last executing test programs:

12m0.911569199s ago: executing program 2 (id=1436):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/oom_adj\x00', 0x300, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/dummy_hcd.0/usb1/power/wakeup_active_count\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001100)=""/4106, 0x100a)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$auto_KVM_GET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)={0x10})

11m59.707442831s ago: executing program 2 (id=1439):
setresuid$auto(0x0, 0x7, 0x8080)
setfsuid$auto(0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="e0000000", @ANYRES16=r2, @ANYBLOB="100026bd7000fddbdb2503000000"], 0x14}, 0x1, 0x0, 0x0, 0x4004040}, 0xc841)
mmap$auto(0x3, 0x1ff, 0x80000000, 0x11, r1, 0x1a6)
ioctl$auto(r0, 0x4b32, 0x9)
r3 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf8d5feacf8510"], 0x2c}, 0x1, 0x0, 0x0, 0x14}, 0x400c001)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0)
sendfile$auto(r4, r4, 0x0, 0x3)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/ad_num_ports\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000240)=""/254, 0xfe)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x8000000401, 0x8000)
open(&(0x7f0000000040)='.\x00', 0x100, 0x161)
socket(0xa, 0x3, 0x3a)
getdents64$auto(0x0, 0x0, 0x18)
ioctl$auto(0x1, 0x8941, 0x8)
r6 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x0, 0x5, 0x0)
pipe$auto(0x0)
pipe$auto(0x0)
tee$auto(0x2000000000000, 0x3, 0x402, 0xd)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
ioctl$auto_VHOST_VSOCK_SET_GUEST_CID(r6, 0x4008af60, 0x0)

11m57.687160223s ago: executing program 2 (id=1447):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x11, 0x3, 0x3a)
setreuid$auto(0xffffffffffffffff, 0x8)
ioctl$auto(r0, 0x890c, 0x1)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyw5\x00', 0x28341, 0x0)
ioctl$auto_TIOCMGET2(r2, 0x5415, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000400)='/dev/amidi2\x00', 0x201, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(r3, 0xc0385720, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, 0x0, 0x4000080)
mknod$auto(&(0x7f0000000080)=':,\x00', 0xcb, 0xfffffffd)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mknod$auto(&(0x7f0000000280)='X))\x00', 0x63c5, 0x7bf)
mknod$auto(&(0x7f0000000340)='\xe1\x9eHU\x00', 0x63c1, 0x7fc)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/workqueue/nf_ft_offload_add/power/runtime_active_time\x00', 0x20042, 0x0)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x66ab80, 0x0)
r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000400), 0x101000, 0x0)
ioctl$auto_UI_SET_EVBIT(r4, 0x40045564, &(0x7f0000000440)=0x1)
unshare$auto(0x40000080)
ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(r1, 0x7ab, 0x0)
close_range$auto(0x2, 0x8, 0x0)
bpf$auto(0x2, 0x0, 0xc)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0)

11m52.264034269s ago: executing program 2 (id=1462):
r0 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000000), 0x80101, 0x0)
write$auto_split_huge_pages_fops_huge_memory(r0, &(0x7f0000000040)="2f9143327f204f9127bd0c494bb2f75e31ed950d27740ce92a30e0e11bc8194405a0e11688c0cd430e1910af85020ee71b5282c57712be0f3c9df550b5f3058d9610d37abc796d83a3255541a3f76be41280499360c4a71d3fb896da6ff74a5251ab0ba3ab2c", 0x66)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0x2, 0x1, 0x84)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x123900, 0x0)
socket(0xa, 0x5, 0x84)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x84040, 0x22, 0x12}, 0x18)
openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r2, 0x8008af83, r2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/pcm0c/sub6/xrun_injection\x00', 0x4000, 0x0)

11m51.165257881s ago: executing program 2 (id=1468):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB=']'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)

11m50.177453802s ago: executing program 2 (id=1470):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfdef)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9d3\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbbH\xa301e\xca\xed\'\x7f\xea4*\x01\x80\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\x88\xa4\x8f\\\x1a\x8d(\x8c\xac\\\x13O\x05\xb0\xe1\x92\xe1\x7fr\xa3\x1b\x89\xfb\\c\xcf}\xa9}\x89\x13\xce>\xac\xcc\xaeW\x83f\xda\x85:Kw\xe9\xe8\x8d\x89\xee\xf2+\xf0\x94x\x88\xad\xa6\x19\xe8f\xb2\xc7\xc9\xbfv\xfb\xa0,Pc\xbf,\x91Qz\xa4:\xee\xfd\x95F\x06\x06\xaf\xbbmu\x90\x9b\xdbO\x92\x01C`\xe7\n\x97\xcaf\x87\xdb\xfc\x82\fo\x9f7\xaa(e\xf4\xe9j\a\xd0\xaao\xbc\x9f\xda\x01\x04?N\x97g\xed\\\x12\xff{\x12\xb8$s\xe5\xe4\x001\xec\xcf\x13\xc3\xa8', 0x100000a3d9)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0xa4, 0x200007, 0x19)
fanotify_init$auto(0x401, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0xd912)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x3f, 0x2, 0x7)
bind$auto(0x3, &(0x7f0000000040)=@llc={0x1a, 0x323, 0x40, 0x87, 0xf8, 0x5, @multicast}, 0x1)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x41000, 0x0)
poll$auto(0x0, 0x7f, 0x9)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
ioctl$auto(0xffffffffffffffff, 0x4008af24, 0xffffffffffffffff)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0)
socket(0x25, 0x5, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r1, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x7f)

11m35.016538746s ago: executing program 32 (id=1470):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfdef)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9d3\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbbH\xa301e\xca\xed\'\x7f\xea4*\x01\x80\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\x88\xa4\x8f\\\x1a\x8d(\x8c\xac\\\x13O\x05\xb0\xe1\x92\xe1\x7fr\xa3\x1b\x89\xfb\\c\xcf}\xa9}\x89\x13\xce>\xac\xcc\xaeW\x83f\xda\x85:Kw\xe9\xe8\x8d\x89\xee\xf2+\xf0\x94x\x88\xad\xa6\x19\xe8f\xb2\xc7\xc9\xbfv\xfb\xa0,Pc\xbf,\x91Qz\xa4:\xee\xfd\x95F\x06\x06\xaf\xbbmu\x90\x9b\xdbO\x92\x01C`\xe7\n\x97\xcaf\x87\xdb\xfc\x82\fo\x9f7\xaa(e\xf4\xe9j\a\xd0\xaao\xbc\x9f\xda\x01\x04?N\x97g\xed\\\x12\xff{\x12\xb8$s\xe5\xe4\x001\xec\xcf\x13\xc3\xa8', 0x100000a3d9)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0xa4, 0x200007, 0x19)
fanotify_init$auto(0x401, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0xd912)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x3f, 0x2, 0x7)
bind$auto(0x3, &(0x7f0000000040)=@llc={0x1a, 0x323, 0x40, 0x87, 0xf8, 0x5, @multicast}, 0x1)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x41000, 0x0)
poll$auto(0x0, 0x7f, 0x9)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
ioctl$auto(0xffffffffffffffff, 0x4008af24, 0xffffffffffffffff)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0)
socket(0x25, 0x5, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r1, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x7f)

11.958813086s ago: executing program 0 (id=3809):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
setsockopt$auto(r0, 0x8, 0x20, 0x0, 0x9)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0xfffffdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x2, 0x0)
shutdown$auto(0x200000003, 0x2)

10.44428854s ago: executing program 4 (id=3815):
r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948f, 0x803, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_VHOST_SET_LOG_FD2(r0, 0x4004af07, &(0x7f00000001c0)=r0)
r3 = open_by_handle_at$auto(r2, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), r2)
setsockopt$auto(r3, 0x1, 0x1021, 0x0, 0xd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001a80)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4040840}, 0x200000c0)
close_range$auto(0x2, 0xa, 0x0)
ioctl$auto_VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000240)={0x2})
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001b00)=ANY=[@ANYBLOB="20010000", @ANYRES16=r5, @ANYBLOB="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"], 0x120}, 0x1, 0x68, 0x0, 0x24000000}, 0x140)
sendmsg$auto_NL80211_CMD_GET_MPP(0xffffffffffffffff, 0x0, 0x8002)
read$auto(r4, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)
read$auto_state_fops_(r0, &(0x7f0000000300)=""/2, 0x2)
socket(0x2b, 0x1, 0x0)
read$auto_ext4_dir_operations_ext4(r2, &(0x7f00000003c0)=""/6, 0x6)

9.463187032s ago: executing program 0 (id=3819):
prctl$auto_PR_SCHED_CORE_GET(0x2, 0x0, 0xffffffffffffffff, 0xa02, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000080), 0xffffffffffffffff)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/rc_rateidx_mcs_mask_2ghz\x00', 0x88000, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
ioctl$auto_SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, 0x0)
open_by_handle_at$auto(0xffffffffffffffff, 0x0, 0xffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TCFLSH2(r0, 0x5453, 0x0)
write$auto_tty_fops_tty_io(r0, 0x0, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r1, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7\xe6\x04\x8c\x83k', 0x10000000081)
pwritev$auto(0x3, 0x0, 0x5, 0x3, 0x9)
bpf$auto(0x12, 0x0, 0x26)

8.4760557s ago: executing program 0 (id=3821):
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0xa2002, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0)
mlockall$auto(0x2)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="db002cbd7000fbdbdf250af4"], 0x1c}}, 0x20008810)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000500)='/dev/snd/pcmC1D1p\x00', 0x1, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_PREPARE(r1, 0x4140, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x20009, 0xffffffffffffffff, 0x100000eb1, 0x40000000000a1, 0x8000)
io_uring_register$auto(0x2, 0x0, 0x0, 0x3)
r2 = socket(0x10, 0x2, 0x0)
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
prctl$auto_PR_SET_MM(0x23, 0x5, 0xffffffffffffffff, 0x100, 0x1)
sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/i915/parameters/mitigations\x00', 0x88302, 0x0)
sendfile$auto(r3, r3, 0x0, 0x7ffff000)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)

7.096316826s ago: executing program 4 (id=3826):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event2\x00', 0x26c982, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptytf\x00', 0x581e41, 0x0)
select$auto(0x5, &(0x7f0000000080)={[0x4c, 0x0, 0x5, 0x7, 0x7, 0x5, 0x0, 0x7, 0x9, 0x4, 0x200, 0x8000, 0xff, 0xd8, 0x8, 0x800]}, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0)
ioctl$auto(0x3, 0xae41, 0xffffffffffffffff)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyu3\x00', 0x1, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, &(0x7f0000000080))
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x2, 0x1, 0x106)
getcwd$auto(0x0, 0xffffffffffffffff)
inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(0x4, 0x0, 0x9)
getcwd$auto(0x0, 0xffffffffffffffff)
inotify_add_watch$auto(0x4, 0x0, 0x9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffe, 0x580f, 0x112f4a03, 0x8000000008011, 0x3, 0x0)
getresgid$auto(0x0, 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xe0002, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x180342, 0x0)
msgget$auto(0x0, 0x5)

5.879959774s ago: executing program 1 (id=3827):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/hugepages/hugepages-2048kB/nr_hugepages_mempolicy\x00', 0xa001, 0x0)
io_getevents$auto(0xfffffffffffffffe, 0x800000000000203, 0x8000010000c, 0x0, 0x0)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080)
socket(0xa, 0x22b9ca59403304f4, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$auto_KVM_HAS_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee3, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyu3\x00', 0x0, 0x0)
ioctl$auto(r1, 0x540a, 0x0)
kcmp$auto(0x0, 0x0, 0xe0d5, 0xffffffffffffffff, 0xffffffffffffffff)
msgrcv$auto(0x9, 0x0, 0xfffffffffffffffd, 0x6, 0x80008)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, 0x0, 0x800)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0x2, 0x0)
socket(0x1e, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x11, 0x3, 0x9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
rseq$auto(&(0x7f0000000180)={0x3e, 0x9, 0x8, 0x3, 0x4, 0x101, "c1e756ea673b2711cff5c078a8d51cbfe6d1190bce0ffc2e1254e9aecbcf90742013643af8d7a3adce85dbb6e1357bc8f2c81a5818bc26c52e548c2ffc7d02adf5323e009b92"}, 0x8, 0x1, 0x4)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xb, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x5, 0x2, 0x6]}, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

5.819467013s ago: executing program 4 (id=3829):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/007/001\x00', 0xa901, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x1210c0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x149041, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000008d40)='($}-)#@\x00', 0x3)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/fs/dentry-state\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2000a, 0x4000000000df, 0xeb1, 0x6, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x8, 0x3a02, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008)
r0 = socket(0xf, 0xa, 0xf)
setsockopt$auto(r0, 0x1, 0xc, 0x0, 0x7fffffff)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptyr1\x00', 0x100001, 0x0)
ioctl$auto(r1, 0x540a, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r3, 0x0, 0xc000)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
ioctl$auto(r3, 0x57, r2)
open(0x0, 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x154)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
ioctl$auto_SIOCGIFHWADDR2(r3, 0x8927, &(0x7f00000001c0)="f7ab310f77ea24eb0255cb3f87260a21fa8aed171088e0912126accb7abe04f0b7182712cb378b")
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00')

4.700802771s ago: executing program 4 (id=3830):
prctl$auto_PR_SCHED_CORE_GET(0x2, 0x0, 0xffffffffffffffff, 0xa02, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000080), 0xffffffffffffffff)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/rc_rateidx_mcs_mask_2ghz\x00', 0x88000, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
ioctl$auto_SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, 0x0)
open_by_handle_at$auto(0xffffffffffffffff, 0x0, 0xffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7\xe6\x04\x8c\x83k', 0x10000000081)
pwritev$auto(0x3, 0x0, 0x5, 0x3, 0x9)
bpf$auto(0x12, 0x0, 0x26) (fail_nth: 2)

4.5135459s ago: executing program 3 (id=3832):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002bbd7000f9dbdf250100000006000200010000000500070058000000080009000800000008000a000800000014001f00200100000000000000000000000000001400200000000000000000000000ffffe0000002"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
socket(0x2, 0x80000, 0x300)
openat$auto_suspend_stats_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x20800, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/zram0/mm_stat\x00', 0x8900, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000000)=""/233, 0xe9)
unshare$auto(0x40000080)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/tracing/set_event\x00', 0x20c8c2, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x44, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x2381, 0x0)
ioctl$auto(0x3, 0xc0585605, 0x38)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x1)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/lapb3/threaded\x00', 0x8a801, 0x0)
write$auto(r5, &(0x7f0000000000)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r6 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a)
sendmmsg$auto(r6, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ff)
ioctl$auto_USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, &(0x7f0000000180)={0x3, 0x8dd, "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"})
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)
shmctl$auto(0x0, 0xd, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)

3.691544514s ago: executing program 3 (id=3833):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
unshare$auto(0x8000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop7\x00', 0x14f340, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/system/node/node1/meminfo\x00', 0x101000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000300)=""/126, 0x7e)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000002740)={&(0x7f0000000000)=ANY=[@ANYBLOB="a300", @ANYRES16=0x0, @ANYBLOB="47582bbd7000fcdbdf25040000002f0011005d2c134bbc"], 0x44}}, 0x4044000)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="21020cbd70c031cd0ce401"], 0x14}, 0x1, 0x0, 0x0, 0x40080d0}, 0x80010)
sendmmsg$auto(0x3, 0x0, 0x3, 0x894)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000014"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
ioctl$auto(0x4000000000000c8, 0x400454d1, 0x6)
r1 = socket(0x10, 0x2, 0x4)
write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
semget$auto(0x0, 0x2e4a, 0x408000)
semtimedop$auto(0x0, 0x0, 0x1, 0x0)
r2 = socket(0x10, 0x2, 0x0)
r3 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000023c0)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x40000, 0x0)
fchmod$auto(r3, 0x1)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xc018aec0, 0xffffffffffffffff)
r5 = bpf$auto(0xff, &(0x7f00000004c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x5, 0xffffffffffffffff, @relative_fd, 0x400000000003}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000071f92649b7a0304f3936eef92262e08e2006655c0d4edb48251e1c602606b59c4c1031f0b1fa20d78c401d4e6dc8c7e6f666de9aa5c7a51324c9ee189ec932f664be7d459c67", @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40044)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x803}, 0x2004, 0x8)

3.430702823s ago: executing program 4 (id=3834):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/lru_gen_full\x00', 0x48000, 0x0)
socket(0x0, 0x6, 0xffff)
lsm_set_self_attr$auto(0x1, &(0x7f0000000100)={0x68, 0x8, 0x80}, 0x80, 0x0)
r2 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0x101500, 0x0)
readv$auto(r2, &(0x7f00000000c0)={&(0x7f0000000180), 0x200}, 0x6)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/midiC2D0\x00', 0x1af541, 0x0)
prctl$auto(0x3e, 0x4d, 0x0, 0x1, 0x20000000)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x1d)
mmap$auto(0x8001, 0x7fffffff, 0x5, 0x18, r1, 0x7)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000300)='/proc/softirqs\x00', 0x121200, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/vulnerabilities/mmio_stale_data\x00', 0x0, 0x0)
read$auto(r5, 0x0, 0x20)
ioctl$auto(0x20000000000003, 0x8947, 0x2)
r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/netdevsim2/autoconf\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2000b, 0xc, 0x7fff, r4, 0x2)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
setitimer$auto(0x1, 0x0, 0x0)
r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/bond_slave_1/disable_policy\x00', 0x202, 0x0)
sendfile$auto(r7, r6, 0x0, 0x48)
syz_open_procfs$namespace(0x0, &(0x7f0000000240)='ns/user\x00')
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/queue/discard_granularity\x00', 0x8000, 0x0)
madvise$auto(0x0, 0xffffffffffff0009, 0x13)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

3.393799973s ago: executing program 1 (id=3835):
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/vm/nr_hugepages_mempolicy\x00', 0x141241, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/net/wpan1/queues/tx-0/byte_queue_limits/stall_cnt\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/uvcvideo/parameters/clock\x00', 0xb02, 0x0)
sendfile$auto(r2, r2, 0x0, 0x7ff)
shmctl$auto_IPC_INFO(0x9, 0x3, &(0x7f0000000300)={{0x80000001, <r3=>0xee01, 0x0, 0xffff, 0x40000000, 0x3, 0x3589}, 0x5, 0x7, 0xffffffffffffffff, 0xe, @raw=0x2, @inferred=0xffffffffffffffff, 0x7, 0x0, &(0x7f00000000c0)="bf0144acefb29c50ce9e19490c98cf09619f0657078ae1c9654027c3d0904beec427359992a2fe7e1f9f1cf52b57a5da5e930b83006a4cf160ca2a61f418619a55f7d959a060a5fcdee4c6c83f41dc03b49529ba2fa6b3318b490ba58ba6737b9b2c889989d2d837a5a7ff2b494e67f38ee135c4639e3c335178949dc0a6db6272e2db3687569f2aee97f9797c2c1732f6a3377a59fa84372d0c69d1fd352576586301aeae35dac06775d64cacd578810d822ce02d35b3439dfb674806193c", &(0x7f00000001c0)="c65b1e38a7a248932f53f25ecb6ced329d6213d1844864b9f53bbf63a63aefd5f9719a36f0826133eb96a76339fdce7d1935d2db9909194e4f03dca2320f942bbc4d023f7a005ea7fd217baa4fae44ff4ebb5cdc69bf001e6d732746d984e3c5407944aa3ff226af7977db8c3d7ba4fc59ed60d7749d951d7f609807543a959eb1"})
sendmsg$auto_NL80211_CMD_DEL_PMK(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f00000005c0)=ANY=[@ANYBLOB="74020000", @ANYRES16=r1, @ANYBLOB="000427bd7000fddbdf257c00000008005200", @ANYRES32, @ANYBLOB="0400870025004f001d439ca3de90bc8d412bfdf8e045eaf69abd3bd053d0a1c24b1db680356f7d8fb50000002a025a80b300cb0090a9a489f28bc34c408eb9172f790c63cd9fd40dfccdec13bcded93d53376744e51337b3c96deb580e94c62a3de1fb979f5fc17b1228e3f0c45300c321e5e5ae61a32fd5d28d1176593b841fd04fd5bfcb5b98ec6d415228bb0417746c9b0511d59a84200eef0778ddfff7289f01c0a11e81dda2697c7f92778df84ab77dae72e238d8e27a0ea41ecf4931253eda78fadc2fe599f69c6677990418c877b565796769f915e7648b4cf3deec740f84eb0014005c800800bb00", @ANYRES32, @ANYBLOB="0400da80040037801000c400", @ANYRES32=r3, @ANYBLOB="ca004300cef96b1cd97f7be14dae1689517718ce4af932bb13017461ce99061e7d927019928eccfabcfff20e5ffe9f97067eb962c0726a365075bd3320fff287111f3559d12ff77aeffb006b758f01206d26fefbfc77f54b7106ec4bc940d8a1596f2e105b5c6d4787462941eae1eb1a781fe106a2d1347dffe402abfc00913901f4c9856b69dee96a990310ff8bffe91a0f5aa4488be0e7c972590b7c167868b74f8da310758ce4f2629b1f04719f3af388a4a86c5257679623dc15d72081878ae037986f76234efe170000180063800800f8007f0000010800e600", @ANYRES32, @ANYBLOB="0400ff80648cef2dd40f4cbca4b4eea0ac18aff4d4a5d81478e63284ace9e039dc5eeb8788ba079b71fef3db06ca04444655bdf58d301d260f3e40c342f34de33c2cb19f3b88267656fd8b9a352205d1c570d8dffada5ed1b0cd14004f00fe8000000000000000000000000000aa0000"], 0x274}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r5], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x4000)
sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r0, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f0000000380)={0x48, 0x0, 0x20, 0x70bd29, 0x25dfdbfb, {}, [@NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x100}, @NCSI_ATTR_MULTI_FLAG={0x4}, @NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x80000001}, @NCSI_ATTR_IFINDEX={0x8, 0x1, r5}, @NCSI_ATTR_IFINDEX={0x8, 0x1, r5}, @NCSI_ATTR_MULTI_FLAG={0x4}, @NCSI_ATTR_MULTI_FLAG={0x4}, @NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0xffff}]}, 0x48}, 0x1, 0x0, 0x0, 0xc005}, 0x4000)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/ksm/sleep_millisecs\x00', 0x181482, 0x0)
write$auto_ocfs2_control_fops_stack_user(r6, &(0x7f0000003900)='\t', 0x1)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r7 = socket(0x2, 0x80802, 0x0)
setsockopt$auto(r7, 0x11, 0x67, 0x0, 0x8)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x88000, 0x0)
io_cancel$auto(0x3, 0x0, 0x0)
bpf$auto_BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000)=@token_create={0x3, r0}, 0x3)

2.877387572s ago: executing program 3 (id=3836):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0)
write$auto(r0, &(0x7f0000000440)='OF\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf0F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\xed\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0xb8c5) (async)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r3], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80)
r4 = syz_genetlink_get_family_id$auto_net_dm(&(0x7f00000000c0), r2)
sendmsg$auto_NET_DM_CMD_STOP(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0xd4, r4, 0x300, 0x70bd26, 0x25dfdbfb, {}, [@NET_DM_ATTR_SW_DROPS={0x4}, @NET_DM_ATTR_SW_DROPS={0x4}, @NET_DM_ATTR_SW_DROPS={0x4}, @NET_DM_ATTR_QUEUE_LEN={0x8, 0xb, 0x3}, @NET_DM_ATTR_UNSPEC={0xab, 0x0, "f3ee3a413ac3e30049a76eb58bc6ff2b6bb358013fa704080db5028f1be1cb06f3da76bd88b8478b4dadabb14316debd8fcb2cf541f23fbc4c8f8c446a70793acd5bc7086b6346af4f32fcd76a321f62f52cc177c4c781fb2076a15b32f40c9889cb11cb0f53c7c2bedd205dd4650a40d4f8dc224b2fb24ee577c4f4406c8014247474f0a7df2d4e70a5e82d7e8a939d0908ca6d77cf04666bf760ae707b3aa4d2235303bd3c7b"}]}, 0xd4}, 0x1, 0x0, 0x0, 0x40000}, 0x24)

2.808941617s ago: executing program 0 (id=3837):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002bbd7000f9dbdf250100000006000200010000000500070058000000080009000800000008000a000800000014001f00200100000000000000000000000000001400200000000000000000000000ffffe0000002"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
socket(0x2, 0x80000, 0x300)
openat$auto_suspend_stats_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x20800, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/zram0/mm_stat\x00', 0x8900, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000000)=""/233, 0xe9)
unshare$auto(0x40000080)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/tracing/set_event\x00', 0x20c8c2, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x44, 0x0)
mmap$auto(0x9, 0x9, 0x24e1, 0x16, 0x401, 0xd5be)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x2381, 0x0)
ioctl$auto(0x3, 0xc0585605, 0x38)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x1)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/lapb3/threaded\x00', 0x8a801, 0x0)
write$auto(r5, &(0x7f0000000000)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r6 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a)
sendmmsg$auto(r6, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ff)
ioctl$auto_USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, &(0x7f0000000180)={0x3, 0x8dd, "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"})
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)
shmctl$auto(0x0, 0xd, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)

2.786003784s ago: executing program 1 (id=3838):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000004600)={0x10dc, r2, 0x1, 0x51bd2e, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x10c4, 0x1, 0x0, 0x1, [@nested={0x4, 0x6}, @nested={0x10b9, 0x4, 0x0, 0x1, [@generic="fc921cf096b39f43034e2db36a74c0ade1e6a4dafab35aa84881d05d1662bd8a8f48943ea4276b7e1465958d17dd9c9706336d0f4a94c7de9fa79cb659b67f43fa331b6f98fa8ad43a943eac1b528ba83992018ecb03ba5dba6660c32c87b1dc86b69a7f6e747504f11d7688a74c47a4ba4c52d520334c57c56a5fe9358c7a8b45d2c39492577b0c60cedaffccee1b2ebd9a11ad0eab4d390826b494ea05d6578176f70cd9cfc566abf6d1329a68a6a6fc28a2e2c669c39ce8", @nested={0xffc, 0x122, 0x0, 0x1, [@typed={0xc, 0xf3, 0x0, 0x0, @u64=0x5ae3693d}, @typed={0x4, 0x3b}, @nested={0xfe8, 0x8b, 0x0, 0x1, [@typed={0x8, 0x26, 0x0, 0x0, @fd=r1}, @typed={0x8, 0x6e, 0x0, 0x0, @ipv4=@local}, @nested={0xfd4, 0xbc, 0x0, 0x1, [@typed={0xc, 0x9, 0x0, 0x0, @u64=0x4}, @typed={0xc, 0x1a, 0x0, 0x0, @u64=0x4}, @nested={0xfa9, 0x98, 0x0, 0x1, [@generic, @nested={0x4, 0x142}, @nested={0xf80, 0x4f, 0x0, 0x1, [@nested={0xf7b, 0xeb, 0x0, 0x1, [@typed={0x8, 0x6e, 0x0, 0x0, @uid}, @typed={0xc, 0xd5, 0x0, 0x0, @u64=0x8}, @generic="ae479b08e6bd0a254417457c996cf26cec9968bb79193b", @nested={0xf4c, 0xe6, 0x0, 0x1, [@typed={0x8, 0x7d, 0x0, 0x0, @u32=0x3}, @generic="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"]}]}]}, @typed={0xf, 0x13b, 0x0, 0x0, @str='/dev/vbi12\x00'}, @typed={0x8, 0x8c, 0x0, 0x0, @pid}, @generic="548d10ff813c12384a"]}, @nested={0xc, 0xae, 0x0, 0x1, [@nested={0x4, 0x10c}, @nested={0x4, 0xd0}]}]}, @generic]}]}]}]}]}, 0x10dc}, 0x1, 0x0, 0xf0ffffff, 0x40}, 0x4)

2.306754236s ago: executing program 3 (id=3839):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/pci0000:00/pci_bus/0000:00/cpulistaffinity\x00', 0xc0200, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2b, 0x1, 0x1)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
r2 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
epoll_ctl$auto(r1, 0x31, r2, &(0x7f00000001c0)={0x2, 0x9b})
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000200), 0x408800, 0x0)
ioctl$auto_PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f0000000300)=0x4)
setresuid$auto(0x0, 0x7, 0x8080)
recvmmsg$auto(r3, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x15, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
recvmmsg$auto(r1, &(0x7f00000002c0)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0xc}, 0x801}, 0x3, 0x6, 0x0)
setsockopt$auto(r0, 0x29, 0x20, 0x0, 0x20)

2.106724823s ago: executing program 0 (id=3840):
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x5, 0x1007181, 0x8a0d, 0x6, 0x7, 0x7ff, 0x89, 0x26, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffa, 0x8, 0x0, 0x30, 0x0, 0x864, 0xe, 0x22000, 0x9, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x9, 0xc)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0x2, &(0x7f0000000380)="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")
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd05, &(0x7f00000001c0))

1.757220912s ago: executing program 1 (id=3841):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/hugepages/hugepages-2048kB/nr_hugepages_mempolicy\x00', 0xa001, 0x0)
io_getevents$auto(0xfffffffffffffffe, 0x800000000000203, 0x8000010000c, 0x0, 0x0)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080)
socket(0xa, 0x22b9ca59403304f4, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$auto_KVM_HAS_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee3, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyu3\x00', 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0x2, 0x0)
socket(0x1e, 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)

1.235085842s ago: executing program 0 (id=3842):
r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948f, 0x803, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_VHOST_SET_LOG_FD2(r0, 0x4004af07, &(0x7f00000001c0)=r0)
r3 = open_by_handle_at$auto(r2, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), r2)
setsockopt$auto(r3, 0x1, 0x1021, 0x0, 0xd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001a80)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4040840}, 0x200000c0)
close_range$auto(0x2, 0xa, 0x0)
ioctl$auto_VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000240)={0x2})
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001b00)=ANY=[@ANYBLOB="20010000", @ANYRES16=r5, @ANYBLOB="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"], 0x120}, 0x1, 0x68, 0x0, 0x24000000}, 0x140)
sendmsg$auto_NL80211_CMD_GET_MPP(0xffffffffffffffff, 0x0, 0x8002)
read$auto(r4, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)
read$auto_state_fops_(r0, &(0x7f0000000300)=""/2, 0x2)
socket(0x2b, 0x1, 0x0)
read$auto_ext4_dir_operations_ext4(r2, &(0x7f00000003c0)=""/6, 0x6)

1.195765364s ago: executing program 3 (id=3843):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/hugepages/hugepages-2048kB/nr_hugepages_mempolicy\x00', 0xa001, 0x0)
io_getevents$auto(0xfffffffffffffffe, 0x800000000000203, 0x8000010000c, 0x0, 0x0)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080)
socket(0xa, 0x22b9ca59403304f4, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$auto_KVM_HAS_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee3, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyu3\x00', 0x0, 0x0)
ioctl$auto(r1, 0x540a, 0x0)
kcmp$auto(0x0, 0x0, 0xe0d5, 0xffffffffffffffff, 0xffffffffffffffff)
msgrcv$auto(0x9, 0x0, 0xfffffffffffffffd, 0x6, 0x80008)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, 0x0, 0x800)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0x2, 0x0)
socket(0x1e, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x11, 0x3, 0x9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
rseq$auto(&(0x7f0000000180)={0x3e, 0x9, 0x8, 0x3, 0x4, 0x101, "c1e756ea673b2711cff5c078a8d51cbfe6d1190bce0ffc2e1254e9aecbcf90742013643af8d7a3adce85dbb6e1357bc8f2c81a5818bc26c52e548c2ffc7d02adf5323e009b92"}, 0x8, 0x1, 0x4)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xb, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x5, 0x2, 0x6]}, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

1.187762445s ago: executing program 1 (id=3844):
prctl$auto_PR_SCHED_CORE_GET(0x2, 0x0, 0xffffffffffffffff, 0xa02, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000080), 0xffffffffffffffff)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/rc_rateidx_mcs_mask_2ghz\x00', 0x88000, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
ioctl$auto_SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, 0x0)
open_by_handle_at$auto(0xffffffffffffffff, 0x0, 0xffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7\xe6\x04\x8c\x83k', 0x10000000081)
pwritev$auto(0x3, 0x0, 0x5, 0x3, 0x9)
bpf$auto(0x12, 0x0, 0x1f)

621.644908ms ago: executing program 1 (id=3845):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r2=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x20, r0, 0x13, 0x70bd2e, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r2}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4c0d4}, 0x20040894)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r3, 0x0, 0x0)
r4 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)={0x1cf241, 0x1, 0x32}, 0x18)
mount_setattr$auto(r4, &(0x7f0000000100)='./file0\x00', 0x36, &(0x7f0000000140)={0x45, 0xc79, 0x80000001, @inferred=r3}, 0x80000000)
mmap$auto(0x0, 0x9, 0x4000000000df, 0x800000000000eb1, 0x401, 0x8000)
r5 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000640), 0x401, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/platform/vhci_hcd.0/usb9/9-0:1.0/ep_81/uevent\x00', 0x9e082, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000040)=""/222, 0xde)
write$auto(r5, 0x0, 0xff)
finit_module$auto(r3, &(0x7f0000000340)='\'$\x00', 0x0)
geteuid()
close_range$auto(r4, r4, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r7 = socket(0x0, 0x3, 0x6)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01002cbd7000fbdbdf251c0000001400040074756e6c3000ffffffff000000000000d23882cad2d1bc0a26c7b54b80f7a45f14a4d58fbd3997013648bf1db32cc741fd54c2ca2fdebed1b55a3ed9a39e4e8e1cf694fb7cbd35ff190b6956d099b42ba4946b67f88869650de77e7d1da077bae8a6f708ffaaac49bbe145c1e21bf337283fe2dea45c94073fc33da0d48e866c8588b1096132a2a1b48a012666b543a8c377b71700933a7fe6e202c0ba54ff5356ab38f35f4f2b2a0bf0eba1afe8496b09c4d8e8a67e145a7bff2472842e58dd5c8e2a428151c0814ad424a76652725f0c0fc707aa6b97c051880c28bba4e8710cc5a2145d389d489bf4cd602759fadf411a140e65def2d7fd5c"], 0x28}, 0x1, 0x0, 0x0, 0x4080}, 0x48d0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
write$auto(0x3, 0x0, 0xfdef)
shutdown$auto(0x200000003, 0x2)

105.799239ms ago: executing program 4 (id=3846):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) (async)
write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_RTC_PARAM_GET(0xffffffffffffffff, 0x40187013, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/virt_wifi0/ra_defrtr_metric\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYRES16, @ANYRES32=r0, @ANYBLOB, @ANYRESDEC=r3], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80) (async)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYRES16, @ANYRES32=r0, @ANYBLOB, @ANYRESDEC=r3], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80)
sendmsg$auto_NL80211_CMD_SET_NOACK_MAP(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000680)=ANY=[@ANYBLOB="80020000", @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0x280}, 0x1, 0x0, 0x0, 0x4000000}, 0x80)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x800, 0x0)
socket(0xa, 0x801, 0x100) (async)
socket(0xa, 0x801, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES8=r4], 0x1ac}, 0x1, 0x0, 0x0, 0x4008010}, 0x40050)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x2}, 0x3, 0x0) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x2}, 0x3, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x770, 0x1, 0x201, 0x1, 0x5, 0x3, 0x3ffde, 0x400, 0x3, 0x9, 0x4000006, 0x80004, 0x4, 0x11ffffffffffd, 0xb2, 0x2, 0x9, 0x10, 0x80, 0x80000002a0, 0x0, 0x1, 0x1, 0x202, 0x9, 0xbca7, 0x4, 0x0, 0x0, 0x0, 0x0, [0x0, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0xffffffffffffffff, 0x0, 0x9, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x200, 0x0, 0x10000, 0x0, 0x5, 0x4, 0xe17, 0x0, 0x3]}, 0x1fe, 0x2000000c)
openat$auto_fops_u8_(0xffffffffffffff9c, &(0x7f00000014c0)='/sys/kernel/debug/nfcsim/nfc0/dropframe\x00', 0x20000, 0x0) (async)
openat$auto_fops_u8_(0xffffffffffffff9c, &(0x7f00000014c0)='/sys/kernel/debug/nfcsim/nfc0/dropframe\x00', 0x20000, 0x0)
statmount$auto(0x0, &(0x7f0000000940)={0x8, 0x1, 0x1258, 0x1, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0x800000000b4, 0x3, 0x7, 0x10007, 0x80, 0x2a0, 0x0, 0x57, 0x145, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff]}, 0x1fe, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)

0s ago: executing program 3 (id=3847):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x48a22, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x8, 0x20009, 0xf, 0x800000000000ebf, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x6a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x3, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$auto(0x3, 0x6f50, 0xffffffffffffffff)
setsockopt$auto(r0, 0x7ffffd, 0x401, 0x0, 0x2000009)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r1 = socket(0x11, 0x2, 0x0)
sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x5, &(0x7f00000003c0), 0x5, 0x1000}, 0x5}, 0x2, 0x100)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_GET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x17a, 0x400, 0x2}]})
lsm_list_modules$auto(0x0, 0x0, 0x0)
socket(0x2, 0x801, 0x106)

kernel console output (not intermixed with test programs):

 range
[  993.868166][ T4550] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2934'.
[  993.928796][ T4550] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2934'.
[  995.017740][ T4683] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[  995.089603][ T4559] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2935'.
[  995.181469][ T4680] netlink: 268 bytes leftover after parsing attributes in process `syz.3.2940'.
[  996.573987][ T4903] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2945'.
[  996.901471][ T4906] mmap: syz.4.2947 (4906): VmData 37597184 exceed data ulimit 1025. Update limits or use boot option ignore_rlimit_data.
[  998.984040][ T5261] net_ratelimit: 344 callbacks suppressed
[  998.984057][ T5261] netlink: zone id is out of range
[  999.127031][ T5261] netlink: zone id is out of range
[  999.173078][ T5261] netlink: zone id is out of range
[  999.212913][ T5261] netlink: zone id is out of range
[  999.276487][ T5261] netlink: zone id is out of range
[  999.312549][ T5261] netlink: zone id is out of range
[  999.348822][ T5261] netlink: zone id is out of range
[  999.394340][ T5261] netlink: zone id is out of range
[  999.429269][ T5261] netlink: zone id is out of range
[  999.478469][ T5261] netlink: zone id is out of range
[  999.980147][ T5474] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2964'.
[ 1000.098154][ T5520] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2964'.
[ 1000.153509][ T5474] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1000.225305][ T5520] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1000.459399][ T5472] capability: warning: `syz.1.2965' uses deprecated v2 capabilities in a way that may be insecure
[ 1001.471425][ T5770] FAULT_INJECTION: forcing a failure.
[ 1001.471425][ T5770] name failslab, interval 1, probability 0, space 0, times 0
[ 1001.563709][ T5770] CPU: 0 UID: 0 PID: 5770 Comm: syz.1.2971 Not tainted syzkaller #0 PREEMPT(full) 
[ 1001.563735][ T5770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1001.563745][ T5770] Call Trace:
[ 1001.563751][ T5770]  <TASK>
[ 1001.563758][ T5770]  dump_stack_lvl+0x16c/0x1f0
[ 1001.563786][ T5770]  should_fail_ex+0x512/0x640
[ 1001.563809][ T5770]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[ 1001.563832][ T5770]  should_failslab+0xc2/0x120
[ 1001.563852][ T5770]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[ 1001.563872][ T5770]  ? register_ip_vs_app_inc+0x8c/0x4d0
[ 1001.563896][ T5770]  kmemdup_noprof+0x29/0x60
[ 1001.563914][ T5770]  register_ip_vs_app_inc+0x8c/0x4d0
[ 1001.563937][ T5770]  __ip_vs_ftp_init+0x14b/0x220
[ 1001.563959][ T5770]  ? __ip_vs_lblcr_init+0x189/0x330
[ 1001.563979][ T5770]  ? __pfx___ip_vs_ftp_init+0x10/0x10
[ 1001.563999][ T5770]  ops_init+0x1e2/0x5f0
[ 1001.564025][ T5770]  setup_net+0x10f/0x380
[ 1001.564036][ T5770]  ? lockdep_init_map_type+0x5c/0x280
[ 1001.564058][ T5770]  ? __pfx_setup_net+0x10/0x10
[ 1001.564072][ T5770]  ? debug_mutex_init+0x37/0x70
[ 1001.564097][ T5770]  copy_net_ns+0x2a6/0x5f0
[ 1001.564115][ T5770]  create_new_namespaces+0x3ea/0xa90
[ 1001.564138][ T5770]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1001.564156][ T5770]  ksys_unshare+0x45b/0xa40
[ 1001.564177][ T5770]  ? __pfx_ksys_unshare+0x10/0x10
[ 1001.564198][ T5770]  ? xfd_validate_state+0x61/0x180
[ 1001.564225][ T5770]  __x64_sys_unshare+0x31/0x40
[ 1001.564244][ T5770]  do_syscall_64+0xcd/0x4c0
[ 1001.564268][ T5770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1001.564283][ T5770] RIP: 0033:0x7fccafb8eba9
[ 1001.564296][ T5770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1001.564310][ T5770] RSP: 002b:00007fccb0934038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1001.564325][ T5770] RAX: ffffffffffffffda RBX: 00007fccafdd5fa0 RCX: 00007fccafb8eba9
[ 1001.564335][ T5770] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1001.564344][ T5770] RBP: 00007fccafc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1001.564353][ T5770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1001.564362][ T5770] R13: 00007fccafdd6038 R14: 00007fccafdd5fa0 R15: 00007fff9cfdecc8
[ 1001.564382][ T5770]  </TASK>
[ 1002.832402][ T5821] zswap: compressor  not available
[ 1004.199191][ T6181] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2982'.
[ 1005.537197][ T6501] Invalid ELF header magic: != ELF
[ 1005.590529][ T6264] Process accounting paused
[ 1005.675427][ T6508] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2990'.
[ 1005.728491][ T6508] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2990'.
[ 1006.074764][ T6612] ptrace attach of "./syz-executor exec"[6613] was attempted by "./syz-executor exec"[6612]
[ 1006.543021][ T6723] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2995'.
[ 1008.036711][ T6951] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3001'.
[ 1008.081475][ T6846] netlink: 268 bytes leftover after parsing attributes in process `syz.1.2999'.
[ 1008.107690][ T6951] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3001'.
[ 1009.865775][ T7173] net_ratelimit: 344 callbacks suppressed
[ 1009.865792][ T7173] netlink: zone id is out of range
[ 1009.865800][ T7173] netlink: zone id is out of range
[ 1009.865806][ T7173] netlink: zone id is out of range
[ 1009.865812][ T7173] netlink: zone id is out of range
[ 1009.865818][ T7173] netlink: zone id is out of range
[ 1009.865823][ T7173] netlink: zone id is out of range
[ 1009.865829][ T7173] netlink: zone id is out of range
[ 1009.865835][ T7173] netlink: zone id is out of range
[ 1009.865841][ T7173] netlink: zone id is out of range
[ 1009.865846][ T7173] netlink: zone id is out of range
[ 1011.223894][ T7392] zswap: compressor  not available
[ 1011.412835][ T7501] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3016'.
[ 1011.803130][ T7612] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3018'.
[ 1013.265718][ T7833] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3026'.
[ 1013.438941][ T7837] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3026'.
[ 1015.452056][ T8266] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3035'.
[ 1015.667461][ T8270] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3034'.
[ 1020.288292][ T9020] syz.3.3049 (9020): /proc/8908/oom_adj is deprecated, please use /proc/8908/oom_score_adj instead.
[ 1021.789296][ T9449] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3060'.
[ 1021.858845][ T9449] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1021.896002][ T9449] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3060'.
[ 1022.685995][ T9564] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3066'.
[ 1023.001250][ T9671] net_ratelimit: 698 callbacks suppressed
[ 1023.001267][ T9671] netlink: zone id is out of range
[ 1023.409320][ T9671] netlink: zone id is out of range
[ 1023.667023][ T9671] netlink: zone id is out of range
[ 1023.672174][ T9671] netlink: zone id is out of range
[ 1023.937767][ T9671] netlink: zone id is out of range
[ 1024.043935][ T9671] netlink: zone id is out of range
[ 1024.127031][ T9671] netlink: zone id is out of range
[ 1024.268748][ T9671] netlink: zone id is out of range
[ 1024.273887][ T9671] netlink: zone id is out of range
[ 1024.445635][ T9984] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3072'.
[ 1024.495692][ T9984] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3072'.
[ 1024.585102][ T9671] netlink: zone id is out of range
[ 1026.163632][T10312] FAULT_INJECTION: forcing a failure.
[ 1026.163632][T10312] name failslab, interval 1, probability 0, space 0, times 0
[ 1026.251160][T10315] FAULT_INJECTION: forcing a failure.
[ 1026.251160][T10315] name failslab, interval 1, probability 0, space 0, times 0
[ 1026.320164][T10312] CPU: 0 UID: 0 PID: 10312 Comm: syz.1.3080 Not tainted syzkaller #0 PREEMPT(full) 
[ 1026.320187][T10312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1026.320196][T10312] Call Trace:
[ 1026.320202][T10312]  <TASK>
[ 1026.320208][T10312]  dump_stack_lvl+0x16c/0x1f0
[ 1026.320235][T10312]  should_fail_ex+0x512/0x640
[ 1026.320257][T10312]  ? __kmalloc_noprof+0xbf/0x510
[ 1026.320282][T10312]  ? sk_prot_alloc+0x1a8/0x2a0
[ 1026.320297][T10312]  should_failslab+0xc2/0x120
[ 1026.320316][T10312]  __kmalloc_noprof+0xd2/0x510
[ 1026.320336][T10312]  sk_prot_alloc+0x1a8/0x2a0
[ 1026.320352][T10312]  sk_alloc+0x36/0xc20
[ 1026.320372][T10312]  __netlink_create+0x5e/0x2c0
[ 1026.320390][T10312]  ? __wake_up+0x3f/0x60
[ 1026.320407][T10312]  netlink_create+0x39e/0x620
[ 1026.320425][T10312]  ? __pfx_genl_bind+0x10/0x10
[ 1026.320438][T10312]  ? __pfx_genl_unbind+0x10/0x10
[ 1026.320450][T10312]  ? __pfx_genl_release+0x10/0x10
[ 1026.320465][T10312]  __sock_create+0x338/0x8d0
[ 1026.320485][T10312]  __sys_socket+0x14d/0x260
[ 1026.320502][T10312]  ? __pfx___sys_socket+0x10/0x10
[ 1026.320518][T10312]  ? xfd_validate_state+0x61/0x180
[ 1026.320538][T10312]  ? __pfx_do_writev+0x10/0x10
[ 1026.320558][T10312]  __x64_sys_socket+0x72/0xb0
[ 1026.320574][T10312]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1026.320594][T10312]  do_syscall_64+0xcd/0x4c0
[ 1026.320617][T10312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1026.320631][T10312] RIP: 0033:0x7fccafb8eba9
[ 1026.320644][T10312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1026.320658][T10312] RSP: 002b:00007fccb0934038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1026.320673][T10312] RAX: ffffffffffffffda RBX: 00007fccafdd5fa0 RCX: 00007fccafb8eba9
[ 1026.320682][T10312] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[ 1026.320691][T10312] RBP: 00007fccafc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1026.320700][T10312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1026.320708][T10312] R13: 00007fccafdd6038 R14: 00007fccafdd5fa0 R15: 00007fff9cfdecc8
[ 1026.320727][T10312]  </TASK>
[ 1026.755153][T10315] CPU: 0 UID: 0 PID: 10315 Comm: syz.0.3081 Not tainted syzkaller #0 PREEMPT(full) 
[ 1026.755178][T10315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1026.755188][T10315] Call Trace:
[ 1026.755194][T10315]  <TASK>
[ 1026.755200][T10315]  dump_stack_lvl+0x16c/0x1f0
[ 1026.755228][T10315]  should_fail_ex+0x512/0x640
[ 1026.755250][T10315]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1026.755269][T10315]  should_failslab+0xc2/0x120
[ 1026.755289][T10315]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1026.755303][T10315]  ? ktime_get_coarse_real_ts64_mg+0x240/0x300
[ 1026.755324][T10315]  ? hugetlb_vma_lock_alloc+0xbc/0x1f0
[ 1026.755350][T10315]  hugetlb_vma_lock_alloc+0xbc/0x1f0
[ 1026.755368][T10315]  hugetlb_reserve_pages+0x151/0xf40
[ 1026.755394][T10315]  ? __vma_enter_locked+0x163/0x3f0
[ 1026.755411][T10315]  ? __pfx_hugetlb_reserve_pages+0x10/0x10
[ 1026.755435][T10315]  ? atime_needs_update+0x8b/0x710
[ 1026.755463][T10315]  hugetlbfs_file_mmap+0x4a1/0x730
[ 1026.755490][T10315]  __mmap_region+0x1314/0x27b0
[ 1026.755510][T10315]  ? __pfx___mmap_region+0x10/0x10
[ 1026.755535][T10315]  ? is_bpf_text_address+0x94/0x1a0
[ 1026.755554][T10315]  ? kernel_text_address+0x8d/0x100
[ 1026.755568][T10315]  ? __kernel_text_address+0xd/0x40
[ 1026.755581][T10315]  ? unwind_get_return_address+0x59/0xa0
[ 1026.755597][T10315]  ? arch_stack_walk+0xa6/0x100
[ 1026.755645][T10315]  ? trace_cap_capable+0x18d/0x200
[ 1026.755667][T10315]  mmap_region+0x32b/0x3f0
[ 1026.755688][T10315]  do_mmap+0xa3e/0x1210
[ 1026.755713][T10315]  ? __pfx_do_mmap+0x10/0x10
[ 1026.755734][T10315]  ? __pfx_down_write_killable+0x10/0x10
[ 1026.755752][T10315]  vm_mmap_pgoff+0x29e/0x470
[ 1026.755777][T10315]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1026.755796][T10315]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1026.755819][T10315]  ? hugetlbfs_get_inode+0x31f/0x730
[ 1026.755840][T10315]  ksys_mmap_pgoff+0x1c8/0x5c0
[ 1026.755865][T10315]  __x64_sys_mmap+0x125/0x190
[ 1026.755892][T10315]  do_syscall_64+0xcd/0x4c0
[ 1026.755916][T10315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1026.755930][T10315] RIP: 0033:0x7ff6d818eba9
[ 1026.755943][T10315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1026.755958][T10315] RSP: 002b:00007ff6d9045038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1026.755972][T10315] RAX: ffffffffffffffda RBX: 00007ff6d83d5fa0 RCX: 00007ff6d818eba9
[ 1026.755982][T10315] RDX: 0000000000400002 RSI: 0000000000a00006 RDI: 0000000000000000
[ 1026.755991][T10315] RBP: 00007ff6d8211e19 R08: 0000000000000602 R09: 0000300000000000
[ 1026.756000][T10315] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[ 1026.756009][T10315] R13: 00007ff6d83d6038 R14: 00007ff6d83d5fa0 R15: 00007ffce1b2eca8
[ 1026.756029][T10315]  </TASK>
[ 1026.756036][T10315] HugeTLB: unable to allocate vma specific lock
[ 1027.243700][T10320] FAULT_INJECTION: forcing a failure.
[ 1027.243700][T10320] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1027.338223][T10320] CPU: 0 UID: 0 PID: 10320 Comm: syz.1.3080 Not tainted syzkaller #0 PREEMPT(full) 
[ 1027.338245][T10320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1027.338255][T10320] Call Trace:
[ 1027.338260][T10320]  <TASK>
[ 1027.338266][T10320]  dump_stack_lvl+0x16c/0x1f0
[ 1027.338299][T10320]  should_fail_ex+0x512/0x640
[ 1027.338325][T10320]  _copy_from_user+0x2e/0xd0
[ 1027.338341][T10320]  get_bitmap+0x6d/0x110
[ 1027.338361][T10320]  get_nodes+0x1df/0x210
[ 1027.338378][T10320]  ? __pfx_get_nodes+0x10/0x10
[ 1027.338393][T10320]  ? __pfx_do_set_mempolicy+0x10/0x10
[ 1027.338412][T10320]  ? __pfx___up_read+0x10/0x10
[ 1027.338436][T10320]  kernel_set_mempolicy+0x129/0x1e0
[ 1027.338455][T10320]  ? __pfx_kernel_set_mempolicy+0x10/0x10
[ 1027.338473][T10320]  ? xfd_validate_state+0x61/0x180
[ 1027.338499][T10320]  do_syscall_64+0xcd/0x4c0
[ 1027.338522][T10320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1027.338536][T10320] RIP: 0033:0x7fccafb8eba9
[ 1027.338549][T10320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1027.338563][T10320] RSP: 002b:00007fccadd93038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ee
[ 1027.338578][T10320] RAX: ffffffffffffffda RBX: 00007fccafdd6360 RCX: 00007fccafb8eba9
[ 1027.338587][T10320] RDX: 0000000000000021 RSI: 0000200000000080 RDI: 0000000000000006
[ 1027.338596][T10320] RBP: 00007fccafc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1027.338605][T10320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1027.338613][T10320] R13: 00007fccafdd63f8 R14: 00007fccafdd6360 R15: 00007fff9cfdecc8
[ 1027.338631][T10320]  </TASK>
[ 1028.739741][T10441] zswap: compressor  not available
[ 1031.312158][T10694] random: crng reseeded on system resumption
[ 1033.518300][T11029] zswap: compressor  not available
[ 1034.040789][T11240] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3099'.
[ 1034.208745][T11241] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3099'.
[ 1034.330867][T11243] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137
[ 1034.482947][T11243] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum
[ 1035.312792][T11251] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1035.348443][T11251] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1035.354630][T11251] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1035.430686][T11251] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1035.678779][ T5878] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1035.689057][ T5878] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1035.697647][ T5878] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1035.711564][ T5878] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1035.719189][ T5878] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1035.913184][T11143] Process accounting resumed
[ 1037.078531][T11278] ima: policy update failed
[ 1037.172969][   T30] audit: type=1802 audit(4294969513.589:35): pid=11278 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.3106" res=0 errno=0
[ 1037.259061][T10447] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1037.385396][T11275] zswap: compressor  not available
[ 1037.427117][T28682] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1037.433347][T28682] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1037.505160][T28682] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1037.745159][T28682] Bluetooth: hci1: command tx timeout
[ 1037.902127][T10447] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1037.924797][T11294] net_ratelimit: 344 callbacks suppressed
[ 1037.924814][T11294] netlink: zone id is out of range
[ 1038.058296][T11262] chnl_net:caif_netlink_parms(): no params data found
[ 1038.122925][T11294] netlink: zone id is out of range
[ 1038.197698][T11294] netlink: zone id is out of range
[ 1038.327497][T11294] netlink: zone id is out of range
[ 1038.434592][T10447] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1038.465698][T11294] netlink: zone id is out of range
[ 1038.583392][T11294] netlink: zone id is out of range
[ 1038.732821][T11294] netlink: zone id is out of range
[ 1038.806374][T11294] netlink: zone id is out of range
[ 1038.905491][T11294] netlink: zone id is out of range
[ 1038.932516][T11262] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1038.979224][T11262] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1039.009202][T11262] bridge_slave_0: entered allmulticast mode
[ 1039.027148][T11262] bridge_slave_0: entered promiscuous mode
[ 1039.053337][T11294] netlink: zone id is out of range
[ 1039.061828][T11262] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1039.089538][T11262] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1039.130620][T11262] bridge_slave_1: entered allmulticast mode
[ 1039.168953][T11262] bridge_slave_1: entered promiscuous mode
[ 1039.825215][T28682] Bluetooth: hci1: command tx timeout
[ 1040.145636][T11262] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1040.206150][T11262] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1040.677578][T11262] team0: Port device team_slave_0 added
[ 1040.710229][T11262] team0: Port device team_slave_1 added
[ 1041.037734][T11262] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1041.067358][T11262] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1041.151024][T11262] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1041.192267][T11262] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1041.220820][T11262] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1041.332163][T11262] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1041.540405][T10447] bridge_slave_1: left allmulticast mode
[ 1041.565669][T10447] bridge_slave_1: left promiscuous mode
[ 1041.599145][T10447] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1041.767506][T10447] bridge_slave_0: left allmulticast mode
[ 1041.801652][T10447] bridge_slave_0: left promiscuous mode
[ 1041.861237][T10447] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1041.905250][T28682] Bluetooth: hci1: command tx timeout
[ 1042.029883][T11314] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3112'.
[ 1042.336622][T11335] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3116'.
[ 1042.816544][T11339] netlink: 'syz.4.3117': attribute type 2 has an invalid length.
[ 1043.025361][T11340] netlink: 'syz.4.3117': attribute type 2 has an invalid length.
[ 1043.986064][T28682] Bluetooth: hci1: command tx timeout
[ 1044.205517][T10447] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1044.295559][T10447] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1044.346210][T10447] bond0 (unregistering): Released all slaves
[ 1044.501592][T11262] hsr_slave_0: entered promiscuous mode
[ 1044.553460][T11262] hsr_slave_1: entered promiscuous mode
[ 1044.585401][T11262] debugfs: 'hsr0' already exists in 'hsr'
[ 1044.609292][T11262] Cannot create hsr debugfs directory
[ 1048.924560][T10447] hsr_slave_0: left promiscuous mode
[ 1048.944173][T11373] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1048.986619][T10447] hsr_slave_1: left promiscuous mode
[ 1049.002347][T11373] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1049.012697][T10447] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1049.061742][T10447] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1049.121909][T11373] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1049.189396][T10447] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1049.225111][T10447] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1049.247958][T11373] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1049.253913][T11373] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1049.428638][T10447] veth1_macvtap: left promiscuous mode
[ 1049.434221][T10447] veth0_macvtap: left promiscuous mode
[ 1049.489510][T10447] veth1_vlan: left promiscuous mode
[ 1049.494800][T10447] veth0_vlan: left promiscuous mode
[ 1049.669499][T11373] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1050.262135][T11384] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3125'.
[ 1050.865960][T28682] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1051.025086][T28682] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1051.188838][T28682] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1051.265233][T28682] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1053.231960][T10447] team0 (unregistering): Port device team_slave_1 removed
[ 1053.359240][T28682] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1053.440431][T10447] team0 (unregistering): Port device team_slave_0 removed
[ 1054.634503][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.644309][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.426882][T28682] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1055.575106][T11262] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1055.641127][T11262] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1055.722559][T11262] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1055.857833][T11262] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1056.030475][T11408] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3130'.
[ 1056.377198][T11262] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1056.494884][T11262] 8021q: adding VLAN 0 to HW filter on device team0
[ 1056.506287][T11415] FAULT_INJECTION: forcing a failure.
[ 1056.506287][T11415] name failslab, interval 1, probability 0, space 0, times 0
[ 1056.506331][T11415] CPU: 0 UID: 0 PID: 11415 Comm: syz.3.3131 Not tainted syzkaller #0 PREEMPT(full) 
[ 1056.506349][T11415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1056.506359][T11415] Call Trace:
[ 1056.506365][T11415]  <TASK>
[ 1056.506372][T11415]  dump_stack_lvl+0x16c/0x1f0
[ 1056.506400][T11415]  should_fail_ex+0x512/0x640
[ 1056.506423][T11415]  ? __kmalloc_noprof+0xbf/0x510
[ 1056.506444][T11415]  ? vc_allocate+0x489/0x880
[ 1056.506463][T11415]  should_failslab+0xc2/0x120
[ 1056.506483][T11415]  __kmalloc_noprof+0xd2/0x510
[ 1056.506504][T11415]  vc_allocate+0x489/0x880
[ 1056.506525][T11415]  ? __pfx_vc_allocate+0x10/0x10
[ 1056.506551][T11415]  con_install+0xa1/0x600
[ 1056.506574][T11415]  ? __pfx_con_install+0x10/0x10
[ 1056.506597][T11415]  ? __pfx_con_install+0x10/0x10
[ 1056.506619][T11415]  tty_init_dev.part.0+0x99/0x500
[ 1056.506647][T11415]  tty_open+0xa50/0xf90
[ 1056.506664][T11415]  ? __pfx_tty_open+0x10/0x10
[ 1056.506679][T11415]  ? chrdev_open+0x58c/0x6a0
[ 1056.506701][T11415]  ? __pfx_tty_open+0x10/0x10
[ 1056.506714][T11415]  chrdev_open+0x234/0x6a0
[ 1056.506734][T11415]  ? __pfx_chrdev_open+0x10/0x10
[ 1056.506754][T11415]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[ 1056.506775][T11415]  do_dentry_open+0x982/0x1530
[ 1056.506793][T11415]  ? __pfx_chrdev_open+0x10/0x10
[ 1056.506815][T11415]  vfs_open+0x82/0x3f0
[ 1056.506839][T11415]  path_openat+0x1de4/0x2cb0
[ 1056.506863][T11415]  ? __pfx_path_openat+0x10/0x10
[ 1056.506888][T11415]  do_filp_open+0x20b/0x470
[ 1056.506906][T11415]  ? __pfx_do_filp_open+0x10/0x10
[ 1056.506937][T11415]  ? alloc_fd+0x471/0x7d0
[ 1056.506958][T11415]  do_sys_openat2+0x11b/0x1d0
[ 1056.506979][T11415]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1056.507008][T11415]  __x64_sys_openat+0x174/0x210
[ 1056.507021][T11415]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1056.507042][T11415]  do_syscall_64+0xcd/0x4c0
[ 1056.507066][T11415]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1056.507081][T11415] RIP: 0033:0x7f9d2038eba9
[ 1056.507094][T11415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1056.507118][T11415] RSP: 002b:00007f9d211ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1056.507134][T11415] RAX: ffffffffffffffda RBX: 00007f9d205d5fa0 RCX: 00007f9d2038eba9
[ 1056.507155][T11415] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1056.507164][T11415] RBP: 00007f9d20411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1056.507174][T11415] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[ 1056.507184][T11415] R13: 00007f9d205d6038 R14: 00007f9d205d5fa0 R15: 00007ffd2aaaf5e8
[ 1056.507204][T11415]  </TASK>
[ 1056.618316][T10439] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1056.618419][T10439] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1056.619621][T10439] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1056.619692][T10439] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1057.500865][T11262] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1057.750729][T11262] veth0_vlan: entered promiscuous mode
[ 1057.856785][T11262] veth1_vlan: entered promiscuous mode
[ 1058.140907][T11262] veth0_macvtap: entered promiscuous mode
[ 1058.259232][T11262] veth1_macvtap: entered promiscuous mode
[ 1058.317656][T11262] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1058.337691][T11262] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1058.483189][T10450] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1058.483263][T10450] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1058.483289][T10450] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1058.483314][T10450] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1059.355625][T10446] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1059.355683][T10446] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1059.739593][T11438] netlink: 19 bytes leftover after parsing attributes in process `syz.4.3135'.
[ 1059.897960][T10439] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1059.953997][T10439] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1060.492511][T11449] device-mapper: ioctl: Unable to rename non-existent device,  to uuid �
[ 1062.738148][T11451] kexec: Could not allocate control_code_buffer
[ 1063.258609][T11491] FAULT_INJECTION: forcing a failure.
[ 1063.258609][T11491] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1063.507645][T11491] CPU: 0 UID: 0 PID: 11491 Comm: syz.3.3145 Not tainted syzkaller #0 PREEMPT(full) 
[ 1063.507670][T11491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1063.507679][T11491] Call Trace:
[ 1063.507685][T11491]  <TASK>
[ 1063.507691][T11491]  dump_stack_lvl+0x16c/0x1f0
[ 1063.507718][T11491]  should_fail_ex+0x512/0x640
[ 1063.507744][T11491]  _copy_from_user+0x2e/0xd0
[ 1063.507760][T11491]  btf_new_fd+0x70a/0x5490
[ 1063.507780][T11491]  ? __lock_acquire+0xb97/0x1ce0
[ 1063.507807][T11491]  ? __pfx_btf_new_fd+0x10/0x10
[ 1063.507823][T11491]  ? aa_get_newest_label+0xd2/0x250
[ 1063.507841][T11491]  ? apparmor_capable+0x114/0x1d0
[ 1063.507858][T11491]  ? bpf_lsm_capable+0x9/0x10
[ 1063.507872][T11491]  ? security_capable+0x7e/0x260
[ 1063.507894][T11491]  ? ns_capable+0xd7/0x110
[ 1063.507913][T11491]  __sys_bpf+0x38a/0x4de0
[ 1063.507938][T11491]  ? __pfx___sys_bpf+0x10/0x10
[ 1063.507965][T11491]  ? do_futex+0x122/0x350
[ 1063.507984][T11491]  ? __pfx_do_futex+0x10/0x10
[ 1063.508012][T11491]  ? xfd_validate_state+0x61/0x180
[ 1063.508033][T11491]  ? __pfx_do_pwritev+0x10/0x10
[ 1063.508052][T11491]  __x64_sys_bpf+0x78/0xc0
[ 1063.508071][T11491]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1063.508093][T11491]  do_syscall_64+0xcd/0x4c0
[ 1063.508118][T11491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1063.508133][T11491] RIP: 0033:0x7f9d2038eba9
[ 1063.508146][T11491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1063.508160][T11491] RSP: 002b:00007f9d211bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1063.508175][T11491] RAX: ffffffffffffffda RBX: 00007f9d205d6180 RCX: 00007f9d2038eba9
[ 1063.508184][T11491] RDX: 0000000000000026 RSI: 0000000000000000 RDI: 0000000000000012
[ 1063.508193][T11491] RBP: 00007f9d20411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1063.508201][T11491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1063.508210][T11491] R13: 00007f9d205d6218 R14: 00007f9d205d6180 R15: 00007ffd2aaaf5e8
[ 1063.508229][T11491]  </TASK>
[ 1064.168599][T11501] syz.0.3146 (11501): attempted to duplicate a private mapping with mremap.  This is not supported.
[ 1064.468775][T11499] netlink: 19 bytes leftover after parsing attributes in process `syz.3.3147'.
[ 1066.179369][T11525] net_ratelimit: 344 callbacks suppressed
[ 1066.179386][T11525] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1066.191563][T11525] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1066.276740][T11514] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1066.306920][T11514] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1066.338320][T11514] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1066.383012][T11514] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1066.558615][T11513] Process accounting paused
[ 1067.506362][T11532] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1067.547873][T11532] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1067.553920][T11532] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1067.625249][T11532] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1068.239474][T11551] device-mapper: ioctl: Unable to rename non-existent device,  to uuid �
[ 1069.188004][ T5878] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1069.597026][ T5878] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1069.603079][ T5878] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1069.665130][ T5878] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1071.209971][T11590] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1071.511171][T11588] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1071.616146][T11588] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1071.735233][T11588] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1071.845349][T11588] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1073.425356][ T5878] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1073.665116][T28682] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1073.671281][ T5878] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1073.905083][ T5878] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1075.995042][   T30] audit: type=1800 audit(4294969552.409:36): pid=11634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3175" name="dbroot" dev="configfs" ino=75362 res=0 errno=0
[ 1076.689015][T11654] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3181'.
[ 1078.882521][   T30] audit: type=1806 audit(4294969555.299:37): xattr="" res=-22
[ 1081.646517][T11718] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[ 1081.849301][T11712] netlink: 268 bytes leftover after parsing attributes in process `syz.0.3195'.
[ 1083.457507][T11725] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1083.599316][T11725] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1083.645283][T11725] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1083.651323][T11725] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1085.426979][T28682] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1085.666911][T28682] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1085.672944][T28682] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1085.679015][ T5878] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1086.964034][T11710] kexec: Could not allocate control_code_buffer
[ 1088.566682][T11784] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3210'.
[ 1089.300137][T11794] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3211'.
[ 1089.645759][T11800] Invalid ELF header magic: != ELF
[ 1091.370676][T11836] __vm_enough_memory: pid: 11836, comm: syz.4.3224, bytes: 4398046511104 not enough memory for the allocation
[ 1093.582883][T11866] FAULT_INJECTION: forcing a failure.
[ 1093.582883][T11866] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1093.675200][T11866] CPU: 0 UID: 0 PID: 11866 Comm: syz.3.3232 Not tainted syzkaller #0 PREEMPT(full) 
[ 1093.675224][T11866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1093.675234][T11866] Call Trace:
[ 1093.675240][T11866]  <TASK>
[ 1093.675246][T11866]  dump_stack_lvl+0x16c/0x1f0
[ 1093.675273][T11866]  should_fail_ex+0x512/0x640
[ 1093.675299][T11866]  get_futex_key+0x1d0/0x1560
[ 1093.675319][T11866]  ? __pfx_btf_new_fd+0x10/0x10
[ 1093.675336][T11866]  ? __pfx_get_futex_key+0x10/0x10
[ 1093.675352][T11866]  ? aa_get_newest_label+0xd2/0x250
[ 1093.675369][T11866]  ? apparmor_capable+0x114/0x1d0
[ 1093.675386][T11866]  ? bpf_lsm_capable+0x9/0x10
[ 1093.675403][T11866]  futex_wake+0xea/0x530
[ 1093.675426][T11866]  ? __pfx_futex_wake+0x10/0x10
[ 1093.675455][T11866]  do_futex+0x1e3/0x350
[ 1093.675473][T11866]  ? __pfx_do_futex+0x10/0x10
[ 1093.675496][T11866]  __x64_sys_futex+0x1e0/0x4c0
[ 1093.675517][T11866]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1093.675535][T11866]  ? xfd_validate_state+0x61/0x180
[ 1093.675555][T11866]  ? __pfx_do_pwritev+0x10/0x10
[ 1093.675577][T11866]  do_syscall_64+0xcd/0x4c0
[ 1093.675600][T11866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1093.675615][T11866] RIP: 0033:0x7f9d2038eba9
[ 1093.675628][T11866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1093.675642][T11866] RSP: 002b:00007f9d211ff0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1093.675656][T11866] RAX: ffffffffffffffda RBX: 00007f9d205d5fa8 RCX: 00007f9d2038eba9
[ 1093.675666][T11866] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9d205d5fac
[ 1093.675677][T11866] RBP: 00007f9d205d5fa0 R08: 00007f9d21200000 R09: 0000000000000000
[ 1093.675693][T11866] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 1093.675703][T11866] R13: 00007f9d205d6038 R14: 00007ffd2aaaf500 R15: 00007ffd2aaaf5e8
[ 1093.675722][T11866]  </TASK>
[ 1096.201158][T11901] FAULT_INJECTION: forcing a failure.
[ 1096.201158][T11901] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1096.473635][T11901] CPU: 0 UID: 0 PID: 11901 Comm: syz.0.3239 Not tainted syzkaller #0 PREEMPT(full) 
[ 1096.473660][T11901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1096.473671][T11901] Call Trace:
[ 1096.473677][T11901]  <TASK>
[ 1096.473684][T11901]  dump_stack_lvl+0x16c/0x1f0
[ 1096.473711][T11901]  should_fail_ex+0x512/0x640
[ 1096.473737][T11901]  _copy_from_user+0x2e/0xd0
[ 1096.473762][T11901]  restore_altstack+0x93/0x170
[ 1096.473786][T11901]  ? __pfx_restore_altstack+0x10/0x10
[ 1096.473807][T11901]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1096.473826][T11901]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1096.473846][T11901]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 1096.473864][T11901]  ? set_current_blocked+0xdd/0x120
[ 1096.473879][T11901]  __do_sys_rt_sigreturn+0x13c/0x230
[ 1096.473899][T11901]  ? __pfx___do_sys_rt_sigreturn+0x10/0x10
[ 1096.473923][T11901]  do_syscall_64+0xcd/0x4c0
[ 1096.473946][T11901]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1096.473960][T11901] RIP: 0033:0x7f18a292ada9
[ 1096.473973][T11901] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[ 1096.473986][T11901] RSP: 002b:00007f18a384ba80 EFLAGS: 00000246 ORIG_RAX: 000000000000000f
[ 1096.474001][T11901] RAX: ffffffffffffffda RBX: 00007f18a2bd6180 RCX: 00007f18a292ada9
[ 1096.474010][T11901] RDX: 00007f18a384ba80 RSI: 00007f18a384bbb0 RDI: 0000000000000011
[ 1096.474019][T11901] RBP: 00007f18a2a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1096.474028][T11901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1096.474037][T11901] R13: 00007f18a2bd6218 R14: 00007f18a2bd6180 R15: 00007fff0dcfeeb8
[ 1096.474055][T11901]  </TASK>
[ 1096.862574][T11904] Process accounting resumed
[ 1097.343424][T11914] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3242'.
[ 1098.617765][T11922] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3243'.
[ 1099.221482][T11927] Invalid ELF header magic: != ELF
[ 1099.787788][T11935] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[ 1101.009161][T11940] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1101.097956][T11949] nbd: must specify at least one socket
[ 1101.125190][T11940] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1101.131236][T11940] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1101.310851][T11940] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1103.025120][ T5878] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1103.194693][ T5878] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1103.202726][T28682] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1103.347017][T28682] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1103.597306][T11987] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3257'.
[ 1107.558897][T12032] FAULT_INJECTION: forcing a failure.
[ 1107.558897][T12032] name failslab, interval 1, probability 0, space 0, times 0
[ 1108.164576][T12032] CPU: 0 UID: 0 PID: 12032 Comm: syz.1.3266 Not tainted syzkaller #0 PREEMPT(full) 
[ 1108.164600][T12032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1108.164610][T12032] Call Trace:
[ 1108.164616][T12032]  <TASK>
[ 1108.164623][T12032]  dump_stack_lvl+0x16c/0x1f0
[ 1108.164656][T12032]  should_fail_ex+0x512/0x640
[ 1108.164679][T12032]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1108.164697][T12032]  should_failslab+0xc2/0x120
[ 1108.164717][T12032]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1108.164733][T12032]  ? refill_pi_state_cache+0x89/0x250
[ 1108.164756][T12032]  refill_pi_state_cache+0x89/0x250
[ 1108.164777][T12032]  futex_lock_pi+0x175/0x7c0
[ 1108.164799][T12032]  ? futex_unqueue+0x13d/0x2c0
[ 1108.164816][T12032]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1108.164837][T12032]  ? __futex_wait+0x24c/0x2f0
[ 1108.164860][T12032]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1108.164891][T12032]  ? futex_private_hash_put+0x18a/0x300
[ 1108.164911][T12032]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1108.164940][T12032]  ? __pfx_child_wait_callback+0x10/0x10
[ 1108.164966][T12032]  do_futex+0x11a/0x350
[ 1108.164984][T12032]  ? __pfx_do_futex+0x10/0x10
[ 1108.165002][T12032]  ? __pfx___do_sys_wait4+0x10/0x10
[ 1108.165024][T12032]  ? __might_fault+0xe3/0x190
[ 1108.165041][T12032]  ? __might_fault+0x13b/0x190
[ 1108.165059][T12032]  __x64_sys_futex+0x1e0/0x4c0
[ 1108.165079][T12032]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1108.165098][T12032]  ? xfd_validate_state+0x61/0x180
[ 1108.165118][T12032]  ? __pfx___do_sys_prctl+0x10/0x10
[ 1108.165146][T12032]  do_syscall_64+0xcd/0x4c0
[ 1108.165169][T12032]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1108.165184][T12032] RIP: 0033:0x7fccafb8eba9
[ 1108.165203][T12032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1108.165218][T12032] RSP: 002b:00007fccad9b2038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1108.165234][T12032] RAX: ffffffffffffffda RBX: 00007fccafdd6270 RCX: 00007fccafb8eba9
[ 1108.165244][T12032] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1108.165254][T12032] RBP: 00007fccafc11e19 R08: 0000000000000000 R09: 000000008000fff2
[ 1108.165263][T12032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1108.165272][T12032] R13: 00007fccafdd6308 R14: 00007fccafdd6270 R15: 00007fff9cfdecc8
[ 1108.165291][T12032]  </TASK>
[ 1109.902233][T12031] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1110.928451][T12047] Invalid ELF header magic: != ELF
[ 1112.895744][T12061] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3273'.
[ 1115.396662][T12074] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1115.403079][T12074] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1116.079486][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.085955][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.739721][T12087] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3281'.
[ 1116.849566][T12090] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3281'.
[ 1117.261437][T12092] Console: switching to colour frame buffer device 128x48
[ 1118.321605][T12116] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3288'.
[ 1118.916512][T12126] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1118.922941][T12126] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1120.425475][T12135] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1120.444116][T12135] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1120.469666][T12135] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1120.506036][T12135] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1122.145113][T28682] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1122.465617][T28682] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1122.545433][T28682] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1122.561843][ T5878] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1123.378930][T12173] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1123.385440][T12173] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1123.435203][T12175] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3298'.
[ 1125.134349][T12194] zswap: compressor  not available
[ 1125.554915][T12204] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3308'.
[ 1125.577139][T12187] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3302'.
[ 1126.417059][T12210] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1126.423597][T12210] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1127.226029][T12225] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3314'.
[ 1127.326125][T12226] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3314'.
[ 1127.839944][T12220] Process accounting paused
[ 1128.051403][T12236] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3316'.
[ 1128.736172][T12240] zswap: compressor  not available
[ 1131.253690][T12281] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1131.260161][T12281] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1132.972063][T12306] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3331'.
[ 1133.060370][T12310] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3331'.
[ 1135.272142][T12331] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1135.427163][T12331] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1135.433259][T12331] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1135.615484][T12331] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1135.802382][T12344] nbd: socks must be embedded in a SOCK_ITEM attr
[ 1135.910802][T12344] FAULT_INJECTION: forcing a failure.
[ 1135.910802][T12344] name failslab, interval 1, probability 0, space 0, times 0
[ 1135.992700][T12344] CPU: 0 UID: 0 PID: 12344 Comm: syz.3.3342 Not tainted syzkaller #0 PREEMPT(full) 
[ 1135.992724][T12344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1135.992734][T12344] Call Trace:
[ 1135.992741][T12344]  <TASK>
[ 1135.992747][T12344]  dump_stack_lvl+0x16c/0x1f0
[ 1135.992776][T12344]  should_fail_ex+0x512/0x640
[ 1135.992799][T12344]  ? fs_reclaim_acquire+0xae/0x150
[ 1135.992822][T12344]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1135.992843][T12344]  should_failslab+0xc2/0x120
[ 1135.992864][T12344]  __kmalloc_noprof+0xd2/0x510
[ 1135.992886][T12344]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1135.992911][T12344]  tomoyo_check_open_permission+0x2ab/0x3c0
[ 1135.992930][T12344]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1135.992967][T12344]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1135.992994][T12344]  tomoyo_file_open+0x6b/0x90
[ 1135.993009][T12344]  security_file_open+0x84/0x1e0
[ 1135.993029][T12344]  do_dentry_open+0x596/0x1530
[ 1135.993053][T12344]  vfs_open+0x82/0x3f0
[ 1135.993076][T12344]  path_openat+0x1de4/0x2cb0
[ 1135.993100][T12344]  ? __pfx_path_openat+0x10/0x10
[ 1135.993122][T12344]  do_filp_open+0x20b/0x470
[ 1135.993140][T12344]  ? __pfx_do_filp_open+0x10/0x10
[ 1135.993170][T12344]  ? alloc_fd+0x471/0x7d0
[ 1135.993191][T12344]  do_sys_openat2+0x11b/0x1d0
[ 1135.993221][T12344]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1135.993245][T12344]  ? __sys_sendmsg+0x18c/0x220
[ 1135.993273][T12344]  __x64_sys_openat+0x174/0x210
[ 1135.993286][T12344]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1135.993307][T12344]  do_syscall_64+0xcd/0x4c0
[ 1135.993330][T12344]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1135.993346][T12344] RIP: 0033:0x7f9d2038eba9
[ 1135.993359][T12344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1135.993373][T12344] RSP: 002b:00007f9d211ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1135.993389][T12344] RAX: ffffffffffffffda RBX: 00007f9d205d5fa0 RCX: 00007f9d2038eba9
[ 1135.993398][T12344] RDX: 000000000000a901 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1135.993407][T12344] RBP: 00007f9d20411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1135.993416][T12344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1135.993425][T12344] R13: 00007f9d205d6038 R14: 00007f9d205d5fa0 R15: 00007ffd2aaaf5e8
[ 1135.993443][T12344]  </TASK>
[ 1135.993787][T12344] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1137.265122][ T5878] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1137.517402][ T5878] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1137.523447][ T5878] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1137.665193][ T5878] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1139.781240][T12388] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3354'.
[ 1139.898936][T12392] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1139.905383][T12392] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1140.866701][T12400] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3357'.
[ 1141.699354][T12412] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3366'.
[ 1142.244786][T12420] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(2.0.1894), cmd(5)
[ 1142.330550][T12433] netlink: 330 bytes leftover after parsing attributes in process `syz.1.3362'.
[ 1143.525593][T12449] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3364'.
[ 1143.782453][T12449] hsr_slave_0: left promiscuous mode
[ 1143.900717][T12449] hsr_slave_1: left promiscuous mode
[ 1144.403483][T12463] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3371'.
[ 1144.822815][T12472] netlink: 334 bytes leftover after parsing attributes in process `syz.3.3373'.
[ 1145.658948][ T5878] Bluetooth: hci0: Malformed LE Event: 0x1b
[ 1145.809194][T12479] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3376'.
[ 1147.715889][T12515] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(2.0.1894), cmd(5)
[ 1148.566868][T12527] zswap: compressor  not available
[ 1150.392337][T12556] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1150.398977][T12556] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1150.485300][T12558] device-mapper: ioctl: Unable to rename non-existent device,  to uuid �
[ 1152.138264][T12592] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1152.144745][T12592] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1152.392628][T12596] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3409'.
[ 1152.953948][T12616] FAULT_INJECTION: forcing a failure.
[ 1152.953948][T12616] name failslab, interval 1, probability 0, space 0, times 0
[ 1153.045179][T12616] CPU: 0 UID: 0 PID: 12616 Comm: syz.1.3413 Not tainted syzkaller #0 PREEMPT(full) 
[ 1153.045202][T12616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1153.045211][T12616] Call Trace:
[ 1153.045217][T12616]  <TASK>
[ 1153.045223][T12616]  dump_stack_lvl+0x16c/0x1f0
[ 1153.045250][T12616]  should_fail_ex+0x512/0x640
[ 1153.045273][T12616]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1153.045291][T12616]  should_failslab+0xc2/0x120
[ 1153.045310][T12616]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1153.045324][T12616]  ? find_held_lock+0x2b/0x80
[ 1153.045338][T12616]  ? alloc_pipe_info+0x10e/0x590
[ 1153.045359][T12616]  alloc_pipe_info+0x10e/0x590
[ 1153.045379][T12616]  splice_direct_to_actor+0x77d/0xa30
[ 1153.045395][T12616]  ? __lock_acquire+0x62e/0x1ce0
[ 1153.045412][T12616]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1153.045428][T12616]  ? __pfx_aa_file_perm+0x10/0x10
[ 1153.045449][T12616]  ? find_held_lock+0x2b/0x80
[ 1153.045462][T12616]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1153.045476][T12616]  ? get_pid_task+0xfc/0x250
[ 1153.045500][T12616]  do_splice_direct+0x174/0x240
[ 1153.045516][T12616]  ? __pfx_do_splice_direct+0x10/0x10
[ 1153.045530][T12616]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1153.045547][T12616]  ? rw_verify_area+0xcf/0x6c0
[ 1153.045563][T12616]  do_sendfile+0xb06/0xe50
[ 1153.045582][T12616]  ? __pfx_do_sendfile+0x10/0x10
[ 1153.045598][T12616]  ? __fget_files+0x20e/0x3c0
[ 1153.045618][T12616]  __x64_sys_sendfile64+0x1d8/0x220
[ 1153.045637][T12616]  ? ksys_write+0x1ac/0x250
[ 1153.045653][T12616]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1153.045677][T12616]  do_syscall_64+0xcd/0x4c0
[ 1153.045701][T12616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1153.045716][T12616] RIP: 0033:0x7fccafb8eba9
[ 1153.045728][T12616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1153.045742][T12616] RSP: 002b:00007fccb0934038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1153.045757][T12616] RAX: ffffffffffffffda RBX: 00007fccafdd5fa0 RCX: 00007fccafb8eba9
[ 1153.045767][T12616] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 1153.045776][T12616] RBP: 00007fccb0934090 R08: 0000000000000000 R09: 0000000000000000
[ 1153.045784][T12616] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[ 1153.045793][T12616] R13: 00007fccafdd6038 R14: 00007fccafdd5fa0 R15: 00007fff9cfdecc8
[ 1153.045811][T12616]  </TASK>
[ 1153.316186][T12605] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1153.322376][T12605] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1153.328549][T12605] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1153.334575][T12605] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1154.427552][T12626] zswap: compressor  not available
[ 1154.847211][T12645] mkiss: ax0: crc mode is auto.
[ 1154.931201][T12639] zswap: compressor  not available
[ 1155.107533][T28682] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1155.665954][ T5878] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1155.672174][   T51] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1155.678477][T28682] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1156.280628][T12671] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3423'.
[ 1156.698395][   T30] audit: type=1806 audit(4294969633.119:38): xattr="" res=-22
[ 1157.708588][T12695] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3428'.
[ 1158.513408][T12696] Process accounting resumed
[ 1160.014841][T12733] FAULT_INJECTION: forcing a failure.
[ 1160.014841][T12733] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1160.084868][T12733] CPU: 0 UID: 0 PID: 12733 Comm: syz.1.3441 Not tainted syzkaller #0 PREEMPT(full) 
[ 1160.084890][T12733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1160.084900][T12733] Call Trace:
[ 1160.084909][T12733]  <TASK>
[ 1160.084915][T12733]  dump_stack_lvl+0x16c/0x1f0
[ 1160.084942][T12733]  should_fail_ex+0x512/0x640
[ 1160.084968][T12733]  should_fail_alloc_page+0xe7/0x130
[ 1160.084990][T12733]  prepare_alloc_pages+0x3c2/0x610
[ 1160.085014][T12733]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1160.085033][T12733]  ? copy_splice_read+0x1a8/0xc20
[ 1160.085047][T12733]  ? stack_trace_save+0x8e/0xc0
[ 1160.085064][T12733]  ? __pfx_stack_trace_save+0x10/0x10
[ 1160.085080][T12733]  ? stack_depot_save_flags+0x29/0x9c0
[ 1160.085102][T12733]  ? bpf_ksym_find+0x124/0x1c0
[ 1160.085118][T12733]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1160.085135][T12733]  ? kasan_save_stack+0x33/0x60
[ 1160.085151][T12733]  ? __kasan_kmalloc+0xaa/0xb0
[ 1160.085166][T12733]  ? copy_splice_read+0x1a8/0xc20
[ 1160.085178][T12733]  ? do_splice_read+0x285/0x370
[ 1160.085191][T12733]  ? splice_direct_to_actor+0x2a1/0xa30
[ 1160.085204][T12733]  ? do_splice_direct+0x174/0x240
[ 1160.085217][T12733]  ? do_sendfile+0xb06/0xe50
[ 1160.085231][T12733]  ? __x64_sys_sendfile64+0x1d8/0x220
[ 1160.085249][T12733]  ? do_syscall_64+0xcd/0x4c0
[ 1160.085283][T12733]  alloc_pages_bulk_noprof+0x71c/0x1410
[ 1160.085306][T12733]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[ 1160.085334][T12733]  ? trace_kmalloc+0x2b/0xd0
[ 1160.085354][T12733]  ? __kmalloc_noprof+0x242/0x510
[ 1160.085374][T12733]  copy_splice_read+0x1e1/0xc20
[ 1160.085393][T12733]  ? __pfx_copy_splice_read+0x10/0x10
[ 1160.085409][T12733]  ? look_up_lock_class+0x59/0x150
[ 1160.085432][T12733]  ? lockdep_init_map_type+0x5c/0x280
[ 1160.085452][T12733]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[ 1160.085470][T12733]  ? __pfx_copy_splice_read+0x10/0x10
[ 1160.085484][T12733]  do_splice_read+0x285/0x370
[ 1160.085500][T12733]  splice_direct_to_actor+0x2a1/0xa30
[ 1160.085516][T12733]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1160.085535][T12733]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1160.085548][T12733]  ? get_pid_task+0xfc/0x250
[ 1160.085572][T12733]  do_splice_direct+0x174/0x240
[ 1160.085588][T12733]  ? __pfx_do_splice_direct+0x10/0x10
[ 1160.085603][T12733]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1160.085620][T12733]  ? rw_verify_area+0xcf/0x6c0
[ 1160.085635][T12733]  do_sendfile+0xb06/0xe50
[ 1160.085654][T12733]  ? __pfx_do_sendfile+0x10/0x10
[ 1160.085670][T12733]  ? __fget_files+0x20e/0x3c0
[ 1160.085690][T12733]  __x64_sys_sendfile64+0x1d8/0x220
[ 1160.085709][T12733]  ? ksys_write+0x1ac/0x250
[ 1160.085725][T12733]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1160.085749][T12733]  do_syscall_64+0xcd/0x4c0
[ 1160.085771][T12733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1160.085786][T12733] RIP: 0033:0x7fccafb8eba9
[ 1160.085798][T12733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1160.085812][T12733] RSP: 002b:00007fccb0934038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1160.085826][T12733] RAX: ffffffffffffffda RBX: 00007fccafdd5fa0 RCX: 00007fccafb8eba9
[ 1160.085836][T12733] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 1160.085844][T12733] RBP: 00007fccb0934090 R08: 0000000000000000 R09: 0000000000000000
[ 1160.085853][T12733] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[ 1160.085866][T12733] R13: 00007fccafdd6038 R14: 00007fccafdd5fa0 R15: 00007fff9cfdecc8
[ 1160.085884][T12733]  </TASK>
[ 1162.382494][T12753] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1162.390209][T12753] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1162.403642][T12753] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1162.422687][T12753] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1163.291505][T12785] device-mapper: ioctl: Unable to rename non-existent device,  to uuid �
[ 1163.906004][T28682] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1163.986238][T12807] FAULT_INJECTION: forcing a failure.
[ 1163.986238][T12807] name failslab, interval 1, probability 0, space 0, times 0
[ 1164.061383][T12807] CPU: 0 UID: 0 PID: 12807 Comm: syz.1.3462 Not tainted syzkaller #0 PREEMPT(full) 
[ 1164.061406][T12807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1164.061416][T12807] Call Trace:
[ 1164.061422][T12807]  <TASK>
[ 1164.061429][T12807]  dump_stack_lvl+0x16c/0x1f0
[ 1164.061455][T12807]  should_fail_ex+0x512/0x640
[ 1164.061478][T12807]  ? __kvmalloc_node_noprof+0x124/0x620
[ 1164.061497][T12807]  should_failslab+0xc2/0x120
[ 1164.061516][T12807]  __kvmalloc_node_noprof+0x137/0x620
[ 1164.061533][T12807]  ? __pfx_net_ctl_permissions+0x10/0x10
[ 1164.061547][T12807]  ? proc_sys_call_handler+0x281/0x570
[ 1164.061567][T12807]  ? ns_capable_noaudit+0xda/0x110
[ 1164.061585][T12807]  ? proc_sys_call_handler+0x281/0x570
[ 1164.061605][T12807]  proc_sys_call_handler+0x281/0x570
[ 1164.061626][T12807]  ? __pfx_proc_sys_call_handler+0x10/0x10
[ 1164.061645][T12807]  ? trace_kmalloc+0x2b/0xd0
[ 1164.061670][T12807]  copy_splice_read+0x615/0xc20
[ 1164.061689][T12807]  ? __pfx_copy_splice_read+0x10/0x10
[ 1164.061706][T12807]  ? look_up_lock_class+0x59/0x150
[ 1164.061729][T12807]  ? lockdep_init_map_type+0x5c/0x280
[ 1164.061749][T12807]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[ 1164.061768][T12807]  ? __pfx_copy_splice_read+0x10/0x10
[ 1164.061781][T12807]  do_splice_read+0x285/0x370
[ 1164.061797][T12807]  splice_direct_to_actor+0x2a1/0xa30
[ 1164.061813][T12807]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1164.061831][T12807]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1164.061845][T12807]  ? get_pid_task+0xfc/0x250
[ 1164.061869][T12807]  do_splice_direct+0x174/0x240
[ 1164.061884][T12807]  ? __pfx_do_splice_direct+0x10/0x10
[ 1164.061899][T12807]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1164.061916][T12807]  ? rw_verify_area+0xcf/0x6c0
[ 1164.061933][T12807]  do_sendfile+0xb06/0xe50
[ 1164.061951][T12807]  ? __pfx_do_sendfile+0x10/0x10
[ 1164.061967][T12807]  ? __fget_files+0x20e/0x3c0
[ 1164.061993][T12807]  __x64_sys_sendfile64+0x1d8/0x220
[ 1164.062012][T12807]  ? ksys_write+0x1ac/0x250
[ 1164.062028][T12807]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1164.062053][T12807]  do_syscall_64+0xcd/0x4c0
[ 1164.062076][T12807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1164.062091][T12807] RIP: 0033:0x7fccafb8eba9
[ 1164.062102][T12807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1164.062116][T12807] RSP: 002b:00007fccb0934038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1164.062134][T12807] RAX: ffffffffffffffda RBX: 00007fccafdd5fa0 RCX: 00007fccafb8eba9
[ 1164.062143][T12807] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[ 1164.062151][T12807] RBP: 00007fccb0934090 R08: 0000000000000000 R09: 0000000000000000
[ 1164.062159][T12807] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[ 1164.062168][T12807] R13: 00007fccafdd6038 R14: 00007fccafdd5fa0 R15: 00007fff9cfdecc8
[ 1164.062186][T12807]  </TASK>
[ 1164.708415][T28682] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1164.714635][T28682] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1164.726032][T28682] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1164.900816][T12809] zswap: compressor  not available
[ 1165.670071][T12825] FAULT_INJECTION: forcing a failure.
[ 1165.670071][T12825] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1165.756326][T12829] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1165.762760][T12829] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1165.843031][T12825] CPU: 0 UID: 0 PID: 12825 Comm: syz.1.3466 Not tainted syzkaller #0 PREEMPT(full) 
[ 1165.843056][T12825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1165.843066][T12825] Call Trace:
[ 1165.843073][T12825]  <TASK>
[ 1165.843080][T12825]  dump_stack_lvl+0x16c/0x1f0
[ 1165.843108][T12825]  should_fail_ex+0x512/0x640
[ 1165.843133][T12825]  _copy_to_user+0x32/0xd0
[ 1165.843152][T12825]  copy_to_sockptr_offset.constprop.0+0x129/0x150
[ 1165.843172][T12825]  ? __pfx_copy_to_sockptr_offset.constprop.0+0x10/0x10
[ 1165.843193][T12825]  ? bpf_vlog_finalize+0x1ba/0x360
[ 1165.843208][T12825]  btf_new_fd+0x16b9/0x5490
[ 1165.843227][T12825]  ? __lock_acquire+0xb97/0x1ce0
[ 1165.843253][T12825]  ? __pfx_btf_new_fd+0x10/0x10
[ 1165.843273][T12825]  ? aa_get_newest_label+0xd2/0x250
[ 1165.843290][T12825]  ? apparmor_capable+0x114/0x1d0
[ 1165.843307][T12825]  ? bpf_lsm_capable+0x9/0x10
[ 1165.843321][T12825]  ? security_capable+0x7e/0x260
[ 1165.843338][T12825]  ? ns_capable+0xd7/0x110
[ 1165.843355][T12825]  __sys_bpf+0x38a/0x4de0
[ 1165.843376][T12825]  ? __pfx_futex_wake+0x10/0x10
[ 1165.843399][T12825]  ? __pfx___sys_bpf+0x10/0x10
[ 1165.843424][T12825]  ? do_futex+0x122/0x350
[ 1165.843442][T12825]  ? __pfx_do_futex+0x10/0x10
[ 1165.843470][T12825]  ? xfd_validate_state+0x61/0x180
[ 1165.843490][T12825]  ? __pfx_do_pwritev+0x10/0x10
[ 1165.843509][T12825]  __x64_sys_bpf+0x78/0xc0
[ 1165.843521][T12825]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1165.843542][T12825]  do_syscall_64+0xcd/0x4c0
[ 1165.843565][T12825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1165.843580][T12825] RIP: 0033:0x7fccafb8eba9
[ 1165.843593][T12825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1165.843607][T12825] RSP: 002b:00007fccaddf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1165.843621][T12825] RAX: ffffffffffffffda RBX: 00007fccafdd6090 RCX: 00007fccafb8eba9
[ 1165.843631][T12825] RDX: 0000000000000026 RSI: 0000000000000000 RDI: 0000000000000012
[ 1165.843640][T12825] RBP: 00007fccafc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1165.843649][T12825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1165.843658][T12825] R13: 00007fccafdd6128 R14: 00007fccafdd6090 R15: 00007fff9cfdecc8
[ 1165.843675][T12825]  </TASK>
[ 1166.580794][T12840] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3471'.
[ 1167.186649][T12846] FAULT_INJECTION: forcing a failure.
[ 1167.186649][T12846] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1167.299425][T12846] CPU: 0 UID: 0 PID: 12846 Comm: syz.1.3474 Not tainted syzkaller #0 PREEMPT(full) 
[ 1167.299448][T12846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1167.299458][T12846] Call Trace:
[ 1167.299464][T12846]  <TASK>
[ 1167.299471][T12846]  dump_stack_lvl+0x16c/0x1f0
[ 1167.299498][T12846]  should_fail_ex+0x512/0x640
[ 1167.299524][T12846]  _copy_to_user+0x32/0xd0
[ 1167.299541][T12846]  simple_read_from_buffer+0xcb/0x170
[ 1167.299558][T12846]  proc_fail_nth_read+0x197/0x240
[ 1167.299575][T12846]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1167.299592][T12846]  ? rw_verify_area+0xcf/0x6c0
[ 1167.299606][T12846]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1167.299621][T12846]  vfs_read+0x1e1/0xcf0
[ 1167.299640][T12846]  ? __pfx___mutex_lock+0x10/0x10
[ 1167.299662][T12846]  ? __pfx_vfs_read+0x10/0x10
[ 1167.299682][T12846]  ? __fget_files+0x20e/0x3c0
[ 1167.299703][T12846]  ksys_read+0x12a/0x250
[ 1167.299719][T12846]  ? __pfx_ksys_read+0x10/0x10
[ 1167.299734][T12846]  ? syscall_user_dispatch+0x78/0x140
[ 1167.299771][T12846]  do_syscall_64+0xcd/0x4c0
[ 1167.299794][T12846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1167.299809][T12846] RIP: 0033:0x7fccafb8d5bc
[ 1167.299821][T12846] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1167.299836][T12846] RSP: 002b:00007fccb0934030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1167.299850][T12846] RAX: ffffffffffffffda RBX: 00007fccafdd5fa0 RCX: 00007fccafb8d5bc
[ 1167.299860][T12846] RDX: 000000000000000f RSI: 00007fccb09340a0 RDI: 0000000000000003
[ 1167.299869][T12846] RBP: 00007fccb0934090 R08: 0000000000000000 R09: 0000000000000000
[ 1167.299878][T12846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1167.299893][T12846] R13: 00007fccafdd6038 R14: 00007fccafdd5fa0 R15: 00007fff9cfdecc8
[ 1167.299913][T12846]  </TASK>
[ 1168.439453][T12856] zswap: compressor  not available
[ 1168.483643][T12863] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3478'.
[ 1168.519335][T12869] FAULT_INJECTION: forcing a failure.
[ 1168.519335][T12869] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1168.664907][T12869] CPU: 0 UID: 0 PID: 12869 Comm: syz.0.3479 Not tainted syzkaller #0 PREEMPT(full) 
[ 1168.664931][T12869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1168.664941][T12869] Call Trace:
[ 1168.664947][T12869]  <TASK>
[ 1168.664953][T12869]  dump_stack_lvl+0x16c/0x1f0
[ 1168.664980][T12869]  should_fail_ex+0x512/0x640
[ 1168.665007][T12869]  _copy_to_user+0x32/0xd0
[ 1168.665024][T12869]  copy_to_sockptr_offset.constprop.0+0x129/0x150
[ 1168.665044][T12869]  ? __pfx_copy_to_sockptr_offset.constprop.0+0x10/0x10
[ 1168.665065][T12869]  ? bpf_vlog_finalize+0x1ba/0x360
[ 1168.665080][T12869]  btf_new_fd+0x16b9/0x5490
[ 1168.665099][T12869]  ? __lock_acquire+0xb97/0x1ce0
[ 1168.665125][T12869]  ? __pfx_btf_new_fd+0x10/0x10
[ 1168.665141][T12869]  ? aa_get_newest_label+0xd2/0x250
[ 1168.665158][T12869]  ? apparmor_capable+0x114/0x1d0
[ 1168.665175][T12869]  ? bpf_lsm_capable+0x9/0x10
[ 1168.665188][T12869]  ? security_capable+0x7e/0x260
[ 1168.665204][T12869]  ? ns_capable+0xd7/0x110
[ 1168.665221][T12869]  __sys_bpf+0x38a/0x4de0
[ 1168.665242][T12869]  ? __pfx_futex_wake+0x10/0x10
[ 1168.665265][T12869]  ? __pfx___sys_bpf+0x10/0x10
[ 1168.665290][T12869]  ? do_futex+0x122/0x350
[ 1168.665308][T12869]  ? __pfx_do_futex+0x10/0x10
[ 1168.665336][T12869]  ? xfd_validate_state+0x61/0x180
[ 1168.665356][T12869]  ? __pfx_do_pwritev+0x10/0x10
[ 1168.665376][T12869]  __x64_sys_bpf+0x78/0xc0
[ 1168.665388][T12869]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1168.665408][T12869]  do_syscall_64+0xcd/0x4c0
[ 1168.665431][T12869]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1168.665446][T12869] RIP: 0033:0x7f18a298eba9
[ 1168.665459][T12869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1168.665473][T12869] RSP: 002b:00007f18a386d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1168.665488][T12869] RAX: ffffffffffffffda RBX: 00007f18a2bd6090 RCX: 00007f18a298eba9
[ 1168.665498][T12869] RDX: 0000000000000026 RSI: 0000000000000000 RDI: 0000000000000012
[ 1168.665506][T12869] RBP: 00007f18a2a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1168.665515][T12869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1168.665523][T12869] R13: 00007f18a2bd6128 R14: 00007f18a2bd6090 R15: 00007fff0dcfeeb8
[ 1168.665541][T12869]  </TASK>
[ 1169.929683][T12905] netlink: 330 bytes leftover after parsing attributes in process `syz.1.3484'.
[ 1170.516584][T12918] netlink: 62 bytes leftover after parsing attributes in process `syz.4.3488'.
[ 1170.868080][T12930] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3489'.
[ 1171.201318][T12931] device-mapper: ioctl: Unable to rename non-existent device,  to uuid �
[ 1171.771077][T12948] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3494'.
[ 1172.224174][T12942] workqueue: Failed to create a rescuer kthread for wq "nfc17_nci_tx_wq": -EINTR
[ 1173.042436][T13016] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1173.058060][T13016] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1173.972785][T13028] FAULT_INJECTION: forcing a failure.
[ 1173.972785][T13028] name failslab, interval 1, probability 0, space 0, times 0
[ 1174.157907][T13028] CPU: 0 UID: 0 PID: 13028 Comm: syz.3.3501 Not tainted syzkaller #0 PREEMPT(full) 
[ 1174.157932][T13028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1174.157942][T13028] Call Trace:
[ 1174.157948][T13028]  <TASK>
[ 1174.157954][T13028]  dump_stack_lvl+0x16c/0x1f0
[ 1174.157982][T13028]  should_fail_ex+0x512/0x640
[ 1174.158005][T13028]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[ 1174.158025][T13028]  should_failslab+0xc2/0x120
[ 1174.158045][T13028]  __kmalloc_cache_node_noprof+0x6d/0x420
[ 1174.158062][T13028]  ? __alloc_workqueue+0x506/0x1810
[ 1174.158084][T13028]  __alloc_workqueue+0x506/0x1810
[ 1174.158106][T13028]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1174.158129][T13028]  alloc_workqueue_noprof+0xd2/0x200
[ 1174.158148][T13028]  ? __pfx_alloc_workqueue_noprof+0x10/0x10
[ 1174.158172][T13028]  ? __pfx___debug_object_init+0x10/0x10
[ 1174.158203][T13028]  nci_register_device+0x511/0xb80
[ 1174.158225][T13028]  ? __pfx_nci_register_device+0x10/0x10
[ 1174.158247][T13028]  ? lockdep_init_map_type+0x5c/0x280
[ 1174.158272][T13028]  virtual_ncidev_open+0x141/0x220
[ 1174.158292][T13028]  ? __pfx_virtual_ncidev_open+0x10/0x10
[ 1174.158309][T13028]  misc_open+0x35d/0x420
[ 1174.158327][T13028]  ? __pfx_misc_open+0x10/0x10
[ 1174.158344][T13028]  chrdev_open+0x234/0x6a0
[ 1174.158363][T13028]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1174.158380][T13028]  ? __pfx_chrdev_open+0x10/0x10
[ 1174.158400][T13028]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[ 1174.158420][T13028]  do_dentry_open+0x982/0x1530
[ 1174.158438][T13028]  ? __pfx_chrdev_open+0x10/0x10
[ 1174.158460][T13028]  vfs_open+0x82/0x3f0
[ 1174.158484][T13028]  path_openat+0x1de4/0x2cb0
[ 1174.158507][T13028]  ? __pfx_path_openat+0x10/0x10
[ 1174.158529][T13028]  do_filp_open+0x20b/0x470
[ 1174.158547][T13028]  ? __pfx_do_filp_open+0x10/0x10
[ 1174.158578][T13028]  ? alloc_fd+0x471/0x7d0
[ 1174.158599][T13028]  do_sys_openat2+0x11b/0x1d0
[ 1174.158620][T13028]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1174.158649][T13028]  __x64_sys_openat+0x174/0x210
[ 1174.158662][T13028]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1174.158682][T13028]  do_syscall_64+0xcd/0x4c0
[ 1174.158705][T13028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1174.158720][T13028] RIP: 0033:0x7f9d2038eba9
[ 1174.158733][T13028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1174.158747][T13028] RSP: 002b:00007f9d211ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1174.158761][T13028] RAX: ffffffffffffffda RBX: 00007f9d205d5fa0 RCX: 00007f9d2038eba9
[ 1174.158771][T13028] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c
[ 1174.158781][T13028] RBP: 00007f9d20411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1174.158790][T13028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1174.158799][T13028] R13: 00007f9d205d6038 R14: 00007f9d205d5fa0 R15: 00007ffd2aaaf5e8
[ 1174.158819][T13028]  </TASK>
[ 1174.860411][T13034] zswap: compressor  not available
[ 1175.626163][T13045] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1175.632482][T13045] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1175.662363][T13045] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1175.707689][T13045] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1175.945508][T13060] FAULT_INJECTION: forcing a failure.
[ 1175.945508][T13060] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1176.025923][T13060] CPU: 0 UID: 0 PID: 13060 Comm: syz.1.3507 Not tainted syzkaller #0 PREEMPT(full) 
[ 1176.025946][T13060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1176.025955][T13060] Call Trace:
[ 1176.025960][T13060]  <TASK>
[ 1176.025966][T13060]  dump_stack_lvl+0x16c/0x1f0
[ 1176.025999][T13060]  should_fail_ex+0x512/0x640
[ 1176.026025][T13060]  _copy_to_user+0x32/0xd0
[ 1176.026043][T13060]  simple_read_from_buffer+0xcb/0x170
[ 1176.026060][T13060]  proc_fail_nth_read+0x197/0x240
[ 1176.026076][T13060]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1176.026093][T13060]  ? rw_verify_area+0xcf/0x6c0
[ 1176.026107][T13060]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1176.026122][T13060]  vfs_read+0x1e1/0xcf0
[ 1176.026141][T13060]  ? __pfx___mutex_lock+0x10/0x10
[ 1176.026163][T13060]  ? __pfx_vfs_read+0x10/0x10
[ 1176.026183][T13060]  ? __fget_files+0x20e/0x3c0
[ 1176.026204][T13060]  ksys_read+0x12a/0x250
[ 1176.026219][T13060]  ? __pfx_ksys_read+0x10/0x10
[ 1176.026241][T13060]  do_syscall_64+0xcd/0x4c0
[ 1176.026264][T13060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1176.026279][T13060] RIP: 0033:0x7fccafb8d5bc
[ 1176.026291][T13060] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1176.026305][T13060] RSP: 002b:00007fccb0934030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1176.026320][T13060] RAX: ffffffffffffffda RBX: 00007fccafdd5fa0 RCX: 00007fccafb8d5bc
[ 1176.026329][T13060] RDX: 000000000000000f RSI: 00007fccb09340a0 RDI: 0000000000000005
[ 1176.026338][T13060] RBP: 00007fccb0934090 R08: 0000000000000000 R09: 0000000000000000
[ 1176.026347][T13060] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[ 1176.026355][T13060] R13: 00007fccafdd6038 R14: 00007fccafdd5fa0 R15: 00007fff9cfdecc8
[ 1176.026374][T13060]  </TASK>
[ 1176.770601][T13064] netlink: 268 bytes leftover after parsing attributes in process `syz.0.3508'.
[ 1177.511329][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.522586][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.666705][T28682] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1177.672873][ T5878] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1177.681659][   T51] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1177.748969][T28682] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1177.781676][T13080] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3513'.
[ 1180.549383][T13138] futex_wake_op: syz.1.3530 tries to shift op by -2048; fix this program
[ 1180.593349][T13138] futex_wake_op: syz.1.3530 tries to shift op by -2048; fix this program
[ 1180.828735][T13145] FAULT_INJECTION: forcing a failure.
[ 1180.828735][T13145] name failslab, interval 1, probability 0, space 0, times 0
[ 1180.941709][T13145] CPU: 0 UID: 0 PID: 13145 Comm: syz.1.3532 Not tainted syzkaller #0 PREEMPT(full) 
[ 1180.941731][T13145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1180.941740][T13145] Call Trace:
[ 1180.941746][T13145]  <TASK>
[ 1180.941752][T13145]  dump_stack_lvl+0x16c/0x1f0
[ 1180.941779][T13145]  should_fail_ex+0x512/0x640
[ 1180.941804][T13145]  should_failslab+0xc2/0x120
[ 1180.941824][T13145]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1180.941840][T13145]  ? __sctp_v6_cmp_addr+0x206/0x530
[ 1180.941860][T13145]  ? sctp_add_bind_addr+0xae/0x3f0
[ 1180.941879][T13145]  sctp_add_bind_addr+0xae/0x3f0
[ 1180.941899][T13145]  sctp_copy_local_addr_list+0x349/0x550
[ 1180.941922][T13145]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[ 1180.941944][T13145]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[ 1180.941965][T13145]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1180.941989][T13145]  sctp_bind_addr_copy+0xe0/0x530
[ 1180.942012][T13145]  sctp_connect_new_asoc+0x1c9/0x770
[ 1180.942027][T13145]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[ 1180.942043][T13145]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1180.942067][T13145]  __sctp_connect+0x3f3/0xc60
[ 1180.942083][T13145]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1180.942106][T13145]  ? __pfx___sctp_connect+0x10/0x10
[ 1180.942120][T13145]  ? __pfx_sctp_inet_connect+0x10/0x10
[ 1180.942135][T13145]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1180.942157][T13145]  ? __pfx_sctp_inet_connect+0x10/0x10
[ 1180.942170][T13145]  sctp_inet_connect+0x15f/0x200
[ 1180.942184][T13145]  __sys_connect_file+0x13e/0x1a0
[ 1180.942206][T13145]  __sys_connect+0x13b/0x160
[ 1180.942224][T13145]  ? __pfx___sys_connect+0x10/0x10
[ 1180.942248][T13145]  ? xfd_validate_state+0x61/0x180
[ 1180.942268][T13145]  ? __sys_setsockopt+0x140/0x1a0
[ 1180.942291][T13145]  __x64_sys_connect+0x72/0xb0
[ 1180.942309][T13145]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1180.942329][T13145]  do_syscall_64+0xcd/0x4c0
[ 1180.942352][T13145]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1180.942367][T13145] RIP: 0033:0x7fccafb8eba9
[ 1180.942379][T13145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1180.942392][T13145] RSP: 002b:00007fccb0934038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1180.942407][T13145] RAX: ffffffffffffffda RBX: 00007fccafdd5fa0 RCX: 00007fccafb8eba9
[ 1180.942417][T13145] RDX: 0000000000000055 RSI: 00002000000018c0 RDI: 0000000000000003
[ 1180.942425][T13145] RBP: 00007fccafc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1180.942434][T13145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1180.942442][T13145] R13: 00007fccafdd6038 R14: 00007fccafdd5fa0 R15: 00007fff9cfdecc8
[ 1180.942461][T13145]  </TASK>
[ 1182.610029][T13160] FAULT_INJECTION: forcing a failure.
[ 1182.610029][T13160] name failslab, interval 1, probability 0, space 0, times 0
[ 1182.657052][T13160] CPU: 0 UID: 0 PID: 13160 Comm: syz.1.3537 Not tainted syzkaller #0 PREEMPT(full) 
[ 1182.657076][T13160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1182.657086][T13160] Call Trace:
[ 1182.657092][T13160]  <TASK>
[ 1182.657099][T13160]  dump_stack_lvl+0x16c/0x1f0
[ 1182.657125][T13160]  should_fail_ex+0x512/0x640
[ 1182.657149][T13160]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1182.657170][T13160]  should_failslab+0xc2/0x120
[ 1182.657190][T13160]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1182.657208][T13160]  ? sk_prot_alloc+0x60/0x2a0
[ 1182.657226][T13160]  sk_prot_alloc+0x60/0x2a0
[ 1182.657242][T13160]  sk_alloc+0x36/0xc20
[ 1182.657262][T13160]  __vsock_create.constprop.0+0x3c/0xbb0
[ 1182.657282][T13160]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1182.657305][T13160]  vsock_create+0x139/0x500
[ 1182.657328][T13160]  __sock_create+0x338/0x8d0
[ 1182.657348][T13160]  __sys_socket+0x14d/0x260
[ 1182.657365][T13160]  ? __pfx___sys_socket+0x10/0x10
[ 1182.657382][T13160]  ? xfd_validate_state+0x61/0x180
[ 1182.657402][T13160]  ? __task_pid_nr_ns+0x17c/0x500
[ 1182.657426][T13160]  __x64_sys_socket+0x72/0xb0
[ 1182.657442][T13160]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1182.657463][T13160]  do_syscall_64+0xcd/0x4c0
[ 1182.657486][T13160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1182.657500][T13160] RIP: 0033:0x7fccafb8eba9
[ 1182.657513][T13160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1182.657528][T13160] RSP: 002b:00007fccb0934038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1182.657542][T13160] RAX: ffffffffffffffda RBX: 00007fccafdd5fa0 RCX: 00007fccafb8eba9
[ 1182.657552][T13160] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000028
[ 1182.657561][T13160] RBP: 00007fccafc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1182.657570][T13160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1182.657579][T13160] R13: 00007fccafdd6038 R14: 00007fccafdd5fa0 R15: 00007fff9cfdecc8
[ 1182.657598][T13160]  </TASK>
[ 1183.674855][T13169] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3539'.
[ 1183.834273][T13175] netlink: 'syz.3.3541': attribute type 4 has an invalid length.
[ 1183.884385][T13175] netlink: 'syz.3.3541': attribute type 1 has an invalid length.
[ 1183.977992][T13180] netlink: 'syz.3.3541': attribute type 4 has an invalid length.
[ 1184.023823][T13180] netlink: 'syz.3.3541': attribute type 1 has an invalid length.
[ 1184.229011][T13183] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3542'.
[ 1185.465533][T13207] usb usb23: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1185.857623][T13216] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3550'.
[ 1188.476880][T13235] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3555'.
[ 1188.496390][T13247] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1188.502908][T13247] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1188.738827][T13251] Process accounting paused
[ 1190.060986][T13282] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3567'.
[ 1191.524313][T13300] device-mapper: ioctl: Unable to rename non-existent device,  to uuid �
[ 1195.014119][T13339] tipc: Started in network mode
[ 1195.044111][T13339] tipc: Node identity ee00, cluster identity 4711
[ 1195.102937][T13339] tipc: Node number set to 60928
[ 1195.965536][T13358] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3585'.
[ 1197.818525][T13386] Invalid input. Must be >= 4608
[ 1200.258393][T13434] sp0: Synchronizing with TNC
[ 1201.617008][T13466] FAULT_INJECTION: forcing a failure.
[ 1201.617008][T13466] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1201.725278][T13466] CPU: 0 UID: 0 PID: 13466 Comm: syz.0.3611 Not tainted syzkaller #0 PREEMPT(full) 
[ 1201.725302][T13466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1201.725312][T13466] Call Trace:
[ 1201.725318][T13466]  <TASK>
[ 1201.725325][T13466]  dump_stack_lvl+0x16c/0x1f0
[ 1201.725354][T13466]  should_fail_ex+0x512/0x640
[ 1201.725381][T13466]  _copy_to_user+0x32/0xd0
[ 1201.725398][T13466]  copy_to_sockptr_offset.constprop.0+0x129/0x150
[ 1201.725419][T13466]  ? __pfx_copy_to_sockptr_offset.constprop.0+0x10/0x10
[ 1201.725440][T13466]  ? bpf_vlog_finalize+0x1ba/0x360
[ 1201.725457][T13466]  btf_new_fd+0x16b9/0x5490
[ 1201.725477][T13466]  ? __lock_acquire+0xb97/0x1ce0
[ 1201.725503][T13466]  ? __pfx_btf_new_fd+0x10/0x10
[ 1201.725519][T13466]  ? aa_get_newest_label+0xd2/0x250
[ 1201.725536][T13466]  ? apparmor_capable+0x114/0x1d0
[ 1201.725553][T13466]  ? bpf_lsm_capable+0x9/0x10
[ 1201.725567][T13466]  ? security_capable+0x7e/0x260
[ 1201.725583][T13466]  ? ns_capable+0xd7/0x110
[ 1201.725600][T13466]  __sys_bpf+0x38a/0x4de0
[ 1201.725621][T13466]  ? __pfx_futex_wake+0x10/0x10
[ 1201.725644][T13466]  ? __pfx___sys_bpf+0x10/0x10
[ 1201.725669][T13466]  ? do_futex+0x122/0x350
[ 1201.725687][T13466]  ? __pfx_do_futex+0x10/0x10
[ 1201.725715][T13466]  ? xfd_validate_state+0x61/0x180
[ 1201.725735][T13466]  ? __pfx_do_pwritev+0x10/0x10
[ 1201.725758][T13466]  __x64_sys_bpf+0x78/0xc0
[ 1201.725771][T13466]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1201.725793][T13466]  do_syscall_64+0xcd/0x4c0
[ 1201.725816][T13466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1201.725831][T13466] RIP: 0033:0x7f18a298eba9
[ 1201.725843][T13466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1201.725858][T13466] RSP: 002b:00007f18a386d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1201.725876][T13466] RAX: ffffffffffffffda RBX: 00007f18a2bd6090 RCX: 00007f18a298eba9
[ 1201.725886][T13466] RDX: 0000000000000026 RSI: 0000000000000000 RDI: 0000000000000012
[ 1201.725894][T13466] RBP: 00007f18a2a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1201.725903][T13466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1201.725912][T13466] R13: 00007f18a2bd6128 R14: 00007f18a2bd6090 R15: 00007fff0dcfeeb8
[ 1201.725930][T13466]  </TASK>
[ 1202.335305][T13464] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3612'.
[ 1204.876011][T13518] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3624'.
[ 1205.748295][T13525] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3625'.
[ 1206.492480][   T30] audit: type=1800 audit(4294969682.909:39): pid=13545 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3629" name="features" dev="configfs" ino=83636 res=0 errno=0
[ 1206.512879][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1207.517774][T13571] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3635'.
[ 1208.119250][T13584] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3638'.
[ 1208.443943][T13590] Console: switching to colour VGA+ 80x25
[ 1208.537146][T13564] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3633'.
[ 1209.368472][T13605] Invalid ELF header magic: != ELF
[ 1210.264363][T13615] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3644'.
[ 1212.028634][T13640] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3649'.
[ 1212.607866][T13646] zswap: compressor  not available
[ 1213.491974][T13662] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1213.498436][T13662] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1214.007841][T13677] FAULT_INJECTION: forcing a failure.
[ 1214.007841][T13677] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1214.084727][T13677] CPU: 0 UID: 0 PID: 13677 Comm: syz.3.3662 Not tainted syzkaller #0 PREEMPT(full) 
[ 1214.084748][T13677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1214.084757][T13677] Call Trace:
[ 1214.084763][T13677]  <TASK>
[ 1214.084769][T13677]  dump_stack_lvl+0x16c/0x1f0
[ 1214.084796][T13677]  should_fail_ex+0x512/0x640
[ 1214.084822][T13677]  _copy_from_user+0x2e/0xd0
[ 1214.084838][T13677]  get_timespec64+0x8b/0x1b0
[ 1214.084857][T13677]  ? __pfx_get_timespec64+0x10/0x10
[ 1214.084873][T13677]  ? find_held_lock+0x2b/0x80
[ 1214.084895][T13677]  __x64_sys_futex+0x288/0x4c0
[ 1214.084916][T13677]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1214.084934][T13677]  ? xfd_validate_state+0x61/0x180
[ 1214.084961][T13677]  do_syscall_64+0xcd/0x4c0
[ 1214.084985][T13677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1214.084999][T13677] RIP: 0033:0x7f9d2038eba9
[ 1214.085011][T13677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1214.085025][T13677] RSP: 002b:00007ffd2aaaf748 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1214.085040][T13677] RAX: ffffffffffffffda RBX: 00000000001285f6 RCX: 00007f9d2038eba9
[ 1214.085049][T13677] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9d205d609c
[ 1214.085058][T13677] RBP: 0000000000000032 R08: 00007f9d21200000 R09: 0000000e2aaafa3f
[ 1214.085067][T13677] R10: 00007ffd2aaaf840 R11: 0000000000000246 R12: 00007f9d205d609c
[ 1214.085075][T13677] R13: 00007ffd2aaaf840 R14: 0000000000128628 R15: 00007ffd2aaaf860
[ 1214.085093][T13677]  </TASK>
[ 1214.240236][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1215.108496][T13685] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3663'.
[ 1215.436270][T13693] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[ 1215.666178][T13703] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1215.672634][T13703] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1216.386546][T13711] netlink: 268 bytes leftover after parsing attributes in process `syz.3.3672'.
[ 1216.864670][T13725] Invalid ELF header magic: != ELF
[ 1216.992882][T13731] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3678'.
[ 1218.787665][T13754] Process accounting resumed
[ 1219.074389][T13775] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1219.081147][T13775] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1219.372568][T13785] FAULT_INJECTION: forcing a failure.
[ 1219.372568][T13785] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1219.492529][T13785] CPU: 0 UID: 0 PID: 13785 Comm: syz.3.3695 Not tainted syzkaller #0 PREEMPT(full) 
[ 1219.492553][T13785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1219.492563][T13785] Call Trace:
[ 1219.492569][T13785]  <TASK>
[ 1219.492575][T13785]  dump_stack_lvl+0x16c/0x1f0
[ 1219.492602][T13785]  should_fail_ex+0x512/0x640
[ 1219.492628][T13785]  _copy_to_user+0x32/0xd0
[ 1219.492650][T13785]  copy_to_sockptr_offset.constprop.0+0x129/0x150
[ 1219.492673][T13785]  ? __pfx_copy_to_sockptr_offset.constprop.0+0x10/0x10
[ 1219.492694][T13785]  ? bpf_vlog_finalize+0x1ba/0x360
[ 1219.492711][T13785]  btf_new_fd+0x16b9/0x5490
[ 1219.492731][T13785]  ? __lock_acquire+0xb97/0x1ce0
[ 1219.492757][T13785]  ? __pfx_btf_new_fd+0x10/0x10
[ 1219.492779][T13785]  ? aa_get_newest_label+0xd2/0x250
[ 1219.492796][T13785]  ? apparmor_capable+0x114/0x1d0
[ 1219.492813][T13785]  ? bpf_lsm_capable+0x9/0x10
[ 1219.492827][T13785]  ? security_capable+0x7e/0x260
[ 1219.492844][T13785]  ? ns_capable+0xd7/0x110
[ 1219.492861][T13785]  __sys_bpf+0x38a/0x4de0
[ 1219.492882][T13785]  ? __pfx_futex_wake+0x10/0x10
[ 1219.492904][T13785]  ? __pfx___sys_bpf+0x10/0x10
[ 1219.492930][T13785]  ? do_futex+0x122/0x350
[ 1219.492948][T13785]  ? __pfx_do_futex+0x10/0x10
[ 1219.492976][T13785]  ? xfd_validate_state+0x61/0x180
[ 1219.492997][T13785]  ? __pfx_do_pwritev+0x10/0x10
[ 1219.493016][T13785]  __x64_sys_bpf+0x78/0xc0
[ 1219.493029][T13785]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1219.493049][T13785]  do_syscall_64+0xcd/0x4c0
[ 1219.493072][T13785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1219.493087][T13785] RIP: 0033:0x7f9d2038eba9
[ 1219.493100][T13785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1219.493114][T13785] RSP: 002b:00007f9d211de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1219.493128][T13785] RAX: ffffffffffffffda RBX: 00007f9d205d6090 RCX: 00007f9d2038eba9
[ 1219.493138][T13785] RDX: 0000000000000026 RSI: 0000000000000000 RDI: 0000000000000012
[ 1219.493146][T13785] RBP: 00007f9d20411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1219.493156][T13785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1219.493164][T13785] R13: 00007f9d205d6128 R14: 00007f9d205d6090 R15: 00007ffd2aaaf5e8
[ 1219.493184][T13785]  </TASK>
[ 1219.722100][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1219.761517][T13787] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3696'.
[ 1220.245388][T13792] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[ 1221.684775][T13822] FAULT_INJECTION: forcing a failure.
[ 1221.684775][T13822] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1221.808627][T13822] CPU: 0 UID: 0 PID: 13822 Comm: syz.3.3707 Not tainted syzkaller #0 PREEMPT(full) 
[ 1221.808651][T13822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1221.808661][T13822] Call Trace:
[ 1221.808667][T13822]  <TASK>
[ 1221.808674][T13822]  dump_stack_lvl+0x16c/0x1f0
[ 1221.808701][T13822]  should_fail_ex+0x512/0x640
[ 1221.808726][T13822]  _copy_to_user+0x32/0xd0
[ 1221.808744][T13822]  copy_to_sockptr_offset.constprop.0+0x129/0x150
[ 1221.808764][T13822]  ? __pfx_copy_to_sockptr_offset.constprop.0+0x10/0x10
[ 1221.808785][T13822]  ? bpf_vlog_finalize+0x1ba/0x360
[ 1221.808801][T13822]  btf_new_fd+0x16b9/0x5490
[ 1221.808820][T13822]  ? __lock_acquire+0xb97/0x1ce0
[ 1221.808845][T13822]  ? __pfx_btf_new_fd+0x10/0x10
[ 1221.808862][T13822]  ? aa_get_newest_label+0xd2/0x250
[ 1221.808879][T13822]  ? apparmor_capable+0x114/0x1d0
[ 1221.808895][T13822]  ? bpf_lsm_capable+0x9/0x10
[ 1221.808909][T13822]  ? security_capable+0x7e/0x260
[ 1221.808925][T13822]  ? ns_capable+0xd7/0x110
[ 1221.808942][T13822]  __sys_bpf+0x38a/0x4de0
[ 1221.808962][T13822]  ? __pfx_futex_wake+0x10/0x10
[ 1221.808985][T13822]  ? __pfx___sys_bpf+0x10/0x10
[ 1221.809011][T13822]  ? do_futex+0x122/0x350
[ 1221.809029][T13822]  ? __pfx_do_futex+0x10/0x10
[ 1221.809056][T13822]  ? xfd_validate_state+0x61/0x180
[ 1221.809077][T13822]  ? __pfx_do_pwritev+0x10/0x10
[ 1221.809096][T13822]  __x64_sys_bpf+0x78/0xc0
[ 1221.809108][T13822]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1221.809129][T13822]  do_syscall_64+0xcd/0x4c0
[ 1221.809152][T13822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1221.809167][T13822] RIP: 0033:0x7f9d2038eba9
[ 1221.809179][T13822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1221.809193][T13822] RSP: 002b:00007f9d211de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1221.809208][T13822] RAX: ffffffffffffffda RBX: 00007f9d205d6090 RCX: 00007f9d2038eba9
[ 1221.809219][T13822] RDX: 0000000000000026 RSI: 0000000000000000 RDI: 0000000000000012
[ 1221.809228][T13822] RBP: 00007f9d20411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1221.809237][T13822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1221.809245][T13822] R13: 00007f9d205d6128 R14: 00007f9d205d6090 R15: 00007ffd2aaaf5e8
[ 1221.809264][T13822]  </TASK>
[ 1222.621386][T13829] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1222.651214][T13437] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1222.693137][T13437] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1222.834537][T13437] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1222.872590][T13437] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1223.636995][T13842] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[ 1223.986259][T13443] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1224.553548][T13443] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1224.824299][T13443] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1224.912464][T13443] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1225.025378][T13437] Bluetooth: hci3: command tx timeout
[ 1225.099624][T13824] chnl_net:caif_netlink_parms(): no params data found
[ 1225.650140][T13443] bridge_slave_1: left allmulticast mode
[ 1225.675120][T13443] bridge_slave_1: left promiscuous mode
[ 1225.716783][T13443] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1225.758610][T13443] bridge_slave_0: left allmulticast mode
[ 1225.764387][T13443] bridge_slave_0: left promiscuous mode
[ 1225.817274][T13443] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1226.897980][T13443] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1226.950237][T13443] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1226.986825][T13443] bond0 (unregistering): Released all slaves
[ 1227.110684][T13437] Bluetooth: hci3: command tx timeout
[ 1227.166932][T13824] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1227.174065][T13824] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1227.219861][T13824] bridge_slave_0: entered allmulticast mode
[ 1227.252309][T13824] bridge_slave_0: entered promiscuous mode
[ 1227.349009][T13824] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1227.383224][T13824] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1227.429289][T13824] bridge_slave_1: entered allmulticast mode
[ 1227.463536][T13824] bridge_slave_1: entered promiscuous mode
[ 1227.656394][T13824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1227.751690][T13824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1227.781888][T13892] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[ 1227.925139][T13824] team0: Port device team_slave_0 added
[ 1227.993444][T13824] team0: Port device team_slave_1 added
[ 1228.183461][T13824] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1228.225204][T13824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1228.296111][T13905] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1228.302734][T13905] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1228.360373][T13824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1228.492955][T13824] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1228.528412][T13824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1228.650209][T13824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1229.042958][T13443] hsr_slave_0: left promiscuous mode
[ 1229.081484][T13443] hsr_slave_1: left promiscuous mode
[ 1229.095607][T13443] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1229.123585][T13443] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1229.137577][T13443] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1229.155111][T13443] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1229.186290][T13437] Bluetooth: hci3: command tx timeout
[ 1229.197788][T13443] veth1_macvtap: left promiscuous mode
[ 1229.211072][T13443] veth0_macvtap: left promiscuous mode
[ 1229.222863][T13443] veth1_vlan: left promiscuous mode
[ 1229.235620][T13443] veth0_vlan: left promiscuous mode
[ 1230.173866][T13443] team0 (unregistering): Port device team_slave_1 removed
[ 1230.276473][T13443] team0 (unregistering): Port device team_slave_0 removed
[ 1231.257494][T13824] hsr_slave_0: entered promiscuous mode
[ 1231.265237][T13437] Bluetooth: hci3: command tx timeout
[ 1231.281330][T13824] hsr_slave_1: entered promiscuous mode
[ 1231.296510][T13824] debugfs: 'hsr0' already exists in 'hsr'
[ 1231.312473][T13824] Cannot create hsr debugfs directory
[ 1231.920916][T13918] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3727'.
[ 1233.093611][T13824] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1233.246947][T13824] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1233.331682][T13824] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1233.397824][T13824] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1233.748360][T13824] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1233.813486][T13824] 8021q: adding VLAN 0 to HW filter on device team0
[ 1233.914638][T13478] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1233.921815][T13478] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1233.992272][T13478] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1233.999558][T13478] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1234.016672][T13953] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3733'.
[ 1234.848525][T13824] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1234.945972][T13960] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3734'.
[ 1235.988766][T13824] veth0_vlan: entered promiscuous mode
[ 1236.033421][T13824] veth1_vlan: entered promiscuous mode
[ 1236.134137][T13824] veth0_macvtap: entered promiscuous mode
[ 1236.184208][T13824] veth1_macvtap: entered promiscuous mode
[ 1236.254466][T13824] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1236.318832][T13824] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1236.437709][T13478] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1236.470172][T13478] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1236.566238][T13478] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1236.613513][T13478] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1236.993428][T13478] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1237.068078][T13478] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1237.403848][T13478] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1237.493607][T13478] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1238.006893][T14011] netlink: 268 bytes leftover after parsing attributes in process `syz.0.3742'.
[ 1238.016645][T14017] FAULT_INJECTION: forcing a failure.
[ 1238.016645][T14017] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1238.134999][T14017] CPU: 0 UID: 0 PID: 14017 Comm: syz.4.3704 Not tainted syzkaller #0 PREEMPT(full) 
[ 1238.135029][T14017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1238.135039][T14017] Call Trace:
[ 1238.135045][T14017]  <TASK>
[ 1238.135052][T14017]  dump_stack_lvl+0x16c/0x1f0
[ 1238.135079][T14017]  should_fail_ex+0x512/0x640
[ 1238.135105][T14017]  _copy_to_user+0x32/0xd0
[ 1238.135123][T14017]  copy_to_sockptr_offset.constprop.0+0x129/0x150
[ 1238.135143][T14017]  ? __pfx_copy_to_sockptr_offset.constprop.0+0x10/0x10
[ 1238.135164][T14017]  ? bpf_vlog_finalize+0x1ba/0x360
[ 1238.135180][T14017]  btf_new_fd+0x16b9/0x5490
[ 1238.135200][T14017]  ? __lock_acquire+0xb97/0x1ce0
[ 1238.135226][T14017]  ? __pfx_btf_new_fd+0x10/0x10
[ 1238.135243][T14017]  ? aa_get_newest_label+0xd2/0x250
[ 1238.135260][T14017]  ? apparmor_capable+0x114/0x1d0
[ 1238.135277][T14017]  ? bpf_lsm_capable+0x9/0x10
[ 1238.135290][T14017]  ? security_capable+0x7e/0x260
[ 1238.135306][T14017]  ? ns_capable+0xd7/0x110
[ 1238.135324][T14017]  __sys_bpf+0x38a/0x4de0
[ 1238.135345][T14017]  ? __pfx_futex_wake+0x10/0x10
[ 1238.135368][T14017]  ? __pfx___sys_bpf+0x10/0x10
[ 1238.135394][T14017]  ? do_futex+0x122/0x350
[ 1238.135412][T14017]  ? __pfx_do_futex+0x10/0x10
[ 1238.135440][T14017]  ? xfd_validate_state+0x61/0x180
[ 1238.135460][T14017]  ? __pfx_do_pwritev+0x10/0x10
[ 1238.135479][T14017]  __x64_sys_bpf+0x78/0xc0
[ 1238.135492][T14017]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1238.135512][T14017]  do_syscall_64+0xcd/0x4c0
[ 1238.135535][T14017]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1238.135550][T14017] RIP: 0033:0x7f2b2338eba9
[ 1238.135563][T14017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1238.135576][T14017] RSP: 002b:00007f2b24289038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1238.135591][T14017] RAX: ffffffffffffffda RBX: 00007f2b235d6090 RCX: 00007f2b2338eba9
[ 1238.135600][T14017] RDX: 0000000000000026 RSI: 0000000000000000 RDI: 0000000000000012
[ 1238.135609][T14017] RBP: 00007f2b23411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1238.135617][T14017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1238.135626][T14017] R13: 00007f2b235d6128 R14: 00007f2b235d6090 R15: 00007ffe2fc29f48
[ 1238.135644][T14017]  </TASK>
[ 1238.626437][T14024] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3744'.
[ 1238.715918][T14023] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4)
[ 1238.961639][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.975363][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1240.918270][T14061] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3751'.
[ 1241.653192][T14077] __vm_enough_memory: pid: 14077, comm: syz.1.3755, bytes: 4398046511104 not enough memory for the allocation
[ 1241.990575][T14076] zswap: compressor  not available
[ 1244.140510][T14119] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3766'.
[ 1244.272257][T14121] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3766'.
[ 1244.917830][T14127] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1245.164003][T14137] __vm_enough_memory: pid: 14137, comm: syz.0.3769, bytes: 4398046511104 not enough memory for the allocation
[ 1246.086748][T14150] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1246.093167][T14150] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1246.100357][T14149] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input99
[ 1246.330437][T14154] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[ 1247.040033][T14165] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3776'.
[ 1247.627958][T14176] netlink: 268 bytes leftover after parsing attributes in process `syz.0.3778'.
[ 1248.016725][T14186] FAULT_INJECTION: forcing a failure.
[ 1248.016725][T14186] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1248.124198][T14186] CPU: 0 UID: 0 PID: 14186 Comm: syz.1.3782 Not tainted syzkaller #0 PREEMPT(full) 
[ 1248.124220][T14186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1248.124230][T14186] Call Trace:
[ 1248.124236][T14186]  <TASK>
[ 1248.124242][T14186]  dump_stack_lvl+0x16c/0x1f0
[ 1248.124268][T14186]  should_fail_ex+0x512/0x640
[ 1248.124294][T14186]  _copy_from_user+0x2e/0xd0
[ 1248.124310][T14186]  copy_from_sockptr_offset.constprop.0+0x153/0x1a0
[ 1248.124332][T14186]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[ 1248.124352][T14186]  ? __local_bh_enable_ip+0xa4/0x120
[ 1248.124369][T14186]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1248.124393][T14186]  do_ipv6_setsockopt+0x1637/0x4350
[ 1248.124415][T14186]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[ 1248.124434][T14186]  ? aa_label_sk_perm+0x195/0x600
[ 1248.124452][T14186]  ? tipc_sk_withdraw+0x360/0x660
[ 1248.124475][T14186]  ? __pfx_aa_label_sk_perm+0x10/0x10
[ 1248.124499][T14186]  ? find_held_lock+0x2b/0x80
[ 1248.124514][T14186]  ? get_pid_task+0xfc/0x250
[ 1248.124541][T14186]  ? __pfx___might_resched+0x10/0x10
[ 1248.124556][T14186]  ? __lock_acquire+0x62e/0x1ce0
[ 1248.124580][T14186]  ? ipv6_setsockopt+0xcb/0x170
[ 1248.124597][T14186]  ipv6_setsockopt+0xcb/0x170
[ 1248.124617][T14186]  rawv6_setsockopt+0xc2/0x510
[ 1248.124635][T14186]  ? __pfx_rawv6_setsockopt+0x10/0x10
[ 1248.124651][T14186]  ? aa_sock_opt_perm+0xfd/0x1c0
[ 1248.124664][T14186]  ? sock_common_setsockopt+0x2e/0xf0
[ 1248.124680][T14186]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1248.124696][T14186]  do_sock_setsockopt+0xf0/0x1d0
[ 1248.124714][T14186]  __sys_setsockopt+0x120/0x1a0
[ 1248.124737][T14186]  __x64_sys_setsockopt+0xbd/0x160
[ 1248.124756][T14186]  ? do_syscall_64+0x91/0x4c0
[ 1248.124777][T14186]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1248.124797][T14186]  do_syscall_64+0xcd/0x4c0
[ 1248.124820][T14186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1248.124835][T14186] RIP: 0033:0x7fccafb8eba9
[ 1248.124847][T14186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1248.124862][T14186] RSP: 002b:00007fccb0934038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1248.124880][T14186] RAX: ffffffffffffffda RBX: 00007fccafdd5fa0 RCX: 00007fccafb8eba9
[ 1248.124890][T14186] RDX: 0000000000000014 RSI: 0000000000000029 RDI: 0000000000000003
[ 1248.124899][T14186] RBP: 00007fccb0934090 R08: 000000000000056b R09: 0000000000000000
[ 1248.124908][T14186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1248.124916][T14186] R13: 00007fccafdd6038 R14: 00007fccafdd5fa0 R15: 00007fff9cfdecc8
[ 1248.124935][T14186]  </TASK>
[ 1248.380229][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1248.750147][T14188] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3783'.
[ 1248.857144][T14193] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4)
[ 1249.086280][T14052] Process accounting paused
[ 1249.367309][T14208] FAULT_INJECTION: forcing a failure.
[ 1249.367309][T14208] name failslab, interval 1, probability 0, space 0, times 0
[ 1249.467124][T14208] CPU: 0 UID: 0 PID: 14208 Comm: syz.3.3787 Not tainted syzkaller #0 PREEMPT(full) 
[ 1249.467149][T14208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1249.467159][T14208] Call Trace:
[ 1249.467164][T14208]  <TASK>
[ 1249.467171][T14208]  dump_stack_lvl+0x16c/0x1f0
[ 1249.467197][T14208]  should_fail_ex+0x512/0x640
[ 1249.467220][T14208]  ? __kmalloc_noprof+0xbf/0x510
[ 1249.467239][T14208]  ? iter_file_splice_write+0x1cc/0x12e0
[ 1249.467255][T14208]  should_failslab+0xc2/0x120
[ 1249.467274][T14208]  __kmalloc_noprof+0xd2/0x510
[ 1249.467300][T14208]  iter_file_splice_write+0x1cc/0x12e0
[ 1249.467320][T14208]  ? kfree+0x2b4/0x4d0
[ 1249.467338][T14208]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1249.467354][T14208]  ? __lock_acquire+0xb97/0x1ce0
[ 1249.467375][T14208]  ? __pfx_copy_splice_read+0x10/0x10
[ 1249.467400][T14208]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1249.467417][T14208]  direct_splice_actor+0x18f/0x6c0
[ 1249.467434][T14208]  splice_direct_to_actor+0x342/0xa30
[ 1249.467451][T14208]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1249.467470][T14208]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1249.467484][T14208]  ? get_pid_task+0xfc/0x250
[ 1249.467508][T14208]  do_splice_direct+0x174/0x240
[ 1249.467524][T14208]  ? __pfx_do_splice_direct+0x10/0x10
[ 1249.467539][T14208]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1249.467556][T14208]  ? rw_verify_area+0xcf/0x6c0
[ 1249.467573][T14208]  do_sendfile+0xb06/0xe50
[ 1249.467592][T14208]  ? __pfx_do_sendfile+0x10/0x10
[ 1249.467608][T14208]  ? __fget_files+0x20e/0x3c0
[ 1249.467629][T14208]  __x64_sys_sendfile64+0x1d8/0x220
[ 1249.467648][T14208]  ? ksys_write+0x1ac/0x250
[ 1249.467664][T14208]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1249.467689][T14208]  do_syscall_64+0xcd/0x4c0
[ 1249.467713][T14208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1249.467728][T14208] RIP: 0033:0x7f9d2038eba9
[ 1249.467740][T14208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1249.467754][T14208] RSP: 002b:00007f9d211ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1249.467768][T14208] RAX: ffffffffffffffda RBX: 00007f9d205d5fa0 RCX: 00007f9d2038eba9
[ 1249.467778][T14208] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[ 1249.467786][T14208] RBP: 00007f9d211ff090 R08: 0000000000000000 R09: 0000000000000000
[ 1249.467794][T14208] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[ 1249.467803][T14208] R13: 00007f9d205d6038 R14: 00007f9d205d5fa0 R15: 00007ffd2aaaf5e8
[ 1249.467821][T14208]  </TASK>
[ 1249.725659][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1251.555337][T14236] netlink: 'syz.4.3794': attribute type 19 has an invalid length.
[ 1251.595035][T14236] netlink: 334 bytes leftover after parsing attributes in process `syz.4.3794'.
[ 1252.166197][T14249] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3795'.
[ 1252.226269][T14249] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3795'.
[ 1252.737281][T14260] blktrace: Concurrent blktraces are not allowed on ram7
[ 1253.686696][T14272] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3800'.
[ 1253.731199][T14272] netlink: 342 bytes leftover after parsing attributes in process `syz.4.3800'.
[ 1253.937050][T14276] FAULT_INJECTION: forcing a failure.
[ 1253.937050][T14276] name failslab, interval 1, probability 0, space 0, times 0
[ 1254.009227][T14276] CPU: 0 UID: 0 PID: 14276 Comm: syz.4.3801 Not tainted syzkaller #0 PREEMPT(full) 
[ 1254.009250][T14276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1254.009259][T14276] Call Trace:
[ 1254.009265][T14276]  <TASK>
[ 1254.009271][T14276]  dump_stack_lvl+0x16c/0x1f0
[ 1254.009298][T14276]  should_fail_ex+0x512/0x640
[ 1254.009321][T14276]  ? __kmalloc_noprof+0xbf/0x510
[ 1254.009342][T14276]  ? sock_kmalloc+0x111/0x170
[ 1254.009357][T14276]  should_failslab+0xc2/0x120
[ 1254.009382][T14276]  __kmalloc_noprof+0xd2/0x510
[ 1254.009402][T14276]  sock_kmalloc+0x111/0x170
[ 1254.009418][T14276]  __ipv6_sock_mc_join+0x3de/0xc20
[ 1254.009443][T14276]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1254.009466][T14276]  do_ipv6_setsockopt+0x16c3/0x4350
[ 1254.009489][T14276]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[ 1254.009507][T14276]  ? aa_label_sk_perm+0x195/0x600
[ 1254.009526][T14276]  ? tipc_sk_withdraw+0x360/0x660
[ 1254.009549][T14276]  ? __pfx_aa_label_sk_perm+0x10/0x10
[ 1254.009572][T14276]  ? find_held_lock+0x2b/0x80
[ 1254.009587][T14276]  ? get_pid_task+0xfc/0x250
[ 1254.009614][T14276]  ? __pfx___might_resched+0x10/0x10
[ 1254.009629][T14276]  ? __lock_acquire+0x62e/0x1ce0
[ 1254.009653][T14276]  ? ipv6_setsockopt+0xcb/0x170
[ 1254.009687][T14276]  ipv6_setsockopt+0xcb/0x170
[ 1254.009707][T14276]  rawv6_setsockopt+0xc2/0x510
[ 1254.009729][T14276]  ? __pfx_rawv6_setsockopt+0x10/0x10
[ 1254.009746][T14276]  ? aa_sock_opt_perm+0xfd/0x1c0
[ 1254.009759][T14276]  ? sock_common_setsockopt+0x2e/0xf0
[ 1254.009773][T14276]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1254.009789][T14276]  do_sock_setsockopt+0xf0/0x1d0
[ 1254.009807][T14276]  __sys_setsockopt+0x120/0x1a0
[ 1254.009831][T14276]  __x64_sys_setsockopt+0xbd/0x160
[ 1254.009849][T14276]  ? do_syscall_64+0x91/0x4c0
[ 1254.009871][T14276]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1254.009890][T14276]  do_syscall_64+0xcd/0x4c0
[ 1254.009912][T14276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1254.009928][T14276] RIP: 0033:0x7f2b2338eba9
[ 1254.009940][T14276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1254.009954][T14276] RSP: 002b:00007f2b242aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1254.009969][T14276] RAX: ffffffffffffffda RBX: 00007f2b235d5fa0 RCX: 00007f2b2338eba9
[ 1254.009979][T14276] RDX: 0000000000000014 RSI: 0000000000000029 RDI: 0000000000000003
[ 1254.009988][T14276] RBP: 00007f2b242aa090 R08: 000000000000056b R09: 0000000000000000
[ 1254.009997][T14276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1254.010005][T14276] R13: 00007f2b235d6038 R14: 00007f2b235d5fa0 R15: 00007ffe2fc29f48
[ 1254.010024][T14276]  </TASK>
[ 1255.922447][T14287] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3804'.
[ 1256.198427][T14301] FAULT_INJECTION: forcing a failure.
[ 1256.198427][T14301] name failslab, interval 1, probability 0, space 0, times 0
[ 1256.245850][T14310] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3807'.
[ 1256.308635][T14301] CPU: 0 UID: 0 PID: 14301 Comm: syz.1.3808 Not tainted syzkaller #0 PREEMPT(full) 
[ 1256.308656][T14301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1256.308667][T14301] Call Trace:
[ 1256.308673][T14301]  <TASK>
[ 1256.308679][T14301]  dump_stack_lvl+0x16c/0x1f0
[ 1256.308706][T14301]  should_fail_ex+0x512/0x640
[ 1256.308729][T14301]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1256.308750][T14301]  should_failslab+0xc2/0x120
[ 1256.308769][T14301]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1256.308786][T14301]  ? __kernfs_new_node+0xd2/0x8e0
[ 1256.308808][T14301]  __kernfs_new_node+0xd2/0x8e0
[ 1256.308828][T14301]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1256.308851][T14301]  ? find_held_lock+0x2b/0x80
[ 1256.308866][T14301]  ? kernfs_root+0xee/0x2a0
[ 1256.308888][T14301]  kernfs_new_node+0x13c/0x1e0
[ 1256.308911][T14301]  __kernfs_create_file+0x53/0x350
[ 1256.308928][T14301]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1256.308950][T14301]  internal_create_group+0x578/0xf30
[ 1256.308974][T14301]  ? __pfx_internal_create_group+0x10/0x10
[ 1256.308996][T14301]  ? kernfs_create_link+0x1bd/0x240
[ 1256.309013][T14301]  internal_create_groups+0x9d/0x150
[ 1256.309034][T14301]  device_add+0x731/0x1aa0
[ 1256.309053][T14301]  ? __pfx_device_add+0x10/0x10
[ 1256.309069][T14301]  ? lockdep_init_map_type+0x5c/0x280
[ 1256.309093][T14301]  input_register_device+0x7e8/0x1180
[ 1256.309112][T14301]  ? input_ff_create+0x256/0x350
[ 1256.309134][T14301]  uinput_ioctl_handler.isra.0+0x1357/0x1df0
[ 1256.309156][T14301]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1256.309179][T14301]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[ 1256.309206][T14301]  ? find_held_lock+0x2b/0x80
[ 1256.309229][T14301]  ? __pfx_uinput_ioctl+0x10/0x10
[ 1256.309251][T14301]  __x64_sys_ioctl+0x18b/0x210
[ 1256.309274][T14301]  do_syscall_64+0xcd/0x4c0
[ 1256.309298][T14301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1256.309312][T14301] RIP: 0033:0x7fccafb8eba9
[ 1256.309325][T14301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1256.309340][T14301] RSP: 002b:00007fccb0934038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1256.309355][T14301] RAX: ffffffffffffffda RBX: 00007fccafdd5fa0 RCX: 00007fccafb8eba9
[ 1256.309366][T14301] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000003
[ 1256.309374][T14301] RBP: 00007fccafc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1256.309383][T14301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1256.309391][T14301] R13: 00007fccafdd6038 R14: 00007fccafdd5fa0 R15: 00007fff9cfdecc8
[ 1256.309410][T14301]  </TASK>
[ 1256.927670][T14315] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3810'.
[ 1256.975905][T14315] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3810'.
[ 1258.838750][T14347] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3815'.
[ 1258.907072][T14350] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[ 1259.569861][T14358] FAULT_INJECTION: forcing a failure.
[ 1259.569861][T14358] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1259.643827][T14358] CPU: 0 UID: 0 PID: 14358 Comm: syz.3.3818 Not tainted syzkaller #0 PREEMPT(full) 
[ 1259.643849][T14358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1259.643859][T14358] Call Trace:
[ 1259.643865][T14358]  <TASK>
[ 1259.643872][T14358]  dump_stack_lvl+0x16c/0x1f0
[ 1259.643898][T14358]  should_fail_ex+0x512/0x640
[ 1259.643924][T14358]  _copy_from_user+0x2e/0xd0
[ 1259.643940][T14358]  __sys_bpf+0x21d/0x4de0
[ 1259.643965][T14358]  ? __pfx___sys_bpf+0x10/0x10
[ 1259.643986][T14358]  ? ksys_write+0x190/0x250
[ 1259.644006][T14358]  ? __mutex_unlock_slowpath+0x161/0x7b0
[ 1259.644038][T14358]  ? fput+0x9b/0xd0
[ 1259.644057][T14358]  ? ksys_write+0x1ac/0x250
[ 1259.644073][T14358]  ? __pfx_ksys_write+0x10/0x10
[ 1259.644092][T14358]  __x64_sys_bpf+0x78/0xc0
[ 1259.644104][T14358]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1259.644124][T14358]  do_syscall_64+0xcd/0x4c0
[ 1259.644147][T14358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1259.644162][T14358] RIP: 0033:0x7f9d2038eba9
[ 1259.644174][T14358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1259.644188][T14358] RSP: 002b:00007f9d211ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1259.644203][T14358] RAX: ffffffffffffffda RBX: 00007f9d205d5fa0 RCX: 00007f9d2038eba9
[ 1259.644212][T14358] RDX: 0000000000000026 RSI: 0000000000000000 RDI: 0000000000000012
[ 1259.644221][T14358] RBP: 00007f9d211ff090 R08: 0000000000000000 R09: 0000000000000000
[ 1259.644229][T14358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1259.644238][T14358] R13: 00007f9d205d6038 R14: 00007f9d205d5fa0 R15: 00007ffd2aaaf5e8
[ 1259.644255][T14358]  </TASK>
[ 1260.016166][T14360] FAULT_INJECTION: forcing a failure.
[ 1260.016166][T14360] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1260.055003][T14360] CPU: 0 UID: 0 PID: 14360 Comm: syz.0.3819 Not tainted syzkaller #0 PREEMPT(full) 
[ 1260.055027][T14360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1260.055037][T14360] Call Trace:
[ 1260.055043][T14360]  <TASK>
[ 1260.055049][T14360]  dump_stack_lvl+0x16c/0x1f0
[ 1260.055077][T14360]  should_fail_ex+0x512/0x640
[ 1260.055103][T14360]  _copy_to_user+0x32/0xd0
[ 1260.055121][T14360]  copy_to_sockptr_offset.constprop.0+0x129/0x150
[ 1260.055142][T14360]  ? __pfx_copy_to_sockptr_offset.constprop.0+0x10/0x10
[ 1260.055163][T14360]  ? bpf_vlog_finalize+0x1ba/0x360
[ 1260.055178][T14360]  btf_new_fd+0x16b9/0x5490
[ 1260.055200][T14360]  ? __lock_acquire+0xb97/0x1ce0
[ 1260.055226][T14360]  ? __pfx_btf_new_fd+0x10/0x10
[ 1260.055243][T14360]  ? aa_get_newest_label+0xd2/0x250
[ 1260.055260][T14360]  ? apparmor_capable+0x114/0x1d0
[ 1260.055277][T14360]  ? bpf_lsm_capable+0x9/0x10
[ 1260.055292][T14360]  ? security_capable+0x7e/0x260
[ 1260.055308][T14360]  ? ns_capable+0xd7/0x110
[ 1260.055325][T14360]  __sys_bpf+0x38a/0x4de0
[ 1260.055346][T14360]  ? __pfx_futex_wake+0x10/0x10
[ 1260.055368][T14360]  ? __pfx___sys_bpf+0x10/0x10
[ 1260.055394][T14360]  ? do_futex+0x122/0x350
[ 1260.055412][T14360]  ? __pfx_do_futex+0x10/0x10
[ 1260.055440][T14360]  ? xfd_validate_state+0x61/0x180
[ 1260.055461][T14360]  ? __pfx_do_pwritev+0x10/0x10
[ 1260.055480][T14360]  __x64_sys_bpf+0x78/0xc0
[ 1260.055492][T14360]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1260.055520][T14360]  do_syscall_64+0xcd/0x4c0
[ 1260.055544][T14360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1260.055560][T14360] RIP: 0033:0x7f18a298eba9
[ 1260.055573][T14360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1260.055589][T14360] RSP: 002b:00007f18a388e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1260.055605][T14360] RAX: ffffffffffffffda RBX: 00007f18a2bd5fa0 RCX: 00007f18a298eba9
[ 1260.055615][T14360] RDX: 0000000000000026 RSI: 0000000000000000 RDI: 0000000000000012
[ 1260.055624][T14360] RBP: 00007f18a2a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 1260.055633][T14360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1260.055642][T14360] R13: 00007f18a2bd6038 R14: 00007f18a2bd5fa0 R15: 00007fff0dcfeeb8
[ 1260.055662][T14360]  </TASK>
[ 1260.545579][T14368] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3820'.
[ 1260.580309][T14368] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3820'.
[ 1260.906401][T14366] zswap: compressor  not available
[ 1261.822029][T14369] Setting dangerous option i915.mitigations - tainting kernel
[ 1261.885666][T14369] ima: policy update failed
[ 1261.891646][   T30] audit: type=1802 audit(4294969738.309:40): pid=14369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3821" res=0 errno=0
[ 1264.189381][T14416] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3831'.
[ 1264.220060][T14416] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3831'.
[ 1264.271041][T14417] FAULT_INJECTION: forcing a failure.
[ 1264.271041][T14417] name failslab, interval 1, probability 0, space 0, times 0
[ 1264.315445][T14417] CPU: 0 UID: 0 PID: 14417 Comm: syz.4.3830 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 1264.315475][T14417] Tainted: [U]=USER
[ 1264.315480][T14417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1264.315489][T14417] Call Trace:
[ 1264.315494][T14417]  <TASK>
[ 1264.315500][T14417]  dump_stack_lvl+0x16c/0x1f0
[ 1264.315527][T14417]  should_fail_ex+0x512/0x640
[ 1264.315551][T14417]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1264.315571][T14417]  should_failslab+0xc2/0x120
[ 1264.315590][T14417]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1264.315607][T14417]  ? alloc_empty_file+0x55/0x1e0
[ 1264.315631][T14417]  alloc_empty_file+0x55/0x1e0
[ 1264.315652][T14417]  path_openat+0xda/0x2cb0
[ 1264.315668][T14417]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1264.315690][T14417]  ? __pfx_path_openat+0x10/0x10
[ 1264.315711][T14417]  do_filp_open+0x20b/0x470
[ 1264.315728][T14417]  ? __pfx_do_filp_open+0x10/0x10
[ 1264.315758][T14417]  ? alloc_fd+0x471/0x7d0
[ 1264.315778][T14417]  do_sys_openat2+0x11b/0x1d0
[ 1264.315801][T14417]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1264.315823][T14417]  ? __fget_files+0x20e/0x3c0
[ 1264.315842][T14417]  __x64_sys_openat+0x174/0x210
[ 1264.315855][T14417]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1264.315880][T14417]  do_syscall_64+0xcd/0x4c0
[ 1264.315903][T14417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1264.315917][T14417] RIP: 0033:0x7f2b2338d510
[ 1264.315930][T14417] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[ 1264.315943][T14417] RSP: 002b:00007f2b24288fe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 1264.315958][T14417] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f2b2338d510
[ 1264.315967][T14417] RDX: 0000000000000002 RSI: 00007f2b234120d3 RDI: 00000000ffffff9c
[ 1264.315976][T14417] RBP: 00007f2b234120d3 R08: 0000000000000000 R09: 00007f2b242ab000
[ 1264.315985][T14417] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[ 1264.315994][T14417] R13: 00007f2b235d6128 R14: 00007f2b235d6090 R15: 00007ffe2fc29f48
[ 1264.316012][T14417]  </TASK>
[ 1265.662863][T14434] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3835'.
[ 1266.107071][T14444] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3836'.
[ 1267.393150][T14452] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1267.406918][T14452] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1267.429254][T14452] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1267.449335][T14452] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1267.471322][T14452] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1267.494099][T14452] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1268.085172][T14481] netlink: 268 bytes leftover after parsing attributes in process `syz.0.3842'.
[ 1268.704992][T13437] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1268.981037][T14491] ==================================================================
[ 1268.989123][T14491] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0
[ 1268.996846][T14491] Read of size 8 at addr ffff88802a52de18 by task syz.3.3847/14491
[ 1269.004729][T14491] 
[ 1269.007054][T14491] CPU: 0 UID: 0 PID: 14491 Comm: syz.3.3847 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 1269.007079][T14491] Tainted: [U]=USER
[ 1269.007085][T14491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1269.007095][T14491] Call Trace:
[ 1269.007104][T14491]  <TASK>
[ 1269.007111][T14491]  dump_stack_lvl+0x116/0x1f0
[ 1269.007138][T14491]  print_report+0xcd/0x630
[ 1269.007157][T14491]  ? __virt_addr_valid+0x81/0x610
[ 1269.007176][T14491]  ? __phys_addr+0xe8/0x180
[ 1269.007194][T14491]  ? dvb_device_open+0x36a/0x3b0
[ 1269.007207][T14491]  kasan_report+0xe0/0x110
[ 1269.007226][T14491]  ? dvb_device_open+0x36a/0x3b0
[ 1269.007240][T14491]  ? __pfx_dvb_device_open+0x10/0x10
[ 1269.007253][T14491]  dvb_device_open+0x36a/0x3b0
[ 1269.007266][T14491]  ? __pfx_dvb_device_open+0x10/0x10
[ 1269.007279][T14491]  chrdev_open+0x234/0x6a0
[ 1269.007297][T14491]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1269.007314][T14491]  ? __pfx_chrdev_open+0x10/0x10
[ 1269.007332][T14491]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[ 1269.007351][T14491]  do_dentry_open+0x982/0x1530
[ 1269.007368][T14491]  ? __pfx_chrdev_open+0x10/0x10
[ 1269.007388][T14491]  vfs_open+0x82/0x3f0
[ 1269.007409][T14491]  path_openat+0x1de4/0x2cb0
[ 1269.007429][T14491]  ? __pfx_path_openat+0x10/0x10
[ 1269.007448][T14491]  do_filp_open+0x20b/0x470
[ 1269.007464][T14491]  ? __pfx_do_filp_open+0x10/0x10
[ 1269.007502][T14491]  ? alloc_fd+0x471/0x7d0
[ 1269.007521][T14491]  do_sys_openat2+0x11b/0x1d0
[ 1269.007542][T14491]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1269.007565][T14491]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1269.007587][T14491]  ? __pfx___might_resched+0x10/0x10
[ 1269.007604][T14491]  __x64_sys_openat+0x174/0x210
[ 1269.007617][T14491]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1269.007633][T14491]  do_syscall_64+0xcd/0x4c0
[ 1269.007656][T14491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1269.007671][T14491] RIP: 0033:0x7f9d2038eba9
[ 1269.007685][T14491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1269.007699][T14491] RSP: 002b:00007f9d211ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1269.007714][T14491] RAX: ffffffffffffffda RBX: 00007f9d205d5fa0 RCX: 00007f9d2038eba9
[ 1269.007724][T14491] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1269.007734][T14491] RBP: 00007f9d20411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1269.007744][T14491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1269.007753][T14491] R13: 00007f9d205d6038 R14: 00007f9d205d5fa0 R15: 00007ffd2aaaf5e8
[ 1269.007768][T14491]  </TASK>
[ 1269.007776][T14491] 
[ 1269.265095][T14491] Allocated by task 14329:
[ 1269.269505][T14491]  kasan_save_stack+0x33/0x60
[ 1269.274193][T14491]  kasan_save_track+0x14/0x30
[ 1269.278941][T14491]  __kasan_kmalloc+0xaa/0xb0
[ 1269.283530][T14491]  __kmalloc_noprof+0x223/0x510
[ 1269.288372][T14491]  iter_file_splice_write+0x1cc/0x12e0
[ 1269.293831][T14491]  direct_splice_actor+0x18f/0x6c0
[ 1269.298928][T14491]  splice_direct_to_actor+0x342/0xa30
[ 1269.304283][T14491]  do_splice_direct+0x174/0x240
[ 1269.309122][T14491]  do_sendfile+0xb06/0xe50
[ 1269.313535][T14491]  __x64_sys_sendfile64+0x1d8/0x220
[ 1269.318740][T14491]  do_syscall_64+0xcd/0x4c0
[ 1269.323277][T14491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1269.329171][T14491] 
[ 1269.331477][T14491] Freed by task 14329:
[ 1269.335520][T14491]  kasan_save_stack+0x33/0x60
[ 1269.340183][T14491]  kasan_save_track+0x14/0x30
[ 1269.344848][T14491]  kasan_save_free_info+0x3b/0x60
[ 1269.349862][T14491]  __kasan_slab_free+0x60/0x70
[ 1269.354626][T14491]  kfree+0x2b4/0x4d0
[ 1269.358638][T14491]  iter_file_splice_write+0x67a/0x12e0
[ 1269.364693][T14491]  direct_splice_actor+0x18f/0x6c0
[ 1269.370358][T14491]  splice_direct_to_actor+0x342/0xa30
[ 1269.375760][T14491]  do_splice_direct+0x174/0x240
[ 1269.380609][T14491]  do_sendfile+0xb06/0xe50
[ 1269.385024][T14491]  __x64_sys_sendfile64+0x1d8/0x220
[ 1269.390233][T14491]  do_syscall_64+0xcd/0x4c0
[ 1269.394740][T14491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1269.400720][T14491] 
[ 1269.403166][T14491] The buggy address belongs to the object at ffff88802a52de00
[ 1269.403166][T14491]  which belongs to the cache kmalloc-256 of size 256
[ 1269.417227][T14491] The buggy address is located 24 bytes inside of
[ 1269.417227][T14491]  freed 256-byte region [ffff88802a52de00, ffff88802a52df00)
[ 1269.431042][T14491] 
[ 1269.433372][T14491] The buggy address belongs to the physical page:
[ 1269.439765][T14491] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88802a52de00 pfn:0x2a52c
[ 1269.449833][T14491] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1269.458360][T14491] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[ 1269.466859][T14491] page_type: f5(slab)
[ 1269.470824][T14491] raw: 00fff00000000240 ffff88801b841b40 ffffea0001df6410 ffffea0001755a90
[ 1269.479398][T14491] raw: ffff88802a52de00 000000000010000f 00000000f5000000 0000000000000000
[ 1269.487962][T14491] head: 00fff00000000240 ffff88801b841b40 ffffea0001df6410 ffffea0001755a90
[ 1269.496625][T14491] head: ffff88802a52de00 000000000010000f 00000000f5000000 0000000000000000
[ 1269.505469][T14491] head: 00fff00000000001 ffffea0000a94b01 00000000ffffffff 00000000ffffffff
[ 1269.514129][T14491] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[ 1269.522776][T14491] page dumped because: kasan: bad access detected
[ 1269.529191][T14491] page_owner tracks the page as allocated
[ 1269.534904][T14491] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 19734161050, free_ts 0
[ 1269.554791][T14491]  post_alloc_hook+0x1c0/0x230
[ 1269.559545][T14491]  get_page_from_freelist+0x132b/0x38e0
[ 1269.565089][T14491]  __alloc_frozen_pages_noprof+0x261/0x23f0
[ 1269.570966][T14491]  alloc_pages_mpol+0x1fb/0x550
[ 1269.575888][T14491]  new_slab+0x247/0x330
[ 1269.580034][T14491]  ___slab_alloc+0xcf2/0x1750
[ 1269.584690][T14491]  __slab_alloc.constprop.0+0x56/0xb0
[ 1269.590056][T14491]  __kmalloc_cache_noprof+0xfb/0x3e0
[ 1269.595339][T14491]  bus_add_driver+0x92/0x690
[ 1269.599937][T14491]  driver_register+0x15c/0x4b0
[ 1269.604688][T14491]  usb_register_driver+0x216/0x4d0
[ 1269.609800][T14491]  do_one_initcall+0x120/0x6e0
[ 1269.614570][T14491]  kernel_init_freeable+0x5c2/0x910
[ 1269.619862][T14491]  kernel_init+0x1c/0x2b0
[ 1269.624185][T14491]  ret_from_fork+0x56d/0x730
[ 1269.628782][T14491]  ret_from_fork_asm+0x1a/0x30
[ 1269.633534][T14491] page_owner free stack trace missing
[ 1269.638878][T14491] 
[ 1269.641362][T14491] Memory state around the buggy address:
[ 1269.646996][T14491]  ffff88802a52dd00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1269.655038][T14491]  ffff88802a52dd80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1269.663084][T14491] >ffff88802a52de00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1269.671135][T14491]                             ^
[ 1269.675964][T14491]  ffff88802a52de80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1269.684044][T14491]  ffff88802a52df00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1269.692094][T14491] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1270.195182][T13437] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1270.201254][T13437] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1270.207698][T13437] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1271.312741][T11252] EXT4-fs error (device sda1) in ext4_free_inode:361: Corrupt filesystem
[ 1271.399094][T11252] EXT4-fs error (device sda1) in ext4_free_inode:361: Corrupt filesystem
[ 1271.999612][T14304] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1272.193109][T14491] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1272.200455][T14491] CPU: 0 UID: 0 PID: 14491 Comm: syz.3.3847 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[ 1272.211387][T14491] Tainted: [U]=USER
[ 1272.215189][T14491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1272.225262][T14491] Call Trace:
[ 1272.228553][T14491]  <TASK>
[ 1272.231610][T14491]  dump_stack_lvl+0x3d/0x1f0
[ 1272.236226][T14491]  vpanic+0x6e8/0x7a0
[ 1272.240239][T14491]  ? __pfx_vpanic+0x10/0x10
[ 1272.244738][T14491]  ? __pfx_vprintk_emit+0x10/0x10
[ 1272.249785][T14491]  ? dvb_device_open+0x36a/0x3b0
[ 1272.254709][T14491]  panic+0xca/0xd0
[ 1272.258425][T14491]  ? __pfx_panic+0x10/0x10
[ 1272.262832][T14491]  ? dvb_device_open+0x36a/0x3b0
[ 1272.267753][T14491]  ? preempt_schedule_common+0x44/0xc0
[ 1272.273206][T14491]  ? preempt_schedule_thunk+0x16/0x30
[ 1272.278570][T14491]  check_panic_on_warn+0xab/0xb0
[ 1272.283601][T14491]  end_report+0x107/0x170
[ 1272.287955][T14491]  kasan_report+0xee/0x110
[ 1272.292378][T14491]  ? dvb_device_open+0x36a/0x3b0
[ 1272.297395][T14491]  ? __pfx_dvb_device_open+0x10/0x10
[ 1272.303025][T14491]  dvb_device_open+0x36a/0x3b0
[ 1272.307798][T14491]  ? __pfx_dvb_device_open+0x10/0x10
[ 1272.313070][T14491]  chrdev_open+0x234/0x6a0
[ 1272.317516][T14491]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1272.323049][T14491]  ? __pfx_chrdev_open+0x10/0x10
[ 1272.327977][T14491]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[ 1272.334295][T14491]  do_dentry_open+0x982/0x1530
[ 1272.339050][T14491]  ? __pfx_chrdev_open+0x10/0x10
[ 1272.343990][T14491]  vfs_open+0x82/0x3f0
[ 1272.348072][T14491]  path_openat+0x1de4/0x2cb0
[ 1272.352665][T14491]  ? __pfx_path_openat+0x10/0x10
[ 1272.357594][T14491]  do_filp_open+0x20b/0x470
[ 1272.362090][T14491]  ? __pfx_do_filp_open+0x10/0x10
[ 1272.367120][T14491]  ? alloc_fd+0x471/0x7d0
[ 1272.371511][T14491]  do_sys_openat2+0x11b/0x1d0
[ 1272.376209][T14491]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1272.381426][T14491]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1272.386641][T14491]  ? __pfx___might_resched+0x10/0x10
[ 1272.391926][T14491]  __x64_sys_openat+0x174/0x210
[ 1272.396799][T14491]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1272.402338][T14491]  do_syscall_64+0xcd/0x4c0
[ 1272.406841][T14491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1272.412895][T14491] RIP: 0033:0x7f9d2038eba9
[ 1272.417296][T14491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1272.436974][T14491] RSP: 002b:00007f9d211ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1272.445410][T14491] RAX: ffffffffffffffda RBX: 00007f9d205d5fa0 RCX: 00007f9d2038eba9
[ 1272.453466][T14491] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1272.461424][T14491] RBP: 00007f9d20411e19 R08: 0000000000000000 R09: 0000000000000000
[ 1272.469384][T14491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1272.477337][T14491] R13: 00007f9d205d6038 R14: 00007f9d205d5fa0 R15: 00007ffd2aaaf5e8
[ 1272.485403][T14491]  </TASK>
[ 1272.488471][T14491] Kernel Offset: disabled
[ 1272.492801][T14491] Rebooting in 86400 seconds..