last executing test programs:

3m23.01270568s ago: executing program 3 (id=4719):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
pipe$auto(0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getuid()
sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, 0x0, 0x44810)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x9d90, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
read$auto_proc_pid_maps_operations_internal(r0, &(0x7f00000020c0)=""/4093, 0xffd)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
io_uring_setup$auto(0x2, &(0x7f0000000080)={0x80000003, 0x9, 0x4002, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x4000006, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x104, 0x8, 0x100000000}})
mmap$auto(0x0, 0xaef, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0302, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0x4008ae61, 0xffffffffffffffff)
madvise$auto(0x0, 0x454, 0x9)

3m18.202539351s ago: executing program 3 (id=4730):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
socket(0x1d, 0x2, 0x7)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x106)
r0 = socket(0x10, 0x2, 0xf)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
socket(0xa, 0x3, 0xff)
pipe$auto(0x0)
bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_4={0x1e, r0, 0xffffffff}, 0xd)
bpf$auto(0x2, &(0x7f0000000080)=@bpf_attr_3={0x5, 0x0, 0x702955be, 0x40000, 0x4, 0x5, 0x80, 0xe4, 0xfffff800, "0566c8ee7c78a925488276d7697a12bd", 0x0, 0x5, 0xffffffffffffffff, 0x7, 0x9, 0x4, 0x7, 0x10001, 0x0, 0x8001, @attach_prog_fd=r0, 0x7e, 0x4, 0x1, 0x5, 0x3}, 0x5)

3m17.901931637s ago: executing program 3 (id=4733):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r0)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000180)={0x2c, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40480c0}, 0x80)
mmap$auto(0x0, 0x100, 0x4000000000df, 0x13, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
socket(0x2, 0x1, 0x106)
connect$auto(0x3, 0x0, 0x54)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_clone(0x4100000, 0x0, 0x0, 0x0, 0x0, 0x0)
futex$auto(0x0, 0x86, 0x8, 0x0, 0x0, 0x7)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x1000000, 0xffffffffffff0006, 0x17)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2)
clone$auto(0x0, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)

3m13.9429988s ago: executing program 3 (id=4740):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0x149182, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/workqueue/parameters/default_affinity_scope\x00', 0x1a9242, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
r2 = socket(0x10, 0x2, 0x4)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000000)={0x20, 0x0, 0x1, 0x70bd37, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x80000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x80, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000140), 0x600000, 0x0)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef)

3m12.232631819s ago: executing program 3 (id=4741):
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
socket(0x2, 0x1, 0x106)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x13}}, 0x54)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0xc0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x6)
socket(0x2, 0x1, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x0, 0x401, 0x7}, 0x9, 0x0)
landlock_restrict_self$auto(r0, 0x8)

3m11.016626757s ago: executing program 3 (id=4742):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/udp\x00', 0x22180, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000380)=""/122, 0xc7)
setpriority$auto(0x2, 0x0, 0x80000)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000400)=""/241, 0xf1)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), r1)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r1, &(0x7f00000050c0)={0x0, 0x0, &(0x7f0000005080)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="010021bd7000fbdbdf25060000004f1e0d5331f026a4445602d17b78d9e2b34fa862353ab625b0d82fabf166a19c125eaefdfb076789677a65d63854467d0c9c798d7f979c88afc40fcfd0a3553504fa3e1c06b3b705b5cf89a3040000000000000062fd4a01cb7af54fea7f065bd5974912736a1f947f9e7d2434a4dd7b234d8621410d4183ea7e5a3d2d0b6b49db005a16ee362e2c9473c5cbfbf817c23aff09673cc5c10700000000000000eee02f073f1cc858d3f7097af151ea37"], 0x14}, 0x1, 0x0, 0x0, 0x20004810}, 0x20008050)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
gettid()
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_HWSIM_CMD_REPORT_PMSR(r3, 0x0, 0x4)
execve$auto(&(0x7f0000000200)='./file0\x00', &(0x7f0000000140)=&(0x7f0000000080)='(\x00', &(0x7f00000001c0)=&(0x7f0000000180)='\x00')
mmap$auto(0x0, 0x2020009, 0x3, 0x2000000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, 0x0, 0x0, 0x0)
rt_sigqueueinfo$auto(0x0, 0xee1, &(0x7f00000002c0)={@_si_pad})
r4 = socket(0xa, 0x2, 0x88)
shmget$auto(0x8, 0x10565, 0x7ff)
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa)
sync_file_range$auto(r4, 0xfffffffffffffe95, 0x9, 0x9)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)

2m55.912066601s ago: executing program 32 (id=4742):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/udp\x00', 0x22180, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000380)=""/122, 0xc7)
setpriority$auto(0x2, 0x0, 0x80000)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000400)=""/241, 0xf1)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), r1)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r1, &(0x7f00000050c0)={0x0, 0x0, &(0x7f0000005080)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="010021bd7000fbdbdf25060000004f1e0d5331f026a4445602d17b78d9e2b34fa862353ab625b0d82fabf166a19c125eaefdfb076789677a65d63854467d0c9c798d7f979c88afc40fcfd0a3553504fa3e1c06b3b705b5cf89a3040000000000000062fd4a01cb7af54fea7f065bd5974912736a1f947f9e7d2434a4dd7b234d8621410d4183ea7e5a3d2d0b6b49db005a16ee362e2c9473c5cbfbf817c23aff09673cc5c10700000000000000eee02f073f1cc858d3f7097af151ea37"], 0x14}, 0x1, 0x0, 0x0, 0x20004810}, 0x20008050)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
gettid()
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_HWSIM_CMD_REPORT_PMSR(r3, 0x0, 0x4)
execve$auto(&(0x7f0000000200)='./file0\x00', &(0x7f0000000140)=&(0x7f0000000080)='(\x00', &(0x7f00000001c0)=&(0x7f0000000180)='\x00')
mmap$auto(0x0, 0x2020009, 0x3, 0x2000000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, 0x0, 0x0, 0x0)
rt_sigqueueinfo$auto(0x0, 0xee1, &(0x7f00000002c0)={@_si_pad})
r4 = socket(0xa, 0x2, 0x88)
shmget$auto(0x8, 0x10565, 0x7ff)
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa)
sync_file_range$auto(r4, 0xfffffffffffffe95, 0x9, 0x9)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)

2m44.254949742s ago: executing program 0 (id=4811):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000)
pwrite64$auto(0xc8, 0x0, 0xfded, 0x4)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2400c0c0}, 0x2004c012)
r0 = socket(0xa, 0x3, 0x5)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0xc88, 0x0, 0x0, &(0x7f0000000080), 0x8, 0x200}, 0x5}, 0x3b8b, 0x800)
close_range$auto(0x2, 0xa, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mlockall$auto(0x7)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/dummy0/addr_gen_mode\x00', 0x1, 0x0)

2m43.14133566s ago: executing program 0 (id=4814):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
setuid$auto(0x800000000008)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_S_MODE(r1, 0x40046109, &(0x7f0000002c40)=0xf0)
setns$auto(r0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = clone$auto(0x20003b4a, 0xecc, 0x0, 0x0, 0x2)
pidfd_open$auto(r2, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x801, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_IMADDTIMER(0xffffffffffffffff, 0x80044940, 0x0)

2m42.092911549s ago: executing program 0 (id=4820):
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0x18, 0x401, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/vm/nr_hugepages_mempolicy\x00', 0x141241, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nbd6\x00', 0x67f00, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0xa40, 0x0)
pread64$auto(r0, &(0x7f0000000240)='/3Cocw\x00\x03\x00\x00\x00\x17\x00\x00\x00ipt3\x00\xc3\xa9[/\xd4>p\xaeL@N&-\x1d\xb7\x86\xdc\xa8_3.\xa1\\\xee\xc7\xb4*8\xd6\xc04KDh\xc9\xce\xbe\x16\xca\xaaO\'\xfb\v\b\vM\x00e\xd6\xb9z\xdc\x12\x8f\x9d\x88\xad\xaav1\v\x06\xe79\xb9C\f\x875j\x00\x14\xa7\x7f\x1d\xf0\xf5\xc4\xe4nLc%\x80\xa95\xc3\xc2\xf0}\x05A\xa7\\\x9fC1\x9ci\x13\xbeq\xc8\'\xb8\x8amW\xf9\xe5\xf1\x1a\xe1\x8eTS\x97\xfbx\xb9#\xd9\x03\xcbz\x11\xb2\x04\\\xc0w\xeaS\xad8I$\xa0\x8c\xc4[\x04\xa4\x9a\x8b\xf5og\xee', 0x34b, 0xffff)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2a, 0x2, 0x1)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(r1, r2, 0x6)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000300)="13548b7e3fb16afc360763d2f02cb7b1e7f9af6242118cdd79e11d41ddec9821652cef45b83352099f6471262753259237c38eda8757514c5bea6b9d000592f9352edb82ae12e060d1dbea6044ea88c0dc0acbac8b390501da2bd4eae068957414fcfdbe600e03cce5ee6c44229ef22a141c2e286858313cbf4a8fd391152a4d552b7f4544d154a16a4a671721ab1f33b5", 0xffff, &(0x7f00000000c0)={&(0x7f00000003c0)="b8f52bf5bd94639605ea1222343843fe1c30747c9496929563fa898ab6093cb64b0f5296ff200accbd96d3ec999ed6f102ac246ea9feadcc4e0fb1354782af070eb91223581cf09b22d5fa0b24f5703c2296bf4a654faa5e938bc3cd6a6277d08163b0556b38b24137128673888662d3fdda9a8f32fc9d17e2fd2d6900255a3f70476aecb8930ad2d4a508887e78fe3309efdd316f0dee9e76ea0ea421fae24aa3139d892b427abc0e2989616707997dd1f814d4e72f0f070cb1c99a64f81645b49698208b910cdf5a8813342bfcf82bac497afd4c", 0x3}, 0x8001, 0x0, 0x0, 0x8}, 0xa0f3}, 0x6, 0x3, 0x0)
socket(0xa, 0x1, 0x84)
shutdown$auto(0x200000003, 0x2)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0)
socket(0x21, 0x2, 0x2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000)
close_range$auto(0x2, 0x8, 0x0)

2m40.938244656s ago: executing program 0 (id=4824):
mmap$auto(0x0, 0x2020006, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x22, 0x2, 0x1)
socket(0x10, 0x3, 0x6)
socket(0x10, 0x2, 0x4)
prctl$auto_PR_SET_MM_BRK(0x7, 0x7, 0xffffffffffffffff, 0xff, 0x0)
mmap$auto(0x0, 0x2da, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4044001)
pread64$auto(0xffffffffffffffff, &(0x7f0000000040)='uete1\x00', 0x200000000006, 0x7)
ioctl$auto_FS_IOC_UNRESVSP64(0xffffffffffffffff, 0x4030582b, 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x6)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x4e24, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800008}, 0x5, 0x20000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c00, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x5}, 0x3, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
write$auto(0x3, 0x0, 0x100085)
socket(0x11, 0x3, 0x2)

2m39.847853481s ago: executing program 0 (id=4829):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
lseek$auto(r0, 0x1, 0x0)
getdents$auto(r0, 0x0, 0x18)
newfstatat$auto(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x5)
openat$auto_ecryptfs_dir_fops_ecryptfs_kernel(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bluetooth/hci4/hci4:201\x00', 0x40, 0x0)
sendmsg$auto_NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
capget$auto(0x0, 0xfffffffffffffffe)
unshare$auto(0x40000080)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xb01, 0x0)
write$auto(r1, &(0x7f0000000100)='9\x00d1L\xff\x15\xba\xa17=w\xc1\xf8\xff\xff\v\xb5^\xa1/\xfb\xaf\xc8\xfc\\\xa9@\xc0\xee\xa2[', 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$auto_ETHTOOL_MSG_TSCONFIG_GET(0xffffffffffffffff, 0x0, 0x4004000)
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x0, 0x0)

2m38.404511908s ago: executing program 0 (id=4830):
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
acct$auto(&(0x7f0000000140)='/dev/ptmx\x00')
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x14, r2, 0x301, 0x70bd27, 0x25dfdc03}, 0x14}, 0x1, 0x0, 0x0, 0x2000001c}, 0x20000800)
r3 = getuid()
setreuid$auto(r3, r3)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x5, 0x0)
sendto$auto(0x3, 0x0, 0x79, 0x2, &(0x7f0000000440)=@tipc=@name={0x1e, 0x2, 0x3, {{0x1, 0x1}}}, 0x20)
recvmmsg$auto(0x3, &(0x7f0000000100)={{0x0, 0x9, &(0x7f0000000080)={0x0, 0x9}, 0x7, 0x0, 0x1, 0x4}, 0x4}, 0x10000, 0x300, 0x0)
r4 = setfsuid$auto(0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_NEW_SERVICE(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0x23c, r2, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80}, @IPVS_CMD_ATTR_SERVICE={0x21d, 0x1, 0x0, 0x1, [@generic="fcca66d50a5cb1cae088d3152f8b024e2d3696a7576b913586db40959129a67e13dd102201bccec1607ea73f7242ea62f0cae75ca32e61f78d39b3f2fae72d2712bcb7aa89f6930665183aacc58f44fa3ced86bc27e078a56a9080c92b2bf1722f3356ce0a4572d393d77aa9a4a20ddd725766126fd1f2a90bf377335d02e02ed73cb76087130290b916556810558561f703d05607af40423fac327ca640a30e7aa32263f97ba35843fc1260adcf6bc2333b2a4815d3b3006fbc3ba7c8ff40987e6ca372", @typed={0x8, 0x28, 0x0, 0x0, @u32=0x40}, @generic="bdf601bac6a4e1a73738ed4125eb7d773d134b2e419b24b02283ba8fc91c0e1369f37bbc0c94b12e335291b0d5055f64cf1db4b997499b225ddbe7db952c9cffd4536d9275fac07d09bee181e0d8be0aeb73dc70794ea7e37918a72458f8bd71f11e4defa4e0add1a2ac07c07b", @nested={0xc8, 0x12a, 0x0, 0x1, [@nested={0x4, 0xff}, @nested={0x4, 0x119}, @nested={0x4, 0x40}, @nested={0x4, 0xbc}, @generic="06bbf7f0060c6ea03c65e538b19e8d0ddd335274731eef9a95df2e624728d8f6545d547334e7d1520f56c66e68a1457300bc47b65dd7ddea2c4bc3d4d8faf97ab094da387172cf06feee59a4b91a81766383b1c1d44b0ec0a015f771ce89517aa2a385939f877b5a52455929d80eed36ea6180af261f28fc9e09c2ad455593d93cad4d281b2c0fd72c140ac9924a58e24bd7fcabb149c216", @typed={0x4, 0x12d}, @typed={0xc, 0xb2, 0x0, 0x0, @u64=0x4}, @typed={0xa, 0x11c, 0x0, 0x0, @str='(%\'!\'\x00'}]}, @typed={0x8, 0x98, 0x0, 0x0, @uid=r3}, @typed={0x5, 0x113, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x14, 0x0, 0x0, @uid=r4}]}]}, 0x23c}, 0x1, 0x0, 0x0, 0x4004050}, 0x8094)

2m23.311920917s ago: executing program 33 (id=4830):
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
acct$auto(&(0x7f0000000140)='/dev/ptmx\x00')
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x14, r2, 0x301, 0x70bd27, 0x25dfdc03}, 0x14}, 0x1, 0x0, 0x0, 0x2000001c}, 0x20000800)
r3 = getuid()
setreuid$auto(r3, r3)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x5, 0x0)
sendto$auto(0x3, 0x0, 0x79, 0x2, &(0x7f0000000440)=@tipc=@name={0x1e, 0x2, 0x3, {{0x1, 0x1}}}, 0x20)
recvmmsg$auto(0x3, &(0x7f0000000100)={{0x0, 0x9, &(0x7f0000000080)={0x0, 0x9}, 0x7, 0x0, 0x1, 0x4}, 0x4}, 0x10000, 0x300, 0x0)
r4 = setfsuid$auto(0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_NEW_SERVICE(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0x23c, r2, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80}, @IPVS_CMD_ATTR_SERVICE={0x21d, 0x1, 0x0, 0x1, [@generic="fcca66d50a5cb1cae088d3152f8b024e2d3696a7576b913586db40959129a67e13dd102201bccec1607ea73f7242ea62f0cae75ca32e61f78d39b3f2fae72d2712bcb7aa89f6930665183aacc58f44fa3ced86bc27e078a56a9080c92b2bf1722f3356ce0a4572d393d77aa9a4a20ddd725766126fd1f2a90bf377335d02e02ed73cb76087130290b916556810558561f703d05607af40423fac327ca640a30e7aa32263f97ba35843fc1260adcf6bc2333b2a4815d3b3006fbc3ba7c8ff40987e6ca372", @typed={0x8, 0x28, 0x0, 0x0, @u32=0x40}, @generic="bdf601bac6a4e1a73738ed4125eb7d773d134b2e419b24b02283ba8fc91c0e1369f37bbc0c94b12e335291b0d5055f64cf1db4b997499b225ddbe7db952c9cffd4536d9275fac07d09bee181e0d8be0aeb73dc70794ea7e37918a72458f8bd71f11e4defa4e0add1a2ac07c07b", @nested={0xc8, 0x12a, 0x0, 0x1, [@nested={0x4, 0xff}, @nested={0x4, 0x119}, @nested={0x4, 0x40}, @nested={0x4, 0xbc}, @generic="06bbf7f0060c6ea03c65e538b19e8d0ddd335274731eef9a95df2e624728d8f6545d547334e7d1520f56c66e68a1457300bc47b65dd7ddea2c4bc3d4d8faf97ab094da387172cf06feee59a4b91a81766383b1c1d44b0ec0a015f771ce89517aa2a385939f877b5a52455929d80eed36ea6180af261f28fc9e09c2ad455593d93cad4d281b2c0fd72c140ac9924a58e24bd7fcabb149c216", @typed={0x4, 0x12d}, @typed={0xc, 0xb2, 0x0, 0x0, @u64=0x4}, @typed={0xa, 0x11c, 0x0, 0x0, @str='(%\'!\'\x00'}]}, @typed={0x8, 0x98, 0x0, 0x0, @uid=r3}, @typed={0x5, 0x113, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x14, 0x0, 0x0, @uid=r4}]}]}, 0x23c}, 0x1, 0x0, 0x0, 0x4004050}, 0x8094)

14.567804737s ago: executing program 4 (id=5140):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
socket(0x2, 0x80802, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffffff, &(0x7f0000000100)=""/169, 0xa9)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r0)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000011c0)=ANY=[], 0x1058}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r2 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r1, 0x805, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_NETNS_FD={0x8, 0xdb, r2}, @NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0x1000}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)
openat$auto_fops_x16_ro_(0xffffffffffffff9c, 0x0, 0x8040, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

11.779220788s ago: executing program 4 (id=5148):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x300c00, 0x0)
ioctl$auto_TIOCGDEV2(r0, 0x80045432, &(0x7f0000000040)=0xddc)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r1, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x4a7)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
socket(0xa, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0xa, 0x0, 0x20)
r2 = getpgid(0xffffffffffffffff)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f00000002c0)={{@inferred=0xffffffffffffffff, 0x4, 0x1, 0x0, "bfc956f7b829ea9bc64a831c54b927c5c84cdfcb6d840bf6034bbe162b339fcc0b9ad62f05f5e47256dc5c36", @raw=0x4}, 0x0, 0x5, 0xd77e, @inferred=r2, @integer={0x5, 0x2, 0x5}, "ff0931dc5a3fb879791acf380abcfd7f9f393a68114cc9d69244416e96525a166b971aae562cbc70472d48eb5f54d36edf407701d0d1c4e40409e86cafa60765"})
close_range$auto(0x2, 0x8, 0x0)
openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, 0x0, 0x414041, 0x0)
mmap$auto(0x0, 0x400008, 0xde, 0x9b72, 0x2, 0x800008000)

9.495879978s ago: executing program 4 (id=5152):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0)
r1 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, 0x0, 0xa0080, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(r1, 0x0, 0x0)
unshare$auto(0x40000080)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r3 = socket(0x2b, 0x1, 0x0)
ioctl$auto_USBDEVFS_SETCONFIGURATION(0xffffffffffffffff, 0x80045505, &(0x7f0000000100)=0x1)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ff)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)
ioctl$auto(0xffffffffffffffff, 0x541b, 0x24)
recvmmsg$auto(0x3, 0x0, 0xfffe, 0x6, 0x0)

7.591859551s ago: executing program 5 (id=5155):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="e3f72bbd7000fcdbdf2519"], 0x14}, 0x1, 0x0, 0x0, 0x20008841}, 0x48000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto_IORING_UNREGISTER_RING_FDS(r2, 0x15, 0x0, 0x4c6)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r0, 0x0, 0x4000000)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x161782, 0x0)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0)
write$auto(r3, 0x0, 0x80000000)
getrlimit$auto(0x3, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0302, 0x0)
sendfile$auto(r4, r4, 0x0, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x141742, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0xc00, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0)
writev$auto(0x3, 0x0, 0x8)

7.32195483s ago: executing program 1 (id=5157):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
waitid$auto_P_PID(0x1, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0xff)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
keyctl$auto_KEYCTL_INSTANTIATE_IOV(0x14, 0x5, 0x6, 0x10, 0x91)
socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
recvmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230)
write$auto(0x3, 0x0, 0xffd8)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)

6.063578463s ago: executing program 1 (id=5159):
unshare$auto(0x8)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f80, 0x0)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
fsopen$auto(0x0, 0x1)
prctl$auto(0x1000000003b, 0x1, 0x4, 0xd73, 0xb)
madvise$auto(0xfffffffffffffffa, 0x7f, 0x10)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000000), r2)
sendmsg$auto_OVS_DP_CMD_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r3, 0x1, 0x70bd28, 0x25dfdb7d, {}, [@OVS_DP_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)
syz_genetlink_get_family_id$auto_ethtool(0x0, r1)
r4 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r4, 0x65, 0x6, 0xffffffffffffffff, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r5, r5, 0x0, 0x3)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

6.0247751s ago: executing program 2 (id=5160):
setresuid$auto(0x8, 0x8, 0x0)
r0 = setfsuid$auto(0xee00)
setreuid$auto(r0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), r1)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'})
sendmsg$auto_NET_SHAPER_CMD_DELETE(r1, 0x0, 0xc050)
fsconfig$auto(r1, 0x2, &(0x7f0000000180)='\x00', &(0x7f0000000580)="10ab6b39a25e5d9c4947936e05c1ebf9895356b0a5fc915241b26bebe1bf3648ecb6260c4d40bcaaf9620450e0f236d9cf2e9bfa15663032904f14a0bfebeb6f41d8f77bd0bca982dfe6b49e308e606721133b53711ed21bb9e1e32f4be7a7c60b1e11a84523b8f0f030b169292f0b65a26107a850d0b970a474f1e71b47e5ca3b8343ea7d7b90f3557fd5f312dc", 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001840), 0xffffffffffffffff)
clone3$auto(0x0, 0xfffffffffffffff8)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(r1, &(0x7f0000001800)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40400d0}, 0x4000000)
mmap$auto(0xc, 0x20009, 0x5, 0x14, 0xffffffffffffffff, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
fsconfig$auto(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb8, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", <r3=>0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@prog_fd, @target_ifindex=r3, 0x3, 0x81, @uprobe_multi={0x3, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x96)

5.767109905s ago: executing program 5 (id=5161):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0x149182, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/workqueue/parameters/default_affinity_scope\x00', 0x1a9242, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
r2 = socket(0x10, 0x2, 0x4)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000000)={0x20, 0x0, 0x1, 0x70bd37, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x80000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x80, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000140), 0x600000, 0x0)
r3 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef)

4.998072509s ago: executing program 5 (id=5162):
mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
select$auto(0x4, 0x0, 0x0, 0x0, 0x0)
r0 = io_uring_setup$auto(0x1d48, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd0\x00', 0x24000, 0x0)
ioctl$auto(r1, 0xab03, 0xffffffffffffffff)
syslog$auto_SYSLOG_ACTION_READ(0x2, &(0x7f0000000280)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00', 0x3)
write$auto_fops_init_pkru_pkeys(r0, &(0x7f0000000000)="ec7e193027745f0d3f48044c72e0d7bb85f48280c339e236ee", 0x19)
ptrace$auto_PTRACE_GETREGS(0xc, 0x0, 0x80000000, 0x1)
pread64$auto(0xffffffffffffffff, 0x0, 0x101, 0x103)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
listen$auto(r0, 0x5)
mmap$auto(0x0, 0x20009, 0xdb, 0xeb1, 0x40000000000a5, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
shutdown$auto(0x200000003, 0x2)
setsockopt$auto(0x3, 0x1, 0x2e, 0x0, 0x9)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0)

4.852630471s ago: executing program 2 (id=5163):
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x9)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
bind$auto(0x3, 0x0, 0x6b)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
write$auto_tomoyo_operations_securityfs_if(r0, 0x0, 0x0)
socket(0x15, 0x5, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x7, 0x9, 0x1, 0x948d, 0x1ff, 0x15f4da07, 0x3, 0x8003, 0x65, 0x8000001f, 0x1000, 0x100000000006d3e, 0x9, 0x1, 0x8]}, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x480, 0x0)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/dev\x00', 0x100, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
settimeofday$auto(&(0x7f0000000180)={0xfffffffffffffffa}, &(0x7f00000001c0)={0xfffffffb, 0xc7})
read$auto_proc_reg_file_ops_compat_inode(r3, 0x0, 0x0)
write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x5)
close_range$auto(0x2, 0x8, 0x0)

4.534310686s ago: executing program 2 (id=5164):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0x149182, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9242, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
r2 = socket(0x10, 0x2, 0x4)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000000)={0x20, 0x0, 0x1, 0x70bd37, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x80000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x80, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000140), 0x600000, 0x0)
r3 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef)

4.139827551s ago: executing program 4 (id=5165):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000)
pwrite64$auto(0xc8, 0x0, 0xfded, 0x4)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2400c0c0}, 0x2004c012)
r0 = socket(0xa, 0x3, 0x5)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0xc88, 0x0, 0x0, &(0x7f0000000080), 0x8, 0x200}, 0x5}, 0x3b8b, 0x800)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mlockall$auto(0x7)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/dummy0/addr_gen_mode\x00', 0x1, 0x0)
pwrite64$auto(r1, 0x0, 0x0, 0x2000000000040007)

4.11957187s ago: executing program 2 (id=5166):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(0x0, r3)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2})
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r1, 0x40045010, &(0x7f0000000080))
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x8001, 0x0)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
mlockall$auto(0x800000000000005)
msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004)
read$auto_proc_pid_smaps_operations_internal(0xffffffffffffffff, &(0x7f00000002c0)=""/190, 0xfffffe39)
ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(r0, 0x1, &(0x7f0000000000)="140400")

2.910468199s ago: executing program 4 (id=5167):
r0 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183800, 0x0)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
sendmsg$auto_NL80211_CMD_NEW_STATION(r1, &(0x7f0000000100)={&(0x7f0000000040), 0xc, &(0x7f00000000c0)={&(0x7f0000001000)=ANY=[@ANYBLOB="10b51ce620ab8609bd22d8f60dad66", @ANYRES16=r2, @ANYBLOB="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"], 0xd1c}, 0x1, 0x0, 0x0, 0x8000}, 0x2dc548884f1b2850)
listen$auto(r0, 0x5)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/bond0/bonding/slaves\x00', 0x80002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/kexec_crash_loaded\x00', 0x100, 0x0)
ioctl$auto_OSS_ALSAEMULVER2(0xffffffffffffffff, 0x80044df9, &(0x7f0000000380)="9d1762cbb7829f8d3fb18591b084d80d92343101f817b4a6e9a9877102c77979621afb68e30cd1a743be112689b11bd27219201d82d5")
mmap$auto(0xc8, 0xe2, 0x3, 0xeb1, r3, 0x2)
mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)

2.77087125s ago: executing program 1 (id=5168):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
write$auto(0x1, 0x0, 0x80000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x8, 0x5)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
r0 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
close_range$auto(0x2, 0xa, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000080), r0)
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_GLOBAL(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x6040010}, 0x4000001)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000080), 0xffffffffffffffff)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
sendmsg$auto_NCSI_CMD_PKG_INFO(0xffffffffffffffff, 0x0, 0x40840)
sendmsg$auto_NCSI_CMD_SET_INTERFACE(r1, &(0x7f0000000480)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x440c1}, 0x4)

1.972139386s ago: executing program 1 (id=5169):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000)
pwrite64$auto(0xc8, 0x0, 0xfded, 0x4)
r0 = socket(0xa, 0x3, 0x5)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0xc88, 0x0, 0x0, &(0x7f0000000080), 0x8, 0x200}, 0x5}, 0x3b8b, 0x800)
close_range$auto(0x2, 0xa, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mlockall$auto(0x7)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/dummy0/addr_gen_mode\x00', 0x1, 0x0)
pwrite64$auto(r1, 0x0, 0x0, 0x2000000000040007)

1.798578194s ago: executing program 2 (id=5170):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0x400000000e31, 0xffffffffffffffff, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6ab82, 0x0)
mmap$auto(0x0, 0x1, 0x6, 0x9b72, 0x2, 0x8000)
close_range$auto(0xffffffffffffffff, r0, 0x8005)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
kexec_load$auto(0x200000000007, 0x1, &(0x7f0000000040)={@kbuf=0x0, 0x2aaa, 0x6c0000c000, 0xc000}, 0x4)
openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x109100, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0)
memfd_secret$auto(0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz7\x00', 0x48f41, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
ioperm$auto(0x2, 0x7fc, 0x200000)
ioperm$auto(0x5, 0x2, 0x8)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

1.590858825s ago: executing program 5 (id=5171):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0x149182, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/workqueue/parameters/default_affinity_scope\x00', 0x1a9242, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r0, 0x0)
r2 = socket(0x10, 0x2, 0x4)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000000)={0x20, 0x0, 0x1, 0x70bd37, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x80000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x80, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000140), 0x600000, 0x0)
r3 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef)

1.085081089s ago: executing program 5 (id=5172):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
write$auto(0x1, 0x0, 0x80000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x8, 0x5)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r0 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
close_range$auto(0x2, 0xa, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000080), r0)
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_GLOBAL(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, r1, 0x300, 0x70bd26, 0x25dfdbfc, {}, [@BATADV_ATTR_DAT_CACHE_HWADDRESS={0xa, 0x24, @random="d32f2ae293dc"}, @BATADV_ATTR_LAST_SEEN_MSECS={0x8}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_ORIG_ADDRESS={0xa}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x9}]}, 0x44}, 0x1, 0x0, 0x0, 0x6040010}, 0x4000001)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
sendmsg$auto_NCSI_CMD_PKG_INFO(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="020025bd7000fbdbdf2501000000080003000500000008000100", @ANYRES32=0x0, @ANYBLOB="b06ba7f4840319141c8425a81c01a48608a805000000793d95e9a82295cfa84fbc240a8fbce3dc740757fc45af0722b6e312cbab26e254ffaad1e1458f9457834274b922f93fb3388ac340fbd3c213746300af8970436fe669a8cad0749dbde450e2c56fced5a5a884ab27cb73c9c14075669de5cd18595a"], 0x24}}, 0x40840)
sendmsg$auto_NCSI_CMD_SET_INTERFACE(r2, &(0x7f0000000480)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000440)={&(0x7f0000000200)={0x218, r3, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x4}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x6}, @NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x2}, @NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x3c}, @NCSI_ATTR_PACKAGE_LIST={0x1e2, 0x2, 0x0, 0x1, [@generic="d90a876c70d3fd3ab7d21f9eddbb9a9e9101e6ee052902dce0b19ac05ae7c108c9e2986127e1a7a76c5f50f1f290b1511f03ee51d0d1f006bb3fd20709aae07a5d29b94fc057fde20630f9beeb8464ad5e50a2b0", @generic="cbbdba63412655efb9974da8f0c0f03f0d1cb640743628acb8248afebd88c5e8934201e36cb535d5dbc95c80", @generic="41b3a952d370fdda4b10afacb678accc4d71ecc1ef30f77fec525e3450edf08d631dbc54eeac302313fa17267b18f9f50b1cec6a4e9704a7809ac491d27e81dd8cebe8bd12323c218653fc0a6cfc0f3721c5a7e45077309e345fa913bd61d2ad12", @generic="207cc48a483006b3fbb953ec7a0944dad5ac5bdf5b54498d967cdcc8e87b7a6963be50d54e419be5cebffb01ba153cccbf150ced738b56bcb18dd644a8d0922a416e49e19fa50e4e6f1828e7c6c0227dc5dea527de4eff9b9419687c18d573741d3d072e3a54cfe45d35ce668ccbc86427778abc8a217a34a9aefff81f9a19433b5714ab40a64c99ea279dd5e5b8b2a28b815bfbd5845386daa8e749211b46a8b897affcbeee0aa5a5b4866a", @generic="047e1ed625f89f4586298b3c4a9509086a25620d437198b1f3f6c900c7d7a8981d3ece0c03031659e456d7b304937738cf8a8d0b340985a15eeec345fcf9d385484afce995b5f039a69a49dfc5efa4a072"]}]}, 0x218}, 0x1, 0x0, 0x0, 0x440c1}, 0x4)

881.28363ms ago: executing program 1 (id=5173):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
memfd_create$auto(0x0, 0x5)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
socket(0x10, 0x2, 0x0)
userfaultfd$auto(0x1)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socket(0xa, 0x801, 0x84)
socket(0xa, 0x3, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1, 0x1, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x5, 0x0)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x2, 0x3a)
io_uring_setup$auto(0x6, 0x0)
r0 = socket(0xa, 0x2, 0x88)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_prog_fd=r0}, 0xa3)
bpf$auto(0x4, &(0x7f0000000040)=@query={@target_ifindex, 0x7, 0x6, 0x9, 0x9, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0x9, 0xffffffffffffff66}, 0x7)

851.932136ms ago: executing program 4 (id=5174):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0)
r1 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, 0x0, 0xa0080, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(r1, 0x0, 0x0)
unshare$auto(0x40000080)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r3 = socket(0x2b, 0x1, 0x0)
ioctl$auto_USBDEVFS_SETCONFIGURATION(0xffffffffffffffff, 0x80045505, &(0x7f0000000100)=0x1)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ff)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)
ioctl$auto(0xffffffffffffffff, 0x541b, 0x24)
recvmmsg$auto(0x3, 0x0, 0xfffe, 0x6, 0x0)

638.397234ms ago: executing program 1 (id=5175):
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/environ\x00', 0x2000, 0x0)
read$auto_proc_environ_operations_base(r1, &(0x7f0000000240)=""/80, 0x50)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x6, 0xffffffff, 0xdc, r0, 0x28000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x103003, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)
mq_timedsend$auto(0xffffffffffffffff, 0x0, 0x2, 0x9, 0x0)

419.028701ms ago: executing program 2 (id=5176):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/rose14/statistics/rx_length_errors\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0)
r1 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, 0x0, 0xa0080, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(r1, 0x0, 0x0)
unshare$auto(0x40000080)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r3 = socket(0x2b, 0x1, 0x0)
ioctl$auto_USBDEVFS_SETCONFIGURATION(0xffffffffffffffff, 0x80045505, &(0x7f0000000100)=0x1)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ff)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)
ioctl$auto(0xffffffffffffffff, 0x541b, 0x24)
recvmmsg$auto(0x3, 0x0, 0xfffe, 0x6, 0x0)

0s ago: executing program 5 (id=5177):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
signalfd4$auto(r0, 0x0, 0x5, 0xfffff76c)
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000)
mincore$auto(0x1000, 0x4000000, 0x0)
listen$auto(0x3, 0x81)
mremap$auto(0x8, 0x8000000000000001, 0x0, 0x3, 0x2)
r1 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2200, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0xe07, 0x8000000000000001, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0x4]}, 0x0)
ioctl$auto_EVIOCREVOKE(r2, 0x40044591, 0x0)
syz_genetlink_get_family_id$auto_ovs_meter(0x0, 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x855}, 0x10)
pread64$auto(r1, 0x0, 0x101, 0x103)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa101, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0x6, 0x0, &(0x7f0000000080)={[0x8, 0xc0b, 0x6, 0x16, 0x5, 0x100000001, 0xc, 0x9, 0x0, 0x1, 0x7ff, 0xd59, 0x101, 0x6, 0xfffffffffffffffe, 0x80000001]}, 0x0, 0x0)
write$auto(0x4, 0x0, 0x100082)
recvfrom$auto(0x3, 0x0, 0x8000000012, 0x100, 0x0, 0xfffffffffffffffd)
shutdown$auto(0x200000003, 0x2)

kernel console output (not intermixed with test programs):

ble
[  925.738502][T20023] FAULT_INJECTION: forcing a failure.
[  925.738502][T20023] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  925.777960][T20023] CPU: 0 UID: 0 PID: 20023 Comm: syz.1.4117 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  925.778002][T20023] Tainted: [L]=SOFTLOCKUP
[  925.778013][T20023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  925.778029][T20023] Call Trace:
[  925.778038][T20023]  <TASK>
[  925.778048][T20023]  dump_stack_lvl+0x100/0x190
[  925.778093][T20023]  should_fail_ex.cold+0x5/0xa
[  925.778123][T20023]  _copy_from_user+0x2e/0xd0
[  925.778158][T20023]  snd_pcm_oss_write2+0x1c2/0x400
[  925.778194][T20023]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  925.778237][T20023]  snd_pcm_oss_write+0x729/0xa30
[  925.778274][T20023]  ? security_file_permission+0x76/0x210
[  925.778315][T20023]  vfs_write+0x2aa/0x1070
[  925.778341][T20023]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  925.778378][T20023]  ? __pfx_vfs_write+0x10/0x10
[  925.778400][T20023]  ? find_held_lock+0x2b/0x80
[  925.778432][T20023]  ? __fget_files+0x215/0x3d0
[  925.778457][T20023]  ? __fget_files+0x215/0x3d0
[  925.778487][T20023]  ? __fget_files+0x21f/0x3d0
[  925.778520][T20023]  ksys_write+0x12a/0x250
[  925.778544][T20023]  ? __pfx_ksys_write+0x10/0x10
[  925.778578][T20023]  do_syscall_64+0x106/0xf80
[  925.778602][T20023]  ? clear_bhb_loop+0x40/0x90
[  925.778634][T20023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  925.778661][T20023] RIP: 0033:0x7fa5e619c799
[  925.778682][T20023] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  925.778707][T20023] RSP: 002b:00007fa5e6fb5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  925.778732][T20023] RAX: ffffffffffffffda RBX: 00007fa5e6416180 RCX: 00007fa5e619c799
[  925.778749][T20023] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  925.778765][T20023] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[  925.778781][T20023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  925.778797][T20023] R13: 00007fa5e6416218 R14: 00007fa5e6416180 R15: 00007ffe9ca96688
[  925.778835][T20023]  </TASK>
[  926.585144][T20034] vivid-007: =================  START STATUS  =================
[  926.609192][T20034] vivid-007: Generate PTS: true
[  926.630241][T20034] vivid-007: Generate SCR: true
[  926.635201][T20034] tpg source WxH: 320x240 (Y'CbCr)
[  926.694393][T20034] tpg field: 1
[  926.720372][T20034] tpg crop: (0,0)/320x240
[  926.730120][T20034] tpg compose: (0,0)/320x240
[  926.759731][T20034] tpg colorspace: 8
[  926.769602][T20034] tpg transfer function: 0/0
[  926.781735][T20034] tpg Y'CbCr encoding: 0/0
[  926.809872][T20034] tpg quantization: 0/0
[  926.827992][T20034] tpg RGB range: 0/2
[  926.840116][T20034] vivid-007: ==================  END STATUS  ==================
[  927.393493][T20032] Process accounting resumed
[  929.478674][T20066] [U] 
[  929.481518][T20066] [U] 
[  929.484253][T20066] [U] 
[  929.487006][T20066] [U] 
[  929.591614][T20066] [U] 
[  929.594397][T20066] [U] 
[  929.597113][T20066] [U] 
[  929.599823][T20066] [U] 
[  930.471604][T20081] netlink: 5 bytes leftover after parsing attributes in process `syz.1.4124'.
[  930.499747][T20081] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4124'.
[  930.531402][T20061] [U] 
[  931.793766][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  931.800234][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  932.450635][T20126] FAULT_INJECTION: forcing a failure.
[  932.450635][T20126] name failslab, interval 1, probability 0, space 0, times 0
[  932.543896][T20126] CPU: 0 UID: 0 PID: 20126 Comm: syz.1.4134 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  932.543937][T20126] Tainted: [L]=SOFTLOCKUP
[  932.543947][T20126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  932.543963][T20126] Call Trace:
[  932.543971][T20126]  <TASK>
[  932.543982][T20126]  dump_stack_lvl+0x100/0x190
[  932.544026][T20126]  should_fail_ex.cold+0x5/0xa
[  932.544056][T20126]  ? security_inode_init_security+0x113/0x370
[  932.544097][T20126]  should_failslab+0xc2/0x120
[  932.544125][T20126]  __kmalloc_noprof+0xe0/0x850
[  932.544172][T20126]  security_inode_init_security+0x113/0x370
[  932.544215][T20126]  ? __pfx_shmem_initxattrs+0x10/0x10
[  932.544247][T20126]  ? __pfx_security_inode_init_security+0x10/0x10
[  932.544297][T20126]  ? make_vfsgid+0xf1/0x140
[  932.544337][T20126]  shmem_mknod+0x2bf/0x470
[  932.544375][T20126]  ? __pfx_shmem_mknod+0x10/0x10
[  932.544426][T20126]  vfs_create+0x301/0x6c0
[  932.544468][T20126]  filename_mknodat+0x2de/0x7f0
[  932.544502][T20126]  ? __pfx_filename_mknodat+0x10/0x10
[  932.544531][T20126]  ? strncpy_from_user+0x19d/0x2d0
[  932.544566][T20126]  ? do_getname+0x191/0x390
[  932.544602][T20126]  __x64_sys_mknod+0x8f/0xc0
[  932.544633][T20126]  do_syscall_64+0x106/0xf80
[  932.544656][T20126]  ? clear_bhb_loop+0x40/0x90
[  932.544688][T20126]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  932.544715][T20126] RIP: 0033:0x7fa5e619c799
[  932.544736][T20126] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  932.544762][T20126] RSP: 002b:00007fa5e6fd6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  932.544787][T20126] RAX: ffffffffffffffda RBX: 00007fa5e6416090 RCX: 00007fa5e619c799
[  932.544804][T20126] RDX: 0000000000000009 RSI: 0000000000000002 RDI: 0000000000000000
[  932.544820][T20126] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[  932.544836][T20126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  932.544851][T20126] R13: 00007fa5e6416128 R14: 00007fa5e6416090 R15: 00007ffe9ca96688
[  932.544882][T20126]  </TASK>
[  933.740378][T20121] can: request_module (can-proto-3) failed.
[  934.525509][T20157] [U] 
[  934.528266][T20157] [U] 
[  934.531195][T20157] [U] 
[  934.533907][T20157] [U] 
[  934.731899][T20157] [U] 
[  934.734655][T20157] [U] 
[  934.737376][T20157] [U] 
[  934.740086][T20157] [U] 
[  935.427023][T20152] [U] 
[  935.811885][T20182] FAULT_INJECTION: forcing a failure.
[  935.811885][T20182] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  935.862991][T20187] FAULT_INJECTION: forcing a failure.
[  935.862991][T20187] name failslab, interval 1, probability 0, space 0, times 0
[  935.899189][T20182] CPU: 0 UID: 0 PID: 20182 Comm: syz.0.4141 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  935.899231][T20182] Tainted: [L]=SOFTLOCKUP
[  935.899240][T20182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  935.899284][T20182] Call Trace:
[  935.899293][T20182]  <TASK>
[  935.899303][T20182]  dump_stack_lvl+0x100/0x190
[  935.899349][T20182]  should_fail_ex.cold+0x5/0xa
[  935.899380][T20182]  _copy_from_user+0x2e/0xd0
[  935.899414][T20182]  snd_pcm_oss_write2+0x1c2/0x400
[  935.899450][T20182]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  935.899496][T20182]  snd_pcm_oss_write+0x729/0xa30
[  935.899532][T20182]  ? security_file_permission+0x76/0x210
[  935.899572][T20182]  vfs_write+0x2aa/0x1070
[  935.899598][T20182]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  935.899635][T20182]  ? __pfx_vfs_write+0x10/0x10
[  935.899658][T20182]  ? find_held_lock+0x2b/0x80
[  935.899683][T20182]  ? __fget_files+0x215/0x3d0
[  935.899707][T20182]  ? __fget_files+0x215/0x3d0
[  935.899737][T20182]  ? __fget_files+0x21f/0x3d0
[  935.899770][T20182]  ksys_write+0x12a/0x250
[  935.899794][T20182]  ? __pfx_ksys_write+0x10/0x10
[  935.899828][T20182]  do_syscall_64+0x106/0xf80
[  935.899851][T20182]  ? clear_bhb_loop+0x40/0x90
[  935.899883][T20182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  935.899909][T20182] RIP: 0033:0x7f215199c799
[  935.899929][T20182] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  935.899954][T20182] RSP: 002b:00007f2152851028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  935.899978][T20182] RAX: ffffffffffffffda RBX: 00007f2151c16090 RCX: 00007f215199c799
[  935.899995][T20182] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  935.900010][T20182] RBP: 00007f2151a32c99 R08: 0000000000000000 R09: 0000000000000000
[  935.900026][T20182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  935.900041][T20182] R13: 00007f2151c16128 R14: 00007f2151c16090 R15: 00007ffc69055f88
[  935.900073][T20182]  </TASK>
[  936.325702][T20187] CPU: 0 UID: 0 PID: 20187 Comm: syz.3.4140 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  936.325743][T20187] Tainted: [L]=SOFTLOCKUP
[  936.325753][T20187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  936.325769][T20187] Call Trace:
[  936.325777][T20187]  <TASK>
[  936.325786][T20187]  dump_stack_lvl+0x100/0x190
[  936.325830][T20187]  should_fail_ex.cold+0x5/0xa
[  936.325860][T20187]  ? xfrm_hash_alloc+0xcf/0x100
[  936.325889][T20187]  should_failslab+0xc2/0x120
[  936.325919][T20187]  __kmalloc_noprof+0xe0/0x850
[  936.325963][T20187]  ? __pfx_xfrm_net_init+0x10/0x10
[  936.325995][T20187]  xfrm_hash_alloc+0xcf/0x100
[  936.326025][T20187]  xfrm_state_init+0x11b/0x570
[  936.326059][T20187]  ? __pfx_xfrm_net_init+0x10/0x10
[  936.326090][T20187]  xfrm_net_init+0x20e/0xcf0
[  936.326127][T20187]  ? __pfx_xfrm_net_init+0x10/0x10
[  936.326167][T20187]  ops_init+0x1e2/0x5f0
[  936.326196][T20187]  setup_net+0x118/0x3a0
[  936.326220][T20187]  ? __pfx_setup_net+0x10/0x10
[  936.326243][T20187]  ? lockdep_init_map_type+0x5c/0x250
[  936.326285][T20187]  ? mutex_init_lockep+0x110/0x150
[  936.326326][T20187]  copy_net_ns+0x46f/0x7c0
[  936.326356][T20187]  create_new_namespaces+0x3ea/0xac0
[  936.326391][T20187]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  936.326423][T20187]  ksys_unshare+0x473/0xad0
[  936.326458][T20187]  ? __pfx_ksys_unshare+0x10/0x10
[  936.326503][T20187]  __x64_sys_unshare+0x31/0x40
[  936.326537][T20187]  do_syscall_64+0x106/0xf80
[  936.326560][T20187]  ? clear_bhb_loop+0x40/0x90
[  936.326592][T20187]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  936.326618][T20187] RIP: 0033:0x7fc40ed9c799
[  936.326639][T20187] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  936.326666][T20187] RSP: 002b:00007fc40fbca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  936.326690][T20187] RAX: ffffffffffffffda RBX: 00007fc40f015fa0 RCX: 00007fc40ed9c799
[  936.326707][T20187] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  936.326723][T20187] RBP: 00007fc40ee32c99 R08: 0000000000000000 R09: 0000000000000000
[  936.326738][T20187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  936.326754][T20187] R13: 00007fc40f016038 R14: 00007fc40f015fa0 R15: 00007ffd9dbbce08
[  936.326785][T20187]  </TASK>
[  937.124904][T20205] input: jJǸ-�¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input21
[  939.002135][T20240] FAULT_INJECTION: forcing a failure.
[  939.002135][T20240] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  939.056693][T20240] CPU: 0 UID: 0 PID: 20240 Comm: syz.3.4154 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  939.056735][T20240] Tainted: [L]=SOFTLOCKUP
[  939.056745][T20240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  939.056760][T20240] Call Trace:
[  939.056770][T20240]  <TASK>
[  939.056781][T20240]  dump_stack_lvl+0x100/0x190
[  939.056825][T20240]  should_fail_ex.cold+0x5/0xa
[  939.056856][T20240]  _copy_from_user+0x2e/0xd0
[  939.056890][T20240]  snd_pcm_oss_write2+0x1c2/0x400
[  939.056926][T20240]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  939.056982][T20240]  snd_pcm_oss_write+0x729/0xa30
[  939.057019][T20240]  ? security_file_permission+0x76/0x210
[  939.057060][T20240]  vfs_write+0x2aa/0x1070
[  939.057085][T20240]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  939.057123][T20240]  ? __pfx_vfs_write+0x10/0x10
[  939.057145][T20240]  ? find_held_lock+0x2b/0x80
[  939.057170][T20240]  ? __fget_files+0x215/0x3d0
[  939.057195][T20240]  ? __fget_files+0x215/0x3d0
[  939.057225][T20240]  ? __fget_files+0x21f/0x3d0
[  939.057258][T20240]  ksys_write+0x12a/0x250
[  939.057282][T20240]  ? __pfx_ksys_write+0x10/0x10
[  939.057321][T20240]  do_syscall_64+0x106/0xf80
[  939.057346][T20240]  ? clear_bhb_loop+0x40/0x90
[  939.057378][T20240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  939.057405][T20240] RIP: 0033:0x7fc40ed9c799
[  939.057426][T20240] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  939.057451][T20240] RSP: 002b:00007fc40fb88028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  939.057475][T20240] RAX: ffffffffffffffda RBX: 00007fc40f016180 RCX: 00007fc40ed9c799
[  939.057492][T20240] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  939.057508][T20240] RBP: 00007fc40ee32c99 R08: 0000000000000000 R09: 0000000000000000
[  939.057524][T20240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  939.057539][T20240] R13: 00007fc40f016218 R14: 00007fc40f016180 R15: 00007ffd9dbbce08
[  939.057571][T20240]  </TASK>
[  940.103088][T20257] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4163'.
[  941.029334][T20273] FAULT_INJECTION: forcing a failure.
[  941.029334][T20273] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  941.131797][T20273] CPU: 0 UID: 0 PID: 20273 Comm: syz.3.4166 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  941.131840][T20273] Tainted: [L]=SOFTLOCKUP
[  941.131849][T20273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  941.131865][T20273] Call Trace:
[  941.131874][T20273]  <TASK>
[  941.131885][T20273]  dump_stack_lvl+0x100/0x190
[  941.131936][T20273]  should_fail_ex.cold+0x5/0xa
[  941.131967][T20273]  _copy_from_user+0x2e/0xd0
[  941.132001][T20273]  snd_pcm_oss_write2+0x1c2/0x400
[  941.132038][T20273]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  941.132081][T20273]  snd_pcm_oss_write+0x729/0xa30
[  941.132117][T20273]  ? security_file_permission+0x76/0x210
[  941.132166][T20273]  vfs_write+0x2aa/0x1070
[  941.132193][T20273]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  941.132230][T20273]  ? __pfx_vfs_write+0x10/0x10
[  941.132253][T20273]  ? find_held_lock+0x2b/0x80
[  941.132287][T20273]  ? __fget_files+0x215/0x3d0
[  941.132311][T20273]  ? __fget_files+0x215/0x3d0
[  941.132342][T20273]  ? __fget_files+0x21f/0x3d0
[  941.132375][T20273]  ksys_write+0x12a/0x250
[  941.132400][T20273]  ? __pfx_ksys_write+0x10/0x10
[  941.132434][T20273]  do_syscall_64+0x106/0xf80
[  941.132458][T20273]  ? clear_bhb_loop+0x40/0x90
[  941.132493][T20273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  941.132521][T20273] RIP: 0033:0x7fc40ed9c799
[  941.132542][T20273] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  941.132568][T20273] RSP: 002b:00007fc40fb88028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  941.132592][T20273] RAX: ffffffffffffffda RBX: 00007fc40f016180 RCX: 00007fc40ed9c799
[  941.132610][T20273] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  941.132625][T20273] RBP: 00007fc40ee32c99 R08: 0000000000000000 R09: 0000000000000000
[  941.132640][T20273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  941.132656][T20273] R13: 00007fc40f016218 R14: 00007fc40f016180 R15: 00007ffd9dbbce08
[  941.132687][T20273]  </TASK>
[  941.879105][T20280] FAULT_INJECTION: forcing a failure.
[  941.879105][T20280] name failslab, interval 1, probability 0, space 0, times 0
[  941.918790][T20280] CPU: 0 UID: 0 PID: 20280 Comm: syz.3.4168 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  941.918831][T20280] Tainted: [L]=SOFTLOCKUP
[  941.918841][T20280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  941.918865][T20280] Call Trace:
[  941.918874][T20280]  <TASK>
[  941.918884][T20280]  dump_stack_lvl+0x100/0x190
[  941.918928][T20280]  should_fail_ex.cold+0x5/0xa
[  941.918960][T20280]  should_failslab+0xc2/0x120
[  941.918988][T20280]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  941.919028][T20280]  ? security_inode_alloc+0x3b/0x2c0
[  941.919056][T20280]  ? lockdep_init_map_type+0x5c/0x250
[  941.919097][T20280]  security_inode_alloc+0x3b/0x2c0
[  941.919127][T20280]  inode_init_always_gfp+0xced/0x1040
[  941.919158][T20280]  alloc_inode+0x8e/0x250
[  941.919194][T20280]  new_inode+0x22/0x1c0
[  941.919232][T20280]  shmem_get_inode+0x212/0x1040
[  941.919271][T20280]  ? __pfx_shmem_get_inode+0x10/0x10
[  941.919306][T20280]  ? d_add+0x443/0x850
[  941.919341][T20280]  ? do_raw_spin_unlock+0x145/0x1e0
[  941.919386][T20280]  shmem_mknod+0x20c/0x470
[  941.919423][T20280]  ? __pfx_shmem_mknod+0x10/0x10
[  941.919456][T20280]  ? bpf_lsm_inode_create+0x9/0x10
[  941.919502][T20280]  ? __pfx_shmem_create+0x10/0x10
[  941.919538][T20280]  lookup_open.isra.0+0xc47/0x11b0
[  941.919584][T20280]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  941.919629][T20280]  ? __pfx___might_resched+0x10/0x10
[  941.919668][T20280]  ? mnt_get_write_access+0x52/0x2f0
[  941.919710][T20280]  ? __pfx_down_write+0x10/0x10
[  941.919737][T20280]  ? mnt_get_write_access+0x1e9/0x2f0
[  941.919778][T20280]  path_openat+0x2291/0x31a0
[  941.919816][T20280]  ? __pfx_path_openat+0x10/0x10
[  941.919860][T20280]  do_file_open+0x20e/0x430
[  941.919890][T20280]  ? __pfx_do_file_open+0x10/0x10
[  941.919939][T20280]  ? alloc_fd+0x476/0x790
[  941.919969][T20280]  ? do_getname+0x191/0x390
[  941.920005][T20280]  do_sys_openat2+0x10d/0x1e0
[  941.920040][T20280]  ? __pfx_do_sys_openat2+0x10/0x10
[  941.920087][T20280]  __x64_sys_openat+0x12d/0x210
[  941.920124][T20280]  ? __pfx___x64_sys_openat+0x10/0x10
[  941.920171][T20280]  do_syscall_64+0x106/0xf80
[  941.920194][T20280]  ? clear_bhb_loop+0x40/0x90
[  941.920225][T20280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  941.920252][T20280] RIP: 0033:0x7fc40ed9c799
[  941.920273][T20280] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  941.920298][T20280] RSP: 002b:00007fc40fbca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  941.920322][T20280] RAX: ffffffffffffffda RBX: 00007fc40f015fa0 RCX: 00007fc40ed9c799
[  941.920340][T20280] RDX: 0000000000000043 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  941.920355][T20280] RBP: 00007fc40ee32c99 R08: 0000000000000000 R09: 0000000000000000
[  941.920371][T20280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  941.920387][T20280] R13: 00007fc40f016038 R14: 00007fc40f015fa0 R15: 00007ffd9dbbce08
[  941.920419][T20280]  </TASK>
[  944.827331][T20316] Process accounting resumed
[  951.755857][T20400] input: jJǸ-�¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input22
[  952.570009][T20405] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  953.336713][T20423] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4202'.
[  953.377560][T20423] netlink: 'syz.3.4202': attribute type 1 has an invalid length.
[  953.411252][T20423] netlink: 51505 bytes leftover after parsing attributes in process `syz.3.4202'.
[  957.926082][T20462] Process accounting paused
[  958.375313][T20503] FAULT_INJECTION: forcing a failure.
[  958.375313][T20503] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  958.524963][T20503] CPU: 0 UID: 0 PID: 20503 Comm: syz.1.4219 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  958.525006][T20503] Tainted: [L]=SOFTLOCKUP
[  958.525015][T20503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  958.525031][T20503] Call Trace:
[  958.525040][T20503]  <TASK>
[  958.525050][T20503]  dump_stack_lvl+0x100/0x190
[  958.525096][T20503]  should_fail_ex.cold+0x5/0xa
[  958.525127][T20503]  _copy_from_user+0x2e/0xd0
[  958.525161][T20503]  snd_pcm_oss_write2+0x1c2/0x400
[  958.525199][T20503]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  958.525242][T20503]  snd_pcm_oss_write+0x729/0xa30
[  958.525278][T20503]  ? security_file_permission+0x76/0x210
[  958.525319][T20503]  vfs_write+0x2aa/0x1070
[  958.525346][T20503]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  958.525383][T20503]  ? __pfx_vfs_write+0x10/0x10
[  958.525406][T20503]  ? find_held_lock+0x2b/0x80
[  958.525431][T20503]  ? __fget_files+0x215/0x3d0
[  958.525455][T20503]  ? __fget_files+0x215/0x3d0
[  958.525485][T20503]  ? __fget_files+0x21f/0x3d0
[  958.525519][T20503]  ksys_write+0x12a/0x250
[  958.525544][T20503]  ? __pfx_ksys_write+0x10/0x10
[  958.525577][T20503]  do_syscall_64+0x106/0xf80
[  958.525600][T20503]  ? clear_bhb_loop+0x40/0x90
[  958.525632][T20503]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  958.525666][T20503] RIP: 0033:0x7fa5e619c799
[  958.525687][T20503] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  958.525712][T20503] RSP: 002b:00007fa5e6fb5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  958.525773][T20503] RAX: ffffffffffffffda RBX: 00007fa5e6416180 RCX: 00007fa5e619c799
[  958.525791][T20503] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  958.525807][T20503] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[  958.525822][T20503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  958.525838][T20503] R13: 00007fa5e6416218 R14: 00007fa5e6416180 R15: 00007ffe9ca96688
[  958.525871][T20503]  </TASK>
[  959.486192][T20519] tipc: Started in network mode
[  959.504593][T20519] tipc: Node identity ffffffff, cluster identity 4711
[  959.540507][T20519] tipc: Node number set to 4294967295
[  961.551617][T20552] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4229'.
[  961.597396][T20552] veth0_macvtap: left promiscuous mode
[  961.618036][T20552] macvtap0: entered promiscuous mode
[  961.632045][T20552] macvtap0: entered allmulticast mode
[  961.925440][T20559] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4238'.
[  963.214082][T20585] FAULT_INJECTION: forcing a failure.
[  963.214082][T20585] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  963.288115][T20585] CPU: 0 UID: 0 PID: 20585 Comm: syz.3.4235 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  963.288156][T20585] Tainted: [L]=SOFTLOCKUP
[  963.288166][T20585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  963.288188][T20585] Call Trace:
[  963.288197][T20585]  <TASK>
[  963.288206][T20585]  dump_stack_lvl+0x100/0x190
[  963.288250][T20585]  should_fail_ex.cold+0x5/0xa
[  963.288281][T20585]  _copy_from_user+0x2e/0xd0
[  963.288315][T20585]  snd_pcm_oss_write2+0x1c2/0x400
[  963.288352][T20585]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  963.288395][T20585]  snd_pcm_oss_write+0x729/0xa30
[  963.288431][T20585]  ? security_file_permission+0x76/0x210
[  963.288478][T20585]  vfs_write+0x2aa/0x1070
[  963.288504][T20585]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  963.288541][T20585]  ? __pfx_vfs_write+0x10/0x10
[  963.288565][T20585]  ? find_held_lock+0x2b/0x80
[  963.288589][T20585]  ? __fget_files+0x215/0x3d0
[  963.288614][T20585]  ? __fget_files+0x215/0x3d0
[  963.288644][T20585]  ? __fget_files+0x21f/0x3d0
[  963.288677][T20585]  ksys_write+0x12a/0x250
[  963.288707][T20585]  ? __pfx_ksys_write+0x10/0x10
[  963.288741][T20585]  do_syscall_64+0x106/0xf80
[  963.288765][T20585]  ? clear_bhb_loop+0x40/0x90
[  963.288796][T20585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  963.288823][T20585] RIP: 0033:0x7fc40ed9c799
[  963.288845][T20585] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  963.288871][T20585] RSP: 002b:00007fc40fb88028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  963.288894][T20585] RAX: ffffffffffffffda RBX: 00007fc40f016180 RCX: 00007fc40ed9c799
[  963.288912][T20585] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  963.288927][T20585] RBP: 00007fc40ee32c99 R08: 0000000000000000 R09: 0000000000000000
[  963.288943][T20585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  963.288958][T20585] R13: 00007fc40f016218 R14: 00007fc40f016180 R15: 00007ffd9dbbce08
[  963.288991][T20585]  </TASK>
[  964.298647][T20597] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4239'.
[  964.357078][T20597] veth0_macvtap: left promiscuous mode
[  964.363211][T20597] macvtap0: entered promiscuous mode
[  964.383566][T20597] macvtap0: entered allmulticast mode
[  965.790353][T20625] FAULT_INJECTION: forcing a failure.
[  965.790353][T20625] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  965.815183][T20625] CPU: 0 UID: 0 PID: 20625 Comm: syz.3.4246 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  965.815224][T20625] Tainted: [L]=SOFTLOCKUP
[  965.815233][T20625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  965.815249][T20625] Call Trace:
[  965.815257][T20625]  <TASK>
[  965.815287][T20625]  dump_stack_lvl+0x100/0x190
[  965.815334][T20625]  should_fail_ex.cold+0x5/0xa
[  965.815378][T20625]  _copy_from_user+0x2e/0xd0
[  965.815412][T20625]  snd_pcm_oss_write2+0x1c2/0x400
[  965.815448][T20625]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  965.815492][T20625]  snd_pcm_oss_write+0x729/0xa30
[  965.815527][T20625]  ? security_file_permission+0x76/0x210
[  965.815568][T20625]  vfs_write+0x2aa/0x1070
[  965.815596][T20625]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  965.815641][T20625]  ? __pfx_vfs_write+0x10/0x10
[  965.815668][T20625]  ? find_held_lock+0x2b/0x80
[  965.815697][T20625]  ? __fget_files+0x215/0x3d0
[  965.815883][T20625]  ? __fget_files+0x215/0x3d0
[  965.815916][T20625]  ? __fget_files+0x21f/0x3d0
[  965.815950][T20625]  ksys_write+0x12a/0x250
[  965.815976][T20625]  ? __pfx_ksys_write+0x10/0x10
[  965.816010][T20625]  do_syscall_64+0x106/0xf80
[  965.816041][T20625]  ? clear_bhb_loop+0x40/0x90
[  965.816073][T20625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  965.816100][T20625] RIP: 0033:0x7fc40ed9c799
[  965.816122][T20625] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  965.816156][T20625] RSP: 002b:00007fc40fb88028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  965.816180][T20625] RAX: ffffffffffffffda RBX: 00007fc40f016180 RCX: 00007fc40ed9c799
[  965.816198][T20625] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  965.816214][T20625] RBP: 00007fc40ee32c99 R08: 0000000000000000 R09: 0000000000000000
[  965.816229][T20625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  965.816245][T20625] R13: 00007fc40f016218 R14: 00007fc40f016180 R15: 00007ffd9dbbce08
[  965.816285][T20625]  </TASK>
[  966.273970][T13297] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  966.927601][T20635] bond0: invalid ARP target specified
[  966.962084][T20635] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4248'.
[  966.989205][T20635] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  967.017503][T20635] batman_adv: batadv0: Removing interface: batadv_slave_0
[  967.059582][T20635] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  967.089573][T20635] batman_adv: batadv0: Removing interface: batadv_slave_1
[  975.064764][T20712] Process accounting paused
[  975.714472][T13297] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  983.945581][T13297] Bluetooth: hci4: Malformed LE Event: 0x0b
[  983.961889][T20849] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  984.948909][T20863] vivid-007: =================  START STATUS  =================
[  984.988792][T20863] vivid-007: Generate PTS: true
[  985.008575][T20863] vivid-007: Generate SCR: true
[  985.027199][T20863] tpg source WxH: 320x240 (Y'CbCr)
[  985.048600][T20863] tpg field: 1
[  985.062426][T20863] tpg crop: (0,0)/320x240
[  985.090305][T20863] tpg compose: (0,0)/320x240
[  985.095044][T20863] tpg colorspace: 8
[  985.122111][T20863] tpg transfer function: 0/0
[  985.149909][T20863] tpg Y'CbCr encoding: 0/0
[  985.154367][T20863] tpg quantization: 0/0
[  985.158528][T20863] tpg RGB range: 0/2
[  985.202811][T20863] vivid-007: ==================  END STATUS  ==================
[  985.376429][T20874] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4296'.
[  986.568520][T20894] FAULT_INJECTION: forcing a failure.
[  986.568520][T20894] name failslab, interval 1, probability 0, space 0, times 0
[  986.646073][T20894] CPU: 0 UID: 0 PID: 20894 Comm: syz.1.4303 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  986.646113][T20894] Tainted: [L]=SOFTLOCKUP
[  986.646123][T20894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  986.646139][T20894] Call Trace:
[  986.646148][T20894]  <TASK>
[  986.646157][T20894]  dump_stack_lvl+0x100/0x190
[  986.646203][T20894]  should_fail_ex.cold+0x5/0xa
[  986.646234][T20894]  should_failslab+0xc2/0x120
[  986.646263][T20894]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  986.646303][T20894]  ? ptlock_alloc+0x1f/0x70
[  986.646344][T20894]  ptlock_alloc+0x1f/0x70
[  986.646379][T20894]  pte_alloc_one+0x82/0x3d0
[  986.646410][T20894]  do_fault+0x88e/0x1990
[  986.646440][T20894]  ? __pmd_alloc+0x3fb/0x950
[  986.646474][T20894]  __handle_mm_fault+0x180f/0x2b60
[  986.646515][T20894]  ? mt_find+0x45e/0x8e0
[  986.646543][T20894]  ? __pfx___handle_mm_fault+0x10/0x10
[  986.646578][T20894]  ? __pfx_mt_find+0x10/0x10
[  986.646621][T20894]  ? find_vma+0xbf/0x140
[  986.646646][T20894]  ? __pfx_find_vma+0x10/0x10
[  986.646675][T20894]  handle_mm_fault+0x36d/0xa20
[  986.646717][T20894]  do_user_addr_fault+0x74c/0x12f0
[  986.646751][T20894]  exc_page_fault+0x6f/0xd0
[  986.646793][T20894]  asm_exc_page_fault+0x26/0x30
[  986.646819][T20894] RIP: 0010:rep_movs_alternative+0x30/0x90
[  986.646852][T20894] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  986.646878][T20894] RSP: 0018:ffffc9000480fb78 EFLAGS: 00050212
[  986.646898][T20894] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000022
[  986.646914][T20894] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc9000480fbd8
[  986.646929][T20894] RBP: 0000000000000022 R08: 0000000000000001 R09: fffff52000901f7f
[  986.646946][T20894] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  986.646961][T20894] R13: ffffc9000480fbd8 R14: ffffc9000480fca0 R15: ffffc9000480fbd8
[  986.646999][T20894]  _copy_from_user+0x98/0xd0
[  986.647034][T20894]  kstrtouint_from_user+0xd6/0x1d0
[  986.647075][T20894]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  986.647116][T20894]  ? __lock_acquire+0x4a5/0x2630
[  986.647154][T20894]  ? lock_acquire+0x1cf/0x380
[  986.647193][T20894]  proc_fail_nth_write+0x83/0x220
[  986.647228][T20894]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  986.647269][T20894]  vfs_write+0x2aa/0x1070
[  986.647295][T20894]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  986.647332][T20894]  ? __pfx_vfs_write+0x10/0x10
[  986.647356][T20894]  ? __fget_files+0x215/0x3d0
[  986.647388][T20894]  ? __fget_files+0x21f/0x3d0
[  986.647422][T20894]  ksys_write+0x12a/0x250
[  986.647447][T20894]  ? __pfx_ksys_write+0x10/0x10
[  986.647481][T20894]  do_syscall_64+0x106/0xf80
[  986.647504][T20894]  ? clear_bhb_loop+0x40/0x90
[  986.647544][T20894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  986.647571][T20894] RIP: 0033:0x7fa5e619c799
[  986.647592][T20894] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  986.647617][T20894] RSP: 002b:00007fa5e6ff7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  986.647640][T20894] RAX: ffffffffffffffda RBX: 00007fa5e6415fa0 RCX: 00007fa5e619c799
[  986.647657][T20894] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  986.647672][T20894] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[  986.647688][T20894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  986.647703][T20894] R13: 00007fa5e6416038 R14: 00007fa5e6415fa0 R15: 00007ffe9ca96688
[  986.647735][T20894]  </TASK>
[  988.598075][T20904] Process accounting resumed
[  993.233110][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  993.239721][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  993.796717][T13297] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  998.265635][T21042] FAULT_INJECTION: forcing a failure.
[  998.265635][T21042] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  998.362551][T21042] CPU: 0 UID: 0 PID: 21042 Comm: syz.1.4343 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  998.362591][T21042] Tainted: [L]=SOFTLOCKUP
[  998.362601][T21042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  998.362618][T21042] Call Trace:
[  998.362626][T21042]  <TASK>
[  998.362636][T21042]  dump_stack_lvl+0x100/0x190
[  998.362681][T21042]  should_fail_ex.cold+0x5/0xa
[  998.362713][T21042]  _copy_from_user+0x2e/0xd0
[  998.362748][T21042]  snd_pcm_oss_write2+0x1c2/0x400
[  998.362784][T21042]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  998.362826][T21042]  snd_pcm_oss_write+0x729/0xa30
[  998.362862][T21042]  ? security_file_permission+0x76/0x210
[  998.362903][T21042]  vfs_write+0x2aa/0x1070
[  998.362929][T21042]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  998.362971][T21042]  ? __pfx_vfs_write+0x10/0x10
[  998.362993][T21042]  ? find_held_lock+0x2b/0x80
[  998.363018][T21042]  ? __fget_files+0x215/0x3d0
[  998.363043][T21042]  ? __fget_files+0x215/0x3d0
[  998.363073][T21042]  ? __fget_files+0x21f/0x3d0
[  998.363107][T21042]  ksys_write+0x12a/0x250
[  998.363131][T21042]  ? __pfx_ksys_write+0x10/0x10
[  998.363165][T21042]  do_syscall_64+0x106/0xf80
[  998.363188][T21042]  ? clear_bhb_loop+0x40/0x90
[  998.363226][T21042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  998.363252][T21042] RIP: 0033:0x7fa5e619c799
[  998.363274][T21042] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  998.363299][T21042] RSP: 002b:00007fa5e6fb5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  998.363323][T21042] RAX: ffffffffffffffda RBX: 00007fa5e6416180 RCX: 00007fa5e619c799
[  998.363340][T21042] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  998.363356][T21042] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[  998.363371][T21042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  998.363387][T21042] R13: 00007fa5e6416218 R14: 00007fa5e6416180 R15: 00007ffe9ca96688
[  998.363419][T21042]  </TASK>
[ 1003.113802][T21097] FAULT_INJECTION: forcing a failure.
[ 1003.113802][T21097] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1003.228329][T21097] CPU: 0 UID: 0 PID: 21097 Comm: syz.0.4353 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1003.228371][T21097] Tainted: [L]=SOFTLOCKUP
[ 1003.228380][T21097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1003.228397][T21097] Call Trace:
[ 1003.228406][T21097]  <TASK>
[ 1003.228416][T21097]  dump_stack_lvl+0x100/0x190
[ 1003.228460][T21097]  should_fail_ex.cold+0x5/0xa
[ 1003.228491][T21097]  _copy_from_user+0x2e/0xd0
[ 1003.228526][T21097]  snd_pcm_oss_write2+0x1c2/0x400
[ 1003.228562][T21097]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[ 1003.228606][T21097]  snd_pcm_oss_write+0x729/0xa30
[ 1003.228642][T21097]  ? security_file_permission+0x76/0x210
[ 1003.228683][T21097]  vfs_write+0x2aa/0x1070
[ 1003.228709][T21097]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[ 1003.228746][T21097]  ? __pfx_vfs_write+0x10/0x10
[ 1003.228768][T21097]  ? find_held_lock+0x2b/0x80
[ 1003.228793][T21097]  ? __fget_files+0x215/0x3d0
[ 1003.228817][T21097]  ? __fget_files+0x215/0x3d0
[ 1003.228847][T21097]  ? __fget_files+0x21f/0x3d0
[ 1003.228880][T21097]  ksys_write+0x12a/0x250
[ 1003.228905][T21097]  ? __pfx_ksys_write+0x10/0x10
[ 1003.228938][T21097]  do_syscall_64+0x106/0xf80
[ 1003.228970][T21097]  ? clear_bhb_loop+0x40/0x90
[ 1003.229002][T21097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1003.229029][T21097] RIP: 0033:0x7f215199c799
[ 1003.229050][T21097] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1003.229075][T21097] RSP: 002b:00007f2152830028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1003.229099][T21097] RAX: ffffffffffffffda RBX: 00007f2151c16180 RCX: 00007f215199c799
[ 1003.229116][T21097] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[ 1003.229132][T21097] RBP: 00007f2151a32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1003.229148][T21097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1003.229163][T21097] R13: 00007f2151c16218 R14: 00007f2151c16180 R15: 00007ffc69055f88
[ 1003.229195][T21097]  </TASK>
[ 1004.150148][T13297] Bluetooth: hci3: Malformed LE Event: 0x0b
[ 1006.083575][T21118] Process accounting resumed
[ 1006.691828][T21144] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4365'.
[ 1006.764901][T21136] zswap: compressor  not available
[ 1012.107082][T21226] FAULT_INJECTION: forcing a failure.
[ 1012.107082][T21226] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1012.305388][T21226] CPU: 0 UID: 0 PID: 21226 Comm: syz.1.4379 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1012.305430][T21226] Tainted: [L]=SOFTLOCKUP
[ 1012.305439][T21226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1012.305455][T21226] Call Trace:
[ 1012.305464][T21226]  <TASK>
[ 1012.305473][T21226]  dump_stack_lvl+0x100/0x190
[ 1012.305517][T21226]  should_fail_ex.cold+0x5/0xa
[ 1012.305548][T21226]  _copy_from_user+0x2e/0xd0
[ 1012.305582][T21226]  snd_pcm_oss_write2+0x1c2/0x400
[ 1012.305618][T21226]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[ 1012.305661][T21226]  snd_pcm_oss_write+0x729/0xa30
[ 1012.305697][T21226]  ? security_file_permission+0x76/0x210
[ 1012.305739][T21226]  vfs_write+0x2aa/0x1070
[ 1012.305764][T21226]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[ 1012.305802][T21226]  ? __pfx_vfs_write+0x10/0x10
[ 1012.305824][T21226]  ? find_held_lock+0x2b/0x80
[ 1012.305849][T21226]  ? __fget_files+0x215/0x3d0
[ 1012.305874][T21226]  ? __fget_files+0x215/0x3d0
[ 1012.305903][T21226]  ? __fget_files+0x21f/0x3d0
[ 1012.305937][T21226]  ksys_write+0x12a/0x250
[ 1012.305962][T21226]  ? __pfx_ksys_write+0x10/0x10
[ 1012.305995][T21226]  do_syscall_64+0x106/0xf80
[ 1012.306019][T21226]  ? clear_bhb_loop+0x40/0x90
[ 1012.306050][T21226]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1012.306077][T21226] RIP: 0033:0x7fa5e619c799
[ 1012.306099][T21226] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1012.306124][T21226] RSP: 002b:00007fa5e6fb5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1012.306148][T21226] RAX: ffffffffffffffda RBX: 00007fa5e6416180 RCX: 00007fa5e619c799
[ 1012.306165][T21226] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[ 1012.306181][T21226] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1012.306197][T21226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1012.306212][T21226] R13: 00007fa5e6416218 R14: 00007fa5e6416180 R15: 00007ffe9ca96688
[ 1012.306244][T21226]  </TASK>
[ 1015.184401][T21269] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4390'.
[ 1015.300850][T21271] netlink: 'syz.1.4390': attribute type 1 has an invalid length.
[ 1015.348276][T21271] netlink: 51505 bytes leftover after parsing attributes in process `syz.1.4390'.
[ 1016.994765][T21292] FAULT_INJECTION: forcing a failure.
[ 1016.994765][T21292] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1017.119594][T21292] CPU: 0 UID: 0 PID: 21292 Comm: syz.3.4396 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1017.119635][T21292] Tainted: [L]=SOFTLOCKUP
[ 1017.119645][T21292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1017.119660][T21292] Call Trace:
[ 1017.119668][T21292]  <TASK>
[ 1017.119678][T21292]  dump_stack_lvl+0x100/0x190
[ 1017.119722][T21292]  should_fail_ex.cold+0x5/0xa
[ 1017.119753][T21292]  _copy_from_user+0x2e/0xd0
[ 1017.119786][T21292]  snd_pcm_oss_write2+0x1c2/0x400
[ 1017.119822][T21292]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[ 1017.119865][T21292]  snd_pcm_oss_write+0x729/0xa30
[ 1017.119901][T21292]  ? security_file_permission+0x76/0x210
[ 1017.119942][T21292]  vfs_write+0x2aa/0x1070
[ 1017.119967][T21292]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[ 1017.120004][T21292]  ? __pfx_vfs_write+0x10/0x10
[ 1017.120034][T21292]  ? find_held_lock+0x2b/0x80
[ 1017.120059][T21292]  ? __fget_files+0x215/0x3d0
[ 1017.120084][T21292]  ? __fget_files+0x215/0x3d0
[ 1017.120113][T21292]  ? __fget_files+0x21f/0x3d0
[ 1017.120147][T21292]  ksys_write+0x12a/0x250
[ 1017.120171][T21292]  ? __pfx_ksys_write+0x10/0x10
[ 1017.120205][T21292]  do_syscall_64+0x106/0xf80
[ 1017.120229][T21292]  ? clear_bhb_loop+0x40/0x90
[ 1017.120261][T21292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1017.120287][T21292] RIP: 0033:0x7fc40ed9c799
[ 1017.120308][T21292] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1017.120334][T21292] RSP: 002b:00007fc40fb88028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1017.120358][T21292] RAX: ffffffffffffffda RBX: 00007fc40f016180 RCX: 00007fc40ed9c799
[ 1017.120376][T21292] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[ 1017.120392][T21292] RBP: 00007fc40ee32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1017.120408][T21292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1017.120423][T21292] R13: 00007fc40f016218 R14: 00007fc40f016180 R15: 00007ffd9dbbce08
[ 1017.120455][T21292]  </TASK>
[ 1019.199848][T21321] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4401'.
[ 1019.879728][T21331] futex_wake_op: syz.2.4403 tries to shift op by -2048; fix this program
[ 1020.700230][T21303] Process accounting paused
[ 1021.031658][T21357] FAULT_INJECTION: forcing a failure.
[ 1021.031658][T21357] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1021.099991][T21357] CPU: 0 UID: 0 PID: 21357 Comm: syz.1.4409 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1021.100039][T21357] Tainted: [L]=SOFTLOCKUP
[ 1021.100049][T21357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1021.100065][T21357] Call Trace:
[ 1021.100073][T21357]  <TASK>
[ 1021.100083][T21357]  dump_stack_lvl+0x100/0x190
[ 1021.100128][T21357]  should_fail_ex.cold+0x5/0xa
[ 1021.100160][T21357]  _copy_from_user+0x2e/0xd0
[ 1021.100193][T21357]  snd_pcm_oss_write2+0x1c2/0x400
[ 1021.100229][T21357]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[ 1021.100272][T21357]  snd_pcm_oss_write+0x729/0xa30
[ 1021.100309][T21357]  ? security_file_permission+0x76/0x210
[ 1021.100349][T21357]  vfs_write+0x2aa/0x1070
[ 1021.100375][T21357]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[ 1021.100412][T21357]  ? __pfx_vfs_write+0x10/0x10
[ 1021.100434][T21357]  ? find_held_lock+0x2b/0x80
[ 1021.100458][T21357]  ? __fget_files+0x215/0x3d0
[ 1021.100483][T21357]  ? __fget_files+0x215/0x3d0
[ 1021.100513][T21357]  ? __fget_files+0x21f/0x3d0
[ 1021.100546][T21357]  ksys_write+0x12a/0x250
[ 1021.100570][T21357]  ? __pfx_ksys_write+0x10/0x10
[ 1021.100604][T21357]  do_syscall_64+0x106/0xf80
[ 1021.100627][T21357]  ? clear_bhb_loop+0x40/0x90
[ 1021.100659][T21357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1021.100685][T21357] RIP: 0033:0x7fa5e619c799
[ 1021.100706][T21357] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1021.100732][T21357] RSP: 002b:00007fa5e6fb5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1021.100758][T21357] RAX: ffffffffffffffda RBX: 00007fa5e6416180 RCX: 00007fa5e619c799
[ 1021.100776][T21357] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[ 1021.100792][T21357] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1021.100807][T21357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1021.100823][T21357] R13: 00007fa5e6416218 R14: 00007fa5e6416180 R15: 00007ffe9ca96688
[ 1021.100855][T21357]  </TASK>
[ 1028.018706][T21445] FAULT_INJECTION: forcing a failure.
[ 1028.018706][T21445] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1028.302190][T21445] CPU: 0 UID: 0 PID: 21445 Comm: syz.0.4428 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1028.302232][T21445] Tainted: [L]=SOFTLOCKUP
[ 1028.302241][T21445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1028.302257][T21445] Call Trace:
[ 1028.302266][T21445]  <TASK>
[ 1028.302276][T21445]  dump_stack_lvl+0x100/0x190
[ 1028.302320][T21445]  should_fail_ex.cold+0x5/0xa
[ 1028.302346][T21445]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1028.302380][T21445]  should_fail_alloc_page+0xeb/0x140
[ 1028.302411][T21445]  prepare_alloc_pages+0x1f0/0x5f0
[ 1028.302446][T21445]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 1028.302496][T21445]  ? update_cfs_rq_load_avg+0x51/0x550
[ 1028.302534][T21445]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1028.302581][T21445]  ? __pfx_css_rstat_updated+0x10/0x10
[ 1028.302620][T21445]  ? lock_acquire+0x1cf/0x380
[ 1028.302661][T21445]  ? find_held_lock+0x2b/0x80
[ 1028.302686][T21445]  ? page_table_check_set+0x49a/0xa10
[ 1028.302712][T21445]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1028.302740][T21445]  ? policy_nodemask+0xed/0x4f0
[ 1028.302771][T21445]  alloc_pages_mpol+0x1fb/0x550
[ 1028.302801][T21445]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1028.302838][T21445]  folio_alloc_mpol_noprof+0x36/0x340
[ 1028.302873][T21445]  vma_alloc_folio_noprof+0xed/0x1d0
[ 1028.302907][T21445]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1028.302949][T21445]  do_anonymous_page+0xb3a/0x1fb0
[ 1028.302995][T21445]  __handle_mm_fault+0x1d42/0x2b60
[ 1028.303040][T21445]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1028.303078][T21445]  ? pte_offset_map_lock+0x174/0x320
[ 1028.303106][T21445]  ? find_held_lock+0x2b/0x80
[ 1028.303140][T21445]  ? follow_page_pte+0x5b3/0x1400
[ 1028.303176][T21445]  handle_mm_fault+0x36d/0xa20
[ 1028.303218][T21445]  __get_user_pages+0xf9c/0x34d0
[ 1028.303259][T21445]  ? __pfx___get_user_pages+0x10/0x10
[ 1028.303298][T21445]  populate_vma_page_range+0x267/0x3f0
[ 1028.303333][T21445]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1028.303365][T21445]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1028.303395][T21445]  ? do_mmap+0x93f/0x12f0
[ 1028.303428][T21445]  __mm_populate+0x107/0x3a0
[ 1028.303461][T21445]  ? __pfx___mm_populate+0x10/0x10
[ 1028.303495][T21445]  ? up_write+0x290/0x4f0
[ 1028.303536][T21445]  vm_mmap_pgoff+0x37f/0x470
[ 1028.303570][T21445]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1028.303602][T21445]  ? do_futex+0x192/0x350
[ 1028.303637][T21445]  ? __pfx_do_futex+0x10/0x10
[ 1028.303675][T21445]  ? find_held_lock+0x2b/0x80
[ 1028.303699][T21445]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[ 1028.303732][T21445]  ksys_mmap_pgoff+0xe1/0x650
[ 1028.303761][T21445]  ? __x64_sys_futex+0x34f/0x4d0
[ 1028.303794][T21445]  ? __x64_sys_futex+0x358/0x4d0
[ 1028.303830][T21445]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 1028.303859][T21445]  ? xfd_validate_state+0x129/0x190
[ 1028.303903][T21445]  __x64_sys_mmap+0x125/0x190
[ 1028.303946][T21445]  do_syscall_64+0x106/0xf80
[ 1028.303970][T21445]  ? clear_bhb_loop+0x40/0x90
[ 1028.304002][T21445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1028.304029][T21445] RIP: 0033:0x7f215199c799
[ 1028.304051][T21445] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1028.304076][T21445] RSP: 002b:00007f2152872028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1028.304101][T21445] RAX: ffffffffffffffda RBX: 00007f2151c15fa0 RCX: 00007f215199c799
[ 1028.304118][T21445] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1028.304134][T21445] RBP: 00007f2151a32c99 R08: 0000000000000002 R09: 0000000000008000
[ 1028.304151][T21445] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1028.304167][T21445] R13: 00007f2151c16038 R14: 00007f2151c15fa0 R15: 00007ffc69055f88
[ 1028.304200][T21445]  </TASK>
[ 1031.395616][T13297] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1033.573797][T21506] FAULT_INJECTION: forcing a failure.
[ 1033.573797][T21506] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1033.711343][T21510] FAULT_INJECTION: forcing a failure.
[ 1033.711343][T21510] name failslab, interval 1, probability 0, space 0, times 0
[ 1033.843929][T21502] netlink: 326 bytes leftover after parsing attributes in process `syz.3.4439'.
[ 1033.942608][T21506] CPU: 0 UID: 0 PID: 21506 Comm: syz.3.4439 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1033.942650][T21506] Tainted: [L]=SOFTLOCKUP
[ 1033.942659][T21506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1033.942675][T21506] Call Trace:
[ 1033.942683][T21506]  <TASK>
[ 1033.942693][T21506]  dump_stack_lvl+0x100/0x190
[ 1033.942737][T21506]  should_fail_ex.cold+0x5/0xa
[ 1033.942772][T21506]  core_sys_select+0x9b9/0xbb0
[ 1033.942805][T21506]  ? __pfx_core_sys_select+0x10/0x10
[ 1033.942859][T21506]  ? ktime_get_ts64+0x2d2/0x3f0
[ 1033.942890][T21506]  ? read_tsc+0x9/0x20
[ 1033.942919][T21506]  ? ktime_get_ts64+0x256/0x3f0
[ 1033.942951][T21506]  kern_select+0x20c/0x270
[ 1033.942978][T21506]  ? __pfx_kern_select+0x10/0x10
[ 1033.943013][T21506]  __x64_sys_select+0xbd/0x160
[ 1033.943037][T21506]  ? do_syscall_64+0x95/0xf80
[ 1033.943063][T21506]  ? lockdep_hardirqs_on+0x78/0x100
[ 1033.943106][T21506]  do_syscall_64+0x106/0xf80
[ 1033.943128][T21506]  ? clear_bhb_loop+0x40/0x90
[ 1033.943159][T21506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1033.943186][T21506] RIP: 0033:0x7fc40ed9c799
[ 1033.943237][T21506] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1033.943262][T21506] RSP: 002b:00007fc40fba9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[ 1033.943286][T21506] RAX: ffffffffffffffda RBX: 00007fc40f016090 RCX: 00007fc40ed9c799
[ 1033.943303][T21506] RDX: 00002000000000c0 RSI: 0000200000000040 RDI: 0000000000000001
[ 1033.943319][T21506] RBP: 00007fc40ee32c99 R08: 00002000000001c0 R09: 0000000000000000
[ 1033.943336][T21506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1033.943351][T21506] R13: 00007fc40f016128 R14: 00007fc40f016090 R15: 00007ffd9dbbce08
[ 1033.943383][T21506]  </TASK>
[ 1034.965483][T21510] CPU: 0 UID: 0 PID: 21510 Comm: syz.3.4439 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1034.965525][T21510] Tainted: [L]=SOFTLOCKUP
[ 1034.965535][T21510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1034.965551][T21510] Call Trace:
[ 1034.965559][T21510]  <TASK>
[ 1034.965569][T21510]  dump_stack_lvl+0x100/0x190
[ 1034.965612][T21510]  should_fail_ex.cold+0x5/0xa
[ 1034.965644][T21510]  should_failslab+0xc2/0x120
[ 1034.965672][T21510]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1034.965708][T21510]  ? call_usermodehelper_setup+0xaf/0x360
[ 1034.965755][T21510]  ? __pfx_free_modprobe_argv+0x10/0x10
[ 1034.965793][T21510]  call_usermodehelper_setup+0xaf/0x360
[ 1034.965840][T21510]  __request_module+0x3c7/0x6c0
[ 1034.965879][T21510]  ? __pfx___request_module+0x10/0x10
[ 1034.965924][T21510]  ? __get_fs_type+0x12c/0x170
[ 1034.965954][T21510]  ? __get_fs_type+0x12c/0x170
[ 1034.966007][T21510]  get_fs_type+0xd7/0x190
[ 1034.966039][T21510]  __x64_sys_fsopen+0xca/0x220
[ 1034.966076][T21510]  do_syscall_64+0x106/0xf80
[ 1034.966099][T21510]  ? clear_bhb_loop+0x40/0x90
[ 1034.966131][T21510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1034.966156][T21510] RIP: 0033:0x7fc40ed9c799
[ 1034.966177][T21510] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1034.966202][T21510] RSP: 002b:00007fc40fb88028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[ 1034.966226][T21510] RAX: ffffffffffffffda RBX: 00007fc40f016180 RCX: 00007fc40ed9c799
[ 1034.966243][T21510] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1034.966259][T21510] RBP: 00007fc40ee32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1034.966274][T21510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1034.966290][T21510] R13: 00007fc40f016218 R14: 00007fc40f016180 R15: 00007ffd9dbbce08
[ 1034.966322][T21510]  </TASK>
[ 1037.090967][T21450] Process accounting paused
[ 1040.213014][T13297] Bluetooth: hci4: ISO packet for unknown connection handle 0
[ 1041.621954][T21611] vivid-007: =================  START STATUS  =================
[ 1041.668437][T21611] vivid-007: Generate PTS: true
[ 1041.715610][T21611] vivid-007: Generate SCR: true
[ 1041.752896][T21611] tpg source WxH: 320x240 (Y'CbCr)
[ 1041.773635][T21611] tpg field: 1
[ 1041.785847][T21611] tpg crop: (0,0)/320x240
[ 1041.799104][T21611] tpg compose: (0,0)/320x240
[ 1041.831333][T21611] tpg colorspace: 8
[ 1041.844020][T21611] tpg transfer function: 0/0
[ 1041.860303][T21611] tpg Y'CbCr encoding: 0/0
[ 1041.897031][T21611] tpg quantization: 0/0
[ 1041.934569][T21611] tpg RGB range: 0/2
[ 1041.959713][T21611] vivid-007: ==================  END STATUS  ==================
[ 1046.111139][T21667] netlink: 'syz.3.4475': attribute type 1 has an invalid length.
[ 1046.153186][T21667] netlink: 9 bytes leftover after parsing attributes in process `syz.3.4475'.
[ 1046.532630][T21676] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4478'.
[ 1046.613541][T21676] netlink: 354 bytes leftover after parsing attributes in process `syz.2.4478'.
[ 1050.741169][T21717] Process accounting resumed
[ 1051.616378][   T30] audit: type=1800 audit(4294967582.470:17): pid=21737 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4490" name="sr0" dev="tmpfs" ino=6285 res=0 errno=0
[ 1052.672050][T21748] hub 1-0:1.0: USB hub found
[ 1052.721528][T21748] hub 1-0:1.0: 1 port detected
[ 1053.697887][T21762] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[ 1054.672975][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.682369][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1060.111461][T13297] Bluetooth: hci2: ISO packet for unknown connection handle 0
[ 1060.251393][T21851] netlink: 186 bytes leftover after parsing attributes in process `syz.3.4517'.
[ 1064.025637][T21898] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4528'.
[ 1064.170741][T21898] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1064.253648][T21898] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1067.428387][T21942] vivid-007: =================  START STATUS  =================
[ 1067.480372][T21942] vivid-007: Generate PTS: true
[ 1067.524486][T21942] vivid-007: Generate SCR: true
[ 1067.540869][T21942] tpg source WxH: 320x240 (Y'CbCr)
[ 1067.624401][T21937] Process accounting resumed
[ 1067.629693][T21942] tpg field: 1
[ 1067.633099][T21942] tpg crop: (0,0)/320x240
[ 1067.637442][T21942] tpg compose: (0,0)/320x240
[ 1067.849738][T21942] tpg colorspace: 8
[ 1067.853599][T21942] tpg transfer function: 0/0
[ 1067.951612][T21942] tpg Y'CbCr encoding: 0/0
[ 1068.139679][T21942] tpg quantization: 0/0
[ 1068.184123][T21942] tpg RGB range: 0/2
[ 1068.209573][T21942] vivid-007: ==================  END STATUS  ==================
[ 1069.029499][T21972] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[ 1073.306954][T22024] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4556'.
[ 1073.357736][T22021] FAULT_INJECTION: forcing a failure.
[ 1073.357736][T22021] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1073.382277][T22024] netlink: 'syz.3.4556': attribute type 1 has an invalid length.
[ 1073.427074][T22024] netlink: 51505 bytes leftover after parsing attributes in process `syz.3.4556'.
[ 1073.522293][T22021] CPU: 0 UID: 0 PID: 22021 Comm: syz.1.4555 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1073.522335][T22021] Tainted: [L]=SOFTLOCKUP
[ 1073.522344][T22021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1073.522360][T22021] Call Trace:
[ 1073.522368][T22021]  <TASK>
[ 1073.522378][T22021]  dump_stack_lvl+0x100/0x190
[ 1073.522422][T22021]  should_fail_ex.cold+0x5/0xa
[ 1073.522461][T22021]  _copy_from_user+0x2e/0xd0
[ 1073.522495][T22021]  snd_pcm_oss_write2+0x1c2/0x400
[ 1073.522532][T22021]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[ 1073.522565][T22021]  ? futex_wake+0x456/0x530
[ 1073.522612][T22021]  snd_pcm_oss_write+0x729/0xa30
[ 1073.522648][T22021]  ? security_file_permission+0x76/0x210
[ 1073.522688][T22021]  vfs_write+0x2aa/0x1070
[ 1073.522714][T22021]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[ 1073.522751][T22021]  ? __pfx_vfs_write+0x10/0x10
[ 1073.522774][T22021]  ? find_held_lock+0x2b/0x80
[ 1073.522799][T22021]  ? __fget_files+0x215/0x3d0
[ 1073.522824][T22021]  ? __fget_files+0x215/0x3d0
[ 1073.522853][T22021]  ? __fget_files+0x21f/0x3d0
[ 1073.522886][T22021]  ksys_write+0x12a/0x250
[ 1073.522911][T22021]  ? __pfx_ksys_write+0x10/0x10
[ 1073.522945][T22021]  do_syscall_64+0x106/0xf80
[ 1073.522969][T22021]  ? clear_bhb_loop+0x40/0x90
[ 1073.523000][T22021]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1073.523026][T22021] RIP: 0033:0x7fa5e619c799
[ 1073.523047][T22021] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1073.523073][T22021] RSP: 002b:00007fa5e6fd6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1073.523097][T22021] RAX: ffffffffffffffda RBX: 00007fa5e6416090 RCX: 00007fa5e619c799
[ 1073.523115][T22021] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[ 1073.523130][T22021] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1073.523146][T22021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1073.523162][T22021] R13: 00007fa5e6416128 R14: 00007fa5e6416090 R15: 00007ffe9ca96688
[ 1073.523194][T22021]  </TASK>
[ 1078.279602][T22071] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4568'.
[ 1078.361933][T22075] netlink: 13 bytes leftover after parsing attributes in process `syz.3.4568'.
[ 1079.862627][T22099] FAULT_INJECTION: forcing a failure.
[ 1079.862627][T22099] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1079.954832][T22099] CPU: 0 UID: 0 PID: 22099 Comm: syz.1.4574 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1079.954875][T22099] Tainted: [L]=SOFTLOCKUP
[ 1079.954885][T22099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1079.954900][T22099] Call Trace:
[ 1079.954908][T22099]  <TASK>
[ 1079.954919][T22099]  dump_stack_lvl+0x100/0x190
[ 1079.954962][T22099]  should_fail_ex.cold+0x5/0xa
[ 1079.954994][T22099]  _copy_from_user+0x2e/0xd0
[ 1079.955037][T22099]  snd_pcm_oss_write2+0x1c2/0x400
[ 1079.955074][T22099]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[ 1079.955116][T22099]  snd_pcm_oss_write+0x729/0xa30
[ 1079.955152][T22099]  ? security_file_permission+0x76/0x210
[ 1079.955193][T22099]  vfs_write+0x2aa/0x1070
[ 1079.955222][T22099]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[ 1079.955259][T22099]  ? __pfx_vfs_write+0x10/0x10
[ 1079.955282][T22099]  ? find_held_lock+0x2b/0x80
[ 1079.955307][T22099]  ? __fget_files+0x215/0x3d0
[ 1079.955332][T22099]  ? __fget_files+0x215/0x3d0
[ 1079.955362][T22099]  ? __fget_files+0x21f/0x3d0
[ 1079.955395][T22099]  ksys_write+0x12a/0x250
[ 1079.955420][T22099]  ? __pfx_ksys_write+0x10/0x10
[ 1079.955453][T22099]  do_syscall_64+0x106/0xf80
[ 1079.955477][T22099]  ? clear_bhb_loop+0x40/0x90
[ 1079.955508][T22099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1079.955535][T22099] RIP: 0033:0x7fa5e619c799
[ 1079.955555][T22099] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1079.955580][T22099] RSP: 002b:00007fa5e6fd6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1079.955604][T22099] RAX: ffffffffffffffda RBX: 00007fa5e6416090 RCX: 00007fa5e619c799
[ 1079.955621][T22099] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[ 1079.955637][T22099] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1079.955653][T22099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1079.955668][T22099] R13: 00007fa5e6416128 R14: 00007fa5e6416090 R15: 00007ffe9ca96688
[ 1079.955701][T22099]  </TASK>
[ 1080.750219][ T1119] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:10: bg 2: bad block bitmap checksum
[ 1080.796228][ T1119] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 1395 with max blocks 1 with error 74
[ 1080.836982][ T1119] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1080.836982][ T1119] 
[ 1081.325936][T22099] Process accounting paused
[ 1081.873625][T22123] FAULT_INJECTION: forcing a failure.
[ 1081.873625][T22123] name failslab, interval 1, probability 0, space 0, times 0
[ 1081.912187][T22123] CPU: 0 UID: 0 PID: 22123 Comm: syz.1.4580 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1081.912229][T22123] Tainted: [L]=SOFTLOCKUP
[ 1081.912238][T22123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1081.912255][T22123] Call Trace:
[ 1081.912264][T22123]  <TASK>
[ 1081.912275][T22123]  dump_stack_lvl+0x100/0x190
[ 1081.912319][T22123]  should_fail_ex.cold+0x5/0xa
[ 1081.912350][T22123]  should_failslab+0xc2/0x120
[ 1081.912378][T22123]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1081.912419][T22123]  ? ptlock_alloc+0x1f/0x70
[ 1081.912460][T22123]  ptlock_alloc+0x1f/0x70
[ 1081.912495][T22123]  pte_alloc_one+0x82/0x3d0
[ 1081.912526][T22123]  do_fault+0x88e/0x1990
[ 1081.912555][T22123]  ? __pmd_alloc+0x3fb/0x950
[ 1081.912589][T22123]  __handle_mm_fault+0x180f/0x2b60
[ 1081.912630][T22123]  ? mt_find+0x45e/0x8e0
[ 1081.912658][T22123]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1081.912693][T22123]  ? __pfx_mt_find+0x10/0x10
[ 1081.912735][T22123]  ? find_vma+0xbf/0x140
[ 1081.912760][T22123]  ? __pfx_find_vma+0x10/0x10
[ 1081.912789][T22123]  handle_mm_fault+0x36d/0xa20
[ 1081.912831][T22123]  do_user_addr_fault+0x74c/0x12f0
[ 1081.912865][T22123]  exc_page_fault+0x6f/0xd0
[ 1081.912915][T22123]  asm_exc_page_fault+0x26/0x30
[ 1081.912941][T22123] RIP: 0010:rep_movs_alternative+0x30/0x90
[ 1081.912975][T22123] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[ 1081.913000][T22123] RSP: 0018:ffffc900042d7b78 EFLAGS: 00050212
[ 1081.913021][T22123] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000022
[ 1081.913037][T22123] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc900042d7bd8
[ 1081.913052][T22123] RBP: 0000000000000022 R08: 0000000000000001 R09: fffff5200085af7f
[ 1081.913068][T22123] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[ 1081.913083][T22123] R13: ffffc900042d7bd8 R14: ffffc900042d7ca0 R15: ffffc900042d7bd8
[ 1081.913116][T22123]  _copy_from_user+0x98/0xd0
[ 1081.913150][T22123]  kstrtouint_from_user+0xd6/0x1d0
[ 1081.913192][T22123]  ? __pfx_kstrtouint_from_user+0x10/0x10
[ 1081.913232][T22123]  ? __lock_acquire+0x4a5/0x2630
[ 1081.913270][T22123]  ? lock_acquire+0x1cf/0x380
[ 1081.913310][T22123]  proc_fail_nth_write+0x83/0x220
[ 1081.913344][T22123]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1081.913385][T22123]  vfs_write+0x2aa/0x1070
[ 1081.913412][T22123]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1081.913448][T22123]  ? __pfx_vfs_write+0x10/0x10
[ 1081.913472][T22123]  ? __fget_files+0x215/0x3d0
[ 1081.913505][T22123]  ? __fget_files+0x21f/0x3d0
[ 1081.913538][T22123]  ksys_write+0x12a/0x250
[ 1081.913563][T22123]  ? __pfx_ksys_write+0x10/0x10
[ 1081.913597][T22123]  do_syscall_64+0x106/0xf80
[ 1081.913620][T22123]  ? clear_bhb_loop+0x40/0x90
[ 1081.913651][T22123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1081.913678][T22123] RIP: 0033:0x7fa5e619c799
[ 1081.913698][T22123] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1081.913723][T22123] RSP: 002b:00007fa5e6ff7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1081.913746][T22123] RAX: ffffffffffffffda RBX: 00007fa5e6415fa0 RCX: 00007fa5e619c799
[ 1081.913763][T22123] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[ 1081.913779][T22123] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1081.913795][T22123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1081.913811][T22123] R13: 00007fa5e6416038 R14: 00007fa5e6415fa0 R15: 00007ffe9ca96688
[ 1081.913844][T22123]  </TASK>
[ 1084.602937][T22135] random: crng reseeded on system resumption
[ 1086.808799][T22160] FAULT_INJECTION: forcing a failure.
[ 1086.808799][T22160] name failslab, interval 1, probability 0, space 0, times 0
[ 1086.912083][T22160] CPU: 0 UID: 0 PID: 22160 Comm: syz.3.4587 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1086.912128][T22160] Tainted: [L]=SOFTLOCKUP
[ 1086.912137][T22160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1086.912153][T22160] Call Trace:
[ 1086.912161][T22160]  <TASK>
[ 1086.912171][T22160]  dump_stack_lvl+0x100/0x190
[ 1086.912215][T22160]  should_fail_ex.cold+0x5/0xa
[ 1086.912247][T22160]  should_failslab+0xc2/0x120
[ 1086.912275][T22160]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1086.912311][T22160]  ? trace_pid_list_alloc+0x232/0x480
[ 1086.912358][T22160]  trace_pid_list_alloc+0x232/0x480
[ 1086.912403][T22160]  trace_pid_write+0x110/0x460
[ 1086.912445][T22160]  ? __pfx_trace_pid_write+0x10/0x10
[ 1086.912505][T22160]  event_pid_write.isra.0+0x1e4/0x800
[ 1086.912533][T22160]  ? __pfx_event_pid_write.isra.0+0x10/0x10
[ 1086.912568][T22160]  vfs_write+0x2aa/0x1070
[ 1086.912594][T22160]  ? __pfx_ftrace_event_npid_write+0x10/0x10
[ 1086.912632][T22160]  ? __pfx_vfs_write+0x10/0x10
[ 1086.912657][T22160]  ? __fget_files+0x215/0x3d0
[ 1086.912689][T22160]  ? __fget_files+0x21f/0x3d0
[ 1086.912722][T22160]  ksys_write+0x12a/0x250
[ 1086.912747][T22160]  ? __pfx_ksys_write+0x10/0x10
[ 1086.912780][T22160]  do_syscall_64+0x106/0xf80
[ 1086.912804][T22160]  ? clear_bhb_loop+0x40/0x90
[ 1086.912836][T22160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1086.912862][T22160] RIP: 0033:0x7fc40ed9c799
[ 1086.912883][T22160] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1086.912908][T22160] RSP: 002b:00007fc40fbca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1086.912932][T22160] RAX: ffffffffffffffda RBX: 00007fc40f015fa0 RCX: 00007fc40ed9c799
[ 1086.912949][T22160] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[ 1086.912965][T22160] RBP: 00007fc40ee32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1086.912980][T22160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1086.912996][T22160] R13: 00007fc40f016038 R14: 00007fc40f015fa0 R15: 00007ffd9dbbce08
[ 1086.913029][T22160]  </TASK>
[ 1091.460199][T22200] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1094.068366][T22243] FAULT_INJECTION: forcing a failure.
[ 1094.068366][T22243] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1094.163031][T22243] CPU: 0 UID: 0 PID: 22243 Comm: syz.1.4603 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1094.163073][T22243] Tainted: [L]=SOFTLOCKUP
[ 1094.163083][T22243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1094.163100][T22243] Call Trace:
[ 1094.163108][T22243]  <TASK>
[ 1094.163118][T22243]  dump_stack_lvl+0x100/0x190
[ 1094.163161][T22243]  should_fail_ex.cold+0x5/0xa
[ 1094.163192][T22243]  _copy_from_user+0x2e/0xd0
[ 1094.163226][T22243]  snd_pcm_oss_write2+0x1c2/0x400
[ 1094.163263][T22243]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[ 1094.163306][T22243]  snd_pcm_oss_write+0x729/0xa30
[ 1094.163352][T22243]  ? security_file_permission+0x76/0x210
[ 1094.163394][T22243]  vfs_write+0x2aa/0x1070
[ 1094.163420][T22243]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[ 1094.163457][T22243]  ? __pfx_vfs_write+0x10/0x10
[ 1094.163480][T22243]  ? find_held_lock+0x2b/0x80
[ 1094.163505][T22243]  ? __fget_files+0x215/0x3d0
[ 1094.163529][T22243]  ? __fget_files+0x215/0x3d0
[ 1094.163559][T22243]  ? __fget_files+0x21f/0x3d0
[ 1094.163591][T22243]  ksys_write+0x12a/0x250
[ 1094.163616][T22243]  ? __pfx_ksys_write+0x10/0x10
[ 1094.163649][T22243]  do_syscall_64+0x106/0xf80
[ 1094.163674][T22243]  ? clear_bhb_loop+0x40/0x90
[ 1094.163712][T22243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1094.163739][T22243] RIP: 0033:0x7fa5e619c799
[ 1094.163760][T22243] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1094.163786][T22243] RSP: 002b:00007fa5e6fb5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1094.163810][T22243] RAX: ffffffffffffffda RBX: 00007fa5e6416180 RCX: 00007fa5e619c799
[ 1094.163828][T22243] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[ 1094.163843][T22243] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1094.163859][T22243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1094.163874][T22243] R13: 00007fa5e6416218 R14: 00007fa5e6416180 R15: 00007ffe9ca96688
[ 1094.163907][T22243]  </TASK>
[ 1095.808483][T13297] Bluetooth: hci3: ACL packet too small
[ 1097.693461][T22272] Process accounting paused
[ 1106.240071][T22412] FAULT_INJECTION: forcing a failure.
[ 1106.240071][T22412] name failslab, interval 1, probability 0, space 0, times 0
[ 1106.435068][T22412] CPU: 0 UID: 0 PID: 22412 Comm: syz.3.4641 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1106.435109][T22412] Tainted: [L]=SOFTLOCKUP
[ 1106.435118][T22412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1106.435135][T22412] Call Trace:
[ 1106.435144][T22412]  <TASK>
[ 1106.435154][T22412]  dump_stack_lvl+0x100/0x190
[ 1106.435203][T22412]  should_fail_ex.cold+0x5/0xa
[ 1106.435234][T22412]  should_failslab+0xc2/0x120
[ 1106.435262][T22412]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1106.435302][T22412]  ? __proc_create+0x2cb/0x8c0
[ 1106.435334][T22412]  __proc_create+0x2cb/0x8c0
[ 1106.435360][T22412]  ? __pfx___proc_create+0x10/0x10
[ 1106.435396][T22412]  proc_create_reg+0x75/0x170
[ 1106.435432][T22412]  proc_create_net_data+0x8e/0x1c0
[ 1106.435459][T22412]  ? __pfx_proc_create_net_data+0x10/0x10
[ 1106.435485][T22412]  ? net_generic+0xea/0x2a0
[ 1106.435515][T22412]  ? __pfx_phonet_init_net+0x10/0x10
[ 1106.435540][T22412]  phonet_init_net+0x66/0x120
[ 1106.435565][T22412]  ops_init+0x1e2/0x5f0
[ 1106.435593][T22412]  setup_net+0x118/0x3a0
[ 1106.435617][T22412]  ? __pfx_setup_net+0x10/0x10
[ 1106.435639][T22412]  ? lockdep_init_map_type+0x5c/0x250
[ 1106.435677][T22412]  ? mutex_init_lockep+0x110/0x150
[ 1106.435718][T22412]  copy_net_ns+0x46f/0x7c0
[ 1106.435748][T22412]  create_new_namespaces+0x3ea/0xac0
[ 1106.435782][T22412]  unshare_nsproxy_namespaces+0xc3/0x1f0
[ 1106.435814][T22412]  ksys_unshare+0x473/0xad0
[ 1106.435849][T22412]  ? __pfx_ksys_unshare+0x10/0x10
[ 1106.435894][T22412]  __x64_sys_unshare+0x31/0x40
[ 1106.435927][T22412]  do_syscall_64+0x106/0xf80
[ 1106.435950][T22412]  ? clear_bhb_loop+0x40/0x90
[ 1106.435981][T22412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1106.436007][T22412] RIP: 0033:0x7fc40ed9c799
[ 1106.436029][T22412] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1106.436057][T22412] RSP: 002b:00007fc40fbca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1106.436081][T22412] RAX: ffffffffffffffda RBX: 00007fc40f015fa0 RCX: 00007fc40ed9c799
[ 1106.436098][T22412] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1106.436114][T22412] RBP: 00007fc40ee32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1106.436129][T22412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1106.436145][T22412] R13: 00007fc40f016038 R14: 00007fc40f015fa0 R15: 00007ffd9dbbce08
[ 1106.436177][T22412]  </TASK>
[ 1107.883925][T22431] syz.3.4643: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1108.030228][T13297] Bluetooth: hci1: ACL packet too small
[ 1108.100866][T22431] CPU: 0 UID: 0 PID: 22431 Comm: syz.3.4643 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1108.100906][T22431] Tainted: [L]=SOFTLOCKUP
[ 1108.100916][T22431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1108.100932][T22431] Call Trace:
[ 1108.100941][T22431]  <TASK>
[ 1108.100952][T22431]  dump_stack_lvl+0x100/0x190
[ 1108.100995][T22431]  warn_alloc.cold+0x95/0x1c1
[ 1108.101040][T22431]  ? __pfx_warn_alloc+0x10/0x10
[ 1108.101083][T22431]  ? __lock_acquire+0x4a5/0x2630
[ 1108.101133][T22431]  __vmalloc_node_range_noprof+0x1252/0x1530
[ 1108.101170][T22431]  ? rcu_is_watching+0x12/0xc0
[ 1108.101220][T22431]  ? trace_contention_end+0x140/0x180
[ 1108.101258][T22431]  ? dvb_dvr_do_ioctl+0x15d/0x270
[ 1108.101290][T22431]  ? dvb_dvr_do_ioctl+0x7e/0x270
[ 1108.101317][T22431]  ? tomoyo_path_number_perm+0x28f/0x580
[ 1108.101348][T22431]  ? tomoyo_path_number_perm+0x28f/0x580
[ 1108.101381][T22431]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1108.101415][T22431]  ? __pfx___mutex_lock+0x10/0x10
[ 1108.101447][T22431]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1108.101477][T22431]  ? futex_wake+0x1ad/0x530
[ 1108.101521][T22431]  ? dvb_dvr_do_ioctl+0x15d/0x270
[ 1108.101549][T22431]  __vmalloc_node_noprof+0xad/0xf0
[ 1108.101583][T22431]  ? dvb_dvr_do_ioctl+0x15d/0x270
[ 1108.101614][T22431]  dvb_dvr_do_ioctl+0x15d/0x270
[ 1108.101647][T22431]  dvb_usercopy+0x167/0x340
[ 1108.101673][T22431]  ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[ 1108.101703][T22431]  ? __pfx_dvb_usercopy+0x10/0x10
[ 1108.101740][T22431]  ? __fget_files+0x21f/0x3d0
[ 1108.101771][T22431]  dvb_dvr_ioctl+0x29/0x40
[ 1108.101797][T22431]  ? __pfx_dvb_dvr_ioctl+0x10/0x10
[ 1108.101824][T22431]  __x64_sys_ioctl+0x18e/0x210
[ 1108.101866][T22431]  do_syscall_64+0x106/0xf80
[ 1108.101888][T22431]  ? clear_bhb_loop+0x40/0x90
[ 1108.101920][T22431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1108.101946][T22431] RIP: 0033:0x7fc40ed9c799
[ 1108.101967][T22431] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1108.101993][T22431] RSP: 002b:00007fc40fba9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1108.102017][T22431] RAX: ffffffffffffffda RBX: 00007fc40f016090 RCX: 00007fc40ed9c799
[ 1108.102035][T22431] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000005
[ 1108.102051][T22431] RBP: 00007fc40ee32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1108.102067][T22431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1108.102082][T22431] R13: 00007fc40f016128 R14: 00007fc40f016090 R15: 00007ffd9dbbce08
[ 1108.102114][T22431]  </TASK>
[ 1108.102124][T22431] Mem-Info:
[ 1108.658748][T22434] FAULT_INJECTION: forcing a failure.
[ 1108.658748][T22434] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1108.709513][T22434] CPU: 0 UID: 0 PID: 22434 Comm: syz.1.4644 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1108.709553][T22434] Tainted: [L]=SOFTLOCKUP
[ 1108.709562][T22434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1108.709581][T22434] Call Trace:
[ 1108.709589][T22434]  <TASK>
[ 1108.709599][T22434]  dump_stack_lvl+0x100/0x190
[ 1108.709641][T22434]  should_fail_ex.cold+0x5/0xa
[ 1108.709666][T22434]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1108.709698][T22434]  should_fail_alloc_page+0xeb/0x140
[ 1108.709727][T22434]  prepare_alloc_pages+0x1f0/0x5f0
[ 1108.709761][T22434]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[ 1108.709806][T22434]  ? __lock_acquire+0x4a5/0x2630
[ 1108.709839][T22434]  ? find_held_lock+0x2b/0x80
[ 1108.709862][T22434]  ? trace_ignore_this_task+0xbc/0x100
[ 1108.709900][T22434]  ? trace_ignore_this_task+0xbc/0x100
[ 1108.709943][T22434]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1108.709987][T22434]  ? __pfx_css_rstat_updated+0x10/0x10
[ 1108.710018][T22434]  ? mark_lock+0x9b0/0xa20
[ 1108.710053][T22434]  ? lock_acquire+0x1cf/0x380
[ 1108.710085][T22434]  ? find_held_lock+0x2b/0x80
[ 1108.710109][T22434]  ? page_table_check_set+0x49a/0xa10
[ 1108.710134][T22434]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1108.710161][T22434]  ? policy_nodemask+0xed/0x4f0
[ 1108.710191][T22434]  alloc_pages_mpol+0x1fb/0x550
[ 1108.710220][T22434]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1108.710254][T22434]  folio_alloc_mpol_noprof+0x36/0x340
[ 1108.710327][T22434]  vma_alloc_folio_noprof+0xed/0x1d0
[ 1108.710359][T22434]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1108.710400][T22434]  do_anonymous_page+0xb3a/0x1fb0
[ 1108.710446][T22434]  __handle_mm_fault+0x1d42/0x2b60
[ 1108.710490][T22434]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1108.710526][T22434]  ? pte_offset_map_lock+0x174/0x320
[ 1108.710553][T22434]  ? find_held_lock+0x2b/0x80
[ 1108.710586][T22434]  ? follow_page_pte+0x5b3/0x1400
[ 1108.710620][T22434]  handle_mm_fault+0x36d/0xa20
[ 1108.710661][T22434]  __get_user_pages+0xf9c/0x34d0
[ 1108.710700][T22434]  ? __pfx___get_user_pages+0x10/0x10
[ 1108.710738][T22434]  populate_vma_page_range+0x267/0x3f0
[ 1108.710771][T22434]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1108.710802][T22434]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1108.710831][T22434]  ? do_mmap+0x93f/0x12f0
[ 1108.710861][T22434]  __mm_populate+0x107/0x3a0
[ 1108.710893][T22434]  ? __pfx___mm_populate+0x10/0x10
[ 1108.710926][T22434]  ? up_write+0x290/0x4f0
[ 1108.710965][T22434]  vm_mmap_pgoff+0x37f/0x470
[ 1108.710998][T22434]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1108.711028][T22434]  ? do_futex+0x192/0x350
[ 1108.711061][T22434]  ? __pfx_do_futex+0x10/0x10
[ 1108.711099][T22434]  ksys_mmap_pgoff+0xe1/0x650
[ 1108.711126][T22434]  ? __x64_sys_futex+0x34f/0x4d0
[ 1108.711158][T22434]  ? __x64_sys_futex+0x358/0x4d0
[ 1108.711191][T22434]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 1108.711219][T22434]  ? xfd_validate_state+0x129/0x190
[ 1108.711261][T22434]  __x64_sys_mmap+0x125/0x190
[ 1108.711310][T22434]  do_syscall_64+0x106/0xf80
[ 1108.711332][T22434]  ? clear_bhb_loop+0x40/0x90
[ 1108.711362][T22434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1108.711388][T22434] RIP: 0033:0x7fa5e619c799
[ 1108.711408][T22434] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1108.711431][T22434] RSP: 002b:00007fa5e6fd6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1108.711454][T22434] RAX: ffffffffffffffda RBX: 00007fa5e6416090 RCX: 00007fa5e619c799
[ 1108.711471][T22434] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1108.711486][T22434] RBP: 00007fa5e6232c99 R08: ffffffffffffffff R09: 0000000000000000
[ 1108.711501][T22434] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1108.711516][T22434] R13: 00007fa5e6416128 R14: 00007fa5e6416090 R15: 00007ffe9ca96688
[ 1108.711548][T22434]  </TASK>
[ 1109.513483][T22431] active_anon:20133 inactive_anon:22299 isolated_anon:0
[ 1109.513483][T22431]  active_file:20384 inactive_file:38853 isolated_file:0
[ 1109.513483][T22431]  unevictable:768 dirty:726 writeback:0
[ 1109.513483][T22431]  slab_reclaimable:12233 slab_unreclaimable:97943
[ 1109.513483][T22431]  mapped:28341 shmem:25329 pagetables:1459
[ 1109.513483][T22431]  sec_pagetables:0 bounce:0
[ 1109.513483][T22431]  kernel_misc_reclaimable:0
[ 1109.513483][T22431]  free:1282478 free_pcp:11146 free_cma:0
[ 1109.621493][T22431] Node 0 active_anon:80532kB inactive_anon:89196kB active_file:81168kB inactive_file:155276kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:113156kB dirty:2896kB writeback:0kB shmem:99780kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11488kB pagetables:5672kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1109.665104][T22431] Node 1 active_anon:0kB inactive_anon:0kB active_file:368kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:208kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:96kB pagetables:164kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1109.695863][T22431] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1109.815361][T22431] lowmem_reserve[]: 0 2477 2478 2478 2478
[ 1109.825064][T22431] Node 0 DMA32 free:1172556kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB free_highatomic:0KB active_anon:86692kB inactive_anon:89196kB active_file:81168kB inactive_file:155276kB unevictable:1536kB writepending:2896kB zspages:696kB present:3129332kB managed:2537300kB mlocked:0kB bounce:0kB free_pcp:33080kB local_pcp:33080kB free_cma:0kB
[ 1109.903900][T22431] lowmem_reserve[]: 0 0 1 1 1
[ 1109.913440][T22431] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1056kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[ 1110.193854][T22431] lowmem_reserve[]: 0 0 0 0 0
[ 1110.198678][T22431] Node 1 Normal free:3942036kB boost:0kB min:55584kB low:69480kB high:83376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:368kB inactive_file:136kB unevictable:1536kB writepending:8kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:4628kB local_pcp:4628kB free_cma:0kB
[ 1110.621760][T22431] lowmem_reserve[]: 0 0 0 0 0
[ 1110.683396][T22431] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1110.799671][T22431] Node 0 DMA32: 4606*4kB (UME) 4346*8kB (UME) 2480*16kB (UME) 1252*32kB (UME) 1031*64kB (UME) 990*128kB (UME) 609*256kB (UME) 360*512kB (UME) 184*1024kB (UME) 4*2048kB (UME) 74*4096kB (UM) = 1165576kB
[ 1110.952699][T22431] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[ 1111.081651][T22431] Node 1 Normal: 7*4kB (UM) 21*8kB (UM) 9*16kB (UM) 20*32kB (UM) 13*64kB (UM) 15*128kB (UM) 6*256kB (UM) 7*512kB (UM) 5*1024kB (UM) 6*2048kB (UM) 956*4096kB (UM) = 3942036kB
[ 1111.248039][T22431] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1111.357724][T22431] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[ 1111.443054][T22431] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1111.520916][T22431] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[ 1111.605135][T22431] 75340 total pagecache pages
[ 1111.661299][T22431] 79 pages in swap cache
[ 1111.701054][T22431] Free swap  = 120064kB
[ 1111.749512][T22431] Total swap = 124996kB
[ 1111.799844][T22431] 2097051 pages RAM
[ 1111.851351][T22431] 0 pages HighMem/MovableOnly
[ 1111.892700][T22431] 430847 pages reserved
[ 1111.947405][T22434] Process accounting resumed
[ 1111.976141][T22431] 0 pages cma reserved
[ 1116.120875][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.127246][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1119.360933][T22561] input: f¬
 as /devices/virtual/input/input23
[ 1119.595545][T22570] netlink: 17 bytes leftover after parsing attributes in process `syz.1.4676'.
[ 1119.652671][T22570] netlink: 2 bytes leftover after parsing attributes in process `syz.1.4676'.
[ 1123.006297][T22614] FAULT_INJECTION: forcing a failure.
[ 1123.006297][T22614] name failslab, interval 1, probability 0, space 0, times 0
[ 1123.162957][T22614] CPU: 0 UID: 0 PID: 22614 Comm: syz.1.4686 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1123.162999][T22614] Tainted: [L]=SOFTLOCKUP
[ 1123.163009][T22614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1123.163024][T22614] Call Trace:
[ 1123.163033][T22614]  <TASK>
[ 1123.163043][T22614]  dump_stack_lvl+0x100/0x190
[ 1123.163087][T22614]  should_fail_ex.cold+0x5/0xa
[ 1123.163118][T22614]  ? cache_create_net+0xa2/0x1f0
[ 1123.163158][T22614]  should_failslab+0xc2/0x120
[ 1123.163186][T22614]  __kmalloc_noprof+0xe0/0x850
[ 1123.163232][T22614]  cache_create_net+0xa2/0x1f0
[ 1123.163284][T22614]  gss_svc_init_net+0x11f/0x640
[ 1123.163323][T22614]  ? __pfx_canbcm_pernet_init+0x10/0x10
[ 1123.163350][T22614]  ? __pfx_rpcsec_gss_init_net+0x10/0x10
[ 1123.163392][T22614]  ops_init+0x1e2/0x5f0
[ 1123.163419][T22614]  setup_net+0x118/0x3a0
[ 1123.163443][T22614]  ? __pfx_setup_net+0x10/0x10
[ 1123.163466][T22614]  ? lockdep_init_map_type+0x5c/0x250
[ 1123.163504][T22614]  ? mutex_init_lockep+0x110/0x150
[ 1123.163545][T22614]  copy_net_ns+0x46f/0x7c0
[ 1123.163575][T22614]  create_new_namespaces+0x3ea/0xac0
[ 1123.163611][T22614]  unshare_nsproxy_namespaces+0xc3/0x1f0
[ 1123.163642][T22614]  ksys_unshare+0x473/0xad0
[ 1123.163678][T22614]  ? __pfx_ksys_unshare+0x10/0x10
[ 1123.163722][T22614]  __x64_sys_unshare+0x31/0x40
[ 1123.163755][T22614]  do_syscall_64+0x106/0xf80
[ 1123.163778][T22614]  ? clear_bhb_loop+0x40/0x90
[ 1123.163810][T22614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1123.163837][T22614] RIP: 0033:0x7fa5e619c799
[ 1123.163858][T22614] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1123.163883][T22614] RSP: 002b:00007fa5e6fd6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1123.163907][T22614] RAX: ffffffffffffffda RBX: 00007fa5e6416090 RCX: 00007fa5e619c799
[ 1123.163925][T22614] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1123.163941][T22614] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1123.163956][T22614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1123.163972][T22614] R13: 00007fa5e6416128 R14: 00007fa5e6416090 R15: 00007ffe9ca96688
[ 1123.164006][T22614]  </TASK>
[ 1123.759577][T22619] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4688'.
[ 1123.823197][T22622] netlink: 354 bytes leftover after parsing attributes in process `syz.2.4688'.
[ 1125.313873][T22635] FAULT_INJECTION: forcing a failure.
[ 1125.313873][T22635] name failslab, interval 1, probability 0, space 0, times 0
[ 1125.410229][T22635] CPU: 0 UID: 0 PID: 22635 Comm: syz.3.4692 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1125.410271][T22635] Tainted: [L]=SOFTLOCKUP
[ 1125.410281][T22635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1125.410297][T22635] Call Trace:
[ 1125.410306][T22635]  <TASK>
[ 1125.410316][T22635]  dump_stack_lvl+0x100/0x190
[ 1125.410360][T22635]  should_fail_ex.cold+0x5/0xa
[ 1125.410391][T22635]  ? ops_init+0x77/0x5f0
[ 1125.410413][T22635]  should_failslab+0xc2/0x120
[ 1125.410441][T22635]  __kmalloc_noprof+0xe0/0x850
[ 1125.410483][T22635]  ? __raw_spin_lock_init+0x3a/0x110
[ 1125.410527][T22635]  ops_init+0x77/0x5f0
[ 1125.410553][T22635]  setup_net+0x118/0x3a0
[ 1125.410577][T22635]  ? __pfx_setup_net+0x10/0x10
[ 1125.410600][T22635]  ? lockdep_init_map_type+0x5c/0x250
[ 1125.410636][T22635]  ? mutex_init_lockep+0x110/0x150
[ 1125.410677][T22635]  copy_net_ns+0x46f/0x7c0
[ 1125.410707][T22635]  create_new_namespaces+0x3ea/0xac0
[ 1125.410742][T22635]  unshare_nsproxy_namespaces+0xc3/0x1f0
[ 1125.410774][T22635]  ksys_unshare+0x473/0xad0
[ 1125.410809][T22635]  ? __pfx_ksys_unshare+0x10/0x10
[ 1125.410853][T22635]  __x64_sys_unshare+0x31/0x40
[ 1125.410887][T22635]  do_syscall_64+0x106/0xf80
[ 1125.410910][T22635]  ? clear_bhb_loop+0x40/0x90
[ 1125.410942][T22635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1125.410968][T22635] RIP: 0033:0x7fc40ed9c799
[ 1125.410989][T22635] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1125.411014][T22635] RSP: 002b:00007fc40fbca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1125.411038][T22635] RAX: ffffffffffffffda RBX: 00007fc40f015fa0 RCX: 00007fc40ed9c799
[ 1125.411055][T22635] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1125.411071][T22635] RBP: 00007fc40ee32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1125.411087][T22635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1125.411103][T22635] R13: 00007fc40f016038 R14: 00007fc40f015fa0 R15: 00007ffd9dbbce08
[ 1125.411142][T22635]  </TASK>
[ 1125.970827][T22642] FAULT_INJECTION: forcing a failure.
[ 1125.970827][T22642] name failslab, interval 1, probability 0, space 0, times 0
[ 1126.005143][T22642] CPU: 0 UID: 0 PID: 22642 Comm: syz.0.4693 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1126.005184][T22642] Tainted: [L]=SOFTLOCKUP
[ 1126.005194][T22642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1126.005210][T22642] Call Trace:
[ 1126.005219][T22642]  <TASK>
[ 1126.005229][T22642]  dump_stack_lvl+0x100/0x190
[ 1126.005273][T22642]  should_fail_ex.cold+0x5/0xa
[ 1126.005304][T22642]  should_failslab+0xc2/0x120
[ 1126.005333][T22642]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1126.005369][T22642]  ? trace_pid_list_alloc+0x232/0x480
[ 1126.005416][T22642]  trace_pid_list_alloc+0x232/0x480
[ 1126.005462][T22642]  trace_pid_write+0x110/0x460
[ 1126.005504][T22642]  ? __pfx_trace_pid_write+0x10/0x10
[ 1126.005562][T22642]  event_pid_write.isra.0+0x1e4/0x800
[ 1126.005590][T22642]  ? __pfx_event_pid_write.isra.0+0x10/0x10
[ 1126.005626][T22642]  vfs_write+0x2aa/0x1070
[ 1126.005652][T22642]  ? __pfx_ftrace_event_npid_write+0x10/0x10
[ 1126.005682][T22642]  ? __pfx_vfs_write+0x10/0x10
[ 1126.005706][T22642]  ? __fget_files+0x215/0x3d0
[ 1126.005737][T22642]  ? __fget_files+0x21f/0x3d0
[ 1126.005771][T22642]  ksys_write+0x12a/0x250
[ 1126.005795][T22642]  ? __pfx_ksys_write+0x10/0x10
[ 1126.005829][T22642]  do_syscall_64+0x106/0xf80
[ 1126.005853][T22642]  ? clear_bhb_loop+0x40/0x90
[ 1126.005884][T22642]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1126.005911][T22642] RIP: 0033:0x7f215199c799
[ 1126.005932][T22642] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1126.005957][T22642] RSP: 002b:00007f2152872028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1126.005981][T22642] RAX: ffffffffffffffda RBX: 00007f2151c15fa0 RCX: 00007f215199c799
[ 1126.005998][T22642] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[ 1126.006014][T22642] RBP: 00007f2151a32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1126.006030][T22642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1126.006046][T22642] R13: 00007f2151c16038 R14: 00007f2151c15fa0 R15: 00007ffc69055f88
[ 1126.006079][T22642]  </TASK>
[ 1126.736087][T22645] can: request_module (can-proto-5) failed.
[ 1126.843581][T22645] netlink: 186 bytes leftover after parsing attributes in process `syz.1.4694'.
[ 1127.745683][T22663] Process accounting resumed
[ 1131.075688][T22714] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4708'.
[ 1131.114586][T22714] netlink: 13 bytes leftover after parsing attributes in process `syz.1.4708'.
[ 1132.704131][T22731] : Can't lookup blockdev
[ 1134.063154][T22757] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4720'.
[ 1134.107147][T22757] vcan0: entered promiscuous mode
[ 1146.079508][   T30] audit: type=1800 audit(4294986020.920:18): pid=22850 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4742" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[ 1146.828896][T22821] Process accounting paused
[ 1147.333302][T22856] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4744'.
[ 1147.418436][T22856] mac80211_hwsim hwsim15 wlan1: entered promiscuous mode
[ 1147.496514][T22856] mac80211_hwsim hwsim15 wlan1: entered allmulticast mode
[ 1149.631348][T13297] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[ 1149.666853][T22882] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4751'.
[ 1149.982560][T22882] team0: Port device team_slave_1 removed
[ 1150.825656][T22893] : Can't lookup blockdev
[ 1151.307243][T22899] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4755'.
[ 1155.982102][T22971] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4765'.
[ 1156.020374][T22971] netlink: 13 bytes leftover after parsing attributes in process `syz.1.4765'.
[ 1157.802105][T22984] Process accounting paused
[ 1159.684547][T23022] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4780'.
[ 1159.742159][T23022] team0: Port device team_slave_1 removed
[ 1160.869130][T23046] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 2, inode_bitmap = 139
[ 1160.973935][T23046] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 1: bad block bitmap checksum
[ 1161.750589][T20595] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1161.765078][T20595] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1161.774022][T20595] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1161.784473][T20595] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1161.799880][T20595] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1162.905159][T23067] chnl_net:caif_netlink_parms(): no params data found
[ 1163.248167][T23067] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1163.297550][T23067] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1163.330946][T23067] bridge_slave_0: entered allmulticast mode
[ 1163.374031][T23067] bridge_slave_0: entered promiscuous mode
[ 1163.400182][T23067] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1163.442595][T23067] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1163.482246][T23067] bridge_slave_1: entered allmulticast mode
[ 1163.519776][T23067] bridge_slave_1: entered promiscuous mode
[ 1163.798229][T23067] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1163.874854][T13297] Bluetooth: hci0: command tx timeout
[ 1163.921025][T23067] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1164.177719][T23067] team0: Port device team_slave_0 added
[ 1164.233035][T23067] team0: Port device team_slave_1 added
[ 1164.384500][T23067] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1164.434605][T23067] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1164.583613][T23067] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1164.649786][T23067] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1164.682344][T23067] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1164.793723][T23067] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1165.098064][T23067] hsr_slave_0: entered promiscuous mode
[ 1165.155197][T23067] hsr_slave_1: entered promiscuous mode
[ 1165.200452][T23067] debugfs: 'hsr0' already exists in 'hsr'
[ 1165.237936][T23067] Cannot create hsr debugfs directory
[ 1165.949734][T13297] Bluetooth: hci0: command tx timeout
[ 1166.194046][T23123] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4794'.
[ 1166.285505][T23123] bond0: entered promiscuous mode
[ 1166.592372][T23067] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1166.683069][T23067] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1166.760829][T23067] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1166.819516][T23067] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1166.965448][T23132] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4795'.
[ 1167.026406][T23132] netlink: 'syz.1.4795': attribute type 1 has an invalid length.
[ 1167.082981][T23132] netlink: 'syz.1.4795': attribute type 6 has an invalid length.
[ 1167.235049][T23067] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1167.345487][T23067] 8021q: adding VLAN 0 to HW filter on device team0
[ 1167.417459][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1167.424801][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1167.540964][  T105] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1167.548193][  T105] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1168.035760][T13297] Bluetooth: hci0: command tx timeout
[ 1168.388226][T23067] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1169.103222][T23067] veth0_vlan: entered promiscuous mode
[ 1169.127239][T23067] veth1_vlan: entered promiscuous mode
[ 1169.195843][T23067] veth0_macvtap: entered promiscuous mode
[ 1169.221548][T23067] veth1_macvtap: entered promiscuous mode
[ 1169.262918][T23067] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1169.291689][T23067] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1169.335987][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1169.364010][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1169.402703][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1169.442707][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1169.569550][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1169.577432][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1169.684125][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1169.700399][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1169.935881][T23160] netlink: zone id is out of range
[ 1169.963719][T23160] netlink: zone id is out of range
[ 1169.982841][T23160] netlink: zone id is out of range
[ 1170.004564][T23163] netlink: 25 bytes leftover after parsing attributes in process `syz.4.4785'.
[ 1170.042318][T23160] netlink: zone id is out of range
[ 1170.070441][T23167] netlink: zone id is out of range
[ 1170.090259][T23160] netlink: zone id is out of range
[ 1170.111897][T13297] Bluetooth: hci0: command tx timeout
[ 1170.133092][T23167] netlink: zone id is out of range
[ 1170.138282][T23167] netlink: zone id is out of range
[ 1170.200817][T23160] netlink: zone id is out of range
[ 1170.222274][T23160] netlink: zone id is out of range
[ 1171.270344][T23181] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4802'.
[ 1171.472795][T23181] team0: Port device team_slave_1 removed
[ 1173.996666][T23231] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1174.010828][T23225] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4816'.
[ 1174.050435][T23225] netlink: 13 bytes leftover after parsing attributes in process `syz.1.4816'.
[ 1176.893630][T23270] FAULT_INJECTION: forcing a failure.
[ 1176.893630][T23270] name failslab, interval 1, probability 0, space 0, times 0
[ 1176.985600][T23270] CPU: 0 UID: 0 PID: 23270 Comm: syz.1.4827 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1176.985642][T23270] Tainted: [L]=SOFTLOCKUP
[ 1176.985651][T23270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1176.985668][T23270] Call Trace:
[ 1176.985676][T23270]  <TASK>
[ 1176.985686][T23270]  dump_stack_lvl+0x100/0x190
[ 1176.985748][T23270]  should_fail_ex.cold+0x5/0xa
[ 1176.985779][T23270]  should_failslab+0xc2/0x120
[ 1176.985808][T23270]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1176.985856][T23270]  ? sctp_endpoint_new+0xfc/0xb20
[ 1176.985882][T23270]  ? __debug_object_init+0x2de/0x3d0
[ 1176.985913][T23270]  sctp_endpoint_new+0xfc/0xb20
[ 1176.985942][T23270]  ? __pfx_sctp_endpoint_new+0x10/0x10
[ 1176.985968][T23270]  ? lockdep_init_map_type+0x5c/0x250
[ 1176.986007][T23270]  ? lockdep_init_map_type+0x5c/0x250
[ 1176.986047][T23270]  sctp_init_sock+0xe2b/0x1300
[ 1176.986071][T23270]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[ 1176.986096][T23270]  sctp_v6_init_sock+0x16/0x70
[ 1176.986119][T23270]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[ 1176.986143][T23270]  inet6_create+0xb21/0x12b0
[ 1176.986186][T23270]  ? inet6_create+0x7f/0x12b0
[ 1176.986230][T23270]  __sock_create+0x339/0x860
[ 1176.986267][T23270]  inet_ctl_sock_create+0x94/0x230
[ 1176.986298][T23270]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[ 1176.986328][T23270]  ? timer_init_key+0x150/0x340
[ 1176.986361][T23270]  ? __pfx_sctp_ctrlsock_init+0x10/0x10
[ 1176.986401][T23270]  sctp_ctrlsock_init+0x40/0xd0
[ 1176.986440][T23270]  ops_init+0x1e2/0x5f0
[ 1176.986466][T23270]  setup_net+0x118/0x3a0
[ 1176.986490][T23270]  ? __pfx_setup_net+0x10/0x10
[ 1176.986513][T23270]  ? lockdep_init_map_type+0x5c/0x250
[ 1176.986548][T23270]  ? mutex_init_lockep+0x110/0x150
[ 1176.986589][T23270]  copy_net_ns+0x46f/0x7c0
[ 1176.986619][T23270]  create_new_namespaces+0x3ea/0xac0
[ 1176.986653][T23270]  unshare_nsproxy_namespaces+0xc3/0x1f0
[ 1176.986685][T23270]  ksys_unshare+0x473/0xad0
[ 1176.986720][T23270]  ? __pfx_ksys_unshare+0x10/0x10
[ 1176.986765][T23270]  __x64_sys_unshare+0x31/0x40
[ 1176.986797][T23270]  do_syscall_64+0x106/0xf80
[ 1176.986827][T23270]  ? clear_bhb_loop+0x40/0x90
[ 1176.986858][T23270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1176.986885][T23270] RIP: 0033:0x7fa5e619c799
[ 1176.986910][T23270] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1176.986935][T23270] RSP: 002b:00007fa5e6ff7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1176.986962][T23270] RAX: ffffffffffffffda RBX: 00007fa5e6415fa0 RCX: 00007fa5e619c799
[ 1176.986979][T23270] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1176.986995][T23270] RBP: 00007fa5e6232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1176.987011][T23270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1176.987027][T23270] R13: 00007fa5e6416038 R14: 00007fa5e6415fa0 R15: 00007ffe9ca96688
[ 1176.987060][T23270]  </TASK>
[ 1177.665768][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.672328][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.578468][T23270] Process accounting resumed
[ 1184.314881][T23359] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4847'.
[ 1185.696746][T23382] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24
[ 1185.910318][T23384] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4851'.
[ 1193.341075][T23478] netlink: 504 bytes leftover after parsing attributes in process `syz.4.4874'.
[ 1194.061734][T20595] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1194.072972][T20595] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1194.089587][T20595] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1194.097379][T20595] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1194.108717][T20595] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1194.390562][T23491] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4878'.
[ 1194.939151][T23489] chnl_net:caif_netlink_parms(): no params data found
[ 1195.610301][T23489] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1195.652255][T23489] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1195.684226][T23489] bridge_slave_0: entered allmulticast mode
[ 1195.720051][T23489] bridge_slave_0: entered promiscuous mode
[ 1195.761301][T23489] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1195.808591][T23489] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1195.839985][T23489] bridge_slave_1: entered allmulticast mode
[ 1195.873255][T23489] bridge_slave_1: entered promiscuous mode
[ 1196.021568][T23489] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1196.095108][T23489] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1196.191231][T20595] Bluetooth: hci5: command tx timeout
[ 1196.267330][T23489] team0: Port device team_slave_0 added
[ 1196.313515][T23489] team0: Port device team_slave_1 added
[ 1196.529556][T23489] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1196.556834][T23489] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1196.636533][T23489] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1196.713868][T23489] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1196.731290][T23489] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1196.800855][T23489] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1197.143342][T23489] hsr_slave_0: entered promiscuous mode
[ 1197.167592][T23489] hsr_slave_1: entered promiscuous mode
[ 1197.188736][T23489] debugfs: 'hsr0' already exists in 'hsr'
[ 1197.212351][T23489] Cannot create hsr debugfs directory
[ 1198.270754][T20595] Bluetooth: hci5: command tx timeout
[ 1198.805071][T23489] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1198.873981][T23489] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1198.992440][T23489] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1199.055026][T23489] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1199.503698][T23489] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1199.631629][T23489] 8021q: adding VLAN 0 to HW filter on device team0
[ 1199.739286][T11276] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1199.746512][T11276] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1199.885200][ T1119] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1199.892396][ T1119] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1200.351262][T20595] Bluetooth: hci5: command tx timeout
[ 1200.709842][T23574] netlink: 306 bytes leftover after parsing attributes in process `syz.1.4891'.
[ 1200.787587][T23489] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1201.835603][T23489] veth0_vlan: entered promiscuous mode
[ 1201.922522][T23489] veth1_vlan: entered promiscuous mode
[ 1202.061581][T23489] veth0_macvtap: entered promiscuous mode
[ 1202.104547][T23489] veth1_macvtap: entered promiscuous mode
[ 1202.206574][T23489] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1202.282058][T23489] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1202.370468][T11276] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1202.429514][T20595] Bluetooth: hci5: command tx timeout
[ 1202.473836][T11276] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1202.510496][T11276] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1202.634958][T11276] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1202.908703][ T1119] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1202.944816][ T1119] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1203.033499][T11276] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1203.062311][T11276] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1204.796460][T23636] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4901'.
[ 1204.862279][T23640] netlink: 354 bytes leftover after parsing attributes in process `syz.1.4901'.
[ 1205.734415][T23647] netlink: 306 bytes leftover after parsing attributes in process `syz.1.4905'.
[ 1207.073359][   T30] audit: type=1804 audit(4294967314.090:19): pid=23660 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.4908" name="/newroot/1205/file0" dev="tmpfs" ino=6274 res=1 errno=0
[ 1207.197967][   T30] audit: type=1804 audit(4294967314.090:20): pid=23666 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.4908" name="/newroot/1205/file0" dev="tmpfs" ino=6274 res=1 errno=0
[ 1208.989147][T23692] netlink: 306 bytes leftover after parsing attributes in process `syz.5.4915'.
[ 1209.165598][T23676] Process accounting paused
[ 1209.356880][T23699] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4917'.
[ 1209.402536][T23699] vcan0: entered promiscuous mode
[ 1214.588106][    C0] vcan0: j1939_tp_rxtimer: 0xffff888023b2e400: rx timeout, send abort
[ 1214.602540][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888023b2e400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 1216.058188][    C0] vcan0: j1939_tp_rxtimer: 0xffff888029ee3400: rx timeout, send abort
[ 1216.066608][    C0] vcan0: j1939_tp_rxtimer: 0xffff888029ee1c00: rx timeout, send abort
[ 1216.075180][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888029ee3400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 1216.089708][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888029ee1c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 1218.255155][T23787] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4936'.
[ 1219.789439][   T30] audit: type=1804 audit(4294967326.810:21): pid=23801 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.4939" name="/newroot/28/file0" dev="tmpfs" ino=159 res=1 errno=0
[ 1219.883757][   T30] audit: type=1804 audit(4294967326.850:22): pid=23804 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.4939" name="/newroot/28/file0" dev="tmpfs" ino=159 res=1 errno=0
[ 1232.362507][T23948] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4966'.
[ 1232.401380][T23948] netlink: 'syz.1.4966': attribute type 1 has an invalid length.
[ 1232.438747][T23948] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4966'.
[ 1233.069298][T23959] FAULT_INJECTION: forcing a failure.
[ 1233.069298][T23959] name failslab, interval 1, probability 0, space 0, times 0
[ 1233.131160][T23959] CPU: 0 UID: 0 PID: 23959 Comm: syz.1.4969 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1233.131210][T23959] Tainted: [L]=SOFTLOCKUP
[ 1233.131219][T23959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1233.131235][T23959] Call Trace:
[ 1233.131244][T23959]  <TASK>
[ 1233.131254][T23959]  dump_stack_lvl+0x100/0x190
[ 1233.131305][T23959]  should_fail_ex.cold+0x5/0xa
[ 1233.131341][T23959]  should_failslab+0xc2/0x120
[ 1233.131370][T23959]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1233.131410][T23959]  ? security_inode_alloc+0x3b/0x2c0
[ 1233.131439][T23959]  ? lockdep_init_map_type+0x5c/0x250
[ 1233.131480][T23959]  security_inode_alloc+0x3b/0x2c0
[ 1233.131509][T23959]  inode_init_always_gfp+0xced/0x1040
[ 1233.131541][T23959]  alloc_inode+0x8e/0x250
[ 1233.131576][T23959]  new_inode+0x22/0x1c0
[ 1233.131614][T23959]  shmem_get_inode+0x212/0x1040
[ 1233.131653][T23959]  ? __pfx_shmem_get_inode+0x10/0x10
[ 1233.131688][T23959]  ? rcu_is_watching+0x12/0xc0
[ 1233.131727][T23959]  ? percpu_counter_add_batch+0xb9/0x230
[ 1233.131768][T23959]  __shmem_file_setup+0x3ac/0x490
[ 1233.131806][T23959]  ? __pfx___shmem_file_setup+0x10/0x10
[ 1233.131847][T23959]  ? vm_area_alloc+0x1f/0x160
[ 1233.131886][T23959]  shmem_zero_setup+0x96/0x1b0
[ 1233.131913][T23959]  __mmap_region+0x2198/0x29e0
[ 1233.131956][T23959]  ? __pfx___mmap_region+0x10/0x10
[ 1233.132002][T23959]  ? set_next_entity+0x11e/0x9c0
[ 1233.132045][T23959]  ? __lock_acquire+0x4a5/0x2630
[ 1233.132082][T23959]  ? find_held_lock+0x2b/0x80
[ 1233.132119][T23959]  ? find_held_lock+0x2b/0x80
[ 1233.132143][T23959]  ? finish_task_switch.isra.0+0x200/0xb80
[ 1233.132172][T23959]  ? finish_task_switch.isra.0+0x200/0xb80
[ 1233.132212][T23959]  ? trace_sched_exit_tp+0x13a/0x180
[ 1233.132245][T23959]  ? __schedule+0x1000/0x6120
[ 1233.132326][T23959]  ? rcu_is_watching+0x12/0xc0
[ 1233.132367][T23959]  ? cap_capable+0x107/0x460
[ 1233.132396][T23959]  mmap_region+0x180/0x3e0
[ 1233.132442][T23959]  do_mmap+0xc63/0x12f0
[ 1233.132478][T23959]  ? __pfx_do_mmap+0x10/0x10
[ 1233.132507][T23959]  ? __pfx_down_write_killable+0x10/0x10
[ 1233.132543][T23959]  vm_mmap_pgoff+0x29e/0x470
[ 1233.132578][T23959]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1233.132610][T23959]  ? do_futex+0x192/0x350
[ 1233.132645][T23959]  ? __pfx_do_futex+0x10/0x10
[ 1233.132685][T23959]  ksys_mmap_pgoff+0xe1/0x650
[ 1233.132713][T23959]  ? __x64_sys_futex+0x34f/0x4d0
[ 1233.132747][T23959]  ? __x64_sys_futex+0x358/0x4d0
[ 1233.132782][T23959]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 1233.132811][T23959]  ? xfd_validate_state+0x129/0x190
[ 1233.132856][T23959]  __x64_sys_mmap+0x125/0x190
[ 1233.132898][T23959]  do_syscall_64+0x106/0xf80
[ 1233.132922][T23959]  ? clear_bhb_loop+0x40/0x90
[ 1233.132953][T23959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1233.132980][T23959] RIP: 0033:0x7fa5e619c799
[ 1233.133002][T23959] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1233.133027][T23959] RSP: 002b:00007fa5e6ff7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1233.133051][T23959] RAX: ffffffffffffffda RBX: 00007fa5e6415fa0 RCX: 00007fa5e619c799
[ 1233.133069][T23959] RDX: 0000000000000003 RSI: 000000000202000c RDI: 0000000000000000
[ 1233.133085][T23959] RBP: 00007fa5e6232c99 R08: fffffffffffffffa R09: 0000000000008000
[ 1233.133102][T23959] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[ 1233.133117][T23959] R13: 00007fa5e6416038 R14: 00007fa5e6415fa0 R15: 00007ffe9ca96688
[ 1233.133149][T23959]  </TASK>
[ 1238.100328][T24004] FAULT_INJECTION: forcing a failure.
[ 1238.100328][T24004] name failslab, interval 1, probability 0, space 0, times 0
[ 1238.291137][T24004] CPU: 0 UID: 0 PID: 24004 Comm: syz.4.4979 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1238.291178][T24004] Tainted: [L]=SOFTLOCKUP
[ 1238.291187][T24004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1238.291203][T24004] Call Trace:
[ 1238.291211][T24004]  <TASK>
[ 1238.291221][T24004]  dump_stack_lvl+0x100/0x190
[ 1238.291265][T24004]  should_fail_ex.cold+0x5/0xa
[ 1238.291296][T24004]  should_failslab+0xc2/0x120
[ 1238.291324][T24004]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1238.291362][T24004]  ? copy_ipcs+0x10d/0x7e0
[ 1238.291396][T24004]  copy_ipcs+0x10d/0x7e0
[ 1238.291426][T24004]  create_new_namespaces+0x20a/0xac0
[ 1238.291455][T24004]  ? security_capable+0x80/0x260
[ 1238.291502][T24004]  unshare_nsproxy_namespaces+0xc3/0x1f0
[ 1238.291533][T24004]  ksys_unshare+0x473/0xad0
[ 1238.291568][T24004]  ? __pfx_ksys_unshare+0x10/0x10
[ 1238.291613][T24004]  __x64_sys_unshare+0x31/0x40
[ 1238.291646][T24004]  do_syscall_64+0x106/0xf80
[ 1238.291670][T24004]  ? clear_bhb_loop+0x40/0x90
[ 1238.291701][T24004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1238.291728][T24004] RIP: 0033:0x7f6aee99c799
[ 1238.291749][T24004] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1238.291774][T24004] RSP: 002b:00007f6aef7a0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1238.291798][T24004] RAX: ffffffffffffffda RBX: 00007f6aeec15fa0 RCX: 00007f6aee99c799
[ 1238.291816][T24004] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000
[ 1238.291831][T24004] RBP: 00007f6aeea32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1238.291847][T24004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1238.291863][T24004] R13: 00007f6aeec16038 R14: 00007f6aeec15fa0 R15: 00007ffd5b075728
[ 1238.291894][T24004]  </TASK>
[ 1239.018252][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1239.024790][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.289069][T24004] FAULT_INJECTION: forcing a failure.
[ 1239.289069][T24004] name failslab, interval 1, probability 0, space 0, times 0
[ 1239.409387][T24004] CPU: 0 UID: 0 PID: 24004 Comm: syz.4.4979 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1239.409430][T24004] Tainted: [L]=SOFTLOCKUP
[ 1239.409439][T24004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1239.409455][T24004] Call Trace:
[ 1239.409464][T24004]  <TASK>
[ 1239.409474][T24004]  dump_stack_lvl+0x100/0x190
[ 1239.409519][T24004]  should_fail_ex.cold+0x5/0xa
[ 1239.409549][T24004]  should_failslab+0xc2/0x120
[ 1239.409578][T24004]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1239.409618][T24004]  ? __anon_vma_prepare+0x344/0x5e0
[ 1239.409661][T24004]  __anon_vma_prepare+0x344/0x5e0
[ 1239.409696][T24004]  ? __pfx___pte_alloc+0x10/0x10
[ 1239.409727][T24004]  __vmf_anon_prepare+0x11f/0x250
[ 1239.409760][T24004]  do_anonymous_page+0x552/0x1fb0
[ 1239.409800][T24004]  ? __lock_acquire+0x4a5/0x2630
[ 1239.409837][T24004]  __handle_mm_fault+0x1d42/0x2b60
[ 1239.409886][T24004]  ? reacquire_held_locks+0xce/0x1e0
[ 1239.409921][T24004]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1239.409963][T24004]  ? lock_vma_under_rcu+0x17c/0x590
[ 1239.410017][T24004]  handle_mm_fault+0x36d/0xa20
[ 1239.410059][T24004]  do_user_addr_fault+0x5a3/0x12f0
[ 1239.410094][T24004]  exc_page_fault+0x6f/0xd0
[ 1239.410136][T24004]  asm_exc_page_fault+0x26/0x30
[ 1239.410161][T24004] RIP: 0033:0x7f6aee95e6c2
[ 1239.410182][T24004] Code: 8d 15 e5 08 0f 00 48 89 ee 48 89 df e8 87 f2 03 00 48 8b 05 f8 e6 28 00 48 83 e8 01 48 39 e8 0f 82 b3 00 00 00 66 0f 6f 0c 24 <4c> 89 6b 20 0f 11 4b 10 48 83 c4 18 48 89 d8 5b 5d 41 5c 41 5d 41
[ 1239.410207][T24004] RSP: 002b:00007f6aef79ed20 EFLAGS: 00010286
[ 1239.410227][T24004] RAX: ffffffffffffffff RBX: 00007f6ae0000000 RCX: 00007f6aee99c597
[ 1239.410244][T24004] RDX: 00007f6aeea4ef83 RSI: 0000000000021000 RDI: 00007f6ae0000000
[ 1239.410261][T24004] RBP: 0000000000021000 R08: 00000000ffffffff R09: 0000000000000000
[ 1239.410277][T24004] R10: 0000000000000022 R11: 0000000000000217 R12: 0000000004000000
[ 1239.410293][T24004] R13: 0000000000001000 R14: 00007f6ae4000000 R15: 0000000000000000
[ 1239.410324][T24004]  </TASK>
[ 1239.410654][T24004] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[ 1240.012040][T24021] Process accounting resumed
[ 1242.671481][T24041] nvme_fcloop: unknown parameter or missing value '7'
[ 1256.850481][T24173] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5012'.
[ 1256.937362][T24178] netlink: 'syz.1.5012': attribute type 1 has an invalid length.
[ 1257.030600][T24178] netlink: 5 bytes leftover after parsing attributes in process `syz.1.5012'.
[ 1263.895415][T24237] bond0: option arp_validate: invalid value ()
[ 1268.802213][T24271] kexec: Could not allocate control_code_buffer
[ 1269.406924][T24293] zswap: compressor  not available
[ 1270.456554][T24301] Process accounting paused
[ 1270.502982][T24295] kexec: Could not allocate control_code_buffer
[ 1270.660222][T24307] netlink: 'syz.1.5041': attribute type 2 has an invalid length.
[ 1276.769660][T18004] Process accounting resumed
[ 1277.210041][T24387] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5058'.
[ 1277.275403][T24390] netlink: 13 bytes leftover after parsing attributes in process `syz.4.5058'.
[ 1279.415688][T24393] kexec: Could not allocate control_code_buffer
[ 1282.602012][T24434] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5065'.
[ 1287.152451][T24463] Bluetooth: hci0: command 0x0406 tx timeout
[ 1294.452687][T24541] Invalid ELF header magic: != ELF
[ 1295.710934][   T36] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 1389 with max blocks 7 with error 117
[ 1295.796076][   T36] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1295.796076][   T36] 
[ 1297.325180][T24566] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5093'.
[ 1298.862178][T24583] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5097'.
[ 1300.437962][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.444642][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[ 1300.465596][T24572] program syz.5.5092 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1307.138486][T24663] netlink: 330 bytes leftover after parsing attributes in process `syz.5.5112'.
[ 1307.224799][T24663] mac80211_hwsim hwsim29 ›: renamed from wlan0 (while UP)
[ 1309.236532][T24655] kexec: Could not allocate control_code_buffer
[ 1309.965513][ T5865] Process accounting resumed
[ 1312.398099][T24694] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5118'.
[ 1317.342513][T24753] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 1394 with max blocks 2 with error 117
[ 1317.533330][T24753] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1317.533330][T24753] 
[ 1317.869758][T24463] Bluetooth: hci5: command 0x0406 tx timeout
[ 1323.751143][T24814] Invalid ELF header magic: != ELF
[ 1327.966927][T24863] bridge0: port 3(gretap0) entered blocking state
[ 1328.002553][T24863] bridge0: port 3(gretap0) entered disabled state
[ 1328.048880][T24863] gretap0: entered allmulticast mode
[ 1328.071946][T24863] FAULT_INJECTION: forcing a failure.
[ 1328.071946][T24863] name failslab, interval 1, probability 0, space 0, times 0
[ 1328.129563][T24863] CPU: 0 UID: 0 PID: 24863 Comm: syz.5.5154 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1328.129604][T24863] Tainted: [L]=SOFTLOCKUP
[ 1328.129614][T24863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1328.129629][T24863] Call Trace:
[ 1328.129638][T24863]  <TASK>
[ 1328.129648][T24863]  dump_stack_lvl+0x100/0x190
[ 1328.129691][T24863]  should_fail_ex.cold+0x5/0xa
[ 1328.129722][T24863]  should_failslab+0xc2/0x120
[ 1328.129750][T24863]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1328.129790][T24863]  ? __kernfs_new_node+0xd2/0x960
[ 1328.129834][T24863]  __kernfs_new_node+0xd2/0x960
[ 1328.129875][T24863]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1328.129921][T24863]  ? find_held_lock+0x2b/0x80
[ 1328.129945][T24863]  ? kernfs_root+0xee/0x2a0
[ 1328.129981][T24863]  ? kernfs_root+0xee/0x2a0
[ 1328.130025][T24863]  kernfs_new_node+0x11b/0x1a0
[ 1328.130054][T24863]  __kernfs_create_file+0x53/0x350
[ 1328.130088][T24863]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1328.130131][T24863]  sysfs_create_file_ns+0x145/0x1e0
[ 1328.130167][T24863]  ? __pfx_sysfs_create_file_ns+0x10/0x10
[ 1328.130202][T24863]  ? kernfs_create_link+0x1bd/0x240
[ 1328.130234][T24863]  ? kernfs_put+0x3f/0x60
[ 1328.130272][T24863]  ? sysfs_do_create_link_sd+0xbb/0x140
[ 1328.130321][T24863]  br_sysfs_addif+0xe4/0x210
[ 1328.130348][T24863]  br_add_if+0x701/0x1b40
[ 1328.130388][T24863]  ? security_capable+0x80/0x260
[ 1328.130436][T24863]  add_del_if+0x114/0x160
[ 1328.130476][T24863]  br_dev_siocdevprivate+0x8ac/0x1650
[ 1328.130519][T24863]  ? __pfx_br_dev_siocdevprivate+0x10/0x10
[ 1328.130572][T24863]  ? lock_acquire+0x1cf/0x380
[ 1328.130619][T24863]  ? netdev_name_node_lookup+0x107/0x150
[ 1328.130654][T24863]  ? __mutex_lock+0x26a/0x1b90
[ 1328.130685][T24863]  dev_ifsioc+0xc1e/0x1e90
[ 1328.130725][T24863]  ? __pfx_dev_ifsioc+0x10/0x10
[ 1328.130760][T24863]  ? __pfx___mutex_lock+0x10/0x10
[ 1328.130796][T24863]  ? dev_load+0x8e/0x240
[ 1328.130830][T24863]  ? dev_load+0x8e/0x240
[ 1328.130871][T24863]  dev_ioctl+0x70e/0x1070
[ 1328.130911][T24863]  sock_ioctl+0x494/0x6b0
[ 1328.130943][T24863]  ? __pfx_sock_ioctl+0x10/0x10
[ 1328.130974][T24863]  ? hook_file_ioctl_common+0x146/0x410
[ 1328.131012][T24863]  ? __fget_files+0x21f/0x3d0
[ 1328.131042][T24863]  ? __pfx_sock_ioctl+0x10/0x10
[ 1328.131075][T24863]  __x64_sys_ioctl+0x18e/0x210
[ 1328.131116][T24863]  do_syscall_64+0x106/0xf80
[ 1328.131140][T24863]  ? clear_bhb_loop+0x40/0x90
[ 1328.131171][T24863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1328.131198][T24863] RIP: 0033:0x7f2873b9c799
[ 1328.131219][T24863] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1328.131244][T24863] RSP: 002b:00007f2874af2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1328.131269][T24863] RAX: ffffffffffffffda RBX: 00007f2873e15fa0 RCX: 00007f2873b9c799
[ 1328.131291][T24863] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008
[ 1328.131308][T24863] RBP: 00007f2873c32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1328.131324][T24863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1328.131339][T24863] R13: 00007f2873e16038 R14: 00007f2873e15fa0 R15: 00007ffe9a7ebee8
[ 1328.131376][T24863]  </TASK>
[ 1328.810007][T24863] gretap0: left allmulticast mode
[ 1331.529710][T24891] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5159'.
[ 1331.812593][T24898] block nbd0: Cannot use ioctl interface on a netlink controlled device.
[ 1336.910253][   T31] INFO: task syz-executor:14671 blocked for more than 143 seconds.
[ 1336.918199][   T31]       Tainted: G             L      syzkaller #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1336.992072][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1337.041717][   T31] task:syz-executor    state:D stack:23992 pid:14671 tgid:14671 ppid:1      task_flags:0x400140 flags:0x00080002
[ 1337.122460][   T31] Call Trace:
[ 1337.146154][   T31]  <TASK>
[ 1337.149135][   T31]  __schedule+0xfee/0x6120
[ 1337.199347][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1337.204374][   T31]  ? __pfx___schedule+0x10/0x10
[ 1337.209266][   T31]  ? find_held_lock+0x2b/0x80
[ 1337.274689][   T31]  ? schedule+0x2bf/0x390
[ 1337.279063][   T31]  schedule+0xdd/0x390
[ 1337.379391][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1337.392258][   T31]  __mutex_lock+0xc9a/0x1b90
[ 1337.445926][   T31]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1337.474158][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1337.479172][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1337.539410][   T31]  ? net_generic+0xea/0x2a0
[ 1337.559810][   T31]  ? net_generic+0xea/0x2a0
[ 1337.588130][   T31]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1337.614810][   T31]  nfsd_shutdown_threads+0x5b/0xf0
[ 1337.651873][   T31]  nfsd_umount+0x3b/0x60
[ 1337.656317][   T31]  deactivate_locked_super+0xc1/0x1b0
[ 1337.699872][   T31]  deactivate_super+0xe7/0x110
[ 1337.739423][   T31]  cleanup_mnt+0x21f/0x450
[ 1337.751576][   T31]  task_work_run+0x150/0x240
[ 1337.756363][   T31]  ? __pfx_task_work_run+0x10/0x10
[ 1337.801213][   T31]  exit_to_user_mode_loop+0x100/0x4a0
[ 1337.806662][   T31]  do_syscall_64+0x668/0xf80
[ 1337.871786][   T31]  ? clear_bhb_loop+0x40/0x90
[ 1337.876534][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1337.925868][   T31] RIP: 0033:0x7f215199d9d7
[ 1337.949718][   T31] RSP: 002b:00007ffc690551f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1337.958190][   T31] RAX: 0000000000000000 RBX: 00007f2151a32050 RCX: 00007f215199d9d7
[ 1338.039331][   T31] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc690552b0
[ 1338.091688][   T31] RBP: 00007ffc690552b0 R08: 00007ffc690562b0 R09: 00000000ffffffff
[ 1338.129361][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc69056340
[ 1338.173724][   T31] R13: 00007f2151a32050 R14: 000000000011f8c2 R15: 00007ffc69056380
[ 1338.221438][   T31]  </TASK>
[ 1338.239847][   T31] 
[ 1338.239847][   T31] Showing all locks held in the system:
[ 1338.289622][   T31] 1 lock held by khungtaskd/31:
[ 1338.323556][   T31]  #0: ffffffff8e7e7760 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[ 1338.374587][   T31] 2 locks held by getty/5585:
[ 1338.421890][   T31]  #0: ffff88803886a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1338.479350][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x1500
[ 1338.532284][   T31] 1 lock held by syz-executor/5815:
[ 1338.537625][   T31] 2 locks held by syz-executor/14671:
[ 1338.576350][   T31]  #0: ffff88807cb9e0e0 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1338.649534][   T31]  #1: ffffffff8ec589a8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1338.714638][   T31] 2 locks held by syz.3.4742/22849:
[ 1338.736334][   T31]  #0: ffffffff906c2490 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1338.829990][   T31]  #1: ffffffff8ec589a8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1a80
[ 1338.929398][   T31] 2 locks held by syz-executor/23067:
[ 1338.969478][   T31]  #0: ffff8880b843b360 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2c/0x140
[ 1339.019391][   T31]  #1: ffff888098b02008 (&____s->seqcount#18){--.-}-{0:0}, at: trace_ignore_this_task+0xbc/0x100
[ 1339.069785][   T31] 1 lock held by syz-executor/23480:
[ 1339.075114][   T31] 1 lock held by syz-executor/23489:
[ 1339.099127][   T31]  #0: ffffffff8e7f32b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0
[ 1339.159401][   T31] 2 locks held by syz.2.5170/24938:
[ 1339.164652][   T31] 2 locks held by syz.1.5173/24944:
[ 1339.209418][   T31] 3 locks held by syz.4.5174/24946:
[ 1339.214782][   T31]  #0: ffffffff905fd910 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[ 1339.269405][   T31]  #1: ffffffff90616168 (rtnl_mutex){+.+.}-{4:4}, at: ops_undo_list+0x7ec/0xab0
[ 1339.278551][   T31]  #2: ffffffff8e7f32b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x27f/0x3c0
[ 1339.349582][   T31] 1 lock held by syz.1.5175/24949:
[ 1339.354741][   T31]  #0: ffffffff8e7f3180 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x6d0
[ 1339.429713][   T31] 2 locks held by syz.2.5176/24957:
[ 1339.476573][   T31]  #0: ffffffff905fd910 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[ 1339.512957][   T31]  #1: ffffffff90616168 (rtnl_mutex){+.+.}-{4:4}, at: ops_undo_list+0x7ec/0xab0
[ 1339.542558][   T31] 1 lock held by syz.2.5176/24958:
[ 1339.571866][   T31] 
[ 1339.574244][   T31] =============================================
[ 1339.574244][   T31] 
[ 1339.609524][   T31] NMI backtrace for cpu 0
[ 1339.609548][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1339.609581][   T31] Tainted: [L]=SOFTLOCKUP
[ 1339.609590][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1339.609605][   T31] Call Trace:
[ 1339.609613][   T31]  <TASK>
[ 1339.609623][   T31]  dump_stack_lvl+0x100/0x190
[ 1339.609665][   T31]  nmi_cpu_backtrace.cold+0x12d/0x151
[ 1339.609706][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1339.609751][   T31]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[ 1339.609788][   T31]  sys_info+0x141/0x190
[ 1339.609814][   T31]  watchdog+0xd25/0x1050
[ 1339.609847][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1339.609872][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1339.609904][   T31]  ? kthread+0x13a/0x450
[ 1339.609934][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1339.609956][   T31]  kthread+0x370/0x450
[ 1339.609987][   T31]  ? __pfx_kthread+0x10/0x10
[ 1339.610021][   T31]  ret_from_fork+0x754/0xd80
[ 1339.610060][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1339.610099][   T31]  ? __switch_to+0x7b4/0x1120
[ 1339.610126][   T31]  ? __pfx_kthread+0x10/0x10
[ 1339.610160][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1339.610216][   T31]  </TASK>
[ 1340.081397][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1340.088357][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1340.099349][   T31] Tainted: [L]=SOFTLOCKUP
[ 1340.103710][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1340.113788][   T31] Call Trace:
[ 1340.117111][   T31]  <TASK>
[ 1340.120145][   T31]  dump_stack_lvl+0x100/0x190
[ 1340.124853][   T31]  vpanic+0x552/0x970
[ 1340.128854][   T31]  ? __pfx_vpanic+0x10/0x10
[ 1340.133402][   T31]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[ 1340.139610][   T31]  panic+0xd1/0xe0
[ 1340.143361][   T31]  ? __pfx_panic+0x10/0x10
[ 1340.147801][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[ 1340.153984][   T31]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[ 1340.160167][   T31]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[ 1340.166434][   T31]  ? watchdog.cold+0x198/0x1ca
[ 1340.171218][   T31]  ? watchdog+0xd35/0x1050
[ 1340.175653][   T31]  watchdog.cold+0x1a9/0x1ca
[ 1340.180270][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1340.184967][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1340.190013][   T31]  ? kthread+0x13a/0x450
[ 1340.194278][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1340.198980][   T31]  kthread+0x370/0x450
[ 1340.203090][   T31]  ? __pfx_kthread+0x10/0x10
[ 1340.207711][   T31]  ret_from_fork+0x754/0xd80
[ 1340.212334][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1340.217479][   T31]  ? __switch_to+0x7b4/0x1120
[ 1340.222176][   T31]  ? __pfx_kthread+0x10/0x10
[ 1340.226798][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1340.231713][   T31]  </TASK>
[ 1340.234917][   T31] Kernel Offset: disabled
[ 1340.239292][   T31] Rebooting in 86400 seconds..