last executing test programs:

35.499730738s ago: executing program 1 (id=517):
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89b0, &(0x7f0000000080)={'bond0\x00'})
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x5, 0x0)
r1 = openat$auto_generic(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/kpagecgroup\x00', 0x20000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/nbd14/power/runtime_active_time\x00', 0x4a001, 0x0)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_EDGE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40001}, 0x24040004)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/irq/8/spurious\x00', 0x0, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xfff, 0x9b72, 0xffffffffffffffff, 0x28000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000100)={0x0, 0x1d, 0x3000, 0x6, 0x7, 0x400a, r0, [0x0, 0x2b2, 0x8], {0x6, 0x6, 0x8c4a, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c2, 0x9, 0x100000000}})
r2 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffbfffd}, 0xffff}, 0x4000, 0x20000043)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
clone$auto(0x8ffe, 0xbc2, 0xffffffffffffffff, 0xfffffffffffffffc, 0x400)
select$auto(0x4, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x7, 0x3, 0x1, 0xdd, 0x1000000000000004, 0x15f4da0a, 0x4000000400039, 0x3, 0x2fffffffffffffe, 0x80000002, 0x7a142c64, 0x6d3c, 0x5, 0x80, 0xfb]}, 0x0)
shutdown$auto(0x200000003, 0x2)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video7\x00', 0x70d902, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/binder1\x00', 0x189160, 0x0)
openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
ioctl$auto_BINDER_FREEZE(r1, 0x400c620e, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007)

35.304753561s ago: executing program 0 (id=518):
mmap$auto(0x0, 0x200006, 0x2, 0x2000000040eb1, 0x602, 0x300000000000)
close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x4000000000002)
r0 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/loop6\x00', 0x14fe02, 0x0)
mmap$auto(0x0, 0x128008, 0x3, 0xeb1, r0, 0x9)
r1 = io_uring_setup$auto(0x59, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002640)='/sys/kernel/tracing/set_event_pid\x00', 0x2002, 0x0)
ioctl$auto_SNDCTL_SEQ_OUTOFBAND(r1, 0x40085112, &(0x7f0000000480)="64f94863a4a0accad42ccab1f91a3ea1b87f30f9d7dba3fead71f7baf07aedfe6ff8284464d6e9da6c3441232f7aee913a0b2567bcfb35d9f589be7bf008f1aa5af0794ed1ea313221ec7ca5567db913f198d744079c27aa04563dee59798542151304fffe565b4cd550307b4c488e789d19496531fe22420aaca96305aede4d5b28a27008f069f113ffc79b267f9226a5fc147791f01a67555a4b81757ed83ed911575b6fa07a457457f2d154e99a0c56e0d7e8caab50562d75dd106a4ad00077f157eea427c67034")
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x100842, 0x0)
ioctl$auto_SNDCTL_TMR_CONTINUE(r2, 0x5404, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x3f1143, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/vlan/config\x00', 0xc0000, 0x0)
r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
fremovexattr$auto(r4, &(0x7f0000000240)='/sys/devices/platform/dummy_hcd.4/usb5/descriptors\x00')
pread64$auto(r3, 0x0, 0x831d, 0xa78)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
socketcall$auto(0xffe, 0x0)
mmap$auto(0x0, 0xeb0f, 0x7, 0x1000000eb5, 0xffffffffffffffff, 0x20008000)
close_range$auto(0x2, 0xa, 0x0)
open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x42}, 0x4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = socket(0x11, 0x6, 0x9)
pwrite64$auto(0xc8, &(0x7f0000000200)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\x00^\x0fo\x97\xfc\x89\v\xea\xc2\x95\xafQ;C>\x15L\x90\xad\xa4\x1648W\t\x00\x00\x001\x00\x00\x00@X\xb9_\xdd\xa6\xa2E\xd8?\'\x8dg\x81h*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&%`_[\xde\x7f\xde8\xf7\xc1\x94\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\xee\xa9\x0eX\x01\xa3g\xba\x9cc\x90\xe3\xae\xa9\xde\x00\x00\x00B\xb4\xf2&\x00\xe2\xead\xd0\"\x16\x84v\n\xcdN\xb6\xa4\xe0\xb7e\x97 ?\xb5\xa1E=t\x96\xbd\xfd\xc5\xebn\xb7\n\xc2\xbc\xa2\xa8\x04#\x84\xa7R|\xed\x8f\x03\x01\x10wLT\vay\x12\xb63\x9e\a\x8e\xbd\x18y<\xb3\v\x14\x82\x97&\xfcm\x86\x10o\xdc\xf3x\xfd\x06\x87t\xb9$\x94,f\x9b0\xcd\xd3\r\xb1e\'\x19\xc1\xe7>*\xad\xa5+\xa8\x1c\x88\xa1\x0e[\x99\xb6LKZ\x9e\r\xd0r\xe2Ct\xc1\x99\x1b/\xc5P.aUdq\x97\x94\xb9\xa8qU\xae*g\x86\xc9\xa4\xe7\n\vh-v\"o.\xbf6\x13\tFK\x8e\xc6&&\x13\x81\x00\x8c7PS\x9c\xa3\xfb\x1d\xa9\x98\xd47\n\xa7\xd1\x10\xb3i\xd2\xa8\x18f\xb3K\x9b\x9b\x8c\xe8\x84\xa3,5-\xd6\xae\xbd\x1d\xf2o\x99\x02\x1azw9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04\bl\x042\x935\x9e\xeeH\x87\xda\x10\x8f^1\x89L`\xf4[\x06\xf6\xc7\xd0#\xdb\xb1\\\xc3\xb1\xb8\xe8\xde2\xbb\xf8I\x9c\x17KI\x8c\f\x1d\xaa\xa0\xdb\xc7\x9e\x81\x90CTe\xfa\x8dq&\x17\x908\xc9T\xffm\x930\x1d\x91\xf8|t\xfd\x18\xd5\xb0\xcbH\xa7\xb6T\n\x11%\xba\x16o\r\xf6\x90k\xfb\a\xa1\x15\x0e\xe1\xce0Q\xd0\x00\xc1\x1a\x1f\xaa8\xfbo)rtYK\"c\xe2c\xbeM\x9bT\x05\xf3\xccC\x8c\x00\xdf\x8c\x1b+\xca\x80', 0x84, 0xe83)
sendmmsg$auto(r5, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200), 0x35}, 0x5, 0x0, 0x5, 0xe}, 0x5}, 0x2, 0x100)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x1432c3, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)

34.979114401s ago: executing program 0 (id=519):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), 0xffffffffffffffff)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8a241, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
mmap$auto(0xa2, 0xf1, 0x8, 0x17, 0xffffffffffffffff, 0xe1e6)
r0 = mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00\x00', 0x62, 0xfffc, 0x0)
mq_timedreceive$auto(r0, 0x0, 0xa, 0x0, &(0x7f0000000080)={0x7ff, 0xe})
listxattrat$auto(r0, &(0x7f0000000100)='./file0\x00', 0x6, &(0x7f0000000180)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x8)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4044001)
ustat$auto(0x1, &(0x7f0000000000)={0x3, 0x1000, "fc1671f4c44d", "69b53cb9cab7"})
sendmsg$auto_VDPA_CMD_DEV_DEL(0xffffffffffffffff, 0x0, 0x40050)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0xc0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x6)
r1 = socket(0x2, 0x1, 0x0)
bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x4e24, @remote}, 0x6a)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800008}, 0x5, 0x20000000)
syz_genetlink_get_family_id$auto_nfsd(0x0, r1)
sendmsg$auto_NFSD_CMD_LISTENER_SET(0xffffffffffffffff, 0x0, 0x50)
socketpair$auto(0x10401e, 0x5, 0xfffffffc, 0x0)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
bpf$auto(0x12, &(0x7f0000000040)=@bpf_attr_1={0x84a5, 0x0, @next_key=0x8e66, 0x9}, 0x80)
write$auto(0x3, 0x0, 0x100085)

34.92235553s ago: executing program 1 (id=520):
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
getpgid(0xffffffffffffffff)
capget$auto(0x0, 0x0)
r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty23\x00', 0x321680, 0x0)
close_range$auto(r0, r0, 0x7)
socketpair$auto(0xf3, 0x4, 0x8000000000000000, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyp6\x00', 0xa0102, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r3 = socket(0x11, 0x2, 0x0)
sendmmsg$auto(r3, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x5, &(0x7f00000003c0), 0x5, 0x1000}, 0x5}, 0x2, 0x100)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101e81, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101f81, 0x0)
socket(0x23, 0x5, 0x0)
mmap$auto(0x7ffffffffffffffd, 0xb3b7, 0x4000000000e1, 0x2000000001a, 0x401, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x20)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0)
socket(0x29, 0x5, 0x100)
writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0xc2b80, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00')
r6 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
ioctl$auto_LOOP_CTL_ADD(r6, 0x4c80, 0xfffffffffffffffd)
read$auto(r1, 0x0, 0x6)
ioctl$auto_OSS_ALSAEMULVER2(r0, 0x80044df9, &(0x7f0000000040)="a7612a2903f52d4562de0a4b368ba145355594882bd7ef58ab4373b0ecf40b2dfa01c59ca83e23aeb27edc09393f7e01984395907f2c335e4633e6115cd3c11a9e0aff1e6e1e17581deb56ff5fa7d5fb92d49ba25b16c9ce95a464058c")

34.720702525s ago: executing program 0 (id=521):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/lapb5/broadcast\x00', 0x800, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000100)=""/16, 0x10)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000380), 0x600880, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
write$auto_seq_oss_f_ops_seq_oss(r1, &(0x7f0000000040)="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", 0x2f7)
ioctl$auto_SNDCTL_SEQ_SYNC(r1, 0x5101, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ram5\x00', 0x10040, 0x0)
ioctl$auto_BLKRRPART(r3, 0x125f, 0x0)
socket(0x2, 0x80802, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000894}, 0x800)
bpf$auto(0x0, &(0x7f00000001c0)=@query={@target_ifindex, 0x7, 0xab2, 0x4, 0x4d1, @count=0xa, 0x0, 0x3, 0x10, 0x4, 0x9}, 0x6f3)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="c3309ac3d454b46e", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRESDEC=r1, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000340)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRESOCT], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x24004815)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r4 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
ioctl$auto_SNAPSHOT_PREF_IMAGE_SIZE(r4, 0x3312, 0x0)
socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x6, 0x50b301a, 0x2c, 0x2c, 0x0, 0x2})
prctl$auto(0x16, 0x2, 0x2, 0x101000004000000d, 0x80000000000001af)

33.908080945s ago: executing program 1 (id=522):
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x412401, 0x0)
pidfd_send_signal$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffd8ef, 0x9, &(0x7f0000000600)={@siginfo_0_0={0x9, 0x8, 0x8, @_sigsys={&(0x7f0000000080)="773ac00055c16a1900e98c3f06353acd1e9f828cb0694ee69b56bbda6f942f1809494bd84cdabfd55ce979c7351e796368d7729eeab5cc1ea00d5e6522a77b9cc64dca6c2517fee9e1f4a6ef0aede2046f694ee12327ab20e0c8101e0148", 0xbb, 0xfffffffc}}}, 0x3)
r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x8882, 0x0)
ioctl$auto_BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000000c0))

33.736561756s ago: executing program 0 (id=523):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/mem/random/power/control\x00', 0x501000, 0x0)
r1 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000080), 0x20540, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
ioctl$auto(r1, 0x40046103, 0x81)
r2 = socket(0x10, 0x2, 0x0)
r3 = socketcall$auto(0xdcf0, &(0x7f00000000c0)=0x8000)
io_submit$auto(0x1, 0x3, &(0x7f00000001c0)=&(0x7f0000000140)={0x2, 0xffffffff, 0x6, 0x5, 0xff7f, r3, 0x2, 0x8, 0x9, 0x0, 0xd99e, r0})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB='e\x00', @ANYBLOB=']'], 0x1ac}}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x1892, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0xb, 0xa505}, 0x800}, 0x7, 0x4008)
write$auto(r0, &(0x7f0000000380)='0\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\xcf\x7f\xbf\xab\x12{\xc2\xc2*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d1s!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xd4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xb7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85K /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty24\x00', 0x800, 0x0)

33.71559602s ago: executing program 1 (id=524):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x4000000008000)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000d80), 0x0)
write$auto(0x3, 0x0, 0x5c8)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
sendmsg$auto_TIPC_NL_KEY_SET(0xffffffffffffffff, 0x0, 0x40000)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_GTP_CMD_NEWPDP(r0, 0x0, 0x40850)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socket(0x28, 0x1, 0x0)
open(0x0, 0x591002, 0x48a)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, 0xffffffffffffffff)
mmap$auto(0x21, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

33.457250341s ago: executing program 0 (id=526):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x204880, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x109200, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = socketcall$auto(0xa, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000080), r2)
sendmsg$auto_IEEE802154_LLSEC_ADD_KEY(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, r4, 0x400, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x40)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/bus/usb/drivers/dvb_usb_m920x/remove_id\x00', 0x802, 0x0)
pwrite64$auto(r5, &(0x7f0000000180)='\x00', 0x3, 0x8)
ioctl$auto(r0, 0xae41, r3)
syz_clone3(&(0x7f0000000640)={0x108000, 0x0, 0x0, 0x0, {0x15}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r6 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
ioctl$auto_UI_DEV_SETUP(r6, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})
ioctl$auto_UI_DEV_CREATE(r6, 0x5501, 0x0)
writev$auto(r6, &(0x7f0000000340)={&(0x7f00000002c0), 0xda7e}, 0x9)
ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae90, &(0x7f0000000000)={0x2, 0x0, [{0x80000008, 0x1, 0x9}]})

32.931588372s ago: executing program 1 (id=529):
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x0, 0xb, 0x0, 0x17)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/amidi2\x00', 0x521981, 0x0)
r1 = socket(0x18, 0x6, 0x0)
rmdir$auto(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00')
ioctl$sock_SIOCGIFINDEX(r1, 0x80047437, 0x0)
fstat$auto(r0, &(0x7f0000000080)={0x2, 0x7, 0xe, 0x8, <r2=>0xee01, 0x0, 0x0, 0x2cf, 0x8, 0x8, 0x3, 0x1ff, 0x8, 0x80000000, 0x6, 0x0, 0xcc})
keyctl$auto_KEYCTL_GET_PERSISTENT(0x16, r2, 0x9cd7, 0x5, 0x2)

32.888986581s ago: executing program 0 (id=530):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x80002, 0x73)
r1 = socket(0xa, 0x801, 0x84)
ioctl$auto_VHOST_GET_BACKEND_FEATURES(0xffffffffffffffff, 0x8008af26, &(0x7f00000000c0)=0x5)
fcntl$auto_F_NOTIFY(r0, 0x402, 0xaa)
bind$auto(0x3, 0x0, 0x6a)
r2 = socket(0x1d, 0x2, 0x2)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r2)
socket(0x26, 0x2, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x189002, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x101181, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
setsockopt$auto_SO_BROADCAST(r1, 0x9, 0x6, &(0x7f0000000180)='K \xe47QV\xdf$\x00{\x9f\r\x00Q\xad\x92\xdf\x85\xe7\xbb]\xb0\xa3\xadRj\x7fn\x1c/\xc6\xad\x06<\xc1\x9a\xd9-\xe3\xef\xa4\xaa\x8f4\xf4o\xae\x9de\x8a\x8aH\xe8l\xb0\xa5\x17\x81\x8e\xe0\x9e\xa9', 0x2)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x701, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000040)="3290b800009c550d22350f737ca2dd0af0d849aec832ec49c034169af8fa9231c143b1a8dd292977588a83400445ddc508f3aef64488936413adba3a9cc99bdfd8e7000000", 0x45)
listen$auto(0xffffffffffffffff, 0x100006)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) (fail_nth: 2)
mmap$auto(0x0, 0x2020009, 0x2, 0x1eb1, 0xfffffffffffffffa, 0x8000000000000000)
mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x6, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
connect$auto(r2, &(0x7f0000000080)=@in={0x2, 0x3, @private=0xa010100}, 0x54)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty\x00', 0x800, 0x0)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/can/rcvlist_sff\x00', 0x28102, 0x0)
lseek$auto(r5, 0x7, 0x0)
unshare$auto(0x800)

32.739969966s ago: executing program 1 (id=532):
unshare$auto(0x40000080)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14fe02, 0x0)
getsockopt$auto_SO_BSDCOMPAT(r0, 0x3, 0xe, &(0x7f00000000c0)='*\\\x00', &(0x7f0000000180)=0x40)
preadv2$auto(r0, &(0x7f0000000040)={0x0, 0x80000003}, 0x6, 0xffffffffffffffff, 0x8000000000000, 0x2f)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r1 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0)
pwrite64$auto(r1, 0x0, 0x400000, 0x200e)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtdblock0\x00', 0x14fe02, 0x0)
preadv2$auto(r2, &(0x7f0000000040)={0x0, 0x80000003}, 0x6, 0xffffffffffffffff, 0x8000000000000, 0x2f)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x480c1, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0xffffffff, 0xffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000001c, 0x9, 0x0, 0x400000000009, 0x7)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mq_notify$auto(0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bind$auto(0x3, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68)
r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r3, 0x0, 0x1e1)
listen$auto(r0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range$auto(0xffffffffffffffff, 0xa, 0x0)
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
r4 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_BLKPG2(r4, 0x1269, 0x0)
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
ioctl$auto_SNDCTL_SYNTH_ID(r5, 0xc08c5114, &(0x7f0000000340))

17.848323344s ago: executing program 32 (id=530):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x80002, 0x73)
r1 = socket(0xa, 0x801, 0x84)
ioctl$auto_VHOST_GET_BACKEND_FEATURES(0xffffffffffffffff, 0x8008af26, &(0x7f00000000c0)=0x5)
fcntl$auto_F_NOTIFY(r0, 0x402, 0xaa)
bind$auto(0x3, 0x0, 0x6a)
r2 = socket(0x1d, 0x2, 0x2)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r2)
socket(0x26, 0x2, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x189002, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x101181, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
setsockopt$auto_SO_BROADCAST(r1, 0x9, 0x6, &(0x7f0000000180)='K \xe47QV\xdf$\x00{\x9f\r\x00Q\xad\x92\xdf\x85\xe7\xbb]\xb0\xa3\xadRj\x7fn\x1c/\xc6\xad\x06<\xc1\x9a\xd9-\xe3\xef\xa4\xaa\x8f4\xf4o\xae\x9de\x8a\x8aH\xe8l\xb0\xa5\x17\x81\x8e\xe0\x9e\xa9', 0x2)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x701, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000040)="3290b800009c550d22350f737ca2dd0af0d849aec832ec49c034169af8fa9231c143b1a8dd292977588a83400445ddc508f3aef64488936413adba3a9cc99bdfd8e7000000", 0x45)
listen$auto(0xffffffffffffffff, 0x100006)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) (fail_nth: 2)
mmap$auto(0x0, 0x2020009, 0x2, 0x1eb1, 0xfffffffffffffffa, 0x8000000000000000)
mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x6, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
connect$auto(r2, &(0x7f0000000080)=@in={0x2, 0x3, @private=0xa010100}, 0x54)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty\x00', 0x800, 0x0)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/can/rcvlist_sff\x00', 0x28102, 0x0)
lseek$auto(r5, 0x7, 0x0)
unshare$auto(0x800)

17.656478701s ago: executing program 33 (id=532):
unshare$auto(0x40000080)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14fe02, 0x0)
getsockopt$auto_SO_BSDCOMPAT(r0, 0x3, 0xe, &(0x7f00000000c0)='*\\\x00', &(0x7f0000000180)=0x40)
preadv2$auto(r0, &(0x7f0000000040)={0x0, 0x80000003}, 0x6, 0xffffffffffffffff, 0x8000000000000, 0x2f)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r1 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0)
pwrite64$auto(r1, 0x0, 0x400000, 0x200e)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtdblock0\x00', 0x14fe02, 0x0)
preadv2$auto(r2, &(0x7f0000000040)={0x0, 0x80000003}, 0x6, 0xffffffffffffffff, 0x8000000000000, 0x2f)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x480c1, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0xffffffff, 0xffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000001c, 0x9, 0x0, 0x400000000009, 0x7)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mq_notify$auto(0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bind$auto(0x3, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68)
r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r3, 0x0, 0x1e1)
listen$auto(r0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range$auto(0xffffffffffffffff, 0xa, 0x0)
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
r4 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_BLKPG2(r4, 0x1269, 0x0)
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
ioctl$auto_SNDCTL_SYNTH_ID(r5, 0xc08c5114, &(0x7f0000000340))

4.860543459s ago: executing program 2 (id=659):
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000002080)='/dev/ptyv8\x00', 0x480, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/tty46\x00', 0x88a42, 0x0)
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event0\x00', 0x20000, 0x0)
ioctl$auto_EVIOCREVOKE(r0, 0x40044591, &(0x7f0000000040)=0xb)
ioctl$auto(0xffffffffffffffff, 0x89a0, 0x4)
write$auto(0x3, 0x0, 0xfdef)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x222c0, 0x20)
ioctl$auto(0x3, 0x5457, r1)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
bpf$auto(0x21, &(0x7f0000000080)=@query={@target_fd, 0x201000, 0xafef, 0x4, 0x1008, @count=0x7, 0x0, 0x1, 0x290, 0x7, 0xb}, 0xc4a)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000080)={0x0, 0x66}, 0x3)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec4\x00', 0x101901, 0x0)

4.239750793s ago: executing program 2 (id=661):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x2000000000000116, 0x80, 0xfffffffffffffffd, 0x10004)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400005, 0x100000005}})
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0)
write$auto_sg_fops_sg(r0, &(0x7f0000001380), 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x9, 0x2, 0x1, 0x5, 0x2e, 0x15f4da0e, 0x2a, 0x9, 0x100000000000000c, 0x6, 0x1, 0xfca, 0x9, 0x1, 0x4000000000000d]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a2, 0x7000000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/authorized\x00', 0x10b142, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
sendmsg$auto_IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x800)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)

3.337188582s ago: executing program 2 (id=663):
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
socket(0x1d, 0x3, 0x1)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0x10000, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
keyctl$auto(0x15, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="05082cbd7000fbdbdf257e000000000000ffe9ff00000000fbcdcf723761e464cc2327ce89ce96a5082aecdbbbdb9b60b1d900"/60], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x80)
socket(0x10, 0x2, 0x0)
socket(0x10, 0x2, 0x6)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socket(0x10, 0x4, 0x2)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x5)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe002)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
write$auto(0x3, 0x0, 0x800)

2.90821239s ago: executing program 2 (id=665):
mmap$auto(0x80, 0x80000000020005, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x0)
r0 = socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
getsockopt$auto(r0, 0x84, 0x1, 0x0, &(0x7f0000000280)=0x1000c0)
mmap$auto(0x4, 0xa, 0x4000000000df, 0x10000000eb1, r0, 0x8000)
socket(0xa, 0x2, 0x73)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x201, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r1, &(0x7f0000000740)="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", 0x318)
socket(0x2, 0x80002, 0x73)
socketpair$auto(0x10800, 0x4, 0xfffffffd, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio23\x00', 0x5e7782, 0x0)
ioctl$auto(r2, 0xc0285629, r2)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r3, 0x4, 0x7ff)
ptrace$auto_PTRACE_GETEVENTMSG(0x4201, r3, 0x8, 0x68f8000000000002)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket(0xa, 0x2, 0x73)
mmap$auto(0xfffffffffffffc, 0xd8f0, 0x7, 0xeb1, r4, 0xbf47)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x4020005, 0xe3, 0xeb3, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0)
openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0)

1.761902023s ago: executing program 3 (id=670):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r2 = open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/036/001\x00', 0x10000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
syz_clone3(&(0x7f00000003c0)={0x383201180, 0x0, 0x0, 0x0, {0x39}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58)
ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f00000000c0)={0x7, 0x0, [{0x400000b1, 0x6, 0xfd7}]})
r3 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/environ\x00', 0x2000, 0x0)
read$auto_proc_environ_operations_base(r3, &(0x7f0000000240)=""/80, 0x50)

1.622612334s ago: executing program 2 (id=671):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
unshare$auto(0x40000080)
ioctl$auto_RNDADDENTROPY2(0xffffffffffffffff, 0x40085203, &(0x7f0000000440)=[0xfff, 0xedc0])
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
r1 = openat$auto_ftrace_event_format_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/format\x00', 0x40, 0x0)
pread64$auto(r1, 0x0, 0x3, 0xfdd)
mmap$auto(0x9, 0x5, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mlockall$auto(0x800000000000005)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket(0x2b, 0x1, 0x1)
mount$auto(0x0, 0x0, &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0)
setsockopt$auto(r2, 0x0, 0x23, 0x0, 0xc)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2a, 0x2, 0x1)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000002600)={{&(0x7f0000000480)="fb236d4793e872b50889f3758b6fc115b83150ed15ed23c26d26ba11715f9d6ebaa097a1c20437fe0094b95302e1bee1cab922722b0267c43788b77c1ae3b0cad17af8e771f2de0d5885874f837eb7e73d94465fd3efb592", 0x1, &(0x7f00000015c0)={&(0x7f00000005c0)="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", 0x1}, 0x4d32b0ab, &(0x7f0000001600)="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", 0x182e, 0x9}, 0x4}, 0x1, 0x6)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/workqueue/parameters/default_affinity_scope\x00', 0x1a9242, 0x0)
sendfile$auto(r3, r3, 0x0, 0x5)
io_setup$auto(0xffff, &(0x7f0000000580)=0x3f000000)
io_setup$auto(0xa, &(0x7f0000000040))
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
r4 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x40302, 0x0)
ioctl$auto_PROCMAP_QUERY(r4, 0xc0686611, &(0x7f0000000080)={0x68, 0x34, 0x7fff, 0x5, 0x80000000009, 0x1, 0x9, 0x5, 0x5, 0x7f93, 0xfffffffe, 0x7ffffffd, 0x7ff, 0x7, 0x9})
r5 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/loginuid\x00', 0x701fc3, 0x0)
waitid$auto_P_ALL(0x0, 0x1, &(0x7f0000000300)={@_si_pad}, 0x24, &(0x7f0000000380)={{0x7fff, 0xfffffffffffffffd}, {0x8, 0x4}, 0x39b10f36, 0x5, 0x5, 0xe02, 0x7fff, 0x8, 0x7, 0x7, 0xffffffffffffffc1, 0xb791, 0x0, 0x400008, 0x1, 0x236d})
bpf$auto(0x5, &(0x7f00000001c0)=@bpf_attr_5={@target_fd=r4, r5, 0x0, 0x100, r0, @relative_id=0x3, 0x6}, 0xffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)

1.437751557s ago: executing program 3 (id=672):
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
socket(0x10, 0x2, 0x0)
socket(0x10, 0x2, 0x6)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x5)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe002)
connect$auto(0x3, &(0x7f00000000c0), 0x55)
write$auto(0x3, 0x0, 0x81f)

1.146953052s ago: executing program 3 (id=673):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x201, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto_SO_RXQ_OVFL(r0, 0x8, 0x28, 0x0, &(0x7f0000000540)=0x5)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x22000, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r1, &(0x7f0000000040), 0x0)
write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r2)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0xffffffffffffffff, 0x28000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='./cgroup.cpu/memory.numa_stat\x00', 0xe2080, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0x200008, 0x8)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020008, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
io_uring_setup$auto(0x4, 0x0)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
r3 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r3, 0x11e, 0x4, 0xfffffffffffffffe, 0x0)
ppoll$auto(0x0, 0x2, 0x0, 0x0, 0x8)

404.730456ms ago: executing program 2 (id=674):
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x1, 0x15)
msgrcv$auto(0x0, 0x0, 0xff9, 0x1, 0x3)
msgsnd$auto(0x0, &(0x7f0000000080)={0x6, 0x2}, 0xf, 0xc45)
getsockopt$auto_SO_BSDCOMPAT(r1, 0x5, 0xe, &(0x7f0000000340)='/sys/kernel/irq/5/chip_name\x00mZln|\x11\xf0\x10O\xd3V\x14\x99\xc0\xa8\xe7\x19\xcb{\xc4S?q\xd1\xda_-\x1d@\x19i\x9e=\xa4\x83\xceE\x91\xf5\x8f\xe8\xc1b=\xdd\xb8\xa8}\x1c\'T)\xd2#\xec\xf6\x05\xbbB-\\\xb8-\xba\xc2\\\xa0\xf1\x9e\xadJ\xec\a\x95\xd0\xb3\xc9e\x89$\x8a\xfb\x9c\xa0\x93\x02,}\xff\x0e\x05\xaf\x9auC&7\x80\xfb\xc0\x17\xdf\xab\xd1]j~C7}\xf8\xc35\\?\xa4PO\xbe4\x03\xd5g\xb2)\xb1\xf3kc\n\xd7\xa4\xaaL\xdeO\xf8Ht\xc4\xe7\xe7\xd4pe\x13\xd7\xb8q=\xa7]\"8\'\x17\xdd\xa6\xa671Yvo_vq\xb8\n\xad\x98\x9c\xb72\x84=\xf2\xfa\x94{\x9b\x84Z\x14\xd1\xdc\x9e\'+\x1f', 0x0)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048084)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
socket(0x1e, 0x6, 0x0)
bind$auto(r1, &(0x7f0000000040)=@l2tp={0x2, 0x0, @local}, 0x66)
bind$auto(0x3, &(0x7f0000000040)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x43, 0x1, 0x3}}, 0x6a)
close_range$auto(0x0, 0x5, 0x0)
socket(0x27, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r3 = prctl$auto(0x4e, 0x1, 0x0, 0x0, 0x5)
ioctl$auto_EXT4_IOC_SETFSUUID(r3, 0x4008662c, &(0x7f0000000100)={0xffffffff, 0x0, "f9f62da2db7faff11eebdb0f76aa9b2f9ddaafb36b03b06d2066d1f95303dfdaddf65c3b36eb5565bb24a0da3d29ef667f9c88bed392690ac95ff12670a411d6dc05fd1aedd8dd75052005196c1b8d1c510088113c45cb8e9415a2ef61c9e13d1f46af4ac44aff82d55a2570b9c61e441aaef371dd7110ea3c12790104b9e41cd430cde315df3401f150b2d1f92c18c1a23bf33763fd4732b65dacc08dfbcf976b12d7282c30754b005442a8b4bc50353e54c8240a9115f2f6f50d58286f97c6f286db732a8246701566eb69b5fbe02da9ad98008877760ea7a8150acf39cb4cce9c2436d3307fd5ed58617c3c14116eee33a2"})
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/irq/5/chip_name\x00', 0x40000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000680)=""/4121, 0x1019)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
bpf$auto_BPF_MAP_DELETE_ELEM(0x3, &(0x7f0000000440)=@bpf_attr_7={@btf_id=0x80, 0x9, 0x8, r2}, 0xbfd9)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x1, 0x0)

201.837587ms ago: executing program 3 (id=675):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop6\x00', 0x40203, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r0, 0x4c03, 0xfffffffffffffffd)
mmap$auto(0x0, 0x2020009, 0xfff, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x0, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/block/parameters/events_dfl_poll_msecs\x00', 0x80002, 0x0)
ioctl$auto(r1, 0xc0045540, r2)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000002080)='/dev/ptyv8\x00', 0x480, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ptye8\x00', 0x88a42, 0x0)
ioctl$auto(0x3, 0x560b, 0xffffffffffffffff)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
socket(0x2, 0x3, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x40000009, 0x9, 0x1d, 0x940, 0x1ffde, 0x3, 0x400000000006, 0x8000004, 0x9, 0xffffeffa, 0x3, 0x4, 0x7, 0x5, 0x0, 0x3, 0x205, 0x1000000007, 0x0, 0x3ffff, 0x0, 0x3, 0x7069, 0x0, 0x0, 0x0, 0x0, 0xae8, 0x0, [0xffffffffffffffff, 0x0, 0x3, 0x8, 0x5, 0x8000004, 0x40, 0x3, 0xfffffffffffffffb, 0x0, 0x4, 0x0, 0x1, 0x0, 0x8000000000000003, 0x0, 0x0, 0x0, 0x1, 0x3, 0x4, 0x0, 0x5, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80000, 0x0, 0x100000000, 0x0, 0x8000000000000001, 0xfffffffffffffffd, 0x1, 0x0, 0x0, 0xfff, 0x5, 0x0, 0x0, 0x2000000000000000, 0x8]}, 0x4b9, 0x7d)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
rename$auto(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00')
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48980, 0x0)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x0, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0)
preadv$auto(r3, &(0x7f00000002c0)={0x0, 0x8010000}, 0x5, 0xfb, 0x8100000001)

97.001085ms ago: executing program 3 (id=676):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
semctl$auto(0x7, 0x2, 0x13, 0x1)
r0 = socket(0x1e, 0x2, 0x0)
getsockopt$auto(r0, 0x10f, 0x80, 0x0, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0x0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xffff, 0x5, 0x5, 0xff, 0xac1, 0x5, 0x36242398, 0xfffff5b2, 0x3bb, 0x7, 0xffff, 0x800, 0x81, 0x68198}, 0x6f3)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000)
clone$auto(0x20003b4a, 0x2, 0x0, 0x0, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/block/ram0/queue/nomerges\x00', 0xe3102, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22040, 0x75)
r1 = socket(0x10, 0x2, 0x4)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="0100"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x7, 0x400008, 0x3, 0x100000000038, 0x6, 0x3)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x0, 0xe903, 0x2)
socket(0x1e, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(0x2, 0x1, 0x50, &(0x7f0000000000)='\x00', 0x40)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000180)=@in={0x2, 0x3, @multicast1}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x54)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x40804)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4fc7, 0x0, 0x5, 0x0, 0x4, 0x6}, 0x7}, 0x3, 0x0)

0s ago: executing program 3 (id=677):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x28641, 0x0)
mmap$auto(0x0, 0x420009, 0xe3, 0x200000000000eb1, 0x401, 0x8000)
write$auto(r0, 0x0, 0x2a)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(r1, 0x0, 0x9a9, 0x70000fc)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x3, 0xffffffffffff0005, 0x10001)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
set_mempolicy$auto(0x3, &(0x7f0000000040)=0x7, 0x3)
acct$auto(&(0x7f0000000300)='/\x1e2!\x88?Psys//block/nbd3/que\xd6D\xf0\xfa^!\"B\xf9\xd2\x0f]r\xd4\xed\xf9ue/rotational\x00\xda\xc8\x83\x8b\x82;\xf4\n\xcfn\thz\x8f\x17\xfc\x1aK^\xb1\x8b\x96\xfdPw\xa4M@.(\xa6[\xc2\xfcn\x115\xfbHX\x83\xbf\x021\xd6s\xa8\xb1\a-HG\xae\x03\xc3\x1f`\x84\x1b\x81\xda2r{$3dr\xfd\f\xae\x96u\x91\x11ru\xa5\x9f\xec\xe7\x99\xbe\xcb\bN:\xe9\xf0KFJ\aD\xb4(\x03h\xa0%\xf6N\xeb3\x1c\xdcQ+\xa2\xc1wM\xde)J[\xe6O%\xa1\xda\xa9\x9c \x18pD\xb0P\xa3\x86ve\xc5L.h\x7f\x8d\xc4\a#3.\xfb>\xb0\xf7\x8cp\xab\xd1\xaa\x9d\x8djz\xb2\xcf\xa5\xb5lS\xd7\x80\x8eI\"eH\x9f+o\x8d\xff\x7f!\x9f0\xd2n\xb8/Gy9\x9f\x85EP\x99\xf4\xfcN\xfe\x1e\b\x84G\xdb\x10/yvVy*\x1f\xe6\xdf\xe6^\b\x1ecm\xc5\xfe+\x8d\xd5\x17\'oQb\xc1\x89l\xd2\x9d7C\xbf\tdB(\xb6\x93\xdfj~`\x94\xc2\x99A\x05\x1b\xf7^\xd9\xa1\xee\xfb\'\xaa\x13\xb33\xd5\xc3G!}\x18\a\xbd@\xea\xfd>f\xb7\xb9\xe4\xb1\x1b\x1bF\xa8\xe4i\x82\xda\x82~1cT\xdb\x92Q\xbd\xc1z\xc0\xf8\x88~\xe3id\xceg\x98\x8a\xa0Rq\x0f^\x11r:\xe1\xd1a\x15\xbb\xd6]\xc6\xfb\xbf`\xd1\\\xfd\xeeW\xc4\x0f\x10bv5\xa2\xde|&\xee\xaf\xa9Y\xc1\x1d\x8a$\xd6\xe61\x94\x9c\x82{\x83.\x7f\x18J\xaf\xbd\xf6\x950W\x03\xdbrf\xe6\xfb\xe5\xf1\xc4a8\xcfo#R\xaa\xfb\x15[\x81\x7f\xbcQ\x1d\x8b6\xf2\xeeI\xf7\x9c\x01\xcd\xe5\\\x1c\xd8\xf4\t\xec\xc6\xf5\xfe\xbaZ\xc1\x02\xc5\xcbl\x84ZV[\x87\xbbD\xd9\v\xc5-\x813\v\x1b\xd5\xea\x1e$ ;\x95\x8cP\x99\x02O\x1elH\x042\xcdqr{\xb9\xa5^\xd2\x7f/\xfe\x88N\xd9?]\x8dD\x03\xb5\x043\xc7\x93\n\xa5')
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x602c2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0)
prctl$auto(0x26, 0x1, 0x0, 0x0, 0x0)
r4 = socket(0x25, 0x80000, 0xc)
r5 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="ed03667ddcd6d026df250a00000a00000200252f00e2a85c41e75a02715b2d0000000100df"], 0x51}, 0x1, 0x0, 0x0, 0x24050803}, 0x10004010)
execveat$auto(r3, &(0x7f0000000040)='\x00', 0x0, 0x0, 0x11000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
modify_ldt$auto(0x11, 0x0, 0x10)

kernel console output (not intermixed with test programs):

om+0x183/0x290
[  103.118960][ T6051]  ? __pfx___x64_sys_getrandom+0x10/0x10
[  103.119009][ T6051]  ? xfd_validate_state+0x129/0x190
[  103.119046][ T6051]  ? rcu_is_watching+0x12/0xc0
[  103.119087][ T6051]  do_syscall_64+0x10b/0xf80
[  103.119118][ T6051]  ? clear_bhb_loop+0x40/0x90
[  103.119155][ T6051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.119186][ T6051] RIP: 0033:0x7f0c4799c819
[  103.119210][ T6051] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  103.119238][ T6051] RSP: 002b:00007f0c4886f028 EFLAGS: 00000246 ORIG_RAX: 000000000000013e
[  103.119268][ T6051] RAX: ffffffffffffffda RBX: 00007f0c47c16090 RCX: 00007f0c4799c819
[  103.119286][ T6051] RDX: 0000000000000003 RSI: 0000000000007fff RDI: 0000000000000000
[  103.119303][ T6051] RBP: 00007f0c47a32c91 R08: 0000000000000000 R09: 0000000000000000
[  103.119321][ T6051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  103.119338][ T6051] R13: 00007f0c47c16128 R14: 00007f0c47c16090 R15: 00007ffd281680b8
[  103.119375][ T6051]  </TASK>
[  104.676458][ T6061] Zero length message leads to an empty skb
[  104.858420][ T6070] netlink: 4 bytes leftover after parsing attributes in process `syz.3.33'.
[  104.896410][ T6070] netlink: 'syz.3.33': attribute type 7 has an invalid length.
[  105.472796][ T6085] futex_wake_op: syz.1.37 tries to shift op by -2048; fix this program
[  105.508839][ T6085] futex_wake_op: syz.1.37 tries to shift op by -2048; fix this program
[  105.548607][ T6085] 0x000000000001-0x000000020000 : ""
[  105.662888][ T6085] ftl_cs: FTL header corrupt!
[  105.809628][ T6074] random: crng reseeded on system resumption
[  106.388972][ T5836] Bluetooth: hci2: unexpected event 0x0f length: 123 > 4
[  107.655360][ T6121] FAULT_INJECTION: forcing a failure.
[  107.655360][ T6121] name fail_futex, interval 1, probability 0, space 0, times 1
[  107.823846][ T6121] CPU: 0 UID: 0 PID: 6121 Comm: syz.1.42 Not tainted syzkaller #0 PREEMPT(full) 
[  107.823890][ T6121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  107.823908][ T6121] Call Trace:
[  107.823919][ T6121]  <TASK>
[  107.823931][ T6121]  dump_stack_lvl+0x100/0x190
[  107.823971][ T6121]  should_fail_ex.cold+0x5/0xa
[  107.824010][ T6121]  get_futex_key+0x1d2/0x1510
[  107.824065][ T6121]  ? __pfx_get_futex_key+0x10/0x10
[  107.824115][ T6121]  ? __lock_acquire+0x4a5/0x2630
[  107.824165][ T6121]  ? __lock_acquire+0x4a5/0x2630
[  107.824226][ T6121]  futex_wait_setup+0x83/0x510
[  107.824277][ T6121]  __futex_wait+0x19f/0x300
[  107.824323][ T6121]  ? __pfx___futex_wait+0x10/0x10
[  107.824362][ T6121]  ? rcu_is_watching+0x12/0xc0
[  107.824403][ T6121]  ? __pfx_futex_wake_mark+0x10/0x10
[  107.824446][ T6121]  ? futex_hash+0x2ad/0x370
[  107.824497][ T6121]  ? futex_hash+0x141/0x370
[  107.824550][ T6121]  futex_wait+0xe6/0x370
[  107.824590][ T6121]  ? __pfx_futex_wait+0x10/0x10
[  107.824639][ T6121]  ? vfs_write+0x15d/0x1070
[  107.824672][ T6121]  ? __pfx_sock_write_iter+0x10/0x10
[  107.824723][ T6121]  do_futex+0x1ef/0x350
[  107.824756][ T6121]  ? __pfx_do_futex+0x10/0x10
[  107.824799][ T6121]  __x64_sys_futex+0x34f/0x4d0
[  107.824834][ T6121]  ? fput+0x79/0x100
[  107.824872][ T6121]  ? __pfx___x64_sys_futex+0x10/0x10
[  107.824903][ T6121]  ? ksys_write+0x1ac/0x250
[  107.824935][ T6121]  ? __pfx_ksys_write+0x10/0x10
[  107.824971][ T6121]  ? rcu_is_watching+0x12/0xc0
[  107.825011][ T6121]  do_syscall_64+0x10b/0xf80
[  107.825042][ T6121]  ? clear_bhb_loop+0x40/0x90
[  107.825080][ T6121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.825111][ T6121] RIP: 0033:0x7fd40639c819
[  107.825136][ T6121] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  107.825165][ T6121] RSP: 002b:00007fd4072060e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  107.825203][ T6121] RAX: ffffffffffffffda RBX: 00007fd406616098 RCX: 00007fd40639c819
[  107.825223][ T6121] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd406616098
[  107.825241][ T6121] RBP: 00007fd406616090 R08: 0000000000000000 R09: 0000000000000000
[  107.825258][ T6121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  107.825276][ T6121] R13: 00007fd406616128 R14: 00007ffdf6078f30 R15: 00007ffdf6079018
[  107.825316][ T6121]  </TASK>
[  109.665809][ T6128] process 'syz.3.43' launched './file0' with NULL argv: empty string added
[  110.602719][ T6134] FAULT_INJECTION: forcing a failure.
[  110.602719][ T6134] name fail_futex, interval 1, probability 0, space 0, times 0
[  110.727096][ T6134] CPU: 1 UID: 0 PID: 6134 Comm: syz.1.45 Not tainted syzkaller #0 PREEMPT(full) 
[  110.727140][ T6134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  110.727166][ T6134] Call Trace:
[  110.727177][ T6134]  <TASK>
[  110.727189][ T6134]  dump_stack_lvl+0x100/0x190
[  110.727233][ T6134]  should_fail_ex.cold+0x5/0xa
[  110.727272][ T6134]  get_futex_key+0x1d2/0x1510
[  110.727326][ T6134]  ? __pfx_get_futex_key+0x10/0x10
[  110.727378][ T6134]  ? rcu_is_watching+0x12/0xc0
[  110.727420][ T6134]  futex_wait_setup+0x83/0x510
[  110.727469][ T6134]  __futex_wait+0x19f/0x300
[  110.727511][ T6134]  ? __pfx___futex_wait+0x10/0x10
[  110.727547][ T6134]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  110.727602][ T6134]  ? __pfx_futex_wake_mark+0x10/0x10
[  110.727647][ T6134]  ? find_held_lock+0x2b/0x80
[  110.727683][ T6134]  ? futex_wake+0x456/0x530
[  110.727729][ T6134]  futex_wait+0xe6/0x370
[  110.727768][ T6134]  ? __pfx_futex_wait+0x10/0x10
[  110.727816][ T6134]  ? vfs_write+0x15d/0x1070
[  110.727849][ T6134]  ? __pfx_sock_write_iter+0x10/0x10
[  110.727900][ T6134]  do_futex+0x1ef/0x350
[  110.727932][ T6134]  ? __pfx_do_futex+0x10/0x10
[  110.727974][ T6134]  __x64_sys_futex+0x34f/0x4d0
[  110.728008][ T6134]  ? fput+0x79/0x100
[  110.728045][ T6134]  ? __pfx___x64_sys_futex+0x10/0x10
[  110.728076][ T6134]  ? ksys_write+0x1ac/0x250
[  110.728107][ T6134]  ? __pfx_ksys_write+0x10/0x10
[  110.728143][ T6134]  ? rcu_is_watching+0x12/0xc0
[  110.728190][ T6134]  do_syscall_64+0x10b/0xf80
[  110.728220][ T6134]  ? clear_bhb_loop+0x40/0x90
[  110.728254][ T6134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.728283][ T6134] RIP: 0033:0x7fd40639c819
[  110.728308][ T6134] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  110.728335][ T6134] RSP: 002b:00007fd4071e50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  110.728363][ T6134] RAX: ffffffffffffffda RBX: 00007fd406616188 RCX: 00007fd40639c819
[  110.728382][ T6134] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd406616188
[  110.728400][ T6134] RBP: 00007fd406616180 R08: 0000000000000000 R09: 0000000000000000
[  110.728417][ T6134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  110.728433][ T6134] R13: 00007fd406616218 R14: 00007ffdf6078f30 R15: 00007ffdf6079018
[  110.728470][ T6134]  </TASK>
[  111.564154][ T6143] FAULT_INJECTION: forcing a failure.
[  111.564154][ T6143] name failslab, interval 1, probability 0, space 0, times 0
[  111.600859][ T6143] CPU: 1 UID: 0 PID: 6143 Comm: syz.0.44 Not tainted syzkaller #0 PREEMPT(full) 
[  111.600905][ T6143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  111.600921][ T6143] Call Trace:
[  111.600929][ T6143]  <TASK>
[  111.600940][ T6143]  dump_stack_lvl+0x100/0x190
[  111.600975][ T6143]  should_fail_ex.cold+0x5/0xa
[  111.601010][ T6143]  should_failslab+0xc2/0x120
[  111.601041][ T6143]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  111.601077][ T6143]  ? __kernfs_new_node+0xd2/0x9f0
[  111.601102][ T6143]  ? kstrdup+0xb3/0xe0
[  111.601131][ T6143]  __kernfs_new_node+0xd2/0x9f0
[  111.601160][ T6143]  ? __pfx___kernfs_new_node+0x10/0x10
[  111.601205][ T6143]  ? find_held_lock+0x2b/0x80
[  111.601240][ T6143]  ? kernfs_root+0xee/0x2a0
[  111.601264][ T6143]  ? kernfs_root+0xee/0x2a0
[  111.601297][ T6143]  kernfs_new_node+0x11b/0x1a0
[  111.601332][ T6143]  kernfs_create_link+0xcc/0x240
[  111.601373][ T6143]  sysfs_do_create_link_sd+0x90/0x140
[  111.601405][ T6143]  sysfs_create_link+0x61/0xc0
[  111.601433][ T6143]  device_add+0x675/0x1920
[  111.601473][ T6143]  ? __pfx_device_add+0x10/0x10
[  111.601502][ T6143]  ? lockdep_init_map_type+0x5c/0x250
[  111.601549][ T6143]  ? __init_waitqueue_head+0xca/0x150
[  111.601593][ T6143]  rfkill_register+0x1ad/0xb30
[  111.601640][ T6143]  nfc_register_device+0x11f/0x3e0
[  111.601672][ T6143]  nci_register_device+0x7f1/0xb80
[  111.601714][ T6143]  ? __pfx_nci_register_device+0x10/0x10
[  111.601760][ T6143]  ? lockdep_init_map_type+0x5c/0x250
[  111.601815][ T6143]  virtual_ncidev_open+0x141/0x220
[  111.601853][ T6143]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  111.601888][ T6143]  misc_open+0x26d/0x450
[  111.601918][ T6143]  ? __pfx_misc_open+0x10/0x10
[  111.601945][ T6143]  chrdev_open+0x234/0x6a0
[  111.601983][ T6143]  ? __pfx_chrdev_open+0x10/0x10
[  111.602020][ T6143]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  111.602067][ T6143]  do_dentry_open+0x6d8/0x1660
[  111.602102][ T6143]  ? __pfx_chrdev_open+0x10/0x10
[  111.602141][ T6143]  vfs_open+0x82/0x3f0
[  111.602186][ T6143]  path_openat+0x208c/0x31a0
[  111.602246][ T6143]  ? __pfx_path_openat+0x10/0x10
[  111.602294][ T6143]  do_file_open+0x20e/0x430
[  111.602333][ T6143]  ? __pfx_do_file_open+0x10/0x10
[  111.602396][ T6143]  ? alloc_fd+0x476/0x790
[  111.602433][ T6143]  ? do_getname+0x191/0x390
[  111.602472][ T6143]  do_sys_openat2+0x10d/0x1e0
[  111.602514][ T6143]  ? __pfx_do_sys_openat2+0x10/0x10
[  111.602570][ T6143]  __x64_sys_openat+0x12d/0x210
[  111.602615][ T6143]  ? __pfx___x64_sys_openat+0x10/0x10
[  111.602663][ T6143]  ? rcu_is_watching+0x12/0xc0
[  111.602702][ T6143]  do_syscall_64+0x10b/0xf80
[  111.602733][ T6143]  ? clear_bhb_loop+0x40/0x90
[  111.602769][ T6143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.602800][ T6143] RIP: 0033:0x7f0c4799c819
[  111.602826][ T6143] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  111.602852][ T6143] RSP: 002b:00007f0c4886f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  111.602882][ T6143] RAX: ffffffffffffffda RBX: 00007f0c47c16090 RCX: 00007f0c4799c819
[  111.602901][ T6143] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  111.602918][ T6143] RBP: 00007f0c47a32c91 R08: 0000000000000000 R09: 0000000000000000
[  111.602934][ T6143] R10: 000000000000003e R11: 0000000000000246 R12: 0000000000000000
[  111.602951][ T6143] R13: 00007f0c47c16128 R14: 00007f0c47c16090 R15: 00007ffd281680b8
[  111.602989][ T6143]  </TASK>
[  112.067778][ T6145] random: crng reseeded on system resumption
[  112.553064][ T6156] random: crng reseeded on system resumption
[  114.929240][ T6207] netlink: 28 bytes leftover after parsing attributes in process `syz.0.64'.
[  114.993375][ T6207] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.122088][ T6207] bridge_slave_0 (unregistering): left allmulticast mode
[  115.171867][ T6207] bridge_slave_0 (unregistering): left promiscuous mode
[  115.218531][ T6207] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.833917][ T6218] netlink: 334 bytes leftover after parsing attributes in process `syz.3.67'.
[  116.165884][ T6225] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  116.220670][ T6225] netlink: 4 bytes leftover after parsing attributes in process `syz.2.69'.
[  116.934523][ T6230] random: crng reseeded on system resumption
[  117.595045][ T6247] syz.2.75 uses obsolete (PF_INET,SOCK_PACKET)
[  117.643000][ T6247] netlink: 16 bytes leftover after parsing attributes in process `syz.2.75'.
[  117.728909][ T6240] netlink: 28 bytes leftover after parsing attributes in process `syz.0.72'.
[  117.749198][ T6240] ipvlan0: entered promiscuous mode
[  117.756900][ T6240] ipvlan0: entered allmulticast mode
[  117.771296][ T6240] veth0_vlan: entered allmulticast mode
[  118.514217][ T6255] random: crng reseeded on system resumption
[  118.968081][ T6260] random: crng reseeded on system resumption
[  119.564616][ T6274] netlink: 4 bytes leftover after parsing attributes in process `syz.1.80'.
[  119.662272][ T6277] netlink: 28 bytes leftover after parsing attributes in process `syz.2.81'.
[  119.675044][ T6277] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.696426][ T6277] bridge_slave_0 (unregistering): left allmulticast mode
[  119.703732][ T6277] bridge_slave_0 (unregistering): left promiscuous mode
[  119.712786][ T6277] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.155489][ T6265] can: request_module (can-proto-5) failed.
[  120.636824][ T6285] zero sized request
[  120.756913][ T6290] FAULT_INJECTION: forcing a failure.
[  120.756913][ T6290] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  120.815083][ T6290] CPU: 1 UID: 0 PID: 6290 Comm: syz.0.84 Not tainted syzkaller #0 PREEMPT(full) 
[  120.815125][ T6290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  120.815143][ T6290] Call Trace:
[  120.815162][ T6290]  <TASK>
[  120.815173][ T6290]  dump_stack_lvl+0x100/0x190
[  120.815213][ T6290]  should_fail_ex.cold+0x5/0xa
[  120.815254][ T6290]  _copy_from_iter+0x1f4/0x1690
[  120.815300][ T6290]  ? __asan_memset+0x23/0x50
[  120.815348][ T6290]  ? __pfx__copy_from_iter+0x10/0x10
[  120.815386][ T6290]  ? slab_build_skb+0x3d0/0x400
[  120.815419][ T6290]  ? finish_task_switch.isra.0+0x2cb/0x1010
[  120.815467][ T6290]  ? __sk_mem_schedule+0xd0/0x100
[  120.815514][ T6290]  tcp_sendmsg_locked+0xcab/0x4500
[  120.815573][ T6290]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  120.815608][ T6290]  ? do_raw_spin_lock+0x128/0x260
[  120.815644][ T6290]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  120.815687][ T6290]  ? __local_bh_enable_ip+0x9e/0x120
[  120.815731][ T6290]  tcp_sendmsg+0x2e/0x50
[  120.815757][ T6290]  ? __pfx_tcp_sendmsg+0x10/0x10
[  120.815784][ T6290]  inet_sendmsg+0xb9/0x140
[  120.815815][ T6290]  sock_write_iter+0x4ea/0x5a0
[  120.815860][ T6290]  ? __pfx_inet_sendmsg+0x10/0x10
[  120.815889][ T6290]  ? __pfx_sock_write_iter+0x10/0x10
[  120.815949][ T6290]  ? bpf_lsm_file_permission+0x9/0x10
[  120.815998][ T6290]  ? security_file_permission+0x76/0x210
[  120.816047][ T6290]  ? rw_verify_area+0xce/0x6d0
[  120.816105][ T6290]  vfs_write+0x6ac/0x1070
[  120.816141][ T6290]  ? __pfx_sock_write_iter+0x10/0x10
[  120.816200][ T6290]  ? __pfx_vfs_write+0x10/0x10
[  120.816229][ T6290]  ? find_held_lock+0x2b/0x80
[  120.816293][ T6290]  ksys_write+0x1f8/0x250
[  120.816326][ T6290]  ? __pfx_ksys_write+0x10/0x10
[  120.816364][ T6290]  ? rcu_is_watching+0x12/0xc0
[  120.816405][ T6290]  do_syscall_64+0x10b/0xf80
[  120.816438][ T6290]  ? clear_bhb_loop+0x40/0x90
[  120.816476][ T6290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.816508][ T6290] RIP: 0033:0x7f0c4799c819
[  120.816536][ T6290] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  120.816564][ T6290] RSP: 002b:00007f0c4886f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  120.816595][ T6290] RAX: ffffffffffffffda RBX: 00007f0c47c16090 RCX: 00007f0c4799c819
[  120.816615][ T6290] RDX: 0000000000100085 RSI: 0000000000000000 RDI: 0000000000000003
[  120.816632][ T6290] RBP: 00007f0c47a32c91 R08: 0000000000000000 R09: 0000000000000000
[  120.816650][ T6290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  120.816667][ T6290] R13: 00007f0c47c16128 R14: 00007f0c47c16090 R15: 00007ffd281680b8
[  120.816707][ T6290]  </TASK>
[  121.780550][ T6299] FAULT_INJECTION: forcing a failure.
[  121.780550][ T6299] name fail_futex, interval 1, probability 0, space 0, times 0
[  121.793880][ T6299] CPU: 1 UID: 0 PID: 6299 Comm: syz.0.85 Not tainted syzkaller #0 PREEMPT(full) 
[  121.793921][ T6299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  121.793939][ T6299] Call Trace:
[  121.793949][ T6299]  <TASK>
[  121.793960][ T6299]  dump_stack_lvl+0x100/0x190
[  121.793998][ T6299]  should_fail_ex.cold+0x5/0xa
[  121.794038][ T6299]  get_futex_key+0x1d2/0x1510
[  121.794092][ T6299]  ? __pfx_get_futex_key+0x10/0x10
[  121.794150][ T6299]  futex_wait_setup+0x83/0x510
[  121.794196][ T6299]  __futex_wait+0x19f/0x300
[  121.794235][ T6299]  ? __pfx___futex_wait+0x10/0x10
[  121.794271][ T6299]  ? __pfx_netlink_sendmsg+0x10/0x10
[  121.794317][ T6299]  ? __pfx_futex_wake_mark+0x10/0x10
[  121.794365][ T6299]  ? futex_hash+0x2ad/0x370
[  121.794407][ T6299]  ? futex_hash+0x141/0x370
[  121.794454][ T6299]  futex_wait+0xe6/0x370
[  121.794489][ T6299]  ? __pfx_futex_wait+0x10/0x10
[  121.794526][ T6299]  ? vfs_write+0x15d/0x1070
[  121.794552][ T6299]  ? __pfx_sock_write_iter+0x10/0x10
[  121.794597][ T6299]  do_futex+0x1ef/0x350
[  121.794629][ T6299]  ? __pfx_do_futex+0x10/0x10
[  121.794670][ T6299]  __x64_sys_futex+0x34f/0x4d0
[  121.794704][ T6299]  ? fput+0x79/0x100
[  121.794741][ T6299]  ? __pfx___x64_sys_futex+0x10/0x10
[  121.794771][ T6299]  ? ksys_write+0x1ac/0x250
[  121.794803][ T6299]  ? __pfx_ksys_write+0x10/0x10
[  121.794838][ T6299]  ? rcu_is_watching+0x12/0xc0
[  121.794877][ T6299]  do_syscall_64+0x10b/0xf80
[  121.794914][ T6299]  ? clear_bhb_loop+0x40/0x90
[  121.794951][ T6299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.794981][ T6299] RIP: 0033:0x7f0c4799c819
[  121.795005][ T6299] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  121.795033][ T6299] RSP: 002b:00007f0c4886f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  121.795063][ T6299] RAX: ffffffffffffffda RBX: 00007f0c47c16098 RCX: 00007f0c4799c819
[  121.795083][ T6299] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0c47c16098
[  121.795098][ T6299] RBP: 00007f0c47c16090 R08: 0000000000000000 R09: 0000000000000000
[  121.795113][ T6299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  121.795130][ T6299] R13: 00007f0c47c16128 R14: 00007ffd28167fd0 R15: 00007ffd281680b8
[  121.795169][ T6299]  </TASK>
[  122.407085][ T6304] random: crng reseeded on system resumption
[  123.023821][ T6320] FAULT_INJECTION: forcing a failure.
[  123.023821][ T6320] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  123.061356][ T6320] CPU: 0 UID: 0 PID: 6320 Comm: syz.2.95 Not tainted syzkaller #0 PREEMPT(full) 
[  123.061395][ T6320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  123.061421][ T6320] Call Trace:
[  123.061431][ T6320]  <TASK>
[  123.061442][ T6320]  dump_stack_lvl+0x100/0x190
[  123.061479][ T6320]  should_fail_ex.cold+0x5/0xa
[  123.061517][ T6320]  _copy_to_user+0x32/0xd0
[  123.061559][ T6320]  simple_read_from_buffer+0xcb/0x170
[  123.061595][ T6320]  proc_fail_nth_read+0x1af/0x230
[  123.061640][ T6320]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  123.061685][ T6320]  ? rw_verify_area+0xce/0x6d0
[  123.061730][ T6320]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  123.061773][ T6320]  vfs_read+0x1e4/0xb30
[  123.061808][ T6320]  ? __pfx_vfs_read+0x10/0x10
[  123.061836][ T6320]  ? __fget_files+0x215/0x3d0
[  123.061875][ T6320]  ? __fget_files+0x21f/0x3d0
[  123.061916][ T6320]  ksys_read+0x12a/0x250
[  123.061944][ T6320]  ? __pfx_ksys_read+0x10/0x10
[  123.061974][ T6320]  ? rcu_is_watching+0x12/0xc0
[  123.062009][ T6320]  do_syscall_64+0x10b/0xf80
[  123.062035][ T6320]  ? clear_bhb_loop+0x40/0x90
[  123.062068][ T6320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.062095][ T6320] RIP: 0033:0x7f504615d04e
[  123.062122][ T6320] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  123.062146][ T6320] RSP: 002b:00007f5047007fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  123.062171][ T6320] RAX: ffffffffffffffda RBX: 00007f50470086c0 RCX: 00007f504615d04e
[  123.062189][ T6320] RDX: 000000000000000f RSI: 00007f50470080a0 RDI: 0000000000000005
[  123.062204][ T6320] RBP: 00007f5047008090 R08: 0000000000000000 R09: 0000000000000000
[  123.062219][ T6320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  123.062234][ T6320] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffd33d479e8
[  123.062271][ T6320]  </TASK>
[  124.096520][ T6338] netlink: 28 bytes leftover after parsing attributes in process `syz.2.99'.
[  124.124053][ T6338] ipvlan0: entered promiscuous mode
[  124.147127][ T6338] ipvlan0: entered allmulticast mode
[  124.202131][ T6338] veth0_vlan: entered allmulticast mode
[  124.654289][ T6357] FAULT_INJECTION: forcing a failure.
[  124.654289][ T6357] name failslab, interval 1, probability 0, space 0, times 0
[  124.693259][ T6357] CPU: 1 UID: 0 PID: 6357 Comm: syz.1.106 Not tainted syzkaller #0 PREEMPT(full) 
[  124.693301][ T6357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  124.693317][ T6357] Call Trace:
[  124.693325][ T6357]  <TASK>
[  124.693334][ T6357]  dump_stack_lvl+0x100/0x190
[  124.693384][ T6357]  should_fail_ex.cold+0x5/0xa
[  124.693423][ T6357]  should_failslab+0xc2/0x120
[  124.693457][ T6357]  __kvmalloc_node_noprof+0xfa/0xa00
[  124.693502][ T6357]  ? traverse.part.0.constprop.0+0x397/0x650
[  124.693545][ T6357]  traverse.part.0.constprop.0+0x397/0x650
[  124.693577][ T6357]  ? aa_file_perm+0x7e4/0x14d0
[  124.693606][ T6357]  ? aa_file_perm+0x7e4/0x14d0
[  124.693642][ T6357]  seq_read_iter+0x93f/0x1270
[  124.693689][ T6357]  seq_read+0x33b/0x4c0
[  124.693720][ T6357]  ? __pfx_seq_read+0x10/0x10
[  124.693747][ T6357]  ? __pfx___might_resched+0x10/0x10
[  124.693780][ T6357]  ? __import_iovec+0x1ed/0x640
[  124.693837][ T6357]  ? rw_verify_area+0xce/0x6d0
[  124.693886][ T6357]  ? __pfx_seq_read+0x10/0x10
[  124.693913][ T6357]  vfs_readv+0x5d8/0x8d0
[  124.693948][ T6357]  ? __pfx_vfs_readv+0x10/0x10
[  124.693972][ T6357]  ? find_held_lock+0x2b/0x80
[  124.694022][ T6357]  ? __fget_files+0x21f/0x3d0
[  124.694056][ T6357]  ? do_preadv+0x1ac/0x270
[  124.694085][ T6357]  do_preadv+0x1ac/0x270
[  124.694110][ T6357]  ? __pfx_do_preadv+0x10/0x10
[  124.694136][ T6357]  ? rcu_is_watching+0x12/0xc0
[  124.694168][ T6357]  do_syscall_64+0x10b/0xf80
[  124.694193][ T6357]  ? clear_bhb_loop+0x40/0x90
[  124.694223][ T6357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.694249][ T6357] RIP: 0033:0x7fd40639c819
[  124.694271][ T6357] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  124.694294][ T6357] RSP: 002b:00007fd407227028 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  124.694320][ T6357] RAX: ffffffffffffffda RBX: 00007fd406615fa0 RCX: 00007fd40639c819
[  124.694336][ T6357] RDX: 0000000000000101 RSI: 0000200000001600 RDI: 0000000000000003
[  124.694351][ T6357] RBP: 00007fd407227090 R08: 00000000000006a1 R09: 0000000000000000
[  124.694375][ T6357] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[  124.694389][ T6357] R13: 00007fd406616038 R14: 00007fd406615fa0 R15: 00007ffdf6079018
[  124.694425][ T6357]  </TASK>
[  126.118826][ T6377] netlink: 342 bytes leftover after parsing attributes in process `syz.0.112'.
[  126.140446][ T6377] netlink: 342 bytes leftover after parsing attributes in process `syz.0.112'.
[  126.164013][ T6377] netlink: 342 bytes leftover after parsing attributes in process `syz.0.112'.
[  126.222114][ T6384] binder: 6382:6384 ioctl c0306201 200000000140 returned -14
[  126.627778][ T6390] netlink: 24 bytes leftover after parsing attributes in process `syz.0.115'.
[  127.026668][ T6400] vhci_hcd vhci_hcd.2: invalid port number 249
[  127.036427][ T6400] vhci_hcd vhci_hcd.2: default hub control req: 0301 v0008 i00f9 l2047
[  127.716241][ T6413] netlink: 4 bytes leftover after parsing attributes in process `syz.3.119'.
[  128.191678][ T6431] binder: 6426:6431 ioctl c0306201 200000000140 returned -14
[  128.200207][ T6429] block2mtd: illegal erase size
[  129.007033][ T6445] FAULT_INJECTION: forcing a failure.
[  129.007033][ T6445] name failslab, interval 1, probability 0, space 0, times 0
[  129.041737][ T6445] CPU: 1 UID: 0 PID: 6445 Comm: syz.0.129 Not tainted syzkaller #0 PREEMPT(full) 
[  129.041764][ T6445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  129.041775][ T6445] Call Trace:
[  129.041781][ T6445]  <TASK>
[  129.041788][ T6445]  dump_stack_lvl+0x100/0x190
[  129.041812][ T6445]  should_fail_ex.cold+0x5/0xa
[  129.041835][ T6445]  should_failslab+0xc2/0x120
[  129.041855][ T6445]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  129.041883][ T6445]  ? taskstats_exit+0x67b/0xc10
[  129.041907][ T6445]  ? rcu_is_watching+0x12/0xc0
[  129.041932][ T6445]  taskstats_exit+0x67b/0xc10
[  129.041956][ T6445]  ? __pfx_acct_update_integrals+0x10/0x10
[  129.041983][ T6445]  ? __pfx_taskstats_exit+0x10/0x10
[  129.042009][ T6445]  ? rcu_read_lock_any_held+0x6a/0xa0
[  129.042032][ T6445]  ? exit_signals+0x395/0xaf0
[  129.042056][ T6445]  do_exit+0x65c/0x2a60
[  129.042093][ T6445]  ? __pfx_do_exit+0x10/0x10
[  129.042120][ T6445]  ? do_raw_spin_lock+0x128/0x260
[  129.042140][ T6445]  ? find_held_lock+0x2b/0x80
[  129.042162][ T6445]  ? get_signal+0x7e0/0x21e0
[  129.042185][ T6445]  do_group_exit+0xd5/0x2a0
[  129.042215][ T6445]  get_signal+0x1ec7/0x21e0
[  129.042245][ T6445]  ? __pfx_get_signal+0x10/0x10
[  129.042268][ T6445]  ? do_futex+0x192/0x350
[  129.042289][ T6445]  arch_do_signal_or_restart+0x91/0x770
[  129.042318][ T6445]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  129.042351][ T6445]  ? __pfx___x64_sys_futex+0x10/0x10
[  129.042371][ T6445]  ? rcu_is_watching+0x12/0xc0
[  129.042394][ T6445]  exit_to_user_mode_loop+0x86/0x4a0
[  129.042423][ T6445]  ? do_syscall_64+0x519/0xf80
[  129.042444][ T6445]  do_syscall_64+0x6f2/0xf80
[  129.042462][ T6445]  ? clear_bhb_loop+0x40/0x90
[  129.042484][ T6445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.042505][ T6445] RIP: 0033:0x7f0c4799c819
[  129.042527][ T6445] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  129.042553][ T6445] RSP: 002b:00007f0c488900e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  129.042580][ T6445] RAX: fffffffffffffe00 RBX: 00007f0c47c15fa8 RCX: 00007f0c4799c819
[  129.042596][ T6445] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0c47c15fa8
[  129.042613][ T6445] RBP: 00007f0c47c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  129.042628][ T6445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  129.042644][ T6445] R13: 00007f0c47c16038 R14: 00007ffd28167fd0 R15: 00007ffd281680b8
[  129.042679][ T6445]  </TASK>
[  129.216003][ T6441] FAULT_INJECTION: forcing a failure.
[  129.216003][ T6441] name failslab, interval 1, probability 0, space 0, times 0
[  129.404041][ T6441] CPU: 1 UID: 0 PID: 6441 Comm: syz.1.127 Not tainted syzkaller #0 PREEMPT(full) 
[  129.404094][ T6441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  129.404111][ T6441] Call Trace:
[  129.404121][ T6441]  <TASK>
[  129.404133][ T6441]  dump_stack_lvl+0x100/0x190
[  129.404170][ T6441]  should_fail_ex.cold+0x5/0xa
[  129.404208][ T6441]  should_failslab+0xc2/0x120
[  129.404241][ T6441]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  129.404285][ T6441]  ? vm_area_dup+0x27/0x8e0
[  129.404332][ T6441]  vm_area_dup+0x27/0x8e0
[  129.404376][ T6441]  __split_vma+0x18c/0xd90
[  129.404423][ T6441]  ? __pfx___split_vma+0x10/0x10
[  129.404473][ T6441]  ? __pfx_mas_prev+0x10/0x10
[  129.404518][ T6441]  vms_gather_munmap_vmas+0x3a5/0x1720
[  129.404565][ T6441]  ? find_held_lock+0x2b/0x80
[  129.404607][ T6441]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  129.404659][ T6441]  ? move_page_tables+0xe1d/0x4500
[  129.404724][ T6441]  do_vmi_align_munmap+0x287/0x5f0
[  129.404774][ T6441]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  129.404873][ T6441]  do_vmi_munmap+0x1f8/0x3e0
[  129.404924][ T6441]  move_vma+0xe5b/0x1920
[  129.404980][ T6441]  ? __pfx_move_vma+0x10/0x10
[  129.405029][ T6441]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[  129.405088][ T6441]  ? vrm_set_new_addr+0x204/0x290
[  129.405135][ T6441]  mremap_to+0x234/0x4c0
[  129.405178][ T6441]  ? mas_walk+0x6ef/0x9b0
[  129.405206][ T6441]  ? __pfx_mremap_to+0x10/0x10
[  129.405244][ T6441]  ? check_prep_vma+0x878/0xdf0
[  129.405291][ T6441]  __do_sys_mremap+0xa7a/0x1850
[  129.405341][ T6441]  ? __pfx___do_sys_mremap+0x10/0x10
[  129.405390][ T6441]  ? do_futex+0x192/0x350
[  129.405422][ T6441]  ? __pfx_do_futex+0x10/0x10
[  129.405462][ T6441]  ? __x64_sys_futex+0x34f/0x4d0
[  129.405510][ T6441]  ? rcu_is_watching+0x12/0xc0
[  129.405551][ T6441]  do_syscall_64+0x10b/0xf80
[  129.405582][ T6441]  ? clear_bhb_loop+0x40/0x90
[  129.405620][ T6441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.405652][ T6441] RIP: 0033:0x7fd40639c819
[  129.405679][ T6441] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  129.405708][ T6441] RSP: 002b:00007fd407227028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  129.405738][ T6441] RAX: ffffffffffffffda RBX: 00007fd406615fa0 RCX: 00007fd40639c819
[  129.405758][ T6441] RDX: 0000000000000037 RSI: 0000000000000008 RDI: 0000200000001000
[  129.405776][ T6441] RBP: 00007fd406432c91 R08: 000000110c230000 R09: 0000000000000000
[  129.405795][ T6441] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  129.405813][ T6441] R13: 00007fd406616038 R14: 00007fd406615fa0 R15: 00007ffdf6079018
[  129.405853][ T6441]  </TASK>
[  130.258126][ T6472] binder: 6469:6472 ioctl c0306201 200000000140 returned -14
[  130.553083][ T6477] FAULT_INJECTION: forcing a failure.
[  130.553083][ T6477] name failslab, interval 1, probability 0, space 0, times 0
[  130.553268][ T6477] CPU: 1 UID: 0 PID: 6477 Comm: syz.2.135 Not tainted syzkaller #0 PREEMPT(full) 
[  130.553306][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  130.553325][ T6477] Call Trace:
[  130.553335][ T6477]  <TASK>
[  130.553346][ T6477]  dump_stack_lvl+0x100/0x190
[  130.553382][ T6477]  should_fail_ex.cold+0x5/0xa
[  130.553421][ T6477]  should_failslab+0xc2/0x120
[  130.553455][ T6477]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  130.553499][ T6477]  ? security_inode_alloc+0x3b/0x2c0
[  130.553539][ T6477]  ? lockdep_init_map_type+0x5c/0x250
[  130.553593][ T6477]  security_inode_alloc+0x3b/0x2c0
[  130.553634][ T6477]  inode_init_always_gfp+0xcc0/0x1000
[  130.553676][ T6477]  alloc_inode+0x8e/0x250
[  130.553720][ T6477]  iget_locked+0x1d9/0x6d0
[  130.553766][ T6477]  ? __pfx_iget_locked+0x10/0x10
[  130.553807][ T6477]  ? kernfs_root+0xee/0x2a0
[  130.553835][ T6477]  ? kernfs_root+0xee/0x2a0
[  130.553873][ T6477]  kernfs_get_inode+0x46/0x470
[  130.553903][ T6477]  kernfs_iop_lookup+0x1a7/0x2d0
[  130.553939][ T6477]  __lookup_slow+0x251/0x460
[  130.553984][ T6477]  ? __pfx___lookup_slow+0x10/0x10
[  130.554049][ T6477]  ? __d_lookup+0x266/0x4a0
[  130.554106][ T6477]  lookup_slow+0x50/0x70
[  130.554157][ T6477]  link_path_walk+0x1377/0x1cc0
[  130.554203][ T6477]  path_openat+0x1be/0x31a0
[  130.554235][ T6477]  ? kasan_save_stack+0x3f/0x50
[  130.554260][ T6477]  ? kasan_save_stack+0x30/0x50
[  130.554285][ T6477]  ? kasan_save_track+0x14/0x30
[  130.554311][ T6477]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  130.554364][ T6477]  ? __pfx_path_openat+0x10/0x10
[  130.554418][ T6477]  do_file_open+0x20e/0x430
[  130.554457][ T6477]  ? __pfx_do_file_open+0x10/0x10
[  130.554518][ T6477]  ? alloc_fd+0x476/0x790
[  130.554552][ T6477]  ? do_getname+0x191/0x390
[  130.554596][ T6477]  do_sys_openat2+0x10d/0x1e0
[  130.554639][ T6477]  ? __pfx_do_sys_openat2+0x10/0x10
[  130.554684][ T6477]  ? __fget_files+0x21f/0x3d0
[  130.554725][ T6477]  __x64_sys_openat+0x12d/0x210
[  130.554771][ T6477]  ? __pfx___x64_sys_openat+0x10/0x10
[  130.554825][ T6477]  ? rcu_is_watching+0x12/0xc0
[  130.554866][ T6477]  do_syscall_64+0x10b/0xf80
[  130.554896][ T6477]  ? clear_bhb_loop+0x40/0x90
[  130.554934][ T6477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.554965][ T6477] RIP: 0033:0x7f504619c819
[  130.554990][ T6477] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  130.555019][ T6477] RSP: 002b:00007f5047008028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  130.555049][ T6477] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619c819
[  130.555069][ T6477] RDX: 00000000008ea182 RSI: 00002000000001c0 RDI: ffffffffffffff9c
[  130.555087][ T6477] RBP: 00007f5046232c91 R08: 0000000000000000 R09: 0000000000000000
[  130.555105][ T6477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  130.555131][ T6477] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffd33d479e8
[  130.555172][ T6477]  </TASK>
[  131.991969][ T6520] nfs: Bad value for 'source'
[  133.129822][ T1312] ieee802154 phy0 wpan0: encryption failed: -22
[  133.136449][ T1312] ieee802154 phy1 wpan1: encryption failed: -22
[  134.387200][ T6592] batman_adv: Routing algorithm '7' is not supported
[  135.283940][ T6612] netlink: 28 bytes leftover after parsing attributes in process `syz.0.169'.
[  135.453896][ T6606] usb usb21: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  136.371446][ T6630] FAULT_INJECTION: forcing a failure.
[  136.371446][ T6630] name failslab, interval 1, probability 0, space 0, times 0
[  136.415655][ T6630] CPU: 0 UID: 0 PID: 6630 Comm: syz.2.175 Not tainted syzkaller #0 PREEMPT(full) 
[  136.415700][ T6630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  136.415718][ T6630] Call Trace:
[  136.415729][ T6630]  <TASK>
[  136.415741][ T6630]  dump_stack_lvl+0x100/0x190
[  136.415782][ T6630]  should_fail_ex.cold+0x5/0xa
[  136.415823][ T6630]  should_failslab+0xc2/0x120
[  136.415859][ T6630]  __kmalloc_cache_noprof+0x7a/0x6f0
[  136.415902][ T6630]  ? vkms_plane_duplicate_state+0x45/0x130
[  136.415956][ T6630]  vkms_plane_duplicate_state+0x45/0x130
[  136.415997][ T6630]  drm_atomic_get_plane_state+0x279/0x760
[  136.416034][ T6630]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  136.416092][ T6630]  ? rcu_is_watching+0x12/0xc0
[  136.416134][ T6630]  ? __mutex_lock+0x26d/0x1b10
[  136.416171][ T6630]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  136.416215][ T6630]  ? drm_master_internal_acquire+0x21/0x80
[  136.416295][ T6630]  drm_client_modeset_commit_locked+0x14d/0x580
[  136.416344][ T6630]  drm_client_modeset_commit+0x4f/0x80
[  136.416386][ T6630]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  136.416431][ T6630]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  136.416474][ T6630]  drm_fbdev_client_restore+0x1b/0x30
[  136.416506][ T6630]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  136.416536][ T6630]  drm_client_dev_restore+0x205/0x2a0
[  136.416603][ T6630]  drm_release+0x2c6/0x360
[  136.416641][ T6630]  ? __pfx_drm_release+0x10/0x10
[  136.416676][ T6630]  __fput+0x3ff/0xb50
[  136.416725][ T6630]  task_work_run+0x150/0x240
[  136.416758][ T6630]  ? __pfx_task_work_run+0x10/0x10
[  136.416791][ T6630]  ? rcu_is_watching+0x12/0xc0
[  136.416829][ T6630]  exit_to_user_mode_loop+0x100/0x4a0
[  136.416875][ T6630]  ? do_syscall_64+0x519/0xf80
[  136.416910][ T6630]  do_syscall_64+0x6f2/0xf80
[  136.416938][ T6630]  ? clear_bhb_loop+0x40/0x90
[  136.416977][ T6630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.417007][ T6630] RIP: 0033:0x7f504619c819
[  136.417034][ T6630] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  136.417070][ T6630] RSP: 002b:00007f5046fe7028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  136.417099][ T6630] RAX: 0000000000000000 RBX: 00007f5046416090 RCX: 00007f504619c819
[  136.417118][ T6630] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  136.417135][ T6630] RBP: 00007f5046232c91 R08: 0000000000000000 R09: 0000000000000000
[  136.417153][ T6630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  136.417170][ T6630] R13: 00007f5046416128 R14: 00007f5046416090 R15: 00007ffd33d479e8
[  136.417213][ T6630]  </TASK>
[  138.694393][ T6668] FAULT_INJECTION: forcing a failure.
[  138.694393][ T6668] name failslab, interval 1, probability 0, space 0, times 0
[  138.721261][ T6668] CPU: 1 UID: 0 PID: 6668 Comm: syz.0.186 Not tainted syzkaller #0 PREEMPT(full) 
[  138.721303][ T6668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  138.721322][ T6668] Call Trace:
[  138.721341][ T6668]  <TASK>
[  138.721353][ T6668]  dump_stack_lvl+0x100/0x190
[  138.721392][ T6668]  should_fail_ex.cold+0x5/0xa
[  138.721437][ T6668]  should_failslab+0xc2/0x120
[  138.721472][ T6668]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  138.721517][ T6668]  ? ptlock_alloc+0x1f/0x70
[  138.721558][ T6668]  ? __lock_acquire+0x4a5/0x2630
[  138.721611][ T6668]  ptlock_alloc+0x1f/0x70
[  138.721651][ T6668]  pte_alloc_one+0x82/0x3d0
[  138.721691][ T6668]  __pte_alloc+0x6d/0x3e0
[  138.721723][ T6668]  ? __pfx___pte_alloc+0x10/0x10
[  138.721758][ T6668]  ? do_raw_spin_lock+0x128/0x260
[  138.721791][ T6668]  ? find_held_lock+0x2b/0x80
[  138.721832][ T6668]  do_anonymous_page+0x13c6/0x2050
[  138.721882][ T6668]  ? __pmd_alloc+0x3fb/0x950
[  138.721924][ T6668]  __handle_mm_fault+0x1d2c/0x2a00
[  138.721974][ T6668]  ? mt_find+0x45e/0x8e0
[  138.722010][ T6668]  ? __pfx___handle_mm_fault+0x10/0x10
[  138.722051][ T6668]  ? __pfx_mt_find+0x10/0x10
[  138.722116][ T6668]  handle_mm_fault+0x36d/0xa20
[  138.722167][ T6668]  __get_user_pages+0x1178/0x32a0
[  138.722219][ T6668]  ? __pfx___get_user_pages+0x10/0x10
[  138.722266][ T6668]  populate_vma_page_range+0x267/0x3f0
[  138.722306][ T6668]  ? __pfx_populate_vma_page_range+0x10/0x10
[  138.722351][ T6668]  ? __pfx_find_vma_intersection+0x10/0x10
[  138.722388][ T6668]  ? do_mmap+0x93f/0x12f0
[  138.722428][ T6668]  __mm_populate+0x107/0x3a0
[  138.722467][ T6668]  ? __pfx___mm_populate+0x10/0x10
[  138.722508][ T6668]  ? up_write+0x28c/0x4f0
[  138.722544][ T6668]  vm_mmap_pgoff+0x37f/0x470
[  138.722586][ T6668]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  138.722624][ T6668]  ? do_futex+0x192/0x350
[  138.722655][ T6668]  ? __pfx_do_futex+0x10/0x10
[  138.722691][ T6668]  ksys_mmap_pgoff+0xe4/0x610
[  138.722722][ T6668]  ? __x64_sys_futex+0x358/0x4d0
[  138.722752][ T6668]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  138.722781][ T6668]  ? xfd_validate_state+0x129/0x190
[  138.722807][ T6668]  ? ksys_write+0x1ac/0x250
[  138.722842][ T6668]  __x64_sys_mmap+0x125/0x190
[  138.722877][ T6668]  do_syscall_64+0x10b/0xf80
[  138.722905][ T6668]  ? clear_bhb_loop+0x40/0x90
[  138.722940][ T6668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.722971][ T6668] RIP: 0033:0x7f0c4799c819
[  138.722998][ T6668] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  138.723023][ T6668] RSP: 002b:00007f0c48890028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  138.723050][ T6668] RAX: ffffffffffffffda RBX: 00007f0c47c15fa0 RCX: 00007f0c4799c819
[  138.723068][ T6668] RDX: 000000000000000a RSI: 0000000000040009 RDI: 0000000000000000
[  138.723083][ T6668] RBP: 00007f0c47a32c91 R08: 0000000000000002 R09: 0000000000028000
[  138.723099][ T6668] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  138.723115][ T6668] R13: 00007f0c47c16038 R14: 00007f0c47c15fa0 R15: 00007ffd281680b8
[  138.723154][ T6668]  </TASK>
[  138.729383][ T6670] netlink: 28 bytes leftover after parsing attributes in process `syz.3.187'.
[  139.062031][ T6670] bridge0: port 1(bridge_slave_0) entered disabled state
[  139.127001][ T6670] bridge_slave_0 (unregistering): left allmulticast mode
[  139.148345][ T6670] bridge_slave_0 (unregistering): left promiscuous mode
[  139.163409][ T6670] bridge0: port 1(bridge_slave_0) entered disabled state
[  139.214205][ T6677] nfs: Bad value for 'source'
[  140.110817][ T6686] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  140.126963][ T6686] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  140.403018][ T6686] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  140.482646][ T6686] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  140.488997][ T6686] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  140.550312][ T6686] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  140.595771][ T6686] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  140.612171][ T6686] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  140.670765][ T6686] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  140.732948][ T6686] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  140.740791][ T6686] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  140.816856][ T6686] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  141.084873][ T6710] netlink: 28 bytes leftover after parsing attributes in process `syz.1.200'.
[  141.105101][ T6710] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.165585][ T6710] bridge_slave_0 (unregistering): left allmulticast mode
[  141.219129][ T6710] bridge_slave_0 (unregistering): left promiscuous mode
[  141.251427][ T6710] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.838440][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout
[  142.558352][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  142.638339][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  142.798815][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  142.925635][ T6728] nfs: Bad value for 'source'
[  143.918340][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout
[  144.639608][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  144.719409][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  144.878857][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  144.990748][ T6763] netlink: 28 bytes leftover after parsing attributes in process `syz.3.216'.
[  145.217730][ T6767] netlink: 198 bytes leftover after parsing attributes in process `syz.2.217'.
[  145.998419][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout
[  146.719528][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  146.798538][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  146.958358][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  147.781051][ T5836] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5
[  149.447713][ T6871] FAULT_INJECTION: forcing a failure.
[  149.447713][ T6871] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.472519][ T6871] CPU: 1 UID: 0 PID: 6871 Comm: syz.0.245 Not tainted syzkaller #0 PREEMPT(full) 
[  149.472546][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  149.472557][ T6871] Call Trace:
[  149.472564][ T6871]  <TASK>
[  149.472571][ T6871]  dump_stack_lvl+0x100/0x190
[  149.472594][ T6871]  should_fail_ex.cold+0x5/0xa
[  149.472616][ T6871]  _copy_to_user+0x32/0xd0
[  149.472643][ T6871]  copy_to_sockptr_offset.constprop.0+0x130/0x150
[  149.472667][ T6871]  ? __pfx_copy_to_sockptr_offset.constprop.0+0x10/0x10
[  149.472693][ T6871]  ? __asan_memset+0x23/0x50
[  149.472717][ T6871]  ? bpf_vlog_finalize+0x1ba/0x360
[  149.472740][ T6871]  btf_new_fd+0x2e1e/0x5dd0
[  149.472766][ T6871]  ? __lock_acquire+0x4a5/0x2630
[  149.472800][ T6871]  ? __pfx_btf_new_fd+0x10/0x10
[  149.472823][ T6871]  ? rcu_is_watching+0x12/0xc0
[  149.472843][ T6871]  ? apparmor_capable+0x1d7/0x4d0
[  149.472868][ T6871]  ? bpf_lsm_capable+0x9/0x10
[  149.472890][ T6871]  ? security_capable+0x80/0x260
[  149.472911][ T6871]  ? ns_capable+0xd2/0xf0
[  149.472934][ T6871]  __sys_bpf+0x1b63/0x4b90
[  149.472949][ T6871]  ? futex_private_hash_put+0x107/0x1c0
[  149.472989][ T6871]  ? __pfx___sys_bpf+0x10/0x10
[  149.473008][ T6871]  ? __pfx_futex_wake+0x10/0x10
[  149.473033][ T6871]  ? ksys_write+0x190/0x250
[  149.473051][ T6871]  ? ksys_write+0x190/0x250
[  149.473074][ T6871]  ? do_futex+0x192/0x350
[  149.473104][ T6871]  ? xfd_validate_state+0x129/0x190
[  149.473121][ T6871]  ? ksys_write+0x1ac/0x250
[  149.473143][ T6871]  __x64_sys_bpf+0x7b/0xc0
[  149.473160][ T6871]  ? lockdep_hardirqs_on+0x78/0x100
[  149.473179][ T6871]  do_syscall_64+0x10b/0xf80
[  149.473196][ T6871]  ? clear_bhb_loop+0x40/0x90
[  149.473221][ T6871]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.473239][ T6871] RIP: 0033:0x7f0c4799c819
[  149.473255][ T6871] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  149.473272][ T6871] RSP: 002b:00007f0c48890028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  149.473290][ T6871] RAX: ffffffffffffffda RBX: 00007f0c47c15fa0 RCX: 00007f0c4799c819
[  149.473301][ T6871] RDX: 0000000000000080 RSI: 0000200000000040 RDI: 0000000000000012
[  149.473312][ T6871] RBP: 00007f0c47a32c91 R08: 0000000000000000 R09: 0000000000000000
[  149.473322][ T6871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  149.473332][ T6871] R13: 00007f0c47c16038 R14: 00007f0c47c15fa0 R15: 00007ffd281680b8
[  149.473353][ T6871]  </TASK>
[  150.237676][ T6876] netlink: 28 bytes leftover after parsing attributes in process `syz.0.247'.
[  150.372978][ T6879] FAULT_INJECTION: forcing a failure.
[  150.372978][ T6879] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.486343][ T6879] CPU: 0 UID: 0 PID: 6879 Comm: syz.2.248 Not tainted syzkaller #0 PREEMPT(full) 
[  150.486374][ T6879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  150.486384][ T6879] Call Trace:
[  150.486391][ T6879]  <TASK>
[  150.486398][ T6879]  dump_stack_lvl+0x100/0x190
[  150.486421][ T6879]  should_fail_ex.cold+0x5/0xa
[  150.486445][ T6879]  _copy_from_user+0x2e/0xd0
[  150.486470][ T6879]  copy_msghdr_from_user+0x9f/0x4f0
[  150.486501][ T6879]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  150.486534][ T6879]  ? rcu_is_watching+0x12/0xc0
[  150.486554][ T6879]  ? ___sys_sendmsg+0x19d/0x1e0
[  150.486582][ T6879]  ? kfree+0x1dd/0x6c0
[  150.486609][ T6879]  ___sys_sendmsg+0x106/0x1e0
[  150.486640][ T6879]  ? __pfx____sys_sendmsg+0x10/0x10
[  150.486688][ T6879]  ? __pfx___might_resched+0x10/0x10
[  150.486713][ T6879]  __sys_sendmmsg+0x205/0x430
[  150.486738][ T6879]  ? __pfx___sys_sendmmsg+0x10/0x10
[  150.486768][ T6879]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  150.486797][ T6879]  ? fput+0x79/0x100
[  150.486820][ T6879]  ? ksys_write+0x1ac/0x250
[  150.486839][ T6879]  ? __pfx_ksys_write+0x10/0x10
[  150.486862][ T6879]  __x64_sys_sendmmsg+0x9c/0x100
[  150.486884][ T6879]  ? lockdep_hardirqs_on+0x78/0x100
[  150.486903][ T6879]  do_syscall_64+0x10b/0xf80
[  150.486928][ T6879]  ? clear_bhb_loop+0x40/0x90
[  150.486966][ T6879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.486985][ T6879] RIP: 0033:0x7f504619c819
[  150.487000][ T6879] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  150.487017][ T6879] RSP: 002b:00007f5047008028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  150.487035][ T6879] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619c819
[  150.487047][ T6879] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003
[  150.487057][ T6879] RBP: 00007f5047008090 R08: 0000000000000000 R09: 0000000000000000
[  150.487068][ T6879] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  150.487078][ T6879] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffd33d479e8
[  150.487100][ T6879]  </TASK>
[  151.886838][ T6891] netlink: 28 bytes leftover after parsing attributes in process `syz.1.260'.
[  153.093390][ T6908] FAULT_INJECTION: forcing a failure.
[  153.093390][ T6908] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.133275][ T6908] CPU: 1 UID: 0 PID: 6908 Comm: syz.0.255 Not tainted syzkaller #0 PREEMPT(full) 
[  153.133358][ T6908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  153.133384][ T6908] Call Trace:
[  153.133395][ T6908]  <TASK>
[  153.133418][ T6908]  dump_stack_lvl+0x100/0x190
[  153.133489][ T6908]  should_fail_ex.cold+0x5/0xa
[  153.133555][ T6908]  _copy_to_user+0x32/0xd0
[  153.133615][ T6908]  copy_to_sockptr_offset.constprop.0+0x130/0x150
[  153.133673][ T6908]  ? __pfx_copy_to_sockptr_offset.constprop.0+0x10/0x10
[  153.133724][ T6908]  ? __asan_memset+0x23/0x50
[  153.133783][ T6908]  ? bpf_vlog_finalize+0x1ba/0x360
[  153.133833][ T6908]  btf_new_fd+0x2e1e/0x5dd0
[  153.133884][ T6908]  ? __lock_acquire+0x4a5/0x2630
[  153.133940][ T6908]  ? __pfx_btf_new_fd+0x10/0x10
[  153.133981][ T6908]  ? rcu_is_watching+0x12/0xc0
[  153.134016][ T6908]  ? apparmor_capable+0x1d7/0x4d0
[  153.134058][ T6908]  ? bpf_lsm_capable+0x9/0x10
[  153.134089][ T6908]  ? security_capable+0x80/0x260
[  153.134126][ T6908]  ? ns_capable+0xd2/0xf0
[  153.134175][ T6908]  __sys_bpf+0x1b63/0x4b90
[  153.134212][ T6908]  ? futex_private_hash_put+0x107/0x1c0
[  153.134267][ T6908]  ? __pfx___sys_bpf+0x10/0x10
[  153.134300][ T6908]  ? __pfx_futex_wake+0x10/0x10
[  153.134344][ T6908]  ? ksys_write+0x190/0x250
[  153.134382][ T6908]  ? ksys_write+0x190/0x250
[  153.134422][ T6908]  ? do_futex+0x192/0x350
[  153.134476][ T6908]  ? xfd_validate_state+0x129/0x190
[  153.134505][ T6908]  ? ksys_write+0x1ac/0x250
[  153.134545][ T6908]  __x64_sys_bpf+0x7b/0xc0
[  153.134573][ T6908]  ? lockdep_hardirqs_on+0x78/0x100
[  153.134604][ T6908]  do_syscall_64+0x10b/0xf80
[  153.134639][ T6908]  ? clear_bhb_loop+0x40/0x90
[  153.134676][ T6908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.134707][ T6908] RIP: 0033:0x7f0c4799c819
[  153.134732][ T6908] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  153.134757][ T6908] RSP: 002b:00007f0c48890028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  153.134786][ T6908] RAX: ffffffffffffffda RBX: 00007f0c47c15fa0 RCX: 00007f0c4799c819
[  153.134804][ T6908] RDX: 0000000000000080 RSI: 0000200000000040 RDI: 0000000000000012
[  153.134821][ T6908] RBP: 00007f0c47a32c91 R08: 0000000000000000 R09: 0000000000000000
[  153.134838][ T6908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  153.134854][ T6908] R13: 00007f0c47c16038 R14: 00007f0c47c15fa0 R15: 00007ffd281680b8
[  153.134891][ T6908]  </TASK>
[  153.663897][ T5836] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5
[  154.488051][ T6921] netlink: 334 bytes leftover after parsing attributes in process `syz.3.262'.
[  155.130352][ T6922] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  155.161629][ T6922] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  155.171331][ T6922] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  155.205654][ T6922] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  156.121218][ T6954] netlink: 334 bytes leftover after parsing attributes in process `syz.0.271'.
[  156.461814][ T5836] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5
[  156.561814][ T6969] FAULT_INJECTION: forcing a failure.
[  156.561814][ T6969] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  156.660643][ T6969] CPU: 0 UID: 0 PID: 6969 Comm: syz.2.277 Not tainted syzkaller #0 PREEMPT(full) 
[  156.660682][ T6969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  156.660699][ T6969] Call Trace:
[  156.660708][ T6969]  <TASK>
[  156.660719][ T6969]  dump_stack_lvl+0x100/0x190
[  156.660757][ T6969]  should_fail_ex.cold+0x5/0xa
[  156.660786][ T6969]  ? prepare_alloc_pages+0x16d/0x5f0
[  156.660824][ T6969]  should_fail_alloc_page+0xeb/0x140
[  156.660859][ T6969]  prepare_alloc_pages+0x1f0/0x5f0
[  156.660908][ T6969]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  156.660955][ T6969]  ? stack_trace_save+0x8e/0xc0
[  156.660992][ T6969]  ? __pfx_stack_trace_save+0x10/0x10
[  156.661027][ T6969]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  156.661071][ T6969]  ? stack_depot_save_flags+0x27/0x9d0
[  156.661121][ T6969]  ? kasan_save_stack+0x3f/0x50
[  156.661145][ T6969]  ? kasan_save_stack+0x30/0x50
[  156.661169][ T6969]  ? kasan_save_track+0x14/0x30
[  156.661194][ T6969]  ? __kasan_slab_alloc+0x89/0x90
[  156.661220][ T6969]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  156.661264][ T6969]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  156.661307][ T6969]  ? do_user_addr_fault+0x74c/0x12f0
[  156.661337][ T6969]  ? exc_page_fault+0x6f/0xd0
[  156.661363][ T6969]  ? asm_exc_page_fault+0x26/0x30
[  156.661391][ T6969]  ? _copy_from_user+0x98/0xd0
[  156.661427][ T6969]  ? v4l2_ioctl+0x1bd/0x250
[  156.661471][ T6969]  ? __x64_sys_ioctl+0x18e/0x210
[  156.661513][ T6969]  ? do_syscall_64+0x10b/0xf80
[  156.661542][ T6969]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.661584][ T6969]  ? __lock_acquire+0x4a5/0x2630
[  156.661633][ T6969]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  156.661681][ T6969]  ? policy_nodemask+0xed/0x4f0
[  156.661717][ T6969]  alloc_pages_mpol+0x1fb/0x540
[  156.661751][ T6969]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  156.661782][ T6969]  ? __thp_vma_allowable_orders+0x1d9/0xe90
[  156.661822][ T6969]  ? do_raw_spin_lock+0x128/0x260
[  156.661859][ T6969]  alloc_pages_noprof+0x1a/0x160
[  156.661907][ T6969]  pte_alloc_one+0x1c/0x3d0
[  156.661946][ T6969]  do_fault+0x86c/0x1750
[  156.661981][ T6969]  ? __pmd_alloc+0x3fb/0x950
[  156.662027][ T6969]  __handle_mm_fault+0x187d/0x2a00
[  156.662073][ T6969]  ? mt_find+0x45e/0x8e0
[  156.662112][ T6969]  ? __pfx___handle_mm_fault+0x10/0x10
[  156.662149][ T6969]  ? __pfx_mt_find+0x10/0x10
[  156.662208][ T6969]  ? find_vma+0xbf/0x140
[  156.662239][ T6969]  ? __pfx_find_vma+0x10/0x10
[  156.662273][ T6969]  handle_mm_fault+0x36d/0xa20
[  156.662323][ T6969]  do_user_addr_fault+0x74c/0x12f0
[  156.662362][ T6969]  ? trace_page_fault_kernel+0x7a/0x200
[  156.662399][ T6969]  exc_page_fault+0x6f/0xd0
[  156.662429][ T6969]  asm_exc_page_fault+0x26/0x30
[  156.662458][ T6969] RIP: 0010:rep_movs_alternative+0x30/0x90
[  156.662499][ T6969] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  156.662526][ T6969] RSP: 0018:ffffc90003627cf0 EFLAGS: 00050202
[  156.662550][ T6969] RAX: 0000000000000001 RBX: 0000000000000003 RCX: 0000000000000028
[  156.662567][ T6969] RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffffc90003627d98
[  156.662584][ T6969] RBP: 0000000000000028 R08: 0000000000000001 R09: fffff520006c4fb7
[  156.662601][ T6969] R10: ffffc90003627dbf R11: 0000000000000000 R12: 0000000000000000
[  156.662617][ T6969] R13: ffffc90003627d98 R14: 0000000000000028 R15: ffffc90003627d98
[  156.662654][ T6969]  _copy_from_user+0x98/0xd0
[  156.662695][ T6969]  video_usercopy+0x9e0/0x1490
[  156.662740][ T6969]  ? __pfx_subdev_do_ioctl_lock+0x10/0x10
[  156.662785][ T6969]  ? __pfx_video_usercopy+0x10/0x10
[  156.662847][ T6969]  ? __fget_files+0x21f/0x3d0
[  156.662894][ T6969]  v4l2_ioctl+0x1bd/0x250
[  156.662938][ T6969]  ? __pfx_v4l2_ioctl+0x10/0x10
[  156.662985][ T6969]  __x64_sys_ioctl+0x18e/0x210
[  156.663034][ T6969]  do_syscall_64+0x10b/0xf80
[  156.663062][ T6969]  ? clear_bhb_loop+0x40/0x90
[  156.663098][ T6969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.663125][ T6969] RIP: 0033:0x7f504619c819
[  156.663149][ T6969] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  156.663173][ T6969] RSP: 002b:00007f5047008028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  156.663199][ T6969] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619c819
[  156.663216][ T6969] RDX: 0000000000000003 RSI: 00000000c0285628 RDI: 0000000000000003
[  156.663233][ T6969] RBP: 00007f5047008090 R08: 0000000000000000 R09: 0000000000000000
[  156.663249][ T6969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  156.663265][ T6969] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffd33d479e8
[  156.663304][ T6969]  </TASK>
[  157.140172][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout
[  157.198657][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  157.204821][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout
[  157.350562][ T5159] Bluetooth: hci3: command 0x0c1a tx timeout
[  157.409040][ T6971] netlink: 28 bytes leftover after parsing attributes in process `syz.0.278'.
[  159.275879][   T30] audit: type=1800 audit(1776662439.714:2): pid=7020 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.292" name="SYSV00000802" dev="tmpfs" ino=0 res=0 errno=0
[  159.906919][ T7027] netlink: 8 bytes leftover after parsing attributes in process `syz.2.295'.
[  160.012724][ T7028] openvswitch: netlink: Missing valid actions attribute.
[  161.591370][ T7039] FAULT_INJECTION: forcing a failure.
[  161.591370][ T7039] name failslab, interval 1, probability 0, space 0, times 0
[  161.632922][ T7039] CPU: 1 UID: 0 PID: 7039 Comm: syz.0.300 Not tainted syzkaller #0 PREEMPT(full) 
[  161.632965][ T7039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  161.632984][ T7039] Call Trace:
[  161.632994][ T7039]  <TASK>
[  161.633007][ T7039]  dump_stack_lvl+0x100/0x190
[  161.633045][ T7039]  should_fail_ex.cold+0x5/0xa
[  161.633094][ T7039]  should_failslab+0xc2/0x120
[  161.633129][ T7039]  __kmalloc_cache_noprof+0x7a/0x6f0
[  161.633172][ T7039]  ? fscontext_alloc_log+0x4a/0x1b0
[  161.633219][ T7039]  ? qnx6_init_fs_context+0x96/0xd0
[  161.633265][ T7039]  fscontext_alloc_log+0x4a/0x1b0
[  161.633313][ T7039]  __x64_sys_fsopen+0x159/0x220
[  161.633362][ T7039]  do_syscall_64+0x10b/0xf80
[  161.633393][ T7039]  ? clear_bhb_loop+0x40/0x90
[  161.633430][ T7039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.633462][ T7039] RIP: 0033:0x7f0c4799c819
[  161.633488][ T7039] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  161.633517][ T7039] RSP: 002b:00007f0c48890028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[  161.633547][ T7039] RAX: ffffffffffffffda RBX: 00007f0c47c15fa0 RCX: 00007f0c4799c819
[  161.633568][ T7039] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  161.633586][ T7039] RBP: 00007f0c47a32c91 R08: 0000000000000000 R09: 0000000000000000
[  161.633604][ T7039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  161.633622][ T7039] R13: 00007f0c47c16038 R14: 00007f0c47c15fa0 R15: 00007ffd281680b8
[  161.633662][ T7039]  </TASK>
[  162.253110][ T7055] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  163.340065][ T7068] random: crng reseeded on system resumption
[  163.771280][ T7072] netlink: 28 bytes leftover after parsing attributes in process `syz.0.310'.
[  164.344380][ T7085] netlink: 342 bytes leftover after parsing attributes in process `syz.3.314'.
[  164.369197][ T7085] netlink: 342 bytes leftover after parsing attributes in process `syz.3.314'.
[  164.393118][ T7085] netlink: 342 bytes leftover after parsing attributes in process `syz.3.314'.
[  164.498618][ T7089] netlink: 302 bytes leftover after parsing attributes in process `syz.3.314'.
[  165.625959][ T7112] netlink: 28 bytes leftover after parsing attributes in process `syz.0.321'.
[  165.702620][ T7107] FAULT_INJECTION: forcing a failure.
[  165.702620][ T7107] name failslab, interval 1, probability 0, space 0, times 0
[  165.734912][ T7107] CPU: 1 UID: 0 PID: 7107 Comm: syz.1.319 Not tainted syzkaller #0 PREEMPT(full) 
[  165.734955][ T7107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  165.734972][ T7107] Call Trace:
[  165.734981][ T7107]  <TASK>
[  165.734992][ T7107]  dump_stack_lvl+0x100/0x190
[  165.735032][ T7107]  should_fail_ex.cold+0x5/0xa
[  165.735070][ T7107]  should_failslab+0xc2/0x120
[  165.735107][ T7107]  __kmalloc_cache_noprof+0x7a/0x6f0
[  165.735149][ T7107]  ? sctp_auth_shkey_create+0x9e/0x210
[  165.735197][ T7107]  sctp_auth_shkey_create+0x9e/0x210
[  165.735240][ T7107]  sctp_endpoint_new+0x589/0xb20
[  165.735286][ T7107]  ? __pfx_sctp_endpoint_new+0x10/0x10
[  165.735331][ T7107]  ? lockdep_init_map_type+0x5c/0x250
[  165.735381][ T7107]  ? lockdep_init_map_type+0x5c/0x250
[  165.735436][ T7107]  sctp_init_sock+0xe2b/0x1300
[  165.735475][ T7107]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[  165.735516][ T7107]  sctp_v6_init_sock+0x16/0x70
[  165.735553][ T7107]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[  165.735592][ T7107]  inet6_create+0xb21/0x12b0
[  165.735634][ T7107]  ? inet6_create+0x7f/0x12b0
[  165.735678][ T7107]  __sock_create+0x339/0x860
[  165.735732][ T7107]  __sys_socket+0x14d/0x260
[  165.735762][ T7107]  ? __pfx___sys_socket+0x10/0x10
[  165.735790][ T7107]  ? ksys_write+0x1ac/0x250
[  165.735830][ T7107]  __x64_sys_socket+0x72/0xb0
[  165.735854][ T7107]  ? lockdep_hardirqs_on+0x78/0x100
[  165.735890][ T7107]  do_syscall_64+0x10b/0xf80
[  165.735930][ T7107]  ? clear_bhb_loop+0x40/0x90
[  165.735970][ T7107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.736002][ T7107] RIP: 0033:0x7fd40639c819
[  165.736029][ T7107] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  165.736058][ T7107] RSP: 002b:00007fd407227028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  165.736090][ T7107] RAX: ffffffffffffffda RBX: 00007fd406615fa0 RCX: 00007fd40639c819
[  165.736111][ T7107] RDX: 0000000000000084 RSI: 0000000000000801 RDI: 000000000000000a
[  165.736129][ T7107] RBP: 00007fd406432c91 R08: 0000000000000000 R09: 0000000000000000
[  165.736147][ T7107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  165.736165][ T7107] R13: 00007fd406616038 R14: 00007fd406615fa0 R15: 00007ffdf6079018
[  165.736205][ T7107]  </TASK>
[  166.731425][ T7127] netlink: 28 bytes leftover after parsing attributes in process `syz.1.324'.
[  168.478715][ T7158] netlink: 28 bytes leftover after parsing attributes in process `syz.2.331'.
[  169.329364][ T7174] netlink: 28 bytes leftover after parsing attributes in process `syz.3.336'.
[  170.076551][ T5159] Bluetooth: hci2: ISO packet for unknown connection handle 0
[  170.877358][ T7193] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  170.916438][ T7193] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  170.923471][ T7193] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  170.934948][ T7193] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  171.272392][ T7209] binder: 7207:7209 ioctl c0046209 ffffffffffffffff returned -22
[  171.349363][ T7209] netlink: 326 bytes leftover after parsing attributes in process `syz.0.345'.
[  171.484464][ T7205] random: crng reseeded on system resumption
[  171.519308][ T7218] netlink: 28 bytes leftover after parsing attributes in process `syz.2.348'.
[  172.398413][ T5159] Bluetooth: hci0: command 0x0c1a tx timeout
[  172.852605][ T7234] netlink: 342 bytes leftover after parsing attributes in process `syz.0.353'.
[  172.916346][ T7234] netlink: 302 bytes leftover after parsing attributes in process `syz.0.353'.
[  172.959154][ T5159] Bluetooth: hci3: command 0x0c1a tx timeout
[  172.965271][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  172.965288][ T5843] Bluetooth: hci1: command 0x0c1a tx timeout
[  173.851170][ T7248] random: crng reseeded on system resumption
[  174.271555][ T7257] netlink: 'syz.2.360': attribute type 1 has an invalid length.
[  174.288600][ T7257] netlink: 13 bytes leftover after parsing attributes in process `syz.2.360'.
[  174.313519][ T7257] netlink: 'syz.2.360': attribute type 1 has an invalid length.
[  175.120101][ T7267] random: crng reseeded on system resumption
[  175.762138][ T7282] FAULT_INJECTION: forcing a failure.
[  175.762138][ T7282] name failslab, interval 1, probability 0, space 0, times 0
[  175.795574][ T7282] CPU: 0 UID: 0 PID: 7282 Comm: syz.2.368 Not tainted syzkaller #0 PREEMPT(full) 
[  175.795618][ T7282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  175.795636][ T7282] Call Trace:
[  175.795647][ T7282]  <TASK>
[  175.795659][ T7282]  dump_stack_lvl+0x100/0x190
[  175.795699][ T7282]  should_fail_ex.cold+0x5/0xa
[  175.795738][ T7282]  should_failslab+0xc2/0x120
[  175.795772][ T7282]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  175.795820][ T7282]  ? sk_prot_alloc+0x60/0x2a0
[  175.795883][ T7282]  sk_prot_alloc+0x60/0x2a0
[  175.795930][ T7282]  sk_alloc+0x36/0xe80
[  175.795966][ T7282]  rds_create+0x9e/0x5f0
[  175.796018][ T7282]  __sock_create+0x339/0x860
[  175.796068][ T7282]  __sys_socket+0x14d/0x260
[  175.796094][ T7282]  ? __pfx___sys_socket+0x10/0x10
[  175.796129][ T7282]  __x64_sys_socket+0x72/0xb0
[  175.796154][ T7282]  ? lockdep_hardirqs_on+0x78/0x100
[  175.796182][ T7282]  do_syscall_64+0x10b/0xf80
[  175.796208][ T7282]  ? clear_bhb_loop+0x40/0x90
[  175.796244][ T7282]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.796274][ T7282] RIP: 0033:0x7f504619c819
[  175.796300][ T7282] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  175.796326][ T7282] RSP: 002b:00007f5047008028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  175.796356][ T7282] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619c819
[  175.796375][ T7282] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000015
[  175.796392][ T7282] RBP: 00007f5046232c91 R08: 0000000000000000 R09: 0000000000000000
[  175.796409][ T7282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  175.796426][ T7282] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffd33d479e8
[  175.796464][ T7282]  </TASK>
[  176.050078][ T7286] netlink: 28 bytes leftover after parsing attributes in process `syz.1.369'.
[  177.164413][ T7305] FAULT_INJECTION: forcing a failure.
[  177.164413][ T7305] name fail_futex, interval 1, probability 0, space 0, times 0
[  177.218416][ T7305] CPU: 0 UID: 0 PID: 7305 Comm: syz.0.375 Not tainted syzkaller #0 PREEMPT(full) 
[  177.218457][ T7305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  177.218472][ T7305] Call Trace:
[  177.218481][ T7305]  <TASK>
[  177.218492][ T7305]  dump_stack_lvl+0x100/0x190
[  177.218528][ T7305]  should_fail_ex.cold+0x5/0xa
[  177.218564][ T7305]  get_futex_key+0x1d2/0x1510
[  177.218617][ T7305]  ? __pfx_get_futex_key+0x10/0x10
[  177.218666][ T7305]  ? rcu_is_watching+0x12/0xc0
[  177.218712][ T7305]  futex_wait_setup+0x83/0x510
[  177.218759][ T7305]  __futex_wait+0x19f/0x300
[  177.218800][ T7305]  ? __pfx___futex_wait+0x10/0x10
[  177.218836][ T7305]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  177.218889][ T7305]  ? __pfx_futex_wake_mark+0x10/0x10
[  177.218932][ T7305]  ? find_held_lock+0x2b/0x80
[  177.218966][ T7305]  ? futex_wake+0x456/0x530
[  177.219023][ T7305]  futex_wait+0xe6/0x370
[  177.219062][ T7305]  ? __pfx_futex_wait+0x10/0x10
[  177.219111][ T7305]  ? vfs_write+0x15d/0x1070
[  177.219146][ T7305]  ? __pfx_sock_write_iter+0x10/0x10
[  177.219198][ T7305]  do_futex+0x1ef/0x350
[  177.219231][ T7305]  ? __pfx_do_futex+0x10/0x10
[  177.219272][ T7305]  __x64_sys_futex+0x34f/0x4d0
[  177.219306][ T7305]  ? fput+0x79/0x100
[  177.219342][ T7305]  ? __pfx___x64_sys_futex+0x10/0x10
[  177.219372][ T7305]  ? ksys_write+0x1ac/0x250
[  177.219403][ T7305]  ? __pfx_ksys_write+0x10/0x10
[  177.219438][ T7305]  ? rcu_is_watching+0x12/0xc0
[  177.219475][ T7305]  do_syscall_64+0x10b/0xf80
[  177.219502][ T7305]  ? clear_bhb_loop+0x40/0x90
[  177.219540][ T7305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.219570][ T7305] RIP: 0033:0x7f0c4799c819
[  177.219597][ T7305] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  177.219624][ T7305] RSP: 002b:00007f0c488900e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  177.219653][ T7305] RAX: ffffffffffffffda RBX: 00007f0c47c15fa8 RCX: 00007f0c4799c819
[  177.219673][ T7305] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0c47c15fa8
[  177.219691][ T7305] RBP: 00007f0c47c15fa0 R08: 0000000000000000 R09: 0000000000000000
[  177.219708][ T7305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  177.219724][ T7305] R13: 00007f0c47c16038 R14: 00007ffd28167fd0 R15: 00007ffd281680b8
[  177.219762][ T7305]  </TASK>
[  178.284844][ T7326] random: crng reseeded on system resumption
[  179.004659][ T7341] tc_dump_action: action bad kind
[  179.206727][ T7341] netlink: 2392 bytes leftover after parsing attributes in process `syz.3.388'.
[  179.447042][ T7357] syz.0.392 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  180.164426][ T7373] netlink: 28 bytes leftover after parsing attributes in process `syz.2.395'.
[  180.234118][ T7375] netlink: 28 bytes leftover after parsing attributes in process `syz.3.396'.
[  180.854207][ T7387] netlink: 12 bytes leftover after parsing attributes in process `syz.0.397'.
[  183.591274][ T7412] random: crng reseeded on system resumption
[  185.619624][ T7460] binder: 7459:7460 ioctl c0306201 2000000000c0 returned -14
[  185.687878][ T7462] FAULT_INJECTION: forcing a failure.
[  185.687878][ T7462] name failslab, interval 1, probability 0, space 0, times 0
[  185.723581][ T7462] CPU: 0 UID: 0 PID: 7462 Comm: syz.1.422 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  185.723631][ T7462] Tainted: [L]=SOFTLOCKUP
[  185.723641][ T7462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  185.723658][ T7462] Call Trace:
[  185.723668][ T7462]  <TASK>
[  185.723678][ T7462]  dump_stack_lvl+0x100/0x190
[  185.723713][ T7462]  should_fail_ex.cold+0x5/0xa
[  185.723748][ T7462]  should_failslab+0xc2/0x120
[  185.723779][ T7462]  __kvmalloc_node_noprof+0xfa/0xa00
[  185.723825][ T7462]  ? io_alloc_cache_init+0x38/0x170
[  185.723858][ T7462]  ? lockdep_init_map_type+0x5c/0x250
[  185.723911][ T7462]  io_alloc_cache_init+0x38/0x170
[  185.723944][ T7462]  io_uring_setup.cold+0x3cd/0x1c6e
[  185.724005][ T7462]  ? __pfx_io_uring_setup+0x10/0x10
[  185.724053][ T7462]  ? do_futex+0x192/0x350
[  185.724084][ T7462]  ? __pfx_do_futex+0x10/0x10
[  185.724129][ T7462]  ? xfd_validate_state+0x129/0x190
[  185.724155][ T7462]  ? ksys_write+0x1ac/0x250
[  185.724196][ T7462]  __x64_sys_io_uring_setup+0xc2/0x170
[  185.724244][ T7462]  do_syscall_64+0x10b/0xf80
[  185.724274][ T7462]  ? clear_bhb_loop+0x40/0x90
[  185.724311][ T7462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.724342][ T7462] RIP: 0033:0x7fd40639c819
[  185.724369][ T7462] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  185.724396][ T7462] RSP: 002b:00007fd407227028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  185.724424][ T7462] RAX: ffffffffffffffda RBX: 00007fd406615fa0 RCX: 00007fd40639c819
[  185.724444][ T7462] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  185.724461][ T7462] RBP: 00007fd406432c91 R08: 0000000000000000 R09: 0000000000000000
[  185.724479][ T7462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  185.724496][ T7462] R13: 00007fd406616038 R14: 00007fd406615fa0 R15: 00007ffdf6079018
[  185.724536][ T7462]  </TASK>
[  186.960375][ T7488] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3315741749 (106103735968 ns) > initial count (47382424480 ns). Using initial count to start timer.
[  187.643519][ T1021] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  187.921378][ T7499] input: jJǸ-�¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input6
[  188.406770][ T7506] netlink: 28 bytes leftover after parsing attributes in process `syz.3.432'.
[  189.058833][ T7512] random: crng reseeded on system resumption
[  189.507501][ T7528] FAULT_INJECTION: forcing a failure.
[  189.507501][ T7528] name fail_futex, interval 1, probability 0, space 0, times 0
[  189.560275][ T7528] CPU: 0 UID: 0 PID: 7528 Comm: syz.2.437 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  189.560305][ T7528] Tainted: [L]=SOFTLOCKUP
[  189.560311][ T7528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  189.560322][ T7528] Call Trace:
[  189.560328][ T7528]  <TASK>
[  189.560335][ T7528]  dump_stack_lvl+0x100/0x190
[  189.560360][ T7528]  should_fail_ex.cold+0x5/0xa
[  189.560384][ T7528]  get_futex_key+0x1d2/0x1510
[  189.560416][ T7528]  ? __pfx_get_futex_key+0x10/0x10
[  189.560445][ T7528]  ? lock_acquire+0x1b1/0x370
[  189.560480][ T7528]  futex_wake+0xea/0x530
[  189.560505][ T7528]  ? __pfx_futex_wake+0x10/0x10
[  189.560527][ T7528]  ? exit_mm_release+0x19/0x30
[  189.560560][ T7528]  do_futex+0x32b/0x350
[  189.560579][ T7528]  ? __pfx_do_futex+0x10/0x10
[  189.560596][ T7528]  ? __might_fault+0xc5/0x140
[  189.560629][ T7528]  mm_release+0x24a/0x2f0
[  189.560651][ T7528]  do_exit+0x707/0x2a60
[  189.560681][ T7528]  ? __pfx_do_exit+0x10/0x10
[  189.560708][ T7528]  ? do_raw_spin_lock+0x128/0x260
[  189.560727][ T7528]  ? find_held_lock+0x2b/0x80
[  189.560749][ T7528]  ? get_signal+0x7e0/0x21e0
[  189.560773][ T7528]  do_group_exit+0xd5/0x2a0
[  189.560803][ T7528]  get_signal+0x1ec7/0x21e0
[  189.560833][ T7528]  ? __pfx_get_signal+0x10/0x10
[  189.560856][ T7528]  ? do_futex+0x192/0x350
[  189.560877][ T7528]  arch_do_signal_or_restart+0x91/0x770
[  189.560914][ T7528]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  189.560947][ T7528]  ? __pfx___x64_sys_futex+0x10/0x10
[  189.560967][ T7528]  ? rcu_is_watching+0x12/0xc0
[  189.560991][ T7528]  exit_to_user_mode_loop+0x86/0x4a0
[  189.561020][ T7528]  ? do_syscall_64+0x519/0xf80
[  189.561040][ T7528]  do_syscall_64+0x6f2/0xf80
[  189.561057][ T7528]  ? clear_bhb_loop+0x40/0x90
[  189.561079][ T7528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.561098][ T7528] RIP: 0033:0x7f504619c819
[  189.561114][ T7528] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  189.561131][ T7528] RSP: 002b:00007f50470080e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  189.561149][ T7528] RAX: fffffffffffffe00 RBX: 00007f5046415fa8 RCX: 00007f504619c819
[  189.561160][ T7528] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5046415fa8
[  189.561171][ T7528] RBP: 00007f5046415fa0 R08: 0000000000000000 R09: 0000000000000000
[  189.561181][ T7528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  189.561191][ T7528] R13: 00007f5046416038 R14: 00007ffd33d47900 R15: 00007ffd33d479e8
[  189.561213][ T7528]  </TASK>
[  190.426752][ T7536] netlink: 28 bytes leftover after parsing attributes in process `syz.2.439'.
[  191.075699][   T30] audit: type=1800 audit(1776662471.504:3): pid=7549 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.443" name="features" dev="configfs" ino=16059 res=0 errno=0
[  191.316345][ T7552] binder: 7551:7552 ioctl c0306201 2000000000c0 returned -14
[  191.938624][ T7558] random: crng reseeded on system resumption
[  192.395077][ T7572] netlink: 28 bytes leftover after parsing attributes in process `syz.0.450'.
[  192.797215][ T7574] netlink: 186 bytes leftover after parsing attributes in process `syz.2.451'.
[  192.810207][ T7574] netlink: 186 bytes leftover after parsing attributes in process `syz.2.451'.
[  193.102897][ T7583] binder: 7581:7583 ioctl c0306201 2000000000c0 returned -14
[  193.574782][ T7589] random: crng reseeded on system resumption
[  193.974777][ T7596] FAULT_INJECTION: forcing a failure.
[  193.974777][ T7596] name failslab, interval 1, probability 0, space 0, times 0
[  194.003723][ T7596] CPU: 1 UID: 0 PID: 7596 Comm: syz.1.458 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  194.003770][ T7596] Tainted: [L]=SOFTLOCKUP
[  194.003780][ T7596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  194.003795][ T7596] Call Trace:
[  194.003805][ T7596]  <TASK>
[  194.003816][ T7596]  dump_stack_lvl+0x100/0x190
[  194.003853][ T7596]  should_fail_ex.cold+0x5/0xa
[  194.003891][ T7596]  should_failslab+0xc2/0x120
[  194.003924][ T7596]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  194.003968][ T7596]  ? taskstats_exit+0x67b/0xc10
[  194.004005][ T7596]  ? rcu_is_watching+0x12/0xc0
[  194.004044][ T7596]  taskstats_exit+0x67b/0xc10
[  194.004079][ T7596]  ? __pfx_acct_update_integrals+0x10/0x10
[  194.004115][ T7596]  ? __pfx_taskstats_exit+0x10/0x10
[  194.004153][ T7596]  ? rcu_read_lock_any_held+0x6a/0xa0
[  194.004186][ T7596]  ? exit_signals+0x395/0xaf0
[  194.004222][ T7596]  do_exit+0x65c/0x2a60
[  194.004267][ T7596]  ? __pfx_do_exit+0x10/0x10
[  194.004305][ T7596]  ? do_raw_spin_lock+0x128/0x260
[  194.004334][ T7596]  ? find_held_lock+0x2b/0x80
[  194.004366][ T7596]  ? get_signal+0x7e0/0x21e0
[  194.004406][ T7596]  do_group_exit+0xd5/0x2a0
[  194.004450][ T7596]  get_signal+0x1ec7/0x21e0
[  194.004495][ T7596]  ? __pfx_get_signal+0x10/0x10
[  194.004530][ T7596]  ? do_futex+0x192/0x350
[  194.004563][ T7596]  arch_do_signal_or_restart+0x91/0x770
[  194.004604][ T7596]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  194.004655][ T7596]  ? __pfx___x64_sys_futex+0x10/0x10
[  194.004698][ T7596]  ? rcu_is_watching+0x12/0xc0
[  194.004734][ T7596]  exit_to_user_mode_loop+0x86/0x4a0
[  194.004776][ T7596]  ? do_syscall_64+0x519/0xf80
[  194.004808][ T7596]  do_syscall_64+0x6f2/0xf80
[  194.004834][ T7596]  ? clear_bhb_loop+0x40/0x90
[  194.004867][ T7596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.004895][ T7596] RIP: 0033:0x7fd40639c819
[  194.004917][ T7596] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  194.004939][ T7596] RSP: 002b:00007fd4072270e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  194.004965][ T7596] RAX: fffffffffffffe00 RBX: 00007fd406615fa8 RCX: 00007fd40639c819
[  194.004982][ T7596] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd406615fa8
[  194.004998][ T7596] RBP: 00007fd406615fa0 R08: 0000000000000000 R09: 0000000000000000
[  194.005014][ T7596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  194.005029][ T7596] R13: 00007fd406616038 R14: 00007ffdf6078f30 R15: 00007ffdf6079018
[  194.005065][ T7596]  </TASK>
[  194.570382][ T1312] ieee802154 phy0 wpan0: encryption failed: -22
[  194.578314][ T1312] ieee802154 phy1 wpan1: encryption failed: -22
[  194.735707][ T7601] netlink: 'syz.0.459': attribute type 1 has an invalid length.
[  194.761478][ T7601] netlink: 9 bytes leftover after parsing attributes in process `syz.0.459'.
[  194.770964][ T7594] netlink: 12 bytes leftover after parsing attributes in process `syz.2.457'.
[  195.465864][ T7613] netlink: 338 bytes leftover after parsing attributes in process `syz.1.461'.
[  195.780097][ T7621] binder: 7620:7621 ioctl c0306201 2000000000c0 returned -14
[  196.277110][ T5843] Bluetooth: hci3: unexpected subevent 0x01 length: 126 > 18
[  196.385117][ T7638] netlink: 28 bytes leftover after parsing attributes in process `syz.1.467'.
[  196.422845][ T7634] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3315741749 (106103735968 ns) > initial count (47382424480 ns). Using initial count to start timer.
[  197.335349][ T7654] netlink: 28 bytes leftover after parsing attributes in process `syz.2.473'.
[  197.801384][ T7663] usb usb13: check_ctrlrecip: process 7663 (syz.2.477) requesting ep 01 but needs 81
[  197.869611][ T7663] usb usb13: usbfs: process 7663 (syz.2.477) did not claim interface 0 before use
[  198.289811][ T7673] futex_wake_op: syz.1.479 tries to shift op by -2048; fix this program
[  198.916999][ T7658] netlink: 12 bytes leftover after parsing attributes in process `syz.3.476'.
[  199.827052][ T7702] netlink: 28 bytes leftover after parsing attributes in process `syz.3.487'.
[  199.959708][ T7704] netlink: 338 bytes leftover after parsing attributes in process `syz.3.488'.
[  199.995600][ T5843] Bluetooth: hci1: unexpected subevent 0x01 length: 126 > 18
[  200.303332][ T7718] binder: 7717:7718 ioctl c0306201 2000000000c0 returned -14
[  200.382689][ T7721] futex_wake_op: syz.1.494 tries to shift op by -2048; fix this program
[  200.399152][ T7721] futex_wake_op: syz.1.494 tries to shift op by -2048; fix this program
[  200.409505][ T7721] 0x000000000001-0x000000020000 : ""
[  200.436344][ T7721] ftl_cs: FTL header corrupt!
[  200.464145][ T7713] netlink: 186 bytes leftover after parsing attributes in process `syz.3.491'.
[  200.492648][ T7713] netlink: 186 bytes leftover after parsing attributes in process `syz.3.491'.
[  200.864093][ T7737] bond0: invalid ARP target specified
[  200.865898][ T7734] netlink: 28 bytes leftover after parsing attributes in process `syz.0.496'.
[  201.453897][ T7750] futex_wake_op: syz.2.500 tries to shift op by -2048; fix this program
[  201.498159][ T7750] futex_wake_op: syz.2.500 tries to shift op by -2048; fix this program
[  201.536598][ T7750] 0x000000000001-0x000000020000 : ""
[  201.623299][ T7750] ftl_cs: FTL header corrupt!
[  202.849656][ T7758] kexec: Could not allocate control_code_buffer
[  203.041564][   T30] audit: type=1800 audit(1776662483.464:4): pid=7773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.506" name="features" dev="configfs" ino=17627 res=0 errno=0
[  203.280465][ T7772] netlink: 186 bytes leftover after parsing attributes in process `syz.1.505'.
[  203.301617][ T7772] netlink: 186 bytes leftover after parsing attributes in process `syz.1.505'.
[  203.743730][ T7790] netlink: 28 bytes leftover after parsing attributes in process `syz.1.511'.
[  204.197264][ T7801] netlink: 28 bytes leftover after parsing attributes in process `syz.2.516'.
[  204.403978][ T7809] random: crng reseeded on system resumption
[  205.029053][ T7818] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  205.037045][ T7818] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  205.182061][ T7818] FAULT_INJECTION: forcing a failure.
[  205.182061][ T7818] name failslab, interval 1, probability 0, space 0, times 0
[  205.212642][ T7818] CPU: 1 UID: 0 PID: 7818 Comm: syz.1.520 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  205.212692][ T7818] Tainted: [L]=SOFTLOCKUP
[  205.212703][ T7818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  205.212720][ T7818] Call Trace:
[  205.212730][ T7818]  <TASK>
[  205.212742][ T7818]  dump_stack_lvl+0x100/0x190
[  205.212780][ T7818]  should_fail_ex.cold+0x5/0xa
[  205.212817][ T7818]  should_failslab+0xc2/0x120
[  205.212850][ T7818]  __kmalloc_cache_node_noprof+0x7d/0x770
[  205.212880][ T7818]  ? __alloc_disk_node+0x5a/0x6b0
[  205.212922][ T7818]  __alloc_disk_node+0x5a/0x6b0
[  205.212963][ T7818]  __blk_mq_alloc_disk+0x89/0x120
[  205.212996][ T7818]  loop_add+0x498/0xb60
[  205.213036][ T7818]  ? __pfx_loop_add+0x10/0x10
[  205.213097][ T7818]  ? find_held_lock+0x2b/0x80
[  205.213135][ T7818]  ? __fget_files+0x215/0x3d0
[  205.213174][ T7818]  loop_control_ioctl+0xae/0x620
[  205.213215][ T7818]  ? __pfx_loop_control_ioctl+0x10/0x10
[  205.213261][ T7818]  ? __pfx_loop_control_ioctl+0x10/0x10
[  205.213302][ T7818]  __x64_sys_ioctl+0x18e/0x210
[  205.213354][ T7818]  do_syscall_64+0x10b/0xf80
[  205.213385][ T7818]  ? clear_bhb_loop+0x40/0x90
[  205.213423][ T7818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.213455][ T7818] RIP: 0033:0x7fd40639c819
[  205.213482][ T7818] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  205.213510][ T7818] RSP: 002b:00007fd407227028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  205.213540][ T7818] RAX: ffffffffffffffda RBX: 00007fd406615fa0 RCX: 00007fd40639c819
[  205.213570][ T7818] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 000000000000000a
[  205.213588][ T7818] RBP: 00007fd406432c91 R08: 0000000000000000 R09: 0000000000000000
[  205.213606][ T7818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  205.213623][ T7818] R13: 00007fd406616038 R14: 00007fd406615fa0 R15: 00007ffdf6079018
[  205.213664][ T7818]  </TASK>
[  205.253612][ T7821] random: crng reseeded on system resumption
[  205.766053][ T7827] binder: 7826:7827 ioctl c0306201 2000000000c0 returned -14
[  206.315928][ T7836] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input7
[  207.086423][ T7844] FAULT_INJECTION: forcing a failure.
[  207.086423][ T7844] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  207.175977][ T7844] CPU: 1 UID: 0 PID: 7844 Comm: syz.0.530 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  207.176021][ T7844] Tainted: [L]=SOFTLOCKUP
[  207.176031][ T7844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  207.176046][ T7844] Call Trace:
[  207.176056][ T7844]  <TASK>
[  207.176066][ T7844]  dump_stack_lvl+0x100/0x190
[  207.176102][ T7844]  should_fail_ex.cold+0x5/0xa
[  207.176138][ T7844]  _copy_from_user+0x2e/0xd0
[  207.176177][ T7844]  get_bitmap+0x6d/0x110
[  207.176206][ T7844]  get_nodes+0x1df/0x210
[  207.176233][ T7844]  ? __pfx_get_nodes+0x10/0x10
[  207.176261][ T7844]  ? __fget_files+0x21f/0x3d0
[  207.176299][ T7844]  kernel_migrate_pages+0xf2/0x700
[  207.176332][ T7844]  ? __pfx_kernel_migrate_pages+0x10/0x10
[  207.176367][ T7844]  ? __pfx_ksys_write+0x10/0x10
[  207.176404][ T7844]  __x64_sys_migrate_pages+0x96/0x100
[  207.176437][ T7844]  ? lockdep_hardirqs_on+0x78/0x100
[  207.176466][ T7844]  do_syscall_64+0x10b/0xf80
[  207.176493][ T7844]  ? clear_bhb_loop+0x40/0x90
[  207.176528][ T7844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.176563][ T7844] RIP: 0033:0x7f0c4799c819
[  207.176585][ T7844] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  207.176610][ T7844] RSP: 002b:00007f0c48890028 EFLAGS: 00000246 ORIG_RAX: 0000000000000100
[  207.176637][ T7844] RAX: ffffffffffffffda RBX: 00007f0c47c15fa0 RCX: 00007f0c4799c819
[  207.176655][ T7844] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000
[  207.176672][ T7844] RBP: 00007f0c48890090 R08: 0000000000000000 R09: 0000000000000000
[  207.176687][ T7844] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000001
[  207.176703][ T7844] R13: 00007f0c47c16038 R14: 00007f0c47c15fa0 R15: 00007ffd281680b8
[  207.176741][ T7844]  </TASK>
[  207.445285][ T7853] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.596941][ T7854] futex_wake_op: syz.1.532 tries to shift op by -2048; fix this program
[  207.606549][ T7854] futex_wake_op: syz.1.532 tries to shift op by -2048; fix this program
[  207.643759][ T7854] 0x000000000001-0x000000020000 : ""
[  207.684134][ T7854] ftl_cs: FTL header corrupt!
[  208.074655][ T7853] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.229106][ T7853] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.350844][ T7853] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.461007][ T7853] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.537528][   T30] audit: type=1800 audit(1776662489.964:5): pid=7890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.538" name="lu_gp_id" dev="configfs" ino=17925 res=0 errno=0
[  209.550696][ T7890] ALUA LU Group already has a valid ID, ignoring request
[  210.277484][ T7897] netlink: 28 bytes leftover after parsing attributes in process `syz.3.541'.
[  210.451825][ T7899] netlink: 8 bytes leftover after parsing attributes in process `syz.3.543'.
[  210.564198][ T7903] random: crng reseeded on system resumption
[  210.804849][ T7911] netlink: 4 bytes leftover after parsing attributes in process `syz.2.546'.
[  210.815049][ T7911] netlink: 17 bytes leftover after parsing attributes in process `syz.2.546'.
[  210.923867][ T7913] netlink: 28 bytes leftover after parsing attributes in process `syz.2.547'.
[  212.418140][ T7928] batman_adv: Routing algorithm '' is not supported
[  212.999423][ T7954] netlink: 8 bytes leftover after parsing attributes in process `syz.3.560'.
[  213.128052][ T7963] netlink: 4 bytes leftover after parsing attributes in process `syz.2.561'.
[  215.102008][ T8006] FAULT_INJECTION: forcing a failure.
[  215.102008][ T8006] name failslab, interval 1, probability 0, space 0, times 0
[  215.122045][ T8006] CPU: 1 UID: 0 PID: 8006 Comm: syz.2.576 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  215.122096][ T8006] Tainted: [L]=SOFTLOCKUP
[  215.122106][ T8006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  215.122123][ T8006] Call Trace:
[  215.122133][ T8006]  <TASK>
[  215.122145][ T8006]  dump_stack_lvl+0x100/0x190
[  215.122184][ T8006]  should_fail_ex.cold+0x5/0xa
[  215.122223][ T8006]  should_failslab+0xc2/0x120
[  215.122258][ T8006]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  215.122304][ T8006]  ? __anon_vma_prepare+0x344/0x5e0
[  215.122355][ T8006]  __anon_vma_prepare+0x344/0x5e0
[  215.122396][ T8006]  ? __pfx___pte_alloc+0x10/0x10
[  215.122433][ T8006]  __vmf_anon_prepare+0x11f/0x250
[  215.122471][ T8006]  do_anonymous_page+0x536/0x2050
[  215.122535][ T8006]  __handle_mm_fault+0x1d2c/0x2a00
[  215.122586][ T8006]  ? mt_find+0x45e/0x8e0
[  215.122621][ T8006]  ? __pfx___handle_mm_fault+0x10/0x10
[  215.122659][ T8006]  ? __pfx_mt_find+0x10/0x10
[  215.122722][ T8006]  handle_mm_fault+0x36d/0xa20
[  215.122773][ T8006]  __get_user_pages+0x1178/0x32a0
[  215.122826][ T8006]  ? __pfx___get_user_pages+0x10/0x10
[  215.122873][ T8006]  populate_vma_page_range+0x267/0x3f0
[  215.122916][ T8006]  ? __pfx_populate_vma_page_range+0x10/0x10
[  215.122954][ T8006]  ? __pfx_find_vma_intersection+0x10/0x10
[  215.123001][ T8006]  __mm_populate+0x107/0x3a0
[  215.123040][ T8006]  ? __pfx___mm_populate+0x10/0x10
[  215.123079][ T8006]  ? up_write+0x3fd/0x4f0
[  215.123115][ T8006]  vm_mmap_pgoff+0x37f/0x470
[  215.123156][ T8006]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  215.123196][ T8006]  ? do_futex+0x192/0x350
[  215.123228][ T8006]  ? __pfx_do_futex+0x10/0x10
[  215.123267][ T8006]  ksys_mmap_pgoff+0xe4/0x610
[  215.123309][ T8006]  ? __x64_sys_futex+0x358/0x4d0
[  215.123341][ T8006]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  215.123375][ T8006]  ? xfd_validate_state+0x129/0x190
[  215.123415][ T8006]  __x64_sys_mmap+0x125/0x190
[  215.123451][ T8006]  do_syscall_64+0x10b/0xf80
[  215.123482][ T8006]  ? clear_bhb_loop+0x40/0x90
[  215.123528][ T8006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.123559][ T8006] RIP: 0033:0x7f504619c819
[  215.123586][ T8006] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  215.123613][ T8006] RSP: 002b:00007f5046fe7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  215.123641][ T8006] RAX: ffffffffffffffda RBX: 00007f5046416090 RCX: 00007f504619c819
[  215.123660][ T8006] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  215.123676][ T8006] RBP: 00007f5046232c91 R08: 0000000000000002 R09: 0000000000008000
[  215.123694][ T8006] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  215.123711][ T8006] R13: 00007f5046416128 R14: 00007f5046416090 R15: 00007ffd33d479e8
[  215.123749][ T8006]  </TASK>
[  215.999331][ T8019] FAULT_INJECTION: forcing a failure.
[  215.999331][ T8019] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  216.028786][ T8019] CPU: 0 UID: 0 PID: 8019 Comm: syz.2.581 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  216.028840][ T8019] Tainted: [L]=SOFTLOCKUP
[  216.028850][ T8019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  216.028866][ T8019] Call Trace:
[  216.028875][ T8019]  <TASK>
[  216.028886][ T8019]  dump_stack_lvl+0x100/0x190
[  216.028923][ T8019]  should_fail_ex.cold+0x5/0xa
[  216.028960][ T8019]  _copy_to_user+0x32/0xd0
[  216.029002][ T8019]  simple_read_from_buffer+0xcb/0x170
[  216.029038][ T8019]  ima_show_measurements_count+0xe4/0x140
[  216.029072][ T8019]  ? __pfx_ima_show_measurements_count+0x10/0x10
[  216.029112][ T8019]  ? rw_verify_area+0xce/0x6d0
[  216.029160][ T8019]  ? __pfx_ima_show_measurements_count+0x10/0x10
[  216.029190][ T8019]  vfs_readv+0x5d8/0x8d0
[  216.029228][ T8019]  ? __pfx_vfs_readv+0x10/0x10
[  216.029257][ T8019]  ? find_held_lock+0x2b/0x80
[  216.029301][ T8019]  ? ksys_write+0x190/0x250
[  216.029355][ T8019]  ? __fget_files+0x21f/0x3d0
[  216.029396][ T8019]  ? do_readv+0x13e/0x340
[  216.029421][ T8019]  do_readv+0x13e/0x340
[  216.029449][ T8019]  ? __pfx_do_readv+0x10/0x10
[  216.029481][ T8019]  ? rcu_is_watching+0x12/0xc0
[  216.029518][ T8019]  do_syscall_64+0x10b/0xf80
[  216.029548][ T8019]  ? clear_bhb_loop+0x40/0x90
[  216.029582][ T8019]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.029611][ T8019] RIP: 0033:0x7f504619c819
[  216.029636][ T8019] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  216.029662][ T8019] RSP: 002b:00007f5047008028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  216.029690][ T8019] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619c819
[  216.029709][ T8019] RDX: 8000000000000001 RSI: 00002000000001c0 RDI: 0000000000000003
[  216.029727][ T8019] RBP: 00007f5047008090 R08: 0000000000000000 R09: 0000000000000000
[  216.029743][ T8019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  216.029760][ T8019] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffd33d479e8
[  216.029800][ T8019]  </TASK>
[  216.779902][ T8026] netlink: 12 bytes leftover after parsing attributes in process `syz.2.584'.
[  217.536596][ T8049] netlink: 342 bytes leftover after parsing attributes in process `syz.2.593'.
[  217.549024][ T8049] netlink: 342 bytes leftover after parsing attributes in process `syz.2.593'.
[  217.729842][ T8054] futex_wake_op: syz.2.594 tries to shift op by -2048; fix this program
[  217.747037][ T8054] futex_wake_op: syz.2.594 tries to shift op by -2048; fix this program
[  217.787747][ T8054] 0x000000000001-0x000000020000 : ""
[  217.812161][ T8054] ftl_cs: FTL header corrupt!
[  219.303456][ T8093] netlink: 28 bytes leftover after parsing attributes in process `syz.3.603'.
[  221.364109][ T8127] FAULT_INJECTION: forcing a failure.
[  221.364109][ T8127] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  221.377516][ T8127] CPU: 0 UID: 0 PID: 8127 Comm: syz.2.612 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  221.377566][ T8127] Tainted: [L]=SOFTLOCKUP
[  221.377576][ T8127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  221.377593][ T8127] Call Trace:
[  221.377604][ T8127]  <TASK>
[  221.377616][ T8127]  dump_stack_lvl+0x100/0x190
[  221.377654][ T8127]  should_fail_ex.cold+0x5/0xa
[  221.377693][ T8127]  _copy_to_user+0x32/0xd0
[  221.377739][ T8127]  copy_to_sockptr_offset.constprop.0+0x130/0x150
[  221.377791][ T8127]  ? __pfx_copy_to_sockptr_offset.constprop.0+0x10/0x10
[  221.377836][ T8127]  ? bpf_vlog_finalize+0x1ba/0x360
[  221.377875][ T8127]  btf_new_fd+0x2e1e/0x5dd0
[  221.377916][ T8127]  ? __lock_acquire+0x4a5/0x2630
[  221.377973][ T8127]  ? __pfx_btf_new_fd+0x10/0x10
[  221.378013][ T8127]  ? rcu_is_watching+0x12/0xc0
[  221.378049][ T8127]  ? apparmor_capable+0x1d7/0x4d0
[  221.378092][ T8127]  ? bpf_lsm_capable+0x9/0x10
[  221.378126][ T8127]  ? security_capable+0x80/0x260
[  221.378163][ T8127]  ? ns_capable+0xd2/0xf0
[  221.378206][ T8127]  __sys_bpf+0x1b63/0x4b90
[  221.378239][ T8127]  ? __pfx___sys_bpf+0x10/0x10
[  221.378266][ T8127]  ? __pfx_futex_wait+0x10/0x10
[  221.378307][ T8127]  ? ksys_write+0x190/0x250
[  221.378336][ T8127]  ? ksys_write+0x190/0x250
[  221.378376][ T8127]  ? do_futex+0x192/0x350
[  221.378424][ T8127]  ? xfd_validate_state+0x129/0x190
[  221.378448][ T8127]  ? ksys_write+0x1ac/0x250
[  221.378479][ T8127]  __x64_sys_bpf+0x7b/0xc0
[  221.378501][ T8127]  ? lockdep_hardirqs_on+0x78/0x100
[  221.378526][ T8127]  do_syscall_64+0x10b/0xf80
[  221.378548][ T8127]  ? clear_bhb_loop+0x40/0x90
[  221.378578][ T8127]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.378602][ T8127] RIP: 0033:0x7f504619c819
[  221.378625][ T8127] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  221.378648][ T8127] RSP: 002b:00007f5047008028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  221.378673][ T8127] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619c819
[  221.378689][ T8127] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000012
[  221.378704][ T8127] RBP: 00007f5046232c91 R08: 0000000000000000 R09: 0000000000000000
[  221.378717][ T8127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  221.378730][ T8127] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffd33d479e8
[  221.378768][ T8127]  </TASK>
[  222.096259][ T5836] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  222.107877][ T5836] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  222.117853][ T5836] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  222.127546][ T5836] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  222.135337][ T5836] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  222.386705][ T5843] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  222.395905][ T5843] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  222.404497][ T5843] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  222.416566][ T5843] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  222.424583][ T5843] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  222.515857][ T8131] batman_adv: Routing algorithm '' is not supported
[  222.740388][ T8134] chnl_net:caif_netlink_parms(): no params data found
[  222.991732][ T8134] bridge0: port 1(bridge_slave_0) entered blocking state
[  223.006106][ T8134] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.018410][ T8134] bridge_slave_0: entered allmulticast mode
[  223.033759][ T8134] bridge_slave_0: entered promiscuous mode
[  223.067004][ T8134] bridge0: port 2(bridge_slave_1) entered blocking state
[  223.076086][ T8134] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.097956][ T8134] bridge_slave_1: entered allmulticast mode
[  223.112769][ T8134] bridge_slave_1: entered promiscuous mode
[  223.211970][ T8134] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  223.237898][ T8134] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  223.274464][ T8141] chnl_net:caif_netlink_parms(): no params data found
[  223.345216][ T8134] team0: Port device team_slave_0 added
[  223.360727][ T8134] team0: Port device team_slave_1 added
[  223.524478][ T8134] batman_adv: batadv0: Adding interface: batadv_slave_0
[  223.538268][ T8134] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  223.591320][ T8134] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  223.654313][ T8134] batman_adv: batadv0: Adding interface: batadv_slave_1
[  223.668379][ T8134] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  223.744065][ T8134] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  223.825788][ T8141] bridge0: port 1(bridge_slave_0) entered blocking state
[  223.844661][ T8141] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.852471][ T8141] bridge_slave_0: entered allmulticast mode
[  223.871637][ T8141] bridge_slave_0: entered promiscuous mode
[  223.954804][ T8141] bridge0: port 2(bridge_slave_1) entered blocking state
[  223.966461][ T8141] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.974605][ T8141] bridge_slave_1: entered allmulticast mode
[  223.983108][ T8141] bridge_slave_1: entered promiscuous mode
[  223.997535][ T8134] hsr_slave_0: entered promiscuous mode
[  224.008510][ T8134] hsr_slave_1: entered promiscuous mode
[  224.015033][ T8134] debugfs: 'hsr0' already exists in 'hsr'
[  224.022869][ T8134] Cannot create hsr debugfs directory
[  224.110986][ T8141] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  224.127391][ T8141] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  224.239065][ T5843] Bluetooth: hci4: command tx timeout
[  224.281432][ T8141] team0: Port device team_slave_0 added
[  224.308179][ T8173] binder: 8172:8173 ioctl c0306201 0 returned -14
[  224.324215][ T8141] team0: Port device team_slave_1 added
[  224.488561][ T5843] Bluetooth: hci5: command tx timeout
[  224.529233][ T8141] batman_adv: batadv0: Adding interface: batadv_slave_0
[  224.571491][ T8141] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  224.630831][ T8141] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  224.681380][ T8141] batman_adv: batadv0: Adding interface: batadv_slave_1
[  224.698393][ T8141] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  224.739570][ T8141] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  225.004637][ T8141] hsr_slave_0: entered promiscuous mode
[  225.017846][ T8141] hsr_slave_1: entered promiscuous mode
[  225.024772][ T8141] debugfs: 'hsr0' already exists in 'hsr'
[  225.032507][ T8141] Cannot create hsr debugfs directory
[  226.319031][ T5843] Bluetooth: hci4: command tx timeout
[  226.558399][ T5843] Bluetooth: hci5: command tx timeout
[  228.398485][ T5843] Bluetooth: hci4: command tx timeout
[  228.638532][ T5843] Bluetooth: hci5: command tx timeout
[  228.760774][ T8224] batman_adv: Routing algorithm '' is not supported
[  230.478724][ T5843] Bluetooth: hci4: command tx timeout
[  230.729547][ T5843] Bluetooth: hci5: command tx timeout
[  231.065577][ T8260] syz.2.648: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  231.100934][ T8260] CPU: 0 UID: 0 PID: 8260 Comm: syz.2.648 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  231.100983][ T8260] Tainted: [L]=SOFTLOCKUP
[  231.100994][ T8260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  231.101010][ T8260] Call Trace:
[  231.101019][ T8260]  <TASK>
[  231.101026][ T8260]  dump_stack_lvl+0x100/0x190
[  231.101050][ T8260]  warn_alloc.cold+0x95/0x1c1
[  231.101071][ T8260]  ? __pfx_warn_alloc+0x10/0x10
[  231.101104][ T8260]  ? __lock_acquire+0x4a5/0x2630
[  231.101141][ T8260]  __vmalloc_node_range_noprof+0x136c/0x1630
[  231.101170][ T8260]  ? rcu_is_watching+0x12/0xc0
[  231.101190][ T8260]  ? trace_contention_end+0x122/0x170
[  231.101209][ T8260]  ? dvb_dvr_do_ioctl+0x15d/0x270
[  231.101229][ T8260]  ? dvb_dvr_do_ioctl+0x7e/0x270
[  231.101245][ T8260]  ? find_held_lock+0x2b/0x80
[  231.101266][ T8260]  ? tomoyo_path_number_perm+0x28f/0x580
[  231.101292][ T8260]  ? tomoyo_path_number_perm+0x28f/0x580
[  231.101319][ T8260]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  231.101342][ T8260]  ? __pfx___mutex_lock+0x10/0x10
[  231.101366][ T8260]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  231.101390][ T8260]  ? futex_wait+0x11e/0x370
[  231.101418][ T8260]  ? dvb_dvr_do_ioctl+0x15d/0x270
[  231.101435][ T8260]  __vmalloc_node_noprof+0xad/0xf0
[  231.101459][ T8260]  ? dvb_dvr_do_ioctl+0x15d/0x270
[  231.101478][ T8260]  dvb_dvr_do_ioctl+0x15d/0x270
[  231.101501][ T8260]  dvb_usercopy+0x167/0x340
[  231.101517][ T8260]  ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[  231.101536][ T8260]  ? __pfx_dvb_usercopy+0x10/0x10
[  231.101561][ T8260]  ? __fget_files+0x21f/0x3d0
[  231.101584][ T8260]  dvb_dvr_ioctl+0x29/0x40
[  231.101600][ T8260]  ? __pfx_dvb_dvr_ioctl+0x10/0x10
[  231.101618][ T8260]  __x64_sys_ioctl+0x18e/0x210
[  231.101648][ T8260]  do_syscall_64+0x10b/0xf80
[  231.101674][ T8260]  ? clear_bhb_loop+0x40/0x90
[  231.101695][ T8260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.101714][ T8260] RIP: 0033:0x7f504619c819
[  231.101731][ T8260] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  231.101749][ T8260] RSP: 002b:00007f5047008028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  231.101768][ T8260] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619c819
[  231.101780][ T8260] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000005
[  231.101791][ T8260] RBP: 00007f5046232c91 R08: 0000000000000000 R09: 0000000000000000
[  231.101802][ T8260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  231.101812][ T8260] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffd33d479e8
[  231.101836][ T8260]  </TASK>
[  231.101842][ T8260] Mem-Info:
[  231.373981][ T8260] active_anon:18249 inactive_anon:0 isolated_anon:0
[  231.373981][ T8260]  active_file:5662 inactive_file:52990 isolated_file:0
[  231.373981][ T8260]  unevictable:768 dirty:71 writeback:0
[  231.373981][ T8260]  slab_reclaimable:11633 slab_unreclaimable:95016
[  231.373981][ T8260]  mapped:36596 shmem:13494 pagetables:1300
[  231.373981][ T8260]  sec_pagetables:0 bounce:0
[  231.373981][ T8260]  kernel_misc_reclaimable:0
[  231.373981][ T8260]  free:1272545 free_pcp:26577 free_cma:0
[  231.433128][ T8260] Node 0 active_anon:72892kB inactive_anon:0kB active_file:22648kB inactive_file:211736kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:146360kB dirty:280kB writeback:0kB shmem:52436kB shmem_thp:2048kB shmem_pmdmapped:2048kB anon_thp:0kB kernel_stack:11804kB pagetables:5056kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  231.475205][ T8260] Node 1 active_anon:4kB inactive_anon:0kB active_file:0kB inactive_file:224kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:24kB dirty:4kB writeback:0kB shmem:1540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  231.509878][ T8260] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  231.541644][ T8260] lowmem_reserve[]: 0 2476 2477 2477 2477
[  231.547521][ T8260] Node 0 DMA32 free:1165604kB boost:0kB min:34052kB low:42564kB high:51076kB reserved_highatomic:0KB free_highatomic:0KB active_anon:72892kB inactive_anon:0kB active_file:22648kB inactive_file:211736kB unevictable:1536kB writepending:280kB zspages:0kB present:3129332kB managed:2535632kB mlocked:0kB bounce:0kB free_pcp:88988kB local_pcp:36304kB free_cma:0kB
[  231.580985][ T8260] lowmem_reserve[]: 0 0 0 0 0
[  231.587159][ T8260] Node 0 Normal free:0kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1012kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[  231.617018][ T8260] lowmem_reserve[]: 0 0 0 0 0
[  231.621913][ T8260] Node 1 Normal free:3910204kB boost:0kB min:55832kB low:69788kB high:83744kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:0kB active_file:0kB inactive_file:224kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:17016kB local_pcp:0kB free_cma:0kB
[  231.654236][ T8260] lowmem_reserve[]: 0 0 0 0 0
[  231.659224][ T8260] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  231.672125][ T8260] Node 0 DMA32: 5089*4kB (ME) 716*8kB (UME) 1789*16kB (UME) 1388*32kB (UM) 578*64kB (M) 133*128kB (ME) 23*256kB (UM) 6*512kB (UME) 8*1024kB (UME) 4*2048kB (UM) 241*4096kB (M) = 1165620kB
[  231.693251][ T8260] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  231.704914][ T8260] Node 1 Normal: 7*4kB (UM) 16*8kB (UM) 10*16kB (UM) 12*32kB (UM) 14*64kB (UM) 6*128kB (UM) 5*256kB (UM) 4*512kB (UM) 1*1024kB (U) 4*2048kB (UM) 951*4096kB (M) = 3910204kB
[  231.722508][ T8260] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  231.732437][ T8260] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  231.741892][ T8260] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  231.751672][ T8260] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  231.761122][ T8260] 72142 total pagecache pages
[  231.766006][ T8260] 0 pages in swap cache
[  231.770198][ T8260] Free swap  = 124996kB
[  231.774371][ T8260] Total swap = 124996kB
[  231.778599][ T8260] 2097051 pages RAM
[  231.782437][ T8260] 0 pages HighMem/MovableOnly
[  231.788614][ T8260] 431275 pages reserved
[  231.792941][ T8260] 0 pages cma reserved
[  231.890764][ T8267] FAULT_INJECTION: forcing a failure.
[  231.890764][ T8267] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  231.904419][ T8267] CPU: 1 UID: 0 PID: 8267 Comm: syz.2.649 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  231.904466][ T8267] Tainted: [L]=SOFTLOCKUP
[  231.904477][ T8267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  231.904495][ T8267] Call Trace:
[  231.904504][ T8267]  <TASK>
[  231.904516][ T8267]  dump_stack_lvl+0x100/0x190
[  231.904552][ T8267]  should_fail_ex.cold+0x5/0xa
[  231.904592][ T8267]  _copy_to_user+0x32/0xd0
[  231.904635][ T8267]  copy_to_sockptr_offset.constprop.0+0x130/0x150
[  231.904686][ T8267]  ? __pfx_copy_to_sockptr_offset.constprop.0+0x10/0x10
[  231.904731][ T8267]  ? bpf_vlog_finalize+0x1ba/0x360
[  231.904771][ T8267]  btf_new_fd+0x2e1e/0x5dd0
[  231.904813][ T8267]  ? __lock_acquire+0x4a5/0x2630
[  231.904864][ T8267]  ? __pfx_btf_new_fd+0x10/0x10
[  231.904902][ T8267]  ? rcu_is_watching+0x12/0xc0
[  231.904938][ T8267]  ? apparmor_capable+0x1d7/0x4d0
[  231.904981][ T8267]  ? bpf_lsm_capable+0x9/0x10
[  231.905013][ T8267]  ? security_capable+0x80/0x260
[  231.905049][ T8267]  ? ns_capable+0xd2/0xf0
[  231.905088][ T8267]  __sys_bpf+0x1b63/0x4b90
[  231.905120][ T8267]  ? __pfx___sys_bpf+0x10/0x10
[  231.905150][ T8267]  ? __pfx_futex_wait+0x10/0x10
[  231.905194][ T8267]  ? ksys_write+0x190/0x250
[  231.905224][ T8267]  ? ksys_write+0x190/0x250
[  231.905263][ T8267]  ? do_futex+0x192/0x350
[  231.905315][ T8267]  ? xfd_validate_state+0x129/0x190
[  231.905345][ T8267]  ? ksys_write+0x1ac/0x250
[  231.905386][ T8267]  __x64_sys_bpf+0x7b/0xc0
[  231.905413][ T8267]  ? lockdep_hardirqs_on+0x78/0x100
[  231.905445][ T8267]  do_syscall_64+0x10b/0xf80
[  231.905474][ T8267]  ? clear_bhb_loop+0x40/0x90
[  231.905511][ T8267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.905542][ T8267] RIP: 0033:0x7f504619c819
[  231.905573][ T8267] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  231.905602][ T8267] RSP: 002b:00007f5047008028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  231.905630][ T8267] RAX: ffffffffffffffda RBX: 00007f5046415fa0 RCX: 00007f504619c819
[  231.905650][ T8267] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000012
[  231.905676][ T8267] RBP: 00007f5046232c91 R08: 0000000000000000 R09: 0000000000000000
[  231.905695][ T8267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  231.905712][ T8267] R13: 00007f5046416038 R14: 00007f5046415fa0 R15: 00007ffd33d479e8
[  231.905750][ T8267]  </TASK>
[  232.586266][ T8265] netlink: 12 bytes leftover after parsing attributes in process `syz.3.650'.
[  234.935607][ T8304] FAULT_INJECTION: forcing a failure.
[  234.935607][ T8304] name fail_futex, interval 1, probability 0, space 0, times 0
[  234.935640][ T8304] CPU: 0 UID: 0 PID: 8304 Comm: syz.2.659 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  234.935671][ T8304] Tainted: [L]=SOFTLOCKUP
[  234.935678][ T8304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  234.935688][ T8304] Call Trace:
[  234.935694][ T8304]  <TASK>
[  234.935701][ T8304]  dump_stack_lvl+0x100/0x190
[  234.935724][ T8304]  should_fail_ex.cold+0x5/0xa
[  234.935747][ T8304]  get_futex_key+0x1d2/0x1510
[  234.935780][ T8304]  ? __pfx_get_futex_key+0x10/0x10
[  234.935821][ T8304]  futex_wake+0xea/0x530
[  234.935843][ T8304]  ? rcu_is_watching+0x12/0xc0
[  234.935865][ T8304]  ? __pfx_futex_wake+0x10/0x10
[  234.935891][ T8304]  ? putname+0xb1/0x110
[  234.935911][ T8304]  ? kmem_cache_free+0x127/0x6c0
[  234.935946][ T8304]  do_futex+0x32b/0x350
[  234.935966][ T8304]  ? __pfx_do_futex+0x10/0x10
[  234.935983][ T8304]  ? __pfx_do_sys_openat2+0x10/0x10
[  234.936011][ T8304]  ? __fget_files+0x21f/0x3d0
[  234.936034][ T8304]  __x64_sys_futex+0x34f/0x4d0
[  234.936054][ T8304]  ? __x64_sys_openat+0x12d/0x210
[  234.936081][ T8304]  ? __pfx___x64_sys_futex+0x10/0x10
[  234.936103][ T8304]  ? rcu_is_watching+0x12/0xc0
[  234.936126][ T8304]  do_syscall_64+0x10b/0xf80
[  234.936145][ T8304]  ? clear_bhb_loop+0x40/0x90
[  234.936166][ T8304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.936185][ T8304] RIP: 0033:0x7f504619c819
[  234.936201][ T8304] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  234.936218][ T8304] RSP: 002b:00007f5046fe70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  234.936235][ T8304] RAX: ffffffffffffffda RBX: 00007f5046416098 RCX: 00007f504619c819
[  234.936248][ T8304] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f504641609c
[  234.936259][ T8304] RBP: 00007f5046416090 R08: 0000000000000001 R09: 0000000000000000
[  234.936270][ T8304] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000000
[  234.936280][ T8304] R13: 00007f5046416128 R14: 00007ffd33d47900 R15: 00007ffd33d479e8
[  234.936302][ T8304]  </TASK>
[  235.796056][ T8315] netlink: 4 bytes leftover after parsing attributes in process `syz.3.662'.
[  236.594948][ T8318] syz.2.663 (8318) used greatest stack depth: 18520 bytes left
[  237.612485][ T8338] netlink: 28 bytes leftover after parsing attributes in process `syz.3.669'.
[  256.001790][ T1312] ieee802154 phy0 wpan0: encryption failed: -22
[  256.008128][ T1312] ieee802154 phy1 wpan1: encryption failed: -22
[  282.101746][ T5836] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  282.112249][ T5836] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  282.121295][ T5836] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  282.130332][ T5836] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  282.138101][ T5836] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  282.288567][ T8375] chnl_net:caif_netlink_parms(): no params data found
[  282.361716][ T8375] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.368949][ T8375] bridge0: port 1(bridge_slave_0) entered disabled state
[  282.377308][ T8375] bridge_slave_0: entered allmulticast mode
[  282.384897][ T8375] bridge_slave_0: entered promiscuous mode
[  282.392867][ T8375] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.400427][ T8375] bridge0: port 2(bridge_slave_1) entered disabled state
[  282.407789][ T8375] bridge_slave_1: entered allmulticast mode
[  282.415772][ T8375] bridge_slave_1: entered promiscuous mode
[  282.443466][ T8375] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  282.455134][ T8375] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  282.487835][ T8375] team0: Port device team_slave_0 added
[  282.495789][ T8375] team0: Port device team_slave_1 added
[  282.522766][ T8375] batman_adv: batadv0: Adding interface: batadv_slave_0
[  282.529996][ T8375] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  282.555951][ T8375] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  282.568136][ T8375] batman_adv: batadv0: Adding interface: batadv_slave_1
[  282.575188][ T8375] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  282.603007][ T8375] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  282.645488][ T8375] hsr_slave_0: entered promiscuous mode
[  282.651861][ T8375] hsr_slave_1: entered promiscuous mode
[  282.658093][ T8375] debugfs: 'hsr0' already exists in 'hsr'
[  282.663946][ T8375] Cannot create hsr debugfs directory
[  283.114009][ T5836] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  283.125125][ T5836] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  283.133483][ T5836] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  283.142758][ T5836] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  283.151013][ T5836] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  283.310461][ T8385] chnl_net:caif_netlink_parms(): no params data found
[  283.384463][ T8385] bridge0: port 1(bridge_slave_0) entered blocking state
[  283.391792][ T8385] bridge0: port 1(bridge_slave_0) entered disabled state
[  283.400748][ T8385] bridge_slave_0: entered allmulticast mode
[  283.407982][ T8385] bridge_slave_0: entered promiscuous mode
[  283.416264][ T8385] bridge0: port 2(bridge_slave_1) entered blocking state
[  283.423651][ T8385] bridge0: port 2(bridge_slave_1) entered disabled state
[  283.430937][ T8385] bridge_slave_1: entered allmulticast mode
[  283.438124][ T8385] bridge_slave_1: entered promiscuous mode
[  283.467302][ T8385] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  283.479063][ T8385] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  283.512408][ T8385] team0: Port device team_slave_0 added
[  283.521946][ T8385] team0: Port device team_slave_1 added
[  283.546358][ T8385] batman_adv: batadv0: Adding interface: batadv_slave_0
[  283.553559][ T8385] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  283.579534][ T8385] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  283.591574][ T8385] batman_adv: batadv0: Adding interface: batadv_slave_1
[  283.598766][ T8385] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  283.626075][ T8385] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  283.667433][ T8385] hsr_slave_0: entered promiscuous mode
[  283.673828][ T8385] hsr_slave_1: entered promiscuous mode
[  283.680692][ T8385] debugfs: 'hsr0' already exists in 'hsr'
[  283.686432][ T8385] Cannot create hsr debugfs directory
[  284.238445][ T5836] Bluetooth: hci6: command tx timeout
[  285.198826][ T5836] Bluetooth: hci7: command tx timeout
[  286.328363][ T5836] Bluetooth: hci6: command tx timeout
[  287.279206][ T5836] Bluetooth: hci7: command tx timeout
[  288.398300][ T5836] Bluetooth: hci6: command tx timeout
[  289.358840][ T5836] Bluetooth: hci7: command tx timeout
[  290.478425][ T5836] Bluetooth: hci6: command tx timeout
[  291.448416][ T5836] Bluetooth: hci7: command tx timeout
[  317.443714][ T1312] ieee802154 phy0 wpan0: encryption failed: -22
[  317.450411][ T1312] ieee802154 phy1 wpan1: encryption failed: -22
[  342.662284][ T5843] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  342.671148][ T5843] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  342.679885][ T5843] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  342.690015][ T5843] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  342.697811][ T5843] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  342.856624][ T8400] chnl_net:caif_netlink_parms(): no params data found
[  342.929721][ T8400] bridge0: port 1(bridge_slave_0) entered blocking state
[  342.936929][ T8400] bridge0: port 1(bridge_slave_0) entered disabled state
[  342.944490][ T8400] bridge_slave_0: entered allmulticast mode
[  342.951646][ T8400] bridge_slave_0: entered promiscuous mode
[  342.959893][ T8400] bridge0: port 2(bridge_slave_1) entered blocking state
[  342.967095][ T8400] bridge0: port 2(bridge_slave_1) entered disabled state
[  342.974791][ T8400] bridge_slave_1: entered allmulticast mode
[  342.982138][ T8400] bridge_slave_1: entered promiscuous mode
[  343.013719][ T8400] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  343.026089][ T8400] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  343.068754][ T8400] team0: Port device team_slave_0 added
[  343.076410][ T8400] team0: Port device team_slave_1 added
[  343.104294][ T8400] batman_adv: batadv0: Adding interface: batadv_slave_0
[  343.111527][ T8400] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  343.137978][ T8400] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  343.152796][ T8400] batman_adv: batadv0: Adding interface: batadv_slave_1
[  343.160384][ T8400] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  343.186313][ T8400] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  343.229545][ T8400] hsr_slave_0: entered promiscuous mode
[  343.236117][ T8400] hsr_slave_1: entered promiscuous mode
[  343.242473][ T8400] debugfs: 'hsr0' already exists in 'hsr'
[  343.248274][ T8400] Cannot create hsr debugfs directory
[  344.158018][ T5845] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  344.167390][ T5845] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  344.176089][ T5845] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  344.184896][ T5845] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  344.192751][ T5845] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  344.361934][ T8410] chnl_net:caif_netlink_parms(): no params data found
[  344.437409][ T8410] bridge0: port 1(bridge_slave_0) entered blocking state
[  344.444825][ T8410] bridge0: port 1(bridge_slave_0) entered disabled state
[  344.452125][ T8410] bridge_slave_0: entered allmulticast mode
[  344.460298][ T8410] bridge_slave_0: entered promiscuous mode
[  344.468688][ T8410] bridge0: port 2(bridge_slave_1) entered blocking state
[  344.475861][ T8410] bridge0: port 2(bridge_slave_1) entered disabled state
[  344.483761][ T8410] bridge_slave_1: entered allmulticast mode
[  344.492009][ T8410] bridge_slave_1: entered promiscuous mode
[  344.521079][ T8410] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  344.534080][ T8410] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  344.564466][ T8410] team0: Port device team_slave_0 added
[  344.572270][ T8410] team0: Port device team_slave_1 added
[  344.597217][ T8410] batman_adv: batadv0: Adding interface: batadv_slave_0
[  344.604602][ T8410] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  344.633033][ T8410] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  344.647484][ T8410] batman_adv: batadv0: Adding interface: batadv_slave_1
[  344.654920][ T8410] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  344.681120][ T8410] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  344.718512][ T5845] Bluetooth: hci8: command tx timeout
[  344.730208][ T8410] hsr_slave_0: entered promiscuous mode
[  344.737960][ T8410] hsr_slave_1: entered promiscuous mode
[  344.744697][ T8410] debugfs: 'hsr0' already exists in 'hsr'
[  344.750626][ T8410] Cannot create hsr debugfs directory
[  345.119787][ T5843] Bluetooth: hci5: command 0x0406 tx timeout
[  345.125872][ T5845] Bluetooth: hci4: command 0x0406 tx timeout
[  346.238468][ T5836] Bluetooth: hci9: command tx timeout
[  346.808364][ T5836] Bluetooth: hci8: command tx timeout
[  348.318546][ T5836] Bluetooth: hci9: command tx timeout
[  348.878507][ T5836] Bluetooth: hci8: command tx timeout
[  350.408321][ T5836] Bluetooth: hci9: command tx timeout
[  350.958499][ T5836] Bluetooth: hci8: command tx timeout
[  352.478377][ T5836] Bluetooth: hci9: command tx timeout
[  369.918554][   T31] INFO: task syz.0.530:7853 blocked for more than 143 seconds.
[  369.927072][   T31]       Tainted: G             L      syzkaller #0
[  369.933681][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  369.942499][   T31] task:syz.0.530       state:D stack:24144 pid:7853  tgid:7842  ppid:5834   task_flags:0x480040 flags:0x00080002
[  369.954611][   T31] Call Trace:
[  369.957900][   T31]  <TASK>
[  369.960898][   T31]  __schedule+0x10e9/0x6820
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  369.965493][   T31]  ? __pfx___schedule+0x10/0x10
[  369.970453][   T31]  ? find_held_lock+0x2b/0x80
[  369.977474][   T31]  ? schedule+0x2bf/0x390
[  369.988234][   T31]  schedule+0xdd/0x390
[  369.998180][   T31]  schedule_timeout+0x1b2/0x280
[  370.004596][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  370.017372][   T31]  ? mark_held_locks+0x40/0x70
[  370.038272][   T31]  __wait_for_common+0x2e7/0x4c0
[  370.047966][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  370.065222][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  370.088765][   T31]  remove_one+0x312/0x420
[  370.102579][   T31]  ? find_next_child+0x18f/0x280
[  370.123354][   T31]  __simple_recursive_removal+0x148/0x5c0
[  370.147256][   T31]  ? __pfx_remove_one+0x10/0x10
[  370.170828][   T31]  debugfs_remove+0x5d/0x80
[  370.178359][   T31]  nsim_dev_health_exit+0x3b/0xe0
[  370.188393][   T31]  nsim_dev_reload_destroy+0x144/0x4a0
[  370.198384][   T31]  nsim_drv_remove+0x52/0x1e0
[  370.208334][   T31]  ? __pfx_nsim_bus_remove+0x10/0x10
[  370.215199][   T31]  device_remove+0xcb/0x180
[  370.225390][   T31]  device_release_driver_internal+0x44e/0x620
[  370.238468][   T31]  bus_remove_device+0x2bc/0x560
[  370.246441][   T31]  ? __pfx_bus_remove_device+0x10/0x10
[  370.256666][   T31]  ? __pfx_device_remove_attrs+0x10/0x10
[  370.265573][   T31]  device_del+0x376/0x9b0
[  370.273112][   T31]  ? __pfx_device_del+0x10/0x10
[  370.282744][   T31]  ? __lock_acquire+0x4a5/0x2630
[  370.292250][   T31]  device_unregister+0x1d/0xe0
[  370.308222][   T31]  del_device_store+0x346/0x480
[  370.313170][   T31]  ? __pfx_del_device_store+0x10/0x10
[  370.322991][   T31]  ? find_held_lock+0x2b/0x80
[  370.338202][   T31]  ? sysfs_file_kobj+0xe4/0x290
[  370.343164][   T31]  ? sysfs_file_kobj+0xe4/0x290
[  370.348074][   T31]  ? __pfx_del_device_store+0x10/0x10
[  370.368216][   T31]  bus_attr_store+0x74/0xb0
[  370.372831][   T31]  ? __pfx_bus_attr_store+0x10/0x10
[  370.378072][   T31]  sysfs_kf_write+0xf2/0x150
[  370.398215][   T31]  kernfs_fop_write_iter+0x3e0/0x5f0
[  370.405389][   T31]  ? __pfx_sysfs_kf_write+0x10/0x10
[  370.418210][   T31]  vfs_write+0x6ac/0x1070
[  370.424489][   T31]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  370.438210][   T31]  ? __pfx_vfs_write+0x10/0x10
[  370.448216][   T31]  ksys_write+0x12a/0x250
[  370.458356][   T31]  ? __pfx_ksys_write+0x10/0x10
[  370.468202][   T31]  ? rcu_is_watching+0x12/0xc0
[  370.479160][   T31]  do_syscall_64+0x10b/0xf80
[  370.488238][   T31]  ? clear_bhb_loop+0x40/0x90
[  370.498234][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.504213][   T31] RIP: 0033:0x7f0c4799c819
[  370.508777][   T31] RSP: 002b:00007f0c4884e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  370.517243][   T31] RAX: ffffffffffffffda RBX: 00007f0c47c16180 RCX: 00007f0c4799c819
[  370.525427][   T31] RDX: 0000000000000045 RSI: 0000200000000040 RDI: 0000000000000006
[  370.541080][   T31] RBP: 00007f0c47a32c91 R08: 0000000000000000 R09: 0000000000000000
[  370.551671][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  370.570303][   T31] R13: 00007f0c47c16218 R14: 00007f0c47c16180 R15: 00007ffd281680b8
[  370.588231][   T31]  </TASK>
[  370.591380][   T31] INFO: task syz.1.532:7857 blocked for more than 144 seconds.
[  370.607144][   T31]       Tainted: G             L      syzkaller #0
[  370.618191][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  370.626932][   T31] task:syz.1.532       state:D stack:27288 pid:7857  tgid:7849  ppid:5841   task_flags:0x400140 flags:0x00080002
[  370.639978][   T31] Call Trace:
[  370.645622][   T31]  <TASK>
[  370.650054][   T31]  __schedule+0x10e9/0x6820
[  370.654687][   T31]  ? __pfx___schedule+0x10/0x10
[  370.659930][   T31]  ? find_held_lock+0x2b/0x80
[  370.664689][   T31]  ? schedule+0x2bf/0x390
[  370.675351][   T31]  schedule+0xdd/0x390
[  370.682429][   T31]  schedule_preempt_disabled+0x13/0x30
[  370.691233][   T31]  __mutex_lock+0xced/0x1b10
[  370.699084][   T31]  ? devlink_health_report+0x66c/0xb20
[  370.708337][   T31]  ? __pfx_devlink_nl_notify_filter+0x10/0x10
[  370.719707][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  370.726432][   T31]  ? devlink_recover_notify.constprop.0+0x443/0x540
[  370.739704][   T31]  ? devlink_recover_notify.constprop.0+0x1e3/0x540
[  370.759559][   T31]  ? lockdep_hardirqs_on+0x78/0x100
[  370.764902][   T31]  ? irqentry_exit+0x246/0x790
[  370.778378][   T31]  ? devlink_health_report+0x66c/0xb20
[  370.783963][   T31]  devlink_health_report+0x66c/0xb20
[  370.798192][   T31]  ? __pfx_devlink_health_report+0x10/0x10
[  370.805568][   T31]  ? rep_movs_alternative+0x4a/0x90
[  370.818272][   T31]  ? _copy_from_user+0x59/0xd0
[  370.828398][   T31]  nsim_dev_health_break_write+0x166/0x210
[  370.839679][   T31]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[  370.857265][   T31]  full_proxy_write+0x135/0x1a0
[  370.862504][   T31]  vfs_write+0x2aa/0x1070
[  370.866906][   T31]  ? __pfx_full_proxy_write+0x10/0x10
[  370.872672][   T31]  ? __pfx_vfs_write+0x10/0x10
[  370.877527][   T31]  ? __fget_files+0x215/0x3d0
[  370.882708][   T31]  ? __fget_files+0x21f/0x3d0
[  370.887501][   T31]  ksys_write+0x12a/0x250
[  370.892160][   T31]  ? __pfx_ksys_write+0x10/0x10
[  370.897088][   T31]  ? rcu_is_watching+0x12/0xc0
[  370.903461][   T31]  do_syscall_64+0x10b/0xf80
[  370.908721][   T31]  ? clear_bhb_loop+0x40/0x90
[  370.913493][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.920348][   T31] RIP: 0033:0x7fd40639c819
[  370.924836][   T31] RSP: 002b:00007fd4071e5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  370.933593][   T31] RAX: ffffffffffffffda RBX: 00007fd406616180 RCX: 00007fd40639c819
[  370.941991][   T31] RDX: 00000000000001e1 RSI: 0000000000000000 RDI: 0000000000000004
[  370.952887][   T31] RBP: 00007fd406432c91 R08: 0000000000000000 R09: 0000000000000000
[  370.961866][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  370.970019][   T31] R13: 00007fd406616218 R14: 00007fd406616180 R15: 00007ffdf6079018
[  370.978046][   T31]  </TASK>
[  370.981169][   T31] INFO: task syz-executor:8134 blocked for more than 144 seconds.
[  370.997689][   T31]       Tainted: G             L      syzkaller #0
[  371.004343][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  371.013255][   T31] task:syz-executor    state:D stack:23672 pid:8134  tgid:8134  ppid:1      task_flags:0x400140 flags:0x00080002
[  371.025456][   T31] Call Trace:
[  371.028810][   T31]  <TASK>
[  371.031781][   T31]  __schedule+0x10e9/0x6820
[  371.036374][   T31]  ? __pfx___schedule+0x10/0x10
[  371.041394][   T31]  ? find_held_lock+0x2b/0x80
[  371.046170][   T31]  ? schedule+0x2bf/0x390
[  371.051521][   T31]  schedule+0xdd/0x390
[  371.055781][   T31]  schedule_preempt_disabled+0x13/0x30
[  371.062668][   T31]  __mutex_lock+0xced/0x1b10
[  371.067351][   T31]  ? del_device_store+0xd1/0x480
[  371.072518][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  371.077598][   T31]  ? sscanf+0xc7/0x100
[  371.081917][   T31]  ? __pfx_sscanf+0x10/0x10
[  371.086501][   T31]  ? __lock_acquire+0x4a5/0x2630
[  371.092828][   T31]  ? __lock_acquire+0x4a5/0x2630
[  371.097864][   T31]  ? del_device_store+0xd1/0x480
[  371.103027][   T31]  del_device_store+0xd1/0x480
[  371.107877][   T31]  ? __pfx_del_device_store+0x10/0x10
[  371.113339][   T31]  ? find_held_lock+0x2b/0x80
[  371.118068][   T31]  ? sysfs_file_kobj+0xe4/0x290
[  371.138253][   T31]  ? sysfs_file_kobj+0xe4/0x290
[  371.148229][   T31]  ? __pfx_del_device_store+0x10/0x10
[  371.168263][   T31]  bus_attr_store+0x74/0xb0
[  371.172974][   T31]  ? __pfx_bus_attr_store+0x10/0x10
[  371.179776][   T31]  sysfs_kf_write+0xf2/0x150
[  371.198185][   T31]  kernfs_fop_write_iter+0x3e0/0x5f0
[  371.203699][   T31]  ? __pfx_sysfs_kf_write+0x10/0x10
[  371.218191][   T31]  vfs_write+0x6ac/0x1070
[  371.222604][   T31]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  371.228693][   T31]  ? __pfx_vfs_write+0x10/0x10
[  371.233534][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  371.238897][   T31]  ksys_write+0x12a/0x250
[  371.243276][   T31]  ? __pfx_ksys_write+0x10/0x10
[  371.248232][   T31]  ? rcu_is_watching+0x12/0xc0
[  371.253040][   T31]  do_syscall_64+0x10b/0xf80
[  371.258303][   T31]  ? clear_bhb_loop+0x40/0x90
[  371.263040][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.269217][   T31] RIP: 0033:0x7f2fbc15d04e
[  371.273665][   T31] RSP: 002b:00007ffe9f002568 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  371.282333][   T31] RAX: ffffffffffffffda RBX: 000055557a56e500 RCX: 00007f2fbc15d04e
[  371.290447][   T31] RDX: 0000000000000001 RSI: 00007ffe9f0025f0 RDI: 0000000000000005
[  371.298486][   T31] RBP: 00007f2fbc233514 R08: 0000000000000000 R09: 0000000000000000
[  371.306512][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.314607][   T31] R13: 00007ffe9f0025f0 R14: 00007f2fbcf44620 R15: 0000000000000003
[  371.322793][   T31]  </TASK>
[  371.325853][   T31] INFO: task syz-executor:8141 blocked for more than 144 seconds.
[  371.351856][   T31]       Tainted: G             L      syzkaller #0
[  371.359646][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  371.368435][   T31] task:syz-executor    state:D stack:24408 pid:8141  tgid:8141  ppid:1      task_flags:0x400140 flags:0x00080002
[  371.380475][   T31] Call Trace:
[  371.383781][   T31]  <TASK>
[  371.386717][   T31]  __schedule+0x10e9/0x6820
[  371.391354][   T31]  ? __pfx___schedule+0x10/0x10
[  371.396256][   T31]  ? find_held_lock+0x2b/0x80
[  371.400985][   T31]  ? schedule+0x2bf/0x390
[  371.405376][   T31]  schedule+0xdd/0x390
[  371.409499][   T31]  schedule_preempt_disabled+0x13/0x30
[  371.415014][   T31]  __mutex_lock+0xced/0x1b10
[  371.419664][   T31]  ? del_device_store+0xd1/0x480
[  371.424657][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  371.429773][   T31]  ? sscanf+0xc7/0x100
[  371.433892][   T31]  ? __pfx_sscanf+0x10/0x10
[  371.438507][   T31]  ? __lock_acquire+0x4a5/0x2630
[  371.443505][   T31]  ? __lock_acquire+0x4a5/0x2630
[  371.448557][   T31]  ? del_device_store+0xd1/0x480
[  371.453535][   T31]  del_device_store+0xd1/0x480
[  371.458534][   T31]  ? __pfx_del_device_store+0x10/0x10
[  371.464558][   T31]  ? find_held_lock+0x2b/0x80
[  371.469413][   T31]  ? sysfs_file_kobj+0xe4/0x290
[  371.474312][   T31]  ? sysfs_file_kobj+0xe4/0x290
[  371.479257][   T31]  ? __pfx_del_device_store+0x10/0x10
[  371.484688][   T31]  bus_attr_store+0x74/0xb0
[  371.489237][   T31]  ? __pfx_bus_attr_store+0x10/0x10
[  371.494467][   T31]  sysfs_kf_write+0xf2/0x150
[  371.499149][   T31]  kernfs_fop_write_iter+0x3e0/0x5f0
[  371.504539][   T31]  ? __pfx_sysfs_kf_write+0x10/0x10
[  371.509838][   T31]  vfs_write+0x6ac/0x1070
[  371.514207][   T31]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  371.520567][   T31]  ? __pfx_vfs_write+0x10/0x10
[  371.525693][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  371.531024][   T31]  ksys_write+0x12a/0x250
[  371.535388][   T31]  ? __pfx_ksys_write+0x10/0x10
[  371.540451][   T31]  ? rcu_is_watching+0x12/0xc0
[  371.545346][   T31]  do_syscall_64+0x10b/0xf80
[  371.550278][   T31]  ? clear_bhb_loop+0x40/0x90
[  371.555012][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.561212][   T31] RIP: 0033:0x7f9d5195d04e
[  371.566638][   T31] RSP: 002b:00007fffb0ff58e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  371.575786][   T31] RAX: ffffffffffffffda RBX: 0000555578a21500 RCX: 00007f9d5195d04e
[  371.583833][   T31] RDX: 0000000000000001 RSI: 00007fffb0ff5970 RDI: 0000000000000005
[  371.591866][   T31] RBP: 00007f9d51a33514 R08: 0000000000000000 R09: 0000000000000000
[  371.599885][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.607886][   T31] R13: 00007fffb0ff5970 R14: 00007f9d52744620 R15: 0000000000000003
[  371.616033][   T31]  </TASK>
[  371.619144][   T31] 
[  371.619144][   T31] Showing all locks held in the system:
[  371.633288][   T31] 3 locks held by rcu_exp_gp_kthr/18:
[  371.641728][   T31]  #0: ffff8880b843b3a0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140
[  371.652802][   T31]  #1: ffff8880b8424648 (psi_seq){-.-.}-{0:0}, at: __schedule+0x2d69/0x6820
[  371.661604][   T31]  #2: ffff88802aac8a88 (&p->pi_lock){-.-.}-{2:2}, at: try_to_wake_up+0xb5/0x1900
[  371.672212][   T31] 1 lock held by khungtaskd/31:
[  371.677201][   T31]  #0: ffffffff8e7e5260 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[  371.687342][   T31] 3 locks held by kworker/u8:3/48:
[  371.692535][   T31]  #0: ffff88813fe2c140 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[  371.703833][   T31]  #1: ffffc90000b97d08 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[  371.714389][   T31]  #2: ffffffff9062ebe0 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0x51/0xc0
[  371.723754][   T31] 2 locks held by getty/5596:
[  371.728527][   T31]  #0: ffff888036c600a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  371.738406][   T31]  #1: ffffc9000322b2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x14f0
[  371.748642][   T31] 1 lock held by syz.3.65/6214:
[  371.753496][   T31]  #0: ffffffff9062ebe0 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x220
[  371.763163][   T31] 2 locks held by syz.2.279/6988:
[  371.769151][   T31]  #0: ffffffff9062ebe0 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x220
[  371.778425][   T31]  #1: ffffffff8e7f0da8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x27f/0x3c0
[  371.788801][   T31] 8 locks held by syz.0.530/7853:
[  371.793894][   T31]  #0: ffff888078efad30 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2aa/0x380
[  371.803089][   T31]  #1: ffff888034cc8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  371.812196][   T31]  #2: ffff88805c86d080 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  371.822057][   T31]  #3: ffff8880283244b8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  371.832171][   T31]  #4: ffffffff8fb7faa0 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  371.842920][   T31]  #5: ffff88802c440128 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xb2/0x620
[  371.853584][   T31]  #6: ffff8880341af258 (&devlink->lock_key#2){+.+.}-{4:4}, at: nsim_drv_remove+0x4a/0x1e0
[  371.863690][   T31]  #7: ffff888077fee800 (&sb->s_type->i_mutex_key#9/2){+.+.}-{4:4}, at: __simple_recursive_removal+0xe0/0x5c0
[  371.876078][   T31] 3 locks held by syz.1.532/7857:
[  371.881233][   T31]  #0: ffff88807b7fcd30 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2aa/0x380
[  371.890370][   T31]  #1: ffff8880202d4410 (sb_writers#8){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  371.899615][   T31]  #2: ffff8880341af258 (&devlink->lock_key#2){+.+.}-{4:4}, at: devlink_health_report+0x66c/0xb20
[  371.910398][   T31] 4 locks held by syz-executor/8134:
[  371.915708][   T31]  #0: ffff888034cc8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  371.924798][   T31]  #1: ffff888029384480 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  371.934788][   T31]  #2: ffff8880283244b8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  371.944961][   T31]  #3: ffffffff8fb7faa0 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  371.955332][   T31] 4 locks held by syz-executor/8141:
[  371.960747][   T31]  #0: ffff888034cc8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  371.969838][   T31]  #1: ffff8880352f9c80 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  371.980528][   T31]  #2: ffff8880283244b8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  371.990689][   T31]  #3: ffffffff8fb7faa0 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  372.001241][   T31] 4 locks held by syz-executor/8375:
[  372.006594][   T31]  #0: ffff888034cc8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  372.015836][   T31]  #1: ffff88805ba7ac80 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  372.025704][   T31]  #2: ffff8880283244b8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  372.035974][   T31]  #3: ffffffff8fb7faa0 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  372.046420][   T31] 4 locks held by syz-executor/8385:
[  372.051874][   T31]  #0: ffff888034cc8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  372.060969][   T31]  #1: ffff888032bdfc80 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  372.070835][   T31]  #2: ffff8880283244b8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  372.082055][   T31]  #3: ffffffff8fb7faa0 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  372.092500][   T31] 4 locks held by syz-executor/8400:
[  372.097825][   T31]  #0: ffff888034cc8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  372.106998][   T31]  #1: ffff88807c4ef480 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  372.116860][   T31]  #2: ffff8880283244b8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  372.127131][   T31]  #3: ffffffff8fb7faa0 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  372.137528][   T31] 4 locks held by syz-executor/8410:
[  372.142868][   T31]  #0: ffff888034cc8410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  372.151909][   T31]  #1: ffff88807bf0a480 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[  372.162264][   T31]  #2: ffff8880283244b8 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[  372.172376][   T31]  #3: ffffffff8fb7faa0 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[  372.183389][   T31] 
[  372.185756][   T31] =============================================
[  372.185756][   T31] 
[  372.203686][   T31] NMI backtrace for cpu 1
[  372.203716][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  372.203756][   T31] Tainted: [L]=SOFTLOCKUP
[  372.203765][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  372.203781][   T31] Call Trace:
[  372.203790][   T31]  <TASK>
[  372.203801][   T31]  dump_stack_lvl+0x100/0x190
[  372.203837][   T31]  nmi_cpu_backtrace.cold+0x12d/0x151
[  372.203870][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  372.203900][   T31]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[  372.203946][   T31]  sys_info+0x141/0x190
[  372.203978][   T31]  watchdog+0xcb1/0x1030
[  372.204024][   T31]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  372.204070][   T31]  ? __pfx_watchdog+0x10/0x10
[  372.204110][   T31]  ? __kthread_parkme+0x18c/0x230
[  372.204151][   T31]  ? kthread+0x13a/0x450
[  372.204190][   T31]  ? __pfx_watchdog+0x10/0x10
[  372.204227][   T31]  kthread+0x370/0x450
[  372.204266][   T31]  ? __pfx_kthread+0x10/0x10
[  372.204310][   T31]  ret_from_fork+0x72b/0xd50
[  372.204342][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  372.204373][   T31]  ? __switch_to+0x800/0x1100
[  372.204410][   T31]  ? __switch_to_asm+0x39/0x70
[  372.204446][   T31]  ? __pfx_kthread+0x10/0x10
[  372.204497][   T31]  ret_from_fork_asm+0x1a/0x30
[  372.204550][   T31]  </TASK>
[  372.204561][   T31] Sending NMI from CPU 1 to CPUs 0:
[  372.342212][    C0] NMI backtrace for cpu 0
[  372.342236][    C0] CPU: 0 UID: 0 PID: 57 Comm: kworker/u8:4 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  372.342268][    C0] Tainted: [L]=SOFTLOCKUP
[  372.342276][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  372.342289][    C0] Workqueue: events_unbound toggle_allocation_gate
[  372.342317][    C0] RIP: 0010:__lock_acquire+0x79f/0x2630
[  372.342352][    C0] Code: f6 e9 90 fb ff ff 48 89 04 24 e9 9a f9 ff ff 44 8b b5 74 0b 00 00 45 85 f6 0f 85 35 fb ff ff 41 bf 05 00 00 00 e9 30 fb ff ff <45> 31 c9 e9 f9 fa ff ff 44 8b 15 52 fb 3d 19 45 85 d2 0f 84 3b 08
[  372.342373][    C0] RSP: 0018:ffffc900015f76e0 EFLAGS: 00000046
[  372.342390][    C0] RAX: 00000000ffffffff RBX: ffff88801db4e8c0 RCX: 0000000000000006
[  372.342404][    C0] RDX: 0000000000000003 RSI: ffff88801db4e7a8 RDI: 0000000000000000
[  372.342417][    C0] RBP: ffff88801db4dc40 R08: 0000000000000001 R09: 0000000000000000
[  372.342430][    C0] R10: 0000000000000006 R11: 0000000000000000 R12: 0000000000000000
[  372.342443][    C0] R13: 000000000000003a R14: 0000000000000000 R15: 0000000000000000
[  372.342456][    C0] FS:  0000000000000000(0000) GS:ffff8881242ee000(0000) knlGS:0000000000000000
[  372.342479][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  372.342494][    C0] CR2: 00007f6c115f37b0 CR3: 000000000e596000 CR4: 00000000003526f0
[  372.342508][    C0] Call Trace:
[  372.342515][    C0]  <TASK>
[  372.342523][    C0]  ? find_held_lock+0x2b/0x80
[  372.342548][    C0]  ? finish_task_switch.isra.0+0x2c6/0x1010
[  372.342578][    C0]  lock_acquire+0x1b1/0x370
[  372.342608][    C0]  ? pte_offset_map_lock+0x10f/0x320
[  372.342630][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  372.342655][    C0]  _raw_spin_lock+0x2e/0x40
[  372.342684][    C0]  ? pte_offset_map_lock+0x10f/0x320
[  372.342705][    C0]  pte_offset_map_lock+0x10f/0x320
[  372.342735][    C0]  ? __pfx_pte_offset_map_lock+0x10/0x10
[  372.342757][    C0]  ? find_held_lock+0x2b/0x80
[  372.342781][    C0]  ? find_held_lock+0x2b/0x80
[  372.342805][    C0]  ? walk_to_pmd+0x302/0x4c0
[  372.342830][    C0]  get_locked_pte+0x79/0xc0
[  372.342854][    C0]  ? __kmalloc_cache_node_noprof+0x93/0x770
[  372.342875][    C0]  __text_poke+0x250/0xae0
[  372.342899][    C0]  ? perf_event_text_poke+0x132/0x180
[  372.342919][    C0]  ? __pfx_text_poke_memcpy+0x10/0x10
[  372.342945][    C0]  ? __pfx___text_poke+0x10/0x10
[  372.342970][    C0]  ? __kmalloc_cache_node_noprof+0x93/0x770
[  372.342993][    C0]  smp_text_poke_batch_finish+0x57d/0xc60
[  372.343025][    C0]  ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[  372.343055][    C0]  ? arch_jump_label_transform_queue+0xc0/0x120
[  372.343090][    C0]  arch_jump_label_transform_apply+0x1c/0x30
[  372.343120][    C0]  jump_label_update+0x37a/0x550
[  372.343144][    C0]  static_key_disable_cpuslocked+0x162/0x1c0
[  372.343170][    C0]  static_key_disable+0x1a/0x20
[  372.343194][    C0]  toggle_allocation_gate+0x149/0x2d0
[  372.343215][    C0]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  372.343237][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  372.343267][    C0]  ? rcu_is_watching+0x12/0xc0
[  372.343292][    C0]  process_one_work+0xa0e/0x1980
[  372.343317][    C0]  ? __pfx_process_one_work+0x10/0x10
[  372.343340][    C0]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  372.343361][    C0]  worker_thread+0x5ef/0xe50
[  372.343385][    C0]  ? kthread+0x13a/0x450
[  372.343414][    C0]  ? __pfx_worker_thread+0x10/0x10
[  372.343432][    C0]  kthread+0x370/0x450
[  372.343461][    C0]  ? __pfx_kthread+0x10/0x10
[  372.343491][    C0]  ret_from_fork+0x72b/0xd50
[  372.343512][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  372.343533][    C0]  ? __switch_to+0x800/0x1100
[  372.343559][    C0]  ? __switch_to_asm+0x39/0x70
[  372.343589][    C0]  ? __pfx_kthread+0x10/0x10
[  372.343618][    C0]  ret_from_fork_asm+0x1a/0x30
[  372.343650][    C0]  </TASK>
[  372.721063][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  372.727971][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  372.738745][   T31] Tainted: [L]=SOFTLOCKUP
[  372.743074][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  372.753128][   T31] Call Trace:
[  372.756418][   T31]  <TASK>
[  372.759351][   T31]  dump_stack_lvl+0x100/0x190
[  372.764079][   T31]  vpanic+0x552/0x970
[  372.768063][   T31]  ? __pfx_vpanic+0x10/0x10
[  372.772567][   T31]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[  372.778744][   T31]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[  372.784948][   T31]  panic+0xd1/0xe0
[  372.788922][   T31]  ? __pfx_panic+0x10/0x10
[  372.793357][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[  372.799551][   T31]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[  372.805763][   T31]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[  372.811933][   T31]  ? watchdog.cold+0x1ec/0x234
[  372.816723][   T31]  ? watchdog+0xcc1/0x1030
[  372.821156][   T31]  watchdog.cold+0x1fd/0x234
[  372.825787][   T31]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  372.831630][   T31]  ? __pfx_watchdog+0x10/0x10
[  372.836338][   T31]  ? __kthread_parkme+0x18c/0x230
[  372.841394][   T31]  ? kthread+0x13a/0x450
[  372.845753][   T31]  ? __pfx_watchdog+0x10/0x10
[  372.850454][   T31]  kthread+0x370/0x450
[  372.854603][   T31]  ? __pfx_kthread+0x10/0x10
[  372.859221][   T31]  ret_from_fork+0x72b/0xd50
[  372.863832][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  372.868978][   T31]  ? __switch_to+0x800/0x1100
[  372.873678][   T31]  ? __switch_to_asm+0x39/0x70
[  372.878465][   T31]  ? __pfx_kthread+0x10/0x10
[  372.883098][   T31]  ret_from_fork_asm+0x1a/0x30
[  372.887902][   T31]  </TASK>
[  372.891519][   T31] Kernel Offset: disabled
[  372.895865][   T31] Rebooting in 86400 seconds..