last executing test programs:

5.971993917s ago: executing program 1 (id=1186):
keyctl$auto_KEYCTL_SET_TIMEOUT(0xf, 0x68f5e919, 0x4, 0x5, 0x5)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x7)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x62301, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="1b0026bd70941214f9274fcdb10000000000000002ff070004"], 0x30}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="db002cbd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' '], 0x1ac}}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)
write$auto(0x3, 0x0, 0x5c8)
mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0x3, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r3 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r3, 0x0, 0x80, 0x0, 0x0)
listen$auto(0x3, 0x81)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_SNDCTL_DSP_GETFMTS(r1, 0x8004500b, 0x0)

5.773890344s ago: executing program 2 (id=1187):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r1 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x11, 0x3, 0x2)
r2 = openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000000040), 0x101400, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1)
sendmsg$auto_NL80211_CMD_CONNECT(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000002900)={0x13a4, r3, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@NL80211_ATTR_NETNS_FD={0x8, 0xdb, r0}, @NL80211_ATTR_HE_6GHZ_CAPABILITY={0x1004, 0x125, "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"}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x5c}, @NL80211_ATTR_STA_FLAGS={0x2e, 0x11, 0x0, 0x1, [@typed={0x8, 0xff, 0x0, 0x0, @fd=r2}, @generic="93b623646be85a0eda3c3860d69f21201a7b6f927ec5fa2690ec8f406ddb2a476bf0"]}, @NL80211_ATTR_DISABLE_VHT={0x4}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x340, 0x75, 0x0, 0x1, [@typed={0xf, 0x140, 0x0, 0x0, @str='/dev/ttyS2\x00'}, @generic="cba1d7438b5ba69edc0b2db97643d696e1ef1eeea830e3535e6d5424e725019a2f34ffb2ac3b5e30b6b4c44f78df5f892b3223ce863f0f7e0391920220ae94934f118857532061b7cad7599f53ee3603cbb6e644d714b5654fb67f4b2e26387157e3bc38805aebd8be5fef55aa191c2ecebedbd101393d27b176fc829bb138d79cdf616fc4e570f82b486cdde811e0c5d0ce8edbf26cdfecd2d802013e1fa6f851c117edffdacd471a0611c0d90666c2f7e2a6f3ae375e3268da2ce7c8449b83", @nested={0xd6, 0xfd, 0x0, 0x1, [@generic="e295f493ff62dcb56a6dc3481a0d03db38ecfa8417b1105fe17922b882f3c473996127686de6649fe14b0ba514cc3b11fb8b7bf2827fb4b884b50e17076af1e5b5e918fb124018ce2f53459529e1bfdd3a8170e6361940110aef1d6797639b29f8c9aa7390de9985eb91e62f338e7174de9e184b937fdc62b19d6dc57693123188875c80f8c86d70889ddfa7269401d5ad0db0e73506224d88e47b4442add6e56b969cfa2b7b46e2c1282f85f1896fbff027943f1b161f798747e24765101a89e2689f06f5754642d913d897f755", @nested={0x4, 0x60}]}, @generic="db681f42a559d7e43aded8562f8b4f1d2572f779ec65f53c9802dd4a7527fbdeaeedd86f3f3b05af632117b8bb5d5e17a74c9451844672bd3e18d3f522eba4383f9843ad390e1a27d86cd225e93fd9ee0708aad0", @typed={0x140, 0x2, 0x0, 0x0, @str='/dev/raw-gadge\xd7\xb4\xb5\xb5\x8b-\a\x8c\xe2\xee;\xf0e)\xc8\xa9t\x00\xdc\n:!\r\xe3o\x06\x96\xd1\xc6\xed\x7f\x9c\xe9h:\xe6)\f\xaf\"\x00)\xde\xc6\x98z\xb7\xf9\x96L\xee\x92\x99\x91x\xc9\xb9\xeaC\x93k\x92\xbf\')\xa3\xee\x91+\xf3\t\b\x95\xd4k\xf4\x04\x86\x11\x15\xc2\x1b\x8a}/\x8c\\\xbc\x81\x10\xf42\xc7\x88L\xcc\xac\aZ\xa9\xd6k\n\xee\x04n)RX\xf8\x13%\x9c\xea\xe1\xcb!d\xed\x9d\xc6~a\xaf\xe0\xdda-\x1f\xdf}?X7E\xed8b\x18\xe3\x80\xa38\xcb\x00\xde\xeb;\xb7-M\xe3!;\x82\x9c}gM\xef\xd7\x18\xe36\xa4yX1~\xd0G\xa3$I\xcc\x00([\x18\x84\t\xa6\x89\x9d\xe4\x96\xf8\xac\a\\\x13\xdb\xfa\bw\x9c\xec\xca\x8f\xef\xa7\xa7\xd0\xffI\xb3\x0e\xd0\xfan\x8d!\x1c\x80\xbe<G\xe9d\xde\x97R\x06\xe7`k\xd7\xa5\xban\x96OB\x86\x97\xec?\xba\xe1J %\x92\xb9\x13@O\xc2\xf6!\x1f?m(\xec\b/Q|\xb9 \xb2t\xf9\x9fZ\xb2\xd3\xc6K9\x1c\xfdV\x18>\x95\x9a\xce\xb7+\x1f\xaf\xe4\x8a\xbe\x91\xce\xdaG\xaa\xd9|\x907w\xba\x15\xcffR\x94'}]}]}, 0x13a4}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x2, 0x73)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
mprotect$auto(0x0, 0x8000000000000001, 0x8)
madvise$auto(0x0, 0x2003f2, 0x15)
connect$auto(0xffffffffffffffff, 0x0, 0x8)
io_uring_setup$auto(0x59, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
getdents$auto(0xffffffffffffffff, &(0x7f0000000f40)={0x1000000000302, 0xfffffffffffffffa, 0x7}, 0x20000018)
openat$auto_clear_warn_once_fops_(0xffffffffffffff9c, 0x0, 0x410c01, 0x0)
r4 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_MEMGETINFO(r4, 0x80204d01, 0x0)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x9, 0x8000600, 0x0, 0x200)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)

5.53935763s ago: executing program 1 (id=1188):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) (async)
r0 = socket(0xa, 0x801, 0x6)
mmap$auto(0x0, 0x2000a, 0x7e, 0xeb2, 0x401, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) (async)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) (async)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async)
r2 = socket(0x29, 0x2, 0xa) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r3 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/proc/swaps\x00', 0x48800, 0x0)
read$auto_proc_pid_maps_operations_internal(r3, &(0x7f00000003c0)=""/178, 0xb2)
ppoll$auto(&(0x7f0000000040)={r2, 0xfff, 0x6}, 0xfffffff9, &(0x7f0000000080)={0xad, 0x10001}, &(0x7f00000000c0)={0x7fffffffffffffff}, 0x8) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0p/oss\x00', 0xaa102, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0xc0a82, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/set_event\x00', 0xb23400fc020e0bd5, 0x0) (async)
mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r4, 0x10f, 0x86, 0x0, 0x0)
r5 = socket(0xa, 0x1, 0x39)
r6 = getsockopt$auto(r5, 0x29, 0x35, 0x0, 0x0)
read$auto_tracing_fops_trace(r6, &(0x7f0000000280)=""/212, 0xd4)
sendmsg$auto_VDPA_CMD_DEV_VSTATS_GET(r2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x4000850) (async)
ioctl$auto(r1, 0x4611, r1)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00') (async)
getcwd$auto(0x0, 0xffffffffffffffff)
prctl$auto_PR_SET_VMA(0x53564d41, 0x2, 0x0, 0xaa88, 0x2) (async)
setsockopt$auto(r0, 0x6, 0x24, 0x0, 0x9)

5.039273111s ago: executing program 1 (id=1189):
semctl$auto(0x2, 0xff, 0x1, 0x7ff)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r0 = socket(0xa, 0x5, 0x0)
mmap$auto(0x4, 0x8, 0x3, 0xeb5, r0, 0x7ffe)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/fs/cifs/mount_params\x00', 0x802, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/dummy_hcd.7/usb8/serial\x00', 0x2062, 0x0)
sendfile$auto(r3, r2, 0x0, 0x800)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000640)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\xff\x7f\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc:\xfa\x01\xd1\xa3\xb5\xc2B\xa5\xac:woR^a\xb9}\xe7\xbd\xe1\xf77.\xa3\xd8\xc2T\x95\x13\x91\xb6p\xf3\xb2w\xe6\xd7\x94DW\x97\x90a\xe6c\xfb\x88x\xd5L\xa9\xe4\x82\x04\xb1\x8b\r\xcaP\\\x1aVP\xc9\xa4`\xfd\v\x94\f\xc1\x0fQ\xc9\xdcL\x03\x9c\xbfk\xa6\xb1\xb0\xa1\xeeJ\xd8\xef\xc8t\x9d\x1e=J\x91W\xc6AuJ\xb9Q\xed\xd1\a\x05\x9d\x85\xb7b#r\xcd\xaf\xb7\x9f\xf7\xd2\xae\x0f\x98\xa9&\xb6~\xd4\xbd\xbbr\xb9\xc3\xacH!\xc1\x90K2\x05K@\xee\xac\xe8\xc7\t\xab\xbf\xa3\xedb\xd7\xb5\xd7\x83&\x95\xb2?\x0e\x85\xaaIGu\xd6$\xeb\xb6\xdd\a\x121\a\xac\x1bx#\x87\xa9\x10\x9b\xf8YD\x04ZL\xca\x99]\x8f[\x90[\xa8\xbf\x98\xa6\xe50(zC\xe84*w\x13\x96\xd5\xd0\x877\x12\xbc\xa1\xd0h@|\xf9\xfa\x9b\x17\x94\xb9\xe7\xf3\x15\x05\x91\xe8\x98p\x7f:\xd7s\xd9wo\x82\xda\xec\x91\xb7\xd9;H\x8a\b\x00\x00\x00\x00\x00\x00\x00\x8aZ\x94\x14$X7\xaeW6=^I\x9fQ\r5c\x81\xca]\x97m\x89o\x8f\xd8}P>I\xd0\xb3\x88C\xd7', 0x100000a3d9)
ioctl$auto(0xffffffffffffffff, 0x540a, 0x0)
close_range$auto(0x2, r4, 0x401)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r5 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x80000, 0x0)
poll$auto(&(0x7f0000000180)={<r6=>r5, 0xfff4, 0x9818}, 0x7, 0xd)
ioctl$auto_VHOST_SET_OWNER(r6, 0xaf01, 0x0)
r7 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000240), 0x6c6083, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
ioctl$auto_UBI_IOCDET(r7, 0x40046f41, 0x0)
migrate_pages$auto(0x0, 0xa, &(0x7f00000000c0)=0x52a6, &(0x7f0000000140)=0x2)
ioctl$auto_VHOST_SET_LOG_FD2(r5, 0x4004af07, &(0x7f00000003c0))
mmap$auto(0x0, 0x8f, 0x4000000000ff, 0x40eb1, r1, 0x5)
unshare$auto(0x2)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.5/usb6/idVendor\x00', 0x80000, 0x0)
splice$auto(r8, &(0x7f0000000040)=0x7, r7, &(0x7f0000000080)=0x8, 0x5, 0x892)
prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0xfdd5, 0xd, 0x378, 0x9)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

4.924593786s ago: executing program 2 (id=1190):
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x5, 0x0)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
ioctl$auto(0x3, 0x8905, 0x38)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x40000008000)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0xc, 0x24, 0x1, 0xffffffffffffffff, 0x0, 0x5}, 0x4f4)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x101000, 0x0)
write$auto(0x3, 0x0, 0xffd8)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
ioctl$auto_SNDCTL_DSP_RESET(r0, 0x5000, 0x0)
bpf$auto(0x1, 0x0, 0x9)
connect$auto(0x3, 0x0, 0x50)
r1 = io_uring_setup$auto(0x59, 0x0)
io_uring_enter$auto(r1, 0x9, 0x820e, 0x6, 0x0, 0x18)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_BLKPG2(r2, 0x1269, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/controlC2\x00', 0x40140, 0x0)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/perf_event_max_contexts_per_stack\x00', 0x202, 0x0)
prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x2, 0x9, 0x7fff, 0x0)
sendfile$auto(r3, r3, 0x0, 0x7fffe000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0xa40, 0x0)

4.011785929s ago: executing program 0 (id=1193):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/fs/orangefs/dcache_timeout_msecs\x00', 0x8ea182, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0xffffffffffffffff, 0x10008000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000002080)='/dev/ptyv8\x00', 0x480, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyq4\x00', 0xa0102, 0x0)
write$auto(0x3, 0x0, 0xfdef)
open(&(0x7f0000000000)='./file0\x00', 0x222c0, 0x0)
ioctl$auto(0x3, 0x541a, r0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
getrlimit$auto(0xa, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r1, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xaab02, 0x0)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0xffffffff, 0x26, 0x0, 0x6, 0xb)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x20401, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0x4068aea3, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
timer_create$auto(0x803, 0x0, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcsu1\x00', 0x240202, 0x0)

3.895488464s ago: executing program 3 (id=1194):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/md_mod/parameters/new_array\x00', 0xa001, 0x0)
write$auto(r1, &(0x7f0000000000)='0\x81=\"\xab\xf0\xb3\xafr3w*$\xe8\x85\xd4i\xc9~\x81\x92\x88\xed\xd53\xe0\xdez\xa0\xc2\xff\x8d\xf9P\x18\xa4\xa72\xa2X`\a\x90i=\x00\x00\x02\x00', 0xd4d0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r2 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r2, 0x29, 0x1e, 0x0, 0x0)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = pipe2$auto(0x0, 0x80)
ioctl$auto(r3, 0x5761, 0x4)
ioctl$auto_BTRFS_IOC_RM_DEV_V2(r3, 0x5000943a, &(0x7f00000004c0)={@raw=0x5, 0x80, 0x3, @btrfs_ioctl_vol_args_v2_3_0={0x8000000000000001, &(0x7f0000000080)={0x6, 0x9, 0x7, 0xfffffffffffffffe, {0x0, 0x1, 0x7, 0xf7, 0x1}, [0xff, 0x7, 0x8000, 0x5, 0x5, 0xe3]}}, @name="f16edf329cc90be8d185222bda94b758ff4f041fcf37bc16b89ba513ba8a89b25dcf0f97c0d2098bceaa475483cb1890729863d2eef7ac85fcc8e4f645f9dbac5993a942d1738ec89278becc3e9851e945a96837bfd32422ce2d8c051ee5a0560b011fecda8806d067c665cb881e7a810356fb05230c0fa7664a103b1767054d4fba8e5c594c6abb9ad3a9a0a47e489ce730a304fd971c7dd1faf5cff1c144e80bf593c3a6ecdacd9cdb12c8f9ce2ca615e271b5e899029c872cc6f02aa45078bd0d7d88a0acf544abce69f60079bbe086a397983dc2c2ea5f9af5d1014ae09e3792f0a69b6ddcc3644c93270c6e2a044ae42f66fce72a0bc7b6e839c08d9a01878bad2fa12a7d9d0a2b442ed71ae444859d86a03abe949be753c17c4133e941112929656ce88e044204746f9b37c7a878f33f0545b0f301db88ccfeaed18d2169ee5ae36cbbe8da2c67d8a1f79ab1b39e5c54ef173baf22e5a7c4e507d1008c018377753080fdd5ae4e054aa35f763ec8dc6cbbc90d7e2820b4da936e1aac9e22a597d2c3d8ab2fd3f46ffc441edaa313034b224fd7cfdf34d2df08497dcd8cf13b73d41950ccb085cba347b64bcd0bee8b1d70e15978a0175c3c0d319e7ffe531db3b2ab0bda8c6f237dd84a25d4ddb116f7f3c1b807099e28c93d65d9c28912631efe8baf4e6f402b1d4759ceb8478e57bacf399b0661d0d76567af11fb7b4306e0c71a4e2fe4bbf87159fe640cac9e19139d85eab1cdd8259fff5415b2ed09a6849d50a8c4794574fe5206df689931d0091b61fa97e29781fe2b371d254873135c51f748a349009a51d93393ec39b6ca7fd884ffc007a675cbef6a331fa2227d8ef0b8232381a708d39f7abf2900db05a346aded97b5715361c0d42d11d30dd8732c8dd2994cd368085d5e87aa1e36857885c96f5ea7f8b8eab4f51fca3337bd451c95dea06257f29e1ea09a661235597332a83d729ade12d0c12d56a2d80d0d78f8f8e829e0677d27c52bac1f83554f22d7bebab341d67f5f943f4f722397407351402c73a1dd48c86dbcae75a9b9b6671b95a82c206936fb0e089db6c33d221b61bb1468a23de3a05f35dbb8105eb4bbc9611ceab61082e99cfe4fdcc9b91ba2b4497a2f5c9c411ba07810f53990a03ec160129324143a45009de67ea02b2177a5883ebdfc2f2ba90b9a6222702ca37a583822546a00e9d41166cd9574c464fa2103019dca33eaa3a20a4f77a540a81ec8ae4cbe0ad4698414d363013b29056a0f2e3cf1d9bae6c3fcf89cd58ac74dddb9dc80d475d59f66b72eeca9130d9169e440b14a8b0fd159e24fa6d369908bac5c574500850a1cd8a6efa1266795adcfa3b2a51320e8e45c7421a3956bb479c9410676114a94411096dfd74a4128ec21e5af69ea8635467ba3b31af38627e262c328100ba873bc5111ea893a66e52c8a806b6158b2eb0c7db15ad5a9a54f5b92fdba33b580ff7af0d2fdb5da0b2e126767d53ba859da8e5b33c1d32c8ee0b10f646c5084cd84667f81793a99089cae9fca71af82d45031829ece562e0cf8e6f0b0408fa08ed49592581d96de65770d6a94a6680610637143d2757379338ed8017f0bb5cf75f0d3e9f8b7bd3c804bc4466e7173c6037fd3bc8bf43bfc320c3320cc09c61f895bb911fb1a1de4499d239fd40280cad50f2678994a1a2660de8c69ede301b9f000dac0c4166e49f5e61e7b64807ac6a88dddbb536519a1026d39f37c914a5b85744aa530a13277a34328a656149fc3e4b29d9e6f1e8af681c7a071ea550e10e23e20fa71c37e4d2a436cfef8a1c872629a12dbf2ac519b70c0585e32bedefc36c4bcceab08fcaeb6b2c7538be5e4131cfe263f1c7e1d382f5b50e92521887c7fd93a239a8334f7c4ce54024f90e0f261164dd33b2fefe452be04ca35729ecfeb0a4c408a3c85196b2f1447abc5a931dd7175f5c834d5a73d1a33d6ccb1901e17924c0e4222513c334e308c4bf93a126bb70c736108adf6cc218986a7800498da3ec4d3597272dc285383d8a90ac7c34fb404c5ac5d3c8e11ec187bd8f656ebcabee337df67e08eebc4d9ae6dee81ccecdba37dcb138d13899d04e72ab13e859b1212f28eb76654ca07d74922b98323156b37469dcd77bd3ef120e283d7e81598831855cc5bc79d03123185b29c9f991fb398024a1796e7ddb5efc9563da14e7c7e73b8ca93d3b9311d8ffc11d8d2fee41a2130ef4f9e6862307b095901f62fa85d0ebd1ff4c95f611b7d36998f0c0fb2c555ddd6b576ba1ea631172b5f9b88651e675ebec46a56c97f49843696ca50baf888fd9a60e52a69c6c21102df7a2930576247f37d0ee1d54f829aab0759eaf8a5ed7fcf154ee01de55d95f89c7d0896d1368ded9ca1b6937bc054f75602d9e90bc063a1afa17fd50e43341938aa5697e5475de2423ba2051e57ad2240fd664e3c01b6ac52e1131cc3c658b922bdf7bdc0c59b34884f0e5e4ee473589e7742046ece9ee6cab49960fe28a453e8d80c7fce7d3261bab1c05b6290f5e504a1bd25befcb2a0e781277c907c1e69b4569099fa745c19b8608bcefc315449d0034adb5a39c71ee434d6266a110c8d5c3357732fbf52d222c741ab8bd6d21df9c5dae146fc7ddba9ea4a26018d688ba7a0ee4ed2c0c6a15502a0fd8aa529b8f4d1fe2377f9590b0f60da1721de7c431492011576c73306970e9cdd311a4df6e6f3972757977ec610b53e3d2539a7bc3484d8c332c88802040c12af71e8ad26d98edf1fe4a572bcdd81f4749745f5c79625eee3354c4b9f27c90dafe955eff9c26a88c80cda0f91b8e978bd39f5235eb35e14f99b4a44d9fe8f14624d501252f43429afc93327a4e27f1c30e8d58cf45d365181c841281059a7dcece4d6d1af1aab28c083942a909d49c3ad73dd68ec3bef6c7c09f6dc1980766cec553ee90dea81436c3d77406fa6ccea29d3e35c0587559f5cee4cc87e8538ffdefdb333c6108048c3ab755c1f49df0532cb6e5aaa060e5d5efa9bc9d9a247ee5d578640042b41bfa2e6d50add373ce056ed53fb665a424e7c9730c4ecdec891f8a71ef0541513771b37a7b783a4ff71cc593a734fed159cf53614b6738f6f1659ba5bd336c843369e18109f3d79be2ab9e088130cc161f4fd8742633626344a74be1b7c8c92e6e0e76c33e7ab855233d371fa58ce74ec9bdf2a54cd8da09abfc83fd3a12bb89d57bae61a1a5927dfadfac0e349aed0fdcbfbe65620c345981297f03ccde2f6371f5d412ce3d7b2d87ceb3018f00a5a71430d08e0766ccb404fe2042100a9e9a23ea87ec0a32ffa939330b3adf80ccbe23e0331d9acc8beb52a390d463cfa7cca590e2b8c3293331e99fd06a2061c9f1dff1740ded717d10a3a67c2c1535e4cc4331c5aac3bb05acac37ed976f0f45bbcdbba1642eec33ec20bdd88419ccc6aa41da8b65e4fa821b5eefc09b3ac4c886d86a6db897ad94ae5abfda32b586c14c7f7e2f1b4f05f5eda9618e722e77ad6b792095edeb2f44019bcb55f0a4107debf846cf6e14e7396014b6c523b5e901f93fc57af9f397fb9212f64eebff13ec20c14f276a91bde43ded7e401e690d5af91618a836e1d1e663a8e1ee26d09223daf1cafa05813fe443a0da9dde6046308e51a55aa8ccc0ba1bf8865411f11b274e23a50e717722f5644fd88d72780b308fe9bd9f2c299a1be0ff5e180c500ec40f4910736587d8e48dbe5130f9a3a9a31ce4b2250539d8c3a0f0b7dd3d85121c8c7de82ac6b6e756094b7ae452bad8f4eb8413d1236c5bb27c7b719bcc383da769e28183157b2958f28ecdec1e44724220a010bf57eddd4e12093ecb03d7abcccd130311c37a8c4b95018776bfdd65f7b7225f27eba8d92a74c37ee9f272713bc965978de69bce9302170aa085b709c4a2d3c1b9cbace2d3c28faf28a429074a397ae33fe6623de7f2bee889f610fde545e014a072c1dab4e5a389240d41d5819e62f799b22ac96dc91f46fa7f67acb8331aca4f2048f3a328faeccc55973964ae8cd86889138515dd493f96099ee869f0fc264a4b4a513c9150c3c5b7852385060b982f40c1cc0816c09b6c4c974d0ea0cf0775e571cc3275a72d64fdc7c31d1512b8d4e342b4f64b6fb3b96c4e3ab930bd4e66322d839b5af76bccf45d497328c60bffdb665c04fbbf86ac7b5cf4ebcb4a15af2de1f704ab962fa25fedfc3ef7b182c98281210f37a1d9a8eb75919dacbe9710ff34e79cef3b8da38bf5b2224af8e809fb96be75d6bca10658f1c82cf975170bbcd2cfaac3bfef8eca527db4067d6f27aec63efe22a2404a6368f18e12a3e89bc78406dc42a2891b4f7ce24a64c41f3fef78c7b85e4721fb5284ff410abf08e584d17ecb099465379e9fe588b089ea2854077253c7dfb000724ea9329473f7d26c110f2738c3981b952d8b192b302380ec092e8f1a0fa0d23eb4e02cab2ea3cf1112a82fb0f8aec23cdebb17f07bb90cf715560fd340450bd53408517eca6d51a1a3fcc0eed1c3c5ba876578ecd5bbcfed5512e7db2374ee44ff9dd96cd655381965724cf459c782fc7a110434ebbd7b26f6c674c30cc71945f9910923a9e687f35b44c20fef8f172e0d921e0b84e95dc7d69af0d86a2fe06e54faada65eca1b6657593af148487d4e96a9221f8af83c76d62bb23981ac0dd33ca49e54273cb7157c044107617d54120f35be9115b5ac1653cf9bedca1948e8a574996cc3ebfae8b8a33c7bdd31247dc3b0b8b6924cff81537470d20434eafea854886c7243b5d536eb34e366f864397988e2ad87b3ee34aa0901d6115d8e2c8302c0f94fe0a652c6be1422a323be2414468e9fa2c865f9da70713ef7f32e29d996fe32babae955eab88f0ab00caaa30e98a6de5732e67526c9ca1a2e67dd64a2e166750320071a3e91b448aef93c737884a3d50505a5f9e57d890d8fb6142a3978c1c33c5192fcf3293c2be071c4d10916a62bec7ed9cab8519031b398fb5558c6c2cb59eb1b8b4b71e5f84437143db7d81363a24e9571c25c54ea77e4b3ca4372746c253a261e7dead7585923fbebcf7b9c5fd6e0cf48367b3bf2d10a68c9b39ce27d3836b4e10de0bed76b7d953eaac7bf8254cde791973e79e92ce39a2645f0ba3dcd9df9c240fe3830c192ff4d6c5c6b05cba9e27c04250de733b16bdd2b079b8686237b623b764ba45f3cad0b0ecd6795187fd02f2a7f1c6b549e76331355413d98985d4768958a05943f81ce1f6247781ce30ef0c84e805ecac08ee94c313d2ad6299f07844e029db23a0cfaefbc0ca6a8841c0048bdabb3f97137f153953fc288c416b8a2052e81bc41f2f2d551793d8c4958b852f30c8c70fc4708e96a8570894e207dc779406205895372cad1a3a88719d870ae335d196d327c13db8134f9c8ea67faf41f40beb20ad13deb47b75029a0511cd4f2ade42f6269f57cd89f46366ee41a8d087b2b81f838765bc1a8675685fe9b7bfec928f74bdbfa39486e1e4c70343efad23fc2319a2220cf78003535fa14cffe0337c9eccf763bf20ab0824282bf5e80552c6f6487c36b12e9a8b14c3239df31d76405bd9815428fa83a2b81035898c256fae99c791c49e3dc1be37a8819a0bbe9779e4a8f2e3a1297deb9bbd2c845dc0d31e7572efa08722eeeb4deb45e3900862413fb3066800db0b55c975ee6d2be5cd04ee7a7a55c47d224d28aeec"})
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000002640), 0x10b201, 0x0)
pwritev$auto(r4, &(0x7f0000002980)={&(0x7f0000002900)="dcf510a2ee", 0x4}, 0x9, 0x6, 0xfffffffffffffffd)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000480)='/dev/sda1\x00', 0x8800, 0x0)
cachestat$auto(r5, 0x0, 0x0, 0x0)

3.813941407s ago: executing program 0 (id=1195):
mmap$auto(0xed28, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/sda/state\x00', 0x100, 0x0)
lseek$auto(0x3, 0x40, 0x1)
r0 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f00000000c0), 0x385741, 0x0)
pwrite64$auto(r0, 0x0, 0x4, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/workqueue/ib-comp-unb-wq/nice\x00', 0xcaa02, 0x0)
sendfile$auto(r1, r1, 0x0, 0x4001)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r2 = gettid()
r3 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x60000, 0x0)
read$auto_dev_fops_plock(r3, &(0x7f00000001c0)=""/132, 0x84)
rt_tgsigqueueinfo$auto(r2, 0x0, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x7, 0xcc, 0x2, @_sigchld={r2, 0x0, 0x401, 0x5, 0x3}}})
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mincore$auto(0x1000, 0x2, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x16, 0x0, 0x8)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ')
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)

3.691310314s ago: executing program 2 (id=1196):
semctl$auto(0x2, 0xff, 0x1, 0x7ff)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
madvise$auto(0x200000, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
lremovexattr$auto(0x0, 0x0)

3.057569305s ago: executing program 1 (id=1197):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), r0)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010026bd7000fcdbdf250100000008000200", @ANYBLOB="080001002e535200090002"], 0x34}, 0x1, 0x0, 0x0, 0x20000800}, 0x20008000)
r2 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$auto_rng_chrdev_ops_core(r2, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000140), r0)
sendmsg$auto_KSMBD_EVENT_LOGIN_REQUEST_EXT(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r3, 0x5, 0x70bd2b, 0x25dfdbfd, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20008800}, 0x1)
fcntl$auto_F_DUPFD_QUERY(r0, 0x403, r2)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
mq_open$auto(0x0, 0xffffffff, 0x6, 0x0)
mq_unlink$auto(0x0)

3.016906473s ago: executing program 2 (id=1198):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2, 0x5, 0x0)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
ioctl$auto(0x3, 0x8905, 0x38)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0xfffffffffffffffc, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/o2cb/logmask/BASTS\x00', 0xb02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x3)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)=ANY=[], 0x70}}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r6, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00', 0x100000002, 0x100000001)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r1)
sendmsg$auto_NL80211_CMD_REGISTER_FRAME(r2, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000480)={0x1020, r7, 0x0, 0x70bd28, 0x25dfdbfb, {}, [@NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x7}, @NL80211_ATTR_BSSID={0x1004, 0xf5, "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"}]}, 0x1020}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)
r8 = openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000005dc0)='/proc/thread-self/ns/cgroup\x00', 0x800, 0x0)
open_by_handle_at$auto(r8, &(0x7f0000005e00)={0x10, 0xf1, "82a0d48cb31f0af67fffffff23b40e62"}, 0x101)
r9 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b8162d21, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r9, &(0x7f0000000040)="f36cf820c75c20d9d1027e0dc0023af10e9bfa1babfa3a3753ca9aee370a", 0x1e)
setsockopt$auto_SO_SNDBUF(r4, 0x0, 0x7, &(0x7f0000000080)='%\x00', 0xff)

2.807092643s ago: executing program 0 (id=1199):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/usb_storage/parameters/delay_use\x00', 0x10000, 0x0)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
mmap$auto(0x0, 0x20009, 0x7, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu0/topology/cluster_cpus\x00', 0x800, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000140)=""/176, 0xb0)
read$auto(r2, 0x0, 0xf)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000340)='/proc/thread-self/fail-nth\x00', 0x1a1182, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
write$auto(r0, &(0x7f0000000240)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ok\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\r\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x801, 0x84)
fstatfs$auto(0x3, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x84, 0x0, 0x90)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
clock_adjtime$auto(0x0, &(0x7f0000000040)={0xfbb, 0x0, 0x10001, 0xfffffffff7fffffe, 0x600, 0x8, 0x7, 0x0, 0x3, 0x8, 0x5, {0x3ff, 0x7}, 0xfffffffffffffffa, 0xa5, 0xa, 0x13c, 0x0, 0xc3, 0x1000, 0x800000000000007, 0x1, 0x90, 0xfffffff5})
r6 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r7=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r7}, 0x6a)
write$auto(r5, 0x0, 0x100000a3d9)
prctl$auto(0x200f, 0x400000000001, 0x4, 0x3, 0x7c7)
madvise$auto(0x3, 0x0, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)

2.796658856s ago: executing program 1 (id=1200):
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x2, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) (async)
io_uring_setup$auto(0x401, 0x0)
read$auto(0x3, 0x0, 0xfdef) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) (async)
lseek$auto(0x3, 0xffffffffff800002, 0x10) (async)
write$auto_ftrace_subsystem_filter_fops_trace_events(r0, 0x0, 0x0)
prctl$auto(0x9, 0xb4b8, 0x0, 0x6, 0x100000001) (async)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) (async)
r2 = timerfd_create$auto(0x9, 0x0) (async)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
fallocate$auto(r1, 0x1, 0x820, 0x7fff) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x4ea02, 0x0) (async)
ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, &(0x7f0000000180)="fc5ea5f1401a03cd7d362456adda0cf384c0e2d7bd3d31e409957ab6bd240c4af9373f9691253b947acf08619bf87d27ebc9b1fff0ce71c342980e157ce4c431437e") (async)
mmap$auto(0x0, 0xb9f, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x103742, 0x0) (async)
bpf$auto(0x5, &(0x7f0000000200)=@info={0xffffffffffffffff, 0x9, 0x8}, 0x1)
unshare$auto(0x40000080) (async)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) (async)
process_vm_writev$auto(0x1, &(0x7f0000002980)={0x0, 0x4}, 0x3, &(0x7f0000002a40)={0x0, 0x7}, 0x4, 0x0) (async)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) (async)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)

2.60237706s ago: executing program 3 (id=1201):
r0 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x12a382, 0x0)
write$auto_split_huge_pages_fops_huge_memory(r0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0)
mmap$auto(0x0, 0xffffffffffffffff, 0xdf, 0x4eb1, r1, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
read$auto(r1, 0x0, 0x3)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/khugepaged/scan_sleep_millisecs\x00', 0xa0582, 0x0)
write$auto(r2, 0x0, 0x8000002b3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0xa, 0x2, 0x88)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r3, @new_prog_fd=0x4, 0x4, @old_prog_fd=r3}, 0xa3)
madvise$auto(0x4, 0x5, 0x94)
socket(0xa, 0x801, 0x106)
ioctl$auto_CEC_S_MODE(0xffffffffffffffff, 0x40046109, &(0x7f0000002c40)=0x10)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)

2.438445475s ago: executing program 3 (id=1202):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x288202, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5)
fchdir$auto(0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/irq/5/affinity_hint\x00', 0x509001, 0x0)
pread64$auto(r1, 0x0, 0x800002, 0x26f)
msgctl$auto_IPC_RMID(0x4000005, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x80011, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r2, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x1)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev7\x00', 0x141083, 0x0)
poll$auto(&(0x7f0000000080)={0x3, 0x1, 0x83e7}, 0x5, 0xb)
shmget$auto(0x100000000, 0x3, 0x79e56dc9)
close_range$auto(0x2, 0xa, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, 0x0, 0x1000)

1.651241064s ago: executing program 0 (id=1203):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
open(0x0, 0x161342, 0x130)
fallocate$auto(0x8000000000000003, 0x0, 0x19, 0x4cbd5f)
socket(0x2, 0x1, 0x106)
open(0x0, 0x22240, 0x147)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, 0x0, 0x6, 0x0)
capget$auto(&(0x7f0000000000)={0x3ff, r1}, &(0x7f0000000040)={0x100, 0xd5, 0x1})
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
fsconfig$auto(0xffffffffffffffff, 0x80, 0x0, 0x0, 0x0)
sendto$auto(0x3, 0x0, 0x13, 0x7, &(0x7f0000000440)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x3, 0x8}}, 0x20)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x10000100200000)
setrlimit$auto(0xb, 0x0)
set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4)
mmap$auto(0x0, 0xa00006, 0x100, 0x80000000010, 0xffffffffffffffff, 0x300000000000)
socket(0x2, 0x1, 0x106)
connect$auto(0x3, 0x0, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
r2 = io_uring_setup$auto(0xc, 0x0)
mmap$auto(0x0, 0x400408, 0x10001, 0x411, r2, 0x8000)
mprotect$auto(0x8000, 0x8, 0x8)

1.564098232s ago: executing program 2 (id=1204):
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x4000000000002, 0x2, 0x201, 0x12, 0xffffffffffffffff, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_1={0xffffffffffffffff, 0x6, @value=0xd1e, 0xffff}, 0x10)
bpf$auto(0x2, 0x0, 0xb)
bpf$auto(0x15, 0x0, 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0x19, 0x4cbd5f)
mmap$auto(0x0, 0xd, 0x6, 0xeb1, 0xffffffffffffffff, 0x7)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0)
read$auto(r0, 0x0, 0x9)
writev$auto(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0xb}, 0x3)
mmap$auto(0x2, 0x1, 0x100000, 0x14, 0xfffffffffffffffa, 0x9)
r1 = socket(0x2a, 0x2, 0x1)
connect$auto(r1, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0x4001}, 0x55)
write$auto(0x3, 0x0, 0x3f00)
r2 = socket(0x2, 0x1, 0x106)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x147)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), 0xffffffffffffffff)
fsmount$auto(0xffffffffffffffff, 0x7f6, 0x10000)
sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYRES8=r2, @ANYRES8=r1, @ANYBLOB="050327bd7000ffdbdf252b000000"], 0x14}, 0x1, 0xffff0000}, 0x84)
sendmsg$auto_NL802154_CMD_SET_MAX_FRAME_RETRIES(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000980)=ANY=[@ANYRES8=0x0, @ANYRESHEX=r1, @ANYBLOB="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"], 0x1d8}, 0x1, 0x0, 0x0, 0x240440c5}, 0x2c00c0c1)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x2, 0x0, 0x1, 0xfffffffffffffffc)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x3, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r5 = socket(0x1e, 0x3, 0x0)
getsockopt$auto(r5, 0x114, 0x2721, 0xfffffffffffffffc, 0x0)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)

1.257449177s ago: executing program 0 (id=1205):
setgroups$auto(0xa1, &(0x7f0000000000)=0xc)
openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim1/trap_flow_action_cookie\x00', 0x41e080, 0x0)

1.218350243s ago: executing program 3 (id=1206):
mmap$auto(0x0, 0x2000000000400008, 0xdf, 0x18, 0x2, 0x7ffe)
madvise$auto(0x0, 0x6, 0x66)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

981.741711ms ago: executing program 3 (id=1207):
socket(0x2, 0x2, 0x88)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3)
read$auto_fops_x64_ro_(0xffffffffffffffff, 0x0, 0x0)
signalfd$auto(r0, 0x0, 0xb071)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000)
write$auto(0xffffffffffffffff, 0x0, 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socket$nl_generic(0x11, 0x3, 0x10)
io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(r0, 0xb, &(0x7f0000000080)="c0f7dfa72dcb7f8c3bb9d4a41dcd87e92ed9d92f41ce56d97588fd41adb81d0521b017301fc8b22bb0d6dcc58fcd14d73b8a7d8c9f0c19a8fe23278cad2da9a3bc11afb1fa9fa926616584a2aa1953abc5027501fced7b4267171af358830d259834f6e3529bbaf23a7547a96cb224012bba027e128afe45fd51800cacee780028e40484dbc2a7662ca1f18a05deb363e29df96f46f94f4bcd5faacd088a86d095229077fc072cf56e74dbb24ba22cf3ba84565f311bfac94c5cbdf55902d8b343a85767d5e945ebc011832af12b081a72c07173feef673ae534f192c7210ea76f3f0a5de17d78241efbaffc1901d0342b089223ec5910bc36", 0x381)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0)
bind$auto(r2, &(0x7f0000000200)=@generic={0x11, "00030f00"}, 0x80)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r4, 0x0, 0x1f40)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f0000000200)={0x0, 0x9}, 0x3)
close_range$auto(0x2, 0x8, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

970.753871ms ago: executing program 0 (id=1208):
mmap$auto(0xed28, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/sda/state\x00', 0x100, 0x0)
lseek$auto(0x3, 0x40, 0x1)
r0 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f00000000c0), 0x385741, 0x0)
pwrite64$auto(r0, 0x0, 0x4, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/workqueue/ib-comp-unb-wq/nice\x00', 0xcaa02, 0x0)
sendfile$auto(r1, r1, 0x0, 0x4001)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r2 = gettid()
r3 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x60000, 0x0)
read$auto_dev_fops_plock(r3, &(0x7f00000001c0)=""/132, 0x84)
rt_tgsigqueueinfo$auto(r2, 0x0, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x7, 0xcc, 0x2, @_sigchld={r2, 0x0, 0x401, 0x5, 0x3}}})
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mincore$auto(0x1000, 0x2, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x16, 0x0, 0x8)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ')
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)

678.290692ms ago: executing program 2 (id=1209):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram10/queue/max_sectors_kb\x00', 0xe3102, 0x0)
sendfile$auto(r0, r0, 0x0, 0x3)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x22181, 0x0)
close_range$auto(0x2, 0xa, 0x2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) (async)
unshare$auto(0x40000080)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0)
mount_setattr$auto(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000640)={0x8, 0x100009}, 0x283) (async)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/pts/ptmx\x00', 0xa0540, 0x0) (async)
lstat$auto(0x0, 0x0)
ioctl$auto(r1, 0x5419, 0x38) (async)
setitimer$auto(0x366d3db9, &(0x7f00000000c0)={{0x8000, 0x1}, {0x6, 0x8000}}, &(0x7f0000000140)={{0x4, 0x5}, {0x37b4}}) (async)
mmap$auto(0x0, 0x9, 0x3, 0x800019b72, 0x9, 0x8000000000008000) (async)
close_range$auto(0x2, 0x8000, 0x0) (async)
io_uring_setup$auto(0x2, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) (async)
io_uring_register$auto(0x2, 0xd, 0x0, 0x20) (async)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D0p\x00', 0x4000, 0x0)
r2 = socket(0xa, 0x5, 0x84)
sendto$auto(r2, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x17) (async)
ioctl$auto_FBIO_CURSOR(0xffffffffffffffff, 0xc0684608, &(0x7f00000001c0)={0x6, 0x1, 0x600, &(0x7f0000000240)='!\x00', {0x1003, 0x9b72}, {0x5, 0x3, 0x2, 0x9, 0x4, 0x7f, 0x9, 0x0, {0x1fe, 0xffffff81, 0x0, 0x0, 0x0, 0x0}}}) (async)
write$auto(0xca, &(0x7f0000000040)='\x04>\x01\r\xfb\xff\xf6OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9)

619.048877ms ago: executing program 1 (id=1210):
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x5, 0x0)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
ioctl$auto(0x3, 0x8905, 0x38)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0xc, 0x24, 0x1, 0xffffffffffffffff, 0x0, 0x5}, 0x4f4)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0)
write$auto(0x3, 0x0, 0xffd8)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
ioctl$auto_SNDCTL_DSP_RESET(r0, 0x5000, 0x0)
bpf$auto(0x1, 0x0, 0x9)
connect$auto(0x3, 0x0, 0x50)
r1 = io_uring_setup$auto(0x59, 0x0)
io_uring_enter$auto(r1, 0x9, 0x820e, 0x6, 0x0, 0x18)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_BLKPG2(r2, 0x1269, 0x0) (fail_nth: 8)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/perf_event_max_contexts_per_stack\x00', 0x202, 0x0)
prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x2, 0x9, 0x7fff, 0x0)
sendfile$auto(r3, r3, 0x0, 0x7fffe000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0xa40, 0x0)

0s ago: executing program 3 (id=1211):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r1 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x11, 0x3, 0x2)
openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000000040), 0x101400, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1)
sendmsg$auto_NL80211_CMD_CONNECT(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000002900)={0x139c, r2, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@NL80211_ATTR_NETNS_FD={0x8, 0xdb, r0}, @NL80211_ATTR_HE_6GHZ_CAPABILITY={0x1004, 0x125, "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"}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x5c}, @NL80211_ATTR_STA_FLAGS={0x27, 0x11, 0x0, 0x1, [@generic="93b623646be85a0eda3c3860d69f21201a7b6f927ec5fa2690ec8f406ddb2a476bf098"]}, @NL80211_ATTR_DISABLE_VHT={0x4}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x340, 0x75, 0x0, 0x1, [@typed={0xf, 0x140, 0x0, 0x0, @str='/dev/ttyS2\x00'}, @generic="cba1d7438b5ba69edc0b2db97643d696e1ef1eeea830e3535e6d5424e725019a2f34ffb2ac3b5e30b6b4c44f78df5f892b3223ce863f0f7e0391920220ae94934f118857532061b7cad7599f53ee3603cbb6e644d714b5654fb67f4b2e26387157e3bc38805aebd8be5fef55aa191c2ecebedbd101393d27b176fc829bb138d79cdf616fc4e570f82b486cdde811e0c5d0ce8edbf26cdfecd2d802013e1fa6f851c117edffdacd471a0611c0d90666c2f7e2a6f3ae375e3268da2ce7c8449b83", @nested={0xd6, 0xfd, 0x0, 0x1, [@generic="e295f493ff62dcb56a6dc3481a0d03db38ecfa8417b1105fe17922b882f3c473996127686de6649fe14b0ba514cc3b11fb8b7bf2827fb4b884b50e17076af1e5b5e918fb124018ce2f53459529e1bfdd3a8170e6361940110aef1d6797639b29f8c9aa7390de9985eb91e62f338e7174de9e184b937fdc62b19d6dc57693123188875c80f8c86d70889ddfa7269401d5ad0db0e73506224d88e47b4442add6e56b969cfa2b7b46e2c1282f85f1896fbff027943f1b161f798747e24765101a89e2689f06f5754642d913d897f755", @nested={0x4, 0x60}]}, @generic="db681f42a559d7e43aded8562f8b4f1d2572f779ec65f53c9802dd4a7527fbdeaeedd86f3f3b05af632117b8bb5d5e17a74c9451844672bd3e18d3f522eba4383f9843ad390e1a27d86cd225e93fd9ee0708aad0", @typed={0x140, 0x2, 0x0, 0x0, @str='/dev/raw-gadge\xd7\xb4\xb5\xb5\x8b-\a\x8c\xe2\xee;\xf0e)\xc8\xa9t\x00\xdc\n:!\r\xe3o\x06\x96\xd1\xc6\xed\x7f\x9c\xe9h:\xe6)\f\xaf\"\x00)\xde\xc6\x98z\xb7\xf9\x96L\xee\x92\x99\x91x\xc9\xb9\xeaC\x93k\x92\xbf\')\xa3\xee\x91+\xf3\t\b\x95\xd4k\xf4\x04\x86\x11\x15\xc2\x1b\x8a}/\x8c\\\xbc\x81\x10\xf42\xc7\x88L\xcc\xac\aZ\xa9\xd6k\n\xee\x04n)RX\xf8\x13%\x9c\xea\xe1\xcb!d\xed\x9d\xc6~a\xaf\xe0\xdda-\x1f\xdf}?X7E\xed8b\x18\xe3\x80\xa38\xcb\x00\xde\xeb;\xb7-M\xe3!;\x82\x9c}gM\xef\xd7\x18\xe36\xa4yX1~\xd0G\xa3$I\xcc\x00([\x18\x84\t\xa6\x89\x9d\xe4\x96\xf8\xac\a\\\x13\xdb\xfa\bw\x9c\xec\xca\x8f\xef\xa7\xa7\xd0\xffI\xb3\x0e\xd0\xfan\x8d!\x1c\x80\xbe<G\xe9d\xde\x97R\x06\xe7`k\xd7\xa5\xban\x96OB\x86\x97\xec?\xba\xe1J %\x92\xb9\x13@O\xc2\xf6!\x1f?m(\xec\b/Q|\xb9 \xb2t\xf9\x9fZ\xb2\xd3\xc6K9\x1c\xfdV\x18>\x95\x9a\xce\xb7+\x1f\xaf\xe4\x8a\xbe\x91\xce\xdaG\xaa\xd9|\x907w\xba\x15\xcffR\x94'}]}]}, 0x139c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x2, 0x73)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
mprotect$auto(0x0, 0x8000000000000001, 0x8)
madvise$auto(0x0, 0x2003f2, 0x15)
connect$auto(0xffffffffffffffff, 0x0, 0x8)
io_uring_setup$auto(0x59, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
getdents$auto(0xffffffffffffffff, &(0x7f0000000f40)={0x1000000000302, 0xfffffffffffffffa, 0x7}, 0x20000018)
openat$auto_clear_warn_once_fops_(0xffffffffffffff9c, 0x0, 0x410c01, 0x0)
r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_MEMGETINFO(r3, 0x80204d01, 0x0)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x9, 0x8000600, 0x0, 0x200)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)

kernel console output (not intermixed with test programs):

16]  ? get_signal+0x7e0/0x21e0
[  414.260402][ T6916]  do_group_exit+0xd5/0x2a0
[  414.260439][ T6916]  get_signal+0x1ec7/0x21e0
[  414.260480][ T6916]  ? __pfx_get_signal+0x10/0x10
[  414.260510][ T6916]  ? do_futex+0x192/0x350
[  414.260547][ T6916]  arch_do_signal_or_restart+0x91/0x770
[  414.260582][ T6916]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  414.260625][ T6916]  ? __pfx___x64_sys_futex+0x10/0x10
[  414.260673][ T6916]  exit_to_user_mode_loop+0x86/0x4a0
[  414.260711][ T6916]  do_syscall_64+0x668/0xf80
[  414.260743][ T6916]  ? clear_bhb_loop+0x40/0x90
[  414.260776][ T6916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.260804][ T6916] RIP: 0033:0x7f2a8419c799
[  414.260826][ T6916] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  414.260852][ T6916] RSP: 002b:00007f2a850680e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  414.260878][ T6916] RAX: fffffffffffffe00 RBX: 00007f2a84416098 RCX: 00007f2a8419c799
[  414.260897][ T6916] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2a84416098
[  414.260914][ T6916] RBP: 00007f2a84416090 R08: 0000000000000000 R09: 0000000000000000
[  414.260930][ T6916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  414.260945][ T6916] R13: 00007f2a84416128 R14: 00007fff21d35b60 R15: 00007fff21d35c48
[  414.260982][ T6916]  </TASK>
[  416.590496][ T5871] Bluetooth: hci3: unexpected event 0x20 length: 123 > 7
[  418.534940][ T6984] FAULT_INJECTION: forcing a failure.
[  418.534940][ T6984] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  418.549131][ T6984] CPU: 1 UID: 0 PID: 6984 Comm: syz.3.232 Not tainted syzkaller #0 PREEMPT(full) 
[  418.549166][ T6984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  418.549181][ T6984] Call Trace:
[  418.549190][ T6984]  <TASK>
[  418.549200][ T6984]  dump_stack_lvl+0x100/0x190
[  418.549244][ T6984]  should_fail_ex.cold+0x5/0xa
[  418.549276][ T6984]  _copy_to_iter+0x5a4/0x1720
[  418.549399][ T6984]  ? __pfx__copy_to_iter+0x10/0x10
[  418.549439][ T6984]  ? __lock_acquire+0x4a5/0x2630
[  418.549475][ T6984]  ? folio_mark_accessed+0xf3/0x1040
[  418.549519][ T6984]  ? __pfx_folio_mark_accessed+0x10/0x10
[  418.549567][ T6984]  copy_page_to_iter+0x12a/0x1e0
[  418.549622][ T6984]  filemap_read+0x7a9/0x10a0
[  418.549697][ T6984]  ? __pfx_filemap_read+0x10/0x10
[  418.549763][ T6984]  ? __pfx_down_read+0x10/0x10
[  418.549801][ T6984]  ? __pfx__kstrtoull+0x10/0x10
[  418.549840][ T6984]  ? __pfx_aa_file_perm+0x10/0x10
[  418.549877][ T6984]  blkdev_read_iter+0x2c4/0x4f0
[  418.549963][ T6984]  do_iter_readv_writev+0x60d/0x920
[  418.550004][ T6984]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  418.550049][ T6984]  ? bpf_lsm_file_permission+0x9/0x10
[  418.550094][ T6984]  ? security_file_permission+0x76/0x210
[  418.550152][ T6984]  ? rw_verify_area+0xce/0x6d0
[  418.550192][ T6984]  vfs_readv+0x4d3/0x8d0
[  418.550240][ T6984]  ? __pfx_vfs_readv+0x10/0x10
[  418.550303][ T6984]  ? __fget_files+0x21f/0x3d0
[  418.550338][ T6984]  ? do_readv+0x13e/0x340
[  418.550372][ T6984]  do_readv+0x13e/0x340
[  418.550411][ T6984]  ? __pfx_do_readv+0x10/0x10
[  418.550449][ T6984]  ? ksys_write+0x1ac/0x250
[  418.550472][ T6984]  ? __pfx_ksys_write+0x10/0x10
[  418.550502][ T6984]  __x64_sys_preadv2+0x11f/0x160
[  418.550534][ T6984]  do_syscall_64+0x106/0xf80
[  418.550565][ T6984]  ? clear_bhb_loop+0x40/0x90
[  418.550606][ T6984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  418.550635][ T6984] RIP: 0033:0x7f1d2339c799
[  418.550658][ T6984] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  418.550683][ T6984] RSP: 002b:00007f1d24283028 EFLAGS: 00000246 ORIG_RAX: 0000000000000147
[  418.550709][ T6984] RAX: ffffffffffffffda RBX: 00007f1d23616180 RCX: 00007f1d2339c799
[  418.550727][ T6984] RDX: 0000000000000006 RSI: 0000200000000200 RDI: 0000000000000004
[  418.550742][ T6984] RBP: 00007f1d24283090 R08: 0000000000000004 R09: 000000000000002e
[  418.550758][ T6984] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  418.550774][ T6984] R13: 00007f1d23616218 R14: 00007f1d23616180 R15: 00007ffcdec6fce8
[  418.550811][ T6984]  </TASK>
[  420.793908][ T7015] futex_wake_op: syz.1.239 tries to shift op by -2048; fix this program
[  420.802634][ T7015] futex_wake_op: syz.1.239 tries to shift op by -2048; fix this program
[  423.824021][ T7056] futex_wake_op: syz.0.249 tries to shift op by -2048; fix this program
[  423.840771][ T7056] futex_wake_op: syz.0.249 tries to shift op by -2048; fix this program
[  424.531669][ T7074] misc userio: Invalid payload size
[  424.659987][ T7078] mmap: syz.0.255 (7078) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  426.418043][ T7103] futex_wake_op: syz.2.261 tries to shift op by -2048; fix this program
[  426.433930][ T7086] syz.3.256 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  426.451265][ T7103] futex_wake_op: syz.2.261 tries to shift op by -2048; fix this program
[  426.518560][ T7096] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  426.571576][ T7086] CPU: 1 UID: 0 PID: 7086 Comm: syz.3.256 Not tainted syzkaller #0 PREEMPT(full) 
[  426.571613][ T7086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  426.571629][ T7086] Call Trace:
[  426.571637][ T7086]  <TASK>
[  426.571648][ T7086]  dump_stack_lvl+0x100/0x190
[  426.571692][ T7086]  dump_header+0xfb/0x606
[  426.571724][ T7086]  oom_kill_process.cold+0xd/0x330
[  426.571757][ T7086]  out_of_memory+0x340/0x14f0
[  426.571802][ T7086]  ? __pfx_out_of_memory+0x10/0x10
[  426.571851][ T7086]  mem_cgroup_out_of_memory+0xc6/0x130
[  426.571888][ T7086]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  426.571921][ T7086]  ? find_held_lock+0x2b/0x80
[  426.571955][ T7086]  ? do_raw_spin_unlock+0x145/0x1e0
[  426.571993][ T7086]  ? _raw_spin_unlock+0x28/0x50
[  426.572026][ T7086]  try_charge_memcg+0x652/0xc90
[  426.572073][ T7086]  ? __pfx_try_charge_memcg+0x10/0x10
[  426.572109][ T7086]  ? find_held_lock+0x2b/0x80
[  426.572133][ T7086]  ? rcu_read_unlock+0x17/0x60
[  426.572161][ T7086]  ? rcu_read_unlock+0x17/0x60
[  426.572194][ T7086]  charge_memcg+0xa6/0x280
[  426.572221][ T7086]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  426.572255][ T7086]  __swap_cache_prepare_and_add+0x528/0x9e0
[  426.572310][ T7086]  ? __pfx___swap_cache_prepare_and_add+0x10/0x10
[  426.572344][ T7086]  ? __pfx_swap_entry_swapped+0x10/0x10
[  426.572380][ T7086]  swap_cache_alloc_folio+0x1cb/0x300
[  426.572428][ T7086]  ? __pfx_swap_cache_alloc_folio+0x10/0x10
[  426.572479][ T7086]  swap_cluster_readahead+0x411/0x770
[  426.572527][ T7086]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  426.572590][ T7086]  ? get_vma_policy+0x23f/0x3b0
[  426.572621][ T7086]  swapin_readahead+0x160/0x12c0
[  426.572668][ T7086]  ? __pfx_swapin_readahead+0x10/0x10
[  426.572703][ T7086]  ? find_held_lock+0x2b/0x80
[  426.572728][ T7086]  ? swap_table_get+0x103/0x2c0
[  426.572760][ T7086]  ? swap_table_get+0x103/0x2c0
[  426.572800][ T7086]  ? swap_table_get+0x10d/0x2c0
[  426.572835][ T7086]  ? swap_cache_get_folio+0x1ae/0x600
[  426.572873][ T7086]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  426.572906][ T7086]  ? __pfx_get_swap_device+0x10/0x10
[  426.572941][ T7086]  ? do_swap_page+0xb2e/0x6900
[  426.572978][ T7086]  do_swap_page+0xb2e/0x6900
[  426.573032][ T7086]  ? __pfx_do_swap_page+0x10/0x10
[  426.573069][ T7086]  ? __free_object+0x2a8/0x400
[  426.573192][ T7086]  ? lockdep_hardirqs_on+0x78/0x100
[  426.573228][ T7086]  ? rcu_is_watching+0x12/0xc0
[  426.573267][ T7086]  ? __pte_offset_map+0x179/0x310
[  426.573305][ T7086]  __handle_mm_fault+0x18c1/0x2b60
[  426.573349][ T7086]  ? reacquire_held_locks+0xce/0x1e0
[  426.573384][ T7086]  ? __pfx___handle_mm_fault+0x10/0x10
[  426.573426][ T7086]  ? lock_vma_under_rcu+0x17c/0x590
[  426.573484][ T7086]  handle_mm_fault+0x36d/0xa20
[  426.573527][ T7086]  do_user_addr_fault+0x5a3/0x12f0
[  426.573589][ T7086]  exc_page_fault+0x6f/0xd0
[  426.573622][ T7086]  asm_exc_page_fault+0x26/0x30
[  426.573649][ T7086] RIP: 0033:0x7f1d2335cfce
[  426.573673][ T7086] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  426.573698][ T7086] RSP: 002b:00007ffcdec6fdc8 EFLAGS: 00010246
[  426.573719][ T7086] RAX: 0000000000000000 RBX: 00005555883ec500 RCX: 00007f1d2335cfce
[  426.573737][ T7086] RDX: 00007ffcdec6fe20 RSI: 0000000000000000 RDI: 0000000000000000
[  426.573753][ T7086] RBP: 00007f1d23617da0 R08: 0000000000000000 R09: 0000000000000000
[  426.573769][ T7086] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000006813a
[  426.573785][ T7086] R13: 00007f1d2361627c R14: 0000000000067f79 R15: 00007f1d23616270
[  426.573821][ T7086]  </TASK>
[  426.573832][ T7086] memory: usage 307016kB, limit 307200kB, failcnt 2615
[  426.573889][ T7086] memory+swap: usage 307212kB, limit 9007199254740988kB, failcnt 0
[  426.573908][ T7086] kmem: usage 306236kB, limit 9007199254740988kB, failcnt 0
[  426.573925][ T7086] Memory cgroup stats for /syz3:
[  426.574374][ T7086] cache 638976
[  426.574387][ T7086] rss 0
[  426.574398][ T7086] rss_huge 0
[  426.574408][ T7086] shmem 0
[  426.574418][ T7086] mapped_file 638976
[  426.574429][ T7086] dirty 0
[  426.574438][ T7086] writeback 0
[  426.574448][ T7086] workingset_refault_anon 290
[  426.574459][ T7086] workingset_refault_file 0
[  426.574471][ T7086] swap 200704
[  426.574480][ T7086] swapcached 15089664
[  426.574491][ T7086] pgpgin 51327
[  426.574501][ T7086] pgpgout 54808
[  426.574512][ T7086] pgfault 75337
[  426.574523][ T7086] pgmajfault 167
[  426.574533][ T7086] inactive_anon 16384
[  426.574544][ T7086] active_anon 4096
[  426.574555][ T7086] inactive_file 401408
[  426.574566][ T7086] active_file 4096
[  426.574577][ T7086] unevictable 0
[  426.574588][ T7086] hierarchical_memory_limit 314572800
[  426.574601][ T7086] hierarchical_memsw_limit 9223372036854771712
[  426.574614][ T7086] total_cache 638976
[  426.574625][ T7086] total_rss 0
[  426.574635][ T7086] total_rss_huge 0
[  426.574646][ T7086] total_shmem 0
[  426.574656][ T7086] total_mapped_file 638976
[  426.574667][ T7086] total_dirty 0
[  426.574678][ T7086] total_writeback 0
[  426.574689][ T7086] total_workingset_refault_anon 290
[  426.574701][ T7086] total_workingset_refault_file 0
[  426.574713][ T7086] total_swap 200704
[  426.574724][ T7086] total_swapcached 15089664
[  426.574735][ T7086] total_pgpgin 51327
[  426.574746][ T7086] total_pgpgout 54808
[  426.574757][ T7086] total_pgfault 75337
[  426.574768][ T7086] total_pgmajfault 167
[  426.574779][ T7086] total_inactive_anon 16384
[  426.574790][ T7086] total_active_anon 4096
[  426.574801][ T7086] total_inactive_file 401408
[  426.574812][ T7086] total_active_file 4096
[  426.574823][ T7086] total_unevictable 0
[  426.574834][ T7086] anon_cost 0
[  426.574844][ T7086] file_cost 0
[  426.574855][ T7086] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.256,pid=7086,uid=0
[  426.575919][ T7086] Memory cgroup out of memory: Killed process 7086 (syz.3.256) total-vm:106788kB, anon-rss:1244kB, file-rss:26756kB, shmem-rss:0kB, UID:0 pgtables:168kB oom_score_adj:1000
[  426.605393][ T7096] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  426.605449][ T7096] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  426.605482][ T7096] page_type: f5(slab)
[  426.605510][ T7096] raw: 00fff00000000040 ffff88814047b280 dead000000000100 dead000000000122
[  426.605545][ T7096] raw: 0000000000000000 0000000800190019 00000000f5000000 0000000000000000
[  426.605574][ T7096] head: 00fff00000000040 ffff88814047b280 dead000000000100 dead000000000122
[  426.605602][ T7096] head: 0000000000000000 0000000800190019 00000000f5000000 0000000000000000
[  426.605624][ T7096] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  426.605648][ T7096] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  426.605665][ T7096] page dumped because: unmovable page
[  426.605686][ T7096] page_owner tracks the page as allocated
[  426.605721][ T7096] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5197, tgid 5197 (udevadm), ts 30639452372, free_ts 25024308794
[  426.605778][ T7096]  post_alloc_hook+0x153/0x170
[  426.605818][ T7096]  get_page_from_freelist+0x111d/0x3140
[  426.605862][ T7096]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  426.605904][ T7096]  new_slab+0xa6/0x6c0
[  426.605933][ T7096]  refill_objects+0x26b/0x400
[  426.605966][ T7096]  __pcs_replace_empty_main+0x1ab/0x600
[  426.606009][ T7096]  kmem_cache_alloc_lru_noprof+0x485/0x6e0
[  426.606052][ T7096]  alloc_inode+0x183/0x250
[  426.606083][ T7096]  iget_locked+0x1d9/0x6d0
[  426.606116][ T7096]  kernfs_get_inode+0x46/0x470
[  426.606196][ T7096]  kernfs_iop_lookup+0x1a7/0x2d0
[  426.606234][ T7096]  lookup_open.isra.0+0x631/0x11b0
[  426.606274][ T7096]  path_openat+0xa98/0x31a0
[  426.606442][ T7096]  do_file_open+0x20e/0x430
[  426.606476][ T7096]  do_sys_openat2+0x10d/0x1e0
[  426.606509][ T7096]  __x64_sys_openat+0x12d/0x210
[  426.606544][ T7096] page last free pid 1 tgid 1 stack trace:
[  426.606559][ T7096]  __free_frozen_pages+0x7e1/0x10d0
[  426.606592][ T7096]  free_contig_range+0xde/0x1d0
[  426.606624][ T7096]  destroy_args+0xa8/0x7a0
[  426.606798][ T7096]  debug_vm_pgtable+0x1b66/0x34c0
[  426.606834][ T7096]  do_one_initcall+0x11d/0x760
[  426.606886][ T7096]  kernel_init_freeable+0x6e5/0x7a0
[  426.606960][ T7096]  kernel_init+0x1f/0x1e0
[  426.615002][ T7096]  ret_from_fork+0x754/0xd80
[  426.615065][ T7096]  ret_from_fork_asm+0x1a/0x30
[  426.637542][ T7104] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  427.452676][ T7104] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  427.540929][ T7104] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  427.556904][ T7104] page_type: f5(slab)
[  427.575474][ T7104] raw: 00fff00000000040 ffff88814047b280 dead000000000100 dead000000000122
[  427.597497][ T7104] raw: 0000000000000000 0000000800190019 00000000f5000000 0000000000000000
[  427.737008][ T7104] head: 00fff00000000040 ffff88814047b280 dead000000000100 dead000000000122
[  427.762736][ T7104] head: 0000000000000000 0000000800190019 00000000f5000000 0000000000000000
[  427.868198][ T7104] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  427.868223][ T7104] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  427.868233][ T7104] page dumped because: unmovable page
[  427.868242][ T7104] page_owner tracks the page as allocated
[  427.868248][ T7104] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5197, tgid 5197 (udevadm), ts 30639452372, free_ts 25024308794
[  427.868281][ T7104]  post_alloc_hook+0x153/0x170
[  427.868305][ T7104]  get_page_from_freelist+0x111d/0x3140
[  427.868327][ T7104]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  427.870062][ T7104]  new_slab+0xa6/0x6c0
[  427.870102][ T7104]  refill_objects+0x26b/0x400
[  427.870137][ T7104]  __pcs_replace_empty_main+0x1ab/0x600
[  427.870178][ T7104]  kmem_cache_alloc_lru_noprof+0x485/0x6e0
[  427.872673][ T7104]  alloc_inode+0x183/0x250
[  427.872717][ T7104]  iget_locked+0x1d9/0x6d0
[  427.872751][ T7104]  kernfs_get_inode+0x46/0x470
[  427.872786][ T7104]  kernfs_iop_lookup+0x1a7/0x2d0
[  427.872826][ T7104]  lookup_open.isra.0+0x631/0x11b0
[  427.872866][ T7104]  path_openat+0xa98/0x31a0
[  427.872894][ T7104]  do_file_open+0x20e/0x430
[  427.872921][ T7104]  do_sys_openat2+0x10d/0x1e0
[  427.872958][ T7104]  __x64_sys_openat+0x12d/0x210
[  427.872995][ T7104] page last free pid 1 tgid 1 stack trace:
[  427.873012][ T7104]  __free_frozen_pages+0x7e1/0x10d0
[  427.873048][ T7104]  free_contig_range+0xde/0x1d0
[  427.873083][ T7104]  destroy_args+0xa8/0x7a0
[  427.873121][ T7104]  debug_vm_pgtable+0x1b66/0x34c0
[  427.873160][ T7104]  do_one_initcall+0x11d/0x760
[  427.873191][ T7104]  kernel_init_freeable+0x6e5/0x7a0
[  427.873231][ T7104]  kernel_init+0x1f/0x1e0
[  427.873272][ T7104]  ret_from_fork+0x754/0xd80
[  427.873313][ T7104]  ret_from_fork_asm+0x1a/0x30
[  430.192540][ T7150] futex_wake_op: syz.3.272 tries to shift op by -2048; fix this program
[  430.219242][ T7135] futex_wake_op: syz.1.270 tries to shift op by -2048; fix this program
[  430.238645][ T7150] futex_wake_op: syz.3.272 tries to shift op by -2048; fix this program
[  430.258125][ T7135] futex_wake_op: syz.1.270 tries to shift op by -2048; fix this program
[  431.751266][ T7183] futex_wake_op: syz.2.281 tries to shift op by -2048; fix this program
[  431.811343][ T7183] futex_wake_op: syz.2.281 tries to shift op by -2048; fix this program
[  431.995161][ T7188] futex_wake_op: syz.1.282 tries to shift op by -2048; fix this program
[  432.038654][ T7188] futex_wake_op: syz.1.282 tries to shift op by -2048; fix this program
[  432.252343][ T7192] zswap: compressor  not available
[  432.279818][ T7199] futex_wake_op: syz.0.283 tries to shift op by -2048; fix this program
[  432.288331][ T7199] futex_wake_op: syz.0.283 tries to shift op by -2048; fix this program
[  432.514968][ T7193] zswap: compressor  not available
[  434.086702][ T7243] futex_wake_op: syz.3.295 tries to shift op by -2048; fix this program
[  434.101182][ T7243] futex_wake_op: syz.3.295 tries to shift op by -2048; fix this program
[  434.336291][ T7249] futex_wake_op: syz.1.296 tries to shift op by -2048; fix this program
[  434.363810][ T7249] futex_wake_op: syz.1.296 tries to shift op by -2048; fix this program
[  435.627209][ T7276] FAULT_INJECTION: forcing a failure.
[  435.627209][ T7276] name failslab, interval 1, probability 0, space 0, times 0
[  435.641050][ T7276] CPU: 1 UID: 0 PID: 7276 Comm: syz.1.304 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  435.641089][ T7276] Tainted: [L]=SOFTLOCKUP
[  435.641098][ T7276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  435.641113][ T7276] Call Trace:
[  435.641122][ T7276]  <TASK>
[  435.641132][ T7276]  dump_stack_lvl+0x100/0x190
[  435.641177][ T7276]  should_fail_ex.cold+0x5/0xa
[  435.641214][ T7276]  should_failslab+0xc2/0x120
[  435.641243][ T7276]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  435.641281][ T7276]  ? alloc_empty_file+0x55/0x1c0
[  435.641314][ T7276]  ? __pfx_stack_trace_save+0x10/0x10
[  435.641346][ T7276]  alloc_empty_file+0x55/0x1c0
[  435.641381][ T7276]  path_openat+0xe8/0x31a0
[  435.641406][ T7276]  ? kasan_save_stack+0x3f/0x50
[  435.641444][ T7276]  ? kasan_save_stack+0x30/0x50
[  435.641481][ T7276]  ? kasan_save_track+0x14/0x30
[  435.641518][ T7276]  ? __kasan_slab_alloc+0x89/0x90
[  435.641542][ T7276]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  435.641580][ T7276]  ? do_getname+0x35/0x390
[  435.641616][ T7276]  ? do_sys_openat2+0xc5/0x1e0
[  435.641650][ T7276]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  435.641683][ T7276]  ? __pfx_path_openat+0x10/0x10
[  435.641725][ T7276]  do_file_open+0x20e/0x430
[  435.641755][ T7276]  ? __pfx_do_file_open+0x10/0x10
[  435.641810][ T7276]  ? alloc_fd+0x476/0x790
[  435.641840][ T7276]  ? do_getname+0x191/0x390
[  435.641876][ T7276]  do_sys_openat2+0x10d/0x1e0
[  435.641910][ T7276]  ? __pfx_do_sys_openat2+0x10/0x10
[  435.641943][ T7276]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  435.641983][ T7276]  ? __fget_files+0x21f/0x3d0
[  435.642014][ T7276]  __x64_sys_openat+0x12d/0x210
[  435.642050][ T7276]  ? __pfx___x64_sys_openat+0x10/0x10
[  435.642079][ T7276]  ? ksys_write+0x1ac/0x250
[  435.642112][ T7276]  do_syscall_64+0x106/0xf80
[  435.642143][ T7276]  ? clear_bhb_loop+0x40/0x90
[  435.642177][ T7276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  435.642205][ T7276] RIP: 0033:0x7f9530f9c799
[  435.642227][ T7276] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  435.642252][ T7276] RSP: 002b:00007f9531dc0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  435.642278][ T7276] RAX: ffffffffffffffda RBX: 00007f9531215fa0 RCX: 00007f9530f9c799
[  435.642296][ T7276] RDX: 0000000000000400 RSI: 0000200000000200 RDI: ffffffffffffff9c
[  435.642314][ T7276] RBP: 00007f9531dc0090 R08: 0000000000000000 R09: 0000000000000000
[  435.642330][ T7276] R10: 000000000000003f R11: 0000000000000246 R12: 0000000000000001
[  435.642347][ T7276] R13: 00007f9531216038 R14: 00007f9531215fa0 R15: 00007ffc44d5b0c8
[  435.642384][ T7276]  </TASK>
[  436.499420][ T7275] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  436.532107][ T7275] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  436.548590][ T7275] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  436.557104][ T7275] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  437.073953][ T7298] FAULT_INJECTION: forcing a failure.
[  437.073953][ T7298] name failslab, interval 1, probability 0, space 0, times 0
[  437.134094][ T7298] CPU: 1 UID: 0 PID: 7298 Comm: syz.1.312 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  437.134122][ T7298] Tainted: [L]=SOFTLOCKUP
[  437.134127][ T7298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  437.134136][ T7298] Call Trace:
[  437.134141][ T7298]  <TASK>
[  437.134148][ T7298]  dump_stack_lvl+0x100/0x190
[  437.134175][ T7298]  should_fail_ex.cold+0x5/0xa
[  437.134192][ T7298]  ? kernfs_fop_write_iter+0x26a/0x5f0
[  437.134208][ T7298]  should_failslab+0xc2/0x120
[  437.134223][ T7298]  __kmalloc_noprof+0xe0/0x850
[  437.134249][ T7298]  kernfs_fop_write_iter+0x26a/0x5f0
[  437.134267][ T7298]  vfs_write+0x6ac/0x1070
[  437.134291][ T7298]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  437.134308][ T7298]  ? __pfx_vfs_write+0x10/0x10
[  437.134343][ T7298]  ksys_write+0x12a/0x250
[  437.134356][ T7298]  ? __pfx_ksys_write+0x10/0x10
[  437.134375][ T7298]  do_syscall_64+0x106/0xf80
[  437.134400][ T7298]  ? clear_bhb_loop+0x40/0x90
[  437.134419][ T7298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.134435][ T7298] RIP: 0033:0x7f9530f9c799
[  437.134447][ T7298] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  437.134461][ T7298] RSP: 002b:00007f9531dc0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  437.134475][ T7298] RAX: ffffffffffffffda RBX: 00007f9531215fa0 RCX: 00007f9530f9c799
[  437.134485][ T7298] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  437.134493][ T7298] RBP: 00007f9531dc0090 R08: 0000000000000000 R09: 0000000000000000
[  437.134501][ T7298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  437.134509][ T7298] R13: 00007f9531216038 R14: 00007f9531215fa0 R15: 00007ffc44d5b0c8
[  437.134528][ T7298]  </TASK>
[  437.646240][ T7306] futex_atomic_op_inuser: 4 callbacks suppressed
[  437.646264][ T7306] futex_wake_op: syz.2.314 tries to shift op by -2048; fix this program
[  437.697168][ T7306] futex_wake_op: syz.2.314 tries to shift op by -2048; fix this program
[  438.443604][ T7326] netlink: 'syz.0.322': attribute type 33 has an invalid length.
[  438.468534][ T7326] netlink: 322 bytes leftover after parsing attributes in process `syz.0.322'.
[  438.559093][ T5871] Bluetooth: hci1: command 0x0c1a tx timeout
[  438.559782][ T5146] Bluetooth: hci0: command 0x0c1a tx timeout
[  438.577123][ T7328] openvswitch: netlink: IP tunnel attribute has 165 unknown bytes.
[  438.587405][ T7328] process 'syz.3.320' launched ':,' with NULL argv: empty string added
[  438.629783][ T5146] Bluetooth: hci3: command 0x0c1a tx timeout
[  438.630149][ T5871] Bluetooth: hci2: command 0x0c1a tx timeout
[  440.074825][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  440.081300][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  442.233951][ T7402] random: crng reseeded on system resumption
[  444.992797][ T5871] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  445.593107][ T7453] synth uevent: /devices/platform/dummy_hcd.3/usb4/ep_00: unknown uevent action string
[  445.608634][ T7453]  ep_00: uevent: failed to send synthetic uevent: -22
[  447.028901][ T5146] Bluetooth: hci1: command 0x0c1a tx timeout
[  447.120371][ T7488] ovs_: entered promiscuous mode
[  448.735232][ T7509] futex_wake_op: syz.3.367 tries to shift op by -2048; fix this program
[  448.792211][ T7509] futex_wake_op: syz.3.367 tries to shift op by -2048; fix this program
[  449.109341][ T5871] Bluetooth: hci1: command 0x0c1a tx timeout
[  450.103016][ T7536] FAULT_INJECTION: forcing a failure.
[  450.103016][ T7536] name failslab, interval 1, probability 0, space 0, times 0
[  450.128440][ T7536] CPU: 0 UID: 0 PID: 7536 Comm: syz.2.373 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  450.128467][ T7536] Tainted: [L]=SOFTLOCKUP
[  450.128472][ T7536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  450.128482][ T7536] Call Trace:
[  450.128487][ T7536]  <TASK>
[  450.128493][ T7536]  dump_stack_lvl+0x100/0x190
[  450.128522][ T7536]  should_fail_ex.cold+0x5/0xa
[  450.128540][ T7536]  should_failslab+0xc2/0x120
[  450.128556][ T7536]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  450.128577][ T7536]  ? security_inode_alloc+0x3b/0x2c0
[  450.128599][ T7536]  ? lockdep_init_map_type+0x5c/0x250
[  450.128621][ T7536]  security_inode_alloc+0x3b/0x2c0
[  450.128643][ T7536]  inode_init_always_gfp+0xced/0x1040
[  450.128661][ T7536]  alloc_inode+0x8e/0x250
[  450.128682][ T7536]  new_inode+0x22/0x1c0
[  450.128703][ T7536]  shmem_get_inode+0x212/0x1040
[  450.128724][ T7536]  ? __pfx_shmem_get_inode+0x10/0x10
[  450.128743][ T7536]  ? map_id_range_up+0x2ce/0x3b0
[  450.128758][ T7536]  ? __pfx_make_vfsuid+0x10/0x10
[  450.128781][ T7536]  shmem_symlink+0x11b/0xa00
[  450.128802][ T7536]  ? generic_permission+0xae/0x800
[  450.128821][ T7536]  ? __pfx_shmem_symlink+0x10/0x10
[  450.128841][ T7536]  ? security_inode_permission+0xbf/0x250
[  450.128864][ T7536]  ? inode_permission+0x374/0x620
[  450.128881][ T7536]  ? tomoyo_path_symlink+0x97/0xe0
[  450.128905][ T7536]  vfs_symlink+0x178/0x4d0
[  450.128926][ T7536]  filename_symlinkat+0x2a6/0x560
[  450.128945][ T7536]  ? __pfx_filename_symlinkat+0x10/0x10
[  450.128962][ T7536]  ? strncpy_from_user+0x19d/0x2d0
[  450.128987][ T7536]  ? do_getname+0x191/0x390
[  450.129006][ T7536]  __x64_sys_symlink+0x79/0xb0
[  450.129023][ T7536]  do_syscall_64+0x106/0xf80
[  450.129040][ T7536]  ? clear_bhb_loop+0x40/0x90
[  450.129059][ T7536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.129074][ T7536] RIP: 0033:0x7fe5c159c799
[  450.129087][ T7536] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  450.129101][ T7536] RSP: 002b:00007fe5c2415028 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[  450.129115][ T7536] RAX: ffffffffffffffda RBX: 00007fe5c1816090 RCX: 00007fe5c159c799
[  450.129125][ T7536] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  450.129133][ T7536] RBP: 00007fe5c1632c99 R08: 0000000000000000 R09: 0000000000000000
[  450.129142][ T7536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  450.129150][ T7536] R13: 00007fe5c1816128 R14: 00007fe5c1816090 R15: 00007ffda0a0d678
[  450.129170][ T7536]  </TASK>
[  451.138566][ T7545] could not allocate digest TFM handle 
[  453.262622][ T7587] futex_wake_op: syz.0.379 tries to shift op by -2048; fix this program
[  453.298731][ T7587] futex_wake_op: syz.0.379 tries to shift op by -2048; fix this program
“ÇI�ãjníüú¡9»_UÏ´îVQ8Àñj@:Un M½×%U¬x[  456.572256][ T7649] futex_wake_op: syz.2.390 tries to shift op by -2048; fix this program
[  456.580899][ T7649] futex_wake_op: syz.2.390 tries to shift op by -2048; fix this program
[  459.320953][ T7784] FAULT_INJECTION: forcing a failure.
[  459.320953][ T7784] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  459.366198][ T7784] CPU: 1 UID: 0 PID: 7784 Comm: syz.1.398 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  459.366223][ T7784] Tainted: [L]=SOFTLOCKUP
[  459.366228][ T7784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  459.366237][ T7784] Call Trace:
[  459.366242][ T7784]  <TASK>
[  459.366248][ T7784]  dump_stack_lvl+0x100/0x190
[  459.366275][ T7784]  should_fail_ex.cold+0x5/0xa
[  459.366293][ T7784]  _copy_to_user+0x32/0xd0
[  459.366309][ T7784]  simple_read_from_buffer+0xcb/0x170
[  459.366334][ T7784]  proc_fail_nth_read+0x1af/0x230
[  459.366352][ T7784]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  459.366371][ T7784]  ? rw_verify_area+0xce/0x6d0
[  459.366392][ T7784]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  459.366409][ T7784]  vfs_read+0x1e4/0xb30
[  459.366434][ T7784]  ? __pfx_vfs_read+0x10/0x10
[  459.366455][ T7784]  ? __fget_files+0x215/0x3d0
[  459.366472][ T7784]  ? __fget_files+0x21f/0x3d0
[  459.366491][ T7784]  ksys_read+0x12a/0x250
[  459.366512][ T7784]  ? __pfx_ksys_read+0x10/0x10
[  459.366540][ T7784]  do_syscall_64+0x106/0xf80
[  459.366558][ T7784]  ? clear_bhb_loop+0x40/0x90
[  459.366576][ T7784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.366591][ T7784] RIP: 0033:0x7f9530f5cfce
[  459.366604][ T7784] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  459.366618][ T7784] RSP: 002b:00007f9531dbffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  459.366632][ T7784] RAX: ffffffffffffffda RBX: 00007f9531dc06c0 RCX: 00007f9530f5cfce
[  459.366641][ T7784] RDX: 000000000000000f RSI: 00007f9531dc00a0 RDI: 0000000000000004
[  459.366650][ T7784] RBP: 00007f9531dc0090 R08: 0000000000000000 R09: 0000000000000000
[  459.366658][ T7784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  459.366666][ T7784] R13: 00007f9531216038 R14: 00007f9531215fa0 R15: 00007ffc44d5b0c8
[  459.366685][ T7784]  </TASK>
[  462.060602][ T7810] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  462.067672][ T7810] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  462.086184][ T7810] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  462.100281][ T7810] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  462.664080][ T7822] futex_wake_op: syz.2.408 tries to shift op by -2048; fix this program
[  462.672666][ T7822] futex_wake_op: syz.2.408 tries to shift op by -2048; fix this program
[  464.068509][ T5146] Bluetooth: hci1: command 0x0c1a tx timeout
[  464.074568][ T5146] Bluetooth: hci0: command 0x0c1a tx timeout
[  464.148445][ T5146] Bluetooth: hci3: command 0x0c1a tx timeout
[  464.154740][ T5146] Bluetooth: hci2: command 0x0c1a tx timeout
[  464.348222][ T7828] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  466.200587][ T7864] futex_wake_op: syz.2.418 tries to shift op by -2048; fix this program
[  466.221620][ T7868] NFSD: Failed to start, no listeners configured.
[  466.228572][ T5146] Bluetooth: hci0: unexpected event 0x03 length: 725 > 11
[  466.257051][ T7864] futex_wake_op: syz.2.418 tries to shift op by -2048; fix this program
[  467.152027][ T7880] futex_wake_op: syz.1.426 tries to shift op by -2048; fix this program
[  467.160772][ T7880] futex_wake_op: syz.1.426 tries to shift op by -2048; fix this program
[  468.086120][ T7898] futex_wake_op: syz.3.432 tries to shift op by -2048; fix this program
[  468.103535][ T7898] futex_wake_op: syz.3.432 tries to shift op by -2048; fix this program
[  468.126947][ T7898] 0x000000000001-0x000000020000 : ""
[  468.179332][ T7898] ftl_cs: FTL header corrupt!
[  470.434421][ T7934] futex_wake_op: syz.0.438 tries to shift op by -2048; fix this program
[  470.448668][ T7934] futex_wake_op: syz.0.438 tries to shift op by -2048; fix this program
[  471.098872][ T7949] FAULT_INJECTION: forcing a failure.
[  471.098872][ T7949] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  471.127697][ T7949] CPU: 1 UID: 0 PID: 7949 Comm: syz.3.443 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  471.127740][ T7949] Tainted: [L]=SOFTLOCKUP
[  471.127748][ T7949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  471.127764][ T7949] Call Trace:
[  471.127772][ T7949]  <TASK>
[  471.127783][ T7949]  dump_stack_lvl+0x100/0x190
[  471.127830][ T7949]  should_fail_ex.cold+0x5/0xa
[  471.127861][ T7949]  _copy_from_user+0x2e/0xd0
[  471.127891][ T7949]  kstrtouint_from_user+0xd6/0x1d0
[  471.127928][ T7949]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  471.127963][ T7949]  ? __lock_acquire+0x4a5/0x2630
[  471.128002][ T7949]  ? iovec_from_user+0xda/0x140
[  471.128033][ T7949]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  471.128063][ T7949]  proc_fail_nth_write+0x83/0x220
[  471.128095][ T7949]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  471.128136][ T7949]  vfs_writev+0x5ea/0xe10
[  471.128175][ T7949]  ? rcu_is_watching+0x12/0xc0
[  471.128224][ T7949]  ? __pfx_vfs_writev+0x10/0x10
[  471.128258][ T7949]  ? fdget_pos+0x2aa/0x380
[  471.128312][ T7949]  ? __fget_files+0x21f/0x3d0
[  471.128348][ T7949]  ? do_writev+0x13e/0x340
[  471.128384][ T7949]  do_writev+0x13e/0x340
[  471.128424][ T7949]  ? __pfx_do_writev+0x10/0x10
[  471.128471][ T7949]  do_syscall_64+0x106/0xf80
[  471.128503][ T7949]  ? clear_bhb_loop+0x40/0x90
[  471.128537][ T7949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  471.128561][ T7949] RIP: 0033:0x7f1d2339c799
[  471.128593][ T7949] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  471.128620][ T7949] RSP: 002b:00007f1d242c5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  471.128646][ T7949] RAX: ffffffffffffffda RBX: 00007f1d23615fa0 RCX: 00007f1d2339c799
[  471.128661][ T7949] RDX: 0000000200000003 RSI: 0000200000000200 RDI: 0000000000000003
[  471.128678][ T7949] RBP: 00007f1d23432c99 R08: 0000000000000000 R09: 0000000000000000
[  471.128692][ T7949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  471.128706][ T7949] R13: 00007f1d23616038 R14: 00007f1d23615fa0 R15: 00007ffcdec6fce8
[  471.128741][ T7949]  </TASK>
[  472.368248][ T7969] futex_wake_op: syz.0.449 tries to shift op by -2048; fix this program
[  474.195582][ T8007] FAULT_INJECTION: forcing a failure.
[  474.195582][ T8007] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  474.239186][ T8007] CPU: 0 UID: 0 PID: 8007 Comm: syz.3.456 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  474.239226][ T8007] Tainted: [L]=SOFTLOCKUP
[  474.239235][ T8007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  474.239249][ T8007] Call Trace:
[  474.239257][ T8007]  <TASK>
[  474.239267][ T8007]  dump_stack_lvl+0x100/0x190
[  474.239315][ T8007]  should_fail_ex.cold+0x5/0xa
[  474.239346][ T8007]  _copy_to_user+0x32/0xd0
[  474.239376][ T8007]  __sys_bpf+0x3b7e/0x4b90
[  474.239445][ T8007]  ? __pfx___sys_bpf+0x10/0x10
[  474.239473][ T8007]  ? proc_fail_nth_write+0x9f/0x220
[  474.239507][ T8007]  ? find_held_lock+0x2b/0x80
[  474.239541][ T8007]  ? find_held_lock+0x2b/0x80
[  474.239566][ T8007]  ? ksys_write+0x190/0x250
[  474.239600][ T8007]  ? __mutex_unlock_slowpath+0x15c/0x790
[  474.239637][ T8007]  ? __fget_files+0x215/0x3d0
[  474.239683][ T8007]  ? xfd_validate_state+0x129/0x190
[  474.239739][ T8007]  __x64_sys_bpf+0x7b/0xc0
[  474.239769][ T8007]  ? lockdep_hardirqs_on+0x78/0x100
[  474.239802][ T8007]  do_syscall_64+0x106/0xf80
[  474.239834][ T8007]  ? clear_bhb_loop+0x40/0x90
[  474.239869][ T8007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  474.239897][ T8007] RIP: 0033:0x7f1d2339c799
[  474.239921][ T8007] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  474.239947][ T8007] RSP: 002b:00007f1d242c5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  474.239974][ T8007] RAX: ffffffffffffffda RBX: 00007f1d23615fa0 RCX: 00007f1d2339c799
[  474.239993][ T8007] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000015
[  474.240010][ T8007] RBP: 00007f1d242c5090 R08: 0000000000000000 R09: 0000000000000000
[  474.240027][ T8007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  474.240042][ T8007] R13: 00007f1d23616038 R14: 00007f1d23615fa0 R15: 00007ffcdec6fce8
[  474.240073][ T8007]  </TASK>
[  474.459046][ T8010] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  474.527070][ T8011] random: crng reseeded on system resumption
[  476.056539][ T8035] FAULT_INJECTION: forcing a failure.
[  476.056539][ T8035] name failslab, interval 1, probability 0, space 0, times 0
[  476.146210][ T8035] CPU: 1 UID: 0 PID: 8035 Comm: syz.3.465 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  476.146254][ T8035] Tainted: [L]=SOFTLOCKUP
[  476.146264][ T8035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  476.146279][ T8035] Call Trace:
[  476.146288][ T8035]  <TASK>
[  476.146298][ T8035]  dump_stack_lvl+0x100/0x190
[  476.146343][ T8035]  should_fail_ex.cold+0x5/0xa
[  476.146376][ T8035]  should_failslab+0xc2/0x120
[  476.146406][ T8035]  __kmalloc_cache_noprof+0x7a/0x6f0
[  476.146440][ T8035]  ? keyring_restrict+0x27a/0x650
[  476.146480][ T8035]  keyring_restrict+0x27a/0x650
[  476.146514][ T8035]  ? __pfx_keyring_restrict+0x10/0x10
[  476.146544][ T8035]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  476.146590][ T8035]  keyctl_restrict_keyring+0x1a4/0x250
[  476.146630][ T8035]  ? __pfx_keyctl_restrict_keyring+0x10/0x10
[  476.146673][ T8035]  ? ksys_write+0x1ac/0x250
[  476.146697][ T8035]  ? __pfx_ksys_write+0x10/0x10
[  476.146728][ T8035]  __do_sys_keyctl+0x2e8/0x5a0
[  476.146769][ T8035]  do_syscall_64+0x106/0xf80
[  476.146800][ T8035]  ? clear_bhb_loop+0x40/0x90
[  476.146837][ T8035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.146865][ T8035] RIP: 0033:0x7f1d2339c799
[  476.146888][ T8035] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  476.146913][ T8035] RSP: 002b:00007f1d242c5028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  476.146939][ T8035] RAX: ffffffffffffffda RBX: 00007f1d23615fa0 RCX: 00007f1d2339c799
[  476.146958][ T8035] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 000000000000001d
[  476.146974][ T8035] RBP: 00007f1d242c5090 R08: 0000000000000006 R09: 0000000000000000
[  476.146991][ T8035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  476.147007][ T8035] R13: 00007f1d23616038 R14: 00007f1d23615fa0 R15: 00007ffcdec6fce8
[  476.147044][ T8035]  </TASK>
[  476.563816][ T8042] futex_wake_op: syz.3.467 tries to shift op by -2048; fix this program
[  476.572490][ T8042] futex_wake_op: syz.3.467 tries to shift op by -2048; fix this program
[  478.858498][ T8076] netlink: 4 bytes leftover after parsing attributes in process `syz.1.476'.
[  478.872371][ T8076] netlink: 5 bytes leftover after parsing attributes in process `syz.1.476'.
[  479.844059][ T8094] FAULT_INJECTION: forcing a failure.
[  479.844059][ T8094] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  479.883003][ T8094] CPU: 1 UID: 0 PID: 8094 Comm: syz.1.479 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  479.883051][ T8094] Tainted: [L]=SOFTLOCKUP
[  479.883061][ T8094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  479.883078][ T8094] Call Trace:
[  479.883087][ T8094]  <TASK>
[  479.883098][ T8094]  dump_stack_lvl+0x100/0x190
[  479.883148][ T8094]  should_fail_ex.cold+0x5/0xa
[  479.883174][ T8094]  ? prepare_alloc_pages+0x16d/0x5f0
[  479.883211][ T8094]  should_fail_alloc_page+0xeb/0x140
[  479.883245][ T8094]  prepare_alloc_pages+0x1f0/0x5f0
[  479.883284][ T8094]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  479.883326][ T8094]  ? buffer_subbuf_size_write+0x182/0x280
[  479.883381][ T8094]  ? do_writev+0x13e/0x340
[  479.883421][ T8094]  ? do_syscall_64+0x106/0xf80
[  479.883454][ T8094]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  479.883502][ T8094]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  479.883570][ T8094]  ? rcu_is_watching+0x12/0xc0
[  479.883611][ T8094]  ? trace_kmalloc+0x101/0x130
[  479.883638][ T8094]  ? __kasan_kmalloc+0xaa/0xb0
[  479.883687][ T8094]  __alloc_pages_noprof+0xb/0x1b0
[  479.883729][ T8094]  alloc_cpu_data+0x60/0x130
[  479.883763][ T8094]  __rb_allocate_pages+0x6a5/0xf50
[  479.883815][ T8094]  ring_buffer_subbuf_order_set+0x3ef/0x18c0
[  479.883865][ T8094]  ? tracing_stop_tr+0xf6/0x210
[  479.883910][ T8094]  ? __pfx_ring_buffer_subbuf_order_set+0x10/0x10
[  479.883949][ T8094]  ? __pfx___might_resched+0x10/0x10
[  479.883990][ T8094]  ? iovec_from_user+0xda/0x140
[  479.884027][ T8094]  buffer_subbuf_size_write+0x182/0x280
[  479.884073][ T8094]  ? __pfx_buffer_subbuf_size_write+0x10/0x10
[  479.884129][ T8094]  ? __pfx_buffer_subbuf_size_write+0x10/0x10
[  479.884174][ T8094]  vfs_writev+0x5ea/0xe10
[  479.884213][ T8094]  ? rcu_is_watching+0x12/0xc0
[  479.884263][ T8094]  ? __pfx_vfs_writev+0x10/0x10
[  479.884301][ T8094]  ? fdget_pos+0x2aa/0x380
[  479.884365][ T8094]  ? __fget_files+0x21f/0x3d0
[  479.884402][ T8094]  ? do_writev+0x13e/0x340
[  479.884442][ T8094]  do_writev+0x13e/0x340
[  479.884485][ T8094]  ? __pfx_do_writev+0x10/0x10
[  479.884538][ T8094]  do_syscall_64+0x106/0xf80
[  479.884571][ T8094]  ? clear_bhb_loop+0x40/0x90
[  479.884606][ T8094]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  479.884634][ T8094] RIP: 0033:0x7f9530f9c799
[  479.884658][ T8094] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  479.884684][ T8094] RSP: 002b:00007f9531dc0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  479.884712][ T8094] RAX: ffffffffffffffda RBX: 00007f9531215fa0 RCX: 00007f9530f9c799
[  479.884730][ T8094] RDX: 000000000000000a RSI: 0000200000000200 RDI: 0000000000000008
[  479.884747][ T8094] RBP: 00007f9531032c99 R08: 0000000000000000 R09: 0000000000000000
[  479.884764][ T8094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  479.884780][ T8094] R13: 00007f9531216038 R14: 00007f9531215fa0 R15: 00007ffc44d5b0c8
[  479.884817][ T8094]  </TASK>
[  480.835863][ T8098] futex_wake_op: syz.1.481 tries to shift op by -2048; fix this program
[  480.844460][ T8098] futex_wake_op: syz.1.481 tries to shift op by -2048; fix this program
[  480.996767][ T8096] Invalid ELF header magic: != ELF
[  482.378315][ T8131] binder: 8130:8131 ioctl c018620c 0 returned -1
[  483.762967][ T8168] netlink: 86 bytes leftover after parsing attributes in process `syz.0.497'.
[  484.156514][ T8165] futex_wake_op: syz.2.498 tries to shift op by -2048; fix this program
[  484.209234][ T8165] futex_wake_op: syz.2.498 tries to shift op by -2048; fix this program
[  487.212245][ T8251] ptrace attach of "./syz-executor exec"[5874] was attempted by "./syz-executor exec"[8251]
[  488.162629][ T8274] FAULT_INJECTION: forcing a failure.
[  488.162629][ T8274] name failslab, interval 1, probability 0, space 0, times 0
[  488.207817][ T8274] CPU: 0 UID: 0 PID: 8274 Comm: syz.3.527 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  488.207865][ T8274] Tainted: [L]=SOFTLOCKUP
[  488.207874][ T8274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  488.207887][ T8274] Call Trace:
[  488.207894][ T8274]  <TASK>
[  488.207904][ T8274]  dump_stack_lvl+0x100/0x190
[  488.207945][ T8274]  should_fail_ex.cold+0x5/0xa
[  488.207973][ T8274]  ? tomoyo_realpath_from_path+0xb6/0x690
[  488.208003][ T8274]  should_failslab+0xc2/0x120
[  488.208029][ T8274]  __kmalloc_noprof+0xe0/0x850
[  488.208073][ T8274]  tomoyo_realpath_from_path+0xb6/0x690
[  488.208111][ T8274]  tomoyo_check_open_permission+0x2af/0x3c0
[  488.208152][ T8274]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  488.208219][ T8274]  ? lock_acquire+0x1cf/0x380
[  488.208251][ T8274]  ? find_held_lock+0x2b/0x80
[  488.208283][ T8274]  tomoyo_file_open+0x6b/0x90
[  488.208318][ T8274]  security_file_open+0xb5/0x1e0
[  488.208348][ T8274]  do_dentry_open+0x5aa/0x1660
[  488.208382][ T8274]  vfs_open+0x82/0x3f0
[  488.208419][ T8274]  path_openat+0x208c/0x31a0
[  488.208457][ T8274]  ? __pfx_path_openat+0x10/0x10
[  488.208497][ T8274]  do_file_open+0x20e/0x430
[  488.208525][ T8274]  ? __pfx_do_file_open+0x10/0x10
[  488.208562][ T8274]  ? __pfx_kfree_link+0x10/0x10
[  488.208606][ T8274]  ? alloc_fd+0x476/0x790
[  488.208633][ T8274]  ? do_getname+0x191/0x390
[  488.208668][ T8274]  do_sys_openat2+0x10d/0x1e0
[  488.208700][ T8274]  ? __pfx_do_sys_openat2+0x10/0x10
[  488.208744][ T8274]  __x64_sys_openat+0x12d/0x210
[  488.208776][ T8274]  ? __pfx___x64_sys_openat+0x10/0x10
[  488.208825][ T8274]  do_syscall_64+0x106/0xf80
[  488.208866][ T8274]  ? clear_bhb_loop+0x40/0x90
[  488.208898][ T8274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  488.208922][ T8274] RIP: 0033:0x7f1d2335cfce
[  488.208944][ T8274] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  488.208967][ T8274] RSP: 002b:00007f1d242c4f98 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  488.208990][ T8274] RAX: ffffffffffffffda RBX: 00007f1d242c56c0 RCX: 00007f1d2335cfce
[  488.209007][ T8274] RDX: 0000000000000002 RSI: 00007f1d234325a0 RDI: ffffffffffffff9c
[  488.209024][ T8274] RBP: 00007f1d23432c99 R08: 0000000000000000 R09: 0000000000000000
[  488.209040][ T8274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  488.209056][ T8274] R13: 00007f1d23616038 R14: 00007f1d23615fa0 R15: 00007ffcdec6fce8
[  488.209113][ T8274]  </TASK>
[  488.461938][ T8274] ERROR: Out of memory at tomoyo_realpath_from_path.
[  488.470316][ T8274] FAULT_INJECTION: forcing a failure.
[  488.470316][ T8274] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  488.483831][ T8274] CPU: 0 UID: 0 PID: 8274 Comm: syz.3.527 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  488.483855][ T8274] Tainted: [L]=SOFTLOCKUP
[  488.483860][ T8274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  488.483869][ T8274] Call Trace:
[  488.483873][ T8274]  <TASK>
[  488.483879][ T8274]  dump_stack_lvl+0x100/0x190
[  488.483908][ T8274]  should_fail_ex.cold+0x5/0xa
[  488.483926][ T8274]  _copy_from_user+0x2e/0xd0
[  488.483941][ T8274]  ppp_write+0x1a0/0x400
[  488.484040][ T8274]  vfs_write+0x2aa/0x1070
[  488.484063][ T8274]  ? __pfx_ppp_write+0x10/0x10
[  488.484081][ T8274]  ? __pfx_vfs_write+0x10/0x10
[  488.484102][ T8274]  ? find_held_lock+0x2b/0x80
[  488.484116][ T8274]  ? __fget_files+0x215/0x3d0
[  488.484129][ T8274]  ? __fget_files+0x215/0x3d0
[  488.484145][ T8274]  ? __fget_files+0x21f/0x3d0
[  488.484163][ T8274]  ksys_write+0x12a/0x250
[  488.484175][ T8274]  ? __pfx_ksys_write+0x10/0x10
[  488.484194][ T8274]  do_syscall_64+0x106/0xf80
[  488.484212][ T8274]  ? clear_bhb_loop+0x40/0x90
[  488.484230][ T8274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  488.484245][ T8274] RIP: 0033:0x7f1d2339c799
[  488.484259][ T8274] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  488.484272][ T8274] RSP: 002b:00007f1d242c5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  488.484286][ T8274] RAX: ffffffffffffffda RBX: 00007f1d23615fa0 RCX: 00007f1d2339c799
[  488.484296][ T8274] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  488.484304][ T8274] RBP: 00007f1d242c5090 R08: 0000000000000000 R09: 0000000000000000
[  488.484312][ T8274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  488.484320][ T8274] R13: 00007f1d23616038 R14: 00007f1d23615fa0 R15: 00007ffcdec6fce8
[  488.484339][ T8274]  </TASK>
[  489.439154][ T8292] FAULT_INJECTION: forcing a failure.
[  489.439154][ T8292] name failslab, interval 1, probability 0, space 0, times 0
[  489.473198][ T8292] CPU: 1 UID: 0 PID: 8292 Comm: syz.2.533 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  489.473242][ T8292] Tainted: [L]=SOFTLOCKUP
[  489.473252][ T8292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  489.473267][ T8292] Call Trace:
[  489.473275][ T8292]  <TASK>
[  489.473286][ T8292]  dump_stack_lvl+0x100/0x190
[  489.473330][ T8292]  should_fail_ex.cold+0x5/0xa
[  489.473362][ T8292]  should_failslab+0xc2/0x120
[  489.473390][ T8292]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  489.473427][ T8292]  ? security_file_alloc+0x34/0x2c0
[  489.473456][ T8292]  ? trace_kmem_cache_alloc+0xf3/0x120
[  489.473490][ T8292]  security_file_alloc+0x34/0x2c0
[  489.473520][ T8292]  init_file+0x95/0x480
[  489.473552][ T8292]  alloc_empty_file+0x73/0x1c0
[  489.473586][ T8292]  path_openat+0xe8/0x31a0
[  489.473613][ T8292]  ? kasan_save_stack+0x3f/0x50
[  489.473652][ T8292]  ? kasan_save_stack+0x30/0x50
[  489.473690][ T8292]  ? kasan_save_track+0x14/0x30
[  489.473728][ T8292]  ? __kasan_slab_alloc+0x89/0x90
[  489.473752][ T8292]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  489.473790][ T8292]  ? do_getname+0x35/0x390
[  489.473820][ T8292]  ? do_sys_openat2+0xc5/0x1e0
[  489.473853][ T8292]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.473887][ T8292]  ? __pfx_path_openat+0x10/0x10
[  489.473935][ T8292]  do_file_open+0x20e/0x430
[  489.473966][ T8292]  ? __pfx_do_file_open+0x10/0x10
[  489.474019][ T8292]  ? alloc_fd+0x476/0x790
[  489.474049][ T8292]  ? do_getname+0x191/0x390
[  489.474085][ T8292]  do_sys_openat2+0x10d/0x1e0
[  489.474119][ T8292]  ? __pfx_do_sys_openat2+0x10/0x10
[  489.474152][ T8292]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  489.474192][ T8292]  ? __fget_files+0x21f/0x3d0
[  489.474223][ T8292]  __x64_sys_openat+0x12d/0x210
[  489.474258][ T8292]  ? __pfx___x64_sys_openat+0x10/0x10
[  489.474292][ T8292]  ? ksys_write+0x1ac/0x250
[  489.474330][ T8292]  do_syscall_64+0x106/0xf80
[  489.474360][ T8292]  ? clear_bhb_loop+0x40/0x90
[  489.474394][ T8292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.474421][ T8292] RIP: 0033:0x7fe5c159c799
[  489.474445][ T8292] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  489.474470][ T8292] RSP: 002b:00007fe5c2436028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  489.474497][ T8292] RAX: ffffffffffffffda RBX: 00007fe5c1815fa0 RCX: 00007fe5c159c799
[  489.474516][ T8292] RDX: 0000000000000400 RSI: 0000200000000200 RDI: ffffffffffffff9c
[  489.474534][ T8292] RBP: 00007fe5c2436090 R08: 0000000000000000 R09: 0000000000000000
[  489.474551][ T8292] R10: 000000000000003f R11: 0000000000000246 R12: 0000000000000001
[  489.474567][ T8292] R13: 00007fe5c1816038 R14: 00007fe5c1815fa0 R15: 00007ffda0a0d678
[  489.474604][ T8292]  </TASK>
[  489.917469][ T8288] futex_wake_op: syz.3.529 tries to shift op by -2048; fix this program
[  489.928666][ T8288] futex_wake_op: syz.3.529 tries to shift op by -2048; fix this program
[  490.919790][ T8319] FAULT_INJECTION: forcing a failure.
[  490.919790][ T8319] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  490.951517][ T8319] CPU: 0 UID: 0 PID: 8319 Comm: syz.1.539 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  490.951558][ T8319] Tainted: [L]=SOFTLOCKUP
[  490.951569][ T8319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  490.951588][ T8319] Call Trace:
[  490.951600][ T8319]  <TASK>
[  490.951611][ T8319]  dump_stack_lvl+0x100/0x190
[  490.951656][ T8319]  should_fail_ex.cold+0x5/0xa
[  490.951689][ T8319]  _copy_from_iter+0x1f4/0x1690
[  490.951724][ T8319]  ? __pfx__copy_from_iter+0x10/0x10
[  490.951750][ T8319]  ? rcu_is_watching+0x12/0xc0
[  490.951788][ T8319]  ? trace_kmalloc+0x101/0x130
[  490.951815][ T8319]  ? __kasan_kmalloc+0xaa/0xb0
[  490.951856][ T8319]  ? __kmalloc_noprof+0x320/0x850
[  490.951901][ T8319]  kernfs_fop_write_iter+0x186/0x5f0
[  490.951936][ T8319]  vfs_write+0x6ac/0x1070
[  490.951977][ T8319]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  490.952009][ T8319]  ? __pfx_vfs_write+0x10/0x10
[  490.952074][ T8319]  ksys_write+0x12a/0x250
[  490.952098][ T8319]  ? __pfx_ksys_write+0x10/0x10
[  490.952134][ T8319]  do_syscall_64+0x106/0xf80
[  490.952165][ T8319]  ? clear_bhb_loop+0x40/0x90
[  490.952247][ T8319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.952275][ T8319] RIP: 0033:0x7f9530f9c799
[  490.952297][ T8319] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  490.952322][ T8319] RSP: 002b:00007f9531dc0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  490.952346][ T8319] RAX: ffffffffffffffda RBX: 00007f9531215fa0 RCX: 00007f9530f9c799
[  490.952364][ T8319] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  490.952380][ T8319] RBP: 00007f9531dc0090 R08: 0000000000000000 R09: 0000000000000000
[  490.952396][ T8319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  490.952411][ T8319] R13: 00007f9531216038 R14: 00007f9531215fa0 R15: 00007ffc44d5b0c8
[  490.952449][ T8319]  </TASK>
[  491.365986][ T8312] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  491.386965][ T8312] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  491.393698][ T8312] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  491.405927][ T8312] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  492.584407][ T5146] Bluetooth: hci0: command 0x0c1a tx timeout
[  493.438526][ T5146] Bluetooth: hci3: command 0x0c1a tx timeout
[  493.444720][ T5871] Bluetooth: hci2: command 0x0c1a tx timeout
[  493.450773][ T5880] Bluetooth: hci1: command 0x0c1a tx timeout
[  493.529673][ T8350] futex_wake_op: syz.3.549 tries to shift op by -2048; fix this program
[  493.564333][ T8350] futex_wake_op: syz.3.549 tries to shift op by -2048; fix this program
[  494.408125][ T8371] netlink: 12 bytes leftover after parsing attributes in process `syz.1.552'.
[  496.394591][ T8403] FAULT_INJECTION: forcing a failure.
[  496.394591][ T8403] name failslab, interval 1, probability 0, space 0, times 0
[  496.507771][ T8403] CPU: 0 UID: 0 PID: 8403 Comm: syz.2.560 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  496.507812][ T8403] Tainted: [L]=SOFTLOCKUP
[  496.507821][ T8403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  496.507834][ T8403] Call Trace:
[  496.507842][ T8403]  <TASK>
[  496.507851][ T8403]  dump_stack_lvl+0x100/0x190
[  496.507896][ T8403]  should_fail_ex.cold+0x5/0xa
[  496.507929][ T8403]  should_failslab+0xc2/0x120
[  496.507957][ T8403]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  496.507999][ T8403]  ? __alloc_skb+0x140/0x710
[  496.508034][ T8403]  __alloc_skb+0x140/0x710
[  496.508060][ T8403]  ? __alloc_skb+0x5b7/0x710
[  496.508087][ T8403]  ? __pfx___alloc_skb+0x10/0x10
[  496.508129][ T8403]  netlink_alloc_large_skb+0x69/0x150
[  496.508167][ T8403]  netlink_sendmsg+0x680/0xda0
[  496.508215][ T8403]  ? __pfx_netlink_sendmsg+0x10/0x10
[  496.508248][ T8403]  ? __import_iovec+0x1d2/0x640
[  496.508296][ T8403]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  496.508340][ T8403]  ____sys_sendmsg+0x9e1/0xb70
[  496.508378][ T8403]  ? __pfx_netlink_sendmsg+0x10/0x10
[  496.508417][ T8403]  ? __pfx_____sys_sendmsg+0x10/0x10
[  496.508473][ T8403]  ___sys_sendmsg+0x190/0x1e0
[  496.508516][ T8403]  ? __pfx____sys_sendmsg+0x10/0x10
[  496.508602][ T8403]  __sys_sendmsg+0x170/0x220
[  496.508637][ T8403]  ? __pfx___sys_sendmsg+0x10/0x10
[  496.508679][ T8403]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  496.508716][ T8403]  ? syscall_user_dispatch+0x76/0x130
[  496.508759][ T8403]  do_syscall_64+0x106/0xf80
[  496.508789][ T8403]  ? clear_bhb_loop+0x40/0x90
[  496.508821][ T8403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  496.508848][ T8403] RIP: 0033:0x7fe5c159c799
[  496.508870][ T8403] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  496.508895][ T8403] RSP: 002b:00007fe5c2415028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  496.508920][ T8403] RAX: ffffffffffffffda RBX: 00007fe5c1816090 RCX: 00007fe5c159c799
[  496.508938][ T8403] RDX: 0000000000000810 RSI: 0000200000000140 RDI: 0000000000000005
[  496.508955][ T8403] RBP: 00007fe5c2415090 R08: 0000000000000000 R09: 0000000000000000
[  496.508971][ T8403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  496.508987][ T8403] R13: 00007fe5c1816128 R14: 00007fe5c1816090 R15: 00007ffda0a0d678
[  496.509023][ T8403]  </TASK>
[  497.798697][ T8426] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3)
[  500.085258][ T8465] block2mtd: illegal erase size
[  501.278256][ T8511] netlink: 342 bytes leftover after parsing attributes in process `syz.0.587'.
[  501.527842][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  501.538363][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  502.089811][ T8534] futex_wake_op: syz.0.596 tries to shift op by -2048; fix this program
[  502.324402][ T5146] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  504.469438][ T8585] futex_wake_op: syz.1.608 tries to shift op by -2048; fix this program
[  504.486404][ T8585] futex_wake_op: syz.1.608 tries to shift op by -2048; fix this program
[  506.412145][ T8631] FAULT_INJECTION: forcing a failure.
[  506.412145][ T8631] name failslab, interval 1, probability 0, space 0, times 0
[  506.480177][ T8631] CPU: 1 UID: 0 PID: 8631 Comm: syz.3.622 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  506.480217][ T8631] Tainted: [L]=SOFTLOCKUP
[  506.480225][ T8631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  506.480240][ T8631] Call Trace:
[  506.480247][ T8631]  <TASK>
[  506.480256][ T8631]  dump_stack_lvl+0x100/0x190
[  506.480293][ T8631]  should_fail_ex.cold+0x5/0xa
[  506.480311][ T8631]  should_failslab+0xc2/0x120
[  506.480327][ T8631]  __kmalloc_cache_noprof+0x7a/0x6f0
[  506.480346][ T8631]  ? genl_start+0x1e8/0x970
[  506.480368][ T8631]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[  506.480393][ T8631]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[  506.480418][ T8631]  genl_start+0x1e8/0x970
[  506.480442][ T8631]  __netlink_dump_start+0x60e/0x990
[  506.480463][ T8631]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[  506.480487][ T8631]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  506.480514][ T8631]  ? __pfx_genl_get_cmd+0x10/0x10
[  506.480532][ T8631]  ? __pfx_genl_start+0x10/0x10
[  506.480551][ T8631]  ? __pfx_genl_dumpit+0x10/0x10
[  506.480570][ T8631]  ? __pfx_genl_done+0x10/0x10
[  506.480600][ T8631]  ? __dev_queue_xmit+0x5af/0x4800
[  506.480705][ T8631]  ? __radix_tree_lookup+0x217/0x2b0
[  506.480759][ T8631]  genl_rcv_msg+0x471/0x800
[  506.480783][ T8631]  ? __pfx_genl_rcv_msg+0x10/0x10
[  506.480804][ T8631]  ? __pfx_ethnl_tsinfo_start+0x10/0x10
[  506.480842][ T8631]  ? __pfx_ethnl_tsinfo_dumpit+0x10/0x10
[  506.480857][ T8631]  ? __pfx_ethnl_tsinfo_done+0x10/0x10
[  506.480881][ T8631]  netlink_rcv_skb+0x159/0x420
[  506.480900][ T8631]  ? __pfx_genl_rcv_msg+0x10/0x10
[  506.480922][ T8631]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  506.480949][ T8631]  ? netlink_deliver_tap+0x1ae/0xcc0
[  506.480970][ T8631]  genl_rcv+0x28/0x40
[  506.480989][ T8631]  netlink_unicast+0x5aa/0x870
[  506.481011][ T8631]  ? __pfx_netlink_unicast+0x10/0x10
[  506.481037][ T8631]  netlink_sendmsg+0x8b0/0xda0
[  506.481060][ T8631]  ? __pfx_netlink_sendmsg+0x10/0x10
[  506.481078][ T8631]  ? __import_iovec+0x1d2/0x640
[  506.481095][ T8631]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  506.481119][ T8631]  ____sys_sendmsg+0x9e1/0xb70
[  506.481139][ T8631]  ? __pfx_netlink_sendmsg+0x10/0x10
[  506.481160][ T8631]  ? __pfx_____sys_sendmsg+0x10/0x10
[  506.481190][ T8631]  ___sys_sendmsg+0x190/0x1e0
[  506.481217][ T8631]  ? __pfx____sys_sendmsg+0x10/0x10
[  506.481263][ T8631]  __sys_sendmsg+0x170/0x220
[  506.481282][ T8631]  ? __pfx___sys_sendmsg+0x10/0x10
[  506.481311][ T8631]  do_syscall_64+0x106/0xf80
[  506.481329][ T8631]  ? clear_bhb_loop+0x40/0x90
[  506.481347][ T8631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  506.481361][ T8631] RIP: 0033:0x7f1d2339c799
[  506.481374][ T8631] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  506.481388][ T8631] RSP: 002b:00007f1d242c5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  506.481402][ T8631] RAX: ffffffffffffffda RBX: 00007f1d23615fa0 RCX: 00007f1d2339c799
[  506.481412][ T8631] RDX: 0000000004048800 RSI: 0000200000000000 RDI: 0000000000000003
[  506.481420][ T8631] RBP: 00007f1d242c5090 R08: 0000000000000000 R09: 0000000000000000
[  506.481429][ T8631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  506.481437][ T8631] R13: 00007f1d23616038 R14: 00007f1d23615fa0 R15: 00007ffcdec6fce8
[  506.481456][ T8631]  </TASK>
[  507.132155][ T8639] openvswitch: netlink: Geneve option length err (len 256, max 255).
[  507.715822][ T8657] netlink: 12 bytes leftover after parsing attributes in process `syz.1.624'.
[  507.806271][ T8660] syz.0.629 (8660) used greatest stack depth: 19672 bytes left
[  507.999882][ T8641] zswap: compressor  not available
[  508.395039][ T8677] futex_wake_op: syz.0.632 tries to shift op by -2048; fix this program
[  508.403676][ T8677] futex_wake_op: syz.0.632 tries to shift op by -2048; fix this program
[  508.505709][ T8681] netlink: 'syz.0.634': attribute type 11 has an invalid length.
[  508.788780][ T8678] futex_wake_op: syz.3.633 tries to shift op by -2048; fix this program
[  508.797582][ T8678] futex_wake_op: syz.3.633 tries to shift op by -2048; fix this program
[  511.897734][ T8752] FAULT_INJECTION: forcing a failure.
[  511.897734][ T8752] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  511.988646][ T8752] CPU: 0 UID: 0 PID: 8752 Comm: syz.2.652 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  511.988686][ T8752] Tainted: [L]=SOFTLOCKUP
[  511.988694][ T8752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  511.988707][ T8752] Call Trace:
[  511.988715][ T8752]  <TASK>
[  511.988724][ T8752]  dump_stack_lvl+0x100/0x190
[  511.988768][ T8752]  should_fail_ex.cold+0x5/0xa
[  511.988793][ T8752]  ? prepare_alloc_pages+0x16d/0x5f0
[  511.988826][ T8752]  should_fail_alloc_page+0xeb/0x140
[  511.988857][ T8752]  prepare_alloc_pages+0x1f0/0x5f0
[  511.988893][ T8752]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  511.988933][ T8752]  ? rcu_is_watching+0x12/0xc0
[  511.988971][ T8752]  ? trace_mm_page_alloc+0x17a/0x1d0
[  511.989002][ T8752]  ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0
[  511.989042][ T8752]  ? stack_depot_save_flags+0x27/0x9d0
[  511.989072][ T8752]  ? __lock_acquire+0x4a5/0x2630
[  511.989104][ T8752]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  511.989135][ T8752]  ? kasan_save_stack+0x3f/0x50
[  511.989156][ T8752]  ? kasan_save_stack+0x30/0x50
[  511.989177][ T8752]  ? kasan_save_free_info+0x3b/0x70
[  511.989194][ T8752]  ? kfree+0x1f6/0x6b0
[  511.989211][ T8752]  ? tomoyo_path_number_perm+0x46d/0x580
[  511.989233][ T8752]  ? security_file_ioctl+0xd3/0x230
[  511.989255][ T8752]  ? __x64_sys_ioctl+0xb7/0x210
[  511.989275][ T8752]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  511.989305][ T8752]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  511.989330][ T8752]  ? policy_nodemask+0xed/0x4f0
[  511.989347][ T8752]  alloc_pages_mpol+0x1fb/0x550
[  511.989363][ T8752]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  511.989378][ T8752]  ? find_held_lock+0x2b/0x80
[  511.989391][ T8752]  ? rcu_read_unlock+0x17/0x60
[  511.989409][ T8752]  ? vhost_dev_set_owner+0x330/0xa30
[  511.989427][ T8752]  ___kmalloc_large_node+0x104/0x150
[  511.989445][ T8752]  __kmalloc_large_node_noprof+0x1c/0x70
[  511.989464][ T8752]  __kmalloc_noprof+0x5be/0x850
[  511.989489][ T8752]  vhost_dev_set_owner+0x330/0xa30
[  511.989513][ T8752]  vhost_dev_ioctl+0x521/0xe20
[  511.989533][ T8752]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  511.989558][ T8752]  ? __pfx_vhost_dev_ioctl+0x10/0x10
[  511.989585][ T8752]  vhost_vsock_dev_ioctl+0x320/0xb60
[  511.989605][ T8752]  ? __fget_files+0x215/0x3d0
[  511.989620][ T8752]  ? hook_file_ioctl_common+0x146/0x410
[  511.989644][ T8752]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  511.989667][ T8752]  ? __fget_files+0x21f/0x3d0
[  511.989683][ T8752]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  511.989704][ T8752]  __x64_sys_ioctl+0x18e/0x210
[  511.989726][ T8752]  do_syscall_64+0x106/0xf80
[  511.989744][ T8752]  ? clear_bhb_loop+0x40/0x90
[  511.989762][ T8752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  511.989777][ T8752] RIP: 0033:0x7fe5c159c799
[  511.989790][ T8752] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  511.989804][ T8752] RSP: 002b:00007fe5c23f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  511.989818][ T8752] RAX: ffffffffffffffda RBX: 00007fe5c1816180 RCX: 00007fe5c159c799
[  511.989828][ T8752] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000007
[  511.989836][ T8752] RBP: 00007fe5c23f4090 R08: 0000000000000000 R09: 0000000000000000
[  511.989844][ T8752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  511.989852][ T8752] R13: 00007fe5c1816218 R14: 00007fe5c1816180 R15: 00007ffda0a0d678
[  511.989872][ T8752]  </TASK>
[  513.445199][ T8776] futex_wake_op: syz.2.657 tries to shift op by -2048; fix this program
[  513.462973][ T8776] futex_wake_op: syz.2.657 tries to shift op by -2048; fix this program
[  514.516590][ T8799] hub 1-0:1.0: USB hub found
[  514.584913][ T8799] hub 1-0:1.0: 1 port detected
[  514.762244][ T8810] futex_wake_op: syz.0.664 tries to shift op by -2048; fix this program
[  514.781682][ T8810] futex_wake_op: syz.0.664 tries to shift op by -2048; fix this program
[  515.698782][ T8831] FAULT_INJECTION: forcing a failure.
[  515.698782][ T8831] name failslab, interval 1, probability 0, space 0, times 0
[  515.776320][ T8831] CPU: 1 UID: 0 PID: 8831 Comm: syz.3.666 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  515.776366][ T8831] Tainted: [L]=SOFTLOCKUP
[  515.776376][ T8831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  515.776391][ T8831] Call Trace:
[  515.776401][ T8831]  <TASK>
[  515.776411][ T8831]  dump_stack_lvl+0x100/0x190
[  515.776462][ T8831]  should_fail_ex.cold+0x5/0xa
[  515.776498][ T8831]  should_failslab+0xc2/0x120
[  515.776528][ T8831]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  515.776572][ T8831]  ? vm_area_alloc+0x1f/0x160
[  515.776608][ T8831]  ? vma_merge_new_range+0x38b/0xa30
[  515.776652][ T8831]  vm_area_alloc+0x1f/0x160
[  515.776698][ T8831]  __mmap_region+0x10cc/0x29e0
[  515.776741][ T8831]  ? __pfx_ip4_addr_string+0x10/0x10
[  515.776789][ T8831]  ? __pfx___mmap_region+0x10/0x10
[  515.776828][ T8831]  ? string+0x201/0x4d0
[  515.776852][ T8831]  ? format_decode+0x1a7/0xcd0
[  515.776893][ T8831]  ? css_rstat_updated+0x1ce/0x5a0
[  515.776929][ T8831]  ? kvm_sched_clock_read+0x11/0x20
[  515.776960][ T8831]  ? sched_clock+0x38/0x60
[  515.777007][ T8831]  ? __lock_acquire+0x4a5/0x2630
[  515.777060][ T8831]  ? find_held_lock+0x2b/0x80
[  515.777085][ T8831]  ? finish_task_switch.isra.0+0x200/0xb80
[  515.777114][ T8831]  ? finish_task_switch.isra.0+0x200/0xb80
[  515.777160][ T8831]  ? trace_sched_exit_tp+0x13a/0x180
[  515.777193][ T8831]  ? __schedule+0x1000/0x6120
[  515.777267][ T8831]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[  515.777314][ T8831]  mmap_region+0x180/0x3e0
[  515.777361][ T8831]  do_mmap+0xc63/0x12f0
[  515.777394][ T8831]  ? __pfx_do_mmap+0x10/0x10
[  515.777423][ T8831]  ? __pfx_down_write_killable+0x10/0x10
[  515.777471][ T8831]  vm_mmap_pgoff+0x29e/0x470
[  515.777514][ T8831]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  515.777549][ T8831]  ? do_futex+0x192/0x350
[  515.777584][ T8831]  ? __pfx_do_futex+0x10/0x10
[  515.777617][ T8831]  ? __sys_bind+0x1c7/0x260
[  515.777646][ T8831]  ksys_mmap_pgoff+0xe1/0x650
[  515.777686][ T8831]  ? __x64_sys_futex+0x34f/0x4d0
[  515.777720][ T8831]  ? __x64_sys_futex+0x358/0x4d0
[  515.777757][ T8831]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  515.777783][ T8831]  ? xfd_validate_state+0x129/0x190
[  515.777827][ T8831]  __x64_sys_mmap+0x125/0x190
[  515.777869][ T8831]  do_syscall_64+0x106/0xf80
[  515.777900][ T8831]  ? clear_bhb_loop+0x40/0x90
[  515.777933][ T8831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.777961][ T8831] RIP: 0033:0x7f1d2339c799
[  515.777984][ T8831] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  515.778010][ T8831] RSP: 002b:00007f1d242a4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  515.778038][ T8831] RAX: ffffffffffffffda RBX: 00007f1d23616090 RCX: 00007f1d2339c799
[  515.778057][ T8831] RDX: 0000000000000009 RSI: 0000000002020009 RDI: 0000000002021000
[  515.778074][ T8831] RBP: 00007f1d23432c99 R08: ffffffffffffffff R09: 0000000000008000
[  515.778092][ T8831] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  515.778109][ T8831] R13: 00007f1d23616128 R14: 00007f1d23616090 R15: 00007ffcdec6fce8
[  515.778147][ T8831]  </TASK>
[  515.803670][ T8824] NFSD: Failed to start, no listeners configured.
[  516.605840][ T8847] FAULT_INJECTION: forcing a failure.
[  516.605840][ T8847] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  516.618999][ T8847] CPU: 0 UID: 0 PID: 8847 Comm: syz.2.669 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  516.619041][ T8847] Tainted: [L]=SOFTLOCKUP
[  516.619050][ T8847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  516.619065][ T8847] Call Trace:
[  516.619074][ T8847]  <TASK>
[  516.619083][ T8847]  dump_stack_lvl+0x100/0x190
[  516.619135][ T8847]  should_fail_ex.cold+0x5/0xa
[  516.619168][ T8847]  _copy_to_iter+0x5a4/0x1720
[  516.619219][ T8847]  ? __pfx__copy_to_iter+0x10/0x10
[  516.619259][ T8847]  ? __lock_acquire+0x4a5/0x2630
[  516.619294][ T8847]  ? folio_mark_accessed+0xf3/0x1040
[  516.619339][ T8847]  ? __pfx_folio_mark_accessed+0x10/0x10
[  516.619388][ T8847]  copy_page_to_iter+0x12a/0x1e0
[  516.619434][ T8847]  filemap_read+0x7a9/0x10a0
[  516.619493][ T8847]  ? __pfx_filemap_read+0x10/0x10
[  516.619561][ T8847]  ? __pfx_down_read+0x10/0x10
[  516.619600][ T8847]  ? __pfx__kstrtoull+0x10/0x10
[  516.619630][ T8847]  ? __pfx_aa_file_perm+0x10/0x10
[  516.619667][ T8847]  blkdev_read_iter+0x2c4/0x4f0
[  516.619708][ T8847]  do_iter_readv_writev+0x60d/0x920
[  516.619750][ T8847]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  516.619796][ T8847]  ? bpf_lsm_file_permission+0x9/0x10
[  516.619836][ T8847]  ? security_file_permission+0x76/0x210
[  516.619866][ T8847]  ? rw_verify_area+0xce/0x6d0
[  516.619909][ T8847]  vfs_readv+0x4d3/0x8d0
[  516.619955][ T8847]  ? __pfx_vfs_readv+0x10/0x10
[  516.620019][ T8847]  ? __fget_files+0x21f/0x3d0
[  516.620052][ T8847]  ? do_readv+0x13e/0x340
[  516.620082][ T8847]  do_readv+0x13e/0x340
[  516.620129][ T8847]  ? __pfx_do_readv+0x10/0x10
[  516.620167][ T8847]  ? ksys_write+0x1ac/0x250
[  516.620191][ T8847]  ? __pfx_ksys_write+0x10/0x10
[  516.620221][ T8847]  __x64_sys_preadv2+0x11f/0x160
[  516.620251][ T8847]  do_syscall_64+0x106/0xf80
[  516.620282][ T8847]  ? clear_bhb_loop+0x40/0x90
[  516.620315][ T8847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  516.620344][ T8847] RIP: 0033:0x7fe5c159c799
[  516.620366][ T8847] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  516.620390][ T8847] RSP: 002b:00007fe5c23f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000147
[  516.620417][ T8847] RAX: ffffffffffffffda RBX: 00007fe5c1816180 RCX: 00007fe5c159c799
[  516.620436][ T8847] RDX: 0000000000000006 RSI: 0000200000000200 RDI: 0000000000000004
[  516.620452][ T8847] RBP: 00007fe5c23f4090 R08: 0000000000000004 R09: 000000000000002e
[  516.620469][ T8847] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  516.620486][ T8847] R13: 00007fe5c1816218 R14: 00007fe5c1816180 R15: 00007ffda0a0d678
[  516.620523][ T8847]  </TASK>
[  516.844894][ T8843] futex_wake_op: syz.0.670 tries to shift op by -2048; fix this program
[  517.148099][ T8843] futex_wake_op: syz.0.670 tries to shift op by -2048; fix this program
[  517.434795][ T8857] futex_wake_op: syz.3.673 tries to shift op by -2048; fix this program
[  517.502832][ T8857] futex_wake_op: syz.3.673 tries to shift op by -2048; fix this program
[  518.173220][ T8884] block2mtd: illegal erase size
[  521.417550][ T8946] random: crng reseeded on system resumption
[  522.182061][ T8959] futex_wake_op: syz.0.697 tries to shift op by -2048; fix this program
[  522.198285][ T8959] futex_wake_op: syz.0.697 tries to shift op by -2048; fix this program
[  522.725668][ T8962] futex_wake_op: syz.2.698 tries to shift op by -2048; fix this program
[  522.734858][ T8962] futex_wake_op: syz.2.698 tries to shift op by -2048; fix this program
[  523.500306][ T8988] futex_wake_op: syz.3.705 tries to shift op by -2048; fix this program
[  523.560023][ T8988] futex_wake_op: syz.3.705 tries to shift op by -2048; fix this program
[  524.652329][ T9000] futex_wake_op: syz.1.708 tries to shift op by -2048; fix this program
[  524.711920][ T9000] futex_wake_op: syz.1.708 tries to shift op by -2048; fix this program
[  525.072222][ T9014] netlink: 12 bytes leftover after parsing attributes in process `syz.3.709'.
[  525.193469][ T9003] zswap: compressor  not available
[  526.083645][ T9041] random: crng reseeded on system resumption
[  526.141262][ T9041] hub 1-0:1.0: USB hub found
[  526.218895][ T9041] hub 1-0:1.0: 1 port detected
[  527.145648][ T9056] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  529.517937][ T9077] futex_wake_op: syz.1.725 tries to shift op by -2048; fix this program
[  529.526729][ T9077] futex_wake_op: syz.1.725 tries to shift op by -2048; fix this program
[  530.177808][ T9098] futex_wake_op: syz.1.730 tries to shift op by -2048; fix this program
[  530.186527][ T9098] futex_wake_op: syz.1.730 tries to shift op by -2048; fix this program
[  530.206440][ T9097] NFSD: Failed to start, no listeners configured.
[  530.639505][ T9109] netlink: 28 bytes leftover after parsing attributes in process `syz.0.733'.
[  532.021967][ T9133] futex_wake_op: syz.2.738 tries to shift op by -2048; fix this program
[  532.067970][ T9133] futex_wake_op: syz.2.738 tries to shift op by -2048; fix this program
[  533.101156][ T9149] FAULT_INJECTION: forcing a failure.
[  533.101156][ T9149] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  533.131164][ T9149] CPU: 0 UID: 0 PID: 9149 Comm: syz.2.742 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  533.131209][ T9149] Tainted: [L]=SOFTLOCKUP
[  533.131223][ T9149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  533.131238][ T9149] Call Trace:
[  533.131246][ T9149]  <TASK>
[  533.131256][ T9149]  dump_stack_lvl+0x100/0x190
[  533.131304][ T9149]  should_fail_ex.cold+0x5/0xa
[  533.131338][ T9149]  _copy_from_user+0x2e/0xd0
[  533.131368][ T9149]  copy_msghdr_from_user+0x9f/0x4f0
[  533.131413][ T9149]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  533.131459][ T9149]  ? rcu_is_watching+0x12/0xc0
[  533.131498][ T9149]  ? ___sys_recvmsg+0x177/0x1a0
[  533.131536][ T9149]  ? kfree+0x2ec/0x6b0
[  533.131575][ T9149]  ___sys_recvmsg+0xdd/0x1a0
[  533.131612][ T9149]  ? __pfx____sys_recvmsg+0x10/0x10
[  533.131665][ T9149]  ? __pfx___might_resched+0x10/0x10
[  533.131710][ T9149]  do_recvmmsg+0x301/0x760
[  533.131753][ T9149]  ? __pfx_do_recvmmsg+0x10/0x10
[  533.131791][ T9149]  ? ksys_write+0x190/0x250
[  533.131816][ T9149]  ? ksys_write+0x190/0x250
[  533.131846][ T9149]  ? __mutex_unlock_slowpath+0x15c/0x790
[  533.131890][ T9149]  ? __fget_files+0x21f/0x3d0
[  533.131915][ T9149]  __x64_sys_recvmmsg+0x22a/0x280
[  533.131936][ T9149]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  533.131960][ T9149]  do_syscall_64+0x106/0xf80
[  533.131984][ T9149]  ? clear_bhb_loop+0x40/0x90
[  533.132002][ T9149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  533.132018][ T9149] RIP: 0033:0x7fe5c159c799
[  533.132032][ T9149] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  533.132046][ T9149] RSP: 002b:00007fe5c2436028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  533.132061][ T9149] RAX: ffffffffffffffda RBX: 00007fe5c1815fa0 RCX: 00007fe5c159c799
[  533.132071][ T9149] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  533.132080][ T9149] RBP: 00007fe5c2436090 R08: 0000000000000000 R09: 0000000000000000
[  533.132089][ T9149] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000001
[  533.132097][ T9149] R13: 00007fe5c1816038 R14: 00007fe5c1815fa0 R15: 00007ffda0a0d678
[  533.132116][ T9149]  </TASK>
[  533.506098][ T9157] futex_wake_op: syz.0.744 tries to shift op by -2048; fix this program
[  533.514779][ T9157] futex_wake_op: syz.0.744 tries to shift op by -2048; fix this program
[  535.089952][ T9188] FAULT_INJECTION: forcing a failure.
[  535.089952][ T9188] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  535.139798][ T9188] CPU: 0 UID: 0 PID: 9188 Comm: syz.1.753 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  535.139847][ T9188] Tainted: [L]=SOFTLOCKUP
[  535.139857][ T9188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  535.139872][ T9188] Call Trace:
[  535.139882][ T9188]  <TASK>
[  535.139892][ T9188]  dump_stack_lvl+0x100/0x190
[  535.139938][ T9188]  should_fail_ex.cold+0x5/0xa
[  535.139977][ T9188]  ? prepare_alloc_pages+0x16d/0x5f0
[  535.140015][ T9188]  should_fail_alloc_page+0xeb/0x140
[  535.140047][ T9188]  prepare_alloc_pages+0x1f0/0x5f0
[  535.140085][ T9188]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  535.140133][ T9188]  ? __lock_acquire+0x4a5/0x2630
[  535.140179][ T9188]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  535.140217][ T9188]  ? do_raw_spin_lock+0x128/0x260
[  535.140254][ T9188]  ? look_up_lock_class+0x55/0x120
[  535.140300][ T9188]  ? __lock_acquire+0x4a5/0x2630
[  535.140333][ T9188]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  535.140378][ T9188]  ? policy_nodemask+0xed/0x4f0
[  535.140409][ T9188]  alloc_pages_mpol+0x1fb/0x550
[  535.140439][ T9188]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  535.140467][ T9188]  ? __folio_batch_add_and_move+0x5e5/0xc60
[  535.140507][ T9188]  ? __folio_batch_add_and_move+0x5e5/0xc60
[  535.140554][ T9188]  folio_alloc_mpol_noprof+0x36/0x340
[  535.140589][ T9188]  shmem_alloc_folio+0x135/0x160
[  535.140624][ T9188]  shmem_alloc_and_add_folio+0x371/0xd40
[  535.140672][ T9188]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  535.140714][ T9188]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  535.140762][ T9188]  shmem_get_folio_gfp+0x6ab/0x1900
[  535.140809][ T9188]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  535.140851][ T9188]  ? filemap_map_pages+0xe69/0x2020
[  535.140896][ T9188]  shmem_fault+0x1f9/0xa20
[  535.140933][ T9188]  ? __lock_acquire+0x4a5/0x2630
[  535.140977][ T9188]  ? __pfx_shmem_fault+0x10/0x10
[  535.141026][ T9188]  ? __pfx_filemap_map_pages+0x10/0x10
[  535.141075][ T9188]  __do_fault+0x10d/0x550
[  535.141105][ T9188]  do_fault+0xabb/0x1990
[  535.141141][ T9188]  __handle_mm_fault+0x180f/0x2b60
[  535.141181][ T9188]  ? mt_find+0x45e/0x8e0
[  535.141289][ T9188]  ? __pfx___handle_mm_fault+0x10/0x10
[  535.141322][ T9188]  ? __pfx_mt_find+0x10/0x10
[  535.141375][ T9188]  ? find_vma+0xbf/0x140
[  535.141400][ T9188]  ? __pfx_find_vma+0x10/0x10
[  535.141429][ T9188]  handle_mm_fault+0x36d/0xa20
[  535.141470][ T9188]  do_user_addr_fault+0x74c/0x12f0
[  535.141523][ T9188]  exc_page_fault+0x6f/0xd0
[  535.141556][ T9188]  asm_exc_page_fault+0x26/0x30
[  535.141583][ T9188] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  535.141624][ T9188] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 cf 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  535.141648][ T9188] RSP: 0018:ffffc9000465fca0 EFLAGS: 00050206
[  535.141670][ T9188] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00000000000ff082
[  535.141686][ T9188] RDX: 0000000000000001 RSI: 0000000000001000 RDI: ffff888044e01002
[  535.141702][ T9188] RBP: 0000000000100082 R08: 0000000000000001 R09: ffffed10089e0010
[  535.141720][ T9188] R10: ffff888044f00083 R11: 0000000000000000 R12: 0000000000000000
[  535.141735][ T9188] R13: ffff888044e00002 R14: 0000000000000000 R15: ffff888044e00002
[  535.141772][ T9188]  _copy_from_user+0x98/0xd0
[  535.141800][ T9188]  ppp_write+0x1a0/0x400
[  535.141838][ T9188]  vfs_write+0x2aa/0x1070
[  535.141880][ T9188]  ? __pfx_ppp_write+0x10/0x10
[  535.141914][ T9188]  ? __pfx_vfs_write+0x10/0x10
[  535.141951][ T9188]  ? find_held_lock+0x2b/0x80
[  535.141988][ T9188]  ? __fget_files+0x215/0x3d0
[  535.142014][ T9188]  ? __fget_files+0x215/0x3d0
[  535.142047][ T9188]  ? __fget_files+0x21f/0x3d0
[  535.142083][ T9188]  ksys_write+0x12a/0x250
[  535.142108][ T9188]  ? __pfx_ksys_write+0x10/0x10
[  535.142143][ T9188]  do_syscall_64+0x106/0xf80
[  535.142174][ T9188]  ? clear_bhb_loop+0x40/0x90
[  535.142208][ T9188]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  535.142235][ T9188] RIP: 0033:0x7f9530f9c799
[  535.142258][ T9188] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  535.142283][ T9188] RSP: 002b:00007f9531dc0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  535.142308][ T9188] RAX: ffffffffffffffda RBX: 00007f9531215fa0 RCX: 00007f9530f9c799
[  535.142327][ T9188] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  535.142345][ T9188] RBP: 00007f9531032c99 R08: 0000000000000000 R09: 0000000000000000
[  535.142361][ T9188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  535.142377][ T9188] R13: 00007f9531216038 R14: 00007f9531215fa0 R15: 00007ffc44d5b0c8
[  535.142414][ T9188]  </TASK>
[  537.715435][ T9228] random: crng reseeded on system resumption
[  542.478607][ T9297] futex_wake_op: syz.1.778 tries to shift op by -2048; fix this program
[  542.510305][ T9297] futex_wake_op: syz.1.778 tries to shift op by -2048; fix this program
[  542.729165][   T30] audit: type=1800 audit(1773253739.766:4): pid=9301 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.779" name="dbroot" dev="configfs" ino=27756 res=0 errno=0
[  544.127780][ T9330] futex_wake_op: syz.1.788 tries to shift op by -2048; fix this program
[  544.154999][ T9330] futex_wake_op: syz.1.788 tries to shift op by -2048; fix this program
[  544.865637][ T9347] netlink: 12 bytes leftover after parsing attributes in process `syz.2.793'.
[  544.928863][ T9348] HfR: entered promiscuous mode
[  544.982564][ T9347] i: entered promiscuous mode
[  545.656748][ T9356] futex_wake_op: syz.2.795 tries to shift op by -2048; fix this program
[  545.665344][ T9356] futex_wake_op: syz.2.795 tries to shift op by -2048; fix this program
[  545.909340][ T9365] netlink: 28 bytes leftover after parsing attributes in process `syz.1.798'.
[  546.563870][ T9380] netlink: 12 bytes leftover after parsing attributes in process `syz.0.801'.
[  548.624500][ T9419] futex_wake_op: syz.0.812 tries to shift op by -2048; fix this program
[  548.694515][ T9419] futex_wake_op: syz.0.812 tries to shift op by -2048; fix this program
[  549.741080][ T9438] FAULT_INJECTION: forcing a failure.
[  549.741080][ T9438] name failslab, interval 1, probability 0, space 0, times 0
[  549.770367][ T9438] CPU: 0 UID: 0 PID: 9438 Comm: syz.2.817 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  549.770418][ T9438] Tainted: [L]=SOFTLOCKUP
[  549.770428][ T9438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  549.770444][ T9438] Call Trace:
[  549.770453][ T9438]  <TASK>
[  549.770463][ T9438]  dump_stack_lvl+0x100/0x190
[  549.770509][ T9438]  should_fail_ex.cold+0x5/0xa
[  549.770542][ T9438]  ? tomoyo_realpath_from_path+0xb6/0x690
[  549.770575][ T9438]  should_failslab+0xc2/0x120
[  549.770603][ T9438]  __kmalloc_noprof+0xe0/0x850
[  549.770651][ T9438]  tomoyo_realpath_from_path+0xb6/0x690
[  549.770692][ T9438]  tomoyo_path_number_perm+0x23c/0x580
[  549.770733][ T9438]  ? tomoyo_path_number_perm+0x22e/0x580
[  549.770778][ T9438]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  549.770859][ T9438]  ? find_held_lock+0x2b/0x80
[  549.770884][ T9438]  ? __fget_files+0x215/0x3d0
[  549.770908][ T9438]  ? hook_file_ioctl_common+0x146/0x410
[  549.770958][ T9438]  ? __fget_files+0x21f/0x3d0
[  549.770990][ T9438]  security_file_ioctl+0xd3/0x230
[  549.771036][ T9438]  __x64_sys_ioctl+0xb7/0x210
[  549.771077][ T9438]  do_syscall_64+0x106/0xf80
[  549.771108][ T9438]  ? clear_bhb_loop+0x40/0x90
[  549.771143][ T9438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  549.771171][ T9438] RIP: 0033:0x7fe5c159c799
[  549.771195][ T9438] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  549.771221][ T9438] RSP: 002b:00007fe5c2436028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  549.771247][ T9438] RAX: ffffffffffffffda RBX: 00007fe5c1815fa0 RCX: 00007fe5c159c799
[  549.771266][ T9438] RDX: 0000000000000000 RSI: 000000000000ae9a RDI: 0000000000000004
[  549.771283][ T9438] RBP: 00007fe5c2436090 R08: 0000000000000000 R09: 0000000000000000
[  549.771300][ T9438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  549.771316][ T9438] R13: 00007fe5c1816038 R14: 00007fe5c1815fa0 R15: 00007ffda0a0d678
[  549.771357][ T9438]  </TASK>
[  549.772535][ T9438] ERROR: Out of memory at tomoyo_realpath_from_path.
[  551.067361][ T5146] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  551.067384][ T5871] Bluetooth: hci4: command 0x1003 tx timeout
[  552.529902][ T9503] blktrace: Concurrent blktraces are not allowed on loop2
[  553.885698][ T9523] futex_wake_op: syz.2.833 tries to shift op by -2048; fix this program
[  553.914760][ T9523] futex_wake_op: syz.2.833 tries to shift op by -2048; fix this program
[  554.214986][ T9537] netlink: 8 bytes leftover after parsing attributes in process `syz.2.837'.
[  554.309906][ T9541] netlink: 36 bytes leftover after parsing attributes in process `syz.2.837'.
[  557.214880][ T9579] futex_wake_op: syz.1.845 tries to shift op by -2048; fix this program
[  557.238304][ T9579] futex_wake_op: syz.1.845 tries to shift op by -2048; fix this program
[  558.374705][ T9594] netlink: get zone limit has 4 unknown bytes
[  559.149531][ T9606] tipc: Started in network mode
[  559.191323][ T9606] tipc: Node identity ee00, cluster identity 4711
[  559.205855][ T9606] tipc: Node number set to 60928
[  559.394407][ T5146] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  559.809198][ T9618] Invalid ELF header magic: != ELF
[  559.888858][ T9629] FAULT_INJECTION: forcing a failure.
[  559.888858][ T9629] name failslab, interval 1, probability 0, space 0, times 0
[  559.976653][ T9629] CPU: 0 UID: 0 PID: 9629 Comm: syz.1.860 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  559.976697][ T9629] Tainted: [L]=SOFTLOCKUP
[  559.976707][ T9629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  559.976722][ T9629] Call Trace:
[  559.976730][ T9629]  <TASK>
[  559.976739][ T9629]  dump_stack_lvl+0x100/0x190
[  559.976781][ T9629]  should_fail_ex.cold+0x5/0xa
[  559.976809][ T9629]  ? vhost_dev_set_owner+0x190/0xa30
[  559.976840][ T9629]  should_failslab+0xc2/0x120
[  559.976866][ T9629]  __kmalloc_noprof+0xe0/0x850
[  559.976906][ T9629]  vhost_dev_set_owner+0x190/0xa30
[  559.976944][ T9629]  vhost_dev_ioctl+0x521/0xe20
[  559.976975][ T9629]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  559.977017][ T9629]  ? __pfx_vhost_dev_ioctl+0x10/0x10
[  559.977058][ T9629]  vhost_vsock_dev_ioctl+0x320/0xb60
[  559.977090][ T9629]  ? __fget_files+0x215/0x3d0
[  559.977111][ T9629]  ? hook_file_ioctl_common+0x146/0x410
[  559.977155][ T9629]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  559.977197][ T9629]  ? __fget_files+0x21f/0x3d0
[  559.977228][ T9629]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  559.977269][ T9629]  __x64_sys_ioctl+0x18e/0x210
[  559.977307][ T9629]  do_syscall_64+0x106/0xf80
[  559.977335][ T9629]  ? clear_bhb_loop+0x40/0x90
[  559.977368][ T9629]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  559.977395][ T9629] RIP: 0033:0x7f9530f9c799
[  559.977417][ T9629] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  559.977443][ T9629] RSP: 002b:00007f9531d7e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  559.977469][ T9629] RAX: ffffffffffffffda RBX: 00007f9531216180 RCX: 00007f9530f9c799
[  559.977485][ T9629] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000007
[  559.977501][ T9629] RBP: 00007f9531d7e090 R08: 0000000000000000 R09: 0000000000000000
[  559.977517][ T9629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  559.977534][ T9629] R13: 00007f9531216218 R14: 00007f9531216180 R15: 00007ffc44d5b0c8
[  559.977581][ T9629]  </TASK>
[  562.538789][ T9676] futex_wake_op: syz.0.872 tries to shift op by -2048; fix this program
[  562.558873][ T9676] futex_wake_op: syz.0.872 tries to shift op by -2048; fix this program
[  562.997247][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  563.003919][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  564.224769][ T9707] zswap: compressor  not available
[  567.918449][ T9781] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6
[  568.454204][ T9786] futex_wake_op: syz.3.898 tries to shift op by -2048; fix this program
[  568.462784][ T9786] futex_wake_op: syz.3.898 tries to shift op by -2048; fix this program
[  568.597626][ T9795] futex_wake_op: syz.1.900 tries to shift op by -2048; fix this program
[  568.607103][ T9795] futex_wake_op: syz.1.900 tries to shift op by -2048; fix this program
[  571.608387][   T30] audit: type=1800 audit(1773254791.641:5): pid=9834 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.911" name="dbroot" dev="configfs" ino=31308 res=0 errno=0
[  572.287509][ T9838] futex_wake_op: syz.2.912 tries to shift op by -2048; fix this program
[  572.296343][ T9838] futex_wake_op: syz.2.912 tries to shift op by -2048; fix this program
[  574.857813][ T9889] futex_wake_op: syz.2.924 tries to shift op by -2048; fix this program
[  574.866800][ T9889] futex_wake_op: syz.2.924 tries to shift op by -2048; fix this program
[  576.798202][ T9926] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  577.109060][ T9934] futex_wake_op: syz.0.932 tries to shift op by -2048; fix this program
[  577.118219][ T9934] futex_wake_op: syz.0.932 tries to shift op by -2048; fix this program
[  578.572891][ T9958] futex_wake_op: syz.1.940 tries to shift op by -2048; fix this program
[  578.647630][ T9958] random: crng reseeded on system resumption
[  580.323628][ T9995] futex_wake_op: syz.2.951 tries to shift op by -2048; fix this program
[  580.382508][ T9995] futex_wake_op: syz.2.951 tries to shift op by -2048; fix this program
[  580.682191][ T5871] Bluetooth: hci4: command 0x1003 tx timeout
[  580.688608][ T5146] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  580.887090][T10015] netlink: 'syz.3.957': attribute type 2 has an invalid length.
[  580.923663][T10015] netlink: 8 bytes leftover after parsing attributes in process `syz.3.957'.
[  580.945077][T10017] futex_wake_op: syz.0.958 tries to shift op by -2048; fix this program
[  580.979951][T10017] futex_wake_op: syz.0.958 tries to shift op by -2048; fix this program
[  581.168763][T10024] netlink: 'syz.0.960': attribute type 4 has an invalid length.
[  582.395697][T10042] FAULT_INJECTION: forcing a failure.
[  582.395697][T10042] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  582.408998][T10042] CPU: 1 UID: 0 PID: 10042 Comm: syz.1.964 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  582.409041][T10042] Tainted: [L]=SOFTLOCKUP
[  582.409050][T10042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  582.409066][T10042] Call Trace:
[  582.409074][T10042]  <TASK>
[  582.409084][T10042]  dump_stack_lvl+0x100/0x190
[  582.409129][T10042]  should_fail_ex.cold+0x5/0xa
[  582.409161][T10042]  _copy_from_user+0x2e/0xd0
[  582.409189][T10042]  copy_msghdr_from_user+0x9f/0x4f0
[  582.409232][T10042]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  582.409276][T10042]  ? rcu_is_watching+0x12/0xc0
[  582.409314][T10042]  ? ___sys_recvmsg+0x177/0x1a0
[  582.409351][T10042]  ? kfree+0x2ec/0x6b0
[  582.409399][T10042]  ___sys_recvmsg+0xdd/0x1a0
[  582.409440][T10042]  ? __pfx____sys_recvmsg+0x10/0x10
[  582.409500][T10042]  ? __pfx___might_resched+0x10/0x10
[  582.409551][T10042]  do_recvmmsg+0x301/0x760
[  582.409596][T10042]  ? __pfx_do_recvmmsg+0x10/0x10
[  582.409634][T10042]  ? ksys_write+0x190/0x250
[  582.409662][T10042]  ? ksys_write+0x190/0x250
[  582.409693][T10042]  ? __mutex_unlock_slowpath+0x15c/0x790
[  582.409738][T10042]  ? __fget_files+0x21f/0x3d0
[  582.409773][T10042]  __x64_sys_recvmmsg+0x22a/0x280
[  582.409809][T10042]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  582.409854][T10042]  do_syscall_64+0x106/0xf80
[  582.409885][T10042]  ? clear_bhb_loop+0x40/0x90
[  582.409918][T10042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.409945][T10042] RIP: 0033:0x7f9530f9c799
[  582.409969][T10042] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  582.409994][T10042] RSP: 002b:00007f9531dc0028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  582.410020][T10042] RAX: ffffffffffffffda RBX: 00007f9531215fa0 RCX: 00007f9530f9c799
[  582.410038][T10042] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  582.410055][T10042] RBP: 00007f9531dc0090 R08: 0000000000000000 R09: 0000000000000000
[  582.410071][T10042] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000001
[  582.410087][T10042] R13: 00007f9531216038 R14: 00007f9531215fa0 R15: 00007ffc44d5b0c8
[  582.410123][T10042]  </TASK>
[  583.404179][T10062] futex_wake_op: syz.0.969 tries to shift op by -2048; fix this program
[  583.412994][T10062] futex_wake_op: syz.0.969 tries to shift op by -2048; fix this program
[  583.636907][T10069] binder: 10063:10069 ioctl c018620c 0 returned -1
[  583.923679][T10068] futex_wake_op: syz.2.972 tries to shift op by -2048; fix this program
[  583.932309][T10068] futex_wake_op: syz.2.972 tries to shift op by -2048; fix this program
[  585.096117][T10087] nvme_fcloop: unknown parameter or missing value 'Ù'
[  585.189396][T10091] futex_wake_op: syz.3.975 tries to shift op by -2048; fix this program
[  585.203384][T10091] futex_wake_op: syz.3.975 tries to shift op by -2048; fix this program
[  588.029693][T10133] program syz.2.985 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  590.995865][T10180] futex_wake_op: syz.3.1000 tries to shift op by -2048; fix this program
[  591.005628][T10180] futex_wake_op: syz.3.1000 tries to shift op by -2048; fix this program
[  591.487478][ T5871] Bluetooth: hci4: command 0x1003 tx timeout
[  591.494595][ T5146] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  591.792021][T10197] futex_wake_op: syz.1.1004 tries to shift op by -2048; fix this program
[  592.215678][T10208] FAULT_INJECTION: forcing a failure.
[  592.215678][T10208] name failslab, interval 1, probability 0, space 0, times 0
[  592.273409][T10208] CPU: 1 UID: 0 PID: 10208 Comm: syz.3.1008 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  592.273441][T10208] Tainted: [L]=SOFTLOCKUP
[  592.273446][T10208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  592.273455][T10208] Call Trace:
[  592.273460][T10208]  <TASK>
[  592.273466][T10208]  dump_stack_lvl+0x100/0x190
[  592.273493][T10208]  should_fail_ex.cold+0x5/0xa
[  592.273510][T10208]  ? tomoyo_realpath_from_path+0xb6/0x690
[  592.273528][T10208]  should_failslab+0xc2/0x120
[  592.273544][T10208]  __kmalloc_noprof+0xe0/0x850
[  592.273570][T10208]  tomoyo_realpath_from_path+0xb6/0x690
[  592.273591][T10208]  tomoyo_check_open_permission+0x2af/0x3c0
[  592.273617][T10208]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  592.273658][T10208]  ? lock_acquire+0x1cf/0x380
[  592.273677][T10208]  ? find_held_lock+0x2b/0x80
[  592.273695][T10208]  tomoyo_file_open+0x6b/0x90
[  592.273715][T10208]  security_file_open+0xb5/0x1e0
[  592.273731][T10208]  do_dentry_open+0x5aa/0x1660
[  592.273752][T10208]  vfs_open+0x82/0x3f0
[  592.273773][T10208]  path_openat+0x208c/0x31a0
[  592.273794][T10208]  ? __pfx_path_openat+0x10/0x10
[  592.273816][T10208]  do_file_open+0x20e/0x430
[  592.273832][T10208]  ? __pfx_do_file_open+0x10/0x10
[  592.273854][T10208]  ? __pfx_kfree_link+0x10/0x10
[  592.273883][T10208]  ? alloc_fd+0x476/0x790
[  592.273900][T10208]  ? do_getname+0x191/0x390
[  592.273919][T10208]  do_sys_openat2+0x10d/0x1e0
[  592.273938][T10208]  ? __pfx_do_sys_openat2+0x10/0x10
[  592.273964][T10208]  __x64_sys_openat+0x12d/0x210
[  592.273983][T10208]  ? __pfx___x64_sys_openat+0x10/0x10
[  592.274009][T10208]  do_syscall_64+0x106/0xf80
[  592.274027][T10208]  ? clear_bhb_loop+0x40/0x90
[  592.274045][T10208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.274060][T10208] RIP: 0033:0x7f1d2335cfce
[  592.274073][T10208] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  592.274088][T10208] RSP: 002b:00007f1d242c4f98 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  592.274102][T10208] RAX: ffffffffffffffda RBX: 00007f1d242c56c0 RCX: 00007f1d2335cfce
[  592.274112][T10208] RDX: 0000000000000002 RSI: 00007f1d234325a0 RDI: ffffffffffffff9c
[  592.274121][T10208] RBP: 00007f1d23432c99 R08: 0000000000000000 R09: 0000000000000000
[  592.274130][T10208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  592.274138][T10208] R13: 00007f1d23616038 R14: 00007f1d23615fa0 R15: 00007ffcdec6fce8
[  592.274158][T10208]  </TASK>
[  592.274165][T10208] ERROR: Out of memory at tomoyo_realpath_from_path.
[  592.538713][T10208] FAULT_INJECTION: forcing a failure.
[  592.538713][T10208] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  592.572092][T10208] CPU: 0 UID: 0 PID: 10208 Comm: syz.3.1008 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  592.572139][T10208] Tainted: [L]=SOFTLOCKUP
[  592.572147][T10208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  592.572161][T10208] Call Trace:
[  592.572169][T10208]  <TASK>
[  592.572179][T10208]  dump_stack_lvl+0x100/0x190
[  592.572220][T10208]  should_fail_ex.cold+0x5/0xa
[  592.572245][T10208]  ? prepare_alloc_pages+0x16d/0x5f0
[  592.572275][T10208]  should_fail_alloc_page+0xeb/0x140
[  592.572303][T10208]  prepare_alloc_pages+0x1f0/0x5f0
[  592.572337][T10208]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  592.572396][T10208]  ? find_held_lock+0x2b/0x80
[  592.572420][T10208]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  592.572456][T10208]  ? bpf_ksym_find+0x124/0x1c0
[  592.572486][T10208]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  592.572514][T10208]  ? is_bpf_text_address+0x94/0x1a0
[  592.572549][T10208]  ? kernel_text_address+0x8d/0x100
[  592.572588][T10208]  ? arch_stack_walk+0xa6/0xf0
[  592.572641][T10208]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  592.572678][T10208]  ? policy_nodemask+0xed/0x4f0
[  592.572709][T10208]  alloc_pages_mpol+0x1fb/0x550
[  592.572738][T10208]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  592.572787][T10208]  folio_alloc_mpol_noprof+0x36/0x340
[  592.572824][T10208]  shmem_alloc_folio+0x135/0x160
[  592.572860][T10208]  shmem_alloc_and_add_folio+0x371/0xd40
[  592.572910][T10208]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  592.572951][T10208]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  592.572996][T10208]  shmem_get_folio_gfp+0x6ab/0x1900
[  592.573043][T10208]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  592.573086][T10208]  ? filemap_map_pages+0xe69/0x2020
[  592.573132][T10208]  shmem_fault+0x1f9/0xa20
[  592.573171][T10208]  ? __lock_acquire+0x4a5/0x2630
[  592.573205][T10208]  ? __pfx_shmem_fault+0x10/0x10
[  592.573252][T10208]  ? __pfx_filemap_map_pages+0x10/0x10
[  592.573301][T10208]  __do_fault+0x10d/0x550
[  592.573333][T10208]  do_fault+0xabb/0x1990
[  592.573370][T10208]  __handle_mm_fault+0x180f/0x2b60
[  592.573413][T10208]  ? mt_find+0x45e/0x8e0
[  592.573450][T10208]  ? __pfx___handle_mm_fault+0x10/0x10
[  592.573485][T10208]  ? __pfx_mt_find+0x10/0x10
[  592.573542][T10208]  ? find_vma+0xbf/0x140
[  592.573567][T10208]  ? __pfx_find_vma+0x10/0x10
[  592.573598][T10208]  handle_mm_fault+0x36d/0xa20
[  592.573666][T10208]  do_user_addr_fault+0x74c/0x12f0
[  592.573721][T10208]  exc_page_fault+0x6f/0xd0
[  592.573762][T10208]  asm_exc_page_fault+0x26/0x30
[  592.573790][T10208] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  592.573832][T10208] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 cf 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  592.573860][T10208] RSP: 0018:ffffc90010277ca0 EFLAGS: 00050206
[  592.573882][T10208] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00000000000ff082
[  592.573900][T10208] RDX: 0000000000000001 RSI: 0000000000001000 RDI: ffff88808e401002
[  592.573918][T10208] RBP: 0000000000100082 R08: 0000000000000001 R09: ffffed1011ca0010
[  592.573936][T10208] R10: ffff88808e500083 R11: 0000000000000000 R12: 0000000000000000
[  592.573957][T10208] R13: ffff88808e400002 R14: 0000000000000000 R15: ffff88808e400002
[  592.573995][T10208]  _copy_from_user+0x98/0xd0
[  592.574026][T10208]  ppp_write+0x1a0/0x400
[  592.574062][T10208]  vfs_write+0x2aa/0x1070
[  592.574105][T10208]  ? __pfx_ppp_write+0x10/0x10
[  592.574138][T10208]  ? __pfx_vfs_write+0x10/0x10
[  592.574177][T10208]  ? find_held_lock+0x2b/0x80
[  592.574200][T10208]  ? __fget_files+0x215/0x3d0
[  592.574225][T10208]  ? __fget_files+0x215/0x3d0
[  592.574256][T10208]  ? __fget_files+0x21f/0x3d0
[  592.574293][T10208]  ksys_write+0x12a/0x250
[  592.574318][T10208]  ? __pfx_ksys_write+0x10/0x10
[  592.574355][T10208]  do_syscall_64+0x106/0xf80
[  592.574386][T10208]  ? clear_bhb_loop+0x40/0x90
[  592.574421][T10208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.574450][T10208] RIP: 0033:0x7f1d2339c799
[  592.574472][T10208] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  592.574498][T10208] RSP: 002b:00007f1d242c5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  592.574524][T10208] RAX: ffffffffffffffda RBX: 00007f1d23615fa0 RCX: 00007f1d2339c799
[  592.574543][T10208] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  592.574560][T10208] RBP: 00007f1d242c5090 R08: 0000000000000000 R09: 0000000000000000
[  592.574577][T10208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  592.574593][T10208] R13: 00007f1d23616038 R14: 00007f1d23615fa0 R15: 00007ffcdec6fce8
[  592.574633][T10208]  </TASK>
[  593.060830][T10214] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  593.067022][T10214] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  593.073403][T10214] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  593.079547][T10214] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  593.089121][T10214] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  593.410800][T10219] netlink: 'syz.1.1011': attribute type 23 has an invalid length.
[  593.621337][T10222] program syz.3.1012 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  593.632462][T10230] futex_wake_op: syz.1.1015 tries to shift op by -2048; fix this program
[  594.215969][T10249] blktrace: Concurrent blktraces are not allowed on loop2
[  595.169761][ T5871] Bluetooth: hci3: command 0x0c1a tx timeout
[  595.175917][ T5871] Bluetooth: hci2: command 0x0c1a tx timeout
[  595.182309][ T5146] Bluetooth: hci1: command 0x0c1a tx timeout
[  595.188435][ T5880] Bluetooth: hci0: command 0x0c1a tx timeout
[  595.257952][T10269] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1027'.
[  595.288843][T10272] futex_wake_op: syz.0.1026 tries to shift op by -2048; fix this program
[  595.824530][T10285] netlink: 'syz.1.1030': attribute type 4 has an invalid length.
[  597.250602][ T5871] Bluetooth: hci2: command 0x0c1a tx timeout
[  597.296914][T10313] futex_wake_op: syz.0.1037 tries to shift op by -2048; fix this program
[  597.835357][T10318] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1038'.
[  599.081324][T10349] futex_wake_op: syz.0.1046 tries to shift op by -2048; fix this program
[  599.678945][T10359] futex_wake_op: syz.3.1049 tries to shift op by -2048; fix this program
[  599.689960][T10359] futex_wake_op: syz.3.1049 tries to shift op by -2048; fix this program
[  601.524580][T10393] FAULT_INJECTION: forcing a failure.
[  601.524580][T10393] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  601.538033][T10393] CPU: 0 UID: 0 PID: 10393 Comm: syz.3.1057 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  601.538085][T10393] Tainted: [L]=SOFTLOCKUP
[  601.538095][T10393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  601.538110][T10393] Call Trace:
[  601.538118][T10393]  <TASK>
[  601.538127][T10393]  dump_stack_lvl+0x100/0x190
[  601.538172][T10393]  should_fail_ex.cold+0x5/0xa
[  601.538196][T10393]  _copy_from_iter+0x1f4/0x1690
[  601.538215][T10393]  ? __asan_memset+0x23/0x50
[  601.538236][T10393]  ? __pfx__copy_from_iter+0x10/0x10
[  601.538250][T10393]  ? __pfx___alloc_skb+0x10/0x10
[  601.538276][T10393]  netlink_sendmsg+0x808/0xda0
[  601.538300][T10393]  ? __pfx_netlink_sendmsg+0x10/0x10
[  601.538318][T10393]  ? __import_iovec+0x1d2/0x640
[  601.538334][T10393]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  601.538358][T10393]  ____sys_sendmsg+0x9e1/0xb70
[  601.538379][T10393]  ? __pfx_netlink_sendmsg+0x10/0x10
[  601.538400][T10393]  ? __pfx_____sys_sendmsg+0x10/0x10
[  601.538464][T10393]  ___sys_sendmsg+0x190/0x1e0
[  601.538489][T10393]  ? __pfx____sys_sendmsg+0x10/0x10
[  601.538511][T10393]  ? ksys_write+0x12a/0x250
[  601.538545][T10393]  __sys_sendmsg+0x170/0x220
[  601.538564][T10393]  ? __pfx___sys_sendmsg+0x10/0x10
[  601.538587][T10393]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  601.538606][T10393]  ? syscall_user_dispatch+0x76/0x130
[  601.538630][T10393]  do_syscall_64+0x106/0xf80
[  601.538648][T10393]  ? clear_bhb_loop+0x40/0x90
[  601.538666][T10393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  601.538681][T10393] RIP: 0033:0x7f1d2339c799
[  601.538695][T10393] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  601.538709][T10393] RSP: 002b:00007f1d242a4028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  601.538724][T10393] RAX: ffffffffffffffda RBX: 00007f1d23616090 RCX: 00007f1d2339c799
[  601.538733][T10393] RDX: 0000000000000810 RSI: 0000200000000140 RDI: 0000000000000005
[  601.538742][T10393] RBP: 00007f1d242a4090 R08: 0000000000000000 R09: 0000000000000000
[  601.538751][T10393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  601.538759][T10393] R13: 00007f1d23616128 R14: 00007f1d23616090 R15: 00007ffcdec6fce8
[  601.538778][T10393]  </TASK>
[  602.427127][T10403] futex_wake_op: syz.0.1060 tries to shift op by -2048; fix this program
[  602.522721][T10399] futex_wake_op: syz.3.1059 tries to shift op by -2048; fix this program
[  602.563156][T10399] futex_wake_op: syz.3.1059 tries to shift op by -2048; fix this program
[  603.839529][T10423] futex_wake_op: syz.3.1068 tries to shift op by -2048; fix this program
[  603.848642][T10423] futex_wake_op: syz.3.1068 tries to shift op by -2048; fix this program
[  604.071410][T10435] futex_wake_op: syz.3.1070 tries to shift op by -2048; fix this program
[  604.080195][T10435] futex_wake_op: syz.3.1070 tries to shift op by -2048; fix this program
[  604.148188][T10436] netlink: 'syz.2.1071': attribute type 4 has an invalid length.
[  606.151249][T10483] futex_wake_op: syz.0.1086 tries to shift op by -2048; fix this program
[  606.160180][T10483] futex_wake_op: syz.0.1086 tries to shift op by -2048; fix this program
[  607.426024][T10509] FAULT_INJECTION: forcing a failure.
[  607.426024][T10509] name failslab, interval 1, probability 0, space 0, times 0
[  607.471204][T10509] CPU: 0 UID: 0 PID: 10509 Comm: syz.2.1094 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  607.471248][T10509] Tainted: [L]=SOFTLOCKUP
[  607.471258][T10509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  607.471273][T10509] Call Trace:
[  607.471282][T10509]  <TASK>
[  607.471293][T10509]  dump_stack_lvl+0x100/0x190
[  607.471338][T10509]  should_fail_ex.cold+0x5/0xa
[  607.471370][T10509]  ? tomoyo_encode2+0xfb/0x3c0
[  607.471399][T10509]  should_failslab+0xc2/0x120
[  607.471428][T10509]  __kmalloc_noprof+0xe0/0x850
[  607.471476][T10509]  tomoyo_encode2+0xfb/0x3c0
[  607.471512][T10509]  tomoyo_encode+0x29/0x50
[  607.471541][T10509]  tomoyo_realpath_from_path+0x18c/0x690
[  607.471582][T10509]  tomoyo_path_number_perm+0x23c/0x580
[  607.471622][T10509]  ? tomoyo_path_number_perm+0x22e/0x580
[  607.471665][T10509]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  607.471745][T10509]  ? find_held_lock+0x2b/0x80
[  607.471770][T10509]  ? __fget_files+0x215/0x3d0
[  607.471794][T10509]  ? hook_file_ioctl_common+0x146/0x410
[  607.471845][T10509]  ? __fget_files+0x21f/0x3d0
[  607.471877][T10509]  security_file_ioctl+0xd3/0x230
[  607.471921][T10509]  __x64_sys_ioctl+0xb7/0x210
[  607.471968][T10509]  do_syscall_64+0x106/0xf80
[  607.472000][T10509]  ? clear_bhb_loop+0x40/0x90
[  607.472033][T10509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.472062][T10509] RIP: 0033:0x7fe5c159c799
[  607.472085][T10509] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  607.472111][T10509] RSP: 002b:00007fe5c2436028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  607.472137][T10509] RAX: ffffffffffffffda RBX: 00007fe5c1815fa0 RCX: 00007fe5c159c799
[  607.472156][T10509] RDX: 0000000000000000 RSI: 000000000000ae9a RDI: 0000000000000004
[  607.472173][T10509] RBP: 00007fe5c2436090 R08: 0000000000000000 R09: 0000000000000000
[  607.472190][T10509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  607.472206][T10509] R13: 00007fe5c1816038 R14: 00007fe5c1815fa0 R15: 00007ffda0a0d678
[  607.472245][T10509]  </TASK>
[  607.472270][T10509] ERROR: Out of memory at tomoyo_realpath_from_path.
[  608.088207][T10517] futex_wake_op: syz.2.1097 tries to shift op by -2048; fix this program
[  608.126023][T10517] futex_wake_op: syz.2.1097 tries to shift op by -2048; fix this program
[  609.034676][T10530] futex_wake_op: syz.0.1101 tries to shift op by -2048; fix this program
[  609.059336][T10530] futex_wake_op: syz.0.1101 tries to shift op by -2048; fix this program
[  613.818889][T10603] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1119'.
[  617.027560][T10675] netlink: 'syz.0.1138': attribute type 2 has an invalid length.
[  617.037585][T10675] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1138'.
[  617.134883][T10661] futex_wake_op: syz.1.1133 tries to shift op by -2048; fix this program
[  617.194805][T10666] FAULT_INJECTION: forcing a failure.
[  617.194805][T10666] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  617.198055][T10661] futex_wake_op: syz.1.1133 tries to shift op by -2048; fix this program
[  617.266917][T10666] CPU: 0 UID: 0 PID: 10666 Comm: syz.2.1135 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  617.266944][T10666] Tainted: [L]=SOFTLOCKUP
[  617.266949][T10666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  617.266958][T10666] Call Trace:
[  617.266963][T10666]  <TASK>
[  617.266970][T10666]  dump_stack_lvl+0x100/0x190
[  617.266997][T10666]  should_fail_ex.cold+0x5/0xa
[  617.267015][T10666]  _copy_from_user+0x2e/0xd0
[  617.267031][T10666]  get_timespec64+0x8b/0x1b0
[  617.267047][T10666]  ? __pfx_get_timespec64+0x10/0x10
[  617.267062][T10666]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  617.267092][T10666]  __x64_sys_futex+0x21a/0x4d0
[  617.267113][T10666]  ? __pfx___x64_sys_futex+0x10/0x10
[  617.267138][T10666]  do_syscall_64+0x106/0xf80
[  617.267156][T10666]  ? clear_bhb_loop+0x40/0x90
[  617.267174][T10666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  617.267189][T10666] RIP: 0033:0x7fe5c159c799
[  617.267202][T10666] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  617.267217][T10666] RSP: 002b:00007ffda0a0d7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  617.267232][T10666] RAX: ffffffffffffffda RBX: 0000000000096a7c RCX: 00007fe5c159c799
[  617.267242][T10666] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe5c1815fac
[  617.267250][T10666] RBP: 0000000000000032 R08: 0000000000000000 R09: 0000000000000000
[  617.267259][T10666] R10: 00007ffda0a0d8e0 R11: 0000000000000246 R12: 00007ffda0a0d900
[  617.267268][T10666] R13: 00007fe5c1815fac R14: 0000000000096aae R15: 00007ffda0a0d8e0
[  617.267286][T10666]  </TASK>
[  617.841818][T10686] blktrace: Concurrent blktraces are not allowed on loop2
[  617.915966][T10682] futex_wake_op: syz.0.1140 tries to shift op by -2048; fix this program
[  617.924725][T10682] futex_wake_op: syz.0.1140 tries to shift op by -2048; fix this program
[  618.103497][T10688] openvswitch: netlink: Flow key attribute not present in set flow.
[  619.284212][T10705] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1148'.
[  619.387943][T10709] netlink: 'syz.0.1149': attribute type 2 has an invalid length.
[  619.413505][T10705] team0: Port device team_slave_1 removed
[  619.434069][T10709] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1149'.
[  621.491151][T10741] netlink: get zone limit has 4 unknown bytes
[  621.771899][T10747] netlink: 'syz.1.1159': attribute type 2 has an invalid length.
[  621.812723][T10747] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1159'.
[  622.653566][T10771] FAULT_INJECTION: forcing a failure.
[  622.653566][T10771] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  622.767548][T10771] CPU: 0 UID: 0 PID: 10771 Comm: syz.3.1168 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  622.767590][T10771] Tainted: [L]=SOFTLOCKUP
[  622.767599][T10771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  622.767612][T10771] Call Trace:
[  622.767621][T10771]  <TASK>
[  622.767631][T10771]  dump_stack_lvl+0x100/0x190
[  622.767670][T10771]  should_fail_ex.cold+0x5/0xa
[  622.767687][T10771]  ? prepare_alloc_pages+0x16d/0x5f0
[  622.767708][T10771]  should_fail_alloc_page+0xeb/0x140
[  622.767725][T10771]  prepare_alloc_pages+0x1f0/0x5f0
[  622.767745][T10771]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  622.767768][T10771]  ? vhost_dev_set_owner+0x190/0xa30
[  622.767786][T10771]  ? stack_trace_save+0x8e/0xc0
[  622.767801][T10771]  ? __pfx_stack_trace_save+0x10/0x10
[  622.767815][T10771]  ? stack_depot_save_flags+0x27/0x9d0
[  622.767844][T10771]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  622.767868][T10771]  ? vhost_dev_set_owner+0x190/0xa30
[  622.767884][T10771]  ? kasan_save_stack+0x3f/0x50
[  622.767906][T10771]  ? kasan_save_stack+0x30/0x50
[  622.767926][T10771]  ? kasan_save_track+0x14/0x30
[  622.767950][T10771]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  622.767971][T10771]  ? vhost_dev_ioctl+0x521/0xe20
[  622.767990][T10771]  ? vhost_vsock_dev_ioctl+0x320/0xb60
[  622.768010][T10771]  ? __x64_sys_ioctl+0x18e/0x210
[  622.768030][T10771]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  622.768057][T10771]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  622.768082][T10771]  ? policy_nodemask+0xed/0x4f0
[  622.768099][T10771]  alloc_pages_mpol+0x1fb/0x550
[  622.768115][T10771]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  622.768131][T10771]  ? rcu_is_watching+0x12/0xc0
[  622.768156][T10771]  ___kmalloc_large_node+0x104/0x150
[  622.768176][T10771]  __kmalloc_large_noprof+0x1c/0x70
[  622.768193][T10771]  vhost_dev_set_owner+0x2b6/0xa30
[  622.768218][T10771]  vhost_dev_ioctl+0x521/0xe20
[  622.768238][T10771]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  622.768264][T10771]  ? __pfx_vhost_dev_ioctl+0x10/0x10
[  622.768291][T10771]  vhost_vsock_dev_ioctl+0x320/0xb60
[  622.768310][T10771]  ? __fget_files+0x215/0x3d0
[  622.768323][T10771]  ? hook_file_ioctl_common+0x146/0x410
[  622.768347][T10771]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  622.768370][T10771]  ? __fget_files+0x21f/0x3d0
[  622.768386][T10771]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  622.768408][T10771]  __x64_sys_ioctl+0x18e/0x210
[  622.768429][T10771]  do_syscall_64+0x106/0xf80
[  622.768452][T10771]  ? clear_bhb_loop+0x40/0x90
[  622.768470][T10771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  622.768485][T10771] RIP: 0033:0x7f1d2339c799
[  622.768499][T10771] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  622.768513][T10771] RSP: 002b:00007f1d24283028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  622.768528][T10771] RAX: ffffffffffffffda RBX: 00007f1d23616180 RCX: 00007f1d2339c799
[  622.768538][T10771] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000007
[  622.768546][T10771] RBP: 00007f1d24283090 R08: 0000000000000000 R09: 0000000000000000
[  622.768555][T10771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  622.768563][T10771] R13: 00007f1d23616218 R14: 00007f1d23616180 R15: 00007ffcdec6fce8
[  622.768582][T10771]  </TASK>
[  624.034224][T10791] netlink: 'syz.1.1172': attribute type 2 has an invalid length.
[  624.043198][T10791] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1172'.
[  624.174532][T10795] binder: 10793:10795 ioctl 40046205 0 returned -22
[  624.184887][T10795] binder: 10793:10795 ioctl c0306201 200000000000 returned -14
[  624.470442][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  624.476918][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  624.507425][T10804] futex_wake_op: syz.3.1175 tries to shift op by -2048; fix this program
[  624.523016][T10805] futex_wake_op: syz.2.1176 tries to shift op by -2048; fix this program
[  624.543100][T10805] futex_wake_op: syz.2.1176 tries to shift op by -2048; fix this program
[  624.563446][T10804] futex_wake_op: syz.3.1175 tries to shift op by -2048; fix this program
[  626.213052][T10840] netlink: 'syz.1.1186': attribute type 4 has an invalid length.
[  626.816397][T10842] futex_wake_op: syz.2.1187 tries to shift op by -2048; fix this program
[  626.847611][T10842] futex_wake_op: syz.2.1187 tries to shift op by -2048; fix this program
[  627.334885][T10865] futex_wake_op: syz.2.1190 tries to shift op by -2048; fix this program
[  627.343515][T10865] futex_wake_op: syz.2.1190 tries to shift op by -2048; fix this program
[  627.383560][T10865] 0x000000000001-0x000000020000 : ""
[  627.457388][T10865] ftl_cs: FTL header corrupt!
[  629.106654][T10892] netlink: 'syz.1.1197': attribute type 2 has an invalid length.
[  629.136267][T10892] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1197'.
[  629.621106][T10907] ptrace attach of "./syz-executor exec"[5874] was attempted by "./syz-executor exec"[10907]
[  631.422115][T10942] FAULT_INJECTION: forcing a failure.
[  631.422115][T10942] name failslab, interval 1, probability 0, space 0, times 0
[  631.458943][T10942] CPU: 1 UID: 0 PID: 10942 Comm: syz.3.1207 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  631.458989][T10942] Tainted: [L]=SOFTLOCKUP
[  631.458999][T10942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  631.459015][T10942] Call Trace:
[  631.459024][T10942]  <TASK>
[  631.459035][T10942]  dump_stack_lvl+0x100/0x190
[  631.459082][T10942]  should_fail_ex.cold+0x5/0xa
[  631.459116][T10942]  should_failslab+0xc2/0x120
[  631.459146][T10942]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  631.459189][T10942]  ? __d_alloc+0x34/0xa80
[  631.459227][T10942]  __d_alloc+0x34/0xa80
[  631.459260][T10942]  d_alloc_pseudo+0x1c/0xc0
[  631.459298][T10942]  alloc_file_pseudo+0xcf/0x230
[  631.459331][T10942]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  631.459375][T10942]  __shmem_file_setup+0x221/0x490
[  631.459449][T10942]  ? __pfx___shmem_file_setup+0x10/0x10
[  631.459493][T10942]  ? vm_area_alloc+0x1f/0x160
[  631.459534][T10942]  shmem_zero_setup+0x96/0x1b0
[  631.459579][T10942]  __mmap_region+0x2198/0x29e0
[  631.459624][T10942]  ? __pfx___mmap_region+0x10/0x10
[  631.459684][T10942]  ? __lock_acquire+0x4a5/0x2630
[  631.459736][T10942]  ? find_held_lock+0x2b/0x80
[  631.459762][T10942]  ? finish_task_switch.isra.0+0x200/0xb80
[  631.459789][T10942]  ? finish_task_switch.isra.0+0x200/0xb80
[  631.459831][T10942]  ? trace_sched_exit_tp+0x13a/0x180
[  631.459864][T10942]  ? __schedule+0x1000/0x6120
[  631.459941][T10942]  ? rcu_is_watching+0x12/0xc0
[  631.459981][T10942]  ? cap_capable+0x107/0x460
[  631.460029][T10942]  mmap_region+0x180/0x3e0
[  631.460079][T10942]  do_mmap+0xc63/0x12f0
[  631.460116][T10942]  ? __pfx_do_mmap+0x10/0x10
[  631.460145][T10942]  ? __pfx_down_write_killable+0x10/0x10
[  631.460192][T10942]  vm_mmap_pgoff+0x29e/0x470
[  631.460230][T10942]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  631.460264][T10942]  ? do_futex+0x192/0x350
[  631.460300][T10942]  ? __pfx_do_futex+0x10/0x10
[  631.460341][T10942]  ksys_mmap_pgoff+0xe1/0x650
[  631.460370][T10942]  ? __x64_sys_futex+0x34f/0x4d0
[  631.460413][T10942]  ? __x64_sys_futex+0x358/0x4d0
[  631.460450][T10942]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  631.460481][T10942]  ? xfd_validate_state+0x129/0x190
[  631.460530][T10942]  __x64_sys_mmap+0x125/0x190
[  631.460586][T10942]  do_syscall_64+0x106/0xf80
[  631.460619][T10942]  ? clear_bhb_loop+0x40/0x90
[  631.460653][T10942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  631.460682][T10942] RIP: 0033:0x7f1d2339c799
[  631.460707][T10942] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  631.460734][T10942] RSP: 002b:00007f1d242a4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  631.460760][T10942] RAX: ffffffffffffffda RBX: 00007f1d23616090 RCX: 00007f1d2339c799
[  631.460778][T10942] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000
[  631.460793][T10942] RBP: 00007f1d23432c99 R08: 0000000000000401 R09: 0000000000008000
[  631.460810][T10942] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  631.460827][T10942] R13: 00007f1d23616128 R14: 00007f1d23616090 R15: 00007ffcdec6fce8
[  631.460865][T10942]  </TASK>
[  631.978586][T10950] futex_wake_op: syz.1.1210 tries to shift op by -2048; fix this program
[  631.987121][T10950] futex_wake_op: syz.1.1210 tries to shift op by -2048; fix this program
[  632.091688][T10950] 0x000000000001-0x000000020000 : ""
[  632.097034][T10950] FAULT_INJECTION: forcing a failure.
[  632.097034][T10950] name failslab, interval 1, probability 0, space 0, times 0
[  632.182017][T10950] CPU: 1 UID: 0 PID: 10950 Comm: syz.1.1210 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  632.182058][T10950] Tainted: [L]=SOFTLOCKUP
[  632.182066][T10950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  632.182081][T10950] Call Trace:
[  632.182089][T10950]  <TASK>
[  632.182100][T10950]  dump_stack_lvl+0x100/0x190
[  632.182144][T10950]  should_fail_ex.cold+0x5/0xa
[  632.182177][T10950]  should_failslab+0xc2/0x120
[  632.182206][T10950]  __kmalloc_cache_noprof+0x7a/0x6f0
[  632.182240][T10950]  ? device_add+0xd3a/0x1950
[  632.182360][T10950]  ? __pfx___debug_object_init+0x10/0x10
[  632.182396][T10950]  ? do_raw_spin_lock+0x128/0x260
[  632.182448][T10950]  device_add+0xd3a/0x1950
[  632.182477][T10950]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  632.182518][T10950]  ? lockdep_init_map_type+0x5c/0x250
[  632.182552][T10950]  ? __pfx_device_add+0x10/0x10
[  632.182577][T10950]  ? lockdep_init_map_type+0x5c/0x250
[  632.182611][T10950]  ? __init_waitqueue_head+0xca/0x150
[  632.182658][T10950]  add_mtd_device+0x928/0x17a0
[  632.182769][T10950]  ? __pfx_add_mtd_device+0x10/0x10
[  632.182808][T10950]  mtd_add_partition+0x30a/0x660
[  632.182841][T10950]  ? __pfx_mtd_add_partition+0x10/0x10
[  632.182870][T10950]  ? __might_fault+0xc5/0x140
[  632.182897][T10950]  ? __might_fault+0xc5/0x140
[  632.182943][T10950]  mtdchar_blkpg_ioctl+0x207/0x250
[  632.182979][T10950]  ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10
[  632.183046][T10950]  mtdchar_ioctl+0x1670/0x1fd0
[  632.183090][T10950]  ? __pfx_mtdchar_ioctl+0x10/0x10
[  632.183130][T10950]  ? lock_acquire+0x1cf/0x380
[  632.183173][T10950]  ? trace_contention_end+0x140/0x180
[  632.183215][T10950]  ? mtdchar_unlocked_ioctl+0xa2/0xf0
[  632.183256][T10950]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  632.183297][T10950]  ? __pfx___mutex_lock+0x10/0x10
[  632.183338][T10950]  ? find_held_lock+0x2b/0x80
[  632.183383][T10950]  mtdchar_unlocked_ioctl+0xb0/0xf0
[  632.183430][T10950]  ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10
[  632.183472][T10950]  __x64_sys_ioctl+0x18e/0x210
[  632.183513][T10950]  do_syscall_64+0x106/0xf80
[  632.183544][T10950]  ? clear_bhb_loop+0x40/0x90
[  632.183578][T10950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  632.183607][T10950] RIP: 0033:0x7f9530f9c799
[  632.183629][T10950] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  632.183656][T10950] RSP: 002b:00007f9531d9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  632.183683][T10950] RAX: ffffffffffffffda RBX: 00007f9531216090 RCX: 00007f9530f9c799
[  632.183701][T10950] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 000000000000000a
[  632.183718][T10950] RBP: 00007f9531d9f090 R08: 0000000000000000 R09: 0000000000000000
[  632.183734][T10950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  632.183751][T10950] R13: 00007f9531216128 R14: 00007f9531216090 R15: 00007ffc44d5b0c8
[  632.183800][T10950]  </TASK>
[  632.184671][T10950] ------------[ cut here ]------------
[  632.486299][T10950] !list_empty(&mtd->part.node)
[  632.486310][T10950] WARNING: drivers/mtd/mtdpart.c:37 at release_mtd_partition+0x71/0x90, CPU#1: syz.1.1210/10950
[  632.501679][T10950] Modules linked in:
[  632.505799][T10950] CPU: 1 UID: 0 PID: 10950 Comm: syz.1.1210 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  632.516813][T10950] Tainted: [L]=SOFTLOCKUP
[  632.521206][T10950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  632.531360][T10950] RIP: 0010:release_mtd_partition+0x71/0x90
[  632.537285][T10950] Code: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 1e 48 8b 7b 38 e8 ff d4 dc fb 48 89 df 5b 5d e9 f5 d4 dc fb e8 f0 5a 7d fb 90 <0f> 0b 90 eb c2 e8 25 e5 e8 fb eb db 48 89 ef e8 1b e5 e8 fb eb a5
[  632.557429][T10950] RSP: 0018:ffffc900037a7818 EFLAGS: 00010293
[  632.563762][T10950] RAX: 0000000000000000 RBX: ffff8880596f3000 RCX: ffffffff8b87ef17
[  632.571872][T10950] RDX: ffff888033009e80 RSI: ffffffff868aba90 RDI: ffff8880596f3000
[  632.579913][T10950] RBP: ffff8880596f3650 R08: 0000000000000001 R09: 0000000000000001
[  632.588036][T10950] R10: 0000000000000004 R11: 0000000000000001 R12: 0000000000000000
[  632.596009][T10950] R13: dffffc0000000000 R14: ffff88801c73da80 R15: 0000000000000000
[  632.604033][T10950] FS:  00007f9531d9f6c0(0000) GS:ffff88812444d000(0000) knlGS:0000000000000000
[  632.613038][T10950] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  632.619679][T10950] CR2: 0000001b33b11ff8 CR3: 0000000083f30000 CR4: 00000000003526f0
[  632.627813][T10950] Call Trace:
[  632.631093][T10950]  <TASK>
[  632.634017][T10950]  mtd_release+0xa0/0xd0
[  632.638440][T10950]  ? __pfx_mtd_release+0x10/0x10
[  632.643477][T10950]  device_release+0xa4/0x240
[  632.648774][T10950]  kobject_put+0x1f7/0x640
[  632.653313][T10950]  put_device+0x1f/0x30
[  632.657864][T10950]  add_mtd_device+0xbd7/0x17a0
[  632.662685][T10950]  ? __pfx_add_mtd_device+0x10/0x10
[  632.668054][T10950]  mtd_add_partition+0x30a/0x660
[  632.673064][T10950]  ? __pfx_mtd_add_partition+0x10/0x10
[  632.678617][T10950]  ? __might_fault+0xc5/0x140
[  632.683469][T10950]  ? __might_fault+0xc5/0x140
[  632.688287][T10950]  mtdchar_blkpg_ioctl+0x207/0x250
[  632.693456][T10950]  ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10
[  632.699274][T10950]  mtdchar_ioctl+0x1670/0x1fd0
[  632.704092][T10950]  ? __pfx_mtdchar_ioctl+0x10/0x10
[  632.709461][T10950]  ? lock_acquire+0x1cf/0x380
[  632.714180][T10950]  ? trace_contention_end+0x140/0x180
[  632.719624][T10950]  ? mtdchar_unlocked_ioctl+0xa2/0xf0
[  632.725007][T10950]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  632.730191][T10950]  ? __pfx___mutex_lock+0x10/0x10
[  632.735251][T10950]  ? find_held_lock+0x2b/0x80
[  632.740030][T10950]  mtdchar_unlocked_ioctl+0xb0/0xf0
[  632.745282][T10950]  ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10
[  632.751893][T10950]  __x64_sys_ioctl+0x18e/0x210
[  632.756723][T10950]  do_syscall_64+0x106/0xf80
[  632.761759][T10950]  ? clear_bhb_loop+0x40/0x90
[  632.766497][T10950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  632.772509][T10950] RIP: 0033:0x7f9530f9c799
[  632.776966][T10950] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  632.796938][T10950] RSP: 002b:00007f9531d9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  632.805802][T10950] RAX: ffffffffffffffda RBX: 00007f9531216090 RCX: 00007f9530f9c799
[  632.813833][T10950] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 000000000000000a
[  632.821866][T10950] RBP: 00007f9531d9f090 R08: 0000000000000000 R09: 0000000000000000
[  632.829889][T10950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  632.837913][T10950] R13: 00007f9531216128 R14: 00007f9531216090 R15: 00007ffc44d5b0c8
[  632.845926][T10950]  </TASK>
[  632.849199][T10950] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  632.856479][T10950] CPU: 1 UID: 0 PID: 10950 Comm: syz.1.1210 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  632.867855][T10950] Tainted: [L]=SOFTLOCKUP
[  632.872232][T10950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  632.882283][T10950] Call Trace:
[  632.885553][T10950]  <TASK>
[  632.888486][T10950]  dump_stack_lvl+0x100/0x190
[  632.893179][T10950]  vpanic+0x552/0x970
[  632.897166][T10950]  ? __pfx_vpanic+0x10/0x10
[  632.901663][T10950]  panic+0xd1/0xe0
[  632.905379][T10950]  ? __pfx_panic+0x10/0x10
[  632.909793][T10950]  ? check_panic_on_warn+0x1f/0x90
[  632.914919][T10950]  check_panic_on_warn.cold+0x19/0x34
[  632.920303][T10950]  ? release_mtd_partition+0x71/0x90
[  632.925584][T10950]  __warn.cold+0x191/0x348
[  632.930010][T10950]  __report_bug+0x296/0x3d0
[  632.934659][T10950]  ? release_mtd_partition+0x71/0x90
[  632.940027][T10950]  ? __pfx___report_bug+0x10/0x10
[  632.945064][T10950]  ? delete_node+0x20a/0x8f0
[  632.949645][T10950]  ? release_mtd_partition+0x71/0x90
[  632.955078][T10950]  report_bug+0xb2/0x220
[  632.959355][T10950]  ? release_mtd_partition+0x71/0x90
[  632.964679][T10950]  handle_bug+0x16a/0x2a0
[  632.969028][T10950]  exc_invalid_op+0x17/0x50
[  632.973539][T10950]  asm_exc_invalid_op+0x1a/0x20
[  632.978456][T10950] RIP: 0010:release_mtd_partition+0x71/0x90
[  632.984373][T10950] Code: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 1e 48 8b 7b 38 e8 ff d4 dc fb 48 89 df 5b 5d e9 f5 d4 dc fb e8 f0 5a 7d fb 90 <0f> 0b 90 eb c2 e8 25 e5 e8 fb eb db 48 89 ef e8 1b e5 e8 fb eb a5
[  633.003994][T10950] RSP: 0018:ffffc900037a7818 EFLAGS: 00010293
[  633.010149][T10950] RAX: 0000000000000000 RBX: ffff8880596f3000 RCX: ffffffff8b87ef17
[  633.018121][T10950] RDX: ffff888033009e80 RSI: ffffffff868aba90 RDI: ffff8880596f3000
[  633.026115][T10950] RBP: ffff8880596f3650 R08: 0000000000000001 R09: 0000000000000001
[  633.034087][T10950] R10: 0000000000000004 R11: 0000000000000001 R12: 0000000000000000
[  633.042052][T10950] R13: dffffc0000000000 R14: ffff88801c73da80 R15: 0000000000000000
[  633.050114][T10950]  ? delete_node+0x417/0x8f0
[  633.054705][T10950]  ? release_mtd_partition+0x70/0x90
[  633.060087][T10950]  ? release_mtd_partition+0x70/0x90
[  633.065389][T10950]  mtd_release+0xa0/0xd0
[  633.069671][T10950]  ? __pfx_mtd_release+0x10/0x10
[  633.074612][T10950]  device_release+0xa4/0x240
[  633.079197][T10950]  kobject_put+0x1f7/0x640
[  633.083614][T10950]  put_device+0x1f/0x30
[  633.087773][T10950]  add_mtd_device+0xbd7/0x17a0
[  633.092551][T10950]  ? __pfx_add_mtd_device+0x10/0x10
[  633.097751][T10950]  mtd_add_partition+0x30a/0x660
[  633.102785][T10950]  ? __pfx_mtd_add_partition+0x10/0x10
[  633.108258][T10950]  ? __might_fault+0xc5/0x140
[  633.112948][T10950]  ? __might_fault+0xc5/0x140
[  633.117742][T10950]  mtdchar_blkpg_ioctl+0x207/0x250
[  633.122894][T10950]  ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10
[  633.128618][T10950]  mtdchar_ioctl+0x1670/0x1fd0
[  633.133401][T10950]  ? __pfx_mtdchar_ioctl+0x10/0x10
[  633.138538][T10950]  ? lock_acquire+0x1cf/0x380
[  633.143219][T10950]  ? trace_contention_end+0x140/0x180
[  633.148596][T10950]  ? mtdchar_unlocked_ioctl+0xa2/0xf0
[  633.153965][T10950]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  633.159019][T10950]  ? __pfx___mutex_lock+0x10/0x10
[  633.164054][T10950]  ? find_held_lock+0x2b/0x80
[  633.168741][T10950]  mtdchar_unlocked_ioctl+0xb0/0xf0
[  633.173967][T10950]  ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10
[  633.179863][T10950]  __x64_sys_ioctl+0x18e/0x210
[  633.184641][T10950]  do_syscall_64+0x106/0xf80
[  633.189237][T10950]  ? clear_bhb_loop+0x40/0x90
[  633.194024][T10950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  633.199922][T10950] RIP: 0033:0x7f9530f9c799
[  633.204333][T10950] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  633.223948][T10950] RSP: 002b:00007f9531d9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  633.232368][T10950] RAX: ffffffffffffffda RBX: 00007f9531216090 RCX: 00007f9530f9c799
[  633.240342][T10950] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 000000000000000a
[  633.248302][T10950] RBP: 00007f9531d9f090 R08: 0000000000000000 R09: 0000000000000000
[  633.256275][T10950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  633.264287][T10950] R13: 00007f9531216128 R14: 00007f9531216090 R15: 00007ffc44d5b0c8
[  633.272315][T10950]  </TASK>
[  633.275699][T10950] Kernel Offset: disabled
[  633.280022][T10950] Rebooting in 86400 seconds..