last executing test programs:

2m14.620380518s ago: executing program 3 (id=630):
mmap$auto(0x0, 0x1, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socket(0x10, 0x2, 0x0)
open(0x0, 0x261c2, 0x22)
io_uring_setup$auto(0xf, 0x0)
socket(0x18, 0xa, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0xa042, 0x0)
socketpair$auto(0x1, 0x3, 0x0, 0x0)
r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0)
write$auto(r0, 0x0, 0xc3)

2m14.30030208s ago: executing program 3 (id=632):
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x0)
r0 = socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
socket(0x10, 0x3, 0x2)
socket(0x10, 0x2, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
getsockopt$auto(r0, 0x84, 0x6c, 0x0, &(0x7f0000000280)=0x1000c0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/dirty_writeback_centisecs\x00', 0xb02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x2)

2m13.385983327s ago: executing program 3 (id=633):
syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', <r0=>0x0})
sendmsg$auto_NET_SHAPER_CMD_GROUP(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44000}, 0x14)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000580)={'pimreg1\x00', <r1=>0x0})
sendmsg$auto_ETHTOOL_MSG_TSCONFIG_GET(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10080}, 0xc, &(0x7f0000000700)={&(0x7f00000005c0)=ANY=[@ANYBLOB="300c0600", @ANYRES16=0x0, @ANYBLOB="00032dbd7000fedbdf252e0000000c000180080003000700000020000180140002007663616e300000000000000000000000080003008c9f000054000180140002006d616376746170300000000000000000080003000000008008000100", @ANYRES32=0x0, @ANYBLOB="14000200766972745f776966693000000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="2000018008000100", @ANYRES32=0x0, @ANYBLOB="140002006d6163766c616e3000000000000000000c00018008000100", @ANYRES32=0x0, @ANYBLOB="180001801400020076657468305f746f5f626174616476003800018008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r0, @ANYBLOB="1400020076657468305f746f5f68737200000000080003000700000008000100", @ANYRES32=0x0, @ANYBLOB="2000018008000100", @ANYRES32=r1, @ANYBLOB="1400020062617461647630000000000000000000"], 0x130}, 0x1, 0x0, 0x0, 0x1}, 0x4004000)
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0x4, 0x80000001}, 0x6f4)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x14, 0x2, 0x8000)
r2 = socket(0x2, 0x1, 0x106)
bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0)
select$auto(0x8, &(0x7f00000000c0)={[0xeeda, 0x7, 0x6, 0x9, 0x34, 0x1ff, 0x6, 0x4, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8e, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f00000001c0)={0x6, 0xcb})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="00042dbd7000fbe2df2502000000080002000100000028e5ff102d084475a9db785e92655ba955715583cc8a50063b3f5b86a34d4538191f112a8151d1cd40b92ef28fecf0ee5384dc719adb2cdb504b5061949d21c6c08399099c7aeb25a44be34571d51bd758e1d8a1135a4f734dc9494b025b6bdf4fbbf44b5355558911de93218243672f35b4eebeff5095141729de40aee41da2a874a3096581f618dd02d4f9ea95617b64f8b2b91222aa5c540d25e26833945b44d647c86bb617"], 0x1c}, 0x1, 0x0, 0x0, 0x24008054}, 0x40)
sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB='\x00+'], 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x8000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
shutdown$auto(0x200000003, 0x2)

2m11.806006461s ago: executing program 3 (id=636):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0xc, 0x0)
socket(0x25, 0x1, 0x0)
r0 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0)
ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
fallocate$auto(r0, 0x1, 0x2, 0x6653)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x1, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0x1]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x400000f2, 0x400, 0x9}]})
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
ioctl$auto(0x3, 0x2287, 0xffffffffffffffff)
socket(0x23, 0x80805, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
write$auto_proc_mem_operations_base(r4, &(0x7f0000000300)="5c60af5a41e0c2e96c46d5125a584ba9d9b3cf382c2dfa4fb2091200"/37, 0x25)
madvise$auto(0x0, 0x20200, 0x15)

2m8.882569511s ago: executing program 3 (id=643):
fanotify_init$auto(0xfffffffe, 0x1)
socket(0x1d, 0x2, 0x2)
connect$auto(0x3, 0x0, 0x55)
socket(0x10, 0x3, 0x6)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x3ff, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x38}, 0x4, 0x0, 0x1, 0x9}, 0x4}, 0x8, 0x1f00)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x280, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0)
socketpair$auto(0x100, 0x1, 0x1, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\b\x1c\x9cehb4\xb7\xc7k\x00\x19\x8d\'^\xc9!\t_=d\xf3\x1c\xc5\x8a4\x0fjO\'\x1cf3e\x11\a\x8c\xc1\xeb\r\xc8\x8f\x92\xb4\x18\x0e\x15\xf0\x9c\'6\x82a\xe8:\xab\xbeN,2y=\x92f\x88|\x87\xd4\xbc\x1cT\a\x939\xbf\f\xc1dv\xdc\xa6\xb8\xa2\xbb\x13\x86\x94\xa9\xf0\xe0\xc9\xae\xe7u\xba\xd2K&\x96po0C\x00h?\r\xb8\r\xdb=$\'\xddH\x82~>w\xd7\xeb\xeas\xc9q2\x1d\xcf\ry\r9\x97\x04\x13\xdc\xbe\fn\xe8T\xa0\xf2\x1e\xa8\\\x91\xfd\x86\bW\x9c!1\xb8\xf5f\xd9\x8d\xda', 0x81)
fsconfig$auto_HIDEPID_NO_ACCESS(r1, 0x8, &(0x7f0000000040)='/dev/ttyS2\x00', &(0x7f00000000c0), 0x1)
statmount$auto(0x0, &(0x7f00000006c0)={0x81, 0xffffffff, 0x44f, 0x807, 0x5, 0x8, 0x1ffde, 0x7, 0x3, 0xb, 0x9, 0x80003, 0x8000000000000000, 0x80000001, 0x384, 0x1, 0x8, 0x6, 0x400007f, 0xfffffffffffffffc, 0x2, 0xe, 0x22000, 0x200, 0xffffffff, 0x84, 0x0, 0x0, 0x10000006, 0x0, 0x0, [0x350, 0x0, 0x0, 0xd, 0xfffffffffffffffa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x8, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x73bc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x2, 0x4, 0x0, 0x3b7, 0xe, 0x6, 0x1, 0x0, 0x0, 0x2]}, 0x9, 0xd)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_GET_MSRS(r2, 0x4008ae90, &(0x7f00000000c0)={0xfc})
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0)

2m7.035779432s ago: executing program 3 (id=647):
mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_setup$auto(0x2, 0x0)
mlockall$auto(0x7)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
mmap$auto(0xfffffffffffff25c, 0x3, 0x121, 0x16, r0, 0x8)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000100)={{@raw=0x2, 0x85, 0x20e, 0x1, "669cbbd9e9756f22fdffa199e0f106000000000000000b2f4ab8633824f2d2252ca5f200", @raw=0x8}, 0x0, @integer=@value=[0x0, 0x4, 0xf, 0x80000001, 0xfffffffffffffff7, 0x4, 0xc, 0x3, 0x8f, 0x2, 0x3, 0xa4f, 0x101, 0x8, 0x0, 0x8, 0x1, 0x6, 0x3, 0x2, 0x2, 0x1, 0x8, 0x4, 0x2, 0x1, 0x7, 0xfb, 0xf, 0x100000000, 0x10, 0x6, 0x10da, 0x7, 0x8, 0x81, 0x8, 0x6, 0x6, 0x8, 0x56d1, 0x1, 0x7, 0x0, 0x7, 0xc, 0x9, 0xd4, 0x800, 0x3, 0x2, 0x25489d7a, 0x2, 0x90000000000000, 0x9, 0xfffffffffffffff8, 0x2d, 0x7, 0xffff, 0x6, 0x5, 0x3, 0xc69, 0x95, 0x7, 0x5, 0x2, 0x5, 0xfffffffffffffffd, 0x4, 0x4, 0xb000000000, 0x6, 0x80000001, 0x1, 0x8, 0x4, 0x14, 0xd8, 0xa, 0x443, 0x7, 0x1, 0x4, 0x3, 0x9, 0xc, 0x1, 0x5, 0x80, 0x1, 0x3, 0x10001, 0x1, 0x7, 0xfffffffffffffffe, 0x2, 0xfffffffffffffff9, 0x5, 0x3, 0xfffffffffffffff8, 0xffffffff7fffffff, 0xa7, 0x4, 0x1, 0x100000000, 0x51a, 0x1, 0x6, 0x4, 0x2d4, 0x40e9, 0x5, 0x5, 0xffffffffffffffff, 0x0, 0x1, 0x2, 0x7fffffffffffffff, 0x550, 0x0, 0x1, 0x1, 0x9, 0x8, 0x2, 0x5], "282f77b07e718e11749a346177741dc299a28a585e87e0d908e2c8e50de501951d8fcdc4f791a11996aad5af504c0d9927e62ef70b23a13735a4fe805c1ce1b6b1d83d21bb42794ec925b4547a3d52d4b5210392111e181719fef9d685b6534b171d76ad633f94a608b818600a6c8500"})
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000640), 0x4c4ac3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x183941, 0x0)
write$auto(0x3, 0x0, 0x100082)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xa8000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7fff)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/udp_early_demux\x00', 0x28802, 0x0)
read$auto(0x3, 0x0, 0x80)
r2 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r2, 0x0, 0xc70)
pread64$auto(r1, 0x0, 0x9, 0x10000003fe)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)

1m53.482765869s ago: executing program 0 (id=683):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
pread64$auto(0xffffffffffffffff, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

1m51.934211513s ago: executing program 0 (id=676):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/controlC1\x00', 0x68080, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/lapb1/dormant\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0)
sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x24008000}, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
mmap$auto(0x40000000, 0x9645, 0xdf, 0x8011, 0x2, 0x2d4a29c0)
pivot_root$auto(0x0, 0x0)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
mmap$auto(0x0, 0x7fff, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000000, 0xe)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
connect$auto(0x3, 0x0, 0x10)
unshare$auto(0x40000080)
r2 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000100), 0x80840, 0x0)
readv$auto(r2, &(0x7f0000000a80)={0x0, 0x5b54}, 0x1)
getsockopt$auto(0xffffffffffffffff, 0x9, 0x2, &(0x7f0000000040)='/dev/cec27\x00', 0x0)
msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f00000003c0)={{0x7fff, 0xee00, 0xffffffffffffffff, 0x80000001, 0xa8, 0x80, 0x6dc8}, 0x0, &(0x7f0000000380)=0x2, 0x5, 0x1, 0x3, 0x0, 0x2, 0x5, 0xfffc, 0x8c2, @raw=0x10009fd5, @raw=0x3})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_mac802154_hwsim(0x0, 0xffffffffffffffff)
capset$auto(&(0x7f0000000200)={0x7ff}, &(0x7f0000000280)={0x4, 0x3, 0xe})

1m51.824620388s ago: executing program 32 (id=647):
mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_setup$auto(0x2, 0x0)
mlockall$auto(0x7)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
mmap$auto(0xfffffffffffff25c, 0x3, 0x121, 0x16, r0, 0x8)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000100)={{@raw=0x2, 0x85, 0x20e, 0x1, "669cbbd9e9756f22fdffa199e0f106000000000000000b2f4ab8633824f2d2252ca5f200", @raw=0x8}, 0x0, @integer=@value=[0x0, 0x4, 0xf, 0x80000001, 0xfffffffffffffff7, 0x4, 0xc, 0x3, 0x8f, 0x2, 0x3, 0xa4f, 0x101, 0x8, 0x0, 0x8, 0x1, 0x6, 0x3, 0x2, 0x2, 0x1, 0x8, 0x4, 0x2, 0x1, 0x7, 0xfb, 0xf, 0x100000000, 0x10, 0x6, 0x10da, 0x7, 0x8, 0x81, 0x8, 0x6, 0x6, 0x8, 0x56d1, 0x1, 0x7, 0x0, 0x7, 0xc, 0x9, 0xd4, 0x800, 0x3, 0x2, 0x25489d7a, 0x2, 0x90000000000000, 0x9, 0xfffffffffffffff8, 0x2d, 0x7, 0xffff, 0x6, 0x5, 0x3, 0xc69, 0x95, 0x7, 0x5, 0x2, 0x5, 0xfffffffffffffffd, 0x4, 0x4, 0xb000000000, 0x6, 0x80000001, 0x1, 0x8, 0x4, 0x14, 0xd8, 0xa, 0x443, 0x7, 0x1, 0x4, 0x3, 0x9, 0xc, 0x1, 0x5, 0x80, 0x1, 0x3, 0x10001, 0x1, 0x7, 0xfffffffffffffffe, 0x2, 0xfffffffffffffff9, 0x5, 0x3, 0xfffffffffffffff8, 0xffffffff7fffffff, 0xa7, 0x4, 0x1, 0x100000000, 0x51a, 0x1, 0x6, 0x4, 0x2d4, 0x40e9, 0x5, 0x5, 0xffffffffffffffff, 0x0, 0x1, 0x2, 0x7fffffffffffffff, 0x550, 0x0, 0x1, 0x1, 0x9, 0x8, 0x2, 0x5], "282f77b07e718e11749a346177741dc299a28a585e87e0d908e2c8e50de501951d8fcdc4f791a11996aad5af504c0d9927e62ef70b23a13735a4fe805c1ce1b6b1d83d21bb42794ec925b4547a3d52d4b5210392111e181719fef9d685b6534b171d76ad633f94a608b818600a6c8500"})
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000640), 0x4c4ac3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x183941, 0x0)
write$auto(0x3, 0x0, 0x100082)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xa8000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7fff)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/udp_early_demux\x00', 0x28802, 0x0)
read$auto(0x3, 0x0, 0x80)
r2 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r2, 0x0, 0xc70)
pread64$auto(r1, 0x0, 0x9, 0x10000003fe)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)

1m49.291628977s ago: executing program 0 (id=681):
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
socket(0x10, 0x3, 0x2)
socket(0x10, 0x2, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0x4048aecb, 0x0)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/dirty_writeback_centisecs\x00', 0xb02, 0x0)
sendfile$auto(r2, r2, 0x0, 0x2)

1m48.562683273s ago: executing program 0 (id=684):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)

1m46.167686547s ago: executing program 0 (id=687):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)

1m43.634693212s ago: executing program 0 (id=690):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/controlC1\x00', 0x68080, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/lapb1/dormant\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0)
sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x24008000}, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
mmap$auto(0x40000000, 0x9645, 0xdf, 0x8011, 0x2, 0x2d4a29c0)
pivot_root$auto(0x0, 0x0)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
mmap$auto(0x0, 0x7fff, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000000, 0xe)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
connect$auto(0x3, 0x0, 0x10)
unshare$auto(0x40000080)
r2 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000100), 0x80840, 0x0)
readv$auto(r2, &(0x7f0000000a80)={0x0, 0x5b54}, 0x1)
getsockopt$auto(0xffffffffffffffff, 0x9, 0x2, &(0x7f0000000040)='/dev/cec27\x00', 0x0)
msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f00000003c0)={{0x7fff, 0xee00, 0xffffffffffffffff, 0x80000001, 0xa8, 0x80, 0x6dc8}, 0x0, &(0x7f0000000380)=0x2, 0x5, 0x1, 0x3, 0x0, 0x2, 0x5, 0xfffc, 0x8c2, @raw=0x10009fd5, @raw=0x3})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_mac802154_hwsim(0x0, 0xffffffffffffffff)
capset$auto(&(0x7f0000000200)={0x7ff}, &(0x7f0000000280)={0x4, 0x3, 0xe})

1m31.076218559s ago: executing program 1 (id=709):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
pread64$auto(0xffffffffffffffff, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

1m28.865361719s ago: executing program 1 (id=713):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x4000, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
sysfs$auto(0x2, 0x23, 0x0)
r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r1, 0x0, 0x3)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto(0x3, 0x40081271, 0x38)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
r3 = socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto(r3, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x18)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x1, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000)
shmctl$auto_IPC_SET(0xc, 0x1, &(0x7f0000000300)={{0xffffffff, 0xffffffffffffffff, 0xee01, 0x1000, 0xae, 0x9, 0x6}, 0x1, 0x7, 0x2, 0x280, @raw, @raw=0x5, 0x3, 0x0, &(0x7f0000000140)="4666def67af41b4f051e39fd6511fd6cfab11faa93fdd757f3a42ab52c0db46c7c57737a54cb9ad1fccd9f47e3400debebecee8c4b3ab4b0ecd15cb89799d7a8a423d738e2914ff98f43b494873650cfa841ca9b379cdbceb067f222f9852e4e248e519e6e2d25bc83b3fb9ec16cbc5fe503b9662d19861c9bb377749418140efde7024c7215d323a6c79c5be94bc04ed0d9afbb9c9574ff829522a54b91ef7bcef85e226564639c87b944203a6814a00eea8134d42bc137511ab276827b7ee17d85c2722c34b6d9cd3c095bd1094df859fd44defb05f086d48e42b8cfe4f20b057126cfb78738004716a5e21149cc372c89149624db4102", &(0x7f0000000240)="41b431f15aa64d11716c2908cc9f948827ddb702f4ae4ad578a4d9e2fa81507ca870d066e25696b0b2ac35abb53a8fc6e9df9fdbbc11fe705ab85e88111e5684e28f8599bc486b93eea020ee76a340a548c82e805e2d182d741e51d53c799f7bb722"})
socket(0xb, 0xa, 0xd9)
setpgid$auto(0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r4 = socket(0xa, 0x1, 0x84)
bind$auto(r4, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
epoll_ctl$auto_EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000000c0)={0x4, 0x3})
write$auto(0x3, 0x0, 0xfdef)
read$auto(0x3, 0x0, 0x1f40)

1m28.445050987s ago: executing program 33 (id=690):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/controlC1\x00', 0x68080, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/lapb1/dormant\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0)
sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="4d0448847000ffdbdf250400000008000400080000002b11cb2bc91a1b7d5e3832293c74befc142cc314d89067e616d4c859342bdf5ecf4f84aec702fa8efdd525c39926ed3dbcbb0dffdaee0d001ae260db65049bf85edcf99bb7d79ce4c577bba35200c0d2c6176e7d8037f09006303a63ac7f055eba88c189c13b86a947ef291f28f3f137b70b4459513d296a39b3ab149714e872729fdb3e2c9ac855fbccb16294c6f96d5a037af3f0d89449092e821cb00ea3a8be21a0708b8506aef095239adc1eda0b54b10298bf116ab18daf41f7e13621307b9f905d018d11011a4a3e35e586b935e368195fadcae9c4f4afe38ef12615b7c7aca5c1abfcf9ab207471914518d061ee0961c823c698882a2201ca71fa6402524bb8ac7d53a1d1055f84376a1ded45baffffffff73615f6c5ca1f1233804f1762500d6ee313f09c8cbb8261b725eec3ed9211455ff536eabbb300983f5a70e84dd5d"], 0x1c}, 0x1, 0x0, 0x0, 0x24008000}, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
mmap$auto(0x40000000, 0x9645, 0xdf, 0x8011, 0x2, 0x2d4a29c0)
pivot_root$auto(0x0, 0x0)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
mmap$auto(0x0, 0x7fff, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000000, 0xe)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
connect$auto(0x3, 0x0, 0x10)
unshare$auto(0x40000080)
r2 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000100), 0x80840, 0x0)
readv$auto(r2, &(0x7f0000000a80)={0x0, 0x5b54}, 0x1)
getsockopt$auto(0xffffffffffffffff, 0x9, 0x2, &(0x7f0000000040)='/dev/cec27\x00', 0x0)
msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f00000003c0)={{0x7fff, 0xee00, 0xffffffffffffffff, 0x80000001, 0xa8, 0x80, 0x6dc8}, 0x0, &(0x7f0000000380)=0x2, 0x5, 0x1, 0x3, 0x0, 0x2, 0x5, 0xfffc, 0x8c2, @raw=0x10009fd5, @raw=0x3})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_mac802154_hwsim(0x0, 0xffffffffffffffff)
capset$auto(&(0x7f0000000200)={0x7ff}, &(0x7f0000000280)={0x4, 0x3, 0xe})

1m26.73229834s ago: executing program 1 (id=717):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r2, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

1m23.983296428s ago: executing program 1 (id=720):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
pread64$auto(0xffffffffffffffff, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

1m21.621684655s ago: executing program 1 (id=725):
mmap$auto(0x0, 0x1, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socket(0x10, 0x2, 0x0)
open(0x0, 0x261c2, 0x22)
io_uring_setup$auto(0xf, 0x0)
socket(0x18, 0xa, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_iommufd_fops_main(0xffffffffffffff9c, 0x0, 0x80001, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$auto(0x1, 0x3, 0x0, 0x0)
r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0)
write$auto(r0, 0x0, 0xc3)

1m21.396277452s ago: executing program 1 (id=727):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/controlC1\x00', 0x68080, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/lapb1/dormant\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000440)=""/139, 0x8b)
sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
mmap$auto(0x40000000, 0x9645, 0xdf, 0x8011, 0x2, 0x2d4a29c0)
pivot_root$auto(0x0, 0x0)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
mmap$auto(0x0, 0x7fff, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000000, 0xe)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
connect$auto(0x3, 0x0, 0x10)
unshare$auto(0x40000080)
r2 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000100), 0x80840, 0x0)
readv$auto(r2, &(0x7f0000000a80)={0x0, 0x5b54}, 0x1)
getsockopt$auto(0xffffffffffffffff, 0x9, 0x2, &(0x7f0000000040)='/dev/cec27\x00', 0x0)
msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f00000003c0)={{0x7fff, 0xee00, 0xffffffffffffffff, 0x80000001, 0xa8, 0x80, 0x6dc8}, 0x0, &(0x7f0000000380)=0x2, 0x5, 0x1, 0x3, 0x0, 0x2, 0x5, 0xfffc, 0x8c2, @raw=0x10009fd5, @raw=0x3})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_mac802154_hwsim(0x0, 0xffffffffffffffff)
capset$auto(&(0x7f0000000200)={0x7ff}, &(0x7f0000000280)={0x4, 0x3, 0xe})

1m6.162946248s ago: executing program 34 (id=727):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/controlC1\x00', 0x68080, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/lapb1/dormant\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000440)=""/139, 0x8b)
sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
mmap$auto(0x40000000, 0x9645, 0xdf, 0x8011, 0x2, 0x2d4a29c0)
pivot_root$auto(0x0, 0x0)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
mmap$auto(0x0, 0x7fff, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000000, 0xe)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
connect$auto(0x3, 0x0, 0x10)
unshare$auto(0x40000080)
r2 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000100), 0x80840, 0x0)
readv$auto(r2, &(0x7f0000000a80)={0x0, 0x5b54}, 0x1)
getsockopt$auto(0xffffffffffffffff, 0x9, 0x2, &(0x7f0000000040)='/dev/cec27\x00', 0x0)
msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f00000003c0)={{0x7fff, 0xee00, 0xffffffffffffffff, 0x80000001, 0xa8, 0x80, 0x6dc8}, 0x0, &(0x7f0000000380)=0x2, 0x5, 0x1, 0x3, 0x0, 0x2, 0x5, 0xfffc, 0x8c2, @raw=0x10009fd5, @raw=0x3})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_mac802154_hwsim(0x0, 0xffffffffffffffff)
capset$auto(&(0x7f0000000200)={0x7ff}, &(0x7f0000000280)={0x4, 0x3, 0xe})

17.679915628s ago: executing program 5 (id=820):
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x40000, 0x0)
mmap$auto_vmwgfx_driver_fops_vmwgfx_drv(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x101000000)
setfsuid$auto(0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
mmap$auto(0x2, 0x810004, 0x400000000ff9, 0x8000000008011, 0x3, 0x8000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000440)={&(0x7f0000001900)=ANY=[], 0x558}, 0x1, 0x0, 0x0, 0x20008805}, 0x200088c0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/afs/addr_prefs\x00', 0x8104, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000e80)=""/215, 0xd7)
write$auto(r1, 0x0, 0x100000a3d9)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NBD_CMD_DISCONNECT(r3, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)={&(0x7f0000000000)={0x14, 0x0, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20044800}, 0x4000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8000ffff}, 0x4)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8401, 0x0)
ioctl$auto_IOC_PR_PREEMPT_ABORT(r4, 0x401870cc, &(0x7f0000000000)={0x800000000021, 0x3, 0x2, 0xfffffff9})

16.65161675s ago: executing program 5 (id=821):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

15.998973516s ago: executing program 2 (id=822):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x4000, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
sysfs$auto(0x2, 0x23, 0x0)
r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r1, 0x0, 0x3)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto(0x3, 0x40081271, 0x38)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
r3 = socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto(r3, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x18)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x1, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000)
shmctl$auto_IPC_SET(0xc, 0x1, &(0x7f0000000300)={{0xffffffff, 0xffffffffffffffff, 0xee01, 0x1000, 0xae, 0x9, 0x6}, 0x1, 0x7, 0x2, 0x280, @raw, @raw=0x5, 0x3, 0x0, &(0x7f0000000140)="4666def67af41b4f051e39fd6511fd6cfab11faa93fdd757f3a42ab52c0db46c7c57737a54cb9ad1fccd9f47e3400debebecee8c4b3ab4b0ecd15cb89799d7a8a423d738e2914ff98f43b494873650cfa841ca9b379cdbceb067f222f9852e4e248e519e6e2d25bc83b3fb9ec16cbc5fe503b9662d19861c9bb377749418140efde7024c7215d323a6c79c5be94bc04ed0d9afbb9c9574ff829522a54b91ef7bcef85e226564639c87b944203a6814a00eea8134d42bc137511ab276827b7ee17d85c2722c34b6d9cd3c095bd1094df859fd44defb05f086d48e42b8cfe4f20b057126cfb78738004716a5e21149cc372c89149624db4102", &(0x7f0000000240)="41b431f15aa64d11716c2908cc9f948827ddb702f4ae4ad578a4d9e2fa81507ca870d066e25696b0b2ac35abb53a8fc6e9df9fdbbc11fe705ab85e88111e5684e28f8599bc486b93eea020ee76a340a548c82e805e2d182d741e51d53c799f7bb722a591e8ac4c48f3317ac8926b8bfb8d1ffa178e0f32427342108341061883"})
socket(0xb, 0xa, 0xd9)
setpgid$auto(0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r4 = socket(0xa, 0x1, 0x84)
bind$auto(r4, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
epoll_ctl$auto_EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000000c0)={0x4, 0x3})
write$auto(0x3, 0x0, 0xfdef)
read$auto(0x3, 0x0, 0x1f40)

15.504297456s ago: executing program 6 (id=823):
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x40000, 0x0)
mmap$auto_vmwgfx_driver_fops_vmwgfx_drv(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x101000000)
setfsuid$auto(0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
mmap$auto(0x2, 0x810004, 0x400000000ff9, 0x8000000008011, 0x3, 0x8000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000440)={&(0x7f0000001900)=ANY=[], 0x558}, 0x1, 0x0, 0x0, 0x20008805}, 0x200088c0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/afs/addr_prefs\x00', 0x8104, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000e80)=""/215, 0xd7)
write$auto(r1, 0x0, 0x100000a3d9)
r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000002100), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)={&(0x7f0000000000)={0x14, r3, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20044800}, 0x4000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8000ffff}, 0x4)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8401, 0x0)
ioctl$auto_IOC_PR_PREEMPT_ABORT(r4, 0x401870cc, &(0x7f0000000000)={0x800000000021, 0x3, 0x2, 0xfffffff9})

14.084141931s ago: executing program 6 (id=825):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

13.941648956s ago: executing program 4 (id=826):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

13.474462106s ago: executing program 2 (id=827):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

12.885745248s ago: executing program 5 (id=828):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

10.011397695s ago: executing program 6 (id=829):
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x0)
r0 = socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
socket(0x10, 0x3, 0x2)
socket(0x10, 0x2, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
getsockopt$auto(r0, 0x84, 0x6c, 0x0, &(0x7f0000000280)=0x1000c0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/dirty_writeback_centisecs\x00', 0xb02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x2)

9.806002134s ago: executing program 4 (id=830):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

9.561858896s ago: executing program 2 (id=831):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

9.260568659s ago: executing program 6 (id=832):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r2, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

8.83281365s ago: executing program 5 (id=833):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

6.196452048s ago: executing program 4 (id=834):
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x40000, 0x0)
mmap$auto_vmwgfx_driver_fops_vmwgfx_drv(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x101000000)
setfsuid$auto(0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
mmap$auto(0x2, 0x810004, 0x400000000ff9, 0x8000000008011, 0x3, 0x8000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000440)={&(0x7f0000001900)=ANY=[], 0x558}, 0x1, 0x0, 0x0, 0x20008805}, 0x200088c0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/afs/addr_prefs\x00', 0x8104, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000e80)=""/215, 0xd7)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000002100), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_DISCONNECT(r2, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)={&(0x7f0000000000)={0x14, r3, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20044800}, 0x4000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8000ffff}, 0x4)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8401, 0x0)
ioctl$auto_IOC_PR_PREEMPT_ABORT(r4, 0x401870cc, &(0x7f0000000000)={0x800000000021, 0x3, 0x2, 0xfffffff9})

5.695898163s ago: executing program 2 (id=835):
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x40000, 0x0)
mmap$auto_vmwgfx_driver_fops_vmwgfx_drv(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x101000000)
setfsuid$auto(0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
mmap$auto(0x2, 0x810004, 0x400000000ff9, 0x8000000008011, 0x3, 0x8000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000440)={&(0x7f0000001900)=ANY=[], 0x558}, 0x1, 0x0, 0x0, 0x20008805}, 0x200088c0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/afs/addr_prefs\x00', 0x8104, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000e80)=""/215, 0xd7)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000002100), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_DISCONNECT(r2, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)={&(0x7f0000000000)={0x14, r3, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20044800}, 0x4000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8000ffff}, 0x4)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8401, 0x0)
ioctl$auto_IOC_PR_PREEMPT_ABORT(r4, 0x401870cc, &(0x7f0000000000)={0x800000000021, 0x3, 0x2, 0xfffffff9})

5.649275943s ago: executing program 6 (id=836):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

5.289659707s ago: executing program 4 (id=837):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x4000, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
sysfs$auto(0x2, 0x23, 0x0)
r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r1, 0x0, 0x3)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto(0x3, 0x40081271, 0x38)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
r3 = socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto(r3, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x18)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x1, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000)
shmctl$auto_IPC_SET(0xc, 0x1, &(0x7f0000000300)={{0xffffffff, 0xffffffffffffffff, 0xee01, 0x1000, 0xae, 0x9, 0x6}, 0x1, 0x7, 0x2, 0x280, @raw, @raw=0x5, 0x3, 0x0, &(0x7f0000000140)="4666def67af41b4f051e39fd6511fd6cfab11faa93fdd757f3a42ab52c0db46c7c57737a54cb9ad1fccd9f47e3400debebecee8c4b3ab4b0ecd15cb89799d7a8a423d738e2914ff98f43b494873650cfa841ca9b379cdbceb067f222f9852e4e248e519e6e2d25bc83b3fb9ec16cbc5fe503b9662d19861c9bb377749418140efde7024c7215d323a6c79c5be94bc04ed0d9afbb9c9574ff829522a54b91ef7bcef85e226564639c87b944203a6814a00eea8134d42bc137511ab276827b7ee17d85c2722c34b6d9cd3c095bd1094df859fd44defb05f086d48e42b8cfe4f20b057126cfb78738004716a5e21149cc372c89149624db4102", &(0x7f0000000240)="41b431f15aa64d11716c2908cc9f948827ddb702f4ae4ad578a4d9e2fa81507ca870d066e25696b0b2ac35abb53a8fc6e9df9fdbbc11fe705ab85e88111e5684e28f8599bc486b93eea020ee76a340a548c82e805e2d182d741e51d53c799f7bb722a591e8ac4c48f3317ac8926b8bfb8d1ffa178e0f324273421083410618838dc3"})
socket(0xb, 0xa, 0xd9)
setpgid$auto(0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r4 = socket(0xa, 0x1, 0x84)
bind$auto(r4, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, 0x0, 0x54)
epoll_ctl$auto_EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000000c0)={0x4, 0x3})
write$auto(0x3, 0x0, 0xfdef)
read$auto(0x3, 0x0, 0x1f40)

5.015505507s ago: executing program 5 (id=838):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

4.152283582s ago: executing program 2 (id=839):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r2, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

3.237420364s ago: executing program 4 (id=840):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/controlC1\x00', 0x68080, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/lapb1/dormant\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000440)=""/139, 0x8b)
sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x24008000}, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
mmap$auto(0x40000000, 0x9645, 0xdf, 0x8011, 0x2, 0x2d4a29c0)
pivot_root$auto(0x0, 0x0)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
mmap$auto(0x0, 0x7fff, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000000, 0xe)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
connect$auto(0x3, 0x0, 0x10)
unshare$auto(0x40000080)
r2 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000100), 0x80840, 0x0)
readv$auto(r2, &(0x7f0000000a80)={0x0, 0x5b54}, 0x1)
getsockopt$auto(0xffffffffffffffff, 0x9, 0x2, &(0x7f0000000040)='/dev/cec27\x00', 0x0)
msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f00000003c0)={{0x7fff, 0xee00, 0xffffffffffffffff, 0x80000001, 0xa8, 0x80, 0x6dc8}, 0x0, &(0x7f0000000380)=0x2, 0x5, 0x1, 0x3, 0x0, 0x2, 0x5, 0xfffc, 0x8c2, @raw=0x10009fd5, @raw=0x3})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_mac802154_hwsim(0x0, 0xffffffffffffffff)
capset$auto(&(0x7f0000000200)={0x7ff}, &(0x7f0000000280)={0x4, 0x3, 0xe})

1.824493116s ago: executing program 6 (id=841):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r2, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

1.3656545s ago: executing program 5 (id=842):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

770.319045ms ago: executing program 4 (id=843):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

0s ago: executing program 2 (id=844):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kfence/parameters/sample_interval\x00', 0x102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
bpf$auto(0x2, 0x0, 0x1)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)

kernel console output (not intermixed with test programs):

8.146583][ T6656]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  158.146620][ T6656]  misc_open+0x26d/0x450
[  158.146661][ T6656]  ? __pfx_misc_open+0x10/0x10
[  158.146701][ T6656]  chrdev_open+0x234/0x6a0
[  158.146740][ T6656]  ? __pfx_apparmor_file_open+0x10/0x10
[  158.146775][ T6656]  ? __pfx_chrdev_open+0x10/0x10
[  158.146818][ T6656]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  158.146869][ T6656]  do_dentry_open+0x748/0x1590
[  158.146917][ T6656]  ? __pfx_chrdev_open+0x10/0x10
[  158.146970][ T6656]  vfs_open+0x82/0x3f0
[  158.147022][ T6656]  path_openat+0x2078/0x3140
[  158.147077][ T6656]  ? __pfx_path_openat+0x10/0x10
[  158.147133][ T6656]  do_filp_open+0x20b/0x470
[  158.147191][ T6656]  ? __pfx_do_filp_open+0x10/0x10
[  158.147262][ T6656]  ? alloc_fd+0x471/0x7d0
[  158.147310][ T6656]  do_sys_openat2+0x11f/0x280
[  158.147347][ T6656]  ? __pfx_do_sys_openat2+0x10/0x10
[  158.147393][ T6656]  __x64_sys_openat+0x174/0x210
[  158.147428][ T6656]  ? __pfx___x64_sys_openat+0x10/0x10
[  158.147475][ T6656]  do_syscall_64+0xcd/0xf80
[  158.147503][ T6656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.147527][ T6656] RIP: 0033:0x7f5acbf8f7c9
[  158.147545][ T6656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.147568][ T6656] RSP: 002b:00007f5accdd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  158.147590][ T6656] RAX: ffffffffffffffda RBX: 00007f5acc1e5fa0 RCX: 00007f5acbf8f7c9
[  158.147605][ T6656] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  158.147620][ T6656] RBP: 00007f5acc013f91 R08: 0000000000000000 R09: 0000000000000000
[  158.147634][ T6656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  158.147648][ T6656] R13: 00007f5acc1e6038 R14: 00007f5acc1e5fa0 R15: 00007ffe35994d38
[  158.147678][ T6656]  </TASK>
[  158.437106][ T6658] FAULT_INJECTION: forcing a failure.
[  158.437106][ T6658] name fail_futex, interval 1, probability 0, space 0, times 1
[  158.450050][ T6658] CPU: 1 UID: 0 PID: 6658 Comm: syz.1.204 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  158.450088][ T6658] Tainted: [U]=USER
[  158.450095][ T6658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  158.450109][ T6658] Call Trace:
[  158.450117][ T6658]  <TASK>
[  158.450126][ T6658]  dump_stack_lvl+0x16c/0x1f0
[  158.450155][ T6658]  should_fail_ex+0x512/0x640
[  158.450188][ T6658]  get_futex_key+0x1d0/0x15f0
[  158.450223][ T6658]  ? __pfx_get_futex_key+0x10/0x10
[  158.450263][ T6658]  futex_wake+0xea/0x530
[  158.450299][ T6658]  ? kasan_quarantine_put+0x10a/0x240
[  158.450326][ T6658]  ? __pfx_futex_wake+0x10/0x10
[  158.450364][ T6658]  ? strncpy_from_user+0x1d9/0x2e0
[  158.450399][ T6658]  do_futex+0x1e3/0x350
[  158.450432][ T6658]  ? __pfx_do_futex+0x10/0x10
[  158.450464][ T6658]  ? __pfx_do_sys_openat2+0x10/0x10
[  158.450504][ T6658]  __x64_sys_futex+0x1e0/0x4c0
[  158.450541][ T6658]  ? __pfx___x64_sys_futex+0x10/0x10
[  158.450575][ T6658]  ? __pfx___x64_sys_creat+0x10/0x10
[  158.450609][ T6658]  ? __pfx_ksys_write+0x10/0x10
[  158.450642][ T6658]  do_syscall_64+0xcd/0xf80
[  158.450670][ T6658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.450694][ T6658] RIP: 0033:0x7ff39278f7c9
[  158.450712][ T6658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.450735][ T6658] RSP: 002b:00007ff3936070e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  158.450756][ T6658] RAX: ffffffffffffffda RBX: 00007ff3929e5fa8 RCX: 00007ff39278f7c9
[  158.450771][ T6658] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff3929e5fac
[  158.450785][ T6658] RBP: 00007ff3929e5fa0 R08: 00007ff393608000 R09: 0000000000000000
[  158.450800][ T6658] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  158.450814][ T6658] R13: 00007ff3929e6038 R14: 00007ffffffa7150 R15: 00007ffffffa7238
[  158.450852][ T6658]  </TASK>
[  158.751636][ T6656] capability: warning: `syz.3.203' uses 32-bit capabilities (legacy support in use)
[  159.294660][ T6670] netlink: 338 bytes leftover after parsing attributes in process `syz.2.206'.
[  159.645195][ T6672] syz.0.207 (6672) used greatest stack depth: 19720 bytes left
[  160.582884][ T6668] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed.
[  161.015191][ T6702] ubi0: detaching mtd0
[  161.042979][ T6702] ubi0: mtd0 is detached
[  161.258595][ T6707] FAULT_INJECTION: forcing a failure.
[  161.258595][ T6707] name failslab, interval 1, probability 0, space 0, times 0
[  161.273017][ T6707] CPU: 1 UID: 0 PID: 6707 Comm: syz.0.215 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  161.273070][ T6707] Tainted: [U]=USER
[  161.273082][ T6707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  161.273102][ T6707] Call Trace:
[  161.273112][ T6707]  <TASK>
[  161.273126][ T6707]  dump_stack_lvl+0x16c/0x1f0
[  161.273168][ T6707]  should_fail_ex+0x512/0x640
[  161.273206][ T6707]  ? __kmalloc_cache_noprof+0x5f/0x800
[  161.273256][ T6707]  should_failslab+0xc2/0x120
[  161.273296][ T6707]  __kmalloc_cache_noprof+0x72/0x800
[  161.273329][ T6707]  ? __mutex_unlock_slowpath+0x161/0x790
[  161.273356][ T6707]  ? shrinker_alloc+0xf5/0xbf0
[  161.273397][ T6707]  ? shrinker_alloc+0xf5/0xbf0
[  161.273430][ T6707]  shrinker_alloc+0xf5/0xbf0
[  161.273468][ T6707]  ? mark_held_locks+0x49/0x80
[  161.273495][ T6707]  ? pcpu_memcg_post_alloc_hook+0x1e/0x690
[  161.273532][ T6707]  ? __percpu_init_rwsem+0x2d/0x160
[  161.273575][ T6707]  ? __pfx_shrinker_alloc+0x10/0x10
[  161.273620][ T6707]  ? lockdep_init_map_type+0x5c/0x270
[  161.273651][ T6707]  ? __raw_spin_lock_init+0x3a/0x110
[  161.273685][ T6707]  ? __init_rwsem+0x12d/0x1b0
[  161.273719][ T6707]  alloc_super+0x7d7/0xd00
[  161.273748][ T6707]  sget_fc+0x116/0xc20
[  161.273770][ T6707]  ? __pfx_set_anon_super_fc+0x10/0x10
[  161.273810][ T6707]  ? __pfx_mqueue_fill_super+0x10/0x10
[  161.273848][ T6707]  get_tree_nodev+0x28/0x190
[  161.273875][ T6707]  mqueue_get_tree+0xf1/0x130
[  161.273911][ T6707]  vfs_get_tree+0x8e/0x330
[  161.273946][ T6707]  fc_mount_longterm+0x1a/0x270
[  161.273986][ T6707]  mq_init_ns+0x2d7/0x400
[  161.274011][ T6707]  copy_ipcs+0x3db/0x790
[  161.274038][ T6707]  create_new_namespaces+0x20a/0xab0
[  161.274075][ T6707]  ? security_capable+0x7e/0x260
[  161.274117][ T6707]  copy_namespaces+0x468/0x570
[  161.274156][ T6707]  copy_process+0x27c6/0x74e0
[  161.274192][ T6707]  ? __pfx_copy_process+0x10/0x10
[  161.274222][ T6707]  ? _copy_from_user+0x59/0xd0
[  161.274268][ T6707]  kernel_clone+0xfc/0x910
[  161.274300][ T6707]  ? __pfx_kernel_clone+0x10/0x10
[  161.274328][ T6707]  ? futex_private_hash_put+0x160/0x1b0
[  161.274376][ T6707]  ? __pfx_futex_wait+0x10/0x10
[  161.274405][ T6707]  __do_sys_clone3+0x212/0x290
[  161.274428][ T6707]  ? __pfx___do_sys_clone3+0x10/0x10
[  161.274464][ T6707]  ? find_held_lock+0x2b/0x80
[  161.274524][ T6707]  do_syscall_64+0xcd/0xf80
[  161.274552][ T6707]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.274576][ T6707] RIP: 0033:0x7f876838f7c9
[  161.274601][ T6707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.274624][ T6707] RSP: 002b:00007f8769295f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  161.274648][ T6707] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f876838f7c9
[  161.274663][ T6707] RDX: 00007f8769295f20 RSI: 0000000000000058 RDI: 00007f8769295f20
[  161.274678][ T6707] RBP: 00007f8768413f91 R08: 0000000000000000 R09: 0000000000000058
[  161.274692][ T6707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  161.274706][ T6707] R13: 00007f87685e6038 R14: 00007f87685e5fa0 R15: 00007ffdadb3c688
[  161.274737][ T6707]  </TASK>
[  162.135365][ T6711] random: crng reseeded on system resumption
[  162.256080][ T6711] hub 1-0:1.0: USB hub found
[  162.292924][ T6711] hub 1-0:1.0: 1 port detected
[  162.334746][ T6716] Restarting kernel threads ...
[  162.358380][ T6716] Done restarting kernel threads.
[  162.926407][ T6729] netlink: 4 bytes leftover after parsing attributes in process `syz.2.222'.
[  162.942105][ T6729] netlink: 'syz.2.222': attribute type 1 has an invalid length.
[  162.952478][ T6729] netlink: 5 bytes leftover after parsing attributes in process `syz.2.222'.
[  163.673485][ T6726] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  163.681838][ T6726] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  163.704028][ T6726] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  163.719697][ T6726] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  163.736105][ T6726] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  163.753442][ T6726] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  163.781880][ T6726] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  163.800681][ T6726] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  163.825980][ T6726] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  163.856413][ T6726] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  163.866055][ T6726] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  163.873672][ T6726] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  164.272733][ T6750] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  164.974357][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout
[  165.042312][ T6764] nbd: couldn't find device at index 33904
[  165.279153][ T6770] FAULT_INJECTION: forcing a failure.
[  165.279153][ T6770] name failslab, interval 1, probability 0, space 0, times 0
[  165.364641][ T6770] CPU: 0 UID: 0 PID: 6770 Comm: syz.2.229 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  165.364693][ T6770] Tainted: [U]=USER
[  165.364704][ T6770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  165.364723][ T6770] Call Trace:
[  165.364735][ T6770]  <TASK>
[  165.364746][ T6770]  dump_stack_lvl+0x16c/0x1f0
[  165.364777][ T6770]  should_fail_ex+0x512/0x640
[  165.364804][ T6770]  ? __kmalloc_cache_noprof+0x5f/0x800
[  165.364841][ T6770]  should_failslab+0xc2/0x120
[  165.364869][ T6770]  __kmalloc_cache_noprof+0x72/0x800
[  165.364902][ T6770]  ? lockdep_init_map_type+0x5c/0x270
[  165.364932][ T6770]  ? nci_hci_allocate+0x45/0x330
[  165.364953][ T6770]  ? mutex_init_lockep+0x110/0x150
[  165.364984][ T6770]  ? nci_hci_allocate+0x45/0x330
[  165.365004][ T6770]  nci_hci_allocate+0x45/0x330
[  165.365026][ T6770]  nci_allocate_device+0x26f/0x430
[  165.365060][ T6770]  virtual_ncidev_open+0x6f/0x220
[  165.365086][ T6770]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  165.365112][ T6770]  misc_open+0x26d/0x450
[  165.365140][ T6770]  ? __pfx_misc_open+0x10/0x10
[  165.365168][ T6770]  chrdev_open+0x234/0x6a0
[  165.365195][ T6770]  ? __pfx_apparmor_file_open+0x10/0x10
[  165.365219][ T6770]  ? __pfx_chrdev_open+0x10/0x10
[  165.365248][ T6770]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  165.365283][ T6770]  do_dentry_open+0x748/0x1590
[  165.365308][ T6770]  ? __pfx_chrdev_open+0x10/0x10
[  165.365343][ T6770]  vfs_open+0x82/0x3f0
[  165.365380][ T6770]  path_openat+0x2078/0x3140
[  165.365416][ T6770]  ? __pfx_path_openat+0x10/0x10
[  165.365454][ T6770]  do_filp_open+0x20b/0x470
[  165.365481][ T6770]  ? __pfx_do_filp_open+0x10/0x10
[  165.365539][ T6770]  ? alloc_fd+0x471/0x7d0
[  165.365573][ T6770]  do_sys_openat2+0x11f/0x280
[  165.365608][ T6770]  ? __pfx_do_sys_openat2+0x10/0x10
[  165.365653][ T6770]  __x64_sys_openat+0x174/0x210
[  165.365689][ T6770]  ? __pfx___x64_sys_openat+0x10/0x10
[  165.365736][ T6770]  do_syscall_64+0xcd/0xf80
[  165.365763][ T6770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.365788][ T6770] RIP: 0033:0x7f6e7038f7c9
[  165.365806][ T6770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.365840][ T6770] RSP: 002b:00007f6e711a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  165.365863][ T6770] RAX: ffffffffffffffda RBX: 00007f6e705e5fa0 RCX: 00007f6e7038f7c9
[  165.365878][ T6770] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  165.365893][ T6770] RBP: 00007f6e70413f91 R08: 0000000000000000 R09: 0000000000000000
[  165.365907][ T6770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  165.365921][ T6770] R13: 00007f6e705e6038 R14: 00007f6e705e5fa0 R15: 00007ffd5104d498
[  165.365951][ T6770]  </TASK>
[  165.764482][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout
[  165.844411][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout
[  165.924472][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout
[  166.187017][ T6778] netlink: 8 bytes leftover after parsing attributes in process `syz.0.230'.
[  167.044389][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout
[  167.300710][ T6792] random: crng reseeded on system resumption
[  167.342979][ T6792] FAULT_INJECTION: forcing a failure.
[  167.342979][ T6792] name failslab, interval 1, probability 0, space 0, times 0
[  167.388325][ T6792] CPU: 0 UID: 0 PID: 6792 Comm: syz.1.235 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  167.388363][ T6792] Tainted: [U]=USER
[  167.388371][ T6792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  167.388385][ T6792] Call Trace:
[  167.388392][ T6792]  <TASK>
[  167.388402][ T6792]  dump_stack_lvl+0x16c/0x1f0
[  167.388432][ T6792]  should_fail_ex+0x512/0x640
[  167.388460][ T6792]  ? __kmalloc_cache_noprof+0x5f/0x800
[  167.388497][ T6792]  should_failslab+0xc2/0x120
[  167.388532][ T6792]  __kmalloc_cache_noprof+0x72/0x800
[  167.388580][ T6792]  ? memory_bm_create+0x154/0x810
[  167.388639][ T6792]  ? memory_bm_create+0x154/0x810
[  167.388676][ T6792]  memory_bm_create+0x154/0x810
[  167.388726][ T6792]  create_basic_memory_bitmaps+0x10b/0x320
[  167.388755][ T6792]  snapshot_open+0x235/0x2b0
[  167.388786][ T6792]  ? __pfx_snapshot_open+0x10/0x10
[  167.388813][ T6792]  misc_open+0x26d/0x450
[  167.388842][ T6792]  ? __pfx_misc_open+0x10/0x10
[  167.388871][ T6792]  chrdev_open+0x234/0x6a0
[  167.388898][ T6792]  ? __pfx_apparmor_file_open+0x10/0x10
[  167.388922][ T6792]  ? __pfx_chrdev_open+0x10/0x10
[  167.388952][ T6792]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  167.388988][ T6792]  do_dentry_open+0x748/0x1590
[  167.389013][ T6792]  ? __pfx_chrdev_open+0x10/0x10
[  167.389050][ T6792]  vfs_open+0x82/0x3f0
[  167.389087][ T6792]  path_openat+0x2078/0x3140
[  167.389124][ T6792]  ? __pfx_path_openat+0x10/0x10
[  167.389162][ T6792]  do_filp_open+0x20b/0x470
[  167.389191][ T6792]  ? __pfx_do_filp_open+0x10/0x10
[  167.389239][ T6792]  ? alloc_fd+0x471/0x7d0
[  167.389279][ T6792]  do_sys_openat2+0x11f/0x280
[  167.389314][ T6792]  ? __pfx_do_sys_openat2+0x10/0x10
[  167.389359][ T6792]  __x64_sys_openat+0x174/0x210
[  167.389395][ T6792]  ? __pfx___x64_sys_openat+0x10/0x10
[  167.389442][ T6792]  do_syscall_64+0xcd/0xf80
[  167.389470][ T6792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.389499][ T6792] RIP: 0033:0x7ff39278f7c9
[  167.389517][ T6792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.389540][ T6792] RSP: 002b:00007ff393607038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  167.389563][ T6792] RAX: ffffffffffffffda RBX: 00007ff3929e5fa0 RCX: 00007ff39278f7c9
[  167.389578][ T6792] RDX: 00000000001438bf RSI: 0000200000000000 RDI: ffffffffffffff9c
[  167.389593][ T6792] RBP: 00007ff392813f91 R08: 0000000000000000 R09: 0000000000000000
[  167.389607][ T6792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  167.389620][ T6792] R13: 00007ff3929e6038 R14: 00007ff3929e5fa0 R15: 00007ffffffa7238
[  167.389654][ T6792]  </TASK>
[  167.850256][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout
[  167.954474][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout
[  168.005690][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout
[  168.387573][ T6805] usb usb4: usbfs: interface 0 claimed by hub while 'syz.2.238' sets config #0
[  168.736041][ T6807] zswap: compressor 000 not available
[  168.899106][ T6813] syz.0.240 uses obsolete (PF_INET,SOCK_PACKET)
[  169.072345][ T6824] random: crng reseeded on system resumption
[  169.087788][ T6819] zswap: compressor  not available
[  169.128554][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout
[  169.131122][ T6807] openvswitch: netlink: IP tunnel dst address not specified
[  169.848042][ T6841] FAULT_INJECTION: forcing a failure.
[  169.848042][ T6841] name failslab, interval 1, probability 0, space 0, times 0
[  169.910266][ T6841] CPU: 1 UID: 0 PID: 6841 Comm: syz.2.245 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  169.910319][ T6841] Tainted: [U]=USER
[  169.910330][ T6841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  169.910350][ T6841] Call Trace:
[  169.910361][ T6841]  <TASK>
[  169.910373][ T6841]  dump_stack_lvl+0x16c/0x1f0
[  169.910415][ T6841]  should_fail_ex+0x512/0x640
[  169.910455][ T6841]  ? __kmalloc_cache_noprof+0x5f/0x800
[  169.910525][ T6841]  should_failslab+0xc2/0x120
[  169.910567][ T6841]  __kmalloc_cache_noprof+0x72/0x800
[  169.910617][ T6841]  ? blk_alloc_queue_stats+0x3f/0x110
[  169.910656][ T6841]  ? blk_alloc_queue_stats+0x3f/0x110
[  169.910687][ T6841]  blk_alloc_queue_stats+0x3f/0x110
[  169.910718][ T6841]  blk_alloc_queue+0xda/0x750
[  169.910759][ T6841]  blk_mq_alloc_queue+0x172/0x280
[  169.910804][ T6841]  ? __pfx_blk_mq_alloc_queue+0x10/0x10
[  169.910877][ T6841]  ? blk_mq_alloc_tag_set+0xb95/0x12e0
[  169.910933][ T6841]  __blk_mq_alloc_disk+0x29/0x120
[  169.910983][ T6841]  loop_add+0x490/0xb70
[  169.911028][ T6841]  ? __pfx_loop_add+0x10/0x10
[  169.911089][ T6841]  ? find_held_lock+0x2b/0x80
[  169.911165][ T6841]  loop_control_ioctl+0x13e/0x630
[  169.911202][ T6841]  ? __pfx_loop_control_ioctl+0x10/0x10
[  169.911245][ T6841]  ? __pfx_loop_control_ioctl+0x10/0x10
[  169.911282][ T6841]  __x64_sys_ioctl+0x18e/0x210
[  169.911338][ T6841]  do_syscall_64+0xcd/0xf80
[  169.911379][ T6841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.911415][ T6841] RIP: 0033:0x7f6e7038f7c9
[  169.911443][ T6841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.911477][ T6841] RSP: 002b:00007f6e711a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  169.911509][ T6841] RAX: ffffffffffffffda RBX: 00007f6e705e5fa0 RCX: 00007f6e7038f7c9
[  169.911532][ T6841] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006
[  169.911553][ T6841] RBP: 00007f6e70413f91 R08: 0000000000000000 R09: 0000000000000000
[  169.911574][ T6841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  169.911594][ T6841] R13: 00007f6e705e6038 R14: 00007f6e705e5fa0 R15: 00007ffd5104d498
[  169.911640][ T6841]  </TASK>
[  170.004595][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout
[  170.141755][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout
[  170.147886][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout

syzkaller
syzkaller login: [  170.629983][ T6847] nbd: couldn't find device at index 33904
[  170.653353][ T6848] FAULT_INJECTION: forcing a failure.
[  170.653353][ T6848] name failslab, interval 1, probability 0, space 0, times 0
[  170.744190][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: syz.0.246 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  170.744245][ T6848] Tainted: [U]=USER
[  170.744255][ T6848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  170.744273][ T6848] Call Trace:
[  170.744284][ T6848]  <TASK>
[  170.744295][ T6848]  dump_stack_lvl+0x16c/0x1f0
[  170.744334][ T6848]  should_fail_ex+0x512/0x640
[  170.744370][ T6848]  ? __kmalloc_cache_noprof+0x5f/0x800
[  170.744423][ T6848]  should_failslab+0xc2/0x120
[  170.744465][ T6848]  __kmalloc_cache_noprof+0x72/0x800
[  170.744513][ T6848]  ? rcu_is_watching+0x12/0xc0
[  170.744544][ T6848]  ? snd_virmidi_input_open+0xc8/0x4d0
[  170.744607][ T6848]  ? snd_virmidi_input_open+0xc8/0x4d0
[  170.744660][ T6848]  snd_virmidi_input_open+0xc8/0x4d0
[  170.744721][ T6848]  open_substream+0x480/0x9d0
[  170.744761][ T6848]  rawmidi_open_priv+0x4db/0x6e0
[  170.744808][ T6848]  snd_rawmidi_open+0x4cb/0xbf0
[  170.744855][ T6848]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  170.744898][ T6848]  ? __pfx_default_wake_function+0x10/0x10
[  170.744964][ T6848]  ? do_raw_spin_lock+0x12c/0x2b0
[  170.745019][ T6848]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  170.745058][ T6848]  snd_open+0x22d/0x4c0
[  170.745110][ T6848]  ? __pfx_snd_open+0x10/0x10
[  170.745161][ T6848]  chrdev_open+0x234/0x6a0
[  170.745201][ T6848]  ? __pfx_chrdev_open+0x10/0x10
[  170.745243][ T6848]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  170.745294][ T6848]  do_dentry_open+0x748/0x1590
[  170.745329][ T6848]  ? __pfx_chrdev_open+0x10/0x10
[  170.745380][ T6848]  vfs_open+0x82/0x3f0
[  170.745431][ T6848]  path_openat+0x2078/0x3140
[  170.745483][ T6848]  ? __pfx_path_openat+0x10/0x10
[  170.745538][ T6848]  do_filp_open+0x20b/0x470
[  170.745579][ T6848]  ? __pfx_do_filp_open+0x10/0x10
[  170.745648][ T6848]  ? alloc_fd+0x471/0x7d0
[  170.745697][ T6848]  do_sys_openat2+0x11f/0x280
[  170.745747][ T6848]  ? __pfx_do_sys_openat2+0x10/0x10
[  170.745812][ T6848]  __x64_sys_openat+0x174/0x210
[  170.745860][ T6848]  ? __pfx___x64_sys_openat+0x10/0x10
[  170.745911][ T6848]  ? syscall_user_dispatch+0x78/0x140
[  170.745982][ T6848]  do_syscall_64+0xcd/0xf80
[  170.746020][ T6848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.746052][ T6848] RIP: 0033:0x7f876838f7c9
[  170.746078][ T6848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.746110][ T6848] RSP: 002b:00007f8769296038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  170.746141][ T6848] RAX: ffffffffffffffda RBX: 00007f87685e5fa0 RCX: 00007f876838f7c9
[  170.746162][ T6848] RDX: 000000000000c140 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  170.746182][ T6848] RBP: 00007f8768413f91 R08: 0000000000000000 R09: 0000000000000000
[  170.746201][ T6848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  170.746220][ T6848] R13: 00007f87685e6038 R14: 00007f87685e5fa0 R15: 00007ffdadb3c688
[  170.746263][ T6848]  </TASK>
[  171.437795][ T6861] netlink: 32 bytes leftover after parsing attributes in process `syz.2.249'.
[  171.471882][ T6858] HfR: entered promiscuous mode
[  171.534088][ T6867] netlink: 8 bytes leftover after parsing attributes in process `syz.0.251'.
[  172.892432][ T6886] bond0: option all_slaves_active: invalid value (15)
[  173.347982][ T6894] openvswitch: netlink: IP tunnel dst address not specified
[  174.908174][ T6918] FAULT_INJECTION: forcing a failure.
[  174.908174][ T6918] name fail_futex, interval 1, probability 0, space 0, times 0
[  175.005636][ T6918] CPU: 0 UID: 0 PID: 6918 Comm: syz.2.263 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  175.005689][ T6918] Tainted: [U]=USER
[  175.005700][ T6918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  175.005719][ T6918] Call Trace:
[  175.005729][ T6918]  <TASK>
[  175.005741][ T6918]  dump_stack_lvl+0x16c/0x1f0
[  175.005781][ T6918]  should_fail_ex+0x512/0x640
[  175.005826][ T6918]  get_futex_key+0x1d0/0x15f0
[  175.005874][ T6918]  ? __pfx_get_futex_key+0x10/0x10
[  175.005932][ T6918]  futex_wake+0xea/0x530
[  175.005981][ T6918]  ? futex_wait+0x120/0x380
[  175.006011][ T6918]  ? __pfx_futex_wait+0x10/0x10
[  175.006041][ T6918]  ? __pfx_futex_wake+0x10/0x10
[  175.006097][ T6918]  ? __do_sys_clone3+0xd7/0x290
[  175.006130][ T6918]  ? __pfx___do_sys_clone3+0x10/0x10
[  175.006170][ T6918]  do_futex+0x1e3/0x350
[  175.006213][ T6918]  ? __pfx_do_futex+0x10/0x10
[  175.006269][ T6918]  __x64_sys_futex+0x1e0/0x4c0
[  175.006329][ T6918]  ? __pfx___x64_sys_futex+0x10/0x10
[  175.006378][ T6918]  ? xfd_validate_state+0x61/0x180
[  175.006425][ T6918]  do_syscall_64+0xcd/0xf80
[  175.006469][ T6918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.006504][ T6918] RIP: 0033:0x7f6e7038f7c9
[  175.006531][ T6918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.006562][ T6918] RSP: 002b:00007f6e711870e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  175.006591][ T6918] RAX: ffffffffffffffda RBX: 00007f6e705e6098 RCX: 00007f6e7038f7c9
[  175.006612][ T6918] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6e705e609c
[  175.006632][ T6918] RBP: 00007f6e705e6090 R08: 00007f6e711a9000 R09: 0000000000000000
[  175.006652][ T6918] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  175.006673][ T6918] R13: 00007f6e705e6128 R14: 00007ffd5104d3b0 R15: 00007ffd5104d498
[  175.006714][ T6918]  </TASK>
[  178.204926][ T6953] FAULT_INJECTION: forcing a failure.
[  178.204926][ T6953] name failslab, interval 1, probability 0, space 0, times 0
[  178.234397][ T6953] CPU: 0 UID: 0 PID: 6953 Comm: syz.3.270 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  178.234451][ T6953] Tainted: [U]=USER
[  178.234461][ T6953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  178.234481][ T6953] Call Trace:
[  178.234491][ T6953]  <TASK>
[  178.234504][ T6953]  dump_stack_lvl+0x16c/0x1f0
[  178.234544][ T6953]  should_fail_ex+0x512/0x640
[  178.234583][ T6953]  ? __kmalloc_cache_noprof+0x5f/0x800
[  178.234634][ T6953]  should_failslab+0xc2/0x120
[  178.234674][ T6953]  __kmalloc_cache_noprof+0x72/0x800
[  178.234721][ T6953]  ? percpu_ref_init+0xec/0x410
[  178.234777][ T6953]  ? percpu_ref_init+0xec/0x410
[  178.234823][ T6953]  ? __pfx_blk_queue_usage_counter_release+0x10/0x10
[  178.234877][ T6953]  percpu_ref_init+0xec/0x410
[  178.234931][ T6953]  blk_alloc_queue+0x574/0x750
[  178.234971][ T6953]  blk_mq_alloc_queue+0x172/0x280
[  178.235018][ T6953]  ? __pfx_blk_mq_alloc_queue+0x10/0x10
[  178.235089][ T6953]  ? blk_mq_alloc_tag_set+0xb95/0x12e0
[  178.235149][ T6953]  __blk_mq_alloc_disk+0x29/0x120
[  178.235213][ T6953]  loop_add+0x490/0xb70
[  178.235250][ T6953]  ? __pfx_loop_add+0x10/0x10
[  178.235319][ T6953]  ? find_held_lock+0x2b/0x80
[  178.235379][ T6953]  loop_control_ioctl+0x13e/0x630
[  178.235416][ T6953]  ? __pfx_loop_control_ioctl+0x10/0x10
[  178.235456][ T6953]  ? __pfx_loop_control_ioctl+0x10/0x10
[  178.235493][ T6953]  __x64_sys_ioctl+0x18e/0x210
[  178.235551][ T6953]  do_syscall_64+0xcd/0xf80
[  178.235590][ T6953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.235623][ T6953] RIP: 0033:0x7f5acbf8f7c9
[  178.235649][ T6953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.235682][ T6953] RSP: 002b:00007f5accdd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  178.235713][ T6953] RAX: ffffffffffffffda RBX: 00007f5acc1e5fa0 RCX: 00007f5acbf8f7c9
[  178.235734][ T6953] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006
[  178.235754][ T6953] RBP: 00007f5acc013f91 R08: 0000000000000000 R09: 0000000000000000
[  178.235774][ T6953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  178.235793][ T6953] R13: 00007f5acc1e6038 R14: 00007f5acc1e5fa0 R15: 00007ffe35994d38
[  178.235837][ T6953]  </TASK>
[  178.534166][ T6956] random: crng reseeded on system resumption
[  179.493753][ T6966] bond0: option all_slaves_active: invalid value (15)
[  180.188736][ T6971] FAULT_INJECTION: forcing a failure.
[  180.188736][ T6971] name failslab, interval 1, probability 0, space 0, times 0
[  180.207228][ T6971] CPU: 0 UID: 0 PID: 6971 Comm: syz.3.275 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  180.207285][ T6971] Tainted: [U]=USER
[  180.207297][ T6971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  180.207316][ T6971] Call Trace:
[  180.207327][ T6971]  <TASK>
[  180.207339][ T6971]  dump_stack_lvl+0x16c/0x1f0
[  180.207383][ T6971]  should_fail_ex+0x512/0x640
[  180.207422][ T6971]  ? __kmalloc_cache_noprof+0x5f/0x800
[  180.207474][ T6971]  should_failslab+0xc2/0x120
[  180.207514][ T6971]  __kmalloc_cache_noprof+0x72/0x800
[  180.207560][ T6971]  ? __debugfs_file_get+0x1fe/0x840
[  180.207605][ T6971]  ? sc_common_open+0x46/0x200
[  180.207656][ T6971]  ? __pfx_stats_fop_open+0x10/0x10
[  180.207702][ T6971]  ? sc_common_open+0x46/0x200
[  180.207749][ T6971]  sc_common_open+0x46/0x200
[  180.207798][ T6971]  full_proxy_open_regular+0x1b9/0x350
[  180.207856][ T6971]  do_dentry_open+0x748/0x1590
[  180.207891][ T6971]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  180.207956][ T6971]  vfs_open+0x82/0x3f0
[  180.208008][ T6971]  path_openat+0x2078/0x3140
[  180.208067][ T6971]  ? __pfx_path_openat+0x10/0x10
[  180.208121][ T6971]  do_filp_open+0x20b/0x470
[  180.208161][ T6971]  ? __pfx_do_filp_open+0x10/0x10
[  180.208229][ T6971]  ? alloc_fd+0x471/0x7d0
[  180.208273][ T6971]  do_sys_openat2+0x11f/0x280
[  180.208322][ T6971]  ? __pfx_do_sys_openat2+0x10/0x10
[  180.208385][ T6971]  __x64_sys_openat+0x174/0x210
[  180.208435][ T6971]  ? __pfx___x64_sys_openat+0x10/0x10
[  180.208501][ T6971]  do_syscall_64+0xcd/0xf80
[  180.208539][ T6971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.208572][ T6971] RIP: 0033:0x7f5acbf8f7c9
[  180.208600][ T6971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.208632][ T6971] RSP: 002b:00007f5accdd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  180.208664][ T6971] RAX: ffffffffffffffda RBX: 00007f5acc1e5fa0 RCX: 00007f5acbf8f7c9
[  180.208686][ T6971] RDX: 0000000000088180 RSI: 0000200000000640 RDI: ffffffffffffff9c
[  180.208707][ T6971] RBP: 00007f5acc013f91 R08: 0000000000000000 R09: 0000000000000000
[  180.208726][ T6971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  180.208744][ T6971] R13: 00007f5acc1e6038 R14: 00007f5acc1e5fa0 R15: 00007ffe35994d38
[  180.208787][ T6971]  </TASK>
[  181.788252][ T6994] mmap: syz.2.279 (6994) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  182.475415][ T7003] serio: Serial port pty6
[  183.272907][ T7009] tipc: Started in network mode
[  183.278141][ T7009] tipc: Node identity ee00, cluster identity 4711
[  183.304387][ T7009] tipc: Node number set to 60928
[  184.462232][ T5835] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  184.528333][ T7031] FAULT_INJECTION: forcing a failure.
[  184.528333][ T7031] name failslab, interval 1, probability 0, space 0, times 0
[  184.600806][ T7031] CPU: 1 UID: 0 PID: 7031 Comm: syz.1.287 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  184.600844][ T7031] Tainted: [U]=USER
[  184.600853][ T7031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  184.600868][ T7031] Call Trace:
[  184.600875][ T7031]  <TASK>
[  184.600884][ T7031]  dump_stack_lvl+0x16c/0x1f0
[  184.600916][ T7031]  should_fail_ex+0x512/0x640
[  184.600943][ T7031]  ? __kmalloc_noprof+0xca/0x8f0
[  184.600979][ T7031]  ? __pfx_stats_fop_open+0x10/0x10
[  184.601012][ T7031]  should_failslab+0xc2/0x120
[  184.601040][ T7031]  __kmalloc_noprof+0xdd/0x8f0
[  184.601072][ T7031]  ? __seq_open_private+0x22/0xd0
[  184.601114][ T7031]  ? __pfx_stats_fop_open+0x10/0x10
[  184.601147][ T7031]  ? __seq_open_private+0x22/0xd0
[  184.601183][ T7031]  __seq_open_private+0x22/0xd0
[  184.601220][ T7031]  sc_common_open+0x6b/0x200
[  184.601254][ T7031]  full_proxy_open_regular+0x1b9/0x350
[  184.601296][ T7031]  do_dentry_open+0x748/0x1590
[  184.601322][ T7031]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  184.601376][ T7031]  vfs_open+0x82/0x3f0
[  184.601413][ T7031]  path_openat+0x2078/0x3140
[  184.601450][ T7031]  ? __pfx_path_openat+0x10/0x10
[  184.601487][ T7031]  do_filp_open+0x20b/0x470
[  184.601516][ T7031]  ? __pfx_do_filp_open+0x10/0x10
[  184.601564][ T7031]  ? alloc_fd+0x471/0x7d0
[  184.601597][ T7031]  do_sys_openat2+0x11f/0x280
[  184.601631][ T7031]  ? __pfx_do_sys_openat2+0x10/0x10
[  184.601676][ T7031]  __x64_sys_openat+0x174/0x210
[  184.601710][ T7031]  ? __pfx___x64_sys_openat+0x10/0x10
[  184.601757][ T7031]  do_syscall_64+0xcd/0xf80
[  184.601784][ T7031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.601808][ T7031] RIP: 0033:0x7ff39278f7c9
[  184.601826][ T7031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.601848][ T7031] RSP: 002b:00007ff3935e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  184.601870][ T7031] RAX: ffffffffffffffda RBX: 00007ff3929e6090 RCX: 00007ff39278f7c9
[  184.601885][ T7031] RDX: 0000000000088180 RSI: 0000200000000640 RDI: ffffffffffffff9c
[  184.601900][ T7031] RBP: 00007ff392813f91 R08: 0000000000000000 R09: 0000000000000000
[  184.601913][ T7031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  184.601927][ T7031] R13: 00007ff3929e6128 R14: 00007ff3929e6090 R15: 00007ffffffa7238
[  184.601957][ T7031]  </TASK>
[  184.878957][ T7041] netlink: set zone limit has 8 unknown bytes
[  185.244924][ T7045] netlink: 4 bytes leftover after parsing attributes in process `syz.0.290'.
[  185.315148][ T7046] netlink: 32 bytes leftover after parsing attributes in process `syz.0.290'.
[  185.373285][ T7045] HfR: entered promiscuous mode
[  186.256533][ T7049] Process accounting resumed
[  186.484542][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout
[  187.640026][ T7077] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9
[  188.262925][ T7080] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10
[  188.530039][ T5835] Bluetooth: hci0: unexpected event 0x36 length: 123 > 7
[  188.564443][ T5835] Bluetooth: hci0: command 0x0c1a tx timeout
[  189.605788][ T7099] random: crng reseeded on system resumption
[  189.808555][ T7102] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[  190.815822][ T7114] [U] 	
[  190.818748][ T7114] [U] 
[  190.821510][ T7114] [U] 
[  190.824459][ T7114] [U] 
[  190.827205][ T7114] [U] 
[  190.834985][ T7114] [U] 
[  190.837760][ T7114] [U] 
[  190.840479][ T7114] [U] 
[  190.843209][ T7114] [U] 
[  190.849312][ T7114] [U] 
[  190.852098][ T7114] [U] 
[  190.854864][ T7114] [U] 
[  190.857636][ T7114] [U] 
[  190.866422][ T7114] [U] 
[  190.869210][ T7114] [U] 
[  190.871972][ T7114] [U] 
[  190.874724][ T7114] [U] 
[  190.878463][ T7114] [U] 
[  190.881245][ T7114] [U] 
[  190.884013][ T7114] [U] 
[  190.886780][ T7114] [U] 
[  190.955003][ T7114] [U] 
[  190.957813][ T7114] [U] 
[  190.960577][ T7114] [U] 
[  190.963337][ T7114] [U] 
[  191.124760][ T7114] [U] 
[  191.127622][ T7114] [U] 
[  191.130382][ T7114] [U] 
[  191.133136][ T7114] [U] 
[  191.137866][ T7114] [U] 
[  191.140670][ T7114] [U] 
[  191.143425][ T7114] [U] 
[  191.146175][ T7114] [U] 
[  191.197597][ T7114] [U] 
[  191.200411][ T7114] [U] 
[  191.203198][ T7114] [U] 
[  191.206156][ T7114] [U] 
[  191.249202][ T7114] [U] 
[  191.252013][ T7114] [U] 
[  191.254773][ T7114] [U] 
[  191.257530][ T7114] [U] 
[  191.326908][ T7114] [U] 
[  191.329749][ T7114] [U] 
[  191.332500][ T7114] [U] 
[  191.335236][ T7114] [U] 
[  191.439349][ T7114] [U] 
[  191.442141][ T7114] [U] 
[  191.444901][ T7114] [U] 
[  191.447655][ T7114] [U] 
[  191.665059][ T7114] [U] 
[  192.996748][ T7139] syz.1.309 (7139): /proc/7136/oom_adj is deprecated, please use /proc/7136/oom_score_adj instead.
[  193.051202][ T7139] : Can't lookup blockdev
[  193.551480][ T7155] FAULT_INJECTION: forcing a failure.
[  193.551480][ T7155] name failslab, interval 1, probability 0, space 0, times 0
[  193.601563][ T7155] CPU: 0 UID: 0 PID: 7155 Comm: syz.3.312 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  193.601622][ T7155] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  193.601636][ T7155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  193.601656][ T7155] Call Trace:
[  193.601667][ T7155]  <TASK>
[  193.601679][ T7155]  dump_stack_lvl+0x16c/0x1f0
[  193.601730][ T7155]  should_fail_ex+0x512/0x640
[  193.601771][ T7155]  ? kmem_cache_alloc_lru_noprof+0x66/0x760
[  193.601829][ T7155]  should_failslab+0xc2/0x120
[  193.601869][ T7155]  kmem_cache_alloc_lru_noprof+0x79/0x760
[  193.601922][ T7155]  ? __lock_acquire+0x433/0x22f0
[  193.601962][ T7155]  ? __d_alloc+0x35/0xa80
[  193.602010][ T7155]  ? __d_alloc+0x35/0xa80
[  193.602048][ T7155]  __d_alloc+0x35/0xa80
[  193.602095][ T7155]  d_alloc_pseudo+0x1c/0xc0
[  193.602146][ T7155]  alloc_file_pseudo+0xcf/0x230
[  193.602198][ T7155]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  193.602247][ T7155]  ? _raw_spin_unlock+0x28/0x50
[  193.602295][ T7155]  ? alloc_fd+0x471/0x7d0
[  193.602332][ T7155]  __anon_inode_getfile+0xe8/0x280
[  193.602381][ T7155]  __anon_inode_getfd+0x5c/0x150
[  193.602429][ T7155]  __x64_sys_fsopen+0x18b/0x240
[  193.602490][ T7155]  do_syscall_64+0xcd/0xf80
[  193.602528][ T7155]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.602561][ T7155] RIP: 0033:0x7f5acbf8f7c9
[  193.602588][ T7155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.602620][ T7155] RSP: 002b:00007f5accdd7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[  193.602650][ T7155] RAX: ffffffffffffffda RBX: 00007f5acc1e5fa0 RCX: 00007f5acbf8f7c9
[  193.602670][ T7155] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  193.602690][ T7155] RBP: 00007f5acc013f91 R08: 0000000000000000 R09: 0000000000000000
[  193.602724][ T7155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  193.602744][ T7155] R13: 00007f5acc1e6038 R14: 00007f5acc1e5fa0 R15: 00007ffe35994d38
[  193.602789][ T7155]  </TASK>
[  196.491311][ T7190] FAULT_INJECTION: forcing a failure.
[  196.491311][ T7190] name failslab, interval 1, probability 0, space 0, times 0
[  196.537737][ T7190] CPU: 1 UID: 0 PID: 7190 Comm: syz.2.319 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  196.537780][ T7190] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  196.537789][ T7190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  196.537803][ T7190] Call Trace:
[  196.537810][ T7190]  <TASK>
[  196.537821][ T7190]  dump_stack_lvl+0x16c/0x1f0
[  196.537864][ T7190]  should_fail_ex+0x512/0x640
[  196.537903][ T7190]  ? __kmalloc_noprof+0xca/0x8f0
[  196.537954][ T7190]  should_failslab+0xc2/0x120
[  196.537985][ T7190]  __kmalloc_noprof+0xdd/0x8f0
[  196.538018][ T7190]  ? memcg_list_lru_alloc+0x4e9/0x740
[  196.538057][ T7190]  ? memcg_list_lru_alloc+0x4e9/0x740
[  196.538090][ T7190]  memcg_list_lru_alloc+0x4e9/0x740
[  196.538132][ T7190]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[  196.538297][ T7190]  __memcg_slab_post_alloc_hook+0x133/0x880
[  196.538343][ T7190]  ? kasan_save_track+0x14/0x30
[  196.538370][ T7190]  kmem_cache_alloc_lru_noprof+0x581/0x760
[  196.538409][ T7190]  ? __d_alloc+0x35/0xa80
[  196.538443][ T7190]  ? __d_alloc+0x35/0xa80
[  196.538473][ T7190]  __d_alloc+0x35/0xa80
[  196.538499][ T7190]  ? __lock_acquire+0x433/0x22f0
[  196.538533][ T7190]  d_alloc_parallel+0x111/0x1510
[  196.538578][ T7190]  ? find_held_lock+0x2b/0x80
[  196.538616][ T7190]  ? __pfx_d_alloc_parallel+0x10/0x10
[  196.538657][ T7190]  ? __d_lookup+0x266/0x4a0
[  196.538701][ T7190]  lookup_open.isra.0+0x66c/0x1780
[  196.538747][ T7190]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  196.538802][ T7190]  ? mnt_get_write_access+0x1e9/0x2f0
[  196.538842][ T7190]  path_openat+0x12bb/0x3140
[  196.538880][ T7190]  ? __pfx_path_openat+0x10/0x10
[  196.538919][ T7190]  do_filp_open+0x20b/0x470
[  196.538948][ T7190]  ? __pfx_do_filp_open+0x10/0x10
[  196.539025][ T7190]  ? alloc_fd+0x471/0x7d0
[  196.539077][ T7190]  do_sys_openat2+0x11f/0x280
[  196.539122][ T7190]  ? __pfx_do_sys_openat2+0x10/0x10
[  196.539158][ T7190]  ? find_held_lock+0x2b/0x80
[  196.539243][ T7190]  __x64_sys_openat+0x174/0x210
[  196.539281][ T7190]  ? __pfx___x64_sys_openat+0x10/0x10
[  196.539330][ T7190]  do_syscall_64+0xcd/0xf80
[  196.539359][ T7190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.539383][ T7190] RIP: 0033:0x7f6e7038f7c9
[  196.539402][ T7190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.539426][ T7190] RSP: 002b:00007f6e71187038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  196.539450][ T7190] RAX: ffffffffffffffda RBX: 00007f6e705e6090 RCX: 00007f6e7038f7c9
[  196.539468][ T7190] RDX: 0000000000000001 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  196.539485][ T7190] RBP: 00007f6e70413f91 R08: 0000000000000000 R09: 0000000000000000
[  196.539503][ T7190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  196.539517][ T7190] R13: 00007f6e705e6128 R14: 00007f6e705e6090 R15: 00007ffd5104d498
[  196.539549][ T7190]  </TASK>

syzkaller
syzkaller login: [  197.579177][ T7210] FAULT_INJECTION: forcing a failure.
[  197.579177][ T7210] name failslab, interval 1, probability 0, space 0, times 0
[  197.620148][ T7210] CPU: 0 UID: 0 PID: 7210 Comm: syz.2.323 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  197.620206][ T7210] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  197.620217][ T7210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  197.620237][ T7210] Call Trace:
[  197.620248][ T7210]  <TASK>
[  197.620260][ T7210]  dump_stack_lvl+0x16c/0x1f0
[  197.620301][ T7210]  should_fail_ex+0x512/0x640
[  197.620356][ T7210]  ? __kmalloc_noprof+0xca/0x8f0
[  197.620407][ T7210]  should_failslab+0xc2/0x120
[  197.620447][ T7210]  __kmalloc_noprof+0xdd/0x8f0
[  197.620494][ T7210]  ? iter_file_splice_write+0x1cc/0x12b0
[  197.620542][ T7210]  ? iter_file_splice_write+0x1cc/0x12b0
[  197.620579][ T7210]  iter_file_splice_write+0x1cc/0x12b0
[  197.620624][ T7210]  ? kfree+0x2f8/0x6e0
[  197.620667][ T7210]  ? copy_splice_read+0x897/0xc20
[  197.620710][ T7210]  ? copy_splice_read+0x897/0xc20
[  197.620743][ T7210]  ? copy_splice_read+0x89c/0xc20
[  197.620778][ T7210]  ? __pfx_iter_file_splice_write+0x10/0x10
[  197.620821][ T7210]  ? __lock_acquire+0x433/0x22f0
[  197.620864][ T7210]  ? __pfx_copy_splice_read+0x10/0x10
[  197.620924][ T7210]  ? __pfx_iter_file_splice_write+0x10/0x10
[  197.620967][ T7210]  direct_splice_actor+0x192/0x6c0
[  197.621008][ T7210]  splice_direct_to_actor+0x345/0xa30
[  197.621049][ T7210]  ? __pfx_direct_splice_actor+0x10/0x10
[  197.621097][ T7210]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  197.621152][ T7210]  do_splice_direct+0x174/0x240
[  197.621191][ T7210]  ? __pfx_do_splice_direct+0x10/0x10
[  197.621229][ T7210]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  197.621272][ T7210]  ? rw_verify_area+0xcf/0x6c0
[  197.621335][ T7210]  do_sendfile+0xb06/0xe50
[  197.621376][ T7210]  ? __pfx_do_sendfile+0x10/0x10
[  197.621417][ T7210]  ? __x64_sys_futex+0x1e0/0x4c0
[  197.621462][ T7210]  ? __x64_sys_futex+0x1e9/0x4c0
[  197.621513][ T7210]  __x64_sys_sendfile64+0x1d8/0x220
[  197.621559][ T7210]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  197.621600][ T7210]  ? syscall_user_dispatch+0x78/0x140
[  197.621665][ T7210]  do_syscall_64+0xcd/0xf80
[  197.621704][ T7210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.621737][ T7210] RIP: 0033:0x7f6e7038f7c9
[  197.621764][ T7210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.621796][ T7210] RSP: 002b:00007f6e71187038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  197.621828][ T7210] RAX: ffffffffffffffda RBX: 00007f6e705e6090 RCX: 00007f6e7038f7c9
[  197.621850][ T7210] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  197.621869][ T7210] RBP: 00007f6e70413f91 R08: 0000000000000000 R09: 0000000000000000
[  197.621889][ T7210] R10: 000000007fffe000 R11: 0000000000000246 R12: 0000000000000000
[  197.621909][ T7210] R13: 00007f6e705e6128 R14: 00007f6e705e6090 R15: 00007ffd5104d498
[  197.621954][ T7210]  </TASK>
[  197.692305][ T7203] zswap: compressor  not available
[  197.959211][ T7206] random: crng reseeded on system resumption
[  198.582617][ T7220] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  202.724835][ T7285] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  203.217758][ T7286] serio: Serial port pty6
[  204.865737][ T7314] Console: switching to colour VGA+ 80x25
[  205.128669][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  205.138259][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  207.001132][ T7361] bond0: Unable to set up delay as MII monitoring is disabled
[  207.073312][ T7364] netlink: 4 bytes leftover after parsing attributes in process `syz.2.349'.
[  207.191848][ T7364] netlink: 'syz.2.349': attribute type 1 has an invalid length.
[  207.300300][ T7364] netlink: 5 bytes leftover after parsing attributes in process `syz.2.349'.
[  207.805149][ T7376] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  208.100328][ T7382] random: crng reseeded on system resumption
[  210.920636][ T7391] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  210.942550][ T7391] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  211.006101][ T7391] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  211.013794][ T7391] page_type: f5(slab)
[  211.086500][ T7391] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  211.146789][ T7391] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  211.184507][ T7391] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000
[  211.223234][ T7391] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  211.264824][ T7391] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  211.273556][ T7391] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  211.353696][ T7391] page dumped because: unmovable page
[  211.392611][ T7391] page_owner tracks the page as allocated
[  211.414367][ T7391] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5219, tgid 5219 (udevadm), ts 52404826930, free_ts 42731079763
[  211.448197][ T7391]  post_alloc_hook+0x1af/0x220
[  211.453044][ T7391]  get_page_from_freelist+0xd0b/0x31a0
[  211.510269][ T7391]  __alloc_frozen_pages_noprof+0x25f/0x2440
[  211.534403][ T7391]  alloc_pages_mpol+0x1fb/0x550
[  211.554576][ T7391]  new_slab+0x2c3/0x430
[  211.574539][ T7391]  ___slab_alloc+0xe18/0x1c90
[  211.640890][ T7391]  __slab_alloc.constprop.0+0x63/0x110
[  211.673227][ T7391]  kmem_cache_alloc_lru_noprof+0x443/0x760
[  211.721475][ T7391]  alloc_inode+0xc3/0x240
[  211.745544][ T7391]  iget_locked+0x1d9/0x6d0
[  211.761502][ T7391]  kernfs_get_inode+0x46/0x470
[  211.781435][ T7391]  kernfs_iop_lookup+0x1a7/0x2d0
[  211.814386][ T7391]  __lookup_slow+0x251/0x460
[  211.819080][ T7391]  lookup_slow+0x50/0x70
[  211.823350][ T7391]  link_path_walk+0x12d8/0x1c70
[  211.864988][ T7391]  path_lookupat+0x74/0xc40
[  211.869572][ T7391] page last free pid 1 tgid 1 stack trace:
[  211.884968][ T7391]  __free_frozen_pages+0x7df/0x1160
[  211.904345][ T7391]  free_contig_range+0x183/0x4a0
[  211.909347][ T7391]  destroy_args+0xc30/0x12d0
[  211.924339][ T7391]  debug_vm_pgtable+0x1a2b/0x34c0
[  211.929450][ T7391]  do_one_initcall+0x123/0x680
[  211.953724][ T7391]  kernel_init_freeable+0x5c8/0x920
[  212.022582][ T7391]  kernel_init+0x1c/0x2b0
[  212.027135][ T7391]  ret_from_fork+0x983/0xb10
[  212.031816][ T7391]  ret_from_fork_asm+0x1a/0x30
[  212.348359][ T7423] random: crng reseeded on system resumption
[  213.535503][ T7431] netlink: 342 bytes leftover after parsing attributes in process `syz.1.369'.
[  214.074946][ T7433] : Can't lookup blockdev
[  214.267841][ T7420] kexec: Could not allocate control_code_buffer
[  214.688693][ T7448] netlink: 4 bytes leftover after parsing attributes in process `syz.0.361'.
[  214.774999][ T7446] netlink: 'syz.0.361': attribute type 1 has an invalid length.
[  214.782771][ T7446] netlink: 5 bytes leftover after parsing attributes in process `syz.0.361'.
[  215.176967][ T7458] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  215.746839][ T7467] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[  216.652094][ T7477] netlink: 186 bytes leftover after parsing attributes in process `syz.0.370'.
[  216.939767][ T7484] netlink: 338 bytes leftover after parsing attributes in process `syz.3.372'.
[  216.968489][   T30] audit: type=1400 audit(1764977031.266:6): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=7483 comm="syz.3.372"
[  217.509892][ T7471] Process accounting paused
[  217.852407][ T7495] netlink: 342 bytes leftover after parsing attributes in process `syz.2.374'.
[  217.901229][ T7495] netlink: 342 bytes leftover after parsing attributes in process `syz.2.374'.
[  217.931583][ T7493] ima: policy update failed
[  217.971299][   T30] audit: type=1802 audit(1764977032.266:7): pid=7493 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.374" res=0 errno=0
[  218.882340][ T7499] zswap: compressor 000 not available
[  219.272451][ T7520] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  220.023923][   T30] audit: type=1800 audit(1764977034.326:8): pid=7509 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.377" name="dbroot" dev="configfs" ino=14633 res=0 errno=0
[  220.791629][ T7533] bond0: invalid ARP target specified
[  222.974377][ T7549] FAULT_INJECTION: forcing a failure.
[  222.974377][ T7549] name failslab, interval 1, probability 0, space 0, times 0
[  222.987302][ T7549] CPU: 0 UID: 0 PID: 7549 Comm: syz.3.382 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  222.987358][ T7549] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  222.987370][ T7549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  222.987389][ T7549] Call Trace:
[  222.987400][ T7549]  <TASK>
[  222.987412][ T7549]  dump_stack_lvl+0x16c/0x1f0
[  222.987455][ T7549]  should_fail_ex+0x512/0x640
[  222.987494][ T7549]  ? __kmalloc_noprof+0xca/0x8f0
[  222.987545][ T7549]  should_failslab+0xc2/0x120
[  222.987586][ T7549]  __kmalloc_noprof+0xdd/0x8f0
[  222.987633][ T7549]  ? memcg_list_lru_alloc+0x4e9/0x740
[  222.987690][ T7549]  ? memcg_list_lru_alloc+0x4e9/0x740
[  222.987737][ T7549]  memcg_list_lru_alloc+0x4e9/0x740
[  222.987799][ T7549]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[  222.987879][ T7549]  __memcg_slab_post_alloc_hook+0x133/0x880
[  222.987932][ T7549]  ? kasan_save_track+0x14/0x30
[  222.987968][ T7549]  kmem_cache_alloc_lru_noprof+0x581/0x760
[  222.988012][ T7549]  ? __d_alloc+0x35/0xa80
[  222.988045][ T7549]  ? __d_alloc+0x35/0xa80
[  222.988071][ T7549]  __d_alloc+0x35/0xa80
[  222.988098][ T7549]  ? __lock_acquire+0x433/0x22f0
[  222.988129][ T7549]  d_alloc_parallel+0x111/0x1510
[  222.988174][ T7549]  ? find_held_lock+0x2b/0x80
[  222.988212][ T7549]  ? __pfx_d_alloc_parallel+0x10/0x10
[  222.988253][ T7549]  ? __d_lookup+0x266/0x4a0
[  222.988296][ T7549]  lookup_open.isra.0+0x66c/0x1780
[  222.988342][ T7549]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  222.988397][ T7549]  ? mnt_get_write_access+0x1e9/0x2f0
[  222.988436][ T7549]  path_openat+0x12bb/0x3140
[  222.988472][ T7549]  ? __pfx_path_openat+0x10/0x10
[  222.988503][ T7549]  ? irqentry_exit+0x1dd/0x8c0
[  222.988533][ T7549]  do_filp_open+0x20b/0x470
[  222.988561][ T7549]  ? __pfx_do_filp_open+0x10/0x10
[  222.988586][ T7549]  ? __pfx___schedule+0x10/0x10
[  222.988628][ T7549]  ? alloc_fd+0x471/0x7d0
[  222.988662][ T7549]  do_sys_openat2+0x11f/0x280
[  222.988695][ T7549]  ? __pfx_do_sys_openat2+0x10/0x10
[  222.988731][ T7549]  ? find_held_lock+0x2b/0x80
[  222.988775][ T7549]  __x64_sys_openat+0x174/0x210
[  222.988810][ T7549]  ? __pfx___x64_sys_openat+0x10/0x10
[  222.988857][ T7549]  do_syscall_64+0xcd/0xf80
[  222.988892][ T7549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.988916][ T7549] RIP: 0033:0x7f5acbf8f7c9
[  222.988935][ T7549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.988957][ T7549] RSP: 002b:00007f5accdb6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  222.988980][ T7549] RAX: ffffffffffffffda RBX: 00007f5acc1e6090 RCX: 00007f5acbf8f7c9
[  222.988995][ T7549] RDX: 0000000000000001 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  222.989009][ T7549] RBP: 00007f5acc013f91 R08: 0000000000000000 R09: 0000000000000000
[  222.989023][ T7549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  222.989037][ T7549] R13: 00007f5acc1e6128 R14: 00007f5acc1e6090 R15: 00007ffe35994d38
[  222.989068][ T7549]  </TASK>
[  225.276485][ T7569] random: crng reseeded on system resumption
[  227.239866][ T7588] FAULT_INJECTION: forcing a failure.
[  227.239866][ T7588] name failslab, interval 1, probability 0, space 0, times 0
[  227.306426][ T7588] CPU: 0 UID: 0 PID: 7588 Comm: syz.2.392 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  227.306468][ T7588] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  227.306477][ T7588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  227.306490][ T7588] Call Trace:
[  227.306498][ T7588]  <TASK>
[  227.306507][ T7588]  dump_stack_lvl+0x16c/0x1f0
[  227.306539][ T7588]  should_fail_ex+0x512/0x640
[  227.306566][ T7588]  ? __kmalloc_node_noprof+0xcd/0x920
[  227.306591][ T7588]  should_failslab+0xc2/0x120
[  227.306619][ T7588]  __kmalloc_node_noprof+0xe0/0x920
[  227.306641][ T7588]  ? load_msg+0x43/0x4a0
[  227.306678][ T7588]  ? load_msg+0x43/0x4a0
[  227.306707][ T7588]  load_msg+0x43/0x4a0
[  227.306737][ T7588]  ? __pfx___sys_sendto+0x10/0x10
[  227.306768][ T7588]  do_msgrcv+0x202/0x16c0
[  227.306801][ T7588]  ? do_futex+0x122/0x350
[  227.306833][ T7588]  ? __pfx_do_msg_fill+0x10/0x10
[  227.306881][ T7588]  ? __pfx_do_msgrcv+0x10/0x10
[  227.306926][ T7588]  ? __x64_sys_futex+0x1e0/0x4c0
[  227.306980][ T7588]  ? xfd_validate_state+0x61/0x180
[  227.307006][ T7588]  ? __pfx___do_sys_rseq+0x10/0x10
[  227.307046][ T7588]  ? do_syscall_64+0xcd/0xf80
[  227.307069][ T7588]  do_syscall_64+0xcd/0xf80
[  227.307095][ T7588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.307119][ T7588] RIP: 0033:0x7f6e7038f7c9
[  227.307138][ T7588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.307160][ T7588] RSP: 002b:00007f6e711a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000046
[  227.307181][ T7588] RAX: ffffffffffffffda RBX: 00007f6e705e5fa0 RCX: 00007f6e7038f7c9
[  227.307196][ T7588] RDX: 0000002400000000 RSI: 0000000000000000 RDI: 00000000000000ff
[  227.307210][ T7588] RBP: 00007f6e70413f91 R08: 000000006bc2cc7d R09: 0000000000000000
[  227.307225][ T7588] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[  227.307239][ T7588] R13: 00007f6e705e6038 R14: 00007f6e705e5fa0 R15: 00007ffd5104d498
[  227.307277][ T7588]  </TASK>
[  228.114929][ T7581] blktrace: Concurrent blktraces are not allowed on loop5
[  230.594310][ T7637] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  230.614905][ T7637] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  230.707350][ T7637] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  230.787336][ T7637] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  232.098976][   T30] audit: type=1800 audit(1764977046.406:9): pid=7667 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.399" name="lu_gp_id" dev="configfs" ino=14953 res=0 errno=0
[  232.194537][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout
[  232.644526][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout
[  232.724664][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout
[  232.804590][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout
[  234.772470][ T4507] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  234.860643][ T7717] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3)
[  236.008555][ T7714] FAULT_INJECTION: forcing a failure.
[  236.008555][ T7714] name failslab, interval 1, probability 0, space 0, times 0
[  236.084622][ T7714] CPU: 1 UID: 0 PID: 7714 Comm: syz.0.408 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  236.084689][ T7714] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  236.084702][ T7714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  236.084720][ T7714] Call Trace:
[  236.084730][ T7714]  <TASK>
[  236.084742][ T7714]  dump_stack_lvl+0x16c/0x1f0
[  236.084784][ T7714]  should_fail_ex+0x512/0x640
[  236.084823][ T7714]  ? __kmalloc_noprof+0xca/0x8f0
[  236.084866][ T7714]  should_failslab+0xc2/0x120
[  236.084895][ T7714]  __kmalloc_noprof+0xdd/0x8f0
[  236.084927][ T7714]  ? memcg_list_lru_alloc+0x4e9/0x740
[  236.084967][ T7714]  ? memcg_list_lru_alloc+0x4e9/0x740
[  236.085000][ T7714]  memcg_list_lru_alloc+0x4e9/0x740
[  236.085042][ T7714]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[  236.085090][ T7714]  __memcg_slab_post_alloc_hook+0x133/0x880
[  236.085127][ T7714]  ? kasan_save_track+0x14/0x30
[  236.085153][ T7714]  kmem_cache_alloc_lru_noprof+0x581/0x760
[  236.085189][ T7714]  ? stack_trace_save+0x8e/0xc0
[  236.085215][ T7714]  ? __d_alloc+0x35/0xa80
[  236.085249][ T7714]  ? __d_alloc+0x35/0xa80
[  236.085275][ T7714]  __d_alloc+0x35/0xa80
[  236.085301][ T7714]  ? __lock_acquire+0x433/0x22f0
[  236.085333][ T7714]  d_alloc_parallel+0x111/0x1510
[  236.085378][ T7714]  ? find_held_lock+0x2b/0x80
[  236.085417][ T7714]  ? __pfx_d_alloc_parallel+0x10/0x10
[  236.085458][ T7714]  ? __d_lookup+0x266/0x4a0
[  236.085502][ T7714]  lookup_open.isra.0+0x66c/0x1780
[  236.085547][ T7714]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  236.085603][ T7714]  ? mnt_get_write_access+0x1e9/0x2f0
[  236.085642][ T7714]  path_openat+0x12bb/0x3140
[  236.085686][ T7714]  ? __pfx_path_openat+0x10/0x10
[  236.085725][ T7714]  do_filp_open+0x20b/0x470
[  236.085757][ T7714]  ? __pfx_do_filp_open+0x10/0x10
[  236.085806][ T7714]  ? alloc_fd+0x471/0x7d0
[  236.085839][ T7714]  do_sys_openat2+0x11f/0x280
[  236.085874][ T7714]  ? __pfx_do_sys_openat2+0x10/0x10
[  236.085910][ T7714]  ? find_held_lock+0x2b/0x80
[  236.085954][ T7714]  __x64_sys_openat+0x174/0x210
[  236.085989][ T7714]  ? __pfx___x64_sys_openat+0x10/0x10
[  236.086036][ T7714]  do_syscall_64+0xcd/0xf80
[  236.086063][ T7714]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.086087][ T7714] RIP: 0033:0x7f876838f7c9
[  236.086105][ T7714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.086128][ T7714] RSP: 002b:00007f8769275038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  236.086149][ T7714] RAX: ffffffffffffffda RBX: 00007f87685e6090 RCX: 00007f876838f7c9
[  236.086165][ T7714] RDX: 0000000000000001 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  236.086179][ T7714] RBP: 00007f8768413f91 R08: 0000000000000000 R09: 0000000000000000
[  236.086193][ T7714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  236.086206][ T7714] R13: 00007f87685e6128 R14: 00007f87685e6090 R15: 00007ffdadb3c688
[  236.086237][ T7714]  </TASK>
[  237.290057][ T7707] kexec: Could not allocate control_code_buffer
[  239.388894][ T7766] netlink: 342 bytes leftover after parsing attributes in process `syz.3.414'.
[  239.399937][ T7766] netlink: 342 bytes leftover after parsing attributes in process `syz.3.414'.
[  239.436845][ T7765] ima: policy update failed
[  239.459168][   T30] audit: type=1802 audit(1764977053.746:10): pid=7765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.414" res=0 errno=0
[  241.416097][ T7793] Invalid ELF header magic: != ELF
[  245.774290][ T7847] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  247.198289][ T7867] netlink: 186 bytes leftover after parsing attributes in process `syz.2.433'.
[  247.724432][ T6363] smpboot: CPU 0 is now offline
[  248.046363][ T7876] random: crng reseeded on system resumption
[  249.012024][ T7862] Process accounting resumed
[  249.633957][ T7885] netlink: 342 bytes leftover after parsing attributes in process `syz.2.447'.
[  250.364734][ T7891] sctp: [Deprecated]: syz.2.447 (pid 7891) Use of struct sctp_assoc_value in delayed_ack socket option.
[  250.364734][ T7891] Use struct sctp_sack_info instead
[  250.876553][ T7885] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  253.351355][ T7941] program syz.1.450 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  254.260079][ T7954] random: crng reseeded on system resumption
[  254.647954][ T7941] ubi31: attaching mtd0
[  254.653320][ T7941] ubi31 error: validate_ec_hdr: bad VID header offset 64, expected 514
[  254.800032][ T7941] ubi31 error: validate_ec_hdr: bad EC header
[  254.864625][ T7941] Erase counter header dump:
[  254.924645][ T7941] 	magic          0x55424923
[  254.985538][ T7941] 	version        1
[  254.989396][ T7941] 	ec             1
[  255.084668][ T7941] 	vid_hdr_offset 64
[  255.088625][ T7941] 	data_offset    128
[  255.092609][ T7941] 	image_seq      -280442530
[  255.177426][ T7941] 	hdr_crc        0xf2e56251
[  255.182079][ T7941] erase counter header hexdump:
[  255.282892][ T7941] CPU: 1 UID: 0 PID: 7941 Comm: syz.1.450 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  255.282928][ T7941] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  255.282937][ T7941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  255.282951][ T7941] Call Trace:
[  255.282958][ T7941]  <TASK>
[  255.282967][ T7941]  dump_stack_lvl+0x16c/0x1f0
[  255.282996][ T7941]  validate_ec_hdr+0x28c/0x330
[  255.283033][ T7941]  ubi_io_read_ec_hdr+0x63b/0x6c0
[  255.283075][ T7941]  ubi_attach+0x601/0x4be0
[  255.283111][ T7941]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  255.283143][ T7941]  ? __pfx_ubi_msg+0x10/0x10
[  255.283166][ T7941]  ? __pfx_ubi_attach+0x10/0x10
[  255.283192][ T7941]  ? ubi_attach_mtd_dev+0x155b/0x35d0
[  255.283217][ T7941]  ? __vmalloc_node_noprof+0xad/0xf0
[  255.283245][ T7941]  ? ubi_attach_mtd_dev+0x155b/0x35d0
[  255.283273][ T7941]  ubi_attach_mtd_dev+0x15a7/0x35d0
[  255.283312][ T7941]  ? __pfx_ubi_attach_mtd_dev+0x10/0x10
[  255.283337][ T7941]  ? __pfx_get_mtd_device+0x10/0x10
[  255.283378][ T7941]  ctrl_cdev_ioctl+0x337/0x3d0
[  255.283404][ T7941]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[  255.283437][ T7941]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[  255.283465][ T7941]  __x64_sys_ioctl+0x18e/0x210
[  255.283504][ T7941]  do_syscall_64+0xcd/0xf80
[  255.283531][ T7941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  255.283555][ T7941] RIP: 0033:0x7ff39278f7c9
[  255.283580][ T7941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  255.283602][ T7941] RSP: 002b:00007ff3935e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  255.283623][ T7941] RAX: ffffffffffffffda RBX: 00007ff3929e6090 RCX: 00007ff39278f7c9
[  255.283639][ T7941] RDX: 0000200000000080 RSI: 0000000040186f40 RDI: 0000000000000004
[  255.283653][ T7941] RBP: 00007ff392813f91 R08: 0000000000000000 R09: 0000000000000000
[  255.283668][ T7941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  255.283681][ T7941] R13: 00007ff3929e6128 R14: 00007ff3929e6090 R15: 00007ffffffa7238
[  255.283712][ T7941]  </TASK>
[  255.283720][ T7941] ubi31 error: ubi_io_read_ec_hdr: validation failed for PEB 0
[  255.832823][ T7970] usbip-vudc usbip-vudc.0: gadget not bound
[  256.779003][ T7941] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  256.958961][ T7990] FAULT_INJECTION: forcing a failure.
[  256.958961][ T7990] name failslab, interval 1, probability 0, space 0, times 0
[  257.067268][ T7990] CPU: 1 UID: 0 PID: 7990 Comm: syz.0.461 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  257.067309][ T7990] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  257.067318][ T7990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  257.067331][ T7990] Call Trace:
[  257.067339][ T7990]  <TASK>
[  257.067348][ T7990]  dump_stack_lvl+0x16c/0x1f0
[  257.067386][ T7990]  should_fail_ex+0x512/0x640
[  257.067414][ T7990]  ? kmem_cache_alloc_noprof+0x62/0x760
[  257.067453][ T7990]  should_failslab+0xc2/0x120
[  257.067481][ T7990]  kmem_cache_alloc_noprof+0x75/0x760
[  257.067516][ T7990]  ? prepare_creds+0x2c/0x740
[  257.067553][ T7990]  ? prepare_creds+0x2c/0x740
[  257.067584][ T7990]  prepare_creds+0x2c/0x740
[  257.067618][ T7990]  __sys_setfsuid+0xda/0x350
[  257.067654][ T7990]  ? rcu_is_watching+0x12/0xc0
[  257.067680][ T7990]  do_syscall_64+0xcd/0xf80
[  257.067707][ T7990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.067730][ T7990] RIP: 0033:0x7f876838f7c9
[  257.067748][ T7990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.067771][ T7990] RSP: 002b:00007f8769296038 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  257.067792][ T7990] RAX: ffffffffffffffda RBX: 00007f87685e5fa0 RCX: 00007f876838f7c9
[  257.067807][ T7990] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee01
[  257.067821][ T7990] RBP: 00007f8768413f91 R08: 0000000000000000 R09: 0000000000000000
[  257.067835][ T7990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  257.067849][ T7990] R13: 00007f87685e6038 R14: 00007f87685e5fa0 R15: 00007ffdadb3c688
[  257.067879][ T7990]  </TASK>
[  258.828215][ T8012] random: crng reseeded on system resumption
[  259.037531][ T8002] zswap: compressor  not available
[  260.169131][ T8027] FAULT_INJECTION: forcing a failure.
[  260.169131][ T8027] name failslab, interval 1, probability 0, space 0, times 0
[  260.254513][ T8027] CPU: 1 UID: 0 PID: 8027 Comm: syz.1.469 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  260.254554][ T8027] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  260.254563][ T8027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  260.254578][ T8027] Call Trace:
[  260.254585][ T8027]  <TASK>
[  260.254594][ T8027]  dump_stack_lvl+0x16c/0x1f0
[  260.254625][ T8027]  should_fail_ex+0x512/0x640
[  260.254652][ T8027]  ? __kmalloc_cache_noprof+0x5f/0x800
[  260.254690][ T8027]  should_failslab+0xc2/0x120
[  260.254719][ T8027]  __kmalloc_cache_noprof+0x72/0x800
[  260.254751][ T8027]  ? lockdep_init_map_type+0x5c/0x270
[  260.254781][ T8027]  ? do_inotify_init+0xa2/0x5f0
[  260.254822][ T8027]  ? do_inotify_init+0xa2/0x5f0
[  260.254857][ T8027]  do_inotify_init+0xa2/0x5f0
[  260.254891][ T8027]  ? rcu_is_watching+0x12/0xc0
[  260.254915][ T8027]  __x64_sys_inotify_init1+0x30/0x40
[  260.254952][ T8027]  do_syscall_64+0xcd/0xf80
[  260.254979][ T8027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.255004][ T8027] RIP: 0033:0x7ff39278f7c9
[  260.255021][ T8027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.255053][ T8027] RSP: 002b:00007ff393607038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126
[  260.255076][ T8027] RAX: ffffffffffffffda RBX: 00007ff3929e5fa0 RCX: 00007ff39278f7c9
[  260.255092][ T8027] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000
[  260.255106][ T8027] RBP: 00007ff392813f91 R08: 0000000000000000 R09: 0000000000000000
[  260.255121][ T8027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  260.255135][ T8027] R13: 00007ff3929e6038 R14: 00007ff3929e5fa0 R15: 00007ffffffa7238
[  260.255165][ T8027]  </TASK>
[  262.376200][ T8035] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  262.425682][ T8035] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  262.472725][ T8035] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  262.546109][ T8035] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  262.626597][ T8035] CPU0 is offline.
[  263.844660][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout
[  264.486379][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout
[  264.492478][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout
[  264.564312][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout
[  264.802645][ T8073] usb usb8: usbfs: interface 0 claimed by hub while 'syz.1.485' sets config #5
[  265.291301][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  265.305198][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  267.305897][ T8113] [U]  
[  267.308752][ T8113] [U] 
[  267.311465][ T8113] [U] 
[  267.314171][ T8113] [U] 
[  267.403060][ T8113] [U] 
[  267.405824][ T8113] [U] 
[  267.408538][ T8113] [U] 
[  267.411248][ T8113] [U] 
[  267.460309][ T8113] [U] 
[  268.200918][ T8124] FAULT_INJECTION: forcing a failure.
[  268.200918][ T8124] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  268.318100][ T8124] CPU: 1 UID: 0 PID: 8124 Comm: syz.0.502 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  268.318141][ T8124] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  268.318150][ T8124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  268.318164][ T8124] Call Trace:
[  268.318171][ T8124]  <TASK>
[  268.318181][ T8124]  dump_stack_lvl+0x16c/0x1f0
[  268.318211][ T8124]  should_fail_ex+0x512/0x640
[  268.318260][ T8124]  should_fail_alloc_page+0xe7/0x130
[  268.318292][ T8124]  prepare_alloc_pages+0x3c2/0x610
[  268.318318][ T8124]  ? folio_unlock+0x7d/0xd0
[  268.318346][ T8124]  __alloc_frozen_pages_noprof+0x18b/0x2440
[  268.318390][ T8124]  ? __handle_mm_fault+0x50a/0x2ad0
[  268.318426][ T8124]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  268.318464][ T8124]  ? __pfx_css_rstat_updated+0x10/0x10
[  268.318501][ T8124]  ? memcg_rstat_updated.part.0+0x110/0x250
[  268.318535][ T8124]  ? find_held_lock+0x2b/0x80
[  268.318574][ T8124]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  268.318600][ T8124]  ? policy_nodemask+0xea/0x4e0
[  268.318629][ T8124]  alloc_pages_mpol+0x1fb/0x550
[  268.318656][ T8124]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  268.318684][ T8124]  ? find_held_lock+0x2b/0x80
[  268.318725][ T8124]  alloc_pages_noprof+0x12d/0x180
[  268.318753][ T8124]  get_free_pages_noprof+0x10/0xb0
[  268.318776][ T8124]  do_proc_control+0x211/0x10a0
[  268.318804][ T8124]  ? __pfx_do_proc_control+0x10/0x10
[  268.318828][ T8124]  ? rep_movs_alternative+0x30/0x90
[  268.318870][ T8124]  usbdev_ioctl+0x22ff/0x4070
[  268.318897][ T8124]  ? __pfx_usbdev_ioctl+0x10/0x10
[  268.318925][ T8124]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  268.318951][ T8124]  ? do_vfs_ioctl+0x128/0x14f0
[  268.319000][ T8124]  ? find_held_lock+0x2b/0x80
[  268.319036][ T8124]  ? hook_file_ioctl_common+0x144/0x410
[  268.319071][ T8124]  ? __fget_files+0x20e/0x3c0
[  268.319100][ T8124]  ? __pfx_usbdev_ioctl+0x10/0x10
[  268.319123][ T8124]  __x64_sys_ioctl+0x18e/0x210
[  268.319163][ T8124]  do_syscall_64+0xcd/0xf80
[  268.319189][ T8124]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.319214][ T8124] RIP: 0033:0x7f876838f7c9
[  268.319239][ T8124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.319263][ T8124] RSP: 002b:00007f8769296038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  268.319285][ T8124] RAX: ffffffffffffffda RBX: 00007f87685e5fa0 RCX: 00007f876838f7c9
[  268.319301][ T8124] RDX: 0000000000000000 RSI: 00000000c0185500 RDI: 0000000000000004
[  268.319316][ T8124] RBP: 00007f8768413f91 R08: 0000000000000000 R09: 0000000000000000
[  268.319330][ T8124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  268.319344][ T8124] R13: 00007f87685e6038 R14: 00007f87685e5fa0 R15: 00007ffdadb3c688
[  268.319375][ T8124]  </TASK>
[  270.480879][ T8153] zswap: compressor  not available
[  270.979888][ T8172] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input12
[  271.438434][ T8178] FAULT_INJECTION: forcing a failure.
[  271.438434][ T8178] name failslab, interval 1, probability 0, space 0, times 0
[  271.466275][ T8179] netlink: 'syz.1.517': attribute type 7 has an invalid length.
[  271.474055][ T8179] netlink: 17 bytes leftover after parsing attributes in process `syz.1.517'.
[  271.524404][ T8178] CPU: 1 UID: 0 PID: 8178 Comm: syz.0.516 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  271.524446][ T8178] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  271.524455][ T8178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  271.524470][ T8178] Call Trace:
[  271.524477][ T8178]  <TASK>
[  271.524487][ T8178]  dump_stack_lvl+0x16c/0x1f0
[  271.524517][ T8178]  should_fail_ex+0x512/0x640
[  271.524544][ T8178]  ? fs_reclaim_acquire+0xae/0x150
[  271.524575][ T8178]  should_failslab+0xc2/0x120
[  271.524607][ T8178]  kmem_cache_alloc_noprof+0x75/0x760
[  271.524643][ T8178]  ? __pfx_map_id_range_down+0x10/0x10
[  271.524666][ T8178]  ? security_inode_alloc+0x3b/0x2b0
[  271.524695][ T8178]  ? security_inode_alloc+0x3b/0x2b0
[  271.524719][ T8178]  security_inode_alloc+0x3b/0x2b0
[  271.524745][ T8178]  inode_init_always_gfp+0xced/0x1040
[  271.524776][ T8178]  alloc_inode+0x86/0x240
[  271.524811][ T8178]  new_inode+0x22/0x1c0
[  271.524848][ T8178]  rpc_new_dir+0xa1/0x440
[  271.524879][ T8178]  ? d_instantiate+0x77/0x90
[  271.524911][ T8178]  rpc_fill_super+0x30c/0x4f0
[  271.524954][ T8178]  ? __pfx_rpc_fill_super+0x10/0x10
[  271.524987][ T8178]  get_tree_keyed+0x10e/0x1d0
[  271.525013][ T8178]  vfs_get_tree+0x8e/0x330
[  271.525049][ T8178]  vfs_cmd_create+0xd7/0x2a0
[  271.525087][ T8178]  __do_sys_fsconfig+0x7b8/0xbe0
[  271.525125][ T8178]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  271.525175][ T8178]  do_syscall_64+0xcd/0xf80
[  271.525203][ T8178]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.525226][ T8178] RIP: 0033:0x7f876838f7c9
[  271.525245][ T8178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  271.525268][ T8178] RSP: 002b:00007f8769296038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  271.525291][ T8178] RAX: ffffffffffffffda RBX: 00007f87685e5fa0 RCX: 00007f876838f7c9
[  271.525306][ T8178] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000005
[  271.525320][ T8178] RBP: 00007f8768413f91 R08: 0000000000000000 R09: 0000000000000000
[  271.525334][ T8178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  271.525348][ T8178] R13: 00007f87685e6038 R14: 00007f87685e5fa0 R15: 00007ffdadb3c688
[  271.525379][ T8178]  </TASK>
[  272.957212][ T8188] FAULT_INJECTION: forcing a failure.
[  272.957212][ T8188] name failslab, interval 1, probability 0, space 0, times 0
[  273.022598][ T8188] CPU: 1 UID: 0 PID: 8188 Comm: syz.3.521 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  273.022640][ T8188] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  273.022649][ T8188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  273.022663][ T8188] Call Trace:
[  273.022671][ T8188]  <TASK>
[  273.022680][ T8188]  dump_stack_lvl+0x16c/0x1f0
[  273.022710][ T8188]  should_fail_ex+0x512/0x640
[  273.022737][ T8188]  ? __kmalloc_noprof+0xca/0x8f0
[  273.022772][ T8188]  should_failslab+0xc2/0x120
[  273.022800][ T8188]  __kmalloc_noprof+0xdd/0x8f0
[  273.022842][ T8188]  ? lsm_blob_alloc+0x68/0x90
[  273.022881][ T8188]  ? lsm_blob_alloc+0x68/0x90
[  273.022913][ T8188]  lsm_blob_alloc+0x68/0x90
[  273.022948][ T8188]  security_cred_alloc_blank+0x2a/0x260
[  273.022983][ T8188]  cred_alloc_blank+0x61/0xa0
[  273.023016][ T8188]  keyctl_session_to_parent+0x55/0xaf0
[  273.023046][ T8188]  __do_sys_keyctl+0x25c/0x590
[  273.023072][ T8188]  do_syscall_64+0xcd/0xf80
[  273.023099][ T8188]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.023123][ T8188] RIP: 0033:0x7f5acbf8f7c9
[  273.023142][ T8188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.023166][ T8188] RSP: 002b:00007f5accdd7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  273.023188][ T8188] RAX: ffffffffffffffda RBX: 00007f5acc1e5fa0 RCX: 00007f5acbf8f7c9
[  273.023204][ T8188] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000012
[  273.023220][ T8188] RBP: 00007f5acc013f91 R08: 0000000000000001 R09: 0000000000000000
[  273.023234][ T8188] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000
[  273.023249][ T8188] R13: 00007f5acc1e6038 R14: 00007f5acc1e5fa0 R15: 00007ffe35994d38
[  273.023280][ T8188]  </TASK>
[  273.341177][ T8196] netlink: 146 bytes leftover after parsing attributes in process `syz.2.522'.
[  273.613598][ T8203] netlink: 'syz.3.526': attribute type 1 has an invalid length.
[  273.649172][ T8203] nbd: error processing sock list
[  273.918310][ T8210] ubi31: attaching mtd0
[  273.948615][ T8210] ubi31 error: validate_ec_hdr: bad VID header offset 64, expected 514
[  274.005885][ T8210] ubi31 error: validate_ec_hdr: bad EC header
[  274.038455][ T8210] Erase counter header dump:
[  274.063630][ T8210] 	magic          0x55424923
[  274.087486][ T8210] 	version        1
[  274.108244][ T8210] 	ec             1
[  274.131468][ T8210] 	vid_hdr_offset 64
[  274.153011][ T8210] 	data_offset    128
[  274.178032][ T8210] 	image_seq      -280442530
[  274.203816][ T8210] 	hdr_crc        0xf2e56251
[  274.229981][ T8210] erase counter header hexdump:
[  274.259650][ T8210] CPU: 1 UID: 0 PID: 8210 Comm: syz.0.528 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  274.259686][ T8210] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  274.259695][ T8210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  274.259709][ T8210] Call Trace:
[  274.259717][ T8210]  <TASK>
[  274.259726][ T8210]  dump_stack_lvl+0x16c/0x1f0
[  274.259755][ T8210]  validate_ec_hdr+0x28c/0x330
[  274.259792][ T8210]  ubi_io_read_ec_hdr+0x63b/0x6c0
[  274.259829][ T8210]  ubi_attach+0x601/0x4be0
[  274.259864][ T8210]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  274.259896][ T8210]  ? __pfx_ubi_msg+0x10/0x10
[  274.259919][ T8210]  ? __pfx_ubi_attach+0x10/0x10
[  274.259946][ T8210]  ? ubi_attach_mtd_dev+0x155b/0x35d0
[  274.259971][ T8210]  ? __vmalloc_node_noprof+0xad/0xf0
[  274.259999][ T8210]  ? ubi_attach_mtd_dev+0x155b/0x35d0
[  274.260028][ T8210]  ubi_attach_mtd_dev+0x15a7/0x35d0
[  274.260067][ T8210]  ? __pfx_ubi_attach_mtd_dev+0x10/0x10
[  274.260096][ T8210]  ? __pfx_get_mtd_device+0x10/0x10
[  274.260138][ T8210]  ctrl_cdev_ioctl+0x337/0x3d0
[  274.260163][ T8210]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[  274.260197][ T8210]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[  274.260224][ T8210]  __x64_sys_ioctl+0x18e/0x210
[  274.260264][ T8210]  do_syscall_64+0xcd/0xf80
[  274.260291][ T8210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.260315][ T8210] RIP: 0033:0x7f876838f7c9
[  274.260333][ T8210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.260357][ T8210] RSP: 002b:00007f8769296038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  274.260379][ T8210] RAX: ffffffffffffffda RBX: 00007f87685e5fa0 RCX: 00007f876838f7c9
[  274.260395][ T8210] RDX: 0000200000000080 RSI: 0000000040186f40 RDI: 0000000000000006
[  274.260409][ T8210] RBP: 00007f8768413f91 R08: 0000000000000000 R09: 0000000000000000
[  274.260424][ T8210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  274.260438][ T8210] R13: 00007f87685e6038 R14: 00007f87685e5fa0 R15: 00007ffdadb3c688
[  274.260468][ T8210]  </TASK>
[  274.260494][ T8210] ubi31 error: ubi_io_read_ec_hdr: validation failed for PEB 0
[  274.564771][ T5840] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  275.590152][ T8210] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  276.004397][ T8235] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input13
[  276.796380][ T8245] FAULT_INJECTION: forcing a failure.
[  276.796380][ T8245] name failslab, interval 1, probability 0, space 0, times 0
[  276.888151][ T8245] CPU: 1 UID: 0 PID: 8245 Comm: syz.3.539 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  276.888191][ T8245] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  276.888201][ T8245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  276.888215][ T8245] Call Trace:
[  276.888223][ T8245]  <TASK>
[  276.888231][ T8245]  dump_stack_lvl+0x16c/0x1f0
[  276.888261][ T8245]  should_fail_ex+0x512/0x640
[  276.888288][ T8245]  ? fs_reclaim_acquire+0xae/0x150
[  276.888318][ T8245]  should_failslab+0xc2/0x120
[  276.888347][ T8245]  kmem_cache_alloc_noprof+0x75/0x760
[  276.888381][ T8245]  ? __pfx_map_id_range_down+0x10/0x10
[  276.888406][ T8245]  ? rcu_is_watching+0x12/0xc0
[  276.888436][ T8245]  ? security_inode_alloc+0x3b/0x2b0
[  276.888466][ T8245]  ? security_inode_alloc+0x3b/0x2b0
[  276.888489][ T8245]  security_inode_alloc+0x3b/0x2b0
[  276.888514][ T8245]  inode_init_always_gfp+0xced/0x1040
[  276.888546][ T8245]  alloc_inode+0x86/0x240
[  276.888580][ T8245]  new_inode+0x22/0x1c0
[  276.888617][ T8245]  hugetlbfs_get_inode+0x354/0x700
[  276.888662][ T8245]  hugetlb_file_setup+0x15b/0x620
[  276.888700][ T8245]  ksys_mmap_pgoff+0x189/0x5c0
[  276.888729][ T8245]  __x64_sys_mmap+0x125/0x190
[  276.888758][ T8245]  do_syscall_64+0xcd/0xf80
[  276.888785][ T8245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.888809][ T8245] RIP: 0033:0x7f5acbf8f7c9
[  276.888827][ T8245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  276.888850][ T8245] RSP: 002b:00007f5accdd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  276.888872][ T8245] RAX: ffffffffffffffda RBX: 00007f5acc1e5fa0 RCX: 00007f5acbf8f7c9
[  276.888888][ T8245] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000
[  276.888905][ T8245] RBP: 00007f5acc013f91 R08: 0000000000000401 R09: 0000300000000000
[  276.888920][ T8245] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  276.888934][ T8245] R13: 00007f5acc1e6038 R14: 00007f5acc1e5fa0 R15: 00007ffe35994d38
[  276.888964][ T8245]  </TASK>
[  279.472029][ T8269] Process accounting paused
[  280.316631][ T8298] zswap: compressor  not available
[  280.360308][ T8303] phram: not enough arguments
[  281.283589][ T8320] FAULT_INJECTION: forcing a failure.
[  281.283589][ T8320] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  281.404463][ T8320] CPU: 1 UID: 0 PID: 8320 Comm: syz.2.557 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  281.404504][ T8320] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  281.404513][ T8320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  281.404528][ T8320] Call Trace:
[  281.404535][ T8320]  <TASK>
[  281.404546][ T8320]  dump_stack_lvl+0x16c/0x1f0
[  281.404575][ T8320]  should_fail_ex+0x512/0x640
[  281.404607][ T8320]  should_fail_alloc_page+0xe7/0x130
[  281.404639][ T8320]  prepare_alloc_pages+0x3c2/0x610
[  281.404671][ T8320]  __alloc_frozen_pages_noprof+0x18b/0x2440
[  281.404715][ T8320]  ? do_raw_spin_lock+0x12c/0x2b0
[  281.404757][ T8320]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  281.404797][ T8320]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  281.404820][ T8320]  ? stack_depot_save_flags+0x3de/0x9b0
[  281.404855][ T8320]  ? kasan_save_stack+0x42/0x60
[  281.404876][ T8320]  ? kasan_save_stack+0x33/0x60
[  281.404898][ T8320]  ? kasan_save_track+0x14/0x30
[  281.404919][ T8320]  ? __kasan_kmalloc+0xaa/0xb0
[  281.404940][ T8320]  ? fl_create+0x104/0xd30
[  281.404980][ T8320]  ? ipv6_flowlabel_opt+0x964/0x2e50
[  281.405014][ T8320]  ? do_ipv6_setsockopt+0x2009/0x4570
[  281.405040][ T8320]  ? ipv6_setsockopt+0xcb/0x170
[  281.405065][ T8320]  ? tcp_setsockopt+0xa7/0x100
[  281.405097][ T8320]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  281.405124][ T8320]  ? policy_nodemask+0xea/0x4e0
[  281.405153][ T8320]  alloc_pages_mpol+0x1fb/0x550
[  281.405181][ T8320]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  281.405216][ T8320]  ___kmalloc_large_node+0x130/0x1a0
[  281.405248][ T8320]  __kmalloc_large_node_noprof+0x1c/0x70
[  281.405280][ T8320]  __kmalloc_noprof.cold+0xc/0x62
[  281.405316][ T8320]  ? fl_create+0x18a/0xd30
[  281.405353][ T8320]  ? fl_create+0x18a/0xd30
[  281.405385][ T8320]  fl_create+0x18a/0xd30
[  281.405424][ T8320]  ? __pfx_fl_create+0x10/0x10
[  281.405458][ T8320]  ? add_lock_to_list+0x9d/0x130
[  281.405484][ T8320]  ? lockdep_unlock+0x52/0xc0
[  281.405519][ T8320]  ? __lock_acquire+0x11a1/0x22f0
[  281.405576][ T8320]  ipv6_flowlabel_opt+0x964/0x2e50
[  281.405612][ T8320]  ? finish_task_switch.isra.0+0x207/0xbd0
[  281.405656][ T8320]  ? __pfx_ipv6_flowlabel_opt+0x10/0x10
[  281.405693][ T8320]  ? do_raw_spin_lock+0x12c/0x2b0
[  281.405736][ T8320]  ? __local_bh_enable_ip+0xa4/0x120
[  281.405778][ T8320]  ? do_ipv6_setsockopt+0x2009/0x4570
[  281.405804][ T8320]  do_ipv6_setsockopt+0x2009/0x4570
[  281.405837][ T8320]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  281.405863][ T8320]  ? __lock_acquire+0x433/0x22f0
[  281.405900][ T8320]  ? lock_acquire+0x179/0x330
[  281.405931][ T8320]  ? __pfx___might_resched+0x10/0x10
[  281.405960][ T8320]  ? rcu_is_watching+0x12/0xc0
[  281.405983][ T8320]  ? trace_contention_end+0xdd/0x110
[  281.406013][ T8320]  ? __mutex_lock+0x27b/0x1b10
[  281.406046][ T8320]  ? smc_setsockopt+0x100/0xa00
[  281.406083][ T8320]  ? __pfx___mutex_lock+0x10/0x10
[  281.406124][ T8320]  ? ipv6_setsockopt+0xcb/0x170
[  281.406148][ T8320]  ipv6_setsockopt+0xcb/0x170
[  281.406179][ T8320]  tcp_setsockopt+0xa7/0x100
[  281.406218][ T8320]  smc_setsockopt+0x1b6/0xa00
[  281.406250][ T8320]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  281.406296][ T8320]  ? __pfx_smc_setsockopt+0x10/0x10
[  281.406332][ T8320]  ? aa_sock_opt_perm+0xfd/0x1b0
[  281.406371][ T8320]  ? __pfx_smc_setsockopt+0x10/0x10
[  281.406405][ T8320]  do_sock_setsockopt+0xf3/0x1d0
[  281.406446][ T8320]  __sys_setsockopt+0x120/0x1a0
[  281.406480][ T8320]  __x64_sys_setsockopt+0xbd/0x160
[  281.406509][ T8320]  ? do_syscall_64+0x91/0xf80
[  281.406534][ T8320]  ? lockdep_hardirqs_on+0x7c/0x110
[  281.406558][ T8320]  do_syscall_64+0xcd/0xf80
[  281.406585][ T8320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.406610][ T8320] RIP: 0033:0x7f6e7038f7c9
[  281.406630][ T8320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.406653][ T8320] RSP: 002b:00007f6e71187038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  281.406675][ T8320] RAX: ffffffffffffffda RBX: 00007f6e705e6090 RCX: 00007f6e7038f7c9
[  281.406691][ T8320] RDX: 0000000000000020 RSI: 0000000000000029 RDI: 0000000000000003
[  281.406705][ T8320] RBP: 00007f6e70413f91 R08: 0000000000008002 R09: 0000000000000000
[  281.406719][ T8320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  281.406734][ T8320] R13: 00007f6e705e6128 R14: 00007f6e705e6090 R15: 00007ffd5104d498
[  281.406765][ T8320]  </TASK>
[  282.071523][ T8329] input: jJǸ���;9�%v����l��Q�	J86�� as /devices/virtual/input/input14
[  282.082541][ T8329] FAULT_INJECTION: forcing a failure.
[  282.082541][ T8329] name failslab, interval 1, probability 0, space 0, times 0
[  282.107794][ T8329] CPU: 1 UID: 0 PID: 8329 Comm: syz.2.559 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  282.107833][ T8329] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  282.107842][ T8329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  282.107856][ T8329] Call Trace:
[  282.107864][ T8329]  <TASK>
[  282.107872][ T8329]  dump_stack_lvl+0x16c/0x1f0
[  282.107902][ T8329]  should_fail_ex+0x512/0x640
[  282.107930][ T8329]  ? __kmalloc_node_track_caller_noprof+0xcb/0x910
[  282.107969][ T8329]  should_failslab+0xc2/0x120
[  282.107998][ T8329]  __kmalloc_node_track_caller_noprof+0xde/0x910
[  282.108024][ T8329]  ? kasprintf+0xc7/0x100
[  282.108057][ T8329]  ? kvasprintf+0xbc/0x150
[  282.108082][ T8329]  kvasprintf+0xbc/0x150
[  282.108108][ T8329]  ? __pfx_kvasprintf+0x10/0x10
[  282.108133][ T8329]  ? __lock_acquire+0x433/0x22f0
[  282.108173][ T8329]  kasprintf+0xc7/0x100
[  282.108200][ T8329]  ? __pfx_kasprintf+0x10/0x10
[  282.108239][ T8329]  ? __pfx_input_devnode+0x10/0x10
[  282.108264][ T8329]  device_get_devnode+0x166/0x2c0
[  282.108306][ T8329]  devtmpfs_create_node+0xf1/0x230
[  282.108339][ T8329]  ? __pfx_devtmpfs_create_node+0x10/0x10
[  282.108375][ T8329]  ? up_write+0x282/0x4e0
[  282.108417][ T8329]  ? kernfs_create_link+0x1bd/0x240
[  282.108448][ T8329]  ? kernfs_put+0x35/0x60
[  282.108468][ T8329]  ? sysfs_do_create_link_sd+0xbb/0x140
[  282.108509][ T8329]  device_add+0x10bd/0x1950
[  282.108548][ T8329]  ? __pfx_device_add+0x10/0x10
[  282.108583][ T8329]  ? __pfx_exact_lock+0x10/0x10
[  282.108615][ T8329]  ? kobject_get+0xbb/0x150
[  282.108644][ T8329]  cdev_device_add+0xc2/0x1e0
[  282.108673][ T8329]  evdev_connect+0x3a4/0x4c0
[  282.108709][ T8329]  input_attach_handler.isra.0+0x176/0x250
[  282.108763][ T8329]  input_register_device+0xab9/0x1180
[  282.108794][ T8329]  ? input_ff_create+0x1f1/0x350
[  282.108819][ T8329]  uinput_ioctl_handler.isra.0+0x1357/0x1df0
[  282.108846][ T8329]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  282.108884][ T8329]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  282.108916][ T8329]  ? find_held_lock+0x2b/0x80
[  282.108972][ T8329]  ? __pfx_uinput_ioctl+0x10/0x10
[  282.108997][ T8329]  __x64_sys_ioctl+0x18e/0x210
[  282.109036][ T8329]  do_syscall_64+0xcd/0xf80
[  282.109064][ T8329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.109088][ T8329] RIP: 0033:0x7f6e7038f7c9
[  282.109107][ T8329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.109130][ T8329] RSP: 002b:00007f6e711a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  282.109152][ T8329] RAX: ffffffffffffffda RBX: 00007f6e705e5fa0 RCX: 00007f6e7038f7c9
[  282.109168][ T8329] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 000000000000000d
[  282.109182][ T8329] RBP: 00007f6e70413f91 R08: 0000000000000000 R09: 0000000000000000
[  282.109197][ T8329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  282.109211][ T8329] R13: 00007f6e705e6038 R14: 00007f6e705e5fa0 R15: 00007ffd5104d498
[  282.109242][ T8329]  </TASK>
[  285.081175][ T8349] rtc_cmos 00:00: Alarms can be up to one day in the future
[  285.598055][ T5822] rtc_cmos 00:00: Alarms can be up to one day in the future
[  285.660700][ T5822] rtc_cmos 00:00: Alarms can be up to one day in the future
[  285.724633][ T5822] rtc_cmos 00:00: Alarms can be up to one day in the future
[  285.797811][ T5822] rtc_cmos 00:00: Alarms can be up to one day in the future
[  285.849789][ T5822] rtc rtc0: __rtc_set_alarm: err=-22
[  288.495984][ T8362] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  289.754668][ T8379] FAULT_INJECTION: forcing a failure.
[  289.754668][ T8379] name failslab, interval 1, probability 0, space 0, times 0
[  289.845641][ T8379] CPU: 1 UID: 0 PID: 8379 Comm: syz.3.580 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  289.845683][ T8379] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  289.845692][ T8379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  289.845706][ T8379] Call Trace:
[  289.845714][ T8379]  <TASK>
[  289.845722][ T8379]  dump_stack_lvl+0x16c/0x1f0
[  289.845752][ T8379]  should_fail_ex+0x512/0x640
[  289.845780][ T8379]  ? __kmalloc_cache_noprof+0x5f/0x800
[  289.845817][ T8379]  should_failslab+0xc2/0x120
[  289.845846][ T8379]  __kmalloc_cache_noprof+0x72/0x800
[  289.845880][ T8379]  ? alloc_fdtable+0xbd/0x2d0
[  289.845908][ T8379]  ? alloc_fdtable+0xbd/0x2d0
[  289.845930][ T8379]  alloc_fdtable+0xbd/0x2d0
[  289.845956][ T8379]  dup_fd+0x803/0xc70
[  289.845989][ T8379]  __do_sys_close_range+0x4ca/0x730
[  289.846021][ T8379]  ? __pfx___do_sys_close_range+0x10/0x10
[  289.846058][ T8379]  do_syscall_64+0xcd/0xf80
[  289.846086][ T8379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.846110][ T8379] RIP: 0033:0x7f5acbf8f7c9
[  289.846128][ T8379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.846152][ T8379] RSP: 002b:00007f5accdd7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  289.846175][ T8379] RAX: ffffffffffffffda RBX: 00007f5acc1e5fa0 RCX: 00007f5acbf8f7c9
[  289.846190][ T8379] RDX: 0000000000000006 RSI: ffffffffffffffff RDI: ffffffffffffffff
[  289.846213][ T8379] RBP: 00007f5acc013f91 R08: 0000000000000000 R09: 0000000000000000
[  289.846227][ T8379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  289.846241][ T8379] R13: 00007f5acc1e6038 R14: 00007f5acc1e5fa0 R15: 00007ffe35994d38
[  289.846272][ T8379]  </TASK>
[  291.426445][ T8400] netlink: 28 bytes leftover after parsing attributes in process `syz.2.576'.
[  291.669985][ T8400] bridge_slave_1: left allmulticast mode
[  291.724611][ T8400] bridge_slave_1: left promiscuous mode
[  291.765603][ T8400] bridge0: port 2(bridge_slave_1) entered disabled state
[  291.869130][ T8400] bridge_slave_0: left allmulticast mode
[  291.940679][ T8400] bridge_slave_0: left promiscuous mode
[  291.952297][ T8400] bridge0: port 1(bridge_slave_0) entered disabled state
[  294.565127][ T5840] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  295.357323][ T5840] Bluetooth: hci1: unexpected event 0x36 length: 123 > 7
[  296.747262][ T8466] FAULT_INJECTION: forcing a failure.
[  296.747262][ T8466] name failslab, interval 1, probability 0, space 0, times 0
[  296.930453][ T8466] CPU: 1 UID: 0 PID: 8466 Comm: syz.3.589 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  296.930495][ T8466] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  296.930504][ T8466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  296.930519][ T8466] Call Trace:
[  296.930526][ T8466]  <TASK>
[  296.930536][ T8466]  dump_stack_lvl+0x16c/0x1f0
[  296.930567][ T8466]  should_fail_ex+0x512/0x640
[  296.930595][ T8466]  ? __kmalloc_cache_noprof+0x5f/0x800
[  296.930633][ T8466]  should_failslab+0xc2/0x120
[  296.930662][ T8466]  __kmalloc_cache_noprof+0x72/0x800
[  296.930696][ T8466]  ? device_add+0xccc/0x1950
[  296.930737][ T8466]  ? device_add+0xccc/0x1950
[  296.930771][ T8466]  device_add+0xccc/0x1950
[  296.930811][ T8466]  ? dev_set_name+0xc7/0x100
[  296.930832][ T8466]  ? __pfx_dev_set_name+0x10/0x10
[  296.930855][ T8466]  ? __pfx_device_add+0x10/0x10
[  296.930892][ T8466]  ? lockdep_init_map_type+0x5c/0x270
[  296.930923][ T8466]  ? __init_waitqueue_head+0xca/0x150
[  296.930964][ T8466]  netdev_register_kobject+0x1a9/0x3d0
[  296.930991][ T8466]  register_netdevice+0x13ac/0x21d0
[  296.931031][ T8466]  ? rcu_is_watching+0x12/0xc0
[  296.931054][ T8466]  ? __pfx_register_netdevice+0x10/0x10
[  296.931099][ T8466]  slip_open+0xb86/0x1150
[  296.931128][ T8466]  ? __pfx_slip_open+0x10/0x10
[  296.931150][ T8466]  ? down_write+0x14d/0x200
[  296.931181][ T8466]  ? __pfx_slip_open+0x10/0x10
[  296.931203][ T8466]  tty_ldisc_open+0x9f/0x120
[  296.931235][ T8466]  tty_set_ldisc+0x32b/0x780
[  296.931271][ T8466]  tty_ioctl+0xc2d/0x1650
[  296.931306][ T8466]  ? __pfx_tty_ioctl+0x10/0x10
[  296.931350][ T8466]  ? find_held_lock+0x2b/0x80
[  296.931386][ T8466]  ? hook_file_ioctl_common+0x144/0x410
[  296.931422][ T8466]  ? __fget_files+0x20e/0x3c0
[  296.931451][ T8466]  ? __pfx_tty_ioctl+0x10/0x10
[  296.931491][ T8466]  __x64_sys_ioctl+0x18e/0x210
[  296.931531][ T8466]  do_syscall_64+0xcd/0xf80
[  296.931558][ T8466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.931582][ T8466] RIP: 0033:0x7f5acbf8f7c9
[  296.931601][ T8466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  296.931624][ T8466] RSP: 002b:00007f5accdd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  296.931647][ T8466] RAX: ffffffffffffffda RBX: 00007f5acc1e5fa0 RCX: 00007f5acbf8f7c9
[  296.931663][ T8466] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000007
[  296.931677][ T8466] RBP: 00007f5acc013f91 R08: 0000000000000000 R09: 0000000000000000
[  296.931692][ T8466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  296.931706][ T8466] R13: 00007f5acc1e6038 R14: 00007f5acc1e5fa0 R15: 00007ffe35994d38
[  296.931738][ T8466]  </TASK>
[  297.496090][ T8466] Falling back ldisc for ptm0.
[  300.222060][ T8486] kexec: Could not allocate control_code_buffer
[  300.427646][ T8499] usb usb3: usbfs: process 8499 (syz.1.596) did not claim interface 2 before use
[  301.403477][ T8513] FAULT_INJECTION: forcing a failure.
[  301.403477][ T8513] name fail_futex, interval 1, probability 0, space 0, times 0
[  301.655258][ T8513] CPU: 1 UID: 0 PID: 8513 Comm: syz.3.598 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  301.655301][ T8513] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  301.655310][ T8513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  301.655324][ T8513] Call Trace:
[  301.655331][ T8513]  <TASK>
[  301.655340][ T8513]  dump_stack_lvl+0x16c/0x1f0
[  301.655369][ T8513]  should_fail_ex+0x512/0x640
[  301.655402][ T8513]  get_futex_key+0x1d0/0x15f0
[  301.655437][ T8513]  ? __pfx_get_futex_key+0x10/0x10
[  301.655471][ T8513]  ? trace_sched_set_need_resched_tp+0xf3/0x130
[  301.655504][ T8513]  futex_wait_setup+0x9d/0x570
[  301.655534][ T8513]  __futex_wait+0x193/0x2f0
[  301.655557][ T8513]  ? __pfx___futex_wait+0x10/0x10
[  301.655583][ T8513]  ? __pfx_futex_wake_mark+0x10/0x10
[  301.655626][ T8513]  ? find_held_lock+0x2b/0x80
[  301.655667][ T8513]  ? futex_private_hash_put+0x160/0x1b0
[  301.655700][ T8513]  futex_wait+0xe8/0x380
[  301.655721][ T8513]  ? __pfx_futex_wait+0x10/0x10
[  301.655749][ T8513]  ? kasan_quarantine_put+0x10a/0x240
[  301.655773][ T8513]  ? lockdep_hardirqs_on+0x7c/0x110
[  301.655804][ T8513]  do_futex+0x229/0x350
[  301.655837][ T8513]  ? __pfx_do_futex+0x10/0x10
[  301.655869][ T8513]  ? mntput+0x10/0x90
[  301.655891][ T8513]  ? do_handle_open+0x2ce/0xd10
[  301.655923][ T8513]  __x64_sys_futex+0x1e0/0x4c0
[  301.655960][ T8513]  ? __pfx___x64_sys_futex+0x10/0x10
[  301.655993][ T8513]  ? xfd_validate_state+0x61/0x180
[  301.656026][ T8513]  do_syscall_64+0xcd/0xf80
[  301.656053][ T8513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  301.656085][ T8513] RIP: 0033:0x7f5acbf8f7c9
[  301.656104][ T8513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  301.656127][ T8513] RSP: 002b:00007f5accd950e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  301.656150][ T8513] RAX: ffffffffffffffda RBX: 00007f5acc1e6188 RCX: 00007f5acbf8f7c9
[  301.656165][ T8513] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5acc1e6188
[  301.656179][ T8513] RBP: 00007f5acc1e6180 R08: 0000000000000000 R09: 0000000000000000
[  301.656194][ T8513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  301.656208][ T8513] R13: 00007f5acc1e6218 R14: 00007ffe35994c50 R15: 00007ffe35994d38
[  301.656239][ T8513]  </TASK>
[  304.078244][ T8550] FAULT_INJECTION: forcing a failure.
[  304.078244][ T8550] name failslab, interval 1, probability 0, space 0, times 0
[  304.267382][ T8550] CPU: 1 UID: 0 PID: 8550 Comm: syz.0.609 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  304.267423][ T8550] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  304.267432][ T8550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  304.267459][ T8550] Call Trace:
[  304.267468][ T8550]  <TASK>
[  304.267478][ T8550]  dump_stack_lvl+0x16c/0x1f0
[  304.267508][ T8550]  should_fail_ex+0x512/0x640
[  304.267540][ T8550]  should_failslab+0xc2/0x120
[  304.267569][ T8550]  kmem_cache_alloc_node_noprof+0x78/0x7f0
[  304.267606][ T8550]  ? alloc_io_context+0x21/0x2f0
[  304.267636][ T8550]  ? alloc_io_context+0x21/0x2f0
[  304.267658][ T8550]  alloc_io_context+0x21/0x2f0
[  304.267680][ T8550]  set_task_ioprio+0x49e/0x670
[  304.267707][ T8550]  __do_sys_ioprio_set+0x55b/0xb50
[  304.267744][ T8550]  ? __do_sys_ioprio_set+0x3dd/0xb50
[  304.267794][ T8550]  do_syscall_64+0xcd/0xf80
[  304.267822][ T8550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.267847][ T8550] RIP: 0033:0x7f876838f7c9
[  304.267865][ T8550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.267889][ T8550] RSP: 002b:00007f8769254038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fb
[  304.267911][ T8550] RAX: ffffffffffffffda RBX: 00007f87685e6180 RCX: 00007f876838f7c9
[  304.267927][ T8550] RDX: 0000000000004b34 RSI: 0000000000000000 RDI: 0000000000000003
[  304.267941][ T8550] RBP: 00007f8768413f91 R08: 0000000000000000 R09: 0000000000000000
[  304.267955][ T8550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  304.267969][ T8550] R13: 00007f87685e6218 R14: 00007f87685e6180 R15: 00007ffdadb3c688
[  304.267999][ T8550]  </TASK>
[  306.046597][ T8561] FAULT_INJECTION: forcing a failure.
[  306.046597][ T8561] name failslab, interval 1, probability 0, space 0, times 0
[  306.165937][ T8561] CPU: 1 UID: 0 PID: 8561 Comm: syz.1.610 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  306.165979][ T8561] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  306.165989][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  306.166003][ T8561] Call Trace:
[  306.166011][ T8561]  <TASK>
[  306.166020][ T8561]  dump_stack_lvl+0x16c/0x1f0
[  306.166049][ T8561]  should_fail_ex+0x512/0x640
[  306.166076][ T8561]  ? __kmalloc_noprof+0xca/0x8f0
[  306.166111][ T8561]  should_failslab+0xc2/0x120
[  306.166141][ T8561]  __kmalloc_noprof+0xdd/0x8f0
[  306.166173][ T8561]  ? do_handle_open+0x581/0xd10
[  306.166205][ T8561]  ? do_handle_open+0x581/0xd10
[  306.166231][ T8561]  do_handle_open+0x581/0xd10
[  306.166262][ T8561]  ? __pfx_do_handle_open+0x10/0x10
[  306.166288][ T8561]  ? __x64_sys_futex+0x1e0/0x4c0
[  306.166327][ T8561]  ? xfd_validate_state+0x61/0x180
[  306.166360][ T8561]  ? do_syscall_64+0xcd/0xf80
[  306.166384][ T8561]  do_syscall_64+0xcd/0xf80
[  306.166429][ T8561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.166453][ T8561] RIP: 0033:0x7ff39278f7c9
[  306.166471][ T8561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  306.166495][ T8561] RSP: 002b:00007ff3935e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[  306.166517][ T8561] RAX: ffffffffffffffda RBX: 00007ff3929e6090 RCX: 00007ff39278f7c9
[  306.166533][ T8561] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000005
[  306.166547][ T8561] RBP: 00007ff392813f91 R08: 0000000000000000 R09: 0000000000000000
[  306.166568][ T8561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  306.166582][ T8561] R13: 00007ff3929e6128 R14: 00007ff3929e6090 R15: 00007ffffffa7238
[  306.166612][ T8561]  </TASK>
[  306.678759][ T8566] input: f�
 as /devices/virtual/input/input15
[  309.538510][ T8586] hub 1-0:1.0: USB hub found
[  309.623640][ T8586] hub 1-0:1.0: 1 port detected
[  309.901980][ T8600] Process accounting resumed
[  311.679334][ T8618] can0: slcan on pty238.
[  312.959300][ T8617] can0 (unregistered): slcan off pty238.
[  313.347038][ T8647] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  313.385572][ T8647] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  313.417273][ T8647] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  313.442740][ T8647] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  313.477980][ T8647] CPU0 is offline.
[  315.284732][ T8446] Bluetooth: hci0: command 0x0c1a tx timeout
[  315.445908][ T8446] Bluetooth: hci3: command 0x0c1a tx timeout
[  315.452532][ T8446] Bluetooth: hci2: command 0x0c1a tx timeout
[  315.458918][ T8446] Bluetooth: hci1: command 0x0c1a tx timeout
[  316.907851][ T8711] random: crng reseeded on system resumption
[  327.939552][ T8835] FAULT_INJECTION: forcing a failure.
[  327.939552][ T8835] name failslab, interval 1, probability 0, space 0, times 0
[  328.010166][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  328.040991][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  328.175482][ T8835] CPU: 1 UID: 0 PID: 8835 Comm: syz.1.663 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  328.175524][ T8835] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  328.175533][ T8835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  328.175549][ T8835] Call Trace:
[  328.175557][ T8835]  <TASK>
[  328.175566][ T8835]  dump_stack_lvl+0x16c/0x1f0
[  328.175596][ T8835]  should_fail_ex+0x512/0x640
[  328.175630][ T8835]  should_failslab+0xc2/0x120
[  328.175668][ T8835]  kmem_cache_alloc_node_noprof+0x78/0x7f0
[  328.175705][ T8835]  ? alloc_io_context+0x21/0x2f0
[  328.175735][ T8835]  ? alloc_io_context+0x21/0x2f0
[  328.175757][ T8835]  alloc_io_context+0x21/0x2f0
[  328.175780][ T8835]  set_task_ioprio+0x49e/0x670
[  328.175807][ T8835]  __do_sys_ioprio_set+0x55b/0xb50
[  328.175844][ T8835]  ? __do_sys_ioprio_set+0x3dd/0xb50
[  328.175887][ T8835]  do_syscall_64+0xcd/0xf80
[  328.175914][ T8835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  328.175938][ T8835] RIP: 0033:0x7ff39278f7c9
[  328.175956][ T8835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  328.175980][ T8835] RSP: 002b:00007ff3935c5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fb
[  328.176003][ T8835] RAX: ffffffffffffffda RBX: 00007ff3929e6180 RCX: 00007ff39278f7c9
[  328.176018][ T8835] RDX: 0000000000004b34 RSI: 0000000000000000 RDI: 0000000000000003
[  328.176032][ T8835] RBP: 00007ff392813f91 R08: 0000000000000000 R09: 0000000000000000
[  328.176047][ T8835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  328.176061][ T8835] R13: 00007ff3929e6218 R14: 00007ff3929e6180 R15: 00007ffffffa7238
[  328.176092][ T8835]  </TASK>
[  328.915742][ T8835] zswap: compressor  not available
[  334.366355][ T8901] FAULT_INJECTION: forcing a failure.
[  334.366355][ T8901] name failslab, interval 1, probability 0, space 0, times 0
[  334.409489][ T8901] CPU: 1 UID: 0 PID: 8901 Comm: syz.2.672 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  334.409532][ T8901] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  334.409541][ T8901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  334.409560][ T8901] Call Trace:
[  334.409568][ T8901]  <TASK>
[  334.409576][ T8901]  dump_stack_lvl+0x16c/0x1f0
[  334.409608][ T8901]  should_fail_ex+0x512/0x640
[  334.409635][ T8901]  ? kmem_cache_alloc_noprof+0x62/0x760
[  334.409673][ T8901]  should_failslab+0xc2/0x120
[  334.409702][ T8901]  kmem_cache_alloc_noprof+0x75/0x760
[  334.409737][ T8901]  ? vm_area_alloc+0x1f/0x160
[  334.409773][ T8901]  ? vm_area_alloc+0x1f/0x160
[  334.409801][ T8901]  vm_area_alloc+0x1f/0x160
[  334.409836][ T8901]  __mmap_region+0xf85/0x2770
[  334.409874][ T8901]  ? __pfx___mmap_region+0x10/0x10
[  334.409908][ T8901]  ? __lock_acquire+0x433/0x22f0
[  334.409937][ T8901]  ? update_load_avg+0x233/0x1f80
[  334.409981][ T8901]  ? mark_held_locks+0x49/0x80
[  334.410018][ T8901]  ? __schedule+0x114c/0x6150
[  334.410077][ T8901]  ? rcu_is_watching+0x12/0xc0
[  334.410107][ T8901]  mmap_region+0x1ab/0x3f0
[  334.410142][ T8901]  ? __get_unmapped_area+0x267/0x440
[  334.410169][ T8901]  do_mmap+0xa3e/0x1210
[  334.410197][ T8901]  ? __pfx_do_mmap+0x10/0x10
[  334.410221][ T8901]  ? __pfx_down_write_killable+0x10/0x10
[  334.410257][ T8901]  vm_mmap_pgoff+0x29e/0x470
[  334.410285][ T8901]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  334.410314][ T8901]  ? __x64_sys_futex+0x1e0/0x4c0
[  334.410346][ T8901]  ? __x64_sys_futex+0x1e9/0x4c0
[  334.410382][ T8901]  ksys_mmap_pgoff+0x7d/0x5c0
[  334.410404][ T8901]  ? xfd_validate_state+0x61/0x180
[  334.410427][ T8901]  ? __task_pid_nr_ns+0x1f5/0x500
[  334.410456][ T8901]  __x64_sys_mmap+0x125/0x190
[  334.410484][ T8901]  do_syscall_64+0xcd/0xf80
[  334.410511][ T8901]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.410535][ T8901] RIP: 0033:0x7f6e7038f7c9
[  334.410554][ T8901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.410577][ T8901] RSP: 002b:00007f6e71187038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  334.410599][ T8901] RAX: ffffffffffffffda RBX: 00007f6e705e6090 RCX: 00007f6e7038f7c9
[  334.410615][ T8901] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000
[  334.410629][ T8901] RBP: 00007f6e70413f91 R08: 0000000000000401 R09: 0000000000008000
[  334.410644][ T8901] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  334.410658][ T8901] R13: 00007f6e705e6128 R14: 00007f6e705e6090 R15: 00007ffd5104d498
[  334.410689][ T8901]  </TASK>
[  335.262303][ T8920] FAULT_INJECTION: forcing a failure.
[  335.262303][ T8920] name fail_futex, interval 1, probability 0, space 0, times 0
[  335.474419][ T8908] can0: slcan on pty238.
[  335.514278][ T8920] CPU: 1 UID: 0 PID: 8920 Comm: syz.2.674 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  335.514320][ T8920] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  335.514329][ T8920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  335.514343][ T8920] Call Trace:
[  335.514350][ T8920]  <TASK>
[  335.514359][ T8920]  dump_stack_lvl+0x16c/0x1f0
[  335.514389][ T8920]  should_fail_ex+0x512/0x640
[  335.514422][ T8920]  get_futex_key+0x1d0/0x15f0
[  335.514457][ T8920]  ? __pfx_get_futex_key+0x10/0x10
[  335.514491][ T8920]  ? do_raw_spin_lock+0x12c/0x2b0
[  335.514525][ T8920]  ? find_held_lock+0x2b/0x80
[  335.514566][ T8920]  futex_wake+0xea/0x530
[  335.514605][ T8920]  ? find_held_lock+0x2b/0x80
[  335.514640][ T8920]  ? __pfx_futex_wake+0x10/0x10
[  335.514698][ T8920]  do_futex+0x1e3/0x350
[  335.514733][ T8920]  ? __pfx_do_futex+0x10/0x10
[  335.514774][ T8920]  __x64_sys_futex+0x1e0/0x4c0
[  335.514808][ T8920]  ? __do_sys_ioprio_set+0x100/0xb50
[  335.514847][ T8920]  ? __pfx___x64_sys_futex+0x10/0x10
[  335.514892][ T8920]  do_syscall_64+0xcd/0xf80
[  335.514924][ T8920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.514953][ T8920] RIP: 0033:0x7f6e7038f7c9
[  335.514976][ T8920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.515000][ T8920] RSP: 002b:00007f6e711660e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  335.515024][ T8920] RAX: ffffffffffffffda RBX: 00007f6e705e6188 RCX: 00007f6e7038f7c9
[  335.515040][ T8920] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6e705e618c
[  335.515054][ T8920] RBP: 00007f6e705e6180 R08: 00007f6e711a9000 R09: 0000000000000000
[  335.515069][ T8920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  335.515083][ T8920] R13: 00007f6e705e6218 R14: 00007ffd5104d3b0 R15: 00007ffd5104d498
[  335.515115][ T8920]  </TASK>
[  336.239197][ T8907] can0 (unregistered): slcan off pty238.
[  337.847822][ T8700] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  337.866949][ T8700] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  337.875677][ T8700] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  337.884783][ T8700] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  337.894079][ T8700] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  337.975325][ T8917] zswap: compressor  not available
[  339.100285][ T8952] chnl_net:caif_netlink_parms(): no params data found
[  339.719379][ T8952] bridge0: port 1(bridge_slave_0) entered blocking state
[  339.764405][ T8952] bridge0: port 1(bridge_slave_0) entered disabled state
[  339.795956][ T8952] bridge_slave_0: entered allmulticast mode
[  339.837621][ T8952] bridge_slave_0: entered promiscuous mode
[  339.888406][ T8952] bridge0: port 2(bridge_slave_1) entered blocking state
[  339.925868][ T8700] Bluetooth: hci4: command tx timeout
[  339.964541][ T8952] bridge0: port 2(bridge_slave_1) entered disabled state
[  340.004672][ T8952] bridge_slave_1: entered allmulticast mode
[  340.064554][ T8952] bridge_slave_1: entered promiscuous mode
[  340.338948][ T8952] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  340.495070][ T8952] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  340.746470][ T8952] team0: Port device team_slave_0 added
[  340.855798][ T8952] team0: Port device team_slave_1 added
[  341.040259][ T8952] batman_adv: batadv0: Adding interface: batadv_slave_0
[  341.061599][ T8952] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  341.214301][ T8952] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  341.307551][ T8969] Process accounting paused
[  341.362962][ T8952] batman_adv: batadv0: Adding interface: batadv_slave_1
[  341.398499][ T8952] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  341.439960][ T9001] nbd: must specify an index to disconnect
[  341.513304][ T9003] nbd: must specify an index to disconnect
[  341.522220][ T8952] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  341.737836][ T8952] hsr_slave_0: entered promiscuous mode
[  341.774889][ T8952] hsr_slave_1: entered promiscuous mode
[  341.810065][ T8952] debugfs: 'hsr0' already exists in 'hsr'
[  341.832845][ T8952] Cannot create hsr debugfs directory
[  342.004484][ T8700] Bluetooth: hci4: command tx timeout
[  342.954122][ T8952] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  343.173071][ T8952] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  343.479183][ T8952] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  343.575940][ T8952] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  344.084498][ T8700] Bluetooth: hci4: command tx timeout
[  344.611213][ T8952] 8021q: adding VLAN 0 to HW filter on device bond0
[  344.722943][ T8952] 8021q: adding VLAN 0 to HW filter on device team0
[  344.788050][ T8522] bridge0: port 1(bridge_slave_0) entered blocking state
[  344.795276][ T8522] bridge0: port 1(bridge_slave_0) entered forwarding state
[  344.887389][ T8522] bridge0: port 2(bridge_slave_1) entered blocking state
[  344.894670][ T8522] bridge0: port 2(bridge_slave_1) entered forwarding state
[  345.127472][ T8952] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  346.168031][ T8700] Bluetooth: hci4: command tx timeout
[  346.685019][ T8952] 8021q: adding VLAN 0 to HW filter on device batadv0
[  347.648733][ T8952] veth0_vlan: entered promiscuous mode
[  347.695749][ T8952] veth1_vlan: entered promiscuous mode
[  347.797420][ T8952] veth0_macvtap: entered promiscuous mode
[  347.838944][ T8952] veth1_macvtap: entered promiscuous mode
[  347.904456][ T8952] batman_adv: batadv0: Interface activated: batadv_slave_0
[  347.963609][ T8952] batman_adv: batadv0: Interface activated: batadv_slave_1
[  348.020692][ T8457] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  348.063139][ T8457] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  348.088302][ T8457] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  348.118025][ T8457] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  348.355809][ T8842] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  348.390751][ T8842] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  348.520695][ T8842] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  348.556868][ T8842] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  355.584736][ T9151] nbd: must specify an index to disconnect
[  355.834446][ T9154] nbd: must specify an index to disconnect
[  358.930800][ T9188] nbd: must specify an index to disconnect
[  361.162496][ T8458] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  361.172748][ T8458] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  361.181980][ T8458] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  361.198938][ T8458] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  361.207123][ T8458] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  362.212317][ T9212] chnl_net:caif_netlink_parms(): no params data found
[  363.018838][ T9212] bridge0: port 1(bridge_slave_0) entered blocking state
[  363.043581][ T9212] bridge0: port 1(bridge_slave_0) entered disabled state
[  363.094861][ T9212] bridge_slave_0: entered allmulticast mode
[  363.102442][ T9212] bridge_slave_0: entered promiscuous mode
[  363.150503][ T9212] bridge0: port 2(bridge_slave_1) entered blocking state
[  363.180261][ T9212] bridge0: port 2(bridge_slave_1) entered disabled state
[  363.201328][ T9212] bridge_slave_1: entered allmulticast mode
[  363.222465][ T9212] bridge_slave_1: entered promiscuous mode
[  363.288837][ T8458] Bluetooth: hci5: command tx timeout
[  363.379053][ T9212] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  363.465114][ T9212] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  363.639261][ T9212] team0: Port device team_slave_0 added
[  363.689000][ T9212] team0: Port device team_slave_1 added
[  363.907646][ T9212] batman_adv: batadv0: Adding interface: batadv_slave_0
[  363.940010][ T9212] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  364.082639][ T9212] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  364.167555][ T9212] batman_adv: batadv0: Adding interface: batadv_slave_1
[  364.196020][ T9212] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  364.346331][ T9212] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  364.830734][ T9212] hsr_slave_0: entered promiscuous mode
[  364.866656][ T9212] hsr_slave_1: entered promiscuous mode
[  364.902482][ T9212] debugfs: 'hsr0' already exists in 'hsr'
[  364.944235][ T9212] Cannot create hsr debugfs directory
[  365.364476][ T8458] Bluetooth: hci5: command tx timeout
[  366.319714][ T9212] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  366.372723][ T9212] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  366.421930][ T9212] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  366.498799][ T9212] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  367.378307][ T9212] 8021q: adding VLAN 0 to HW filter on device bond0
[  367.447184][ T8458] Bluetooth: hci5: command tx timeout
[  367.693017][ T9212] 8021q: adding VLAN 0 to HW filter on device team0
[  367.933000][ T8519] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.940363][ T8519] bridge0: port 1(bridge_slave_0) entered forwarding state
[  368.053799][ T8519] bridge0: port 2(bridge_slave_1) entered blocking state
[  368.061018][ T8519] bridge0: port 2(bridge_slave_1) entered forwarding state
[  369.266534][ T9212] 8021q: adding VLAN 0 to HW filter on device batadv0
[  369.524452][ T8458] Bluetooth: hci5: command tx timeout
[  370.177208][ T9212] veth0_vlan: entered promiscuous mode
[  370.222033][ T9212] veth1_vlan: entered promiscuous mode
[  370.335128][ T9212] veth0_macvtap: entered promiscuous mode
[  370.387736][ T9212] veth1_macvtap: entered promiscuous mode
[  370.651275][ T9212] batman_adv: batadv0: Interface activated: batadv_slave_0
[  370.756287][ T9212] batman_adv: batadv0: Interface activated: batadv_slave_1
[  370.801682][ T8462] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  370.832469][ T8462] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  370.882373][ T8462] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  370.932106][ T8462] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  371.315573][ T8842] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  371.375879][ T8842] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  371.422925][ T9309] Process accounting resumed
[  371.474449][ T8449] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  371.515714][ T8449] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  383.379890][ T8700] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  383.389254][ T8700] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  383.397714][ T8700] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  383.416295][ T8700] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  383.425595][ T8700] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  384.233180][ T9442] chnl_net:caif_netlink_parms(): no params data found
[  384.706525][ T9442] bridge0: port 1(bridge_slave_0) entered blocking state
[  384.740911][ T9442] bridge0: port 1(bridge_slave_0) entered disabled state
[  384.780305][ T9442] bridge_slave_0: entered allmulticast mode
[  384.821226][ T9442] bridge_slave_0: entered promiscuous mode
[  385.057525][ T9442] bridge0: port 2(bridge_slave_1) entered blocking state
[  385.074399][ T9442] bridge0: port 2(bridge_slave_1) entered disabled state
[  385.136934][ T9442] bridge_slave_1: entered allmulticast mode
[  385.204612][ T9442] bridge_slave_1: entered promiscuous mode
[  385.400286][ T9442] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  385.530289][ T8700] Bluetooth: hci6: command tx timeout
[  385.627718][ T9442] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  385.792417][ T9442] team0: Port device team_slave_0 added
[  386.075984][ T9442] team0: Port device team_slave_1 added
[  386.255058][ T9442] batman_adv: batadv0: Adding interface: batadv_slave_0
[  386.289614][ T9442] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  386.423856][ T9442] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  386.658929][ T9442] batman_adv: batadv0: Adding interface: batadv_slave_1
[  386.695639][ T9442] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  386.824293][ T9442] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  387.083410][ T9442] hsr_slave_0: entered promiscuous mode
[  387.127362][ T9442] hsr_slave_1: entered promiscuous mode
[  387.175191][ T9442] debugfs: 'hsr0' already exists in 'hsr'
[  387.181059][ T9442] Cannot create hsr debugfs directory
[  387.605032][ T8700] Bluetooth: hci6: command tx timeout
[  388.300309][ T9442] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  388.387461][ T9442] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  388.462751][ T9442] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  388.572161][ T9442] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  389.325636][ T9442] 8021q: adding VLAN 0 to HW filter on device bond0
[  389.429836][ T9442] 8021q: adding VLAN 0 to HW filter on device team0
[  389.453711][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  389.460153][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  389.536551][ T8457] bridge0: port 1(bridge_slave_0) entered blocking state
[  389.543696][ T8457] bridge0: port 1(bridge_slave_0) entered forwarding state
[  389.651937][ T8457] bridge0: port 2(bridge_slave_1) entered blocking state
[  389.659173][ T8457] bridge0: port 2(bridge_slave_1) entered forwarding state
[  389.693830][ T8700] Bluetooth: hci6: command tx timeout
[  390.966812][ T9442] 8021q: adding VLAN 0 to HW filter on device batadv0
[  391.764452][ T8700] Bluetooth: hci6: command tx timeout
[  392.245078][ T9442] veth0_vlan: entered promiscuous mode
[  392.322384][ T9442] veth1_vlan: entered promiscuous mode
[  392.506594][ T9442] veth0_macvtap: entered promiscuous mode
[  392.558369][ T9442] veth1_macvtap: entered promiscuous mode
[  392.657126][ T9442] batman_adv: batadv0: Interface activated: batadv_slave_0
[  392.733340][ T9442] batman_adv: batadv0: Interface activated: batadv_slave_1
[  392.801119][ T8450] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  392.863487][ T8450] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  392.984886][ T8450] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  393.104093][ T8450] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  393.386756][ T8522] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  393.435790][ T8522] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  393.569742][ T8451] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  393.624254][ T8451] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  396.393494][ T9577] nbd: must specify an index to disconnect
[  398.933518][ T9604] nbd: must specify an index to disconnect
[  401.742441][ T9630] nbd: must specify an index to disconnect
[  401.935917][ T9622] Process accounting paused
[  432.257669][ T9903] Process accounting resumed
[  442.279838][T10015] nbd: must specify an index to disconnect
[  442.803014][T10019] nbd: must specify an index to disconnect
[  448.324809][   T31] INFO: task kworker/u10:10:8472 blocked for more than 143 seconds.
[  448.332865][   T31]       Tainted: G     U       L      syzkaller #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  448.372643][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  448.442551][   T31] task:kworker/u10:10  state:D stack:26760 pid:8472  tgid:8472  ppid:2      task_flags:0x4208060 flags:0x00080000
[  448.539561][   T31] Workqueue: netns cleanup_net
[  448.581198][   T31] Call Trace:
[  448.602669][   T31]  <TASK>
[  448.647342][   T31]  ? __schedule+0x10b9/0x6150
[  448.688924][   T31]  __schedule+0x1139/0x6150
[  448.709566][   T31]  ? __pfx___schedule+0x10/0x10
[  448.736871][   T31]  ? find_held_lock+0x2b/0x80
[  448.772927][   T31]  ? schedule+0x2d7/0x3a0
[  448.804537][   T31]  schedule+0xe7/0x3a0
[  448.826623][   T31]  schedule_timeout+0x257/0x290
[  448.862287][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  448.888198][   T31]  ? mark_held_locks+0x49/0x80
[  448.917825][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  448.960637][   T31]  do_wait_for_common+0x2d7/0x4c0
[  448.985678][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  449.034435][   T31]  ? __pfx_do_wait_for_common+0x10/0x10
[  449.057331][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[  449.104254][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  449.109775][   T31]  ? __pfx___might_resched+0x10/0x10
[  449.168480][   T31]  wait_for_completion+0x49/0x60
[  449.205406][   T31]  __flush_workqueue+0x3e2/0x1230
[  449.229493][   T31]  ? __lock_acquire+0x433/0x22f0
[  449.256059][   T31]  ? __lock_acquire+0x433/0x22f0
[  449.294478][   T31]  ? __pfx___flush_workqueue+0x10/0x10
[  449.335942][   T31]  ? reacquire_held_locks+0xcd/0x1f0
[  449.341325][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[  449.445237][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[  449.450786][   T31]  rds_tcp_listen_stop+0x104/0x150
[  449.554271][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  449.624292][   T31]  rds_tcp_exit_net+0xcb/0x810
[  449.629204][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  449.705403][   T31]  ? __pfx___might_resched+0x10/0x10
[  449.744226][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  449.749750][   T31]  ops_undo_list+0x2ee/0xab0
[  449.817201][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[  449.822404][   T31]  ? cleanup_net+0x347/0x830
[  449.867329][   T31]  ? idr_destroy+0x62/0x2e0
[  449.871920][   T31]  cleanup_net+0x41b/0x830
[  449.925922][   T31]  ? __pfx_cleanup_net+0x10/0x10
[  449.930955][   T31]  ? rcu_is_watching+0x12/0xc0
[  449.994395][   T31]  process_one_work+0x9ba/0x1b20
[  449.999427][   T31]  ? __pfx_process_one_work+0x10/0x10
[  450.055221][   T31]  ? assign_work+0x1a0/0x250
[  450.064287][   T31]  worker_thread+0x6c8/0xf10
[  450.068960][   T31]  ? __kthread_parkme+0x19e/0x250
[  450.074017][   T31]  ? __pfx_worker_thread+0x10/0x10
[  450.148683][   T31]  kthread+0x3c5/0x780
[  450.152841][   T31]  ? __pfx_kthread+0x10/0x10
[  450.184264][   T31]  ? rcu_is_watching+0x12/0xc0
[  450.189121][   T31]  ? __pfx_kthread+0x10/0x10
[  450.193760][   T31]  ret_from_fork+0x983/0xb10
[  450.236092][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  450.241290][   T31]  ? rcu_is_watching+0x12/0xc0
[  450.274241][   T31]  ? __switch_to+0x7af/0x10d0
[  450.279004][   T31]  ? __pfx_kthread+0x10/0x10
[  450.283620][   T31]  ret_from_fork_asm+0x1a/0x30
[  450.315831][   T31]  </TASK>
[  450.330684][   T31] 
[  450.330684][   T31] Showing all locks held in the system:
[  450.437301][   T31] 1 lock held by khungtaskd/31:
[  450.442229][   T31]  #0: ffffffff8e3c9140 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  450.511609][   T31] 2 locks held by getty/7198:
[  450.532869][   T31]  #0: ffff888035bd50a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  450.575545][   T31]  #1: ffffc9000a00d2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  450.635082][   T31] 3 locks held by kworker/u10:10/8472:
[  450.640612][   T31]  #0: ffff88801badf148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20
[  450.704226][   T31]  #1: ffffc9000b707c90 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20
[  450.754559][   T31]  #2: ffffffff90116530 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xad/0x830
[  450.763987][   T31] 1 lock held by syz.3.647/8762:
[  450.794217][   T31]  #0: ffffffff90116530 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x333/0x5d0
[  450.803731][   T31] 1 lock held by syz.0.690/9043:
[  450.844216][   T31]  #0: ffffffff90116530 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x333/0x5d0
[  450.853727][   T31] 1 lock held by syz.1.727/9284:
[  450.894625][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  450.900960][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  450.925507][   T31]  #0: ffffffff90116530 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x333/0x5d0
[  450.974198][   T31] 5 locks held by syz-executor/9442:
[  450.979539][   T31]  #0: ffff888043120ec0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_dev_do_close+0x26/0x90
[  451.015697][   T31]  #1: ffff8880431200c0 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x3ae/0x11d0
[  451.025892][   T31]  #2: ffffffff903a9a48 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xbb/0x260
[  451.037306][   T31]  #3: ffff88802ae73338 (&conn->lock#2){+.+.}-{4:4}, at: l2cap_conn_del+0x80/0x730
[  451.051356][   T31]  #4: ffffffff8e3d48b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x284/0x3c0
[  451.065170][   T31] 3 locks held by syz.5.842/10065:
[  451.070302][   T31]  #0: ffff88804bc44ec0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_dev_do_close+0x26/0x90
[  451.080430][   T31]  #1: ffff88804bc440c0 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x3ae/0x11d0
[  451.090435][   T31]  #2: ffffffff903a9a48 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xbb/0x260
[  451.101936][   T31] 3 locks held by syz.4.843/10073:
[  451.108194][   T31]  #0: ffff888057508ec0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_dev_do_close+0x26/0x90
[  451.118201][   T31]  #1: ffff8880575080c0 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x3ae/0x11d0
[  451.129818][   T31]  #2: ffffffff903a9a48 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xbb/0x260
[  451.140221][   T31] 3 locks held by syz.2.844/10083:
[  451.150809][   T31]  #0: ffffffff90116530 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x333/0x5d0
[  451.160720][   T31]  #1: ffffffff9012cb88 (rtnl_mutex){+.+.}-{4:4}, at: ops_undo_list+0x7e9/0xab0
[  451.171991][   T31]  #2: ffffffff8e3d48b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0
[  451.230336][   T31] 
[  451.232728][   T31] =============================================
[  451.232728][   T31] 
[  451.289443][   T31] NMI backtrace for cpu 1
[  451.289467][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  451.289504][   T31] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  451.289512][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  451.289526][   T31] Call Trace:
[  451.289533][   T31]  <TASK>
[  451.289542][   T31]  dump_stack_lvl+0x116/0x1f0
[  451.289571][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  451.289604][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  451.289633][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  451.289668][   T31]  watchdog+0xf14/0x1140
[  451.289703][   T31]  ? rcu_is_watching+0x12/0xc0
[  451.289727][   T31]  ? __pfx_watchdog+0x10/0x10
[  451.289747][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  451.289774][   T31]  ? __kthread_parkme+0x19e/0x250
[  451.289798][   T31]  ? __pfx_watchdog+0x10/0x10
[  451.289820][   T31]  kthread+0x3c5/0x780
[  451.289847][   T31]  ? __pfx_kthread+0x10/0x10
[  451.289876][   T31]  ? rcu_is_watching+0x12/0xc0
[  451.289898][   T31]  ? __pfx_kthread+0x10/0x10
[  451.289926][   T31]  ret_from_fork+0x983/0xb10
[  451.289950][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  451.289976][   T31]  ? __switch_to+0x7af/0x10d0
[  451.290006][   T31]  ? __pfx_kthread+0x10/0x10
[  451.290034][   T31]  ret_from_fork_asm+0x1a/0x30
[  451.290083][   T31]  </TASK>