last executing test programs:

6.596522285s ago: executing program 1 (id=1372):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_open$auto(0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14)
ioctl$auto(r0, 0x2, 0x4)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x3, 0x0, 0x7, 0x0)

6.368457173s ago: executing program 1 (id=1374):
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
r2 = socket(0x10, 0x2, 0x4)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010337bd7000ffdbdf25100000000c00018008"], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x80000)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef)

6.053726776s ago: executing program 1 (id=1375):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
write$auto(0x3, 0x0, 0x1)
write$auto(0x3, 0x0, 0xfffffdef)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/bond0/bonding/arp_validate\x00', 0x2202, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
fanotify_init$auto(0x5, 0x0)
io_uring_setup$auto(0xf00, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x1, 0xbc3, 0x0, 0x3, 0x5, 0x10001, 0x400000000003, 0x5, 0xffffffffffffffff, 0xfffffffffffffffe, 0x6, 0x9, 0xffffffffffffff81, 0x4]}, 0x0)

5.667755062s ago: executing program 2 (id=1377):
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7f, 0x9)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff000}})
r1 = open(0x0, 0x161342, 0x130)
fchmod$auto(r1, 0xa)
open(0x0, 0x161342, 0x100)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x6, 0x2)
mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000)

5.556909171s ago: executing program 1 (id=1379):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x1, 0x84)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x5, 0x7}, 0x8}, 0xffffffff, 0xb00)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)

5.136704554s ago: executing program 3 (id=1380):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
socket(0x2, 0x80002, 0x73)
bind$auto(0x3, 0x0, 0x6a)
connect$auto(0x3, 0x0, 0x54)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
read$auto(r0, 0x0, 0x10001)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000240)={0x0, 0x7}, 0x2)
sysfs$auto(0x2, 0x24, 0x0)
r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r2, 0x0, 0xaf0)

4.653014877s ago: executing program 1 (id=1381):
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x20000000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0x100000a3d9)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x20a00, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0)
ioctl$auto_UBI_IOCATT(r1, 0x40186f40, 0x0)
ioctl$auto_UBI_IOCDET(r1, 0x40046f41, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x4020009, 0xdf, 0x40000eb1, 0x401, 0x8000)
clone$auto(0x100000008, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4000006)
clone$auto(0x1, 0x1, 0x0, 0x0, 0x2)

4.608448817s ago: executing program 2 (id=1389):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x272981, 0x0)
r0 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/mountinfo\x00', 0x40002, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffff000)
sendfile$auto(r0, r0, 0x0, 0x788b)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd12/queue/nomerges\x00', 0xc0002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r1, 0x0, 0x0)
unshare$auto(0x40000080)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, 0x0, 0xc800)
mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8003)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
write$auto(r2, 0x0, 0x800000006)
ioctl$auto_SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000180)="dd06d1574c0a1719baadf81f683297e8af14b4dad2728892c747c5e01a1b7165a54b36471475e5b56eef9a6bd918ceb4aef4e8bcdd0f2bd3802806ade24a889ac8e25bd16ed461f77747f93e2c4e9d6014a2c6208ecf3c9961")

4.607099292s ago: executing program 0 (id=1382):
mmap$auto(0x0, 0x4005, 0xb, 0x40eb2, 0x401, 0x300000000000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r0 = socket(0xa, 0x2, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x18, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x240202, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r0)
ioctl$auto_KVM_CREATE_VM(r1, 0x4040ae9e, 0x0)

4.149227779s ago: executing program 2 (id=1383):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8000000000000000, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000180)={0x1, 0x7, 0x6})
r0 = socket(0x1e, 0x4, 0x0)
connect$auto(r0, &(0x7f0000000000)=@tipc=@name={0x1e, 0x2, 0x1, {{0x1, 0x1}}}, 0x10)
read$auto(0xffffffffffffffff, 0x0, 0x10001)
timer_create$auto(0x2, &(0x7f0000000140)={@sival_ptr=&(0x7f0000000080)="5c72327a232ea80c44a0be8a29d89f52e76df1c0405314b8fc9abf52ed8f427e6ccf8b293c4c6c0d0f82eaa9953755af56d363a57fc03f74ae33ae589d7bc2b525ee1e94a1ed82e5e29aa4f9b1075043ae2b4713fd380bbde0c81a5c072724a38968642cbac16848721867917fc1124a08dfa74f541f9dc6eb2b3c3510c1851147b5ebf186dc67d623ab", @raw=0x6, 0xe}, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
socket(0x2, 0x80002, 0x73)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
ptrace$auto_PTRACE_INTERRUPT(0x4207, 0x0, 0x0, 0xffffffffffffffff)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)

4.147128822s ago: executing program 0 (id=1384):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
pread64$auto(0xffffffffffffffff, 0x0, 0x3, 0x5ef6)
madvise$auto(0xfffffffffffffffc, 0x8001, 0x19)
syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x90006441, 0xc35)
statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44f, 0xa, 0x10, 0x1007181, 0x0, 0x62, 0x7, 0x800, 0x0, 0x26, 0x4, 0x200003fffffe, 0xfffffffffffffff5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x862, 0xf, 0x22002, 0x200, 0x0, 0x62f, 0x6, 0x0, 0x0, 0x0, 0xb626, [0xfffffffffffffffe, 0xffffffffffff04ef, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9e, 0x0, 0xa7, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x40, 0x81, 0x8a0, 0xb, 0x81, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100002, 0x0, 0x3ff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4000000000000]}, 0x800000000000b, 0xbc)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd0c, &(0x7f00000001c0))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x80045438, 0x0)

3.587449641s ago: executing program 3 (id=1385):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r0, 0x1, 0x7ff)
ptrace$auto(0xc, r0, 0x9, 0xfffffffffffff6de)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto_TIOCSTI2(r2, 0x5412, &(0x7f0000000040)="158f4a2b")
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
read$auto(r3, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)
write$auto(r1, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0xb)

3.530325932s ago: executing program 2 (id=1386):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x202, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
chdir$auto(0x0)
unlinkat$auto(0xffffffffffffffff, 0x0, 0x200)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0xa, 0x5, 0x0)
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x40001, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(r0, &(0x7f00000001c0)={{0x0, 0x1aa, 0x0, 0x6, 0x0, 0x0, 0x1002}, 0x5}, 0x2, 0x100)
bpf$auto(0xf7fff011, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x4, 0xfaae, 0x468, 0x9, 0x2, 0x8, 0x3, 0x4, 0x1ff, 0x5, 0xb5, 0x4, 0x806, 0xd9ee}, 0xa3)
writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x200)

3.314425951s ago: executing program 2 (id=1387):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x11, 0xa, 0x300)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)

2.733753986s ago: executing program 3 (id=1388):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
mprotect$auto(0x0, 0x806121, 0x8)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000280)={0x14, r1, 0xf3e97f51700e57cf, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8020)

2.731591628s ago: executing program 0 (id=1390):
mmap$auto(0x0, 0x200, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_DROP(0xffffffffffffffff, 0x40045730, &(0x7f0000000180)=0xc0000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000500)='/dev/ram0\x00', 0x147480, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x801)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x84)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xd1, 0x0, 0x4)

1.638556791s ago: executing program 3 (id=1391):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x1, 0x84)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x5, 0x7}, 0x8}, 0xffffffff, 0xb00)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)

1.63733273s ago: executing program 0 (id=1399):
adjtimex$auto(&(0x7f0000000200)={0x5f95, 0x0, 0x2, 0x2000000a, 0xff7d, 0xbc58, 0x4000005, 0x0, 0x5, 0x8, 0x80000000, {0x7ff, 0xf423f}, 0x2744, 0x200000001, 0xff, 0x7, 0x0, 0x3c8, 0x8, 0x8, 0xffffffffffffffff, 0x1560cc85, 0x9})
ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
userfaultfd$auto(0x1)
close_range$auto(0x2, 0x8, 0x0)
pipe$auto(0x0)
pipe$auto(0x0)
ioctl$auto_IOCTL_VMCI_NOTIFICATIONS_RECEIVE(0xffffffffffffffff, 0x7a6, 0x0)

1.636987002s ago: executing program 1 (id=1392):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x40004)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
syz_clone3(&(0x7f0000000140)={0x1045100, 0x0, 0x0, 0x0, {0x2d}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0)
read$auto(r0, 0x0, 0x39b8)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(0xffffffffffffffff, 0x0, 0x810)

1.10287465s ago: executing program 3 (id=1393):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x0, 0xffffeffe, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000002c80)='/proc/thread-self/net/rpc/nfsd.fh/channel\x00', 0x80, 0x0)
socket(0x2, 0x801, 0x106)
pipe$auto(0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x5, 0x7}, 0x8}, 0xffffffff, 0xb00)

1.043962647s ago: executing program 0 (id=1394):
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x84)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda\x00', 0x14fa02, 0x0)
open(0x0, 0x0, 0x508)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0)
msync$auto(0x0, 0xe0, 0x6)
kexec_load$auto(0x5b50, 0x2, 0x0, 0xe)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0xce5c2, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
write$auto(0x3, 0x0, 0x5c8)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/crash_hotplug\x00', 0x8a080, 0x0)

699.11µs ago: executing program 0 (id=1395):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
socket(0x2, 0x80002, 0x73)
bind$auto(0x3, 0x0, 0x6a)
connect$auto(0x3, 0x0, 0x54)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
read$auto(r0, 0x0, 0x10001)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000240)={0x0, 0x7}, 0x2)
sysfs$auto(0x2, 0x24, 0x0)
r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r2, 0x0, 0xaf0)

608.893µs ago: executing program 3 (id=1396):
capset$auto(0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x3, 0x6)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x69)
listen$auto(0x3, 0x81)
r0 = socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x6, 0x0, 0x7, 0x1}, 0x3}, 0x4, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)

0s ago: executing program 2 (id=1404):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
r3 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
close_range$auto(0x2, 0x8, 0x0)

kernel console output (not intermixed with test programs):

: 002b:00007f35dd5cc028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  200.787983][ T7765] RAX: ffffffffffffffda RBX: 00007f35dca15fa0 RCX: 00007f35dc79cdd9
[  200.788002][ T7765] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000006
[  200.788020][ T7765] RBP: 00007f35dc832d69 R08: 0000000000000000 R09: 0000000000000000
[  200.788037][ T7765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  200.788054][ T7765] R13: 00007f35dca16038 R14: 00007f35dca15fa0 R15: 00007ffcb628a908
[  200.788096][ T7765]  </TASK>
[  201.024600][ T7765] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[  202.101687][ T7786] FAULT_INJECTION: forcing a failure.
[  202.101687][ T7786] name failslab, interval 1, probability 0, space 0, times 0
[  202.128298][ T7786] CPU: 0 UID: 0 PID: 7786 Comm: syz.1.560 Not tainted syzkaller #0 PREEMPT(full) 
[  202.128334][ T7786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  202.128352][ T7786] Call Trace:
[  202.128361][ T7786]  <TASK>
[  202.128372][ T7786]  dump_stack_lvl+0x100/0x190
[  202.128410][ T7786]  should_fail_ex.cold+0x5/0xa
[  202.128446][ T7786]  should_failslab+0xc2/0x120
[  202.128480][ T7786]  __kmalloc_cache_noprof+0x7a/0x6f0
[  202.128521][ T7786]  ? mem_cgroup_css_online+0x155/0xbf0
[  202.128572][ T7786]  mem_cgroup_css_online+0x155/0xbf0
[  202.128629][ T7786]  ? __pfx_mem_cgroup_css_online+0x10/0x10
[  202.128675][ T7786]  online_css+0xb2/0x350
[  202.128709][ T7786]  cgroup_apply_control_enable+0xa8d/0xdd0
[  202.128761][ T7786]  cgroup_mkdir+0x59c/0x1310
[  202.128806][ T7786]  ? __pfx_cgroup_mkdir+0x10/0x10
[  202.128845][ T7786]  kernfs_iop_mkdir+0x111/0x190
[  202.128879][ T7786]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  202.128922][ T7786]  vfs_mkdir+0x361/0x850
[  202.128971][ T7786]  filename_mkdirat+0x48b/0x5e0
[  202.129011][ T7786]  ? __pfx_filename_mkdirat+0x10/0x10
[  202.129047][ T7786]  ? strncpy_from_user+0x19d/0x2d0
[  202.129080][ T7786]  ? do_getname+0x191/0x390
[  202.129124][ T7786]  __x64_sys_mkdir+0x6b/0x90
[  202.129161][ T7786]  do_syscall_64+0x10b/0xf80
[  202.129196][ T7786]  ? clear_bhb_loop+0x40/0x90
[  202.129232][ T7786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.129258][ T7786] RIP: 0033:0x7f8415b9cdd9
[  202.129279][ T7786] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  202.129307][ T7786] RSP: 002b:00007f84169cd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  202.129334][ T7786] RAX: ffffffffffffffda RBX: 00007f8415e15fa0 RCX: 00007f8415b9cdd9
[  202.129352][ T7786] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[  202.129368][ T7786] RBP: 00007f8415c32d69 R08: 0000000000000000 R09: 0000000000000000
[  202.129385][ T7786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  202.129401][ T7786] R13: 00007f8415e16038 R14: 00007f8415e15fa0 R15: 00007ffee3b30778
[  202.129437][ T7786]  </TASK>
[  203.100364][ T7803] netlink: 334 bytes leftover after parsing attributes in process `syz.1.566'.
[  203.528415][ T7807] FAULT_INJECTION: forcing a failure.
[  203.528415][ T7807] name failslab, interval 1, probability 0, space 0, times 0
[  203.599157][ T7807] CPU: 0 UID: 0 PID: 7807 Comm: syz.1.567 Not tainted syzkaller #0 PREEMPT(full) 
[  203.599195][ T7807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  203.599214][ T7807] Call Trace:
[  203.599223][ T7807]  <TASK>
[  203.599234][ T7807]  dump_stack_lvl+0x100/0x190
[  203.599273][ T7807]  should_fail_ex.cold+0x5/0xa
[  203.599312][ T7807]  should_failslab+0xc2/0x120
[  203.599345][ T7807]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  203.599389][ T7807]  ? acpi_ut_allocate_object_desc_dbg+0x86/0x240
[  203.599446][ T7807]  ? acpi_ut_trace+0x1d7/0x2a0
[  203.599486][ T7807]  acpi_ut_allocate_object_desc_dbg+0x86/0x240
[  203.599537][ T7807]  acpi_ut_create_internal_object_dbg+0x51/0x260
[  203.599571][ T7807]  acpi_ut_create_integer_object+0x46/0xe0
[  203.599600][ T7807]  acpi_ex_read_data_from_field+0x146/0xd40
[  203.599636][ T7807]  ? acpi_ut_ptr_exit+0x10c/0x180
[  203.599669][ T7807]  ? acpi_ut_value_exit+0x10d/0x190
[  203.599706][ T7807]  acpi_ex_resolve_node_to_value+0x6b8/0x9a0
[  203.599749][ T7807]  ? __pfx_acpi_ex_resolve_node_to_value+0x10/0x10
[  203.599794][ T7807]  ? acpi_ds_create_operand+0x267/0xc20
[  203.599830][ T7807]  acpi_ex_resolve_to_value+0x3da/0xcd0
[  203.599871][ T7807]  ? __pfx_acpi_ex_resolve_to_value+0x10/0x10
[  203.599910][ T7807]  ? __pfx_acpi_ns_lookup+0x10/0x10
[  203.599945][ T7807]  ? acpi_ut_track_stack_ptr+0x114/0x180
[  203.599986][ T7807]  acpi_ds_evaluate_name_path+0x30d/0x4a0
[  203.600019][ T7807]  ? __pfx_acpi_ds_evaluate_name_path+0x10/0x10
[  203.600054][ T7807]  ? acpi_ps_get_next_namepath+0x1f6/0xa10
[  203.600085][ T7807]  ? acpi_ut_trace_ptr+0x1d1/0x2a0
[  203.600124][ T7807]  acpi_ds_exec_end_op+0xb78/0x1e60
[  203.600160][ T7807]  ? __pfx_acpi_ds_exec_end_op+0x10/0x10
[  203.600189][ T7807]  acpi_ps_parse_loop+0x5dd/0x24a0
[  203.600228][ T7807]  ? __pfx_acpi_ps_parse_loop+0x10/0x10
[  203.600259][ T7807]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  203.600303][ T7807]  ? acpi_ut_create_thread_state+0x6d/0x170
[  203.600348][ T7807]  acpi_ps_parse_aml+0x81e/0x1120
[  203.600388][ T7807]  acpi_ps_execute_method+0x5c4/0xe90
[  203.600442][ T7807]  acpi_ns_evaluate+0x640/0x1670
[  203.600490][ T7807]  acpi_evaluate_object+0x420/0xe00
[  203.600518][ T7807]  ? kasan_save_stack+0x30/0x50
[  203.600545][ T7807]  ? kasan_save_track+0x14/0x30
[  203.600570][ T7807]  ? __kasan_kmalloc+0xaa/0xb0
[  203.600595][ T7807]  ? __kvmalloc_node_noprof+0x360/0xa00
[  203.600629][ T7807]  ? __pfx_acpi_evaluate_object+0x10/0x10
[  203.600660][ T7807]  ? lock_acquire+0x1b1/0x370
[  203.600696][ T7807]  acpi_evaluate_integer+0xdf/0x220
[  203.600735][ T7807]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[  203.600791][ T7807]  ? __pfx_status_show+0x10/0x10
[  203.600819][ T7807]  status_show+0xa0/0x120
[  203.600846][ T7807]  ? __pfx_status_show+0x10/0x10
[  203.600884][ T7807]  dev_attr_show+0x52/0xa0
[  203.600921][ T7807]  ? __pfx_dev_attr_show+0x10/0x10
[  203.600955][ T7807]  sysfs_kf_seq_show+0x217/0x3a0
[  203.601007][ T7807]  seq_read_iter+0x32f/0x1270
[  203.601037][ T7807]  ? lock_acquire+0x1b1/0x370
[  203.601077][ T7807]  kernfs_fop_read_iter+0x46c/0x610
[  203.601120][ T7807]  ? rw_verify_area+0xce/0x6d0
[  203.601147][ T7807]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[  203.601190][ T7807]  vfs_read+0x825/0xb30
[  203.601227][ T7807]  ? __pfx_vfs_read+0x10/0x10
[  203.601283][ T7807]  ksys_read+0x12a/0x250
[  203.601314][ T7807]  ? __pfx_ksys_read+0x10/0x10
[  203.601348][ T7807]  ? rcu_is_watching+0x12/0xc0
[  203.601387][ T7807]  do_syscall_64+0x10b/0xf80
[  203.601432][ T7807]  ? clear_bhb_loop+0x40/0x90
[  203.601468][ T7807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.601498][ T7807] RIP: 0033:0x7f8415b9cdd9
[  203.601522][ T7807] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  203.601551][ T7807] RSP: 002b:00007f84169cd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  203.601579][ T7807] RAX: ffffffffffffffda RBX: 00007f8415e15fa0 RCX: 00007f8415b9cdd9
[  203.601599][ T7807] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000005
[  203.601616][ T7807] RBP: 00007f8415c32d69 R08: 0000000000000000 R09: 0000000000000000
[  203.601634][ T7807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  203.601650][ T7807] R13: 00007f8415e16038 R14: 00007f8415e15fa0 R15: 00007ffee3b30778
[  203.601688][ T7807]  </TASK>
[  203.641457][ T7807] ACPI Error: Could not allocate an object descriptor (20251212/utobject-180)
[  204.048408][ T7807] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529)
[  205.006653][ T7826] FAULT_INJECTION: forcing a failure.
[  205.006653][ T7826] name failslab, interval 1, probability 0, space 0, times 0
[  205.088534][ T7826] CPU: 0 UID: 0 PID: 7826 Comm: syz.2.573 Not tainted syzkaller #0 PREEMPT(full) 
[  205.088572][ T7826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  205.088589][ T7826] Call Trace:
[  205.088598][ T7826]  <TASK>
[  205.088609][ T7826]  dump_stack_lvl+0x100/0x190
[  205.088646][ T7826]  should_fail_ex.cold+0x5/0xa
[  205.088683][ T7826]  should_failslab+0xc2/0x120
[  205.088715][ T7826]  __kmalloc_cache_noprof+0x7a/0x6f0
[  205.088756][ T7826]  ? percpu_ref_init+0xec/0x3f0
[  205.088798][ T7826]  ? __pfx_obj_cgroup_release+0x10/0x10
[  205.088827][ T7826]  percpu_ref_init+0xec/0x3f0
[  205.088862][ T7826]  ? kasan_save_track+0x14/0x30
[  205.088894][ T7826]  mem_cgroup_css_online+0x177/0xbf0
[  205.088942][ T7826]  ? __pfx_mem_cgroup_css_online+0x10/0x10
[  205.088988][ T7826]  online_css+0xb2/0x350
[  205.089022][ T7826]  cgroup_apply_control_enable+0xa8d/0xdd0
[  205.089075][ T7826]  cgroup_mkdir+0x59c/0x1310
[  205.089121][ T7826]  ? __pfx_cgroup_mkdir+0x10/0x10
[  205.089161][ T7826]  kernfs_iop_mkdir+0x111/0x190
[  205.089195][ T7826]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  205.089239][ T7826]  vfs_mkdir+0x361/0x850
[  205.089295][ T7826]  filename_mkdirat+0x48b/0x5e0
[  205.089338][ T7826]  ? __pfx_filename_mkdirat+0x10/0x10
[  205.089376][ T7826]  ? strncpy_from_user+0x19d/0x2d0
[  205.089409][ T7826]  ? do_getname+0x191/0x390
[  205.089455][ T7826]  __x64_sys_mkdir+0x6b/0x90
[  205.089494][ T7826]  do_syscall_64+0x10b/0xf80
[  205.089529][ T7826]  ? clear_bhb_loop+0x40/0x90
[  205.089565][ T7826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.089594][ T7826] RIP: 0033:0x7fda4b19cdd9
[  205.089619][ T7826] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  205.089647][ T7826] RSP: 002b:00007fda4bfe4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  205.089674][ T7826] RAX: ffffffffffffffda RBX: 00007fda4b415fa0 RCX: 00007fda4b19cdd9
[  205.089693][ T7826] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[  205.089711][ T7826] RBP: 00007fda4b232d69 R08: 0000000000000000 R09: 0000000000000000
[  205.089728][ T7826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  205.089745][ T7826] R13: 00007fda4b416038 R14: 00007fda4b415fa0 R15: 00007fffe43a47b8
[  205.089784][ T7826]  </TASK>
[  206.295711][ T4941] Bluetooth: hci3: unexpected subevent 0x18 length: 123 > 19
[  206.303243][ T4941] Bluetooth: hci3: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00
[  206.332762][ T7837] binder: 7836:7837 ioctl c0306201 200000000000 returned -11
[  206.900768][ T7854] netlink: 146 bytes leftover after parsing attributes in process `syz.3.581'.
[  207.345185][ T7862] FAULT_INJECTION: forcing a failure.
[  207.345185][ T7862] name failslab, interval 1, probability 0, space 0, times 0
[  207.399493][ T7862] CPU: 1 UID: 0 PID: 7862 Comm: syz.0.583 Not tainted syzkaller #0 PREEMPT(full) 
[  207.399516][ T7862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  207.399525][ T7862] Call Trace:
[  207.399531][ T7862]  <TASK>
[  207.399537][ T7862]  dump_stack_lvl+0x100/0x190
[  207.399559][ T7862]  should_fail_ex.cold+0x5/0xa
[  207.399579][ T7862]  should_failslab+0xc2/0x120
[  207.399597][ T7862]  __kmalloc_cache_noprof+0x7a/0x6f0
[  207.399618][ T7862]  ? percpu_ref_init+0xec/0x3f0
[  207.399640][ T7862]  ? __pfx_obj_cgroup_release+0x10/0x10
[  207.399655][ T7862]  percpu_ref_init+0xec/0x3f0
[  207.399674][ T7862]  ? kasan_save_track+0x14/0x30
[  207.399690][ T7862]  mem_cgroup_css_online+0x177/0xbf0
[  207.399715][ T7862]  ? __pfx_mem_cgroup_css_online+0x10/0x10
[  207.399739][ T7862]  online_css+0xb2/0x350
[  207.399756][ T7862]  cgroup_apply_control_enable+0xa8d/0xdd0
[  207.399783][ T7862]  cgroup_mkdir+0x59c/0x1310
[  207.399806][ T7862]  ? __pfx_cgroup_mkdir+0x10/0x10
[  207.399827][ T7862]  kernfs_iop_mkdir+0x111/0x190
[  207.399845][ T7862]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  207.399868][ T7862]  vfs_mkdir+0x361/0x850
[  207.399894][ T7862]  filename_mkdirat+0x48b/0x5e0
[  207.399915][ T7862]  ? __pfx_filename_mkdirat+0x10/0x10
[  207.399934][ T7862]  ? strncpy_from_user+0x19d/0x2d0
[  207.399951][ T7862]  ? do_getname+0x191/0x390
[  207.399973][ T7862]  __x64_sys_mkdir+0x6b/0x90
[  207.399993][ T7862]  do_syscall_64+0x10b/0xf80
[  207.400011][ T7862]  ? clear_bhb_loop+0x40/0x90
[  207.400030][ T7862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.400045][ T7862] RIP: 0033:0x7f36a779cdd9
[  207.400066][ T7862] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  207.400082][ T7862] RSP: 002b:00007f36a8639028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  207.400097][ T7862] RAX: ffffffffffffffda RBX: 00007f36a7a15fa0 RCX: 00007f36a779cdd9
[  207.400108][ T7862] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[  207.400117][ T7862] RBP: 00007f36a7832d69 R08: 0000000000000000 R09: 0000000000000000
[  207.400127][ T7862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  207.400136][ T7862] R13: 00007f36a7a16038 R14: 00007f36a7a15fa0 R15: 00007ffd4e752708
[  207.400156][ T7862]  </TASK>
[  209.572342][ T7890] netlink: 186 bytes leftover after parsing attributes in process `syz.2.590'.
[  209.641875][ T7890] netlink: 186 bytes leftover after parsing attributes in process `syz.2.590'.
[  212.919861][ T7937] zswap: compressor û not available
[  214.524849][ T7952] netlink: 4 bytes leftover after parsing attributes in process `syz.3.606'.
[  214.556227][ T7952] netlink: 13 bytes leftover after parsing attributes in process `syz.3.606'.
[  217.185537][ T8001] netlink: 'syz.0.616': attribute type 1 has an invalid length.
[  217.211130][ T8001] netlink: 13 bytes leftover after parsing attributes in process `syz.0.616'.
[  217.232792][ T8001] netlink: 'syz.0.616': attribute type 1 has an invalid length.
[  221.235936][ T8086] FAULT_INJECTION: forcing a failure.
[  221.235936][ T8086] name failslab, interval 1, probability 0, space 0, times 0
[  221.308579][ T8086] CPU: 1 UID: 0 PID: 8086 Comm: syz.3.641 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  221.308625][ T8086] Tainted: [L]=SOFTLOCKUP
[  221.308636][ T8086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  221.308653][ T8086] Call Trace:
[  221.308662][ T8086]  <TASK>
[  221.308673][ T8086]  dump_stack_lvl+0x100/0x190
[  221.308710][ T8086]  should_fail_ex.cold+0x5/0xa
[  221.308747][ T8086]  should_failslab+0xc2/0x120
[  221.308781][ T8086]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  221.308825][ T8086]  ? vm_area_alloc+0x1f/0x160
[  221.308873][ T8086]  vm_area_alloc+0x1f/0x160
[  221.308912][ T8086]  __mmap_region+0x104d/0x2da0
[  221.308967][ T8086]  ? __pfx___mmap_region+0x10/0x10
[  221.309048][ T8086]  ? find_held_lock+0x2b/0x80
[  221.309085][ T8086]  ? ima_match_policy+0x8c4/0x2350
[  221.309115][ T8086]  ? ima_match_policy+0x8c4/0x2350
[  221.309182][ T8086]  ? process_measurement+0x4c8/0x2350
[  221.309292][ T8086]  mmap_region+0x527/0x620
[  221.309321][ T8086]  ? __pfx_mmap_region+0x10/0x10
[  221.309350][ T8086]  ? cap_mmap_addr+0x4b/0x120
[  221.309386][ T8086]  ? bpf_lsm_mmap_addr+0x9/0x30
[  221.309411][ T8086]  ? security_mmap_addr+0x71/0x1e0
[  221.309442][ T8086]  ? __get_unmapped_area+0x255/0x3e0
[  221.309481][ T8086]  do_mmap+0xc63/0x12f0
[  221.309521][ T8086]  ? __pfx_do_mmap+0x10/0x10
[  221.309555][ T8086]  ? __pfx_down_write_killable+0x10/0x10
[  221.309604][ T8086]  vm_mmap_pgoff+0x29e/0x470
[  221.309645][ T8086]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  221.309677][ T8086]  ? __fget_files+0x215/0x3d0
[  221.309716][ T8086]  ? __fget_files+0x21f/0x3d0
[  221.309756][ T8086]  ksys_mmap_pgoff+0x3cb/0x610
[  221.309791][ T8086]  ? __x64_sys_futex+0x358/0x4d0
[  221.309823][ T8086]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  221.309856][ T8086]  ? xfd_validate_state+0x129/0x190
[  221.309885][ T8086]  ? ksys_write+0x1ac/0x250
[  221.309926][ T8086]  __x64_sys_mmap+0x125/0x190
[  221.309969][ T8086]  do_syscall_64+0x10b/0xf80
[  221.310004][ T8086]  ? clear_bhb_loop+0x40/0x90
[  221.310040][ T8086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.310070][ T8086] RIP: 0033:0x7f35dc79cdd9
[  221.310094][ T8086] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  221.310122][ T8086] RSP: 002b:00007f35dd5ab028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  221.310149][ T8086] RAX: ffffffffffffffda RBX: 00007f35dca16090 RCX: 00007f35dc79cdd9
[  221.310169][ T8086] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000000000
[  221.310188][ T8086] RBP: 00007f35dc832d69 R08: 00000000000000dd R09: 0000000000000000
[  221.310205][ T8086] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  221.310221][ T8086] R13: 00007f35dca16128 R14: 00007f35dca16090 R15: 00007ffcb628a908
[  221.310258][ T8086]  </TASK>
[  223.771592][ T8128] FAULT_INJECTION: forcing a failure.
[  223.771592][ T8128] name failslab, interval 1, probability 0, space 0, times 0
[  223.786112][ T8128] CPU: 0 UID: 0 PID: 8128 Comm: syz.0.653 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  223.786156][ T8128] Tainted: [L]=SOFTLOCKUP
[  223.786165][ T8128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  223.786182][ T8128] Call Trace:
[  223.786191][ T8128]  <TASK>
[  223.786201][ T8128]  dump_stack_lvl+0x100/0x190
[  223.786240][ T8128]  should_fail_ex.cold+0x5/0xa
[  223.786275][ T8128]  should_failslab+0xc2/0x120
[  223.786308][ T8128]  __kmalloc_cache_noprof+0x7a/0x6f0
[  223.786349][ T8128]  ? snd_seq_oss_writeq_new+0xb5/0x2b0
[  223.786386][ T8128]  snd_seq_oss_writeq_new+0xb5/0x2b0
[  223.786414][ T8128]  ? __pfx_snd_seq_oss_writeq_new+0x10/0x10
[  223.786457][ T8128]  ? __raw_spin_lock_init+0x3a/0x110
[  223.786500][ T8128]  snd_seq_oss_open+0x7bc/0xa10
[  223.786560][ T8128]  odev_open+0x6f/0x90
[  223.786594][ T8128]  ? __pfx_odev_open+0x10/0x10
[  223.786629][ T8128]  soundcore_open+0x2e3/0x5a0
[  223.786671][ T8128]  ? __pfx_soundcore_open+0x10/0x10
[  223.786711][ T8128]  chrdev_open+0x234/0x6a0
[  223.786750][ T8128]  ? __pfx_apparmor_file_open+0x10/0x10
[  223.786796][ T8128]  ? __pfx_chrdev_open+0x10/0x10
[  223.786836][ T8128]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  223.786885][ T8128]  do_dentry_open+0x6d8/0x1660
[  223.786921][ T8128]  ? __pfx_chrdev_open+0x10/0x10
[  223.786969][ T8128]  vfs_open+0x82/0x3f0
[  223.787017][ T8128]  path_openat+0x208c/0x31a0
[  223.787068][ T8128]  ? __pfx_path_openat+0x10/0x10
[  223.787121][ T8128]  do_file_open+0x20e/0x430
[  223.787161][ T8128]  ? __pfx_do_file_open+0x10/0x10
[  223.787229][ T8128]  ? alloc_fd+0x476/0x790
[  223.787268][ T8128]  ? do_getname+0x191/0x390
[  223.787316][ T8128]  do_sys_openat2+0x10d/0x1e0
[  223.787362][ T8128]  ? __pfx_do_sys_openat2+0x10/0x10
[  223.787423][ T8128]  __x64_sys_openat+0x12d/0x210
[  223.787470][ T8128]  ? __pfx___x64_sys_openat+0x10/0x10
[  223.787523][ T8128]  ? rcu_is_watching+0x12/0xc0
[  223.787574][ T8128]  do_syscall_64+0x10b/0xf80
[  223.787611][ T8128]  ? clear_bhb_loop+0x40/0x90
[  223.787650][ T8128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.787681][ T8128] RIP: 0033:0x7f36a779cdd9
[  223.787706][ T8128] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  223.787736][ T8128] RSP: 002b:00007f36a8639028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  223.787765][ T8128] RAX: ffffffffffffffda RBX: 00007f36a7a15fa0 RCX: 00007f36a779cdd9
[  223.787784][ T8128] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  223.787804][ T8128] RBP: 00007f36a7832d69 R08: 0000000000000000 R09: 0000000000000000
[  223.787823][ T8128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  223.787841][ T8128] R13: 00007f36a7a16038 R14: 00007f36a7a15fa0 R15: 00007ffd4e752708
[  223.787882][ T8128]  </TASK>
[  225.018867][ T8133] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  225.027920][ T8133] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  225.047639][ T8133] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  225.055693][ T8133] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  225.630445][ T8170] FAULT_INJECTION: forcing a failure.
[  225.630445][ T8170] name failslab, interval 1, probability 0, space 0, times 0
[  225.666358][ T8170] CPU: 0 UID: 0 PID: 8170 Comm: syz.2.667 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  225.666405][ T8170] Tainted: [L]=SOFTLOCKUP
[  225.666414][ T8170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  225.666430][ T8170] Call Trace:
[  225.666439][ T8170]  <TASK>
[  225.666450][ T8170]  dump_stack_lvl+0x100/0x190
[  225.666487][ T8170]  should_fail_ex.cold+0x5/0xa
[  225.666524][ T8170]  ? tracepoint_add_func+0x3a8/0x1150
[  225.666562][ T8170]  should_failslab+0xc2/0x120
[  225.666594][ T8170]  __kmalloc_noprof+0xe0/0x850
[  225.666643][ T8170]  ? __pfx_trace_event_raw_event_nfsd_file_open_class+0x10/0x10
[  225.666695][ T8170]  tracepoint_add_func+0x3a8/0x1150
[  225.666733][ T8170]  ? __pfx_trace_event_raw_event_nfsd_file_open_class+0x10/0x10
[  225.666789][ T8170]  ? __pfx_trace_event_raw_event_nfsd_file_open_class+0x10/0x10
[  225.666837][ T8170]  tracepoint_probe_register+0xc4/0x110
[  225.666878][ T8170]  ? __pfx_tracepoint_probe_register+0x10/0x10
[  225.666920][ T8170]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  225.666957][ T8170]  ? __pfx_trace_event_raw_event_nfsd_file_open_class+0x10/0x10
[  225.667016][ T8170]  trace_event_reg+0x209/0x350
[  225.667056][ T8170]  __ftrace_event_enable_disable+0x211/0x6f0
[  225.667103][ T8170]  __ftrace_set_clr_event_nolock+0x390/0xc30
[  225.667145][ T8170]  ftrace_set_clr_event+0x1b7/0x3f0
[  225.667181][ T8170]  ? __pfx_ftrace_set_clr_event+0x10/0x10
[  225.667213][ T8170]  ? trace_get_user+0x3ae/0xa70
[  225.667276][ T8170]  ftrace_event_write+0x259/0x2c0
[  225.667310][ T8170]  ? __pfx_ftrace_event_write+0x10/0x10
[  225.667355][ T8170]  vfs_write+0x2aa/0x1070
[  225.667389][ T8170]  ? __pfx_ftrace_event_write+0x10/0x10
[  225.667424][ T8170]  ? __pfx_vfs_write+0x10/0x10
[  225.667453][ T8170]  ? __fget_files+0x215/0x3d0
[  225.667494][ T8170]  ? __fget_files+0x21f/0x3d0
[  225.667537][ T8170]  ksys_write+0x12a/0x250
[  225.667566][ T8170]  ? __pfx_ksys_write+0x10/0x10
[  225.667599][ T8170]  ? rcu_is_watching+0x12/0xc0
[  225.667637][ T8170]  do_syscall_64+0x10b/0xf80
[  225.667672][ T8170]  ? clear_bhb_loop+0x40/0x90
[  225.667708][ T8170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.667737][ T8170] RIP: 0033:0x7fda4b19cdd9
[  225.667760][ T8170] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  225.667788][ T8170] RSP: 002b:00007fda4bfe4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  225.667815][ T8170] RAX: ffffffffffffffda RBX: 00007fda4b415fa0 RCX: 00007fda4b19cdd9
[  225.667833][ T8170] RDX: 0000000000000af0 RSI: 0000000000000000 RDI: 0000000000000006
[  225.667849][ T8170] RBP: 00007fda4b232d69 R08: 0000000000000000 R09: 0000000000000000
[  225.667866][ T8170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  225.667882][ T8170] R13: 00007fda4b416038 R14: 00007fda4b415fa0 R15: 00007fffe43a47b8
[  225.667922][ T8170]  </TASK>
[  226.033574][ T8170] event trace: Could not enable event nfsd_file_open
[  226.371919][ T4941] Bluetooth: hci0: command 0x0c1a tx timeout
[  227.087464][ T4941] Bluetooth: hci3: command 0x0c1a tx timeout
[  227.089839][ T5624] Bluetooth: hci2: command 0x0c1a tx timeout
[  227.094298][ T4941] Bluetooth: hci1: command 0x0c1a tx timeout
[  227.440740][ T8200] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  230.917188][ T8277] netlink: 'syz.2.696': attribute type 19 has an invalid length.
[  230.935152][ T8277] netlink: 226 bytes leftover after parsing attributes in process `syz.2.696'.
[  231.537932][ T8293] FAULT_INJECTION: forcing a failure.
[  231.537932][ T8293] name failslab, interval 1, probability 0, space 0, times 0
[  231.552087][ T8293] CPU: 0 UID: 0 PID: 8293 Comm: syz.2.701 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  231.552131][ T8293] Tainted: [L]=SOFTLOCKUP
[  231.552141][ T8293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  231.552158][ T8293] Call Trace:
[  231.552167][ T8293]  <TASK>
[  231.552178][ T8293]  dump_stack_lvl+0x100/0x190
[  231.552214][ T8293]  should_fail_ex.cold+0x5/0xa
[  231.552250][ T8293]  should_failslab+0xc2/0x120
[  231.552283][ T8293]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  231.552313][ T8293]  ? kstrdup_const+0x63/0x80
[  231.552342][ T8293]  ? __pfx_string+0x10/0x10
[  231.552377][ T8293]  kstrdup+0x51/0xe0
[  231.552407][ T8293]  kstrdup_const+0x63/0x80
[  231.552437][ T8293]  __kernfs_new_node+0x9b/0x9f0
[  231.552474][ T8293]  ? __pfx___kernfs_new_node+0x10/0x10
[  231.552516][ T8293]  ? find_held_lock+0x2b/0x80
[  231.552552][ T8293]  ? kernfs_root+0xee/0x2a0
[  231.552580][ T8293]  ? kernfs_root+0xee/0x2a0
[  231.552619][ T8293]  kernfs_new_node+0x11b/0x1a0
[  231.552659][ T8293]  __kernfs_create_file+0x53/0x350
[  231.552715][ T8293]  cgroup_addrm_files+0x4ef/0xdb0
[  231.552779][ T8293]  ? __pfx_cgroup_addrm_files+0x10/0x10
[  231.552823][ T8293]  ? find_held_lock+0x2b/0x80
[  231.552867][ T8293]  ? _raw_spin_unlock+0x28/0x50
[  231.552895][ T8293]  ? xa_store+0x3f/0x50
[  231.552932][ T8293]  ? mem_cgroup_css_online+0x39b/0xbf0
[  231.552976][ T8293]  css_populate_dir+0x161/0x590
[  231.553008][ T8293]  cgroup_apply_control_enable+0x441/0xdd0
[  231.553060][ T8293]  cgroup_mkdir+0x59c/0x1310
[  231.553105][ T8293]  ? __pfx_cgroup_mkdir+0x10/0x10
[  231.553145][ T8293]  kernfs_iop_mkdir+0x111/0x190
[  231.553178][ T8293]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  231.553222][ T8293]  vfs_mkdir+0x361/0x850
[  231.553271][ T8293]  filename_mkdirat+0x48b/0x5e0
[  231.553313][ T8293]  ? __pfx_filename_mkdirat+0x10/0x10
[  231.553350][ T8293]  ? strncpy_from_user+0x19d/0x2d0
[  231.553382][ T8293]  ? do_getname+0x191/0x390
[  231.553427][ T8293]  __x64_sys_mkdir+0x6b/0x90
[  231.553465][ T8293]  do_syscall_64+0x10b/0xf80
[  231.553505][ T8293]  ? clear_bhb_loop+0x40/0x90
[  231.553540][ T8293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.553570][ T8293] RIP: 0033:0x7fda4b19cdd9
[  231.553594][ T8293] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  231.553621][ T8293] RSP: 002b:00007fda4bfe4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  231.553648][ T8293] RAX: ffffffffffffffda RBX: 00007fda4b415fa0 RCX: 00007fda4b19cdd9
[  231.553678][ T8293] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[  231.553696][ T8293] RBP: 00007fda4b232d69 R08: 0000000000000000 R09: 0000000000000000
[  231.553714][ T8293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  231.553730][ T8293] R13: 00007fda4b416038 R14: 00007fda4b415fa0 R15: 00007fffe43a47b8
[  231.553770][ T8293]  </TASK>
[  231.554710][ T8293] cgroup: cgroup_addrm_files: failed to add kmem.tcp.usage_in_bytes, err=-12
[  231.872699][ T8292] netlink: 62 bytes leftover after parsing attributes in process `syz.0.702'.
[  232.447016][ T8319] netlink: 'syz.2.709': attribute type 15 has an invalid length.
[  232.486498][ T8319] netlink: 'syz.2.709': attribute type 16 has an invalid length.
[  232.508959][ T8319] netlink: 194 bytes leftover after parsing attributes in process `syz.2.709'.
[  235.939082][ T8388] zswap: compressor  not available
[  236.253159][ T8403] netlink: 28 bytes leftover after parsing attributes in process `syz.3.730'.
[  236.403577][ T8406] netlink: 4 bytes leftover after parsing attributes in process `syz.2.731'.
[  236.426568][ T8406] netlink: 25 bytes leftover after parsing attributes in process `syz.2.731'.
[  237.042099][ T8418] smpboot: CPU 1 is now offline
[  237.558910][ T8432] netlink: 62 bytes leftover after parsing attributes in process `syz.1.740'.
[  238.881777][ T8455] netlink: 246 bytes leftover after parsing attributes in process `syz.2.748'.
[  239.174686][ T8471] WARNING! power/level is deprecated; use power/control instead
[  239.342853][ T8478] FAULT_INJECTION: forcing a failure.
[  239.342853][ T8478] name failslab, interval 1, probability 0, space 0, times 0
[  239.435884][ T8481] FAULT_INJECTION: forcing a failure.
[  239.435884][ T8481] name failslab, interval 1, probability 0, space 0, times 0
[  239.464447][ T8478] CPU: 0 UID: 0 PID: 8478 Comm: syz.3.755 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  239.464473][ T8478] Tainted: [L]=SOFTLOCKUP
[  239.464479][ T8478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  239.464489][ T8478] Call Trace:
[  239.464494][ T8478]  <TASK>
[  239.464500][ T8478]  dump_stack_lvl+0x100/0x190
[  239.464521][ T8478]  should_fail_ex.cold+0x5/0xa
[  239.464542][ T8478]  should_failslab+0xc2/0x120
[  239.464561][ T8478]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  239.464584][ T8478]  ? __pmd_alloc+0xbf/0x950
[  239.464606][ T8478]  __pmd_alloc+0xbf/0x950
[  239.464624][ T8478]  ? __pud_alloc+0x4fb/0x690
[  239.464644][ T8478]  huge_pte_alloc+0x5ee/0x730
[  239.464666][ T8478]  copy_hugetlb_page_range+0x4ef/0x2c20
[  239.464698][ T8478]  ? __pfx_copy_hugetlb_page_range+0x10/0x10
[  239.464719][ T8478]  ? stack_depot_save_flags+0x27/0x9d0
[  239.464740][ T8478]  ? kasan_save_stack+0x3f/0x50
[  239.464758][ T8478]  copy_page_range+0x33a6/0x5b00
[  239.464786][ T8478]  ? __lock_acquire+0x4a5/0x2630
[  239.464802][ T8478]  ? find_held_lock+0x2b/0x80
[  239.464823][ T8478]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  239.464846][ T8478]  ? mas_wr_walk_descend+0x506/0xac0
[  239.464864][ T8478]  ? __lock_acquire+0x4a5/0x2630
[  239.464878][ T8478]  ? mas_wr_store_entry+0xa1/0x1e80
[  239.464908][ T8478]  ? __pfx_copy_page_range+0x10/0x10
[  239.464938][ T8478]  ? __pfx___might_resched+0x10/0x10
[  239.464963][ T8478]  ? up_write+0x28c/0x4f0
[  239.464981][ T8478]  dup_mmap+0xd25/0x2180
[  239.465009][ T8478]  ? __pfx_dup_mmap+0x10/0x10
[  239.465026][ T8478]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  239.465048][ T8478]  ? __lock_acquire+0x4a5/0x2630
[  239.465063][ T8478]  ? find_held_lock+0x2b/0x80
[  239.465081][ T8478]  ? __percpu_counter_init_many+0x2bc/0x3b0
[  239.465111][ T8478]  copy_process+0x6c63/0x7e00
[  239.465142][ T8478]  ? __pfx_copy_process+0x10/0x10
[  239.465162][ T8478]  ? find_held_lock+0x2b/0x80
[  239.465184][ T8478]  ? futex_private_hash_put+0x107/0x1c0
[  239.465214][ T8478]  kernel_clone+0x12e/0x9c0
[  239.465236][ T8478]  ? __pfx_kernel_clone+0x10/0x10
[  239.465267][ T8478]  __do_sys_clone+0xd9/0x120
[  239.465287][ T8478]  ? __pfx___do_sys_clone+0x10/0x10
[  239.465320][ T8478]  ? rcu_is_watching+0x12/0xc0
[  239.465340][ T8478]  do_syscall_64+0x10b/0xf80
[  239.465358][ T8478]  ? clear_bhb_loop+0x40/0x90
[  239.465376][ T8478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.465392][ T8478] RIP: 0033:0x7f35dc79cdd9
[  239.465405][ T8478] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  239.465419][ T8478] RSP: 002b:00007f35dd5aafd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  239.465434][ T8478] RAX: ffffffffffffffda RBX: 00007f35dca16090 RCX: 00007f35dc79cdd9
[  239.465444][ T8478] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  239.465453][ T8478] RBP: 00007f35dc832d69 R08: 0000000000000000 R09: 0000000000000000
[  239.465462][ T8478] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  239.465472][ T8478] R13: 00007f35dca16128 R14: 00007f35dca16090 R15: 00007ffcb628a908
[  239.465492][ T8478]  </TASK>
[  239.790319][ T8481] CPU: 0 UID: 0 PID: 8481 Comm: syz.2.757 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  239.790346][ T8481] Tainted: [L]=SOFTLOCKUP
[  239.790352][ T8481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  239.790361][ T8481] Call Trace:
[  239.790366][ T8481]  <TASK>
[  239.790372][ T8481]  dump_stack_lvl+0x100/0x190
[  239.790394][ T8481]  should_fail_ex.cold+0x5/0xa
[  239.790414][ T8481]  should_failslab+0xc2/0x120
[  239.790433][ T8481]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  239.790456][ T8481]  ? ptlock_alloc+0x1f/0x70
[  239.790481][ T8481]  ptlock_alloc+0x1f/0x70
[  239.790502][ T8481]  pte_alloc_one+0x82/0x3d0
[  239.790522][ T8481]  __pte_alloc+0x6d/0x3e0
[  239.790537][ T8481]  ? __pfx___pte_alloc+0x10/0x10
[  239.790554][ T8481]  ? _raw_spin_unlock+0x28/0x50
[  239.790570][ T8481]  ? __pmd_alloc+0x3fb/0x950
[  239.790590][ T8481]  copy_page_range+0x3dbb/0x5b00
[  239.790614][ T8481]  ? rcu_is_watching+0x12/0xc0
[  239.790640][ T8481]  ? find_held_lock+0x2b/0x80
[  239.790670][ T8481]  ? mas_wr_store_entry+0xa1/0x1e80
[  239.790691][ T8481]  ? __pfx_copy_page_range+0x10/0x10
[  239.790716][ T8481]  ? mas_store+0x666/0xac0
[  239.790739][ T8481]  ? __pfx_mas_store+0x10/0x10
[  239.790764][ T8481]  ? __pfx___vma_start_write+0x10/0x10
[  239.790789][ T8481]  dup_mmap+0xd25/0x2180
[  239.790816][ T8481]  ? __pfx_dup_mmap+0x10/0x10
[  239.790851][ T8481]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  239.790874][ T8481]  ? __lock_acquire+0x4a5/0x2630
[  239.790889][ T8481]  ? find_held_lock+0x2b/0x80
[  239.790907][ T8481]  ? __percpu_counter_init_many+0x2bc/0x3b0
[  239.790938][ T8481]  copy_process+0x6c63/0x7e00
[  239.790969][ T8481]  ? __pfx_copy_process+0x10/0x10
[  239.790990][ T8481]  ? find_held_lock+0x2b/0x80
[  239.791011][ T8481]  ? futex_private_hash_put+0x107/0x1c0
[  239.791039][ T8481]  kernel_clone+0x12e/0x9c0
[  239.791061][ T8481]  ? __pfx_kernel_clone+0x10/0x10
[  239.791091][ T8481]  __do_sys_clone+0xd9/0x120
[  239.791111][ T8481]  ? __pfx___do_sys_clone+0x10/0x10
[  239.791144][ T8481]  ? rcu_is_watching+0x12/0xc0
[  239.791163][ T8481]  do_syscall_64+0x10b/0xf80
[  239.791181][ T8481]  ? clear_bhb_loop+0x40/0x90
[  239.791200][ T8481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.791215][ T8481] RIP: 0033:0x7fda4b19cdd9
[  239.791228][ T8481] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  239.791242][ T8481] RSP: 002b:00007fda4bfe4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  239.791258][ T8481] RAX: ffffffffffffffda RBX: 00007fda4b415fa0 RCX: 00007fda4b19cdd9
[  239.791269][ T8481] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[  239.791278][ T8481] RBP: 00007fda4b232d69 R08: 0000000000000003 R09: 0000000000000000
[  239.791287][ T8481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  239.791296][ T8481] R13: 00007fda4b416038 R14: 00007fda4b415fa0 R15: 00007fffe43a47b8
[  239.791316][ T8481]  </TASK>
[  241.630372][ T8515] random: crng reseeded on system resumption
[  242.356720][ T8526] vcan0: tx drop: invalid da for name 0x000000000000003f
[  242.660646][ T8537] vcan0: tx drop: invalid sa for name 0x00000000000000fd
[  243.109069][ T8558] netlink: 504 bytes leftover after parsing attributes in process `syz.2.773'.
[  244.118149][ T8586] Process accounting resumed
[  244.291972][ T8591] netlink: 13 bytes leftover after parsing attributes in process `syz.2.780'.
[  244.510664][ T8601] FAULT_INJECTION: forcing a failure.
[  244.510664][ T8601] name failslab, interval 1, probability 0, space 0, times 0
[  244.576163][ T8601] CPU: 0 UID: 0 PID: 8601 Comm: syz.2.783 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  244.576191][ T8601] Tainted: [L]=SOFTLOCKUP
[  244.576197][ T8601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  244.576209][ T8601] Call Trace:
[  244.576215][ T8601]  <TASK>
[  244.576220][ T8601]  dump_stack_lvl+0x100/0x190
[  244.576246][ T8601]  should_fail_ex.cold+0x5/0xa
[  244.576266][ T8601]  should_failslab+0xc2/0x120
[  244.576284][ T8601]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  244.576307][ T8601]  ? __anon_vma_prepare+0xae/0x5e0
[  244.576333][ T8601]  __anon_vma_prepare+0xae/0x5e0
[  244.576353][ T8601]  ? __pfx___pte_alloc+0x10/0x10
[  244.576379][ T8601]  __vmf_anon_prepare+0x11f/0x250
[  244.576399][ T8601]  do_anonymous_page+0x536/0x2050
[  244.576428][ T8601]  __handle_mm_fault+0x1d2c/0x2a00
[  244.576453][ T8601]  ? mt_find+0x45e/0x8e0
[  244.576474][ T8601]  ? __pfx___handle_mm_fault+0x10/0x10
[  244.576493][ T8601]  ? __pfx_mt_find+0x10/0x10
[  244.576531][ T8601]  handle_mm_fault+0x36d/0xa20
[  244.576557][ T8601]  __get_user_pages+0x1178/0x32a0
[  244.576582][ T8601]  ? __pfx___get_user_pages+0x10/0x10
[  244.576605][ T8601]  get_user_pages_remote+0x3d2/0xb10
[  244.576627][ T8601]  ? __pfx_get_user_pages_remote+0x10/0x10
[  244.576646][ T8601]  ? __pfx_create_init_stack_vma+0x10/0x10
[  244.576665][ T8601]  get_arg_page+0xf4/0x310
[  244.576681][ T8601]  ? __pfx_get_arg_page+0x10/0x10
[  244.576697][ T8601]  ? alloc_bprm+0x3da/0x710
[  244.576711][ T8601]  ? alloc_bprm+0x3da/0x710
[  244.576727][ T8601]  copy_string_kernel+0x17d/0x3f0
[  244.576742][ T8601]  ? alloc_bprm+0x420/0x710
[  244.576759][ T8601]  do_execveat_common.isra.0+0x2e6/0x580
[  244.576778][ T8601]  __x64_sys_execveat+0xdf/0x130
[  244.576796][ T8601]  do_syscall_64+0x10b/0xf80
[  244.576814][ T8601]  ? clear_bhb_loop+0x40/0x90
[  244.576833][ T8601]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.576848][ T8601] RIP: 0033:0x7fda4b19cdd9
[  244.576862][ T8601] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  244.576877][ T8601] RSP: 002b:00007fda4bfe4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  244.576895][ T8601] RAX: ffffffffffffffda RBX: 00007fda4b415fa0 RCX: 00007fda4b19cdd9
[  244.576905][ T8601] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[  244.576914][ T8601] RBP: 00007fda4b232d69 R08: 0000000000001000 R09: 0000000000000000
[  244.576923][ T8601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  244.576932][ T8601] R13: 00007fda4b416038 R14: 00007fda4b415fa0 R15: 00007fffe43a47b8
[  244.576952][ T8601]  </TASK>
[  245.725087][ T8616] netlink: 28 bytes leftover after parsing attributes in process `syz.3.788'.
[  245.891873][ T8616] hsr_slave_1 (unregistering): left promiscuous mode
[  246.408229][ T8629] netlink: 4 bytes leftover after parsing attributes in process `syz.3.793'.
[  246.689522][ T8636] FAULT_INJECTION: forcing a failure.
[  246.689522][ T8636] name failslab, interval 1, probability 0, space 0, times 0
[  246.772979][ T8636] CPU: 0 UID: 0 PID: 8636 Comm: syz.2.795 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  246.773007][ T8636] Tainted: [L]=SOFTLOCKUP
[  246.773012][ T8636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  246.773021][ T8636] Call Trace:
[  246.773027][ T8636]  <TASK>
[  246.773033][ T8636]  dump_stack_lvl+0x100/0x190
[  246.773054][ T8636]  should_fail_ex.cold+0x5/0xa
[  246.773075][ T8636]  should_failslab+0xc2/0x120
[  246.773092][ T8636]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  246.773114][ T8636]  ? copy_process+0x6bf1/0x7e00
[  246.773135][ T8636]  ? __raw_spin_lock_init+0x3a/0x110
[  246.773164][ T8636]  copy_process+0x6bf1/0x7e00
[  246.773184][ T8636]  ? futex_unqueue+0x133/0x2c0
[  246.773209][ T8636]  ? __pfx_copy_process+0x10/0x10
[  246.773235][ T8636]  ? _copy_from_user+0x59/0xd0
[  246.773260][ T8636]  kernel_clone+0x12e/0x9c0
[  246.773280][ T8636]  ? futex_hash+0x141/0x370
[  246.773293][ T8636]  ? __pfx_kernel_clone+0x10/0x10
[  246.773317][ T8636]  ? __pfx_futex_wait+0x10/0x10
[  246.773334][ T8636]  ? __pfx_kernel_waitid+0x10/0x10
[  246.773353][ T8636]  __do_sys_clone3+0x214/0x290
[  246.773373][ T8636]  ? __pfx___do_sys_clone3+0x10/0x10
[  246.773400][ T8636]  ? rcu_read_unlock+0x17/0x60
[  246.773417][ T8636]  ? rcu_read_unlock+0x17/0x60
[  246.773445][ T8636]  ? rcu_is_watching+0x12/0xc0
[  246.773464][ T8636]  do_syscall_64+0x10b/0xf80
[  246.773482][ T8636]  ? clear_bhb_loop+0x40/0x90
[  246.773500][ T8636]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.773515][ T8636] RIP: 0033:0x7fda4b19cdd9
[  246.773528][ T8636] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  246.773543][ T8636] RSP: 002b:00007fda4bfe3ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  246.773558][ T8636] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fda4b19cdd9
[  246.773568][ T8636] RDX: 00007fda4bfe3f10 RSI: 0000000000000058 RDI: 00007fda4bfe3f10
[  246.773577][ T8636] RBP: 00007fda4b232d69 R08: 0000000000000000 R09: 0000000000000058
[  246.773586][ T8636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  246.773594][ T8636] R13: 00007fda4b416038 R14: 00007fda4b415fa0 R15: 00007fffe43a47b8
[  246.773613][ T8636]  </TASK>
[  247.529958][ T8646] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  247.587023][ T8646] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  247.651649][ T8646] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  247.675828][ T8646] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  248.465079][ T8667] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  249.648357][ T4941] Bluetooth: hci1: command 0x0c1a tx timeout
[  249.654407][ T5624] Bluetooth: hci0: command 0x0c1a tx timeout
[  249.727187][ T4941] Bluetooth: hci3: command 0x0c1a tx timeout
[  249.733278][ T5624] Bluetooth: hci2: command 0x0c1a tx timeout
[  250.489766][ T8723] netlink: 'syz.1.820': attribute type 28 has an invalid length.
[  250.587720][ T8723] netlink: 'syz.1.820': attribute type 3 has an invalid length.
[  250.670354][ T8723] netlink: 306 bytes leftover after parsing attributes in process `syz.1.820'.
[  252.846570][ T8767] netlink: 62 bytes leftover after parsing attributes in process `syz.3.832'.
[  254.636382][ T8811] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  255.099945][   T30] audit: type=1800 audit(4294967350.780:6): pid=8819 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.851" name="lu_gp_id" dev="configfs" ino=24721 res=0 errno=0
[  255.165136][ T8818] kstrtoul() returned -22 for lu_gp_id
[  255.734709][ T1311] ieee802154 phy0 wpan0: encryption failed: -22
[  255.742912][ T1311] ieee802154 phy1 wpan1: encryption failed: -22
[  255.770973][ T4941] Bluetooth: hci3: unexpected event 0x09 length: 435 > 3
[  256.131446][ T8850] FAULT_INJECTION: forcing a failure.
[  256.131446][ T8850] name failslab, interval 1, probability 0, space 0, times 0
[  256.399502][ T8850] CPU: 0 UID: 0 PID: 8850 Comm: syz.1.857 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  256.399529][ T8850] Tainted: [L]=SOFTLOCKUP
[  256.399535][ T8850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  256.399544][ T8850] Call Trace:
[  256.399549][ T8850]  <TASK>
[  256.399555][ T8850]  dump_stack_lvl+0x100/0x190
[  256.399577][ T8850]  should_fail_ex.cold+0x5/0xa
[  256.399597][ T8850]  should_failslab+0xc2/0x120
[  256.399616][ T8850]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  256.399639][ T8850]  ? __d_alloc+0x34/0xa40
[  256.399663][ T8850]  __d_alloc+0x34/0xa40
[  256.399685][ T8850]  d_alloc+0x4a/0x1e0
[  256.399705][ T8850]  lookup_one_qstr_excl+0x171/0x250
[  256.399729][ T8850]  start_dirop+0x59/0xb0
[  256.399746][ T8850]  simple_start_creating+0xf9/0x110
[  256.399764][ T8850]  ? __pfx_simple_start_creating+0x10/0x10
[  256.399782][ T8850]  ? dput.part.0+0xdd/0x570
[  256.399806][ T8850]  rpc_new_dir+0x27/0x420
[  256.399825][ T8850]  rpc_populate.constprop.0+0x125/0x1c0
[  256.399843][ T8850]  ? d_instantiate+0x8f/0xb0
[  256.399863][ T8850]  ? __pfx_rpc_fill_super+0x10/0x10
[  256.399881][ T8850]  rpc_fill_super+0x2b9/0x4f0
[  256.399899][ T8850]  ? __pfx_rpc_fill_super+0x10/0x10
[  256.399917][ T8850]  get_tree_keyed+0x10e/0x1d0
[  256.399934][ T8850]  vfs_get_tree+0x92/0x320
[  256.399958][ T8850]  vfs_cmd_create+0xd7/0x2a0
[  256.399980][ T8850]  __do_sys_fsconfig+0x55a/0xcb0
[  256.400004][ T8850]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  256.400026][ T8850]  ? xfd_validate_state+0x129/0x190
[  256.400045][ T8850]  ? rcu_is_watching+0x12/0xc0
[  256.400066][ T8850]  do_syscall_64+0x10b/0xf80
[  256.400084][ T8850]  ? clear_bhb_loop+0x40/0x90
[  256.400103][ T8850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  256.400118][ T8850] RIP: 0033:0x7f8415b9cdd9
[  256.400131][ T8850] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  256.400145][ T8850] RSP: 002b:00007f84169cd028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  256.400160][ T8850] RAX: ffffffffffffffda RBX: 00007f8415e15fa0 RCX: 00007f8415b9cdd9
[  256.400170][ T8850] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000005
[  256.400179][ T8850] RBP: 00007f8415c32d69 R08: 0000000000000000 R09: 0000000000000000
[  256.400187][ T8850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  256.400196][ T8850] R13: 00007f8415e16038 R14: 00007f8415e15fa0 R15: 00007ffee3b30778
[  256.400223][ T8850]  </TASK>
[  256.400232][ T8850] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[  258.860982][ T8900] FAULT_INJECTION: forcing a failure.
[  258.860982][ T8900] name failslab, interval 1, probability 0, space 0, times 0
[  258.952911][ T8900] CPU: 0 UID: 0 PID: 8900 Comm: syz.0.872 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  258.952938][ T8900] Tainted: [L]=SOFTLOCKUP
[  258.952943][ T8900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  258.952952][ T8900] Call Trace:
[  258.952957][ T8900]  <TASK>
[  258.952971][ T8900]  dump_stack_lvl+0x100/0x190
[  258.952993][ T8900]  should_fail_ex.cold+0x5/0xa
[  258.953013][ T8900]  should_failslab+0xc2/0x120
[  258.953031][ T8900]  __kmalloc_cache_noprof+0x7a/0x6f0
[  258.953051][ T8900]  ? debugfs_init_fs_context+0x43/0x110
[  258.953076][ T8900]  debugfs_init_fs_context+0x43/0x110
[  258.953097][ T8900]  alloc_fs_context+0x60c/0xf40
[  258.953122][ T8900]  __x64_sys_fsopen+0xed/0x220
[  258.953148][ T8900]  do_syscall_64+0x10b/0xf80
[  258.953167][ T8900]  ? clear_bhb_loop+0x40/0x90
[  258.953185][ T8900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.953200][ T8900] RIP: 0033:0x7f36a779cdd9
[  258.953214][ T8900] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  258.953228][ T8900] RSP: 002b:00007f36a8639028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[  258.953243][ T8900] RAX: ffffffffffffffda RBX: 00007f36a7a15fa0 RCX: 00007f36a779cdd9
[  258.953253][ T8900] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  258.953261][ T8900] RBP: 00007f36a7832d69 R08: 0000000000000000 R09: 0000000000000000
[  258.953270][ T8900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  258.953278][ T8900] R13: 00007f36a7a16038 R14: 00007f36a7a15fa0 R15: 00007ffd4e752708
[  258.953297][ T8900]  </TASK>
[  259.264676][ T8909] ubi0: attaching mtd0
[  259.381064][ T8913] netlink: 62 bytes leftover after parsing attributes in process `syz.0.876'.
[  259.404820][ T8913] netlink: 62 bytes leftover after parsing attributes in process `syz.0.876'.
[  259.445266][ T8913] netlink: 62 bytes leftover after parsing attributes in process `syz.0.876'.
[  259.489883][ T8913] netlink: 62 bytes leftover after parsing attributes in process `syz.0.876'.
[  259.539468][ T8913] netlink: 62 bytes leftover after parsing attributes in process `syz.0.876'.
[  259.584477][ T8913] netlink: 62 bytes leftover after parsing attributes in process `syz.0.876'.
[  259.616060][ T8913] netlink: 62 bytes leftover after parsing attributes in process `syz.0.876'.
[  259.892638][ T8913] netlink: 62 bytes leftover after parsing attributes in process `syz.0.876'.
[  259.903704][ T8913] netlink: 62 bytes leftover after parsing attributes in process `syz.0.876'.
[  259.933746][ T8925] FAULT_INJECTION: forcing a failure.
[  259.933746][ T8925] name failslab, interval 1, probability 0, space 0, times 0
[  259.950088][ T8909] ubi0: scanning is finished
[  259.962735][ T8913] netlink: 62 bytes leftover after parsing attributes in process `syz.0.876'.
[  260.023996][ T8909] ubi0: empty MTD device detected
[  260.053150][ T8925] CPU: 0 UID: 0 PID: 8925 Comm: syz.1.878 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  260.053175][ T8925] Tainted: [L]=SOFTLOCKUP
[  260.053181][ T8925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  260.053190][ T8925] Call Trace:
[  260.053195][ T8925]  <TASK>
[  260.053202][ T8925]  dump_stack_lvl+0x100/0x190
[  260.053223][ T8925]  should_fail_ex.cold+0x5/0xa
[  260.053243][ T8925]  should_failslab+0xc2/0x120
[  260.053261][ T8925]  __kmalloc_cache_noprof+0x7a/0x6f0
[  260.053283][ T8925]  ? __debugfs_file_get+0x2ac/0x860
[  260.053303][ T8925]  __debugfs_file_get+0x2ac/0x860
[  260.053320][ T8925]  ? __pfx___debugfs_file_get+0x10/0x10
[  260.053338][ T8925]  ? __pfx_apparmor_file_open+0x10/0x10
[  260.053364][ T8925]  full_proxy_open_regular+0x4f/0x370
[  260.053385][ T8925]  do_dentry_open+0x6d8/0x1660
[  260.053403][ T8925]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  260.053429][ T8925]  vfs_open+0x82/0x3f0
[  260.053453][ T8925]  path_openat+0x208c/0x31a0
[  260.053477][ T8925]  ? __pfx_path_openat+0x10/0x10
[  260.053502][ T8925]  do_file_open+0x20e/0x430
[  260.053521][ T8925]  ? __pfx_do_file_open+0x10/0x10
[  260.053552][ T8925]  ? alloc_fd+0x476/0x790
[  260.053571][ T8925]  ? do_getname+0x191/0x390
[  260.053594][ T8925]  do_sys_openat2+0x10d/0x1e0
[  260.053616][ T8925]  ? __pfx_do_sys_openat2+0x10/0x10
[  260.053639][ T8925]  ? __fget_files+0x21f/0x3d0
[  260.053659][ T8925]  __x64_sys_openat+0x12d/0x210
[  260.053682][ T8925]  ? __pfx___x64_sys_openat+0x10/0x10
[  260.053707][ T8925]  ? rcu_is_watching+0x12/0xc0
[  260.053728][ T8925]  do_syscall_64+0x10b/0xf80
[  260.053746][ T8925]  ? clear_bhb_loop+0x40/0x90
[  260.053764][ T8925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.053780][ T8925] RIP: 0033:0x7f8415b9cdd9
[  260.053792][ T8925] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  260.053807][ T8925] RSP: 002b:00007f84169cd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  260.053822][ T8925] RAX: ffffffffffffffda RBX: 00007f8415e15fa0 RCX: 00007f8415b9cdd9
[  260.053832][ T8925] RDX: 0000000000008742 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  260.053841][ T8925] RBP: 00007f8415c32d69 R08: 0000000000000000 R09: 0000000000000000
[  260.053857][ T8925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  260.053866][ T8925] R13: 00007f8415e16038 R14: 00007f8415e15fa0 R15: 00007ffee3b30778
[  260.053887][ T8925]  </TASK>
[  261.744905][ T8909] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4
[  262.258652][ T8949] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  262.285109][ T8949] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  262.332708][ T8949] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  262.368672][ T8949] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  264.093768][ T8979] kvm: vcpu 4: requested lapic timer restore with starting count register 0x390=4294967104 (137438947328 ns) > initial count (6624 ns). Using initial count to start timer.
[  264.220225][ T8981] FAULT_INJECTION: forcing a failure.
[  264.220225][ T8981] name failslab, interval 1, probability 0, space 0, times 0
[  264.276301][ T8981] CPU: 0 UID: 0 PID: 8981 Comm: syz.3.895 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  264.276327][ T8981] Tainted: [L]=SOFTLOCKUP
[  264.276332][ T8981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  264.276341][ T8981] Call Trace:
[  264.276346][ T8981]  <TASK>
[  264.276353][ T8981]  dump_stack_lvl+0x100/0x190
[  264.276374][ T8981]  should_fail_ex.cold+0x5/0xa
[  264.276394][ T8981]  should_failslab+0xc2/0x120
[  264.276412][ T8981]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  264.276444][ T8981]  ? ptlock_alloc+0x1f/0x70
[  264.276469][ T8981]  ptlock_alloc+0x1f/0x70
[  264.276489][ T8981]  pte_alloc_one+0x82/0x3d0
[  264.276510][ T8981]  do_fault+0x86c/0x1750
[  264.276531][ T8981]  __handle_mm_fault+0x187d/0x2a00
[  264.276556][ T8981]  ? mt_find+0x45e/0x8e0
[  264.276578][ T8981]  ? __pfx___handle_mm_fault+0x10/0x10
[  264.276597][ T8981]  ? __pfx_mt_find+0x10/0x10
[  264.276627][ T8981]  ? find_vma+0xbf/0x140
[  264.276642][ T8981]  ? __pfx_find_vma+0x10/0x10
[  264.276660][ T8981]  handle_mm_fault+0x36d/0xa20
[  264.276685][ T8981]  do_user_addr_fault+0x74c/0x12f0
[  264.276705][ T8981]  ? trace_page_fault_kernel+0x7a/0x200
[  264.276723][ T8981]  exc_page_fault+0x6f/0xd0
[  264.276742][ T8981]  asm_exc_page_fault+0x26/0x30
[  264.276757][ T8981] RIP: 0010:rep_movs_alternative+0x30/0x90
[  264.276781][ T8981] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 4d 9b 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  264.276795][ T8981] RSP: 0018:ffffc90004057e38 EFLAGS: 00050202
[  264.276807][ T8981] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000000c
[  264.276816][ T8981] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90004057e90
[  264.276825][ T8981] RBP: 000000000000000c R08: 0000000000000001 R09: fffff5200080afd3
[  264.276834][ T8981] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  264.276842][ T8981] R13: ffffc90004057e90 R14: 0000000000000001 R15: 0000000000000004
[  264.276861][ T8981]  _copy_from_user+0x98/0xd0
[  264.276885][ T8981]  __x64_sys_epoll_ctl+0x131/0x1e0
[  264.276908][ T8981]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  264.276930][ T8981]  ? rcu_is_watching+0x12/0xc0
[  264.276950][ T8981]  do_syscall_64+0x10b/0xf80
[  264.276968][ T8981]  ? clear_bhb_loop+0x40/0x90
[  264.276986][ T8981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.277001][ T8981] RIP: 0033:0x7f35dc79cdd9
[  264.277012][ T8981] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  264.277026][ T8981] RSP: 002b:00007f35dd5cc028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  264.277039][ T8981] RAX: ffffffffffffffda RBX: 00007f35dca15fa0 RCX: 00007f35dc79cdd9
[  264.277049][ T8981] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[  264.277058][ T8981] RBP: 00007f35dc832d69 R08: 0000000000000000 R09: 0000000000000000
[  264.277066][ T8981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  264.277074][ T8981] R13: 00007f35dca16038 R14: 00007f35dca15fa0 R15: 00007ffcb628a908
[  264.277094][ T8981]  </TASK>
[  264.714060][ T4941] Bluetooth: hci1: command 0x0c1a tx timeout
[  264.722447][ T4941] Bluetooth: hci0: command 0x0c1a tx timeout
[  264.729614][ T4941] Bluetooth: hci3: command 0x0c1a tx timeout
[  264.736552][ T4941] Bluetooth: hci2: command 0x0c1a tx timeout
[  264.828696][ T8987] sctp: [Deprecated]: syz.1.897 (pid 8987) Use of struct sctp_assoc_value in delayed_ack socket option.
[  264.828696][ T8987] Use struct sctp_sack_info instead
[  266.232710][ T5624] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  266.241968][ T5624] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff
[  266.308475][    T9] Process accounting resumed
[  266.581898][ T9011] Process accounting resumed
[  267.108110][ T9031] capability: warning: `syz.3.910' uses deprecated v2 capabilities in a way that may be insecure
[  267.667764][ T9036] syz.0.912 (9036) used greatest stack depth: 19720 bytes left
[  268.601161][ T5624] Bluetooth: hci0: unexpected subevent 0x01 length: 3 < 18
[  269.768674][ T9107] ptp ptp0: new virtual clock ptp1
[  269.821950][ T9107] ptp ptp0: guarantee physical clock free running
[  269.881537][ T9113] ptp ptp0: delete virtual clock ptp1
[  270.004804][ T9113] ptp ptp0: only physical clock in use now
[  271.475059][ T9158] ptp ptp0: new virtual clock ptp1
[  271.536890][ T9158] ptp ptp0: guarantee physical clock free running
[  271.597684][ T9161] ptp ptp0: delete virtual clock ptp1
[  271.696032][ T9161] ptp ptp0: only physical clock in use now
[  272.508615][ T9172] FAULT_INJECTION: forcing a failure.
[  272.508615][ T9172] name failslab, interval 1, probability 0, space 0, times 0
[  272.652501][ T9172] CPU: 0 UID: 0 PID: 9172 Comm: syz.1.953 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  272.652528][ T9172] Tainted: [L]=SOFTLOCKUP
[  272.652534][ T9172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  272.652544][ T9172] Call Trace:
[  272.652549][ T9172]  <TASK>
[  272.652555][ T9172]  dump_stack_lvl+0x100/0x190
[  272.652577][ T9172]  should_fail_ex.cold+0x5/0xa
[  272.652597][ T9172]  should_failslab+0xc2/0x120
[  272.652614][ T9172]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  272.652638][ T9172]  ? __alloc_skb+0x140/0x710
[  272.652664][ T9172]  __alloc_skb+0x140/0x710
[  272.652677][ T9172]  ? __alloc_skb+0x5b7/0x710
[  272.652690][ T9172]  ? __pfx___alloc_skb+0x10/0x10
[  272.652706][ T9172]  ? __pfx___register_sysctl_table+0x10/0x10
[  272.652725][ T9172]  ? is_module_address+0x69/0xf0
[  272.652742][ T9172]  inet_netconf_notify_devconf+0x9d/0x170
[  272.652764][ T9172]  __devinet_sysctl_register+0x227/0x360
[  272.652784][ T9172]  ? trace_kmalloc+0xe3/0x110
[  272.652801][ T9172]  ? __pfx___devinet_sysctl_register+0x10/0x10
[  272.652824][ T9172]  ? __asan_memcpy+0x3c/0x60
[  272.652847][ T9172]  devinet_init_net+0x334/0x8d0
[  272.652868][ T9172]  ? __pfx_devinet_init_net+0x10/0x10
[  272.652886][ T9172]  ops_init+0x1e2/0x5f0
[  272.652904][ T9172]  setup_net+0x118/0x3a0
[  272.652921][ T9172]  ? __pfx_setup_net+0x10/0x10
[  272.652937][ T9172]  ? mutex_init_lockdep+0xf1/0x120
[  272.652956][ T9172]  copy_net_ns+0x46f/0x7c0
[  272.652976][ T9172]  create_new_namespaces+0x3ea/0xac0
[  272.652999][ T9172]  unshare_nsproxy_namespaces+0xf2/0x220
[  272.653020][ T9172]  ksys_unshare+0x438/0xab0
[  272.653043][ T9172]  ? __pfx_ksys_unshare+0x10/0x10
[  272.653063][ T9172]  ? xfd_validate_state+0x129/0x190
[  272.653084][ T9172]  __x64_sys_unshare+0x31/0x40
[  272.653105][ T9172]  do_syscall_64+0x10b/0xf80
[  272.653123][ T9172]  ? clear_bhb_loop+0x40/0x90
[  272.653142][ T9172]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.653157][ T9172] RIP: 0033:0x7f8415b9cdd9
[  272.653170][ T9172] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  272.653184][ T9172] RSP: 002b:00007f84169cd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  272.653199][ T9172] RAX: ffffffffffffffda RBX: 00007f8415e15fa0 RCX: 00007f8415b9cdd9
[  272.653209][ T9172] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  272.653218][ T9172] RBP: 00007f8415c32d69 R08: 0000000000000000 R09: 0000000000000000
[  272.653227][ T9172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  272.653236][ T9172] R13: 00007f8415e16038 R14: 00007f8415e15fa0 R15: 00007ffee3b30778
[  272.653256][ T9172]  </TASK>
[  274.965264][ T9183] Process accounting paused
[  275.370739][ T9187] FAULT_INJECTION: forcing a failure.
[  275.370739][ T9187] name failslab, interval 1, probability 0, space 0, times 0
[  275.430392][ T9187] CPU: 0 UID: 0 PID: 9187 Comm: syz.2.958 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  275.430419][ T9187] Tainted: [L]=SOFTLOCKUP
[  275.430425][ T9187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  275.430434][ T9187] Call Trace:
[  275.430439][ T9187]  <TASK>
[  275.430446][ T9187]  dump_stack_lvl+0x100/0x190
[  275.430467][ T9187]  should_fail_ex.cold+0x5/0xa
[  275.430487][ T9187]  should_failslab+0xc2/0x120
[  275.430504][ T9187]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  275.430527][ T9187]  ? security_inode_alloc+0x3b/0x2c0
[  275.430550][ T9187]  ? lockdep_init_map_type+0x5c/0x250
[  275.430568][ T9187]  security_inode_alloc+0x3b/0x2c0
[  275.430593][ T9187]  inode_init_always_gfp+0xcc0/0x1000
[  275.430614][ T9187]  alloc_inode+0x8e/0x250
[  275.430635][ T9187]  path_from_stashed+0x25b/0x750
[  275.430654][ T9187]  ? do_raw_spin_unlock+0x145/0x1e0
[  275.430674][ T9187]  ns_get_path+0x60/0x80
[  275.430693][ T9187]  proc_ns_get_link+0x121/0x230
[  275.430709][ T9187]  ? __pfx_proc_ns_get_link+0x10/0x10
[  275.430729][ T9187]  ? atime_needs_update+0x8b/0x6b0
[  275.430754][ T9187]  pick_link+0xd17/0x13c0
[  275.430769][ T9187]  ? __pfx_proc_ns_get_link+0x10/0x10
[  275.430786][ T9187]  step_into_slowpath+0x9ba/0xf90
[  275.430805][ T9187]  ? __pfx_step_into_slowpath+0x10/0x10
[  275.430820][ T9187]  ? find_held_lock+0x2b/0x80
[  275.430844][ T9187]  path_openat+0xf95/0x31a0
[  275.430868][ T9187]  ? __pfx_path_openat+0x10/0x10
[  275.430892][ T9187]  do_file_open+0x20e/0x430
[  275.430911][ T9187]  ? __pfx_do_file_open+0x10/0x10
[  275.430942][ T9187]  ? alloc_fd+0x476/0x790
[  275.430960][ T9187]  ? do_getname+0x191/0x390
[  275.430983][ T9187]  do_sys_openat2+0x10d/0x1e0
[  275.431004][ T9187]  ? __pfx_do_sys_openat2+0x10/0x10
[  275.431027][ T9187]  ? __fget_files+0x21f/0x3d0
[  275.431047][ T9187]  __x64_sys_openat+0x12d/0x210
[  275.431070][ T9187]  ? __pfx___x64_sys_openat+0x10/0x10
[  275.431095][ T9187]  ? rcu_is_watching+0x12/0xc0
[  275.431114][ T9187]  do_syscall_64+0x10b/0xf80
[  275.431133][ T9187]  ? clear_bhb_loop+0x40/0x90
[  275.431151][ T9187]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.431166][ T9187] RIP: 0033:0x7fda4b15d60e
[  275.431180][ T9187] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  275.431195][ T9187] RSP: 002b:00007fda4bfe3ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  275.431210][ T9187] RAX: ffffffffffffffda RBX: 00007fda4bfe46c0 RCX: 00007fda4b15d60e
[  275.431219][ T9187] RDX: 0000000000000002 RSI: 00007fda4bfe3f90 RDI: ffffffffffffff9c
[  275.431230][ T9187] RBP: 00007fda4b232d69 R08: 0000000000000000 R09: 0000000000000000
[  275.431239][ T9187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  275.431248][ T9187] R13: 00007fda4b416038 R14: 00007fda4b415fa0 R15: 00007fffe43a47b8
[  275.431267][ T9187]  </TASK>
[  277.343743][ T9219] __nla_validate_parse: 8 callbacks suppressed
[  277.343757][ T9219] netlink: 8 bytes leftover after parsing attributes in process `syz.1.966'.
[  277.381317][ T9224] netlink: 13 bytes leftover after parsing attributes in process `syz.2.967'.
[  278.025601][ T9234] FAULT_INJECTION: forcing a failure.
[  278.025601][ T9234] name failslab, interval 1, probability 0, space 0, times 0
[  278.201316][ T9234] CPU: 0 UID: 0 PID: 9234 Comm: syz.0.970 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  278.201342][ T9234] Tainted: [L]=SOFTLOCKUP
[  278.201348][ T9234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  278.201357][ T9234] Call Trace:
[  278.201362][ T9234]  <TASK>
[  278.201369][ T9234]  dump_stack_lvl+0x100/0x190
[  278.201391][ T9234]  should_fail_ex.cold+0x5/0xa
[  278.201411][ T9234]  should_failslab+0xc2/0x120
[  278.201429][ T9234]  __kmalloc_cache_noprof+0x7a/0x6f0
[  278.201450][ T9234]  ? snd_seq_prioq_new+0x3f/0x110
[  278.201466][ T9234]  ? lockdep_init_map_type+0x5c/0x250
[  278.201485][ T9234]  snd_seq_prioq_new+0x3f/0x110
[  278.201499][ T9234]  snd_seq_queue_alloc+0x153/0x540
[  278.201526][ T9234]  snd_seq_ioctl_create_queue+0xa9/0x370
[  278.201549][ T9234]  call_seq_client_ctl+0xa3/0x130
[  278.201567][ T9234]  snd_seq_kernel_client_ctl+0x77/0xd0
[  278.201587][ T9234]  alloc_seq_queue+0xdb/0x180
[  278.201606][ T9234]  ? __pfx_alloc_seq_queue+0x10/0x10
[  278.201636][ T9234]  ? mark_held_locks+0x40/0x70
[  278.201653][ T9234]  snd_seq_oss_open+0x2b2/0xa10
[  278.201676][ T9234]  odev_open+0x6f/0x90
[  278.201693][ T9234]  ? __pfx_odev_open+0x10/0x10
[  278.201709][ T9234]  soundcore_open+0x2e3/0x5a0
[  278.201730][ T9234]  ? __pfx_soundcore_open+0x10/0x10
[  278.201748][ T9234]  chrdev_open+0x234/0x6a0
[  278.201766][ T9234]  ? __pfx_apparmor_file_open+0x10/0x10
[  278.201789][ T9234]  ? __pfx_chrdev_open+0x10/0x10
[  278.201808][ T9234]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  278.201832][ T9234]  do_dentry_open+0x6d8/0x1660
[  278.201849][ T9234]  ? __pfx_chrdev_open+0x10/0x10
[  278.201872][ T9234]  vfs_open+0x82/0x3f0
[  278.201895][ T9234]  path_openat+0x208c/0x31a0
[  278.201919][ T9234]  ? __pfx_path_openat+0x10/0x10
[  278.201944][ T9234]  do_file_open+0x20e/0x430
[  278.201963][ T9234]  ? __pfx_do_file_open+0x10/0x10
[  278.201994][ T9234]  ? alloc_fd+0x476/0x790
[  278.202013][ T9234]  ? do_getname+0x191/0x390
[  278.202036][ T9234]  do_sys_openat2+0x10d/0x1e0
[  278.202065][ T9234]  ? __pfx_do_sys_openat2+0x10/0x10
[  278.202095][ T9234]  __x64_sys_openat+0x12d/0x210
[  278.202118][ T9234]  ? __pfx___x64_sys_openat+0x10/0x10
[  278.202145][ T9234]  ? rcu_is_watching+0x12/0xc0
[  278.202165][ T9234]  do_syscall_64+0x10b/0xf80
[  278.202184][ T9234]  ? clear_bhb_loop+0x40/0x90
[  278.202203][ T9234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.202218][ T9234] RIP: 0033:0x7f36a779cdd9
[  278.202231][ T9234] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  278.202246][ T9234] RSP: 002b:00007f36a8639028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  278.202261][ T9234] RAX: ffffffffffffffda RBX: 00007f36a7a15fa0 RCX: 00007f36a779cdd9
[  278.202270][ T9234] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  278.202280][ T9234] RBP: 00007f36a7832d69 R08: 0000000000000000 R09: 0000000000000000
[  278.202289][ T9234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  278.202298][ T9234] R13: 00007f36a7a16038 R14: 00007f36a7a15fa0 R15: 00007ffd4e752708
[  278.202319][ T9234]  </TASK>
[  280.363062][ T9270] netlink: 'syz.2.983': attribute type 21 has an invalid length.
[  280.388585][ T9270] netlink: 334 bytes leftover after parsing attributes in process `syz.2.983'.
[  280.910760][ T9264] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  280.925795][ T9264] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  280.954210][ T9264] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  280.995754][ T9264] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  281.635245][ T9296] ACPI: button: Initial lid state set to 'ignore'
[  282.316115][ T5624] Bluetooth: hci0: command 0x0c1a tx timeout
[  282.455888][ T9314] ptp ptp0: new virtual clock ptp1
[  282.479492][ T9314] ptp ptp0: guarantee physical clock free running
[  282.533535][ T9301] FAULT_INJECTION: forcing a failure.
[  282.533535][ T9301] name failslab, interval 1, probability 0, space 0, times 0
[  282.746498][ T9301] CPU: 0 UID: 0 PID: 9301 Comm: syz.0.992 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  282.746525][ T9301] Tainted: [L]=SOFTLOCKUP
[  282.746531][ T9301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  282.746540][ T9301] Call Trace:
[  282.746545][ T9301]  <TASK>
[  282.746551][ T9301]  dump_stack_lvl+0x100/0x190
[  282.746572][ T9301]  should_fail_ex.cold+0x5/0xa
[  282.746608][ T9301]  should_failslab+0xc2/0x120
[  282.746626][ T9301]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  282.746649][ T9301]  ? __mpol_dup+0x74/0x390
[  282.746678][ T9301]  __mpol_dup+0x74/0x390
[  282.746697][ T9301]  ? __pfx___mpol_dup+0x10/0x10
[  282.746716][ T9301]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  282.746739][ T9301]  ? sp_alloc+0x27/0x160
[  282.746761][ T9301]  sp_alloc+0x4d/0x160
[  282.746781][ T9301]  mpol_set_shared_policy+0xa5/0x890
[  282.746805][ T9301]  ? __pfx_shmem_set_policy+0x10/0x10
[  282.746823][ T9301]  mbind_range+0x339/0x550
[  282.746845][ T9301]  do_mbind+0x7dc/0xfd0
[  282.746868][ T9301]  ? __might_fault+0xc5/0x140
[  282.746890][ T9301]  ? __pfx_do_mbind+0x10/0x10
[  282.746912][ T9301]  ? _copy_from_user+0x59/0xd0
[  282.746940][ T9301]  ? __pfx_get_nodes+0x10/0x10
[  282.746959][ T9301]  kernel_mbind+0x1b7/0x200
[  282.746980][ T9301]  ? __pfx_kernel_mbind+0x10/0x10
[  282.747001][ T9301]  ? rcu_is_watching+0x12/0xc0
[  282.747023][ T9301]  do_syscall_64+0x10b/0xf80
[  282.747041][ T9301]  ? clear_bhb_loop+0x40/0x90
[  282.747059][ T9301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.747074][ T9301] RIP: 0033:0x7f36a779cdd9
[  282.747087][ T9301] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  282.747102][ T9301] RSP: 002b:00007f36a8639028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  282.747117][ T9301] RAX: ffffffffffffffda RBX: 00007f36a7a15fa0 RCX: 00007f36a779cdd9
[  282.747127][ T9301] RDX: 0000000000008003 RSI: 0000000000800605 RDI: 0000000000000000
[  282.747136][ T9301] RBP: 00007f36a7832d69 R08: 0000000000000003 R09: 0000000000000003
[  282.747145][ T9301] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000
[  282.747154][ T9301] R13: 00007f36a7a16038 R14: 00007f36a7a15fa0 R15: 00007ffd4e752708
[  282.747173][ T9301]  </TASK>
[  283.220600][ T9312] FAULT_INJECTION: forcing a failure.
[  283.220600][ T9312] name failslab, interval 1, probability 0, space 0, times 0
[  283.290079][ T9312] CPU: 0 UID: 0 PID: 9312 Comm: syz.1.997 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  283.290107][ T9312] Tainted: [L]=SOFTLOCKUP
[  283.290113][ T9312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  283.290122][ T9312] Call Trace:
[  283.290128][ T9312]  <TASK>
[  283.290134][ T9312]  dump_stack_lvl+0x100/0x190
[  283.290155][ T9312]  should_fail_ex.cold+0x5/0xa
[  283.290175][ T9312]  should_failslab+0xc2/0x120
[  283.290193][ T9312]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  283.290216][ T9312]  ? __proc_create+0x2cb/0x8c0
[  283.290239][ T9312]  __proc_create+0x2cb/0x8c0
[  283.290258][ T9312]  ? __pfx___proc_create+0x10/0x10
[  283.290283][ T9312]  _proc_mkdir+0xb9/0x210
[  283.290302][ T9312]  ? __pfx__proc_mkdir+0x10/0x10
[  283.290319][ T9312]  ? net_generic+0xea/0x2a0
[  283.290343][ T9312]  ? __pfx_vlan_init_net+0x10/0x10
[  283.290356][ T9312]  vlan_proc_init+0x93/0x160
[  283.290377][ T9312]  ops_init+0x1e2/0x5f0
[  283.290396][ T9312]  setup_net+0x118/0x3a0
[  283.290413][ T9312]  ? __pfx_setup_net+0x10/0x10
[  283.290429][ T9312]  ? mutex_init_lockdep+0xf1/0x120
[  283.290450][ T9312]  copy_net_ns+0x46f/0x7c0
[  283.290469][ T9312]  create_new_namespaces+0x3ea/0xac0
[  283.290493][ T9312]  unshare_nsproxy_namespaces+0xf2/0x220
[  283.290514][ T9312]  ksys_unshare+0x438/0xab0
[  283.290537][ T9312]  ? __pfx_ksys_unshare+0x10/0x10
[  283.290557][ T9312]  ? xfd_validate_state+0x129/0x190
[  283.290579][ T9312]  __x64_sys_unshare+0x31/0x40
[  283.290600][ T9312]  do_syscall_64+0x10b/0xf80
[  283.290623][ T9312]  ? clear_bhb_loop+0x40/0x90
[  283.290642][ T9312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.290658][ T9312] RIP: 0033:0x7f8415b9cdd9
[  283.290671][ T9312] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  283.290685][ T9312] RSP: 002b:00007f84169cd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  283.290699][ T9312] RAX: ffffffffffffffda RBX: 00007f8415e15fa0 RCX: 00007f8415b9cdd9
[  283.290709][ T9312] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  283.290721][ T9312] RBP: 00007f8415c32d69 R08: 0000000000000000 R09: 0000000000000000
[  283.290730][ T9312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  283.290739][ T9312] R13: 00007f8415e16038 R14: 00007f8415e15fa0 R15: 00007ffee3b30778
[  283.290759][ T9312]  </TASK>
[  283.785023][ T5624] Bluetooth: hci2: command 0x0c1a tx timeout
[  283.791156][ T5624] Bluetooth: hci1: command 0x0c1a tx timeout
[  283.797129][ T5624] Bluetooth: hci3: command 0x0c1a tx timeout
[  284.477363][ T9341] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1007'.
[  284.522884][ T9341] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1007'.
[  284.888476][ T9347] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1009'.
[  284.934397][ T9347] netlink: 'syz.3.1009': attribute type 1 has an invalid length.
[  284.967722][ T9347] netlink: 13 bytes leftover after parsing attributes in process `syz.3.1009'.
[  285.221079][ T9312] 8021q: can't create entry in proc filesystem!
[  285.244270][ T9354] FAULT_INJECTION: forcing a failure.
[  285.244270][ T9354] name failslab, interval 1, probability 0, space 0, times 0
[  285.293871][ T9354] CPU: 0 UID: 0 PID: 9354 Comm: syz.3.1011 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  285.293896][ T9354] Tainted: [L]=SOFTLOCKUP
[  285.293902][ T9354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  285.293911][ T9354] Call Trace:
[  285.293917][ T9354]  <TASK>
[  285.293923][ T9354]  dump_stack_lvl+0x100/0x190
[  285.293945][ T9354]  should_fail_ex.cold+0x5/0xa
[  285.293964][ T9354]  should_failslab+0xc2/0x120
[  285.293981][ T9354]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  285.293997][ T9354]  ? devinet_init_net+0xa3/0x8d0
[  285.294019][ T9354]  ? __pfx_devinet_init_net+0x10/0x10
[  285.294037][ T9354]  kmemdup_noprof+0x29/0x60
[  285.294057][ T9354]  devinet_init_net+0xa3/0x8d0
[  285.294079][ T9354]  ? __pfx_devinet_init_net+0x10/0x10
[  285.294098][ T9354]  ops_init+0x1e2/0x5f0
[  285.294117][ T9354]  setup_net+0x118/0x3a0
[  285.294134][ T9354]  ? __pfx_setup_net+0x10/0x10
[  285.294150][ T9354]  ? mutex_init_lockdep+0xf1/0x120
[  285.294169][ T9354]  copy_net_ns+0x46f/0x7c0
[  285.294189][ T9354]  create_new_namespaces+0x3ea/0xac0
[  285.294212][ T9354]  unshare_nsproxy_namespaces+0xf2/0x220
[  285.294232][ T9354]  ksys_unshare+0x438/0xab0
[  285.294255][ T9354]  ? __pfx_ksys_unshare+0x10/0x10
[  285.294275][ T9354]  ? xfd_validate_state+0x129/0x190
[  285.294296][ T9354]  __x64_sys_unshare+0x31/0x40
[  285.294317][ T9354]  do_syscall_64+0x10b/0xf80
[  285.294336][ T9354]  ? clear_bhb_loop+0x40/0x90
[  285.294354][ T9354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.294376][ T9354] RIP: 0033:0x7f35dc79cdd9
[  285.294389][ T9354] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  285.294404][ T9354] RSP: 002b:00007f35dd5ab028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  285.294419][ T9354] RAX: ffffffffffffffda RBX: 00007f35dca16090 RCX: 00007f35dc79cdd9
[  285.294429][ T9354] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  285.294437][ T9354] RBP: 00007f35dc832d69 R08: 0000000000000000 R09: 0000000000000000
[  285.294446][ T9354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  285.294455][ T9354] R13: 00007f35dca16128 R14: 00007f35dca16090 R15: 00007ffcb628a908
[  285.294475][ T9354]  </TASK>
[  286.262309][ T9363] random: crng reseeded on system resumption
[  286.454123][ T4941] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  286.485116][ T9369] futex_wake_op: syz.2.1014 tries to shift op by -2048; fix this program
[  286.531638][ T9369] futex_wake_op: syz.2.1014 tries to shift op by -2048; fix this program
[  286.732239][ T9375] netlink: 'syz.1.1015': attribute type 5 has an invalid length.
[  286.774580][ T9375] netlink: 'syz.1.1015': attribute type 1 has an invalid length.
[  286.811957][ T9378] netlink: 'syz.1.1015': attribute type 5 has an invalid length.
[  286.848596][ T9375] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1015'.
[  286.886623][ T9378] netlink: 'syz.1.1015': attribute type 1 has an invalid length.
[  286.918156][ T9378] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1015'.
[  287.611865][ T5624] Bluetooth: hci0: unexpected event for opcode 0x7c89
[  287.840747][ T9403] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1024'.
[  288.254567][ T9406] hub 1-0:1.0: USB hub found
[  288.325494][ T9406] hub 1-0:1.0: 1 port detected
[  289.906547][ T9436] zswap: compressor  not available
[  290.075305][ T9450] FAULT_INJECTION: forcing a failure.
[  290.075305][ T9450] name failslab, interval 1, probability 0, space 0, times 0
[  290.152267][ T9450] CPU: 0 UID: 0 PID: 9450 Comm: syz.1.1038 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  290.152296][ T9450] Tainted: [L]=SOFTLOCKUP
[  290.152302][ T9450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  290.152311][ T9450] Call Trace:
[  290.152317][ T9450]  <TASK>
[  290.152323][ T9450]  dump_stack_lvl+0x100/0x190
[  290.152344][ T9450]  should_fail_ex.cold+0x5/0xa
[  290.152365][ T9450]  should_failslab+0xc2/0x120
[  290.152383][ T9450]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  290.152405][ T9450]  ? __kernfs_new_node+0xd2/0x9f0
[  290.152426][ T9450]  __kernfs_new_node+0xd2/0x9f0
[  290.152445][ T9450]  ? __pfx___kernfs_new_node+0x10/0x10
[  290.152465][ T9450]  ? find_held_lock+0x2b/0x80
[  290.152484][ T9450]  ? kernfs_root+0xee/0x2a0
[  290.152499][ T9450]  ? kernfs_root+0xee/0x2a0
[  290.152518][ T9450]  kernfs_new_node+0x11b/0x1a0
[  290.152539][ T9450]  __kernfs_create_file+0x53/0x350
[  290.152563][ T9450]  sysfs_add_file_mode_ns+0x207/0x3c0
[  290.152583][ T9450]  sysfs_merge_group+0x194/0x340
[  290.152601][ T9450]  ? __pfx_sysfs_merge_group+0x10/0x10
[  290.152617][ T9450]  ? bus_add_device+0x368/0x6b0
[  290.152641][ T9450]  ? __pfx_bus_add_device+0x10/0x10
[  290.152661][ T9450]  ? __pfx_dev_add_physical_location+0x10/0x10
[  290.152684][ T9450]  dpm_sysfs_add+0x237/0x280
[  290.152704][ T9450]  device_add+0x9ef/0x1950
[  290.152723][ T9450]  ? __pfx_device_add+0x10/0x10
[  290.152747][ T9450]  nfc_register_device+0x41/0x3e0
[  290.152769][ T9450]  nci_register_device+0x7f1/0xb80
[  290.152785][ T9450]  ? __pfx_nci_register_device+0x10/0x10
[  290.152803][ T9450]  ? lockdep_init_map_type+0x5c/0x250
[  290.152822][ T9450]  virtual_ncidev_open+0x141/0x220
[  290.152844][ T9450]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  290.152865][ T9450]  misc_open+0x26d/0x450
[  290.152889][ T9450]  ? __pfx_misc_open+0x10/0x10
[  290.152907][ T9450]  chrdev_open+0x234/0x6a0
[  290.152926][ T9450]  ? __pfx_apparmor_file_open+0x10/0x10
[  290.152949][ T9450]  ? __pfx_chrdev_open+0x10/0x10
[  290.152968][ T9450]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  290.152992][ T9450]  do_dentry_open+0x6d8/0x1660
[  290.153010][ T9450]  ? __pfx_chrdev_open+0x10/0x10
[  290.153032][ T9450]  vfs_open+0x82/0x3f0
[  290.153055][ T9450]  path_openat+0x208c/0x31a0
[  290.153080][ T9450]  ? __pfx_path_openat+0x10/0x10
[  290.153105][ T9450]  do_file_open+0x20e/0x430
[  290.153124][ T9450]  ? __pfx_do_file_open+0x10/0x10
[  290.153156][ T9450]  ? alloc_fd+0x476/0x790
[  290.153175][ T9450]  ? do_getname+0x191/0x390
[  290.153197][ T9450]  do_sys_openat2+0x10d/0x1e0
[  290.153219][ T9450]  ? __pfx_do_sys_openat2+0x10/0x10
[  290.153247][ T9450]  __x64_sys_openat+0x12d/0x210
[  290.153270][ T9450]  ? __pfx___x64_sys_openat+0x10/0x10
[  290.153295][ T9450]  ? rcu_is_watching+0x12/0xc0
[  290.153315][ T9450]  do_syscall_64+0x10b/0xf80
[  290.153333][ T9450]  ? clear_bhb_loop+0x40/0x90
[  290.153351][ T9450]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.153366][ T9450] RIP: 0033:0x7f8415b9cdd9
[  290.153379][ T9450] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  290.153394][ T9450] RSP: 002b:00007f84169cd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  290.153409][ T9450] RAX: ffffffffffffffda RBX: 00007f8415e15fa0 RCX: 00007f8415b9cdd9
[  290.153419][ T9450] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  290.153429][ T9450] RBP: 00007f8415c32d69 R08: 0000000000000000 R09: 0000000000000000
[  290.153438][ T9450] R10: 000000000000003e R11: 0000000000000246 R12: 0000000000000000
[  290.153448][ T9450] R13: 00007f8415e16038 R14: 00007f8415e15fa0 R15: 00007ffee3b30778
[  290.153468][ T9450]  </TASK>
[  292.041949][ T9486] zswap: compressor  not available
[  294.598184][ T9531] FAULT_INJECTION: forcing a failure.
[  294.598184][ T9531] name failslab, interval 1, probability 0, space 0, times 0
[  294.675589][ T9531] CPU: 0 UID: 0 PID: 9531 Comm: syz.3.1059 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  294.675615][ T9531] Tainted: [L]=SOFTLOCKUP
[  294.675620][ T9531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  294.675629][ T9531] Call Trace:
[  294.675635][ T9531]  <TASK>
[  294.675641][ T9531]  dump_stack_lvl+0x100/0x190
[  294.675663][ T9531]  should_fail_ex.cold+0x5/0xa
[  294.675683][ T9531]  should_failslab+0xc2/0x120
[  294.675700][ T9531]  __kmalloc_cache_noprof+0x7a/0x6f0
[  294.675721][ T9531]  ? trace_pid_list_alloc+0x2fe/0x480
[  294.675745][ T9531]  trace_pid_list_alloc+0x2fe/0x480
[  294.675768][ T9531]  trace_pid_write+0x110/0x460
[  294.675789][ T9531]  ? __pfx_trace_pid_write+0x10/0x10
[  294.675820][ T9531]  event_pid_write.isra.0+0x1e4/0x7d0
[  294.675844][ T9531]  ? __pfx_event_pid_write.isra.0+0x10/0x10
[  294.675871][ T9531]  vfs_write+0x2aa/0x1070
[  294.675889][ T9531]  ? __pfx_ftrace_event_npid_write+0x10/0x10
[  294.675912][ T9531]  ? __pfx_vfs_write+0x10/0x10
[  294.675927][ T9531]  ? __fget_files+0x215/0x3d0
[  294.675949][ T9531]  ? __fget_files+0x21f/0x3d0
[  294.675971][ T9531]  ksys_write+0x12a/0x250
[  294.675987][ T9531]  ? __pfx_ksys_write+0x10/0x10
[  294.676009][ T9531]  ? rcu_is_watching+0x12/0xc0
[  294.676029][ T9531]  do_syscall_64+0x10b/0xf80
[  294.676048][ T9531]  ? clear_bhb_loop+0x40/0x90
[  294.676065][ T9531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.676081][ T9531] RIP: 0033:0x7f35dc79cdd9
[  294.676093][ T9531] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  294.676108][ T9531] RSP: 002b:00007f35dd5cc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  294.676122][ T9531] RAX: ffffffffffffffda RBX: 00007f35dca15fa0 RCX: 00007f35dc79cdd9
[  294.676132][ T9531] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  294.676141][ T9531] RBP: 00007f35dc832d69 R08: 0000000000000000 R09: 0000000000000000
[  294.676150][ T9531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  294.676158][ T9531] R13: 00007f35dca16038 R14: 00007f35dca15fa0 R15: 00007ffcb628a908
[  294.676178][ T9531]  </TASK>
[  295.651073][ T9547] netlink: 246 bytes leftover after parsing attributes in process `syz.3.1072'.
[  296.556023][ T9563] Process accounting paused
[  298.351536][ T9607] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  298.673289][ T9607] File: /dev/nullb0 PID: 9607 Comm: syz.0.1091
[  300.557830][ T9632] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  300.571514][ T9632] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  300.587492][ T9632] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  300.639026][ T9632] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  300.653205][ T9632] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  300.939453][ T9649] ptp ptp0: guarantee physical clock free running
[  301.476618][ T9658] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  301.507269][ T9658] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  301.551442][ T9658] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  301.598570][ T9658] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  302.031720][ T9670] netlink: 306 bytes leftover after parsing attributes in process `syz.3.1106'.
[  302.384843][ T9680] FAULT_INJECTION: forcing a failure.
[  302.384843][ T9680] name failslab, interval 1, probability 0, space 0, times 0
[  302.419758][ T9680] CPU: 0 UID: 0 PID: 9680 Comm: syz.1.1117 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  302.419783][ T9680] Tainted: [L]=SOFTLOCKUP
[  302.419789][ T9680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  302.419798][ T9680] Call Trace:
[  302.419804][ T9680]  <TASK>
[  302.419809][ T9680]  dump_stack_lvl+0x100/0x190
[  302.419831][ T9680]  should_fail_ex.cold+0x5/0xa
[  302.419851][ T9680]  should_failslab+0xc2/0x120
[  302.419868][ T9680]  __kmalloc_cache_noprof+0x7a/0x6f0
[  302.419889][ T9680]  ? apply_subsystem_event_filter+0x444/0x17b0
[  302.419916][ T9680]  apply_subsystem_event_filter+0x444/0x17b0
[  302.419942][ T9680]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  302.419967][ T9680]  ? _copy_from_user+0x59/0xd0
[  302.419992][ T9680]  subsystem_filter_write+0x95/0x120
[  302.420014][ T9680]  vfs_write+0x2aa/0x1070
[  302.420032][ T9680]  ? __pfx_subsystem_filter_write+0x10/0x10
[  302.420053][ T9680]  ? __pfx_vfs_write+0x10/0x10
[  302.420069][ T9680]  ? __fget_files+0x215/0x3d0
[  302.420090][ T9680]  ? __fget_files+0x21f/0x3d0
[  302.420112][ T9680]  ksys_write+0x12a/0x250
[  302.420128][ T9680]  ? __pfx_ksys_write+0x10/0x10
[  302.420146][ T9680]  ? rcu_is_watching+0x12/0xc0
[  302.420166][ T9680]  do_syscall_64+0x10b/0xf80
[  302.420185][ T9680]  ? clear_bhb_loop+0x40/0x90
[  302.420203][ T9680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.420219][ T9680] RIP: 0033:0x7f8415b9cdd9
[  302.420231][ T9680] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  302.420246][ T9680] RSP: 002b:00007f84169cd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  302.420261][ T9680] RAX: ffffffffffffffda RBX: 00007f8415e15fa0 RCX: 00007f8415b9cdd9
[  302.420271][ T9680] RDX: 0000000000000078 RSI: 0000200000000040 RDI: 0000000000000004
[  302.420280][ T9680] RBP: 00007f8415c32d69 R08: 0000000000000000 R09: 0000000000000000
[  302.420289][ T9680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  302.420297][ T9680] R13: 00007f8415e16038 R14: 00007f8415e15fa0 R15: 00007ffee3b30778
[  302.420317][ T9680]  </TASK>
[  302.829124][ T9682] netlink: 'syz.3.1108': attribute type 11 has an invalid length.
[  303.008963][ T9689] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1109'.
[  303.485872][ T5624] Bluetooth: hci0: command 0x0c1a tx timeout
[  303.566721][ T5624] Bluetooth: hci2: command 0x0c1a tx timeout
[  303.574345][ T5624] Bluetooth: hci1: command 0x0c1a tx timeout
[  303.645161][ T5624] Bluetooth: hci3: command 0x0c1a tx timeout
[  304.470400][ T9715] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  304.509660][ T9715] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  304.549769][ T9715] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  304.601376][ T9715] page_type: f5(slab)
[  304.627521][ T9715] raw: 00fff00000000040 ffff88801ce938c0 dead000000000100 dead000000000122
[  304.688309][ T9715] raw: 0000000000000000 00000008000d000d 00000000f5000000 0000000000000000
[  304.769952][ T9715] head: 00fff00000000040 ffff88801ce938c0 dead000000000100 dead000000000122
[  304.846191][ T9715] head: 0000000000000000 00000008000d000d 00000000f5000000 0000000000000000
[  304.886095][ T9715] head: 00fff00000000002 ffffffffffffff01 00000000ffffffff 00000000ffffffff
[  304.925698][ T9715] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  304.969227][ T9715] page dumped because: unmovable page
[  304.992787][ T9715] page_owner tracks the page as allocated
[  305.024369][ T9715] page last allocated via order 2, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5005, tgid 5005 (udevadm), ts 30095125992, free_ts 23805821377
[  305.082093][ T9715]  post_alloc_hook+0x153/0x170
[  305.093311][ T9715]  get_page_from_freelist+0x11a6/0x33b0
[  305.106300][ T9715]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  305.120614][ T9715]  new_slab+0xa6/0x6c0
[  305.129709][ T9715]  refill_objects+0x277/0x420
[  305.139915][ T9715]  __pcs_replace_empty_main+0x375/0x650
[  305.151485][ T9715]  kmem_cache_alloc_lru_noprof+0x485/0x6e0
[  305.167793][ T9715]  alloc_inode+0x183/0x250
[  305.186069][ T9715]  iget_locked+0x1d9/0x6d0
[  305.206935][ T9715]  kernfs_get_inode+0x46/0x470
[  305.231856][ T9715]  kernfs_iop_lookup+0x1a7/0x2d0
[  305.265025][ T9715]  __lookup_slow+0x251/0x460
[  305.293572][ T9715]  lookup_slow+0x50/0x70
[  305.322263][ T9715]  link_path_walk+0x1377/0x1cc0
[  305.338888][ T9715]  path_lookupat+0x74/0xc40
[  305.348795][ T9715]  filename_lookup+0x202/0x590
[  305.359585][ T9715] page last free pid 1 tgid 1 stack trace:
[  305.371544][ T9715]  __free_frozen_pages+0x747/0x1040
[  305.379681][ T9715]  free_contig_range+0xda/0x140
[  305.384649][ T9715]  destroy_args+0xa8/0x7a0
[  305.394424][ T9715]  debug_vm_pgtable+0x1d69/0x3490
[  305.405495][ T9715]  do_one_initcall+0x121/0x750
[  305.418630][ T9715]  kernel_init_freeable+0x6ea/0x7b0
[  305.428842][ T9715]  kernel_init+0x1f/0x1e0
[  305.438150][ T9715]  ret_from_fork+0x72b/0xd50
[  305.444915][ T9715]  ret_from_fork_asm+0x1a/0x30
[  305.533455][ T9728] Process accounting resumed
[  305.634679][ T5624] Bluetooth: hci1: command 0x0c1a tx timeout
[  305.743787][ T9742] lo: entered allmulticast mode
[  305.881531][ T9742] lo: left allmulticast mode
[  307.235025][ T9753] FAULT_INJECTION: forcing a failure.
[  307.235025][ T9753] name failslab, interval 1, probability 0, space 0, times 0
[  307.322392][ T9753] CPU: 0 UID: 0 PID: 9753 Comm: syz.3.1131 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  307.322418][ T9753] Tainted: [L]=SOFTLOCKUP
[  307.322424][ T9753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  307.322433][ T9753] Call Trace:
[  307.322438][ T9753]  <TASK>
[  307.322444][ T9753]  dump_stack_lvl+0x100/0x190
[  307.322465][ T9753]  should_fail_ex.cold+0x5/0xa
[  307.322485][ T9753]  should_failslab+0xc2/0x120
[  307.322503][ T9753]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  307.322525][ T9753]  ? do_epoll_ctl+0xc6c/0x36a0
[  307.322545][ T9753]  ? percpu_counter_add_batch+0xb9/0x230
[  307.322564][ T9753]  do_epoll_ctl+0xc6c/0x36a0
[  307.322584][ T9753]  ? rcu_is_watching+0x12/0xc0
[  307.322609][ T9753]  ? __pfx_do_epoll_ctl+0x10/0x10
[  307.322633][ T9753]  ? rep_movs_alternative+0x30/0x90
[  307.322660][ T9753]  ? __x64_sys_epoll_ctl+0x15c/0x1e0
[  307.322678][ T9753]  __x64_sys_epoll_ctl+0x15c/0x1e0
[  307.322698][ T9753]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  307.322720][ T9753]  ? rcu_is_watching+0x12/0xc0
[  307.322739][ T9753]  do_syscall_64+0x10b/0xf80
[  307.322756][ T9753]  ? clear_bhb_loop+0x40/0x90
[  307.322774][ T9753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.322789][ T9753] RIP: 0033:0x7f35dc79cdd9
[  307.322802][ T9753] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  307.322817][ T9753] RSP: 002b:00007f35dd5cc028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  307.322834][ T9753] RAX: ffffffffffffffda RBX: 00007f35dca15fa0 RCX: 00007f35dc79cdd9
[  307.322844][ T9753] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[  307.322853][ T9753] RBP: 00007f35dc832d69 R08: 0000000000000000 R09: 0000000000000000
[  307.322861][ T9753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  307.322870][ T9753] R13: 00007f35dca16038 R14: 00007f35dca15fa0 R15: 00007ffcb628a908
[  307.322889][ T9753]  </TASK>
[  307.968707][ T9769] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1144'.
[  308.290296][ T9776] device-mapper: ioctl: only supply one of name or uuid, cmd(5)
[  308.955440][ T9792] netlink: 'syz.1.1143': attribute type 10 has an invalid length.
[  309.003247][ T9792] netlink: 230 bytes leftover after parsing attributes in process `syz.1.1143'.
[  311.292731][ T9851] random: crng reseeded on system resumption
[  312.938720][ T9891] FAULT_INJECTION: forcing a failure.
[  312.938720][ T9891] name failslab, interval 1, probability 0, space 0, times 0
[  312.996466][ T9891] CPU: 0 UID: 0 PID: 9891 Comm: syz.2.1175 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  312.996493][ T9891] Tainted: [L]=SOFTLOCKUP
[  312.996498][ T9891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  312.996507][ T9891] Call Trace:
[  312.996513][ T9891]  <TASK>
[  312.996519][ T9891]  dump_stack_lvl+0x100/0x190
[  312.996541][ T9891]  should_fail_ex.cold+0x5/0xa
[  312.996561][ T9891]  should_failslab+0xc2/0x120
[  312.996579][ T9891]  __kmalloc_cache_noprof+0x7a/0x6f0
[  312.996600][ T9891]  ? trace_pid_list_alloc+0x2fe/0x480
[  312.996631][ T9891]  trace_pid_list_alloc+0x2fe/0x480
[  312.996655][ T9891]  trace_pid_write+0x110/0x460
[  312.996676][ T9891]  ? __pfx_trace_pid_write+0x10/0x10
[  312.996709][ T9891]  event_pid_write.isra.0+0x1e4/0x7d0
[  312.996732][ T9891]  ? __pfx_event_pid_write.isra.0+0x10/0x10
[  312.996760][ T9891]  vfs_write+0x2aa/0x1070
[  312.996777][ T9891]  ? __pfx_ftrace_event_npid_write+0x10/0x10
[  312.996804][ T9891]  ? __pfx_vfs_write+0x10/0x10
[  312.996819][ T9891]  ? __fget_files+0x215/0x3d0
[  312.996840][ T9891]  ? __fget_files+0x21f/0x3d0
[  312.996862][ T9891]  ksys_write+0x12a/0x250
[  312.996879][ T9891]  ? __pfx_ksys_write+0x10/0x10
[  312.996897][ T9891]  ? rcu_is_watching+0x12/0xc0
[  312.996917][ T9891]  do_syscall_64+0x10b/0xf80
[  312.996935][ T9891]  ? clear_bhb_loop+0x40/0x90
[  312.996953][ T9891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.996969][ T9891] RIP: 0033:0x7fda4b19cdd9
[  312.996982][ T9891] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  312.996996][ T9891] RSP: 002b:00007fda4bfe4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  312.997011][ T9891] RAX: ffffffffffffffda RBX: 00007fda4b415fa0 RCX: 00007fda4b19cdd9
[  312.997021][ T9891] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  312.997029][ T9891] RBP: 00007fda4b232d69 R08: 0000000000000000 R09: 0000000000000000
[  312.997038][ T9891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  312.997047][ T9891] R13: 00007fda4b416038 R14: 00007fda4b415fa0 R15: 00007fffe43a47b8
[  312.997067][ T9891]  </TASK>
[  314.099635][ T9908] netlink: 246 bytes leftover after parsing attributes in process `syz.1.1178'.
[  315.210305][ T9913] zswap: compressor  not available
[  315.467238][ T9927] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1185'.
[  316.943966][ T1311] ieee802154 phy0 wpan0: encryption failed: -22
[  316.954311][ T1311] ieee802154 phy1 wpan1: encryption failed: -22
[  317.307479][ T9964] sctp: [Deprecated]: syz.3.1194 (pid 9964) Use of struct sctp_assoc_value in delayed_ack socket option.
[  317.307479][ T9964] Use struct sctp_sack_info instead
[  317.590873][ T9968] zswap: compressor  not available
[  319.547163][T10006] sctp: [Deprecated]: syz.2.1207 (pid 10006) Use of struct sctp_assoc_value in delayed_ack socket option.
[  319.547163][T10006] Use struct sctp_sack_info instead
[  322.671977][ T5624] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  322.679532][ T5624] Bluetooth: hci2: Invalid handle: 0x3a4a > 0x0eff
[  322.698351][    T9] Process accounting resumed
[  323.427732][T10071] Process accounting resumed
[  323.690275][T10081] sctp: [Deprecated]: syz.0.1230 (pid 10081) Use of struct sctp_assoc_value in delayed_ack socket option.
[  323.690275][T10081] Use struct sctp_sack_info instead
[  326.103154][T10119] sctp: [Deprecated]: syz.0.1238 (pid 10119) Use of struct sctp_assoc_value in delayed_ack socket option.
[  326.103154][T10119] Use struct sctp_sack_info instead
[  326.514331][T10132] FAULT_INJECTION: forcing a failure.
[  326.514331][T10132] name failslab, interval 1, probability 0, space 0, times 0
[  326.553805][T10132] CPU: 0 UID: 0 PID: 10132 Comm: syz.2.1245 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  326.553833][T10132] Tainted: [L]=SOFTLOCKUP
[  326.553839][T10132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  326.553848][T10132] Call Trace:
[  326.553854][T10132]  <TASK>
[  326.553860][T10132]  dump_stack_lvl+0x100/0x190
[  326.553881][T10132]  should_fail_ex.cold+0x5/0xa
[  326.553901][T10132]  should_failslab+0xc2/0x120
[  326.553919][T10132]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  326.553941][T10132]  ? ptlock_alloc+0x1f/0x70
[  326.553967][T10132]  ptlock_alloc+0x1f/0x70
[  326.553987][T10132]  pte_alloc_one+0x82/0x3d0
[  326.554007][T10132]  do_fault+0x86c/0x1750
[  326.554028][T10132]  __handle_mm_fault+0x187d/0x2a00
[  326.554052][T10132]  ? mt_find+0x45e/0x8e0
[  326.554073][T10132]  ? __pfx___handle_mm_fault+0x10/0x10
[  326.554093][T10132]  ? __pfx_mt_find+0x10/0x10
[  326.554122][T10132]  ? find_vma+0xbf/0x140
[  326.554137][T10132]  ? __pfx_find_vma+0x10/0x10
[  326.554155][T10132]  handle_mm_fault+0x36d/0xa20
[  326.554179][T10132]  do_user_addr_fault+0x74c/0x12f0
[  326.554200][T10132]  ? trace_page_fault_kernel+0x7a/0x200
[  326.554219][T10132]  exc_page_fault+0x6f/0xd0
[  326.554238][T10132]  asm_exc_page_fault+0x26/0x30
[  326.554252][T10132] RIP: 0010:rep_movs_alternative+0x30/0x90
[  326.554276][T10132] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 4d 9b 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  326.554298][T10132] RSP: 0018:ffffc90003237e38 EFLAGS: 00050202
[  326.554311][T10132] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 000000000000000c
[  326.554320][T10132] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90003237e90
[  326.554329][T10132] RBP: 000000000000000c R08: 0000000000000001 R09: fffff52000646fd3
[  326.554339][T10132] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  326.554349][T10132] R13: ffffc90003237e90 R14: 0000000000000001 R15: 0000000000000004
[  326.554368][T10132]  _copy_from_user+0x98/0xd0
[  326.554392][T10132]  __x64_sys_epoll_ctl+0x131/0x1e0
[  326.554415][T10132]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  326.554436][T10132]  ? rcu_is_watching+0x12/0xc0
[  326.554457][T10132]  do_syscall_64+0x10b/0xf80
[  326.554476][T10132]  ? clear_bhb_loop+0x40/0x90
[  326.554493][T10132]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.554508][T10132] RIP: 0033:0x7fda4b19cdd9
[  326.554521][T10132] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  326.554534][T10132] RSP: 002b:00007fda4bfe4028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  326.554548][T10132] RAX: ffffffffffffffda RBX: 00007fda4b415fa0 RCX: 00007fda4b19cdd9
[  326.554558][T10132] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[  326.554566][T10132] RBP: 00007fda4b232d69 R08: 0000000000000000 R09: 0000000000000000
[  326.554575][T10132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  326.554584][T10132] R13: 00007fda4b416038 R14: 00007fda4b415fa0 R15: 00007fffe43a47b8
[  326.554603][T10132]  </TASK>
[  327.308073][T10127] Process accounting resumed
[  327.349287][T10139] FAULT_INJECTION: forcing a failure.
[  327.349287][T10139] name failslab, interval 1, probability 0, space 0, times 0
[  327.420311][T10139] CPU: 0 UID: 0 PID: 10139 Comm: syz.3.1248 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  327.420336][T10139] Tainted: [L]=SOFTLOCKUP
[  327.420341][T10139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  327.420350][T10139] Call Trace:
[  327.420356][T10139]  <TASK>
[  327.420362][T10139]  dump_stack_lvl+0x100/0x190
[  327.420383][T10139]  should_fail_ex.cold+0x5/0xa
[  327.420403][T10139]  should_failslab+0xc2/0x120
[  327.420421][T10139]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  327.420444][T10139]  ? __mpol_dup+0x74/0x390
[  327.420467][T10139]  __mpol_dup+0x74/0x390
[  327.420485][T10139]  ? __pfx___mpol_dup+0x10/0x10
[  327.420503][T10139]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  327.420525][T10139]  ? sp_alloc+0x27/0x160
[  327.420546][T10139]  sp_alloc+0x4d/0x160
[  327.420565][T10139]  mpol_set_shared_policy+0xa5/0x890
[  327.420589][T10139]  ? __pfx_shmem_set_policy+0x10/0x10
[  327.420606][T10139]  mbind_range+0x339/0x550
[  327.420628][T10139]  do_mbind+0x7dc/0xfd0
[  327.420650][T10139]  ? __might_fault+0xc5/0x140
[  327.420672][T10139]  ? __pfx_do_mbind+0x10/0x10
[  327.420695][T10139]  ? _copy_from_user+0x59/0xd0
[  327.420723][T10139]  ? __pfx_get_nodes+0x10/0x10
[  327.420742][T10139]  kernel_mbind+0x1b7/0x200
[  327.420763][T10139]  ? __pfx_kernel_mbind+0x10/0x10
[  327.420784][T10139]  ? rcu_is_watching+0x12/0xc0
[  327.420806][T10139]  do_syscall_64+0x10b/0xf80
[  327.420824][T10139]  ? clear_bhb_loop+0x40/0x90
[  327.420843][T10139]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.420858][T10139] RIP: 0033:0x7f35dc79cdd9
[  327.420871][T10139] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  327.420886][T10139] RSP: 002b:00007f35dd5ab028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  327.420905][T10139] RAX: ffffffffffffffda RBX: 00007f35dca16090 RCX: 00007f35dc79cdd9
[  327.420915][T10139] RDX: 0000000000008003 RSI: 0000000000800605 RDI: 0000000000000000
[  327.420924][T10139] RBP: 00007f35dc832d69 R08: 0000000000000003 R09: 0000000000000003
[  327.420933][T10139] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000
[  327.420942][T10139] R13: 00007f35dca16128 R14: 00007f35dca16090 R15: 00007ffcb628a908
[  327.420961][T10139]  </TASK>
[  328.116892][T10145] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1250'.
[  329.089291][T10158] netlink: 62 bytes leftover after parsing attributes in process `syz.3.1253'.
[  329.145835][T10160] netlink: 62 bytes leftover after parsing attributes in process `syz.3.1253'.
[  329.189725][T10160] netlink: 62 bytes leftover after parsing attributes in process `syz.3.1253'.
[  329.211775][T10160] netlink: 62 bytes leftover after parsing attributes in process `syz.3.1253'.
[  329.243227][T10160] netlink: 62 bytes leftover after parsing attributes in process `syz.3.1253'.
[  329.260385][T10160] netlink: 62 bytes leftover after parsing attributes in process `syz.3.1253'.
[  329.270121][T10160] netlink: 62 bytes leftover after parsing attributes in process `syz.3.1253'.
[  329.288557][T10160] netlink: 62 bytes leftover after parsing attributes in process `syz.3.1253'.
[  329.304060][T10160] netlink: 62 bytes leftover after parsing attributes in process `syz.3.1253'.
[  330.669782][T10186] netlink: 'syz.0.1269': attribute type 11 has an invalid length.
[  331.215000][T10198] sctp: [Deprecated]: syz.2.1262 (pid 10198) Use of struct sctp_assoc_value in delayed_ack socket option.
[  331.215000][T10198] Use struct sctp_sack_info instead
[  334.461057][T10248] netlink: 'syz.2.1272': attribute type 11 has an invalid length.
[  335.177298][T10251] FAULT_INJECTION: forcing a failure.
[  335.177298][T10251] name fail_futex, interval 1, probability 0, space 0, times 0
[  335.203229][T10251] CPU: 0 UID: 0 PID: 10251 Comm: syz.2.1274 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  335.203253][T10251] Tainted: [L]=SOFTLOCKUP
[  335.203258][T10251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  335.203267][T10251] Call Trace:
[  335.203273][T10251]  <TASK>
[  335.203278][T10251]  dump_stack_lvl+0x100/0x190
[  335.203299][T10251]  should_fail_ex.cold+0x5/0xa
[  335.203319][T10251]  get_futex_key+0x1d2/0x1510
[  335.203336][T10251]  ? __pfx_get_futex_key+0x10/0x10
[  335.203350][T10251]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  335.203373][T10251]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  335.203395][T10251]  futex_wake+0xea/0x530
[  335.203413][T10251]  ? mark_held_locks+0x40/0x70
[  335.203433][T10251]  ? __pfx_futex_wake+0x10/0x10
[  335.203459][T10251]  do_futex+0x32b/0x350
[  335.203475][T10251]  ? __pfx_do_futex+0x10/0x10
[  335.203491][T10251]  ? __might_fault+0xc5/0x140
[  335.203511][T10251]  ? __pfx_ep_ptable_queue_proc+0x10/0x10
[  335.203532][T10251]  __x64_sys_futex+0x34f/0x4d0
[  335.203550][T10251]  ? __pfx___x64_sys_futex+0x10/0x10
[  335.203566][T10251]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  335.203585][T10251]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  335.203607][T10251]  ? syscall_user_dispatch+0x76/0x130
[  335.203626][T10251]  do_syscall_64+0x10b/0xf80
[  335.203644][T10251]  ? clear_bhb_loop+0x40/0x90
[  335.203661][T10251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.203676][T10251] RIP: 0033:0x7fda4b19cdd9
[  335.203689][T10251] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  335.203703][T10251] RSP: 002b:00007fda4bfe40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  335.203718][T10251] RAX: ffffffffffffffda RBX: 00007fda4b415fa8 RCX: 00007fda4b19cdd9
[  335.203728][T10251] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fda4b415fac
[  335.203737][T10251] RBP: 00007fda4b415fa0 R08: 0000000000000001 R09: 0000000000000000
[  335.203745][T10251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  335.203754][T10251] R13: 00007fda4b416038 R14: 00007fffe43a46d0 R15: 00007fffe43a47b8
[  335.203772][T10251]  </TASK>
[  335.439974][T10249] Process accounting paused
[  335.840720][T10264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  335.871869][T10264] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  335.908200][T10264] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  335.939745][T10264] page_type: f5(slab)
[  335.946832][T10264] raw: 00fff00000000040 ffff88801ce938c0 dead000000000100 dead000000000122
[  335.969788][T10264] raw: 0000000000000000 00000008000d000d 00000000f5000000 0000000000000000
[  336.001028][T10264] head: 00fff00000000040 ffff88801ce938c0 dead000000000100 dead000000000122
[  336.026944][T10264] head: 0000000000000000 00000008000d000d 00000000f5000000 0000000000000000
[  336.048795][T10264] head: 00fff00000000002 ffffffffffffff01 00000000ffffffff 00000000ffffffff
[  336.059242][T10264] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  336.086302][T10264] page dumped because: unmovable page
[  336.091727][T10264] page_owner tracks the page as allocated
[  336.106715][T10264] page last allocated via order 2, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5005, tgid 5005 (udevadm), ts 30095125992, free_ts 23805821377
[  336.155969][T10264]  post_alloc_hook+0x153/0x170
[  336.160791][T10264]  get_page_from_freelist+0x11a6/0x33b0
[  336.174366][T10264]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  336.185943][T10264]  new_slab+0xa6/0x6c0
[  336.199182][T10264]  refill_objects+0x277/0x420
[  336.209228][T10264]  __pcs_replace_empty_main+0x375/0x650
[  336.225554][T10264]  kmem_cache_alloc_lru_noprof+0x485/0x6e0
[  336.235635][T10264]  alloc_inode+0x183/0x250
[  336.245853][T10264]  iget_locked+0x1d9/0x6d0
[  336.255509][T10264]  kernfs_get_inode+0x46/0x470
[  336.265548][T10264]  kernfs_iop_lookup+0x1a7/0x2d0
[  336.274867][T10264]  __lookup_slow+0x251/0x460
[  336.285234][T10264]  lookup_slow+0x50/0x70
[  336.295445][T10264]  link_path_walk+0x1377/0x1cc0
[  336.305216][T10264]  path_lookupat+0x74/0xc40
[  336.311253][T10264]  filename_lookup+0x202/0x590
[  336.322755][T10264] page last free pid 1 tgid 1 stack trace:
[  336.344935][T10264]  __free_frozen_pages+0x747/0x1040
[  336.350202][T10264]  free_contig_range+0xda/0x140
[  336.358771][T10264]  destroy_args+0xa8/0x7a0
[  336.367371][T10264]  debug_vm_pgtable+0x1d69/0x3490
[  336.384699][T10264]  do_one_initcall+0x121/0x750
[  336.389517][T10264]  kernel_init_freeable+0x6ea/0x7b0
[  336.404755][T10264]  kernel_init+0x1f/0x1e0
[  336.409150][T10264]  ret_from_fork+0x72b/0xd50
[  336.426234][T10264]  ret_from_fork_asm+0x1a/0x30
[  336.661776][T10274] netlink: 'syz.1.1293': attribute type 11 has an invalid length.
[  337.157902][T10282] __nla_validate_parse: 10 callbacks suppressed
[  337.157916][T10282] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1284'.
[  337.238304][T10282] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1284'.
[  338.110810][T10302] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  338.153709][T10302] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  338.202031][T10302] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  338.277350][T10302] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  338.943087][T10324] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  339.008966][T10324] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  339.087109][T10324] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  339.087306][T10324] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  339.144349][T10321] FAULT_INJECTION: forcing a failure.
[  339.144349][T10321] name failslab, interval 1, probability 0, space 0, times 0
[  339.144388][T10321] CPU: 0 UID: 0 PID: 10321 Comm: syz.0.1296 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  339.144409][T10321] Tainted: [L]=SOFTLOCKUP
[  339.144414][T10321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  339.144423][T10321] Call Trace:
[  339.144428][T10321]  <TASK>
[  339.144434][T10321]  dump_stack_lvl+0x100/0x190
[  339.144453][T10321]  should_fail_ex.cold+0x5/0xa
[  339.144472][T10321]  should_failslab+0xc2/0x120
[  339.144489][T10321]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  339.144512][T10321]  ? do_epoll_ctl+0xc6c/0x36a0
[  339.144531][T10321]  ? percpu_counter_add_batch+0xb9/0x230
[  339.144549][T10321]  do_epoll_ctl+0xc6c/0x36a0
[  339.144568][T10321]  ? rcu_is_watching+0x12/0xc0
[  339.144591][T10321]  ? __pfx_do_epoll_ctl+0x10/0x10
[  339.144615][T10321]  ? rep_movs_alternative+0x30/0x90
[  339.144642][T10321]  ? __x64_sys_epoll_ctl+0x15c/0x1e0
[  339.144661][T10321]  __x64_sys_epoll_ctl+0x15c/0x1e0
[  339.144681][T10321]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  339.144703][T10321]  ? rcu_is_watching+0x12/0xc0
[  339.144722][T10321]  do_syscall_64+0x10b/0xf80
[  339.144739][T10321]  ? clear_bhb_loop+0x40/0x90
[  339.144757][T10321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.144772][T10321] RIP: 0033:0x7f36a779cdd9
[  339.144785][T10321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  339.144798][T10321] RSP: 002b:00007f36a8639028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  339.144813][T10321] RAX: ffffffffffffffda RBX: 00007f36a7a15fa0 RCX: 00007f36a779cdd9
[  339.144823][T10321] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004
[  339.144831][T10321] RBP: 00007f36a7832d69 R08: 0000000000000000 R09: 0000000000000000
[  339.144840][T10321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  339.144848][T10321] R13: 00007f36a7a16038 R14: 00007f36a7a15fa0 R15: 00007ffd4e752708
[  339.144867][T10321]  </TASK>
[  340.891317][ T4941] Bluetooth: hci0: command 0x0c1a tx timeout
[  341.050951][ T4941] Bluetooth: hci1: command 0x0c1a tx timeout
[  341.130228][ T4941] Bluetooth: hci3: command 0x0c1a tx timeout
[  341.136405][ T5624] Bluetooth: hci2: command 0x0c1a tx timeout
[  342.525140][T10394] netlink: 'syz.1.1317': attribute type 19 has an invalid length.
[  342.560274][T10394] netlink: 226 bytes leftover after parsing attributes in process `syz.1.1317'.
[  342.713936][T10398] FAULT_INJECTION: forcing a failure.
[  342.713936][T10398] name failslab, interval 1, probability 0, space 0, times 0
[  342.811922][T10398] CPU: 0 UID: 0 PID: 10398 Comm: syz.0.1318 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  342.811948][T10398] Tainted: [L]=SOFTLOCKUP
[  342.811954][T10398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  342.811963][T10398] Call Trace:
[  342.811969][T10398]  <TASK>
[  342.811975][T10398]  dump_stack_lvl+0x100/0x190
[  342.811996][T10398]  should_fail_ex.cold+0x5/0xa
[  342.812017][T10398]  should_failslab+0xc2/0x120
[  342.812034][T10398]  __kmalloc_cache_noprof+0x7a/0x6f0
[  342.812056][T10398]  ? apply_subsystem_event_filter+0x54f/0x17b0
[  342.812078][T10398]  ? append_filter_err+0x43a/0x620
[  342.812099][T10398]  apply_subsystem_event_filter+0x54f/0x17b0
[  342.812126][T10398]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  342.812151][T10398]  ? _copy_from_user+0x59/0xd0
[  342.812176][T10398]  subsystem_filter_write+0x95/0x120
[  342.812198][T10398]  vfs_write+0x2aa/0x1070
[  342.812216][T10398]  ? __pfx_subsystem_filter_write+0x10/0x10
[  342.812238][T10398]  ? __pfx_vfs_write+0x10/0x10
[  342.812254][T10398]  ? __fget_files+0x215/0x3d0
[  342.812275][T10398]  ? __fget_files+0x21f/0x3d0
[  342.812297][T10398]  ksys_write+0x12a/0x250
[  342.812313][T10398]  ? __pfx_ksys_write+0x10/0x10
[  342.812331][T10398]  ? rcu_is_watching+0x12/0xc0
[  342.812352][T10398]  do_syscall_64+0x10b/0xf80
[  342.812370][T10398]  ? clear_bhb_loop+0x40/0x90
[  342.812389][T10398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.812404][T10398] RIP: 0033:0x7f36a779cdd9
[  342.812417][T10398] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  342.812431][T10398] RSP: 002b:00007f36a8639028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  342.812446][T10398] RAX: ffffffffffffffda RBX: 00007f36a7a15fa0 RCX: 00007f36a779cdd9
[  342.812456][T10398] RDX: 0000000000000078 RSI: 0000200000000040 RDI: 0000000000000004
[  342.812464][T10398] RBP: 00007f36a7832d69 R08: 0000000000000000 R09: 0000000000000000
[  342.812473][T10398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  342.812482][T10398] R13: 00007f36a7a16038 R14: 00007f36a7a15fa0 R15: 00007ffd4e752708
[  342.812502][T10398]  </TASK>
[  343.484747][T10401] FAULT_INJECTION: forcing a failure.
[  343.484747][T10401] name failslab, interval 1, probability 0, space 0, times 0
[  343.532146][T10401] CPU: 0 UID: 0 PID: 10401 Comm: syz.2.1321 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  343.532172][T10401] Tainted: [L]=SOFTLOCKUP
[  343.532177][T10401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  343.532187][T10401] Call Trace:
[  343.532192][T10401]  <TASK>
[  343.532197][T10401]  dump_stack_lvl+0x100/0x190
[  343.532219][T10401]  should_fail_ex.cold+0x5/0xa
[  343.532240][T10401]  should_failslab+0xc2/0x120
[  343.532257][T10401]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  343.532280][T10401]  ? acpi_ut_allocate_object_desc_dbg+0x86/0x240
[  343.532305][T10401]  ? acpi_ut_trace+0x1d7/0x2a0
[  343.532325][T10401]  acpi_ut_allocate_object_desc_dbg+0x86/0x240
[  343.532350][T10401]  acpi_ut_create_internal_object_dbg+0x51/0x260
[  343.532368][T10401]  acpi_ut_create_integer_object+0x46/0xe0
[  343.532383][T10401]  acpi_ex_read_data_from_field+0x146/0xd40
[  343.532402][T10401]  ? acpi_ut_ptr_exit+0x10c/0x180
[  343.532419][T10401]  ? acpi_ut_value_exit+0x10d/0x190
[  343.532438][T10401]  acpi_ex_resolve_node_to_value+0x6b8/0x9a0
[  343.532462][T10401]  ? __pfx_acpi_ex_resolve_node_to_value+0x10/0x10
[  343.532485][T10401]  ? acpi_ds_create_operand+0x267/0xc20
[  343.532503][T10401]  acpi_ex_resolve_to_value+0x3da/0xcd0
[  343.532524][T10401]  ? __pfx_acpi_ex_resolve_to_value+0x10/0x10
[  343.532545][T10401]  ? __pfx_acpi_ns_lookup+0x10/0x10
[  343.532563][T10401]  ? acpi_ut_track_stack_ptr+0x114/0x180
[  343.532584][T10401]  acpi_ds_evaluate_name_path+0x30d/0x4a0
[  343.532601][T10401]  ? __pfx_acpi_ds_evaluate_name_path+0x10/0x10
[  343.532619][T10401]  ? acpi_ps_get_next_namepath+0x1f6/0xa10
[  343.532634][T10401]  ? acpi_ut_trace_ptr+0x1d1/0x2a0
[  343.532654][T10401]  acpi_ds_exec_end_op+0xb78/0x1e60
[  343.532680][T10401]  ? __pfx_acpi_ds_exec_end_op+0x10/0x10
[  343.532697][T10401]  acpi_ps_parse_loop+0x5dd/0x24a0
[  343.532720][T10401]  ? __pfx_acpi_ps_parse_loop+0x10/0x10
[  343.532736][T10401]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  343.532758][T10401]  ? acpi_ut_create_thread_state+0x6d/0x170
[  343.532781][T10401]  acpi_ps_parse_aml+0x81e/0x1120
[  343.532801][T10401]  acpi_ps_execute_method+0x5c4/0xe90
[  343.532827][T10401]  acpi_ns_evaluate+0x640/0x1670
[  343.532851][T10401]  acpi_evaluate_object+0x420/0xe00
[  343.532866][T10401]  ? kasan_save_stack+0x30/0x50
[  343.532879][T10401]  ? kasan_save_track+0x14/0x30
[  343.532892][T10401]  ? __kasan_kmalloc+0xaa/0xb0
[  343.532904][T10401]  ? __kvmalloc_node_noprof+0x360/0xa00
[  343.532921][T10401]  ? __pfx_acpi_evaluate_object+0x10/0x10
[  343.532936][T10401]  ? lock_acquire+0x1b1/0x370
[  343.532955][T10401]  acpi_evaluate_integer+0xdf/0x220
[  343.532977][T10401]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[  343.533006][T10401]  ? __pfx_status_show+0x10/0x10
[  343.533020][T10401]  status_show+0xa0/0x120
[  343.533034][T10401]  ? __pfx_status_show+0x10/0x10
[  343.533053][T10401]  dev_attr_show+0x52/0xa0
[  343.533072][T10401]  ? __pfx_dev_attr_show+0x10/0x10
[  343.533091][T10401]  sysfs_kf_seq_show+0x217/0x3a0
[  343.533119][T10401]  seq_read_iter+0x32f/0x1270
[  343.533134][T10401]  ? lock_acquire+0x1b1/0x370
[  343.533155][T10401]  kernfs_fop_read_iter+0x46c/0x610
[  343.533177][T10401]  ? rw_verify_area+0xce/0x6d0
[  343.533191][T10401]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[  343.533213][T10401]  vfs_read+0x825/0xb30
[  343.533232][T10401]  ? __pfx_vfs_read+0x10/0x10
[  343.533260][T10401]  ksys_read+0x12a/0x250
[  343.533276][T10401]  ? __pfx_ksys_read+0x10/0x10
[  343.533293][T10401]  ? rcu_is_watching+0x12/0xc0
[  343.533313][T10401]  do_syscall_64+0x10b/0xf80
[  343.533332][T10401]  ? clear_bhb_loop+0x40/0x90
[  343.533351][T10401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.533366][T10401] RIP: 0033:0x7fda4b19cdd9
[  343.533379][T10401] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  343.533394][T10401] RSP: 002b:00007fda4bfe4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  343.533409][T10401] RAX: ffffffffffffffda RBX: 00007fda4b415fa0 RCX: 00007fda4b19cdd9
[  343.533419][T10401] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000005
[  343.533429][T10401] RBP: 00007fda4b232d69 R08: 0000000000000000 R09: 0000000000000000
[  343.533438][T10401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  343.533447][T10401] R13: 00007fda4b416038 R14: 00007fda4b415fa0 R15: 00007fffe43a47b8
[  343.533467][T10401]  </TASK>
[  343.533497][T10401] ACPI Error: 
[  344.852434][T10413] random: crng reseeded on system resumption
[  345.081083][T10401] Could not allocate an object descriptor (20251212/utobject-180)
[  345.125705][T10401] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529)
[  346.007172][T10432] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1327'.
[  347.531214][T10457] FAULT_INJECTION: forcing a failure.
[  347.531214][T10457] name failslab, interval 1, probability 0, space 0, times 0
[  347.582380][T10457] CPU: 0 UID: 0 PID: 10457 Comm: syz.2.1334 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  347.582407][T10457] Tainted: [L]=SOFTLOCKUP
[  347.582412][T10457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  347.582422][T10457] Call Trace:
[  347.582427][T10457]  <TASK>
[  347.582433][T10457]  dump_stack_lvl+0x100/0x190
[  347.582455][T10457]  should_fail_ex.cold+0x5/0xa
[  347.582476][T10457]  should_failslab+0xc2/0x120
[  347.582493][T10457]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  347.582510][T10457]  ? apply_subsystem_event_filter+0x463/0x17b0
[  347.582535][T10457]  kstrdup+0x51/0xe0
[  347.582551][T10457]  apply_subsystem_event_filter+0x463/0x17b0
[  347.582579][T10457]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  347.582603][T10457]  ? _copy_from_user+0x59/0xd0
[  347.582629][T10457]  subsystem_filter_write+0x95/0x120
[  347.582651][T10457]  vfs_write+0x2aa/0x1070
[  347.582668][T10457]  ? __pfx_subsystem_filter_write+0x10/0x10
[  347.582691][T10457]  ? __pfx_vfs_write+0x10/0x10
[  347.582706][T10457]  ? __fget_files+0x215/0x3d0
[  347.582728][T10457]  ? __fget_files+0x21f/0x3d0
[  347.582749][T10457]  ksys_write+0x12a/0x250
[  347.582765][T10457]  ? __pfx_ksys_write+0x10/0x10
[  347.582784][T10457]  ? rcu_is_watching+0x12/0xc0
[  347.582807][T10457]  do_syscall_64+0x10b/0xf80
[  347.582826][T10457]  ? clear_bhb_loop+0x40/0x90
[  347.582845][T10457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.582860][T10457] RIP: 0033:0x7fda4b19cdd9
[  347.582874][T10457] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  347.582888][T10457] RSP: 002b:00007fda4bfe4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  347.582902][T10457] RAX: ffffffffffffffda RBX: 00007fda4b415fa0 RCX: 00007fda4b19cdd9
[  347.582912][T10457] RDX: 0000000000000078 RSI: 0000200000000040 RDI: 0000000000000004
[  347.582921][T10457] RBP: 00007fda4b232d69 R08: 0000000000000000 R09: 0000000000000000
[  347.582930][T10457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  347.582939][T10457] R13: 00007fda4b416038 R14: 00007fda4b415fa0 R15: 00007fffe43a47b8
[  347.582959][T10457]  </TASK>
[  348.449925][T10469] base or size exceeds the MTRR width
[  348.902061][T10483] random: crng reseeded on system resumption
[  349.112796][T10487] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  349.291563][T10488] smpboot: CPU 1 is now offline
[  354.963928][T10558] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1361'.
[  355.027452][T10551] Process accounting resumed
[  357.320764][T10616] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  357.367372][T10590] Process accounting paused
[  357.786057][T10626] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1374'.
[  357.845465][T10626] netlink: 13 bytes leftover after parsing attributes in process `syz.1.1374'.
[  357.956340][T10627] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1373'.
[  358.089713][T10627] hsr_slave_1 (unregistering): left promiscuous mode
[  358.984675][T10649] FAULT_INJECTION: forcing a failure.
[  358.984675][T10649] name failslab, interval 1, probability 0, space 0, times 0
[  359.016636][T10649] CPU: 0 UID: 0 PID: 10649 Comm: syz.3.1380 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  359.016662][T10649] Tainted: [L]=SOFTLOCKUP
[  359.016668][T10649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  359.016677][T10649] Call Trace:
[  359.016683][T10649]  <TASK>
[  359.016689][T10649]  dump_stack_lvl+0x100/0x190
[  359.016712][T10649]  should_fail_ex.cold+0x5/0xa
[  359.016733][T10649]  ? tracepoint_add_func+0x3a8/0x1150
[  359.016754][T10649]  should_failslab+0xc2/0x120
[  359.016771][T10649]  __kmalloc_noprof+0xe0/0x850
[  359.016798][T10649]  ? __pfx_trace_event_raw_event_nfsd_file_cons_err+0x10/0x10
[  359.016817][T10649]  tracepoint_add_func+0x3a8/0x1150
[  359.016837][T10649]  ? __pfx_trace_event_raw_event_nfsd_file_cons_err+0x10/0x10
[  359.016861][T10649]  ? __pfx_trace_event_raw_event_nfsd_file_cons_err+0x10/0x10
[  359.016880][T10649]  tracepoint_probe_register+0xc4/0x110
[  359.016905][T10649]  ? __pfx_tracepoint_probe_register+0x10/0x10
[  359.016927][T10649]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  359.016947][T10649]  ? __pfx_trace_event_raw_event_nfsd_file_cons_err+0x10/0x10
[  359.016966][T10649]  ? __pfx_probe_sched_switch+0x10/0x10
[  359.016988][T10649]  ? __lock_acquire+0x4a5/0x2630
[  359.017006][T10649]  trace_event_reg+0x209/0x350
[  359.017026][T10649]  __ftrace_event_enable_disable+0x211/0x6f0
[  359.017051][T10649]  __ftrace_set_clr_event_nolock+0x390/0xc30
[  359.017073][T10649]  ftrace_set_clr_event+0x1b7/0x3f0
[  359.017098][T10649]  ? __pfx_ftrace_set_clr_event+0x10/0x10
[  359.017115][T10649]  ? trace_get_user+0x3ae/0xa70
[  359.017143][T10649]  ftrace_event_write+0x259/0x2c0
[  359.017160][T10649]  ? __pfx_ftrace_event_write+0x10/0x10
[  359.017186][T10649]  vfs_write+0x2aa/0x1070
[  359.017204][T10649]  ? __pfx_ftrace_event_write+0x10/0x10
[  359.017222][T10649]  ? __pfx_vfs_write+0x10/0x10
[  359.017238][T10649]  ? __fget_files+0x215/0x3d0
[  359.017259][T10649]  ? __fget_files+0x21f/0x3d0
[  359.017281][T10649]  ksys_write+0x12a/0x250
[  359.017297][T10649]  ? __pfx_ksys_write+0x10/0x10
[  359.017315][T10649]  ? rcu_is_watching+0x12/0xc0
[  359.017336][T10649]  do_syscall_64+0x10b/0xf80
[  359.017354][T10649]  ? clear_bhb_loop+0x40/0x90
[  359.017372][T10649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.017387][T10649] RIP: 0033:0x7f35dc79cdd9
[  359.017401][T10649] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  359.017416][T10649] RSP: 002b:00007f35dd5cc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  359.017431][T10649] RAX: ffffffffffffffda RBX: 00007f35dca15fa0 RCX: 00007f35dc79cdd9
[  359.017440][T10649] RDX: 0000000000000af0 RSI: 0000000000000000 RDI: 0000000000000006
[  359.017449][T10649] RBP: 00007f35dc832d69 R08: 0000000000000000 R09: 0000000000000000
[  359.017458][T10649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  359.017466][T10649] R13: 00007f35dca16038 R14: 00007f35dca15fa0 R15: 00007ffcb628a908
[  359.017488][T10649]  </TASK>
[  359.377502][T10652] ubi0: attaching mtd0
[  359.384276][T10652] ubi0: scanning is finished
[  359.654068][T10652] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  359.675372][T10652] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  359.751534][T10652] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  359.824186][T10652] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  359.934413][T10652] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  360.081674][T10652] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  360.149834][T10649] event trace: Could not enable event nfsd_file_cons_err
[  360.278158][T10652] ubi0: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 4128771743
[  360.488680][T10652] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  360.591505][ T5624] Bluetooth: hci1: unexpected event 0x09 length: 435 > 3
[  360.698770][T10661] ubi0: background thread "ubi_bgt0d" started, PID 10661
[  360.761879][T10655] ubi0: detaching mtd0
[  360.871175][T10655] ubi0: mtd0 is detached
[  360.880196][T10683] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  361.029640][T10686] smpboot: CPU 1 is now offline
[  364.155216][T10723] 
[  364.157562][T10723] ======================================================
[  364.164559][T10723] WARNING: possible circular locking dependency detected
[  364.171558][T10723] syzkaller #0 Tainted: G             L     
[  364.177508][T10723] ------------------------------------------------------
[  364.184497][T10723] syz.3.1396/10723 is trying to acquire lock:
[  364.190541][T10723] ffff888058fb6e68 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}, at: __flush_work+0x4ca/0xcb0
[  364.202009][T10723] 
[  364.202009][T10723] but task is already holding lock:
[  364.209352][T10723] ffff888058fb72e0 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x3a5/0x620
[  364.218301][T10723] 
[  364.218301][T10723] which lock already depends on the new lock.
[  364.218301][T10723] 
[  364.228676][T10723] 
[  364.228676][T10723] the existing dependency chain (in reverse order) is:
[  364.237662][T10723] 
[  364.237662][T10723] -> #1 (sk_lock-AF_SMC/1){+.+.}-{0:0}:
[  364.245377][T10723]        lock_sock_nested+0x41/0xf0
[  364.250570][T10723]        smc_listen_out+0x1f5/0x4b0
[  364.255749][T10723]        smc_listen_work+0x4c2/0x50e0
[  364.261103][T10723]        process_one_work+0xa0e/0x1980
[  364.266540][T10723]        worker_thread+0x5ef/0xe50
[  364.271637][T10723]        kthread+0x370/0x450
[  364.276209][T10723]        ret_from_fork+0x72b/0xd50
[  364.281302][T10723]        ret_from_fork_asm+0x1a/0x30
[  364.286572][T10723] 
[  364.286572][T10723] -> #0 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}:
[  364.296720][T10723]        __lock_acquire+0x14b8/0x2630
[  364.302077][T10723]        lock_acquire+0x1b1/0x370
[  364.307082][T10723]        __flush_work+0x4de/0xcb0
[  364.312086][T10723]        cancel_work_sync+0xd1/0xf0
[  364.317267][T10723]        smc_clcsock_release+0x5f/0xe0
[  364.322707][T10723]        __smc_release+0x5c2/0x880
[  364.327797][T10723]        smc_close_non_accepted+0xda/0x200
[  364.333587][T10723]        smc_close_active+0x4ff/0x1070
[  364.339034][T10723]        __smc_release+0x634/0x880
[  364.344124][T10723]        smc_release+0x1fc/0x620
[  364.349039][T10723]        __sock_release+0xb3/0x260
[  364.354128][T10723]        sock_close+0x1c/0x30
[  364.358783][T10723]        __fput+0x3ff/0xb50
[  364.363269][T10723]        task_work_run+0x150/0x240
[  364.368358][T10723]        exit_to_user_mode_loop+0x100/0x4a0
[  364.374232][T10723]        do_syscall_64+0x6f2/0xf80
[  364.379329][T10723]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.385720][T10723] 
[  364.385720][T10723] other info that might help us debug this:
[  364.385720][T10723] 
[  364.395922][T10723]  Possible unsafe locking scenario:
[  364.395922][T10723] 
[  364.403343][T10723]        CPU0                    CPU1
[  364.408681][T10723]        ----                    ----
[  364.414019][T10723]   lock(sk_lock-AF_SMC/1);
[  364.418504][T10723]                                lock((work_completion)(&new_smc->smc_listen_work));
[  364.427941][T10723]                                lock(sk_lock-AF_SMC/1);
[  364.434947][T10723]   lock((work_completion)(&new_smc->smc_listen_work));
[  364.441858][T10723] 
[  364.441858][T10723]  *** DEADLOCK ***
[  364.441858][T10723] 
[  364.449972][T10723] 3 locks held by syz.3.1396/10723:
[  364.455143][T10723]  #0: ffff888075d0c440 (&sb->s_type->i_mutex_key#13){+.+.}-{4:4}, at: __sock_release+0x86/0x260
[  364.465653][T10723]  #1: ffff888058fb72e0 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x3a5/0x620
[  364.475028][T10723]  #2: ffffffff8e7e52e0 (rcu_read_lock){....}-{1:3}, at: __flush_work+0xfd/0xcb0
[  364.484141][T10723] 
[  364.484141][T10723] stack backtrace:
[  364.490008][T10723] CPU: 0 UID: 0 PID: 10723 Comm: syz.3.1396 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  364.490029][T10723] Tainted: [L]=SOFTLOCKUP
[  364.490034][T10723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  364.490043][T10723] Call Trace:
[  364.490050][T10723]  <TASK>
[  364.490057][T10723]  dump_stack_lvl+0x100/0x190
[  364.490073][T10723]  print_circular_bug.cold+0x178/0x1c7
[  364.490098][T10723]  check_noncircular+0x146/0x160
[  364.490123][T10723]  __lock_acquire+0x14b8/0x2630
[  364.490139][T10723]  lock_acquire+0x1b1/0x370
[  364.490151][T10723]  ? __flush_work+0x4ca/0xcb0
[  364.490165][T10723]  ? preempt_schedule_thunk+0x16/0x30
[  364.490188][T10723]  ? __flush_work+0x4ca/0xcb0
[  364.490202][T10723]  __flush_work+0x4de/0xcb0
[  364.490215][T10723]  ? __flush_work+0x4ca/0xcb0
[  364.490231][T10723]  ? __pfx___flush_work+0x10/0x10
[  364.490246][T10723]  ? __pfx_wq_barrier_func+0x10/0x10
[  364.490268][T10723]  ? __pfx___might_resched+0x10/0x10
[  364.490285][T10723]  cancel_work_sync+0xd1/0xf0
[  364.490303][T10723]  smc_clcsock_release+0x5f/0xe0
[  364.490320][T10723]  __smc_release+0x5c2/0x880
[  364.490336][T10723]  ? __pfx_sock_def_readable+0x10/0x10
[  364.490349][T10723]  smc_close_non_accepted+0xda/0x200
[  364.490366][T10723]  smc_close_active+0x4ff/0x1070
[  364.490384][T10723]  __smc_release+0x634/0x880
[  364.490399][T10723]  smc_release+0x1fc/0x620
[  364.490414][T10723]  __sock_release+0xb3/0x260
[  364.490430][T10723]  ? __pfx_sock_close+0x10/0x10
[  364.490444][T10723]  sock_close+0x1c/0x30
[  364.490458][T10723]  __fput+0x3ff/0xb50
[  364.490478][T10723]  ? _raw_spin_unlock_irq+0x23/0x50
[  364.490495][T10723]  task_work_run+0x150/0x240
[  364.490510][T10723]  ? __pfx_task_work_run+0x10/0x10
[  364.490524][T10723]  ? rcu_is_watching+0x12/0xc0
[  364.490541][T10723]  exit_to_user_mode_loop+0x100/0x4a0
[  364.490555][T10723]  ? do_syscall_64+0x519/0xf80
[  364.490579][T10723]  do_syscall_64+0x6f2/0xf80
[  364.490596][T10723]  ? clear_bhb_loop+0x40/0x90
[  364.490612][T10723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.490627][T10723] RIP: 0033:0x7f35dc79cdd9
[  364.490640][T10723] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  364.490655][T10723] RSP: 002b:00007f35dd5cc028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  364.490668][T10723] RAX: 0000000000000000 RBX: 00007f35dca15fa0 RCX: 00007f35dc79cdd9
[  364.490678][T10723] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  364.490686][T10723] RBP: 00007f35dc832d69 R08: 0000000000000000 R09: 0000000000000000
[  364.490695][T10723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  364.490704][T10723] R13: 00007f35dca16038 R14: 00007f35dca15fa0 R15: 00007ffcb628a908
[  364.490717][T10723]  </TASK>
[  365.473733][T10721] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  365.479758][T10721] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  365.485984][T10721] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  365.493088][T10721] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  365.541195][T10727] Process accounting resumed
[  367.552601][ T4941] Bluetooth: hci3: command 0x0c1a tx timeout
[  367.558617][ T5624] Bluetooth: hci2: command 0x0c1a tx timeout
[  367.564614][   T50] Bluetooth: hci1: command 0x0c1a tx timeout
[  367.570600][ T5624] Bluetooth: hci0: command 0x0c1a tx timeout