
[  417.752950][T11302] 	pnum     0
[  417.767226][T11302] 	lnum     0
[  417.862805][T11302] 	scrub    1
[  417.898119][T11302] 	sqnum    1
[  417.968242][T11302] Volume identifier header dump:
[  418.079558][T11302] 	magic     55424921
[  418.169118][T11302] 	version   1
[  418.203997][T11302] 	vol_type  1
[  418.243848][T11302] 	copy_flag 0
[  418.277205][T11302] 	compat    5
[  418.296756][T11302] 	vol_id    2147479551
[  418.311442][T11302] 	lnum      0
[  418.324916][T11302] 	data_size 0
[  418.340147][T11302] 	used_ebs  0
[  418.345222][T11302] 	data_pad  0
[  418.381889][T11302] 	sqnum     1
[  418.391984][T11302] 	hdr_crc   65b3bd2d
[  418.410356][T11302] Volume identifier header hexdump:
[  418.691218][T11302] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  418.749610][T11326] input: f�
 as /devices/virtual/input/input8
[  419.808246][ T9720] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5
[  419.961678][T11338] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1061'.
[  420.895685][T11353] capability: warning: `syz.3.1064' uses 32-bit capabilities (legacy support in use)
[  421.223092][T11364] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1067'.
[  421.397097][T11364] veth0_macvtap: left promiscuous mode
[  421.402824][T11364] macvtap0: entered promiscuous mode
[  421.408227][T11364] macvtap0: entered allmulticast mode
[  421.524489][T11370] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  421.801990][T11378] vhci_hcd vhci_hcd.2: invalid port number 194
[  421.814612][T11378] vhci_hcd vhci_hcd.2: invalid port number 194
[  421.827769][T11378] vhci_hcd vhci_hcd.2: invalid port number 194
[  421.835677][T11378] vhci_hcd vhci_hcd.2: invalid port number 194
[  422.789588][T11404] sctp: [Deprecated]: syz.0.1074 (pid 11404) Use of int in max_burst socket option deprecated.
[  422.789588][T11404] Use struct sctp_assoc_value instead
[  423.174244][T11413] vhci_hcd vhci_hcd.0: default hub control req: 0000 v0000 i0000 l0
[  423.785146][T11420] FAULT_INJECTION: forcing a failure.
[  423.785146][T11420] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  423.810614][T11420] CPU: 0 UID: 0 PID: 11420 Comm: syz.3.1077 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  423.810667][T11420] Tainted: [L]=SOFTLOCKUP
[  423.810678][T11420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  423.810696][T11420] Call Trace:
[  423.810714][T11420]  <TASK>
[  423.810726][T11420]  dump_stack_lvl+0x100/0x190
[  423.810787][T11420]  should_fail_ex.cold+0x5/0xa
[  423.810828][T11420]  core_sys_select+0x9b9/0xbb0
[  423.810881][T11420]  ? __pfx_core_sys_select+0x10/0x10
[  423.810959][T11420]  ? do_futex+0x192/0x350
[  423.810994][T11420]  ? __pfx_do_futex+0x10/0x10
[  423.811033][T11420]  kern_select+0x1d0/0x280
[  423.811076][T11420]  ? __pfx_kern_select+0x10/0x10
[  423.811116][T11420]  ? xfd_validate_state+0x129/0x190
[  423.811151][T11420]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  423.811205][T11420]  __x64_sys_select+0xbd/0x160
[  423.811242][T11420]  ? do_syscall_64+0x90/0x840
[  423.811289][T11420]  ? lockdep_hardirqs_on+0x78/0x100
[  423.811336][T11420]  do_syscall_64+0x115/0x840
[  423.811379][T11420]  ? clear_bhb_loop+0x40/0x90
[  423.811421][T11420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.811455][T11420] RIP: 0033:0x7f5ebb99ce59
[  423.811482][T11420] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  423.811516][T11420] RSP: 002b:00007f5ebc8b1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  423.811547][T11420] RAX: ffffffffffffffda RBX: 00007f5ebbc15fa0 RCX: 00007f5ebb99ce59
[  423.811581][T11420] RDX: 0000200000000080 RSI: 0000000000000000 RDI: 0000000000000007
[  423.811600][T11420] RBP: 00007f5ebba32d6f R08: 0000000000000000 R09: 0000000000000000
[  423.811620][T11420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  423.811639][T11420] R13: 00007f5ebbc16038 R14: 00007f5ebbc15fa0 R15: 00007ffe0b62b4a8
[  423.811681][T11420]  </TASK>
[  424.020907][T11423] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  424.037870][T11423] ICMPv6: process `syz.0.1078' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead
[  426.861668][T11500] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1092'.
[  427.894369][   T29] audit: type=1806 audit(4294967400.033:18): xattr="." res=0
[  431.793860][T11584] NFSD: Failed to start, no listeners configured.
[  432.475741][T11595] ubi0: attaching mtd0
[  432.485851][T11595] ubi0 warning: ubi_attach: valid VID header but corrupted EC header at PEB 0
[  432.525136][T11595] ubi0 error: ubi_add_to_av: two LEBs with same sequence number 1
[  432.535765][T11598] device-mapper: ioctl: Unable to rename non-existent device,  to �
[  432.545712][T11595] eraseblock attaching information dump:
[  432.598641][T11595] 	ec       -1
[  432.612283][T11595] 	pnum     0
[  432.654407][T11595] 	lnum     0
[  432.678541][T11595] 	scrub    1
[  432.693296][T11595] 	sqnum    1
[  432.704375][T11595] Volume identifier header dump:
[  432.715884][T11595] 	magic     55424921
[  432.722768][T11595] 	version   1
[  432.751042][T11595] 	vol_type  1
[  432.754842][T11595] 	copy_flag 0
[  432.764813][T11595] 	compat    5
[  432.776232][T11595] 	vol_id    2147479551
[  432.795303][T11595] 	lnum      0
[  432.812819][T11595] 	data_size 0
[  432.828999][T11595] 	used_ebs  0
[  432.856398][T11595] 	data_pad  0
[  432.869394][T11595] 	sqnum     1
[  432.878915][T11595] 	hdr_crc   65b3bd2d
[  432.918077][T11595] Volume identifier header hexdump:
[  433.158904][T11595] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  434.908580][T11641] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  436.781934][T11666] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5637] was attempted by "�`�}U{Z�6�c:�N��A\x1b�Xt�*�䂅?�QB��z=���k�����2�W�J�<\x22��xôN�IҜ��\x0dDL)�r��m�R�УM�9;�V��o�]��UDž)_b�a�L�}������Q@|+͜��q���h�RG�=e�r�sx��A�*\x0dL\x0d+�7�s�&0g��䓞e��q�ڤ�r�+�'2��96���\x0a�^E�0ʼn���_�VghLI�d�9+\x1bsREu��U�{�\x0a���ZAv.&ŏ,������ �#��r�Z�T��m����7��-s�ɞ�48�uf6��;Ij��t�u3�E�pt�EQ^���k���老�#��^�9�/�@М��;�U�w*Yߏ� `������]�cO‚qW��{� �������4���1å�YN@��؜��:����Ek�v���&�G�ԅ���?�����'��n&4i˟�8m�в�M�:�ԟ���t�*=p�f����'0*JqY
h��tĜ�u��h.��k��<]�~�>9�U�m���F���Eu�>C�,$4i\x0d�8��j-M��7��; �5@�#H�����:kr��XD�6ʼn#�#�|�e�,%�ųc��)E�y��\x22[���ސ\x5c�U������v�߆S�E�V��%\x07�%L<9$?I>C������
�������#B�*��5ٯ�\x0a��)آ���q���f\x070콼,�L\x0c��E�E]b�4N,�g�i6���
�\x07GQ����@9�1����S�\x0d�s
C�V�e�SgW�3+^s��o�ܰ|�d�-�)�GSa�(>��N3WB09�;Ck)�&���b�MN,��O�>b�U�4��t\x07�ً�٨*W�:r�mu�17E�Vt�kѓ�6ˎ��~5�a�;\x22\x1b��
[  437.818506][T10931] netdevsim netdevsim1335 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  438.044023][T10931] netdevsim netdevsim1335 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  438.309341][ T9852] netdevsim netdevsim1335 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  438.449934][ T9852] netdevsim netdevsim1335 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  438.508274][T11678] Process accounting resumed
[  438.622049][T10920] netdevsim netdevsim1335 eth4: set [1, 0] type 2 family 0 port 6081 - 0
[  438.727311][T10897] netdevsim netdevsim1335 eth5: set [1, 0] type 2 family 0 port 6081 - 0
[  438.804054][T10897] netdevsim netdevsim1335 eth6: set [1, 0] type 2 family 0 port 6081 - 0
[  438.902392][T10920] netdevsim netdevsim1335 eth7: set [1, 0] type 2 family 0 port 6081 - 0
[  440.116474][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  440.124114][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  444.387252][T11789] netlink: 'syz.3.1149': attribute type 1 has an invalid length.
[  444.484190][T11789] netlink: 33 bytes leftover after parsing attributes in process `syz.3.1149'.
[  445.648652][T11799] Process accounting paused
[  448.326143][T11853] netlink: 'syz.1.1159': attribute type 22 has an invalid length.
[  448.352058][T11853] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1159'.
[  448.508112][T11859] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1161'.
[  448.891214][   T29] audit: type=1804 audit(4294967421.043:19): pid=11863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1162" name="/newroot/sys/kernel/tracing/dynamic_events" dev="tracefs" ino=43 res=1 errno=0
[  450.345029][ T9720] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  451.398097][T11914] ICMPv6: process `syz.3.1173' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  452.075216][T11926] net_ratelimit: 368 callbacks suppressed
[  452.075240][T11926] openvswitch: netlink: Duplicate key (type 15).
[  452.099405][T11926] syz.3.1174 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  452.325737][ T5714] Process accounting resumed
[  452.354348][T10103] Bluetooth: hci2: unexpected subevent 0x01 length: 3 < 18
[  452.370806][   T24] Process accounting resumed
[  452.398498][ T5714] Process accounting resumed
[  452.429425][ T9720] Bluetooth: hci3: command 0x0406 tx timeout
[  452.430277][ T5714] Process accounting resumed
[  452.488245][ T5714] Process accounting resumed
[  452.558937][ T5714] Process accounting resumed
[  452.613114][ T5783] Process accounting resumed
[  452.634167][ T5783] Process accounting resumed
[  452.644427][ T5783] Process accounting resumed
[  452.671192][ T5783] Process accounting resumed
[  452.681588][ T5783] Process accounting resumed
[  452.697677][ T5783] Process accounting resumed
[  452.719958][ T5714] Process accounting resumed
[  452.730997][ T5714] Process accounting resumed
[  452.751015][ T5714] Process accounting resumed
[  452.770261][ T5714] Process accounting resumed
[  452.783012][ T5714] Process accounting resumed
[  452.806281][ T5714] Process accounting resumed
[  452.842435][ T5714] Process accounting resumed
[  452.853145][ T5714] Process accounting resumed
[  453.289578][T11930] Process accounting resumed
[  453.453383][T11966] FAULT_INJECTION: forcing a failure.
[  453.453383][T11966] name failslab, interval 1, probability 0, space 0, times 0
[  453.497523][T11966] CPU: 1 UID: 0 PID: 11966 Comm: syz.4.1181 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  453.497574][T11966] Tainted: [L]=SOFTLOCKUP
[  453.497584][T11966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  453.497603][T11966] Call Trace:
[  453.497614][T11966]  <TASK>
[  453.497626][T11966]  dump_stack_lvl+0x100/0x190
[  453.497681][T11966]  should_fail_ex.cold+0x5/0xa
[  453.497717][T11966]  ? __list_lru_init+0xd9/0x4b0
[  453.497760][T11966]  should_failslab+0xc2/0x120
[  453.497794][T11966]  __kmalloc_noprof+0xe0/0x850
[  453.497819][T11966]  ? lockdep_init_map_type+0x5c/0x250
[  453.497856][T11966]  __list_lru_init+0xd9/0x4b0
[  453.497904][T11966]  alloc_super+0x8d8/0xd20
[  453.497937][T11966]  ? __pfx_mqueue_fill_super+0x10/0x10
[  453.497983][T11966]  sget_fc+0x117/0xc70
[  453.498013][T11966]  ? __pfx_set_anon_super_fc+0x10/0x10
[  453.498046][T11966]  ? __pfx_mqueue_fill_super+0x10/0x10
[  453.498091][T11966]  get_tree_nodev+0x28/0x190
[  453.498132][T11966]  mqueue_get_tree+0xf1/0x130
[  453.498177][T11966]  vfs_get_tree+0x92/0x320
[  453.498204][T11966]  fc_mount_longterm+0x1a/0x270
[  453.498235][T11966]  mq_init_ns+0x482/0x820
[  453.498268][T11966]  copy_ipcs+0x3dd/0x7e0
[  453.498302][T11966]  create_new_namespaces+0x20a/0xac0
[  453.498337][T11966]  ? security_capable+0x80/0x260
[  453.498368][T11966]  unshare_nsproxy_namespaces+0xf2/0x220
[  453.498406][T11966]  ksys_unshare+0x438/0xab0
[  453.498448][T11966]  ? __pfx_ksys_unshare+0x10/0x10
[  453.498487][T11966]  ? xfd_validate_state+0x129/0x190
[  453.498525][T11966]  __x64_sys_unshare+0x31/0x40
[  453.498564][T11966]  do_syscall_64+0x115/0x840
[  453.498606][T11966]  ? clear_bhb_loop+0x40/0x90
[  453.498640][T11966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.498668][T11966] RIP: 0033:0x7f4c8ad9ce59
[  453.498711][T11966] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  453.498739][T11966] RSP: 002b:00007f4c8bc55028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  453.498768][T11966] RAX: ffffffffffffffda RBX: 00007f4c8b016090 RCX: 00007f4c8ad9ce59
[  453.498787][T11966] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000
[  453.498804][T11966] RBP: 00007f4c8ae32d6f R08: 0000000000000000 R09: 0000000000000000
[  453.498822][T11966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  453.498839][T11966] R13: 00007f4c8b016128 R14: 00007f4c8b016090 R15: 00007ffd4292f488
[  453.498876][T11966]  </TASK>
[  454.519502][T10103] Bluetooth: hci3: command 0x0406 tx timeout
[  454.827337][T12001] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  455.036327][T12006] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  455.659573][ T9720] Bluetooth: hci4: unexpected event 0x10 length: 124 > 1
[  455.664192][T10103] Bluetooth: hci4: hardware error 0x00
[  456.299751][ T9720] Bluetooth: hci4: unexpected event 0x1c length: 725 > 5
[  457.310839][T12058] FAULT_INJECTION: forcing a failure.
[  457.310839][T12058] name failslab, interval 1, probability 0, space 0, times 0
[  457.334429][T12058] CPU: 1 UID: 0 PID: 12058 Comm: syz.0.1196 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  457.334480][T12058] Tainted: [L]=SOFTLOCKUP
[  457.334491][T12058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  457.334509][T12058] Call Trace:
[  457.334518][T12058]  <TASK>
[  457.334529][T12058]  dump_stack_lvl+0x100/0x190
[  457.334588][T12058]  should_fail_ex.cold+0x5/0xa
[  457.334628][T12058]  ? tomoyo_realpath_from_path+0xb6/0x690
[  457.334676][T12058]  should_failslab+0xc2/0x120
[  457.334715][T12058]  __kmalloc_noprof+0xe0/0x850
[  457.334743][T12058]  ? kfree+0x1dd/0x6c0
[  457.334794][T12058]  tomoyo_realpath_from_path+0xb6/0x690
[  457.334860][T12058]  tomoyo_path_number_perm+0x23c/0x580
[  457.334900][T12058]  ? tomoyo_path_number_perm+0x22e/0x580
[  457.334942][T12058]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  457.335019][T12058]  ? current_check_access_path+0x269/0x430
[  457.335067][T12058]  ? __pfx_current_check_access_path+0x10/0x10
[  457.335119][T12058]  ? d_alloc_parallel+0x864/0x14e0
[  457.335160][T12058]  tomoyo_path_mknod+0x164/0x190
[  457.335191][T12058]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  457.335220][T12058]  ? find_held_lock+0x2b/0x80
[  457.335262][T12058]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  457.335315][T12058]  security_path_mknod+0x161/0x300
[  457.335365][T12058]  may_o_create+0x30/0x3a0
[  457.335421][T12058]  lookup_open.isra.0+0xa0d/0x11b0
[  457.335463][T12058]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  457.335505][T12058]  ? __pfx___might_resched+0x10/0x10
[  457.335539][T12058]  ? mnt_get_write_access+0x52/0x2f0
[  457.335598][T12058]  ? __pfx_down_write+0x10/0x10
[  457.335626][T12058]  ? mnt_get_write_access+0x1e9/0x2f0
[  457.335683][T12058]  path_openat+0x2291/0x31a0
[  457.335732][T12058]  ? entry_SYSCALL_64_after_hwframe+0x48/0x7f
[  457.335770][T12058]  ? __pfx_path_openat+0x10/0x10
[  457.335826][T12058]  do_file_open+0x20e/0x430
[  457.335877][T12058]  ? __pfx_do_file_open+0x10/0x10
[  457.335943][T12058]  ? _raw_spin_unlock+0x28/0x50
[  457.335981][T12058]  ? alloc_fd+0x476/0x790
[  457.336031][T12058]  do_sys_openat2+0x10d/0x1e0
[  457.336078][T12058]  ? __pfx_do_sys_openat2+0x10/0x10
[  457.336141][T12058]  __x64_sys_open+0xfe/0x1d0
[  457.336187][T12058]  ? __pfx___x64_sys_open+0x10/0x10
[  457.336243][T12058]  ? rcu_is_watching+0x12/0xc0
[  457.336284][T12058]  do_syscall_64+0x115/0x840
[  457.336325][T12058]  ? clear_bhb_loop+0x40/0x90
[  457.336364][T12058]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.336396][T12058] RIP: 0033:0x7f2eef99ce59
[  457.336421][T12058] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  457.336452][T12058] RSP: 002b:00007f2ef07ac028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  457.336482][T12058] RAX: ffffffffffffffda RBX: 00007f2eefc15fa0 RCX: 00007f2eef99ce59
[  457.336503][T12058] RDX: 0000000000000000 RSI: 0000000000149443 RDI: 0000200000000040
[  457.336522][T12058] RBP: 00007f2eefa32d6f R08: 0000000000000000 R09: 0000000000000000
[  457.336541][T12058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  457.336559][T12058] R13: 00007f2eefc16038 R14: 00007f2eefc15fa0 R15: 00007ffeec081bb8
[  457.336600][T12058]  </TASK>
[  457.686341][T12058] ERROR: Out of memory at tomoyo_realpath_from_path.
[  457.800807][T10103] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  457.949118][T12075] Format for adding new port is "id [perm_addr]" (uint MAC).
[  458.010573][T12075] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input11
[  459.013114][T12101] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1205'.
[  459.089284][T12099] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  459.121699][T12094] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  461.960037][T12156] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  463.945655][T12191] FAULT_INJECTION: forcing a failure.
[  463.945655][T12191] name failslab, interval 1, probability 0, space 0, times 0
[  463.970930][T12191] CPU: 1 UID: 0 PID: 12191 Comm: syz.3.1223 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  463.970989][T12191] Tainted: [L]=SOFTLOCKUP
[  463.971002][T12191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  463.971021][T12191] Call Trace:
[  463.971034][T12191]  <TASK>
[  463.971047][T12191]  dump_stack_lvl+0x100/0x190
[  463.971111][T12191]  should_fail_ex.cold+0x5/0xa
[  463.971153][T12191]  should_failslab+0xc2/0x120
[  463.971197][T12191]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  463.971249][T12191]  ? copy_pid_ns+0x32b/0x10a0
[  463.971309][T12191]  copy_pid_ns+0x32b/0x10a0
[  463.971365][T12191]  ? __pfx_copy_pid_ns+0x10/0x10
[  463.971421][T12191]  ? __pfx_copy_mnt_ns+0x10/0x10
[  463.971483][T12191]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  463.971536][T12191]  ? create_new_namespaces+0x30/0xac0
[  463.971585][T12191]  create_new_namespaces+0x2aa/0xac0
[  463.971635][T12191]  unshare_nsproxy_namespaces+0xf2/0x220
[  463.971681][T12191]  ksys_unshare+0x438/0xab0
[  463.971732][T12191]  ? __pfx_ksys_unshare+0x10/0x10
[  463.971778][T12191]  ? xfd_validate_state+0x129/0x190
[  463.971809][T12191]  ? ksys_write+0x1ac/0x250
[  463.971860][T12191]  __x64_sys_unshare+0x31/0x40
[  463.971908][T12191]  do_syscall_64+0x115/0x840
[  463.971957][T12191]  ? clear_bhb_loop+0x40/0x90
[  463.971999][T12191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  463.972034][T12191] RIP: 0033:0x7f5ebb99ce59
[  463.972062][T12191] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  463.972096][T12191] RSP: 002b:00007f5ebc8b1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  463.972129][T12191] RAX: ffffffffffffffda RBX: 00007f5ebbc15fa0 RCX: 00007f5ebb99ce59
[  463.972151][T12191] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
[  463.972171][T12191] RBP: 00007f5ebba32d6f R08: 0000000000000000 R09: 0000000000000000
[  463.972191][T12191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  463.972211][T12191] R13: 00007f5ebbc16038 R14: 00007f5ebbc15fa0 R15: 00007ffe0b62b4a8
[  463.972253][T12191]  </TASK>
[  464.236359][T12187] ovs_��: entered promiscuous mode
[  464.615039][T12199] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1225'.
[  464.697957][T12202] netlink: 'syz.4.1225': attribute type 1 has an invalid length.
[  464.745766][T12202] netlink: 33 bytes leftover after parsing attributes in process `syz.4.1225'.
[  465.678017][T10103] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  465.722617][T12224] futex_wake_op: syz.0.1233 tries to shift op by -2048; fix this program
[  465.778231][T12224] futex_wake_op: syz.0.1233 tries to shift op by -2048; fix this program
[  467.242322][T12239] program syz.4.1235 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  467.576245][T12244] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  467.737870][T12242] FAULT_INJECTION: forcing a failure.
[  467.737870][T12242] name failslab, interval 1, probability 0, space 0, times 0
[  467.761896][T12242] CPU: 1 UID: 0 PID: 12242 Comm: syz.0.1236 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  467.761953][T12242] Tainted: [L]=SOFTLOCKUP
[  467.761965][T12242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  467.761985][T12242] Call Trace:
[  467.761996][T12242]  <TASK>
[  467.762008][T12242]  dump_stack_lvl+0x100/0x190
[  467.762073][T12242]  should_fail_ex.cold+0x5/0xa
[  467.762115][T12242]  ? sd_pr_read_keys+0xc6/0x300
[  467.762163][T12242]  should_failslab+0xc2/0x120
[  467.762204][T12242]  __kmalloc_noprof+0xe0/0x850
[  467.762245][T12242]  sd_pr_read_keys+0xc6/0x300
[  467.762300][T12242]  blkdev_common_ioctl+0x1bc8/0x2b80
[  467.762366][T12242]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  467.762436][T12242]  ? do_vfs_ioctl+0x226/0x13e0
[  467.762471][T12242]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  467.762515][T12242]  ? find_held_lock+0x2b/0x80
[  467.762558][T12242]  ? __fget_files+0x215/0x3d0
[  467.762603][T12242]  blkdev_ioctl+0x43b/0x6f0
[  467.762658][T12242]  ? __pfx_blkdev_ioctl+0x10/0x10
[  467.762718][T12242]  ? __pfx_blkdev_ioctl+0x10/0x10
[  467.762785][T12242]  __x64_sys_ioctl+0x18e/0x210
[  467.762822][T12242]  do_syscall_64+0x115/0x840
[  467.762871][T12242]  ? clear_bhb_loop+0x40/0x90
[  467.762913][T12242]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.762948][T12242] RIP: 0033:0x7f2eef99ce59
[  467.762976][T12242] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  467.763010][T12242] RSP: 002b:00007f2ef07ac028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  467.763043][T12242] RAX: ffffffffffffffda RBX: 00007f2eefc15fa0 RCX: 00007f2eef99ce59
[  467.763066][T12242] RDX: 0000000000000000 RSI: 00000000c01070ce RDI: 0000000000000006
[  467.763087][T12242] RBP: 00007f2eefa32d6f R08: 0000000000000000 R09: 0000000000000000
[  467.763108][T12242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  467.763128][T12242] R13: 00007f2eefc16038 R14: 00007f2eefc15fa0 R15: 00007ffeec081bb8
[  467.763174][T12242]  </TASK>
[  468.009263][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  469.423818][T12246] Process accounting paused
[  469.910605][T12288] ubi0: attaching mtd0
[  469.969256][T12288] ubi0 warning: ubi_attach: valid VID header but corrupted EC header at PEB 0
[  470.015227][T12288] ubi0 error: ubi_add_to_av: two LEBs with same sequence number 1
[  470.076487][T12288] eraseblock attaching information dump:
[  470.135401][T12288] 	ec       -1
[  470.135437][T12288] 	pnum     0
[  470.135451][T12288] 	lnum     0
[  470.135464][T12288] 	scrub    1
[  470.135477][T12288] 	sqnum    1
[  470.135490][T12288] Volume identifier header dump:
[  470.135501][T12288] 	magic     55424921
[  470.135514][T12288] 	version   1
[  470.135527][T12288] 	vol_type  1
[  470.135539][T12288] 	copy_flag 0
[  470.135551][T12288] 	compat    5
[  470.135563][T12288] 	vol_id    2147479551
[  470.135576][T12288] 	lnum      0
[  470.135588][T12288] 	data_size 0
[  470.135601][T12288] 	used_ebs  0
[  470.135613][T12288] 	data_pad  0
[  470.135625][T12288] 	sqnum     1
[  470.135637][T12288] 	hdr_crc   65b3bd2d
[  470.135651][T12288] Volume identifier header hexdump:
[  470.166425][T12298] sock: sock_timestamping_bind_phc: sock not bind to device
[  470.454492][T12288] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  471.812730][T12329] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1252'.
[  472.585563][T12331] can0: slcan on ttyS2.
[  473.003166][T12349] netlink: zone id is out of range
[  473.028780][T12349] netlink: zone id is out of range
[  473.053742][T12322] can0 (unregistered): slcan off ttyS2.
[  473.286279][T12349] netlink: set zone limit has 8 unknown bytes
[  474.494408][T12376] usb usb17: usbfs: interface 0 claimed by hub while 'syz.3.1262' resets device
[  474.880280][T12383] futex_wake_op: syz.4.1263 tries to shift op by -2048; fix this program
[  474.915164][T12383] futex_wake_op: syz.4.1263 tries to shift op by -2048; fix this program
[  474.995413][T12383] 0x000000000001-0x000000020000 : ""
[  475.447625][T12383] ftl_cs: FTL header corrupt!
[  476.119116][T12411] Process accounting resumed
[  476.785180][ T9720] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  476.807123][T12438] futex_wake_op: syz.1.1275 tries to shift op by -2048; fix this program
[  476.828383][T12438] futex_wake_op: syz.1.1275 tries to shift op by -2048; fix this program
[  477.190467][T12443] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1276'.
[  477.381920][T12443] bond0: (slave bond_slave_0): Releasing backup interface
[  477.671146][T12452] device-mapper: ioctl: Invalid ioctl structure: uuid �, name , dev 4000000200000
[  477.917890][T12460] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1284'.
[  478.118789][T12468] netlink: 'syz.1.1285': attribute type 9 has an invalid length.
[  479.809039][T12501] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  481.160498][T12522] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  481.762909][T12535] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  483.497526][T12564] FAULT_INJECTION: forcing a failure.
[  483.497526][T12564] name failslab, interval 1, probability 0, space 0, times 0
[  483.528549][T12564] CPU: 0 UID: 0 PID: 12564 Comm: syz.1.1308 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  483.528598][T12564] Tainted: [L]=SOFTLOCKUP
[  483.528610][T12564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  483.528628][T12564] Call Trace:
[  483.528638][T12564]  <TASK>
[  483.528650][T12564]  dump_stack_lvl+0x100/0x190
[  483.528729][T12564]  should_fail_ex.cold+0x5/0xa
[  483.528771][T12564]  should_failslab+0xc2/0x120
[  483.528812][T12564]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  483.528868][T12564]  ? __alloc_skb+0x140/0x710
[  483.528907][T12564]  __alloc_skb+0x140/0x710
[  483.528936][T12564]  ? __alloc_skb+0x5b7/0x710
[  483.528965][T12564]  ? __pfx___alloc_skb+0x10/0x10
[  483.528994][T12564]  ? kasan_quarantine_put+0x104/0x240
[  483.529026][T12564]  ? lockdep_hardirqs_on+0x78/0x100
[  483.529076][T12564]  ? addrconf_sysctl_unregister+0x50/0x1c0
[  483.529134][T12564]  inet6_netconf_notify_devconf+0x9d/0x170
[  483.529183][T12564]  addrconf_sysctl_unregister+0x134/0x1c0
[  483.529232][T12564]  addrconf_ifdown.isra.0+0x1522/0x1b70
[  483.529293][T12564]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[  483.529356][T12564]  addrconf_notify+0x4a3/0x1ba0
[  483.529413][T12564]  ? __pfx_tls_dev_event+0x10/0x10
[  483.529452][T12564]  ? __pfx_addrconf_notify+0x10/0x10
[  483.529505][T12564]  ? ip6mr_device_event+0x1c4/0x230
[  483.529563][T12564]  notifier_call_chain+0x99/0x400
[  483.529626][T12564]  call_netdevice_notifiers_info+0xbe/0x110
[  483.529679][T12564]  unregister_netdevice_many_notify+0x118f/0x24f0
[  483.529739][T12564]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  483.529781][T12564]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  483.529845][T12564]  unregister_netdevice_queue+0x30b/0x3c0
[  483.529886][T12564]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  483.529930][T12564]  ? __pfx_locks_remove_file+0x10/0x10
[  483.529987][T12564]  ppp_release+0x125/0x150
[  483.530019][T12564]  ? __pfx_ppp_release+0x10/0x10
[  483.530047][T12564]  __fput+0x3ff/0xb50
[  483.530111][T12564]  task_work_run+0x150/0x240
[  483.530146][T12564]  ? __pfx_task_work_run+0x10/0x10
[  483.530181][T12564]  ? rcu_is_watching+0x12/0xc0
[  483.530225][T12564]  exit_to_user_mode_loop+0x157/0x670
[  483.530279][T12564]  ? rcu_is_watching+0x12/0xc0
[  483.530321][T12564]  do_syscall_64+0x652/0x840
[  483.530368][T12564]  ? clear_bhb_loop+0x40/0x90
[  483.530409][T12564]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.530443][T12564] RIP: 0033:0x7f926fb9ce59
[  483.530470][T12564] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  483.530502][T12564] RSP: 002b:00007f92709ce028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  483.530535][T12564] RAX: 0000000000000000 RBX: 00007f926fe15fa0 RCX: 00007f926fb9ce59
[  483.530555][T12564] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  483.530574][T12564] RBP: 00007f926fc32d6f R08: 0000000000000000 R09: 0000000000000000
[  483.530594][T12564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  483.530615][T12564] R13: 00007f926fe16038 R14: 00007f926fe15fa0 R15: 00007ffcef4ec9e8
[  483.530658][T12564]  </TASK>
[  484.022263][T12568] futex_wake_op: syz.3.1310 tries to shift op by -2048; fix this program
[  484.059499][T12568] 0x000000000001-0x000000020000 : ""
[  484.079336][T12568] ftl_cs: FTL header corrupt!
[  484.132481][T12564] Process accounting paused
[  484.273742][T12578] ubi1: attaching mtd0
[  484.315523][T12578] ubi1 warning: ubi_attach: valid VID header but corrupted EC header at PEB 0
[  484.335324][T12578] ubi1 error: ubi_add_to_av: two LEBs with same sequence number 1
[  484.356013][T12578] eraseblock attaching information dump:
[  484.366184][T12578] 	ec       -1
[  484.376325][T12578] 	pnum     0
[  484.389755][T12578] 	lnum     0
[  484.415047][T12578] 	scrub    1
[  484.435390][T12578] 	sqnum    1
[  484.455107][T12578] Volume identifier header dump:
[  484.474439][T12578] 	magic     55424921
[  484.483599][T12578] 	version   1
[  484.491036][T12592] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  484.493324][T12578] 	vol_type  1
[  484.515018][T12578] 	copy_flag 0
[  484.525152][T12578] 	compat    5
[  484.535295][T12578] 	vol_id    2147479551
[  484.541475][T12578] 	lnum      0
[  484.549777][T12578] 	data_size 0
[  484.558111][T12578] 	used_ebs  0
[  484.566775][T12578] 	data_pad  0
[  484.576923][T12578] 	sqnum     1
[  484.582228][T12578] 	hdr_crc   65b3bd2d
[  484.592919][T12578] Volume identifier header hexdump:
[  484.760381][T12578] ubi1 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  486.522055][T12637] futex_wake_op: syz.4.1325 tries to shift op by -2048; fix this program
[  486.584097][   T29] audit: type=1800 audit(4294970592.743:20): pid=12640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1326" name="features" dev="configfs" ino=49439 res=0 errno=0
[  487.005241][   T29] audit: type=1800 audit(4294970593.163:21): pid=12652 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1331" name="dbroot" dev="configfs" ino=49532 res=0 errno=0
[  487.090574][T12652] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  487.137937][T12652] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  488.215083][T12681] zswap: compressor  not available
[  488.655640][T12704] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1343'.
[  488.949125][T12717] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  491.718827][T12784] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1365'.
[  492.602188][T12809] blktrace: Concurrent blktraces are not allowed on sda1
[  493.839096][T12868] FAULT_INJECTION: forcing a failure.
[  493.839096][T12868] name failslab, interval 1, probability 0, space 0, times 0
[  493.890175][T12868] CPU: 0 UID: 0 PID: 12868 Comm: syz.1.1379 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  493.890225][T12868] Tainted: [L]=SOFTLOCKUP
[  493.890235][T12868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  493.890252][T12868] Call Trace:
[  493.890261][T12868]  <TASK>
[  493.890271][T12868]  dump_stack_lvl+0x100/0x190
[  493.890322][T12868]  should_fail_ex.cold+0x5/0xa
[  493.890353][T12868]  should_failslab+0xc2/0x120
[  493.890385][T12868]  __kmalloc_cache_noprof+0x7a/0x6f0
[  493.890423][T12868]  ? alloc_pipe_info+0x10e/0x590
[  493.890458][T12868]  ? find_held_lock+0x2b/0x80
[  493.890496][T12868]  alloc_pipe_info+0x10e/0x590
[  493.890535][T12868]  splice_direct_to_actor+0x78f/0xa30
[  493.890573][T12868]  ? __lock_acquire+0x4a5/0x2630
[  493.890614][T12868]  ? __pfx_direct_splice_actor+0x10/0x10
[  493.890652][T12868]  ? __pfx_aa_file_perm+0x10/0x10
[  493.890814][T12868]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  493.890861][T12868]  do_splice_direct+0x174/0x240
[  493.890900][T12868]  ? __pfx_do_splice_direct+0x10/0x10
[  493.890936][T12868]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  493.890977][T12868]  ? rw_verify_area+0xce/0x6d0
[  493.891020][T12868]  do_sendfile+0xadc/0xe20
[  493.891058][T12868]  ? __pfx_do_sendfile+0x10/0x10
[  493.891085][T12868]  ? __fget_files+0x21f/0x3d0
[  493.891126][T12868]  __x64_sys_sendfile64+0x1d8/0x220
[  493.891166][T12868]  ? ksys_write+0x1ac/0x250
[  493.891197][T12868]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  493.891245][T12868]  ? rcu_is_watching+0x12/0xc0
[  493.891281][T12868]  do_syscall_64+0x115/0x840
[  493.891323][T12868]  ? clear_bhb_loop+0x40/0x90
[  493.891357][T12868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  493.891387][T12868] RIP: 0033:0x7f926fb9ce59
[  493.891413][T12868] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  493.891439][T12868] RSP: 002b:00007f92709ce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  493.891465][T12868] RAX: ffffffffffffffda RBX: 00007f926fe15fa0 RCX: 00007f926fb9ce59
[  493.891484][T12868] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  493.891502][T12868] RBP: 00007f92709ce090 R08: 0000000000000000 R09: 0000000000000000
[  493.891520][T12868] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  493.891538][T12868] R13: 00007f926fe16038 R14: 00007f926fe15fa0 R15: 00007ffcef4ec9e8
[  493.891575][T12868]  </TASK>
[  494.518164][T12875] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1382'.
[  494.829232][T12885] FAULT_INJECTION: forcing a failure.
[  494.829232][T12885] name failslab, interval 1, probability 0, space 0, times 0
[  494.886388][T12885] CPU: 1 UID: 0 PID: 12885 Comm: syz.0.1385 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  494.886443][T12885] Tainted: [L]=SOFTLOCKUP
[  494.886454][T12885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  494.886473][T12885] Call Trace:
[  494.886484][T12885]  <TASK>
[  494.886496][T12885]  dump_stack_lvl+0x100/0x190
[  494.886557][T12885]  should_fail_ex.cold+0x5/0xa
[  494.886597][T12885]  should_failslab+0xc2/0x120
[  494.886637][T12885]  __kmalloc_cache_noprof+0x7a/0x6f0
[  494.886684][T12885]  ? __do_sys_timerfd_create+0xee/0x3f0
[  494.886734][T12885]  ? bpf_lsm_capable+0x9/0x10
[  494.886767][T12885]  ? security_capable+0x80/0x260
[  494.886890][T12885]  __do_sys_timerfd_create+0xee/0x3f0
[  494.886949][T12885]  ? do_syscall_64+0x90/0x840
[  494.886999][T12885]  do_syscall_64+0x115/0x840
[  494.887043][T12885]  ? clear_bhb_loop+0x40/0x90
[  494.887083][T12885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  494.887116][T12885] RIP: 0033:0x7f2eef99ce59
[  494.887144][T12885] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  494.887174][T12885] RSP: 002b:00007f2ef078b028 EFLAGS: 00000246 ORIG_RAX: 000000000000011b
[  494.887205][T12885] RAX: ffffffffffffffda RBX: 00007f2eefc16090 RCX: 00007f2eef99ce59
[  494.887226][T12885] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009
[  494.887245][T12885] RBP: 00007f2eefa32d6f R08: 0000000000000000 R09: 0000000000000000
[  494.887264][T12885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  494.887283][T12885] R13: 00007f2eefc16128 R14: 00007f2eefc16090 R15: 00007ffeec081bb8
[  494.887325][T12885]  </TASK>
[  495.833257][T12900] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  495.923275][T12910] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1389'.
[  496.170426][T12916] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1391'.
[  497.414307][T12951] vivid-008: =================  START STATUS  =================
[  497.478498][T12951] vivid-008: ==================  END STATUS  ==================
[  499.706396][T13001] Process accounting resumed
[  499.774716][T12998] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  500.041989][T12981] bond0: option slaves: interface -��]���=,D�o does not exist!
[  501.541372][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  501.552084][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  502.573669][T13089] FAULT_INJECTION: forcing a failure.
[  502.573669][T13089] name failslab, interval 1, probability 0, space 0, times 0
[  502.655927][T13089] CPU: 1 UID: 0 PID: 13089 Comm: syz.3.1419 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  502.655969][T13089] Tainted: [L]=SOFTLOCKUP
[  502.655996][T13089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  502.656019][T13089] Call Trace:
[  502.656033][T13089]  <TASK>
[  502.656042][T13089]  dump_stack_lvl+0x100/0x190
[  502.656089][T13089]  should_fail_ex.cold+0x5/0xa
[  502.656120][T13089]  ? tomoyo_realpath_from_path+0xb6/0x690
[  502.656220][T13089]  should_failslab+0xc2/0x120
[  502.656250][T13089]  __kmalloc_noprof+0xe0/0x850
[  502.656272][T13089]  ? kfree+0x1dd/0x6c0
[  502.656311][T13089]  tomoyo_realpath_from_path+0xb6/0x690
[  502.656373][T13089]  tomoyo_check_open_permission+0x2af/0x3c0
[  502.656406][T13089]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  502.656454][T13089]  ? hook_file_open+0x24e/0x7a0
[  502.656546][T13089]  ? lock_acquire+0x1b1/0x370
[  502.656616][T13089]  tomoyo_file_open+0x6b/0x90
[  502.656677][T13089]  security_file_open+0xb5/0x1e0
[  502.656712][T13089]  do_dentry_open+0x588/0x14d0
[  502.656751][T13089]  vfs_open+0x82/0x3f0
[  502.656791][T13089]  path_openat+0x208c/0x31a0
[  502.656832][T13089]  ? __pfx_path_openat+0x10/0x10
[  502.656874][T13089]  do_file_open+0x20e/0x430
[  502.656908][T13089]  ? __pfx_do_file_open+0x10/0x10
[  502.656962][T13089]  ? alloc_fd+0x476/0x790
[  502.656995][T13089]  ? do_getname+0x191/0x390
[  502.657055][T13089]  do_sys_openat2+0x10d/0x1e0
[  502.657105][T13089]  ? __pfx_do_sys_openat2+0x10/0x10
[  502.657154][T13089]  __x64_sys_openat+0x12d/0x210
[  502.657194][T13089]  ? __pfx___x64_sys_openat+0x10/0x10
[  502.657238][T13089]  ? rcu_is_watching+0x12/0xc0
[  502.657270][T13089]  do_syscall_64+0x115/0x840
[  502.657305][T13089]  ? clear_bhb_loop+0x40/0x90
[  502.657335][T13089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.657365][T13089] RIP: 0033:0x7f5ebb99ce59
[  502.657385][T13089] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  502.657422][T13089] RSP: 002b:00007f5ebc8b1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  502.657450][T13089] RAX: ffffffffffffffda RBX: 00007f5ebbc15fa0 RCX: 00007f5ebb99ce59
[  502.657466][T13089] RDX: 0000000000100e01 RSI: 0000200000001c80 RDI: ffffffffffffff9c
[  502.657500][T13089] RBP: 00007f5ebba32d6f R08: 0000000000000000 R09: 0000000000000000
[  502.657514][T13089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  502.657528][T13089] R13: 00007f5ebbc16038 R14: 00007f5ebbc15fa0 R15: 00007ffe0b62b4a8
[  502.657559][T13089]  </TASK>
[  502.908642][T13089] ERROR: Out of memory at tomoyo_realpath_from_path.
[  504.174216][T13114] FAULT_INJECTION: forcing a failure.
[  504.174216][T13114] name failslab, interval 1, probability 0, space 0, times 0
[  504.195596][T13114] CPU: 1 UID: 0 PID: 13114 Comm: syz.4.1422 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  504.195651][T13114] Tainted: [L]=SOFTLOCKUP
[  504.195662][T13114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  504.195681][T13114] Call Trace:
[  504.195693][T13114]  <TASK>
[  504.195706][T13114]  dump_stack_lvl+0x100/0x190
[  504.195766][T13114]  should_fail_ex.cold+0x5/0xa
[  504.195797][T13114]  should_failslab+0xc2/0x120
[  504.195827][T13114]  __kmalloc_cache_noprof+0x7a/0x6f0
[  504.195863][T13114]  ? snd_pcm_oss_change_params_locked+0x1db/0x39f0
[  504.195907][T13114]  snd_pcm_oss_change_params_locked+0x1db/0x39f0
[  504.195944][T13114]  ? trace_contention_end+0x65/0x170
[  504.195973][T13114]  ? snd_pcm_oss_get_active_substream+0x153/0x1d0
[  504.196012][T13114]  ? kasan_quarantine_put+0x104/0x240
[  504.196038][T13114]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  504.196074][T13114]  ? __pfx___mutex_lock+0x10/0x10
[  504.196110][T13114]  ? find_held_lock+0x2b/0x80
[  504.196140][T13114]  ? tomoyo_path_number_perm+0x28f/0x580
[  504.196171][T13114]  ? tomoyo_path_number_perm+0x28f/0x580
[  504.196211][T13114]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  504.196266][T13114]  ? futex_wait+0x11e/0x370
[  504.196303][T13114]  snd_pcm_oss_get_active_substream+0x175/0x1d0
[  504.196381][T13114]  snd_pcm_oss_get_formats+0x7d/0x350
[  504.196429][T13114]  ? do_vfs_ioctl+0x226/0x13e0
[  504.196461][T13114]  ? __pfx_snd_pcm_oss_get_formats+0x10/0x10
[  504.196524][T13114]  snd_pcm_oss_ioctl+0x1795/0x37c0
[  504.196577][T13114]  ? find_held_lock+0x2b/0x80
[  504.196617][T13114]  ? __fget_files+0x215/0x3d0
[  504.196654][T13114]  ? hook_file_ioctl_common+0x149/0x410
[  504.196699][T13114]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  504.196752][T13114]  ? __fget_files+0x21f/0x3d0
[  504.196795][T13114]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  504.196846][T13114]  __x64_sys_ioctl+0x18e/0x210
[  504.196885][T13114]  do_syscall_64+0x115/0x840
[  504.196933][T13114]  ? clear_bhb_loop+0x40/0x90
[  504.196978][T13114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  504.197013][T13114] RIP: 0033:0x7f4c8ad9ce59
[  504.197040][T13114] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  504.197078][T13114] RSP: 002b:00007f4c8bc55028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  504.197108][T13114] RAX: ffffffffffffffda RBX: 00007f4c8b016090 RCX: 00007f4c8ad9ce59
[  504.197125][T13114] RDX: 0000000000000000 RSI: 000000008004500b RDI: 0000000000000004
[  504.197168][T13114] RBP: 00007f4c8ae32d6f R08: 0000000000000000 R09: 0000000000000000
[  504.197194][T13114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  504.197209][T13114] R13: 00007f4c8b016128 R14: 00007f4c8b016090 R15: 00007ffd4292f488
[  504.197247][T13114]  </TASK>
[  506.222367][T13177] Process accounting paused
[  507.352699][T13214] vivid-007: =================  START STATUS  =================
[  507.374594][T13214] vivid-007: Enable Output Cropping: true grabbed
[  507.413046][T13214] vivid-007: Enable Output Composing: true grabbed
[  507.445512][T13214] vivid-007: Enable Output Scaler: true grabbed
[  507.471986][T13214] vivid-007: Tx RGB Quantization Range: Automatic grabbed
[  507.509386][T13214] vivid-007: Transmit Mode: HDMI grabbed
[  507.552294][T13214] vivid-007: Hotplug Present: 0x00000000
[  507.585398][T13214] vivid-007: RxSense Present: 0x00000000
[  507.622694][T13214] vivid-007: EDID Present: 0x00000000
[  507.667211][T13214] vivid-007: ==================  END STATUS  ==================
[  508.482747][T13253] blktrace: Concurrent blktraces are not allowed on sg0
[  508.787031][T13225] vcan0: tx drop: invalid da for name 0x000000000000003f
[  509.303148][T13273] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  511.649451][T13329] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1457'.
[  512.222799][T13349] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1458'.
[  512.261140][T13329] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  512.296271][T13329] batman_adv: batadv0: Removing interface: batadv_slave_1
[  512.373531][T13329] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1457'.
[  512.405649][T13329] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1457'.
[  512.435408][T13329] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1457'.
[  514.146650][T13374] Process accounting resumed
[  514.333229][T13395] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  514.358997][T13395] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  514.369796][T13395] memcg:ffff8880268a9b01
[  514.374225][T13395] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  514.382548][T13395] page_type: f5(slab)
[  514.386644][T13395] raw: 00fff00000000040 ffff888140413140 dead000000000100 dead000000000122
[  514.396945][T13395] raw: 0000000000000000 0000000800150015 00000000f5000000 ffff8880268a9b01
[  514.428060][T13395] head: 00fff00000000040 ffff888140413140 dead000000000100 dead000000000122
[  514.461401][T13395] head: 0000000000000000 0000000800150015 00000000f5000000 ffff8880268a9b01
[  514.490088][T13395] head: 00fff00000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[  514.521056][T13395] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  514.546247][T13395] page dumped because: unmovable page
[  514.567510][T13395] page_owner tracks the page as allocated
[  514.592952][T13395] page last allocated via order 1, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5004, tgid 5004 (udevd), ts 58456093724, free_ts 31688957927
[  514.706735][T13395]  post_alloc_hook+0xfd/0x120
[  514.724003][T13395]  get_page_from_freelist+0x11a6/0x3410
[  514.756765][T13395]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  514.773122][T13395]  new_slab+0xa6/0x6c0
[  514.786893][T13395]  refill_objects+0x277/0x420
[  514.797899][T13395]  __pcs_replace_empty_main+0x375/0x650
[  514.815838][T13395]  kmem_cache_alloc_lru_noprof+0x485/0x6e0
[  514.837014][T13395]  __d_alloc+0x34/0xa40
[  514.858746][T13395]  d_alloc+0x4a/0x1e0
[  514.870408][T13395]  lookup_one_qstr_excl+0x171/0x250
[  514.881455][T13425] vmstat_refresh: nr_hugetlb -13824
[  514.889787][T13395]  filename_create+0x1cf/0x400
[  514.897373][T13395]  filename_symlinkat+0xe1/0x560
[  514.904589][T13395]  __x64_sys_symlink+0x79/0xb0
[  514.912761][T13395]  do_syscall_64+0x115/0x840
[  514.918608][T13395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.930905][T13395] page last free pid 1 tgid 1 stack trace:
[  514.931006][T13395]  __free_frozen_pages+0x794/0x10a0
[  514.931060][T13395]  free_contig_range+0xda/0x140
[  514.931105][T13395]  destroy_args+0xa8/0x7a0
[  514.931138][T13395]  debug_vm_pgtable+0x1d69/0x3490
[  514.931179][T13395]  do_one_initcall+0x121/0x750
[  514.931234][T13395]  kernel_init_freeable+0x6ea/0x7b0
[  514.931264][T13395]  kernel_init+0x1f/0x1e0
[  514.931295][T13395]  ret_from_fork+0x72b/0xd50
[  514.931327][T13395]  ret_from_fork_asm+0x1a/0x30
[  516.613338][T13466] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1477'.
[  516.697376][T13466] hsr_slave_0: left promiscuous mode
[  516.770795][T13466] hsr_slave_1: left promiscuous mode
[  517.047554][T13475] FAULT_INJECTION: forcing a failure.
[  517.047554][T13475] name failslab, interval 1, probability 0, space 0, times 0
[  517.111699][T13475] CPU: 0 UID: 0 PID: 13475 Comm: syz.1.1478 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  517.111749][T13475] Tainted: [L]=SOFTLOCKUP
[  517.111761][T13475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  517.111779][T13475] Call Trace:
[  517.111790][T13475]  <TASK>
[  517.111802][T13475]  dump_stack_lvl+0x100/0x190
[  517.111862][T13475]  should_fail_ex.cold+0x5/0xa
[  517.111901][T13475]  ? copy_splice_read+0x1a3/0xb90
[  517.111939][T13475]  should_failslab+0xc2/0x120
[  517.111977][T13475]  __kmalloc_noprof+0xe0/0x850
[  517.112015][T13475]  copy_splice_read+0x1a3/0xb90
[  517.112055][T13475]  ? __pfx_iter_file_splice_write+0x10/0x10
[  517.112105][T13475]  ? __pfx_copy_splice_read+0x10/0x10
[  517.112158][T13475]  ? find_held_lock+0x2b/0x80
[  517.112206][T13475]  ? __pfx_copy_splice_read+0x10/0x10
[  517.112246][T13475]  do_splice_read+0x285/0x370
[  517.112290][T13475]  splice_direct_to_actor+0x2a1/0xa30
[  517.112334][T13475]  ? __pfx_direct_splice_actor+0x10/0x10
[  517.112382][T13475]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  517.112436][T13475]  do_splice_direct+0x174/0x240
[  517.112486][T13475]  ? __pfx_do_splice_direct+0x10/0x10
[  517.112528][T13475]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  517.112578][T13475]  ? rw_verify_area+0xce/0x6d0
[  517.112614][T13475]  do_sendfile+0xadc/0xe20
[  517.112656][T13475]  ? __pfx_do_sendfile+0x10/0x10
[  517.112692][T13475]  ? __fget_files+0x21f/0x3d0
[  517.112741][T13475]  __x64_sys_sendfile64+0x1d8/0x220
[  517.112783][T13475]  ? ksys_write+0x1ac/0x250
[  517.112817][T13475]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  517.112864][T13475]  ? rcu_is_watching+0x12/0xc0
[  517.112903][T13475]  do_syscall_64+0x115/0x840
[  517.112949][T13475]  ? clear_bhb_loop+0x40/0x90
[  517.112987][T13475]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  517.113021][T13475] RIP: 0033:0x7f926fb9ce59
[  517.113046][T13475] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  517.113077][T13475] RSP: 002b:00007f92709ce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  517.113107][T13475] RAX: ffffffffffffffda RBX: 00007f926fe15fa0 RCX: 00007f926fb9ce59
[  517.113128][T13475] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  517.113146][T13475] RBP: 00007f92709ce090 R08: 0000000000000000 R09: 0000000000000000
[  517.113166][T13475] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  517.113184][T13475] R13: 00007f926fe16038 R14: 00007f926fe15fa0 R15: 00007ffcef4ec9e8
[  517.113225][T13475]  </TASK>
[  519.322471][   T29] audit: type=1800 audit(8277292061.540:22): pid=13527 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1487" name="dbroot" dev="configfs" ino=53821 res=0 errno=0
[  519.391144][T13532] FAULT_INJECTION: forcing a failure.
[  519.391144][T13532] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  519.445821][T13532] CPU: 1 UID: 0 PID: 13532 Comm: syz.3.1490 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  519.445870][T13532] Tainted: [L]=SOFTLOCKUP
[  519.445881][T13532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  519.445901][T13532] Call Trace:
[  519.445911][T13532]  <TASK>
[  519.445923][T13532]  dump_stack_lvl+0x100/0x190
[  519.445983][T13532]  should_fail_ex.cold+0x5/0xa
[  519.446019][T13532]  ? prepare_alloc_pages+0x16d/0x5f0
[  519.446066][T13532]  should_fail_alloc_page+0xeb/0x140
[  519.446120][T13532]  prepare_alloc_pages+0x1f0/0x5f0
[  519.446161][T13532]  ? kernel_text_address+0x8d/0x100
[  519.446198][T13532]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  519.446284][T13532]  ? copy_splice_read+0x1a3/0xb90
[  519.446324][T13532]  ? stack_trace_save+0x8e/0xc0
[  519.446368][T13532]  ? __pfx_stack_trace_save+0x10/0x10
[  519.446429][T13532]  ? splice_direct_to_actor+0x345/0xa30
[  519.446472][T13532]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  519.446525][T13532]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.446564][T13532]  ? copy_splice_read+0x1a3/0xb90
[  519.446602][T13532]  ? kasan_save_stack+0x3f/0x50
[  519.446633][T13532]  ? kasan_save_stack+0x30/0x50
[  519.446664][T13532]  ? kasan_save_track+0x14/0x30
[  519.446694][T13532]  ? __kasan_kmalloc+0xaa/0xb0
[  519.446724][T13532]  ? __kmalloc_noprof+0x301/0x850
[  519.446751][T13532]  ? copy_splice_read+0x1a3/0xb90
[  519.446793][T13532]  ? do_syscall_64+0x115/0x840
[  519.446836][T13532]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.446890][T13532]  alloc_pages_bulk_noprof+0x649/0x1360
[  519.446937][T13532]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  519.447006][T13532]  ? __kmalloc_noprof+0x320/0x850
[  519.447043][T13532]  copy_splice_read+0x1e1/0xb90
[  519.447093][T13532]  ? __pfx_copy_splice_read+0x10/0x10
[  519.447146][T13532]  ? find_held_lock+0x2b/0x80
[  519.447193][T13532]  ? __pfx_copy_splice_read+0x10/0x10
[  519.447231][T13532]  do_splice_read+0x285/0x370
[  519.447275][T13532]  splice_direct_to_actor+0x2a1/0xa30
[  519.447318][T13532]  ? __pfx_direct_splice_actor+0x10/0x10
[  519.447366][T13532]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  519.447427][T13532]  do_splice_direct+0x174/0x240
[  519.447469][T13532]  ? __pfx_do_splice_direct+0x10/0x10
[  519.447512][T13532]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  519.447558][T13532]  ? rw_verify_area+0xce/0x6d0
[  519.447593][T13532]  do_sendfile+0xadc/0xe20
[  519.447635][T13532]  ? __pfx_do_sendfile+0x10/0x10
[  519.447672][T13532]  ? __fget_files+0x21f/0x3d0
[  519.447720][T13532]  __x64_sys_sendfile64+0x1d8/0x220
[  519.447763][T13532]  ? ksys_write+0x1ac/0x250
[  519.447799][T13532]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  519.447847][T13532]  ? rcu_is_watching+0x12/0xc0
[  519.447888][T13532]  do_syscall_64+0x115/0x840
[  519.447931][T13532]  ? clear_bhb_loop+0x40/0x90
[  519.447970][T13532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.448001][T13532] RIP: 0033:0x7f5ebb99ce59
[  519.448028][T13532] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  519.448058][T13532] RSP: 002b:00007f5ebc8b1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  519.448088][T13532] RAX: ffffffffffffffda RBX: 00007f5ebbc15fa0 RCX: 00007f5ebb99ce59
[  519.448109][T13532] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  519.448128][T13532] RBP: 00007f5ebc8b1090 R08: 0000000000000000 R09: 0000000000000000
[  519.448146][T13532] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  519.448165][T13532] R13: 00007f5ebbc16038 R14: 00007f5ebbc15fa0 R15: 00007ffe0b62b4a8
[  519.448204][T13532]  </TASK>
[  521.581598][T13585] FAULT_INJECTION: forcing a failure.
[  521.581598][T13585] name failslab, interval 1, probability 0, space 0, times 0
[  521.620405][T13585] CPU: 1 UID: 0 PID: 13585 Comm: syz.1.1500 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  521.620453][T13585] Tainted: [L]=SOFTLOCKUP
[  521.620464][T13585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  521.620482][T13585] Call Trace:
[  521.620493][T13585]  <TASK>
[  521.620504][T13585]  dump_stack_lvl+0x100/0x190
[  521.620563][T13585]  should_fail_ex.cold+0x5/0xa
[  521.620603][T13585]  should_failslab+0xc2/0x120
[  521.620647][T13585]  __kvmalloc_node_noprof+0xfa/0xa00
[  521.620680][T13585]  ? proc_sys_call_handler+0x2c7/0x5a0
[  521.620738][T13585]  ? proc_sys_call_handler+0x169/0x5a0
[  521.620789][T13585]  proc_sys_call_handler+0x2c7/0x5a0
[  521.620834][T13585]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  521.620878][T13585]  ? __kmalloc_noprof+0x320/0x850
[  521.620916][T13585]  copy_splice_read+0x4ba/0xb90
[  521.620971][T13585]  ? __pfx_copy_splice_read+0x10/0x10
[  521.621026][T13585]  ? find_held_lock+0x2b/0x80
[  521.621076][T13585]  ? __pfx_copy_splice_read+0x10/0x10
[  521.621117][T13585]  do_splice_read+0x285/0x370
[  521.621170][T13585]  splice_direct_to_actor+0x2a1/0xa30
[  521.621216][T13585]  ? __pfx_direct_splice_actor+0x10/0x10
[  521.621266][T13585]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  521.621321][T13585]  do_splice_direct+0x174/0x240
[  521.621365][T13585]  ? __pfx_do_splice_direct+0x10/0x10
[  521.621409][T13585]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  521.621457][T13585]  ? rw_verify_area+0xce/0x6d0
[  521.621493][T13585]  do_sendfile+0xadc/0xe20
[  521.621537][T13585]  ? __pfx_do_sendfile+0x10/0x10
[  521.621579][T13585]  ? __pfx_clockevents_program_event+0x10/0x10
[  521.621623][T13585]  __x64_sys_sendfile64+0x1d8/0x220
[  521.621672][T13585]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  521.621722][T13585]  ? rcu_is_watching+0x12/0xc0
[  521.621765][T13585]  do_syscall_64+0x115/0x840
[  521.621813][T13585]  ? clear_bhb_loop+0x40/0x90
[  521.621853][T13585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  521.621886][T13585] RIP: 0033:0x7f926fb9ce59
[  521.621913][T13585] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  521.621956][T13585] RSP: 002b:00007f92709ce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  521.621986][T13585] RAX: ffffffffffffffda RBX: 00007f926fe15fa0 RCX: 00007f926fb9ce59
[  521.622007][T13585] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  521.622025][T13585] RBP: 00007f92709ce090 R08: 0000000000000000 R09: 0000000000000000
[  521.622044][T13585] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000002
[  521.622063][T13585] R13: 00007f926fe16038 R14: 00007f926fe15fa0 R15: 00007ffcef4ec9e8
[  521.622103][T13585]  </TASK>
[  522.161630][T13599] FAULT_INJECTION: forcing a failure.
[  522.161630][T13599] name failslab, interval 1, probability 0, space 0, times 0
[  522.248404][T13599] CPU: 1 UID: 0 PID: 13599 Comm: syz.3.1502 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  522.248451][T13599] Tainted: [L]=SOFTLOCKUP
[  522.248469][T13599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  522.248488][T13599] Call Trace:
[  522.248497][T13599]  <TASK>
[  522.248508][T13599]  dump_stack_lvl+0x100/0x190
[  522.248574][T13599]  should_fail_ex.cold+0x5/0xa
[  522.248614][T13599]  should_failslab+0xc2/0x120
[  522.248652][T13599]  __kvmalloc_node_noprof+0xfa/0xa00
[  522.248683][T13599]  ? io_alloc_cache_init+0x38/0x170
[  522.248841][T13599]  ? lockdep_init_map_type+0x5c/0x250
[  522.248877][T13599]  io_alloc_cache_init+0x38/0x170
[  522.248918][T13599]  io_uring_setup.cold+0x3cd/0x1c6e
[  522.248981][T13599]  ? __pfx_io_uring_setup+0x10/0x10
[  522.249161][T13599]  ? do_futex+0x192/0x350
[  522.249195][T13599]  ? __pfx_do_futex+0x10/0x10
[  522.249248][T13599]  ? xfd_validate_state+0x129/0x190
[  522.249292][T13599]  __x64_sys_io_uring_setup+0xc2/0x170
[  522.249349][T13599]  do_syscall_64+0x115/0x840
[  522.249396][T13599]  ? clear_bhb_loop+0x40/0x90
[  522.249435][T13599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  522.249469][T13599] RIP: 0033:0x7f5ebb99ce59
[  522.249495][T13599] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  522.249527][T13599] RSP: 002b:00007f5ebc890028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  522.249566][T13599] RAX: ffffffffffffffda RBX: 00007f5ebbc16090 RCX: 00007f5ebb99ce59
[  522.249588][T13599] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000059
[  522.249608][T13599] RBP: 00007f5ebba32d6f R08: 0000000000000000 R09: 0000000000000000
[  522.249628][T13599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  522.249647][T13599] R13: 00007f5ebbc16128 R14: 00007f5ebbc16090 R15: 00007ffe0b62b4a8
[  522.249690][T13599]  </TASK>
[  522.936233][T13616] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  523.727046][ T9720] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  523.735160][ T9720] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0'
[  523.747614][ T9720] CPU: 0 UID: 0 PID: 9720 Comm: kworker/u11:1 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  523.747665][ T9720] Tainted: [L]=SOFTLOCKUP
[  523.747677][ T9720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  523.747712][ T9720] Workqueue: hci2 hci_rx_work
[  523.747756][ T9720] Call Trace:
[  523.747766][ T9720]  <TASK>
[  523.747778][ T9720]  dump_stack_lvl+0x100/0x190
[  523.747836][ T9720]  sysfs_warn_dup.cold+0x1c/0x28
[  523.747885][ T9720]  sysfs_create_dir_ns+0x24b/0x2b0
[  523.747920][ T9720]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  523.747955][ T9720]  ? find_held_lock+0x2b/0x80
[  523.747993][ T9720]  ? kobject_add_internal+0x25f/0x930
[  523.748025][ T9720]  ? kobject_add_internal+0x25f/0x930
[  523.748062][ T9720]  ? do_raw_spin_unlock+0x145/0x1e0
[  523.748101][ T9720]  kobject_add_internal+0x2c8/0x930
[  523.748140][ T9720]  kobject_add+0x16a/0x1e0
[  523.748171][ T9720]  ? __pfx_kobject_add+0x10/0x10
[  523.748210][ T9720]  ? class_to_subsys+0x10f/0x150
[  523.748352][ T9720]  ? kobject_put+0xb9/0x640
[  523.748379][ T9720]  ? _raw_spin_unlock+0x28/0x50
[  523.748432][ T9720]  device_add+0x294/0x1950
[  523.748507][ T9720]  ? __pfx_dev_set_name+0x10/0x10
[  523.748575][ T9720]  ? __pfx_device_add+0x10/0x10
[  523.748614][ T9720]  ? mgmt_send_event_skb+0x2fb/0x460
[  523.748671][ T9720]  hci_conn_add_sysfs+0x1a3/0x260
[  523.748724][ T9720]  le_conn_complete_evt+0x11eb/0x1f60
[  523.748798][ T9720]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  523.748842][ T9720]  ? __pfx_bt_warn+0x10/0x10
[  523.748903][ T9720]  hci_le_conn_complete_evt+0x23c/0x3a0
[  523.748960][ T9720]  ? skb_pull_data+0x15f/0x1e0
[  523.749010][ T9720]  hci_le_meta_evt+0x34a/0x5f0
[  523.749058][ T9720]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  523.749110][ T9720]  hci_event_packet+0x51c/0xcd0
[  523.749157][ T9720]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  523.749208][ T9720]  ? __pfx_hci_event_packet+0x10/0x10
[  523.749258][ T9720]  ? kcov_remote_start+0x374/0x660
[  523.749306][ T9720]  ? lockdep_hardirqs_on+0x78/0x100
[  523.749367][ T9720]  hci_rx_work+0x451/0xfc0
[  523.749420][ T9720]  process_one_work+0xa0e/0x1980
[  523.749474][ T9720]  ? __pfx_process_one_work+0x10/0x10
[  523.749528][ T9720]  ? __pfx_hci_rx_work+0x10/0x10
[  523.749577][ T9720]  worker_thread+0x5ef/0xe50
[  523.749623][ T9720]  ? __pfx_worker_thread+0x10/0x10
[  523.749658][ T9720]  ? kthread+0x13a/0x450
[  523.749709][ T9720]  ? __pfx_worker_thread+0x10/0x10
[  523.749739][ T9720]  kthread+0x370/0x450
[  523.749790][ T9720]  ? __pfx_kthread+0x10/0x10
[  523.749846][ T9720]  ret_from_fork+0x72b/0xd50
[  523.749885][ T9720]  ? __pfx_ret_from_fork+0x10/0x10
[  523.749923][ T9720]  ? __switch_to+0x800/0x1100
[  523.749980][ T9720]  ? __switch_to_asm+0x39/0x70
[  523.750022][ T9720]  ? __pfx_kthread+0x10/0x10
[  523.750075][ T9720]  ret_from_fork_asm+0x1a/0x30
[  523.750139][ T9720]  </TASK>
[  524.039583][ T9720] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  524.053513][ T9720] Bluetooth: hci2: failed to register connection device
[  524.902177][T13656] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1515'.
[  526.098707][T10103] Bluetooth: hci2: command 0x2016 tx timeout
[  526.146340][T13684] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1523'.
[  528.151144][T13710] HfR: entered promiscuous mode
[  528.178984][T10103] Bluetooth: hci2: command 0x2016 tx timeout
[  528.341511][T13710] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1530'.
[  528.364447][T13710] HfR: left promiscuous mode
[  529.927581][T13759] netlink: 172 bytes leftover after parsing attributes in process `syz.3.1542'.
[  529.943364][T13761] netlink: 172 bytes leftover after parsing attributes in process `syz.3.1542'.
[  530.119965][T13752] Process accounting paused
[  530.389622][T13770] netlink: 178 bytes leftover after parsing attributes in process `syz.1.1543'.
[  530.432435][T13767] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1543'.
[  532.525071][T13824] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1555'.
[  533.695958][T13854] FAULT_INJECTION: forcing a failure.
[  533.695958][T13854] name failslab, interval 1, probability 0, space 0, times 0
[  533.748559][T13854] CPU: 1 UID: 0 PID: 13854 Comm: syz.1.1563 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  533.748614][T13854] Tainted: [L]=SOFTLOCKUP
[  533.748626][T13854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  533.748645][T13854] Call Trace:
[  533.748655][T13854]  <TASK>
[  533.748667][T13854]  dump_stack_lvl+0x100/0x190
[  533.748728][T13854]  should_fail_ex.cold+0x5/0xa
[  533.748770][T13854]  ? tomoyo_realpath_from_path+0xb6/0x690
[  533.748818][T13854]  should_failslab+0xc2/0x120
[  533.748858][T13854]  __kmalloc_noprof+0xe0/0x850
[  533.748887][T13854]  ? kfree+0x1dd/0x6c0
[  533.748941][T13854]  tomoyo_realpath_from_path+0xb6/0x690
[  533.748999][T13854]  tomoyo_path_number_perm+0x23c/0x580
[  533.749040][T13854]  ? tomoyo_path_number_perm+0x22e/0x580
[  533.749084][T13854]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  533.749167][T13854]  ? find_held_lock+0x2b/0x80
[  533.749207][T13854]  ? __fget_files+0x215/0x3d0
[  533.749246][T13854]  ? hook_file_ioctl_common+0x149/0x410
[  533.749287][T13854]  ? __fget_files+0x215/0x3d0
[  533.749340][T13854]  ? __fget_files+0x21f/0x3d0
[  533.749385][T13854]  security_file_ioctl+0xd3/0x230
[  533.749505][T13854]  __x64_sys_ioctl+0xb7/0x210
[  533.749545][T13854]  do_syscall_64+0x115/0x840
[  533.749591][T13854]  ? clear_bhb_loop+0x40/0x90
[  533.749632][T13854]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  533.749667][T13854] RIP: 0033:0x7f926fb9ce59
[  533.749692][T13854] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  533.749724][T13854] RSP: 002b:00007f92709ce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  533.749755][T13854] RAX: ffffffffffffffda RBX: 00007f926fe15fa0 RCX: 00007f926fb9ce59
[  533.749776][T13854] RDX: 0000000000000000 RSI: 00000000c00c5512 RDI: 0000000000000003
[  533.749796][T13854] RBP: 00007f92709ce090 R08: 0000000000000000 R09: 0000000000000000
[  533.749816][T13854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  533.749836][T13854] R13: 00007f926fe16038 R14: 00007f926fe15fa0 R15: 00007ffcef4ec9e8
[  533.749889][T13854]  </TASK>
[  533.754810][T13854] ERROR: Out of memory at tomoyo_realpath_from_path.
[  534.694137][T13873] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1570'.
[  535.591548][   T29] audit: type=1800 audit(4294967300.421:23): pid=13880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1572" name="lu_gp_id" dev="configfs" ino=56756 res=0 errno=0
[  535.892600][T13892] FAULT_INJECTION: forcing a failure.
[  535.892600][T13892] name failslab, interval 1, probability 0, space 0, times 0
[  535.917618][T13892] CPU: 0 UID: 0 PID: 13892 Comm: syz.0.1575 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  535.917666][T13892] Tainted: [L]=SOFTLOCKUP
[  535.917677][T13892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  535.917696][T13892] Call Trace:
[  535.917706][T13892]  <TASK>
[  535.917717][T13892]  dump_stack_lvl+0x100/0x190
[  535.917779][T13892]  should_fail_ex.cold+0x5/0xa
[  535.917818][T13892]  ? tomoyo_encode2+0xfb/0x3c0
[  535.917870][T13892]  should_failslab+0xc2/0x120
[  535.917927][T13892]  __kmalloc_noprof+0xe0/0x850
[  535.917956][T13892]  ? d_absolute_path+0x136/0x1b0
[  535.917999][T13892]  tomoyo_encode2+0xfb/0x3c0
[  535.918053][T13892]  tomoyo_encode+0x29/0x50
[  535.918098][T13892]  tomoyo_realpath_from_path+0x18c/0x690
[  535.918158][T13892]  tomoyo_path_number_perm+0x23c/0x580
[  535.918199][T13892]  ? tomoyo_path_number_perm+0x22e/0x580
[  535.918251][T13892]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  535.918334][T13892]  ? find_held_lock+0x2b/0x80
[  535.918376][T13892]  ? __fget_files+0x215/0x3d0
[  535.918413][T13892]  ? hook_file_ioctl_common+0x149/0x410
[  535.918454][T13892]  ? __fget_files+0x215/0x3d0
[  535.918500][T13892]  ? __fget_files+0x21f/0x3d0
[  535.918545][T13892]  security_file_ioctl+0xd3/0x230
[  535.918589][T13892]  __x64_sys_ioctl+0xb7/0x210
[  535.918625][T13892]  do_syscall_64+0x115/0x840
[  535.918671][T13892]  ? clear_bhb_loop+0x40/0x90
[  535.918712][T13892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  535.918745][T13892] RIP: 0033:0x7f2eef99ce59
[  535.918771][T13892] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  535.918803][T13892] RSP: 002b:00007f2ef07ac028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  535.918834][T13892] RAX: ffffffffffffffda RBX: 00007f2eefc15fa0 RCX: 00007f2eef99ce59
[  535.918856][T13892] RDX: 0000000000000000 RSI: 00000000c00c5512 RDI: 0000000000000003
[  535.918876][T13892] RBP: 00007f2ef07ac090 R08: 0000000000000000 R09: 0000000000000000
[  535.918896][T13892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  535.918915][T13892] R13: 00007f2eefc16038 R14: 00007f2eefc15fa0 R15: 00007ffeec081bb8
[  535.918958][T13892]  </TASK>
[  535.920255][T13892] ERROR: Out of memory at tomoyo_realpath_from_path.
[  536.398518][T13901] Process accounting resumed
[  537.551790][T13934] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1583'.
[  539.778180][T13952] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  541.227241][T13996] cifs: Unknown parameter '�����)�	Up��̢{��V]7�62']�Ψ��!�g�ʮ�7�9��fM�<*y�sE�h�
�'
[  542.967373][T14021] FAULT_INJECTION: forcing a failure.
[  542.967373][T14021] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  542.985150][T14021] CPU: 1 UID: 0 PID: 14021 Comm: syz.3.1601 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  542.985200][T14021] Tainted: [L]=SOFTLOCKUP
[  542.985211][T14021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  542.985231][T14021] Call Trace:
[  542.985241][T14021]  <TASK>
[  542.985252][T14021]  dump_stack_lvl+0x100/0x190
[  542.985312][T14021]  should_fail_ex.cold+0x5/0xa
[  542.985346][T14021]  ? prepare_alloc_pages+0x16d/0x5f0
[  542.985401][T14021]  should_fail_alloc_page+0xeb/0x140
[  542.985447][T14021]  prepare_alloc_pages+0x1f0/0x5f0
[  542.985496][T14021]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  542.985559][T14021]  ? __lock_acquire+0x4a5/0x2630
[  542.985619][T14021]  ? __lock_acquire+0x4a5/0x2630
[  542.985671][T14021]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  542.985731][T14021]  ? __lock_acquire+0x4a5/0x2630
[  542.985791][T14021]  ? __lock_acquire+0x4a5/0x2630
[  542.985844][T14021]  ? vma_is_special_huge+0x23f/0x2d0
[  542.985880][T14021]  ? __pfx_vma_is_special_huge+0x10/0x10
[  542.985918][T14021]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  542.985967][T14021]  ? policy_nodemask+0xed/0x4f0
[  542.986009][T14021]  alloc_pages_mpol+0x1fb/0x540
[  542.986068][T14021]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  542.986109][T14021]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  542.986158][T14021]  ? __pfx___thp_vma_allowable_orders+0x10/0x10
[  542.986211][T14021]  alloc_pages_noprof+0x1a/0x160
[  542.986258][T14021]  __pmd_alloc+0x3b/0x950
[  542.986306][T14021]  __handle_mm_fault+0xa9c/0x2a00
[  542.986364][T14021]  ? mt_find+0x45e/0x8e0
[  542.986425][T14021]  ? __pfx___handle_mm_fault+0x10/0x10
[  542.986473][T14021]  ? __pfx_mt_find+0x10/0x10
[  542.986545][T14021]  ? find_vma+0xbf/0x140
[  542.986580][T14021]  ? __pfx_find_vma+0x10/0x10
[  542.986620][T14021]  handle_mm_fault+0x37b/0xa30
[  542.986677][T14021]  do_user_addr_fault+0x74c/0x12f0
[  542.986721][T14021]  ? trace_page_fault_kernel+0x7a/0x200
[  542.986761][T14021]  exc_page_fault+0x6f/0xd0
[  542.986809][T14021]  asm_exc_page_fault+0x26/0x30
[  542.986841][T14021] RIP: 0010:rep_movs_alternative+0x30/0x90
[  542.986879][T14021] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  542.986910][T14021] RSP: 0018:ffffc90006ac7c10 EFLAGS: 00050202
[  542.986937][T14021] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000000c
[  542.986957][T14021] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90006ac7d08
[  542.986976][T14021] RBP: 000000000000000c R08: 0000000000000001 R09: fffff52000d58fa2
[  542.987008][T14021] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  542.987026][T14021] R13: ffffc90006ac7d08 R14: ffff888028792540 R15: ffff88807d339400
[  542.987066][T14021]  _copy_from_user+0x98/0xd0
[  542.987218][T14021]  usbdev_ioctl+0x156b/0x3aa0
[  542.987324][T14021]  ? __pfx_usbdev_ioctl+0x10/0x10
[  542.987387][T14021]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  542.987435][T14021]  ? do_vfs_ioctl+0x226/0x13e0
[  542.987467][T14021]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  542.987511][T14021]  ? find_held_lock+0x2b/0x80
[  542.987550][T14021]  ? __fget_files+0x215/0x3d0
[  542.987586][T14021]  ? hook_file_ioctl_common+0x149/0x410
[  542.987635][T14021]  ? __fget_files+0x21f/0x3d0
[  542.987679][T14021]  ? __pfx_usbdev_ioctl+0x10/0x10
[  542.987729][T14021]  __x64_sys_ioctl+0x18e/0x210
[  542.987765][T14021]  do_syscall_64+0x115/0x840
[  542.987808][T14021]  ? clear_bhb_loop+0x40/0x90
[  542.987847][T14021]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  542.987880][T14021] RIP: 0033:0x7f5ebb99ce59
[  542.987906][T14021] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  542.987936][T14021] RSP: 002b:00007f5ebc8b1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  542.987964][T14021] RAX: ffffffffffffffda RBX: 00007f5ebbc15fa0 RCX: 00007f5ebb99ce59
[  542.987984][T14021] RDX: 0000000000000000 RSI: 00000000c00c5512 RDI: 0000000000000003
[  542.988004][T14021] RBP: 00007f5ebc8b1090 R08: 0000000000000000 R09: 0000000000000000
[  542.988023][T14021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  542.988043][T14021] R13: 00007f5ebbc16038 R14: 00007f5ebbc15fa0 R15: 00007ffe0b62b4a8
[  542.988085][T14021]  </TASK>
[  544.092635][T14036] FAULT_INJECTION: forcing a failure.
[  544.092635][T14036] name failslab, interval 1, probability 0, space 0, times 0
[  544.129659][T14036] CPU: 0 UID: 0 PID: 14036 Comm: syz.4.1604 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  544.129699][T14036] Tainted: [L]=SOFTLOCKUP
[  544.129707][T14036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  544.129721][T14036] Call Trace:
[  544.129728][T14036]  <TASK>
[  544.129737][T14036]  dump_stack_lvl+0x100/0x190
[  544.129782][T14036]  should_fail_ex.cold+0x5/0xa
[  544.129812][T14036]  should_failslab+0xc2/0x120
[  544.129841][T14036]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  544.129892][T14036]  ? __pmd_alloc+0xbf/0x950
[  544.129925][T14036]  __pmd_alloc+0xbf/0x950
[  544.129957][T14036]  __handle_mm_fault+0xa9c/0x2a00
[  544.129997][T14036]  ? mt_find+0x45e/0x8e0
[  544.130033][T14036]  ? __pfx___handle_mm_fault+0x10/0x10
[  544.130066][T14036]  ? __pfx_mt_find+0x10/0x10
[  544.130115][T14036]  ? find_vma+0xbf/0x140
[  544.130139][T14036]  ? __pfx_find_vma+0x10/0x10
[  544.130169][T14036]  handle_mm_fault+0x37b/0xa30
[  544.130209][T14036]  do_user_addr_fault+0x74c/0x12f0
[  544.130240][T14036]  ? trace_page_fault_kernel+0x7a/0x200
[  544.130269][T14036]  exc_page_fault+0x6f/0xd0
[  544.130301][T14036]  asm_exc_page_fault+0x26/0x30
[  544.130323][T14036] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  544.130349][T14036] Code: 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  544.130371][T14036] RSP: 0018:ffffc90008447b30 EFLAGS: 00050206
[  544.130389][T14036] RAX: 0000000000000001 RBX: ffff888084e00000 RCX: 0000000000100082
[  544.130403][T14036] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffff888084e00000
[  544.130417][T14036] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed10109e0010
[  544.130431][T14036] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc90008447d80
[  544.130444][T14036] R13: 0000000000000000 R14: 0000000000100082 R15: 0000000000000000
[  544.130471][T14036]  _copy_from_iter+0x355/0x1690
[  544.130610][T14036]  ? rcu_is_watching+0x12/0xc0
[  544.130639][T14036]  ? __pfx__copy_from_iter+0x10/0x10
[  544.130676][T14036]  ? trace_kmalloc+0xe3/0x110
[  544.130701][T14036]  ? __kmalloc_large_node_noprof+0x5d/0x70
[  544.130733][T14036]  ? __kvmalloc_node_noprof+0x6af/0xa00
[  544.130755][T14036]  ? proc_sys_call_handler+0x2c7/0x5a0
[  544.130783][T14036]  ? proc_sys_call_handler+0x169/0x5a0
[  544.130819][T14036]  proc_sys_call_handler+0x3ed/0x5a0
[  544.130850][T14036]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  544.130888][T14036]  vfs_write+0x6ac/0x1070
[  544.130916][T14036]  ? __pfx_proc_sys_write+0x10/0x10
[  544.130947][T14036]  ? __pfx_vfs_write+0x10/0x10
[  544.130991][T14036]  ksys_write+0x12a/0x250
[  544.131017][T14036]  ? __pfx_ksys_write+0x10/0x10
[  544.131046][T14036]  ? rcu_is_watching+0x12/0xc0
[  544.131075][T14036]  do_syscall_64+0x115/0x840
[  544.131135][T14036]  ? clear_bhb_loop+0x40/0x90
[  544.131165][T14036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.131188][T14036] RIP: 0033:0x7f4c8ad9ce59
[  544.131206][T14036] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  544.131228][T14036] RSP: 002b:00007f4c8bc76028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  544.131248][T14036] RAX: ffffffffffffffda RBX: 00007f4c8b015fa0 RCX: 00007f4c8ad9ce59
[  544.131263][T14036] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  544.131276][T14036] RBP: 00007f4c8bc76090 R08: 0000000000000000 R09: 0000000000000000
[  544.131290][T14036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  544.131303][T14036] R13: 00007f4c8b016038 R14: 00007f4c8b015fa0 R15: 00007ffd4292f488
[  544.131332][T14036]  </TASK>
[  545.454844][T14033] Process accounting paused
[  546.045432][   T29] audit: type=1800 audit(4294967310.886:24): pid=14044 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1613" name="lu_gp_id" dev="configfs" ino=57588 res=0 errno=0
[  548.129813][T14099] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  548.985233][T14134] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1628'.
[  549.281559][T14141] FAULT_INJECTION: forcing a failure.
[  549.281559][T14141] name failslab, interval 1, probability 0, space 0, times 0
[  549.346989][T14141] CPU: 1 UID: 0 PID: 14141 Comm: syz.0.1629 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  549.347040][T14141] Tainted: [L]=SOFTLOCKUP
[  549.347050][T14141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  549.347069][T14141] Call Trace:
[  549.347078][T14141]  <TASK>
[  549.347089][T14141]  dump_stack_lvl+0x100/0x190
[  549.347144][T14141]  should_fail_ex.cold+0x5/0xa
[  549.347181][T14141]  should_failslab+0xc2/0x120
[  549.347216][T14141]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  549.347264][T14141]  ? __d_alloc+0x34/0xa40
[  549.347310][T14141]  __d_alloc+0x34/0xa40
[  549.347351][T14141]  d_alloc+0x4a/0x1e0
[  549.347391][T14141]  lookup_one_qstr_excl+0x171/0x250
[  549.347439][T14141]  start_dirop+0x59/0xb0
[  549.347471][T14141]  simple_start_creating+0xf9/0x110
[  549.347506][T14141]  ? __pfx_simple_start_creating+0x10/0x10
[  549.347541][T14141]  ? mntput+0x70/0xa0
[  549.347571][T14141]  ? simple_pin_fs+0xa3/0x190
[  549.347601][T14141]  debugfs_start_creating.part.0+0x82/0x170
[  549.347718][T14141]  __debugfs_create_file+0xb3/0x4f0
[  549.347754][T14141]  debugfs_create_file_full+0x41/0x60
[  549.347795][T14141]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  549.347860][T14141]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  549.347923][T14141]  ? lockdep_init_map_type+0x5c/0x250
[  549.347960][T14141]  preinit_net.part.0+0x43b/0x920
[  549.347995][T14141]  copy_net_ns+0x339/0x7c0
[  549.348033][T14141]  create_new_namespaces+0x3ea/0xac0
[  549.348078][T14141]  unshare_nsproxy_namespaces+0xf2/0x220
[  549.348117][T14141]  ksys_unshare+0x438/0xab0
[  549.348160][T14141]  ? __pfx_ksys_unshare+0x10/0x10
[  549.348198][T14141]  ? xfd_validate_state+0x129/0x190
[  549.348224][T14141]  ? ksys_write+0x1ac/0x250
[  549.348268][T14141]  __x64_sys_unshare+0x31/0x40
[  549.348309][T14141]  do_syscall_64+0x115/0x840
[  549.348349][T14141]  ? clear_bhb_loop+0x40/0x90
[  549.348383][T14141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  549.348415][T14141] RIP: 0033:0x7f2eef99ce59
[  549.348439][T14141] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  549.348467][T14141] RSP: 002b:00007f2ef078b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  549.348495][T14141] RAX: ffffffffffffffda RBX: 00007f2eefc16090 RCX: 00007f2eef99ce59
[  549.348514][T14141] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  549.348532][T14141] RBP: 00007f2eefa32d6f R08: 0000000000000000 R09: 0000000000000000
[  549.348550][T14141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  549.348567][T14141] R13: 00007f2eefc16128 R14: 00007f2eefc16090 R15: 00007ffeec081bb8
[  549.348605][T14141]  </TASK>
[  549.624382][T14124] netlink: 'syz.1.1625': attribute type 11 has an invalid length.
[  549.632479][T14124] netlink: 'syz.1.1625': attribute type 11 has an invalid length.
[  549.641857][T14124] netlink: 'syz.1.1625': attribute type 11 has an invalid length.
[  549.973182][T10103] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5
[  552.082468][T14175] FAULT_INJECTION: forcing a failure.
[  552.082468][T14175] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  552.168124][T14175] CPU: 0 UID: 0 PID: 14175 Comm: syz.4.1635 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  552.168167][T14175] Tainted: [L]=SOFTLOCKUP
[  552.168200][T14175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  552.168218][T14175] Call Trace:
[  552.168228][T14175]  <TASK>
[  552.168239][T14175]  dump_stack_lvl+0x100/0x190
[  552.168293][T14175]  should_fail_ex.cold+0x5/0xa
[  552.168319][T14175]  ? prepare_alloc_pages+0x16d/0x5f0
[  552.168352][T14175]  should_fail_alloc_page+0xeb/0x140
[  552.168382][T14175]  prepare_alloc_pages+0x1f0/0x5f0
[  552.168417][T14175]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  552.168458][T14175]  ? stack_trace_save+0x8e/0xc0
[  552.168488][T14175]  ? __pfx_stack_trace_save+0x10/0x10
[  552.168519][T14175]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  552.168586][T14175]  ? stack_depot_save_flags+0x27/0x9d0
[  552.168655][T14175]  ? kasan_save_stack+0x3f/0x50
[  552.168682][T14175]  ? kasan_save_stack+0x30/0x50
[  552.168704][T14175]  ? kasan_save_track+0x14/0x30
[  552.168726][T14175]  ? __kasan_slab_alloc+0x89/0x90
[  552.168750][T14175]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  552.168789][T14175]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  552.168828][T14175]  ? do_user_addr_fault+0x74c/0x12f0
[  552.168855][T14175]  ? exc_page_fault+0x6f/0xd0
[  552.168886][T14175]  ? asm_exc_page_fault+0x26/0x30
[  552.168909][T14175]  ? _copy_from_user+0x98/0xd0
[  552.168940][T14175]  ? __x64_sys_ioctl+0x18e/0x210
[  552.168963][T14175]  ? do_syscall_64+0x115/0x840
[  552.168994][T14175]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  552.169029][T14175]  ? __lock_acquire+0x4a5/0x2630
[  552.169068][T14175]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  552.169104][T14175]  ? policy_nodemask+0xed/0x4f0
[  552.169137][T14175]  alloc_pages_mpol+0x1fb/0x540
[  552.169167][T14175]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  552.169195][T14175]  ? __thp_vma_allowable_orders+0x1d9/0xce0
[  552.169230][T14175]  ? do_raw_spin_lock+0x128/0x260
[  552.169258][T14175]  alloc_pages_noprof+0x1a/0x160
[  552.169292][T14175]  pte_alloc_one+0x1c/0x3d0
[  552.169323][T14175]  do_fault+0x86c/0x1750
[  552.169352][T14175]  ? __pmd_alloc+0x3fb/0x950
[  552.169385][T14175]  __handle_mm_fault+0x187d/0x2a00
[  552.169426][T14175]  ? mt_find+0x45e/0x8e0
[  552.169463][T14175]  ? __pfx___handle_mm_fault+0x10/0x10
[  552.169520][T14175]  ? __pfx_mt_find+0x10/0x10
[  552.169592][T14175]  ? find_vma+0xbf/0x140
[  552.169619][T14175]  ? __pfx_find_vma+0x10/0x10
[  552.169653][T14175]  handle_mm_fault+0x37b/0xa30
[  552.169695][T14175]  do_user_addr_fault+0x74c/0x12f0
[  552.169726][T14175]  ? trace_page_fault_kernel+0x7a/0x200
[  552.169755][T14175]  exc_page_fault+0x6f/0xd0
[  552.169789][T14175]  asm_exc_page_fault+0x26/0x30
[  552.169812][T14175] RIP: 0010:rep_movs_alternative+0x30/0x90
[  552.169840][T14175] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  552.169863][T14175] RSP: 0018:ffffc900057a7c10 EFLAGS: 00050202
[  552.169882][T14175] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000000c
[  552.169896][T14175] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc900057a7d08
[  552.169910][T14175] RBP: 000000000000000c R08: 0000000000000001 R09: fffff52000af4fa2
[  552.169924][T14175] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  552.169937][T14175] R13: ffffc900057a7d08 R14: ffff888028792540 R15: ffff888035aac000
[  552.169965][T14175]  _copy_from_user+0x98/0xd0
[  552.169999][T14175]  usbdev_ioctl+0x156b/0x3aa0
[  552.170041][T14175]  ? __pfx_usbdev_ioctl+0x10/0x10
[  552.170082][T14175]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  552.170117][T14175]  ? do_vfs_ioctl+0x226/0x13e0
[  552.170143][T14175]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  552.170175][T14175]  ? find_held_lock+0x2b/0x80
[  552.170203][T14175]  ? __fget_files+0x215/0x3d0
[  552.170230][T14175]  ? hook_file_ioctl_common+0x149/0x410
[  552.170266][T14175]  ? __fget_files+0x21f/0x3d0
[  552.170298][T14175]  ? __pfx_usbdev_ioctl+0x10/0x10
[  552.170359][T14175]  __x64_sys_ioctl+0x18e/0x210
[  552.170394][T14175]  do_syscall_64+0x115/0x840
[  552.170437][T14175]  ? clear_bhb_loop+0x40/0x90
[  552.170475][T14175]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  552.170509][T14175] RIP: 0033:0x7f4c8ad9ce59
[  552.170534][T14175] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  552.170564][T14175] RSP: 002b:00007f4c8bc76028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  552.170605][T14175] RAX: ffffffffffffffda RBX: 00007f4c8b015fa0 RCX: 00007f4c8ad9ce59
[  552.170631][T14175] RDX: 0000000000000000 RSI: 00000000c00c5512 RDI: 0000000000000003
[  552.170669][T14175] RBP: 00007f4c8bc76090 R08: 0000000000000000 R09: 0000000000000000
[  552.170688][T14175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  552.170707][T14175] R13: 00007f4c8b016038 R14: 00007f4c8b015fa0 R15: 00007ffd4292f488
[  552.170748][T14175]  </TASK>
[  554.371493][T14203] HfR: entered promiscuous mode
[  555.269571][T14203] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1640'.
[  555.293936][T14202] bond0: invalid ARP target specified
[  555.318835][T14203] HfR: left promiscuous mode
[  555.786022][T14223] FAULT_INJECTION: forcing a failure.
[  555.786022][T14223] name failslab, interval 1, probability 0, space 0, times 0
[  555.827481][T14223] CPU: 0 UID: 0 PID: 14223 Comm: syz.4.1645 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  555.827519][T14223] Tainted: [L]=SOFTLOCKUP
[  555.827527][T14223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  555.827541][T14223] Call Trace:
[  555.827549][T14223]  <TASK>
[  555.827557][T14223]  dump_stack_lvl+0x100/0x190
[  555.827603][T14223]  should_fail_ex.cold+0x5/0xa
[  555.827632][T14223]  should_failslab+0xc2/0x120
[  555.827722][T14223]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  555.827770][T14223]  ? ptlock_alloc+0x1f/0x70
[  555.827803][T14223]  ? do_raw_spin_lock+0x128/0x260
[  555.827833][T14223]  ptlock_alloc+0x1f/0x70
[  555.827868][T14223]  pte_alloc_one+0x82/0x3d0
[  555.827900][T14223]  do_fault+0x86c/0x1750
[  555.827957][T14223]  ? __pmd_alloc+0x3fb/0x950
[  555.828000][T14223]  __handle_mm_fault+0x187d/0x2a00
[  555.828041][T14223]  ? mt_find+0x45e/0x8e0
[  555.828079][T14223]  ? __pfx___handle_mm_fault+0x10/0x10
[  555.828113][T14223]  ? __pfx_mt_find+0x10/0x10
[  555.828164][T14223]  ? find_vma+0xbf/0x140
[  555.828193][T14223]  ? __pfx_find_vma+0x10/0x10
[  555.828222][T14223]  handle_mm_fault+0x37b/0xa30
[  555.828263][T14223]  do_user_addr_fault+0x74c/0x12f0
[  555.828294][T14223]  ? trace_page_fault_kernel+0x7a/0x200
[  555.828324][T14223]  exc_page_fault+0x6f/0xd0
[  555.828357][T14223]  asm_exc_page_fault+0x26/0x30
[  555.828380][T14223] RIP: 0010:rep_movs_alternative+0x30/0x90
[  555.828406][T14223] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  555.828429][T14223] RSP: 0018:ffffc90005c87c10 EFLAGS: 00050202
[  555.828452][T14223] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000000c
[  555.828466][T14223] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90005c87d08
[  555.828480][T14223] RBP: 000000000000000c R08: 0000000000000001 R09: fffff52000b90fa2
[  555.828494][T14223] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  555.828507][T14223] R13: ffffc90005c87d08 R14: ffff888028792540 R15: ffff888035d8cc00
[  555.828536][T14223]  _copy_from_user+0x98/0xd0
[  555.828571][T14223]  usbdev_ioctl+0x156b/0x3aa0
[  555.828613][T14223]  ? __pfx_usbdev_ioctl+0x10/0x10
[  555.828654][T14223]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  555.828693][T14223]  ? do_vfs_ioctl+0x226/0x13e0
[  555.828717][T14223]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  555.828748][T14223]  ? find_held_lock+0x2b/0x80
[  555.828777][T14223]  ? __fget_files+0x215/0x3d0
[  555.828803][T14223]  ? hook_file_ioctl_common+0x149/0x410
[  555.828839][T14223]  ? __fget_files+0x21f/0x3d0
[  555.828870][T14223]  ? __pfx_usbdev_ioctl+0x10/0x10
[  555.828908][T14223]  __x64_sys_ioctl+0x18e/0x210
[  555.828933][T14223]  do_syscall_64+0x115/0x840
[  555.828966][T14223]  ? clear_bhb_loop+0x40/0x90
[  555.828994][T14223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.829018][T14223] RIP: 0033:0x7f4c8ad9ce59
[  555.829036][T14223] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  555.829059][T14223] RSP: 002b:00007f4c8bc76028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  555.829079][T14223] RAX: ffffffffffffffda RBX: 00007f4c8b015fa0 RCX: 00007f4c8ad9ce59
[  555.829095][T14223] RDX: 0000000000000000 RSI: 00000000c00c5512 RDI: 0000000000000003
[  555.829108][T14223] RBP: 00007f4c8bc76090 R08: 0000000000000000 R09: 0000000000000000
[  555.829122][T14223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  555.829135][T14223] R13: 00007f4c8b016038 R14: 00007f4c8b015fa0 R15: 00007ffd4292f488
[  555.829165][T14223]  </TASK>
[  557.213030][T14241] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1650'.
[  559.146467][T14257] HfR: entered promiscuous mode
[  559.478619][T14257] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1653'.
[  559.496043][T14257] HfR: left promiscuous mode
[  559.653797][T14269] FAULT_INJECTION: forcing a failure.
[  559.653797][T14269] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  559.667471][T14269] CPU: 0 UID: 0 PID: 14269 Comm: syz.4.1656 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  559.667515][T14269] Tainted: [L]=SOFTLOCKUP
[  559.667525][T14269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  559.667542][T14269] Call Trace:
[  559.667551][T14269]  <TASK>
[  559.667561][T14269]  dump_stack_lvl+0x100/0x190
[  559.667632][T14269]  should_fail_ex.cold+0x5/0xa
[  559.667666][T14269]  ? prepare_alloc_pages+0x16d/0x5f0
[  559.667710][T14269]  should_fail_alloc_page+0xeb/0x140
[  559.667751][T14269]  prepare_alloc_pages+0x1f0/0x5f0
[  559.667799][T14269]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  559.667867][T14269]  ? __lock_acquire+0x4a5/0x2630
[  559.667923][T14269]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  559.667977][T14269]  ? __lock_acquire+0x4a5/0x2630
[  559.668048][T14269]  ? find_held_lock+0x2b/0x80
[  559.668087][T14269]  ? is_bpf_text_address+0x8a/0x1a0
[  559.668140][T14269]  ? is_bpf_text_address+0x8a/0x1a0
[  559.668182][T14269]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  559.668229][T14269]  ? policy_nodemask+0xed/0x4f0
[  559.668271][T14269]  alloc_pages_mpol+0x1fb/0x540
[  559.668312][T14269]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  559.668348][T14269]  ? arch_stack_walk+0xa6/0xf0
[  559.668417][T14269]  folio_alloc_mpol_noprof+0x36/0x260
[  559.668489][T14269]  shmem_alloc_folio+0x135/0x160
[  559.668539][T14269]  shmem_alloc_and_add_folio+0x371/0xd40
[  559.668605][T14269]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  559.668664][T14269]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  559.668708][T14269]  shmem_get_folio_gfp+0x6ab/0x1900
[  559.668750][T14269]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  559.668783][T14269]  ? filemap_map_pages+0x9c1/0x2140
[  559.668844][T14269]  shmem_fault+0x1f9/0xa20
[  559.668880][T14269]  ? __pfx_shmem_fault+0x10/0x10
[  559.668912][T14269]  ? __mod_memcg_lruvec_state+0x18c/0x5b0
[  559.668971][T14269]  ? __pfx_filemap_map_pages+0x10/0x10
[  559.669031][T14269]  ? find_held_lock+0x2b/0x80
[  559.669076][T14269]  __do_fault+0x10b/0x440
[  559.669123][T14269]  do_fault+0xa99/0x1750
[  559.669165][T14269]  ? __pmd_alloc+0x3fb/0x950
[  559.669212][T14269]  __handle_mm_fault+0x187d/0x2a00
[  559.669271][T14269]  ? mt_find+0x45e/0x8e0
[  559.669324][T14269]  ? __pfx___handle_mm_fault+0x10/0x10
[  559.669372][T14269]  ? __pfx_mt_find+0x10/0x10
[  559.669445][T14269]  ? find_vma+0xbf/0x140
[  559.669482][T14269]  ? __pfx_find_vma+0x10/0x10
[  559.669523][T14269]  handle_mm_fault+0x37b/0xa30
[  559.669582][T14269]  do_user_addr_fault+0x74c/0x12f0
[  559.669627][T14269]  ? trace_page_fault_kernel+0x7a/0x200
[  559.669668][T14269]  exc_page_fault+0x6f/0xd0
[  559.669716][T14269]  asm_exc_page_fault+0x26/0x30
[  559.669748][T14269] RIP: 0010:rep_movs_alternative+0x30/0x90
[  559.669785][T14269] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  559.669817][T14269] RSP: 0018:ffffc900055d7c10 EFLAGS: 00050202
[  559.669843][T14269] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000000c
[  559.669862][T14269] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc900055d7d08
[  559.669894][T14269] RBP: 000000000000000c R08: 0000000000000001 R09: fffff52000abafa2
[  559.669924][T14269] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  559.669942][T14269] R13: ffffc900055d7d08 R14: ffff888028792540 R15: ffff888077835000
[  559.669980][T14269]  _copy_from_user+0x98/0xd0
[  559.670023][T14269]  usbdev_ioctl+0x156b/0x3aa0
[  559.670074][T14269]  ? __pfx_usbdev_ioctl+0x10/0x10
[  559.670132][T14269]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  559.670177][T14269]  ? do_vfs_ioctl+0x226/0x13e0
[  559.670208][T14269]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  559.670249][T14269]  ? find_held_lock+0x2b/0x80
[  559.670284][T14269]  ? __fget_files+0x215/0x3d0
[  559.670317][T14269]  ? hook_file_ioctl_common+0x149/0x410
[  559.670363][T14269]  ? __fget_files+0x21f/0x3d0
[  559.670403][T14269]  ? __pfx_usbdev_ioctl+0x10/0x10
[  559.670450][T14269]  __x64_sys_ioctl+0x18e/0x210
[  559.670483][T14269]  do_syscall_64+0x115/0x840
[  559.670524][T14269]  ? clear_bhb_loop+0x40/0x90
[  559.670561][T14269]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  559.670591][T14269] RIP: 0033:0x7f4c8ad9ce59
[  559.670616][T14269] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  559.670644][T14269] RSP: 002b:00007f4c8bc76028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  559.670670][T14269] RAX: ffffffffffffffda RBX: 00007f4c8b015fa0 RCX: 00007f4c8ad9ce59
[  559.670690][T14269] RDX: 0000000000000000 RSI: 00000000c00c5512 RDI: 0000000000000003
[  559.670707][T14269] RBP: 00007f4c8bc76090 R08: 0000000000000000 R09: 0000000000000000
[  559.670725][T14269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  559.670742][T14269] R13: 00007f4c8b016038 R14: 00007f4c8b015fa0 R15: 00007ffd4292f488
[  559.670781][T14269]  </TASK>
[  560.221939][T14269] Process accounting resumed
[  560.295175][T14256] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  561.100242][T14278] FAULT_INJECTION: forcing a failure.
[  561.100242][T14278] name failslab, interval 1, probability 0, space 0, times 0
[  561.153977][T14278] CPU: 0 UID: 0 PID: 14278 Comm: syz.1.1659 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  561.154028][T14278] Tainted: [L]=SOFTLOCKUP
[  561.154039][T14278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  561.154059][T14278] Call Trace:
[  561.154071][T14278]  <TASK>
[  561.154082][T14278]  dump_stack_lvl+0x100/0x190
[  561.154154][T14278]  should_fail_ex.cold+0x5/0xa
[  561.154194][T14278]  should_failslab+0xc2/0x120
[  561.154235][T14278]  __kmalloc_cache_noprof+0x7a/0x6f0
[  561.154284][T14278]  ? landlock_merge_ruleset+0x118/0x830
[  561.154322][T14278]  ? mutex_init_lockdep+0xf1/0x120
[  561.154361][T14278]  landlock_merge_ruleset+0x118/0x830
[  561.154403][T14278]  ? prepare_creds+0x5ee/0x950
[  561.154439][T14278]  __do_sys_landlock_restrict_self+0x2af/0x9e0
[  561.154475][T14278]  ? rcu_is_watching+0x12/0xc0
[  561.154517][T14278]  do_syscall_64+0x115/0x840
[  561.154564][T14278]  ? clear_bhb_loop+0x40/0x90
[  561.154605][T14278]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  561.154638][T14278] RIP: 0033:0x7f926fb9ce59
[  561.154665][T14278] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  561.154697][T14278] RSP: 002b:00007f92709ad028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[  561.154730][T14278] RAX: ffffffffffffffda RBX: 00007f926fe16090 RCX: 00007f926fb9ce59
[  561.154750][T14278] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000009
[  561.154769][T14278] RBP: 00007f926fc32d6f R08: 0000000000000000 R09: 0000000000000000
[  561.154788][T14278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  561.154807][T14278] R13: 00007f926fe16128 R14: 00007f926fe16090 R15: 00007ffcef4ec9e8
[  561.154846][T14278]  </TASK>
[  562.974209][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  562.987671][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  563.853442][T14306] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  564.751722][T14312] FAULT_INJECTION: forcing a failure.
[  564.751722][T14312] name failslab, interval 1, probability 0, space 0, times 0
[  564.799969][T14312] CPU: 1 UID: 0 PID: 14312 Comm: syz.0.1667 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  564.800029][T14312] Tainted: [L]=SOFTLOCKUP
[  564.800041][T14312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  564.800061][T14312] Call Trace:
[  564.800072][T14312]  <TASK>
[  564.800085][T14312]  dump_stack_lvl+0x100/0x190
[  564.800151][T14312]  should_fail_ex.cold+0x5/0xa
[  564.800194][T14312]  should_failslab+0xc2/0x120
[  564.800236][T14312]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  564.800274][T14312]  ? snd_pcm_hw_rule_add+0x3b3/0x510
[  564.800328][T14312]  krealloc_node_align_noprof+0x321/0x3e0
[  564.800372][T14312]  snd_pcm_hw_rule_add+0x3b3/0x510
[  564.800417][T14312]  ? __pfx_snd_pcm_hw_rule_format+0x10/0x10
[  564.800478][T14312]  ? __pfx_snd_pcm_hw_rule_add+0x10/0x10
[  564.800527][T14312]  ? mutex_init_lockdep+0xf1/0x120
[  564.800563][T14312]  ? snd_pcm_attach_substream+0x287/0xd20
[  564.800608][T14312]  snd_pcm_open_substream+0x54a/0x1850
[  564.800647][T14312]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[  564.800683][T14312]  ? rcu_is_watching+0x12/0xc0
[  564.800729][T14312]  snd_pcm_open+0x2a3/0x710
[  564.800768][T14312]  ? __pfx_snd_pcm_open+0x10/0x10
[  564.800812][T14312]  ? __pfx_default_wake_function+0x10/0x10
[  564.800866][T14312]  ? __pfx_snd_pcm_playback_open+0x10/0x10
[  564.800899][T14312]  snd_pcm_playback_open+0x86/0xe0
[  564.800932][T14312]  snd_open+0x201/0x450
[  564.800975][T14312]  ? __pfx_snd_open+0x10/0x10
[  564.801016][T14312]  chrdev_open+0x234/0x6a0
[  564.801056][T14312]  ? __pfx_apparmor_file_open+0x10/0x10
[  564.801092][T14312]  ? __pfx_chrdev_open+0x10/0x10
[  564.801135][T14312]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  564.801190][T14312]  do_dentry_open+0x6ab/0x14d0
[  564.801234][T14312]  ? __pfx_chrdev_open+0x10/0x10
[  564.801287][T14312]  vfs_open+0x82/0x3f0
[  564.801343][T14312]  path_openat+0x208c/0x31a0
[  564.801400][T14312]  ? __pfx_path_openat+0x10/0x10
[  564.801460][T14312]  do_file_open+0x20e/0x430
[  564.801507][T14312]  ? __pfx_do_file_open+0x10/0x10
[  564.801581][T14312]  ? alloc_fd+0x476/0x790
[  564.801627][T14312]  ? do_getname+0x191/0x390
[  564.801682][T14312]  do_sys_openat2+0x10d/0x1e0
[  564.801735][T14312]  ? __pfx_do_sys_openat2+0x10/0x10
[  564.801811][T14312]  __x64_sys_openat+0x12d/0x210
[  564.801864][T14312]  ? __pfx___x64_sys_openat+0x10/0x10
[  564.801915][T14312]  ? ksys_write+0x1ac/0x250
[  564.801955][T14312]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  564.802007][T14312]  ? syscall_user_dispatch+0x76/0x130
[  564.802050][T14312]  do_syscall_64+0x115/0x840
[  564.802098][T14312]  ? clear_bhb_loop+0x40/0x90
[  564.802139][T14312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  564.802173][T14312] RIP: 0033:0x7f2eef99ce59
[  564.802201][T14312] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  564.802234][T14312] RSP: 002b:00007f2ef07ac028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  564.802268][T14312] RAX: ffffffffffffffda RBX: 00007f2eefc15fa0 RCX: 00007f2eef99ce59
[  564.802290][T14312] RDX: 0000000000040000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  564.802312][T14312] RBP: 00007f2eefa32d6f R08: 0000000000000000 R09: 0000000000000000
[  564.802333][T14312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  564.802353][T14312] R13: 00007f2eefc16038 R14: 00007f2eefc15fa0 R15: 00007ffeec081bb8
[  564.802396][T14312]  </TASK>
[  565.593948][T14318] FAULT_INJECTION: forcing a failure.
[  565.593948][T14318] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  565.623181][T14318] CPU: 0 UID: 0 PID: 14318 Comm: syz.0.1669 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  565.623233][T14318] Tainted: [L]=SOFTLOCKUP
[  565.623251][T14318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  565.623265][T14318] Call Trace:
[  565.623279][T14318]  <TASK>
[  565.623288][T14318]  dump_stack_lvl+0x100/0x190
[  565.623334][T14318]  should_fail_ex.cold+0x5/0xa
[  565.623363][T14318]  _copy_to_user+0x32/0xd0
[  565.623399][T14318]  simple_read_from_buffer+0xcb/0x170
[  565.623429][T14318]  proc_fail_nth_read+0x1af/0x230
[  565.623468][T14318]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  565.623520][T14318]  ? rw_verify_area+0xce/0x6d0
[  565.623543][T14318]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  565.623580][T14318]  vfs_read+0x1e4/0xb30
[  565.623608][T14318]  ? __pfx_vfs_read+0x10/0x10
[  565.623633][T14318]  ? __fget_files+0x215/0x3d0
[  565.623666][T14318]  ? __fget_files+0x21f/0x3d0
[  565.623701][T14318]  ksys_read+0x12a/0x250
[  565.623726][T14318]  ? __pfx_ksys_read+0x10/0x10
[  565.623754][T14318]  ? rcu_is_watching+0x12/0xc0
[  565.623786][T14318]  do_syscall_64+0x115/0x840
[  565.623818][T14318]  ? clear_bhb_loop+0x40/0x90
[  565.623846][T14318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  565.623869][T14318] RIP: 0033:0x7f2eef95d68e
[  565.623888][T14318] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  565.623911][T14318] RSP: 002b:00007f2ef07abfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  565.623932][T14318] RAX: ffffffffffffffda RBX: 00007f2ef07ac6c0 RCX: 00007f2eef95d68e
[  565.623947][T14318] RDX: 000000000000000f RSI: 00007f2ef07ac0a0 RDI: 0000000000000004
[  565.623960][T14318] RBP: 00007f2ef07ac090 R08: 0000000000000000 R09: 0000000000000000
[  565.623973][T14318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  565.623986][T14318] R13: 00007f2eefc16038 R14: 00007f2eefc15fa0 R15: 00007ffeec081bb8
[  565.624014][T14318]  </TASK>
[  566.170195][T14330] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  566.244603][T14327] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1670'.
[  566.999105][T14325] Process accounting paused
[  568.102022][T14367] FAULT_INJECTION: forcing a failure.
[  568.102022][T14367] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  568.146149][T14367] CPU: 0 UID: 0 PID: 14367 Comm: syz.4.1678 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  568.146198][T14367] Tainted: [L]=SOFTLOCKUP
[  568.146209][T14367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  568.146228][T14367] Call Trace:
[  568.146238][T14367]  <TASK>
[  568.146249][T14367]  dump_stack_lvl+0x100/0x190
[  568.146308][T14367]  should_fail_ex.cold+0x5/0xa
[  568.146348][T14367]  _copy_to_user+0x32/0xd0
[  568.146397][T14367]  simple_read_from_buffer+0xcb/0x170
[  568.146439][T14367]  proc_fail_nth_read+0x1af/0x230
[  568.146492][T14367]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  568.146546][T14367]  ? rw_verify_area+0xce/0x6d0
[  568.146584][T14367]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  568.146635][T14367]  vfs_read+0x1e4/0xb30
[  568.146676][T14367]  ? __pfx_vfs_read+0x10/0x10
[  568.146711][T14367]  ? __fget_files+0x215/0x3d0
[  568.146757][T14367]  ? __fget_files+0x21f/0x3d0
[  568.146806][T14367]  ksys_read+0x12a/0x250
[  568.146843][T14367]  ? __pfx_ksys_read+0x10/0x10
[  568.146883][T14367]  ? rcu_is_watching+0x12/0xc0
[  568.146925][T14367]  do_syscall_64+0x115/0x840
[  568.146970][T14367]  ? clear_bhb_loop+0x40/0x90
[  568.147009][T14367]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.147041][T14367] RIP: 0033:0x7f4c8ad5d68e
[  568.147068][T14367] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  568.147100][T14367] RSP: 002b:00007f4c8bc75fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  568.147131][T14367] RAX: ffffffffffffffda RBX: 00007f4c8bc766c0 RCX: 00007f4c8ad5d68e
[  568.147152][T14367] RDX: 000000000000000f RSI: 00007f4c8bc760a0 RDI: 0000000000000005
[  568.147171][T14367] RBP: 00007f4c8bc76090 R08: 0000000000000000 R09: 0000000000000000
[  568.147190][T14367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  568.147209][T14367] R13: 00007f4c8b016038 R14: 00007f4c8b015fa0 R15: 00007ffd4292f488
[  568.147252][T14367]  </TASK>
[  569.543792][T14394] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input13
[  569.785230][T14407] futex_wake_op: syz.1.1688 tries to shift op by -2048; fix this program
[  569.806711][T14407] futex_wake_op: syz.1.1688 tries to shift op by -2048; fix this program
[  569.894675][T14407] 0x000000000001-0x000000020000 : ""
[  569.996543][T14407] ftl_cs: FTL header corrupt!
[  571.189695][T14439] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1694'.
[  571.356959][T14439] bond0: (slave bond_slave_0): Releasing backup interface
[  571.577004][T14446] cifs: Unknown parameter '�����)�	Up��̢{��V]7�62']�Ψ��!�g�ʮ�7�9��fM�<*y�sE�h�
�'
[  571.648011][T14446] Invalid ELF header magic: != ELF
[  572.400504][T14447] FAULT_INJECTION: forcing a failure.
[  572.400504][T14447] name failslab, interval 1, probability 0, space 0, times 0
[  572.514184][T14447] CPU: 1 UID: 0 PID: 14447 Comm: syz.3.1695 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  572.514239][T14447] Tainted: [L]=SOFTLOCKUP
[  572.514251][T14447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  572.514271][T14447] Call Trace:
[  572.514281][T14447]  <TASK>
[  572.514294][T14447]  dump_stack_lvl+0x100/0x190
[  572.514359][T14447]  should_fail_ex.cold+0x5/0xa
[  572.514401][T14447]  ? create_ruleset+0x21/0x140
[  572.514436][T14447]  should_failslab+0xc2/0x120
[  572.514477][T14447]  __kmalloc_noprof+0xe0/0x850
[  572.514516][T14447]  create_ruleset+0x21/0x140
[  572.514554][T14447]  landlock_merge_ruleset+0xbb/0x830
[  572.514595][T14447]  ? prepare_creds+0x5ee/0x950
[  572.514632][T14447]  __do_sys_landlock_restrict_self+0x2af/0x9e0
[  572.514671][T14447]  ? rcu_is_watching+0x12/0xc0
[  572.514714][T14447]  do_syscall_64+0x115/0x840
[  572.514763][T14447]  ? clear_bhb_loop+0x40/0x90
[  572.514812][T14447]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.514847][T14447] RIP: 0033:0x7f5ebb99ce59
[  572.514874][T14447] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  572.514908][T14447] RSP: 002b:00007f5ebc890028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[  572.514940][T14447] RAX: ffffffffffffffda RBX: 00007f5ebbc16090 RCX: 00007f5ebb99ce59
[  572.514962][T14447] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000009
[  572.514992][T14447] RBP: 00007f5ebba32d6f R08: 0000000000000000 R09: 0000000000000000
[  572.515012][T14447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  572.515031][T14447] R13: 00007f5ebbc16128 R14: 00007f5ebbc16090 R15: 00007ffe0b62b4a8
[  572.515071][T14447]  </TASK>
[  575.329459][T14491] netlink: zone id is out of range
[  575.361890][T14491] netlink: zone id is out of range
[  575.493104][T14491] netlink: set zone limit has 8 unknown bytes
[  575.562867][T14501] Process accounting resumed
[  576.798360][T14536] FAULT_INJECTION: forcing a failure.
[  576.798360][T14536] name failslab, interval 1, probability 0, space 0, times 0
[  576.906231][T14536] CPU: 0 UID: 0 PID: 14536 Comm: syz.0.1714 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  576.906277][T14536] Tainted: [L]=SOFTLOCKUP
[  576.906285][T14536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  576.906299][T14536] Call Trace:
[  576.906306][T14536]  <TASK>
[  576.906326][T14536]  dump_stack_lvl+0x100/0x190
[  576.906370][T14536]  should_fail_ex.cold+0x5/0xa
[  576.906398][T14536]  ? tomoyo_realpath_from_path+0xb6/0x690
[  576.906440][T14536]  should_failslab+0xc2/0x120
[  576.906468][T14536]  __kmalloc_noprof+0xe0/0x850
[  576.906488][T14536]  ? kfree+0x1dd/0x6c0
[  576.906525][T14536]  tomoyo_realpath_from_path+0xb6/0x690
[  576.906567][T14536]  tomoyo_path_number_perm+0x23c/0x580
[  576.906594][T14536]  ? tomoyo_path_number_perm+0x22e/0x580
[  576.906624][T14536]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  576.906679][T14536]  ? find_held_lock+0x2b/0x80
[  576.906707][T14536]  ? __fget_files+0x215/0x3d0
[  576.906733][T14536]  ? hook_file_ioctl_common+0x149/0x410
[  576.906761][T14536]  ? __fget_files+0x215/0x3d0
[  576.906791][T14536]  ? __fget_files+0x21f/0x3d0
[  576.906822][T14536]  security_file_ioctl+0xd3/0x230
[  576.906851][T14536]  __x64_sys_ioctl+0xb7/0x210
[  576.906875][T14536]  do_syscall_64+0x115/0x840
[  576.906907][T14536]  ? clear_bhb_loop+0x40/0x90
[  576.906937][T14536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.906960][T14536] RIP: 0033:0x7f2eef99ce59
[  576.906978][T14536] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  576.907000][T14536] RSP: 002b:00007f2ef078b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  576.907021][T14536] RAX: ffffffffffffffda RBX: 00007f2eefc16090 RCX: 00007f2eef99ce59
[  576.907036][T14536] RDX: 0010000000000402 RSI: 0000000000005760 RDI: 0000000000000003
[  576.907050][T14536] RBP: 00007f2ef078b090 R08: 0000000000000000 R09: 0000000000000000
[  576.907064][T14536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  576.907077][T14536] R13: 00007f2eefc16128 R14: 00007f2eefc16090 R15: 00007ffeec081bb8
[  576.907106][T14536]  </TASK>
[  576.907123][T14536] ERROR: Out of memory at tomoyo_realpath_from_path.
[  577.055986][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  578.055278][    T0] NOHZ tick-stop error: local softirq work is pending, handler #28a!!!
[  579.379109][T14579] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1721'.
[  580.505077][T14594] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1725'.
[  580.871909][T14611] netlink: 'syz.3.1730': attribute type 1 has an invalid length.
[  582.595361][T14648] FAULT_INJECTION: forcing a failure.
[  582.595361][T14648] name fail_futex, interval 1, probability 0, space 0, times 0
[  582.690652][T14648] CPU: 1 UID: 0 PID: 14648 Comm: syz.3.1735 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  582.690699][T14648] Tainted: [L]=SOFTLOCKUP
[  582.690710][T14648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  582.690728][T14648] Call Trace:
[  582.690738][T14648]  <TASK>
[  582.690749][T14648]  dump_stack_lvl+0x100/0x190
[  582.690807][T14648]  should_fail_ex.cold+0x5/0xa
[  582.690847][T14648]  get_futex_key+0x1d2/0x1510
[  582.690904][T14648]  ? __pfx_get_futex_key+0x10/0x10
[  582.690968][T14648]  futex_wake+0xea/0x530
[  582.691008][T14648]  ? rcu_is_watching+0x12/0xc0
[  582.691085][T14648]  ? __pfx_futex_wake+0x10/0x10
[  582.691131][T14648]  ? putname+0xb1/0x110
[  582.691173][T14648]  ? kmem_cache_free+0x127/0x6c0
[  582.691232][T14648]  do_futex+0x32b/0x350
[  582.691267][T14648]  ? __pfx_do_futex+0x10/0x10
[  582.691298][T14648]  ? __pfx_do_sys_openat2+0x10/0x10
[  582.691352][T14648]  ? rcu_is_watching+0x12/0xc0
[  582.691396][T14648]  __x64_sys_futex+0x34f/0x4d0
[  582.691433][T14648]  ? __x64_sys_openat+0x12d/0x210
[  582.691486][T14648]  ? __pfx___x64_sys_futex+0x10/0x10
[  582.691529][T14648]  ? rcu_is_watching+0x12/0xc0
[  582.691572][T14648]  do_syscall_64+0x115/0x840
[  582.691627][T14648]  ? clear_bhb_loop+0x40/0x90
[  582.691672][T14648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.691706][T14648] RIP: 0033:0x7f5ebb99ce59
[  582.691733][T14648] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  582.691765][T14648] RSP: 002b:00007f5ebc84e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  582.691796][T14648] RAX: ffffffffffffffda RBX: 00007f5ebbc16278 RCX: 00007f5ebb99ce59
[  582.691817][T14648] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5ebbc1627c
[  582.691839][T14648] RBP: 00007f5ebbc16270 R08: 0000000000000001 R09: 0000000000000000
[  582.691859][T14648] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  582.691879][T14648] R13: 00007f5ebbc16308 R14: 00007ffe0b62b3c0 R15: 00007ffe0b62b4a8
[  582.691922][T14648]  </TASK>
[  584.130487][T14666] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  584.141706][T14666] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1740'.
[  584.185287][T14666] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1740'.
[  584.557665][T14676] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1741'.
[  586.251058][T14708] openvswitch: netlink: Key 4 has unexpected len 0 expected 12
[  588.974808][   T29] audit: type=1800 audit(4294967353.818:25): pid=14759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1759" name="dbroot" dev="configfs" ino=62728 res=0 errno=0
[  589.027976][T14759] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  589.054401][T14738] Process accounting resumed
[  589.069291][T14759] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  589.957558][T14777] FAULT_INJECTION: forcing a failure.
[  589.957558][T14777] name failslab, interval 1, probability 0, space 0, times 0
[  589.970790][T14777] CPU: 0 UID: 0 PID: 14777 Comm: syz.3.1764 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  589.970847][T14777] Tainted: [L]=SOFTLOCKUP
[  589.970860][T14777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  589.970880][T14777] Call Trace:
[  589.970892][T14777]  <TASK>
[  589.970905][T14777]  dump_stack_lvl+0x100/0x190
[  589.970973][T14777]  should_fail_ex.cold+0x5/0xa
[  589.971018][T14777]  should_failslab+0xc2/0x120
[  589.971067][T14777]  __kvmalloc_node_noprof+0xfa/0xa00
[  589.971103][T14777]  ? __v4l2_subdev_state_alloc+0x2c4/0x410
[  589.971146][T14777]  ? lockdep_init_map_type+0x5c/0x250
[  589.971187][T14777]  __v4l2_subdev_state_alloc+0x2c4/0x410
[  589.971234][T14777]  subdev_open+0xa6/0x510
[  589.971276][T14777]  v4l2_open+0x1d2/0x490
[  589.971330][T14777]  ? __pfx_v4l2_open+0x10/0x10
[  589.971382][T14777]  chrdev_open+0x234/0x6a0
[  589.971425][T14777]  ? __pfx_apparmor_file_open+0x10/0x10
[  589.971475][T14777]  ? __pfx_chrdev_open+0x10/0x10
[  589.971521][T14777]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  589.971576][T14777]  do_dentry_open+0x6ab/0x14d0
[  589.971616][T14777]  ? __pfx_chrdev_open+0x10/0x10
[  589.971667][T14777]  vfs_open+0x82/0x3f0
[  589.971721][T14777]  path_openat+0x208c/0x31a0
[  589.971771][T14777]  ? __pfx_event_filter_pid_sched_wakeup_probe_post+0x10/0x10
[  589.971826][T14777]  ? stack_depot_save_flags+0x27/0x9d0
[  589.971883][T14777]  ? __pfx_path_openat+0x10/0x10
[  589.971928][T14777]  ? kasan_save_stack+0x3f/0x50
[  589.971960][T14777]  ? kasan_save_stack+0x30/0x50
[  589.971992][T14777]  ? kasan_save_track+0x14/0x30
[  589.972024][T14777]  ? __kasan_slab_alloc+0x89/0x90
[  589.972067][T14777]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  589.972120][T14777]  ? do_getname+0x35/0x390
[  589.972194][T14777]  do_file_open+0x20e/0x430
[  589.972241][T14777]  ? __pfx_do_file_open+0x10/0x10
[  589.972323][T14777]  ? find_held_lock+0x2b/0x80
[  589.972366][T14777]  ? __might_fault+0xc5/0x140
[  589.972418][T14777]  ? __might_fault+0xc5/0x140
[  589.972477][T14777]  file_open_name+0x198/0x3b0
[  589.972532][T14777]  ? __pfx_file_open_name+0x10/0x10
[  589.972595][T14777]  ? do_getname+0x191/0x390
[  589.972650][T14777]  acct_on+0xa4/0x9e0
[  589.972694][T14777]  ? __pfx_acct_on+0x10/0x10
[  589.972747][T14777]  ? bpf_lsm_capable+0x9/0x10
[  589.972783][T14777]  ? security_capable+0x80/0x260
[  589.972821][T14777]  __x64_sys_acct+0x81/0x1e0
[  589.972860][T14777]  ? lockdep_hardirqs_on+0x78/0x100
[  589.972909][T14777]  do_syscall_64+0x115/0x840
[  589.972955][T14777]  ? clear_bhb_loop+0x40/0x90
[  589.972995][T14777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  589.973029][T14777] RIP: 0033:0x7f5ebb99ce59
[  589.973063][T14777] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  589.973095][T14777] RSP: 002b:00007f5ebc8b1028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[  589.973125][T14777] RAX: ffffffffffffffda RBX: 00007f5ebbc15fa0 RCX: 00007f5ebb99ce59
[  589.973147][T14777] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[  589.973166][T14777] RBP: 00007f5ebba32d6f R08: 0000000000000000 R09: 0000000000000000
[  589.973186][T14777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  589.973205][T14777] R13: 00007f5ebbc16038 R14: 00007f5ebbc15fa0 R15: 00007ffe0b62b4a8
[  589.973244][T14777]  </TASK>
[  590.967342][T10103] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  592.005593][T14832] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff81b0deaa (__mcheck_cpu_init_prepare_banks+0x18a/0x380)
[  592.021474][T14832] Call Trace:
[  592.024775][T14832]  <TASK>
[  592.027717][T14832]  ? __pfx___mcheck_cpu_init_prepare_banks+0x10/0x10
[  592.034426][T14832]  ? __pfx_call_function_single_prep_ipi+0x10/0x10
[  592.040989][T14832]  mce_cpu_restart+0xd5/0x1f0
[  592.045692][T14832]  ? __pfx_mce_cpu_restart+0x10/0x10
[  592.050995][T14832]  smp_call_function_many_cond+0x13d4/0x1700
[  592.057027][T14832]  ? __pfx_mce_cpu_restart+0x10/0x10
[  592.062355][T14832]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  592.068232][T14832]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  592.074626][T14832]  ? __pfx___try_to_del_timer_sync+0x10/0x10
[  592.080650][T14832]  ? __timer_delete_sync+0x151/0x1c0
[  592.085965][T14832]  ? __pfx_mce_cpu_restart+0x10/0x10
[  592.091280][T14832]  on_each_cpu_cond_mask+0x40/0x90
[  592.096441][T14832]  set_bank+0x240/0x3a0
[  592.100629][T14832]  ? __pfx_set_bank+0x10/0x10
[  592.105341][T14832]  ? find_held_lock+0x2b/0x80
[  592.110049][T14832]  ? sysfs_file_kobj+0xe4/0x290
[  592.114934][T14832]  ? sysfs_file_kobj+0xe4/0x290
[  592.119821][T14832]  ? __pfx_set_bank+0x10/0x10
[  592.124517][T14832]  dev_attr_store+0x58/0x80
[  592.129051][T14832]  ? __pfx_dev_attr_store+0x10/0x10
[  592.134268][T14832]  sysfs_kf_write+0xf2/0x150
[  592.138876][T14832]  kernfs_fop_write_iter+0x3e0/0x5f0
[  592.144191][T14832]  ? __pfx_sysfs_kf_write+0x10/0x10
[  592.149424][T14832]  vfs_write+0x6ac/0x1070
[  592.153776][T14832]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  592.159610][T14832]  ? __pfx_vfs_write+0x10/0x10
[  592.164414][T14832]  ksys_write+0x12a/0x250
[  592.168782][T14832]  ? __pfx_ksys_write+0x10/0x10
[  592.173658][T14832]  ? rcu_is_watching+0x12/0xc0
[  592.178455][T14832]  do_syscall_64+0x115/0x840
[  592.183074][T14832]  ? clear_bhb_loop+0x40/0x90
[  592.187770][T14832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.193683][T14832] RIP: 0033:0x7f4c8ad9ce59
[  592.198117][T14832] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  592.217780][T14832] RSP: 002b:00007f4c8bc76028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  592.226216][T14832] RAX: ffffffffffffffda RBX: 00007f4c8b015fa0 RCX: 00007f4c8ad9ce59
[  592.234218][T14832] RDX: 0000000000000003 RSI: 0000200000000240 RDI: 0000000000000003
[  592.242214][T14832] RBP: 00007f4c8ae32d6f R08: 0000000000000000 R09: 0000000000000000
[  592.250197][T14832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  592.258179][T14832] R13: 00007f4c8b016038 R14: 00007f4c8b015fa0 R15: 00007ffd4292f488
[  592.266196][T14832]  </TASK>
[  594.762102][T14882] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  596.778888][T14927] netlink: 'syz.0.1795': attribute type 1 has an invalid length.
[  597.014706][T14934] forcing mempool usage for __sg_alloc_table+0x250/0x490
[  597.758386][T14926] Process accounting resumed
[  598.493915][T14946] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1797'.
[  601.974711][T15020] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  602.360349][T10103] Bluetooth: hci3: SCO packet for unknown connection handle 0
[  603.474921][T15071] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1826'.
[  603.647594][T15076] syz_tun: tun_chr_ioctl cmd 2147767511
[  605.629994][T15086] Process accounting paused
[  605.656034][T15115] bridge0: port 3(batadv0) entered blocking state
[  605.680997][T15115] bridge0: port 3(batadv0) entered disabled state
[  605.701896][T15099] vcan0: tx drop: invalid da for name 0x000000000000003f
[  605.723804][T15115] batadv0: entered allmulticast mode
[  605.760408][T15115] batadv0: entered promiscuous mode
[  605.798239][T15115] bridge0: port 3(batadv0) entered blocking state
[  605.805017][T15115] bridge0: port 3(batadv0) entered forwarding state
[  606.084795][T10103] Bluetooth: hci0: unexpected event 0x10 length: 124 > 1
[  606.088180][T10103] Bluetooth: hci0: hardware error 0x00
[  606.151791][T10905] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  606.161583][T10905] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  607.417173][T15132] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1838'.
[  607.557356][T15148] cifs: Unknown parameter '�����)�	Up��̢{��V]7�62']�Ψ��!�g�ʮ�7�9��fM�<*y�sE�h�
�'
[  607.669966][T15148] Invalid ELF header magic: != ELF
[  608.308319][T10103] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  608.822569][T15167] netlink: 86 bytes leftover after parsing attributes in process `syz.1.1847'.
[  609.127264][T15177] cifs: Unknown parameter '�����)�	Up��̢{��V]7�62']�Ψ��!�g�ʮ�7�9��fM�<*y�sE�h�
�'
[  609.190016][T15177] Invalid ELF header magic: != ELF
[  610.677240][T15200] zram: Added device: zram0
[  610.715069][T15209] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  611.394334][T15211] Process accounting resumed
[  612.681241][T15264] sysfs_service_op_store: Client not running :-5:
[  624.379674][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  624.386432][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  685.792000][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  685.798833][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  747.192229][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  747.198618][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  768.300363][   T30] INFO: task jbd2/sda1-8:4959 blocked in I/O wait for more than 143 seconds.
[  768.309197][   T30]       Tainted: G             L      syzkaller #0
[  768.315814][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  768.324580][   T30] task:jbd2/sda1-8     state:D stack:26104 pid:4959  tgid:4959  ppid:2      task_flags:0x240040 flags:0x00080000
[  768.337511][   T30] Call Trace:
[  768.340926][   T30]  <TASK>
[  768.343896][   T30]  __schedule+0x1295/0x67a0
[  768.348452][   T30]  ? __pfx___schedule+0x10/0x10
[  768.354034][   T30]  ? find_held_lock+0x2b/0x80
[  768.358752][   T30]  ? schedule+0x2bf/0x390
[  768.363213][   T30]  schedule+0xdd/0x390
[  768.367329][   T30]  io_schedule+0x8a/0xf0
[  768.371675][   T30]  bit_wait_io+0xd/0xe0
[  768.375898][   T30]  __wait_on_bit+0x65/0x180
[  768.380506][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  768.385512][   T30]  out_of_line_wait_on_bit+0xdc/0x110
[  768.391091][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  768.397137][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  768.402966][   T30]  ? __pfx___might_resched+0x10/0x10
[  768.408361][   T30]  __wait_on_buffer+0x64/0x70
[  768.413142][   T30]  jbd2_journal_commit_transaction+0x388a/0x6870
[  768.419583][   T30]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[  768.426366][   T30]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  768.432296][   T30]  ? debug_object_deactivate+0x2e4/0x3b0
[  768.438681][   T30]  ? __pfx_debug_object_deactivate+0x10/0x10
[  768.444923][   T30]  ? find_held_lock+0x2b/0x80
[  768.449675][   T30]  ? __try_to_del_timer_sync+0x107/0x160
[  768.455502][   T30]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  768.461415][   T30]  ? __timer_delete_sync+0x151/0x1c0
[  768.466732][   T30]  kjournald2+0x200/0x760
[  768.471167][   T30]  ? __pfx_kjournald2+0x10/0x10
[  768.476102][   T30]  ? find_held_lock+0x2b/0x80
[  768.480906][   T30]  ? __kthread_parkme+0xbb/0x230
[  768.485902][   T30]  ? rcu_is_watching+0x12/0xc0
[  768.490760][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  768.496893][   T30]  ? __kthread_parkme+0x18c/0x230
[  768.502053][   T30]  ? kthread+0x13a/0x450
[  768.506392][   T30]  ? __pfx_kjournald2+0x10/0x10
[  768.511338][   T30]  kthread+0x370/0x450
[  768.515475][   T30]  ? __pfx_kthread+0x10/0x10
[  768.520149][   T30]  ret_from_fork+0x72b/0xd50
[  768.524788][   T30]  ? __pfx_ret_from_fork+0x10/0x10
[  768.530027][   T30]  ? __switch_to+0x800/0x1100
[  768.534758][   T30]  ? __switch_to_asm+0x39/0x70
[  768.540002][   T30]  ? __pfx_kthread+0x10/0x10
[  768.545564][   T30]  ret_from_fork_asm+0x1a/0x30
[  768.550512][   T30]  </TASK>
[  768.553601][   T30] INFO: task syz-executor:5618 blocked in I/O wait for more than 143 seconds.
[  768.562547][   T30]       Tainted: G             L      syzkaller #0
[  768.569079][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  768.577848][   T30] task:syz-executor    state:D stack:22664 pid:5618  tgid:5618  ppid:5617   task_flags:0x440100 flags:0x00080000
[  768.589945][   T30] Call Trace:
[  768.593275][   T30]  <TASK>
[  768.596237][   T30]  __schedule+0x1295/0x67a0
[  768.600867][   T30]  ? __pfx___schedule+0x10/0x10
[  768.605800][   T30]  ? find_held_lock+0x2b/0x80
[  768.610587][   T30]  ? schedule+0x2bf/0x390
[  768.614976][   T30]  schedule+0xdd/0x390
[  768.619071][   T30]  io_schedule+0x8a/0xf0
[  768.623458][   T30]  bit_wait_io+0xd/0xe0
[  768.627683][   T30]  __wait_on_bit+0x65/0x180
[  768.632429][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  768.637503][   T30]  out_of_line_wait_on_bit+0xdc/0x110
[  768.643723][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  768.649813][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  768.655432][   T30]  do_get_write_access+0x84f/0x1220
[  768.660744][   T30]  jbd2_journal_get_write_access+0x1d6/0x280
[  768.666794][   T30]  __ext4_journal_get_write_access+0x6a/0x340
[  768.672994][   T30]  ext4_reserve_inode_write+0x1b7/0x330
[  768.678592][   T30]  __ext4_mark_inode_dirty+0x18f/0x890
[  768.684176][   T30]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  768.690295][   T30]  ? trace_jbd2_handle_start+0x82/0x260
[  768.695898][   T30]  ? jbd2__journal_start+0xf7/0x6a0
[  768.701195][   T30]  ? __ext4_journal_start_sb+0x36d/0x670
[  768.706890][   T30]  ? __ext4_journal_start_sb+0x1ce/0x670
[  768.712636][   T30]  ? ext4_dirty_inode+0xa1/0x130
[  768.717638][   T30]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  768.723118][   T30]  ext4_dirty_inode+0xd9/0x130
[  768.727955][   T30]  ? rcu_is_watching+0x12/0xc0
[  768.732798][   T30]  __mark_inode_dirty+0x1f3/0x1720
[  768.737964][   T30]  file_update_time_flags+0x46b/0x500
[  768.744132][   T30]  ext4_page_mkwrite+0x324/0x1890
[  768.749233][   T30]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  768.755047][   T30]  ? vm_normal_page+0x1d5/0x390
[  768.760049][   T30]  ? find_held_lock+0x2b/0x80
[  768.764775][   T30]  ? rcu_read_unlock+0x2d/0xb0
[  768.769570][   T30]  do_page_mkwrite+0x17a/0x440
[  768.774418][   T30]  do_wp_page+0xa77/0x4350
[  768.778915][   T30]  ? __pfx_do_wp_page+0x10/0x10
[  768.787825][   T30]  ? do_raw_spin_lock+0x128/0x260
[  768.793104][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  768.798552][   T30]  __handle_mm_fault+0x1ab6/0x2a00
[  768.803808][   T30]  ? reacquire_held_locks+0xce/0x1e0
[  768.809172][   T30]  ? __pfx___handle_mm_fault+0x10/0x10
[  768.814736][   T30]  ? lock_vma_under_rcu+0x17c/0x590
[  768.820064][   T30]  handle_mm_fault+0x37b/0xa30
[  768.824902][   T30]  do_user_addr_fault+0x5a3/0x12f0
[  768.830105][   T30]  exc_page_fault+0x6f/0xd0
[  768.834672][   T30]  asm_exc_page_fault+0x26/0x30
[  768.839539][   T30] RIP: 0033:0x7fe7a0e6efc3
[  768.844636][   T30] RSP: 002b:00007ffcf785fa30 EFLAGS: 00010202
[  768.850822][   T30] RAX: 00007fe79bc00000 RBX: 00007ffcf785fb60 RCX: 00000000003ffde8
[  768.858869][   T30] RDX: 00007fe79bbffffc RSI: 0000000000000008 RDI: 00007ffcf785fb60
[  768.866930][   T30] RBP: 00000000000003e6 R08: 0000000000000000 R09: 0000000000000000
[  768.874987][   T30] R10: 00007ffcf785fb40 R11: 0000000000000000 R12: 0000000000000000
[  768.883083][   T30] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  768.891182][   T30]  </TASK>
[  768.894237][   T30] INFO: task kworker/u10:2:9716 blocked in I/O wait for more than 143 seconds.
[  768.903235][   T30]       Tainted: G             L      syzkaller #0
[  768.909802][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  768.918495][   T30] task:kworker/u10:2   state:D stack:24376 pid:9716  tgid:9716  ppid:2      task_flags:0x4248160 flags:0x00080000
[  768.930639][   T30] Workqueue: writeback wb_workfn (flush-8:0)
[  768.936676][   T30] Call Trace:
[  768.944678][   T30]  <TASK>
[  768.948379][   T30]  __schedule+0x1295/0x67a0
[  768.953024][   T30]  ? __pfx_blk_mq_flush_plug_list+0x10/0x10
[  768.959071][   T30]  ? __pfx___schedule+0x10/0x10
[  768.964012][   T30]  ? find_held_lock+0x2b/0x80
[  768.968791][   T30]  ? schedule+0x2bf/0x390
[  768.973266][   T30]  schedule+0xdd/0x390
[  768.977408][   T30]  io_schedule+0x8a/0xf0
[  768.981794][   T30]  folio_wait_bit_common+0x414/0xa70
[  768.987198][   T30]  ? folio_wait_bit_common+0x2a0/0xa70
[  768.992851][   T30]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  768.998767][   T30]  ? __pfx_wake_page_function+0x10/0x10
[  769.004461][   T30]  ? __pfx___might_resched+0x10/0x10
[  769.009859][   T30]  ? __kasan_slab_alloc+0x89/0x90
[  769.014938][   T30]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  769.020735][   T30]  ? ext4_init_io_end+0x24/0x170
[  769.025750][   T30]  mpage_prepare_extent_to_map+0xcc9/0x1920
[  769.031761][   T30]  ? __pfx_mpage_prepare_extent_to_map+0x10/0x10
[  769.038178][   T30]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  769.044004][   T30]  ? ext4_init_io_end+0x24/0x170
[  769.049765][   T30]  ext4_do_writepages+0x9fe/0x3f20
[  769.054985][   T30]  ? __lock_acquire+0x4a5/0x2630
[  769.060081][   T30]  ? __pfx_ext4_do_writepages+0x10/0x10
[  769.065691][   T30]  ? ext4_writepages+0x347/0x790
[  769.070731][   T30]  ext4_writepages+0x347/0x790
[  769.075536][   T30]  ? __pfx_ext4_writepages+0x10/0x10
[  769.080933][   T30]  ? __pfx_ext4_writepages+0x10/0x10
[  769.086374][   T30]  do_writepages+0x278/0x600
[  769.091067][   T30]  ? __pfx_do_writepages+0x10/0x10
[  769.096254][   T30]  __writeback_single_inode+0x164/0x1350
[  769.102021][   T30]  ? find_held_lock+0x2b/0x80
[  769.106756][   T30]  ? __pfx___writeback_single_inode+0x10/0x10
[  769.112940][   T30]  ? do_raw_spin_unlock+0x145/0x1e0
[  769.118203][   T30]  writeback_sb_inodes+0x766/0x1c60
[  769.123489][   T30]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  769.129197][   T30]  ? _raw_spin_unlock+0x28/0x50
[  769.134133][   T30]  ? move_expired_inodes+0x5ea/0x8f0
[  769.139488][   T30]  __writeback_inodes_wb+0xf8/0x2d0
[  769.144808][   T30]  ? __pfx___writeback_inodes_wb+0x10/0x10
[  769.151415][   T30]  ? queue_io+0x287/0x540
[  769.155817][   T30]  wb_writeback+0x720/0xb90
[  769.160418][   T30]  ? __pfx_wb_writeback+0x10/0x10
[  769.165589][   T30]  ? mark_held_locks+0x40/0x70
[  769.170467][   T30]  wb_workfn+0x756/0xc00
[  769.174758][   T30]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  769.180685][   T30]  ? __pfx_wb_workfn+0x10/0x10
[  769.185508][   T30]  ? rcu_is_watching+0x12/0xc0
[  769.190388][   T30]  process_one_work+0xa0e/0x1980
[  769.195410][   T30]  ? __pfx_process_one_work+0x10/0x10
[  769.200877][   T30]  ? __pfx_wb_workfn+0x10/0x10
[  769.205685][   T30]  worker_thread+0x5ef/0xe50
[  769.210364][   T30]  ? __pfx_worker_thread+0x10/0x10
[  769.215511][   T30]  ? kthread+0x13a/0x450
[  769.219864][   T30]  ? __pfx_worker_thread+0x10/0x10
[  769.225024][   T30]  kthread+0x370/0x450
[  769.230880][   T30]  ? __pfx_kthread+0x10/0x10
[  769.235548][   T30]  ret_from_fork+0x72b/0xd50
[  769.240236][   T30]  ? __pfx_ret_from_fork+0x10/0x10
[  769.245406][   T30]  ? __switch_to+0x800/0x1100
[  769.250185][   T30]  ? __switch_to_asm+0x39/0x70
[  769.255573][   T30]  ? __pfx_kthread+0x10/0x10
[  769.260392][   T30]  ret_from_fork_asm+0x1a/0x30
[  769.265264][   T30]  </TASK>
[  769.268348][   T30] INFO: task syz.3.1864:15270 blocked in I/O wait for more than 144 seconds.
[  769.277234][   T30]       Tainted: G             L      syzkaller #0
[  769.283794][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  769.292565][   T30] task:syz.3.1864      state:D stack:28424 pid:15270 tgid:15250 ppid:5636   task_flags:0x440140 flags:0x00080002
[  769.304701][   T30] Call Trace:
[  769.308021][   T30]  <TASK>
[  769.311031][   T30]  __schedule+0x1295/0x67a0
[  769.315584][   T30]  ? __pfx_blk_mq_flush_plug_list+0x10/0x10
[  769.321583][   T30]  ? __pfx___schedule+0x10/0x10
[  769.326484][   T30]  ? find_held_lock+0x2b/0x80
[  769.331298][   T30]  ? schedule+0x2bf/0x390
[  769.335696][   T30]  schedule+0xdd/0x390
[  769.339898][   T30]  io_schedule+0x8a/0xf0
[  769.344210][   T30]  folio_wait_bit_common+0x414/0xa70
[  769.349622][   T30]  ? folio_wait_bit_common+0x2a0/0xa70
[  769.355862][   T30]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  769.361870][   T30]  ? filemap_get_folios_tag+0x420/0xbb0
[  769.367483][   T30]  ? __pfx_wake_page_function+0x10/0x10
[  769.373122][   T30]  ? rcu_is_watching+0x12/0xc0
[  769.377942][   T30]  folio_wait_writeback+0x92/0x130
[  769.383178][   T30]  mpage_prepare_extent_to_map+0x82c/0x1920
[  769.389171][   T30]  ? __pfx_mpage_prepare_extent_to_map+0x10/0x10
[  769.395682][   T30]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  769.401438][   T30]  ? ext4_init_io_end+0x24/0x170
[  769.406412][   T30]  ext4_do_writepages+0x9fe/0x3f20
[  769.411607][   T30]  ? do_raw_spin_lock+0x128/0x260
[  769.416694][   T30]  ? tick_program_event+0xb0/0x140
[  769.421903][   T30]  ? hrtimer_start_range_ns+0x860/0x1a50
[  769.427616][   T30]  ? __pfx_ext4_do_writepages+0x10/0x10
[  769.433282][   T30]  ? ext4_writepages+0x347/0x790
[  769.438265][   T30]  ext4_writepages+0x347/0x790
[  769.443133][   T30]  ? __pfx_ext4_writepages+0x10/0x10
[  769.448502][   T30]  ? __pfx_ext4_writepages+0x10/0x10
[  769.453895][   T30]  do_writepages+0x278/0x600
[  769.459252][   T30]  ? __pfx_do_writepages+0x10/0x10
[  769.464521][   T30]  ? do_raw_spin_unlock+0x145/0x1e0
[  769.469817][   T30]  ? _raw_spin_unlock+0x28/0x50
[  769.474699][   T30]  filemap_writeback+0x22d/0x2e0
[  769.479744][   T30]  ? __pfx_filemap_writeback+0x10/0x10
[  769.485291][   T30]  ? mt_find+0x45e/0x8e0
[  769.489649][   T30]  ? __pfx_mt_find+0x10/0x10
[  769.494302][   T30]  file_write_and_wait_range+0xcd/0x140
[  769.499988][   T30]  ext4_sync_file+0x358/0xb90
[  769.504732][   T30]  ? __pfx_ext4_sync_file+0x10/0x10
[  769.510036][   T30]  ? __up_read+0x210/0x6e0
[  769.514505][   T30]  ? __pfx___up_read+0x10/0x10
[  769.519320][   T30]  ? __do_sys_msync+0x39b/0x590
[  769.524270][   T30]  ? __pfx_ext4_sync_file+0x10/0x10
[  769.529555][   T30]  vfs_fsync_range+0x9b/0x190
[  769.534302][   T30]  __do_sys_msync+0x3ca/0x590
[  769.539007][   T30]  do_syscall_64+0x115/0x840
[  769.543714][   T30]  ? clear_bhb_loop+0x40/0x90
[  769.548447][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  769.554456][   T30] RIP: 0033:0x7f5ebb99ce59
[  769.558914][   T30] RSP: 002b:00007f5ebc84e028 EFLAGS: 00000246 ORIG_RAX: 000000000000001a
[  769.568068][   T30] RAX: ffffffffffffffda RBX: 00007f5ebbc16270 RCX: 00007f5ebb99ce59
[  769.576167][   T30] RDX: 0000000400000004 RSI: 01800000000000fe RDI: 000000001ffff000
[  769.584918][   T30] RBP: 00007f5ebba32d6f R08: 0000000000000000 R09: 0000000000000000
[  769.593014][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  769.601068][   T30] R13: 00007f5ebbc16308 R14: 00007f5ebbc16270 R15: 00007ffe0b62b4a8
[  769.609097][   T30]  </TASK>
[  769.612260][   T30] 
[  769.612260][   T30] Showing all locks held in the system:
[  769.620083][   T30] 1 lock held by khungtaskd/30:
[  769.624965][   T30]  #0: ffffffff8e7e5420 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[  769.634949][   T30] 3 locks held by syz-executor/5618:
[  769.640298][   T30]  #0: ffff88823befa088 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x11d/0x590
[  769.649902][   T30]  #1: ffff8880367de508 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x17a/0x440
[  769.659773][   T30]  #2: ffff8880367da938 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xfaa/0x13a0
[  769.670394][   T30] 4 locks held by kworker/u10:2/9716:
[  769.675840][   T30]  #0: ffff888020ea9140 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[  769.686802][   T30]  #1: ffffc90003c4fd08 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[  769.698793][   T30]  #2: ffff8880367de0d8 (&type->s_umount_key#33){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0
[  769.709516][   T30]  #3: ffff8880367dcc18 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x278/0x600
[  769.719932][   T30] 2 locks held by getty/14332:
[  769.724708][   T30]  #0: ffff8880394660a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  769.734696][   T30]  #1: ffffc900046532e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x14f0
[  769.744934][   T30] 1 lock held by syz.3.1864/15270:
[  769.750132][   T30]  #0: ffff8880367dcc18 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x278/0x600
[  769.760539][   T30] 
[  769.762884][   T30] =============================================
[  769.762884][   T30] 
[  769.772123][   T30] NMI backtrace for cpu 1
[  769.772150][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  769.772200][   T30] Tainted: [L]=SOFTLOCKUP
[  769.772210][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  769.772228][   T30] Call Trace:
[  769.772237][   T30]  <TASK>
[  769.772248][   T30]  dump_stack_lvl+0x100/0x190
[  769.772303][   T30]  nmi_cpu_backtrace.cold+0x12d/0x151
[  769.772337][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  769.772360][   T30]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[  769.772388][   T30]  sys_info+0x141/0x190
[  769.772406][   T30]  watchdog+0xcb1/0x1030
[  769.772440][   T30]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  769.772470][   T30]  ? __pfx_watchdog+0x10/0x10
[  769.772500][   T30]  ? __kthread_parkme+0x18c/0x230
[  769.772530][   T30]  ? kthread+0x13a/0x450
[  769.772560][   T30]  ? __pfx_watchdog+0x10/0x10
[  769.772587][   T30]  kthread+0x370/0x450
[  769.772617][   T30]  ? __pfx_kthread+0x10/0x10
[  769.772651][   T30]  ret_from_fork+0x72b/0xd50
[  769.772675][   T30]  ? __pfx_ret_from_fork+0x10/0x10
[  769.772699][   T30]  ? __switch_to+0x800/0x1100
[  769.772726][   T30]  ? __switch_to_asm+0x39/0x70
[  769.772753][   T30]  ? __pfx_kthread+0x10/0x10
[  769.772786][   T30]  ret_from_fork_asm+0x1a/0x30
[  769.772829][   T30]  </TASK>
[  769.772845][   T30] Sending NMI from CPU 1 to CPUs 0:
[  769.910218][    C0] NMI backtrace for cpu 0
[  769.910247][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  769.910283][    C0] Tainted: [L]=SOFTLOCKUP
[  769.910305][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  769.910320][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  769.910360][    C0] Code: f5 95 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d a3 df 24 00 fb f4 <e9> fc 43 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  769.910385][    C0] RSP: 0018:ffffffff8e407e00 EFLAGS: 00000246
[  769.910405][    C0] RAX: 00000000003c1a8b RBX: ffffffff8e4955c0 RCX: ffffffff8b86b285
[  769.910423][    C0] RDX: 0000000000000000 RSI: ffffffff8df19d81 RDI: ffffffff8c1c4380
[  769.910439][    C0] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed10170867b5
[  769.910455][    C0] R10: ffff8880b8433dab R11: 0000000000000000 R12: 0000000000000000
[  769.910471][    C0] R13: fffffbfff1c92ab8 R14: 0000000000000000 R15: ffffffff90d73250
[  769.910488][    C0] FS:  0000000000000000(0000) GS:ffff88812438b000(0000) knlGS:0000000000000000
[  769.910511][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  769.910528][    C0] CR2: 000055f0c234d168 CR3: 00000000365b8000 CR4: 00000000003526f0
[  769.910544][    C0] Call Trace:
[  769.910552][    C0]  <TASK>
[  769.910560][    C0]  default_idle+0x9/0x10
[  769.910588][    C0]  default_idle_call+0x6c/0xb0
[  769.910629][    C0]  do_idle+0x464/0x590
[  769.910668][    C0]  ? __pfx_do_idle+0x10/0x10
[  769.910702][    C0]  ? finish_task_switch.isra.0+0x152/0x1010
[  769.910741][    C0]  cpu_startup_entry+0x4f/0x60
[  769.910773][    C0]  rest_init+0x251/0x260
[  769.910798][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  769.910827][    C0]  start_kernel+0x484/0x490
[  769.910869][    C0]  x86_64_start_reservations+0x24/0x30
[  769.910894][    C0]  x86_64_start_kernel+0x12b/0x130
[  769.910920][    C0]  common_startup_64+0x13e/0x148
[  769.910961][    C0]  </TASK>
[  770.104620][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  770.111518][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  770.122254][   T30] Tainted: [L]=SOFTLOCKUP
[  770.126585][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  770.136647][   T30] Call Trace:
[  770.139944][   T30]  <TASK>
[  770.142883][   T30]  dump_stack_lvl+0x100/0x190
[  770.147591][   T30]  vpanic+0x552/0x970
[  770.151619][   T30]  ? __pfx_vpanic+0x10/0x10
[  770.156148][   T30]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[  770.162325][   T30]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[  770.168496][   T30]  panic+0xd1/0xe0
[  770.172224][   T30]  ? __pfx_panic+0x10/0x10
[  770.176670][   T30]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[  770.182857][   T30]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[  770.189028][   T30]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[  770.195221][   T30]  ? watchdog.cold+0x1ec/0x234
[  770.200019][   T30]  ? watchdog+0xcc1/0x1030
[  770.204454][   T30]  watchdog.cold+0x1fd/0x234
[  770.209085][   T30]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  770.214943][   T30]  ? __pfx_watchdog+0x10/0x10
[  770.219647][   T30]  ? __kthread_parkme+0x18c/0x230
[  770.224697][   T30]  ? kthread+0x13a/0x450
[  770.228961][   T30]  ? __pfx_watchdog+0x10/0x10
[  770.233661][   T30]  kthread+0x370/0x450
[  770.237756][   T30]  ? __pfx_kthread+0x10/0x10
[  770.242374][   T30]  ret_from_fork+0x72b/0xd50
[  770.246978][   T30]  ? __pfx_ret_from_fork+0x10/0x10
[  770.252100][   T30]  ? __switch_to+0x800/0x1100
[  770.256802][   T30]  ? __switch_to_asm+0x39/0x70
[  770.261595][   T30]  ? __pfx_kthread+0x10/0x10
[  770.266217][   T30]  ret_from_fork_asm+0x1a/0x30
[  770.271013][   T30]  </TASK>
[  770.274782][   T30] Kernel Offset: disabled
[  770.279126][   T30] Rebooting in 86400 seconds..