last executing test programs:

6m27.319051618s ago: executing program 0 (id=789):
r0 = socket(0x10, 0x2, 0x0)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, &(0x7f0000000640)={"7fccb9896d47e455be3e37009cab190f1d8d3ba0a34ea8c8aa3127b3095c96f5", 0x4, 0x1c, 0x3, 0x5, 0x2, 0xffffffffffffffff})
write$auto_seq_oss_f_ops_seq_oss(r2, &(0x7f0000000040)="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", 0xfe04)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80001}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r3, 0x800, 0x70bd27, 0x25dfdbfd, {}, [@NFSD_A_SERVER_SCOPE={0x8, 0x4, '+{,\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4044000}, 0x4000000)
r4 = socket(0x23, 0x80805, 0x0)
connect$auto(0x3, 0xfffffffffffffffe, 0x0)
r5 = socket(0x10, 0x2, 0x0)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socketcall$auto(0x8000, 0x0)
ioctl$auto(0x3, 0xae41, r7)
ioctl$auto_SNDRV_PCM_IOCTL_HWSYNC2(r7, 0x4122, 0x0)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000140)={0x30, r6, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_WOL_SOPASS={0x4}, @ETHTOOL_A_WOL_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x801}, 0x40)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/sound/ctl-led/speaker/card2/reset\x00', 0xa001, 0x0)
r8 = openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000001200)='/proc/thread-self/mounts\x00', 0x28000, 0x0)
preadv$auto(r8, &(0x7f0000000140)={&(0x7f00000000c0), 0x20000182}, 0x7, 0x4, 0x2)
r9 = setfsuid$auto(0xee01)
keyctl$auto_KEYCTL_GET_PERSISTENT(0x16, r9, 0x7fffffffffffffff, 0xffffffffffffe6d6, 0x2)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000000580)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000540)={&(0x7f00000006c0)={0x184, r6, 0xa00, 0x70bd25, 0x25dfdbfe, {}, [@ETHTOOL_A_WOL_MODES={0x168, 0x2, 0x0, 0x1, [@typed={0xe9, 0x81, 0x0, 0x0, @binary="dd2f7104795d6d9446d5c6deafeed23021aa7ad28e6cca46a9d3b09350b9a7338645c5b58b52dabee961d757e709c48013c6eae3cc61df9a7fcc49d6d06b1f36df377d8867e9a8e897405bd43ca8e64d760caa7b25c4d94778f5838ad3de0149700626374a6c53474e8ba4915f3185c4b887bcf8cff04009c7c4e73307cdd582474ef95580f6ba24ac6e629e0e0f8a7d029139b397f27ceeb97c44ef5eece68d707fcccc7ab1f4099a1ca2c25bd0a3136465ae331237557d2374c3fcbce933cd98131633956ac8a400a436caab8b61d6e47c9ccc63a920cd77624ff8011971f0e142f48540"}, @typed={0x51, 0x101, 0x0, 0x0, @binary="b736471e43d7b3639eb9abbd7f0f21c735550bcf98945b8d6d0bb9b66341c23f7e7f921860cc155794e2e54e83f0d53a669114f710820bc922ef3b4d8b8e7ef5997d82892d50b1cda9c638b79e"}, @nested={0xc, 0x54, 0x0, 0x1, [@typed={0x8, 0xcd, 0x0, 0x0, @ipv4=@multicast1}]}, @nested={0x18, 0xf0, 0x0, 0x1, [@typed={0x8, 0x3e, 0x0, 0x0, @uid=r9}, @nested={0x4, 0x148}, @nested={0x4, 0xad}, @nested={0x4, 0x10d}]}]}, @ETHTOOL_A_WOL_SOPASS={0x6, 0x3, "9882"}]}, 0x184}, 0x1, 0x0, 0x0, 0x24000800}, 0x8001)
sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="01002abd7000fea9df2740a275d83345650700000008"], 0x1c}}, 0x80)
ioctl$auto_SW_SYNC_GET_DEADLINE(r7, 0xc0105702, &(0x7f00000005c0)={0x6, 0x0, r4})

6m27.025434644s ago: executing program 0 (id=791):
r0 = socket(0xa, 0x3, 0x1)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x18, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r0)
ioctl$auto_KVM_CREATE_VM(r1, 0xaea2, 0x0)

6m26.45348596s ago: executing program 0 (id=793):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D0\x00', 0x195600, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/mtd/mtd0/bitflip_threshold\x00', 0x2062, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0)
write$auto(r4, &(0x7f0000000240)=',-\t', 0x2000008008)
sendmsg$auto_IPVS_CMD_DEL_DAEMON(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={0x44, r3, 0x100, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x30, 0x2, 0x0, 0x1, [@typed={0x8, 0xee, 0x0, 0x0, @ipv4=@loopback}, @typed={0x8, 0xc, 0x0, 0x0, @pid}, @nested={0x1c, 0x161, 0x0, 0x1, [@typed={0x8, 0xf, 0x0, 0x0, @u32=0x8}, @nested={0x4, 0x158}, @nested={0x4, 0x8a}, @typed={0x8, 0x98, 0x0, 0x0, @u32=0x6}]}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x40014}, 0x4001)
getpgid$auto(0x0)
socket(0x2, 0x801, 0x106)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000280)='/dev/sequencer2\x00', 0x121201, 0x0)
r5 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r5, 0x400, 0x1)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
creat$auto(&(0x7f0000000000)='./file0\x00', 0xa)
r6 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f00000002c0), 0x115103, 0x0)
pread64$auto(r6, 0x0, 0x8, 0x8001)
r7 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r7, &(0x7f0000000180)=""/250, 0xfa)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/ifb0/flags\x00', 0xb02, 0x0)
socket(0x22, 0x4, 0x2)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb5, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1ff, 0x1, 0x3, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio1\x00', 0x20342, 0x0)
read$auto(0x3, 0x0, 0x80)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card0/pcm0p/sub6/hw_params\x00', 0x12b300, 0x0)

6m25.492259952s ago: executing program 0 (id=799):
mount$auto(0x0, 0x0, 0x0, 0x1005, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
sendmsg$auto_NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0)
inotify_add_watch$auto(0xffffffffffffffff, 0x0, 0x1000e6e)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
r1 = open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x138)
open_by_handle_at$auto(r1, &(0x7f0000000040)={0x21, 0x2, '\a\x00\x00\x00\x00\x00\x00\x00'}, 0x20401)
r2 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0xc0280, 0x40, 0x2}, 0x18)
renameat2$auto(r1, &(0x7f0000000040)='./file0\x00', r2, &(0x7f0000000140)='./file0\x00', 0x3)
r3 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f00000000c0), 0x101, 0x0)
ioctl$auto_SNAPSHOT_FREE_SWAP_PAGES(r3, 0x3309, 0x0)
sendmmsg$auto(r0, 0x0, 0x42, 0x5fa)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x40802, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0)
read$auto(r5, 0x0, 0x20)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x3}, 0x3)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)

6m24.906389976s ago: executing program 0 (id=800):
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = socket(0x1d, 0x2, 0x0)
r1 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r2=>0x0})
bind$auto(r0, &(0x7f0000000040)=@can={0x1d, r2, 0xfd}, 0x6a)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x40)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, 0x0, 0x40000)
unshare$auto(0x40000080)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0x20499d, 0x9)
mknod$auto(0x0, 0x1001, 0x4)
open(0x0, 0x161302, 0x17f)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmstat\x00', 0x20000, 0x0)
adjtimex$auto(0x0)
sendmsg$auto_GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002d00080007000000000000000000", @ANYRES32, @ANYBLOB='\b\x00'], 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x0)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x0)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0xfffffffe, &(0x7f0000000100)={&(0x7f0000000080), 0x180}, 0x2, &(0x7f0000000340), 0x7, 0xa505}, 0x800}, 0x7, 0x6)

6m24.349143134s ago: executing program 0 (id=801):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
socket(0x11, 0x2, 0xfb7) (async)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20048890}, 0x2000c041) (async)
socket(0x2e, 0x1, 0x106) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) (async)
eventfd$auto(0x1)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x1c1080, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe8180, 0x0)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0xffffffffffffffff) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(r1, 0x4020af76, r2) (async)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0x1, "ab06fdffff00fff500"}, 0x55) (async)
mmap$auto(0x1, 0x20000000003, 0x5, 0x55becab1, 0xffffffffffffffff, 0x0) (async)
timerfd_create$auto(0x9, 0x0)
socket(0x1e, 0x80000, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x18, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
eventfd$auto(0x0) (async)
r4 = socket(0xa, 0x70e5f5a37b7e9fe5, 0x7f)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r4, @new_prog_fd, 0x400, @old_map_fd=r3}, 0xa3)

6m9.20737536s ago: executing program 32 (id=801):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
socket(0x11, 0x2, 0xfb7) (async)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20048890}, 0x2000c041) (async)
socket(0x2e, 0x1, 0x106) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) (async)
eventfd$auto(0x1)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x1c1080, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe8180, 0x0)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0xffffffffffffffff) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(r1, 0x4020af76, r2) (async)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0x1, "ab06fdffff00fff500"}, 0x55) (async)
mmap$auto(0x1, 0x20000000003, 0x5, 0x55becab1, 0xffffffffffffffff, 0x0) (async)
timerfd_create$auto(0x9, 0x0)
socket(0x1e, 0x80000, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x18, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
eventfd$auto(0x0) (async)
r4 = socket(0xa, 0x70e5f5a37b7e9fe5, 0x7f)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r4, @new_prog_fd, 0x400, @old_map_fd=r3}, 0xa3)

7.403100823s ago: executing program 2 (id=2233):
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x2, 0x0)
r0 = getpid()
mmap$auto(0x1, 0x2020009, 0x3, 0x10, 0xfffffffffffffff7, 0x8001)
r1 = socket(0x1d, 0x2, 0x6)
getsockopt$auto(r1, 0x6a, 0x4, 0x0, 0x0)
ioprio_set$auto_IOPRIO_WHO_PGRP(0x2, r0, 0x80)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x90001, 0x0)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xebe, 0x401, 0x8000)
r3 = openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000140), 0x600800, 0x0)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff018}})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
ioctl$auto(0x4000000000000c8, 0x8004548f, r2)
r4 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r4, 0x107, 0x12, 0x0, 0x4)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x800, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r3, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/ptp/ptp0/n_vclocks\x00', 0x8502, 0x0)
write$auto(r5, 0x0, 0x2)
set_tid_address$auto(&(0x7f0000000040)=0xd)
r6 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000480), 0xa4e00, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f00000001c0)={{@inferred=r0, 0x98a, 0x7, 0x15f9, "a85f4b69bad42eb21cb3ab17cce92bd39eae847362ce83670295830fa797bdca13b48847cfc5aec835b09800", @raw=0x9}, 0x800000, 0x6, 0x6, @inferred=r0, @reserved="987085bdab56b37455ed2cdf8a67be8091dbd20910c7efae5f303a506efad4fd87307725195a9d4d6b3cb13437b3a66859e287b136286dedc32839f6ec4cfdfa134a87286541a6e12dd7dfb9732daea0ff052cf6094781152114f87d93ff85b1a55ae42d010f054f8012e80ce81b40d5117b3798c9bfc900", "aa54ccf67533a88e470f60128e05ec5c928e36ae29747f63ad3db8d5b8d8145dd2a1e3d86b3f41994f536c029ebd9f2b84bb40380616b25d1ef7b097a8635f31"})
ioctl$auto_UDMABUF_CREATE_LIST(r6, 0x40087543, &(0x7f00000004c0)={0x5, 0x2e9, [{0xffffffffffffffff, 0x0, 0x5, 0xd}, {0xffffffffffffffff, 0x0, 0xffff, 0x4}, {0xffffffffffffffff, 0x0, 0xc43, 0x3}]})
pwrite64$auto(0xffffffffffffffff, 0x0, 0x8001, 0x2)
madvise$auto(0x8000000000000000, 0x5, 0x1)
mmap$auto(0x0, 0x700, 0xdf, 0x9b72, 0x2, 0x800007ffc)

7.014276744s ago: executing program 3 (id=2236):
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) (rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) (async)
keyctl$auto_KEYCTL_SET_REQKEY_KEYRING(0xe, 0x2, 0x4, 0x1, 0x25a24aff000000) (async)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async, rerun: 64)
keyctl$auto_KEYCTL_INSTANTIATE_IOV(0x14, 0x3e, 0x3, 0x2, 0x401) (async, rerun: 64)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
listxattrat$auto(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x10000000000000)
r1 = bpf$auto(0x0, &(0x7f0000000280)=@link_update={0xa, @new_map_fd=0x2, 0x7, @old_prog_fd=0x13b}, 0xa3)
bpf$auto(0x1, &(0x7f00000001c0)=@query={@target_fd=r1, 0x1, 0x86e6, 0x0, 0xf7d, @count=0x80, 0x0, 0x6, 0x2, 0xfffffffffffff001, 0xb716}, 0xc)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
getdents$auto(r0, 0x0, 0x18)
socket(0xa, 0x6, 0x1)

6.043181448s ago: executing program 4 (id=2238):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x501, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51)
statx$auto(0xffffffffffffffff, 0x0, 0x401006, 0x4015, 0x0)
inotify_add_watch$auto(0xffffffffffffffff, 0x0, 0x1000e6e)
r0 = openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000180), 0x28400, 0x0)
readv$auto(r0, &(0x7f0000000040)={&(0x7f0000000000), 0xfff}, 0x6)
mmap$auto(0xffffffffffffffff, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0xa)
r1 = openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000001200)='/proc/thread-self/mounts\x00', 0x28000, 0x0)
r2 = epoll_create$auto(0x3e)
epoll_ctl$auto(r2, 0x1, r1, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000580)='nfsd\x00\xee\x1a\x8fg\x1b\x04\xad>\x96\xe9IG\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\x00\x00\x00\x00\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xed\xd5MI\x830_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xees\xf0\xc2\xad\xae\x99\xeb\xc5\xf0\"\x92\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88xx\xaf\xa9\xe8\xb2\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oi|\x04\x93N\xfa\x17\xf3b\xf6E*\xc9\xdd.q\xdbAX\xf6\xfaD\xcdz\xbc~\xf30LE\xb5\x18Wf\xd3\x9b\\\x1c\xbb^\xfb9\xe5\x1b:\xa4\xdd\x81\x91\\\xbc\x1fUl\xfa)\xbf\x9dPV\xae\xa9\x9c)\x01|\xfe\xd0!Rx\a\xc4\xb1$\x8eE\xc2j\x83sLS\xa8H\xf6\xf2,R\x90:\x8fx\xab\x90\xfe$h\x80!\xe2\nY#\xee\x1b}O=\x8bn\xd7zZ\x18\xa7\x9e~\x94k\x8e\xdba\xf2\xc3G\x8egR3\x1d\x01J\x87\x14(}\f\xb1}%N|z,\xbe\x1fB\xd3\xeb\xec\x83X\x8f\x97\x95\xfd\xed\xe6wt\x1d\xb3\xa8\xfb)L~}\x9f\xbf\xd0\xc9\x9d\x82-C\xc3Ez@\x8c\xbf\xa2 \x88\\\r6M\x83', 0x4, 0x0)
r3 = openat$auto_ftrace_event_format_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/format\x00', 0x48000, 0x0)
mmap$auto(0x100000000, 0x9, 0xdf, 0x9b72, r3, 0x200000000000000)
sendmsg$auto_NL80211_CMD_SET_PMKSA(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x2, 0x70bd28, 0x25dfdbfd, {}, [@NL80211_ATTR_USE_MFP={0x8, 0x42, 0xffff}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_WPA_VERSIONS={0x8, 0x4b, 0x7f}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040000}, 0x4004041)

5.82053408s ago: executing program 4 (id=2239):
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, 0x0, 0x80a040, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket(0x2, 0xa, 0x1)
socket(0x1a, 0xa, 0x84)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x400000000000003, 0x40000eb1, r1, 0xa1a)
unshare$auto(0x40000080)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/trace\x00', 0x1a6b75d638828712, 0x0)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/free_buffer\x00', 0x0, 0xebff)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x401, 0xdf, 0x9b72, r0, 0x8003)
io_uring_setup$auto(0x1, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x4e25, @remote}, 0x6d)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop5\x00', 0x60542, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kpageflags\x00', 0x2, 0x0)
mmap$auto(0xffffffffffffffff, 0x402000c, 0x6, 0x10, 0x401, 0x40000008000)
read$auto(0x3, 0x0, 0x80)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'team0\x00', <r4=>0x0})
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x80040, 0x0)
semop$auto(0x100, 0x0, 0x7)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto_SO_REUSEPORT(r6, 0x1, 0xf, &(0x7f0000000780)='\x00', &(0x7f00000007c0)=0xd)
ioctl$auto(0x3, 0xae41, r5)
bpf$auto_BPF_ITER_CREATE(0x21, &(0x7f00000001c0)=@bpf_attr_3={0x8000, 0xfffffffa, 0x54cf, 0x40, 0x309e5240, 0x7ff, 0xfffffffffffffc01, 0x7, 0x0, "341d777c9944fcb940fa5b368dcf5277", r4, 0x8, r2, 0x4, 0x0, 0xb4af, 0x9a, 0xf968000000000000, 0x3, 0x3, @attach_btf_obj_fd=r1, 0xfffffffe, 0x9, 0x44, 0xfffffff9, 0x6a96, r5, r1}, 0xfffffffc)
close_range$auto(0x2, r3, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)

5.743389291s ago: executing program 2 (id=2240):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
r0 = socket(0x2, 0x3, 0x1)
getsockopt$auto_SO_DEBUG(r0, 0xff, 0x1, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
setresuid$auto(0x2, 0x7, 0x8080)
swapoff$auto(0x0)
r2 = fcntl$getown(r1, 0x9)
r3 = setfsuid$auto(0xee00)
r4 = setfsuid$auto(0xee01)
setresuid$auto(r3, r4, r3)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000002d80)={0x14a4, 0x0, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0xc, 0x0, 0x1, [@nested={0x8, 0x6, 0x0, 0x1, [@nested={0x4}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_ACTIONS={0x1466, 0x3, 0x0, 0x1, [@generic="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", @typed={0x8, 0x89, 0x0, 0x0, @pid=r2}, @generic="5b276d022c1d55ffb274d55efd9a6186c49c8952fc79767d80f8447436dc755ce3f03bf1239b49f36048002ea9a3b476bd78d04fcc7954fe14a279c68f2558d95c426263b2976361849683db84d94df0e5babf2206a604ecceab52ea446594e8f99521eb5eb238432b5b61e8fdea73df65a347367469a017b70b245be5e886a75ed6e09f1f3b77ca2e5c67f605ff2a90da0408d7dc5f999d8ccf43cce668f3938a1c00206cd995e999bcd4ef618aa52f4ddd47aff2e5d718b5cf39008f5f2903a5ebfa3cdaf671ed85d94cf6f998000f978f52da0ad9ef8a5498949fb47632fa86", @nested={0x14, 0xa4, 0x0, 0x1, [@typed={0xc, 0x74, 0x0, 0x0, @u64=0x3}, @typed={0x4, 0xf6}]}, @generic="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", @nested={0x164, 0x8a, 0x0, 0x1, [@typed={0x8, 0x1c, 0x0, 0x0, @u32}, @typed={0x4, 0x9b}, @nested={0xd3, 0xd4, 0x0, 0x1, [@generic="a241544e7aab180b17d9e43736075e5939223d1335aaa45710644ac00d8d1af0d678a11a2e70b19097cf53e75bc97af2d0eca3346a6403349b11baae7782810024a9244d057af8f1c546fb4d1a6cd1d40167061eb340f9eec617272cbc5ef69532bba94444d6bf79651413cded8bd89fd1781a1e4f91964ee6ce550bbd6dbee2242965193a78b9dd5683e80ff22b2373038fdf9e3aea0e2288097035e8406a681daff58de044ceaf7c2c5605d58c73ede86e71f8d4cbf7a1956e812a368815841581c1a87a04fd", @typed={0x8, 0x158, 0x0, 0x0, @u32=0x304}]}, @typed={0x8, 0x34, 0x0, 0x0, @pid=r2}, @nested={0x4, 0x158}, @generic="cc5ba30aeed8da46628b59bf53505615c7870e691bf70fee258e09b4b73ca651d6a43f5544a3b3670799778c31b1a2b1fb58a46616facddf7d91b5e22d95b11cc614442d1183dea8218474dfa5de01e4811decb81c414821c86b3339954be1fadf76a2a613344808ff35ebb699b3adaaf976e057"]}, @nested={0x57, 0xb7, 0x0, 0x1, [@nested={0x4, 0x6}, @nested={0x4, 0x70}, @typed={0x8, 0x4a, 0x0, 0x0, @uid=r3}, @generic="b47b7f0bb77d5ea40f850f680eb123b2a45913799ae08d87ab34321c821224f48ae6b567ea4bf03bcc4c6c4c44b4fab310cf351101057fd8a7154da5fa37563847f6fd"]}, @generic="6f8e9359cdd05b0edc4fae9606d34c378809499861fa9cfa5873bfde26834863f51171ca24c01559be7c90c6d1109307925ea8e88f8395a132ad7f3e140f06663ed4c9a7f739baadf1ec067da7474d92b5bf5b679a4af0fb8830f5cdcce8bb4b234cd200a9d1bd627874", @generic="7eb9bc1cb9a4656150391ce6cdcf88426c976d5904b84abad1bb087029b5199a79e1c7ea9cb12ce04fd4c5c9887992fa1f1addf10d0bfc707f84ee123608c1ac9fe2"]}]}, 0x14a4}, 0x1, 0x0, 0x0, 0x50}, 0x400c880)

5.4785402s ago: executing program 2 (id=2241):
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x5, 0x801, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0xffffff39)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket(0x23, 0x2, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x0)
prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x400000000009, 0x3fffffffff)
setreuid$auto(0x0, 0x5)
fcntl$auto(r2, 0x400, 0x1)
setresuid$auto(0x2, 0xee01, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x163)
close_range$auto(0x2, 0xa, 0x0)
sendto$auto(r1, 0x0, 0x8000000008000, 0x0, 0x0, 0x80)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
io_uring_setup$auto(0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/advisor_max_cpu\x00', 0x103001, 0x0)
open(0x0, 0x22040, 0x75)
socket(0xa, 0x3, 0x87)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x14}}, 0x24048004)
madvise$auto(0x0, 0x200007, 0x19)

5.339461494s ago: executing program 1 (id=2242):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
io_uring_setup$auto(0x82, 0x0) (async, rerun: 64)
socket(0x2, 0x1, 0x0) (async)
socket(0x2, 0x5, 0x0) (async)
epoll_create$auto(0x7) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r1, 0x0) (async)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/module/apparmor/parameters/enabled\x00', 0x22000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001100)=""/4106, 0x100a)
epoll_ctl$auto(0x5, 0x3, r1, 0x0) (async)
r3 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0) (async)
r4 = socket(0x10, 0x2, 0xc) (async)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002d122900f9dbdf250100110007f022e5156b75bfb557a1f81917af17e1cb5946c531f48560a95345ee0b302a6736dfa64c000bfc140000000087b5bda416418dd146f65f063ecc6d3b4e52b1be1070b74d21b37ae0150b620b83f55c163fbbd65921f3ca6fcc0817255cd504935f678bd87fc83bb6d5ce778c37d30873836bf27bc10d8f4b9524ee04e0868aeb7faa3aa2d5701a263e9bef4fa02a79f22993cf277852793fc736780c6c00305ed92b8ed8a57c6db7f54ce6fd80361f395ec064645351bad5244488a599e3105e50f44af7edc2c58e4dc160f600c5ec096482cd1ebac501e7a11f148d10905d9b0be16dedc4f35ca8ce097cc7fd24be13a5f8dcb6081b819a46b035785cb61d06fa84a1bf084a8a72a11f00240a3eec8fed3f1de16f4f8025601e676a16d89f222869abffcb049edb4ae7d25986abdeb603ad4569fad44ea76f3ec6874ff14f4f6e640f4b6253e033ebe174425b01eb88c4e6ce6f65330d8babd7fdc0bb3d1dba85f2f31f9346b4c79e59f9d20f731af5950297bc", @ANYRESHEX=0x0, @ANYRESHEX=r3], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) (async, rerun: 32)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="01002dbd7000fddbdf25030000000c0001"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080) (rerun: 32)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r4, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) (async)
write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (rerun: 32)

5.338919091s ago: executing program 3 (id=2243):
r0 = landlock_create_ruleset$auto(&(0x7f0000000140)={0xdaa0, 0x1, 0x9}, 0x9, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r2, 0x0, 0x63, 0x0, 0x0)
prctl$auto(0x29, 0x0, 0x0, 0x0, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x2000000006, 0x2)
landlock_restrict_self$auto(r0, 0xc)

3.892069899s ago: executing program 4 (id=2244):
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15) (async)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084) (async)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
memfd_secret$auto(0x0)
mmap$auto(0x0, 0x1009, 0xffb, 0x8000000008011, 0x3, 0x0)
mlockall$auto(0x800000000000005)
r2 = socket(0x23, 0x2, 0x0)
capget$auto(&(0x7f0000000040)={0x2}, &(0x7f0000000200)={0xf17, 0x9, 0x2})
sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x23, 0x0, 0x0, 0x1080020}, 0x1a, &(0x7f00000000c0)={&(0x7f0000000340)={0x28, 0x0, 0x20, 0x70bd29, 0x25dfdbfd}, 0x28}, 0x1, 0x0, 0x0, 0x4048800}, 0x40)
madvise$auto(0x0, 0x200007, 0x19) (async)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x5a043, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0) (async)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/net/snmp\x00', 0x40, 0x0) (async)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/net/snmp\x00', 0x40, 0x0)
pread64$auto(r5, 0x0, 0x80000000, 0x9fffffffd)
pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x0f\xff\x00'/21, 0x100000002, 0x100000001)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @inferred, 0x0, @_sigev_thread={0x0, 0x0}})
mq_timedsend$auto(r1, 0x0, 0x2, 0x9, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)

3.891772612s ago: executing program 1 (id=2245):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
name_to_handle_at$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1003) (async)
ioperm$auto(0x800000005f4, 0x5ad2, 0xffff) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x2, 0x1, 0x0)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x22a02, 0x0)
write$auto(r2, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7\xe6\x04\x8c\x83k', 0x1000000007e)
mremap$auto(0x200000000000, 0x4, 0x4, 0x3, 0x100000000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
socket(0x10, 0x2, 0x4) (async, rerun: 32)
sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="ffa2"], 0x44}, 0x1, 0x0, 0x0, 0x10000000}, 0x40000) (rerun: 32)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
bind$auto(0x3, &(0x7f0000000040)=@tipc=@name={0x1e, 0x2, 0x3, {{0x41, 0x3}, 0x4}}, 0x6a)
r3 = getpid()
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000040), 0xffffffff}, 0x6, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r4 = socket(0x1e, 0x4, 0x0) (async, rerun: 64)
r5 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r5, 0x10f, 0x87, 0x0, 0x14) (async)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/per_cpu/cpu0/trace\x00', 0x286000, 0x0) (async)
bpf$auto(0x7, &(0x7f00000001c0)=@task_fd_query={0x0, r4, 0x8, 0x20016, 0x6c, 0x10000, r1, 0x20000000001804, 0x2}, 0x6f0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0xa}, 0x7}, 0x3, 0x2)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) (async)
r6 = socket(0x28, 0xa, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="97efe8ec", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) (async)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYRES64, @ANYRESOCT=0x0], 0x14}, 0x1, 0x0, 0x0, 0x440b0}, 0x6042855)

2.869401238s ago: executing program 1 (id=2246):
pipe$auto(&(0x7f0000000000))
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x800, 0x6, 0x9, 0x1000008, 0x5f, 0x0, 0x3}, 0x6f3)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x80805, 0x2)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2062, 0x0)
write$auto(r0, 0x0, 0x81)
write$auto(0xffffffffffffffff, 0x0, 0xdda)
r1 = getpid()
process_vm_readv$auto(r1, 0x0, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x8000000000007}, 0x9)
socket(0xa, 0x2, 0x88)

2.846367197s ago: executing program 2 (id=2247):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000)
socket(0x1e, 0x1, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vbi0\x00', 0x80382, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x6)
write$auto(0x4, 0x0, 0x100082)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
listen$auto(0x3, 0x5)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/178, 0xb2)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
mlockall$auto(0x4)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/afs/cells\x00', 0x200800, 0x0)
pread64$auto(r3, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x3ef, 0x9)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000000))
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r4 = socket(0x25, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x14}}, 0x10004010)
ioctl$auto(r0, 0x9, r1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)

2.67092389s ago: executing program 1 (id=2248):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sg0\x00', 0x82802, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x6a)
setsockopt$auto(0x3, 0x10000000084, 0x75, 0x0, 0x8)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000080)="b015cbd3f447d68ff98d947d3d4a28ba28418e3156452782a6360913ef79a3522951f092370198f195a9a63d7f18266b907420c1e8955ad5b81a20", 0x110, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0x5}, 0xfff}, 0x8, 0x311)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x0)
openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000000), 0x20002, 0x0)
r2 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_options\x00', 0x2, 0x0)
read$auto_tracing_iter_fops_trace(r2, &(0x7f0000000380)=""/226, 0xe2)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r3 = socket(0x2, 0x1, 0x0)
setsockopt$auto(r3, 0x6, 0x1f, 0x0, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
r5 = ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r6 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
r7 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000)
recvmmsg$auto(r7, &(0x7f0000000140)={{0x0, 0x3, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x2000000200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
write$auto_proc_clear_refs_operations_internal(r6, 0x0, 0xffffff4b)
mmap$auto(0x5c, 0x400005, 0xe2, 0x1b72, r5, 0xbb22)
r8 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r8, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x1)
mmap$auto(0x0, 0x2, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x1, 0x32, 0x0, 0x7)
shutdown$auto(r0, 0x40006)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x9, 0x0)

2.015192956s ago: executing program 3 (id=2249):
socket(0x1d, 0x2, 0x7)
getpeername$auto(0x3, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_STATS_GET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x2c, r1, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_STATS_HEADER={0x18, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000844}, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
futex$auto(0x0, 0x6, 0x7f, 0x0, 0x0, 0xdd)
futex$auto(0x0, 0x7, 0x8, 0x0, 0x0, 0x0)

1.895278181s ago: executing program 4 (id=2250):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x6)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r0, r0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/lock_policy\x00', 0x82, 0x0)
sendfile$auto(r1, r1, 0x0, 0x5)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video25\x00', 0x82400, 0x0)
ioctl$auto(r2, 0xc0585611, r2)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = gettid()
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@ethernet={0x1, @link_local}, 0x6a)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000)
sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r6, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000dc0)=ANY=[@ANYBLOB='4\x00/\x00', @ANYRES16=r5, @ANYBLOB="cb5b28bd7000ffdb9f251f000000050006000900000005000400000000000800030007000000080002000e000000"], 0x34}}, 0x82)
r7 = getpid()
rt_tgsigqueueinfo$auto(r7, r4, 0x21, &(0x7f0000000400)={@siginfo_0_0={0x3, 0x9, 0xcce3, @_sigfault={0x0, @_trapno=0x3}}})
r8 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r8, &(0x7f0000000040)="205c2020207e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19)
r9 = socket(0xa, 0x1, 0x84)
io_uring_register$auto_IORING_REGISTER_SEND_MSG_RING(r9, 0x1f, &(0x7f00000001c0)="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", 0x8)

1.737868389s ago: executing program 3 (id=2251):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/thermal/cooling_device1/cur_state\x00', 0x20b42, 0x0)
sendfile$auto(r0, r0, 0x0, 0x4f64a1d5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
socket(0x2, 0x3, 0x2)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0xffffff00, 0x8000}, "290000000000000000000000008000"})
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000300)='/dev/fuse\x00', 0x444081, 0x0)
r2 = socket(0x2, 0x3, 0x4)
getsockopt$auto(r2, 0x84, 0x22, 0x0, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x400000003)
r5 = socket(0xa, 0x1, 0x84)
accept4$auto(r5, 0x0, 0x0, 0x0)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
write$auto(0x3, 0x0, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff)
openat$auto_hwsim_simulate_radar_(0xffffffffffffff9c, 0x0, 0x1c1900, 0x0)
r6 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r6, 0xc1105517, &(0x7f00000001c0)={{@inferred, 0x7, 0x109, 0x7, "aab8e80600080043529f895cf5e8ec8f46cbb766439d070a00", @raw=0x2}, 0x8000006, 0x4, 0x6, @raw=0x4, @integer64={0x442df60c, 0x81, 0x7}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"})
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000200)='/dev/log\x00', 0x0, 0x0)
msgctl$auto(0x9, 0x287, 0x0)
keyctl$auto(0x8, 0x0, 0x0, 0x0, 0x7e)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r7 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000880)='/dev/input/event0\x00', 0x40100, 0x0)
ioctl$auto_EVIOCGMASK(r7, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x9})

1.623363578s ago: executing program 2 (id=2252):
r0 = socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
ustat$auto(0x801, 0x0)
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
futex$auto(&(0x7f0000000000)=0x7, 0x9, 0x7, &(0x7f0000000040)={0xb, 0x401}, &(0x7f0000000080)=0x6f5, 0x4)
readv$auto(r0, 0x0, 0x8)

1.559472637s ago: executing program 1 (id=2253):
mmap$auto(0x0, 0x861, 0x100001000000004, 0xfa31, 0x400, 0x8000)
openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x4002c0, 0x0) (async)
r0 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x4002c0, 0x0)
ioctl$auto_BTRFS_IOC_ENCODED_READ(r0, 0x80809440, &(0x7f0000000100)={&(0x7f00000000c0)={&(0x7f0000000040)="8c4b5454c973609741f4d618a1442a3da2179f9b3cf2e01dd1f7774e2e83b6d2cc30f0c49dce544b603248d0b1016d4928a00225163c3511f27e1ecd036f041609e7e664a83b458c8222ecd998ad063f1b65e4ede6af4c71b0e1", 0x12e74821}, 0x9, 0x8, 0x2, 0x5, 0x10000, 0x8763, 0x200, 0x5, "46b7bebe8e62d348bdab246927dbde9d1f54bda1f4687284ac4fd616b5e9d92d379414a658b677c17fec3da259c46d1cecf78440c635718729c7f602a27f1f4c"})
r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x0, 0x0)
ioctl$auto_SG_GET_COMMAND_Q2(r1, 0x2270, &(0x7f0000000080))
io_setup$auto(0x8000003, 0x0) (async)
io_setup$auto(0x8000003, 0x0)

895.191948ms ago: executing program 1 (id=2254):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
r3 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, 0x0, 0x8006, 0x0)
write$auto_proc_uid_map_operations_base(r3, 0x0, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x1c}}, 0x4000)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/free_buffer\x00', 0x24001, 0x0)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x400000008000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0xa22c0, 0x151)
r4 = socket(0x1d, 0x80003, 0x301)
setsockopt$auto(r4, 0x107, 0xf, 0x0, 0x6)

817.35597ms ago: executing program 4 (id=2255):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram4\x00', 0x0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x11, 0x3, 0x2)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000)
socketpair$auto(0x4000002, 0x9, 0x9, 0x0)
sendmmsg$auto(0x3, 0x0, 0x99e, 0x7000000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x288202, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0)
mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/kcore\x00', 0x28000, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x4007, 0xb})
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/user/max_time_namespaces\x00', 0x202, 0x0)
pread64$auto(r1, 0x0, 0x800003, 0x270)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x5, 0x109)
write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230)
close_range$auto(0x2, 0xa, 0x0)
fsconfig$auto_FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000040)='\x00', &(0x7f0000000240)="311d426c6705229aad0d8eac02929ca02f79503079f6a5e963e571ca221dd0db06767b340d81c2add9c77f19713a391f0ad30e704bb67b9312140bf8f881a42be0ba31fdd39773fede310deb9010aaeb4bd27225d36c6860a8130e74ee9b695f42b1793f380ca88d82230eb5cbc28debc313fa837988779023d6133a170aab3769028488ac6addc3dded8da9798c15765137087971ea7104a38dd745cd3028b2bca5252ae76747218b52e2cc74253655a0aba9ee34c98f1bad4712454cae17b5a0f8188e1dfbb03d8ad7ba9dacbe9bdff9dbb2047a36eb51cb3fb3", 0x0)
setsockopt$auto(0x3, 0x0, 0xd0, 0xfffffffffffffffc, 0x4)
openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000000180), 0x381080, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

704.329764ms ago: executing program 2 (id=2256):
close$auto(0xffffffffffffffff)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x10001, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0x1000000eb1, 0x401, 0x8000) (async, rerun: 64)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) (rerun: 64)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) (async)
mmap$auto(0xb72, 0x810004, 0xffa, 0x8000000008011, 0x3, 0x3ff) (async)
setresuid$auto(0x0, 0x0, 0x0) (async)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
bpf$auto(0x24, 0x0, 0x8) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
madvise$auto(0x0, 0x2003ec, 0x14) (async)
mmap$auto(0xfffffffffffffffd, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x9) (async)
ioctl$auto_BTRFS_IOC_SCAN_DEV(0xffffffffffffffff, 0x50009404, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = io_uring_setup$auto(0x59, 0x0) (async)
mmap$auto(0x80, 0x20009, 0xdf, 0xeb1, 0x401, 0x4) (async, rerun: 32)
r3 = socket(0x80000000000000a, 0x2, 0x0) (rerun: 32)
setsockopt$auto(r3, 0x11, 0x64, 0x0, 0x7) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r2) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000280)='/dev/adsp1\x00', 0x4000, 0x0)
ioctl$auto_SNDCTL_DSP_GETBLKSIZE(r1, 0xc0045004, &(0x7f0000001080)="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") (async, rerun: 64)
sendmsg$auto_NL80211_CMD_DEL_PMK(r1, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x80) (async, rerun: 64)
mount$auto(0x0, 0xfffffffffffffffe, 0x0, 0x3, 0xfffffffffffffffe)
write$auto(r0, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6)

384.752531ms ago: executing program 3 (id=2257):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x3, 0x6) (async)
r0 = socket(0x10, 0x3, 0x6)
openat$auto_trace_time_stamp_mode_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/timestamp_mode\x00', 0x480000, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop13/queue/rq_affinity\x00', 0x2062, 0x0)
write$auto(r1, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'team_slave_1\x00', <r3=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4004804)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0x1ac}}, 0x20044001) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0x1ac}}, 0x20044001)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x1}, 0x8000, 0x0, 0x0, 0x6}, 0xd6b}, 0x9, 0x300)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) (async)
r6 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)={0x30, r6, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x474d}, @NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) (async)
sendmsg$auto_NBD_CMD_CONNECT(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)={0x30, r6, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x474d}, @NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
sendmsg$auto_NBD_CMD_STATUS(r4, &(0x7f00000006c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x50, r6, 0x100, 0x70bd28, 0x25dfdbfb, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0xa, 0xa, 'veth1\x00'}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xa000000000000}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xf}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x3}, @NBD_ATTR_SERVER_FLAGS={0xc}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x40)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'pimreg1\x00', <r7=>0x0})
sendmsg$auto_ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000980)={&(0x7f00000007c0)=ANY=[@ANYBLOB="6c010000", @ANYRES16=0x0, @ANYBLOB="00022cbd7000fcdbdf2502000000040001807800018008000100", @ANYRES32=0x0, @ANYBLOB="1400020069703665727370616e30000000000000140002006d616376746170300000000000000000140002006970766c616e31000000000000000000140002006361696630000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="1400020074756e6c30000000000000000000000084000180140002006272696467655f736c6176655f310000140002006272696467655f736c6176655f31000008000100", @ANYRES32=0x0, @ANYBLOB="0800030001000000080003000008000008000300f9ffffff08000300080000001400020076657468315f746f5f687372000000001400020076657468305f766972745f776966690008000300000400005800018008000300b000000014000200776c616e30000000000000000000000008000100", @ANYRES32=r7, @ANYBLOB="140002006e6963766630000000000100000000000800031ea46e0000626647b7a6b616e7dd140002006e723000000000"], 0x16c}, 0x1, 0x0, 0x0, 0x48c44}, 0x40)
r8 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="8b0500000000fedbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x40000)
sendmsg$auto_BATADV_CMD_GET_MESH(r0, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="020129bd7000fedbdf25010000000a0009000180c2000000000005002e000100000039040c292533ec2b9b41cfc8ab05c6c70fd59ad9bf09a9fc493f94094018f394b5a849def4b644a4aba98d4f383edf23dc80ab7e2e465e374112c27411a44efab7d8b485792debd174524472335dacc27aa2504acce457786702fdb181129088f3e062c25d52cae17464f16ad810c8964b22e6fb2ad446adb407e0f188d7"], 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x4004010) (async)
sendmsg$auto_BATADV_CMD_GET_MESH(r0, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="020129bd7000fedbdf25010000000a0009000180c2000000000005002e000100000039040c292533ec2b9b41cfc8ab05c6c70fd59ad9bf09a9fc493f94094018f394b5a849def4b644a4aba98d4f383edf23dc80ab7e2e465e374112c27411a44efab7d8b485792debd174524472335dacc27aa2504acce457786702fdb181129088f3e062c25d52cae17464f16ad810c8964b22e6fb2ad446adb407e0f188d7"], 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x4004010)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)={0x120, 0x0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_PAUSE_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfff}]}, @ETHTOOL_A_PAUSE_HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3800000}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x4}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x2}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x8}, @ETHTOOL_A_PAUSE_HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}]}, 0x120}}, 0x20008080) (async)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)={0x120, 0x0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_PAUSE_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfff}]}, @ETHTOOL_A_PAUSE_HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3800000}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x4}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x2}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x8}, @ETHTOOL_A_PAUSE_HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}]}, 0x120}}, 0x20008080)

159.514141ms ago: executing program 3 (id=2258):
mmap$auto(0x0, 0xeb1f, 0xdab7c34, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff)
mmap$auto(0x8000, 0x20009, 0xe2, 0x12, 0x40000000000a5, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)
sendmsg$auto_SMC_NETLINK_ADD_UEID(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x24030000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)={0xec, r2, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@SMC_NLA_EID_TABLE_UNSPEC={0x16, 0x0, "0929e973aa39c027eab3250c29c23a55ae67"}, @SMC_NLA_EID_TABLE_UNSPEC={0xb3, 0x0, "34d5c36e848f93ad4cf58cf8253264cc5b19f29a0aa44e02f086387f5f1d9938bf9f43959907028680022f3453d8aca1422c8419ae4ccb90c962542a97f79e7f6ca35623983c0ba8889772151ba4456c8e9f9a6f52ce5a59481d4d11babda85d2a872c2a33afd4475aca169c22902e5356f5a1904f18b751034e4df1f7dcf6454d580beeab080bb0c26d950b863595731c41629123b5fcc04163969288a134d4c21490ec1151dcadb47b4cb061bd13"}, @SMC_NLA_EID_TABLE_ENTRY={0xc, 0x1, 'ethtool\x00'}]}, 0xec}, 0x1, 0x0, 0x0, 0x4000080}, 0x20040090)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/set_event_notrace_pid\x00', 0x102, 0x0)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r4, 0x0, 0x81)
r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/audio1\x00', 0x101001, 0x0)
ioctl$auto_SNDCTL_DSP_NONBLOCK(r5, 0x500e, 0x0)
bpf$auto(0x0, 0x0, 0x6f4)
arch_prctl$auto_ARCH_REQ_XCOMP_GUEST_PERM(0x1025, 0xfffffffffffffff7)
sendmmsg$auto(r3, 0x0, 0x8, 0xe4)
write$auto(0x3, 0x0, 0xfffffdef)
r6 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r6, 0xc004743e, 0x0)
ioctl$auto_PPPIOCGFLAGS(r6, 0x8004745a, &(0x7f0000000100)=0x7)

0s ago: executing program 4 (id=2259):
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto_ftrace_set_event_fops_trace_events(r0, &(0x7f0000000680)="7ebf56a6458f174ee83866d376d9c1f11646ab6b30353077704e3fd59c058c5014f2f85132734ab56002ffad8d708ae58c78877c8a05f93703ff88c2dd2377089c7ed1946a9bded6f25284f0161b497d71f2297c2a6f8c37c423197acc7ff92101ebd38ac89e751e5c75846f2532ca3f19c7e4eb452e480ee83edf9d698f86518b", 0x81)
socket(0xa, 0x2, 0x3a)
mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000229bd70001cdddf250200020008000308"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x0)
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/pagemap\x00', 0x0, 0x0)
readv$auto(r1, &(0x7f0000000400)={&(0x7f00000003c0), 0x40}, 0x6)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
r2 = openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000c00)='/proc/self/ns/cgroup\x00', 0x0, 0x0)
mmap$auto(0x10, 0x202000e, 0x3, 0xeb1, 0xfffffffffffffffa, 0xf6)
setsockopt$auto(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x78)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x2000000)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/addr_gen_mode\x00', 0xa0202, 0x0)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
sendfile$auto(r3, r3, 0x0, 0x4a00)
r5 = socket(0x10, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyp5\x00', 0x101e81, 0x0)
socketpair$auto(0x4004, 0x4, 0x7, 0x0)
ioctl$auto_TCFLSH2(r6, 0x40045431, 0x0)
r7 = openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
sendfile$auto(r7, r7, 0x0, 0x1)
sendmsg$auto_CTRL_CMD_GETPOLICY(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000180)=ANY=[], 0x10e}}, 0x30004090)
ioctl$auto_NS_GET_NSTYPE(r2, 0xb703, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

kernel console output (not intermixed with test programs):

ftover after parsing attributes in process `syz.3.1441'.
[  440.795020][T12982] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1441'.
[  441.095162][T12994] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1442'.
[  441.106994][T12986] can: request_module (can-proto-0) failed.
[  442.521693][T13011] Invalid ELF header magic: != ELF
[  444.299242][T13046] can: request_module (can-proto-0) failed.
[  444.371518][T13053] NFSD: Failed to start, no listeners configured.
[  445.126210][T13065] tipc: Started in network mode
[  445.265762][T13065] tipc: Node identity ffffffff, cluster identity 4711
[  445.323081][T13065] tipc: Node number set to 4294967295
[  445.520195][T13066] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  446.391818][T13093] FAULT_INJECTION: forcing a failure.
[  446.391818][T13093] name fail_futex, interval 1, probability 0, space 0, times 0
[  446.432120][T13093] CPU: 0 UID: 0 PID: 13093 Comm: syz.4.1466 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  446.432148][T13093] Tainted: [L]=SOFTLOCKUP
[  446.432154][T13093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  446.432163][T13093] Call Trace:
[  446.432168][T13093]  <TASK>
[  446.432174][T13093]  dump_stack_lvl+0x100/0x190
[  446.432199][T13093]  should_fail_ex.cold+0x5/0xa
[  446.432216][T13093]  get_futex_key+0x295/0x1620
[  446.432237][T13093]  ? __pfx_get_futex_key+0x10/0x10
[  446.432252][T13093]  ? lock_acquire+0x1cf/0x380
[  446.432276][T13093]  futex_wake+0xea/0x530
[  446.432298][T13093]  ? __pfx_futex_wake+0x10/0x10
[  446.432319][T13093]  ? exit_mm_release+0x19/0x30
[  446.432361][T13093]  do_futex+0x32b/0x350
[  446.432380][T13093]  ? __pfx_do_futex+0x10/0x10
[  446.432396][T13093]  ? __might_fault+0xc5/0x140
[  446.432421][T13093]  mm_release+0x24a/0x2f0
[  446.432437][T13093]  do_exit+0x704/0x2b60
[  446.432458][T13093]  ? __pfx_do_exit+0x10/0x10
[  446.432476][T13093]  ? do_raw_spin_lock+0x128/0x260
[  446.432496][T13093]  ? find_held_lock+0x2b/0x80
[  446.432511][T13093]  ? get_signal+0x7e0/0x21e0
[  446.432529][T13093]  do_group_exit+0xd5/0x2a0
[  446.432548][T13093]  get_signal+0x1ec7/0x21e0
[  446.432570][T13093]  ? __pfx_get_signal+0x10/0x10
[  446.432586][T13093]  ? do_futex+0x192/0x350
[  446.432606][T13093]  arch_do_signal_or_restart+0x91/0x770
[  446.432625][T13093]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  446.432648][T13093]  ? __pfx___x64_sys_futex+0x10/0x10
[  446.432670][T13093]  exit_to_user_mode_loop+0x86/0x4a0
[  446.432692][T13093]  do_syscall_64+0x668/0xf80
[  446.432712][T13093]  ? clear_bhb_loop+0x40/0x90
[  446.432730][T13093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.432754][T13093] RIP: 0033:0x7f1cb4d9c799
[  446.432776][T13093] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  446.432802][T13093] RSP: 002b:00007f1cb5d290e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  446.432828][T13093] RAX: fffffffffffffe00 RBX: 00007f1cb5015fa8 RCX: 00007f1cb4d9c799
[  446.432845][T13093] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1cb5015fa8
[  446.432860][T13093] RBP: 00007f1cb5015fa0 R08: 0000000000000000 R09: 0000000000000000
[  446.432876][T13093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  446.432890][T13093] R13: 00007f1cb5016038 R14: 00007ffd122dff20 R15: 00007ffd122e0008
[  446.432926][T13093]  </TASK>
[  446.917488][T13098] futex_wake_op: syz.3.1469 tries to shift op by -2048; fix this program
[  446.978121][T13098] futex_wake_op: syz.3.1469 tries to shift op by -2048; fix this program
[  447.108229][T13106] misc userio: No port type given on /dev/userio
[  447.408045][T13112] can: request_module (can-proto-0) failed.
[  447.545481][T13120] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1470'.
[  448.792462][T13134] NFSD: Failed to start, no listeners configured.
[  449.159347][ T5826] Bluetooth: hci4: unexpected event 0x33 length: 124 > 10
[  450.114998][T13136] NFSD: Failed to start, no listeners configured.
[  450.404180][T13155] block nbd0: NBD_DISCONNECT
[  450.884380][T13158] FAULT_INJECTION: forcing a failure.
[  450.884380][T13158] name failslab, interval 1, probability 0, space 0, times 0
[  450.939328][T13158] CPU: 1 UID: 0 PID: 13158 Comm: syz.4.1478 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  450.939380][T13158] Tainted: [L]=SOFTLOCKUP
[  450.939391][T13158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  450.939408][T13158] Call Trace:
[  450.939418][T13158]  <TASK>
[  450.939429][T13158]  dump_stack_lvl+0x100/0x190
[  450.939477][T13158]  should_fail_ex.cold+0x5/0xa
[  450.939510][T13158]  should_failslab+0xc2/0x120
[  450.939542][T13158]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  450.939583][T13158]  ? prepare_creds+0x2c/0x950
[  450.939631][T13158]  prepare_creds+0x2c/0x950
[  450.939674][T13158]  join_session_keyring+0x17/0x350
[  450.939711][T13158]  lookup_user_key+0xbf9/0x1300
[  450.939746][T13158]  ? __pfx_lookup_user_key+0x10/0x10
[  450.939778][T13158]  ? __pfx_do_futex+0x10/0x10
[  450.939820][T13158]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  450.939861][T13158]  ? xfd_validate_state+0x129/0x190
[  450.939906][T13158]  keyctl_keyring_link+0x57/0xe0
[  450.940025][T13158]  __do_sys_keyctl+0x1bf/0x5a0
[  450.940057][T13158]  do_syscall_64+0x106/0xf80
[  450.940096][T13158]  ? clear_bhb_loop+0x40/0x90
[  450.940131][T13158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.940161][T13158] RIP: 0033:0x7f1cb4d9c799
[  450.940187][T13158] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  450.940215][T13158] RSP: 002b:00007f1cb5d29028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  450.940244][T13158] RAX: ffffffffffffffda RBX: 00007f1cb5015fa0 RCX: 00007f1cb4d9c799
[  450.940265][T13158] RDX: ffffffffffffffff RSI: fffffffffffffffd RDI: 0000000000000008
[  450.940285][T13158] RBP: 00007f1cb4e32c99 R08: 0000000000000002 R09: 0000000000000000
[  450.940303][T13158] R10: 0000000000005092 R11: 0000000000000246 R12: 0000000000000000
[  450.940321][T13158] R13: 00007f1cb5016038 R14: 00007f1cb5015fa0 R15: 00007ffd122e0008
[  450.940359][T13158]  </TASK>
[  451.748160][T13193] FAULT_INJECTION: forcing a failure.
[  451.748160][T13193] name fail_futex, interval 1, probability 0, space 0, times 0
[  451.789773][T13193] CPU: 0 UID: 0 PID: 13193 Comm: syz.4.1486 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  451.789814][T13193] Tainted: [L]=SOFTLOCKUP
[  451.789824][T13193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  451.789840][T13193] Call Trace:
[  451.789849][T13193]  <TASK>
[  451.789859][T13193]  dump_stack_lvl+0x100/0x190
[  451.789900][T13193]  should_fail_ex.cold+0x5/0xa
[  451.789931][T13193]  get_futex_key+0x107c/0x1620
[  451.789965][T13193]  ? __pfx_get_futex_key+0x10/0x10
[  451.789993][T13193]  ? lock_acquire+0x1cf/0x380
[  451.790038][T13193]  futex_wake+0xea/0x530
[  451.790077][T13193]  ? __pfx_futex_wake+0x10/0x10
[  451.790114][T13193]  ? exit_mm_release+0x19/0x30
[  451.790156][T13193]  do_futex+0x32b/0x350
[  451.790189][T13193]  ? __pfx_do_futex+0x10/0x10
[  451.790219][T13193]  ? __might_fault+0xc5/0x140
[  451.790261][T13193]  mm_release+0x24a/0x2f0
[  451.790289][T13193]  do_exit+0x704/0x2b60
[  451.790327][T13193]  ? __pfx_do_exit+0x10/0x10
[  451.790359][T13193]  ? do_raw_spin_lock+0x128/0x260
[  451.790393][T13193]  ? find_held_lock+0x2b/0x80
[  451.790416][T13193]  ? get_signal+0x7e0/0x21e0
[  451.790454][T13193]  do_group_exit+0xd5/0x2a0
[  451.790491][T13193]  get_signal+0x1ec7/0x21e0
[  451.790526][T13193]  ? madvise_unlock+0xa9/0x220
[  451.790557][T13193]  ? __pfx_get_signal+0x10/0x10
[  451.790585][T13193]  ? do_futex+0x192/0x350
[  451.790622][T13193]  arch_do_signal_or_restart+0x91/0x770
[  451.790656][T13193]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  451.790698][T13193]  ? __pfx___x64_sys_futex+0x10/0x10
[  451.790738][T13193]  exit_to_user_mode_loop+0x86/0x4a0
[  451.790774][T13193]  do_syscall_64+0x668/0xf80
[  451.790809][T13193]  ? clear_bhb_loop+0x40/0x90
[  451.790841][T13193]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.790868][T13193] RIP: 0033:0x7f1cb4d9c799
[  451.790890][T13193] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  451.790916][T13193] RSP: 002b:00007f1cb5d290e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  451.790942][T13193] RAX: fffffffffffffe00 RBX: 00007f1cb5015fa8 RCX: 00007f1cb4d9c799
[  451.790960][T13193] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1cb5015fa8
[  451.790976][T13193] RBP: 00007f1cb5015fa0 R08: 0000000000000000 R09: 0000000000000000
[  451.790993][T13193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  451.791009][T13193] R13: 00007f1cb5016038 R14: 00007ffd122dff20 R15: 00007ffd122e0008
[  451.791045][T13193]  </TASK>
[  452.622971][ T5826] Bluetooth: hci0: ACL packet for unknown connection handle 0
[  452.769129][ T5826] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  453.446142][T13238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1497'.
[  453.699596][T13243] can: request_module (can-proto-0) failed.
[  454.573206][T13260] can: request_module (can-proto-0) failed.
[  454.791923][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout
[  455.781377][T13300] NFSD: Failed to start, no listeners configured.
[  456.861351][ T5149] Bluetooth: hci0: command 0x0c1a tx timeout
[  456.962433][T13314] block2mtd: illegal erase size
[  460.158832][T13373] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1527'.
[  461.003294][T13401] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1530'.
[  461.033939][T13401] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1530'.
[  461.329659][T13409] smpboot: CPU 1 is now offline
[  461.859179][T13415] can: request_module (can-proto-0) failed.
[  462.307035][ T5826] Bluetooth: hci2: unexpected event 0x3e length: 508 > 260
[  462.307059][ T5826] Bluetooth: hci2: unexpected subevent 0x02 length: 507 > 260
[  462.323401][ T5826] Bluetooth: hci2: Dropping invalid advertising data
[  462.330435][ T5826] Bluetooth: hci2: unknown advertising packet type: 0xe9
[  462.330463][ T5826] Bluetooth: hci2: Dropping invalid advertising data
[  462.345742][ T5826] Bluetooth: hci2: Malformed LE Event: 0x02
[  463.477447][T13437] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  463.496825][T13437] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  463.547082][T13437] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  463.578408][T13437] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  463.610733][T13437] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  464.180951][T13472] netlink: 346 bytes leftover after parsing attributes in process `syz.2.1547'.
[  464.527545][T13481] can: request_module (can-proto-0) failed.
[  464.994203][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout
[  465.213548][T13508] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1554'.
[  465.530633][T13516] __vm_enough_memory: pid: 13516, comm: syz.3.1558, bytes: 4398046511104 not enough memory for the allocation
[  465.552585][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout
[  465.558813][ T5149] Bluetooth: hci2: command 0x0c1a tx timeout
[  465.615645][ T5149] Bluetooth: hci4: command 0x0c1a tx timeout
[  465.621676][ T5149] Bluetooth: hci3: command 0x0c1a tx timeout
[  466.119414][T13534] can: request_module (can-proto-0) failed.
[  466.980750][T13552] NFSD: Failed to start, no listeners configured.
[  469.473735][T13582] NFSD: Failed to start, no listeners configured.
[  469.827506][T13591] can: request_module (can-proto-0) failed.
[  471.664807][T13628] sd 0:0:1:0: PR command failed: 1026
[  471.741126][T13628] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  471.845655][T13628] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  472.003458][ T5149] Bluetooth: hci2: unexpected event 0x23 length: 127 > 13
[  472.639780][T13655] netlink: 25 bytes leftover after parsing attributes in process `syz.4.1592'.
[  473.624863][T13672] FAULT_INJECTION: forcing a failure.
[  473.624863][T13672] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  473.787803][T13672] CPU: 0 UID: 0 PID: 13672 Comm: syz.4.1595 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  473.787831][T13672] Tainted: [L]=SOFTLOCKUP
[  473.787837][T13672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  473.787847][T13672] Call Trace:
[  473.787853][T13672]  <TASK>
[  473.787860][T13672]  dump_stack_lvl+0x100/0x190
[  473.787889][T13672]  should_fail_ex.cold+0x5/0xa
[  473.787907][T13672]  _copy_from_user+0x2e/0xd0
[  473.787926][T13672]  memdup_user+0x6b/0xe0
[  473.787942][T13672]  strndup_user+0x78/0xe0
[  473.787957][T13672]  __x64_sys_fsopen+0x9e/0x220
[  473.787978][T13672]  do_syscall_64+0x106/0xf80
[  473.787999][T13672]  ? clear_bhb_loop+0x40/0x90
[  473.788021][T13672]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  473.788037][T13672] RIP: 0033:0x7f1cb4d9c799
[  473.788051][T13672] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  473.788066][T13672] RSP: 002b:00007f1cb5d08028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[  473.788083][T13672] RAX: ffffffffffffffda RBX: 00007f1cb5016090 RCX: 00007f1cb4d9c799
[  473.788093][T13672] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  473.788102][T13672] RBP: 00007f1cb4e32c99 R08: 0000000000000000 R09: 0000000000000000
[  473.788111][T13672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  473.788120][T13672] R13: 00007f1cb5016128 R14: 00007f1cb5016090 R15: 00007ffd122e0008
[  473.788139][T13672]  </TASK>
[  474.250949][T13679] futex_wake_op: syz.1.1596 tries to shift op by -2048; fix this program
[  474.381656][T13679] futex_wake_op: syz.1.1596 tries to shift op by -2048; fix this program
[  474.463054][T13670] kexec: Could not allocate control_code_buffer
[  477.151318][T13712] NFSD: Failed to start, no listeners configured.
[  477.706839][T13721] NFSD: Failed to start, no listeners configured.
[  479.541355][T13768] netlink: 4394 bytes leftover after parsing attributes in process `syz.4.1616'.
[  480.859796][T13788] NFSD: Failed to start, no listeners configured.
[  481.150031][T13793] Per memcg swappiness does not exist in cgroup v2. See memory.reclaim or memory.swap.max there
[  481.150031][T13793]  
[  481.583256][T13797] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1622'.
[  482.097571][ T5149] Bluetooth: hci0: unexpected event 0x23 length: 127 > 13
[  482.985825][T13835] FAULT_INJECTION: forcing a failure.
[  482.985825][T13835] name fail_futex, interval 1, probability 0, space 0, times 0
[  483.015431][T13833] NFSD: Failed to start, no listeners configured.
[  483.080724][T13835] CPU: 0 UID: 2519 PID: 13835 Comm: syz.4.1632 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  483.080750][T13835] Tainted: [L]=SOFTLOCKUP
[  483.080757][T13835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  483.080766][T13835] Call Trace:
[  483.080773][T13835]  <TASK>
[  483.080779][T13835]  dump_stack_lvl+0x100/0x190
[  483.080807][T13835]  should_fail_ex.cold+0x5/0xa
[  483.080826][T13835]  get_futex_key+0x1d2/0x1620
[  483.080847][T13835]  ? __pfx_get_futex_key+0x10/0x10
[  483.080864][T13835]  ? __sock_release+0x1fc/0x260
[  483.080948][T13835]  ? __sys_socket+0x14d/0x260
[  483.080965][T13835]  ? __x64_sys_socket+0x72/0xb0
[  483.080989][T13835]  ? do_syscall_64+0x106/0xf80
[  483.081011][T13835]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.081032][T13835]  futex_wait_setup+0x83/0x510
[  483.081060][T13835]  __futex_wait+0x19f/0x300
[  483.081084][T13835]  ? __pfx___futex_wait+0x10/0x10
[  483.081108][T13835]  ? __pfx_futex_wake_mark+0x10/0x10
[  483.081132][T13835]  ? futex_hash+0x2c5/0x380
[  483.081155][T13835]  futex_wait+0xed/0x380
[  483.081177][T13835]  ? __pfx_futex_wait+0x10/0x10
[  483.081208][T13835]  do_futex+0x1ef/0x350
[  483.081227][T13835]  ? __pfx_do_futex+0x10/0x10
[  483.081244][T13835]  ? iput+0x3a/0x40
[  483.081261][T13835]  ? __sock_release+0x184/0x260
[  483.081286][T13835]  __x64_sys_futex+0x34f/0x4d0
[  483.081306][T13835]  ? __sys_socket+0xac/0x260
[  483.081322][T13835]  ? __pfx___x64_sys_futex+0x10/0x10
[  483.081348][T13835]  do_syscall_64+0x106/0xf80
[  483.081368][T13835]  ? clear_bhb_loop+0x40/0x90
[  483.081386][T13835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.081402][T13835] RIP: 0033:0x7f1cb4d9c799
[  483.081415][T13835] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  483.081430][T13835] RSP: 002b:00007f1cb5d290e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  483.081445][T13835] RAX: ffffffffffffffda RBX: 00007f1cb5015fa8 RCX: 00007f1cb4d9c799
[  483.081456][T13835] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1cb5015fa8
[  483.081465][T13835] RBP: 00007f1cb5015fa0 R08: 0000000000000000 R09: 0000000000000000
[  483.081475][T13835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  483.081484][T13835] R13: 00007f1cb5016038 R14: 00007ffd122dff20 R15: 00007ffd122e0008
[  483.081504][T13835]  </TASK>
[  484.001486][T13839] can: request_module (can-proto-0) failed.
[  484.059216][T13839] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1633'.
[  484.392351][T13847] bridge0: port 3(netdevsim1) entered blocking state
[  484.416895][T13847] bridge0: port 3(netdevsim1) entered disabled state
[  484.438153][T13847] netdevsim netdevsim1 netdevsim1: entered allmulticast mode
[  484.466012][T13847] netdevsim netdevsim1 netdevsim1: entered promiscuous mode
[  484.496501][T13847] bridge0: port 3(netdevsim1) entered blocking state
[  484.503491][T13847] bridge0: port 3(netdevsim1) entered forwarding state
[  484.678738][T13850] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  484.706395][T13850] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  488.493755][T13892] Invalid ELF header magic: != ELF
[  490.255571][T13950] FAULT_INJECTION: forcing a failure.
[  490.255571][T13950] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  490.344368][T13950] CPU: 0 UID: 0 PID: 13950 Comm: syz.1.1657 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  490.344396][T13950] Tainted: [L]=SOFTLOCKUP
[  490.344402][T13950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  490.344412][T13950] Call Trace:
[  490.344418][T13950]  <TASK>
[  490.344425][T13950]  dump_stack_lvl+0x100/0x190
[  490.344452][T13950]  should_fail_ex.cold+0x5/0xa
[  490.344467][T13950]  ? prepare_alloc_pages+0x16d/0x5f0
[  490.344487][T13950]  should_fail_alloc_page+0xeb/0x140
[  490.344504][T13950]  prepare_alloc_pages+0x1f0/0x5f0
[  490.344525][T13950]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  490.344550][T13950]  ? reacquire_held_locks+0xce/0x1e0
[  490.344570][T13950]  ? folio_lock_anon_vma_read+0x348/0xe30
[  490.344591][T13950]  ? folio_lock_anon_vma_read+0x348/0xe30
[  490.344613][T13950]  ? __up_read+0x2c5/0x700
[  490.344634][T13950]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  490.344656][T13950]  ? __pfx___up_read+0x10/0x10
[  490.344676][T13950]  ? rmap_walk_anon+0x561/0x870
[  490.344710][T13950]  __folio_alloc_noprof+0x13/0x2f0
[  490.344732][T13950]  alloc_migration_target+0x1d7/0x6d0
[  490.344752][T13950]  migrate_pages_batch+0x4f2/0x4530
[  490.344779][T13950]  ? __pfx_alloc_migration_target+0x10/0x10
[  490.344803][T13950]  ? walk_pgd_range+0x1115/0x1eb0
[  490.344826][T13950]  ? __pfx_migrate_pages_batch+0x10/0x10
[  490.344850][T13950]  ? __pfx_remove_migration_pte+0x10/0x10
[  490.344875][T13950]  migrate_pages_sync+0x12c/0x880
[  490.344895][T13950]  ? __pfx_alloc_migration_target+0x10/0x10
[  490.344916][T13950]  ? __pfx_migrate_pages_sync+0x10/0x10
[  490.344933][T13950]  ? __pfx_queue_pages_test_walk+0x10/0x10
[  490.344954][T13950]  ? walk_page_range_mm_unsafe+0x32c/0xa10
[  490.344980][T13950]  migrate_pages+0x1aae/0x28a0
[  490.345000][T13950]  ? __pfx_alloc_migration_target+0x10/0x10
[  490.345021][T13950]  ? __pfx_migrate_pages+0x10/0x10
[  490.345040][T13950]  ? queue_pages_range+0x11e/0x180
[  490.345064][T13950]  ? __up_read+0x2c5/0x700
[  490.345084][T13950]  ? __pfx___up_read+0x10/0x10
[  490.345103][T13950]  ? do_migrate_pages+0x451/0x740
[  490.345118][T13950]  ? do_migrate_pages+0x451/0x740
[  490.345137][T13950]  do_migrate_pages+0x488/0x740
[  490.345158][T13950]  ? __pfx_do_migrate_pages+0x10/0x10
[  490.345177][T13950]  ? rcu_is_watching+0x12/0xc0
[  490.345199][T13950]  ? cap_capable+0x107/0x460
[  490.345221][T13950]  ? get_task_mm+0xc2/0xf0
[  490.345237][T13950]  ? security_capable+0xbd/0x260
[  490.345262][T13950]  kernel_migrate_pages+0x560/0x700
[  490.345279][T13950]  ? __pfx_kernel_migrate_pages+0x10/0x10
[  490.345295][T13950]  ? xfd_validate_state+0x129/0x190
[  490.345321][T13950]  __x64_sys_migrate_pages+0x96/0x100
[  490.345338][T13950]  ? lockdep_hardirqs_on+0x78/0x100
[  490.345362][T13950]  do_syscall_64+0x106/0xf80
[  490.345382][T13950]  ? clear_bhb_loop+0x40/0x90
[  490.345402][T13950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.345417][T13950] RIP: 0033:0x7fe32399c799
[  490.345432][T13950] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  490.345447][T13950] RSP: 002b:00007fe3248a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000100
[  490.345462][T13950] RAX: ffffffffffffffda RBX: 00007fe323c15fa0 RCX: 00007fe32399c799
[  490.345472][T13950] RDX: 0000200000000100 RSI: 000000000000000a RDI: 0000000000000000
[  490.345482][T13950] RBP: 00007fe323a32c99 R08: 0000000000000000 R09: 0000000000000000
[  490.345491][T13950] R10: 0000200000000140 R11: 0000000000000246 R12: 0000000000000000
[  490.345501][T13950] R13: 00007fe323c16038 R14: 00007fe323c15fa0 R15: 00007ffc7fc63ab8
[  490.345522][T13950]  </TASK>
[  491.581273][T13969] FAULT_INJECTION: forcing a failure.
[  491.581273][T13969] name failslab, interval 1, probability 0, space 0, times 0
[  491.612740][T13969] CPU: 0 UID: 0 PID: 13969 Comm: syz.3.1661 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  491.612765][T13969] Tainted: [L]=SOFTLOCKUP
[  491.612772][T13969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  491.612782][T13969] Call Trace:
[  491.612788][T13969]  <TASK>
[  491.612794][T13969]  dump_stack_lvl+0x100/0x190
[  491.612822][T13969]  should_fail_ex.cold+0x5/0xa
[  491.612841][T13969]  should_failslab+0xc2/0x120
[  491.612858][T13969]  __kmalloc_cache_node_noprof+0x7d/0x770
[  491.612882][T13969]  ? blkg_alloc+0xbd/0xae0
[  491.612992][T13969]  ? __xa_insert+0x20b/0x320
[  491.613009][T13969]  blkg_alloc+0xbd/0xae0
[  491.613030][T13969]  ? __alloc_disk_node+0x2d4/0x6b0
[  491.613078][T13969]  blkcg_init_disk+0x51/0x580
[  491.613101][T13969]  __alloc_disk_node+0x2f6/0x6b0
[  491.613119][T13969]  __blk_mq_alloc_disk+0x89/0x120
[  491.613184][T13969]  nbd_dev_add+0x492/0xb10
[  491.613238][T13969]  ? find_held_lock+0x2b/0x80
[  491.613254][T13969]  ? __pfx_nbd_dev_add+0x10/0x10
[  491.613275][T13969]  ? nbd_genl_connect+0x131a/0x1a40
[  491.613303][T13969]  ? bpf_lsm_capable+0x9/0x10
[  491.613321][T13969]  ? __radix_tree_lookup+0x217/0x2b0
[  491.613354][T13969]  nbd_genl_connect+0xb8d/0x1a40
[  491.613370][T13969]  ? rcu_is_watching+0x12/0xc0
[  491.613394][T13969]  ? __pfx_nbd_genl_connect+0x10/0x10
[  491.613410][T13969]  ? __nla_parse+0x40/0x60
[  491.613434][T13969]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[  491.613486][T13969]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[  491.613507][T13969]  genl_family_rcv_msg_doit+0x214/0x300
[  491.613526][T13969]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  491.613542][T13969]  ? genl_get_cmd+0x3ef/0x720
[  491.613563][T13969]  ? __dev_queue_xmit+0x5af/0x4800
[  491.613624][T13969]  ? __radix_tree_lookup+0x217/0x2b0
[  491.613647][T13969]  genl_rcv_msg+0x560/0x800
[  491.613666][T13969]  ? __pfx_genl_rcv_msg+0x10/0x10
[  491.613683][T13969]  ? __pfx_nbd_genl_connect+0x10/0x10
[  491.613706][T13969]  netlink_rcv_skb+0x159/0x420
[  491.613751][T13969]  ? __pfx_genl_rcv_msg+0x10/0x10
[  491.613768][T13969]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  491.613799][T13969]  ? netlink_deliver_tap+0x1ae/0xcc0
[  491.613824][T13969]  genl_rcv+0x28/0x40
[  491.613838][T13969]  netlink_unicast+0x5aa/0x870
[  491.613862][T13969]  ? __pfx_netlink_unicast+0x10/0x10
[  491.613892][T13969]  netlink_sendmsg+0x8b0/0xda0
[  491.613917][T13969]  ? __pfx_netlink_sendmsg+0x10/0x10
[  491.613938][T13969]  ? __import_iovec+0x1d2/0x640
[  491.613987][T13969]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  491.614014][T13969]  ____sys_sendmsg+0x9e1/0xb70
[  491.614030][T13969]  ? __pfx_netlink_sendmsg+0x10/0x10
[  491.614054][T13969]  ? __pfx_____sys_sendmsg+0x10/0x10
[  491.614074][T13969]  ? __pfx_futex_wake_mark+0x10/0x10
[  491.614099][T13969]  ___sys_sendmsg+0x190/0x1e0
[  491.614117][T13969]  ? __pfx____sys_sendmsg+0x10/0x10
[  491.614157][T13969]  __sys_sendmsg+0x170/0x220
[  491.614181][T13969]  ? __pfx___sys_sendmsg+0x10/0x10
[  491.614201][T13969]  ? __x64_sys_futex+0x34f/0x4d0
[  491.614232][T13969]  do_syscall_64+0x106/0xf80
[  491.614253][T13969]  ? clear_bhb_loop+0x40/0x90
[  491.614278][T13969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  491.614294][T13969] RIP: 0033:0x7fa0fd79c799
[  491.614308][T13969] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  491.614323][T13969] RSP: 002b:00007fa0fe5ea028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  491.614339][T13969] RAX: ffffffffffffffda RBX: 00007fa0fda15fa0 RCX: 00007fa0fd79c799
[  491.614350][T13969] RDX: 0000000020040000 RSI: 0000200000000500 RDI: 0000000000000009
[  491.614360][T13969] RBP: 00007fa0fd832c99 R08: 0000000000000000 R09: 0000000000000000
[  491.614369][T13969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  491.614379][T13969] R13: 00007fa0fda16038 R14: 00007fa0fda15fa0 R15: 00007ffd3b075d28
[  491.614400][T13969]  </TASK>
[  494.239154][T13969] nbd: failed to add new device
[  494.627081][T13991] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1667'.
[  495.642505][   T30] audit: type=1800 audit(1774004993.782:13): pid=14018 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1673" name="mtdblock0" dev="tmpfs" ino=2395 res=0 errno=0
[  496.297520][ T5149] Bluetooth: hci2: unexpected event 0x20 length: 123 > 7
[  496.329876][ T5149] Bluetooth: hci2: unexpected event 0x20 length: 123 > 7
[  498.506079][T14073] FAULT_INJECTION: forcing a failure.
[  498.506079][T14073] name failslab, interval 1, probability 0, space 0, times 0
[  498.648924][T14073] CPU: 0 UID: 0 PID: 14073 Comm: syz.1.1684 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  498.648950][T14073] Tainted: [L]=SOFTLOCKUP
[  498.648956][T14073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  498.648973][T14073] Call Trace:
[  498.648979][T14073]  <TASK>
[  498.648985][T14073]  dump_stack_lvl+0x100/0x190
[  498.649013][T14073]  should_fail_ex.cold+0x5/0xa
[  498.649032][T14073]  should_failslab+0xc2/0x120
[  498.649049][T14073]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  498.649072][T14073]  ? sock_alloc_inode+0x25/0x1c0
[  498.649089][T14073]  ? __pfx_sock_alloc_inode+0x10/0x10
[  498.649104][T14073]  sock_alloc_inode+0x25/0x1c0
[  498.649118][T14073]  alloc_inode+0x68/0x250
[  498.649138][T14073]  sock_alloc+0x44/0x280
[  498.649159][T14073]  ? security_socket_create+0x7f/0x250
[  498.649243][T14073]  __sock_create+0xc2/0x860
[  498.649263][T14073]  __sys_socket+0x14d/0x260
[  498.649281][T14073]  ? __pfx___sys_socket+0x10/0x10
[  498.649303][T14073]  __x64_sys_socket+0x72/0xb0
[  498.649320][T14073]  ? lockdep_hardirqs_on+0x78/0x100
[  498.649341][T14073]  do_syscall_64+0x106/0xf80
[  498.649361][T14073]  ? clear_bhb_loop+0x40/0x90
[  498.649380][T14073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  498.649396][T14073] RIP: 0033:0x7fe32399c799
[  498.649410][T14073] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  498.649425][T14073] RSP: 002b:00007fe3248a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  498.649441][T14073] RAX: ffffffffffffffda RBX: 00007fe323c15fa0 RCX: 00007fe32399c799
[  498.649451][T14073] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  498.649460][T14073] RBP: 00007fe323a32c99 R08: 0000000000000000 R09: 0000000000000000
[  498.649469][T14073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  498.649479][T14073] R13: 00007fe323c16038 R14: 00007fe323c15fa0 R15: 00007ffc7fc63ab8
[  498.649499][T14073]  </TASK>
[  498.649513][T14073] socket: no more sockets
[  499.161376][T14082] mkiss: ax0: crc mode is auto.
[  499.947377][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  499.953684][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  501.816409][T14151] openvswitch: netlink: Geneve opt len 1 is not a multiple of 4.
[  505.929643][T14230] block2mtd: illegal erase size
[  506.781184][T14244] futex_wake_op: syz.2.1719 tries to shift op by -2048; fix this program
[  508.014480][T14272] openvswitch: netlink: Geneve opt len 1 is not a multiple of 4.
[  508.796145][T14289] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input23
[  508.947875][T14292] ubi2: attaching mtd2
[  508.990014][T14292] ubi2 error: ubi_attach_mtd_dev: bad VID header (6) or data offsets (70)
[  511.853837][T14331] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24
[  512.837582][T14340] NFSD: Failed to start, no listeners configured.
[  513.074467][   T30] audit: type=1800 audit(1774005011.303:14): pid=14357 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1744" name="mtdblock0" dev="tmpfs" ino=2395 res=0 errno=0
[  515.221586][T14406] IPVS: length: 32768 != 24
[  515.462670][T14408] bond0: no command found in slaves file - use +ifname or -ifname
[  515.725731][T14417] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1753'.
[  516.484480][T14429] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1756'.
[  516.535066][   T30] audit: type=1800 audit(1774005014.791:15): pid=14431 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1757" name="mtdblock0" dev="tmpfs" ino=2395 res=0 errno=0
[  517.331293][T14440] futex_wake_op: syz.4.1760 tries to shift op by -2048; fix this program
[  517.369618][T14441] NFSD: Failed to start, no listeners configured.
[  517.399712][T14443] 0x000000000001-0x000000020000 : ""
[  517.477958][T14443] ftl_cs: FTL header corrupt!
[  518.334231][T14463] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1764'.
[  518.465814][T14465] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1764'.
[  519.208617][T14471] nbd: must specify at least one socket
[  520.790993][   T30] audit: type=1800 audit(1774005019.063:16): pid=14504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1777" name="mtdblock0" dev="tmpfs" ino=2395 res=0 errno=0
[  521.762433][T14534] can: request_module (can-proto-0) failed.
[  521.872326][T14538] Invalid ELF header magic: != ELF
[  522.142919][   T30] audit: type=1800 audit(1774005020.430:17): pid=14544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1787" name="mtdblock0" dev="tmpfs" ino=2395 res=0 errno=0
[  522.749963][T14562] NFSD: Failed to start, no listeners configured.
[  523.353477][T14571] NFSD: Failed to start, no listeners configured.
[  523.619887][T14578] FAULT_INJECTION: forcing a failure.
[  523.619887][T14578] name fail_futex, interval 1, probability 0, space 0, times 0
[  523.633645][T14578] CPU: 0 UID: 0 PID: 14578 Comm: syz.1.1794 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  523.633670][T14578] Tainted: [L]=SOFTLOCKUP
[  523.633676][T14578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  523.633686][T14578] Call Trace:
[  523.633692][T14578]  <TASK>
[  523.633699][T14578]  dump_stack_lvl+0x100/0x190
[  523.633728][T14578]  should_fail_ex.cold+0x5/0xa
[  523.633746][T14578]  should_fail_futex+0x4c/0x60
[  523.633767][T14578]  futex_lock_pi_atomic+0x12d/0xaf0
[  523.633793][T14578]  futex_lock_pi+0x246/0x7b0
[  523.633816][T14578]  ? __pfx_futex_lock_pi+0x10/0x10
[  523.633837][T14578]  ? preempt_schedule_common+0x42/0xc0
[  523.633859][T14578]  ? preempt_schedule_thunk+0x16/0x30
[  523.633884][T14578]  ? __pfx_try_to_wake_up+0x10/0x10
[  523.633904][T14578]  ? futex_private_hash_put+0x107/0x1c0
[  523.633924][T14578]  ? __pfx_futex_wake_mark+0x10/0x10
[  523.633950][T14578]  ? ksys_write+0x190/0x250
[  523.633964][T14578]  ? ksys_write+0x190/0x250
[  523.633981][T14578]  do_futex+0x18a/0x350
[  523.634000][T14578]  ? __pfx_do_futex+0x10/0x10
[  523.634024][T14578]  __x64_sys_futex+0x34f/0x4d0
[  523.634045][T14578]  ? __pfx___x64_sys_futex+0x10/0x10
[  523.634070][T14578]  do_syscall_64+0x106/0xf80
[  523.634090][T14578]  ? clear_bhb_loop+0x40/0x90
[  523.634109][T14578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  523.634125][T14578] RIP: 0033:0x7fe32399c799
[  523.634138][T14578] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  523.634153][T14578] RSP: 002b:00007fe3248a8028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  523.634168][T14578] RAX: ffffffffffffffda RBX: 00007fe323c15fa0 RCX: 00007fe32399c799
[  523.634179][T14578] RDX: 0000000000000001 RSI: 0000000000000006 RDI: 0000200000000080
[  523.634188][T14578] RBP: 00007fe323a32c99 R08: 0000000000000000 R09: 00000000fffffffa
[  523.634198][T14578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  523.634207][T14578] R13: 00007fe323c16038 R14: 00007fe323c15fa0 R15: 00007ffc7fc63ab8
[  523.634231][T14578]  </TASK>
[  525.374304][T14601] netlink: 255 bytes leftover after parsing attributes in process `syz.1.1799'.
[  525.509214][T14603] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1798'.
[  528.971732][T14680] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1816'.
[  529.476661][T14722] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1823'.
[  530.707814][T14744] FAULT_INJECTION: forcing a failure.
[  530.707814][T14744] name failslab, interval 1, probability 0, space 0, times 0
[  530.786681][T14744] CPU: 0 UID: 0 PID: 14744 Comm: syz.1.1828 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  530.786708][T14744] Tainted: [L]=SOFTLOCKUP
[  530.786714][T14744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  530.786724][T14744] Call Trace:
[  530.786730][T14744]  <TASK>
[  530.786737][T14744]  dump_stack_lvl+0x100/0x190
[  530.786765][T14744]  should_fail_ex.cold+0x5/0xa
[  530.786783][T14744]  ? realloc_user_queue+0xe9/0x320
[  530.786858][T14744]  should_failslab+0xc2/0x120
[  530.786876][T14744]  __kmalloc_noprof+0xe0/0x850
[  530.786901][T14744]  realloc_user_queue+0xe9/0x320
[  530.786920][T14744]  ? __pfx_snd_timer_user_open+0x10/0x10
[  530.786938][T14744]  snd_timer_user_open+0xfc/0x180
[  530.786957][T14744]  snd_open+0x22d/0x4c0
[  530.786973][T14744]  ? __pfx_snd_open+0x10/0x10
[  530.786988][T14744]  chrdev_open+0x234/0x6a0
[  530.787003][T14744]  ? __pfx_apparmor_file_open+0x10/0x10
[  530.787020][T14744]  ? __pfx_chrdev_open+0x10/0x10
[  530.787036][T14744]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  530.787056][T14744]  do_dentry_open+0x6d8/0x1660
[  530.787071][T14744]  ? __pfx_chrdev_open+0x10/0x10
[  530.787091][T14744]  vfs_open+0x82/0x3f0
[  530.787112][T14744]  path_openat+0x208c/0x31a0
[  530.787134][T14744]  ? __pfx_path_openat+0x10/0x10
[  530.787157][T14744]  do_file_open+0x20e/0x430
[  530.787173][T14744]  ? __pfx_do_file_open+0x10/0x10
[  530.787202][T14744]  ? alloc_fd+0x476/0x790
[  530.787219][T14744]  ? do_getname+0x191/0x390
[  530.787238][T14744]  do_sys_openat2+0x10d/0x1e0
[  530.787257][T14744]  ? __pfx_do_sys_openat2+0x10/0x10
[  530.787278][T14744]  ? __fget_files+0x21f/0x3d0
[  530.787295][T14744]  __x64_sys_openat+0x12d/0x210
[  530.787315][T14744]  ? __pfx___x64_sys_openat+0x10/0x10
[  530.787342][T14744]  do_syscall_64+0x106/0xf80
[  530.787370][T14744]  ? clear_bhb_loop+0x40/0x90
[  530.787389][T14744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  530.787405][T14744] RIP: 0033:0x7fe32399c799
[  530.787419][T14744] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  530.787435][T14744] RSP: 002b:00007fe3248a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  530.787451][T14744] RAX: ffffffffffffffda RBX: 00007fe323c15fa0 RCX: 00007fe32399c799
[  530.787462][T14744] RDX: 0000000000002000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  530.787472][T14744] RBP: 00007fe323a32c99 R08: 0000000000000000 R09: 0000000000000000
[  530.787482][T14744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  530.787492][T14744] R13: 00007fe323c16038 R14: 00007fe323c15fa0 R15: 00007ffc7fc63ab8
[  530.787512][T14744]  </TASK>
[  531.984658][T14760] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  532.004219][T14760] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  533.882565][T14821] NFSD: Failed to start, no listeners configured.
[  534.319446][T14827] can: request_module (can-proto-4) failed.
[  535.006621][T14838] NFSD: Failed to start, no listeners configured.
[  537.318014][T14872] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1857'.
[  537.469312][T14882] NFSD: Failed to start, no listeners configured.
[  537.572751][T14872] ipvlan0: entered promiscuous mode
[  537.618079][T14872] ipvlan0: entered allmulticast mode
[  537.693031][T14872] veth0_vlan: entered allmulticast mode
[  538.546084][T14888] NFSD: Failed to start, no listeners configured.
[  538.899750][T14905] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  538.991774][T14905] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  539.085295][T14905] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  539.184216][T14905] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  539.207317][T14912] NFSD: Failed to start, no listeners configured.
[  539.297661][T14905] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  540.237615][T14934] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1870'.
[  540.904316][ T5149] Bluetooth: hci0: command 0x0c1a tx timeout
[  540.989081][ T5149] Bluetooth: hci2: command 0x0c1a tx timeout
[  541.142937][ T5149] Bluetooth: hci1: command 0x0c1a tx timeout
[  541.222902][ T5149] Bluetooth: hci3: command 0x0c1a tx timeout
[  541.302053][ T5149] Bluetooth: hci4: command 0x0c1a tx timeout
[  541.437565][   T30] audit: type=1800 audit(1774006059.815:18): pid=14955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1876" name="nullb0" dev="tmpfs" ino=728 res=0 errno=0
[  541.552735][T14965] zswap: compressor  not available
[  543.290361][ T5149] Bluetooth: hci4: unexpected subevent 0x05 length: 123 > 12
[  543.772038][T15014] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1891'.
[  543.916985][T15019] binder: 15017:15019 ioctl c0306201 0 returned -14
[  544.281578][T15028] netlink: 'syz.2.1895': attribute type 11 has an invalid length.
[  544.332229][T15028] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  544.593736][T15030] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1896'.
[  545.360940][ T5149] Bluetooth: hci4: command 0x0c1a tx timeout
[  546.489254][T15078] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1906'.
[  547.376683][T15097] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1909'.
[  547.453359][T15099] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1909'.
[  551.535892][T15097] veth0_macvtap: left promiscuous mode
[  551.566654][T15097] macvtap0: entered promiscuous mode
[  551.612113][T15097] macvtap0: entered allmulticast mode
[  551.797131][T15111] FAULT_INJECTION: forcing a failure.
[  551.797131][T15111] name fail_futex, interval 1, probability 0, space 0, times 0
[  551.810026][T15111] CPU: 0 UID: 0 PID: 15111 Comm: syz.1.1913 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  551.810050][T15111] Tainted: [L]=SOFTLOCKUP
[  551.810057][T15111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  551.810066][T15111] Call Trace:
[  551.810072][T15111]  <TASK>
[  551.810078][T15111]  dump_stack_lvl+0x100/0x190
[  551.810106][T15111]  should_fail_ex.cold+0x5/0xa
[  551.810125][T15111]  should_fail_futex+0x4c/0x60
[  551.810143][T15111]  futex_lock_pi_atomic+0xe7/0xaf0
[  551.810168][T15111]  futex_lock_pi+0x246/0x7b0
[  551.810192][T15111]  ? __pfx_futex_lock_pi+0x10/0x10
[  551.810215][T15111]  ? __pfx___futex_wait+0x10/0x10
[  551.810236][T15111]  ? lockdep_hardirqs_on+0x78/0x100
[  551.810273][T15111]  ? __pfx_futex_wake_mark+0x10/0x10
[  551.810298][T15111]  ? rcu_read_lock_any_held+0x6a/0xa0
[  551.810313][T15111]  ? vfs_write+0x15d/0x1070
[  551.810329][T15111]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  551.810357][T15111]  do_futex+0x18a/0x350
[  551.810376][T15111]  ? __pfx_do_futex+0x10/0x10
[  551.810395][T15111]  ? __pfx_do_sys_openat2+0x10/0x10
[  551.810420][T15111]  __x64_sys_futex+0x34f/0x4d0
[  551.810442][T15111]  ? __pfx___x64_sys_futex+0x10/0x10
[  551.810469][T15111]  do_syscall_64+0x106/0xf80
[  551.810489][T15111]  ? clear_bhb_loop+0x40/0x90
[  551.810507][T15111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.810524][T15111] RIP: 0033:0x7fe32399c799
[  551.810537][T15111] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  551.810551][T15111] RSP: 002b:00007fe3248a8028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  551.810565][T15111] RAX: ffffffffffffffda RBX: 00007fe323c15fa0 RCX: 00007fe32399c799
[  551.810575][T15111] RDX: 0000000000000001 RSI: 0000000000000006 RDI: 0000200000000080
[  551.810585][T15111] RBP: 00007fe323a32c99 R08: 0000000000000000 R09: 00000000fffffffa
[  551.810594][T15111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  551.810604][T15111] R13: 00007fe323c16038 R14: 00007fe323c15fa0 R15: 00007ffc7fc63ab8
[  551.810623][T15111]  </TASK>
[  552.665917][T15122] netlink: 306 bytes leftover after parsing attributes in process `syz.2.1916'.
[  552.827935][T15126] NFSD: Failed to start, no listeners configured.
[  553.336277][T15129] zswap: compressor  not available
[  553.507001][T15135] NFSD: Failed to start, no listeners configured.
[  553.749524][T15146] Invalid ELF header magic: != ELF
[  554.599835][T15164] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1923'.
[  554.662308][T15167] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1923'.
[  554.903976][T15164] veth0_macvtap: left promiscuous mode
[  555.224923][T15164] macvtap0: entered promiscuous mode
[  555.293845][T15164] macvtap0: entered allmulticast mode
[  556.771314][ T5149] Bluetooth: hci2: unexpected event 0x33 length: 124 > 10
[  556.795840][T15198] NFSD: Failed to start, no listeners configured.
[  557.841077][T15217] phram: not enough arguments
[  558.720091][T15227] NFSD: Failed to start, no listeners configured.
[  559.639195][T15248] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1940'.
[  560.060100][T15257] NFSD: Failed to start, no listeners configured.
[  560.928995][T15259] NFSD: Failed to start, no listeners configured.
[  561.043008][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  561.049382][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  562.271316][T15285] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1946'.
[  563.397421][T15319] FAULT_INJECTION: forcing a failure.
[  563.397421][T15319] name failslab, interval 1, probability 0, space 0, times 0
[  563.467159][T15319] CPU: 0 UID: 0 PID: 15319 Comm: syz.3.1953 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  563.467187][T15319] Tainted: [L]=SOFTLOCKUP
[  563.467193][T15319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  563.467209][T15319] Call Trace:
[  563.467215][T15319]  <TASK>
[  563.467221][T15319]  dump_stack_lvl+0x100/0x190
[  563.467249][T15319]  should_fail_ex.cold+0x5/0xa
[  563.467267][T15319]  ? snd_midi_event_new+0xa1/0x210
[  563.467355][T15319]  should_failslab+0xc2/0x120
[  563.467374][T15319]  __kmalloc_noprof+0xe0/0x850
[  563.467400][T15319]  snd_midi_event_new+0xa1/0x210
[  563.467417][T15319]  snd_virmidi_output_open+0x106/0x670
[  563.467435][T15319]  open_substream+0x480/0x9e0
[  563.467484][T15319]  rawmidi_open_priv+0x595/0x6f0
[  563.467507][T15319]  snd_rawmidi_open+0x4c9/0xba0
[  563.467530][T15319]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  563.467552][T15319]  ? __pfx_default_wake_function+0x10/0x10
[  563.467570][T15319]  ? kobject_get_unless_zero+0x156/0x200
[  563.467645][T15319]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  563.467665][T15319]  snd_open+0x22d/0x4c0
[  563.467682][T15319]  ? __pfx_snd_open+0x10/0x10
[  563.467697][T15319]  chrdev_open+0x234/0x6a0
[  563.467716][T15319]  ? __pfx_apparmor_file_open+0x10/0x10
[  563.467731][T15319]  ? __pfx_chrdev_open+0x10/0x10
[  563.467747][T15319]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  563.467768][T15319]  do_dentry_open+0x6d8/0x1660
[  563.467783][T15319]  ? __pfx_chrdev_open+0x10/0x10
[  563.467803][T15319]  vfs_open+0x82/0x3f0
[  563.467825][T15319]  path_openat+0x208c/0x31a0
[  563.467847][T15319]  ? __pfx_path_openat+0x10/0x10
[  563.467870][T15319]  do_file_open+0x20e/0x430
[  563.467887][T15319]  ? __pfx_do_file_open+0x10/0x10
[  563.467916][T15319]  ? alloc_fd+0x476/0x790
[  563.467933][T15319]  ? do_getname+0x191/0x390
[  563.467953][T15319]  do_sys_openat2+0x10d/0x1e0
[  563.467972][T15319]  ? __pfx_do_sys_openat2+0x10/0x10
[  563.467993][T15319]  ? __fget_files+0x21f/0x3d0
[  563.468011][T15319]  __x64_sys_openat+0x12d/0x210
[  563.468031][T15319]  ? __pfx___x64_sys_openat+0x10/0x10
[  563.468058][T15319]  do_syscall_64+0x106/0xf80
[  563.468078][T15319]  ? clear_bhb_loop+0x40/0x90
[  563.468097][T15319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  563.468112][T15319] RIP: 0033:0x7fa0fd79c799
[  563.468126][T15319] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  563.468142][T15319] RSP: 002b:00007fa0fe5ea028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  563.468158][T15319] RAX: ffffffffffffffda RBX: 00007fa0fda15fa0 RCX: 00007fa0fd79c799
[  563.468169][T15319] RDX: 0000000000002841 RSI: 0000200000000240 RDI: ffffffffffffff9c
[  563.468179][T15319] RBP: 00007fa0fd832c99 R08: 0000000000000000 R09: 0000000000000000
[  563.468188][T15319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  563.468204][T15319] R13: 00007fa0fda16038 R14: 00007fa0fda15fa0 R15: 00007ffd3b075d28
[  563.468225][T15319]  </TASK>
[  565.131028][T15345] bcache: register_bcache() error : Not a bcache superblock (bad offset)
[  565.300615][T15346] NFSD: Failed to start, no listeners configured.
[  568.686339][T15410] FAULT_INJECTION: forcing a failure.
[  568.686339][T15410] name failslab, interval 1, probability 0, space 0, times 0
[  568.750081][T15410] CPU: 0 UID: 0 PID: 15410 Comm: syz.4.1978 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  568.750109][T15410] Tainted: [L]=SOFTLOCKUP
[  568.750115][T15410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  568.750125][T15410] Call Trace:
[  568.750131][T15410]  <TASK>
[  568.750137][T15410]  dump_stack_lvl+0x100/0x190
[  568.750166][T15410]  should_fail_ex.cold+0x5/0xa
[  568.750185][T15410]  should_failslab+0xc2/0x120
[  568.750202][T15410]  __kmalloc_cache_noprof+0x7a/0x6f0
[  568.750221][T15410]  ? proc_thread_self_get_link+0x1a6/0x210
[  568.750247][T15410]  proc_thread_self_get_link+0x1a6/0x210
[  568.750270][T15410]  pick_link+0xac2/0x13c0
[  568.750291][T15410]  ? __pfx_proc_thread_self_get_link+0x10/0x10
[  568.750315][T15410]  step_into_slowpath+0x9ba/0xf90
[  568.750340][T15410]  ? __pfx_step_into_slowpath+0x10/0x10
[  568.750365][T15410]  ? lookup_fast+0x2da/0x600
[  568.750384][T15410]  ? inode_permission+0x374/0x620
[  568.750404][T15410]  link_path_walk+0xf28/0x1cc0
[  568.750432][T15410]  path_openat+0x1be/0x31a0
[  568.750447][T15410]  ? kasan_save_stack+0x3f/0x50
[  568.750468][T15410]  ? kasan_save_stack+0x30/0x50
[  568.750489][T15410]  ? kasan_save_track+0x14/0x30
[  568.750510][T15410]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  568.750536][T15410]  ? __pfx_path_openat+0x10/0x10
[  568.750558][T15410]  do_file_open+0x20e/0x430
[  568.750575][T15410]  ? __pfx_do_file_open+0x10/0x10
[  568.750605][T15410]  ? alloc_fd+0x476/0x790
[  568.750621][T15410]  ? do_getname+0x191/0x390
[  568.750641][T15410]  do_sys_openat2+0x10d/0x1e0
[  568.750661][T15410]  ? __pfx_do_sys_openat2+0x10/0x10
[  568.750687][T15410]  __x64_sys_openat+0x12d/0x210
[  568.750707][T15410]  ? __pfx___x64_sys_openat+0x10/0x10
[  568.750733][T15410]  do_syscall_64+0x106/0xf80
[  568.750754][T15410]  ? clear_bhb_loop+0x40/0x90
[  568.750772][T15410]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.750788][T15410] RIP: 0033:0x7f1cb4d9c799
[  568.750802][T15410] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  568.750817][T15410] RSP: 002b:00007f1cb5d29028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  568.750833][T15410] RAX: ffffffffffffffda RBX: 00007f1cb5015fa0 RCX: 00007f1cb4d9c799
[  568.750843][T15410] RDX: 0000000000022a02 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  568.750853][T15410] RBP: 00007f1cb4e32c99 R08: 0000000000000000 R09: 0000000000000000
[  568.750863][T15410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  568.750882][T15410] R13: 00007f1cb5016038 R14: 00007f1cb5015fa0 R15: 00007ffd122e0008
[  568.750902][T15410]  </TASK>
[  570.441645][T15430] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  570.491899][T15430] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  570.524941][T15430] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  570.569883][T15430] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  570.575894][T15430] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  570.846588][T15437] NFSD: Failed to start, no listeners configured.
[  571.447535][T15451] FAULT_INJECTION: forcing a failure.
[  571.447535][T15451] name failslab, interval 1, probability 0, space 0, times 0
[  571.537044][T15451] CPU: 0 UID: 0 PID: 15451 Comm: syz.3.1989 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  571.537069][T15451] Tainted: [L]=SOFTLOCKUP
[  571.537075][T15451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  571.537084][T15451] Call Trace:
[  571.537089][T15451]  <TASK>
[  571.537095][T15451]  dump_stack_lvl+0x100/0x190
[  571.537122][T15451]  should_fail_ex.cold+0x5/0xa
[  571.537140][T15451]  should_failslab+0xc2/0x120
[  571.537156][T15451]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  571.537178][T15451]  ? alloc_unbound_pwq+0x3ff/0xdd0
[  571.537196][T15451]  alloc_unbound_pwq+0x3ff/0xdd0
[  571.537215][T15451]  apply_wqattrs_prepare+0x3aa/0xbb0
[  571.537236][T15451]  apply_workqueue_attrs_locked+0x64/0xe0
[  571.537252][T15451]  __alloc_workqueue+0xe25/0x1880
[  571.537272][T15451]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  571.537358][T15451]  alloc_workqueue_noprof+0xd2/0x200
[  571.537375][T15451]  ? __pfx_alloc_workqueue_noprof+0x10/0x10
[  571.537397][T15451]  ? __pfx___debug_object_init+0x10/0x10
[  571.537447][T15451]  nci_register_device+0x21e/0xb80
[  571.537495][T15451]  ? __pfx_nci_register_device+0x10/0x10
[  571.537514][T15451]  ? lockdep_init_map_type+0x5c/0x250
[  571.537536][T15451]  virtual_ncidev_open+0x141/0x220
[  571.537612][T15451]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  571.537631][T15451]  misc_open+0x26d/0x450
[  571.537686][T15451]  ? __pfx_misc_open+0x10/0x10
[  571.537701][T15451]  chrdev_open+0x234/0x6a0
[  571.537716][T15451]  ? __pfx_apparmor_file_open+0x10/0x10
[  571.537731][T15451]  ? __pfx_chrdev_open+0x10/0x10
[  571.537747][T15451]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  571.537767][T15451]  do_dentry_open+0x6d8/0x1660
[  571.537781][T15451]  ? __pfx_chrdev_open+0x10/0x10
[  571.537801][T15451]  vfs_open+0x82/0x3f0
[  571.537821][T15451]  path_openat+0x208c/0x31a0
[  571.537843][T15451]  ? __pfx_path_openat+0x10/0x10
[  571.537865][T15451]  do_file_open+0x20e/0x430
[  571.537881][T15451]  ? __pfx_do_file_open+0x10/0x10
[  571.537910][T15451]  ? alloc_fd+0x476/0x790
[  571.537927][T15451]  ? do_getname+0x191/0x390
[  571.537946][T15451]  do_sys_openat2+0x10d/0x1e0
[  571.537964][T15451]  ? __pfx_do_sys_openat2+0x10/0x10
[  571.537990][T15451]  __x64_sys_openat+0x12d/0x210
[  571.538009][T15451]  ? __pfx___x64_sys_openat+0x10/0x10
[  571.538035][T15451]  do_syscall_64+0x106/0xf80
[  571.538054][T15451]  ? clear_bhb_loop+0x40/0x90
[  571.538072][T15451]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  571.538087][T15451] RIP: 0033:0x7fa0fd79c799
[  571.538100][T15451] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  571.538114][T15451] RSP: 002b:00007fa0fe5ea028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  571.538129][T15451] RAX: ffffffffffffffda RBX: 00007fa0fda15fa0 RCX: 00007fa0fd79c799
[  571.538139][T15451] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  571.538148][T15451] RBP: 00007fa0fd832c99 R08: 0000000000000000 R09: 0000000000000000
[  571.538157][T15451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  571.538166][T15451] R13: 00007fa0fda16038 R14: 00007fa0fda15fa0 R15: 00007ffd3b075d28
[  571.538185][T15451]  </TASK>
[  572.181650][T15466] FAULT_INJECTION: forcing a failure.
[  572.181650][T15466] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  572.251600][T15466] CPU: 0 UID: 0 PID: 15466 Comm: syz.4.1988 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  572.251629][T15466] Tainted: [L]=SOFTLOCKUP
[  572.251634][T15466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  572.251645][T15466] Call Trace:
[  572.251650][T15466]  <TASK>
[  572.251657][T15466]  dump_stack_lvl+0x100/0x190
[  572.251685][T15466]  should_fail_ex.cold+0x5/0xa
[  572.251703][T15466]  _copy_from_user+0x2e/0xd0
[  572.251722][T15466]  memdup_user+0x6b/0xe0
[  572.251737][T15466]  strndup_user+0x78/0xe0
[  572.251753][T15466]  __x64_sys_fsopen+0x9e/0x220
[  572.251774][T15466]  do_syscall_64+0x106/0xf80
[  572.251795][T15466]  ? clear_bhb_loop+0x40/0x90
[  572.251813][T15466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.251828][T15466] RIP: 0033:0x7f1cb4d9c799
[  572.251841][T15466] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  572.251857][T15466] RSP: 002b:00007f1cb5d08028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[  572.251872][T15466] RAX: ffffffffffffffda RBX: 00007f1cb5016090 RCX: 00007f1cb4d9c799
[  572.251883][T15466] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  572.251892][T15466] RBP: 00007f1cb4e32c99 R08: 0000000000000000 R09: 0000000000000000
[  572.251900][T15466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  572.251909][T15466] R13: 00007f1cb5016128 R14: 00007f1cb5016090 R15: 00007ffd122e0008
[  572.251929][T15466]  </TASK>
[  572.590310][T15465] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  572.592009][T15455] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  572.610658][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout
[  572.625840][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout
[  572.633216][ T5826] Bluetooth: hci2: command 0x0c1a tx timeout
[  572.639235][ T5826] Bluetooth: hci4: command 0x0c1a tx timeout
[  572.645226][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout
[  572.915833][T15466] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  574.088674][T15448] kexec: Could not allocate control_code_buffer
[  574.887719][T15508] FAULT_INJECTION: forcing a failure.
[  574.887719][T15508] name failslab, interval 1, probability 0, space 0, times 0
[  574.955130][T15508] CPU: 0 UID: 0 PID: 15508 Comm: syz.4.2000 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  574.955156][T15508] Tainted: [L]=SOFTLOCKUP
[  574.955162][T15508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  574.955171][T15508] Call Trace:
[  574.955177][T15508]  <TASK>
[  574.955183][T15508]  dump_stack_lvl+0x100/0x190
[  574.955208][T15508]  should_fail_ex.cold+0x5/0xa
[  574.955225][T15508]  ? __blkdev_direct_IO_simple+0x112/0x890
[  574.955308][T15508]  should_failslab+0xc2/0x120
[  574.955324][T15508]  __kmalloc_noprof+0xe0/0x850
[  574.955345][T15508]  ? find_held_lock+0x2b/0x80
[  574.955362][T15508]  __blkdev_direct_IO_simple+0x112/0x890
[  574.955386][T15508]  ? __pfx___blkdev_direct_IO_simple+0x10/0x10
[  574.955417][T15508]  ? __filemap_fdatawait_range+0x1af/0x230
[  574.955446][T15508]  blkdev_direct_IO+0xc76/0x1fb0
[  574.955474][T15508]  ? __pfx_blkdev_direct_IO+0x10/0x10
[  574.955496][T15508]  ? filemap_check_errors+0xa9/0x150
[  574.955512][T15508]  ? filemap_write_and_wait_range.part.0+0xea/0x110
[  574.955535][T15508]  blkdev_read_iter+0x225/0x4f0
[  574.955582][T15508]  ? __pfx_blkdev_read_iter+0x10/0x10
[  574.955603][T15508]  vfs_read+0x825/0xb30
[  574.955627][T15508]  ? __pfx_vfs_read+0x10/0x10
[  574.955646][T15508]  ? find_held_lock+0x2b/0x80
[  574.955671][T15508]  ksys_read+0x12a/0x250
[  574.955684][T15508]  ? __pfx_ksys_read+0x10/0x10
[  574.955702][T15508]  do_syscall_64+0x106/0xf80
[  574.955722][T15508]  ? clear_bhb_loop+0x40/0x90
[  574.955739][T15508]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  574.955754][T15508] RIP: 0033:0x7f1cb4d9c799
[  574.955767][T15508] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  574.955781][T15508] RSP: 002b:00007f1cb5d29028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  574.955795][T15508] RAX: ffffffffffffffda RBX: 00007f1cb5015fa0 RCX: 00007f1cb4d9c799
[  574.955805][T15508] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  574.955814][T15508] RBP: 00007f1cb5d29090 R08: 0000000000000000 R09: 0000000000000000
[  574.955823][T15508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  574.955832][T15508] R13: 00007f1cb5016038 R14: 00007f1cb5015fa0 R15: 00007ffd122e0008
[  574.955850][T15508]  </TASK>
[  576.334053][T15531] NFSD: Failed to start, no listeners configured.
[  577.411760][   T30] audit: type=1800 audit(1774006095.972:19): pid=15553 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2008" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  578.453208][T15563] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  578.453395][T15563] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  578.453530][T15563] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  578.453669][T15563] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  578.453801][T15563] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  579.488620][T15603] NFSD: Failed to start, no listeners configured.
[  579.981222][ T5149] Bluetooth: hci0: command 0x0c1a tx timeout
[  580.458358][ T5149] Bluetooth: hci4: command 0x0c1a tx timeout
[  580.464436][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout
[  580.472560][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  580.478945][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  581.071109][T15642] NFSD: Failed to start, no listeners configured.
[  584.001361][T15704] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2036'.
[  585.196863][T15728] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2042'.
[  585.276685][   T30] audit: type=1804 audit(1774006103.883:20): pid=15728 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2042" name=2F6E6577726F6F742F3530362F3C6B65726E656C3E2050524F46494C455F56455253494F4E3D32303135303530350A3C6B65726E656C3E20302D434F4D4D454E543D0A3C6B65726E656C3E20302D505245464552454E43453D7B206D61785F61756469745F6C6F673D3332206D61785F6C6561726E696E675F656E7472793D3634207D0A3C6B65726E656C3E20302D434F4E4649473D7B206D6F64653D6C6561726E696E67206772616E745F6C6F673D6E6F2072656A6563745F6C6F673D796573207D0A3C3E3E2050524F46494C455F56455253494F4E3D32303135303530350A dev="tmpfs" ino=2670 res=1 errno=0
[  585.891265][T15737] FAULT_INJECTION: forcing a failure.
[  585.891265][T15737] name failslab, interval 1, probability 0, space 0, times 0
[  585.994179][T15737] CPU: 0 UID: 0 PID: 15737 Comm: syz.3.2045 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  585.994208][T15737] Tainted: [L]=SOFTLOCKUP
[  585.994214][T15737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  585.994224][T15737] Call Trace:
[  585.994230][T15737]  <TASK>
[  585.994237][T15737]  dump_stack_lvl+0x100/0x190
[  585.994266][T15737]  should_fail_ex.cold+0x5/0xa
[  585.994285][T15737]  ? __seq_open_private+0x22/0xd0
[  585.994306][T15737]  should_failslab+0xc2/0x120
[  585.994322][T15737]  __kmalloc_noprof+0xe0/0x850
[  585.994348][T15737]  ? __pfx_stats_fop_open+0x10/0x10
[  585.994465][T15737]  __seq_open_private+0x22/0xd0
[  585.994487][T15737]  sc_common_open+0x6b/0x200
[  585.994506][T15737]  full_proxy_open_regular+0x1b6/0x370
[  585.994567][T15737]  do_dentry_open+0x6d8/0x1660
[  585.994583][T15737]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  585.994612][T15737]  vfs_open+0x82/0x3f0
[  585.994633][T15737]  path_openat+0x208c/0x31a0
[  585.994655][T15737]  ? __pfx_path_openat+0x10/0x10
[  585.994677][T15737]  do_file_open+0x20e/0x430
[  585.994694][T15737]  ? __pfx_do_file_open+0x10/0x10
[  585.994724][T15737]  ? alloc_fd+0x476/0x790
[  585.994740][T15737]  ? do_getname+0x191/0x390
[  585.994760][T15737]  do_sys_openat2+0x10d/0x1e0
[  585.994779][T15737]  ? __pfx_do_sys_openat2+0x10/0x10
[  585.994800][T15737]  ? __fget_files+0x21f/0x3d0
[  585.994818][T15737]  __x64_sys_openat+0x12d/0x210
[  585.994838][T15737]  ? __pfx___x64_sys_openat+0x10/0x10
[  585.994865][T15737]  do_syscall_64+0x106/0xf80
[  585.994886][T15737]  ? clear_bhb_loop+0x40/0x90
[  585.994905][T15737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  585.994921][T15737] RIP: 0033:0x7fa0fd79c799
[  585.994936][T15737] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  585.994951][T15737] RSP: 002b:00007fa0fe5ea028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  585.994967][T15737] RAX: ffffffffffffffda RBX: 00007fa0fda15fa0 RCX: 00007fa0fd79c799
[  585.994978][T15737] RDX: 0000000000008382 RSI: 0000200000000640 RDI: ffffffffffffff9c
[  585.994988][T15737] RBP: 00007fa0fd832c99 R08: 0000000000000000 R09: 0000000000000000
[  585.994998][T15737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  585.995008][T15737] R13: 00007fa0fda16038 R14: 00007fa0fda15fa0 R15: 00007ffd3b075d28
[  585.995036][T15737]  </TASK>
[  586.316275][T15729] bonding: no command found in bonding_masters - use +ifname or -ifname
[  587.122269][T15761] FAULT_INJECTION: forcing a failure.
[  587.122269][T15761] name failslab, interval 1, probability 0, space 0, times 0
[  587.180153][T15759] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2047'.
[  587.197807][T15761] CPU: 0 UID: 0 PID: 15761 Comm: syz.3.2049 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  587.197834][T15761] Tainted: [L]=SOFTLOCKUP
[  587.197840][T15761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  587.197850][T15761] Call Trace:
[  587.197855][T15761]  <TASK>
[  587.197861][T15761]  dump_stack_lvl+0x100/0x190
[  587.197890][T15761]  should_fail_ex.cold+0x5/0xa
[  587.197908][T15761]  ? __register_sysctl_table+0xbe4/0x1650
[  587.197932][T15761]  should_failslab+0xc2/0x120
[  587.197949][T15761]  __kmalloc_noprof+0xe0/0x850
[  587.197974][T15761]  __register_sysctl_table+0xbe4/0x1650
[  587.198002][T15761]  ? __pfx___register_sysctl_table+0x10/0x10
[  587.198024][T15761]  ? is_module_address+0x69/0xf0
[  587.198043][T15761]  ? register_net_sysctl_sz+0x222/0x430
[  587.198161][T15761]  __devinet_sysctl_register+0x1b9/0x360
[  587.198225][T15761]  ? trace_kmalloc+0x101/0x130
[  587.198241][T15761]  ? __pfx___devinet_sysctl_register+0x10/0x10
[  587.198269][T15761]  ? __asan_memcpy+0x3c/0x60
[  587.198292][T15761]  devinet_init_net+0x303/0x8d0
[  587.198321][T15761]  ? __pfx_devinet_init_net+0x10/0x10
[  587.198344][T15761]  ops_init+0x1e2/0x5f0
[  587.198395][T15761]  setup_net+0x118/0x3a0
[  587.198417][T15761]  ? __pfx_setup_net+0x10/0x10
[  587.198442][T15761]  ? lockdep_init_map_type+0x5c/0x250
[  587.198469][T15761]  ? mutex_init_lockep+0x110/0x150
[  587.198493][T15761]  copy_net_ns+0x46f/0x7c0
[  587.198511][T15761]  create_new_namespaces+0x3ea/0xac0
[  587.198532][T15761]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  587.198550][T15761]  ksys_unshare+0x473/0xad0
[  587.198571][T15761]  ? __pfx_ksys_unshare+0x10/0x10
[  587.198596][T15761]  __x64_sys_unshare+0x31/0x40
[  587.198614][T15761]  do_syscall_64+0x106/0xf80
[  587.198635][T15761]  ? clear_bhb_loop+0x40/0x90
[  587.198653][T15761]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.198669][T15761] RIP: 0033:0x7fa0fd79c799
[  587.198682][T15761] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  587.198697][T15761] RSP: 002b:00007fa0fe5ea028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  587.198713][T15761] RAX: ffffffffffffffda RBX: 00007fa0fda15fa0 RCX: 00007fa0fd79c799
[  587.198724][T15761] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  587.198734][T15761] RBP: 00007fa0fd832c99 R08: 0000000000000000 R09: 0000000000000000
[  587.198743][T15761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  587.198752][T15761] R13: 00007fa0fda16038 R14: 00007fa0fda15fa0 R15: 00007ffd3b075d28
[  587.198773][T15761]  </TASK>
[  587.198780][T15761] sysctl could not get directory: /net/ipv4/conf -12
[  587.739809][T15764] NFSD: Failed to start, no listeners configured.
[  587.764451][ T5149] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  587.798416][ T5835] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  587.899681][ T5835] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  588.032833][ T5835] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  588.097813][ T5835] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  588.384982][T15774] FAULT_INJECTION: forcing a failure.
[  588.384982][T15774] name failslab, interval 1, probability 0, space 0, times 0
[  588.460410][T15775] NFSD: Failed to start, no listeners configured.
[  588.470472][T15774] CPU: 0 UID: 0 PID: 15774 Comm: syz.4.2052 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  588.470498][T15774] Tainted: [L]=SOFTLOCKUP
[  588.470504][T15774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  588.470514][T15774] Call Trace:
[  588.470520][T15774]  <TASK>
[  588.470526][T15774]  dump_stack_lvl+0x100/0x190
[  588.470553][T15774]  should_fail_ex.cold+0x5/0xa
[  588.470572][T15774]  should_failslab+0xc2/0x120
[  588.470589][T15774]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  588.470611][T15774]  ? alloc_empty_file+0x55/0x1c0
[  588.470634][T15774]  alloc_empty_file+0x55/0x1c0
[  588.470653][T15774]  alloc_file_pseudo+0x13a/0x230
[  588.470674][T15774]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  588.470698][T15774]  __shmem_file_setup+0x221/0x490
[  588.470718][T15774]  ? __pfx___shmem_file_setup+0x10/0x10
[  588.470741][T15774]  ? vm_area_alloc+0x1f/0x160
[  588.470763][T15774]  shmem_zero_setup+0x96/0x1b0
[  588.470787][T15774]  __mmap_region+0x2198/0x29e0
[  588.470809][T15774]  ? rcu_is_watching+0x12/0xc0
[  588.470831][T15774]  ? trace_pelt_se_tp+0x159/0x1b0
[  588.470850][T15774]  ? __pfx___mmap_region+0x10/0x10
[  588.470891][T15774]  ? sched_clock+0x38/0x60
[  588.470920][T15774]  ? lockdep_hardirqs_on+0x78/0x100
[  588.470950][T15774]  ? finish_task_switch.isra.0+0x205/0xb80
[  588.470967][T15774]  ? rcu_is_watching+0x12/0xc0
[  588.471013][T15774]  ? rcu_is_watching+0x12/0xc0
[  588.471035][T15774]  ? cap_capable+0x107/0x460
[  588.471063][T15774]  mmap_region+0x180/0x3e0
[  588.471088][T15774]  do_mmap+0xc63/0x12f0
[  588.471108][T15774]  ? __pfx_do_mmap+0x10/0x10
[  588.471125][T15774]  ? __pfx_down_write_killable+0x10/0x10
[  588.471143][T15774]  vm_mmap_pgoff+0x29e/0x470
[  588.471164][T15774]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  588.471181][T15774]  ? do_futex+0x192/0x350
[  588.471201][T15774]  ? __pfx_do_futex+0x10/0x10
[  588.471223][T15774]  ksys_mmap_pgoff+0xe1/0x650
[  588.471240][T15774]  ? __x64_sys_futex+0x34f/0x4d0
[  588.471257][T15774]  ? __x64_sys_futex+0x358/0x4d0
[  588.471277][T15774]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  588.471293][T15774]  ? xfd_validate_state+0x129/0x190
[  588.471317][T15774]  __x64_sys_mmap+0x125/0x190
[  588.471341][T15774]  do_syscall_64+0x106/0xf80
[  588.471360][T15774]  ? clear_bhb_loop+0x40/0x90
[  588.471379][T15774]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.471394][T15774] RIP: 0033:0x7f1cb4d9c799
[  588.471408][T15774] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  588.471423][T15774] RSP: 002b:00007f1cb5d29028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  588.471439][T15774] RAX: ffffffffffffffda RBX: 00007f1cb5015fa0 RCX: 00007f1cb4d9c799
[  588.471449][T15774] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  588.471460][T15774] RBP: 00007f1cb4e32c99 R08: fffffffffffffffa R09: 0000000000008000
[  588.471469][T15774] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  588.471478][T15774] R13: 00007f1cb5016038 R14: 00007f1cb5015fa0 R15: 00007ffd122e0008
[  588.471499][T15774]  </TASK>
[  588.933429][T15779] FAULT_INJECTION: forcing a failure.
[  588.933429][T15779] name failslab, interval 1, probability 0, space 0, times 0
[  588.946623][T15779] CPU: 0 UID: 0 PID: 15779 Comm: syz.4.2053 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  588.946649][T15779] Tainted: [L]=SOFTLOCKUP
[  588.946655][T15779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  588.946664][T15779] Call Trace:
[  588.946671][T15779]  <TASK>
[  588.946678][T15779]  dump_stack_lvl+0x100/0x190
[  588.946705][T15779]  should_fail_ex.cold+0x5/0xa
[  588.946724][T15779]  should_failslab+0xc2/0x120
[  588.946741][T15779]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  588.946764][T15779]  ? ptlock_alloc+0x1f/0x70
[  588.946788][T15779]  ptlock_alloc+0x1f/0x70
[  588.946807][T15779]  pte_alloc_one+0x82/0x3d0
[  588.946825][T15779]  __pte_alloc+0x6d/0x3e0
[  588.946840][T15779]  ? __pfx___pte_alloc+0x10/0x10
[  588.946855][T15779]  ? __pfx___might_resched+0x10/0x10
[  588.946876][T15779]  ? copy_page_range+0x1e9d/0x6570
[  588.946905][T15779]  copy_page_range+0x3e51/0x6570
[  588.946947][T15779]  ? __pfx_copy_page_range+0x10/0x10
[  588.946975][T15779]  ? __pfx___might_resched+0x10/0x10
[  588.947004][T15779]  ? up_write+0x290/0x4f0
[  588.947029][T15779]  dup_mmap+0xd25/0x2180
[  588.947054][T15779]  ? __pfx_dup_mmap+0x10/0x10
[  588.947071][T15779]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  588.947096][T15779]  ? __lock_acquire+0x4a5/0x2630
[  588.947115][T15779]  ? find_held_lock+0x2b/0x80
[  588.947129][T15779]  ? __percpu_counter_init_many+0x2bc/0x3b0
[  588.947162][T15779]  copy_process+0x7523/0x7a40
[  588.947190][T15779]  ? __pfx_copy_process+0x10/0x10
[  588.947208][T15779]  ? find_held_lock+0x2b/0x80
[  588.947231][T15779]  kernel_clone+0xfc/0x9a0
[  588.947247][T15779]  ? __pfx_futex_wait+0x10/0x10
[  588.947271][T15779]  ? __pfx_kernel_clone+0x10/0x10
[  588.947299][T15779]  __do_sys_clone+0xd9/0x120
[  588.947316][T15779]  ? __pfx___do_sys_clone+0x10/0x10
[  588.947333][T15779]  ? __fget_files+0x21f/0x3d0
[  588.947363][T15779]  do_syscall_64+0x106/0xf80
[  588.947383][T15779]  ? clear_bhb_loop+0x40/0x90
[  588.947402][T15779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.947417][T15779] RIP: 0033:0x7f1cb4d9c799
[  588.947432][T15779] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  588.947447][T15779] RSP: 002b:00007f1cb5d07fd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  588.947462][T15779] RAX: ffffffffffffffda RBX: 00007f1cb5016090 RCX: 00007f1cb4d9c799
[  588.947473][T15779] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  588.947483][T15779] RBP: 00007f1cb4e32c99 R08: 0000000000000000 R09: 0000000000000000
[  588.947492][T15779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  588.947502][T15779] R13: 00007f1cb5016128 R14: 00007f1cb5016090 R15: 00007ffd122e0008
[  588.947522][T15779]  </TASK>
[  589.736120][T15748] chnl_net:caif_netlink_parms(): no params data found
[  589.981829][T15797] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2056'.
[  590.252432][ T5149] Bluetooth: hci5: command tx timeout
[  590.410325][T15748] bridge0: port 1(bridge_slave_0) entered blocking state
[  590.464757][T15748] bridge0: port 1(bridge_slave_0) entered disabled state
[  590.497647][T15748] bridge_slave_0: entered allmulticast mode
[  590.526739][T15748] bridge_slave_0: entered promiscuous mode
[  590.564522][T15748] bridge0: port 2(bridge_slave_1) entered blocking state
[  590.630573][T15748] bridge0: port 2(bridge_slave_1) entered disabled state
[  590.680819][T15748] bridge_slave_1: entered allmulticast mode
[  590.704245][T15748] bridge_slave_1: entered promiscuous mode
[  590.813947][T15748] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  590.849329][T15748] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  590.942937][T15748] team0: Port device team_slave_0 added
[  590.970825][T15748] team0: Port device team_slave_1 added
[  591.008273][T15819] random: crng reseeded on system resumption
[  591.056314][T15748] batman_adv: batadv0: Adding interface: batadv_slave_0
[  591.097156][T15748] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  591.174169][T15819] hub 1-0:1.0: USB hub found
[  591.193308][T15819] hub 1-0:1.0: 1 port detected
[  591.215572][T15748] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  591.265852][T15748] batman_adv: batadv0: Adding interface: batadv_slave_1
[  591.330738][T15748] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  591.479746][T15748] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  591.501232][T15835] FAULT_INJECTION: forcing a failure.
[  591.501232][T15835] name failslab, interval 1, probability 0, space 0, times 0
[  591.564776][T15835] CPU: 0 UID: 0 PID: 15835 Comm: syz.3.2063 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  591.564800][T15835] Tainted: [L]=SOFTLOCKUP
[  591.564805][T15835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  591.564814][T15835] Call Trace:
[  591.564820][T15835]  <TASK>
[  591.564826][T15835]  dump_stack_lvl+0x100/0x190
[  591.564853][T15835]  should_fail_ex.cold+0x5/0xa
[  591.564870][T15835]  should_failslab+0xc2/0x120
[  591.564886][T15835]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  591.564907][T15835]  ? __d_alloc+0x34/0xa80
[  591.564923][T15835]  ? __pfx_stack_trace_save+0x10/0x10
[  591.564941][T15835]  __d_alloc+0x34/0xa80
[  591.564959][T15835]  d_alloc_parallel+0x111/0x14e0
[  591.564984][T15835]  ? find_held_lock+0x2b/0x80
[  591.564999][T15835]  ? __d_lookup+0x25c/0x4a0
[  591.565018][T15835]  ? __pfx_d_alloc_parallel+0x10/0x10
[  591.565040][T15835]  ? __d_lookup+0x266/0x4a0
[  591.565064][T15835]  lookup_open.isra.0+0x57c/0x11b0
[  591.565089][T15835]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  591.565120][T15835]  ? mnt_get_write_access+0x1e9/0x2f0
[  591.565142][T15835]  path_openat+0xa98/0x31a0
[  591.565160][T15835]  ? futex_unqueue+0xd1/0x2c0
[  591.565179][T15835]  ? __pfx_path_openat+0x10/0x10
[  591.565195][T15835]  ? kasan_save_stack+0x3f/0x50
[  591.565216][T15835]  ? kasan_save_stack+0x30/0x50
[  591.565235][T15835]  ? kasan_save_track+0x14/0x30
[  591.565255][T15835]  ? __kasan_slab_alloc+0x89/0x90
[  591.565267][T15835]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  591.565287][T15835]  ? do_getname+0x35/0x390
[  591.565306][T15835]  do_file_open+0x20e/0x430
[  591.565322][T15835]  ? __pfx_do_file_open+0x10/0x10
[  591.565353][T15835]  ? find_held_lock+0x2b/0x80
[  591.565365][T15835]  ? __might_fault+0xc5/0x140
[  591.565384][T15835]  ? __might_fault+0xc5/0x140
[  591.565406][T15835]  file_open_name+0x198/0x3b0
[  591.565425][T15835]  ? __pfx_file_open_name+0x10/0x10
[  591.565447][T15835]  ? do_getname+0x191/0x390
[  591.565466][T15835]  acct_on+0xa4/0x9e0
[  591.565488][T15835]  ? __pfx_acct_on+0x10/0x10
[  591.565508][T15835]  ? bpf_lsm_capable+0x9/0x10
[  591.565523][T15835]  ? security_capable+0x80/0x260
[  591.565547][T15835]  __x64_sys_acct+0x81/0x1e0
[  591.565567][T15835]  ? lockdep_hardirqs_on+0x78/0x100
[  591.565587][T15835]  do_syscall_64+0x106/0xf80
[  591.565607][T15835]  ? clear_bhb_loop+0x40/0x90
[  591.565625][T15835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.565640][T15835] RIP: 0033:0x7fa0fd79c799
[  591.565653][T15835] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  591.565673][T15835] RSP: 002b:00007fa0fe5ea028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[  591.565687][T15835] RAX: ffffffffffffffda RBX: 00007fa0fda15fa0 RCX: 00007fa0fd79c799
[  591.565697][T15835] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  591.565706][T15835] RBP: 00007fa0fd832c99 R08: 0000000000000000 R09: 0000000000000000
[  591.565715][T15835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  591.565724][T15835] R13: 00007fa0fda16038 R14: 00007fa0fda15fa0 R15: 00007ffd3b075d28
[  591.565744][T15835]  </TASK>
[  591.930295][T15748] hsr_slave_0: entered promiscuous mode
[  591.936501][T15748] hsr_slave_1: entered promiscuous mode
[  591.942548][T15748] debugfs: 'hsr0' already exists in 'hsr'
[  591.948263][T15748] Cannot create hsr debugfs directory
[  592.440166][ T5149] Bluetooth: hci5: command tx timeout
[  593.094263][T15748] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  593.349003][T15748] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  593.716286][T15873] <
[  593.767996][T15748] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  593.968795][T15748] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  594.469340][ T5149] Bluetooth: hci5: command tx timeout
[  594.545608][T15748] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  594.714941][T15748] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  594.776104][T15748] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  594.855683][T15748] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  595.139083][T15901] NFSD: Failed to start, no listeners configured.
[  595.383354][T15911] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2081'.
[  595.414840][T15748] 8021q: adding VLAN 0 to HW filter on device bond0
[  595.521409][T15748] 8021q: adding VLAN 0 to HW filter on device team0
[  595.783643][   T65] bridge0: port 1(bridge_slave_0) entered blocking state
[  595.790787][   T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[  595.972531][T14401] bridge0: port 2(bridge_slave_1) entered blocking state
[  595.979665][T14401] bridge0: port 2(bridge_slave_1) entered forwarding state
[  596.539076][ T5149] Bluetooth: hci5: command tx timeout
[  596.583134][T15933] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2088'.
[  596.788466][T15748] 8021q: adding VLAN 0 to HW filter on device batadv0
[  596.956524][T15748] veth0_vlan: entered promiscuous mode
[  597.027359][T15748] veth1_vlan: entered promiscuous mode
[  597.160899][T15748] veth0_macvtap: entered promiscuous mode
[  597.205213][T15748] veth1_macvtap: entered promiscuous mode
[  597.283311][T15748] batman_adv: batadv0: Interface activated: batadv_slave_0
[  597.342056][T15748] batman_adv: batadv0: Interface activated: batadv_slave_1
[  597.403861][   T49] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  597.480918][   T49] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  597.594464][   T49] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  597.630521][   T49] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  597.640944][T15943] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  597.673231][T15943] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  597.711809][T15943] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  597.771977][T15943] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  597.777981][T15943] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  597.832978][T15943] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  597.908553][T15943] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  598.227448][T14401] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  598.235269][T14401] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  598.273805][T15960] FAULT_INJECTION: forcing a failure.
[  598.273805][T15960] name failslab, interval 1, probability 0, space 0, times 0
[  598.565665][T14401] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  598.574883][T15960] CPU: 0 UID: 0 PID: 15960 Comm: syz.1.2094 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  598.574909][T15960] Tainted: [L]=SOFTLOCKUP
[  598.574915][T15960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  598.574925][T15960] Call Trace:
[  598.574931][T15960]  <TASK>
[  598.574938][T15960]  dump_stack_lvl+0x100/0x190
[  598.574965][T15960]  should_fail_ex.cold+0x5/0xa
[  598.574984][T15960]  should_failslab+0xc2/0x120
[  598.575001][T15960]  __kmalloc_cache_noprof+0x7a/0x6f0
[  598.575020][T15960]  ? vkms_plane_duplicate_state+0x87/0x130
[  598.575113][T15960]  vkms_plane_duplicate_state+0x87/0x130
[  598.575132][T15960]  drm_atomic_get_plane_state+0x279/0x760
[  598.575193][T15960]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  598.575262][T15960]  ? trace_contention_end+0x140/0x180
[  598.575287][T15960]  ? __mutex_lock+0x26a/0x1b90
[  598.575309][T15960]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  598.575331][T15960]  ? drm_master_internal_acquire+0x21/0x80
[  598.575392][T15960]  drm_client_modeset_commit_locked+0x14d/0x580
[  598.575417][T15960]  drm_client_modeset_commit+0x4f/0x80
[  598.575440][T15960]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  598.575495][T15960]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  598.575519][T15960]  drm_fbdev_client_restore+0x1b/0x30
[  598.575558][T15960]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  598.575575][T15960]  drm_client_dev_restore+0x205/0x2a0
[  598.575601][T15960]  drm_release+0x2c6/0x360
[  598.575663][T15960]  ? __pfx_drm_release+0x10/0x10
[  598.575683][T15960]  __fput+0x3ff/0xb40
[  598.575706][T15960]  task_work_run+0x150/0x240
[  598.575729][T15960]  ? __pfx_task_work_run+0x10/0x10
[  598.575755][T15960]  exit_to_user_mode_loop+0x100/0x4a0
[  598.575777][T15960]  do_syscall_64+0x668/0xf80
[  598.575798][T15960]  ? clear_bhb_loop+0x40/0x90
[  598.575817][T15960]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.575833][T15960] RIP: 0033:0x7fe32399c799
[  598.575854][T15960] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  598.575870][T15960] RSP: 002b:00007fe3248a8028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  598.575886][T15960] RAX: 0000000000000000 RBX: 00007fe323c15fa0 RCX: 00007fe32399c799
[  598.575896][T15960] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  598.575906][T15960] RBP: 00007fe323a32c99 R08: 0000000000000000 R09: 0000000000000000
[  598.575915][T15960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  598.575924][T15960] R13: 00007fe323c16038 R14: 00007fe323c15fa0 R15: 00007ffc7fc63ab8
[  598.575945][T15960]  </TASK>
[  599.126996][T14401] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  599.250631][T15637] Bluetooth: hci0: command 0x0c1a tx timeout
[  599.736865][ T5149] Bluetooth: hci1: command 0x0c1a tx timeout
[  599.743304][ T5149] Bluetooth: hci3: command 0x0c1a tx timeout
[  599.870930][T15637] Bluetooth: hci5: command 0x0c1a tx timeout
[  599.876955][T15637] Bluetooth: hci4: command 0x0c1a tx timeout
[  601.948906][ T5149] Bluetooth: hci5: command 0x0c1a tx timeout
[  603.656838][T16076] FAULT_INJECTION: forcing a failure.
[  603.656838][T16076] name failslab, interval 1, probability 0, space 0, times 0
[  603.789363][T16076] CPU: 0 UID: 0 PID: 16076 Comm: syz.4.2116 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  603.789397][T16076] Tainted: [L]=SOFTLOCKUP
[  603.789402][T16076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  603.789412][T16076] Call Trace:
[  603.789417][T16076]  <TASK>
[  603.789423][T16076]  dump_stack_lvl+0x100/0x190
[  603.789449][T16076]  should_fail_ex.cold+0x5/0xa
[  603.789466][T16076]  ? tomoyo_realpath_from_path+0xb6/0x690
[  603.789527][T16076]  should_failslab+0xc2/0x120
[  603.789544][T16076]  __kmalloc_noprof+0xe0/0x850
[  603.789569][T16076]  tomoyo_realpath_from_path+0xb6/0x690
[  603.789591][T16076]  tomoyo_check_open_permission+0x2af/0x3c0
[  603.789609][T16076]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  603.789643][T16076]  ? do_raw_spin_lock+0x128/0x260
[  603.789665][T16076]  ? path_get+0x61/0x80
[  603.789685][T16076]  tomoyo_file_open+0x6b/0x90
[  603.789730][T16076]  security_file_open+0xb5/0x1e0
[  603.789748][T16076]  do_dentry_open+0x5aa/0x1660
[  603.789764][T16076]  ? security_inode_permission+0xbf/0x250
[  603.789783][T16076]  vfs_open+0x82/0x3f0
[  603.789803][T16076]  path_openat+0x208c/0x31a0
[  603.789825][T16076]  ? __pfx_path_openat+0x10/0x10
[  603.789846][T16076]  do_file_open+0x20e/0x430
[  603.789863][T16076]  ? __pfx_do_file_open+0x10/0x10
[  603.789891][T16076]  ? alloc_fd+0x476/0x790
[  603.789907][T16076]  ? do_getname+0x191/0x390
[  603.789926][T16076]  do_sys_openat2+0x10d/0x1e0
[  603.789945][T16076]  ? __pfx_do_sys_openat2+0x10/0x10
[  603.789970][T16076]  __x64_sys_openat+0x12d/0x210
[  603.789989][T16076]  ? __pfx___x64_sys_openat+0x10/0x10
[  603.790015][T16076]  do_syscall_64+0x106/0xf80
[  603.790035][T16076]  ? clear_bhb_loop+0x40/0x90
[  603.790053][T16076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  603.790068][T16076] RIP: 0033:0x7f1cb4d9c799
[  603.790081][T16076] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  603.790094][T16076] RSP: 002b:00007f1cb5d29028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  603.790108][T16076] RAX: ffffffffffffffda RBX: 00007f1cb5015fa0 RCX: 00007f1cb4d9c799
[  603.790118][T16076] RDX: 0000000000060080 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  603.790127][T16076] RBP: 00007f1cb4e32c99 R08: 0000000000000000 R09: 0000000000000000
[  603.790136][T16076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  603.790144][T16076] R13: 00007f1cb5016038 R14: 00007f1cb5015fa0 R15: 00007ffd122e0008
[  603.790163][T16076]  </TASK>
[  604.074753][T16076] ERROR: Out of memory at tomoyo_realpath_from_path.
[  604.429338][ T5149] Bluetooth: hci5: command 0x0c1a tx timeout
[  605.603821][T16110] NFSD: Failed to start, no listeners configured.
[  605.910697][   T30] audit: type=1800 audit(1774006124.630:21): pid=16127 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2128" name="dbroot" dev="configfs" ino=72135 res=0 errno=0
[  607.203177][T16159] FAULT_INJECTION: forcing a failure.
[  607.203177][T16159] name failslab, interval 1, probability 0, space 0, times 0
[  607.431552][T16159] CPU: 0 UID: 0 PID: 16159 Comm: syz.4.2134 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  607.431577][T16159] Tainted: [L]=SOFTLOCKUP
[  607.431582][T16159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  607.431591][T16159] Call Trace:
[  607.431597][T16159]  <TASK>
[  607.431603][T16159]  dump_stack_lvl+0x100/0x190
[  607.431630][T16159]  should_fail_ex.cold+0x5/0xa
[  607.431648][T16159]  should_failslab+0xc2/0x120
[  607.431663][T16159]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  607.431684][T16159]  ? security_inode_alloc+0x3b/0x2c0
[  607.431700][T16159]  ? lockdep_init_map_type+0x5c/0x250
[  607.431721][T16159]  security_inode_alloc+0x3b/0x2c0
[  607.431736][T16159]  inode_init_always_gfp+0xced/0x1040
[  607.431754][T16159]  alloc_inode+0x8e/0x250
[  607.431773][T16159]  new_inode+0x22/0x1c0
[  607.431792][T16159]  hugetlbfs_get_inode+0x313/0x750
[  607.431839][T16159]  hugetlb_file_setup+0x3cc/0x5b0
[  607.431857][T16159]  newseg+0xabb/0xed0
[  607.431879][T16159]  ? __pfx_newseg+0x10/0x10
[  607.431896][T16159]  ? down_write+0x146/0x1f0
[  607.431911][T16159]  ? ksys_write+0x190/0x250
[  607.431924][T16159]  ? ksys_write+0x190/0x250
[  607.431940][T16159]  ipcget+0xee/0xf50
[  607.432000][T16159]  ? do_futex+0x192/0x350
[  607.432019][T16159]  ? __pfx_do_futex+0x10/0x10
[  607.432040][T16159]  ? __pfx_ipcget+0x10/0x10
[  607.432058][T16159]  ? __x64_sys_futex+0x34f/0x4d0
[  607.432075][T16159]  ? __x64_sys_futex+0x358/0x4d0
[  607.432095][T16159]  __x64_sys_shmget+0x13b/0x1b0
[  607.432113][T16159]  ? __pfx___x64_sys_shmget+0x10/0x10
[  607.432137][T16159]  do_syscall_64+0x106/0xf80
[  607.432156][T16159]  ? clear_bhb_loop+0x40/0x90
[  607.432174][T16159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.432188][T16159] RIP: 0033:0x7f1cb4d9c799
[  607.432209][T16159] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  607.432223][T16159] RSP: 002b:00007f1cb5d29028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d
[  607.432237][T16159] RAX: ffffffffffffffda RBX: 00007f1cb5015fa0 RCX: 00007f1cb4d9c799
[  607.432247][T16159] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000
[  607.432256][T16159] RBP: 00007f1cb4e32c99 R08: 0000000000000000 R09: 0000000000000000
[  607.432265][T16159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  607.432273][T16159] R13: 00007f1cb5016038 R14: 00007f1cb5015fa0 R15: 00007ffd122e0008
[  607.432292][T16159]  </TASK>
[  608.048776][T16171] Invalid ELF header magic: != ELF
[  608.763599][T16192] vivid-007: =================  START STATUS  =================
[  608.802959][T16192] vivid-007: Generate PTS: true
[  608.814376][T16192] vivid-007: Generate SCR: true
[  608.855173][T16192] tpg source WxH: 320x240 (Y'CbCr)
[  608.922411][T16192] tpg field: 1
[  609.036325][T16192] tpg crop: (0,0)/320x240
[  609.077825][T16192] tpg compose: (0,0)/320x240
[  609.139967][T16192] tpg colorspace: 8
[  609.171474][T16192] tpg transfer function: 0/0
[  609.181230][T16192] tpg Y'CbCr encoding: 0/0
[  609.206683][T16192] tpg quantization: 0/0
[  609.253671][T16192] tpg RGB range: 0/2
[  609.271061][T16192] vivid-007: ==================  END STATUS  ==================
[  609.359170][T16199] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2142'.
[  609.446788][T16202] futex_wake_op: syz.2.2143 tries to shift op by -2048; fix this program
[  609.544878][T16202] futex_wake_op: syz.2.2143 tries to shift op by -2048; fix this program
[  609.803088][T16209] NFSD: Failed to start, no listeners configured.
[  610.485735][T16219] NFSD: Failed to start, no listeners configured.
[  611.231435][T16225] NFSD: Failed to start, no listeners configured.
[  611.308364][T16238] FAULT_INJECTION: forcing a failure.
[  611.308364][T16238] name failslab, interval 1, probability 0, space 0, times 0
[  611.413635][T16238] CPU: 0 UID: 0 PID: 16238 Comm: syz.1.2150 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  611.413662][T16238] Tainted: [L]=SOFTLOCKUP
[  611.413669][T16238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  611.413678][T16238] Call Trace:
[  611.413684][T16238]  <TASK>
[  611.413691][T16238]  dump_stack_lvl+0x100/0x190
[  611.413719][T16238]  should_fail_ex.cold+0x5/0xa
[  611.413737][T16238]  should_failslab+0xc2/0x120
[  611.413754][T16238]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  611.413776][T16238]  ? __d_alloc+0x34/0xa80
[  611.413792][T16238]  ? __mutex_unlock_slowpath+0x15c/0x790
[  611.413818][T16238]  __d_alloc+0x34/0xa80
[  611.413837][T16238]  d_alloc_pseudo+0x1c/0xc0
[  611.413857][T16238]  alloc_file_pseudo+0xcf/0x230
[  611.413877][T16238]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  611.413896][T16238]  ? alloc_fd+0x476/0x790
[  611.413914][T16238]  sock_alloc_file+0x50/0x210
[  611.413937][T16238]  __sys_socket+0x1c0/0x260
[  611.413954][T16238]  ? __pfx___sys_socket+0x10/0x10
[  611.413977][T16238]  __x64_sys_socket+0x72/0xb0
[  611.413994][T16238]  ? lockdep_hardirqs_on+0x78/0x100
[  611.414014][T16238]  do_syscall_64+0x106/0xf80
[  611.414034][T16238]  ? clear_bhb_loop+0x40/0x90
[  611.414052][T16238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  611.414068][T16238] RIP: 0033:0x7fe32399c799
[  611.414081][T16238] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  611.414096][T16238] RSP: 002b:00007fe324887028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  611.414112][T16238] RAX: ffffffffffffffda RBX: 00007fe323c16090 RCX: 00007fe32399c799
[  611.414122][T16238] RDX: 0000000000000002 RSI: 0000000000000003 RDI: 000000000000000f
[  611.414131][T16238] RBP: 00007fe323a32c99 R08: 0000000000000000 R09: 0000000000000000
[  611.414140][T16238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  611.414149][T16238] R13: 00007fe323c16128 R14: 00007fe323c16090 R15: 00007ffc7fc63ab8
[  611.414169][T16238]  </TASK>
[  612.579233][    C0] sd 0:0:1:0: [sda] tag#8165 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  612.589715][    C0] sd 0:0:1:0: [sda] tag#8165 CDB: Write(6) 0a 00 00 00 0b 00 00 00 00 00 00 00
[  613.305888][T16276] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input26
[  613.475864][T16277] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input27
[  613.761513][   T49] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  613.889402][   T49] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  614.042671][   T49] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  614.259517][   T49] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  614.351298][T16292] FAULT_INJECTION: forcing a failure.
[  614.351298][T16292] name failslab, interval 1, probability 0, space 0, times 0
[  614.456274][T16292] CPU: 0 UID: 0 PID: 16292 Comm: syz.1.2167 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  614.456304][T16292] Tainted: [L]=SOFTLOCKUP
[  614.456310][T16292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  614.456318][T16292] Call Trace:
[  614.456324][T16292]  <TASK>
[  614.456330][T16292]  dump_stack_lvl+0x100/0x190
[  614.456356][T16292]  should_fail_ex.cold+0x5/0xa
[  614.456373][T16292]  ? tomoyo_realpath_from_path+0xb6/0x690
[  614.456393][T16292]  should_failslab+0xc2/0x120
[  614.456409][T16292]  __kmalloc_noprof+0xe0/0x850
[  614.456434][T16292]  tomoyo_realpath_from_path+0xb6/0x690
[  614.456456][T16292]  tomoyo_path_number_perm+0x23c/0x580
[  614.456472][T16292]  ? tomoyo_path_number_perm+0x22e/0x580
[  614.456489][T16292]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  614.456523][T16292]  ? find_held_lock+0x2b/0x80
[  614.456536][T16292]  ? __fget_files+0x215/0x3d0
[  614.456549][T16292]  ? hook_file_ioctl_common+0x146/0x410
[  614.456627][T16292]  ? __fget_files+0x21f/0x3d0
[  614.456644][T16292]  security_file_ioctl+0xd3/0x230
[  614.456662][T16292]  __x64_sys_ioctl+0xb7/0x210
[  614.456684][T16292]  do_syscall_64+0x106/0xf80
[  614.456704][T16292]  ? clear_bhb_loop+0x40/0x90
[  614.456721][T16292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  614.456737][T16292] RIP: 0033:0x7fe32399c799
[  614.456749][T16292] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  614.456763][T16292] RSP: 002b:00007fe3248a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  614.456778][T16292] RAX: ffffffffffffffda RBX: 00007fe323c15fa0 RCX: 00007fe32399c799
[  614.456787][T16292] RDX: 0000000000000003 RSI: 00000000c10c5541 RDI: 0000000000000004
[  614.456799][T16292] RBP: 00007fe3248a8090 R08: 0000000000000000 R09: 0000000000000000
[  614.456808][T16292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  614.456816][T16292] R13: 00007fe323c16038 R14: 00007fe323c15fa0 R15: 00007ffc7fc63ab8
[  614.456836][T16292]  </TASK>
[  614.456842][T16292] ERROR: Out of memory at tomoyo_realpath_from_path.
[  614.924991][T16297] FAULT_INJECTION: forcing a failure.
[  614.924991][T16297] name failslab, interval 1, probability 0, space 0, times 0
[  614.982648][ T5149] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  615.078174][T16297] CPU: 0 UID: 0 PID: 16297 Comm: syz.2.2168 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  615.078203][T16297] Tainted: [L]=SOFTLOCKUP
[  615.078209][T16297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  615.078219][T16297] Call Trace:
[  615.078226][T16297]  <TASK>
[  615.078232][T16297]  dump_stack_lvl+0x100/0x190
[  615.078267][T16297]  should_fail_ex.cold+0x5/0xa
[  615.078286][T16297]  ? tracepoint_add_func+0x2c5/0xf30
[  615.078302][T16297]  should_failslab+0xc2/0x120
[  615.078319][T16297]  __kmalloc_noprof+0xe0/0x850
[  615.078345][T16297]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  615.078361][T16297]  tracepoint_add_func+0x2c5/0xf30
[  615.078376][T16297]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  615.078392][T16297]  ? __pfx___mutex_lock+0x10/0x10
[  615.078413][T16297]  ? rcu_is_watching+0x12/0xc0
[  615.078441][T16297]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  615.078457][T16297]  tracepoint_probe_register+0xc4/0x110
[  615.078474][T16297]  ? __pfx_tracepoint_probe_register+0x10/0x10
[  615.078490][T16297]  ? __pfx_probe_sched_wakeup+0x10/0x10
[  615.078504][T16297]  ? __lock_acquire+0x4a5/0x2630
[  615.078528][T16297]  tracing_start_sched_switch+0xaf/0x170
[  615.078552][T16297]  __ftrace_event_enable_disable+0x557/0x6f0
[  615.078571][T16297]  __ftrace_set_clr_event_nolock+0x390/0xc30
[  615.078596][T16297]  ftrace_set_clr_event+0x16e/0x330
[  615.078616][T16297]  ? __pfx_ftrace_set_clr_event+0x10/0x10
[  615.078634][T16297]  ? trace_get_user+0x3ae/0xa70
[  615.078655][T16297]  ftrace_event_write+0x259/0x2c0
[  615.078674][T16297]  ? __pfx_ftrace_event_write+0x10/0x10
[  615.078701][T16297]  vfs_write+0x2aa/0x1070
[  615.078717][T16297]  ? __pfx_ftrace_event_write+0x10/0x10
[  615.078738][T16297]  ? __pfx_vfs_write+0x10/0x10
[  615.078751][T16297]  ? __fget_files+0x215/0x3d0
[  615.078770][T16297]  ? __fget_files+0x21f/0x3d0
[  615.078790][T16297]  ksys_write+0x12a/0x250
[  615.078804][T16297]  ? __pfx_ksys_write+0x10/0x10
[  615.078825][T16297]  do_syscall_64+0x106/0xf80
[  615.078845][T16297]  ? clear_bhb_loop+0x40/0x90
[  615.078863][T16297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  615.078879][T16297] RIP: 0033:0x7f94fcf9c799
[  615.078893][T16297] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  615.078907][T16297] RSP: 002b:00007f94fb1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  615.078923][T16297] RAX: ffffffffffffffda RBX: 00007f94fd216180 RCX: 00007f94fcf9c799
[  615.078933][T16297] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 000000000000000a
[  615.078942][T16297] RBP: 00007f94fd032c99 R08: 0000000000000000 R09: 0000000000000000
[  615.078951][T16297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  615.078961][T16297] R13: 00007f94fd216218 R14: 00007f94fd216180 R15: 00007ffd72102fd8
[  615.078982][T16297]  </TASK>
[  615.397339][T16309] netlink: 'syz.4.2171': attribute type 4 has an invalid length.
[  615.405081][T16309] netlink: 314 bytes leftover after parsing attributes in process `syz.4.2171'.
[  615.415738][T16309] IPv6: NLM_F_CREATE should be specified when creating new route
[  615.466414][ T5149] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  615.773427][ T5149] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  616.099729][ T5149] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  616.252212][ T5149] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  616.790321][   T49] bridge_slave_1: left allmulticast mode
[  616.796486][   T49] bridge_slave_1: left promiscuous mode
[  616.890620][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  617.029259][   T49] bridge_slave_0: left allmulticast mode
[  617.058583][   T49] bridge_slave_0: left promiscuous mode
[  617.093104][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  617.580051][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  617.613431][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  617.644144][   T49] bond0 (unregistering): Released all slaves
[  617.993687][T16305] FAULT_INJECTION: forcing a failure.
[  617.993687][T16305] name fail_futex, interval 1, probability 0, space 0, times 0
[  618.126803][   T49] i: left promiscuous mode
[  618.186883][T16305] CPU: 0 UID: 0 PID: 16305 Comm: syz.2.2168 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  618.186909][T16305] Tainted: [L]=SOFTLOCKUP
[  618.186915][T16305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  618.186925][T16305] Call Trace:
[  618.186932][T16305]  <TASK>
[  618.186938][T16305]  dump_stack_lvl+0x100/0x190
[  618.186971][T16305]  should_fail_ex.cold+0x5/0xa
[  618.186990][T16305]  get_futex_key+0x1d2/0x1620
[  618.187011][T16305]  ? __pfx_get_futex_key+0x10/0x10
[  618.187031][T16305]  ? __lock_acquire+0x4a5/0x2630
[  618.187054][T16305]  futex_wait_setup+0x83/0x510
[  618.187081][T16305]  __futex_wait+0x19f/0x300
[  618.187104][T16305]  ? __pfx___futex_wait+0x10/0x10
[  618.187124][T16305]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  618.187145][T16305]  ? lockdep_hardirqs_on+0x78/0x100
[  618.187168][T16305]  ? __pfx_futex_wake_mark+0x10/0x10
[  618.187193][T16305]  ? find_held_lock+0x2b/0x80
[  618.187206][T16305]  ? futex_wake+0x456/0x530
[  618.187232][T16305]  futex_wait+0xed/0x380
[  618.187254][T16305]  ? __pfx_futex_wait+0x10/0x10
[  618.187280][T16305]  ? __lock_acquire+0x4a5/0x2630
[  618.187302][T16305]  do_futex+0x1ef/0x350
[  618.187321][T16305]  ? __pfx_do_futex+0x10/0x10
[  618.187341][T16305]  ? find_held_lock+0x2b/0x80
[  618.187357][T16305]  __x64_sys_futex+0x34f/0x4d0
[  618.187378][T16305]  ? __fget_files+0x21f/0x3d0
[  618.187392][T16305]  ? __pfx___x64_sys_futex+0x10/0x10
[  618.187419][T16305]  do_syscall_64+0x106/0xf80
[  618.187439][T16305]  ? clear_bhb_loop+0x40/0x90
[  618.187458][T16305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  618.187473][T16305] RIP: 0033:0x7f94fcf9c799
[  618.187487][T16305] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  618.187503][T16305] RSP: 002b:00007f94fadd30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  618.187518][T16305] RAX: ffffffffffffffda RBX: 00007f94fd216278 RCX: 00007f94fcf9c799
[  618.187528][T16305] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f94fd216278
[  618.187539][T16305] RBP: 00007f94fd216270 R08: 0000000000000000 R09: 0000000000000000
[  618.187549][T16305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  618.187558][T16305] R13: 00007f94fd216308 R14: 00007ffd72102ef0 R15: 00007ffd72102fd8
[  618.187578][T16305]  </TASK>
[  618.740329][ T5149] Bluetooth: hci1: command tx timeout
[  618.912819][   T49] HfR: left promiscuous mode
[  618.938446][T16297] wakeup trace: Couldn't activate tracepoint probe to kernel_sched_wakeup
[  619.049058][T16358] netlink: 'syz.4.2181': attribute type 1 has an invalid length.
[  620.351256][T16295] chnl_net:caif_netlink_parms(): no params data found
[  620.816303][T15637] Bluetooth: hci1: command tx timeout
[  621.377331][T16295] bridge0: port 1(bridge_slave_0) entered blocking state
[  621.408170][T16295] bridge0: port 1(bridge_slave_0) entered disabled state
[  621.459233][T16295] bridge_slave_0: entered allmulticast mode
[  621.501772][T16295] bridge_slave_0: entered promiscuous mode
[  621.842102][T16295] bridge0: port 2(bridge_slave_1) entered blocking state
[  621.907230][T16295] bridge0: port 2(bridge_slave_1) entered disabled state
[  621.972634][T16295] bridge_slave_1: entered allmulticast mode
[  622.036957][T16295] bridge_slave_1: entered promiscuous mode
[  622.167454][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  622.173818][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  622.312404][T16295] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  622.395235][T16295] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  622.882359][T15637] Bluetooth: hci1: command tx timeout
[  622.900417][T16295] team0: Port device team_slave_0 added
[  622.981475][T16295] team0: Port device team_slave_1 added
[  623.208919][T16295] batman_adv: batadv0: Adding interface: batadv_slave_0
[  623.248097][T16295] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  623.360425][T16295] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  623.409093][T16295] batman_adv: batadv0: Adding interface: batadv_slave_1
[  623.451559][T16295] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  623.571706][T16295] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  624.132206][T16295] hsr_slave_0: entered promiscuous mode
[  624.163533][T16295] hsr_slave_1: entered promiscuous mode
[  624.206065][T16295] debugfs: 'hsr0' already exists in 'hsr'
[  624.250596][T16295] Cannot create hsr debugfs directory
[  624.951691][T15637] Bluetooth: hci1: command tx timeout
[  625.552909][T16491] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2198'.
[  625.688311][T16498] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2198'.
[  626.190085][T16504] netlink: 29 bytes leftover after parsing attributes in process `syz.1.2200'.
[  626.282213][T15637] Bluetooth: hci0: unexpected event 0x02 length: 726 > 260
[  626.804379][   T49] hsr_slave_0: left promiscuous mode
[  626.877613][   T49] hsr_slave_1: left promiscuous mode
[  626.899076][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  626.952314][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  627.010535][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  627.058943][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  627.142538][   T49] veth1_macvtap: left promiscuous mode
[  627.172754][   T49] veth0_macvtap: left promiscuous mode
[  627.200015][   T49] veth1_vlan: left promiscuous mode
[  627.224262][   T49] veth0_vlan: left promiscuous mode
[  628.590643][   T49] team0 (unregistering): Port device team_slave_1 removed
[  628.689063][   T49] team0 (unregistering): Port device team_slave_0 removed
[  630.735920][T16582] program syz.1.2210 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  631.224516][T16295] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  631.336351][T16295] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  631.480758][T16602] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2212'.
[  631.557472][T16600] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2212'.
[  631.803194][T16606] NFSD: Failed to start, no listeners configured.
[  631.918670][T16295] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  631.981782][T16295] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  633.187938][T16295] 8021q: adding VLAN 0 to HW filter on device bond0
[  633.266851][T16295] 8021q: adding VLAN 0 to HW filter on device team0
[  633.372752][T14399] bridge0: port 1(bridge_slave_0) entered blocking state
[  633.379882][T14399] bridge0: port 1(bridge_slave_0) entered forwarding state
[  633.510680][T14399] bridge0: port 2(bridge_slave_1) entered blocking state
[  633.517836][T14399] bridge0: port 2(bridge_slave_1) entered forwarding state
[  634.242151][T16685] ksmbd: Unknown IPC event: 14, ignore.
[  634.686435][T16295] 8021q: adding VLAN 0 to HW filter on device batadv0
[  634.996210][T16295] veth0_vlan: entered promiscuous mode
[  635.311230][T16295] veth1_vlan: entered promiscuous mode
[  635.775847][T16295] veth0_macvtap: entered promiscuous mode
[  635.948499][T16295] veth1_macvtap: entered promiscuous mode
[  636.164293][T16295] batman_adv: batadv0: Interface activated: batadv_slave_0
[  636.333088][T16295] batman_adv: batadv0: Interface activated: batadv_slave_1
[  636.746182][T14399] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  636.788781][T14399] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  636.933150][T14399] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  636.987007][T14399] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  637.306761][   T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  637.358934][   T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  637.539253][T16742] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  637.560281][T16742] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  637.588978][T16742] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  637.598999][T16742] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  637.628669][T16742] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  637.647745][T16742] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  637.667849][T14399] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  637.690346][T14399] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  637.715071][T16742] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  639.394083][T16767] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  639.502182][T16767] netlink: 206 bytes leftover after parsing attributes in process `syz.3.2232'.
[  639.522979][T15637] Bluetooth: hci0: command 0x0c1a tx timeout
[  639.605935][T15637] Bluetooth: hci5: command 0x0c1a tx timeout
[  639.612700][ T5149] Bluetooth: hci4: command 0x0c1a tx timeout
[  639.618905][ T5835] Bluetooth: hci3: command 0x0c1a tx timeout
[  639.678478][ T5149] Bluetooth: hci1: command 0x0c1a tx timeout
[  639.945808][T16781] FAULT_INJECTION: forcing a failure.
[  639.945808][T16781] name failslab, interval 1, probability 0, space 0, times 0
[  640.024900][T16781] CPU: 0 UID: 0 PID: 16781 Comm: syz.4.2235 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  640.024950][T16781] Tainted: [L]=SOFTLOCKUP
[  640.024962][T16781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  640.024983][T16781] Call Trace:
[  640.024989][T16781]  <TASK>
[  640.024995][T16781]  dump_stack_lvl+0x100/0x190
[  640.025025][T16781]  should_fail_ex.cold+0x5/0xa
[  640.025044][T16781]  should_failslab+0xc2/0x120
[  640.025063][T16781]  __kmalloc_cache_noprof+0x7a/0x6f0
[  640.025082][T16781]  ? landlock_init_hierarchy_log+0xa9/0x820
[  640.025173][T16781]  landlock_init_hierarchy_log+0xa9/0x820
[  640.025199][T16781]  landlock_merge_ruleset+0x67b/0x830
[  640.025216][T16781]  ? prepare_creds+0x5ee/0x950
[  640.025241][T16781]  __do_sys_landlock_restrict_self+0x2a6/0x9e0
[  640.025294][T16781]  do_syscall_64+0x106/0xf80
[  640.025317][T16781]  ? clear_bhb_loop+0x40/0x90
[  640.025336][T16781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  640.025358][T16781] RIP: 0033:0x7f1cb4d9c799
[  640.025373][T16781] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  640.025388][T16781] RSP: 002b:00007f1cb5d29028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[  640.025404][T16781] RAX: ffffffffffffffda RBX: 00007f1cb5015fa0 RCX: 00007f1cb4d9c799
[  640.025415][T16781] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000005
[  640.025424][T16781] RBP: 00007f1cb4e32c99 R08: 0000000000000000 R09: 0000000000000000
[  640.025433][T16781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  640.025442][T16781] R13: 00007f1cb5016038 R14: 00007f1cb5015fa0 R15: 00007ffd122e0008
[  640.025462][T16781]  </TASK>
[  640.985381][T16775] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  640.994022][T16775] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  641.000755][T16775] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  641.062471][T16775] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  641.096774][T16775] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  641.748907][ T5149] Bluetooth: hci0: command 0x0c1a tx timeout
[  641.839340][T16817] FAULT_INJECTION: forcing a failure.
[  641.839340][T16817] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  641.917197][T16817] CPU: 0 UID: 0 PID: 16817 Comm: syz.3.2243 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  641.917226][T16817] Tainted: [L]=SOFTLOCKUP
[  641.917232][T16817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  641.917242][T16817] Call Trace:
[  641.917248][T16817]  <TASK>
[  641.917255][T16817]  dump_stack_lvl+0x100/0x190
[  641.917284][T16817]  should_fail_ex.cold+0x5/0xa
[  641.917300][T16817]  ? prepare_alloc_pages+0x16d/0x5f0
[  641.917321][T16817]  should_fail_alloc_page+0xeb/0x140
[  641.917340][T16817]  prepare_alloc_pages+0x1f0/0x5f0
[  641.917361][T16817]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  641.917384][T16817]  ? rcu_is_watching+0x12/0xc0
[  641.917423][T16817]  ? __lock_acquire+0x4a5/0x2630
[  641.917449][T16817]  ? __lock_acquire+0x4a5/0x2630
[  641.917468][T16817]  ? css_rstat_updated+0x1ce/0x5a0
[  641.917486][T16817]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  641.917509][T16817]  ? __pfx_css_rstat_updated+0x10/0x10
[  641.917530][T16817]  ? folios_put_refs+0x66d/0x840
[  641.917555][T16817]  ? __pfx_folios_put_refs+0x10/0x10
[  641.917580][T16817]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  641.917605][T16817]  ? policy_nodemask+0xed/0x4f0
[  641.917622][T16817]  alloc_pages_mpol+0x1fb/0x550
[  641.917640][T16817]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  641.917656][T16817]  ? __folio_batch_add_and_move+0x5e5/0xc60
[  641.917685][T16817]  ? __folio_batch_add_and_move+0x5e5/0xc60
[  641.917711][T16817]  folio_alloc_mpol_noprof+0x36/0x340
[  641.917732][T16817]  shmem_alloc_folio+0x135/0x160
[  641.917752][T16817]  shmem_alloc_and_add_folio+0x371/0xd40
[  641.917779][T16817]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  641.917803][T16817]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  641.917830][T16817]  shmem_get_folio_gfp+0x6ab/0x1900
[  641.917854][T16817]  ? find_held_lock+0x2b/0x80
[  641.917869][T16817]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  641.917893][T16817]  ? ktime_get_coarse_real_ts64_mg+0x235/0x300
[  641.917912][T16817]  ? lockdep_hardirqs_on+0x78/0x100
[  641.917936][T16817]  shmem_fault+0x1f9/0xa20
[  641.917958][T16817]  ? __lock_acquire+0x4a5/0x2630
[  641.917977][T16817]  ? __pfx_shmem_fault+0x10/0x10
[  641.918001][T16817]  ? __up_read+0x2c5/0x700
[  641.918030][T16817]  ? __pfx_filemap_map_pages+0x10/0x10
[  641.918052][T16817]  __do_fault+0x10d/0x550
[  641.918069][T16817]  ? __pfx_filemap_map_pages+0x10/0x10
[  641.918090][T16817]  do_fault+0x2db/0x1990
[  641.918111][T16817]  __handle_mm_fault+0x180f/0x2b60
[  641.918136][T16817]  ? __pfx___handle_mm_fault+0x10/0x10
[  641.918157][T16817]  ? pte_offset_map_lock+0x174/0x320
[  641.918173][T16817]  ? find_held_lock+0x2b/0x80
[  641.918194][T16817]  ? follow_page_pte+0x5b3/0x1400
[  641.918215][T16817]  handle_mm_fault+0x36d/0xa20
[  641.918238][T16817]  __get_user_pages+0xf9c/0x34d0
[  641.918261][T16817]  ? down_read_killable+0x30e/0x4c0
[  641.918278][T16817]  ? __pfx___get_user_pages+0x10/0x10
[  641.918300][T16817]  faultin_page_range+0x1f1/0x9e0
[  641.918323][T16817]  madvise_do_behavior+0x354/0x510
[  641.918343][T16817]  ? __pfx_madvise_do_behavior+0x10/0x10
[  641.918372][T16817]  do_madvise+0x195/0x240
[  641.918390][T16817]  ? __pfx_do_madvise+0x10/0x10
[  641.918408][T16817]  ? do_futex+0x192/0x350
[  641.918430][T16817]  ? irqentry_exit+0x180/0x670
[  641.918468][T16817]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  641.918491][T16817]  __x64_sys_madvise+0xa9/0x110
[  641.918509][T16817]  ? lockdep_hardirqs_on+0x78/0x100
[  641.918531][T16817]  do_syscall_64+0x106/0xf80
[  641.918552][T16817]  ? clear_bhb_loop+0x40/0x90
[  641.918572][T16817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  641.918589][T16817] RIP: 0033:0x7f143d79c799
[  641.918603][T16817] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  641.918618][T16817] RSP: 002b:00007f143e664028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  641.918634][T16817] RAX: ffffffffffffffda RBX: 00007f143da15fa0 RCX: 00007f143d79c799
[  641.918645][T16817] RDX: 0000000000000017 RSI: ffffffffffff0005 RDI: 0000000000000000
[  641.918654][T16817] RBP: 00007f143d832c99 R08: 0000000000000000 R09: 0000000000000000
[  641.918683][T16817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  641.918693][T16817] R13: 00007f143da16038 R14: 00007f143da15fa0 R15: 00007ffd6e44a0a8
[  641.918713][T16817]  </TASK>
[  643.161894][ T5149] Bluetooth: hci4: command 0x0c1a tx timeout
[  643.168254][ T5149] Bluetooth: hci3: command 0x0c1a tx timeout
[  643.174488][ T5149] Bluetooth: hci1: command 0x0c1a tx timeout
[  643.180505][ T5149] Bluetooth: hci5: command 0x0c1a tx timeout
[  643.264162][T16833] FAULT_INJECTION: forcing a failure.
[  643.264162][T16833] name failslab, interval 1, probability 0, space 0, times 0
[  643.319757][T16833] CPU: 0 UID: 0 PID: 16833 Comm: syz.1.2245 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  643.319781][T16833] Tainted: [L]=SOFTLOCKUP
[  643.319786][T16833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  643.319795][T16833] Call Trace:
[  643.319800][T16833]  <TASK>
[  643.319806][T16833]  dump_stack_lvl+0x100/0x190
[  643.319831][T16833]  should_fail_ex.cold+0x5/0xa
[  643.319849][T16833]  should_failslab+0xc2/0x120
[  643.319865][T16833]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  643.319885][T16833]  ? ptlock_alloc+0x1f/0x70
[  643.319908][T16833]  ptlock_alloc+0x1f/0x70
[  643.319925][T16833]  pte_alloc_one+0x82/0x3d0
[  643.319943][T16833]  __pte_alloc+0x6d/0x3e0
[  643.319957][T16833]  ? __pfx___pte_alloc+0x10/0x10
[  643.319972][T16833]  ? _raw_spin_unlock+0x28/0x50
[  643.319990][T16833]  ? __pmd_alloc+0x3fb/0x950
[  643.320007][T16833]  move_page_tables+0x257e/0x4500
[  643.320029][T16833]  ? __pfx_copy_vma+0x10/0x10
[  643.320056][T16833]  ? __pfx_move_page_tables+0x10/0x10
[  643.320089][T16833]  copy_vma_and_data+0x25c/0x7c0
[  643.320111][T16833]  ? __pfx_copy_vma_and_data+0x10/0x10
[  643.320139][T16833]  ? __vma_start_write+0x17f/0x280
[  643.320157][T16833]  ? __pfx___vma_start_write+0x10/0x10
[  643.320180][T16833]  move_vma+0x51b/0x1890
[  643.320203][T16833]  ? __pfx_move_vma+0x10/0x10
[  643.320224][T16833]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[  643.320241][T16833]  ? cap_mmap_addr+0x4b/0x120
[  643.320264][T16833]  ? bpf_lsm_mmap_addr+0x9/0x30
[  643.320276][T16833]  ? security_mmap_addr+0x71/0x1e0
[  643.320294][T16833]  ? __get_unmapped_area+0x255/0x3e0
[  643.320312][T16833]  ? vrm_set_new_addr+0x204/0x290
[  643.320333][T16833]  mremap_to+0x1b7/0x450
[  643.320353][T16833]  do_mremap+0xb76/0x2130
[  643.320381][T16833]  ? __pfx_do_mremap+0x10/0x10
[  643.320405][T16833]  ? ksys_write+0x190/0x250
[  643.320423][T16833]  __do_sys_mremap+0x126/0x170
[  643.320443][T16833]  ? __pfx___do_sys_mremap+0x10/0x10
[  643.320469][T16833]  ? __x64_sys_futex+0x34f/0x4d0
[  643.320498][T16833]  do_syscall_64+0x106/0xf80
[  643.320517][T16833]  ? clear_bhb_loop+0x40/0x90
[  643.320535][T16833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  643.320550][T16833] RIP: 0033:0x7fe32399c799
[  643.320562][T16833] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  643.320576][T16833] RSP: 002b:00007fe3248a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  643.320590][T16833] RAX: ffffffffffffffda RBX: 00007fe323c15fa0 RCX: 00007fe32399c799
[  643.320600][T16833] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000
[  643.320609][T16833] RBP: 00007fe323a32c99 R08: 0000000100000000 R09: 0000000000000000
[  643.320618][T16833] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  643.320627][T16833] R13: 00007fe323c16038 R14: 00007fe323c15fa0 R15: 00007ffc7fc63ab8
[  643.320646][T16833]  </TASK>
[  645.086163][T16850] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  645.142828][T16850] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  645.193149][T16850] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  645.228978][T16850] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  645.251966][T15637] Bluetooth: hci1: command 0x0c1a tx timeout
[  645.278786][T16850] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  645.394307][T16862] FAULT_INJECTION: forcing a failure.
[  645.394307][T16862] name fail_futex, interval 1, probability 0, space 0, times 0
[  645.451999][T16862] CPU: 0 UID: 0 PID: 16862 Comm: syz.3.2251 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  645.452026][T16862] Tainted: [L]=SOFTLOCKUP
[  645.452031][T16862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  645.452041][T16862] Call Trace:
[  645.452046][T16862]  <TASK>
[  645.452053][T16862]  dump_stack_lvl+0x100/0x190
[  645.452080][T16862]  should_fail_ex.cold+0x5/0xa
[  645.452095][T16862]  ? __kernel_text_address+0xd/0x30
[  645.452119][T16862]  get_futex_key+0x1d2/0x1620
[  645.452140][T16862]  ? __pfx_get_futex_key+0x10/0x10
[  645.452158][T16862]  ? putname+0xb1/0x110
[  645.452175][T16862]  ? stack_trace_save+0x8e/0xc0
[  645.452190][T16862]  ? __pfx_stack_trace_save+0x10/0x10
[  645.452207][T16862]  futex_wait_setup+0x83/0x510
[  645.452233][T16862]  __futex_wait+0x19f/0x300
[  645.452257][T16862]  ? __pfx___futex_wait+0x10/0x10
[  645.452281][T16862]  ? __pfx_futex_wake_mark+0x10/0x10
[  645.452305][T16862]  ? futex_hash+0x2c5/0x380
[  645.452334][T16862]  futex_wait+0xed/0x380
[  645.452357][T16862]  ? __pfx_futex_wait+0x10/0x10
[  645.452383][T16862]  ? putname+0xb1/0x110
[  645.452398][T16862]  ? kmem_cache_free+0x124/0x6a0
[  645.452417][T16862]  ? do_sys_openat2+0x1b4/0x1e0
[  645.452439][T16862]  do_futex+0x1ef/0x350
[  645.452458][T16862]  ? __pfx_do_futex+0x10/0x10
[  645.452475][T16862]  ? __pfx_do_sys_openat2+0x10/0x10
[  645.452495][T16862]  ? find_held_lock+0x2b/0x80
[  645.452512][T16862]  __x64_sys_futex+0x34f/0x4d0
[  645.452532][T16862]  ? __x64_sys_openat+0x12d/0x210
[  645.452551][T16862]  ? __pfx___x64_sys_futex+0x10/0x10
[  645.452577][T16862]  do_syscall_64+0x106/0xf80
[  645.452599][T16862]  ? clear_bhb_loop+0x40/0x90
[  645.452617][T16862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  645.452633][T16862] RIP: 0033:0x7f143d79c799
[  645.452647][T16862] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  645.452661][T16862] RSP: 002b:00007f143e6640e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  645.452677][T16862] RAX: ffffffffffffffda RBX: 00007f143da15fa8 RCX: 00007f143d79c799
[  645.452687][T16862] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f143da15fa8
[  645.452697][T16862] RBP: 00007f143da15fa0 R08: 0000000000000000 R09: 0000000000000000
[  645.452707][T16862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  645.452716][T16862] R13: 00007f143da16038 R14: 00007ffd6e449fc0 R15: 00007ffd6e44a0a8
[  645.452736][T16862]  </TASK>
[  646.671632][T16874] NFSD: Failed to start, no listeners configured.
[  646.687997][T15637] Bluetooth: hci0: command 0x0c1a tx timeout
[  646.906303][T16895] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  647.083336][T15637] Bluetooth: hci3: command 0x0c1a tx timeout
[  647.147772][T16898] ------------[ cut here ]------------
[  647.153743][T16898] IS_ERR(old)
[  647.153774][T16898] WARNING: kernel/tracepoint.c:367 at tracepoint_probe_unregister+0x837/0xd10, CPU#0: syz.4.2259/16898
[  647.168409][T16898] Modules linked in:
[  647.172614][T16898] CPU: 0 UID: 0 PID: 16898 Comm: syz.4.2259 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  647.183746][T16898] Tainted: [L]=SOFTLOCKUP
[  647.188055][T16898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  647.198358][T16898] RIP: 0010:tracepoint_probe_unregister+0x837/0xd10
[  647.205160][T16898] Code: cc e8 6d 2b fe ff 48 8d 73 f0 48 c7 c2 a0 df 09 82 48 c7 c7 c0 32 87 8e e8 e6 79 e2 ff eb ba bb fe ff ff ff e8 4a 2b fe ff 90 <0f> 0b 90 eb ac e8 3f 2b fe ff 49 89 dd 45 31 ff 49 be 00 00 00 00
[  647.226376][T16898] RSP: 0018:ffffc90003b378a8 EFLAGS: 00010287
[  647.232445][T16898] RAX: 00000000000073aa RBX: 00000000fffffffe RCX: ffffc900188ee000
[  647.241090][T16898] RDX: 0000000000080000 RSI: ffffffff8209f096 RDI: ffff888055cc5b80
[  647.249489][T16898] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  647.257719][T16898] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff82100b60
[  647.265732][T16898] R13: 0000000000000302 R14: 0000000000000002 R15: ffffffff8f786f20
[  647.273919][T16898] FS:  00007f1cb5d296c0(0000) GS:ffff888124349000(0000) knlGS:0000000000000000
[  647.283273][T16898] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  647.289864][T16898] CR2: 0000200000a00000 CR3: 0000000045514000 CR4: 00000000003526f0
[  647.297990][T16898] Call Trace:
[  647.301518][T16898]  <TASK>
[  647.304568][T16898]  tracing_stop_cmdline_record+0x66/0xa0
[  647.311061][T16898]  __ftrace_event_enable_disable+0x5c4/0x6f0
[  647.317617][T16898]  ftrace_event_set_open+0x224/0x380
[  647.323075][T16898]  do_dentry_open+0x6d8/0x1660
[  647.327829][T16898]  ? __pfx_ftrace_event_set_open+0x10/0x10
[  647.333689][T16898]  vfs_open+0x82/0x3f0
[  647.337752][T16898]  path_openat+0x208c/0x31a0
[  647.342385][T16898]  ? __pfx_path_openat+0x10/0x10
[  647.347688][T16898]  do_file_open+0x20e/0x430
[  647.352438][T16898]  ? __pfx_do_file_open+0x10/0x10
[  647.357482][T16898]  ? alloc_fd+0x476/0x790
[  647.361800][T16898]  ? do_getname+0x191/0x390
[  647.366330][T16898]  do_sys_openat2+0x10d/0x1e0
[  647.371001][T16898]  ? __pfx_do_sys_openat2+0x10/0x10
[  647.376237][T16898]  __x64_sys_openat+0x12d/0x210
[  647.381077][T16898]  ? __pfx___x64_sys_openat+0x10/0x10
[  647.386474][T16898]  do_syscall_64+0x106/0xf80
[  647.391069][T16898]  ? clear_bhb_loop+0x40/0x90
[  647.395905][T16898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  647.401936][T16898] RIP: 0033:0x7f1cb4d9c799
[  647.406351][T16898] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  647.426921][T16898] RSP: 002b:00007f1cb5d29028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  647.435883][T16898] RAX: ffffffffffffffda RBX: 00007f1cb5015fa0 RCX: 00007f1cb4d9c799
[  647.443893][T16898] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  647.452259][T16898] RBP: 00007f1cb4e32c99 R08: 0000000000000000 R09: 0000000000000000
[  647.460440][T16898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  647.468455][T16898] R13: 00007f1cb5016038 R14: 00007f1cb5015fa0 R15: 00007ffd122e0008
[  647.476452][T16898]  </TASK>
[  647.479482][T16898] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  647.486744][T16898] CPU: 0 UID: 0 PID: 16898 Comm: syz.4.2259 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  647.497660][T16898] Tainted: [L]=SOFTLOCKUP
[  647.501963][T16898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  647.511997][T16898] Call Trace:
[  647.515257][T16898]  <TASK>
[  647.518171][T16898]  dump_stack_lvl+0x100/0x190
[  647.522843][T16898]  vpanic+0x552/0x970
[  647.526806][T16898]  ? __pfx_vpanic+0x10/0x10
[  647.531301][T16898]  panic+0xd1/0xe0
[  647.535004][T16898]  ? __pfx_panic+0x10/0x10
[  647.539426][T16898]  check_panic_on_warn.cold+0x19/0x34
[  647.544779][T16898]  ? tracepoint_probe_unregister+0x837/0xd10
[  647.550742][T16898]  __warn.cold+0x191/0x348
[  647.555142][T16898]  __report_bug+0x296/0x3d0
[  647.559688][T16898]  ? tracepoint_probe_unregister+0x837/0xd10
[  647.565653][T16898]  ? __pfx___report_bug+0x10/0x10
[  647.570662][T16898]  ? rcu_is_watching+0x12/0xc0
[  647.575414][T16898]  ? trace_contention_end+0x140/0x180
[  647.580774][T16898]  ? __mutex_lock+0x26a/0x1b90
[  647.585526][T16898]  ? tracepoint_probe_unregister+0x31/0xd10
[  647.591402][T16898]  ? tracepoint_probe_unregister+0x837/0xd10
[  647.597363][T16898]  report_bug+0xb2/0x220
[  647.601593][T16898]  ? tracepoint_probe_unregister+0x837/0xd10
[  647.607553][T16898]  handle_bug+0x16a/0x2a0
[  647.611868][T16898]  exc_invalid_op+0x17/0x50
[  647.616354][T16898]  asm_exc_invalid_op+0x1a/0x20
[  647.621192][T16898] RIP: 0010:tracepoint_probe_unregister+0x837/0xd10
[  647.627766][T16898] Code: cc e8 6d 2b fe ff 48 8d 73 f0 48 c7 c2 a0 df 09 82 48 c7 c7 c0 32 87 8e e8 e6 79 e2 ff eb ba bb fe ff ff ff e8 4a 2b fe ff 90 <0f> 0b 90 eb ac e8 3f 2b fe ff 49 89 dd 45 31 ff 49 be 00 00 00 00
[  647.647351][T16898] RSP: 0018:ffffc90003b378a8 EFLAGS: 00010287
[  647.653399][T16898] RAX: 00000000000073aa RBX: 00000000fffffffe RCX: ffffc900188ee000
[  647.661352][T16898] RDX: 0000000000080000 RSI: ffffffff8209f096 RDI: ffff888055cc5b80
[  647.669304][T16898] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  647.677257][T16898] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff82100b60
[  647.685208][T16898] R13: 0000000000000302 R14: 0000000000000002 R15: ffffffff8f786f20
[  647.693161][T16898]  ? __pfx_probe_sched_switch+0x10/0x10
[  647.698699][T16898]  ? tracepoint_probe_unregister+0x836/0xd10
[  647.704664][T16898]  ? tracepoint_probe_unregister+0x836/0xd10
[  647.710632][T16898]  tracing_stop_cmdline_record+0x66/0xa0
[  647.716255][T16898]  __ftrace_event_enable_disable+0x5c4/0x6f0
[  647.722221][T16898]  ftrace_event_set_open+0x224/0x380
[  647.727490][T16898]  do_dentry_open+0x6d8/0x1660
[  647.732238][T16898]  ? __pfx_ftrace_event_set_open+0x10/0x10
[  647.738031][T16898]  vfs_open+0x82/0x3f0
[  647.742087][T16898]  path_openat+0x208c/0x31a0
[  647.746666][T16898]  ? __pfx_path_openat+0x10/0x10
[  647.751594][T16898]  do_file_open+0x20e/0x430
[  647.756081][T16898]  ? __pfx_do_file_open+0x10/0x10
[  647.761100][T16898]  ? alloc_fd+0x476/0x790
[  647.765412][T16898]  ? do_getname+0x191/0x390
[  647.769901][T16898]  do_sys_openat2+0x10d/0x1e0
[  647.774563][T16898]  ? __pfx_do_sys_openat2+0x10/0x10
[  647.779752][T16898]  __x64_sys_openat+0x12d/0x210
[  647.784588][T16898]  ? __pfx___x64_sys_openat+0x10/0x10
[  647.789952][T16898]  do_syscall_64+0x106/0xf80
[  647.794528][T16898]  ? clear_bhb_loop+0x40/0x90
[  647.799188][T16898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  647.805061][T16898] RIP: 0033:0x7f1cb4d9c799
[  647.809456][T16898] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  647.829064][T16898] RSP: 002b:00007f1cb5d29028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  647.837458][T16898] RAX: ffffffffffffffda RBX: 00007f1cb5015fa0 RCX: 00007f1cb4d9c799
[  647.845428][T16898] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  647.853397][T16898] RBP: 00007f1cb4e32c99 R08: 0000000000000000 R09: 0000000000000000
[  647.861782][T16898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  647.869733][T16898] R13: 00007f1cb5016038 R14: 00007f1cb5015fa0 R15: 00007ffd122e0008
[  647.877695][T16898]  </TASK>
[  647.880763][T16898] Kernel Offset: disabled
[  647.885073][T16898] Rebooting in 86400 seconds..