last executing test programs:

7.888283453s ago: executing program 0 (id=4699):
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xffffffffffffffff, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x9000643a, 0xc35)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x80000000)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x9}, 0x5)
ioctl$auto_SNDRV_TIMER_IOCTL_STATUS32(0xffffffffffffffff, 0x80585414, 0x0)
r2 = prctl$auto(0x4d, 0x2, 0x0, 0x0, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d638929210, 0x0)
ioctl$auto_UDMABUF_CREATE(r2, 0x40187542, 0x0)

7.269090397s ago: executing program 2 (id=4701):
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0xa, 0x5, 0x0)
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x40001, 0x0)
open(&(0x7f0000000040)='./file1\x00', 0x165840, 0x151)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(r0, &(0x7f00000001c0)={{0x0, 0x1aa, 0x0, 0x6, 0x0, 0x0, 0x1002}, 0x5}, 0x2, 0x100)
bpf$auto(0xf7fff011, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x4, 0xfaae, 0x468, 0x9, 0x2, 0x8, 0x3, 0x4, 0x1ff, 0x5, 0xb5, 0x4, 0x806, 0xd9ee}, 0xa3)
writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x200)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x0, @private=0xa010102}, 0x52)
shutdown$auto(0x200000003, 0x2)

7.164812732s ago: executing program 0 (id=4702):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x20, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x3, 0x3b)
lsm_list_modules$auto(0x0, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
setsockopt$auto(r0, 0x1, 0x4b, 0x0, 0xb)
recvmmsg$auto(0x3, 0x0, 0x4, 0x1006, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)

6.769746471s ago: executing program 0 (id=4705):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000009c0), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0)
read$auto(r2, 0x0, 0x1ff)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mkdir$auto(0x0, 0x353)
openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000040), 0x101002, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
sendmsg$auto_ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x1c, r1, 0x170b, 0x70bd26, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_STATS_SRC={0x8, 0x6, 0xfffffffe}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40840}, 0x4000840)

6.420236345s ago: executing program 3 (id=4706):
mmap$auto(0x0, 0x20009, 0xb17a, 0xeb1, 0x3fd, 0x8000)
r0 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r0, 0x0, 0x80, 0x0, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, 0x0, 0x24084005)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb5, 0x10, 0x10001, 0xc0000000, 0xffffffffffffffff, 0x7, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0xb, 0xe5, 0x3}, 0x10)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x0, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
openat$auto_sco_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x242, 0x0)
r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x232040, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r2, 0x400454a4, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ram0\x00', 0x67f00, 0x0)
preadv2$auto(r3, &(0x7f0000000100)={0x0, 0x80000003}, 0x6, 0xffffffffffffffff, 0x400, 0x2f)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
pread64$auto(r1, &(0x7f0000000200)='/proc/self/net/ip6_tables_targets\x00', 0x34b, 0x10000)
socket(0x2a, 0x2, 0x1)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000)
close_range$auto(0x2, 0x8, 0x0)

6.063949417s ago: executing program 1 (id=4707):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
lstat$auto(0x0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2, 0x4, 0x8000000a041000a, 0x40000402, 0x10000, 0x8, 0xffffffff80000000, 0xe0, 0x400006, 0x240000100103})
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
r0 = socket(0x10, 0x2, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

5.965799278s ago: executing program 1 (id=4708):
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x103003, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/net/snmp\x00', 0x40, 0x0)
pread64$auto(r2, 0x0, 0x80000000, 0x9fffffffd)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @inferred, 0x0, @_sigev_thread={0x0, 0x0}})
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)

5.909298181s ago: executing program 3 (id=4709):
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x103003, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/net/snmp\x00', 0x40, 0x0)
pread64$auto(r2, 0x0, 0x80000000, 0x9fffffffd)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @inferred, 0x0, @_sigev_thread={0x0, 0x0}})
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)

5.659964025s ago: executing program 0 (id=4710):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x59, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyxf\x00', 0x109401, 0x0)
ioctl$auto(r1, 0x540a, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x37, 0xa, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x7, 0x3, 0x800, 0x80000023, 0x200000000000007, 0x6d42, 0xc, 0x2495dae0, 0x6]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)

1.679740179s ago: executing program 2 (id=4711):
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xffffffffffffffff, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x9000643a, 0xc35)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x80000000)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x9}, 0x5)
ioctl$auto_SNDRV_TIMER_IOCTL_STATUS32(0xffffffffffffffff, 0x80585414, 0x0)
r2 = prctl$auto(0x4d, 0x2, 0x0, 0x0, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d638929210, 0x0)
ioctl$auto_UDMABUF_CREATE(r2, 0x40187542, 0x0)

1.679599764s ago: executing program 3 (id=4712):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x80802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_smc_gen_netlink(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x103281, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0)
write$auto(r0, 0x0, 0xc3)

1.678626191s ago: executing program 0 (id=4719):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/net/rpc/nfs4.idtoname/channel\x00', 0x400, 0x0)
mmap$auto(0x0, 0x3, 0x1000000000001, 0x8000000008011, 0x3, 0x0)
ioctl$auto_SG_GET_SCSI_ID(0xffffffffffffffff, 0x2276, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000740)={'wlan1\x00'})
sendmsg$auto_NL802154_CMD_GET_SEC_DEVKEY(r1, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x14, 0x0, 0x4, 0x70bd2c, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40010}, 0x2404c881)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0xbc3, 0x800, 0x3, 0x8, 0x10001, 0x400000000003, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x6, 0x9, 0xffffdfffffffff81, 0x4]}, 0x0)

1.678364285s ago: executing program 1 (id=4713):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
io_uring_setup$auto(0x406, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0x5, 0x0)
openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x8a001, 0x0)
epoll_create$auto(0x20003f)
memfd_secret$auto(0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
fcntl$auto(r0, 0x410, 0x0)
mknod$auto(&(0x7f0000000080)='./file0\x00', 0x8, 0x6)
close_range$auto(0x2, 0xa, 0x0)

1.580273026s ago: executing program 3 (id=4714):
mmap$auto(0x0, 0x20009, 0xb17a, 0xeb1, 0x3fd, 0x8000)
r0 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r0, 0x0, 0x80, 0x0, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, 0x0, 0x24084005)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb5, 0x10, 0x10001, 0xc0000000, 0xffffffffffffffff, 0x7, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0xb, 0xe5, 0x3}, 0x10)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x0, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x7ffff000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x232040, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r1, 0x400454a4, 0x0)
mmap$auto(0x0, 0x2020009, 0x6, 0xf8, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ram0\x00', 0x67f00, 0x0)
preadv2$auto(r2, &(0x7f0000000100)={0x0, 0x80000003}, 0x6, 0xffffffffffffffff, 0x400, 0x2f)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)

1.517595786s ago: executing program 1 (id=4715):
clock_getres$auto(0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setfsuid$auto(0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0xa, 0x0, [{0x48c, 0x0, 0xa}]})
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = open(0x0, 0x22240, 0x155)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/mem\x00', 0x1400, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408)
linkat$auto(r2, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000)
sysfs$auto(0x2, 0x23, 0x0)
open(0x0, 0x22040, 0x75)
utimes$auto(0x0, 0x0)
clone$auto(0x20003b46, 0x7, 0x0, 0x0, 0x2)
mprotect$auto(0x0, 0x8000000000000001, 0x8)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8}, 0x1)
socket(0x2, 0x1, 0x0)
read$auto_transaction_log_fops_(r1, &(0x7f0000000080)=""/119, 0x77)

1.499363199s ago: executing program 2 (id=4716):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/asound/card0/pcm0p/oss\x00', 0x88400, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000040)=""/209, 0xd1)
read$auto_tracing_cpumask_fops_trace(0xffffffffffffffff, &(0x7f0000001340)=""/48, 0x30)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x480, 0x400, 0x9}]})
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/graphics/fbcon/rotate_all\x00', 0xa001, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f0000000000)='\x14\xf4\xb6\xc6\x97\xdb\x18B\f\xef\x1dQZ\xa66\xe7\x06\\\xe0)+\x86\xa7\x9bv\xe1\x18\xf5\x83\b\x11\x19\xdd\x1c', 0x7e)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
read$auto(r2, 0x0, 0x1ff)
write$auto(0x3, 0x0, 0xfdef)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x129882, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x6d, 0x2, 0x8000000000000000, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x610841, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001380)='/sys/devices/pci0000:00/0000:00:01.3/rescan\x00', 0x1a1181, 0x0)
write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mknod$auto(&(0x7f0000001040)=':,\x00', 0xca, 0xfffffffa)
r4 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$auto_rng_chrdev_ops_core(r4, &(0x7f0000000040)=""/4096, 0xfffffe82)
copy_file_range$auto(0xffffffffffffffff, 0x0, r4, 0x0, 0xffffffffffffffff, 0x8)
futimesat$auto(0xffffffffffffffff, &(0x7f0000001240)=':,\x00', &(0x7f0000001280)={0xa, 0x1000})
execve$auto(&(0x7f0000000040)=':,\x00', 0x0, &(0x7f0000000200)=&(0x7f00000001c0)=':,\x00')

1.118272165s ago: executing program 2 (id=4717):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
r1 = bpf$auto(0x3, 0x0, 0x7)
read$auto(r0, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NBD_CMD_CONNECT(r3, 0x0, 0x20040000)
r4 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002a00), r1)
sendmsg$auto_IPVS_CMD_NEW_DEST(r3, &(0x7f0000002ac0)={&(0x7f00000029c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000002a80)={&(0x7f0000002a40)={0x14, r4, 0x200, 0x70bd2b, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
write$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffffff, &(0x7f0000000140)="d18073", 0x3)
r5 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, 0x0, 0x22001, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r5, 0xffffffffffdffe00, &(0x7f0000000140))

1.096923923s ago: executing program 1 (id=4718):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
io_uring_setup$auto(0x9, 0x0)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec3\x00', 0x0, 0x0)
ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, 0x0)
ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
get_robust_list$auto(0x0, 0x0, 0x0)
openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000000000), 0x20980, 0x0)

920.233612ms ago: executing program 2 (id=4720):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim1/ports/3/pp_hold\x00', 0x101001, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x2440, 0x0)
read$auto(r0, 0x0, 0x20)
select$auto(0xffffffb8, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0x0, 0xa, 0x40007ffe, 0x948f, 0x3, 0x15f4da0a, 0x3, 0x20000001000003, 0x8000400, 0x1, 0x7, 0x2, 0x800, 0x1000, 0x4]}, 0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)

918.676114ms ago: executing program 3 (id=4721):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket(0x2, 0x2, 0x1)
bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_4={0x1b, r0, 0x10000}, 0x10)
socket(0x2, 0x80002, 0x73)
openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000640), 0x201, 0x0)
socket(0x2b, 0x1, 0x0)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
socket(0xa, 0x3, 0x3b)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0x8d, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)

819.136589ms ago: executing program 2 (id=4722):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram1\x00', 0x6281, 0x0)
ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0)
lseek$auto(0x3, 0xffffffffff800002, 0x10)
ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x20201, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
unshare$auto(0x40000080)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900), 0x0)

767.701674ms ago: executing program 3 (id=4723):
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x1, 0x202000a, 0xfffffffc, 0xdc, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x103003, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/net/snmp\x00', 0x40, 0x0)
pread64$auto(r2, 0x0, 0x80000000, 0x9fffffffd)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @inferred, 0x0, @_sigev_thread={0x0, 0x0}})
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)

1.043946ms ago: executing program 1 (id=4724):
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048084)
open(0x0, 0x12ba7e, 0x45)
close_range$auto(0x2, 0x8, 0x0)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000240)={{&(0x7f0000000840)="376f093eaa4306f48a5ebab80ff8e60a868753ee699bc13622f51f906d2514951b86a375ef273ecb9cb9bcef43875769aa66efd7459743456b7e8de85cfc6176be6ec4e18d4ec225fb3018a1af578fa077f729acd094858ea2ccd8d4a66e3acc114a529913bf6576f434c2889b122dd71e1dcb7e85fd763764d3ab04cfd2329b3bf54072b59f261bb8677245ac7bd8b1a4c230cad19ef9ffac3f4d5aa16ef8f0226090090bbf3a3e585d5bc5a3ec2c27c95d635abf4b14c2052971fcfb411a620020da978bd322d7a2ef93b26b6eed4524c84a8b9a40d38bda1f3a1e9d965da3903939c6d2e2f19fc30db4b947a89cad3eee7cfbb08ac7aea254c8ed3d537d00c785162a5fb51214966de2f9469496fecfb399fa507b48b3015abddabb26fb5f9b74f26bc4f4b297c93a719099a62520b2fb5a7a5f767707d2bcbb0e15eba9fdadc72062b70bb4c895f039824f52cdf0c158f1abf7bd9b8fe3bff3b4117314fafda0997a8732b64e254acae7b3cfd46d79c28ac5aaa1981e1e5c57aa058d96b4999b8370819933ca05f96450c503e6b89ee4ecbf10eaf9ed57299c0b8566c4e878d395dd84d4d33122f875ef720b5399b255481bb19e75a337a76740e3112caa999d1a919ca09f03ea4acc94aa78924c1fce0baf1497b79c158b9d0e5c1a25ae148b661c230fe506caea7934f853f6132272239af1095c7ab13f2597efbadaeb25a6a6af8239c5b7d401c968407f5e284036405bf4864ee9fffdc7686a4a07135ce2cb9ef11dac66044a6945eb0e51232ff74e5af8a163fb0d90e11a0796dca2c5667db3b634fd2a398c1fc3d945a985bd6f1475f395de18284e5bc23873dc055fca969ceefeb125ee9d7802adf77e9b81508f03154868d94345db380cc865f0f41c3779ede96d34d7db4c9b325df6411b8972c907c4de9f4993e2c04c267aa52762c57a0ed20ff51e70ca4c6215073cdfa1806571096275fefacd1c5dadd765e304ee5bda16146ad7f92f035211e94bc7641ba08e12d804d7964f9b67dd13cd415f41c14f3ab3700388d04a8935cbc971445638bb1c0e914517441ba2f1441973b37b2e5a2b48b5d70d05c9831be1a448890066fb96fbcbe045fdc5aa5be25f491acdcb2f165df0d892b032d7578f2cdca66d65dfc5a986863f6806db49b2e25d68be213de9402609c24a29c3a3441a9041622e3e7ee39f7f027a5c165645710ad399742b05a975850a47a257ce72acb9f8c5e61736b2b380ac783329a8561a0f73bc54f7c8df3114b5d574df31e917eb4e9797ef65f040f093e96187db5aa3083beb2ad5bc8c738f821531121a173bfd180dbc37a962f3b51125dcbf771004dd791c0797285888c0c9e181eb321a51276dca99fc723533c72fa43490e9c583e74bd49d39c2dcdefd3be6149f4e95b1b12e1f51ab49280b99a09356b04d1d449d0621db0c8f4e308aba06b726f58af66fbcce2dccd0ce805c3f4de9dbb0c67a41631b9c069b9ae615acdaa83d3ca7012d54c9e163e6b2737c75a10c4cfc06a3b843c39175c4cb73700073615ad15cd4558003af2b9963f2662f5939e39d8f69c037f1e4670335b7a0496abadc757f85a74b2e8efa79efa8734d73b2ec5fe2ce8e8497b704c39db6fde9f163427bcb85125eceb5f55bc3ecc2f5cfdc0abbd4ae7e68014dccec8f2acc1056c3a6316118131db1dfbfb4d4b4c2eb454ea4ef1f760694b5fcbae8cf51902e14d2d33e1291546c7d325000019ccd9b01ee4a50220e6e5fe6b7826aa70d0f14cbd691862ae10c5915dc6118612571e0fc333a1af3bd1476a82e23ba3f467c63ecf66cb789fde61d6b93e56f054c2b58d76365fe5a6dfb5d17a944e13aa6798b42a0fac4fc8ddf5d03a9afdf9f717c654841855009e9616e16191c1756b6fb4dbf2b4218c677e70e7b7ead8356108ab51b15529febd088d1ae5dda744e3bff6bf9dd55c441d7f3c19dec7b63cf16fd9d0e1416bed4c89f74175da5586ac73b237f4a0a7b8bbf75fcea767cad4a24f566f0cdadf45d28eed0800b9e3682cdaf0c1e92804fd664efe0963fcbaf8c0f2c466d6d19eba26cebad91dce468295abf0a8d9c1d169bd96fcc7acc326c9b4ffd08613e7b2a58220511c175fa30321551a310e11f33680d5d05f7d61c72aa97a1f87553b2ec2a331cf883ea98ee8cf1a887110f4e5156f0d62233dfd886aef457a13fac6d7cbc6777022403bb3df7c6150cdac395804f82dbc5f7141b791402d61ec0d289c047e3d9b4fa3d6c8bbd9dad6379e88f1a02bb1780c0c1624422f0578fa470785f5d637e09ea880efbb4e1cb906d410bdc955a8c56fe7b2da9f4aa7b4c55d48e1b3f833b0e5ea4871649e5c3d7454b50bec0011d69567a4458cbe73ddc30cc47101f4402388d5f3b4721ba2469c74b9f09c9b2a9f27faca40229e9fc084601300fb8969ce1c5fe4301672c58960149e299714ab71a3b8b56d3109ca733bc79fcffe52a5d06837f90d0229939ef6ca4b946b06a81d3c6b7d1be1df40b21801b9cf4e1e7765e52c3c3ac9d76a8f7bc1c8413053d50ced7429f6da34edceed6b6fe6ec85d848b1eedc8a7d73e226c7313eb800e11d3f5357504bcd9c46217fa2514b88fbee1c27c797ec3872316a2f55259b4a1543dee915c55cdb12f7daa96b40382d81731bfafe37ca18a9e5344851028025d4381e99ccff71348df3aa2f4d23f654a90b8a400435c684f6e36bdec4f998ba91fe13fb80d832687c64a0c19cb9c5aa82170338272929b0fc734fc0772e40e8807537db73be39257ab703f7e19ea8ada5183574f5a20f33e2854f5e69cc671e7ac5839cd4061121765ca66ab1708b66110bfce77e0e4c19b4bc0267dc6f587be5a27477d002ddaf4180029bc1999166f9f3b02df65ed538bcc012ab3006a7259d1c80c9d1e734fbbc9bd1565d508277ff0eae1abbcaac8c76258698bf3cd9a47382aff58515a64f7d54784aaee3e44a31322946a2fa536d22b6872f81a587cc6ecc4d89899ec295b281c8cf5a73e84e7be4cc0d9294ae2bf5ab78eb9e5065973ae39649f876a2a95e24093f1f38de46ad446a6ed570ceed95dec15668a528fe72655afb91bbd706b268cf690760fe16f82d4dc7c249941c33529c4f4a8e69f15bfa230f4e5b7b58b6656d86d80d2427206103d05c5379773233cdd8089f67fe466a882d27d03149eb975a9ca75b806f523bab7dd5557abf7da3c10b1fbd6c8b87e7a1649bc39b0a8d828f0f2c5d714ccc193b5a7b8474e951881c7745c2362c91991bbae8367163c88d5472ce4102309f5b28d0be01fda7b1360be5e476f7972370b266d0190bb656f9615e387f2b2c5a43fae7fe8217dfd31c5b3296335eeaf25e7e94c3bedc22bdd4ce88d940e3a643c4a169b5b4589", 0x2, 0x0, 0x8d14, 0x0, 0xa, 0x3}, 0x2}, 0x6, 0xfffffff8, 0x0)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef)

0s ago: executing program 0 (id=4725):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x200000000000003, 0x1, 0x2c, 0x0, 0x300)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x106)
close_range$auto(0x2, 0x8, 0x0)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
bpf$auto_BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000080)=@info={r0, 0x5, 0x3}, 0x2)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa102, 0x0)
write$auto(r1, &(0x7f0000000040)='.G+*@sys\x00', 0x2)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS0\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

kernel console output (not intermixed with test programs):

[T17797]  ? __fget_files+0x215/0x3d0
[  679.800739][T17797]  loop_control_ioctl+0xae/0x620
[  679.800761][T17797]  ? __pfx_loop_control_ioctl+0x10/0x10
[  679.800785][T17797]  ? __pfx_loop_control_ioctl+0x10/0x10
[  679.800807][T17797]  __x64_sys_ioctl+0x18e/0x210
[  679.800829][T17797]  do_syscall_64+0x106/0xf80
[  679.800851][T17797]  ? clear_bhb_loop+0x40/0x90
[  679.800870][T17797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  679.800885][T17797] RIP: 0033:0x7fdd0bb9c799
[  679.800898][T17797] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  679.800913][T17797] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  679.800928][T17797] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[  679.800938][T17797] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005
[  679.800947][T17797] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[  679.800956][T17797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  679.800966][T17797] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[  679.800986][T17797]  </TASK>
[  680.063122][T17799] netlink: zone id is out of range
[  680.069704][T17799] netlink: zone id is out of range
[  680.083617][T17799] netlink: set zone limit has 8 unknown bytes
[  682.340198][T17846] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  682.532730][T17851] FAULT_INJECTION: forcing a failure.
[  682.532730][T17851] name failslab, interval 1, probability 0, space 0, times 0
[  682.598907][T17851] CPU: 0 UID: 0 PID: 17851 Comm: syz.1.3165 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  682.598933][T17851] Tainted: [L]=SOFTLOCKUP
[  682.598939][T17851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  682.598948][T17851] Call Trace:
[  682.598954][T17851]  <TASK>
[  682.598960][T17851]  dump_stack_lvl+0x100/0x190
[  682.598988][T17851]  should_fail_ex.cold+0x5/0xa
[  682.599008][T17851]  should_failslab+0xc2/0x120
[  682.599025][T17851]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  682.599047][T17851]  ? security_inode_alloc+0x3b/0x2c0
[  682.599064][T17851]  ? lockdep_init_map_type+0x5c/0x250
[  682.599087][T17851]  security_inode_alloc+0x3b/0x2c0
[  682.599103][T17851]  inode_init_always_gfp+0xced/0x1040
[  682.599122][T17851]  alloc_inode+0x8e/0x250
[  682.599142][T17851]  new_inode+0x22/0x1c0
[  682.599162][T17851]  shmem_get_inode+0x212/0x1040
[  682.599185][T17851]  ? __pfx_shmem_get_inode+0x10/0x10
[  682.599204][T17851]  ? rcu_is_watching+0x12/0xc0
[  682.599232][T17851]  shmem_tmpfile+0xbf/0x210
[  682.599250][T17851]  ? d_alloc+0x176/0x1e0
[  682.599266][T17851]  ? __pfx_shmem_tmpfile+0x10/0x10
[  682.599284][T17851]  ? do_raw_spin_unlock+0x145/0x1e0
[  682.599306][T17851]  ? _raw_spin_unlock+0x28/0x50
[  682.599328][T17851]  vfs_tmpfile+0x2be/0x9a0
[  682.599349][T17851]  path_openat+0x164e/0x31a0
[  682.599364][T17851]  ? kasan_save_stack+0x3f/0x50
[  682.599385][T17851]  ? kasan_save_stack+0x30/0x50
[  682.599406][T17851]  ? __kasan_slab_alloc+0x89/0x90
[  682.599419][T17851]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  682.599440][T17851]  ? do_getname+0x35/0x390
[  682.599458][T17851]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  682.599475][T17851]  ? __pfx_path_openat+0x10/0x10
[  682.599498][T17851]  do_file_open+0x20e/0x430
[  682.599515][T17851]  ? __pfx_do_file_open+0x10/0x10
[  682.599544][T17851]  ? _raw_spin_unlock+0x28/0x50
[  682.599562][T17851]  ? alloc_fd+0x476/0x790
[  682.599582][T17851]  do_sys_openat2+0x10d/0x1e0
[  682.599602][T17851]  ? __pfx_do_sys_openat2+0x10/0x10
[  682.599622][T17851]  ? __fget_files+0x21f/0x3d0
[  682.599640][T17851]  __x64_sys_open+0xfe/0x1d0
[  682.599659][T17851]  ? __pfx___x64_sys_open+0x10/0x10
[  682.599686][T17851]  do_syscall_64+0x106/0xf80
[  682.599706][T17851]  ? clear_bhb_loop+0x40/0x90
[  682.599723][T17851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  682.599739][T17851] RIP: 0033:0x7fdd0bb9c799
[  682.599752][T17851] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  682.599775][T17851] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  682.599789][T17851] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[  682.599799][T17851] RDX: 78e22799f4a46e8e RSI: 0000000000518282 RDI: 0000200000000080
[  682.599809][T17851] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[  682.599818][T17851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  682.599826][T17851] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[  682.599847][T17851]  </TASK>
[  683.255229][T17851] Process accounting paused
[  683.449069][T17856] FAULT_INJECTION: forcing a failure.
[  683.449069][T17856] name failslab, interval 1, probability 0, space 0, times 0
[  683.505156][T17856] CPU: 0 UID: 0 PID: 17856 Comm: syz.0.3167 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  683.505184][T17856] Tainted: [L]=SOFTLOCKUP
[  683.505190][T17856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  683.505199][T17856] Call Trace:
[  683.505204][T17856]  <TASK>
[  683.505210][T17856]  dump_stack_lvl+0x100/0x190
[  683.505238][T17856]  should_fail_ex.cold+0x5/0xa
[  683.505258][T17856]  should_failslab+0xc2/0x120
[  683.505274][T17856]  __kmalloc_cache_noprof+0x7a/0x6f0
[  683.505295][T17856]  ? vhost_net_open+0xb9/0x8b0
[  683.505416][T17856]  vhost_net_open+0xb9/0x8b0
[  683.505438][T17856]  ? __pfx_vhost_net_open+0x10/0x10
[  683.505460][T17856]  misc_open+0x26d/0x450
[  683.505513][T17856]  ? __pfx_misc_open+0x10/0x10
[  683.505530][T17856]  chrdev_open+0x234/0x6a0
[  683.505546][T17856]  ? __pfx_apparmor_file_open+0x10/0x10
[  683.505563][T17856]  ? __pfx_chrdev_open+0x10/0x10
[  683.505579][T17856]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  683.505600][T17856]  do_dentry_open+0x6d8/0x1660
[  683.505615][T17856]  ? __pfx_chrdev_open+0x10/0x10
[  683.505636][T17856]  vfs_open+0x82/0x3f0
[  683.505657][T17856]  path_openat+0x208c/0x31a0
[  683.505680][T17856]  ? __pfx_path_openat+0x10/0x10
[  683.505703][T17856]  do_file_open+0x20e/0x430
[  683.505720][T17856]  ? __pfx_do_file_open+0x10/0x10
[  683.505749][T17856]  ? alloc_fd+0x476/0x790
[  683.505766][T17856]  ? do_getname+0x191/0x390
[  683.505786][T17856]  do_sys_openat2+0x10d/0x1e0
[  683.505806][T17856]  ? __pfx_do_sys_openat2+0x10/0x10
[  683.505839][T17856]  __x64_sys_openat+0x12d/0x210
[  683.505861][T17856]  ? __pfx___x64_sys_openat+0x10/0x10
[  683.505889][T17856]  do_syscall_64+0x106/0xf80
[  683.505911][T17856]  ? clear_bhb_loop+0x40/0x90
[  683.505929][T17856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  683.505945][T17856] RIP: 0033:0x7fe42779c799
[  683.505959][T17856] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  683.505973][T17856] RSP: 002b:00007fe428658028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  683.505988][T17856] RAX: ffffffffffffffda RBX: 00007fe427a15fa0 RCX: 00007fe42779c799
[  683.505998][T17856] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  683.506008][T17856] RBP: 00007fe427832c99 R08: 0000000000000000 R09: 0000000000000000
[  683.506018][T17856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  683.506027][T17856] R13: 00007fe427a16038 R14: 00007fe427a15fa0 R15: 00007fffeed80268
[  683.506047][T17856]  </TASK>
[  683.939241][T17862] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3170'.
[  683.948981][T17862] netlink: 25 bytes leftover after parsing attributes in process `syz.3.3170'.
[  684.531203][T17873] FAULT_INJECTION: forcing a failure.
[  684.531203][T17873] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  684.668533][T17873] CPU: 0 UID: 0 PID: 17873 Comm: syz.0.3174 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  684.668561][T17873] Tainted: [L]=SOFTLOCKUP
[  684.668566][T17873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  684.668575][T17873] Call Trace:
[  684.668581][T17873]  <TASK>
[  684.668587][T17873]  dump_stack_lvl+0x100/0x190
[  684.668616][T17873]  should_fail_ex.cold+0x5/0xa
[  684.668635][T17873]  _copy_from_user+0x2e/0xd0
[  684.668752][T17873]  snd_seq_write+0x413/0x6d0
[  684.668805][T17873]  ? __pfx_snd_seq_write+0x10/0x10
[  684.668824][T17873]  ? bpf_lsm_file_permission+0x9/0x10
[  684.668840][T17873]  ? security_file_permission+0x76/0x210
[  684.668859][T17873]  ? rw_verify_area+0xce/0x6d0
[  684.668882][T17873]  vfs_write+0x2aa/0x1070
[  684.668897][T17873]  ? __pfx_snd_seq_write+0x10/0x10
[  684.668916][T17873]  ? __pfx_vfs_write+0x10/0x10
[  684.668928][T17873]  ? find_held_lock+0x2b/0x80
[  684.668942][T17873]  ? __fget_files+0x215/0x3d0
[  684.668956][T17873]  ? __fget_files+0x215/0x3d0
[  684.668974][T17873]  ? __fget_files+0x21f/0x3d0
[  684.668993][T17873]  ksys_write+0x1f8/0x250
[  684.669007][T17873]  ? __pfx_ksys_write+0x10/0x10
[  684.669027][T17873]  do_syscall_64+0x106/0xf80
[  684.669049][T17873]  ? clear_bhb_loop+0x40/0x90
[  684.669068][T17873]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  684.669083][T17873] RIP: 0033:0x7fe42779c799
[  684.669096][T17873] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  684.669111][T17873] RSP: 002b:00007fe428658028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  684.669125][T17873] RAX: ffffffffffffffda RBX: 00007fe427a15fa0 RCX: 00007fe42779c799
[  684.669135][T17873] RDX: 0000000000000038 RSI: 0000200000000000 RDI: 0000000000000005
[  684.669144][T17873] RBP: 00007fe427832c99 R08: 0000000000000000 R09: 0000000000000000
[  684.669153][T17873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  684.669162][T17873] R13: 00007fe427a16038 R14: 00007fe427a15fa0 R15: 00007fffeed80268
[  684.669183][T17873]  </TASK>
[  685.459218][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  685.466166][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  686.033958][T17916] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3193'.
[  686.072798][T17916] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3193'.
[  686.245450][T17923] nvme_fabrics: missing parameter 'transport=%s'
[  686.251858][T17923] nvme_fabrics: missing parameter 'nqn=%s'
[  687.142259][T17957] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  687.167150][T17957] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  687.204560][T17957] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  687.239511][T17957] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  687.415739][T17966] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3211'.
[  687.809952][T17977] netlink: 338 bytes leftover after parsing attributes in process `syz.3.3215'.
[  687.846783][T17982] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3215'.
[  687.939094][T17979] netlink: 338 bytes leftover after parsing attributes in process `syz.3.3215'.
[  688.042351][T17986] netlink: 'syz.0.3218': attribute type 1 has an invalid length.
[  688.085086][T17986] netlink: 9 bytes leftover after parsing attributes in process `syz.0.3218'.
[  688.183906][T17996] futex_wake_op: syz.3.3220 tries to shift op by -2048; fix this program
[  688.223828][T17996] futex_wake_op: syz.3.3220 tries to shift op by -2048; fix this program
[  689.134035][T15379] Bluetooth: hci0: command 0x0406 tx timeout
[  689.213846][T15065] Bluetooth: hci1: command 0x0406 tx timeout
[  689.219906][T15379] Bluetooth: hci2: command 0x0406 tx timeout
[  689.271137][T18031] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3229'.
[  689.293189][T15379] Bluetooth: hci3: command 0x0406 tx timeout
[  689.325657][T18034] netlink: 25 bytes leftover after parsing attributes in process `syz.0.3229'.
[  689.929040][T18050] nvme_fabrics: missing parameter 'transport=%s'
[  689.946445][T18050] nvme_fabrics: missing parameter 'nqn=%s'
[  690.204254][T18061] [U] 
[  690.206969][T18061] [U] 
[  690.209641][T18061] [U] 
[  690.212306][T18061] [U] 
[  690.263220][T18061] [U] 
[  690.265927][T18061] [U] 
[  690.268597][T18061] [U] 
[  690.271265][T18061] [U] 
[  690.318469][T18061] [U] 
[  690.321173][T18061] [U] 
[  690.323844][T18061] [U] 
[  690.326512][T18061] [U] 
[  690.360901][T18061] [U] 
[  690.363607][T18061] [U] 
[  690.366275][T18061] [U] 
[  690.368941][T18061] [U] 
[  690.392035][T15379] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  690.423220][T18061] [U] 
[  690.425911][T18061] [U] 
[  690.428582][T18061] [U] 
[  690.431251][T18061] [U] 
[  690.466794][T18061] [U] 
[  690.469481][T18061] [U] 
[  690.472150][T18061] [U] 
[  690.474814][T18061] [U] 
[  690.514369][T18061] [U] 
[  690.517064][T18061] [U] 
[  690.519733][T18061] [U] 
[  690.522400][T18061] [U] 
[  690.558539][T18061] [U] 
[  690.561229][T18061] [U] 
[  690.563899][T18061] [U] 
[  690.566569][T18061] [U] 
[  690.623678][T18061] [U] 
[  690.626377][T18061] [U] 
[  690.629047][T18061] [U] 
[  690.631715][T18061] [U] 
[  690.670719][T18061] [U] 
[  690.673421][T18061] [U] 
[  690.676089][T18061] [U] 
[  690.678756][T18061] [U] 
[  690.702916][T18077] netlink: 'syz.1.3241': attribute type 1 has an invalid length.
[  690.720955][T18061] [U] 
[  690.723643][T18061] [U] 
[  690.726312][T18061] [U] 
[  690.728979][T18061] [U] 
[  690.747155][T18077] netlink: 9 bytes leftover after parsing attributes in process `syz.1.3241'.
[  690.780495][T18061] [U] 
[  690.783179][T18061] [U] 
[  690.785850][T18061] [U] 
[  690.788518][T18061] [U] 
[  690.815428][T18061] [U] 
[  690.818123][T18061] [U] 
[  690.820789][T18061] [U] 
[  690.823458][T18061] [U] 
[  690.885034][T18061] [U] 
[  690.887735][T18061] [U] 
[  690.890408][T18061] [U] 
[  690.893074][T18061] [U] 
[  690.937948][T18061] [U] 
[  690.940646][T18061] [U] 
[  690.943312][T18061] [U] 
[  690.945976][T18061] [U] 
[  690.987715][T18061] [U] 
[  690.990411][T18061] [U] 
[  690.993076][T18061] [U] 
[  690.995742][T18061] [U] 
[  691.037320][T18061] [U] 
[  691.040016][T18061] [U] 
[  691.042682][T18061] [U] 
[  691.045347][T18061] [U] 
[  691.098037][T18061] [U] 
[  691.100734][T18061] [U] 
[  691.103401][T18061] [U] 
[  691.106065][T18061] [U] 
[  691.160767][T18061] [U] 
[  692.413879][T15379] Bluetooth: hci1: command 0x0406 tx timeout
[  693.811188][T18169] netlink: 318 bytes leftover after parsing attributes in process `syz.1.3272'.
[  694.086650][T18175] sp0: Synchronizing with TNC
[  694.492137][T15065] Bluetooth: hci1: command 0x0406 tx timeout
[  694.830892][T18189] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3279'.
[  694.873130][T18189] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3279'.
[  695.589936][T18203] netlink: 'syz.1.3284': attribute type 1 has an invalid length.
[  695.628522][T18203] netlink: 9 bytes leftover after parsing attributes in process `syz.1.3284'.
[  696.538287][T18236] netlink: 186 bytes leftover after parsing attributes in process `syz.2.3296'.
[  696.565425][T18236] netlink: 186 bytes leftover after parsing attributes in process `syz.2.3296'.
[  696.940764][T18247] netlink: 54 bytes leftover after parsing attributes in process `syz.0.3300'.
[  697.149056][T18258] FAULT_INJECTION: forcing a failure.
[  697.149056][T18258] name failslab, interval 1, probability 0, space 0, times 0
[  697.222173][T18258] CPU: 0 UID: 0 PID: 18258 Comm: syz.0.3303 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  697.222201][T18258] Tainted: [L]=SOFTLOCKUP
[  697.222206][T18258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  697.222216][T18258] Call Trace:
[  697.222221][T18258]  <TASK>
[  697.222227][T18258]  dump_stack_lvl+0x100/0x190
[  697.222260][T18258]  should_fail_ex.cold+0x5/0xa
[  697.222281][T18258]  should_failslab+0xc2/0x120
[  697.222299][T18258]  __kmalloc_cache_noprof+0x7a/0x6f0
[  697.222320][T18258]  ? sctp_add_bind_addr+0xae/0x3e0
[  697.222346][T18258]  sctp_add_bind_addr+0xae/0x3e0
[  697.222373][T18258]  sctp_copy_local_addr_list+0x349/0x550
[  697.222471][T18258]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  697.222493][T18258]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  697.222545][T18258]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  697.222564][T18258]  sctp_bind_addr_copy+0xe0/0x530
[  697.222589][T18258]  sctp_sf_do_unexpected_init.isra.0+0x906/0x16e0
[  697.222638][T18258]  ? __pfx_sctp_sf_do_unexpected_init.isra.0+0x10/0x10
[  697.222661][T18258]  ? __pfx_sctp_sm_lookup_event+0x10/0x10
[  697.222685][T18258]  ? __pfx_sctp_cname+0x10/0x10
[  697.222703][T18258]  sctp_do_sm+0x17a/0x5be0
[  697.222724][T18258]  ? __pfx_sctp_packet_singleton+0x10/0x10
[  697.222742][T18258]  ? __pfx_sctp_do_sm+0x10/0x10
[  697.222782][T18258]  ? ktime_get+0x200/0x300
[  697.222798][T18258]  ? lockdep_hardirqs_on+0x78/0x100
[  697.222824][T18258]  sctp_assoc_bh_rcv+0x392/0x6f0
[  697.222844][T18258]  sctp_inq_push+0x1db/0x280
[  697.222861][T18258]  sctp_backlog_rcv+0x169/0x590
[  697.222881][T18258]  ? __pfx_sctp_backlog_rcv+0x10/0x10
[  697.222898][T18258]  __release_sock+0x3a2/0x440
[  697.222922][T18258]  ? lockdep_hardirqs_on+0x78/0x100
[  697.222947][T18258]  release_sock+0x5a/0x220
[  697.222969][T18258]  sctp_wait_for_connect+0x1ed/0x610
[  697.222995][T18258]  ? __pfx_sctp_wait_for_connect+0x10/0x10
[  697.223019][T18258]  ? __pfx_autoremove_wake_function+0x10/0x10
[  697.223042][T18258]  ? sctp_primitive_ASSOCIATE+0x9c/0xd0
[  697.223061][T18258]  __sctp_connect+0x9bb/0xc70
[  697.223082][T18258]  ? __pfx___sctp_connect+0x10/0x10
[  697.223099][T18258]  ? __pfx_sctp_inet_connect+0x10/0x10
[  697.223116][T18258]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  697.223133][T18258]  ? __pfx_sctp_inet_connect+0x10/0x10
[  697.223148][T18258]  sctp_inet_connect+0x15f/0x220
[  697.223165][T18258]  __sys_connect_file+0x141/0x1a0
[  697.223187][T18258]  __sys_connect+0x141/0x170
[  697.223205][T18258]  ? __pfx___sys_connect+0x10/0x10
[  697.223236][T18258]  __x64_sys_connect+0x72/0xb0
[  697.223254][T18258]  ? lockdep_hardirqs_on+0x78/0x100
[  697.223287][T18258]  do_syscall_64+0x106/0xf80
[  697.223309][T18258]  ? clear_bhb_loop+0x40/0x90
[  697.223327][T18258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  697.223342][T18258] RIP: 0033:0x7fe42779c799
[  697.223361][T18258] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  697.223377][T18258] RSP: 002b:00007fe428658028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  697.223392][T18258] RAX: ffffffffffffffda RBX: 00007fe427a15fa0 RCX: 00007fe42779c799
[  697.223402][T18258] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003
[  697.223411][T18258] RBP: 00007fe427832c99 R08: 0000000000000000 R09: 0000000000000000
[  697.223421][T18258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  697.223430][T18258] R13: 00007fe427a16038 R14: 00007fe427a15fa0 R15: 00007fffeed80268
[  697.223450][T18258]  </TASK>
[  698.233212][T18274] sp0: Synchronizing with TNC
[  698.489668][T15379] Bluetooth: hci0: unexpected event 0x09 length: 435 > 3
[  698.988735][T18293] netlink: 'syz.0.3315': attribute type 1 has an invalid length.
[  699.048783][T18293] netlink: 9 bytes leftover after parsing attributes in process `syz.0.3315'.
[  700.028247][T18324] binder: BINDER_SET_CONTEXT_MGR already set
[  700.047667][T18324] binder: 18322:18324 ioctl 4018620d 2000000027c0 returned -16
[  700.131579][T18327] FAULT_INJECTION: forcing a failure.
[  700.131579][T18327] name failslab, interval 1, probability 0, space 0, times 0
[  700.187084][T18327] CPU: 0 UID: 0 PID: 18327 Comm: syz.0.3329 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  700.187109][T18327] Tainted: [L]=SOFTLOCKUP
[  700.187115][T18327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  700.187124][T18327] Call Trace:
[  700.187130][T18327]  <TASK>
[  700.187136][T18327]  dump_stack_lvl+0x100/0x190
[  700.187164][T18327]  should_fail_ex.cold+0x5/0xa
[  700.187183][T18327]  should_failslab+0xc2/0x120
[  700.187200][T18327]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  700.187222][T18327]  ? can_rx_register+0x582/0x6f0
[  700.187347][T18327]  can_rx_register+0x582/0x6f0
[  700.187368][T18327]  ? __pfx_raw_rcv+0x10/0x10
[  700.187391][T18327]  ? __pfx_can_rx_register+0x10/0x10
[  700.187418][T18327]  raw_enable_filters+0xe0/0x210
[  700.187445][T18327]  raw_enable_allfilters+0x8b/0x2b0
[  700.187465][T18327]  ? __local_bh_enable_ip+0x9e/0x120
[  700.187485][T18327]  raw_bind+0x1bd/0xdf0
[  700.187505][T18327]  ? apparmor_socket_bind+0x105/0x1e0
[  700.187563][T18327]  __sys_bind+0x1a9/0x260
[  700.187584][T18327]  ? __pfx___sys_bind+0x10/0x10
[  700.187614][T18327]  __x64_sys_bind+0x72/0xb0
[  700.187630][T18327]  ? lockdep_hardirqs_on+0x78/0x100
[  700.187653][T18327]  do_syscall_64+0x106/0xf80
[  700.187673][T18327]  ? clear_bhb_loop+0x40/0x90
[  700.187691][T18327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  700.187706][T18327] RIP: 0033:0x7fe42779c799
[  700.187719][T18327] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  700.187733][T18327] RSP: 002b:00007fe428658028 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  700.187748][T18327] RAX: ffffffffffffffda RBX: 00007fe427a15fa0 RCX: 00007fe42779c799
[  700.187758][T18327] RDX: 000000000000006a RSI: 0000200000000040 RDI: 0000000000000003
[  700.187768][T18327] RBP: 00007fe427832c99 R08: 0000000000000000 R09: 0000000000000000
[  700.187776][T18327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  700.187785][T18327] R13: 00007fe427a16038 R14: 00007fe427a15fa0 R15: 00007fffeed80268
[  700.187806][T18327]  </TASK>
[  700.404058][T18330] FAULT_INJECTION: forcing a failure.
[  700.404058][T18330] name failslab, interval 1, probability 0, space 0, times 0
[  700.416979][T18330] CPU: 0 UID: 0 PID: 18330 Comm: syz.1.3331 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  700.417004][T18330] Tainted: [L]=SOFTLOCKUP
[  700.417010][T18330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  700.417019][T18330] Call Trace:
[  700.417024][T18330]  <TASK>
[  700.417030][T18330]  dump_stack_lvl+0x100/0x190
[  700.417058][T18330]  should_fail_ex.cold+0x5/0xa
[  700.417077][T18330]  should_failslab+0xc2/0x120
[  700.417094][T18330]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  700.417115][T18330]  ? acpi_ut_create_thread_state+0x6d/0x170
[  700.417208][T18330]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  700.417230][T18330]  ? acpi_ut_allocate_object_desc_dbg+0x86/0x240
[  700.417249][T18330]  acpi_ut_create_thread_state+0x6d/0x170
[  700.417267][T18330]  acpi_ps_parse_aml+0x12e/0x1120
[  700.417307][T18330]  ? acpi_ut_ptr_exit+0x10c/0x180
[  700.417350][T18330]  acpi_ps_execute_method+0x5c4/0xe90
[  700.417374][T18330]  acpi_ns_evaluate+0x640/0x1670
[  700.417426][T18330]  acpi_evaluate_object+0x420/0xe00
[  700.417442][T18330]  ? kasan_save_stack+0x30/0x50
[  700.417464][T18330]  ? kasan_save_track+0x14/0x30
[  700.417481][T18330]  ? __pfx_acpi_evaluate_object+0x10/0x10
[  700.417502][T18330]  acpi_evaluate_integer+0xdf/0x220
[  700.417549][T18330]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[  700.417579][T18330]  ? __pfx_status_show+0x10/0x10
[  700.417614][T18330]  status_show+0xa0/0x120
[  700.417629][T18330]  ? __pfx_status_show+0x10/0x10
[  700.417651][T18330]  dev_attr_show+0x52/0xa0
[  700.417671][T18330]  ? __pfx_dev_attr_show+0x10/0x10
[  700.417688][T18330]  sysfs_kf_seq_show+0x217/0x3a0
[  700.417712][T18330]  seq_read_iter+0x32f/0x1270
[  700.417743][T18330]  kernfs_fop_read_iter+0x46c/0x610
[  700.417760][T18330]  ? rw_verify_area+0xce/0x6d0
[  700.417782][T18330]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[  700.417800][T18330]  vfs_read+0x825/0xb30
[  700.417817][T18330]  ? __pfx_vfs_read+0x10/0x10
[  700.417843][T18330]  ksys_read+0x12a/0x250
[  700.417857][T18330]  ? __pfx_ksys_read+0x10/0x10
[  700.417876][T18330]  do_syscall_64+0x106/0xf80
[  700.417898][T18330]  ? clear_bhb_loop+0x40/0x90
[  700.417917][T18330]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  700.417933][T18330] RIP: 0033:0x7fdd0bb9c799
[  700.417946][T18330] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  700.417968][T18330] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  700.417983][T18330] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[  700.417993][T18330] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000006
[  700.418002][T18330] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[  700.418011][T18330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  700.418019][T18330] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[  700.418040][T18330]  </TASK>
[  700.418125][T18330] ACPI Error: ffff88807ce57000 walk still has a scope list (20251212/dswstate-694)
[  700.972170][T18340] FAULT_INJECTION: forcing a failure.
[  700.972170][T18340] name failslab, interval 1, probability 0, space 0, times 0
[  700.995646][T18340] CPU: 0 UID: 0 PID: 18340 Comm: syz.1.3336 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  700.995672][T18340] Tainted: [L]=SOFTLOCKUP
[  700.995678][T18340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  700.995686][T18340] Call Trace:
[  700.995692][T18340]  <TASK>
[  700.995698][T18340]  dump_stack_lvl+0x100/0x190
[  700.995726][T18340]  should_fail_ex.cold+0x5/0xa
[  700.995745][T18340]  ? tracing_open+0x303/0xef0
[  700.995762][T18340]  should_failslab+0xc2/0x120
[  700.995779][T18340]  __kmalloc_noprof+0xe0/0x850
[  700.995801][T18340]  ? seq_open+0x116/0x170
[  700.995823][T18340]  tracing_open+0x303/0xef0
[  700.995845][T18340]  do_dentry_open+0x6d8/0x1660
[  700.995860][T18340]  ? __pfx_tracing_open+0x10/0x10
[  700.995882][T18340]  vfs_open+0x82/0x3f0
[  700.995903][T18340]  path_openat+0x208c/0x31a0
[  700.995933][T18340]  ? __pfx_path_openat+0x10/0x10
[  700.995956][T18340]  do_file_open+0x20e/0x430
[  700.995973][T18340]  ? __pfx_do_file_open+0x10/0x10
[  700.996004][T18340]  ? alloc_fd+0x476/0x790
[  700.996022][T18340]  ? do_getname+0x191/0x390
[  700.996043][T18340]  do_sys_openat2+0x10d/0x1e0
[  700.996063][T18340]  ? __pfx_do_sys_openat2+0x10/0x10
[  700.996089][T18340]  __x64_sys_openat+0x12d/0x210
[  700.996108][T18340]  ? __pfx___x64_sys_openat+0x10/0x10
[  700.996135][T18340]  do_syscall_64+0x106/0xf80
[  700.996157][T18340]  ? clear_bhb_loop+0x40/0x90
[  700.996175][T18340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  700.996190][T18340] RIP: 0033:0x7fdd0bb9c799
[  700.996204][T18340] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  700.996219][T18340] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  700.996233][T18340] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[  700.996242][T18340] RDX: 1a6b75d638929210 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  700.996252][T18340] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[  700.996261][T18340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  700.996270][T18340] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[  700.996290][T18340]  </TASK>
[  701.514183][T18351] FAULT_INJECTION: forcing a failure.
[  701.514183][T18351] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  701.533514][T18351] CPU: 0 UID: 0 PID: 18351 Comm: syz.1.3341 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  701.533539][T18351] Tainted: [L]=SOFTLOCKUP
[  701.533545][T18351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  701.533554][T18351] Call Trace:
[  701.533559][T18351]  <TASK>
[  701.533565][T18351]  dump_stack_lvl+0x100/0x190
[  701.533593][T18351]  should_fail_ex.cold+0x5/0xa
[  701.533612][T18351]  _copy_to_user+0x32/0xd0
[  701.533632][T18351]  dma_heap_ioctl+0x413/0x5e0
[  701.533758][T18351]  ? __pfx_dma_heap_ioctl+0x10/0x10
[  701.533780][T18351]  ? find_held_lock+0x2b/0x80
[  701.533804][T18351]  ? __pfx_dma_heap_ioctl+0x10/0x10
[  701.533827][T18351]  __x64_sys_ioctl+0x18e/0x210
[  701.533849][T18351]  do_syscall_64+0x106/0xf80
[  701.533871][T18351]  ? clear_bhb_loop+0x40/0x90
[  701.533897][T18351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  701.533913][T18351] RIP: 0033:0x7fdd0bb9c799
[  701.533926][T18351] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  701.533940][T18351] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  701.533955][T18351] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[  701.533964][T18351] RDX: 0000200000000140 RSI: ffffffffffdffe00 RDI: 0000000000000006
[  701.533973][T18351] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[  701.533982][T18351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  701.533990][T18351] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[  701.534011][T18351]  </TASK>
[  701.708828][T18354] sp0: Synchronizing with TNC
[  702.625334][T18381] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3348'.
[  703.261308][T18387] zswap: compressor  not available
[  704.067843][T18411] netlink: 330 bytes leftover after parsing attributes in process `syz.2.3356'.
[  704.093386][T18410] netlink: 17 bytes leftover after parsing attributes in process `syz.0.3357'.
[  705.280912][T18445] FAULT_INJECTION: forcing a failure.
[  705.280912][T18445] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  705.352030][T18445] CPU: 0 UID: 0 PID: 18445 Comm: syz.1.3368 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  705.352056][T18445] Tainted: [L]=SOFTLOCKUP
[  705.352062][T18445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  705.352071][T18445] Call Trace:
[  705.352076][T18445]  <TASK>
[  705.352082][T18445]  dump_stack_lvl+0x100/0x190
[  705.352110][T18445]  should_fail_ex.cold+0x5/0xa
[  705.352130][T18445]  _copy_from_iter+0x1f4/0x1690
[  705.352152][T18445]  ? kmalloc_reserve+0xf9/0x350
[  705.352170][T18445]  ? __asan_memset+0x23/0x50
[  705.352191][T18445]  ? __pfx__copy_from_iter+0x10/0x10
[  705.352209][T18445]  ? __alloc_skb+0x4e9/0x710
[  705.352228][T18445]  ? __pfx___alloc_skb+0x10/0x10
[  705.352250][T18445]  ? __asan_memset+0x23/0x50
[  705.352268][T18445]  ? skb_put+0x138/0x180
[  705.352285][T18445]  tipc_msg_build+0xa1e/0x1100
[  705.352312][T18445]  ? __pfx_tipc_msg_build+0x10/0x10
[  705.352335][T18445]  ? tipc_nametbl_lookup_mcast_nodes+0x214/0x370
[  705.352362][T18445]  tipc_sendmcast+0x797/0xbd0
[  705.352384][T18445]  ? set_next_entity+0x11e/0x9c0
[  705.352404][T18445]  ? __pfx_tipc_sendmcast+0x10/0x10
[  705.352425][T18445]  ? __lock_acquire+0x4a5/0x2630
[  705.352445][T18445]  ? __pfx_woken_wake_function+0x10/0x10
[  705.352468][T18445]  ? kvm_sched_clock_read+0x11/0x20
[  705.352488][T18445]  ? sched_clock+0x38/0x60
[  705.352512][T18445]  ? finish_task_switch.isra.0+0x200/0xb80
[  705.352537][T18445]  ? finish_task_switch.isra.0+0x200/0xb80
[  705.352558][T18445]  __tipc_sendmsg+0x6b9/0x1ae0
[  705.352581][T18445]  ? __pfx___tipc_sendmsg+0x10/0x10
[  705.352599][T18445]  ? aa_label_sk_perm+0x194/0x5f0
[  705.352695][T18445]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  705.352712][T18445]  ? __resched_curr+0x315/0x3b0
[  705.352729][T18445]  ? __pfx___schedule+0x10/0x10
[  705.352754][T18445]  ? register_lock_class+0x40/0x560
[  705.352778][T18445]  __tipc_sendstream+0xdaf/0x1110
[  705.352803][T18445]  ? __pfx___tipc_sendstream+0x10/0x10
[  705.352820][T18445]  ? do_raw_spin_lock+0x128/0x260
[  705.352841][T18445]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  705.352867][T18445]  ? __local_bh_enable_ip+0x9e/0x120
[  705.352885][T18445]  tipc_sendstream+0x4f/0x70
[  705.352903][T18445]  __sys_sendto+0x468/0x4b0
[  705.352922][T18445]  ? __pfx_tipc_sendstream+0x10/0x10
[  705.352940][T18445]  ? __pfx___sys_sendto+0x10/0x10
[  705.352965][T18445]  ? fd_install+0x223/0x580
[  705.352987][T18445]  ? xfd_validate_state+0x129/0x190
[  705.353012][T18445]  __x64_sys_sendto+0xe0/0x1c0
[  705.353031][T18445]  ? do_syscall_64+0x95/0xf80
[  705.353052][T18445]  ? lockdep_hardirqs_on+0x78/0x100
[  705.353072][T18445]  do_syscall_64+0x106/0xf80
[  705.353092][T18445]  ? clear_bhb_loop+0x40/0x90
[  705.353111][T18445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  705.353126][T18445] RIP: 0033:0x7fdd0bb9c799
[  705.353139][T18445] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  705.353154][T18445] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  705.353169][T18445] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[  705.353179][T18445] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[  705.353188][T18445] RBP: 00007fdd0bc32c99 R08: 0000200000000440 R09: 0000000000000020
[  705.353197][T18445] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[  705.353206][T18445] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[  705.353227][T18445]  </TASK>
[  708.179707][T18493] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3382'.
[  708.230572][T18496] netlink: 13 bytes leftover after parsing attributes in process `syz.0.3382'.
[  710.381486][T18541] FAULT_INJECTION: forcing a failure.
[  710.381486][T18541] name failslab, interval 1, probability 0, space 0, times 0
[  710.426405][T18541] CPU: 0 UID: 0 PID: 18541 Comm: syz.1.3394 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  710.426432][T18541] Tainted: [L]=SOFTLOCKUP
[  710.426438][T18541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  710.426447][T18541] Call Trace:
[  710.426452][T18541]  <TASK>
[  710.426458][T18541]  dump_stack_lvl+0x100/0x190
[  710.426488][T18541]  should_fail_ex.cold+0x5/0xa
[  710.426508][T18541]  ? landlock_init_hierarchy_log+0x186/0x820
[  710.426599][T18541]  should_failslab+0xc2/0x120
[  710.426616][T18541]  __kmalloc_noprof+0xe0/0x850
[  710.426642][T18541]  landlock_init_hierarchy_log+0x186/0x820
[  710.426667][T18541]  landlock_merge_ruleset+0x67b/0x830
[  710.426684][T18541]  ? prepare_creds+0x5ee/0x950
[  710.426707][T18541]  __do_sys_landlock_restrict_self+0x2a6/0x9e0
[  710.426726][T18541]  do_syscall_64+0x106/0xf80
[  710.426748][T18541]  ? clear_bhb_loop+0x40/0x90
[  710.426766][T18541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  710.426781][T18541] RIP: 0033:0x7fdd0bb9c799
[  710.426794][T18541] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  710.426809][T18541] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[  710.426824][T18541] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[  710.426833][T18541] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000005
[  710.426842][T18541] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[  710.426850][T18541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  710.426859][T18541] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[  710.426878][T18541]  </TASK>
[  711.181351][T18558] netlink: 25 bytes leftover after parsing attributes in process `syz.3.3397'.
[  711.695712][T18564] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  711.769456][T18564] MDS CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/mds.html for more details.
[  711.822059][T18564] TAA CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/tsx_async_abort.html for more details.
[  711.904034][T18564] MMIO Stale Data CPU bug present and SMT on, data leak possible. See https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/processor_mmio_stale_data.html for more details.
[  711.983601][   T30] audit: type=1800 audit(4294967367.120:17): pid=18579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3403" name="dbroot" dev="configfs" ino=68951 res=0 errno=0
[  712.068083][T18578] tipc: Started in network mode
[  712.073057][T18578] tipc: Node identity ffffffff, cluster identity 4711
[  712.079803][T18578] tipc: Node number set to 4294967295
[  712.530769][T18587] netlink: 334 bytes leftover after parsing attributes in process `syz.1.3405'.
[  713.299660][T18592] Process accounting resumed
[  713.681437][T18599] nvme_fabrics: missing parameter 'transport=%s'
[  713.696179][T18599] nvme_fabrics: missing parameter 'nqn=%s'
[  713.779582][T18602] nvme_fabrics: missing parameter 'transport=%s'
[  713.786289][T18602] nvme_fabrics: missing parameter 'nqn=%s'
[  715.672101][T18655] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3419'.
[  717.338949][T18712] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3430'.
[  719.247959][T18752] netlink: 25 bytes leftover after parsing attributes in process `syz.0.3437'.
[  720.398419][T18776] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3443'.
[  722.835796][T18811] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3453'.
[  722.845370][T18811] netlink: 354 bytes leftover after parsing attributes in process `syz.0.3453'.
[  723.354332][T18817] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3456'.
[  724.123986][T18831] FAULT_INJECTION: forcing a failure.
[  724.123986][T18831] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  724.162045][T18831] CPU: 0 UID: 0 PID: 18831 Comm: syz.0.3458 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  724.162091][T18831] Tainted: [L]=SOFTLOCKUP
[  724.162101][T18831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  724.162124][T18831] Call Trace:
[  724.162133][T18831]  <TASK>
[  724.162143][T18831]  dump_stack_lvl+0x100/0x190
[  724.162192][T18831]  should_fail_ex.cold+0x5/0xa
[  724.162228][T18831]  _copy_from_user+0x2e/0xd0
[  724.162264][T18831]  memdup_user+0x6b/0xe0
[  724.162292][T18831]  strndup_user+0x78/0xe0
[  724.162321][T18831]  __x64_sys_mount+0x136/0x310
[  724.162356][T18831]  ? __pfx___x64_sys_mount+0x10/0x10
[  724.162399][T18831]  do_syscall_64+0x106/0xf80
[  724.162437][T18831]  ? clear_bhb_loop+0x40/0x90
[  724.162471][T18831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.162498][T18831] RIP: 0033:0x7fe42779c799
[  724.162520][T18831] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  724.162547][T18831] RSP: 002b:00007fe428637028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  724.162573][T18831] RAX: ffffffffffffffda RBX: 00007fe427a16090 RCX: 00007fe42779c799
[  724.162591][T18831] RDX: 00002000000001c0 RSI: 00002000000000c0 RDI: 0000000000000000
[  724.162608][T18831] RBP: 00007fe427832c99 R08: 0000000000000000 R09: 0000000000000000
[  724.162625][T18831] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  724.162641][T18831] R13: 00007fe427a16128 R14: 00007fe427a16090 R15: 00007fffeed80268
[  724.162678][T18831]  </TASK>
[  731.302119][T15065] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  732.211766][T18952] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  732.880468][T18962] FAULT_INJECTION: forcing a failure.
[  732.880468][T18962] name failslab, interval 1, probability 0, space 0, times 0
[  732.904691][T18962] CPU: 0 UID: 0 PID: 18962 Comm: syz.1.3489 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  732.904734][T18962] Tainted: [L]=SOFTLOCKUP
[  732.904744][T18962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  732.904760][T18962] Call Trace:
[  732.904769][T18962]  <TASK>
[  732.904776][T18962]  dump_stack_lvl+0x100/0x190
[  732.904805][T18962]  should_fail_ex.cold+0x5/0xa
[  732.904826][T18962]  should_failslab+0xc2/0x120
[  732.904843][T18962]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  732.904867][T18962]  ? acpi_ut_create_generic_state+0x61/0xc0
[  732.904886][T18962]  ? __pfx_acpi_ut_trace+0x10/0x10
[  732.904915][T18962]  acpi_ut_create_generic_state+0x61/0xc0
[  732.904932][T18962]  acpi_ps_init_scope+0x3a/0x240
[  732.904952][T18962]  acpi_ds_init_aml_walk+0x1f6/0x680
[  732.905069][T18962]  acpi_ds_call_control_method+0x3a2/0xab0
[  732.905118][T18962]  acpi_ps_parse_aml+0xacd/0x1120
[  732.905139][T18962]  acpi_ps_execute_method+0x5c4/0xe90
[  732.905164][T18962]  acpi_ns_evaluate+0x640/0x1670
[  732.905190][T18962]  acpi_evaluate_object+0x420/0xe00
[  732.905205][T18962]  ? kasan_save_stack+0x30/0x50
[  732.905227][T18962]  ? kasan_save_track+0x14/0x30
[  732.905244][T18962]  ? __pfx_acpi_evaluate_object+0x10/0x10
[  732.905266][T18962]  acpi_evaluate_integer+0xdf/0x220
[  732.905288][T18962]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[  732.905318][T18962]  ? __pfx_status_show+0x10/0x10
[  732.905332][T18962]  status_show+0xa0/0x120
[  732.905347][T18962]  ? __pfx_status_show+0x10/0x10
[  732.905367][T18962]  dev_attr_show+0x52/0xa0
[  732.905386][T18962]  ? __pfx_dev_attr_show+0x10/0x10
[  732.905407][T18962]  sysfs_kf_seq_show+0x217/0x3a0
[  732.905431][T18962]  seq_read_iter+0x32f/0x1270
[  732.905462][T18962]  kernfs_fop_read_iter+0x46c/0x610
[  732.905479][T18962]  ? rw_verify_area+0xce/0x6d0
[  732.905500][T18962]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[  732.905518][T18962]  vfs_read+0x825/0xb30
[  732.905535][T18962]  ? __pfx_vfs_read+0x10/0x10
[  732.905562][T18962]  ksys_read+0x12a/0x250
[  732.905576][T18962]  ? __pfx_ksys_read+0x10/0x10
[  732.905595][T18962]  do_syscall_64+0x106/0xf80
[  732.905617][T18962]  ? clear_bhb_loop+0x40/0x90
[  732.905636][T18962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  732.905651][T18962] RIP: 0033:0x7fdd0bb9c799
[  732.905664][T18962] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  732.905679][T18962] RSP: 002b:00007fdd0c9e0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  732.905694][T18962] RAX: ffffffffffffffda RBX: 00007fdd0be16090 RCX: 00007fdd0bb9c799
[  732.905708][T18962] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000007
[  732.905723][T18962] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[  732.905738][T18962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  732.905754][T18962] R13: 00007fdd0be16128 R14: 00007fdd0be16090 R15: 00007ffc033bc768
[  732.905793][T18962]  </TASK>
[  732.906034][T18962] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529)
[  742.003720][T15065] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  742.335168][T19130] : Can't lookup blockdev
[  742.827479][T19146] netlink: 17 bytes leftover after parsing attributes in process `syz.1.3537'.
[  743.474750][T19159] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3539'.
[  743.503160][T19159] netlink: 'syz.0.3539': attribute type 1 has an invalid length.
[  743.528660][T19159] netlink: 5 bytes leftover after parsing attributes in process `syz.0.3539'.
[  743.604212][T19156] Process accounting paused
[  744.095490][T15379] Bluetooth: hci1: command 0x0406 tx timeout
[  744.171172][T19170] netlink: 'syz.1.3543': attribute type 1 has an invalid length.
[  744.179133][T19170] netlink: 9 bytes leftover after parsing attributes in process `syz.1.3543'.
[  744.274245][T15065] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  746.179081][T19173] Bluetooth: hci1: command 0x0406 tx timeout
[  746.336191][T15379] Bluetooth: hci3: command 0x0406 tx timeout
[  746.900229][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  746.922171][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  748.415112][T15065] Bluetooth: hci3: command 0x0406 tx timeout
[  749.653804][T19265] netlink: 25 bytes leftover after parsing attributes in process `syz.0.3567'.
[  752.373153][T19301] vivid-007: =================  START STATUS  =================
[  752.389322][T19301] vivid-007: Generate PTS: true
[  752.409607][T19301] vivid-007: Generate SCR: true
[  752.422424][T19301] tpg source WxH: 320x240 (Y'CbCr)
[  752.427582][T19301] tpg field: 1
[  752.472173][T19301] tpg crop: (0,0)/320x240
[  752.482177][T19301] tpg compose: (0,0)/320x240
[  752.488585][T19301] tpg colorspace: 8
[  752.498717][T19301] tpg transfer function: 0/0
[  752.550190][T19301] tpg Y'CbCr encoding: 0/0
[  752.559781][T19301] tpg quantization: 0/0
[  752.580274][T19301] tpg RGB range: 0/2
[  752.590477][T19301] vivid-007: ==================  END STATUS  ==================
[  753.851177][T19323] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3582'.
[  754.444253][T19335] netlink: 25 bytes leftover after parsing attributes in process `syz.0.3584'.
[  754.802545][T19344] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3585'.
[  756.616716][T19370] futex_wake_op: syz.3.3591 tries to shift op by -2048; fix this program
[  756.737663][T19370] futex_wake_op: syz.3.3591 tries to shift op by -2048; fix this program
[  756.759033][T19369] bridge0: port 3(team0) entered blocking state
[  756.974626][T19369] bridge0: port 3(team0) entered disabled state
[  757.065617][T19369] team0: entered allmulticast mode
[  757.070776][T19369] team_slave_0: entered allmulticast mode
[  757.101838][T19369] team_slave_1: entered allmulticast mode
[  757.144895][T19369] team0: entered promiscuous mode
[  757.185335][T19369] team_slave_0: entered promiscuous mode
[  757.203969][T19369] team_slave_1: entered promiscuous mode
[  757.211680][T19369] bridge0: port 3(team0) entered blocking state
[  757.218110][T19369] bridge0: port 3(team0) entered forwarding state
[  759.191407][T19416] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3603'.
[  760.457935][T19446] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  763.666923][T19522] Invalid ELF header magic: != ELF
[  766.777171][T19599] netlink: 354 bytes leftover after parsing attributes in process `syz.3.3645'.
[  769.064285][T19655] bond0: option mode: unable to set because the bond device is up
[  770.224004][T15379] Bluetooth: hci1: unexpected event 0x13 length: 440 > 260
[  773.089531][T19732] block2mtd: illegal erase size
[  773.098160][T19732] netlink: 'syz.0.3675': attribute type 1 has an invalid length.
[  773.877109][T19737] netlink: 'syz.3.3676': attribute type 23 has an invalid length.
[  774.532676][T19748] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3679'.
[  774.535874][T19716] Process accounting resumed
[  774.553430][T19748] netlink: 354 bytes leftover after parsing attributes in process `syz.0.3679'.
[  778.223810][T19826] binder: 19824:19826 ioctl c018620c 0 returned -1
[  778.257597][T19673] Process accounting resumed
[  778.330308][T19827] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0
[  779.763648][T19851] netlink: 17 bytes leftover after parsing attributes in process `syz.1.3703'.
[  780.770671][T19874] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3708'.
[  780.847329][T19877] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3710'.
[  780.955240][T19877] netlink: 354 bytes leftover after parsing attributes in process `syz.0.3710'.
[  784.579476][T19925] bridge_slave_1: left allmulticast mode
[  784.585272][T19925] bridge_slave_1: left promiscuous mode
[  784.591789][T19925] bridge0: port 2(bridge_slave_1) entered disabled state
[  790.865802][T20061] tipc: Started in network mode
[  790.870787][T20061] tipc: Node identity ffffffff, cluster identity 4711
[  790.879947][T20061] tipc: Node number set to 4294967295
[  791.277977][T20074] netlink: 9 bytes leftover after parsing attributes in process `syz.1.3760'.
[  791.469296][T20081] vivid-007: =================  START STATUS  =================
[  791.515991][T20081] vivid-007: Generate PTS: true
[  791.546412][T20081] vivid-007: Generate SCR: true
[  791.559635][T20081] tpg source WxH: 320x240 (Y'CbCr)
[  791.572720][T20081] tpg field: 1
[  791.580783][T20081] tpg crop: (0,0)/320x240
[  791.630160][T20081] tpg compose: (0,0)/320x240
[  791.655066][T20081] tpg colorspace: 8
[  791.665715][T20081] tpg transfer function: 0/0
[  791.684686][T20081] tpg Y'CbCr encoding: 0/0
[  791.733471][T20081] tpg quantization: 0/0
[  791.774194][T20081] tpg RGB range: 0/2
[  791.810909][T20081] vivid-007: ==================  END STATUS  ==================
[  793.581929][T20135] FAULT_INJECTION: forcing a failure.
[  793.581929][T20135] name failslab, interval 1, probability 0, space 0, times 0
[  793.651588][T20135] CPU: 0 UID: 0 PID: 20135 Comm: syz.1.3778 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  793.651613][T20135] Tainted: [L]=SOFTLOCKUP
[  793.651619][T20135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  793.651628][T20135] Call Trace:
[  793.651633][T20135]  <TASK>
[  793.651639][T20135]  dump_stack_lvl+0x100/0x190
[  793.651667][T20135]  should_fail_ex.cold+0x5/0xa
[  793.651686][T20135]  should_failslab+0xc2/0x120
[  793.651703][T20135]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  793.651726][T20135]  ? prepare_creds+0x2c/0x950
[  793.651748][T20135]  ? from_kuid_munged+0xaa/0x130
[  793.651766][T20135]  prepare_creds+0x2c/0x950
[  793.651789][T20135]  __sys_setfsuid+0xda/0x380
[  793.651806][T20135]  do_syscall_64+0x106/0xf80
[  793.651828][T20135]  ? clear_bhb_loop+0x40/0x90
[  793.651846][T20135]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  793.651860][T20135] RIP: 0033:0x7fdd0bb9c799
[  793.651873][T20135] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  793.651888][T20135] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  793.651903][T20135] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[  793.651913][T20135] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee00
[  793.651921][T20135] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[  793.651930][T20135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  793.651938][T20135] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[  793.651957][T20135]  </TASK>
[  794.840024][T20172] futex_wake_op: syz.3.3788 tries to shift op by -2048; fix this program
[  795.168498][T20181] input: f¬
 as /devices/virtual/input/input15
[  795.280463][T20181] zram: Removed device: zram0
[  800.014886][T20287] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3815'.
[  800.597749][T20297] random: crng reseeded on system resumption
[  801.642089][T20313] FAULT_INJECTION: forcing a failure.
[  801.642089][T20313] name failslab, interval 1, probability 0, space 0, times 0
[  801.665414][T20315] FAULT_INJECTION: forcing a failure.
[  801.665414][T20315] name failslab, interval 1, probability 0, space 0, times 0
[  801.728967][T20313] CPU: 1 UID: 0 PID: 20313 Comm: syz.1.3823 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  801.729018][T20313] Tainted: [L]=SOFTLOCKUP
[  801.729029][T20313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  801.729046][T20313] Call Trace:
[  801.729056][T20313]  <TASK>
[  801.729065][T20313]  dump_stack_lvl+0x100/0x190
[  801.729125][T20313]  should_fail_ex.cold+0x5/0xa
[  801.729162][T20313]  should_failslab+0xc2/0x120
[  801.729195][T20313]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  801.729241][T20313]  ? kasprintf+0xc7/0x100
[  801.729352][T20313]  ? __lock_acquire+0x4a5/0x2630
[  801.729395][T20313]  kvasprintf+0xbc/0x150
[  801.729428][T20313]  ? __pfx_kvasprintf+0x10/0x10
[  801.729484][T20313]  kasprintf+0xc7/0x100
[  801.729519][T20313]  ? __pfx_kasprintf+0x10/0x10
[  801.729556][T20313]  ? __is_module_percpu_address+0x1c2/0x430
[  801.729603][T20313]  alloc_workqueue_noprof+0x114/0x200
[  801.729637][T20313]  ? __pfx_alloc_workqueue_noprof+0x10/0x10
[  801.729676][T20313]  ? kobject_init+0x159/0x1b0
[  801.729707][T20313]  ? __alloc_disk_node+0x4d8/0x6b0
[  801.729749][T20313]  nbd_dev_add+0x51a/0xb10
[  801.729782][T20313]  ? find_held_lock+0x2b/0x80
[  801.729810][T20313]  ? __pfx_nbd_dev_add+0x10/0x10
[  801.729838][T20313]  ? nbd_genl_connect+0x131a/0x1a40
[  801.729937][T20313]  ? bpf_lsm_capable+0x9/0x10
[  801.729972][T20313]  ? __radix_tree_lookup+0x217/0x2b0
[  801.730050][T20313]  nbd_genl_connect+0xb8d/0x1a40
[  801.730082][T20313]  ? rcu_is_watching+0x12/0xc0
[  801.730141][T20313]  ? __pfx_nbd_genl_connect+0x10/0x10
[  801.730175][T20313]  ? __nla_parse+0x40/0x60
[  801.730251][T20313]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[  801.730331][T20313]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[  801.730373][T20313]  genl_family_rcv_msg_doit+0x214/0x300
[  801.730411][T20313]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  801.730442][T20313]  ? genl_get_cmd+0x3ef/0x720
[  801.730483][T20313]  ? __dev_queue_xmit+0x5af/0x4800
[  801.730516][T20313]  ? __radix_tree_lookup+0x217/0x2b0
[  801.730560][T20313]  genl_rcv_msg+0x560/0x800
[  801.730594][T20313]  ? __pfx_genl_rcv_msg+0x10/0x10
[  801.730627][T20313]  ? __pfx_nbd_genl_connect+0x10/0x10
[  801.730673][T20313]  netlink_rcv_skb+0x159/0x420
[  801.730701][T20313]  ? __pfx_genl_rcv_msg+0x10/0x10
[  801.730733][T20313]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  801.730775][T20313]  ? netlink_deliver_tap+0x1ae/0xcc0
[  801.730855][T20313]  genl_rcv+0x28/0x40
[  801.730883][T20313]  netlink_unicast+0x5aa/0x870
[  801.730932][T20313]  ? __pfx_netlink_unicast+0x10/0x10
[  801.730989][T20313]  netlink_sendmsg+0x8b0/0xda0
[  801.731024][T20313]  ? __pfx_netlink_sendmsg+0x10/0x10
[  801.731049][T20313]  ? __import_iovec+0x1d2/0x640
[  801.731087][T20313]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  801.731148][T20313]  ____sys_sendmsg+0x9e1/0xb70
[  801.731178][T20313]  ? __pfx_netlink_sendmsg+0x10/0x10
[  801.731209][T20313]  ? __pfx_____sys_sendmsg+0x10/0x10
[  801.731248][T20313]  ? try_to_wake_up+0x644/0x1a80
[  801.731286][T20313]  ___sys_sendmsg+0x190/0x1e0
[  801.731322][T20313]  ? __pfx____sys_sendmsg+0x10/0x10
[  801.731355][T20313]  ? futex_private_hash_put+0x107/0x1c0
[  801.731433][T20313]  __sys_sendmsg+0x170/0x220
[  801.731475][T20313]  ? __pfx___sys_sendmsg+0x10/0x10
[  801.731514][T20313]  ? __x64_sys_futex+0x34f/0x4d0
[  801.731575][T20313]  do_syscall_64+0x106/0xf80
[  801.731614][T20313]  ? clear_bhb_loop+0x40/0x90
[  801.731649][T20313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  801.731679][T20313] RIP: 0033:0x7fdd0bb9c799
[  801.731702][T20313] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  801.731731][T20313] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  801.731758][T20313] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[  801.731777][T20313] RDX: 0000000020040000 RSI: 0000200000000500 RDI: 0000000000000005
[  801.731794][T20313] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[  801.731812][T20313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  801.731828][T20313] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[  801.731867][T20313]  </TASK>
[  802.164519][T20315] CPU: 0 UID: 0 PID: 20315 Comm: syz.0.3824 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  802.164552][T20315] Tainted: [L]=SOFTLOCKUP
[  802.164558][T20315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  802.164568][T20315] Call Trace:
[  802.164574][T20315]  <TASK>
[  802.164580][T20315]  dump_stack_lvl+0x100/0x190
[  802.164609][T20315]  should_fail_ex.cold+0x5/0xa
[  802.164628][T20315]  ? __register_sysctl_table+0xbe4/0x1650
[  802.164643][T20315]  should_failslab+0xc2/0x120
[  802.164661][T20315]  __kmalloc_noprof+0xe0/0x850
[  802.164686][T20315]  __register_sysctl_table+0xbe4/0x1650
[  802.164705][T20315]  ? __pfx___register_sysctl_table+0x10/0x10
[  802.164719][T20315]  ? rcu_is_cpu_rrupt_from_idle+0x231/0x270
[  802.164744][T20315]  ? __asan_memcpy+0x3c/0x60
[  802.164766][T20315]  register_pidns_sysctls+0x11d/0x1c0
[  802.164786][T20315]  ? __ns_common_init+0x299/0x4b0
[  802.164805][T20315]  copy_pid_ns+0x680/0x10a0
[  802.164824][T20315]  ? __pfx_copy_pid_ns+0x10/0x10
[  802.164845][T20315]  ? rcu_is_watching+0x12/0xc0
[  802.164868][T20315]  ? copy_mnt_ns+0x106/0xc30
[  802.164885][T20315]  ? create_new_namespaces+0x30/0xac0
[  802.164904][T20315]  create_new_namespaces+0x2aa/0xac0
[  802.164924][T20315]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  802.164942][T20315]  ksys_unshare+0x473/0xad0
[  802.164961][T20315]  ? __pfx_ksys_unshare+0x10/0x10
[  802.164986][T20315]  __x64_sys_unshare+0x31/0x40
[  802.165004][T20315]  do_syscall_64+0x106/0xf80
[  802.165026][T20315]  ? clear_bhb_loop+0x40/0x90
[  802.165043][T20315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  802.165058][T20315] RIP: 0033:0x7fe42779c799
[  802.165072][T20315] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  802.165087][T20315] RSP: 002b:00007fe428658028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  802.165102][T20315] RAX: ffffffffffffffda RBX: 00007fe427a15fa0 RCX: 00007fe42779c799
[  802.165112][T20315] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
[  802.165120][T20315] RBP: 00007fe427832c99 R08: 0000000000000000 R09: 0000000000000000
[  802.165129][T20315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  802.165138][T20315] R13: 00007fe427a16038 R14: 00007fe427a15fa0 R15: 00007fffeed80268
[  802.165157][T20315]  </TASK>
[  802.165164][T20315] sysctl could not get directory: /kernel -12
[  804.471496][T20364] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3836'.
[  804.749549][T20364] Process accounting paused
[  808.360320][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  808.366951][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  808.529035][T20453] openvswitch: netlink: IP tunnel attribute has 24 unknown bytes.
[  808.735304][T20457] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3856'.
[  809.648662][T20480] netlink: 186 bytes leftover after parsing attributes in process `syz.0.3859'.
[  810.295399][T20498] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3863'.
[  813.113289][T20558] futex_wake_op: syz.2.3877 tries to shift op by -2048; fix this program
[  813.165058][T20558] futex_wake_op: syz.2.3877 tries to shift op by -2048; fix this program
[  813.529596][T20574] netlink: 13 bytes leftover after parsing attributes in process `syz.1.3883'.
[  814.393271][T20584] futex_wake_op: syz.1.3884 tries to shift op by -2048; fix this program
[  815.894558][T15379] Bluetooth: hci0: unexpected event 0x02 length: 726 > 260
[  821.861344][T20775] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16
[  823.262979][T20778] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17
[  825.097699][T15379] Bluetooth: hci1: unexpected event 0x02 length: 726 > 260
[  825.771528][T20860] netlink: 17 bytes leftover after parsing attributes in process `syz.2.3961'.
[  825.948588][T20854] FAULT_INJECTION: forcing a failure.
[  825.948588][T20854] name failslab, interval 1, probability 0, space 0, times 0
[  825.961344][T20854] CPU: 0 UID: 0 PID: 20854 Comm: syz.0.3958 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  825.961389][T20854] Tainted: [L]=SOFTLOCKUP
[  825.961400][T20854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  825.961417][T20854] Call Trace:
[  825.961427][T20854]  <TASK>
[  825.961437][T20854]  dump_stack_lvl+0x100/0x190
[  825.961496][T20854]  should_fail_ex.cold+0x5/0xa
[  825.961532][T20854]  should_failslab+0xc2/0x120
[  825.961565][T20854]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  825.961607][T20854]  ? prepare_creds+0x2c/0x950
[  825.961649][T20854]  ? from_kuid_munged+0xaa/0x130
[  825.961684][T20854]  prepare_creds+0x2c/0x950
[  825.961729][T20854]  __sys_setfsuid+0xda/0x380
[  825.961763][T20854]  do_syscall_64+0x106/0xf80
[  825.961805][T20854]  ? clear_bhb_loop+0x40/0x90
[  825.961841][T20854]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  825.961870][T20854] RIP: 0033:0x7fe42779c799
[  825.961894][T20854] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  825.961921][T20854] RSP: 002b:00007fe428658028 EFLAGS: 00000246 ORIG_RAX: 000000000000007a
[  825.961948][T20854] RAX: ffffffffffffffda RBX: 00007fe427a15fa0 RCX: 00007fe42779c799
[  825.961967][T20854] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee00
[  825.961984][T20854] RBP: 00007fe427832c99 R08: 0000000000000000 R09: 0000000000000000
[  825.962001][T20854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  825.962018][T20854] R13: 00007fe427a16038 R14: 00007fe427a15fa0 R15: 00007fffeed80268
[  825.962055][T20854]  </TASK>
[  827.627605][T20893] netlink: 17 bytes leftover after parsing attributes in process `syz.3.3972'.
[  828.587430][T20906] futex_wake_op: syz.0.3973 tries to shift op by -2048; fix this program
[  830.875566][T20959] futex_wake_op: syz.1.3984 tries to shift op by -2048; fix this program
[  830.893081][T20959] futex_wake_op: syz.1.3984 tries to shift op by -2048; fix this program
[  830.910841][T20958] 0x000000000001-0x000000020000 : ""
[  830.918658][T20958] ftl_cs: FTL header corrupt!
[  835.785054][T21039] Process accounting resumed
[  836.918686][T15379] Bluetooth: hci2: unexpected event 0x02 length: 726 > 260
[  846.864228][T21215] Setting dangerous option i915.mitigations - tainting kernel
[  849.550581][T21276] futex_wake_op: syz.2.4059 tries to shift op by -2048; fix this program
[  851.030863][T15379] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  853.076095][T15065] Bluetooth: hci2: command 0x0406 tx timeout
[  854.175260][T21388] ubi0: attaching mtd0
[  854.244493][T21388] FAULT_INJECTION: forcing a failure.
[  854.244493][T21388] name failslab, interval 1, probability 0, space 0, times 0
[  854.295430][T21388] CPU: 0 UID: 0 PID: 21388 Comm: syz.0.4081 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  854.295477][T21388] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  854.295489][T21388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  854.295502][T21388] Call Trace:
[  854.295508][T21388]  <TASK>
[  854.295514][T21388]  dump_stack_lvl+0x100/0x190
[  854.295543][T21388]  should_fail_ex.cold+0x5/0xa
[  854.295562][T21388]  should_failslab+0xc2/0x120
[  854.295579][T21388]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  854.295601][T21388]  ? __kernfs_new_node+0xd2/0x960
[  854.295627][T21388]  __kernfs_new_node+0xd2/0x960
[  854.295654][T21388]  ? __pfx___kernfs_new_node+0x10/0x10
[  854.295681][T21388]  ? find_held_lock+0x2b/0x80
[  854.295696][T21388]  ? kernfs_root+0xee/0x2a0
[  854.295716][T21388]  ? kernfs_root+0xee/0x2a0
[  854.295740][T21388]  kernfs_new_node+0x11b/0x1a0
[  854.295758][T21388]  __kernfs_create_file+0x53/0x350
[  854.295778][T21388]  sysfs_add_file_mode_ns+0x207/0x3c0
[  854.295802][T21388]  internal_create_group+0x593/0xf40
[  854.295828][T21388]  ? __pfx_internal_create_group+0x10/0x10
[  854.295857][T21388]  sysfs_slab_add+0x1a4/0x1f0
[  854.295874][T21388]  do_kmem_cache_create+0x472/0x540
[  854.295892][T21388]  __kmem_cache_create_args+0x386/0x420
[  854.295916][T21388]  ubi_attach+0x32a/0x4d30
[  854.296027][T21388]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  854.296047][T21388]  ? ubi_msg+0x114/0x159
[  854.296081][T21388]  ? __pfx_ubi_msg+0x10/0x10
[  854.296104][T21388]  ? __pfx_ubi_attach+0x10/0x10
[  854.296118][T21388]  ? lockdep_init_map_type+0x5c/0x250
[  854.296149][T21388]  ? ubi_attach_mtd_dev+0x1353/0x32a0
[  854.296190][T21388]  ? __vmalloc_node_noprof+0xad/0xf0
[  854.296208][T21388]  ? ubi_attach_mtd_dev+0x1353/0x32a0
[  854.296225][T21388]  ubi_attach_mtd_dev+0x139f/0x32a0
[  854.296250][T21388]  ? __pfx_ubi_attach_mtd_dev+0x10/0x10
[  854.296265][T21388]  ? __pfx_get_mtd_device+0x10/0x10
[  854.296312][T21388]  ctrl_cdev_ioctl+0x36a/0x400
[  854.296329][T21388]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[  854.296350][T21388]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[  854.296367][T21388]  __x64_sys_ioctl+0x18e/0x210
[  854.296391][T21388]  do_syscall_64+0x106/0xf80
[  854.296412][T21388]  ? clear_bhb_loop+0x40/0x90
[  854.296430][T21388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  854.296446][T21388] RIP: 0033:0x7fe42779c799
[  854.296460][T21388] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  854.296474][T21388] RSP: 002b:00007fe428658028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  854.296489][T21388] RAX: ffffffffffffffda RBX: 00007fe427a15fa0 RCX: 00007fe42779c799
[  854.296499][T21388] RDX: 0000000000000000 RSI: 0000000040186f40 RDI: 0000000000000009
[  854.296509][T21388] RBP: 00007fe427832c99 R08: 0000000000000000 R09: 0000000000000000
[  854.296517][T21388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  854.296526][T21388] R13: 00007fe427a16038 R14: 00007fe427a15fa0 R15: 00007fffeed80268
[  854.296547][T21388]  </TASK>
[  854.657196][T21388] SLUB: Unable to add cache ubi_aeb_slab_cache to sysfs
[  854.664815][T21388] ubi0: scanning is finished
[  854.669673][T21388] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  855.085239][T21356] futex_wake_op: syz.3.4076 tries to shift op by -2048; fix this program
[  855.155628][T15379] Bluetooth: hci2: command 0x0406 tx timeout
[  855.727363][T21388] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  857.724865][T21428] binder: 21426:21428 ioctl c018620c 0 returned -14
[  857.775625][T21428] FAULT_INJECTION: forcing a failure.
[  857.775625][T21428] name failslab, interval 1, probability 0, space 0, times 0
[  857.815529][T21428] CPU: 1 UID: 0 PID: 21428 Comm: syz.0.4091 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  857.815576][T21428] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  857.815587][T21428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  857.815603][T21428] Call Trace:
[  857.815613][T21428]  <TASK>
[  857.815623][T21428]  dump_stack_lvl+0x100/0x190
[  857.815671][T21428]  should_fail_ex.cold+0x5/0xa
[  857.815705][T21428]  should_failslab+0xc2/0x120
[  857.815737][T21428]  __kmalloc_cache_noprof+0x7a/0x6f0
[  857.815774][T21428]  ? rfkill_fop_open+0x1b6/0x750
[  857.815897][T21428]  ? lockdep_init_map_type+0x5c/0x250
[  857.815939][T21428]  ? __pfx_rfkill_fop_open+0x10/0x10
[  857.815974][T21428]  rfkill_fop_open+0x1b6/0x750
[  857.816014][T21428]  ? __pfx_rfkill_fop_open+0x10/0x10
[  857.816050][T21428]  misc_open+0x26d/0x450
[  857.816086][T21428]  ? __pfx_misc_open+0x10/0x10
[  857.816118][T21428]  chrdev_open+0x234/0x6a0
[  857.816155][T21428]  ? __pfx_apparmor_file_open+0x10/0x10
[  857.816187][T21428]  ? __pfx_chrdev_open+0x10/0x10
[  857.816220][T21428]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  857.816261][T21428]  do_dentry_open+0x6d8/0x1660
[  857.816300][T21428]  ? __pfx_chrdev_open+0x10/0x10
[  857.816340][T21428]  vfs_open+0x82/0x3f0
[  857.816382][T21428]  path_openat+0x208c/0x31a0
[  857.816426][T21428]  ? __pfx_path_openat+0x10/0x10
[  857.816471][T21428]  do_file_open+0x20e/0x430
[  857.816505][T21428]  ? __pfx_do_file_open+0x10/0x10
[  857.816565][T21428]  ? alloc_fd+0x476/0x790
[  857.816597][T21428]  ? do_getname+0x191/0x390
[  857.816636][T21428]  do_sys_openat2+0x10d/0x1e0
[  857.816673][T21428]  ? __pfx_do_sys_openat2+0x10/0x10
[  857.816713][T21428]  ? __fget_files+0x21f/0x3d0
[  857.816749][T21428]  __x64_sys_openat+0x12d/0x210
[  857.816787][T21428]  ? __pfx___x64_sys_openat+0x10/0x10
[  857.816841][T21428]  do_syscall_64+0x106/0xf80
[  857.816881][T21428]  ? clear_bhb_loop+0x40/0x90
[  857.816917][T21428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  857.816945][T21428] RIP: 0033:0x7fe42779c799
[  857.816969][T21428] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  857.816997][T21428] RSP: 002b:00007fe428658028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  857.817025][T21428] RAX: ffffffffffffffda RBX: 00007fe427a15fa0 RCX: 00007fe42779c799
[  857.817045][T21428] RDX: 0000000000020001 RSI: 00002000000002c0 RDI: ffffffffffffff9c
[  857.817065][T21428] RBP: 00007fe427832c99 R08: 0000000000000000 R09: 0000000000000000
[  857.817082][T21428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  857.817098][T21428] R13: 00007fe427a16038 R14: 00007fe427a15fa0 R15: 00007fffeed80268
[  857.817138][T21428]  </TASK>
[  863.400329][T21540] FAULT_INJECTION: forcing a failure.
[  863.400329][T21540] name fail_futex, interval 1, probability 0, space 0, times 1
[  863.416150][T21538] netlink: 354 bytes leftover after parsing attributes in process `syz.2.4126'.
[  863.456644][T21540] CPU: 1 UID: 0 PID: 21540 Comm: syz.1.4125 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  863.456692][T21540] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  863.456704][T21540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  863.456722][T21540] Call Trace:
[  863.456732][T21540]  <TASK>
[  863.456742][T21540]  dump_stack_lvl+0x100/0x190
[  863.456792][T21540]  should_fail_ex.cold+0x5/0xa
[  863.456829][T21540]  get_futex_key+0x1d2/0x1620
[  863.456869][T21540]  ? __pfx_get_futex_key+0x10/0x10
[  863.456901][T21540]  ? __x64_sys_syslog+0x74/0xb0
[  863.456940][T21540]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.456983][T21540]  futex_wait_setup+0x83/0x510
[  863.457035][T21540]  __futex_wait+0x19f/0x300
[  863.457081][T21540]  ? __pfx___futex_wait+0x10/0x10
[  863.457129][T21540]  ? __pfx_futex_wake_mark+0x10/0x10
[  863.457175][T21540]  ? futex_hash+0x2c5/0x380
[  863.457220][T21540]  futex_wait+0xed/0x380
[  863.457262][T21540]  ? __pfx_futex_wait+0x10/0x10
[  863.457324][T21540]  do_futex+0x1ef/0x350
[  863.457361][T21540]  ? __pfx_do_futex+0x10/0x10
[  863.457403][T21540]  ? do_syslog+0x18c/0x6d0
[  863.457446][T21540]  __x64_sys_futex+0x34f/0x4d0
[  863.457486][T21540]  ? __pfx___x64_sys_futex+0x10/0x10
[  863.457537][T21540]  do_syscall_64+0x106/0xf80
[  863.457577][T21540]  ? clear_bhb_loop+0x40/0x90
[  863.457611][T21540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.457639][T21540] RIP: 0033:0x7fdd0bb9c799
[  863.457664][T21540] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  863.457694][T21540] RSP: 002b:00007fdd0ca010e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  863.457722][T21540] RAX: ffffffffffffffda RBX: 00007fdd0be15fa8 RCX: 00007fdd0bb9c799
[  863.457742][T21540] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fdd0be15fa8
[  863.457759][T21540] RBP: 00007fdd0be15fa0 R08: 0000000000000000 R09: 0000000000000000
[  863.457777][T21540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  863.457794][T21540] R13: 00007fdd0be16038 R14: 00007ffc033bc680 R15: 00007ffc033bc768
[  863.457830][T21540]  </TASK>
[  866.181710][T21564] Process accounting paused
[  869.836439][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  869.842729][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  871.873868][T21680] block2mtd: illegal erase size
[  871.892313][T21680] netlink: 'syz.1.4162': attribute type 1 has an invalid length.
[  874.658646][T21725] futex_wake_op: syz.2.4169 tries to shift op by -2048; fix this program
[  874.684843][T21725] futex_wake_op: syz.2.4169 tries to shift op by -2048; fix this program
[  878.049990][T21807] bridge_slave_1: left allmulticast mode
[  878.077033][T21807] bridge_slave_1: left promiscuous mode
[  878.090239][T21807] bridge0: port 2(bridge_slave_1) entered disabled state
[  879.633504][T21841] Setting dangerous option i915.mitigations - tainting kernel
[  881.499125][T21874] bridge_slave_1: left allmulticast mode
[  881.504883][T21874] bridge_slave_1: left promiscuous mode
[  881.511665][T21874] bridge0: port 2(bridge_slave_1) entered disabled state
[  890.746265][T22083] zswap: compressor  not available
[  892.421010][T22142] random: crng reseeded on system resumption
[  896.317571][T22219] Process accounting resumed
[  897.811793][T22258] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[  897.893825][T22258] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[  898.046792][T22258] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  899.161653][T22289] zswap: compressor  not available
[  899.713668][T22313] zswap: compressor  not available
[  900.841570][T22342] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4322'.
[  901.854798][T22358] Unable to find swap-space signature
[  902.913384][T22379] FAULT_INJECTION: forcing a failure.
[  902.913384][T22379] name failslab, interval 1, probability 0, space 0, times 0
[  902.961326][T22379] CPU: 1 UID: 0 PID: 22379 Comm: syz.1.4334 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  902.961372][T22379] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  902.961383][T22379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  902.961400][T22379] Call Trace:
[  902.961409][T22379]  <TASK>
[  902.961421][T22379]  dump_stack_lvl+0x100/0x190
[  902.961473][T22379]  should_fail_ex.cold+0x5/0xa
[  902.961509][T22379]  ? sk_prot_alloc+0x10b/0x2a0
[  902.961540][T22379]  should_failslab+0xc2/0x120
[  902.961570][T22379]  __kmalloc_noprof+0xe0/0x850
[  902.961611][T22379]  ? security_inode_alloc+0xcf/0x2c0
[  902.961649][T22379]  sk_prot_alloc+0x10b/0x2a0
[  902.961682][T22379]  sk_alloc+0x36/0xe80
[  902.961721][T22379]  __netlink_create+0x5e/0x2c0
[  902.961762][T22379]  __netlink_kernel_create+0xed/0x750
[  902.961808][T22379]  ? __pfx___netlink_kernel_create+0x10/0x10
[  902.961862][T22379]  uevent_net_init+0xf8/0x330
[  902.961905][T22379]  ? __pfx_uevent_net_init+0x10/0x10
[  902.961940][T22379]  ? __pfx_uevent_net_rcv+0x10/0x10
[  902.961972][T22379]  ? __kmalloc_noprof+0x320/0x850
[  902.962021][T22379]  ? __pfx_uevent_net_init+0x10/0x10
[  902.962050][T22379]  ops_init+0x1e2/0x5f0
[  902.962096][T22379]  setup_net+0x118/0x3a0
[  902.962138][T22379]  ? __pfx_setup_net+0x10/0x10
[  902.962176][T22379]  ? lockdep_init_map_type+0x5c/0x250
[  902.962214][T22379]  ? mutex_init_lockep+0x110/0x150
[  902.962259][T22379]  copy_net_ns+0x46f/0x7c0
[  902.962291][T22379]  create_new_namespaces+0x3ea/0xac0
[  902.962327][T22379]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  902.962360][T22379]  ksys_unshare+0x473/0xad0
[  902.962397][T22379]  ? __pfx_ksys_unshare+0x10/0x10
[  902.962447][T22379]  __x64_sys_unshare+0x31/0x40
[  902.962481][T22379]  do_syscall_64+0x106/0xf80
[  902.962521][T22379]  ? clear_bhb_loop+0x40/0x90
[  902.962555][T22379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  902.962585][T22379] RIP: 0033:0x7fdd0bb9c799
[  902.962607][T22379] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  902.962634][T22379] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  902.962660][T22379] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[  902.962679][T22379] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  902.962697][T22379] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[  902.962713][T22379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  902.962730][T22379] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[  902.962770][T22379]  </TASK>
[  902.963128][T22379] kobject_uevent: unable to create netlink socket!
[  907.270345][T22434] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd
[  911.597464][T22498] netlink: 'syz.3.4368': attribute type 1 has an invalid length.
[  915.548853][T22558] netlink: 'syz.2.4371': attribute type 1 has an invalid length.
[  922.411215][   T30] audit: type=1800 audit(4294967417.632:18): pid=22663 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4399" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  924.535747][T22696] FAULT_INJECTION: forcing a failure.
[  924.535747][T22696] name failslab, interval 1, probability 0, space 0, times 0
[  924.638110][T22696] CPU: 1 UID: 0 PID: 22696 Comm: syz.0.4404 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  924.638157][T22696] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  924.638168][T22696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  924.638184][T22696] Call Trace:
[  924.638194][T22696]  <TASK>
[  924.638205][T22696]  dump_stack_lvl+0x100/0x190
[  924.638251][T22696]  should_fail_ex.cold+0x5/0xa
[  924.638286][T22696]  should_failslab+0xc2/0x120
[  924.638317][T22696]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  924.638358][T22696]  ? sock_alloc_inode+0x25/0x1c0
[  924.638393][T22696]  ? __pfx_sock_alloc_inode+0x10/0x10
[  924.638424][T22696]  sock_alloc_inode+0x25/0x1c0
[  924.638452][T22696]  alloc_inode+0x68/0x250
[  924.638490][T22696]  sock_alloc+0x44/0x280
[  924.638512][T22696]  ? security_socket_create+0x7f/0x250
[  924.638558][T22696]  sock_create_lite+0x82/0x120
[  924.638589][T22696]  __netlink_kernel_create+0xbd/0x750
[  924.638650][T22696]  ? __pfx___netlink_kernel_create+0x10/0x10
[  924.638707][T22696]  uevent_net_init+0xf8/0x330
[  924.638742][T22696]  ? __pfx_uevent_net_init+0x10/0x10
[  924.638773][T22696]  ? __pfx_uevent_net_rcv+0x10/0x10
[  924.638802][T22696]  ? __kmalloc_noprof+0x320/0x850
[  924.638844][T22696]  ? __pfx_uevent_net_init+0x10/0x10
[  924.638872][T22696]  ops_init+0x1e2/0x5f0
[  924.638925][T22696]  setup_net+0x118/0x3a0
[  924.638965][T22696]  ? __pfx_setup_net+0x10/0x10
[  924.639000][T22696]  ? lockdep_init_map_type+0x5c/0x250
[  924.639039][T22696]  ? mutex_init_lockep+0x110/0x150
[  924.639080][T22696]  copy_net_ns+0x46f/0x7c0
[  924.639109][T22696]  create_new_namespaces+0x3ea/0xac0
[  924.639149][T22696]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  924.639187][T22696]  ksys_unshare+0x473/0xad0
[  924.639225][T22696]  ? __pfx_ksys_unshare+0x10/0x10
[  924.639274][T22696]  __x64_sys_unshare+0x31/0x40
[  924.639310][T22696]  do_syscall_64+0x106/0xf80
[  924.639351][T22696]  ? clear_bhb_loop+0x40/0x90
[  924.639387][T22696]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  924.639422][T22696] RIP: 0033:0x7fe42779c799
[  924.639445][T22696] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  924.639472][T22696] RSP: 002b:00007fe428658028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  924.639500][T22696] RAX: ffffffffffffffda RBX: 00007fe427a15fa0 RCX: 00007fe42779c799
[  924.639519][T22696] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  924.639533][T22696] RBP: 00007fe427832c99 R08: 0000000000000000 R09: 0000000000000000
[  924.639550][T22696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  924.639567][T22696] R13: 00007fe427a16038 R14: 00007fe427a15fa0 R15: 00007fffeed80268
[  924.639607][T22696]  </TASK>
[  925.010369][T22696] kobject_uevent: unable to create netlink socket!
[  929.294450][T22719] Process accounting paused
[  931.213272][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  931.219682][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  937.695986][T22892] FAULT_INJECTION: forcing a failure.
[  937.695986][T22892] name failslab, interval 1, probability 0, space 0, times 0
[  937.733890][T22892] CPU: 0 UID: 0 PID: 22892 Comm: syz.0.4454 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  937.733939][T22892] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  937.733950][T22892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  937.733967][T22892] Call Trace:
[  937.733977][T22892]  <TASK>
[  937.733987][T22892]  dump_stack_lvl+0x100/0x190
[  937.734038][T22892]  should_fail_ex.cold+0x5/0xa
[  937.734076][T22892]  should_failslab+0xc2/0x120
[  937.734110][T22892]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  937.734154][T22892]  ? shmem_alloc_inode+0x25/0x50
[  937.734191][T22892]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  937.734225][T22892]  shmem_alloc_inode+0x25/0x50
[  937.734256][T22892]  alloc_inode+0x68/0x250
[  937.734294][T22892]  new_inode+0x22/0x1c0
[  937.734333][T22892]  shmem_get_inode+0x212/0x1040
[  937.734385][T22892]  ? __pfx_shmem_get_inode+0x10/0x10
[  937.734437][T22892]  __shmem_file_setup+0x184/0x490
[  937.734477][T22892]  ? __pfx___shmem_file_setup+0x10/0x10
[  937.734518][T22892]  ? do_raw_spin_lock+0x128/0x260
[  937.734560][T22892]  ? find_held_lock+0x2b/0x80
[  937.734587][T22892]  ? alloc_fd+0x476/0x790
[  937.734614][T22892]  ? alloc_fd+0x476/0x790
[  937.734646][T22892]  memfd_alloc_file+0x247/0x620
[  937.734683][T22892]  ? _raw_spin_unlock+0x28/0x50
[  937.734723][T22892]  ? __pfx_memfd_alloc_file+0x10/0x10
[  937.734771][T22892]  __do_sys_memfd_create+0x236/0x3d0
[  937.734815][T22892]  do_syscall_64+0x106/0xf80
[  937.734863][T22892]  ? clear_bhb_loop+0x40/0x90
[  937.734900][T22892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  937.734929][T22892] RIP: 0033:0x7fe42779c799
[  937.734953][T22892] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  937.734982][T22892] RSP: 002b:00007fe428658028 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  937.735015][T22892] RAX: ffffffffffffffda RBX: 00007fe427a15fa0 RCX: 00007fe42779c799
[  937.735035][T22892] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  937.735052][T22892] RBP: 00007fe427832c99 R08: 0000000000000000 R09: 0000000000000000
[  937.735070][T22892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  937.735087][T22892] R13: 00007fe427a16038 R14: 00007fe427a15fa0 R15: 00007fffeed80268
[  937.735125][T22892]  </TASK>
[  949.612759][T23043] can: request_module (can-proto-0) failed.
[  954.727088][T23166] netlink: zone id is out of range
[  954.733440][T23166] netlink: zone id is out of range
[  954.852821][T23166] netlink: set zone limit has 8 unknown bytes
[  959.264726][T23241] zswap: compressor  not available
[  959.449663][T23195] Process accounting resumed
[  967.737660][T23371] can: request_module (can-proto-4) failed.
[  970.558021][T23394] kexec: Could not allocate control_code_buffer
[  970.776114][T23414] FAULT_INJECTION: forcing a failure.
[  970.776114][T23414] name failslab, interval 1, probability 0, space 0, times 0
[  970.828050][T23414] CPU: 0 UID: 0 PID: 23414 Comm: syz.0.4602 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  970.828077][T23414] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  970.828084][T23414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  970.828093][T23414] Call Trace:
[  970.828099][T23414]  <TASK>
[  970.828105][T23414]  dump_stack_lvl+0x100/0x190
[  970.828140][T23414]  should_fail_ex.cold+0x5/0xa
[  970.828159][T23414]  should_failslab+0xc2/0x120
[  970.828176][T23414]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  970.828197][T23414]  ? __anon_vma_prepare+0x344/0x5e0
[  970.828222][T23414]  ? __pfx_filemap_map_pages+0x10/0x10
[  970.828243][T23414]  __anon_vma_prepare+0x344/0x5e0
[  970.828265][T23414]  ? __pfx_filemap_map_pages+0x10/0x10
[  970.828285][T23414]  __vmf_anon_prepare+0x11f/0x250
[  970.828304][T23414]  do_fault+0x152/0x1990
[  970.828323][T23414]  __handle_mm_fault+0x180f/0x2b60
[  970.828348][T23414]  ? __pfx___handle_mm_fault+0x10/0x10
[  970.828369][T23414]  ? pte_offset_map_lock+0x174/0x320
[  970.828385][T23414]  ? find_held_lock+0x2b/0x80
[  970.828406][T23414]  ? follow_page_pte+0x5b3/0x1400
[  970.828427][T23414]  handle_mm_fault+0x36d/0xa20
[  970.828450][T23414]  __get_user_pages+0xf9c/0x34d0
[  970.828474][T23414]  ? __pfx___get_user_pages+0x10/0x10
[  970.828496][T23414]  populate_vma_page_range+0x267/0x3f0
[  970.828516][T23414]  ? __pfx_populate_vma_page_range+0x10/0x10
[  970.828533][T23414]  ? __pfx_find_vma_intersection+0x10/0x10
[  970.828550][T23414]  ? do_mmap+0x93f/0x12f0
[  970.828568][T23414]  __mm_populate+0x107/0x3a0
[  970.828587][T23414]  ? __pfx___mm_populate+0x10/0x10
[  970.828606][T23414]  ? up_write+0x290/0x4f0
[  970.828628][T23414]  vm_mmap_pgoff+0x37f/0x470
[  970.828647][T23414]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  970.828663][T23414]  ? __fget_files+0x215/0x3d0
[  970.828681][T23414]  ? __fget_files+0x21f/0x3d0
[  970.828699][T23414]  ksys_mmap_pgoff+0x3c8/0x650
[  970.828715][T23414]  ? __x64_sys_futex+0x34f/0x4d0
[  970.828734][T23414]  ? __x64_sys_futex+0x358/0x4d0
[  970.828753][T23414]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  970.828770][T23414]  ? xfd_validate_state+0x129/0x190
[  970.828795][T23414]  __x64_sys_mmap+0x125/0x190
[  970.828818][T23414]  do_syscall_64+0x106/0xf80
[  970.828839][T23414]  ? clear_bhb_loop+0x40/0x90
[  970.828858][T23414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  970.828873][T23414] RIP: 0033:0x7fe42779c799
[  970.828886][T23414] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  970.828901][T23414] RSP: 002b:00007fe428658028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  970.828916][T23414] RAX: ffffffffffffffda RBX: 00007fe427a15fa0 RCX: 00007fe42779c799
[  970.828926][T23414] RDX: 0000000000000003 RSI: 0000000000000009 RDI: 0000000000000000
[  970.828934][T23414] RBP: 00007fe427832c99 R08: 0000000000000003 R09: 0000000000008000
[  970.828944][T23414] R10: 0000000000008012 R11: 0000000000000246 R12: 0000000000000000
[  970.828953][T23414] R13: 00007fe427a16038 R14: 00007fe427a15fa0 R15: 00007fffeed80268
[  970.828973][T23414]  </TASK>
[  973.164013][T23438] zswap: compressor  not available
[  977.339953][T23530] sp0: Synchronizing with TNC
[  978.742145][T23555] FAULT_INJECTION: forcing a failure.
[  978.742145][T23555] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  978.760664][T23555] CPU: 1 UID: 0 PID: 23555 Comm: syz.1.4641 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  978.760691][T23555] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  978.760697][T23555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  978.760707][T23555] Call Trace:
[  978.760712][T23555]  <TASK>
[  978.760718][T23555]  dump_stack_lvl+0x100/0x190
[  978.760746][T23555]  should_fail_ex.cold+0x5/0xa
[  978.760762][T23555]  ? prepare_alloc_pages+0x16d/0x5f0
[  978.760782][T23555]  should_fail_alloc_page+0xeb/0x140
[  978.760806][T23555]  prepare_alloc_pages+0x1f0/0x5f0
[  978.760824][T23555]  ? bpf_ksym_find+0x124/0x1c0
[  978.760846][T23555]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  978.760870][T23555]  ? __kernel_text_address+0xd/0x30
[  978.760892][T23555]  ? unwind_get_return_address+0x59/0xa0
[  978.760909][T23555]  ? arch_stack_walk+0xa6/0xf0
[  978.760930][T23555]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  978.760952][T23555]  ? stack_trace_save+0x8e/0xc0
[  978.760967][T23555]  ? __pfx_stack_trace_save+0x10/0x10
[  978.760983][T23555]  ? stack_depot_save_flags+0x27/0x9d0
[  978.761008][T23555]  ? kasan_save_stack+0x30/0x50
[  978.761029][T23555]  ? kasan_save_track+0x14/0x30
[  978.761041][T23555]  ? __kasan_kmalloc+0xaa/0xb0
[  978.761062][T23555]  ? ring_buffer_read_start+0x149/0x460
[  978.761084][T23555]  ? tracing_open+0x9cd/0xef0
[  978.761100][T23555]  ? do_dentry_open+0x6d8/0x1660
[  978.761114][T23555]  ? vfs_open+0x82/0x3f0
[  978.761131][T23555]  ? path_openat+0x208c/0x31a0
[  978.761145][T23555]  ? do_file_open+0x20e/0x430
[  978.761159][T23555]  ? do_sys_openat2+0x10d/0x1e0
[  978.761176][T23555]  ? __x64_sys_openat+0x12d/0x210
[  978.761194][T23555]  ? do_syscall_64+0x106/0xf80
[  978.761215][T23555]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  978.761229][T23555]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  978.761246][T23555]  ? policy_nodemask+0xed/0x4f0
[  978.761264][T23555]  alloc_pages_mpol+0x1fb/0x550
[  978.761281][T23555]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  978.761306][T23555]  ? ring_buffer_read_start+0x1b9/0x460
[  978.761326][T23555]  ___kmalloc_large_node+0x104/0x150
[  978.761345][T23555]  __kmalloc_large_node_noprof+0x1c/0x70
[  978.761365][T23555]  __kmalloc_noprof+0x5be/0x850
[  978.761390][T23555]  ring_buffer_read_start+0x1b9/0x460
[  978.761412][T23555]  ? __pfx_ring_buffer_read_start+0x10/0x10
[  978.761432][T23555]  ? lockdep_init_map_type+0x5c/0x250
[  978.761453][T23555]  ? ring_buffer_overruns+0x14e/0x1a0
[  978.761473][T23555]  tracing_open+0x9cd/0xef0
[  978.761495][T23555]  do_dentry_open+0x6d8/0x1660
[  978.761510][T23555]  ? __pfx_tracing_open+0x10/0x10
[  978.761532][T23555]  vfs_open+0x82/0x3f0
[  978.761553][T23555]  path_openat+0x208c/0x31a0
[  978.761575][T23555]  ? __pfx_path_openat+0x10/0x10
[  978.761597][T23555]  do_file_open+0x20e/0x430
[  978.761615][T23555]  ? __pfx_do_file_open+0x10/0x10
[  978.761644][T23555]  ? alloc_fd+0x476/0x790
[  978.761661][T23555]  ? do_getname+0x191/0x390
[  978.761682][T23555]  do_sys_openat2+0x10d/0x1e0
[  978.761701][T23555]  ? __pfx_do_sys_openat2+0x10/0x10
[  978.761727][T23555]  __x64_sys_openat+0x12d/0x210
[  978.761747][T23555]  ? __pfx___x64_sys_openat+0x10/0x10
[  978.761774][T23555]  do_syscall_64+0x106/0xf80
[  978.761801][T23555]  ? clear_bhb_loop+0x40/0x90
[  978.761820][T23555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  978.761835][T23555] RIP: 0033:0x7fdd0bb9c799
[  978.761848][T23555] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  978.761863][T23555] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  978.761878][T23555] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[  978.761889][T23555] RDX: 1a6b75d638929210 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  978.761898][T23555] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[  978.761907][T23555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  978.761915][T23555] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[  978.761936][T23555]  </TASK>
[  982.204790][   T30] audit: type=1326 audit(4294967477.472:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23593 comm="syz.3.4652" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7afeb9c799 code=0x0
[  982.741032][T23604] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4655'.
[  982.797280][T23604] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4655'.
[  982.832513][T23604] netlink: 302 bytes leftover after parsing attributes in process `syz.1.4655'.
[  986.783165][T23660] kAFS: No cell specified
[  987.579878][T23661] syz.2.4672 invoked oom-killer: gfp_mask=0x408d40(GFP_NOFS|__GFP_ZERO|__GFP_NOFAIL|__GFP_ACCOUNT), order=0, oom_score_adj=0
[  987.714606][T23661] CPU: 0 UID: 0 PID: 23661 Comm: syz.2.4672 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  987.714648][T23661] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  987.714657][T23661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  987.714672][T23661] Call Trace:
[  987.714681][T23661]  <TASK>
[  987.714690][T23661]  dump_stack_lvl+0x100/0x190
[  987.714734][T23661]  dump_header+0xfb/0x606
[  987.714766][T23661]  oom_kill_process.cold+0xd/0x330
[  987.714798][T23661]  out_of_memory+0x340/0x14f0
[  987.714845][T23661]  ? __pfx_out_of_memory+0x10/0x10
[  987.714903][T23661]  mem_cgroup_out_of_memory+0xc6/0x130
[  987.714940][T23661]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  987.714974][T23661]  ? find_held_lock+0x2b/0x80
[  987.715008][T23661]  ? do_raw_spin_unlock+0x145/0x1e0
[  987.715046][T23661]  ? _raw_spin_unlock+0x28/0x50
[  987.715085][T23661]  try_charge_memcg+0x652/0xc90
[  987.715122][T23661]  ? __pfx_try_charge_memcg+0x10/0x10
[  987.715149][T23661]  ? rcu_read_unlock+0x17/0x60
[  987.715177][T23661]  ? rcu_read_unlock+0x17/0x60
[  987.715215][T23661]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  987.715257][T23661]  obj_cgroup_charge_account+0x33d/0x640
[  987.715294][T23661]  __memcg_slab_post_alloc_hook+0x2dc/0x990
[  987.715333][T23661]  ? kasan_save_track+0x14/0x30
[  987.715362][T23661]  kmem_cache_alloc_noprof+0x58a/0x6e0
[  987.715398][T23661]  ? alloc_buffer_head+0x21/0x140
[  987.715437][T23661]  alloc_buffer_head+0x21/0x140
[  987.715467][T23661]  folio_alloc_buffers+0x2a0/0x8f0
[  987.715510][T23661]  create_empty_buffers+0x3a/0x660
[  987.715553][T23661]  folio_create_buffers+0x13b/0x1a0
[  987.715590][T23661]  __block_write_begin_int+0x393/0x19c0
[  987.715637][T23661]  ? __pfx_ext4_da_get_block_prep+0x10/0x10
[  987.715704][T23661]  ? __pfx___block_write_begin_int+0x10/0x10
[  987.715743][T23661]  ? __pfx___might_resched+0x10/0x10
[  987.715779][T23661]  ? __mark_inode_dirty+0x55c/0x1790
[  987.715820][T23661]  ? __pfx_ext4_da_get_block_prep+0x10/0x10
[  987.715850][T23661]  block_page_mkwrite+0x436/0x570
[  987.715897][T23661]  ext4_page_mkwrite+0xed9/0x1980
[  987.715939][T23661]  ? find_held_lock+0x2b/0x80
[  987.715964][T23661]  ? rcu_read_unlock+0x17/0x60
[  987.715994][T23661]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  987.716042][T23661]  do_page_mkwrite+0x17a/0x440
[  987.716073][T23661]  do_fault+0x3d7/0x1990
[  987.716110][T23661]  __handle_mm_fault+0x180f/0x2b60
[  987.716151][T23661]  ? mt_find+0x45e/0x8e0
[  987.716178][T23661]  ? __pfx___handle_mm_fault+0x10/0x10
[  987.716210][T23661]  ? __pfx_mt_find+0x10/0x10
[  987.716257][T23661]  ? find_vma+0xbf/0x140
[  987.716283][T23661]  ? __pfx_find_vma+0x10/0x10
[  987.716314][T23661]  handle_mm_fault+0x36d/0xa20
[  987.716357][T23661]  do_user_addr_fault+0x74c/0x12f0
[  987.716396][T23661]  exc_page_fault+0x6f/0xd0
[  987.716434][T23661]  asm_exc_page_fault+0x26/0x30
[  987.716460][T23661] RIP: 0033:0x7ff310e70ec0
[  987.716482][T23661] Code: 83 e6 07 0f 85 19 01 00 00 be 08 00 00 00 4c 89 ff 83 c5 01 e8 e1 93 fe ff 49 8b 47 40 41 83 47 30 08 48 8d 48 f8 49 89 4f 40 <48> 89 58 f8 49 83 c5 01 45 3b 6c 24 04 0f 82 fd fe ff ff 41 80 7f
[  987.716507][T23661] RSP: 002b:00007ffffc8da5b0 EFLAGS: 00010202
[  987.716528][T23661] RAX: 0000001b30b24000 RBX: ffffffff82873a6b RCX: 0000001b30b23ff8
[  987.716546][T23661] RDX: 00000000003ffde8 RSI: 00000000003ffde8 RDI: 00007ff311d45700
[  987.716563][T23661] RBP: 0000000000000001 R08: 0000000000000000 R09: 00007ff311202000
[  987.716579][T23661] R10: 00007ff311d45700 R11: 0000000000000000 R12: 00007ff311216038
[  987.716595][T23661] R13: 0000000000000000 R14: ffffffff82873301 R15: 00007ff311d45720
[  987.716613][T23661]  ? __x64_sys_write+0x11/0xb0
[  987.716640][T23661]  ? __ia32_sys_pread64+0x1eb/0x220
[  987.716682][T23661]  </TASK>
[  987.716692][T23661] memory: usage 307200kB, limit 307200kB, failcnt 23727
[  988.147811][T23661] memory+swap: usage 426788kB, limit 9007199254740988kB, failcnt 0
[  988.188871][T23661] kmem: usage 5848kB, limit 9007199254740988kB, failcnt 0
[  988.196039][T23661] Memory cgroup stats for /syz2:
[  988.196551][T23661] cache 287346688
[  988.278519][T23661] rss 21135360
[  988.285091][T23661] rss_huge 18874368
[  988.315271][T23661] shmem 287342592
[  988.328487][T23661] mapped_file 92246016
[  988.332591][T23661] dirty 0
[  988.335527][T23661] writeback 0
[  988.358574][T23661] workingset_refault_anon 66698
[  988.363427][T23661] workingset_refault_file 11720
[  988.398481][T23661] swap 122458112
[  988.402045][T23661] swapcached 261754880
[  988.423013][T23661] pgpgin 1175208
[  988.460264][T23661] pgpgout 1185420
[  988.482717][T23661] pgfault 1256961
[  988.500325][T23661] pgmajfault 7714
[  988.515001][T23661] inactive_anon 306147328
[  988.528504][T23661] active_anon 2433024
[  988.532514][T23661] inactive_file 4096
[  988.536408][T23661] active_file 0
[  988.551938][T23661] unevictable 0
[  988.950561][T23661] hierarchical_memory_limit 314572800
[  988.988200][T23661] hierarchical_memsw_limit 9223372036854771712
[  988.995922][T23661] total_cache 287346688
[  989.018181][T23661] total_rss 21135360
[  989.022091][T23661] total_rss_huge 18874368
[  989.034817][T23661] total_shmem 287342592
[  989.058311][T23661] total_mapped_file 92246016
[  989.067285][T23661] total_dirty 0
[  989.078130][T23661] total_writeback 0
[  989.081951][T23661] total_workingset_refault_anon 66698
[  989.087325][T23661] total_workingset_refault_file 11720
[  989.125085][T23661] total_swap 122458112
[  989.149726][T23661] total_swapcached 261754880
[  989.154336][T23661] total_pgpgin 1175208
[  989.177150][T23661] total_pgpgout 1185420
[  989.186079][T23661] total_pgfault 1256961
[  989.195661][T23661] total_pgmajfault 7714
[  989.204739][T23661] total_inactive_anon 306147328
[  989.218063][T23661] total_active_anon 2433024
[  989.222575][T23661] total_inactive_file 4096
[  989.226996][T23661] total_active_file 0
[  989.249615][T23661] total_unevictable 0
[  989.253613][T23661] anon_cost 1450
[  989.257161][T23661] file_cost 10993
[  989.279067][T23661] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.575,pid=8267,uid=0
[  989.309701][T23661] Memory cgroup out of memory: Killed process 8267 (syz.2.575) total-vm:102156kB, anon-rss:1244kB, file-rss:20800kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[  989.402724][T23625] syz.2.4648 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  989.521414][T23625] CPU: 0 UID: 0 PID: 23625 Comm: syz.2.4648 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  989.521459][T23625] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  989.521468][T23625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  989.521482][T23625] Call Trace:
[  989.521491][T23625]  <TASK>
[  989.521501][T23625]  dump_stack_lvl+0x100/0x190
[  989.521545][T23625]  dump_header+0xfb/0x606
[  989.521574][T23625]  oom_kill_process.cold+0xd/0x330
[  989.521606][T23625]  out_of_memory+0x340/0x14f0
[  989.521653][T23625]  ? __pfx_out_of_memory+0x10/0x10
[  989.521701][T23625]  mem_cgroup_out_of_memory+0xc6/0x130
[  989.521738][T23625]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  989.521772][T23625]  ? find_held_lock+0x2b/0x80
[  989.521805][T23625]  ? do_raw_spin_unlock+0x145/0x1e0
[  989.521842][T23625]  ? _raw_spin_unlock+0x28/0x50
[  989.521879][T23625]  try_charge_memcg+0x652/0xc90
[  989.521916][T23625]  ? __pfx_try_charge_memcg+0x10/0x10
[  989.521944][T23625]  ? find_held_lock+0x2b/0x80
[  989.521969][T23625]  ? rcu_read_unlock+0x17/0x60
[  989.521997][T23625]  ? rcu_read_unlock+0x17/0x60
[  989.522038][T23625]  charge_memcg+0xa6/0x280
[  989.522066][T23625]  __mem_cgroup_charge+0x2b/0x1e0
[  989.522100][T23625]  shmem_alloc_and_add_folio+0x451/0xd40
[  989.522148][T23625]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  989.522189][T23625]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  989.522237][T23625]  shmem_get_folio_gfp+0x6ab/0x1900
[  989.522284][T23625]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  989.522323][T23625]  ? lock_acquire+0x1cf/0x380
[  989.522368][T23625]  shmem_fault+0x1f9/0xa20
[  989.522405][T23625]  ? __lock_acquire+0x4a5/0x2630
[  989.522437][T23625]  ? __pfx_shmem_fault+0x10/0x10
[  989.522471][T23625]  ? __folio_batch_add_and_move+0x464/0xc60
[  989.522511][T23625]  ? __pfx_lru_add+0x10/0x10
[  989.522552][T23625]  ? __pfx_filemap_map_pages+0x10/0x10
[  989.522589][T23625]  __do_fault+0x10d/0x550
[  989.522618][T23625]  ? __pfx_filemap_map_pages+0x10/0x10
[  989.522654][T23625]  do_fault+0xabb/0x1990
[  989.522689][T23625]  __handle_mm_fault+0x180f/0x2b60
[  989.522736][T23625]  ? __pfx___handle_mm_fault+0x10/0x10
[  989.522772][T23625]  ? pte_offset_map_lock+0x174/0x320
[  989.522801][T23625]  ? find_held_lock+0x2b/0x80
[  989.522838][T23625]  ? follow_page_pte+0x5b3/0x1400
[  989.522875][T23625]  handle_mm_fault+0x36d/0xa20
[  989.522917][T23625]  __get_user_pages+0xf9c/0x34d0
[  989.522961][T23625]  ? __pfx___get_user_pages+0x10/0x10
[  989.523001][T23625]  get_dump_page+0x27e/0x3d0
[  989.523032][T23625]  ? __pfx_get_dump_page+0x10/0x10
[  989.523063][T23625]  ? dump_user_range+0x73b/0xb50
[  989.523101][T23625]  dump_user_range+0x18d/0xb50
[  989.523138][T23625]  ? __pfx_dump_user_range+0x10/0x10
[  989.523180][T23625]  ? __pfx_writenote+0x10/0x10
[  989.523221][T23625]  elf_core_dump+0x2d5f/0x3d10
[  989.523274][T23625]  ? __pfx_elf_core_dump+0x10/0x10
[  989.523316][T23625]  ? find_held_lock+0x2b/0x80
[  989.523348][T23625]  ? 0xffffffffff600000
[  989.523372][T23625]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  989.523407][T23625]  ? lockdep_hardirqs_on+0x78/0x100
[  989.523498][T23625]  ? vfs_coredump+0x27bc/0x5570
[  989.523525][T23625]  vfs_coredump+0x27bc/0x5570
[  989.523570][T23625]  ? __pfx_vfs_coredump+0x10/0x10
[  989.523602][T23625]  ? __lock_acquire+0x4a5/0x2630
[  989.523649][T23625]  ? lock_acquire+0x1cf/0x380
[  989.523696][T23625]  ? is_bpf_text_address+0x8a/0x1a0
[  989.523735][T23625]  ? bpf_ksym_find+0x124/0x1c0
[  989.523774][T23625]  ? __kernel_text_address+0xd/0x30
[  989.523811][T23625]  ? unwind_get_return_address+0x59/0xa0
[  989.523839][T23625]  ? arch_stack_walk+0xa6/0xf0
[  989.523877][T23625]  ? __sigqueue_free+0xbe/0x2a0
[  989.523910][T23625]  ? stack_trace_save+0x8e/0xc0
[  989.523937][T23625]  ? __pfx_stack_trace_save+0x10/0x10
[  989.523964][T23625]  ? stack_depot_save_flags+0x27/0x9d0
[  989.523999][T23625]  ? __lock_acquire+0x4a5/0x2630
[  989.524093][T23625]  ? proc_coredump_connector+0x2d3/0x4f0
[  989.524222][T23625]  ? __pfx_proc_coredump_connector+0x10/0x10
[  989.524266][T23625]  ? rcu_is_watching+0x12/0xc0
[  989.524310][T23625]  get_signal+0x1f2a/0x21e0
[  989.524361][T23625]  ? __pfx_get_signal+0x10/0x10
[  989.524389][T23625]  ? bad_area_access_error+0xab/0x1d0
[  989.524413][T23625]  ? fixup_vdso_exception+0x2d1/0x370
[  989.524454][T23625]  arch_do_signal_or_restart+0x91/0x770
[  989.524489][T23625]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  989.524532][T23625]  ? do_user_addr_fault+0x8d6/0x12f0
[  989.524567][T23625]  irqentry_exit+0x1f8/0x670
[  989.524607][T23625]  asm_exc_page_fault+0x26/0x30
[  989.524633][T23625] RIP: 0033:0x400fff
[  989.524653][T23625] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  989.524678][T23625] RSP: 002b:000000000000000f EFLAGS: 00010206
[  989.524698][T23625] RAX: 0000000000000000 RBX: 00007ff311215fa0 RCX: 00007ff310f9c799
[  989.524715][T23625] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000020003b46
[  989.524731][T23625] RBP: 00007ff311032c99 R08: 0000000000000002 R09: 0000000000000000
[  989.524746][T23625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  989.524761][T23625] R13: 00007ff311216038 R14: 00007ff311215fa0 R15: 00007ffffc8da568
[  989.524798][T23625]  </TASK>
[  989.524808][T23625] memory: usage 307136kB, limit 307200kB, failcnt 23773
[  990.104482][T23625] memory+swap: usage 426820kB, limit 9007199254740988kB, failcnt 0
[  990.118429][T23625] kmem: usage 5704kB, limit 9007199254740988kB, failcnt 0
[  990.154671][T23701] zswap: compressor  not available
[  990.219192][T23625] Memory cgroup stats for /syz2:
[  990.219454][T23625] cache 287391744
[  990.256833][T23704] Process accounting paused
[  990.261442][T23625] rss 21196800
[  990.274977][T23625] rss_huge 18874368
[  990.307555][T23625] shmem 286982144
[  990.311250][T23625] mapped_file 91922432
[  990.315322][T23625] dirty 8192
[  990.583084][T23625] writeback 0
[  990.586418][T23625] workingset_refault_anon 66698
[  990.672417][T23625] workingset_refault_file 12265
[  990.698426][T23625] swap 122490880
[  990.712680][T23625] swapcached 261808128
[  990.716929][T23625] pgpgin 1175782
[  990.808585][T23625] pgpgout 1185936
[  990.812261][T23625] pgfault 1257023
[  990.838617][T23625] pgmajfault 7721
[  990.842282][T23625] inactive_anon 305770496
[  990.846617][T23625] active_anon 2473984
[  990.938308][T23625] inactive_file 294912
[  991.048748][T23625] active_file 4096
[  991.076759][T23625] unevictable 0
[  991.126229][T23625] hierarchical_memory_limit 314572800
[  991.137137][T23625] hierarchical_memsw_limit 9223372036854771712
[  991.213165][T23625] total_cache 287391744
[  991.237101][T23625] total_rss 21196800
[  991.241022][T23625] total_rss_huge 18874368
[  991.245353][T23625] total_shmem 286982144
[  991.297070][T23625] total_mapped_file 91922432
[  991.301698][T23625] total_dirty 8192
[  991.305412][T23625] total_writeback 0
[  991.333632][T23625] total_workingset_refault_anon 66698
[  991.339523][T23625] total_workingset_refault_file 12265
[  991.365288][T23625] total_swap 122490880
[  991.380560][T23625] total_swapcached 261808128
[  991.385164][T23625] total_pgpgin 1175782
[  991.466929][T23625] total_pgpgout 1185936
[  991.471119][T23625] total_pgfault 1257023
[  991.475275][T23625] total_pgmajfault 7721
[  991.516905][T23625] total_inactive_anon 305770496
[  991.521775][T23625] total_active_anon 2473984
[  991.526272][T23625] total_inactive_file 294912
[  991.550697][T23625] total_active_file 4096
[  991.554958][T23625] total_unevictable 0
[  991.575565][T23625] anon_cost 1210
[  991.584737][T23625] file_cost 12030
[  991.594263][T23625] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.378,pid=7615,uid=0
[  991.628742][T23625] Memory cgroup out of memory: Killed process 7615 (syz.2.378) total-vm:102156kB, anon-rss:1240kB, file-rss:20800kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000
[  992.624771][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  992.631430][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  993.348176][T23233] syz.2.4548 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  993.445759][T23233] CPU: 1 UID: 0 PID: 23233 Comm: syz.2.4548 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  993.445803][T23233] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  993.445812][T23233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  993.445827][T23233] Call Trace:
[  993.445836][T23233]  <TASK>
[  993.445846][T23233]  dump_stack_lvl+0x100/0x190
[  993.445898][T23233]  dump_header+0xfb/0x606
[  993.445928][T23233]  oom_kill_process.cold+0xd/0x330
[  993.445957][T23233]  out_of_memory+0x340/0x14f0
[  993.446001][T23233]  ? __pfx_out_of_memory+0x10/0x10
[  993.446046][T23233]  mem_cgroup_out_of_memory+0xc6/0x130
[  993.446082][T23233]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  993.446114][T23233]  ? find_held_lock+0x2b/0x80
[  993.446147][T23233]  ? do_raw_spin_unlock+0x145/0x1e0
[  993.446185][T23233]  ? _raw_spin_unlock+0x28/0x50
[  993.446222][T23233]  try_charge_memcg+0x652/0xc90
[  993.446256][T23233]  ? __pfx_try_charge_memcg+0x10/0x10
[  993.446282][T23233]  ? find_held_lock+0x2b/0x80
[  993.446305][T23233]  ? rcu_read_unlock+0x17/0x60
[  993.446330][T23233]  ? rcu_read_unlock+0x17/0x60
[  993.446366][T23233]  charge_memcg+0xa6/0x280
[  993.446394][T23233]  __mem_cgroup_charge+0x2b/0x1e0
[  993.446425][T23233]  shmem_alloc_and_add_folio+0x451/0xd40
[  993.446472][T23233]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  993.446511][T23233]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  993.446549][T23233]  ? do_fault+0x666/0x1990
[  993.446582][T23233]  shmem_get_folio_gfp+0x6ab/0x1900
[  993.446628][T23233]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  993.446676][T23233]  shmem_write_begin+0x1a4/0x420
[  993.446715][T23233]  ? __pfx_shmem_write_begin+0x10/0x10
[  993.446754][T23233]  ? balance_dirty_pages_ratelimited_flags+0x91/0x1170
[  993.446784][T23233]  ? lockdep_hardirqs_on+0x78/0x100
[  993.446823][T23233]  generic_perform_write+0x292/0xa40
[  993.446873][T23233]  ? __pfx_generic_perform_write+0x10/0x10
[  993.446924][T23233]  ? file_update_time_flags+0x373/0x500
[  993.446963][T23233]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  993.446991][T23233]  shmem_file_write_iter+0x10e/0x140
[  993.447021][T23233]  __kernel_write_iter+0x2ac/0x920
[  993.447051][T23233]  ? __pfx___kernel_write_iter+0x10/0x10
[  993.447077][T23233]  ? __up_read+0x2c5/0x700
[  993.447117][T23233]  ? dump_user_range+0x73b/0xb50
[  993.447155][T23233]  dump_user_range+0x3f9/0xb50
[  993.447190][T23233]  ? __pfx_dump_user_range+0x10/0x10
[  993.447230][T23233]  ? __pfx_writenote+0x10/0x10
[  993.447262][T23233]  ? elf_core_dump+0x277d/0x3d10
[  993.447300][T23233]  elf_core_dump+0x2d5f/0x3d10
[  993.447353][T23233]  ? __pfx_elf_core_dump+0x10/0x10
[  993.447390][T23233]  ? tracing_record_taskinfo_sched_switch+0xac/0x560
[  993.447425][T23233]  ? find_held_lock+0x2b/0x80
[  993.447452][T23233]  ? 0xffffffffff600000
[  993.447477][T23233]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  993.447510][T23233]  ? lockdep_hardirqs_on+0x78/0x100
[  993.447597][T23233]  ? vfs_coredump+0x27bc/0x5570
[  993.447622][T23233]  vfs_coredump+0x27bc/0x5570
[  993.447664][T23233]  ? __pfx_vfs_coredump+0x10/0x10
[  993.447695][T23233]  ? __lock_acquire+0x4a5/0x2630
[  993.447739][T23233]  ? lock_acquire+0x1cf/0x380
[  993.447786][T23233]  ? is_bpf_text_address+0x8a/0x1a0
[  993.447824][T23233]  ? bpf_ksym_find+0x124/0x1c0
[  993.447863][T23233]  ? __kernel_text_address+0xd/0x30
[  993.447906][T23233]  ? unwind_get_return_address+0x59/0xa0
[  993.447935][T23233]  ? arch_stack_walk+0xa6/0xf0
[  993.447973][T23233]  ? __sigqueue_free+0xbe/0x2a0
[  993.448007][T23233]  ? stack_trace_save+0x8e/0xc0
[  993.448033][T23233]  ? __pfx_stack_trace_save+0x10/0x10
[  993.448060][T23233]  ? stack_depot_save_flags+0x27/0x9d0
[  993.448094][T23233]  ? __lock_acquire+0x4a5/0x2630
[  993.448191][T23233]  ? proc_coredump_connector+0x2d3/0x4f0
[  993.448228][T23233]  ? __pfx_proc_coredump_connector+0x10/0x10
[  993.448273][T23233]  ? rcu_is_watching+0x12/0xc0
[  993.448316][T23233]  get_signal+0x1f2a/0x21e0
[  993.448360][T23233]  ? __pfx_get_signal+0x10/0x10
[  993.448387][T23233]  ? __bad_area+0x48/0x190
[  993.448406][T23233]  ? fixup_vdso_exception+0x2d1/0x370
[  993.448444][T23233]  arch_do_signal_or_restart+0x91/0x770
[  993.448478][T23233]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  993.448520][T23233]  ? do_user_addr_fault+0x8d6/0x12f0
[  993.448554][T23233]  irqentry_exit+0x1f8/0x670
[  993.448593][T23233]  asm_exc_page_fault+0x26/0x30
[  993.448619][T23233] RIP: 0033:0xffff
[  993.448644][T23233] Code: Unable to access opcode bytes at 0xffd5.
[  993.448655][T23233] RSP: 002b:000000000000000f EFLAGS: 00010206
[  993.448675][T23233] RAX: 0000000000000000 RBX: 00007ff311216360 RCX: 00007ff310f9c799
[  993.448691][T23233] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000020003b46
[  993.448707][T23233] RBP: 00007ff311032c99 R08: 0000000000000002 R09: 0000000000000000
[  993.448723][T23233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  993.448738][T23233] R13: 00007ff3112163f8 R14: 00007ff311216360 R15: 00007ffffc8da568
[  993.448776][T23233]  </TASK>
[  994.012352][T23233] memory: usage 307064kB, limit 307200kB, failcnt 26108
[  994.019323][T23233] memory+swap: usage 426692kB, limit 9007199254740988kB, failcnt 0
[  994.027229][T23233] kmem: usage 5484kB, limit 9007199254740988kB, failcnt 0
[  994.151832][T23751] FAULT_INJECTION: forcing a failure.
[  994.151832][T23751] name failslab, interval 1, probability 0, space 0, times 0
[  994.164705][T23751] CPU: 0 UID: 0 PID: 23751 Comm: syz.0.4699 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  994.164751][T23751] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  994.164762][T23751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  994.164778][T23751] Call Trace:
[  994.164788][T23751]  <TASK>
[  994.164798][T23751]  dump_stack_lvl+0x100/0x190
[  994.164846][T23751]  should_fail_ex.cold+0x5/0xa
[  994.164879][T23751]  ? tracing_open+0x303/0xef0
[  994.164912][T23751]  should_failslab+0xc2/0x120
[  994.164952][T23751]  __kmalloc_noprof+0xe0/0x850
[  994.164996][T23751]  ? seq_open+0x116/0x170
[  994.165038][T23751]  tracing_open+0x303/0xef0
[  994.165080][T23751]  do_dentry_open+0x6d8/0x1660
[  994.165110][T23751]  ? __pfx_tracing_open+0x10/0x10
[  994.165155][T23751]  vfs_open+0x82/0x3f0
[  994.165196][T23751]  path_openat+0x208c/0x31a0
[  994.165239][T23751]  ? __pfx_path_openat+0x10/0x10
[  994.165284][T23751]  do_file_open+0x20e/0x430
[  994.165317][T23751]  ? __pfx_do_file_open+0x10/0x10
[  994.165375][T23751]  ? alloc_fd+0x476/0x790
[  994.165408][T23751]  ? do_getname+0x191/0x390
[  994.165446][T23751]  do_sys_openat2+0x10d/0x1e0
[  994.165483][T23751]  ? __pfx_do_sys_openat2+0x10/0x10
[  994.165536][T23751]  __x64_sys_openat+0x12d/0x210
[  994.165572][T23751]  ? __pfx___x64_sys_openat+0x10/0x10
[  994.165625][T23751]  do_syscall_64+0x106/0xf80
[  994.165664][T23751]  ? clear_bhb_loop+0x40/0x90
[  994.165699][T23751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  994.165728][T23751] RIP: 0033:0x7fe42779c799
[  994.165751][T23751] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  994.165781][T23751] RSP: 002b:00007fe428658028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  994.165809][T23751] RAX: ffffffffffffffda RBX: 00007fe427a15fa0 RCX: 00007fe42779c799
[  994.165829][T23751] RDX: 1a6b75d638929210 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  994.165848][T23751] RBP: 00007fe427832c99 R08: 0000000000000000 R09: 0000000000000000
[  994.165867][T23751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  994.165884][T23751] R13: 00007fe427a16038 R14: 00007fe427a15fa0 R15: 00007fffeed80268
[  994.165929][T23751]  </TASK>
[  994.427126][T23233] Memory cgroup stats for /syz2:
[  994.427422][T23233] cache 293937152
[  994.436109][T23233] rss 14757888
[  994.439480][T23233] rss_huge 12582912
[  994.443282][T23233] shmem 293937152
[  994.446945][T23233] mapped_file 91357184
[  994.451007][T23233] dirty 0
[  994.453938][T23233] writeback 0
[  994.457773][T23233] workingset_refault_anon 66698
[  994.463348][T23233] workingset_refault_file 13746
[  994.468357][T23233] swap 122499072
[  994.471911][T23233] swapcached 261890048
[  994.476057][T23233] pgpgin 1179140
[  994.479601][T23233] pgpgout 1189198
[  994.483231][T23233] pgfault 1257437
[  994.487134][T23233] pgmajfault 7738
[  994.490765][T23233] inactive_anon 300933120
[  994.495091][T23233] active_anon 7823360
[  994.499317][T23233] inactive_file 0
[  994.502947][T23233] active_file 0
[  994.506445][T23233] unevictable 0
[  994.509904][T23233] hierarchical_memory_limit 314572800
[  994.515274][T23233] hierarchical_memsw_limit 9223372036854771712
[  994.522687][T23233] total_cache 293937152
[  994.526922][T23233] total_rss 14757888
[  994.530819][T23233] total_rss_huge 12582912
[  994.535151][T23233] total_shmem 293937152
[  994.539875][T23233] total_mapped_file 91357184
[  994.544468][T23233] total_dirty 0
[  994.547968][T23233] total_writeback 0
[  994.551775][T23233] total_workingset_refault_anon 66698
[  994.557211][T23233] total_workingset_refault_file 13746
[  994.562586][T23233] total_swap 122499072
[  994.566695][T23233] total_swapcached 261890048
[  994.571286][T23233] total_pgpgin 1179140
[  994.575401][T23233] total_pgpgout 1189198
[  994.579554][T23233] total_pgfault 1257437
[  994.583716][T23233] total_pgmajfault 7738
[  994.587933][T23233] total_inactive_anon 300933120
[  994.592783][T23233] total_active_anon 7823360
[  994.597365][T23233] total_inactive_file 0
[  994.601526][T23233] total_active_file 0
[  994.605558][T23233] total_unevictable 0
[  994.619118][T23233] anon_cost 3688
[  994.662279][T23233] file_cost 9704
[  994.683399][T23233] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.4562,pid=23291,uid=0
[  994.727710][T23233] Memory cgroup out of memory: Killed process 23291 (syz.2.4562) total-vm:143864kB, anon-rss:9528kB, file-rss:55400kB, shmem-rss:28800kB, UID:0 pgtables:296kB oom_score_adj:0
[  994.865361][T23625] syz.2.4648 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  994.888587][T23625] CPU: 0 UID: 0 PID: 23625 Comm: syz.2.4648 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  994.888630][T23625] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  994.888640][T23625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  994.888655][T23625] Call Trace:
[  994.888664][T23625]  <TASK>
[  994.888674][T23625]  dump_stack_lvl+0x100/0x190
[  994.888718][T23625]  dump_header+0xfb/0x606
[  994.888748][T23625]  oom_kill_process.cold+0xd/0x330
[  994.888779][T23625]  out_of_memory+0x340/0x14f0
[  994.888836][T23625]  ? __pfx_out_of_memory+0x10/0x10
[  994.888884][T23625]  mem_cgroup_out_of_memory+0xc6/0x130
[  994.888919][T23625]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  994.888951][T23625]  ? find_held_lock+0x2b/0x80
[  994.888984][T23625]  ? do_raw_spin_unlock+0x145/0x1e0
[  994.889022][T23625]  ? _raw_spin_unlock+0x28/0x50
[  994.889060][T23625]  try_charge_memcg+0x652/0xc90
[  994.889096][T23625]  ? __pfx_try_charge_memcg+0x10/0x10
[  994.889125][T23625]  ? find_held_lock+0x2b/0x80
[  994.889150][T23625]  ? rcu_read_unlock+0x17/0x60
[  994.889179][T23625]  ? rcu_read_unlock+0x17/0x60
[  994.889220][T23625]  charge_memcg+0xa6/0x280
[  994.889248][T23625]  __mem_cgroup_charge+0x2b/0x1e0
[  994.889281][T23625]  shmem_alloc_and_add_folio+0x451/0xd40
[  994.889326][T23625]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  994.889366][T23625]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  994.889412][T23625]  shmem_get_folio_gfp+0x6ab/0x1900
[  994.889456][T23625]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  994.889491][T23625]  ? lock_acquire+0x1cf/0x380
[  994.889528][T23625]  shmem_fault+0x1f9/0xa20
[  994.889565][T23625]  ? __lock_acquire+0x4a5/0x2630
[  994.889596][T23625]  ? __pfx_shmem_fault+0x10/0x10
[  994.889629][T23625]  ? __folio_batch_add_and_move+0x464/0xc60
[  994.889668][T23625]  ? __pfx_lru_add+0x10/0x10
[  994.889710][T23625]  ? __pfx_filemap_map_pages+0x10/0x10
[  994.889746][T23625]  __do_fault+0x10d/0x550
[  994.889775][T23625]  ? __pfx_filemap_map_pages+0x10/0x10
[  994.889810][T23625]  do_fault+0xabb/0x1990
[  994.889853][T23625]  __handle_mm_fault+0x180f/0x2b60
[  994.889898][T23625]  ? __pfx___handle_mm_fault+0x10/0x10
[  994.889935][T23625]  ? pte_offset_map_lock+0x174/0x320
[  994.889964][T23625]  ? find_held_lock+0x2b/0x80
[  994.890001][T23625]  ? follow_page_pte+0x5b3/0x1400
[  994.890039][T23625]  handle_mm_fault+0x36d/0xa20
[  994.890082][T23625]  __get_user_pages+0xf9c/0x34d0
[  994.890125][T23625]  ? __pfx___get_user_pages+0x10/0x10
[  994.890166][T23625]  get_dump_page+0x27e/0x3d0
[  994.890196][T23625]  ? __pfx_get_dump_page+0x10/0x10
[  994.890225][T23625]  ? dump_user_range+0x73b/0xb50
[  994.890261][T23625]  dump_user_range+0x18d/0xb50
[  994.890297][T23625]  ? __pfx_dump_user_range+0x10/0x10
[  994.890338][T23625]  ? __pfx_writenote+0x10/0x10
[  994.890378][T23625]  elf_core_dump+0x2d5f/0x3d10
[  994.890431][T23625]  ? __pfx_elf_core_dump+0x10/0x10
[  994.890472][T23625]  ? find_held_lock+0x2b/0x80
[  994.890498][T23625]  ? 0xffffffffff600000
[  994.890522][T23625]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  994.890557][T23625]  ? lockdep_hardirqs_on+0x78/0x100
[  994.890647][T23625]  ? vfs_coredump+0x27bc/0x5570
[  994.890675][T23625]  vfs_coredump+0x27bc/0x5570
[  994.890719][T23625]  ? __pfx_vfs_coredump+0x10/0x10
[  994.890749][T23625]  ? __lock_acquire+0x4a5/0x2630
[  994.890795][T23625]  ? lock_acquire+0x1cf/0x380
[  994.890845][T23625]  ? is_bpf_text_address+0x8a/0x1a0
[  994.890881][T23625]  ? bpf_ksym_find+0x124/0x1c0
[  994.890920][T23625]  ? __kernel_text_address+0xd/0x30
[  994.890955][T23625]  ? unwind_get_return_address+0x59/0xa0
[  994.890984][T23625]  ? arch_stack_walk+0xa6/0xf0
[  994.891023][T23625]  ? __sigqueue_free+0xbe/0x2a0
[  994.891054][T23625]  ? stack_trace_save+0x8e/0xc0
[  994.891079][T23625]  ? __pfx_stack_trace_save+0x10/0x10
[  994.891104][T23625]  ? stack_depot_save_flags+0x27/0x9d0
[  994.891137][T23625]  ? __lock_acquire+0x4a5/0x2630
[  994.891228][T23625]  ? proc_coredump_connector+0x2d3/0x4f0
[  994.891265][T23625]  ? __pfx_proc_coredump_connector+0x10/0x10
[  994.891308][T23625]  ? rcu_is_watching+0x12/0xc0
[  994.891351][T23625]  get_signal+0x1f2a/0x21e0
[  994.891392][T23625]  ? __pfx_get_signal+0x10/0x10
[  994.891418][T23625]  ? bad_area_access_error+0xab/0x1d0
[  994.891442][T23625]  ? fixup_vdso_exception+0x2d1/0x370
[  994.891482][T23625]  arch_do_signal_or_restart+0x91/0x770
[  994.891515][T23625]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  994.891557][T23625]  ? do_user_addr_fault+0x8d6/0x12f0
[  994.891593][T23625]  irqentry_exit+0x1f8/0x670
[  994.891631][T23625]  asm_exc_page_fault+0x26/0x30
[  994.891656][T23625] RIP: 0033:0x400fff
[  994.891675][T23625] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  994.891699][T23625] RSP: 002b:000000000000000f EFLAGS: 00010206
[  994.891719][T23625] RAX: 0000000000000000 RBX: 00007ff311215fa0 RCX: 00007ff310f9c799
[  994.891736][T23625] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000020003b46
[  994.891752][T23625] RBP: 00007ff311032c99 R08: 0000000000000002 R09: 0000000000000000
[  994.891767][T23625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  994.891782][T23625] R13: 00007ff311216038 R14: 00007ff311215fa0 R15: 00007ffffc8da568
[  994.891818][T23625]  </TASK>
[  994.891834][T23625] memory: usage 307200kB, limit 307200kB, failcnt 26189
[  995.280174][T23767] FAULT_INJECTION: forcing a failure.
[  995.280174][T23767] name fail_futex, interval 1, probability 0, space 0, times 0
[  995.437234][T23625] memory+swap: usage 399436kB, limit 9007199254740988kB, failcnt 0
[  995.492385][T23625] kmem: usage 5048kB, limit 9007199254740988kB, failcnt 0
[  995.520480][T23625] Memory cgroup stats for /syz2:
[  995.520919][T23625] cache 271306752
[  995.544968][T23625] rss 6275072
[  995.551771][T23625] rss_huge 4194304
[  995.562137][T23625] shmem 271306752
[  995.567224][T23625] mapped_file 61865984
[  995.845842][T23625] dirty 0
[  995.848816][T23625] writeback 0
[  995.852108][T23625] workingset_refault_anon 66698
[  995.909992][T23774] netlink: 186 bytes leftover after parsing attributes in process `syz.1.4707'.
[  995.922000][T23774] netlink: 186 bytes leftover after parsing attributes in process `syz.1.4707'.
[  995.941497][T23625] workingset_refault_file 13746
[  995.984834][T23767] CPU: 1 UID: 0 PID: 23767 Comm: syz.0.4705 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  995.984883][T23767] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  995.984894][T23767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  995.984911][T23767] Call Trace:
[  995.984920][T23767]  <TASK>
[  995.984931][T23767]  dump_stack_lvl+0x100/0x190
[  995.984979][T23767]  should_fail_ex.cold+0x5/0xa
[  995.985013][T23767]  get_futex_key+0x1d2/0x1620
[  995.985053][T23767]  ? __pfx_get_futex_key+0x10/0x10
[  995.985091][T23767]  ? __pfx____sys_sendmsg+0x10/0x10
[  995.985133][T23767]  futex_wake+0xea/0x530
[  995.985179][T23767]  ? __pfx_futex_wake+0x10/0x10
[  995.985245][T23767]  do_futex+0x32b/0x350
[  995.985284][T23767]  ? __pfx_do_futex+0x10/0x10
[  995.985321][T23767]  ? fput+0x79/0x100
[  995.985354][T23767]  ? __sys_sendmsg+0x18f/0x220
[  995.985399][T23767]  __x64_sys_futex+0x34f/0x4d0
[  995.985442][T23767]  ? __pfx___x64_sys_futex+0x10/0x10
[  995.985493][T23767]  do_syscall_64+0x106/0xf80
[  995.985533][T23767]  ? clear_bhb_loop+0x40/0x90
[  995.985568][T23767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  995.985597][T23767] RIP: 0033:0x7fe42779c799
[  995.985620][T23767] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  995.985648][T23767] RSP: 002b:00007fe4286580e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  995.985676][T23767] RAX: ffffffffffffffda RBX: 00007fe427a15fa8 RCX: 00007fe42779c799
[  995.985696][T23767] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe427a15fac
[  995.985713][T23767] RBP: 00007fe427a15fa0 R08: 0000000000000000 R09: 0000000000000000
[  995.985730][T23767] R10: 000000000000001c R11: 0000000000000246 R12: 0000000000000000
[  995.985747][T23767] R13: 00007fe427a16038 R14: 00007fffeed80180 R15: 00007fffeed80268
[  995.985785][T23767]  </TASK>
[  996.272942][T23625] swap 121176064
[  996.282749][T23625] swapcached 261890048
[  996.320437][T23625] pgpgin 1179201
[  996.340708][T23625] pgpgout 1192729
[  996.344359][T23625] pgfault 1257505
[  996.444517][T23625] pgmajfault 7738
[  996.448152][T23625] inactive_anon 271396864
[  996.452454][T23625] active_anon 6311936
[  996.567616][T23625] inactive_file 0
[  996.624337][T23625] active_file 0
[  996.655551][T23625] unevictable 0
[  996.659035][T23625] hierarchical_memory_limit 314572800
[  996.703866][T23625] hierarchical_memsw_limit 9223372036854771712
[  996.730511][T23625] total_cache 271306752
[  996.748691][T23625] total_rss 6275072
[  996.752515][T23625] total_rss_huge 4194304
[  996.798204][T23625] total_shmem 271306752
[  996.802371][T23625] total_mapped_file 61865984
[  996.862836][T23625] total_dirty 0
[  996.900622][T23625] total_writeback 0
[  996.916845][T23625] total_workingset_refault_anon 66698
[  996.944929][T23625] total_workingset_refault_file 13746
[  996.997341][T23625] total_swap 121176064
[  997.034197][T23625] total_swapcached 261890048
[  997.038805][T23625] total_pgpgin 1179201
[  997.042867][T23625] total_pgpgout 1192729
[  997.116811][T23625] total_pgfault 1257505
[  997.134161][T23625] total_pgmajfault 7738
[  997.138391][T23625] total_inactive_anon 271396864
[  997.143305][T23625] total_active_anon 6311936
[  997.150890][T23625] total_inactive_file 0
[  997.183335][T23625] total_active_file 0
[  997.191598][T23625] total_unevictable 0
[  997.224168][T23625] anon_cost 3688
[  997.227854][T23625] file_cost 9704
[  997.233339][T23625] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.4550,pid=23242,uid=0
[  997.250498][T23625] Memory cgroup out of memory: Killed process 23242 (syz.2.4550) total-vm:148100kB, anon-rss:3380kB, file-rss:59500kB, shmem-rss:28800kB, UID:0 pgtables:304kB oom_score_adj:0
[  997.328654][T23291] syz.2.4562 (23291) used greatest stack depth: 18664 bytes left
[ 1000.188260][T15065] Bluetooth: hci3: unexpected event 0x07 length: 435 > 255
[ 1002.090060][T23835] ==================================================================
[ 1002.090109][T23835] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x19fb/0x1d60
[ 1002.090228][T23835] Write of size 8 at addr ffffc90004299460 by task syz.1.4724/23835
[ 1002.090253][T23835] 
[ 1002.090269][T23835] CPU: 0 UID: 0 PID: 23835 Comm: syz.1.4724 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1002.090315][T23835] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1002.090327][T23835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1002.090343][T23835] Call Trace:
[ 1002.090352][T23835]  <TASK>
[ 1002.090363][T23835]  dump_stack_lvl+0x100/0x190
[ 1002.090405][T23835]  print_report+0x156/0x4c9
[ 1002.090442][T23835]  ? _raw_spin_lock_irqsave+0x52/0x60
[ 1002.090480][T23835]  ? __virt_addr_valid+0x81/0x620
[ 1002.090518][T23835]  ? sys_imageblit+0x19fb/0x1d60
[ 1002.090542][T23835]  kasan_report+0xdf/0x1e0
[ 1002.090559][T23835]  ? sys_imageblit+0x19fb/0x1d60
[ 1002.090581][T23835]  sys_imageblit+0x19fb/0x1d60
[ 1002.090604][T23835]  ? __pfx_sys_imageblit+0x10/0x10
[ 1002.090631][T23835]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[ 1002.090650][T23835]  soft_cursor+0x524/0xa10
[ 1002.090669][T23835]  ? fb_get_color_depth+0x120/0x250
[ 1002.090724][T23835]  bit_cursor+0xe58/0x16f0
[ 1002.090744][T23835]  ? __pfx_bit_cursor+0x10/0x10
[ 1002.090764][T23835]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1002.090781][T23835]  ? get_color+0x1da/0x450
[ 1002.090794][T23835]  ? __pfx_bit_cursor+0x10/0x10
[ 1002.090810][T23835]  fbcon_cursor+0x43c/0x5e0
[ 1002.090824][T23835]  ? mark_lock+0x9b0/0xa20
[ 1002.090842][T23835]  hide_cursor+0x87/0x230
[ 1002.090861][T23835]  do_con_write+0x23fe/0x8540
[ 1002.090881][T23835]  ? trace_contention_end+0x140/0x180
[ 1002.090901][T23835]  ? __mutex_lock+0x26a/0x1b90
[ 1002.090926][T23835]  ? __pfx___mutex_lock+0x10/0x10
[ 1002.090947][T23835]  ? do_raw_spin_lock+0x128/0x260
[ 1002.090967][T23835]  ? __pfx_do_con_write+0x10/0x10
[ 1002.090991][T23835]  con_write+0x23/0xb0
[ 1002.091011][T23835]  n_tty_write+0x44f/0x12d0
[ 1002.091030][T23835]  ? __pfx_n_tty_write+0x10/0x10
[ 1002.091046][T23835]  ? __pfx_woken_wake_function+0x10/0x10
[ 1002.091068][T23835]  ? __pfx___might_resched+0x10/0x10
[ 1002.091090][T23835]  ? __pfx_n_tty_write+0x10/0x10
[ 1002.091105][T23835]  file_tty_write.isra.0+0x4d2/0x890
[ 1002.091165][T23835]  redirected_tty_write+0xd4/0x120
[ 1002.091187][T23835]  vfs_write+0x6ac/0x1070
[ 1002.091200][T23835]  ? __pfx_redirected_tty_write+0x10/0x10
[ 1002.091222][T23835]  ? __pfx_vfs_write+0x10/0x10
[ 1002.091235][T23835]  ? find_held_lock+0x2b/0x80
[ 1002.091254][T23835]  ksys_write+0x12a/0x250
[ 1002.091267][T23835]  ? __pfx_ksys_write+0x10/0x10
[ 1002.091283][T23835]  do_syscall_64+0x106/0xf80
[ 1002.091303][T23835]  ? clear_bhb_loop+0x40/0x90
[ 1002.091320][T23835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1002.091335][T23835] RIP: 0033:0x7fdd0bb9c799
[ 1002.091347][T23835] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1002.091362][T23835] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1002.091377][T23835] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[ 1002.091387][T23835] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000002
[ 1002.091397][T23835] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1002.091406][T23835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1002.091415][T23835] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[ 1002.091430][T23835]  </TASK>
[ 1002.091435][T23835] 
[ 1002.091440][T23835] The buggy address belongs to a vmalloc virtual mapping
[ 1002.091451][T23835] Memory state around the buggy address:
[ 1002.091459][T23835]  ffffc90004299300: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1002.091470][T23835]  ffffc90004299380: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1002.091481][T23835] >ffffc90004299400: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1002.091489][T23835]                                                        ^
[ 1002.091498][T23835]  ffffc90004299480: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1002.091508][T23835]  ffffc90004299500: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1002.091517][T23835] ==================================================================
[ 1002.099949][T23835] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1002.099965][T23835] CPU: 0 UID: 0 PID: 23835 Comm: syz.1.4724 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1002.099989][T23835] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1002.099995][T23835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1002.100005][T23835] Call Trace:
[ 1002.100010][T23835]  <TASK>
[ 1002.100016][T23835]  dump_stack_lvl+0x100/0x190
[ 1002.100040][T23835]  vpanic+0x552/0x970
[ 1002.100054][T23835]  ? __pfx_vpanic+0x10/0x10
[ 1002.100071][T23835]  ? sys_imageblit+0x19fb/0x1d60
[ 1002.100092][T23835]  panic+0xd1/0xe0
[ 1002.100105][T23835]  ? __pfx_panic+0x10/0x10
[ 1002.100128][T23835]  ? sys_imageblit+0x19fb/0x1d60
[ 1002.100148][T23835]  ? preempt_schedule_common+0x42/0xc0
[ 1002.100173][T23835]  check_panic_on_warn.cold+0x19/0x34
[ 1002.100188][T23835]  end_report.part.0+0x3a/0x90
[ 1002.100208][T23835]  kasan_report.cold+0xe/0x18
[ 1002.100228][T23835]  ? sys_imageblit+0x19fb/0x1d60
[ 1002.100250][T23835]  sys_imageblit+0x19fb/0x1d60
[ 1002.100273][T23835]  ? __pfx_sys_imageblit+0x10/0x10
[ 1002.100297][T23835]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[ 1002.100314][T23835]  soft_cursor+0x524/0xa10
[ 1002.100333][T23835]  ? fb_get_color_depth+0x120/0x250
[ 1002.100351][T23835]  bit_cursor+0xe58/0x16f0
[ 1002.100370][T23835]  ? __pfx_bit_cursor+0x10/0x10
[ 1002.100390][T23835]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1002.100406][T23835]  ? get_color+0x1da/0x450
[ 1002.100420][T23835]  ? __pfx_bit_cursor+0x10/0x10
[ 1002.100437][T23835]  fbcon_cursor+0x43c/0x5e0
[ 1002.100451][T23835]  ? mark_lock+0x9b0/0xa20
[ 1002.100471][T23835]  hide_cursor+0x87/0x230
[ 1002.100498][T23835]  do_con_write+0x23fe/0x8540
[ 1002.100535][T23835]  ? trace_contention_end+0x140/0x180
[ 1002.100572][T23835]  ? __mutex_lock+0x26a/0x1b90
[ 1002.100608][T23835]  ? __pfx___mutex_lock+0x10/0x10
[ 1002.100632][T23835]  ? do_raw_spin_lock+0x128/0x260
[ 1002.100654][T23835]  ? __pfx_do_con_write+0x10/0x10
[ 1002.100679][T23835]  con_write+0x23/0xb0
[ 1002.100700][T23835]  n_tty_write+0x44f/0x12d0
[ 1002.100720][T23835]  ? __pfx_n_tty_write+0x10/0x10
[ 1002.100735][T23835]  ? __pfx_woken_wake_function+0x10/0x10
[ 1002.100757][T23835]  ? __pfx___might_resched+0x10/0x10
[ 1002.100779][T23835]  ? __pfx_n_tty_write+0x10/0x10
[ 1002.100794][T23835]  file_tty_write.isra.0+0x4d2/0x890
[ 1002.100818][T23835]  redirected_tty_write+0xd4/0x120
[ 1002.100839][T23835]  vfs_write+0x6ac/0x1070
[ 1002.100853][T23835]  ? __pfx_redirected_tty_write+0x10/0x10
[ 1002.100875][T23835]  ? __pfx_vfs_write+0x10/0x10
[ 1002.100887][T23835]  ? find_held_lock+0x2b/0x80
[ 1002.100907][T23835]  ksys_write+0x12a/0x250
[ 1002.100920][T23835]  ? __pfx_ksys_write+0x10/0x10
[ 1002.100943][T23835]  do_syscall_64+0x106/0xf80
[ 1002.100964][T23835]  ? clear_bhb_loop+0x40/0x90
[ 1002.100980][T23835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1002.100996][T23835] RIP: 0033:0x7fdd0bb9c799
[ 1002.101008][T23835] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1002.101023][T23835] RSP: 002b:00007fdd0ca01028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1002.101038][T23835] RAX: ffffffffffffffda RBX: 00007fdd0be15fa0 RCX: 00007fdd0bb9c799
[ 1002.101048][T23835] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000002
[ 1002.101058][T23835] RBP: 00007fdd0bc32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1002.101068][T23835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1002.101077][T23835] R13: 00007fdd0be16038 R14: 00007fdd0be15fa0 R15: 00007ffc033bc768
[ 1002.101092][T23835]  </TASK>
[ 1002.101338][T23835] Kernel Offset: disabled