last executing test programs:

6.815803878s ago: executing program 0 (id=2367):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYRES32=r0], 0x14}, 0x1, 0x0, 0x0, 0x4804}, 0x20040)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/gro_flush_timeout\x00', 0x88282, 0x0)
fallocate$auto(r1, 0x0, 0x400000a, 0x4b)
socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4001, @loopback}, 0x6b)
lseek$auto(0x3, 0x2, 0x4)
mmap$auto(0x0, 0x1, 0xfd5, 0x12, 0xffffffffffffffff, 0x0)
mmap$auto(0x9, 0x1ff, 0x4, 0x14, 0x3, 0x0)
ioctl$auto_USBDEVFS_RELEASE_PORT(r1, 0x80045519, &(0x7f00000000c0)=0x8)

6.282219466s ago: executing program 2 (id=2369):
mmap$auto(0x4, 0xc, 0x80000001, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9e24, &(0x7f0000000000)={0x33, 0xc, 0x0, @raw=0x8}})

6.101622598s ago: executing program 0 (id=2371):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
madvise$auto(0x0, 0x2003f0, 0x18)
socket(0xa, 0x1, 0x0)
socket(0x2, 0x1, 0x84)
sendmsg$auto_MAC802154_HWSIM_CMD_GET_RADIO(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="fc000000adc7d07f8da5963d9eac6c8ad36af828fb70602df84b56858ae3a125ceae3674ad8cf35c98bdb6036be53461d745598e59e82aae03733791713f3729ef8ae5670c50413719348a86e0a7fc801c0b7c7a03e09ae31d7770e6bda909c11c4f9f97cfa9794895401491b915eacaac6afa67adab6ff918c8a7436ca601758b1572e6ed220cf7a942d149409f2163fa18f9704e32d59d9c7114e7388abc9ec7eba49ab4bb3852b9b707c81cdd87bb00f6fd2cee2b99173ed2973b0201eff3802a8c1b25c8eabff8a200052c35452b65182e738af3a0ed62e308829169f51e60e710c0234336126fc5e30d2c9dcd70707f48aabb4cc3d11087451cc083a04a0766a8580242f963894b9eab655b585e8352534880f08b3ad486a0ab7110ea8bb399b71f7c1abc856d024ab954afbebdb9319ab0b596abcaf1db4c4d71e8f8137b69d96c0c6df8512b929ecaf36a3e3018c3c21f8c4b18b2a7daa6371003ae51e4f0ef4488529bc79df3a151066653dbbca8310ceab05c12eb3cca88d036771c1d323ca924141a4a5fd0622a7562", @ANYRES16=0x0, @ANYBLOB="00022abd7000fedbdf2501000000d600028000dd251a0486344d04550b2711e1b509f4e9e034b6c7bb0c132fe977aa9cca58d65200dc653b106f71c242915b6cd6deb9ceed9e5fefcd2528ba763c82a69923954e3109c7d5a197f8bce72d00facceb7fd76b62882d8deca1e7baf453acc4acf099eb33dc54026f467dd3b3c2a0d3440722ec802bf0d0a410ff8b5f2c56ffe450443dc255665aa144ab566a0c5b9bb18dc28db99a9ee90ccde9326365de350b1480d48faa74fe5265d6068c8663195cde6b8abac78873f4590dc86c4434cb38db564625c3d282ab21319bd9f3d1aaa4e230000008000100000100000800010002000000"], 0xfc}, 0x1, 0x0, 0x0, 0x10}, 0x8000)
mmap$auto(0x0, 0x20006, 0x4, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x4000, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000000140)='\t', 0x1)
r1 = fsopen$auto(0x0, 0x1)
ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x0)
write$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffffff, &(0x7f0000000b40)="33e06908f7cef2ef9652d5e3d0f91cdb9aa7fcd4f56b3ae50e2e7a3fce17ad39061182af048f047adfa552adf5a64941ae9a2564ce32560a", 0x38)
socket(0xa, 0x1, 0x84)
r2 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r4, 0x0, 0x81)
write$auto(r4, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
r5 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xf5, 0x7352, 0x10003c, 0x3, 0x1ffe1, 0x7, 0x3, 0xf7fffffffffffffe, 0x9, 0x3, 0x6, 0x5, 0xe, 0x9, 0x1daf, 0x80010005, 0x82, 0x4, 0xffefffff, 0x7, 0x2001, 0x8, 0x3, 0x20e9d17d, 0x400300000000000, 0xffffffff, 0x0, 0xfffffff7, 0xf04, [0xfffffffffffffffe, 0x0, 0x3, 0xfffffffffffffffd, 0x2, 0xfffffffffffffffe, 0x0, 0x20000000000007, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x10002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0xff5b, 0xc72, 0x0, 0x9, 0x0, 0x66, 0x2, 0x4, 0x0, 0x0, 0x80000, 0x9, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x1, 0x1000000008c]}, 0x2, 0xd)
ioctl$auto_EVIOCGRAB(r5, 0x40044590, &(0x7f0000000000)=0x2)
write$auto(r5, 0x0, 0x10001)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_XFS_IOC_SCRUBV_METADATA(r2, 0xc0285840, &(0x7f0000000380)={0x4, 0xd, 0x4, 0xc2b, 0x8001, 0x1000, 0x0, 0x7})
madvise$auto(0x0, 0x4, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
ioctl$auto(r6, 0x545c, 0xffffffffffffffff)

5.999521415s ago: executing program 2 (id=2373):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x202, 0x0)
mmap$auto(0xfffffffffffffffd, 0x4020009, 0xdf, 0xeb1, r0, 0x7ffc)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810008, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r1, &(0x7f0000000040)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
r3 = prctl$auto(0x800009, 0x4, 0x0, 0x1, 0x1)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x1, 0x40009, 0xdf, 0x13, 0xffffffffffffffff, 0x10001)
msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004)
r4 = socket(0x23, 0x5, 0x2)
bind$auto(r4, 0x0, 0x80)
socket(0xf, 0xa, 0x5)
ioperm$auto(0x7, 0x75, 0x4)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
kexec_load$auto(0xff, 0x2, &(0x7f0000000080)={@kbuf=0x0, 0x2, 0x8000, 0x3000}, 0x4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000000c0), r3)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r5, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000002b00)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010028bd7000fcdbdf25050000001c0001800800058004007d00100001800a"], 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x4000000)
r7 = prctl$auto_PR_SCHED_CORE_CREATE(0xffffffff, 0x1, 0xffffffffffffffff, 0x2, 0x10)
listmount$auto(&(0x7f0000000000)={0x400, @inferred=r7, 0xe, 0x8, 0x2}, &(0x7f0000000040)=0x5, 0x4, 0x8)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r8, 0x0, 0x20)
write$auto(0xffffffffffffffff, 0x0, 0x401)
madvise$auto(0xfffffffffffffffb, 0x2000000009, 0x4)

5.706758919s ago: executing program 3 (id=2374):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
socket(0xa, 0x2, 0x88)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/hugetlb.1GB.max_usage_in_bytes\x00', 0x1002, 0x0)
socket(0xa, 0x3, 0x3b)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
mount$auto(&(0x7f00000000c0)='wlan0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='\x00', 0xff, &(0x7f00000001c0)="4238f17e38cb5603db28a9d63b71d3990e80fa80ece42d562bf1ba4c7b6482d8d28b7e1cd341774afd5d29218f8e41c8e9d5e53d49a3bb52089ce495f10137ba034c1ee06ace7b67c30fba6414e8f7866146f319b6e46883f2f3c5ba90dc0ed5818f5ca6bbd4dbd4d0c2dbc82a8750cfd934f54e374a23af9ea26fd6f8dfeaef9f3106fc05d692dcd6eb2a96c02d")
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/admmidi2\x00', 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_udc.1/udc/dummy_udc.1/uevent\x00', 0x40000, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000040), 0x400000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/pts/ptmx\x00', 0x8000, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
fcntl$auto(0x3, 0x400, 0x9ec0000000000000)
rename$auto(&(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='./file0\x00')
ioctl$auto_TIOCSTI2(r2, 0x5412, 0x0)

5.451114173s ago: executing program 2 (id=2375):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xf2, 0xdf, 0xeb1, 0xf6f6, 0x8000)
socket(0x80000000000000a, 0x2, 0x0)
socket(0x2, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
setsockopt$auto(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x6)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/bus/pci/drivers/vmwgfx/new_id\x00', 0xa001, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r0 = openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x41180, 0x0)
read$auto(r0, 0x0, 0x58b22256)
write$auto(0x3, 0x0, 0xfdef)

5.310760936s ago: executing program 3 (id=2376):
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async)
ioctl$auto(0x3, 0x400454ca, 0x38)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec2\x00', 0x101000, 0x0) (async)
select$auto(0x4, 0x0, &(0x7f0000000100)={[0x9, 0x7, 0xfffffffffffffff9, 0x9, 0x7ff, 0x3, 0x6, 0x2, 0x9, 0xffff, 0x1ff, 0xd, 0x3, 0x200000201, 0x7, 0x6]}, 0x0, 0x0) (async)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="04000800001000005db9"], 0x14}, 0x1, 0x0, 0x0, 0x4004080}, 0x0)
recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x109, 0x8, 0x0) (async)
write$auto(0x3, 0x0, 0xfdf3)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/memory14/power/autosuspend_delay_ms\x00', 0x8300, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001c00)=""/4111, 0x100f) (async)
unshare$auto(0x6) (async)
futex_wait$auto(&(0x7f0000000180)="962b1bfca76e1104da3fe9b433dc6f2f7f632deed2a53d41ec54b6c27e0224556f995108b6", 0x5, 0x8001, 0x6, &(0x7f00000001c0)={0x6, 0x6}, 0x1)

5.261157648s ago: executing program 2 (id=2377):
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
writev$auto(r0, &(0x7f0000000340)={0x0, 0xda7e}, 0x9)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
mmap$auto(0x0, 0x180000, 0xdf, 0x9b72, 0x4, 0x8000)
keyctl$auto(0x8, 0x0, 0xffffffffffffffff, 0x5092, 0x4f)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
socket(0x2, 0x1, 0x0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
write$auto(r2, 0x0, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x1000, 0xf)
write$auto_ocfs2_control_fops_stack_user(r1, &(0x7f0000000040)='\t', 0x1)
r3 = socket(0x2, 0x2, 0x1)
io_uring_setup$auto(0x6, 0x0)
sendto$auto(r3, 0x0, 0xb, 0x2, &(0x7f0000000000), 0x7)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/module/ib_srp/parameters/fast_io_fail_tmo\x00', 0x22000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/48, 0x30)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
set_tid_address$auto(0x0)

4.791284713s ago: executing program 0 (id=2379):
r0 = socket(0x1d, 0x1, 0x7fff)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
connect$auto(0xffffffffffffffff, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
mmap$auto(0x40, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cpu/1/cpuid\x00', 0x800, 0x0)
r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
ioctl$auto(r3, 0xc0104d04, 0x8)
syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000240), r0)
fsconfig$auto_HIDEPID_NO_ACCESS(r1, 0x4, &(0x7f0000000080)='/sys/kernel/debug/tracing/error_log\x00', &(0x7f0000000180)="1688508b6f15410a845bcd51a256379ce9c19678c0e09484965d60af1c74a43f5e9d962e6938aff1d06793b9893d542db31b069a47db1394be49b9914a2c907ecedd495e493f89d1378967b210286905b1d7fe001e6cd602fe379c8d6c3682102dbb68590d76d7ec10cf5be0768306d17f4f41ce0f0ce7a90e", 0x1)
msync$auto(0x1ffff000, 0x180000000000100, 0x400000004)
socket(0x10, 0x2, 0xc)
openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/error_log\x00', 0x400002, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$auto_BTRFS_IOC_SNAP_DESTROY_V2(r2, 0x5000943f, &(0x7f0000001200)={@raw, 0xfffffffffffffff7, 0xffffffffffffffff, @unused, @name="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"})
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r4, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0xc0000080, 0x2000400, 0xfffffffffffffffd}]})
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
ioctl$auto_TCSBRKP2(r6, 0x5425, 0x0)

4.654208365s ago: executing program 1 (id=2380):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r0)
sendmsg$auto_NL80211_CMD_SET_SAR_SPECS(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x10, 0x70bd29, 0x25dfdbff, {}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0xec6}, @NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}, @NL80211_ATTR_IE={0x14, 0x2a, "a4ef68d70da7f7af8e816a819f47b6ed"}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000000)={0x14, r1, 0x301, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20004000)

4.464961225s ago: executing program 1 (id=2381):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup/pids.peak\x00', 0x8000, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x0) (async)
write$auto(0xffffffffffffffff, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
mmap$auto(0x0, 0x9644, 0xdf, 0x9b72, 0x2, 0x2d4a29c0)
pivot_root$auto(0x0, 0x0)
open(0x0, 0x7ffd, 0x12) (async)
open(0x0, 0x7ffd, 0x12)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000) (async)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000000, 0xe) (async)
madvise$auto(0x0, 0x2000040080000000, 0xe)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/firmware/acpi/hotplug/pci_root/enabled\x00', 0x183941, 0x0) (async)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/firmware/acpi/hotplug/pci_root/enabled\x00', 0x183941, 0x0)
write$auto(r1, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\xd6\x84\xef\xf5\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xed\xc0\fz\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\x05\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd?\x13\xe2\xad\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH', 0x7)
mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff)
connect$auto(0x3, 0x0, 0x10)
unshare$auto(0x40000080)
r2 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000100), 0x80840, 0x0)
lseek$auto(r2, 0x0, 0x2)
readv$auto(r2, &(0x7f0000000a80)={0x0, 0x5b54}, 0x1)
getsockopt$auto(0xffffffffffffffff, 0x1, 0x4, &(0x7f0000000040)='/dev/cec27\x00', 0x0) (async)
r3 = getsockopt$auto(0xffffffffffffffff, 0x1, 0x4, &(0x7f0000000040)='/dev/cec27\x00', 0x0)
r4 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f00000003c0)={{0x7fff, 0xee00, 0xffffffffffffffff, 0xffdf, 0xa8, 0x80, 0x9}, 0x0, &(0x7f0000000380)=0x2, 0x5, 0x1, 0x3, 0x0, 0x8, 0x5, 0xfffc, 0x8c2, @inferred=0xffffffffffffffff, @raw=0x1})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto(r4, &(0x7f0000000880)={&(0x7f0000000080), 0x9, &(0x7f0000000440)={&(0x7f0000000280)="e3356d69f7cb68aad3edf387d2285fffe1f5522ad06d93711370b7ea7c2f31779827e78ca09b60351d7e887603ad6ae672cc4dcdb5c313e0598060d6542419a076ba139301d9a8bc5530d6cdb21f0706f1499c99995f896ca8dd769327dd8778b2881ff8126abb6652f3a56f3bcdebfea0de557bf4fbba04f83d4f5d1686a8cbce1800351e3025cfb8897ab4c0c4b2d6cd567503a1f98a4874df25eee0897909783fc68ed176f2ec23601bbf535fc04b57d27f4835b30dccb5878fb0bcdc2d16c23b214c44ef19dab0ed1e42a1e18ce5e1122cbf94e9ba522d888ac60b34e036fcdbcc6bcb3b9bb8d0540c00072f3b", 0xffffffffffffffff}, 0x4, &(0x7f0000000840), 0x0, 0xfffffff9}, 0xcf3)
prctl$auto(0x3d, 0x1, 0x4, 0x3, 0x3)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_clone3(&(0x7f00000006c0)={0x228202400, 0x0, &(0x7f0000000480), &(0x7f00000004c0), {0x3a}, &(0x7f00000008c0)=""/76, 0x4c, &(0x7f0000000940)=""/249, &(0x7f0000000680), 0x0, {r3}}, 0x58)
msgctl$auto_MSG_STAT(0x1, 0xb, &(0x7f00000007c0)={{0x3, 0xee00, 0x0, 0x8, 0x4, 0xee, 0x1ff}, &(0x7f0000000740)=0x6, &(0x7f0000000780)=0x1, 0x2, 0x6, 0x7, 0xa, 0x4, 0x3ff, 0x1, 0x3, @raw=0x5, @raw=0x52})

3.807218756s ago: executing program 3 (id=2382):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/loop14/queue/stable_writes\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2008000)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0x100082)

3.746570899s ago: executing program 0 (id=2383):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram15\x00', 0x14f602, 0x0)
mlockall$auto(0x5)
mmap$auto(0x80000000000000, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/nbd6/sched/write0_fifo_list\x00', 0x400, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r0, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80001, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001080)='/proc/thread-self/net/rxrpc/locals\x00', 0x40080, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/modalias\x00', 0x35200, 0x0)
mmap$auto(0x0, 0x2020009, 0x20000000000003, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x23, 0x0)
r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r2, 0x0, 0x4)
sysfs$auto(0x2, 0x16, 0x0)
r3 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000001040), 0x880, 0x0)
close_range$auto(0xffffffffffffffff, r3, 0x80000001)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x803, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0x88900, 0x0)
readv$auto(r4, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3)
r5 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000003b00)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x600, 0x0)
readv$auto(r5, &(0x7f0000003dc0)={0x0, 0x1}, 0x3)

3.3152185s ago: executing program 1 (id=2384):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x4, 0x7)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10003, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x28, 0x2, 0x0)
openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000080), 0x2400, 0x0)
lseek$auto(0x3, 0x7fffffffffffffff, 0x0)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40ebe, r0, 0x300000000000)
r1 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
sendmsg$auto_ETHTOOL_MSG_PSE_SET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000881}, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)
write$auto(r0, &(0x7f0000000180)='/d{\xc1\xe7\x81\xc0\xd5I\xbd\xe5*8Fv\x00\x00\x00\x00\xffd~o1\x00\xef\x1f\x93EBs\xb8\x9a\xe3\xee\xf1xD\xd4\xde\x19\x7f\xd0aE\xafvoF\xc6\x9b\xdb\xa7\xc1\n\a\x93&\xa6\x14Bs\xe9]\xfd\xff\xe4\xf1\xd3\xb6\x14\x0e\\\x80]\x94\\\x00>?(#\xc4}r\xcfy', 0x8)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
r2 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x264900, 0x0)
write$auto_proc_mem_operations_base(r2, &(0x7f0000001680)="a7", 0x80000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x2, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_REMOVE(r3, 0xc0405519, &(0x7f0000000040)={@raw=0x8, 0x101, 0x4, 0x8, "352ebef02abcbc011d16cb58cd36da795b5575ebf6bb479f4da91d2d1672da47b156122bdd55fff85d7fc1ea"})
bind$auto(r1, &(0x7f0000000040)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x40, 0x1, 0x2}}, 0x1200000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000001940), 0x80643, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)

3.313023248s ago: executing program 3 (id=2385):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x10000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r1)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)={0x34, r2, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000841}, 0x2000c840)
sendmsg$auto_NETDEV_CMD_QSTATS_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x200, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20008800}, 0x1)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
connect$auto(0x3, 0x0, 0x55)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x40009, 0xdd, 0x9b72, 0x7, 0x28000)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
bpf$auto(0x0, 0x0, 0x4f4)
ioctl$auto_KVM_GET_MSR_FEATURE_INDEX_LIST(r4, 0xc004ae0a, 0x0)
syz_genetlink_get_family_id$auto_wireguard(0x0, r3)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000001c0), r3)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x4004040)
sendmsg$auto_WG_CMD_GET_DEVICE(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x880}, 0x4)
mmap$auto(0x0, 0x842d, 0xdf, 0xfff, 0xffffffffffffffff, 0x1)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000003900)='/sys/devices/virtual/mtd/mtd0/writesize\x00', 0x22400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, 0x0, 0x41)

2.360271573s ago: executing program 0 (id=2386):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xf2, 0xdf, 0xeb1, 0xf6f6, 0x8000)
socket(0x80000000000000a, 0x2, 0x0)
socket(0x2, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
setsockopt$auto(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x6)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/bus/pci/drivers/vmwgfx/new_id\x00', 0xa001, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r0 = openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x41180, 0x0)
read$auto(r0, 0x0, 0x58b22256)
write$auto(0x3, 0x0, 0xfdef)

2.357396415s ago: executing program 3 (id=2387):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
madvise$auto(0x0, 0x2003f0, 0x18)
socket(0xa, 0x1, 0x0)
socket(0x2, 0x1, 0x84)
sendmsg$auto_MAC802154_HWSIM_CMD_GET_RADIO(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="fc000000adc7d07f8da5963d9eac6c8ad36af828fb70602df84b56858ae3a125ceae3674ad8cf35c98bdb6036be53461d745598e59e82aae03733791713f3729ef8ae5670c50413719348a86e0a7fc801c0b7c7a03e09ae31d7770e6bda909c11c4f9f97cfa9794895401491b915eacaac6afa67adab6ff918c8a7436ca601758b1572e6ed220cf7a942d149409f2163fa18f9704e32d59d9c7114e7388abc9ec7eba49ab4bb3852b9b707c81cdd87bb00f6fd2cee2b99173ed2973b0201eff3802a8c1b25c8eabff8a200052c35452b65182e738af3a0ed62e308829169f51e60e710c0234336126fc5e30d2c9dcd70707f48aabb4cc3d11087451cc083a04a0766a8580242f963894b9eab655b585e8352534880f08b3ad486a0ab7110ea8bb399b71f7c1abc856d024ab954afbebdb9319ab0b596abcaf1db4c4d71e8f8137b69d96c0c6df8512b929ecaf36a3e3018c3c21f8c4b18b2a7daa6371003ae51e4f0ef4488529bc79df3a151066653dbbca8310ceab05c12eb3cca88d036771c1d323ca924141a4a5fd0622a7562", @ANYRES16=0x0, @ANYBLOB="00022abd7000fedbdf2501000000d600028000dd251a0486344d04550b2711e1b509f4e9e034b6c7bb0c132fe977aa9cca58d65200dc653b106f71c242915b6cd6deb9ceed9e5fefcd2528ba763c82a69923954e3109c7d5a197f8bce72d00facceb7fd76b62882d8deca1e7baf453acc4acf099eb33dc54026f467dd3b3c2a0d3440722ec802bf0d0a410ff8b5f2c56ffe450443dc255665aa144ab566a0c5b9bb18dc28db99a9ee90ccde9326365de350b1480d48faa74fe5265d6068c8663195cde6b8abac78873f4590dc86c4434cb38db564625c3d282ab21319bd9f3d1aaa4e230000008000100000100000800010002000000"], 0xfc}, 0x1, 0x0, 0x0, 0x10}, 0x8000)
mmap$auto(0x0, 0x20006, 0x4, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x4000, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000000140)='\t', 0x1)
r1 = fsopen$auto(0x0, 0x1)
ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x0)
write$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffffff, &(0x7f0000000b40)="33e06908f7cef2ef9652d5e3d0f91cdb9aa7fcd4f56b3ae50e2e7a3fce17ad39061182af048f047adfa552adf5a64941ae9a2564ce32560a", 0x38)
socket(0xa, 0x1, 0x84)
r2 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r4, 0x0, 0x81)
write$auto(r4, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
r5 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xf5, 0x7352, 0x10003c, 0x3, 0x1ffe1, 0x7, 0x3, 0xf7fffffffffffffe, 0x9, 0x3, 0x6, 0x5, 0xe, 0x9, 0x1daf, 0x80010005, 0x82, 0x4, 0xffefffff, 0x7, 0x2001, 0x8, 0x3, 0x20e9d17d, 0x400300000000000, 0xffffffff, 0x0, 0xfffffff7, 0xf04, [0xfffffffffffffffe, 0x0, 0x3, 0xfffffffffffffffd, 0x2, 0xfffffffffffffffe, 0x0, 0x20000000000007, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x10002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0xff5b, 0xc72, 0x0, 0x9, 0x0, 0x66, 0x2, 0x4, 0x0, 0x0, 0x80000, 0x9, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x1, 0x1000000008c]}, 0x2, 0xd)
ioctl$auto_EVIOCGRAB(r5, 0x40044590, &(0x7f0000000000)=0x2)
write$auto(r5, 0x0, 0x10001)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_XFS_IOC_SCRUBV_METADATA(r2, 0xc0285840, &(0x7f0000000380)={0x4, 0xd, 0x4, 0xc2b, 0x8001, 0x1000, 0x0, 0x7})
madvise$auto(0x0, 0x4, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
ioctl$auto(r6, 0x545c, 0xffffffffffffffff)

2.233983878s ago: executing program 1 (id=2388):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x620201, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0x90, 0xf2cf, 0x1ff, 0x4}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3866691c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816203df562367fe6596824588a2e3d84ba165f", 0x8})
ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0)
ioctl$auto_UI_SET_SWBIT(r0, 0x4004556d, 0x0)
madvise$auto(0x4000000, 0xffffffffffff0085, 0x1004)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder1\x00', 0x0, 0x0)
semctl$auto_SETVAL(0x0, 0x7, 0x10, 0xc)
semctl$auto_SETVAL(0x0, 0x7, 0x10, 0xfff)
socket(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.4/usb5/power/level\x00', 0x129882, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x4000000e, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x2dc949, 0xd3e, 0x3, 0x4, 0x3, 0x3, 0xffffffdffffbffff, 0x4000007, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x10001, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f0000000080)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x958b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x40008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x10000]}, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec29\x00', 0x900, 0x0)
sysfs$auto(0x2, 0x23, 0x0)
r3 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r3, 0x0, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_RSS_GET(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="09032dbd7000fc1af38b81888cb4b5dbdf2526000000"], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
sendmsg$auto_HANDSHAKE_CMD_DONE(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00012bbd7000fddbdf250300000008000200", @ANYRES32=r0, @ANYBLOB="08000200", @ANYRES32=r0, @ANYBLOB="8800d6481d000000"], 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x81)

980.468771ms ago: executing program 1 (id=2389):
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = socket(0x11, 0x80003, 0x300)
ioctl$auto(0x3, 0x541b, 0x10000000000402)
set_tid_address$auto(0x0)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
io_uring_setup$auto(0x52, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x4, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
io_uring_enter$auto(0x3, 0x0, 0x1, 0x3, 0x0, 0x2)
io_uring_enter$auto(0x3, 0x1, 0x2688, 0x5, 0x0, 0x7)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x40080, 0x0)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
write$auto(r0, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7\xe6\x04\x8c\x83k', 0x1000000007e)
bpf$auto_BPF_MAP_FREEZE(0x16, &(0x7f0000000040)=@bpf_attr_4={0x80, r0, 0x4414819a, r1}, 0xfc2)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0xffffffffffffffff, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x2, 0x1)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
sendto$auto(0x3, 0x0, 0xffeb, 0xe, &(0x7f0000000100)=@in={0x2, 0x4e22, @multicast2}, 0x19)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000240)='/dev/admmidi2\x00', 0x101000, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_INFO(r2, 0x810c5715, 0x0)
pwritev$auto(0x3, 0x0, 0x5, 0x3, 0x9)
ioctl$auto(0x4000000000000c8, 0x400454cc, 0x6f)

959.465112ms ago: executing program 0 (id=2397):
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$auto(0x3, 0x0, 0x100082)
read$auto_proc_single_file_operations_base(0xffffffffffffffff, &(0x7f00000000c0)=""/41, 0x11)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/icmp/ratemask\x00', 0xa0202, 0x0)
sendfile$auto(r0, r0, 0x0, 0x2)
bind$auto(0xffffffffffffffff, &(0x7f0000000100)=@nl=@unspec, 0x0)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r1 = socket(0x15, 0x5, 0x0)
r2 = getsockopt$auto(r1, 0x114, 0x2717, 0xfffffffffffffffc, 0x0)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video63\x00', 0x80800, 0x0)
read$auto_v4l2_fops_v4l2_dev(r3, &(0x7f00000001c0)=""/191, 0x1f8)
unshare$auto(0x40000080)
pwrite64$auto(0xc8, &(0x7f0000000240)='\vX\xb5n\x91p\xe6\x1eRN8\x99\b\x06e\x1cJ\x99\x00\x03\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\xf2\xff\x9e\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcd^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00F\xd7\x02\xd2\xe7?\xaaw\x89\xea\xb1\x1d\xea\xa8\xb1\xaf\xdc\xdeS\xe4\x88\x16\x8eu8\x7f\xa7\xe5\xbb\xf8\v \x90E\xd8\nw,S\xf5\x00\xd8\xda\x16\xb6C\xe6\xc0j\xae\x19\x1eU\f\x18\x14 \x05\xd9:\'\xf5\r\xd8C\xc7,\xe1\xa9wzVf\xa4\xfc\xff\xb87\xa5.\x14\x81mgI\xb2\xbc\x91o\x1c\xfd/\x88\xa0\x02n\x98C\xd3\xfcY\xf4\x98\xb3-\xec\x87\x1f\xe5\xdcn[\x19\xac\'\xc86s{ \x0f', 0xfdf2, 0x3a)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
r4 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f00000003c0), r2)
sendmsg$auto_OVS_VPORT_CMD_DEL(r2, &(0x7f0000000640)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000600)={&(0x7f0000000400)={0x1d4, r4, 0x800, 0x70bd2c, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_UPCALL_PID={0x99, 0x5, "b55d91d6e06620d0d1fabca034a4dcadd7d9093d2780870220a6c7f722229848fbea7580cd1b5139f00da47bd2202b0f2e0d979a9d73647e0cdb155c0f27deb140f00a3a77a10355363c5728339bfd40baaade2625dec27c3a7e00936a2d56e3b983b2cf85f6dfb516414ba4665da5c50c98a152e0ad35d0768985cd3e88005d6aeb3f2864e5fd54a771e8fa9253ddf8a18459b45b"}, @OVS_VPORT_ATTR_UPCALL_STATS={0x4}, @OVS_VPORT_ATTR_UPCALL_PID={0x8d, 0x5, "770f1b7c05610c71a3f4716b021621f8ae34816d3820fa4f4794baf0839c8151d387b928c8f94533c0308acfddfaea6120db5208457375cce949f7b51138e5f45d4ddf42cfdc88232562dde60868277a30b9e1438e62327ecb411465e9fa9e4b474a0aa16a6fab95310f9e240e0a776ec732b1744060b682812422ac8ec0243e2ebfe51dd197510d6f"}, @OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0xc}, @OVS_VPORT_ATTR_STATS={0x44, 0x6, {0x10, 0x40, 0x1200, 0x0, 0xc4dc, 0x0, 0x0, 0x4}}, @OVS_VPORT_ATTR_STATS={0x44, 0x6, {0x10, 0x7, 0x80, 0x2, 0x40000000000000, 0x9, 0x9, 0xff}}]}, 0x1d4}, 0x1, 0x0, 0x0, 0x20001000}, 0x4000084)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
lseek$auto(0x3, 0x2, 0x4)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f00000001c0)=0x2)
unshare$auto(0x40000080)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
socket(0x1e, 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D2\x00', 0x80980, 0x0)

917.555052ms ago: executing program 3 (id=2390):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0x7fffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYRES16, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x2400c040}, 0x400c080)
sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x0, 0x200, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x4001)
read$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffffff, 0x0, 0x0)
r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
socket(0x29, 0x2, 0x0)
bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_4={0x17, 0xffffffffffffffff, 0x4}, 0x7)
open_tree_attr$auto(0xffffffffffffff9c, 0x0, 0x100, &(0x7f00000000c0)={0x3, 0x0, 0x7fff, @raw=0x5}, 0x8)
ioctl$auto_SNDCTL_DSP_MAPOUTBUF(r1, 0x80105014, &(0x7f00000002c0)="da0a3a4aafb83b309d98890cabd687b7f915cc8724cd21d8b20f7985343495b7a7a696a4c03e7178af8bd7c9cb0863901e9f088cfe73c2b9d40483264b3db18e76af18308ca18b3f3c11c3dcfc28b69d069d49dd021c55bb571a6cc740c33026cf8ea3df656d2208d71339a8d52b3e2966a5a2d167da576d01cf639ea60cdcf7e903ad0a1480571a3a5a1514cbf982503a3c6d9df68e60628bb774666ea9c3de9786bc2c6c03027d9383209ece38acf9bdcd8d5ef214948ef462ded62381937852a9355ea70d47f48ca4aae07375")
r2 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_marker_raw\x00', 0x2, 0x0)
write$auto(r2, 0x0, 0x5)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

703.160687ms ago: executing program 2 (id=2391):
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) (async, rerun: 32)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x3000000, 0x0, 0x1, 0x0, 0x10000000000000, 0x2}, 0x895}, 0x3, 0x0) (async, rerun: 32)
r0 = getpid()
sendmsg$auto_TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f00000110c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[], 0x18}, 0x1, 0x0, 0x0, 0xc004}, 0x40) (async)
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) (async)
bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x15, 0x8}, 0x7) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0xa, 0x3, 0x100) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0xa, 0x801, 0x100)
socket(0xa, 0x3, 0x6) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r2 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f00000000c0)=@link_update={r2, @new_prog_fd=0x4, 0x91e, @old_map_fd=r1}, 0xa3) (async, rerun: 32)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (rerun: 32)
write$auto(r3, &(0x7f0000000080)='7\x00\\\xa0\x9e\xc0\xe8\xebM|\xbc\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (async)
io_uring_setup$auto(0x1d48, &(0x7f0000000340)={0x7fffffff, 0x9, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x8, 0x1, 0x7ffffffd, 0x100, 0x2000083, 0x101, 0x6, 0x8000000000000001}, {0x100, 0x2, 0x52, 0x5, 0x11, 0x101, 0x876c5, 0xc9, 0x3}})

153.988497ms ago: executing program 2 (id=2392):
mmap$auto(0x0, 0x2020009, 0x3, 0x17, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000280)='/dev/audio1\x00', 0x103042, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0x0, 0x0)
write$auto(r0, 0x0, 0x100082)
r2 = io_uring_setup$auto(0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x29, 0x2, 0x0)
r3 = socket(0x11, 0x3, 0x7)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb3, r3, 0x8001)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = io_uring_setup$auto(0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'syz_tun\x00'})
close_range$auto(r1, r2, 0xdacc)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
socket(0xa, 0x3, 0x6)
clone$auto(0x21003b46, 0x2, 0x0, 0x0, 0x6)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_fd, r5, 0x99, 0x8, 0x1, @relative_id=0x2004, 0x9}, 0x8a4)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x6)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r3, 0x0, 0x3}, 0xc)
migrate_pages$auto(0x0, 0x20000000000008, 0x0, &(0x7f00000001c0)=0x7b)
r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x440440, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r6, 0xc0045006, &(0x7f00000002c0)="d03af3074b13383fb394")
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x5)
openat$auto_lowpan_control_fops_6lowpan(0xffffffffffffff9c, &(0x7f0000000000), 0x80100, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x382541, 0x0)
unshare$auto(0x40000080)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_DRAIN(0xffffffffffffffff, 0x40045731, &(0x7f0000000080)=0xffff)

0s ago: executing program 1 (id=2393):
socket(0x9, 0x4, 0x38)
prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x9, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
read$auto_sco_debugfs_fops_(r0, &(0x7f0000000000), 0x0)
rename$auto(&(0x7f0000000140)='.\x00', 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mbind$auto(0x9, 0x84, 0x4, 0x0, 0x4080000001, 0x7e)
mmap$auto(0x7ff, 0x420009, 0x40000df, 0xeb3, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
getsockname$auto(0x3, &(0x7f0000000d00), &(0x7f0000000d40)=0x4)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D1\x00', 0x8600, 0x0)
socket(0xa, 0x1, 0x84)
socket(0x2, 0x1, 0x106)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event\x00', 0xa0301, 0x0)
write$auto(r2, 0x0, 0x4)
rseq$auto(0x0, 0x7, 0x100000, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@sco={0x1f, @none}, 0x16a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)

kernel console output (not intermixed with test programs):

38.157001][T10938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  338.157012][T10938] R13: 00007f79bf9e6128 R14: 00007fff077124f0 R15: 00007fff077125d8
[  338.157041][T10938]  </TASK>
[  338.177731][T10942] FAULT_INJECTION: forcing a failure.
[  338.177731][T10942] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  338.407270][T10942] CPU: 1 UID: 0 PID: 10942 Comm: syz.0.1131 Not tainted syzkaller #0 PREEMPT(full) 
[  338.407356][T10942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  338.407371][T10942] Call Trace:
[  338.407381][T10942]  <TASK>
[  338.407392][T10942]  dump_stack_lvl+0x16c/0x1f0
[  338.407425][T10942]  should_fail_ex+0x512/0x640
[  338.407458][T10942]  _copy_from_user+0x2e/0xd0
[  338.407488][T10942]  snd_rawmidi_kernel_write1+0x50a/0x8a0
[  338.407536][T10942]  snd_rawmidi_write+0x26e/0xc10
[  338.407565][T10942]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  338.407586][T10942]  ? __pfx_default_wake_function+0x10/0x10
[  338.407611][T10942]  ? bpf_lsm_file_permission+0x9/0x10
[  338.407635][T10942]  ? security_file_permission+0x71/0x210
[  338.407658][T10942]  ? rw_verify_area+0xcf/0x6c0
[  338.407679][T10942]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  338.407699][T10942]  vfs_write+0x2a0/0x11d0
[  338.407730][T10942]  ? __pfx_vfs_write+0x10/0x10
[  338.407751][T10942]  ? find_held_lock+0x2b/0x80
[  338.407776][T10942]  ? __fget_files+0x204/0x3c0
[  338.407810][T10942]  ? __fget_files+0x20e/0x3c0
[  338.407841][T10942]  ksys_write+0x1f8/0x250
[  338.407865][T10942]  ? __pfx_ksys_write+0x10/0x10
[  338.407898][T10942]  do_syscall_64+0xcd/0xfa0
[  338.407927][T10942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.407949][T10942] RIP: 0033:0x7fab31b8eec9
[  338.407968][T10942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.407990][T10942] RSP: 002b:00007fab2fdf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  338.408014][T10942] RAX: ffffffffffffffda RBX: 00007fab31de6090 RCX: 00007fab31b8eec9
[  338.408028][T10942] RDX: 000000100000a3d9 RSI: 0000200000000400 RDI: 0000000000000007
[  338.408044][T10942] RBP: 00007fab31c11f91 R08: 0000000000000000 R09: 0000000000000000
[  338.408057][T10942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  338.408070][T10942] R13: 00007fab31de6128 R14: 00007fab31de6090 R15: 00007ffee9cfed78
[  338.408104][T10942]  </TASK>
[  339.058169][T10944] kexec: Could not allocate control_code_buffer
[  339.225517][T10953] netlink: 'syz.3.1136': attribute type 1 has an invalid length.
[  341.295207][T10991] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  341.802580][T10995] ima: policy update failed
[  341.817996][   T30] audit: type=1802 audit(4294967373.546:9): pid=10995 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1145" res=0 errno=0
[  344.716824][T11053] HfR: entered promiscuous mode
[  346.113538][T11093] FAULT_INJECTION: forcing a failure.
[  346.113538][T11093] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  346.164107][T11093] CPU: 1 UID: 0 PID: 11093 Comm: syz.2.1168 Not tainted syzkaller #0 PREEMPT(full) 
[  346.164143][T11093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  346.164159][T11093] Call Trace:
[  346.164168][T11093]  <TASK>
[  346.164178][T11093]  dump_stack_lvl+0x16c/0x1f0
[  346.164213][T11093]  should_fail_ex+0x512/0x640
[  346.164251][T11093]  should_fail_alloc_page+0xe7/0x130
[  346.164288][T11093]  prepare_alloc_pages+0x3c2/0x610
[  346.164327][T11093]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  346.164357][T11093]  ? __lock_acquire+0xb97/0x1ce0
[  346.164406][T11093]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  346.164434][T11093]  ? do_raw_spin_lock+0x12c/0x2b0
[  346.164472][T11093]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  346.164511][T11093]  ? find_held_lock+0x2b/0x80
[  346.164547][T11093]  ? __lock_acquire+0xb97/0x1ce0
[  346.164581][T11093]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  346.164624][T11093]  ? policy_nodemask+0xea/0x4e0
[  346.164660][T11093]  alloc_pages_mpol+0x1fb/0x550
[  346.164695][T11093]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  346.164739][T11093]  folio_alloc_mpol_noprof+0x36/0x2f0
[  346.164778][T11093]  shmem_alloc_folio+0x135/0x160
[  346.164826][T11093]  shmem_alloc_and_add_folio+0x499/0xc20
[  346.164875][T11093]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  346.164915][T11093]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  346.164947][T11093]  shmem_get_folio_gfp+0x67f/0x1610
[  346.164984][T11093]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  346.165013][T11093]  ? filemap_map_pages+0xe01/0x1b70
[  346.165043][T11093]  shmem_fault+0x1fe/0xa30
[  346.165070][T11093]  ? __pfx_shmem_fault+0x10/0x10
[  346.165100][T11093]  ? __pfx_filemap_map_pages+0x10/0x10
[  346.165132][T11093]  ? __pfx_filemap_map_pages+0x10/0x10
[  346.165152][T11093]  __do_fault+0x10a/0x490
[  346.165179][T11093]  ? __pfx_filemap_map_pages+0x10/0x10
[  346.165201][T11093]  do_pte_missing+0xf4a/0x3ba0
[  346.165236][T11093]  ? find_held_lock+0x2b/0x80
[  346.165259][T11093]  ? __handle_mm_fault+0x1529/0x2aa0
[  346.165297][T11093]  __handle_mm_fault+0x1556/0x2aa0
[  346.165335][T11093]  ? mt_find+0x3e2/0xa20
[  346.165367][T11093]  ? __pfx___handle_mm_fault+0x10/0x10
[  346.165405][T11093]  ? __pfx_mt_find+0x10/0x10
[  346.165459][T11093]  ? find_vma+0xbf/0x140
[  346.165488][T11093]  ? __pfx_find_vma+0x10/0x10
[  346.165521][T11093]  handle_mm_fault+0x589/0xd10
[  346.165559][T11093]  ? __pkru_allows_pkey+0x11/0xb0
[  346.165601][T11093]  do_user_addr_fault+0x7a6/0x1370
[  346.165631][T11093]  ? rcu_is_watching+0x12/0xc0
[  346.165663][T11093]  exc_page_fault+0x64/0xc0
[  346.165693][T11093]  asm_exc_page_fault+0x26/0x30
[  346.165724][T11093] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  346.165763][T11093] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 7f 3e 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  346.165787][T11093] RSP: 0018:ffffc90003467438 EFLAGS: 00050206
[  346.165818][T11093] RAX: 0000000000000001 RBX: 000000000000ffb8 RCX: 000000000000dfb8
[  346.165835][T11093] RDX: ffffed100a32dff9 RSI: 0000000000002000 RDI: ffff888051962010
[  346.165852][T11093] RBP: 000000000000ffb8 R08: 0000000000000001 R09: ffffed100a32dff8
[  346.165869][T11093] R10: ffff88805196ffc7 R11: 0000000000000000 R12: 0000000000000000
[  346.165886][T11093] R13: ffff888022f90000 R14: ffff888051960010 R15: 0000000000000000
[  346.165924][T11093]  _copy_from_iter+0x4eb/0x1720
[  346.165966][T11093]  ? __pfx__copy_from_iter+0x10/0x10
[  346.165997][T11093]  ? sctp_addto_chunk+0xfa/0x2a0
[  346.166024][T11093]  ? __asan_memcpy+0x3c/0x60
[  346.166050][T11093]  ? sctp_make_datafrag_empty+0x1c3/0x240
[  346.166080][T11093]  ? __pfx_sctp_make_datafrag_empty+0x10/0x10
[  346.166115][T11093]  sctp_user_addto_chunk+0x84/0x240
[  346.166148][T11093]  sctp_datamsg_from_user+0x5b6/0x1330
[  346.166207][T11093]  sctp_sendmsg_to_asoc+0xae2/0x1bd0
[  346.166257][T11093]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[  346.166290][T11093]  ? do_raw_spin_lock+0x12c/0x2b0
[  346.166332][T11093]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  346.166381][T11093]  ? sctp_sendmsg_check_sflags+0x176/0x320
[  346.166417][T11093]  sctp_sendmsg+0xe99/0x1e00
[  346.166464][T11093]  ? __pfx_sctp_sendmsg+0x10/0x10
[  346.166498][T11093]  ? __pfx___might_resched+0x10/0x10
[  346.166524][T11093]  ? rcu_is_watching+0x12/0xc0
[  346.166556][T11093]  ? aa_sk_perm+0x2f4/0xb10
[  346.166585][T11093]  ? __pfx_aa_sk_perm+0x10/0x10
[  346.166606][T11093]  ? iovec_from_user+0xbb/0x140
[  346.166649][T11093]  ? __pfx_sctp_sendmsg+0x10/0x10
[  346.166687][T11093]  inet_sendmsg+0x119/0x140
[  346.166714][T11093]  ____sys_sendmsg+0x973/0xc70
[  346.166754][T11093]  ? copy_msghdr_from_user+0x10a/0x160
[  346.166784][T11093]  ? __pfx_____sys_sendmsg+0x10/0x10
[  346.166834][T11093]  ? find_held_lock+0x2b/0x80
[  346.166863][T11093]  ? futex_unqueue+0x133/0x2c0
[  346.166902][T11093]  ___sys_sendmsg+0x134/0x1d0
[  346.166934][T11093]  ? __pfx____sys_sendmsg+0x10/0x10
[  346.166984][T11093]  ? find_held_lock+0x2b/0x80
[  346.167036][T11093]  __sys_sendmmsg+0x200/0x420
[  346.167070][T11093]  ? __pfx___sys_sendmmsg+0x10/0x10
[  346.167108][T11093]  ? __pfx_do_futex+0x10/0x10
[  346.167147][T11093]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  346.167169][T11093]  ? __pfx___x64_sys_futex+0x10/0x10
[  346.167203][T11093]  __x64_sys_sendmmsg+0x9c/0x100
[  346.167225][T11093]  ? lockdep_hardirqs_on+0x7c/0x110
[  346.167246][T11093]  do_syscall_64+0xcd/0xfa0
[  346.167269][T11093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.167289][T11093] RIP: 0033:0x7f79bf78eec9
[  346.167307][T11093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  346.167325][T11093] RSP: 002b:00007f79c054e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  346.167344][T11093] RAX: ffffffffffffffda RBX: 00007f79bf9e5fa0 RCX: 00007f79bf78eec9
[  346.167357][T11093] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  346.167370][T11093] RBP: 00007f79bf811f91 R08: 0000000000000000 R09: 0000000000000000
[  346.167383][T11093] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000
[  346.167396][T11093] R13: 00007f79bf9e6038 R14: 00007f79bf9e5fa0 R15: 00007fff077125d8
[  346.167426][T11093]  </TASK>
[  347.482984][T11103] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  347.498856][T11103] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  348.439878][T11132] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1177'.
[  348.452715][T11134] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1177'.
[  348.571762][T11138] FAULT_INJECTION: forcing a failure.
[  348.571762][T11138] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  348.608438][T11138] CPU: 1 UID: 0 PID: 11138 Comm: syz.0.1178 Not tainted syzkaller #0 PREEMPT(full) 
[  348.608473][T11138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  348.608489][T11138] Call Trace:
[  348.608499][T11138]  <TASK>
[  348.608509][T11138]  dump_stack_lvl+0x16c/0x1f0
[  348.608546][T11138]  should_fail_ex+0x512/0x640
[  348.608583][T11138]  _copy_to_user+0x32/0xd0
[  348.608619][T11138]  poll_select_finish+0x339/0x6b0
[  348.608660][T11138]  ? __pfx_poll_select_finish+0x10/0x10
[  348.608703][T11138]  ? read_tsc+0x9/0x20
[  348.608731][T11138]  ? ktime_get_ts64+0x256/0x400
[  348.608773][T11138]  kern_select+0x16e/0x1e0
[  348.608796][T11138]  ? __pfx_kern_select+0x10/0x10
[  348.608821][T11138]  ? xfd_validate_state+0x61/0x180
[  348.608850][T11138]  ? __pfx_do_writev+0x10/0x10
[  348.608876][T11138]  __x64_sys_select+0xbd/0x160
[  348.608896][T11138]  ? do_syscall_64+0x91/0xfa0
[  348.608922][T11138]  ? lockdep_hardirqs_on+0x7c/0x110
[  348.608951][T11138]  do_syscall_64+0xcd/0xfa0
[  348.608982][T11138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.609009][T11138] RIP: 0033:0x7fab31b8eec9
[  348.609044][T11138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.609070][T11138] RSP: 002b:00007fab32957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  348.609097][T11138] RAX: ffffffffffffffda RBX: 00007fab31de5fa0 RCX: 00007fab31b8eec9
[  348.609116][T11138] RDX: 0000200000000100 RSI: 0000200000000080 RDI: 0000000000000006
[  348.609134][T11138] RBP: 00007fab31c11f91 R08: 0000200000000000 R09: 0000000000000000
[  348.609150][T11138] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000000
[  348.609165][T11138] R13: 00007fab31de6038 R14: 00007fab31de5fa0 R15: 00007ffee9cfed78
[  348.609200][T11138]  </TASK>
[  349.494294][T11146] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  353.926169][T11207] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1193'.
[  354.259394][T11228] netlink: 'syz.0.1198': attribute type 10 has an invalid length.
[  354.295028][T11228] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1198'.
[  354.348576][T11227] program syz.0.1198 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  355.852840][T11264] HfR: entered promiscuous mode
[  356.550215][T11273] FAULT_INJECTION: forcing a failure.
[  356.550215][T11273] name failslab, interval 1, probability 0, space 0, times 0
[  356.569327][T11273] CPU: 0 UID: 0 PID: 11273 Comm: syz.0.1207 Not tainted syzkaller #0 PREEMPT(full) 
[  356.569348][T11273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  356.569356][T11273] Call Trace:
[  356.569361][T11273]  <TASK>
[  356.569366][T11273]  dump_stack_lvl+0x16c/0x1f0
[  356.569389][T11273]  should_fail_ex+0x512/0x640
[  356.569406][T11273]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  356.569422][T11273]  should_failslab+0xc2/0x120
[  356.569441][T11273]  kmem_cache_alloc_noprof+0x75/0x6e0
[  356.569455][T11273]  ? taskstats_exit+0x654/0xbe0
[  356.569480][T11273]  ? taskstats_exit+0x654/0xbe0
[  356.569499][T11273]  ? acct_update_integrals+0x2ce/0x4a0
[  356.569511][T11273]  taskstats_exit+0x654/0xbe0
[  356.569533][T11273]  ? __pfx_taskstats_exit+0x10/0x10
[  356.569556][T11273]  ? exit_signals+0x38e/0xb40
[  356.569575][T11273]  do_exit+0x5dc/0x2bf0
[  356.569607][T11273]  ? __pfx_do_exit+0x10/0x10
[  356.569625][T11273]  ? do_raw_spin_lock+0x12c/0x2b0
[  356.569646][T11273]  ? find_held_lock+0x2b/0x80
[  356.569663][T11273]  do_group_exit+0xd3/0x2a0
[  356.569683][T11273]  get_signal+0x2671/0x26d0
[  356.569706][T11273]  ? __pfx_get_signal+0x10/0x10
[  356.569721][T11273]  ? do_futex+0x122/0x350
[  356.569740][T11273]  ? __pfx_do_futex+0x10/0x10
[  356.569759][T11273]  arch_do_signal_or_restart+0x8f/0x790
[  356.569778][T11273]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  356.569799][T11273]  ? ksys_write+0x1ac/0x250
[  356.569814][T11273]  ? __pfx_ksys_write+0x10/0x10
[  356.569832][T11273]  exit_to_user_mode_loop+0x85/0x130
[  356.569855][T11273]  do_syscall_64+0x426/0xfa0
[  356.569872][T11273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.569886][T11273] RIP: 0033:0x7fab31b8eec9
[  356.569899][T11273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.569912][T11273] RSP: 002b:00007fab329570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  356.569926][T11273] RAX: fffffffffffffe00 RBX: 00007fab31de5fa8 RCX: 00007fab31b8eec9
[  356.569936][T11273] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fab31de5fa8
[  356.569944][T11273] RBP: 00007fab31de5fa0 R08: 0000000000000000 R09: 0000000000000000
[  356.569952][T11273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  356.569960][T11273] R13: 00007fab31de6038 R14: 00007ffee9cfec90 R15: 00007ffee9cfed78
[  356.569980][T11273]  </TASK>
[  358.551507][T11324] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  359.191768][T11328] HfR: entered promiscuous mode
[  362.369395][ T5841] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  362.381405][T11423] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1241'.
[  364.092690][T11468] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1251'.
[  364.240651][T11435] Process accounting resumed
[  364.403960][ T5835] Bluetooth: hci2: command 0x0c1a tx timeout
[  364.572571][T11481] netlink: 206 bytes leftover after parsing attributes in process `syz.0.1255'.
[  367.916183][T11533] FAULT_INJECTION: forcing a failure.
[  367.916183][T11533] name fail_futex, interval 1, probability 0, space 0, times 0
[  367.975407][T11533] CPU: 0 UID: 0 PID: 11533 Comm: syz.2.1265 Not tainted syzkaller #0 PREEMPT(full) 
[  367.975439][T11533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  367.975452][T11533] Call Trace:
[  367.975459][T11533]  <TASK>
[  367.975468][T11533]  dump_stack_lvl+0x16c/0x1f0
[  367.975500][T11533]  should_fail_ex+0x512/0x640
[  367.975531][T11533]  get_futex_key+0x1d0/0x1560
[  367.975570][T11533]  ? __pfx_get_futex_key+0x10/0x10
[  367.975597][T11533]  ? __mutex_trylock_common+0xe9/0x250
[  367.975640][T11533]  futex_wake+0xea/0x530
[  367.975679][T11533]  ? __pfx_futex_wake+0x10/0x10
[  367.975729][T11533]  do_futex+0x1e3/0x350
[  367.975761][T11533]  ? __pfx_do_futex+0x10/0x10
[  367.975788][T11533]  ? __might_fault+0xe3/0x190
[  367.975825][T11533]  mm_release+0x24e/0x300
[  367.975854][T11533]  do_exit+0x68e/0x2bf0
[  367.975893][T11533]  ? __pfx_do_exit+0x10/0x10
[  367.975924][T11533]  ? do_raw_spin_lock+0x12c/0x2b0
[  367.975959][T11533]  ? find_held_lock+0x2b/0x80
[  367.975989][T11533]  do_group_exit+0xd3/0x2a0
[  367.976024][T11533]  get_signal+0x2671/0x26d0
[  367.976065][T11533]  ? __pfx_get_signal+0x10/0x10
[  367.976092][T11533]  ? do_futex+0x122/0x350
[  367.976123][T11533]  ? __pfx_do_futex+0x10/0x10
[  367.976158][T11533]  arch_do_signal_or_restart+0x8f/0x790
[  367.976190][T11533]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  367.976227][T11533]  ? ksys_write+0x1ac/0x250
[  367.976253][T11533]  ? __pfx_ksys_write+0x10/0x10
[  367.976283][T11533]  exit_to_user_mode_loop+0x85/0x130
[  367.976319][T11533]  do_syscall_64+0x426/0xfa0
[  367.976348][T11533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.976371][T11533] RIP: 0033:0x7f79bf78eec9
[  367.976391][T11533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.976423][T11533] RSP: 002b:00007f79c054e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  367.976445][T11533] RAX: fffffffffffffe00 RBX: 00007f79bf9e5fa8 RCX: 00007f79bf78eec9
[  367.976460][T11533] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f79bf9e5fa8
[  367.976474][T11533] RBP: 00007f79bf9e5fa0 R08: 0000000000000000 R09: 0000000000000000
[  367.976487][T11533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  367.976499][T11533] R13: 00007f79bf9e6038 R14: 00007fff077124f0 R15: 00007fff077125d8
[  367.976534][T11533]  </TASK>
[  368.739491][T11558] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1270'.
[  370.565161][T11586] FAULT_INJECTION: forcing a failure.
[  370.565161][T11586] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  370.620632][T11586] CPU: 1 UID: 0 PID: 11586 Comm: syz.2.1277 Not tainted syzkaller #0 PREEMPT(full) 
[  370.620676][T11586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  370.620691][T11586] Call Trace:
[  370.620701][T11586]  <TASK>
[  370.620717][T11586]  dump_stack_lvl+0x16c/0x1f0
[  370.620754][T11586]  should_fail_ex+0x512/0x640
[  370.620799][T11586]  should_fail_alloc_page+0xe7/0x130
[  370.620837][T11586]  prepare_alloc_pages+0x3c2/0x610
[  370.620870][T11586]  ? rcu_is_watching+0x12/0xc0
[  370.620905][T11586]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  370.620950][T11586]  ? __lock_acquire+0xb97/0x1ce0
[  370.621006][T11586]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  370.621035][T11586]  ? do_raw_spin_lock+0x12c/0x2b0
[  370.621074][T11586]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  370.621114][T11586]  ? find_held_lock+0x2b/0x80
[  370.621157][T11586]  ? __lock_acquire+0xb97/0x1ce0
[  370.621191][T11586]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  370.621235][T11586]  ? policy_nodemask+0xea/0x4e0
[  370.621280][T11586]  alloc_pages_mpol+0x1fb/0x550
[  370.621326][T11586]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  370.621387][T11586]  folio_alloc_mpol_noprof+0x36/0x2f0
[  370.621436][T11586]  shmem_alloc_folio+0x135/0x160
[  370.621475][T11586]  shmem_alloc_and_add_folio+0x499/0xc20
[  370.621534][T11586]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  370.621580][T11586]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  370.621621][T11586]  shmem_get_folio_gfp+0x67f/0x1610
[  370.621656][T11586]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  370.621684][T11586]  ? filemap_map_pages+0xe01/0x1b70
[  370.621717][T11586]  shmem_fault+0x1fe/0xa30
[  370.621746][T11586]  ? __pfx_shmem_fault+0x10/0x10
[  370.621779][T11586]  ? __pfx_filemap_map_pages+0x10/0x10
[  370.621814][T11586]  ? __pfx_filemap_map_pages+0x10/0x10
[  370.621838][T11586]  __do_fault+0x10a/0x490
[  370.621867][T11586]  ? __pfx_filemap_map_pages+0x10/0x10
[  370.621890][T11586]  do_pte_missing+0xf4a/0x3ba0
[  370.621929][T11586]  ? find_held_lock+0x2b/0x80
[  370.621956][T11586]  ? __handle_mm_fault+0x1529/0x2aa0
[  370.622000][T11586]  __handle_mm_fault+0x1556/0x2aa0
[  370.622043][T11586]  ? mt_find+0x3e2/0xa20
[  370.622077][T11586]  ? __pfx___handle_mm_fault+0x10/0x10
[  370.622113][T11586]  ? __pfx_mt_find+0x10/0x10
[  370.622165][T11586]  ? find_vma+0xbf/0x140
[  370.622193][T11586]  ? __pfx_find_vma+0x10/0x10
[  370.622226][T11586]  handle_mm_fault+0x589/0xd10
[  370.622266][T11586]  ? __pkru_allows_pkey+0x11/0xb0
[  370.622307][T11586]  do_user_addr_fault+0x7a6/0x1370
[  370.622341][T11586]  ? rcu_is_watching+0x12/0xc0
[  370.622373][T11586]  exc_page_fault+0x64/0xc0
[  370.622404][T11586]  asm_exc_page_fault+0x26/0x30
[  370.622430][T11586] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  370.622468][T11586] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 7f 3e 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  370.622493][T11586] RSP: 0018:ffffc9000471f9c0 EFLAGS: 00050202
[  370.622515][T11586] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000003048
[  370.622537][T11586] RDX: ffffed100a4af409 RSI: 0000000000007000 RDI: ffff888052577000
[  370.622554][T11586] RBP: 000000000000a048 R08: 0000000000000001 R09: ffffed100a4af408
[  370.622571][T11586] R10: ffff88805257a047 R11: 0000000000000000 R12: 0000000000000000
[  370.622588][T11586] R13: ffff888052570000 R14: 1ffff920008e3f43 R15: ffffc9000471fd7c
[  370.622626][T11586]  _copy_from_user+0x98/0xd0
[  370.622661][T11586]  ____sys_sendmsg+0x607/0xc70
[  370.622703][T11586]  ? __pfx_____sys_sendmsg+0x10/0x10
[  370.622746][T11586]  ? find_held_lock+0x2b/0x80
[  370.622774][T11586]  ? futex_unqueue+0x133/0x2c0
[  370.622813][T11586]  ___sys_sendmsg+0x134/0x1d0
[  370.622846][T11586]  ? __pfx____sys_sendmsg+0x10/0x10
[  370.622896][T11586]  ? find_held_lock+0x2b/0x80
[  370.622946][T11586]  __sys_sendmmsg+0x200/0x420
[  370.622982][T11586]  ? __pfx___sys_sendmmsg+0x10/0x10
[  370.623025][T11586]  ? __pfx_do_futex+0x10/0x10
[  370.623080][T11586]  ? xfd_validate_state+0x61/0x180
[  370.623124][T11586]  __x64_sys_sendmmsg+0x9c/0x100
[  370.623148][T11586]  ? lockdep_hardirqs_on+0x7c/0x110
[  370.623174][T11586]  do_syscall_64+0xcd/0xfa0
[  370.623205][T11586]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.623231][T11586] RIP: 0033:0x7f79bf78eec9
[  370.623253][T11586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.623278][T11586] RSP: 002b:00007f79c054e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  370.623302][T11586] RAX: ffffffffffffffda RBX: 00007f79bf9e5fa0 RCX: 00007f79bf78eec9
[  370.623320][T11586] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  370.623337][T11586] RBP: 00007f79bf811f91 R08: 0000000000000000 R09: 0000000000000000
[  370.623354][T11586] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000
[  370.623371][T11586] R13: 00007f79bf9e6038 R14: 00007f79bf9e5fa0 R15: 00007fff077125d8
[  370.623409][T11586]  </TASK>
[  371.982053][T11610] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1281'.
[  372.632544][T11630] random: crng reseeded on system resumption
[  374.873769][T11673] cgroup: fork rejected by pids controller in /syz0
[  375.296185][T11763] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1300'.
[  375.331962][T11763] netlink: 13 bytes leftover after parsing attributes in process `syz.2.1300'.
[  378.651137][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  378.657526][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  379.283376][T11899] zswap: compressor  not available
[  380.165102][T11914] openvswitch: HfR: Dropping previously announced user features
[  382.792290][T11954] FAULT_INJECTION: forcing a failure.
[  382.792290][T11954] name failslab, interval 1, probability 0, space 0, times 0
[  382.805233][T11954] CPU: 1 UID: 0 PID: 11954 Comm: syz.2.1327 Not tainted syzkaller #0 PREEMPT(full) 
[  382.805266][T11954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  382.805280][T11954] Call Trace:
[  382.805289][T11954]  <TASK>
[  382.805298][T11954]  dump_stack_lvl+0x16c/0x1f0
[  382.805331][T11954]  should_fail_ex+0x512/0x640
[  382.805360][T11954]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  382.805389][T11954]  should_failslab+0xc2/0x120
[  382.805420][T11954]  kmem_cache_alloc_noprof+0x75/0x6e0
[  382.805445][T11954]  ? __kernfs_new_node+0xd2/0x8e0
[  382.805481][T11954]  ? __kernfs_new_node+0xd2/0x8e0
[  382.805507][T11954]  __kernfs_new_node+0xd2/0x8e0
[  382.805543][T11954]  ? __pfx___kernfs_new_node+0x10/0x10
[  382.805581][T11954]  ? find_held_lock+0x2b/0x80
[  382.805612][T11954]  ? kernfs_root+0xee/0x2a0
[  382.805649][T11954]  kernfs_new_node+0x13c/0x1e0
[  382.805692][T11954]  __kernfs_create_file+0x53/0x350
[  382.805723][T11954]  sysfs_add_file_mode_ns+0x207/0x3c0
[  382.805764][T11954]  internal_create_group+0x578/0xf30
[  382.805807][T11954]  ? __pfx_internal_create_group+0x10/0x10
[  382.805847][T11954]  ? kernfs_create_link+0x1bd/0x240
[  382.805879][T11954]  internal_create_groups+0x9d/0x150
[  382.805916][T11954]  device_add+0x731/0x1aa0
[  382.805953][T11954]  ? __pfx_device_add+0x10/0x10
[  382.805981][T11954]  ? __pfx___mutex_lock+0x10/0x10
[  382.806026][T11954]  input_register_device+0x7e8/0x1180
[  382.806070][T11954]  uinput_ioctl_handler.isra.0+0x1357/0x1df0
[  382.806100][T11954]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  382.806138][T11954]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  382.806184][T11954]  ? find_held_lock+0x2b/0x80
[  382.806232][T11954]  ? __pfx_uinput_ioctl+0x10/0x10
[  382.806261][T11954]  __x64_sys_ioctl+0x18b/0x210
[  382.806302][T11954]  do_syscall_64+0xcd/0xfa0
[  382.806335][T11954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.806362][T11954] RIP: 0033:0x7f79bf78eec9
[  382.806383][T11954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.806408][T11954] RSP: 002b:00007f79c054e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  382.806433][T11954] RAX: ffffffffffffffda RBX: 00007f79bf9e5fa0 RCX: 00007f79bf78eec9
[  382.806452][T11954] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000006
[  382.806467][T11954] RBP: 00007f79bf811f91 R08: 0000000000000000 R09: 0000000000000000
[  382.806483][T11954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  382.806497][T11954] R13: 00007f79bf9e6038 R14: 00007f79bf9e5fa0 R15: 00007fff077125d8
[  382.806532][T11954]  </TASK>
[  383.672823][T11963] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1329'.
[  384.204541][T11975] FAULT_INJECTION: forcing a failure.
[  384.204541][T11975] name failslab, interval 1, probability 0, space 0, times 0
[  384.220311][T11975] CPU: 1 UID: 0 PID: 11975 Comm: syz.2.1331 Not tainted syzkaller #0 PREEMPT(full) 
[  384.220345][T11975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  384.220361][T11975] Call Trace:
[  384.220370][T11975]  <TASK>
[  384.220381][T11975]  dump_stack_lvl+0x16c/0x1f0
[  384.220416][T11975]  should_fail_ex+0x512/0x640
[  384.220447][T11975]  ? __kmalloc_cache_noprof+0x5f/0x780
[  384.220488][T11975]  should_failslab+0xc2/0x120
[  384.220518][T11975]  __kmalloc_cache_noprof+0x72/0x780
[  384.220563][T11975]  ? __pfx_down_read+0x10/0x10
[  384.220597][T11975]  ? posix_clock_open+0xc8/0x290
[  384.220633][T11975]  ? posix_clock_open+0xc8/0x290
[  384.220661][T11975]  posix_clock_open+0xc8/0x290
[  384.220690][T11975]  ? __pfx_posix_clock_open+0x10/0x10
[  384.220721][T11975]  chrdev_open+0x234/0x6a0
[  384.220749][T11975]  ? __pfx_apparmor_file_open+0x10/0x10
[  384.220784][T11975]  ? __pfx_chrdev_open+0x10/0x10
[  384.220816][T11975]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  384.220851][T11975]  do_dentry_open+0x982/0x1530
[  384.220881][T11975]  ? __pfx_chrdev_open+0x10/0x10
[  384.220918][T11975]  vfs_open+0x82/0x3f0
[  384.220957][T11975]  path_openat+0x1de4/0x2cb0
[  384.220998][T11975]  ? __pfx_path_openat+0x10/0x10
[  384.221043][T11975]  do_filp_open+0x20b/0x470
[  384.221074][T11975]  ? __pfx_do_filp_open+0x10/0x10
[  384.221130][T11975]  ? alloc_fd+0x471/0x7d0
[  384.221166][T11975]  do_sys_openat2+0x11b/0x1d0
[  384.221201][T11975]  ? __pfx_do_sys_openat2+0x10/0x10
[  384.221251][T11975]  __x64_sys_openat+0x174/0x210
[  384.221286][T11975]  ? __pfx___x64_sys_openat+0x10/0x10
[  384.221337][T11975]  do_syscall_64+0xcd/0xfa0
[  384.221369][T11975]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.221396][T11975] RIP: 0033:0x7f79bf78eec9
[  384.221418][T11975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  384.221441][T11975] RSP: 002b:00007f79bd9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  384.221462][T11975] RAX: ffffffffffffffda RBX: 00007f79bf9e6090 RCX: 00007f79bf78eec9
[  384.221477][T11975] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c
[  384.221494][T11975] RBP: 00007f79bf811f91 R08: 0000000000000000 R09: 0000000000000000
[  384.221509][T11975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  384.221521][T11975] R13: 00007f79bf9e6128 R14: 00007f79bf9e6090 R15: 00007fff077125d8
[  384.221553][T11975]  </TASK>
[  387.368924][ T5835] Bluetooth: hci0: unexpected event 0x01 length: 5 > 1
[  387.869588][T11692] syz.0.1295 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  388.194063][T11692] CPU: 1 UID: 0 PID: 11692 Comm: syz.0.1295 Not tainted syzkaller #0 PREEMPT(full) 
[  388.194097][T11692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  388.194111][T11692] Call Trace:
[  388.194120][T11692]  <TASK>
[  388.194129][T11692]  dump_stack_lvl+0x16c/0x1f0
[  388.194164][T11692]  dump_header+0x101/0x930
[  388.194207][T11692]  oom_kill_process+0x272/0xa40
[  388.194237][T11692]  out_of_memory+0x350/0x1700
[  388.194270][T11692]  ? __pfx_out_of_memory+0x10/0x10
[  388.194305][T11692]  mem_cgroup_out_of_memory+0x118/0x130
[  388.194342][T11692]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  388.194387][T11692]  ? do_raw_spin_unlock+0x172/0x230
[  388.194430][T11692]  try_charge_memcg+0x687/0xd40
[  388.194466][T11692]  ? __pfx_try_charge_memcg+0x10/0x10
[  388.194496][T11692]  ? __print_lock_name+0x81/0xe0
[  388.194522][T11692]  ? rcu_read_unlock+0x17/0x60
[  388.194564][T11692]  charge_memcg+0x8a/0x230
[  388.194594][T11692]  __mem_cgroup_charge+0x2b/0x1e0
[  388.194628][T11692]  shmem_alloc_and_add_folio+0x514/0xc20
[  388.194683][T11692]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  388.194725][T11692]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  388.194760][T11692]  shmem_get_folio_gfp+0x67f/0x1610
[  388.194793][T11692]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  388.194830][T11692]  shmem_write_begin+0x160/0x300
[  388.194859][T11692]  ? __pfx_shmem_write_begin+0x10/0x10
[  388.194882][T11692]  ? timestamp_truncate+0x21e/0x2d0
[  388.194910][T11692]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  388.194948][T11692]  generic_perform_write+0x3c4/0x900
[  388.194997][T11692]  ? __pfx_generic_perform_write+0x10/0x10
[  388.195035][T11692]  ? inode_needs_update_time.part.0+0x191/0x270
[  388.195073][T11692]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  388.195101][T11692]  shmem_file_write_iter+0x10e/0x140
[  388.195134][T11692]  __kernel_write_iter+0x31a/0xb10
[  388.195165][T11692]  ? __pfx___kernel_write_iter+0x10/0x10
[  388.195191][T11692]  ? __up_read+0x1f8/0x750
[  388.195231][T11692]  ? dump_user_range+0x756/0xb70
[  388.195263][T11692]  dump_user_range+0x413/0xb70
[  388.195296][T11692]  ? __pfx_dump_user_range+0x10/0x10
[  388.195321][T11692]  ? elf_coredump_extra_notes_write+0xbd/0x4f0
[  388.195365][T11692]  ? __pfx_writenote+0x10/0x10
[  388.195404][T11692]  elf_core_dump+0x29c3/0x3c00
[  388.195451][T11692]  ? __pfx_elf_core_dump+0x10/0x10
[  388.195475][T11692]  ? finish_task_switch.isra.0+0x2fa/0xc10
[  388.195506][T11692]  ? trace_sched_exit_tp+0xd1/0x120
[  388.195549][T11692]  ? 0xffffffffff600000
[  388.195575][T11692]  ? lockdep_hardirqs_on+0x7c/0x110
[  388.195612][T11692]  ? __pfx___schedule+0x10/0x10
[  388.195689][T11692]  ? vfs_coredump+0x2b9c/0x5670
[  388.195710][T11692]  vfs_coredump+0x2b9c/0x5670
[  388.195749][T11692]  ? __pfx_vfs_coredump+0x10/0x10
[  388.195774][T11692]  ? __lock_acquire+0x62e/0x1ce0
[  388.195822][T11692]  ? lock_acquire+0x179/0x350
[  388.195872][T11692]  ? is_bpf_text_address+0x8a/0x1a0
[  388.195909][T11692]  ? bpf_ksym_find+0x124/0x1c0
[  388.195946][T11692]  ? unwind_get_return_address+0x59/0xa0
[  388.195972][T11692]  ? arch_stack_walk+0xa6/0x100
[  388.196012][T11692]  ? stack_trace_save+0x8e/0xc0
[  388.196039][T11692]  ? __pfx_stack_trace_save+0x10/0x10
[  388.196067][T11692]  ? stack_depot_save_flags+0x29/0x9c0
[  388.196097][T11692]  ? __lock_acquire+0xb97/0x1ce0
[  388.196197][T11692]  ? proc_coredump_connector+0x2d1/0x4f0
[  388.196231][T11692]  ? __pfx_proc_coredump_connector+0x10/0x10
[  388.196274][T11692]  ? rcu_is_watching+0x12/0xc0
[  388.196306][T11692]  get_signal+0x22e1/0x26d0
[  388.196344][T11692]  ? force_sig_fault+0xc4/0x100
[  388.196373][T11692]  ? __pfx_get_signal+0x10/0x10
[  388.196407][T11692]  arch_do_signal_or_restart+0x8f/0x790
[  388.196434][T11692]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  388.196455][T11692]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  388.196505][T11692]  irqentry_exit_to_user_mode+0x176/0x310
[  388.196535][T11692]  asm_exc_page_fault+0x26/0x30
[  388.196559][T11692] RIP: 0033:0x400fff
[  388.196584][T11692] Code: Unable to access opcode bytes at 0x400fd5.
[  388.196595][T11692] RSP: 002b:0000000000000002 EFLAGS: 00010206
[  388.196613][T11692] RAX: 0000000000000000 RBX: 00007fab31de6450 RCX: 00007fab31b8eec9
[  388.196629][T11692] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46
[  388.196643][T11692] RBP: 00007fab31c11f91 R08: 0000000000000002 R09: 0000000000000000
[  388.196657][T11692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  388.196677][T11692] R13: 00007fab31de64e8 R14: 00007fab31de6450 R15: 00007ffee9cfed78
[  388.196715][T11692]  </TASK>
[  388.196724][T11692] memory: usage 307200kB, limit 307200kB, failcnt 21048
[  388.661987][T11692] memory+swap: usage 431704kB, limit 9007199254740988kB, failcnt 0
[  388.670015][T11692] kmem: usage 4524kB, limit 9007199254740988kB, failcnt 0
[  388.681527][T11692] Memory cgroup stats for /syz0:
[  388.681823][T11692] cache 305377280
[  388.690645][T11692] rss 4440064
[  388.696953][T11692] rss_huge 0
[  388.700259][T11692] shmem 305377280
[  388.704127][T11692] mapped_file 4096
[  388.707933][T11692] dirty 0
[  388.710915][T11692] writeback 0
[  388.714293][T11692] workingset_refault_anon 3978
[  388.719156][T11692] workingset_refault_file 7165
[  388.724011][T11692] swap 127492096
[  388.728753][T11692] swapcached 122880
[  388.732583][T11692] pgpgin 397048
[  388.736156][T11692] pgpgout 322912
[  388.739753][T11692] pgfault 371704
[  388.743339][T11692] pgmajfault 1056
[  388.746985][T11692] inactive_anon 181440512
[  388.751324][T11692] active_anon 128499712
[  388.755655][T11692] inactive_file 0
[  388.759295][T11692] active_file 0
[  388.762831][T11692] unevictable 0
[  388.766394][T11692] hierarchical_memory_limit 314572800
[  388.771779][T11692] hierarchical_memsw_limit 9223372036854771712
[  388.778043][T11692] total_cache 305377280
[  388.782203][T11692] total_rss 4440064
[  388.786108][T11692] total_rss_huge 0
[  388.789834][T11692] total_shmem 305377280
[  388.794082][T11692] total_mapped_file 4096
[  388.798417][T11692] total_dirty 0
[  388.801899][T11692] total_writeback 0
[  388.813181][T11692] total_workingset_refault_anon 3978
[  388.818510][T11692] total_workingset_refault_file 7165
[  388.833188][T11692] total_swap 127492096
[  388.837300][T11692] total_swapcached 122880
[  388.841648][T11692] total_pgpgin 397048
[  388.853187][T11692] total_pgpgout 322912
[  388.857311][T11692] total_pgfault 371704
[  388.861384][T11692] total_pgmajfault 1056
[  388.873206][T11692] total_inactive_anon 181440512
[  388.878122][T11692] total_active_anon 128499712
[  388.882812][T11692] total_inactive_file 0
[  388.903941][T11692] total_active_file 0
[  388.907973][T11692] total_unevictable 0
[  388.911966][T11692] anon_cost 0
[  388.915399][T11692] file_cost 0
[  388.918694][T11692] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.1295,pid=11709,uid=0
[  388.936515][T11692] Memory cgroup out of memory: Killed process 11709 (syz.0.1295) total-vm:103204kB, anon-rss:5328kB, file-rss:40624kB, shmem-rss:0kB, UID:0 pgtables:192kB oom_score_adj:1000
[  392.831015][T11691] syz.0.1295 (11691) used greatest stack depth: 18904 bytes left
[  394.608465][T12055] FAULT_INJECTION: forcing a failure.
[  394.608465][T12055] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  394.634804][T12055] CPU: 1 UID: 0 PID: 12055 Comm: syz.0.1343 Not tainted syzkaller #0 PREEMPT(full) 
[  394.634838][T12055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  394.634853][T12055] Call Trace:
[  394.634862][T12055]  <TASK>
[  394.634872][T12055]  dump_stack_lvl+0x16c/0x1f0
[  394.634908][T12055]  should_fail_ex+0x512/0x640
[  394.634945][T12055]  should_fail_alloc_page+0xe7/0x130
[  394.634982][T12055]  prepare_alloc_pages+0x3c2/0x610
[  394.635016][T12055]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.635047][T12055]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  394.635094][T12055]  ? __lock_acquire+0xb97/0x1ce0
[  394.635128][T12055]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  394.635182][T12055]  ? __pfx___mutex_trylock_common+0x10/0x10
[  394.635222][T12055]  ? __pfx___might_resched+0x10/0x10
[  394.635251][T12055]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  394.635296][T12055]  ? policy_nodemask+0xea/0x4e0
[  394.635332][T12055]  alloc_pages_mpol+0x1fb/0x550
[  394.635367][T12055]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  394.635403][T12055]  ? __pfx___mutex_lock+0x10/0x10
[  394.635443][T12055]  ___kmalloc_large_node+0xed/0x160
[  394.635484][T12055]  __kmalloc_large_noprof+0x1c/0x70
[  394.635520][T12055]  uhid_char_open+0x24/0x250
[  394.635553][T12055]  ? __pfx_uhid_char_open+0x10/0x10
[  394.635586][T12055]  misc_open+0x26a/0x450
[  394.635616][T12055]  ? __pfx_misc_open+0x10/0x10
[  394.635645][T12055]  chrdev_open+0x234/0x6a0
[  394.635674][T12055]  ? __pfx_apparmor_file_open+0x10/0x10
[  394.635709][T12055]  ? __pfx_chrdev_open+0x10/0x10
[  394.635741][T12055]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  394.635776][T12055]  do_dentry_open+0x982/0x1530
[  394.635806][T12055]  ? __pfx_chrdev_open+0x10/0x10
[  394.635844][T12055]  vfs_open+0x82/0x3f0
[  394.635884][T12055]  path_openat+0x1de4/0x2cb0
[  394.635925][T12055]  ? __pfx_path_openat+0x10/0x10
[  394.635963][T12055]  do_filp_open+0x20b/0x470
[  394.635992][T12055]  ? __pfx_do_filp_open+0x10/0x10
[  394.636047][T12055]  ? alloc_fd+0x471/0x7d0
[  394.636084][T12055]  do_sys_openat2+0x11b/0x1d0
[  394.636119][T12055]  ? __pfx_do_sys_openat2+0x10/0x10
[  394.636177][T12055]  __x64_sys_openat+0x174/0x210
[  394.636216][T12055]  ? __pfx___x64_sys_openat+0x10/0x10
[  394.636270][T12055]  do_syscall_64+0xcd/0xfa0
[  394.636303][T12055]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.636329][T12055] RIP: 0033:0x7fab31b8eec9
[  394.636350][T12055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  394.636376][T12055] RSP: 002b:00007fab2fdf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  394.636402][T12055] RAX: ffffffffffffffda RBX: 00007fab31de6090 RCX: 00007fab31b8eec9
[  394.636420][T12055] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  394.636443][T12055] RBP: 00007fab31c11f91 R08: 0000000000000000 R09: 0000000000000000
[  394.636460][T12055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  394.636476][T12055] R13: 00007fab31de6128 R14: 00007fab31de6090 R15: 00007ffee9cfed78
[  394.636515][T12055]  </TASK>
[  395.236986][T12073] syz.3.1348 (12073): attempted to duplicate a private mapping with mremap.  This is not supported.
[  395.531109][T12075] FAULT_INJECTION: forcing a failure.
[  395.531109][T12075] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  395.546796][T12075] CPU: 1 UID: 0 PID: 12075 Comm: syz.0.1349 Not tainted syzkaller #0 PREEMPT(full) 
[  395.546833][T12075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  395.546849][T12075] Call Trace:
[  395.546857][T12075]  <TASK>
[  395.546867][T12075]  dump_stack_lvl+0x16c/0x1f0
[  395.546903][T12075]  should_fail_ex+0x512/0x640
[  395.546939][T12075]  should_fail_alloc_page+0xe7/0x130
[  395.546974][T12075]  prepare_alloc_pages+0x3c2/0x610
[  395.547006][T12075]  ? rcu_is_watching+0x12/0xc0
[  395.547038][T12075]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  395.547068][T12075]  ? __lock_acquire+0xb97/0x1ce0
[  395.547118][T12075]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  395.547145][T12075]  ? do_raw_spin_lock+0x12c/0x2b0
[  395.547190][T12075]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  395.547227][T12075]  ? find_held_lock+0x2b/0x80
[  395.547264][T12075]  ? __lock_acquire+0xb97/0x1ce0
[  395.547296][T12075]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  395.547345][T12075]  ? policy_nodemask+0xea/0x4e0
[  395.547382][T12075]  alloc_pages_mpol+0x1fb/0x550
[  395.547419][T12075]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  395.547463][T12075]  folio_alloc_mpol_noprof+0x36/0x2f0
[  395.547504][T12075]  shmem_alloc_folio+0x135/0x160
[  395.547542][T12075]  shmem_alloc_and_add_folio+0x499/0xc20
[  395.547592][T12075]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  395.547635][T12075]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  395.547671][T12075]  shmem_get_folio_gfp+0x67f/0x1610
[  395.547705][T12075]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  395.547733][T12075]  ? filemap_map_pages+0xe01/0x1b70
[  395.547764][T12075]  shmem_fault+0x1fe/0xa30
[  395.547793][T12075]  ? __pfx_shmem_fault+0x10/0x10
[  395.547825][T12075]  ? __pfx_filemap_map_pages+0x10/0x10
[  395.547879][T12075]  ? __pfx_filemap_map_pages+0x10/0x10
[  395.547902][T12075]  __do_fault+0x10a/0x490
[  395.547933][T12075]  ? __pfx_filemap_map_pages+0x10/0x10
[  395.547956][T12075]  do_pte_missing+0xf4a/0x3ba0
[  395.547995][T12075]  ? find_held_lock+0x2b/0x80
[  395.548022][T12075]  ? __handle_mm_fault+0x1529/0x2aa0
[  395.548065][T12075]  __handle_mm_fault+0x1556/0x2aa0
[  395.548106][T12075]  ? mt_find+0x3e2/0xa20
[  395.548139][T12075]  ? __pfx___handle_mm_fault+0x10/0x10
[  395.548174][T12075]  ? __pfx_mt_find+0x10/0x10
[  395.548225][T12075]  ? find_vma+0xbf/0x140
[  395.548253][T12075]  ? __pfx_find_vma+0x10/0x10
[  395.548287][T12075]  handle_mm_fault+0x589/0xd10
[  395.548326][T12075]  ? __pkru_allows_pkey+0x11/0xb0
[  395.548373][T12075]  do_user_addr_fault+0x7a6/0x1370
[  395.548402][T12075]  ? rcu_is_watching+0x12/0xc0
[  395.548434][T12075]  exc_page_fault+0x64/0xc0
[  395.548465][T12075]  asm_exc_page_fault+0x26/0x30
[  395.548490][T12075] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  395.548526][T12075] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 7f 3e 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  395.548551][T12075] RSP: 0018:ffffc90004cbf9c0 EFLAGS: 00050206
[  395.548572][T12075] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000009403
[  395.548587][T12075] RDX: ffffed100903be80 RSI: 0000000000006000 RDI: ffff8880481d6000
[  395.548603][T12075] RBP: 000000000000f403 R08: 0000000000000001 R09: ffffed100903be80
[  395.548619][T12075] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000000
[  395.548634][T12075] R13: ffff8880481d0000 R14: 1ffff92000997f43 R15: ffffc90004cbfd7c
[  395.548671][T12075]  _copy_from_user+0x98/0xd0
[  395.548705][T12075]  ____sys_sendmsg+0x607/0xc70
[  395.548747][T12075]  ? __pfx_____sys_sendmsg+0x10/0x10
[  395.548789][T12075]  ? find_held_lock+0x2b/0x80
[  395.548816][T12075]  ? futex_unqueue+0x133/0x2c0
[  395.548854][T12075]  ___sys_sendmsg+0x134/0x1d0
[  395.548887][T12075]  ? __pfx____sys_sendmsg+0x10/0x10
[  395.548930][T12075]  ? find_held_lock+0x2b/0x80
[  395.548977][T12075]  __sys_sendmmsg+0x200/0x420
[  395.549012][T12075]  ? __pfx___sys_sendmmsg+0x10/0x10
[  395.549053][T12075]  ? __pfx_do_futex+0x10/0x10
[  395.549108][T12075]  ? xfd_validate_state+0x61/0x180
[  395.549151][T12075]  __x64_sys_sendmmsg+0x9c/0x100
[  395.549180][T12075]  ? lockdep_hardirqs_on+0x7c/0x110
[  395.549208][T12075]  do_syscall_64+0xcd/0xfa0
[  395.549240][T12075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  395.549265][T12075] RIP: 0033:0x7fab31b8eec9
[  395.549285][T12075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  395.549307][T12075] RSP: 002b:00007fab32957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  395.549329][T12075] RAX: ffffffffffffffda RBX: 00007fab31de5fa0 RCX: 00007fab31b8eec9
[  395.549353][T12075] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  395.549368][T12075] RBP: 00007fab31c11f91 R08: 0000000000000000 R09: 0000000000000000
[  395.549381][T12075] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000
[  395.549393][T12075] R13: 00007fab31de6038 R14: 00007fab31de5fa0 R15: 00007ffee9cfed78
[  395.549425][T12075]  </TASK>
[  396.222902][T12080] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1350'.
[  396.251403][T12058] Process accounting paused
[  396.411922][T12086] Invalid ELF header magic: != ELF
[  396.466726][T12091] serio: Serial port pty6
[  397.832536][T12107] random: crng reseeded on system resumption
[  399.237262][T12155] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  399.264280][T12153] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  399.917697][T12167] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1368'.
[  400.070965][T12168] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  400.186584][T12170] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  400.579326][T12168] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1367'.
[  401.113869][T12186] FAULT_INJECTION: forcing a failure.
[  401.113869][T12186] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  401.132928][T12193] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1373'.
[  401.157167][T12186] CPU: 0 UID: 0 PID: 12186 Comm: syz.0.1371 Not tainted syzkaller #0 PREEMPT(full) 
[  401.157203][T12186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  401.157220][T12186] Call Trace:
[  401.157229][T12186]  <TASK>
[  401.157239][T12186]  dump_stack_lvl+0x16c/0x1f0
[  401.157277][T12186]  should_fail_ex+0x512/0x640
[  401.157314][T12186]  should_fail_alloc_page+0xe7/0x130
[  401.157350][T12186]  prepare_alloc_pages+0x3c2/0x610
[  401.157386][T12186]  ? rcu_is_watching+0x12/0xc0
[  401.157417][T12186]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  401.157444][T12186]  ? __lock_acquire+0xb97/0x1ce0
[  401.157492][T12186]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  401.157518][T12186]  ? do_raw_spin_lock+0x12c/0x2b0
[  401.157554][T12186]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  401.157589][T12186]  ? find_held_lock+0x2b/0x80
[  401.157623][T12186]  ? __lock_acquire+0xb97/0x1ce0
[  401.157655][T12186]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  401.157698][T12186]  ? policy_nodemask+0xea/0x4e0
[  401.157734][T12186]  alloc_pages_mpol+0x1fb/0x550
[  401.157780][T12186]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  401.157825][T12186]  folio_alloc_mpol_noprof+0x36/0x2f0
[  401.157864][T12186]  shmem_alloc_folio+0x135/0x160
[  401.157900][T12186]  shmem_alloc_and_add_folio+0x499/0xc20
[  401.157946][T12186]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  401.157986][T12186]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  401.158018][T12186]  shmem_get_folio_gfp+0x67f/0x1610
[  401.158050][T12186]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  401.158075][T12186]  ? filemap_map_pages+0xe01/0x1b70
[  401.158104][T12186]  shmem_fault+0x1fe/0xa30
[  401.158130][T12186]  ? __pfx_shmem_fault+0x10/0x10
[  401.158159][T12186]  ? __pfx_filemap_map_pages+0x10/0x10
[  401.158182][T12186]  ? __pfx_filemap_map_pages+0x10/0x10
[  401.158194][T12186]  __do_fault+0x10a/0x490
[  401.158210][T12186]  ? __pfx_filemap_map_pages+0x10/0x10
[  401.158222][T12186]  do_pte_missing+0xf4a/0x3ba0
[  401.158243][T12186]  ? find_held_lock+0x2b/0x80
[  401.158267][T12186]  ? __handle_mm_fault+0x1529/0x2aa0
[  401.158298][T12186]  __handle_mm_fault+0x1556/0x2aa0
[  401.158324][T12186]  ? mt_find+0x3e2/0xa20
[  401.158344][T12186]  ? __pfx___handle_mm_fault+0x10/0x10
[  401.158363][T12186]  ? __pfx_mt_find+0x10/0x10
[  401.158391][T12186]  ? find_vma+0xbf/0x140
[  401.158406][T12186]  ? __pfx_find_vma+0x10/0x10
[  401.158424][T12186]  handle_mm_fault+0x589/0xd10
[  401.158449][T12186]  ? __pkru_allows_pkey+0x11/0xb0
[  401.158472][T12186]  do_user_addr_fault+0x7a6/0x1370
[  401.158492][T12186]  ? rcu_is_watching+0x12/0xc0
[  401.158512][T12186]  exc_page_fault+0x64/0xc0
[  401.158529][T12186]  asm_exc_page_fault+0x26/0x30
[  401.158542][T12186] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  401.158563][T12186] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 7f 3e 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  401.158577][T12186] RSP: 0018:ffffc9000215f9c0 EFLAGS: 00050206
[  401.158590][T12186] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000019ff8
[  401.158598][T12186] RDX: ffffed100a347fff RSI: 0000000000006000 RDI: ffff888051a26000
[  401.158607][T12186] RBP: 000000000001fff8 R08: 0000000000000001 R09: ffffed100a347ffe
[  401.158616][T12186] R10: ffff888051a3fff7 R11: 0000000000000000 R12: 0000000000000000
[  401.158624][T12186] R13: ffff888051a20000 R14: 1ffff9200042bf43 R15: ffffc9000215fd7c
[  401.158644][T12186]  _copy_from_user+0x98/0xd0
[  401.158664][T12186]  ____sys_sendmsg+0x607/0xc70
[  401.158687][T12186]  ? __pfx_____sys_sendmsg+0x10/0x10
[  401.158711][T12186]  ? find_held_lock+0x2b/0x80
[  401.158725][T12186]  ? futex_unqueue+0x133/0x2c0
[  401.158751][T12186]  ___sys_sendmsg+0x134/0x1d0
[  401.158770][T12186]  ? __pfx____sys_sendmsg+0x10/0x10
[  401.158797][T12186]  ? find_held_lock+0x2b/0x80
[  401.158825][T12186]  __sys_sendmmsg+0x200/0x420
[  401.158844][T12186]  ? __pfx___sys_sendmmsg+0x10/0x10
[  401.158867][T12186]  ? __pfx_do_futex+0x10/0x10
[  401.158897][T12186]  ? xfd_validate_state+0x61/0x180
[  401.158921][T12186]  __x64_sys_sendmmsg+0x9c/0x100
[  401.158937][T12186]  ? lockdep_hardirqs_on+0x7c/0x110
[  401.158952][T12186]  do_syscall_64+0xcd/0xfa0
[  401.158969][T12186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.158982][T12186] RIP: 0033:0x7fab31b8eec9
[  401.158998][T12186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.159012][T12186] RSP: 002b:00007fab32957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  401.159030][T12186] RAX: ffffffffffffffda RBX: 00007fab31de5fa0 RCX: 00007fab31b8eec9
[  401.159043][T12186] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  401.159051][T12186] RBP: 00007fab31c11f91 R08: 0000000000000000 R09: 0000000000000000
[  401.159060][T12186] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000
[  401.159069][T12186] R13: 00007fab31de6038 R14: 00007fab31de5fa0 R15: 00007ffee9cfed78
[  401.159090][T12186]  </TASK>
[  401.654190][T12187] FAULT_INJECTION: forcing a failure.
[  401.654190][T12187] name fail_futex, interval 1, probability 0, space 0, times 0
[  401.676186][T12187] CPU: 1 UID: 0 PID: 12187 Comm: syz.2.1372 Not tainted syzkaller #0 PREEMPT(full) 
[  401.676219][T12187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  401.676232][T12187] Call Trace:
[  401.676240][T12187]  <TASK>
[  401.676250][T12187]  dump_stack_lvl+0x16c/0x1f0
[  401.676280][T12187]  should_fail_ex+0x512/0x640
[  401.676313][T12187]  should_fail_futex+0x4c/0x60
[  401.676343][T12187]  __x64_sys_futex+0x25e/0x4c0
[  401.676379][T12187]  ? __pfx___x64_sys_futex+0x10/0x10
[  401.676409][T12187]  ? xfd_validate_state+0x61/0x180
[  401.676459][T12187]  do_syscall_64+0xcd/0xfa0
[  401.676486][T12187]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.676507][T12187] RIP: 0033:0x7f79bf78eec9
[  401.676525][T12187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.676545][T12187] RSP: 002b:00007fff07712738 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  401.676565][T12187] RAX: ffffffffffffffda RBX: 00000000000620fd RCX: 00007f79bf78eec9
[  401.676579][T12187] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f79bf9e636c
[  401.676592][T12187] RBP: 0000000000000032 R08: 00007f79c054f000 R09: 0000001907712a2f
[  401.676605][T12187] R10: 00007fff07712830 R11: 0000000000000246 R12: 00007f79bf9e636c
[  401.676618][T12187] R13: 00007fff07712830 R14: 000000000006212f R15: 00007fff07712850
[  401.676647][T12187]  </TASK>
[  402.290564][T12224] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  402.403289][T12223] block nbd0: not configured, cannot reconfigure
[  402.440834][T12229] nbd: socks must be embedded in a SOCK_ITEM attr
[  402.495293][T12229] FAULT_INJECTION: forcing a failure.
[  402.495293][T12229] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  402.516693][T12229] CPU: 0 UID: 0 PID: 12229 Comm: syz.0.1381 Not tainted syzkaller #0 PREEMPT(full) 
[  402.516727][T12229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  402.516743][T12229] Call Trace:
[  402.516753][T12229]  <TASK>
[  402.516763][T12229]  dump_stack_lvl+0x16c/0x1f0
[  402.516800][T12229]  should_fail_ex+0x512/0x640
[  402.516838][T12229]  _copy_from_user+0x2e/0xd0
[  402.516873][T12229]  __sys_bpf+0x248/0x4980
[  402.516899][T12229]  ? futex_private_hash_put+0x18a/0x300
[  402.516935][T12229]  ? __pfx___sys_bpf+0x10/0x10
[  402.516965][T12229]  ? __pfx_futex_wake+0x10/0x10
[  402.517004][T12229]  ? rcu_is_watching+0x12/0xc0
[  402.517046][T12229]  ? do_futex+0x122/0x350
[  402.517096][T12229]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  402.517128][T12229]  ? xfd_validate_state+0x61/0x180
[  402.517170][T12229]  __x64_sys_bpf+0x78/0xc0
[  402.517194][T12229]  ? lockdep_hardirqs_on+0x7c/0x110
[  402.517223][T12229]  do_syscall_64+0xcd/0xfa0
[  402.517254][T12229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  402.517281][T12229] RIP: 0033:0x7fab31b8eec9
[  402.517302][T12229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  402.517327][T12229] RSP: 002b:00007fab32957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  402.517353][T12229] RAX: ffffffffffffffda RBX: 00007fab31de5fa0 RCX: 00007fab31b8eec9
[  402.517370][T12229] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000000
[  402.517386][T12229] RBP: 00007fab31c11f91 R08: 0000000000000000 R09: 0000000000000000
[  402.517401][T12229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  402.517416][T12229] R13: 00007fab31de6038 R14: 00007fab31de5fa0 R15: 00007ffee9cfed78
[  402.517453][T12229]  </TASK>
[  402.717726][T12229] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  402.764972][T12233] can0: slcan on pty238.
[  402.854062][T12232] can0 (unregistered): slcan off pty238.
[  405.562381][T12287] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1394'.
[  405.869677][T12307] netlink: 'syz.2.1398': attribute type 11 has an invalid length.
[  407.427252][T12340] netlink: 314 bytes leftover after parsing attributes in process `syz.0.1404'.
[  408.970976][T12373] __vm_enough_memory: pid: 12373, comm: syz.1.1414, bytes: 4398046511104 not enough memory for the allocation
[  409.467827][T12379] netlink: 244 bytes leftover after parsing attributes in process `syz.2.1415'.
[  409.862757][T12392] FAULT_INJECTION: forcing a failure.
[  409.862757][T12392] name failslab, interval 1, probability 0, space 0, times 0
[  409.903161][T12392] CPU: 1 UID: 0 PID: 12392 Comm: syz.2.1418 Not tainted syzkaller #0 PREEMPT(full) 
[  409.903198][T12392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  409.903214][T12392] Call Trace:
[  409.903223][T12392]  <TASK>
[  409.903233][T12392]  dump_stack_lvl+0x16c/0x1f0
[  409.903269][T12392]  should_fail_ex+0x512/0x640
[  409.903298][T12392]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  409.903328][T12392]  should_failslab+0xc2/0x120
[  409.903358][T12392]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  409.903387][T12392]  ? alloc_inode+0x61/0x240
[  409.903419][T12392]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  409.903451][T12392]  ? alloc_inode+0x61/0x240
[  409.903479][T12392]  alloc_inode+0x61/0x240
[  409.903509][T12392]  new_inode+0x22/0x1c0
[  409.903544][T12392]  __debugfs_create_file+0x11c/0x6b0
[  409.903588][T12392]  debugfs_create_file_full+0x41/0x60
[  409.903624][T12392]  ? __pfx_ipgre_tap_setup+0x10/0x10
[  409.903649][T12392]  ref_tracker_dir_debugfs+0x19d/0x290
[  409.903684][T12392]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  409.903742][T12392]  ? alloc_netdev_mqs+0xd7/0x1550
[  409.903773][T12392]  ? lockdep_init_map_type+0x5c/0x280
[  409.903815][T12392]  alloc_netdev_mqs+0x314/0x1550
[  409.903848][T12392]  __ip_tunnel_create+0x3ad/0x6e0
[  409.903883][T12392]  ? __pfx___ip_tunnel_create+0x10/0x10
[  409.903930][T12392]  ip_tunnel_init_net+0x22f/0x7d0
[  409.903969][T12392]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  409.904011][T12392]  ? ops_init+0x77/0x5f0
[  409.904055][T12392]  ? __pfx_ipgre_tap_init_net+0x10/0x10
[  409.904087][T12392]  ops_init+0x1df/0x5f0
[  409.904123][T12392]  setup_net+0x100/0x390
[  409.904154][T12392]  ? __pfx_setup_net+0x10/0x10
[  409.904186][T12392]  ? debug_mutex_init+0x37/0x70
[  409.904217][T12392]  copy_net_ns+0x2f8/0x690
[  409.904254][T12392]  create_new_namespaces+0x3ea/0xa90
[  409.904293][T12392]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  409.904326][T12392]  ksys_unshare+0x45b/0xa40
[  409.904358][T12392]  ? __pfx_ksys_unshare+0x10/0x10
[  409.904393][T12392]  ? xfd_validate_state+0x61/0x180
[  409.904440][T12392]  __x64_sys_unshare+0x31/0x40
[  409.904472][T12392]  do_syscall_64+0xcd/0xfa0
[  409.904502][T12392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.904528][T12392] RIP: 0033:0x7f79bf78eec9
[  409.904551][T12392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  409.904576][T12392] RSP: 002b:00007f79c054e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  409.904602][T12392] RAX: ffffffffffffffda RBX: 00007f79bf9e5fa0 RCX: 00007f79bf78eec9
[  409.904618][T12392] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  409.904634][T12392] RBP: 00007f79bf811f91 R08: 0000000000000000 R09: 0000000000000000
[  409.904650][T12392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  409.904662][T12392] R13: 00007f79bf9e6038 R14: 00007f79bf9e5fa0 R15: 00007fff077125d8
[  409.904693][T12392]  </TASK>
[  409.904704][T12392] debugfs: out of free dentries, can not create file 'netdev@ffff88805d5dc610'
[  411.752667][T12415] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1421'.
[  412.170969][T12414] bond0: option arp_interval: invalid value ()
[  412.222186][T12414] bond0: option arp_interval: allowed values 0 - 2147483647
[  413.506314][T12451] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  416.191632][T12483] netlink: 'syz.0.1436': attribute type 11 has an invalid length.
[  416.199810][T12483] netlink: 'syz.0.1436': attribute type 11 has an invalid length.
[  417.174195][T12486] sp0: Synchronizing with TNC
[  417.509167][T12499] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1439'.
[  417.770728][T12508] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  418.746484][T12525] mmap: syz.1.1445 (12525): VmData 37597184 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  418.964667][T12533] netlink: 'syz.1.1449': attribute type 19 has an invalid length.
[  418.978079][T12528] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  418.984530][T12528] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  418.991470][T12528] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  418.998927][T12528] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  419.000752][T12533] netlink: 226 bytes leftover after parsing attributes in process `syz.1.1449'.
[  419.080552][T12528] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  421.039224][T12571] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1453'.
[  421.048779][T12180] Bluetooth: hci2: command 0x0c1a tx timeout
[  421.055851][T12180] Bluetooth: hci0: command 0x0c1a tx timeout
[  421.061902][T12180] Bluetooth: hci1: command 0x0c1a tx timeout
[  421.124202][T12572] Bluetooth: hci3: command 0x0c1a tx timeout
[  423.123347][T12572] Bluetooth: hci2: command 0x0c1a tx timeout
[  423.364719][T12606] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  426.347373][ T5864] Process accounting resumed
[  426.363763][T12651] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1471'.
[  426.492957][T12651] gretap0: left allmulticast mode
[  426.498462][T12651] gretap0: left promiscuous mode
[  426.539028][T12651] bridge0: port 3(gretap0) entered disabled state
[  426.654615][T12651] bridge_slave_1: left allmulticast mode
[  426.660529][T12651] bridge_slave_1: left promiscuous mode
[  426.692505][T12651] bridge0: port 2(bridge_slave_1) entered disabled state
[  426.754882][T12651] bridge_slave_0: left allmulticast mode
[  426.766801][T12651] bridge_slave_0: left promiscuous mode
[  426.821159][T12651] bridge0: port 1(bridge_slave_0) entered disabled state
[  428.429137][T12682] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1478'.
[  428.479009][T12682] HSR: entered promiscuous mode
[  428.666583][T12688] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  430.870458][T12741] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1492'.
[  430.936720][T12741] macsec0: entered allmulticast mode
[  430.942148][T12741] veth1_macvtap: entered allmulticast mode
[  432.857941][T12786] mkiss: ax0: crc mode is auto.
[  434.576756][T12864] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1514'.
[  434.968886][T12877] overlayfs: missing 'lowerdir'
[  437.486853][T12937] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1532'.
[  437.528374][T12940] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1532'.
[  440.088043][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  440.095279][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  440.205297][T13040] nvme_fcloop: unknown parameter or missing value 'X�n�p'
[  442.195348][T13125] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1572'.
[  442.326191][T13130] __vm_enough_memory: pid: 13130, comm: syz.0.1573, bytes: 4398046511104 not enough memory for the allocation
[  444.538499][T13191] tipc: Started in network mode
[  444.573382][T13191] tipc: Node identity fe820562, cluster identity 4711
[  444.633469][T13191] tipc: Node number set to 4269933922
[  451.106431][T13348] FAULT_INJECTION: forcing a failure.
[  451.106431][T13348] name failslab, interval 1, probability 0, space 0, times 0
[  451.134355][T13348] CPU: 1 UID: 0 PID: 13348 Comm: syz.0.1621 Not tainted syzkaller #0 PREEMPT(full) 
[  451.134392][T13348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  451.134407][T13348] Call Trace:
[  451.134416][T13348]  <TASK>
[  451.134426][T13348]  dump_stack_lvl+0x16c/0x1f0
[  451.134464][T13348]  should_fail_ex+0x512/0x640
[  451.134495][T13348]  ? __kmalloc_noprof+0xca/0x880
[  451.134538][T13348]  should_failslab+0xc2/0x120
[  451.134572][T13348]  __kmalloc_noprof+0xdd/0x880
[  451.134611][T13348]  ? proc_create_reg+0xe3/0x180
[  451.134644][T13348]  ? xfrm_hash_alloc+0xd1/0x100
[  451.134670][T13348]  ? __pfx_xfrm_net_init+0x10/0x10
[  451.134696][T13348]  ? xfrm_hash_alloc+0xd1/0x100
[  451.134718][T13348]  xfrm_hash_alloc+0xd1/0x100
[  451.134743][T13348]  xfrm_state_init+0x9c/0x640
[  451.134774][T13348]  ? __pfx_xfrm_net_init+0x10/0x10
[  451.134798][T13348]  xfrm_net_init+0x210/0xcc0
[  451.134831][T13348]  ? __pfx_xfrm_net_init+0x10/0x10
[  451.134857][T13348]  ops_init+0x1df/0x5f0
[  451.134892][T13348]  setup_net+0x100/0x390
[  451.134924][T13348]  ? __pfx_setup_net+0x10/0x10
[  451.134957][T13348]  ? debug_mutex_init+0x37/0x70
[  451.134997][T13348]  copy_net_ns+0x2f8/0x690
[  451.135036][T13348]  create_new_namespaces+0x3ea/0xa90
[  451.135076][T13348]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  451.135109][T13348]  ksys_unshare+0x45b/0xa40
[  451.135143][T13348]  ? __pfx_ksys_unshare+0x10/0x10
[  451.135176][T13348]  ? xfd_validate_state+0x61/0x180
[  451.135223][T13348]  __x64_sys_unshare+0x31/0x40
[  451.135254][T13348]  do_syscall_64+0xcd/0xfa0
[  451.135286][T13348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.135312][T13348] RIP: 0033:0x7fab31b8eec9
[  451.135334][T13348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.135358][T13348] RSP: 002b:00007fab32957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  451.135384][T13348] RAX: ffffffffffffffda RBX: 00007fab31de5fa0 RCX: 00007fab31b8eec9
[  451.135402][T13348] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  451.135419][T13348] RBP: 00007fab31c11f91 R08: 0000000000000000 R09: 0000000000000000
[  451.135435][T13348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  451.135450][T13348] R13: 00007fab31de6038 R14: 00007fab31de5fa0 R15: 00007ffee9cfed78
[  451.135487][T13348]  </TASK>
[  453.608738][T13392] debugfs: '!PjE�r��҄y�*�"�l-���y–��L̓���]' already exists in 'ieee80211'
[  454.869792][T13421] netlink: 93 bytes leftover after parsing attributes in process `syz.2.1637'.
[  454.982203][   T30] audit: type=1800 audit(4294967394.460:10): pid=13423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1639" name="lu_gp_id" dev="configfs" ino=47810 res=0 errno=0
[  455.304087][T13439] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1641'.
[  455.370777][T13439] gretap0: refused to change device tx_queue_len
[  456.181817][T13450] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1644'.
[  456.901378][T13449] FAULT_INJECTION: forcing a failure.
[  456.901378][T13449] name fail_futex, interval 1, probability 0, space 0, times 0
[  456.935620][T13449] CPU: 1 UID: 0 PID: 13449 Comm: syz.0.1643 Not tainted syzkaller #0 PREEMPT(full) 
[  456.935653][T13449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  456.935666][T13449] Call Trace:
[  456.935674][T13449]  <TASK>
[  456.935684][T13449]  dump_stack_lvl+0x16c/0x1f0
[  456.935717][T13449]  should_fail_ex+0x512/0x640
[  456.935758][T13449]  get_futex_key+0x1d0/0x1560
[  456.935794][T13449]  ? __pfx_get_futex_key+0x10/0x10
[  456.935824][T13449]  ? __mutex_trylock_common+0xe9/0x250
[  456.935867][T13449]  futex_wake+0xea/0x530
[  456.935906][T13449]  ? __pfx_futex_wake+0x10/0x10
[  456.935951][T13449]  do_futex+0x1e3/0x350
[  456.935979][T13449]  ? __pfx_do_futex+0x10/0x10
[  456.936004][T13449]  ? __might_fault+0xe3/0x190
[  456.936034][T13449]  mm_release+0x24e/0x300
[  456.936061][T13449]  do_exit+0x68e/0x2bf0
[  456.936100][T13449]  ? __pfx_do_exit+0x10/0x10
[  456.936131][T13449]  ? do_raw_spin_lock+0x12c/0x2b0
[  456.936166][T13449]  ? find_held_lock+0x2b/0x80
[  456.936196][T13449]  do_group_exit+0xd3/0x2a0
[  456.936231][T13449]  get_signal+0x2671/0x26d0
[  456.936262][T13449]  ? kmem_cache_free+0x2d4/0x6c0
[  456.936295][T13449]  ? __pfx_get_signal+0x10/0x10
[  456.936322][T13449]  ? do_futex+0x122/0x350
[  456.936353][T13449]  ? __pfx_do_futex+0x10/0x10
[  456.936388][T13449]  arch_do_signal_or_restart+0x8f/0x790
[  456.936420][T13449]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  456.936471][T13449]  exit_to_user_mode_loop+0x85/0x130
[  456.936507][T13449]  do_syscall_64+0x426/0xfa0
[  456.936537][T13449]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.936562][T13449] RIP: 0033:0x7fab31b8eec9
[  456.936585][T13449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  456.936608][T13449] RSP: 002b:00007fab2fdf60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  456.936632][T13449] RAX: fffffffffffffe00 RBX: 00007fab31de6098 RCX: 00007fab31b8eec9
[  456.936648][T13449] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fab31de6098
[  456.936663][T13449] RBP: 00007fab31de6090 R08: 0000000000000000 R09: 0000000000000000
[  456.936678][T13449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  456.936693][T13449] R13: 00007fab31de6128 R14: 00007ffee9cfec90 R15: 00007ffee9cfed78
[  456.936735][T13449]  </TASK>
[  459.014979][T13526] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.

syzkaller
syzkaller login: [  459.778402][T13550] netlink: zone id is out of range
[  459.783630][T13550] netlink: del zone limit has 4 unknown bytes
[  460.128589][T13564] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1666'.
[  460.999787][T13595] FAULT_INJECTION: forcing a failure.
[  460.999787][T13595] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  461.023420][T13595] CPU: 1 UID: 0 PID: 13595 Comm: syz.0.1673 Not tainted syzkaller #0 PREEMPT(full) 
[  461.023461][T13595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  461.023476][T13595] Call Trace:
[  461.023484][T13595]  <TASK>
[  461.023494][T13595]  dump_stack_lvl+0x16c/0x1f0
[  461.023527][T13595]  should_fail_ex+0x512/0x640
[  461.023563][T13595]  should_fail_alloc_page+0xe7/0x130
[  461.023598][T13595]  prepare_alloc_pages+0x3c2/0x610
[  461.023637][T13595]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  461.023683][T13595]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  461.023713][T13595]  ? validate_mm+0x403/0x560
[  461.023754][T13595]  ? __pfx_validate_mm+0x10/0x10
[  461.023787][T13595]  ? __vma_enter_locked+0x163/0x3f0
[  461.023831][T13595]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  461.023873][T13595]  ? policy_nodemask+0xea/0x4e0
[  461.023908][T13595]  alloc_pages_mpol+0x1fb/0x550
[  461.023941][T13595]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  461.023985][T13595]  alloc_pages_noprof+0x131/0x390
[  461.024018][T13595]  __pmd_alloc+0x3b/0x8b0
[  461.024054][T13595]  move_page_tables+0x30b7/0x4230
[  461.024089][T13595]  ? __pfx_copy_vma+0x10/0x10
[  461.024119][T13595]  ? __pfx_move_page_tables+0x10/0x10
[  461.024160][T13595]  ? rcu_is_watching+0x12/0xc0
[  461.024186][T13595]  ? finish_task_switch.isra.0+0x221/0xc10
[  461.024211][T13595]  ? lockdep_hardirqs_on+0x7c/0x110
[  461.024244][T13595]  copy_vma_and_data+0x24e/0x790
[  461.024283][T13595]  ? __pfx_copy_vma_and_data+0x10/0x10
[  461.024316][T13595]  ? __vma_enter_locked+0x163/0x3f0
[  461.024356][T13595]  ? find_held_lock+0x2b/0x80
[  461.024381][T13595]  ? move_vma+0x52e/0x1770
[  461.024402][T13595]  ? __vm_enough_memory+0x184/0x3f0
[  461.024439][T13595]  move_vma+0x540/0x1770
[  461.024468][T13595]  ? __pfx_move_vma+0x10/0x10
[  461.024496][T13595]  ? mm_get_unmapped_area_vmflags+0x97/0xe0
[  461.024527][T13595]  ? cap_mmap_addr+0x4b/0x120
[  461.024557][T13595]  ? bpf_lsm_mmap_addr+0x9/0x10
[  461.024583][T13595]  ? security_mmap_addr+0x6c/0x1e0
[  461.024606][T13595]  ? __get_unmapped_area+0x267/0x440
[  461.024639][T13595]  ? vrm_set_new_addr+0x208/0x290
[  461.024664][T13595]  mremap_to+0x1b7/0x450
[  461.024690][T13595]  do_mremap+0x13a8/0x2020
[  461.024717][T13595]  ? futex_private_hash_put+0xf0/0x300
[  461.024757][T13595]  ? __pfx_do_mremap+0x10/0x10
[  461.024790][T13595]  ? ksys_write+0x190/0x250
[  461.024825][T13595]  __do_sys_mremap+0x119/0x170
[  461.024849][T13595]  ? __pfx___do_sys_mremap+0x10/0x10
[  461.024884][T13595]  ? __x64_sys_futex+0x1e0/0x4c0
[  461.024938][T13595]  do_syscall_64+0xcd/0xfa0
[  461.024968][T13595]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  461.024994][T13595] RIP: 0033:0x7fab31b8eec9
[  461.025014][T13595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  461.025039][T13595] RSP: 002b:00007fab32957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  461.025065][T13595] RAX: ffffffffffffffda RBX: 00007fab31de5fa0 RCX: 00007fab31b8eec9
[  461.025083][T13595] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000
[  461.025099][T13595] RBP: 00007fab31c11f91 R08: 0000000100000000 R09: 0000000000000000
[  461.025115][T13595] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  461.025130][T13595] R13: 00007fab31de6038 R14: 00007fab31de5fa0 R15: 00007ffee9cfed78
[  461.025165][T13595]  </TASK>
[  463.979848][T13637] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1682'.
[  465.170215][T13668] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1689'.
[  465.715785][T13676] netlink: set zone limit has 8 unknown bytes
[  465.775182][T13676] netlink: zone id is out of range
[  465.780332][T13676] netlink: zone id is out of range
[  465.813225][T13676] netlink: zone id is out of range
[  465.818370][T13676] netlink: zone id is out of range
[  465.833333][T13676] netlink: zone id is out of range
[  465.845219][T13676] netlink: zone id is out of range
[  465.849059][T13679] openvswitch: HfR: Dropping previously announced user features
[  465.869535][T13676] netlink: zone id is out of range
[  465.893205][T13676] netlink: zone id is out of range
[  465.903388][T13676] netlink: zone id is out of range
[  468.950231][T13767] program syz.0.1713 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  469.029307][T13769] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1712'.
[  469.044773][T13767] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  471.476854][T13833] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  471.803117][T13845] random: crng reseeded on system resumption
[  473.567546][T13864] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  473.608728][T13864] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  473.641376][T13864] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  473.651935][T13864] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  475.603198][T12572] Bluetooth: hci1: command 0x0c1a tx timeout
[  475.683354][T12572] Bluetooth: hci3: command 0x0c1a tx timeout
[  475.689436][T12203] Bluetooth: hci2: command 0x0c1a tx timeout
[  475.695827][T12203] Bluetooth: hci0: command 0x0c1a tx timeout
[  476.336513][T13940] zswap: compressor  not available
[  476.750344][T13968] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1749'.
[  476.761896][T13968] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1749'.
[  476.786548][T13968] netlink: 122 bytes leftover after parsing attributes in process `syz.2.1749'.
[  477.778891][T13993] netlink: 504 bytes leftover after parsing attributes in process `syz.3.1756'.
[  477.816553][T13993] netlink: 504 bytes leftover after parsing attributes in process `syz.3.1756'.
[  478.359735][T14008] FAULT_INJECTION: forcing a failure.
[  478.359735][T14008] name failslab, interval 1, probability 0, space 0, times 0
[  478.372622][T14008] CPU: 1 UID: 0 PID: 14008 Comm: syz.0.1760 Not tainted syzkaller #0 PREEMPT(full) 
[  478.372644][T14008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  478.372653][T14008] Call Trace:
[  478.372659][T14008]  <TASK>
[  478.372665][T14008]  dump_stack_lvl+0x16c/0x1f0
[  478.372686][T14008]  should_fail_ex+0x512/0x640
[  478.372704][T14008]  ? __kmalloc_cache_noprof+0x5f/0x780
[  478.372729][T14008]  should_failslab+0xc2/0x120
[  478.372748][T14008]  __kmalloc_cache_noprof+0x72/0x780
[  478.372771][T14008]  ? kvm_dev_ioctl+0xa8a/0x1a80
[  478.372796][T14008]  ? kvm_dev_ioctl+0xa8a/0x1a80
[  478.372815][T14008]  kvm_dev_ioctl+0xa8a/0x1a80
[  478.372839][T14008]  ? find_held_lock+0x2b/0x80
[  478.372853][T14008]  ? hook_file_ioctl_common+0x145/0x410
[  478.372876][T14008]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  478.372899][T14008]  ? __fget_files+0x20e/0x3c0
[  478.372916][T14008]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  478.372937][T14008]  __x64_sys_ioctl+0x18b/0x210
[  478.372959][T14008]  do_syscall_64+0xcd/0xfa0
[  478.372977][T14008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  478.372991][T14008] RIP: 0033:0x7fab31b8eec9
[  478.373003][T14008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  478.373017][T14008] RSP: 002b:00007fab32957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  478.373031][T14008] RAX: ffffffffffffffda RBX: 00007fab31de5fa0 RCX: 00007fab31b8eec9
[  478.373040][T14008] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007
[  478.373058][T14008] RBP: 00007fab31c11f91 R08: 0000000000000000 R09: 0000000000000000
[  478.373073][T14008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  478.373086][T14008] R13: 00007fab31de6038 R14: 00007fab31de5fa0 R15: 00007ffee9cfed78
[  478.373119][T14008]  </TASK>
[  478.618815][T12203] Bluetooth: hci0: unexpected subevent 0x0c length: 118 > 5
[  479.257660][T14025] zswap: compressor  not available
[  480.736264][T14085] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1772'.
[  482.443979][T14123] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1781'.
[  482.977958][T14145] FAULT_INJECTION: forcing a failure.
[  482.977958][T14145] name failslab, interval 1, probability 0, space 0, times 0
[  483.054031][T14145] CPU: 0 UID: 0 PID: 14145 Comm: syz.0.1784 Not tainted syzkaller #0 PREEMPT(full) 
[  483.054067][T14145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  483.054081][T14145] Call Trace:
[  483.054089][T14145]  <TASK>
[  483.054098][T14145]  dump_stack_lvl+0x16c/0x1f0
[  483.054134][T14145]  should_fail_ex+0x512/0x640
[  483.054163][T14145]  ? __kmalloc_cache_noprof+0x5f/0x780
[  483.054207][T14145]  should_failslab+0xc2/0x120
[  483.054249][T14145]  __kmalloc_cache_noprof+0x72/0x780
[  483.054289][T14145]  ? net_alloc_generic+0x1e/0x70
[  483.054321][T14145]  ? copy_net_ns+0xe9/0x690
[  483.054352][T14145]  ? copy_net_ns+0x136/0x690
[  483.054389][T14145]  ? copy_net_ns+0x136/0x690
[  483.054420][T14145]  copy_net_ns+0x136/0x690
[  483.054450][T14145]  ? copy_cgroup_ns+0x71/0x6b0
[  483.054483][T14145]  create_new_namespaces+0x3ea/0xa90
[  483.054521][T14145]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  483.054553][T14145]  ksys_unshare+0x45b/0xa40
[  483.054585][T14145]  ? __pfx_ksys_unshare+0x10/0x10
[  483.054621][T14145]  ? syscall_user_dispatch+0x78/0x140
[  483.054668][T14145]  __x64_sys_unshare+0x31/0x40
[  483.054700][T14145]  do_syscall_64+0xcd/0xfa0
[  483.054733][T14145]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.054759][T14145] RIP: 0033:0x7fab31b8eec9
[  483.054781][T14145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  483.054806][T14145] RSP: 002b:00007fab2f9b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  483.054832][T14145] RAX: ffffffffffffffda RBX: 00007fab31de6270 RCX: 00007fab31b8eec9
[  483.054850][T14145] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  483.054866][T14145] RBP: 00007fab31c11f91 R08: 0000000000000000 R09: 0000000000000000
[  483.054883][T14145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  483.054898][T14145] R13: 00007fab31de6308 R14: 00007fab31de6270 R15: 00007ffee9cfed78
[  483.054936][T14145]  </TASK>
[  485.412310][T14197] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1799'.
[  485.679607][T14203] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1800'.
[  486.753087][T14233] ksmbd: Unknown IPC event: 8, ignore.
[  487.812223][T14255] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  489.508817][T14299] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[14299]
[  489.817728][T14312] FAULT_INJECTION: forcing a failure.
[  489.817728][T14312] name failslab, interval 1, probability 0, space 0, times 0
[  489.831354][T14312] CPU: 1 UID: 0 PID: 14312 Comm: syz.0.1825 Not tainted syzkaller #0 PREEMPT(full) 
[  489.831396][T14312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  489.831411][T14312] Call Trace:
[  489.831419][T14312]  <TASK>
[  489.831428][T14312]  dump_stack_lvl+0x16c/0x1f0
[  489.831464][T14312]  should_fail_ex+0x512/0x640
[  489.831499][T14312]  should_failslab+0xc2/0x120
[  489.831533][T14312]  kmem_cache_alloc_noprof+0x75/0x6e0
[  489.831561][T14312]  ? skb_clone+0x190/0x3f0
[  489.831600][T14312]  ? skb_clone+0x190/0x3f0
[  489.831624][T14312]  skb_clone+0x190/0x3f0
[  489.831656][T14312]  netlink_deliver_tap+0xabd/0xd30
[  489.831697][T14312]  netlink_unicast+0x71f/0x870
[  489.831734][T14312]  ? __pfx_netlink_unicast+0x10/0x10
[  489.831763][T14312]  ? idr_get_next+0xec/0x150
[  489.831799][T14312]  ctrl_getfamily+0x40a/0x540
[  489.831835][T14312]  ? __pfx_ctrl_getfamily+0x10/0x10
[  489.831870][T14312]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  489.831903][T14312]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  489.831943][T14312]  genl_family_rcv_msg_doit+0x209/0x2f0
[  489.831982][T14312]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  489.832019][T14312]  ? genl_get_cmd+0x194/0x580
[  489.832062][T14312]  ? __radix_tree_lookup+0x21f/0x2c0
[  489.832090][T14312]  genl_rcv_msg+0x55c/0x800
[  489.832129][T14312]  ? __pfx_genl_rcv_msg+0x10/0x10
[  489.832165][T14312]  ? __pfx_ctrl_getfamily+0x10/0x10
[  489.832208][T14312]  netlink_rcv_skb+0x155/0x420
[  489.832236][T14312]  ? __pfx_genl_rcv_msg+0x10/0x10
[  489.832274][T14312]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  489.832318][T14312]  ? netlink_deliver_tap+0x1ae/0xd30
[  489.832353][T14312]  genl_rcv+0x28/0x40
[  489.832394][T14312]  netlink_unicast+0x5aa/0x870
[  489.832434][T14312]  ? __pfx_netlink_unicast+0x10/0x10
[  489.832481][T14312]  netlink_sendmsg+0x8c8/0xdd0
[  489.832518][T14312]  ? __pfx_netlink_sendmsg+0x10/0x10
[  489.832556][T14312]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  489.832599][T14312]  __sys_sendto+0x4a0/0x520
[  489.832627][T14312]  ? __pfx___sys_sendto+0x10/0x10
[  489.832668][T14312]  ? find_held_lock+0x2b/0x80
[  489.832727][T14312]  __x64_sys_sendto+0xe0/0x1c0
[  489.832753][T14312]  ? do_syscall_64+0x91/0xfa0
[  489.832781][T14312]  ? lockdep_hardirqs_on+0x7c/0x110
[  489.832810][T14312]  do_syscall_64+0xcd/0xfa0
[  489.832843][T14312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.832870][T14312] RIP: 0033:0x7fab31b90d5c
[  489.832893][T14312] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  489.832919][T14312] RSP: 002b:00007fab2fdf4ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  489.832946][T14312] RAX: ffffffffffffffda RBX: 00007fab2fdf4fc0 RCX: 00007fab31b90d5c
[  489.832965][T14312] RDX: 0000000000000028 RSI: 00007fab2fdf5010 RDI: 000000000000000b
[  489.832982][T14312] RBP: 0000000000000000 R08: 00007fab2fdf4f14 R09: 000000000000000c
[  489.832999][T14312] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000000b
[  489.833015][T14312] R13: 00007fab2fdf4f68 R14: 00007fab2fdf5010 R15: 0000000000000000
[  489.833056][T14312]  </TASK>
[  492.376751][T14343] FAULT_INJECTION: forcing a failure.
[  492.376751][T14343] name fail_futex, interval 1, probability 0, space 0, times 0
[  492.473744][T14343] CPU: 1 UID: 0 PID: 14343 Comm: syz.0.1832 Not tainted syzkaller #0 PREEMPT(full) 
[  492.473781][T14343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  492.473798][T14343] Call Trace:
[  492.473808][T14343]  <TASK>
[  492.473819][T14343]  dump_stack_lvl+0x16c/0x1f0
[  492.473855][T14343]  should_fail_ex+0x512/0x640
[  492.473892][T14343]  get_futex_key+0x1d0/0x1560
[  492.473932][T14343]  ? __pfx_get_futex_key+0x10/0x10
[  492.473974][T14343]  futex_wait_setup+0x9d/0x550
[  492.474023][T14343]  __futex_wait+0x193/0x2f0
[  492.474063][T14343]  ? __pfx___futex_wait+0x10/0x10
[  492.474106][T14343]  ? __pfx_futex_wake_mark+0x10/0x10
[  492.474146][T14343]  ? futex_private_hash_put+0x176/0x300
[  492.474184][T14343]  ? futex_private_hash_put+0x18a/0x300
[  492.474219][T14343]  futex_wait+0xe8/0x380
[  492.474257][T14343]  ? __pfx_futex_wait+0x10/0x10
[  492.474303][T14343]  ? lockdep_hardirqs_on+0x7c/0x110
[  492.474360][T14343]  ? l2tp_ip_connect+0x127/0x3c0
[  492.474398][T14343]  do_futex+0x229/0x350
[  492.474426][T14343]  ? __pfx_do_futex+0x10/0x10
[  492.474468][T14343]  __x64_sys_futex+0x1e0/0x4c0
[  492.474504][T14343]  ? fdget_pos+0x2b8/0x370
[  492.474531][T14343]  ? __pfx___x64_sys_futex+0x10/0x10
[  492.474564][T14343]  ? ksys_read+0x1ac/0x250
[  492.474591][T14343]  ? __pfx_ksys_read+0x10/0x10
[  492.474626][T14343]  do_syscall_64+0xcd/0xfa0
[  492.474656][T14343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.474681][T14343] RIP: 0033:0x7fab31b8eec9
[  492.474701][T14343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  492.474726][T14343] RSP: 002b:00007fab329570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  492.474749][T14343] RAX: ffffffffffffffda RBX: 00007fab31de5fa8 RCX: 00007fab31b8eec9
[  492.474765][T14343] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fab31de5fa8
[  492.474779][T14343] RBP: 00007fab31de5fa0 R08: 0000000000000000 R09: 0000000000000000
[  492.474796][T14343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  492.474811][T14343] R13: 00007fab31de6038 R14: 00007ffee9cfec90 R15: 00007ffee9cfed78
[  492.474845][T14343]  </TASK>
[  492.696025][    C1] vkms_vblank_simulate: vblank timer overrun
[  495.384909][   T30] audit: type=1800 audit(4294967434.859:11): pid=14393 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1843" name="features" dev="configfs" ino=52958 res=0 errno=0
[  496.661072][T14416] netlink: 302 bytes leftover after parsing attributes in process `syz.0.1848'.
[  496.918391][T14434] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1851'.
[  497.092577][T14435] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1851'.
[  498.374304][T12203] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5
[  498.799827][T14481] random: crng reseeded on system resumption
[  500.966472][T14526] Invalid ELF header magic: != ELF
[  501.527044][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  501.534095][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  503.582793][T14586] netlink: 'syz.3.1884': attribute type 1 has an invalid length.
[  503.640269][T14586] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1884'.
[  503.670332][T14590] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1885'.
[  505.401462][T14612] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1890'.
[  506.703923][T14631] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  507.258372][T14639] random: crng reseeded on system resumption
[  507.308680][T14639] vhci_hcd: invalid port number 23
[  507.313901][T14639] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[  508.101475][T14649] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  510.703742][T14668] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1902'.
[  511.110943][T14688] Invalid ELF header magic: != ELF
[  511.790558][T14703] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1908'.
[  512.059933][T14707] debugfs: '!PjE�r��҄y�*�"�l-���y–��L̓?XEX�' already exists in 'ieee80211'
[  513.618380][T14736] debugfs: '!PjE�r��҄y�*�"�l-���y–��L̓?XEX�' already exists in 'ieee80211'
[  514.145460][T14741] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1917'.
[  516.179495][T14793] netlink: 19 bytes leftover after parsing attributes in process `syz.0.1930'.
[  516.322671][T14797] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1932'.
[  516.343324][T14797] net_ratelimit: 22 callbacks suppressed
[  516.343346][T14797] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[  516.384679][T14797] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input13
[  516.423761][T14797] FAULT_INJECTION: forcing a failure.
[  516.423761][T14797] name failslab, interval 1, probability 0, space 0, times 0
[  516.449542][T14797] CPU: 0 UID: 0 PID: 14797 Comm: syz.0.1932 Not tainted syzkaller #0 PREEMPT(full) 
[  516.449565][T14797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  516.449575][T14797] Call Trace:
[  516.449581][T14797]  <TASK>
[  516.449587][T14797]  dump_stack_lvl+0x16c/0x1f0
[  516.449610][T14797]  should_fail_ex+0x512/0x640
[  516.449629][T14797]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[  516.449651][T14797]  should_failslab+0xc2/0x120
[  516.449675][T14797]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[  516.449694][T14797]  ? __kasan_kmalloc+0xaa/0xb0
[  516.449710][T14797]  ? kvasprintf_const+0x66/0x1a0
[  516.449728][T14797]  ? input_attach_handler.isra.0+0x176/0x250
[  516.449751][T14797]  ? kvasprintf+0xbc/0x160
[  516.449768][T14797]  kvasprintf+0xbc/0x160
[  516.449786][T14797]  ? __pfx_kvasprintf+0x10/0x10
[  516.449813][T14797]  kvasprintf_const+0x66/0x1a0
[  516.449833][T14797]  kobject_set_name_vargs+0x5a/0x140
[  516.449852][T14797]  dev_set_name+0xc7/0x100
[  516.449873][T14797]  ? __pfx_dev_set_name+0x10/0x10
[  516.449894][T14797]  ? lockdep_init_map_type+0x5c/0x280
[  516.449916][T14797]  ? lockdep_init_map_type+0x5c/0x280
[  516.449938][T14797]  evdev_connect+0x17a/0x4c0
[  516.449960][T14797]  input_attach_handler.isra.0+0x176/0x250
[  516.449980][T14797]  input_register_device+0xab9/0x1180
[  516.450000][T14797]  ? input_ff_create+0x241/0x350
[  516.450015][T14797]  uinput_ioctl_handler.isra.0+0x1357/0x1df0
[  516.450039][T14797]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  516.450061][T14797]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  516.450082][T14797]  ? find_held_lock+0x2b/0x80
[  516.450109][T14797]  ? __pfx_uinput_ioctl+0x10/0x10
[  516.450126][T14797]  __x64_sys_ioctl+0x18b/0x210
[  516.450148][T14797]  do_syscall_64+0xcd/0xfa0
[  516.450166][T14797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  516.450181][T14797] RIP: 0033:0x7fab31b8eec9
[  516.450194][T14797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  516.450208][T14797] RSP: 002b:00007fab32957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  516.450222][T14797] RAX: ffffffffffffffda RBX: 00007fab31de5fa0 RCX: 00007fab31b8eec9
[  516.450233][T14797] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 000000000000000a
[  516.450242][T14797] RBP: 00007fab31c11f91 R08: 0000000000000000 R09: 0000000000000000
[  516.450251][T14797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  516.450260][T14797] R13: 00007fab31de6038 R14: 00007fab31de5fa0 R15: 00007ffee9cfed78
[  516.450282][T14797]  </TASK>
[  517.008141][T14797] input: failed to attach handler evdev to device input13, error: -22
[  517.046607][T14801] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1931'.
[  517.057728][T14801] netlink: 'syz.3.1931': attribute type 1 has an invalid length.
[  517.068661][T14801] netlink: 13 bytes leftover after parsing attributes in process `syz.3.1931'.
[  517.484163][T14808] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1935'.
[  517.971740][T14818] __vm_enough_memory: pid: 14818, comm: syz.3.1938, bytes: 9223372036854775808 not enough memory for the allocation
[  520.602718][T14889] Invalid ELF header magic: != ELF
[  521.630888][T14912] delete_channel: no stack
[  521.708424][T14919] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1958'.
[  522.170598][T14928] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1960'.
[  527.745939][T15054] Invalid ELF header magic: != ELF
[  529.700750][T15082] Invalid ELF header magic: != ELF
[  532.054006][T15113] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1997'.
[  534.332876][T15138] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2004'.
[  534.495934][T15142] Invalid ELF header magic: != ELF
[  537.473228][T15188] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2014'.
[  538.508702][T15203] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2018'.
[  538.555641][T15203] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2018'.
[  539.021515][T15210] netlink: 268 bytes leftover after parsing attributes in process `syz.3.2020'.
[  539.341526][T15217] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  539.931897][T15215] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  540.324579][T15232] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2024'.
[  541.046204][T15216] netlink: 268 bytes leftover after parsing attributes in process `syz.0.2021'.
[  543.057966][T15280] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  544.802029][T15333] netlink: 268 bytes leftover after parsing attributes in process `syz.2.2045'.
[  546.063146][   T30] audit: type=1804 audit(4294967302.339:12): pid=15365 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2050" name="file0" dev="tmpfs" ino=2826 res=1 errno=0
[  546.143460][   T30] audit: type=1804 audit(4294967302.379:13): pid=15365 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2050" name="file0" dev="tmpfs" ino=2826 res=1 errno=0
[  546.169150][T15359] random: crng reseeded on system resumption
[  546.953913][T15360] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  554.028417][T15443] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  558.774566][T15509] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  559.563292][T15523] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  562.971380][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  562.978077][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  566.068359][T15275] syz.1.2031 (15275) used greatest stack depth: 18200 bytes left
[  570.550433][T15695] random: crng reseeded on system resumption
[  576.422852][T15768] blktrace: Concurrent blktraces are not allowed on loop2
[  577.881076][T15802] sctp: [Deprecated]: syz.1.2130 (pid 15802) Use of int in maxseg socket option.
[  577.881076][T15802] Use struct sctp_assoc_value instead
[  583.077521][T15860] random: crng reseeded on system resumption
[  583.323225][T15860] Unrecognized hibernate image header format!
[  583.353439][T15860] PM: hibernation: Image mismatch: architecture specific data
[  584.059358][T15867] Unrecognized hibernate image header format!
[  584.065667][T15867] PM: hibernation: Image mismatch: architecture specific data
[  587.518864][T15957] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2160'.
[  587.559692][T15957] : renamed from bond0 (while UP)
[  588.052645][T15971] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2162'.
[  589.754367][T15999] random: crng reseeded on system resumption
[  594.471962][T16084] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2188'.
[  597.493945][T12572] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  597.505962][T12572] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  597.516805][T12572] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  597.525993][T12572] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  597.534758][T12572] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  598.150116][T16156] chnl_net:caif_netlink_parms(): no params data found
[  598.754937][T16156] bridge0: port 1(bridge_slave_0) entered blocking state
[  598.815353][T16156] bridge0: port 1(bridge_slave_0) entered disabled state
[  598.822624][T16156] bridge_slave_0: entered allmulticast mode
[  598.875208][T16156] bridge_slave_0: entered promiscuous mode
[  598.886053][T16156] bridge0: port 2(bridge_slave_1) entered blocking state
[  598.893358][T16156] bridge0: port 2(bridge_slave_1) entered disabled state
[  598.900731][T16156] bridge_slave_1: entered allmulticast mode
[  598.909640][T16156] bridge_slave_1: entered promiscuous mode
[  599.240852][T16156] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  599.255543][T16156] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  599.478285][T15608] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.591500][T16156] team0: Port device team_slave_0 added
[  599.603251][T12572] Bluetooth: hci4: command tx timeout
[  599.630566][T16156] team0: Port device team_slave_1 added
[  599.688979][T15608] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.753985][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  599.828748][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  599.841003][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  599.873865][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  599.904324][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  599.934172][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  599.965037][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.016874][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.027710][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.042889][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.207731][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.217832][T15608] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  600.292052][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.303857][T16156] batman_adv: batadv0: Adding interface: batadv_slave_0
[  600.310997][T16156] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  600.313226][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.353738][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.363743][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.374060][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.384259][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.395185][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.405331][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.415359][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.425583][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.435958][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.446089][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.456072][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.466083][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.476499][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.494153][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.505086][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.533140][T16207] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  600.573279][T16156] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  600.618740][T16156] batman_adv: batadv0: Adding interface: batadv_slave_1
[  600.657000][T16156] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  600.736407][T16156] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  600.793454][T15608] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  600.912543][T16156] hsr_slave_0: entered promiscuous mode
[  600.919596][T16156] hsr_slave_1: entered promiscuous mode
[  600.933557][T16156] debugfs: 'hsr0' already exists in 'hsr'
[  600.939490][T16156] Cannot create hsr debugfs directory
[  601.336222][T16228] bridge0: port 3(hsr0) entered blocking state
[  601.342514][T16228] bridge0: port 3(hsr0) entered disabled state
[  601.545853][T16228] hsr0: entered allmulticast mode
[  601.552450][T16228] hsr_slave_0: entered allmulticast mode
[  601.559282][T16228] hsr_slave_1: entered allmulticast mode
[  601.569032][T16228] hsr0: entered promiscuous mode
[  601.577992][T16228] bridge0: port 3(hsr0) entered blocking state
[  601.584271][T16228] bridge0: port 3(hsr0) entered forwarding state
[  601.693383][T12572] Bluetooth: hci4: command tx timeout
[  603.786583][T12572] Bluetooth: hci4: command tx timeout
[  604.120421][T15608] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  604.193716][T15608] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  604.334521][T15608] bond0 (unregistering): Released all slaves
[  604.835977][T15608] HfR: left promiscuous mode
[  604.969061][T15608] HSR: left promiscuous mode
[  605.845720][T12572] Bluetooth: hci4: command tx timeout
[  607.032723][T16156] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  607.088549][T16156] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  607.148480][T16156] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  607.167671][T16156] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  607.809846][T16156] 8021q: adding VLAN 0 to HW filter on device bond0
[  607.918955][T16156] 8021q: adding VLAN 0 to HW filter on device team0
[  608.039377][T15608] hsr_slave_0: left promiscuous mode
[  608.054181][T15608] hsr_slave_1: left promiscuous mode
[  608.123679][T15608] veth1_macvtap: left allmulticast mode
[  608.129313][T15608] veth1_macvtap: left promiscuous mode
[  608.153692][T15608] veth0_macvtap: left promiscuous mode
[  608.159437][T15608] veth1_vlan: left promiscuous mode
[  608.168606][T15608] veth0_vlan: left promiscuous mode
[  609.030025][T15608] team0 (unregistering): Port device team_slave_1 removed
[  609.073703][T15608] team0 (unregistering): Port device team_slave_0 removed
[  609.428416][T13275] bridge0: port 1(bridge_slave_0) entered blocking state
[  609.435672][T13275] bridge0: port 1(bridge_slave_0) entered forwarding state
[  609.452449][T13275] bridge0: port 2(bridge_slave_1) entered blocking state
[  609.459693][T13275] bridge0: port 2(bridge_slave_1) entered forwarding state
[  609.742126][T16156] 8021q: adding VLAN 0 to HW filter on device batadv0
[  609.784610][T16156] veth0_vlan: entered promiscuous mode
[  609.796554][T16156] veth1_vlan: entered promiscuous mode
[  609.824742][T16156] veth0_macvtap: entered promiscuous mode
[  609.834359][T16156] veth1_macvtap: entered promiscuous mode
[  609.850405][T16156] batman_adv: batadv0: Interface activated: batadv_slave_0
[  609.866947][T16156] batman_adv: batadv0: Interface activated: batadv_slave_1
[  609.880832][T15608] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  609.890279][T15608] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  609.901355][T15608] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  609.911685][T15608] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  609.981074][T13284] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  609.991694][T13284] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  610.028716][T13022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  610.038234][T13022] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  610.143573][T16336] bridge0: port 4() entered blocking state
[  610.150925][T16336] bridge0: port 4() entered disabled state
[  610.157129][T16336] : entered allmulticast mode
[  610.164471][T16336] bond_slave_0: entered allmulticast mode
[  610.170238][T16336] bond_slave_1: entered allmulticast mode
[  610.179234][T16336] : entered promiscuous mode
[  610.184963][T16336] bond_slave_0: entered promiscuous mode
[  610.191185][T16336] bond_slave_1: entered promiscuous mode
[  610.213567][T16341] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2233'.
[  610.241507][T16336] netlink: 13 bytes leftover after parsing attributes in process `syz.0.2233'.
[  610.490314][T16349] snd_virmidi snd_virmidi.0: control 16781581:4:5:�'x?F���/��zF˷fC���:7 is already present
[  616.124007][T16455] debugfs: '!PjE�r��҄y�*�"�l-���y–��L̓���]' already exists in 'ieee80211'
[  624.412521][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  624.418942][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  627.854930][T16611] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  628.950396][T12203] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  628.998438][T12203] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  629.023118][T12203] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  629.042932][T12203] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  629.060579][T12203] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  629.111357][T16638] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  629.985606][T16652] netlink: 504 bytes leftover after parsing attributes in process `syz.2.2292'.
[  629.995505][T16652] netlink: 504 bytes leftover after parsing attributes in process `syz.2.2292'.
[  630.352054][T16661] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2295'.
[  630.368376][T16658] openvswitch: HfR: Dropping previously announced user features
[  631.123294][T12203] Bluetooth: hci1: command tx timeout
[  631.169378][T16634] chnl_net:caif_netlink_parms(): no params data found
[  631.763583][T16634] bridge0: port 1(bridge_slave_0) entered blocking state
[  631.778746][T16634] bridge0: port 1(bridge_slave_0) entered disabled state
[  631.788105][T16634] bridge_slave_0: entered allmulticast mode
[  631.802300][T16634] bridge_slave_0: entered promiscuous mode
[  631.823760][T16634] bridge0: port 2(bridge_slave_1) entered blocking state
[  631.830948][T16634] bridge0: port 2(bridge_slave_1) entered disabled state
[  631.859159][T16634] bridge_slave_1: entered allmulticast mode
[  631.891938][T16634] bridge_slave_1: entered promiscuous mode
[  632.011107][T16634] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  632.026121][T16634] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  632.266586][T16634] team0: Port device team_slave_0 added
[  632.295936][T16634] team0: Port device team_slave_1 added
[  632.536874][   T30] audit: type=1804 audit(4294967375.059:14): pid=16707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2304" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  632.546821][T16634] batman_adv: batadv0: Adding interface: batadv_slave_0
[  632.592711][T16634] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  632.775003][T16634] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  632.825137][T16634] batman_adv: batadv0: Adding interface: batadv_slave_1
[  633.245950][T12203] Bluetooth: hci1: command tx timeout
[  633.264147][T16634] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  633.291711][T16634] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  633.561268][T16714] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2306'.
[  633.892214][T16634] hsr_slave_0: entered promiscuous mode
[  634.083941][T16634] hsr_slave_1: entered promiscuous mode
[  635.284061][T12203] Bluetooth: hci1: command tx timeout
[  635.543627][T12203] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  635.712559][T16634] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  636.379554][T16634] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  636.704881][T16634] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  637.065151][T16634] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  637.364069][T12572] Bluetooth: hci1: command tx timeout
[  637.448700][T16634] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  637.511872][T16634] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  637.547229][T16634] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  637.589317][T16634] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  637.926341][T16762] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  637.998244][T16634] 8021q: adding VLAN 0 to HW filter on device bond0
[  638.115774][T16634] 8021q: adding VLAN 0 to HW filter on device team0
[  638.251093][T13022] bridge0: port 1(bridge_slave_0) entered blocking state
[  638.258299][T13022] bridge0: port 1(bridge_slave_0) entered forwarding state
[  638.423972][T13283] bridge0: port 2(bridge_slave_1) entered blocking state
[  638.431160][T13283] bridge0: port 2(bridge_slave_1) entered forwarding state
[  638.955468][T16634] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  638.994003][T16634] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  640.922948][T16634] 8021q: adding VLAN 0 to HW filter on device batadv0
[  641.056817][T16634] veth0_vlan: entered promiscuous mode
[  641.085504][T16634] veth1_vlan: entered promiscuous mode
[  641.185684][T16634] veth0_macvtap: entered promiscuous mode
[  641.215600][T16634] veth1_macvtap: entered promiscuous mode
[  641.256659][T16634] batman_adv: batadv0: Interface activated: batadv_slave_0
[  641.300943][T16634] batman_adv: batadv0: Interface activated: batadv_slave_1
[  641.343137][T15608] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  641.435367][T15608] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  641.449384][T16786] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  641.459187][T15608] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  641.528980][T15608] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  642.180242][T15608] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  642.194391][T15608] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  642.952659][T13274] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  642.961342][T13274] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  643.819072][T16813] netlink: zone id is out of range
[  643.824012][T16812] netlink: set zone limit has 8 unknown bytes
[  643.824306][T16813] netlink: zone id is out of range
[  643.839143][T16813] netlink: zone id is out of range
[  643.869506][T16813] netlink: zone id is out of range
[  643.883126][T16813] netlink: zone id is out of range
[  643.893267][T16813] netlink: zone id is out of range
[  643.900511][T16813] netlink: zone id is out of range
[  643.913261][T16813] netlink: zone id is out of range
[  643.925716][T16813] netlink: zone id is out of range
[  644.038019][T16812] HfR: entered promiscuous mode
[  645.460852][T16826] FAULT_INJECTION: forcing a failure.
[  645.460852][T16826] name failslab, interval 1, probability 0, space 0, times 0
[  645.584315][T16826] CPU: 1 UID: 0 PID: 16826 Comm: syz.1.2323 Not tainted syzkaller #0 PREEMPT(full) 
[  645.584349][T16826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  645.584364][T16826] Call Trace:
[  645.584373][T16826]  <TASK>
[  645.584383][T16826]  dump_stack_lvl+0x16c/0x1f0
[  645.584417][T16826]  should_fail_ex+0x512/0x640
[  645.584445][T16826]  ? __kvmalloc_node_noprof+0x12e/0x9c0
[  645.584474][T16826]  should_failslab+0xc2/0x120
[  645.584500][T16826]  __kvmalloc_node_noprof+0x141/0x9c0
[  645.584519][T16826]  ? __pfx_aa_file_perm+0x10/0x10
[  645.584547][T16826]  ? seq_read_iter+0x830/0x12d0
[  645.584579][T16826]  ? __lock_acquire+0xb97/0x1ce0
[  645.584618][T16826]  ? seq_read_iter+0x830/0x12d0
[  645.584650][T16826]  seq_read_iter+0x830/0x12d0
[  645.584697][T16826]  kernfs_fop_read_iter+0x46c/0x610
[  645.584721][T16826]  ? rw_verify_area+0xcf/0x6c0
[  645.584745][T16826]  vfs_read+0x8bc/0xcf0
[  645.584774][T16826]  ? __pfx___mutex_lock+0x10/0x10
[  645.584800][T16826]  ? __pfx_vfs_read+0x10/0x10
[  645.584848][T16826]  ksys_read+0x12a/0x250
[  645.584871][T16826]  ? __pfx_ksys_read+0x10/0x10
[  645.584906][T16826]  do_syscall_64+0xcd/0xfa0
[  645.584936][T16826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  645.584961][T16826] RIP: 0033:0x7f445ad8eec9
[  645.584981][T16826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  645.585023][T16826] RSP: 002b:00007f445bba1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  645.585047][T16826] RAX: ffffffffffffffda RBX: 00007f445afe5fa0 RCX: 00007f445ad8eec9
[  645.585063][T16826] RDX: 0000000000000041 RSI: 0000000000000000 RDI: 0000000000000003
[  645.585078][T16826] RBP: 00007f445bba1090 R08: 0000000000000000 R09: 0000000000000000
[  645.585093][T16826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  645.585109][T16826] R13: 00007f445afe6038 R14: 00007f445afe5fa0 R15: 00007ffdfb2fa718
[  645.585147][T16826]  </TASK>
[  647.065475][T16852] random: crng reseeded on system resumption
[  648.251104][T16880] openvswitch: HfR: Dropping previously announced user features
[  650.105865][T16907] FAULT_INJECTION: forcing a failure.
[  650.105865][T16907] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  650.126481][T16907] CPU: 1 UID: 0 PID: 16907 Comm: syz.0.2338 Not tainted syzkaller #0 PREEMPT(full) 
[  650.126516][T16907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  650.126529][T16907] Call Trace:
[  650.126534][T16907]  <TASK>
[  650.126540][T16907]  dump_stack_lvl+0x16c/0x1f0
[  650.126562][T16907]  should_fail_ex+0x512/0x640
[  650.126583][T16907]  _copy_to_iter+0x29f/0x1710
[  650.126603][T16907]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  650.126624][T16907]  ? __pfx__copy_to_iter+0x10/0x10
[  650.126643][T16907]  ? kernfs_seq_stop+0xcd/0x120
[  650.126668][T16907]  ? kernfs_put_active+0x86/0xe0
[  650.126690][T16907]  seq_read_iter+0xd02/0x12d0
[  650.126728][T16907]  kernfs_fop_read_iter+0x46c/0x610
[  650.126742][T16907]  ? rw_verify_area+0xcf/0x6c0
[  650.126758][T16907]  vfs_read+0x8bc/0xcf0
[  650.126776][T16907]  ? __pfx___mutex_lock+0x10/0x10
[  650.126793][T16907]  ? __pfx_vfs_read+0x10/0x10
[  650.126821][T16907]  ksys_read+0x12a/0x250
[  650.126836][T16907]  ? __pfx_ksys_read+0x10/0x10
[  650.126857][T16907]  do_syscall_64+0xcd/0xfa0
[  650.126874][T16907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  650.126888][T16907] RIP: 0033:0x7fab31b8eec9
[  650.126900][T16907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  650.126914][T16907] RSP: 002b:00007fab2fdf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  650.126928][T16907] RAX: ffffffffffffffda RBX: 00007fab31de6090 RCX: 00007fab31b8eec9
[  650.126937][T16907] RDX: 0000000000000041 RSI: 0000000000000000 RDI: 0000000000000003
[  650.126946][T16907] RBP: 00007fab2fdf6090 R08: 0000000000000000 R09: 0000000000000000
[  650.126954][T16907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  650.126966][T16907] R13: 00007fab31de6128 R14: 00007fab31de6090 R15: 00007ffee9cfed78
[  650.126986][T16907]  </TASK>
[  650.408124][T16910] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  650.725632][T16912] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  650.733144][T16912] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  650.755597][T16912] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  650.761751][T16912] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  650.899242][T16912] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  650.959657][T16912] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  651.018387][T16912] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  651.032713][T16912] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  651.098586][T16912] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  651.239769][   T30] audit: type=1807 audit(4294967393.759:15): UNKNOWN=0"�]$|�1j�0B|d���ӉO��+��/��x����WӦ��^��gq%Ḧr�O� res=0
[  651.300317][   T30] audit: type=1802 audit(4294967393.779:16): pid=16925 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.2350" res=0 errno=0
[  651.361930][T16925] net_ratelimit: 52 callbacks suppressed
[  651.361947][T16925] netlink: zone id is out of range
[  651.384825][T16925] netlink: zone id is out of range
[  651.420619][T16925] netlink: zone id is out of range
[  651.432410][T16925] netlink: zone id is out of range
[  651.437851][T16925] netlink: zone id is out of range
[  651.453439][T16925] netlink: zone id is out of range
[  651.462393][T16925] netlink: zone id is out of range
[  651.467752][T16925] netlink: zone id is out of range
[  651.473385][T16925] netlink: zone id is out of range
[  651.478990][T16925] netlink: zone id is out of range
[  652.041154][T16921] ima: policy update failed
[  652.162177][   T30] audit: type=1802 audit(4294967394.679:17): pid=16921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2350" res=0 errno=0
[  652.563301][T16943] FAULT_INJECTION: forcing a failure.
[  652.563301][T16943] name failslab, interval 1, probability 0, space 0, times 0
[  652.576122][T16943] CPU: 1 UID: 0 PID: 16943 Comm: syz.3.2346 Not tainted syzkaller #0 PREEMPT(full) 
[  652.576159][T16943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  652.576176][T16943] Call Trace:
[  652.576185][T16943]  <TASK>
[  652.576197][T16943]  dump_stack_lvl+0x16c/0x1f0
[  652.576232][T16943]  should_fail_ex+0x512/0x640
[  652.576264][T16943]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  652.576296][T16943]  should_failslab+0xc2/0x120
[  652.576330][T16943]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  652.576357][T16943]  ? d_lookup+0xe7/0x190
[  652.576393][T16943]  ? alloc_inode+0x61/0x240
[  652.576431][T16943]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  652.576468][T16943]  ? alloc_inode+0x61/0x240
[  652.576508][T16943]  alloc_inode+0x61/0x240
[  652.576543][T16943]  new_inode+0x22/0x1c0
[  652.576579][T16943]  __debugfs_create_file+0x11c/0x6b0
[  652.576624][T16943]  debugfs_create_file_full+0x41/0x60
[  652.576668][T16943]  ref_tracker_dir_debugfs+0x19d/0x290
[  652.576703][T16943]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  652.576770][T16943]  ? lockdep_init_map_type+0x5c/0x280
[  652.576810][T16943]  preinit_net.part.0+0x437/0x8a0
[  652.576844][T16943]  copy_net_ns+0x3ba/0x690
[  652.576882][T16943]  create_new_namespaces+0x3ea/0xa90
[  652.576921][T16943]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  652.576954][T16943]  ksys_unshare+0x45b/0xa40
[  652.576994][T16943]  ? __pfx_ksys_unshare+0x10/0x10
[  652.577029][T16943]  ? xfd_validate_state+0x61/0x180
[  652.577077][T16943]  __x64_sys_unshare+0x31/0x40
[  652.577110][T16943]  do_syscall_64+0xcd/0xfa0
[  652.577142][T16943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  652.577168][T16943] RIP: 0033:0x7feef7f8eec9
[  652.577191][T16943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  652.577216][T16943] RSP: 002b:00007feef8de7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  652.577241][T16943] RAX: ffffffffffffffda RBX: 00007feef81e5fa0 RCX: 00007feef7f8eec9
[  652.577260][T16943] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  652.577277][T16943] RBP: 00007feef8011f91 R08: 0000000000000000 R09: 0000000000000000
[  652.577294][T16943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  652.577318][T16943] R13: 00007feef81e6038 R14: 00007feef81e5fa0 R15: 00007ffde0d78b18
[  652.577358][T16943]  </TASK>
[  652.577369][T16943] debugfs: out of free dentries, can not create file 'net_notrefcnt@ffff88807aa34b20'
[  652.821228][T12203] Bluetooth: hci4: command 0x0c1a tx timeout
[  652.827303][T12572] Bluetooth: hci2: command 0x0c1a tx timeout
[  652.833386][T13934] Bluetooth: hci0: command 0x0c1a tx timeout
[  653.063383][T12203] Bluetooth: hci1: command 0x0c1a tx timeout
[  653.637935][T16954] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14
[  654.883168][T12203] Bluetooth: hci4: command 0x0c1a tx timeout
[  655.125353][T12203] Bluetooth: hci1: command 0x0c1a tx timeout
[  655.323353][T16969] zswap: compressor  not available
[  656.966361][T12203] Bluetooth: hci4: command 0x0c1a tx timeout
[  657.207927][T12203] Bluetooth: hci1: command 0x0c1a tx timeout
[  657.244662][T16991] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2354'.
[  657.273119][T16991] bridge_slave_1: left allmulticast mode
[  657.313441][T16991] bridge_slave_1: left promiscuous mode
[  657.353342][T16991] bridge0: port 2(bridge_slave_1) entered disabled state
[  657.404057][T16991] bridge_slave_0: left allmulticast mode
[  657.411215][T16991] bridge_slave_0: left promiscuous mode
[  657.436445][T16991] bridge0: port 1(bridge_slave_0) entered disabled state
[  657.731361][T16999] net_ratelimit: 497 callbacks suppressed
[  657.731438][T16999] netlink: zone id is out of range
[  657.742680][T16999] netlink: zone id is out of range
[  657.758185][T16999] netlink: zone id is out of range
[  657.781470][T16999] netlink: zone id is out of range
[  657.787507][T16999] netlink: zone id is out of range
[  657.794561][T16999] netlink: zone id is out of range
[  657.802289][T16999] netlink: zone id is out of range
[  657.812451][T16999] netlink: zone id is out of range
[  657.820198][T16999] netlink: zone id is out of range
[  657.826775][T16999] netlink: zone id is out of range
[  658.270686][T17010] netlink: 'syz.1.2358': attribute type 1 has an invalid length.
[  659.045566][T12203] Bluetooth: hci4: command 0x0c1a tx timeout
[  661.063159][   T30] audit: type=1807 audit(4294967403.559:18): UNKNOWN=0"�]$|�1j�0B|d���ӉO��+��/��x����WӦ��^��gq%Ḧr�O� res=0
[  661.149167][   T30] audit: type=1802 audit(4294967403.559:19): pid=17068 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.2368" res=0 errno=0
[  661.484962][T17077] netlink: 'syz.2.2373': attribute type 1 has an invalid length.
[  661.877207][T17062] ima: policy update failed
[  661.917418][   T30] audit: type=1802 audit(4294967404.399:20): pid=17062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2368" res=0 errno=0
[  663.056519][T17112] random: crng reseeded on system resumption
[  664.595214][T17133] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  664.626413][T17133] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  664.650146][T17133] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  664.670875][T17133] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  666.273553][T17157] random: crng reseeded on system resumption
[  666.543293][T17163] Unrecognized hibernate image header format!
[  666.555427][T17163] PM: hibernation: Image mismatch: architecture specific data
[  666.644926][T12203] Bluetooth: hci2: command 0x0c1a tx timeout
[  666.651039][T12572] Bluetooth: hci0: command 0x0c1a tx timeout
[  666.724667][T12203] Bluetooth: hci1: command 0x0c1a tx timeout
[  666.730854][T12572] Bluetooth: hci4: command 0x0c1a tx timeout
[  667.114634][T17158] ------------[ cut here ]------------
[  667.120719][T17158] memcpy: detected field-spanning write (size 5) of single field "&entry->id" at kernel/trace/trace.c:7458 (size 4)
[  667.133172][T17158] WARNING: CPU: 1 PID: 17158 at kernel/trace/trace.c:7458 write_raw_marker_to_buffer.isra.0+0x2d4/0x330
[  667.144396][T17158] Modules linked in:
[  667.148935][T17158] CPU: 1 UID: 0 PID: 17158 Comm: syz.3.2390 Not tainted syzkaller #0 PREEMPT(full) 
[  667.158704][T17158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  667.169026][T17158] RIP: 0010:write_raw_marker_to_buffer.isra.0+0x2d4/0x330
[  667.176251][T17158] Code: ff e8 30 74 fa ff c6 05 f4 84 aa 0e 01 90 b9 04 00 00 00 48 c7 c2 e0 1e 93 8b 4c 89 e6 48 c7 c7 40 1f 93 8b e8 6d fc b8 ff 90 <0f> 0b 90 90 e9 d7 fe ff ff e8 6e 04 62 00 e9 da fd ff ff e8 64 04
[  667.195972][T17158] RSP: 0018:ffffc900045bfc40 EFLAGS: 00010282
[  667.202071][T17158] RAX: 0000000000000000 RBX: ffff88805e987014 RCX: ffffc9000bd79000
[  667.210688][T17158] RDX: 0000000000080000 RSI: ffffffff817a5e65 RDI: 0000000000000001
[  667.218995][T17158] RBP: ffff88805e987010 R08: 0000000000000001 R09: 0000000000000000
[  667.227335][T17158] R10: 0000000000000000 R11: fffffffffffcb988 R12: 0000000000000005
[  667.235476][T17158] R13: ffff88813ff18c00 R14: 0000000000000000 R15: 0000000000000000
[  667.243540][T17158] FS:  00007feef8de76c0(0000) GS:ffff888124ae4000(0000) knlGS:0000000000000000
[  667.252825][T17158] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  667.259724][T17158] CR2: 0000001b342ceff8 CR3: 00000000695ee000 CR4: 00000000003526f0
[  667.267773][T17158] Call Trace:
[  667.271079][T17158]  <TASK>
[  667.274083][T17158]  tracing_mark_raw_write+0x2da/0x4a0
[  667.279508][T17158]  ? __pfx_tracing_mark_raw_write+0x10/0x10
[  667.285534][T17158]  ? __pfx_tracing_mark_raw_write+0x10/0x10
[  667.291474][T17158]  vfs_write+0x2a0/0x11d0
[  667.295922][T17158]  ? __pfx_vfs_write+0x10/0x10
[  667.300723][T17158]  ? find_held_lock+0x2b/0x80
[  667.305475][T17158]  ? __fget_files+0x204/0x3c0
[  667.310206][T17158]  ? __fget_files+0x20e/0x3c0
[  667.314982][T17158]  ksys_write+0x1f8/0x250
[  667.319353][T17158]  ? __pfx_ksys_write+0x10/0x10
[  667.324325][T17158]  do_syscall_64+0xcd/0xfa0
[  667.328877][T17158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.334831][T17158] RIP: 0033:0x7feef7f8eec9
[  667.339269][T17158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  667.359525][T17158] RSP: 002b:00007feef8de7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  667.368317][T17158] RAX: ffffffffffffffda RBX: 00007feef81e5fa0 RCX: 00007feef7f8eec9
[  667.376360][T17158] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000007
[  667.384486][T17158] RBP: 00007feef8011f91 R08: 0000000000000000 R09: 0000000000000000
[  667.392730][T17158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  667.400777][T17158] R13: 00007feef81e6038 R14: 00007feef81e5fa0 R15: 00007ffde0d78b18
[  667.408833][T17158]  </TASK>
[  667.411879][T17158] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  667.419266][T17158] CPU: 1 UID: 0 PID: 17158 Comm: syz.3.2390 Not tainted syzkaller #0 PREEMPT(full) 
[  667.428663][T17158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  667.438737][T17158] Call Trace:
[  667.442049][T17158]  <TASK>
[  667.445002][T17158]  dump_stack_lvl+0x3d/0x1f0
[  667.449635][T17158]  vpanic+0x640/0x6f0
[  667.453664][T17158]  ? write_raw_marker_to_buffer.isra.0+0x2d4/0x330
[  667.460296][T17158]  panic+0xca/0xd0
[  667.464075][T17158]  ? __pfx_panic+0x10/0x10
[  667.468559][T17158]  check_panic_on_warn+0xab/0xb0
[  667.473566][T17158]  __warn+0xf6/0x3c0
[  667.477508][T17158]  ? __pfx_vprintk_emit+0x10/0x10
[  667.482568][T17158]  ? write_raw_marker_to_buffer.isra.0+0x2d4/0x330
[  667.489203][T17158]  report_bug+0x3c3/0x580
[  667.493569][T17158]  ? write_raw_marker_to_buffer.isra.0+0x2d4/0x330
[  667.500114][T17158]  handle_bug+0x184/0x210
[  667.504490][T17158]  exc_invalid_op+0x17/0x50
[  667.509032][T17158]  asm_exc_invalid_op+0x1a/0x20
[  667.513909][T17158] RIP: 0010:write_raw_marker_to_buffer.isra.0+0x2d4/0x330
[  667.521075][T17158] Code: ff e8 30 74 fa ff c6 05 f4 84 aa 0e 01 90 b9 04 00 00 00 48 c7 c2 e0 1e 93 8b 4c 89 e6 48 c7 c7 40 1f 93 8b e8 6d fc b8 ff 90 <0f> 0b 90 90 e9 d7 fe ff ff e8 6e 04 62 00 e9 da fd ff ff e8 64 04
[  667.540713][T17158] RSP: 0018:ffffc900045bfc40 EFLAGS: 00010282
[  667.546818][T17158] RAX: 0000000000000000 RBX: ffff88805e987014 RCX: ffffc9000bd79000
[  667.554815][T17158] RDX: 0000000000080000 RSI: ffffffff817a5e65 RDI: 0000000000000001
[  667.562817][T17158] RBP: ffff88805e987010 R08: 0000000000000001 R09: 0000000000000000
[  667.570824][T17158] R10: 0000000000000000 R11: fffffffffffcb988 R12: 0000000000000005
[  667.578822][T17158] R13: ffff88813ff18c00 R14: 0000000000000000 R15: 0000000000000000
[  667.586831][T17158]  ? __warn_printk+0x1a5/0x350
[  667.591650][T17158]  tracing_mark_raw_write+0x2da/0x4a0
[  667.597064][T17158]  ? __pfx_tracing_mark_raw_write+0x10/0x10
[  667.603032][T17158]  ? __pfx_tracing_mark_raw_write+0x10/0x10
[  667.608955][T17158]  vfs_write+0x2a0/0x11d0
[  667.613331][T17158]  ? __pfx_vfs_write+0x10/0x10
[  667.618127][T17158]  ? find_held_lock+0x2b/0x80
[  667.622836][T17158]  ? __fget_files+0x204/0x3c0
[  667.627549][T17158]  ? __fget_files+0x20e/0x3c0
[  667.632264][T17158]  ksys_write+0x1f8/0x250
[  667.636640][T17158]  ? __pfx_ksys_write+0x10/0x10
[  667.641617][T17158]  do_syscall_64+0xcd/0xfa0
[  667.646152][T17158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.652161][T17158] RIP: 0033:0x7feef7f8eec9
[  667.656603][T17158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  667.676416][T17158] RSP: 002b:00007feef8de7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  667.684865][T17158] RAX: ffffffffffffffda RBX: 00007feef81e5fa0 RCX: 00007feef7f8eec9
[  667.692860][T17158] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000007
[  667.700855][T17158] RBP: 00007feef8011f91 R08: 0000000000000000 R09: 0000000000000000
[  667.708936][T17158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  667.716943][T17158] R13: 00007feef81e6038 R14: 00007feef81e5fa0 R15: 00007ffde0d78b18
[  667.724959][T17158]  </TASK>
[  667.728149][T17158] Kernel Offset: disabled
[  667.732484][T17158] Rebooting in 86400 seconds..