last executing test programs:

12.802496513s ago: executing program 0 (id=2206):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x80, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x2, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
io_uring_setup$auto(0x2, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyt2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = setfsuid$auto(0xee00)
r2 = setfsuid$auto(0xee01)
setresuid$auto(r1, r2, 0x0)
socketpair$auto(0x800058, 0x2, 0x420000, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)

11.054638414s ago: executing program 0 (id=2209):
socket(0xa, 0x3, 0x3b)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
socket(0x2a, 0x2, 0x1)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
socket(0xf, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tracing_saved_cmdlines_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/saved_cmdlines_size\x00', 0xa200, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0)
openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, 0x0, 0x8a141, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$auto(0x1, 0x4, 0x10010000, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0)

8.240784449s ago: executing program 0 (id=2219):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
socket(0x1e, 0x4, 0x0)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, 0x0, 0x902, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
openat$auto_component_list_fops_(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$auto(0x1f, 0x5, 0x8000000000000000, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
ioctl$auto(r0, 0x80047437, r0)

6.888227172s ago: executing program 0 (id=2222):
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
setsockopt$auto_SO_RCVLOWAT(r1, 0x0, 0x12, &(0x7f0000000340)='7\x00\x00\xec\x007\xfe(\xbd\xb0\x86\xe0K\xcf\xcf\x8d\xf2S6\x9e\x81\xcdc\xd7\x19-7\xc2\x89\x9d\x8cR`\xab6F\xd6O\x8b[\"\x80\xd0\xd2!\xc5\xdf\x8c&\xbd\x12\xb0\xa9v\vK\xfe+\xfb4\x02l\t5:a\xbf\xaf\xe3VX\x8d/l\f\xef\x1c\xc9\x13\xf6\x86\xb9N\xeeq\'\xb8\xb0\xa4\xd8\x94\xb8\xbc\b1\xc5\xb7\xca\x8e\x94\x0e\xc9\x99C\x97\xc2]\x80,\xaa\xf5\x17\xacnQ>\aH\xf6\xd6`/f\xcf\x8d\xaa\x00\xd5\x91\x9f\x96\xc6\xa4\'N\xebE\x8b', 0x1)
unshare$auto(0x40000080)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/ati_remote2/parameters/channel_mask\x00', 0x1e1842, 0x0)
write$auto(r2, &(0x7f0000000180)='7\x00\x00\xec\x007\xfe(\xbd\xb0\x86\xe0K\xcf\xcf\x8d\xf2S6\x9e\x81\xcdc\xd7\x19-7\xc2\x89\x9d\x8cR`\xab6F\xd6O\x8b[\"\x80\xd0\xd2!\xc5\xdf\x8c&\xbd\x12\xb0\xa9v\vK\xfe+\xfb4\x02l\t5:a\xbf\xaf\xe3VX\x8d/l\f\xef\x1c\xc9\x13\xf6\x86\xb9N\xeeq\'\xb8\xb0\xa4\xd8\x94\xb8\xbc\b1\xc5\xb7\xca\x8e\x94\x0e\xc9\x99C\x97\xc2]\x80,\xaa\xf5\x17\xacnQ>\aH\xf6\xd6`/f\xcf\x8d\xaa\x00\xd5\x91\x9f\x96\xc6\xa4\'N\xebE\x8b', 0x400000000003)
socket$nl_generic(0x10, 0x3, 0x10)
bind$auto(0x3, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000040)=0x5)
read$auto(r3, 0x0, 0x800)
socket$nl_generic(0x10, 0x3, 0x10)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r4, 0xc1105517, &(0x7f0000000580)={{@raw=0x7fffffff, 0xf0ee, 0x20009, 0x3, "790eaa00ffff8eac2cdafc1f64010043eeb0b053030001ffff000e00", @raw=0x1}, 0x4, 0x966, 0x3, @raw=0x404, @integer64={0x0, 0x401, 0x7}, "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1183bedbd31b642b4051b078fa1c1c61c329794e5311121c760cb9611c78e6947a99807bcc1"})
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r4, 0xc1105511, &(0x7f0000000080)={{@raw=0x2, 0x7ff, 0xa, 0x7, "26d718b7d3ee69350e4ede7079dcb0c24c8aa1e3c7ee2e00308b8a7d74b0a707f7045e6d035b196ca83379bb", @raw=0x4}, 0xfffffffc, 0x0, 0x2, @raw=0x31c7bc85, @integer={0x101, 0x3ff, 0xa39}, "18a817f26a5c7f8773b2dbc01ac4bd5359eeadc8357752b72fa176254d8797cdffd02539e383a07983eeddcd24b626f54ad9d763dcdc91a4af8b7c848ceb55a7"})
ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5)
ioctl$auto_VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000000)={0x1})

6.727537412s ago: executing program 2 (id=2224):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/oss/devices\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000000)=""/65, 0x41)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
ioctl$auto(0x3, 0xc0104d03, 0x5)
r1 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000001100), 0xa8000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_MPP(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x2c, r3, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@NL80211_ATTR_HE_CAPABILITY={0x15, 0x10d, "8223d208b7dd3463a3a936688073d724bb"}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
r4 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91)
read$auto(r4, 0x0, 0x1)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/tasks\x00', 0x63102, 0x0)
sendfile$auto(r5, r6, 0x0, 0x2)
sendmsg$auto_NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x3c, r3, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x6}, @NL80211_ATTR_FILS_ERP_USERNAME={0x6, 0xf9, "fb7d"}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x1}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2}, @NL80211_ATTR_CIPHER_SUITE_GROUP={0x8, 0x4a, 0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000041}, 0x4040004)
ioctl$auto_USB_RAW_IOCTL_EP0_READ(r1, 0xc0085504, &(0x7f0000000040)={0x9, 0x1, 0x5})
ioctl$auto_HPET_DPI(0xffffffffffffffff, 0x6805, 0x0)

6.35990083s ago: executing program 1 (id=2227):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x1, 0xdf, 0x20000000000e31, 0x40000000000a5, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
prctl$auto(0x3e, 0x4000000000001, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r0, 0x4b45, r0)
socket(0x18, 0x2, 0x0)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c)
close_range$auto(0x2, 0xa, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
fanotify_init$auto(0x65, 0x0)
pipe$auto(0x0)
dup2$auto(0x5, 0x4)
write$auto(0x6, 0x0, 0x100000001)
vmsplice$auto(0x4, &(0x7f0000000040)={0x0, 0x80000000002}, 0x3, 0x4)

5.379558794s ago: executing program 2 (id=2229):
statmount$auto(0x0, 0x0, 0x1fe, 0x8)
msync$auto(0x110c431000, 0x200001, 0x6)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r0, &(0x7f0000003480)={0x0, 0x0, &(0x7f0000003440)={&(0x7f00000009c0)={0x34, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x20, 0x1, 0x0, 0x1, [@nested={0x1c, 0x2f, 0x0, 0x1, [@typed={0x14, 0x42, 0x0, 0x0, @ipv6=@local}, @nested={0x4, 0xf7}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x40c4}, 0x4000)
r2 = socket(0x25, 0x1, 0x5)
recvfrom$auto(r2, 0x0, 0x0, 0x40, 0x0, 0x0)
r3 = socket(0x1e, 0x805, 0x0)
connect$auto(r3, &(0x7f0000000000)=@tipc=@id={0x1e, 0x3, 0x2, {0x4e20, 0x1}}, 0x10)
waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000080)={@siginfo_0_0={0x10001, 0x8, 0x83, @_kill={<r4=>0x0, 0xee01}}}, 0xa7f, &(0x7f0000000100)={{0x1, 0x100}, {0x3ff, 0xfffffffffffffff7}, 0xffffffffffffffff, 0x7, 0x3, 0x2, 0x1, 0x1ff, 0x2, 0x1, 0x9, 0x9, 0x4, 0xfff, 0x3, 0x8})
r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000002f00)='/dev/bus/usb/009/001\x00', 0x0, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r5, 0xc0185500, &(0x7f0000003000)={0xe, 0x10, 0xa7c, 0x4, 0x9, 0x7f, &(0x7f0000002f40)="8dbefa6d412a5b228c9900f2ac7d288226452d5f1e5bfa9b50df2b99f1fe885c5f4835470616414796b7f94616bde8522919452d3a0b270547546d02d9cca36fe39a2e33b0fb0a76fc82f8d8f39d51d5a2e5d848e9609583ba95fde8"})
r6 = setfsuid$auto(0xee00)
setreuid$auto(r6, 0x0)
capset$auto(&(0x7f00000001c0)={0xfffffffb, <r7=>0x0}, &(0x7f0000000200)={0x3, 0x100, 0x7})
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/kernel/sched_rt_period_us\x00', 0x101202, 0x0)
dup$auto(0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(0xffffffffffffffff, &(0x7f0000002ec0)={&(0x7f0000000000), 0xc, &(0x7f0000002e80)={&(0x7f00000034c0)={0x254, r1, 0x24cc1c6437f45727, 0x70bd2d, 0x25dfdbfc, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x18, 0x1, 0x0, 0x1, [@nested={0x8, 0x114, 0x0, 0x1, [@nested={0x4, 0x8a}]}, @typed={0xc, 0x9b, 0x0, 0x0, @u64=0x8}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4, 0x1, 0x0, 0x1, [@generic]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x1db, 0x1, 0x0, 0x1, [@generic="e23f68dcd81783dadee53c139a53efdf78e470d3659b1cb7c932a3aebadda952e16fdebe9dab49f58544ff53a28adb14bd31c234dbb73be38cdbd0543b2627bdfcdc790db74df841e400bb2b4b487ba9bd1733dc0e6b53d771c04ffda1dd660886c81035db1075b0f9502907fdbaf8ca4db7e101468ddcf72b99359c7212c2128f79ae4f9b53272e9bbc604d94503b2d75a0f9c7ac", @generic="34a68499e466b6407b81bd4ce7c4ccd2a26e5f55c870f72404a5813cf32b4b076134c1e581ea2340714ddd699f226a090ca06a22fba091ae72416a2230acc709870d61cd1f43cb9e453b3983237705fdb2b5b492a8e097409d147f250697444dbb23fbe40a2ff0d885f3b6483b0ecdf97aa8a6c23614113c84e032f69fabf8878b671111eb5efb757af375f062a919856c4df27aeaa45d4b8ebd66c1572fa97e6bbebed69a05d4a992bc386583059fab06ba7210cdf4994a3ff1e524ef91a1f8b68ebdabe013e47a646daffbcd2ef610f2ef31ad235a3f5b89483d549b8ab9459e88eceaf3804c43a57e", @typed={0x8, 0xbc, 0x0, 0x0, @pid=r4}, @nested={0x3e, 0x13d, 0x0, 0x1, [@generic="80885dc903589341e6fd47f9bc8477e0c5e2221dfce8cdce9e074af0d4fdeab1f6dca9bf0f0c31a44b202ace1cff5830d531", @typed={0x8, 0x11c, 0x0, 0x0, @uid=r6}]}, @nested={0x8, 0xbd, 0x0, 0x1, [@nested={0x4, 0x13a}]}, @typed={0x8, 0x86, 0x0, 0x0, @pid=r7}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x44, 0x1, 0x0, 0x1, [@generic="895472d5194fc3baf19728a9f90b8f5092cd05c265b07c59e7e3bec57017be4a749abeea099df9807984e7afe0", @typed={0x8, 0x6a, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x14f, 0x0, 0x0, @u32=0x9c}, @generic="d9ec92"]}]}, 0x254}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000001)

5.07246886s ago: executing program 2 (id=2231):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000340)='/proc/thread-self/loginuid\x00', 0x109000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyr0\x00', 0x60540, 0x0)
socket(0x15, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe2$auto(0x0, 0x0)
io_uring_setup$auto(0x7e1b, 0x0)
socket(0x2, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x8, 0x5, 0x100000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptya7\x00', 0x101e81, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0xa0102, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
write$auto(0x3, 0x0, 0x3f00)

4.366169015s ago: executing program 1 (id=2233):
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
mq_getsetattr$auto(0xd, &(0x7f0000000200)={0x0, 0x5, 0x7f, 0x10}, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_7={@link_id=0x1, 0x3, 0x3}, 0x6f3)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x3, 0x6)
socket(0x11, 0x80003, 0x300)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x3, 0x2)
socket(0x2, 0x3, 0x104)
socket$nl_generic(0x10, 0x3, 0x10)
timer_create$auto(0x0, 0x0, 0x0)
timer_settime$auto(0x0, 0x803, &(0x7f0000000000)={{0x800000008, 0xa}, {0x9, 0x2}}, 0x0)
timer_gettime$auto(0x0, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x40, 0x0)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='nfs4\x00', 0x200, &(0x7f00000001c0))

4.332195312s ago: executing program 3 (id=2234):
socket(0xa, 0x3, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x8a403, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/vulnerabilities/mmio_stale_data\x00', 0x0, 0x0)
socket(0x2, 0x1, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x48041, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
socket(0x2, 0x2, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0)
socket(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0)
ioctl$auto(r1, 0xc040563d, r0)

4.230812674s ago: executing program 0 (id=2235):
mmap$auto(0x0, 0x400008, 0x36, 0x1009b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x409, 0x5, 0xffffffff, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/sit0/flags\x00', 0x143262, 0x0)
close_range$auto(0x2, 0x8, 0x0)
connect$auto(r0, &(0x7f0000000080)=@l2tp={0x2, 0x0, @empty, 0x3}, 0x5)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ILA_CMD_ADD(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000fdbcdf2501"], 0x1c}}, 0x40000)
sendmsg$auto_ILA_CMD_FLUSH(r2, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="1f0002010000fddbdf2504000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000004}, 0x40844)

4.097973962s ago: executing program 3 (id=2236):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff)
fstat$auto(r0, &(0x7f00000000c0)={0xf, 0x1, 0x1000, 0x5, 0xee00, 0x0, 0x0, 0x8, 0x1, 0x800, 0x7, 0xc, 0x1800000000000000, 0x3, 0x47d6, 0x7, 0xb52})
socket(0xa, 0x2, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20b42, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x2, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x208000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0)
socket(0x2, 0x1, 0x106)
close_range$auto(0x2, 0x8, 0x0)

4.015155986s ago: executing program 1 (id=2237):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
memfd_create$auto(0x0, 0x9)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x28082, 0x0)
sendmsg$auto_NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, 0x0, 0x51)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x9, 0x3, 0x16, 0x93f, 0x1ffe0, 0x3, 0x6, 0x2, 0x0, 0xf3, 0xfff, 0x11, 0xb0, 0x1, 0x5, 0x4, 0x9, 0x6, 0x0, 0x0, 0x0, 0x200, 0xfffffffa, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, [0x6, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000003, 0x6, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x3043, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x10000000000, 0x0, 0x3, 0x0, 0x0, 0xffffffffffff0000, 0x11, 0x8000000000000001, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0x10081)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xa503}, 0x800}, 0x7, 0x4008)
write$auto(0xffffffffffffffff, 0x0, 0x80)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2)
socket(0x1d, 0x2, 0x6)
capset$auto(0x0, 0x0)
bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, 0x0, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcbaL\x8d\x12\x18I', 0x81)
bpf$auto(0xf, 0x0, 0xf)
write$auto(0x3, 0x0, 0xfffffdef)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)

2.9284765s ago: executing program 2 (id=2238):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
socket(0xa, 0x5, 0x0)
socket(0xa, 0x801, 0x84)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x106)
r0 = socket(0x10, 0x2, 0xf)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
socket(0xa, 0x3, 0xff)
pipe$auto(0x0)
bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_4={0x1e, r0, 0xffffffff}, 0xd)
bpf$auto(0x2, &(0x7f0000000080)=@bpf_attr_3={0x5, 0x0, 0x702955be, 0x40000, 0x4, 0x5, 0x80, 0xe4, 0xfffff800, "0566c8ee7c78a925488276d7697a12bd", 0x0, 0x5, 0xffffffffffffffff, 0x7, 0x9, 0x4, 0x7, 0x10001, 0x0, 0x8001, @attach_prog_fd=r0, 0x7e, 0x4, 0x1, 0x5, 0x3}, 0x5)

2.780327979s ago: executing program 3 (id=2239):
madvise$auto(0x0, 0x2000040080000004, 0xe)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
pread64$auto(0xffffffffffffffff, 0x0, 0xb, 0xcfc)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
clock_getres$auto(0x8000400, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x102, 0x0)
ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r0, 0x80045104, 0x0)
ioctl$auto_SG_GET_NUM_WAITING(0xffffffffffffffff, 0x227d, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400005, 0x40df, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x15, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0x2140, 0x0)
bpf$auto(0x0, 0x0, 0x6d4)

2.627014084s ago: executing program 1 (id=2240):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(r0, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)={0x1c, r2, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000801}, 0x4000084)
socket(0xa, 0x2, 0x0)
ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x491, 0x400, 0x9}]})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x1c}}, 0x4044820)

2.459166525s ago: executing program 2 (id=2241):
mmap$auto(0x0, 0x400008, 0x4, 0x40009b72, 0x2, 0x8000)
r0 = io_uring_setup$auto(0x89, 0x0)
ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000000)={0x1c800000, 0x0, [{0x6, 0x3fd, 0x80000000}, {0x3, 0x10000, 0xba}]})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(0x1, 0x0, 0x80000000)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffff9}, 0x6, 0xe27c, 0x8)
socket(0x23, 0x5, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
r1 = socket(0x2b, 0x1, 0x1)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0)
mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001480)={'veth0_virt_wifi\x00'})
munmap$auto(0x8000, 0xffffffff)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
getsockopt$auto_SO_ZEROCOPY(r1, 0x7, 0x3c, &(0x7f00000000c0)='/dev/nullb0\x00', &(0x7f0000000100)=0x8efd)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4)

1.886651921s ago: executing program 3 (id=2242):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0xff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = open(0x0, 0x1e7d43, 0xa6)
socket(0xa, 0x2, 0x88)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r2=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
clone$auto(0x20003b4a, 0x8, 0x0, 0x0, 0x2)
pidfd_getfd$auto(0x3, 0x1, 0x100000000)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r2, r1, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0xc)

1.655855607s ago: executing program 3 (id=2243):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
ioctl$auto_USBDEVFS_DROP_PRIVILEGES(0xffffffffffffffff, 0x4004551e, &(0x7f00000000c0)=0x7)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000400)={{0xc, 0x23, 0xa6, 0x83}, "66ac010005000000000068d190eb0d4a4cada7272464294b9183349eef4c1f028fdcc8ecc66fdd02316f064ebd893007abb4c0bbc3b822f66eaf240963110d61771552c03de65800", 0x2})
ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0)
io_uring_setup$auto(0xa, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1)
sendmsg$auto_NL80211_CMD_STOP_NAN(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="58061000", @ANYRES16=r2, @ANYBLOB="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"], 0x658}, 0x1, 0x0, 0x0, 0x4004}, 0x24044850)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
unshare$auto(0x40000080)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xc0400, 0x0)
mount$auto(0x0, 0x0, &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
syz_clone3(0x0, 0x0)

1.259028194s ago: executing program 0 (id=2244):
mmap$auto(0x0, 0x400008, 0x800df, 0x9b72, 0xfffffffffffffffe, 0x8000)
socketpair$auto(0x1e, 0x5, 0x3, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nbd5\x00', 0x20000, 0x0)
open(0x0, 0x22240, 0x155)
r0 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x60200, 0x0)
socket(0x2, 0x1, 0x106)
r1 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x2)
accept$auto(r1, 0xffffffffffffffff, 0xfffffffffffffffd)
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

435.284972ms ago: executing program 1 (id=2245):
mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
fstat$auto(0xffffffffffffffff, &(0x7f0000000300)={0xff, 0x7, 0x45, 0x4, 0x0, 0x0, 0x0, 0x0, 0xe, 0x803, 0x4, 0x6, 0x0, 0x73, 0x1, 0x1, 0x8})
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0)
preadv$auto(r0, &(0x7f00000002c0)={0x0, 0xbe78}, 0x5, 0x800000fb, 0x8100000001)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002740), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_GET_SEC_DEV(r2, &(0x7f0000002800)={0x0, 0x0, &(0x7f00000027c0)={&(0x7f0000000c00)={0x14, r3, 0x309, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x48800}, 0x0)
sendmsg$auto_NL802154_CMD_SET_LBT_MODE(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00042dbd7000fcdbdf251200000008000e000100000008002a00060000000c000600e40000000083f28f000f000700"/58], 0x40}}, 0x40)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r5 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x902, 0x0)
ioctl$auto_RTC_UIE_ON(r5, 0x7003, 0x0)
ioctl$auto_RTC_WKALM_SET(r5, 0x4028700f, &(0x7f0000000000)={0x3, 0x3, {0x5, 0x4, 0x9, 0x7, 0x5, 0x3a50, 0xfffffffd, 0xffff, 0xfd}})
close_range$auto(0x2, 0x8, 0x0)
r6 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r4, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000000)={0x20, r6, 0x301, 0x70bd23, 0x25dfdbff, {}, [@CTRL_ATTR_FAMILY_NAME={0x9, 0x2, 'l2tp\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)

204.499662ms ago: executing program 2 (id=2246):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
bind$auto(0x3, 0x0, 0x6a)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)
r2 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000100), r0)
ioctl$auto(0xffffffffffffffff, 0x900064b5, 0xc14)
msgctl$auto(0x9, 0xf8, &(0x7f00000001c0)={{0x8, <r3=>0xee00, 0x0, 0x4, 0xa771, 0x7, 0x9}, &(0x7f0000000140)=0x1, &(0x7f0000000180)=0x1, 0xc28a, 0x5f52, 0x3, 0x9, 0x8, 0x2cce, 0xfffc, 0x6, @inferred, @inferred=0xffffffffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_UPD_RXSC(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x28, r5, 0x201, 0x70bd2a, 0x25dfdbfe, {}, [@MACSEC_ATTR_RXSC_CONFIG={0xc, 0x2, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @ipv4=@multicast2}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x28}}, 0x48010)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f00000027c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002780)={&(0x7f00000002c0)={0x4a8, r2, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_IFINDEX={0x8}, @OVS_VPORT_ATTR_NAME={0xf, 0x3, '/dev/adsp1\x00'}, @OVS_VPORT_ATTR_OPTIONS={0x466, 0x4, 0x0, 0x1, [@nested={0xc6, 0x144, 0x0, 0x1, [@typed={0x4, 0x75}, @nested={0x4, 0x68}, @generic="d1506bbd2b1ebe4d19b0d1c0ab9c296454e83f6f917ac6b0097c35d5df5abbc18838f7a7f3b46966c809d12efc3a7a069afe67a71d5567097f060e60e752058afe2f21dd8e61df70ef93aeeebfdb2433f6f4fc2a08eaf6e20011cc4749ac9c02feb7059988773029c0283338878bcccdc09ee6318737f2af18d42604ad6bba937d6dd2f5a7d9c92e8f08d40b3f052e083a9bb7bf59ad99a2501b8622414a", @typed={0xc, 0x40, 0x0, 0x0, @u64=0x1}, @nested={0x4, 0x57}, @typed={0xffa0, 0x1104, 0x0, 0x0, @u64=0x7}]}, @nested={0x3b, 0xab, 0x0, 0x1, [@nested={0x4, 0x12}, @nested={0x4, 0x23}, @typed={0x8, 0x69, 0x0, 0x0, @ipv4=@broadcast}, @nested={0x4, 0x5f}, @typed={0x8, 0xd0, 0x0, 0x0, @fd}, @typed={0xc, 0x7c, 0x0, 0x0, @u64=0xf}, @nested={0x4, 0x90}, @generic="79d31828245d1d", @nested={0x4, 0x54}]}, @nested={0x2f0, 0x3c, 0x0, 0x1, [@nested={0x2d1, 0x136, 0x0, 0x1, [@nested={0x59, 0xf6, 0x0, 0x1, [@nested={0x4, 0x11}, @nested={0x4, 0xcc}, @generic="100a0267ba53aa070ad001e349ffd28803a3f1354f7e3ceebc445f717246ccad54680e51f4cdd638ff8925a4f43b0755de7139b3eb6e50d117dcee030f33d5a0b121738a41c9e7a2f31b6f6f04"]}, @typed={0x8, 0x112, 0x0, 0x0, @ipv4=@private=0xa010101}, @nested={0xbd, 0xe6, 0x0, 0x1, [@generic="b38499543bec3dea8b12b80f3077f9f22bc61942792b418759ed670a60e7e900ecb2425328252f72a236b41fad6a700f20490bb4697a40a0d166fa10e78e233c0ee97f4be5c2b8256034009d9e7b887174e4637bc72bea63f27905d6c03e953e03dfefe046af77d88164c6b0da59880026a21f3b1cfb8447796ae3019ff104046750463954ad0be007d53760dbe93248bf31fbcba35782ec79b469dd911f8ada98c92592df894c4302cd8ca28f970470a656137b139044ee39"]}, @typed={0x8, 0x80, 0x0, 0x0, @u32=0x9}, @nested={0x0, 0x39, 0x0, 0x1, [@typed={0x0, 0x7a, 0x0, 0x0, @u32=0x4}, @generic="b2f752fca5244b96e7f028f191b5da45fd59e71720b38209ddf7d928bda3ec4b4e9b7cf702b19652d00181ef68dc7888d21aa5fd77f9fac0daabf2d00594ff9787729b50"]}, @generic="5348880f3ab56a294e3e9fa3015867003f1040a26e841c32639a2374206d32b1a14267cde61a818f798ee9d1af5f07dbf8a2e3c7362b72027bd61eb92b048ea00fdf5e39aaf9da94eada774bec69438c20fc5e86ce08e55efc34c89c74e3b60614b92d17192c6236c88dd3885c7352df313beb496c7258140e99596c171647e4c96062c57568ece28b7454cd15e68a77897f148f86c5bd476ec21fb93dc31d720f62de77480079530225de1b5eb5a988862d2f7b67c1414f46f285b52e47fe39d311296b746c1298f41d12c71a5c43e96937ecf50649040a62dc417ea9de3d4f9b971aa193bb350121dcd12c", @nested={0x0, 0x2b, 0x0, 0x1, [@nested={0x0, 0x80, 0x0, 0x1, [@nested={0x0, 0x7c}, @nested={0x0, 0x6a}, @generic="a7181e9a9a8e9d6f3c316fb63ea9fabbe21891bc36a3cac8ccc7467f5f06c88f111439506d8eb9b5e15c2cca4008426b2004afe90c703557bafd"]}]}, @nested={0x10, 0x130, 0x0, 0x1, [@generic="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", @typed={0x8, 0xc8, 0x0, 0x0, @u32}]}, @typed={0x8, 0x37, 0x0, 0x0, @uid=r3}]}, @typed={0x7, 0x85, 0x0, 0x0, @str='}+\x00'}, @typed={0x8, 0xd8, 0x0, 0x0, @ipv4=@private=0xa010100}, @typed={0x8, 0x3f, 0x0, 0x0, @fd=r1}]}, @typed={0x8, 0xb6, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @generic="78679f385b78dc", @typed={0xf, 0x141, 0x0, 0x0, @str='/dev/adsp1\x00'}, @generic="34dbb4a18fb580bda46a26cb741baeb66648b73e16593e6280ab1f493bdceced1b1cb8e704a055f6ba30c848e10359186bdac20f914fc3e87ed1e9d944940d1af2861a7aa210570710731e24a2b60c"]}, @OVS_VPORT_ATTR_UPCALL_STATS={0x4, 0xa, 0x0, 0x1, [@generic]}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x5}, @OVS_VPORT_ATTR_NETNSID={0x8}]}, 0x4a8}, 0x1, 0x0, 0x0, 0xd5}, 0x4000040)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20002, 0x0)
connect$auto(0x3, 0x0, 0x55)

69.974653ms ago: executing program 3 (id=2247):
unshare$auto(0x40000080)
r0 = socket(0x2, 0x1, 0x0)
openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
bind$auto(0x3, 0x0, 0x6e)
sendmmsg$auto(r0, 0x0, 0x9, 0x20000000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r2 = socket(0x2b, 0x1, 0x1)
socketpair$auto(0xfffffffe, 0x1, 0x8000000000000000, 0x0)
ioctl$auto(r2, 0x89a0, 0x4)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
setsockopt$auto_SO_MARK(r1, 0x3, 0x24, &(0x7f0000000080)='[*\x00', 0x1)
sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x8)
unshare$auto(0x40000080)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/afs/cells\x00', 0x4a801, 0x0)
sysfs$auto(0x2, 0x100000000000037, 0x0)
close_range$auto(0x0, 0x5, 0x0)

0s ago: executing program 1 (id=2248):
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x28341, 0x0)
pidfd_send_signal$auto(0x2, 0x7, 0x0, 0x1)
mknod$auto(0x0, 0x63c5, 0x7bf)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
mknod$auto(0x0, 0x63c1, 0x7fc)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20042, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
arch_prctl$auto_ARCH_SHSTK_UNLOCK(0x5004, 0x1)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, 0x0, 0x8080, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)

kernel console output (not intermixed with test programs):

notify+0x10b/0x390
[  417.422003][T11127]  alloc_pages_noprof+0x12d/0x180
[  417.422037][T11127]  pte_alloc_one+0x1e/0x350
[  417.422072][T11127]  __pte_alloc+0x6d/0x380
[  417.422100][T11127]  ? __pfx___pte_alloc+0x10/0x10
[  417.422127][T11127]  ? __lock_acquire+0x433/0x22f0
[  417.422161][T11127]  do_pte_missing+0x2964/0x4000
[  417.422196][T11127]  ? mtree_range_walk+0x718/0xc00
[  417.422221][T11127]  ? pgd_none+0x9f/0xe0
[  417.422241][T11127]  ? __pfx_pgd_none+0x10/0x10
[  417.422269][T11127]  ? find_held_lock+0x2b/0x80
[  417.422306][T11127]  __handle_mm_fault+0x14ca/0x2a30
[  417.422353][T11127]  ? __pfx___handle_mm_fault+0x10/0x10
[  417.422422][T11127]  handle_mm_fault+0x3fe/0xad0
[  417.422464][T11127]  __get_user_pages+0x605/0x33c0
[  417.422512][T11127]  ? __pfx___get_user_pages+0x10/0x10
[  417.422554][T11127]  populate_vma_page_range+0x267/0x3f0
[  417.422590][T11127]  ? __pfx_populate_vma_page_range+0x10/0x10
[  417.422623][T11127]  ? __pfx_find_vma_intersection+0x10/0x10
[  417.422654][T11127]  ? do_mmap+0x69c/0x1210
[  417.422688][T11127]  __mm_populate+0x1d8/0x380
[  417.422723][T11127]  ? __pfx___mm_populate+0x10/0x10
[  417.422757][T11127]  ? up_write+0x282/0x4e0
[  417.422791][T11127]  vm_mmap_pgoff+0x37f/0x470
[  417.422826][T11127]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  417.422883][T11127]  ? __x64_sys_futex+0x1e0/0x4c0
[  417.422914][T11127]  ? __x64_sys_futex+0x1e9/0x4c0
[  417.422949][T11127]  ksys_mmap_pgoff+0x7d/0x5c0
[  417.422979][T11127]  ? xfd_validate_state+0x61/0x180
[  417.423021][T11127]  __x64_sys_mmap+0x125/0x190
[  417.423048][T11127]  do_syscall_64+0xcd/0xf80
[  417.423080][T11127]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.423106][T11127] RIP: 0033:0x7fbd00f8f7c9
[  417.423126][T11127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.423150][T11127] RSP: 002b:00007fbd01ece038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  417.423175][T11127] RAX: ffffffffffffffda RBX: 00007fbd011e5fa0 RCX: 00007fbd00f8f7c9
[  417.423193][T11127] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  417.423209][T11127] RBP: 00007fbd01013f91 R08: 0000000000000002 R09: 0000000000008000
[  417.423226][T11127] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  417.423247][T11127] R13: 00007fbd011e6038 R14: 00007fbd011e5fa0 R15: 00007ffe558ff198
[  417.423283][T11127]  </TASK>
[  417.897085][    C0] vkms_vblank_simulate: vblank timer overrun
[  419.574309][T11149] FAULT_INJECTION: forcing a failure.
[  419.574309][T11149] name failslab, interval 1, probability 0, space 0, times 0
[  419.587248][T11149] CPU: 0 UID: 0 PID: 11149 Comm: syz.3.1498 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  419.587305][T11149] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  419.587319][T11149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  419.587335][T11149] Call Trace:
[  419.587343][T11149]  <TASK>
[  419.587354][T11149]  dump_stack_lvl+0x16c/0x1f0
[  419.587388][T11149]  should_fail_ex+0x512/0x640
[  419.587417][T11149]  ? __kmalloc_cache_node_noprof+0x62/0x790
[  419.587454][T11149]  should_failslab+0xc2/0x120
[  419.587488][T11149]  __kmalloc_cache_node_noprof+0x75/0x790
[  419.587517][T11149]  ? mem_cgroup_css_alloc+0xac6/0x1de0
[  419.587552][T11149]  ? mem_cgroup_css_alloc+0xac6/0x1de0
[  419.587577][T11149]  mem_cgroup_css_alloc+0xac6/0x1de0
[  419.587615][T11149]  cgroup_apply_control_enable+0x4b0/0xbb0
[  419.587664][T11149]  cgroup_mkdir+0x5e0/0x12e0
[  419.587704][T11149]  ? __pfx_cgroup_mkdir+0x10/0x10
[  419.587739][T11149]  kernfs_iop_mkdir+0x111/0x190
[  419.587768][T11149]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  419.587807][T11149]  vfs_mkdir+0x731/0xb60
[  419.587835][T11149]  do_mkdirat+0x442/0x5e0
[  419.587872][T11149]  ? __pfx_do_mkdirat+0x10/0x10
[  419.587908][T11149]  ? strncpy_from_user+0x203/0x2e0
[  419.587939][T11149]  ? getname_flags.part.0+0x1c5/0x550
[  419.587968][T11149]  __x64_sys_mkdir+0xef/0x140
[  419.588003][T11149]  do_syscall_64+0xcd/0xf80
[  419.588035][T11149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  419.588075][T11149] RIP: 0033:0x7fb195d8f7c9
[  419.588096][T11149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  419.588121][T11149] RSP: 002b:00007fb196cd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  419.588145][T11149] RAX: ffffffffffffffda RBX: 00007fb195fe5fa0 RCX: 00007fb195d8f7c9
[  419.588162][T11149] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[  419.588177][T11149] RBP: 00007fb195e13f91 R08: 0000000000000000 R09: 0000000000000000
[  419.588194][T11149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  419.588209][T11149] R13: 00007fb195fe6038 R14: 00007fb195fe5fa0 R15: 00007ffdb87cc1b8
[  419.588247][T11149]  </TASK>
[  419.815318][    C0] vkms_vblank_simulate: vblank timer overrun
[  420.122015][T11151] tipc: Failed do clone local mcast rcv buffer
[  420.908039][T11164] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1503'.
[  421.007786][ T5847] Bluetooth: hci1: SCO packet for unknown connection handle 0
[  422.981712][T11190] [U] 
[  422.992182][T11190] [U] 
[  422.994940][T11190] [U] 
[  422.997666][T11190] [U] 
[  423.062152][T11190] [U] 
[  423.064906][T11190] [U] 
[  423.067877][T11190] [U] 
[  423.070593][T11190] [U] 
[  423.116649][T11190] [U] 
[  423.119406][T11190] [U] 
[  423.122117][T11190] [U] 
[  423.124820][T11190] [U] 
[  423.237266][T11190] [U] 
[  423.240291][T11190] [U] 
[  423.243108][T11190] [U] 
[  423.245833][T11190] [U] 
[  423.377143][T11190] [U] 
[  423.379988][T11190] [U] 
[  423.382710][T11190] [U] 
[  423.385433][T11190] [U] 
[  423.486802][T11190] [U] 
[  423.489559][T11190] [U] 
[  423.492289][T11190] [U] 
[  423.495005][T11190] [U] 
[  423.570879][T11190] [U] 
[  423.573836][T11190] [U] 
[  423.576560][T11190] [U] 
[  423.579278][T11190] [U] 
[  423.627687][T11190] [U] 
[  425.732474][T11227] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1517'.
[  425.746660][T11227] veth1_macvtap: entered allmulticast mode
[  428.115904][ T4848] netdevsim netdevsim1334 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  429.887336][T11275] FAULT_INJECTION: forcing a failure.
[  429.887336][T11275] name failslab, interval 1, probability 0, space 0, times 0
[  429.970486][T11278] sp0: Synchronizing with TNC
[  429.988444][T11275] CPU: 0 UID: 0 PID: 11275 Comm: syz.2.1530 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  429.988506][T11275] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  429.988522][T11275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  429.988537][T11275] Call Trace:
[  429.988546][T11275]  <TASK>
[  429.988557][T11275]  dump_stack_lvl+0x16c/0x1f0
[  429.988596][T11275]  should_fail_ex+0x512/0x640
[  429.988625][T11275]  ? kmem_cache_alloc_noprof+0x62/0x720
[  429.988659][T11275]  should_failslab+0xc2/0x120
[  429.988697][T11275]  kmem_cache_alloc_noprof+0x75/0x720
[  429.988737][T11275]  ? acpi_ps_alloc_op+0xf4/0x360
[  429.988779][T11275]  ? acpi_ps_alloc_op+0xf4/0x360
[  429.988813][T11275]  acpi_ps_alloc_op+0xf4/0x360
[  429.988849][T11275]  acpi_ps_create_scope_op+0x1a/0x70
[  429.988878][T11275]  acpi_ps_execute_method+0x223/0xe90
[  429.988916][T11275]  acpi_ns_evaluate+0x98c/0x16d0
[  429.988959][T11275]  acpi_evaluate_object+0x4ca/0xdf0
[  429.988994][T11275]  ? ksys_read+0x12a/0x250
[  429.989036][T11275]  ? __pfx_acpi_evaluate_object+0x10/0x10
[  429.989069][T11275]  ? __pfx___might_resched+0x10/0x10
[  429.989113][T11275]  acpi_evaluate_integer+0xdd/0x200
[  429.989148][T11275]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[  429.989208][T11275]  ? __pfx_status_show+0x10/0x10
[  429.989233][T11275]  status_show+0xa0/0x120
[  429.989259][T11275]  ? __pfx_status_show+0x10/0x10
[  429.989293][T11275]  dev_attr_show+0x56/0xe0
[  429.989323][T11275]  ? __pfx_dev_attr_show+0x10/0x10
[  429.989347][T11275]  sysfs_kf_seq_show+0x216/0x3e0
[  429.989382][T11275]  seq_read_iter+0x50e/0x12d0
[  429.989431][T11275]  kernfs_fop_read_iter+0x46c/0x610
[  429.989469][T11275]  ? rw_verify_area+0xcf/0x6c0
[  429.989503][T11275]  vfs_read+0x8bf/0xcf0
[  429.989545][T11275]  ? __pfx_vfs_read+0x10/0x10
[  429.989603][T11275]  ksys_read+0x12a/0x250
[  429.989636][T11275]  ? __pfx_ksys_read+0x10/0x10
[  429.989671][T11275]  ? fput+0x70/0xf0
[  429.989699][T11275]  do_syscall_64+0xcd/0xf80
[  429.989732][T11275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.989759][T11275] RIP: 0033:0x7fbd00f8f7c9
[  429.989781][T11275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  429.989806][T11275] RSP: 002b:00007fbd01ece038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  429.989832][T11275] RAX: ffffffffffffffda RBX: 00007fbd011e5fa0 RCX: 00007fbd00f8f7c9
[  429.989850][T11275] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000003
[  429.989866][T11275] RBP: 00007fbd01013f91 R08: 0000000000000000 R09: 0000000000000000
[  429.989882][T11275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  429.989898][T11275] R13: 00007fbd011e6038 R14: 00007fbd011e5fa0 R15: 00007ffe558ff198
[  429.989937][T11275]  </TASK>
[  430.271759][    C0] vkms_vblank_simulate: vblank timer overrun
[  430.775968][T11292] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1534'.
[  433.041202][T11320] blktrace: Concurrent blktraces are not allowed on loop5
[  434.261932][T11327] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1542'.
[  434.941993][   T30] audit: type=1804 audit(4294968113.039:9): pid=11339 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1545" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=36 res=1 errno=0
[  437.420936][T11367] random: crng reseeded on system resumption
[  437.637391][   T30] audit: type=1800 audit(4294968115.739:10): pid=11370 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1554" name="dbroot" dev="configfs" ino=81951 res=0 errno=0
[  437.995676][T11379] FAULT_INJECTION: forcing a failure.
[  437.995676][T11379] name failslab, interval 1, probability 0, space 0, times 0
[  438.010018][T11379] CPU: 1 UID: 0 PID: 11379 Comm: syz.3.1557 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  438.010075][T11379] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  438.010088][T11379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  438.010103][T11379] Call Trace:
[  438.010112][T11379]  <TASK>
[  438.010122][T11379]  dump_stack_lvl+0x16c/0x1f0
[  438.010159][T11379]  should_fail_ex+0x512/0x640
[  438.010187][T11379]  ? kmem_cache_alloc_noprof+0x62/0x720
[  438.010220][T11379]  should_failslab+0xc2/0x120
[  438.010255][T11379]  kmem_cache_alloc_noprof+0x75/0x720
[  438.010283][T11379]  ? __kernfs_new_node+0xd2/0x8d0
[  438.010318][T11379]  ? __kernfs_new_node+0xd2/0x8d0
[  438.010343][T11379]  __kernfs_new_node+0xd2/0x8d0
[  438.010376][T11379]  ? __pfx___kernfs_new_node+0x10/0x10
[  438.010421][T11379]  ? find_held_lock+0x2b/0x80
[  438.010458][T11379]  ? kernfs_root+0xee/0x2a0
[  438.010493][T11379]  kernfs_new_node+0x13c/0x1e0
[  438.010533][T11379]  __kernfs_create_file+0x53/0x350
[  438.010573][T11379]  sysfs_add_file_mode_ns+0x207/0x3c0
[  438.010610][T11379]  internal_create_group+0x578/0xf20
[  438.010648][T11379]  ? __pfx_internal_create_group+0x10/0x10
[  438.010683][T11379]  ? kernfs_create_link+0x1bd/0x240
[  438.010725][T11379]  internal_create_groups+0x9d/0x150
[  438.010758][T11379]  device_add+0x731/0x1950
[  438.010786][T11379]  ? __pfx___mutex_lock+0x10/0x10
[  438.010817][T11379]  ? __pfx_device_add+0x10/0x10
[  438.010858][T11379]  input_register_device+0x7e8/0x1180
[  438.010897][T11379]  uinput_ioctl_handler.isra.0+0x1357/0x1df0
[  438.010924][T11379]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  438.010952][T11379]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  438.010984][T11379]  ? find_held_lock+0x2b/0x80
[  438.011035][T11379]  ? __pfx_uinput_ioctl+0x10/0x10
[  438.011060][T11379]  __x64_sys_ioctl+0x18e/0x210
[  438.011090][T11379]  do_syscall_64+0xcd/0xf80
[  438.011122][T11379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.011147][T11379] RIP: 0033:0x7fb195d8f7c9
[  438.011168][T11379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  438.011192][T11379] RSP: 002b:00007fb196cd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  438.011217][T11379] RAX: ffffffffffffffda RBX: 00007fb195fe5fa0 RCX: 00007fb195d8f7c9
[  438.011235][T11379] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005
[  438.011250][T11379] RBP: 00007fb195e13f91 R08: 0000000000000000 R09: 0000000000000000
[  438.011265][T11379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  438.011280][T11379] R13: 00007fb195fe6038 R14: 00007fb195fe5fa0 R15: 00007ffdb87cc1b8
[  438.011316][T11379]  </TASK>
[  440.564639][T11407] zswap: compressor  not available
[  440.963927][T11426] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1566'.
[  440.975916][T11426] veth1_macvtap: entered allmulticast mode
[  441.658017][T11431] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1569'.
[  442.918020][T11444] =======================================================
[  442.918020][T11444] WARNING: The mand mount option has been deprecated and
[  442.918020][T11444]          and is ignored by this kernel. Remove the mand
[  442.918020][T11444]          option from the mount to silence this warning.
[  442.918020][T11444] =======================================================
[  443.962993][T11460] HfR: entered promiscuous mode
[  444.237233][T11460] GUP no longer grows the stack in syz.1.1576 (11460): 14000-18000 (4000)
[  444.286697][T11460] CPU: 1 UID: 0 PID: 11460 Comm: syz.1.1576 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  444.286756][T11460] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  444.286770][T11460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  444.286784][T11460] Call Trace:
[  444.286793][T11460]  <TASK>
[  444.286803][T11460]  dump_stack_lvl+0x16c/0x1f0
[  444.286849][T11460]  gup_vma_lookup+0x1d2/0x220
[  444.286885][T11460]  __get_user_pages+0x241/0x33c0
[  444.286931][T11460]  ? find_held_lock+0x2b/0x80
[  444.286968][T11460]  ? __pfx___get_user_pages+0x10/0x10
[  444.287012][T11460]  get_user_pages_remote+0x243/0xab0
[  444.287051][T11460]  ? __pfx_get_user_pages_remote+0x10/0x10
[  444.287085][T11460]  ? __pfx___might_resched+0x10/0x10
[  444.287121][T11460]  ? noop_dirty_folio+0x5e/0xb0
[  444.287155][T11460]  __access_remote_vm+0x24d/0x850
[  444.287195][T11460]  ? __pfx___access_remote_vm+0x10/0x10
[  444.287235][T11460]  mem_rw+0x20e/0x640
[  444.287278][T11460]  ? __pfx_mem_write+0x10/0x10
[  444.287311][T11460]  vfs_write+0x2a0/0x11d0
[  444.287348][T11460]  ? __pfx___mutex_lock+0x10/0x10
[  444.287383][T11460]  ? __pfx_vfs_write+0x10/0x10
[  444.287425][T11460]  ? __fget_files+0x20e/0x3c0
[  444.287469][T11460]  ksys_write+0x12a/0x250
[  444.287500][T11460]  ? __pfx_ksys_write+0x10/0x10
[  444.287543][T11460]  do_syscall_64+0xcd/0xf80
[  444.287576][T11460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.287601][T11460] RIP: 0033:0x7f2bf638f7c9
[  444.287623][T11460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  444.287646][T11460] RSP: 002b:00007f2bf7185038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  444.287669][T11460] RAX: ffffffffffffffda RBX: 00007f2bf65e5fa0 RCX: 00007f2bf638f7c9
[  444.287686][T11460] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003
[  444.287701][T11460] RBP: 00007f2bf6413f91 R08: 0000000000000000 R09: 0000000000000000
[  444.287718][T11460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  444.287733][T11460] R13: 00007f2bf65e6038 R14: 00007f2bf65e5fa0 R15: 00007ffef08556d8
[  444.287771][T11460]  </TASK>
[  444.296115][T11469] Trying to write to read-only block-device sda1
[  444.958084][T11476] can: request_module (can-proto-5) failed.
[  445.024944][T11474] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1577'.
[  445.036469][T11474] veth1_macvtap: entered allmulticast mode
[  445.075346][T11476] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1579'.
[  445.191322][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  445.198157][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  447.757227][T11506] could not allocate digest TFM handle 
[  448.261356][T11520] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  448.322842][T11520] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  448.376462][T11520] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  448.579836][T11520] page_type: f5(slab)
[  448.617425][T11520] raw: 00fff00000000040 ffff88813ffa7140 0000000000000000 dead000000000001
[  448.626166][T11520] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  448.666576][T11520] head: 00fff00000000040 ffff88813ffa7140 0000000000000000 dead000000000001
[  448.685649][T11520] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  448.748396][T11520] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  448.812371][T11520] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  448.853315][T11520] page dumped because: unmovable page
[  448.869035][T11520] page_owner tracks the page as allocated
[  448.939166][T11520] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6274, tgid 6274 (kworker/u8:16), ts 182577215620, free_ts 182512900870
[  449.028600][T11520]  post_alloc_hook+0x1af/0x220
[  449.046548][T11520]  get_page_from_freelist+0xd0b/0x31a0
[  449.076589][T11520]  __alloc_frozen_pages_noprof+0x25f/0x2440
[  449.086871][T11520]  alloc_pages_mpol+0x1fb/0x550
[  449.096193][T11520]  new_slab+0x24a/0x360
[  449.103521][T11520]  ___slab_alloc+0xee7/0x1cd0
[  449.111252][T11520]  __slab_alloc.constprop.0+0x63/0x110
[  449.119711][T11520]  __kmalloc_node_track_caller_noprof+0x4db/0x890
[  449.128931][T11520]  kmalloc_reserve+0xef/0x2c0
[  449.134762][T11520]  __alloc_skb+0x166/0x380
[  449.140464][T11520]  nsim_dev_trap_report_work+0x2b1/0xcf0
[  449.159262][T11520]  process_one_work+0x9ba/0x1b20
[  449.188077][T11520]  worker_thread+0x6c8/0xf10
[  449.202618][T11520]  kthread+0x3c5/0x780
[  449.210967][T11520]  ret_from_fork+0x983/0xb10
[  449.241769][T11520]  ret_from_fork_asm+0x1a/0x30
[  449.273608][T11520] page last free pid 5823 tgid 5823 stack trace:
[  449.349920][T11520]  __free_frozen_pages+0x7df/0x1160
[  449.355994][T11531] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1593'.
[  449.375385][T11520]  __folio_put+0x329/0x450
[  449.452455][T11531] veth1_macvtap: entered allmulticast mode
[  449.496712][T11520]  put_page+0x209/0x270
[  449.566914][T11520]  skb_release_data+0x459/0x7a0
[  449.580165][T11520]  __kfree_skb+0x4f/0x70
[  449.596617][T11520]  tcp_ack+0x1d37/0x5fc0
[  449.601282][T11520]  tcp_rcv_established+0x10b6/0x36e0
[  449.616583][T11520]  tcp_v4_do_rcv+0xc65/0x10a0
[  449.621317][T11520]  __release_sock+0x361/0x450
[  449.625987][T11520]  release_sock+0x5a/0x220
[  449.646633][T11520]  tcp_sendmsg+0x38/0x50
[  449.656063][T11520]  inet_sendmsg+0xb9/0x140
[  449.676672][T11520]  sock_write_iter+0x509/0x610
[  449.692105][T11520]  vfs_write+0x7d3/0x11d0
[  449.702227][T11520]  ksys_write+0x1f8/0x250
[  449.712504][T11520]  do_syscall_64+0xcd/0xf80
[  458.932599][T11611] can: request_module (can-proto-5) failed.
[  458.976043][T11611] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1612'.
[  461.042888][T11646] FAULT_INJECTION: forcing a failure.
[  461.042888][T11646] name failslab, interval 1, probability 0, space 0, times 0
[  461.060113][T11646] CPU: 1 UID: 0 PID: 11646 Comm: syz.2.1621 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  461.060176][T11646] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  461.060190][T11646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  461.060204][T11646] Call Trace:
[  461.060212][T11646]  <TASK>
[  461.060221][T11646]  dump_stack_lvl+0x16c/0x1f0
[  461.060260][T11646]  should_fail_ex+0x512/0x640
[  461.060289][T11646]  ? kmem_cache_alloc_lru_noprof+0x66/0x720
[  461.060322][T11646]  should_failslab+0xc2/0x120
[  461.060357][T11646]  kmem_cache_alloc_lru_noprof+0x79/0x720
[  461.060384][T11646]  ? futex_private_hash_put+0x160/0x1b0
[  461.060411][T11646]  ? sock_alloc_inode+0x25/0x1c0
[  461.060449][T11646]  ? __pfx_sock_alloc_inode+0x10/0x10
[  461.060480][T11646]  ? sock_alloc_inode+0x25/0x1c0
[  461.060511][T11646]  sock_alloc_inode+0x25/0x1c0
[  461.060543][T11646]  alloc_inode+0x64/0x240
[  461.060569][T11646]  sock_alloc+0x40/0x280
[  461.060599][T11646]  do_accept+0xf7/0x530
[  461.060719][T11646]  ? 0xffffffff81000000
[  461.060745][T11646]  ? do_raw_spin_lock+0x12c/0x2b0
[  461.060780][T11646]  ? __pfx_do_accept+0x10/0x10
[  461.060841][T11646]  ? 0xffffffff81000000
[  461.060860][T11646]  __sys_accept4_file+0xcd/0x200
[  461.060900][T11646]  ? __pfx___sys_accept4_file+0x10/0x10
[  461.060941][T11646]  ? xfd_validate_state+0x61/0x180
[  461.060984][T11646]  ? 0xffffffff81000000
[  461.061002][T11646]  __x64_sys_accept+0xb0/0x140
[  461.061028][T11646]  do_syscall_64+0xcd/0xf80
[  461.061061][T11646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  461.061088][T11646] RIP: 0033:0x7fbd00f8f7c9
[  461.061110][T11646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  461.061134][T11646] RSP: 002b:00007fbd01ece038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  461.061156][T11646] RAX: ffffffffffffffda RBX: 00007fbd011e5fa0 RCX: 00007fbd00f8f7c9
[  461.061171][T11646] RDX: ffffffff81000000 RSI: ffffffffffffffff RDI: 0000000000000003
[  461.061185][T11646] RBP: 00007fbd01013f91 R08: 0000000000000000 R09: 0000000000000000
[  461.061198][T11646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  461.061212][T11646] R13: 00007fbd011e6038 R14: 00007fbd011e5fa0 R15: 00007ffe558ff198
[  461.061238][T11646]  ? 0xffffffff81000000
[  461.061266][T11646]  </TASK>
[  464.677255][   T30] audit: type=1326 audit(4294968142.769:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11691 comm="syz.2.1634" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbd00f8f7c9 code=0x0
[  464.737685][T11694] FAULT_INJECTION: forcing a failure.
[  464.737685][T11694] name failslab, interval 1, probability 0, space 0, times 0
[  464.766567][T11694] CPU: 1 UID: 0 PID: 11694 Comm: syz.2.1634 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  464.766630][T11694] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  464.766645][T11694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  464.766660][T11694] Call Trace:
[  464.766668][T11694]  <TASK>
[  464.766679][T11694]  dump_stack_lvl+0x16c/0x1f0
[  464.766715][T11694]  should_fail_ex+0x512/0x640
[  464.766745][T11694]  ? __kmalloc_cache_noprof+0x5f/0x770
[  464.766775][T11694]  should_failslab+0xc2/0x120
[  464.766812][T11694]  __kmalloc_cache_noprof+0x72/0x770
[  464.766842][T11694]  ? snd_pcm_oss_change_params_locked+0x1db/0x3a40
[  464.766886][T11694]  ? snd_pcm_oss_change_params_locked+0x1db/0x3a40
[  464.766922][T11694]  snd_pcm_oss_change_params_locked+0x1db/0x3a40
[  464.766959][T11694]  ? trace_contention_end+0x95/0x110
[  464.766989][T11694]  ? __mutex_lock+0x27b/0x1b10
[  464.767023][T11694]  ? snd_pcm_oss_make_ready+0xc4/0x1b0
[  464.767062][T11694]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  464.767111][T11694]  ? __pfx___mutex_lock+0x10/0x10
[  464.767154][T11694]  ? __fsnotify_parent+0x24b/0xc40
[  464.767200][T11694]  snd_pcm_oss_make_ready+0xe6/0x1b0
[  464.767238][T11694]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  464.767272][T11694]  snd_pcm_oss_sync+0x1de/0x840
[  464.767305][T11694]  ? kmem_cache_free+0x172/0x7d0
[  464.767335][T11694]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  464.767368][T11694]  snd_pcm_oss_release+0x28b/0x310
[  464.767402][T11694]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  464.767432][T11694]  __fput+0x402/0xb70
[  464.767462][T11694]  task_work_run+0x150/0x240
[  464.767490][T11694]  ? __pfx_task_work_run+0x10/0x10
[  464.767515][T11694]  ? __do_sys_close_range+0x278/0x730
[  464.767558][T11694]  exit_to_user_mode_loop+0xfb/0x540
[  464.767594][T11694]  do_syscall_64+0x4ee/0xf80
[  464.767626][T11694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  464.767652][T11694] RIP: 0033:0x7fbd00f8f7c9
[  464.767673][T11694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  464.767697][T11694] RSP: 002b:00007fbd01ead038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  464.767721][T11694] RAX: 0000000000000000 RBX: 00007fbd011e6090 RCX: 00007fbd00f8f7c9
[  464.767736][T11694] RDX: 0000000000000000 RSI: fffffffffffff000 RDI: 0000000000000000
[  464.767752][T11694] RBP: 00007fbd01013f91 R08: 0000000000000000 R09: 0000000000000000
[  464.767766][T11694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  464.767781][T11694] R13: 00007fbd011e6128 R14: 00007fbd011e6090 R15: 00007ffe558ff198
[  464.767813][T11694]  </TASK>
[  466.767974][T11715] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1639'.
[  467.012763][T11719] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1641'.
[  467.023193][T11719] netlink: 'syz.1.1641': attribute type 1 has an invalid length.
[  467.038917][T11719] netlink: 13 bytes leftover after parsing attributes in process `syz.1.1641'.
[  467.086754][T11719] netlink: 'syz.1.1641': attribute type 1 has an invalid length.
[  467.397212][T11727] FAULT_INJECTION: forcing a failure.
[  467.397212][T11727] name failslab, interval 1, probability 0, space 0, times 0
[  467.412780][T11727] CPU: 1 UID: 0 PID: 11727 Comm: syz.1.1644 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  467.412839][T11727] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  467.412852][T11727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  467.412950][T11727] Call Trace:
[  467.412957][T11727]  <TASK>
[  467.412967][T11727]  dump_stack_lvl+0x16c/0x1f0
[  467.413004][T11727]  should_fail_ex+0x512/0x640
[  467.413032][T11727]  ? __kmalloc_noprof+0xca/0x870
[  467.413061][T11727]  should_failslab+0xc2/0x120
[  467.413101][T11727]  __kmalloc_noprof+0xdd/0x870
[  467.413125][T11727]  ? create_ruleset+0x21/0x140
[  467.413160][T11727]  ? create_ruleset+0x21/0x140
[  467.413189][T11727]  create_ruleset+0x21/0x140
[  467.413219][T11727]  landlock_merge_ruleset+0xbb/0x870
[  467.413252][T11727]  ? prepare_creds+0x515/0x740
[  467.413284][T11727]  __do_sys_landlock_restrict_self+0x2a2/0x910
[  467.413318][T11727]  do_syscall_64+0xcd/0xf80
[  467.413349][T11727]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.413374][T11727] RIP: 0033:0x7f2bf638f7c9
[  467.413394][T11727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.413417][T11727] RSP: 002b:00007f2bf7164038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[  467.413440][T11727] RAX: ffffffffffffffda RBX: 00007f2bf65e6090 RCX: 00007f2bf638f7c9
[  467.413457][T11727] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005
[  467.413472][T11727] RBP: 00007f2bf6413f91 R08: 0000000000000000 R09: 0000000000000000
[  467.413488][T11727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  467.413502][T11727] R13: 00007f2bf65e6128 R14: 00007f2bf65e6090 R15: 00007ffef08556d8
[  467.413539][T11727]  </TASK>
[  468.226745][   T30] audit: type=1800 audit(4294968146.299:12): pid=11739 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1647" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  471.590530][T11775] netlink: 252 bytes leftover after parsing attributes in process `syz.2.1656'.
[  471.673236][T11775] netlink: 252 bytes leftover after parsing attributes in process `syz.2.1656'.
[  472.375139][T11785] FAULT_INJECTION: forcing a failure.
[  472.375139][T11785] name failslab, interval 1, probability 0, space 0, times 0
[  472.396646][T11785] CPU: 1 UID: 0 PID: 11785 Comm: syz.2.1659 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  472.396704][T11785] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  472.396717][T11785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  472.396731][T11785] Call Trace:
[  472.396739][T11785]  <TASK>
[  472.396750][T11785]  dump_stack_lvl+0x16c/0x1f0
[  472.396786][T11785]  should_fail_ex+0x512/0x640
[  472.396815][T11785]  ? __kmalloc_cache_noprof+0x5f/0x770
[  472.396845][T11785]  should_failslab+0xc2/0x120
[  472.396879][T11785]  __kmalloc_cache_noprof+0x72/0x770
[  472.396901][T11785]  ? kvm_uevent_notify_change.part.0+0x2b2/0x450
[  472.396938][T11785]  ? kvm_uevent_notify_change.part.0+0x2b2/0x450
[  472.396969][T11785]  kvm_uevent_notify_change.part.0+0x2b2/0x450
[  472.397003][T11785]  ? __pfx_kvm_vm_release+0x10/0x10
[  472.397030][T11785]  kvm_put_kvm+0xe3/0xb00
[  472.397058][T11785]  ? lockdep_hardirqs_on+0x7c/0x110
[  472.397087][T11785]  ? _raw_spin_unlock_irq+0x2e/0x50
[  472.397118][T11785]  ? __pfx_kvm_vm_release+0x10/0x10
[  472.397145][T11785]  kvm_vm_release+0x3c/0x50
[  472.397171][T11785]  __fput+0x402/0xb70
[  472.397198][T11785]  ? _raw_spin_unlock_irq+0x23/0x50
[  472.397228][T11785]  task_work_run+0x150/0x240
[  472.397257][T11785]  ? __pfx_task_work_run+0x10/0x10
[  472.397284][T11785]  ? __do_sys_close_range+0x278/0x730
[  472.397329][T11785]  exit_to_user_mode_loop+0xfb/0x540
[  472.397365][T11785]  do_syscall_64+0x4ee/0xf80
[  472.397397][T11785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.397423][T11785] RIP: 0033:0x7fbd00f8f7c9
[  472.397444][T11785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  472.397467][T11785] RSP: 002b:00007fbd01ece038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  472.397551][T11785] RAX: 0000000000000000 RBX: 00007fbd011e5fa0 RCX: 00007fbd00f8f7c9
[  472.397568][T11785] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  472.397583][T11785] RBP: 00007fbd01013f91 R08: 0000000000000000 R09: 0000000000000000
[  472.397599][T11785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  472.397614][T11785] R13: 00007fbd011e6038 R14: 00007fbd011e5fa0 R15: 00007ffe558ff198
[  472.397651][T11785]  </TASK>
[  473.365531][T11793] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1661'.
[  475.115991][T11813] FAULT_INJECTION: forcing a failure.
[  475.115991][T11813] name failslab, interval 1, probability 0, space 0, times 0
[  475.218961][T11813] CPU: 0 UID: 0 PID: 11813 Comm: syz.3.1667 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  475.219021][T11813] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  475.219035][T11813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  475.219050][T11813] Call Trace:
[  475.219059][T11813]  <TASK>
[  475.219070][T11813]  dump_stack_lvl+0x16c/0x1f0
[  475.219106][T11813]  should_fail_ex+0x512/0x640
[  475.219135][T11813]  ? __kmalloc_noprof+0xca/0x870
[  475.219164][T11813]  should_failslab+0xc2/0x120
[  475.219202][T11813]  __kmalloc_noprof+0xdd/0x870
[  475.219227][T11813]  ? create_ruleset+0x21/0x140
[  475.219262][T11813]  ? create_ruleset+0x21/0x140
[  475.219288][T11813]  create_ruleset+0x21/0x140
[  475.219317][T11813]  landlock_merge_ruleset+0xbb/0x870
[  475.219349][T11813]  ? prepare_creds+0x515/0x740
[  475.219383][T11813]  __do_sys_landlock_restrict_self+0x2a2/0x910
[  475.219419][T11813]  do_syscall_64+0xcd/0xf80
[  475.219451][T11813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  475.219477][T11813] RIP: 0033:0x7fb195d8f7c9
[  475.219499][T11813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  475.219533][T11813] RSP: 002b:00007fb196cb4038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[  475.219557][T11813] RAX: ffffffffffffffda RBX: 00007fb195fe6090 RCX: 00007fb195d8f7c9
[  475.219574][T11813] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005
[  475.219589][T11813] RBP: 00007fb195e13f91 R08: 0000000000000000 R09: 0000000000000000
[  475.219604][T11813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  475.219619][T11813] R13: 00007fb195fe6128 R14: 00007fb195fe6090 R15: 00007ffdb87cc1b8
[  475.219657][T11813]  </TASK>
[  476.775167][T11830] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1672'.
[  476.918410][T11830] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1672'.
[  477.239408][T11837] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1674'.
[  477.258990][T11839] FAULT_INJECTION: forcing a failure.
[  477.258990][T11839] name failslab, interval 1, probability 0, space 0, times 0
[  477.297346][T11837] netlink: 'syz.1.1674': attribute type 1 has an invalid length.
[  477.335999][T11837] netlink: 'syz.1.1674': attribute type 6 has an invalid length.
[  477.355701][T11839] CPU: 1 UID: 0 PID: 11839 Comm: syz.2.1675 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  477.355759][T11839] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  477.355773][T11839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  477.355787][T11839] Call Trace:
[  477.355796][T11839]  <TASK>
[  477.355805][T11839]  dump_stack_lvl+0x16c/0x1f0
[  477.355843][T11839]  should_fail_ex+0x512/0x640
[  477.355869][T11839]  ? kmem_cache_alloc_noprof+0x62/0x720
[  477.355901][T11839]  should_failslab+0xc2/0x120
[  477.355936][T11839]  kmem_cache_alloc_noprof+0x75/0x720
[  477.355963][T11839]  ? __kernfs_new_node+0xd2/0x8d0
[  477.355997][T11839]  ? __kernfs_new_node+0xd2/0x8d0
[  477.356024][T11839]  __kernfs_new_node+0xd2/0x8d0
[  477.356056][T11839]  ? __pfx___kernfs_new_node+0x10/0x10
[  477.356106][T11839]  ? find_held_lock+0x2b/0x80
[  477.356144][T11839]  ? kernfs_root+0xee/0x2a0
[  477.356178][T11839]  kernfs_new_node+0x13c/0x1e0
[  477.356219][T11839]  __kernfs_create_file+0x53/0x350
[  477.356260][T11839]  cgroup_addrm_files+0x546/0xc20
[  477.356305][T11839]  ? __xa_store+0x1dc/0x2e0
[  477.356335][T11839]  ? __pfx_cgroup_addrm_files+0x10/0x10
[  477.356368][T11839]  ? __pfx___xa_store+0x10/0x10
[  477.356410][T11839]  ? do_raw_spin_unlock+0x172/0x230
[  477.356448][T11839]  css_populate_dir+0x169/0x570
[  477.356484][T11839]  cgroup_apply_control_enable+0x3f3/0xbb0
[  477.356532][T11839]  cgroup_mkdir+0x5e0/0x12e0
[  477.356570][T11839]  ? __pfx_cgroup_mkdir+0x10/0x10
[  477.356605][T11839]  kernfs_iop_mkdir+0x111/0x190
[  477.356632][T11839]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  477.356670][T11839]  vfs_mkdir+0x731/0xb60
[  477.356702][T11839]  do_mkdirat+0x442/0x5e0
[  477.356738][T11839]  ? __pfx_do_mkdirat+0x10/0x10
[  477.356772][T11839]  ? strncpy_from_user+0x203/0x2e0
[  477.356803][T11839]  ? getname_flags.part.0+0x1c5/0x550
[  477.356833][T11839]  __x64_sys_mkdir+0xef/0x140
[  477.356868][T11839]  do_syscall_64+0xcd/0xf80
[  477.356899][T11839]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  477.356925][T11839] RIP: 0033:0x7fbd00f8f7c9
[  477.356946][T11839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  477.356972][T11839] RSP: 002b:00007fbd01ece038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  477.356996][T11839] RAX: ffffffffffffffda RBX: 00007fbd011e5fa0 RCX: 00007fbd00f8f7c9
[  477.357013][T11839] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[  477.357029][T11839] RBP: 00007fbd01013f91 R08: 0000000000000000 R09: 0000000000000000
[  477.357044][T11839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  477.357059][T11839] R13: 00007fbd011e6038 R14: 00007fbd011e5fa0 R15: 00007ffe558ff198
[  477.357107][T11839]  </TASK>
[  477.661263][T11839] cgroup: cgroup_addrm_files: failed to add kmem.usage_in_bytes, err=-12
[  477.891342][T11843] Invalid ELF header magic: != ELF
[  483.724882][ T3507] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  486.135944][   T10] smpboot: CPU 1 is now offline
[  493.342233][T12028] kexec: Could not allocate control_code_buffer
[  493.546885][T12046] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1721'.
[  493.604356][T12046] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1721'.
[  493.842401][   T30] audit: type=1800 audit(4294968171.939:13): pid=12051 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1723" name="features" dev="configfs" ino=104689 res=0 errno=0
[  494.716577][T12062] zswap: compressor � not available
[  494.803539][T12066] Setting dangerous option i915.mitigations - tainting kernel
[  495.872254][T12071] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14
[  496.191497][T12084] random: crng reseeded on system resumption
[  496.515452][T12088] FAULT_INJECTION: forcing a failure.
[  496.515452][T12088] name failslab, interval 1, probability 0, space 0, times 0
[  496.614387][T12088] CPU: 0 UID: 0 PID: 12088 Comm: syz.1.1734 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  496.614421][T12088] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  496.614429][T12088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  496.614438][T12088] Call Trace:
[  496.614444][T12088]  <TASK>
[  496.614449][T12088]  dump_stack_lvl+0x16c/0x1f0
[  496.614470][T12088]  should_fail_ex+0x512/0x640
[  496.614493][T12088]  ? fs_reclaim_acquire+0xae/0x150
[  496.614515][T12088]  should_failslab+0xc2/0x120
[  496.614536][T12088]  __kmalloc_noprof+0xdd/0x870
[  496.614551][T12088]  ? mempool_init_node+0x2f7/0x6e0
[  496.614569][T12088]  ? __pfx_mempool_kmalloc+0x10/0x10
[  496.614583][T12088]  ? mempool_init_node+0x2f7/0x6e0
[  496.614597][T12088]  ? __pfx_mempool_kmalloc+0x10/0x10
[  496.614611][T12088]  mempool_init_node+0x2f7/0x6e0
[  496.614630][T12088]  ? __pfx_mempool_kmalloc+0x10/0x10
[  496.614644][T12088]  ? __pfx_mempool_kfree+0x10/0x10
[  496.614658][T12088]  mempool_init_noprof+0x3a/0x50
[  496.614676][T12088]  do_fanotify_mark+0x2e6b/0x39e0
[  496.614702][T12088]  ? __pfx_do_fanotify_mark+0x10/0x10
[  496.614721][T12088]  ? __x64_sys_futex+0x1e9/0x4c0
[  496.614741][T12088]  ? xfd_validate_state+0x61/0x180
[  496.614761][T12088]  ? __pfx_ksys_write+0x10/0x10
[  496.614781][T12088]  __x64_sys_fanotify_mark+0xbd/0x160
[  496.614798][T12088]  ? do_syscall_64+0x91/0xf80
[  496.614813][T12088]  ? lockdep_hardirqs_on+0x7c/0x110
[  496.614829][T12088]  do_syscall_64+0xcd/0xf80
[  496.614845][T12088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  496.614859][T12088] RIP: 0033:0x7f2bf638f7c9
[  496.614871][T12088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  496.614884][T12088] RSP: 002b:00007f2bf7185038 EFLAGS: 00000246 ORIG_RAX: 000000000000012d
[  496.614898][T12088] RAX: ffffffffffffffda RBX: 00007f2bf65e5fa0 RCX: 00007f2bf638f7c9
[  496.614908][T12088] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000
[  496.614917][T12088] RBP: 00007f2bf6413f91 R08: 0000000000000000 R09: 0000000000000000
[  496.614926][T12088] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  496.614934][T12088] R13: 00007f2bf65e6038 R14: 00007f2bf65e5fa0 R15: 00007ffef08556d8
[  496.614953][T12088]  </TASK>
[  499.430888][T12109] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  500.716500][T12130] __vm_enough_memory: pid: 12130, comm: syz.2.1746, bytes: 8589938688 not enough memory for the allocation
[  502.208536][T12149] FAULT_INJECTION: forcing a failure.
[  502.208536][T12149] name failslab, interval 1, probability 0, space 0, times 0
[  502.290223][T12149] CPU: 0 UID: 0 PID: 12149 Comm: syz.0.1750 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  502.290259][T12149] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  502.290267][T12149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  502.290275][T12149] Call Trace:
[  502.290280][T12149]  <TASK>
[  502.290286][T12149]  dump_stack_lvl+0x16c/0x1f0
[  502.290309][T12149]  should_fail_ex+0x512/0x640
[  502.290326][T12149]  ? __kmalloc_cache_node_noprof+0x62/0x790
[  502.290348][T12149]  should_failslab+0xc2/0x120
[  502.290367][T12149]  __kmalloc_cache_node_noprof+0x75/0x790
[  502.290384][T12149]  ? bdi_alloc+0x44/0x170
[  502.290403][T12149]  ? bdi_alloc+0x44/0x170
[  502.290417][T12149]  bdi_alloc+0x44/0x170
[  502.290431][T12149]  __alloc_disk_node+0xac/0x640
[  502.290448][T12149]  __blk_mq_alloc_disk+0x89/0x120
[  502.290470][T12149]  loop_add+0x490/0xb70
[  502.290488][T12149]  ? __pfx_loop_add+0x10/0x10
[  502.290515][T12149]  ? find_held_lock+0x2b/0x80
[  502.290537][T12149]  loop_control_ioctl+0x13e/0x630
[  502.290553][T12149]  ? __pfx_loop_control_ioctl+0x10/0x10
[  502.290572][T12149]  ? __pfx_loop_control_ioctl+0x10/0x10
[  502.290590][T12149]  __x64_sys_ioctl+0x18e/0x210
[  502.290607][T12149]  do_syscall_64+0xcd/0xf80
[  502.290625][T12149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.290639][T12149] RIP: 0033:0x7f992038f7c9
[  502.290651][T12149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  502.290664][T12149] RSP: 002b:00007f99212ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  502.290678][T12149] RAX: ffffffffffffffda RBX: 00007f99205e5fa0 RCX: 00007f992038f7c9
[  502.290688][T12149] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000004
[  502.290696][T12149] RBP: 00007f9920413f91 R08: 0000000000000000 R09: 0000000000000000
[  502.290704][T12149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  502.290712][T12149] R13: 00007f99205e6038 R14: 00007f99205e5fa0 R15: 00007fff5172e398
[  502.290730][T12149]  </TASK>
[  504.182542][T12171] zswap: compressor � not available
[  504.208175][T12173] Setting dangerous option i915.mitigations - tainting kernel
[  504.407259][T12176] random: crng reseeded on system resumption
[  504.476627][T12178] netlink: 'syz.0.1758': attribute type 1 has an invalid length.
[  504.506565][T12178] netlink: 17 bytes leftover after parsing attributes in process `syz.0.1758'.
[  504.730431][T12183] random: crng reseeded on system resumption
[  504.838400][T12183] hub 1-0:1.0: USB hub found
[  504.887043][T12183] hub 1-0:1.0: 1 port detected
[  505.387462][T12190] netlink: 158 bytes leftover after parsing attributes in process `syz.1.1762'.
[  505.441442][T12190] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1762'.
[  506.079478][T12200] ERROR: Out of memory at tomoyo_memory_ok.
[  506.196433][T12202] FAULT_INJECTION: forcing a failure.
[  506.196433][T12202] name failslab, interval 1, probability 0, space 0, times 0
[  506.289574][T12202] CPU: 0 UID: 0 PID: 12202 Comm: syz.2.1766 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  506.289608][T12202] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  506.289616][T12202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  506.289625][T12202] Call Trace:
[  506.289631][T12202]  <TASK>
[  506.289637][T12202]  dump_stack_lvl+0x16c/0x1f0
[  506.289659][T12202]  should_fail_ex+0x512/0x640
[  506.289676][T12202]  ? __kmalloc_cache_noprof+0x5f/0x770
[  506.289693][T12202]  should_failslab+0xc2/0x120
[  506.289714][T12202]  __kmalloc_cache_noprof+0x72/0x770
[  506.289734][T12202]  ? mem_cgroup_css_alloc+0x83a/0x1de0
[  506.289752][T12202]  ? mem_cgroup_css_alloc+0x83a/0x1de0
[  506.289766][T12202]  mem_cgroup_css_alloc+0x83a/0x1de0
[  506.289787][T12202]  cgroup_apply_control_enable+0x4b0/0xbb0
[  506.289819][T12202]  cgroup_mkdir+0x5e0/0x12e0
[  506.289841][T12202]  ? __pfx_cgroup_mkdir+0x10/0x10
[  506.289862][T12202]  kernfs_iop_mkdir+0x111/0x190
[  506.289880][T12202]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  506.289902][T12202]  vfs_mkdir+0x731/0xb60
[  506.289921][T12202]  do_mkdirat+0x442/0x5e0
[  506.289941][T12202]  ? __pfx_do_mkdirat+0x10/0x10
[  506.289960][T12202]  ? strncpy_from_user+0x203/0x2e0
[  506.289976][T12202]  ? getname_flags.part.0+0x1c5/0x550
[  506.289995][T12202]  __x64_sys_mkdir+0xef/0x140
[  506.290014][T12202]  do_syscall_64+0xcd/0xf80
[  506.290031][T12202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  506.290046][T12202] RIP: 0033:0x7fbd00f8f7c9
[  506.290058][T12202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  506.290071][T12202] RSP: 002b:00007fbd01ece038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  506.290084][T12202] RAX: ffffffffffffffda RBX: 00007fbd011e5fa0 RCX: 00007fbd00f8f7c9
[  506.290093][T12202] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[  506.290101][T12202] RBP: 00007fbd01013f91 R08: 0000000000000000 R09: 0000000000000000
[  506.290109][T12202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  506.290117][T12202] R13: 00007fbd011e6038 R14: 00007fbd011e5fa0 R15: 00007ffe558ff198
[  506.290137][T12202]  </TASK>
[  506.841244][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  506.848074][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  506.908542][T12208] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  507.298360][T12216] syz.0.1780 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  507.436556][T12221] FAULT_INJECTION: forcing a failure.
[  507.436556][T12221] name (null), interval 1, probability 0, space 0, times 1
[  507.487952][T12221] CPU: 0 UID: 0 PID: 12221 Comm: syz.2.1773 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  507.487985][T12221] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  507.487993][T12221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  507.488002][T12221] Call Trace:
[  507.488007][T12221]  <TASK>
[  507.488013][T12221]  dump_stack_lvl+0x16c/0x1f0
[  507.488035][T12221]  should_fail_ex+0x512/0x640
[  507.488054][T12221]  null_queue_rq+0x2ed/0xfd0
[  507.488076][T12221]  ? blk_add_trace_unplug+0x164/0x350
[  507.488094][T12221]  null_queue_rqs+0xe9/0x2f0
[  507.488115][T12221]  ? __pfx_null_queue_rqs+0x10/0x10
[  507.488141][T12221]  __blk_mq_flush_list+0x9a/0xc0
[  507.488156][T12221]  blk_mq_dispatch_queue_requests+0x184/0x7b0
[  507.488179][T12221]  blk_mq_flush_plug_list+0x1f2/0x600
[  507.488201][T12221]  ? __pfx_blk_mq_flush_plug_list+0x10/0x10
[  507.488226][T12221]  __blk_flush_plug+0x2c4/0x4b0
[  507.488247][T12221]  ? __pfx___blk_flush_plug+0x10/0x10
[  507.488263][T12221]  ? folio_batch_move_lru+0x278/0x3a0
[  507.488278][T12221]  ? __pfx_lru_add+0x10/0x10
[  507.488295][T12221]  blk_finish_plug+0x53/0xa0
[  507.488312][T12221]  read_pages+0x583/0xc70
[  507.488333][T12221]  ? lru_gen_add_folio+0xea7/0xef0
[  507.488348][T12221]  ? __pfx_read_pages+0x10/0x10
[  507.488377][T12221]  page_cache_ra_order+0x749/0xed0
[  507.488406][T12221]  page_cache_async_ra+0x74b/0xc40
[  507.488430][T12221]  filemap_fault+0xd0e/0x28c0
[  507.488448][T12221]  ? __pfx_filemap_fault+0x10/0x10
[  507.488471][T12221]  __do_fault+0x10d/0x490
[  507.488487][T12221]  do_pte_missing+0xfb2/0x4000
[  507.488509][T12221]  ? __handle_mm_fault+0x149d/0x2a30
[  507.488531][T12221]  __handle_mm_fault+0x14ca/0x2a30
[  507.488555][T12221]  ? __pfx___handle_mm_fault+0x10/0x10
[  507.488576][T12221]  ? __pte_offset_map_lock+0x174/0x310
[  507.488605][T12221]  ? find_held_lock+0x2b/0x80
[  507.488632][T12221]  ? follow_page_pte+0x611/0x1390
[  507.488655][T12221]  handle_mm_fault+0x3fe/0xad0
[  507.488680][T12221]  __get_user_pages+0x605/0x33c0
[  507.488706][T12221]  ? __pfx___get_user_pages+0x10/0x10
[  507.488729][T12221]  populate_vma_page_range+0x267/0x3f0
[  507.488749][T12221]  ? __pfx_populate_vma_page_range+0x10/0x10
[  507.488767][T12221]  ? __pfx_find_vma_intersection+0x10/0x10
[  507.488785][T12221]  ? do_mmap+0x69c/0x1210
[  507.488802][T12221]  __mm_populate+0x1d8/0x380
[  507.488822][T12221]  ? __pfx___mm_populate+0x10/0x10
[  507.488841][T12221]  ? up_write+0x282/0x4e0
[  507.488858][T12221]  vm_mmap_pgoff+0x37f/0x470
[  507.488877][T12221]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  507.488897][T12221]  ? __fget_files+0x20e/0x3c0
[  507.488918][T12221]  ksys_mmap_pgoff+0x32c/0x5c0
[  507.488938][T12221]  __x64_sys_mmap+0x125/0x190
[  507.488953][T12221]  do_syscall_64+0xcd/0xf80
[  507.488971][T12221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.488985][T12221] RIP: 0033:0x7fbd00f8f7c9
[  507.488997][T12221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  507.489012][T12221] RSP: 002b:00007fbd01ece038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  507.489026][T12221] RAX: ffffffffffffffda RBX: 00007fbd011e5fa0 RCX: 00007fbd00f8f7c9
[  507.489035][T12221] RDX: 0000000000000ffb RSI: 0000000000810004 RDI: 0000000000000000
[  507.489044][T12221] RBP: 00007fbd01013f91 R08: 0000000000000003 R09: 0000000000008000
[  507.489053][T12221] R10: 0008000000008011 R11: 0000000000000246 R12: 0000000000000000
[  507.489061][T12221] R13: 00007fbd011e6038 R14: 00007fbd011e5fa0 R15: 00007ffe558ff198
[  507.489081][T12221]  </TASK>
[  507.918551][T12225] bond0: invalid ARP target specified
[  508.549585][T12228] FAULT_INJECTION: forcing a failure.
[  508.549585][T12228] name failslab, interval 1, probability 0, space 0, times 0
[  508.562480][T12228] CPU: 0 UID: 0 PID: 12228 Comm: syz.2.1775 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  508.562512][T12228] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  508.562520][T12228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  508.562529][T12228] Call Trace:
[  508.562534][T12228]  <TASK>
[  508.562540][T12228]  dump_stack_lvl+0x16c/0x1f0
[  508.562561][T12228]  should_fail_ex+0x512/0x640
[  508.562578][T12228]  ? __kmalloc_noprof+0xca/0x870
[  508.562593][T12228]  should_failslab+0xc2/0x120
[  508.562620][T12228]  __kmalloc_noprof+0xdd/0x870
[  508.562634][T12228]  ? unregister_netdevice_many_notify+0x60c/0x2570
[  508.562656][T12228]  ? unregister_netdevice_many_notify+0x60c/0x2570
[  508.562673][T12228]  unregister_netdevice_many_notify+0x60c/0x2570
[  508.562690][T12228]  ? rcu_is_watching+0x12/0xc0
[  508.562718][T12228]  ? __mutex_lock+0x27b/0x1b10
[  508.562739][T12228]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  508.562757][T12228]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  508.562781][T12228]  ? __pfx___mutex_lock+0x10/0x10
[  508.562803][T12228]  unregister_netdevice_queue+0x305/0x3c0
[  508.562821][T12228]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  508.562838][T12228]  ? __pfx_locks_remove_file+0x10/0x10
[  508.562856][T12228]  ? kmem_cache_free+0x172/0x7d0
[  508.562873][T12228]  ? __pfx_ppp_release+0x10/0x10
[  508.562886][T12228]  ppp_release+0x209/0x230
[  508.562899][T12228]  __fput+0x402/0xb70
[  508.562916][T12228]  task_work_run+0x150/0x240
[  508.562932][T12228]  ? __pfx_task_work_run+0x10/0x10
[  508.562946][T12228]  ? __do_sys_close_range+0x278/0x730
[  508.562970][T12228]  exit_to_user_mode_loop+0xfb/0x540
[  508.562990][T12228]  do_syscall_64+0x4ee/0xf80
[  508.563008][T12228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  508.563022][T12228] RIP: 0033:0x7fbd00f8f7c9
[  508.563034][T12228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  508.563046][T12228] RSP: 002b:00007fbd01ece038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  508.563060][T12228] RAX: 0000000000000000 RBX: 00007fbd011e5fa0 RCX: 00007fbd00f8f7c9
[  508.563068][T12228] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  508.563076][T12228] RBP: 00007fbd01013f91 R08: 0000000000000000 R09: 0000000000000000
[  508.563084][T12228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  508.563091][T12228] R13: 00007fbd011e6038 R14: 00007fbd011e5fa0 R15: 00007ffe558ff198
[  508.563110][T12228]  </TASK>
[  512.286904][T12261] netlink: 'syz.0.1787': attribute type 4 has an invalid length.
[  512.350613][T12261] netlink: 314 bytes leftover after parsing attributes in process `syz.0.1787'.
[  512.400783][T12261] IPv6: NLM_F_CREATE should be specified when creating new route
[  512.516656][T12265] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15
[  517.117640][T12324] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1806'.
[  517.781931][T12326] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  517.962185][T12326] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  518.096695][T12326] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  518.240115][T12326] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  519.253597][T12349] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1813'.
[  519.647901][T12356] FAULT_INJECTION: forcing a failure.
[  519.647901][T12356] name failslab, interval 1, probability 0, space 0, times 0
[  519.736506][T12356] CPU: 0 UID: 0 PID: 12356 Comm: syz.1.1815 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  519.736548][T12356] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  519.736555][T12356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  519.736564][T12356] Call Trace:
[  519.736571][T12356]  <TASK>
[  519.736578][T12356]  dump_stack_lvl+0x16c/0x1f0
[  519.736600][T12356]  should_fail_ex+0x512/0x640
[  519.736618][T12356]  ? __kmalloc_cache_noprof+0x5f/0x770
[  519.736635][T12356]  should_failslab+0xc2/0x120
[  519.736655][T12356]  __kmalloc_cache_noprof+0x72/0x770
[  519.736670][T12356]  ? lockdep_init_map_type+0x5c/0x270
[  519.736685][T12356]  ? nci_hci_allocate+0x45/0x330
[  519.736700][T12356]  ? mutex_init_lockep+0x110/0x150
[  519.736716][T12356]  ? nci_hci_allocate+0x45/0x330
[  519.736730][T12356]  nci_hci_allocate+0x45/0x330
[  519.736747][T12356]  nci_allocate_device+0x26f/0x430
[  519.736769][T12356]  virtual_ncidev_open+0x6f/0x220
[  519.736787][T12356]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  519.736803][T12356]  misc_open+0x26d/0x450
[  519.736818][T12356]  ? __pfx_misc_open+0x10/0x10
[  519.736833][T12356]  chrdev_open+0x234/0x6a0
[  519.736850][T12356]  ? __pfx_apparmor_file_open+0x10/0x10
[  519.736866][T12356]  ? __pfx_chrdev_open+0x10/0x10
[  519.736886][T12356]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  519.736909][T12356]  do_dentry_open+0x748/0x1590
[  519.736926][T12356]  ? __pfx_chrdev_open+0x10/0x10
[  519.736950][T12356]  vfs_open+0x82/0x3f0
[  519.736966][T12356]  path_openat+0x2078/0x3140
[  519.736990][T12356]  ? __pfx_path_openat+0x10/0x10
[  519.737015][T12356]  do_filp_open+0x20b/0x470
[  519.737037][T12356]  ? __pfx_do_filp_open+0x10/0x10
[  519.737069][T12356]  ? alloc_fd+0x471/0x7d0
[  519.737093][T12356]  do_sys_openat2+0x11f/0x280
[  519.737106][T12356]  ? __pfx_do_sys_openat2+0x10/0x10
[  519.737129][T12356]  __x64_sys_openat+0x174/0x210
[  519.737143][T12356]  ? __pfx___x64_sys_openat+0x10/0x10
[  519.737166][T12356]  do_syscall_64+0xcd/0xf80
[  519.737183][T12356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.737198][T12356] RIP: 0033:0x7f2bf638f7c9
[  519.737210][T12356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  519.737223][T12356] RSP: 002b:00007f2bf7185038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  519.737237][T12356] RAX: ffffffffffffffda RBX: 00007f2bf65e5fa0 RCX: 00007f2bf638f7c9
[  519.737247][T12356] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  519.737256][T12356] RBP: 00007f2bf6413f91 R08: 0000000000000000 R09: 0000000000000000
[  519.737265][T12356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  519.737273][T12356] R13: 00007f2bf65e6038 R14: 00007f2bf65e5fa0 R15: 00007ffef08556d8
[  519.737293][T12356]  </TASK>
[  520.396833][T12351] HSR: entered promiscuous mode
[  520.437486][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout
[  520.443660][ T5847] Bluetooth: hci2: command 0x0c1a tx timeout
[  520.450885][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  520.459166][ T5850] Bluetooth: hci1: command 0x0c1a tx timeout
[  521.668745][T12373] FAULT_INJECTION: forcing a failure.
[  521.668745][T12373] name failslab, interval 1, probability 0, space 0, times 0
[  521.730627][T12373] CPU: 0 UID: 0 PID: 12373 Comm: syz.0.1821 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  521.730662][T12373] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  521.730670][T12373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  521.730679][T12373] Call Trace:
[  521.730684][T12373]  <TASK>
[  521.730690][T12373]  dump_stack_lvl+0x16c/0x1f0
[  521.730712][T12373]  should_fail_ex+0x512/0x640
[  521.730729][T12373]  ? fs_reclaim_acquire+0xae/0x150
[  521.730751][T12373]  should_failslab+0xc2/0x120
[  521.730772][T12373]  __kmalloc_noprof+0xdd/0x870
[  521.730786][T12373]  ? tomoyo_encode2+0x100/0x3e0
[  521.730809][T12373]  ? tomoyo_encode2+0x100/0x3e0
[  521.730827][T12373]  tomoyo_encode2+0x100/0x3e0
[  521.730849][T12373]  tomoyo_encode+0x29/0x50
[  521.730868][T12373]  tomoyo_realpath_from_path+0x18f/0x6e0
[  521.730894][T12373]  tomoyo_mkdev_perm+0x22b/0x570
[  521.730909][T12373]  ? tomoyo_mkdev_perm+0x217/0x570
[  521.730927][T12373]  ? __pfx_tomoyo_mkdev_perm+0x10/0x10
[  521.730945][T12373]  ? do_raw_spin_lock+0x12c/0x2b0
[  521.730967][T12373]  ? do_raw_spin_unlock+0x172/0x230
[  521.730993][T12373]  ? __pfx_current_check_access_path+0x10/0x10
[  521.731015][T12373]  ? simple_lookup+0x105/0x1d0
[  521.731036][T12373]  tomoyo_path_mknod+0x12a/0x190
[  521.731051][T12373]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  521.731066][T12373]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  521.731089][T12373]  security_path_mknod+0x161/0x310
[  521.731108][T12373]  do_mknodat+0x24e/0x6f0
[  521.731128][T12373]  ? __pfx_do_mknodat+0x10/0x10
[  521.731146][T12373]  ? getname_flags.part.0+0x1c5/0x550
[  521.731164][T12373]  __x64_sys_mknod+0x87/0xb0
[  521.731183][T12373]  do_syscall_64+0xcd/0xf80
[  521.731200][T12373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  521.731214][T12373] RIP: 0033:0x7f992038f7c9
[  521.731226][T12373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  521.731239][T12373] RSP: 002b:00007f99212ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  521.731253][T12373] RAX: ffffffffffffffda RBX: 00007f99205e5fa0 RCX: 00007f992038f7c9
[  521.731263][T12373] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0
[  521.731272][T12373] RBP: 00007f9920413f91 R08: 0000000000000000 R09: 0000000000000000
[  521.731280][T12373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  521.731289][T12373] R13: 00007f99205e6038 R14: 00007f99205e5fa0 R15: 00007fff5172e398
[  521.731309][T12373]  </TASK>
[  521.731326][T12373] ERROR: Out of memory at tomoyo_realpath_from_path.
[  522.848052][T12378] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  522.896830][T12378] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  522.902876][T12378] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  522.956584][T12378] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  523.232123][T12392] netlink: 'syz.3.1826': attribute type 1 has an invalid length.
[  523.336542][T12392] netlink: 13 bytes leftover after parsing attributes in process `syz.3.1826'.
[  523.622121][T12398] vcan0: tx drop: invalid sa for name 0x00000000000000fd
[  524.057805][T12407] random: crng reseeded on system resumption
[  524.306474][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout
[  524.950369][T12357] Bluetooth: hci2: command 0x0c1a tx timeout
[  524.956751][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout
[  525.026533][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout
[  525.411142][T12420] FAULT_INJECTION: forcing a failure.
[  525.411142][T12420] name failslab, interval 1, probability 0, space 0, times 0
[  525.501672][T12420] CPU: 0 UID: 0 PID: 12420 Comm: syz.3.1835 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  525.501707][T12420] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  525.501715][T12420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  525.501723][T12420] Call Trace:
[  525.501728][T12420]  <TASK>
[  525.501734][T12420]  dump_stack_lvl+0x16c/0x1f0
[  525.501757][T12420]  should_fail_ex+0x512/0x640
[  525.501773][T12420]  ? __kmalloc_cache_noprof+0x5f/0x770
[  525.501790][T12420]  should_failslab+0xc2/0x120
[  525.501810][T12420]  __kmalloc_cache_noprof+0x72/0x770
[  525.501825][T12420]  ? cuse_channel_open+0x4f/0x7f0
[  525.501843][T12420]  ? __pfx_cuse_channel_open+0x10/0x10
[  525.501857][T12420]  ? cuse_channel_open+0x4f/0x7f0
[  525.501870][T12420]  ? find_held_lock+0x2b/0x80
[  525.501888][T12420]  cuse_channel_open+0x4f/0x7f0
[  525.501904][T12420]  ? __pfx_cuse_channel_open+0x10/0x10
[  525.501919][T12420]  misc_open+0x26d/0x450
[  525.501935][T12420]  ? __pfx_misc_open+0x10/0x10
[  525.501949][T12420]  chrdev_open+0x234/0x6a0
[  525.501967][T12420]  ? __pfx_apparmor_file_open+0x10/0x10
[  525.501983][T12420]  ? __pfx_chrdev_open+0x10/0x10
[  525.502003][T12420]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  525.502027][T12420]  do_dentry_open+0x748/0x1590
[  525.502044][T12420]  ? __pfx_chrdev_open+0x10/0x10
[  525.502067][T12420]  vfs_open+0x82/0x3f0
[  525.502083][T12420]  path_openat+0x2078/0x3140
[  525.502107][T12420]  ? __pfx_path_openat+0x10/0x10
[  525.502133][T12420]  do_filp_open+0x20b/0x470
[  525.502151][T12420]  ? __pfx_do_filp_open+0x10/0x10
[  525.502183][T12420]  ? alloc_fd+0x471/0x7d0
[  525.502207][T12420]  do_sys_openat2+0x11f/0x280
[  525.502220][T12420]  ? __pfx_do_sys_openat2+0x10/0x10
[  525.502241][T12420]  __x64_sys_openat+0x174/0x210
[  525.502255][T12420]  ? __pfx___x64_sys_openat+0x10/0x10
[  525.502271][T12420]  ? syscall_user_dispatch+0x78/0x140
[  525.502294][T12420]  do_syscall_64+0xcd/0xf80
[  525.502311][T12420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  525.502326][T12420] RIP: 0033:0x7fb195d8f7c9
[  525.502338][T12420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  525.502359][T12420] RSP: 002b:00007fb196cd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  525.502374][T12420] RAX: ffffffffffffffda RBX: 00007fb195fe5fa0 RCX: 00007fb195d8f7c9
[  525.502383][T12420] RDX: 0000000000181041 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  525.502397][T12420] RBP: 00007fb195e13f91 R08: 0000000000000000 R09: 0000000000000000
[  525.502405][T12420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  525.502413][T12420] R13: 00007fb195fe6038 R14: 00007fb195fe5fa0 R15: 00007ffdb87cc1b8
[  525.502433][T12420]  </TASK>
[  526.196010][T12426] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1837'.
[  529.439813][T12474] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1849'.
[  529.538311][T12474] netlink: 'syz.2.1849': attribute type 1 has an invalid length.
[  529.546053][T12474] netlink: 5 bytes leftover after parsing attributes in process `syz.2.1849'.
[  529.814079][T12480] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1851'.
[  530.585370][T12503] crash hp: kexec_trylock() failed, kdump image may be inaccurate
[  532.320500][T12497] kexec: Could not allocate control_code_buffer
[  532.887409][T12544] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1868'.
[  533.547575][T12554] netlink: 'syz.1.1869': attribute type 33 has an invalid length.
[  533.750272][T12549] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1867'.
[  533.936476][T12549] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  534.519808][T12567] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1874'.
[  534.633484][T12549] batman_adv: batadv0: Removing interface: batadv_slave_1
[  534.987143][T12560] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1872'.
[  535.098294][T12560] bridge_slave_1: left allmulticast mode
[  535.169994][T12560] bridge_slave_1: left promiscuous mode
[  535.327998][T12560] bridge0: port 2(bridge_slave_1) entered disabled state
[  535.567264][T12560] bridge_slave_0: left allmulticast mode
[  535.656372][T12560] bridge_slave_0: left promiscuous mode
[  535.662304][T12560] bridge0: port 1(bridge_slave_0) entered disabled state
[  536.781970][T12578] FAULT_INJECTION: forcing a failure.
[  536.781970][T12578] name failslab, interval 1, probability 0, space 0, times 0
[  536.887629][T12578] CPU: 0 UID: 0 PID: 12578 Comm: syz.3.1877 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  536.887664][T12578] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  536.887672][T12578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  536.887686][T12578] Call Trace:
[  536.887692][T12578]  <TASK>
[  536.887697][T12578]  dump_stack_lvl+0x16c/0x1f0
[  536.887720][T12578]  should_fail_ex+0x512/0x640
[  536.887736][T12578]  ? __kmalloc_noprof+0xca/0x870
[  536.887752][T12578]  should_failslab+0xc2/0x120
[  536.887773][T12578]  __kmalloc_noprof+0xdd/0x870
[  536.887787][T12578]  ? unregister_netdevice_many_notify+0x60c/0x2570
[  536.887809][T12578]  ? unregister_netdevice_many_notify+0x60c/0x2570
[  536.887826][T12578]  unregister_netdevice_many_notify+0x60c/0x2570
[  536.887843][T12578]  ? rcu_is_watching+0x12/0xc0
[  536.887865][T12578]  ? __mutex_lock+0x27b/0x1b10
[  536.887883][T12578]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  536.887901][T12578]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  536.887922][T12578]  ? __pfx___mutex_lock+0x10/0x10
[  536.887943][T12578]  unregister_netdevice_queue+0x305/0x3c0
[  536.887961][T12578]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  536.887978][T12578]  ? __pfx_locks_remove_file+0x10/0x10
[  536.887996][T12578]  ? kmem_cache_free+0x172/0x7d0
[  536.888014][T12578]  ? __pfx_ppp_release+0x10/0x10
[  536.888027][T12578]  ppp_release+0x209/0x230
[  536.888039][T12578]  __fput+0x402/0xb70
[  536.888056][T12578]  task_work_run+0x150/0x240
[  536.888075][T12578]  ? __pfx_task_work_run+0x10/0x10
[  536.888089][T12578]  ? __do_sys_close_range+0x278/0x730
[  536.888126][T12578]  exit_to_user_mode_loop+0xfb/0x540
[  536.888147][T12578]  do_syscall_64+0x4ee/0xf80
[  536.888167][T12578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  536.888182][T12578] RIP: 0033:0x7fb195d8f7c9
[  536.888194][T12578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  536.888208][T12578] RSP: 002b:00007fb196cd5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  536.888222][T12578] RAX: 0000000000000000 RBX: 00007fb195fe5fa0 RCX: 00007fb195d8f7c9
[  536.888231][T12578] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  536.888240][T12578] RBP: 00007fb195e13f91 R08: 0000000000000000 R09: 0000000000000000
[  536.888248][T12578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  536.888256][T12578] R13: 00007fb195fe6038 R14: 00007fb195fe5fa0 R15: 00007ffdb87cc1b8
[  536.888275][T12578]  </TASK>
[  538.606480][T12595] netlink: 13 bytes leftover after parsing attributes in process `syz.1.1882'.
[  540.044247][T12601] FAULT_INJECTION: forcing a failure.
[  540.044247][T12601] name failslab, interval 1, probability 0, space 0, times 0
[  540.319330][T12601] CPU: 0 UID: 0 PID: 12601 Comm: syz.0.1878 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  540.319365][T12601] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  540.319373][T12601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  540.319382][T12601] Call Trace:
[  540.319387][T12601]  <TASK>
[  540.319393][T12601]  dump_stack_lvl+0x16c/0x1f0
[  540.319414][T12601]  should_fail_ex+0x512/0x640
[  540.319431][T12601]  ? fs_reclaim_acquire+0xae/0x150
[  540.319453][T12601]  should_failslab+0xc2/0x120
[  540.319473][T12601]  kmem_cache_alloc_noprof+0x75/0x720
[  540.319488][T12601]  ? __pfx_map_id_range_down+0x10/0x10
[  540.319507][T12601]  ? security_inode_alloc+0x3b/0x2b0
[  540.319527][T12601]  ? security_inode_alloc+0x3b/0x2b0
[  540.319542][T12601]  security_inode_alloc+0x3b/0x2b0
[  540.319559][T12601]  inode_init_always_gfp+0xced/0x1040
[  540.319580][T12601]  alloc_inode+0x86/0x240
[  540.319594][T12601]  new_inode+0x22/0x1c0
[  540.319609][T12601]  __debugfs_create_file+0x11c/0x6b0
[  540.319630][T12601]  debugfs_create_file_full+0x41/0x60
[  540.319650][T12601]  kvm_dev_ioctl+0x14ca/0x1a80
[  540.319673][T12601]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  540.319695][T12601]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  540.319711][T12601]  __x64_sys_ioctl+0x18e/0x210
[  540.319728][T12601]  do_syscall_64+0xcd/0xf80
[  540.319745][T12601]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  540.319759][T12601] RIP: 0033:0x7f992038f7c9
[  540.319771][T12601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  540.319784][T12601] RSP: 002b:00007f99212ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  540.319798][T12601] RAX: ffffffffffffffda RBX: 00007f99205e5fa0 RCX: 00007f992038f7c9
[  540.319808][T12601] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008
[  540.319822][T12601] RBP: 00007f9920413f91 R08: 0000000000000000 R09: 0000000000000000
[  540.319832][T12601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  540.319840][T12601] R13: 00007f99205e6038 R14: 00007f99205e5fa0 R15: 00007fff5172e398
[  540.319861][T12601]  </TASK>
[  540.319880][T12601] debugfs: out of free dentries, can not create file 'nx_lpage_splits'
[  541.191918][T12610] netlink: 'syz.2.1886': attribute type 2 has an invalid length.
[  541.310549][T12610] netlink: 'syz.2.1886': attribute type 3 has an invalid length.
[  541.380583][T12610] netlink: 158 bytes leftover after parsing attributes in process `syz.2.1886'.
[  541.570154][T12610] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1886'.
[  544.464023][T12632] FAULT_INJECTION: forcing a failure.
[  544.464023][T12632] name failslab, interval 1, probability 0, space 0, times 0
[  544.567431][T12632] CPU: 0 UID: 0 PID: 12632 Comm: syz.3.1893 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  544.567466][T12632] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  544.567474][T12632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  544.567483][T12632] Call Trace:
[  544.567487][T12632]  <TASK>
[  544.567494][T12632]  dump_stack_lvl+0x16c/0x1f0
[  544.567516][T12632]  should_fail_ex+0x512/0x640
[  544.567533][T12632]  ? __kmalloc_node_track_caller_noprof+0xcb/0x890
[  544.567560][T12632]  should_failslab+0xc2/0x120
[  544.567583][T12632]  __kmalloc_node_track_caller_noprof+0xde/0x890
[  544.567608][T12632]  ? cache_create_net+0x2b/0x220
[  544.567628][T12632]  ? __pfx_rpcsec_gss_init_net+0x10/0x10
[  544.567646][T12632]  ? kmemdup_noprof+0x29/0x60
[  544.567660][T12632]  kmemdup_noprof+0x29/0x60
[  544.567675][T12632]  cache_create_net+0x2b/0x220
[  544.567692][T12632]  ? __pfx_rpcsec_gss_init_net+0x10/0x10
[  544.567708][T12632]  gss_svc_init_net+0x69/0x660
[  544.567723][T12632]  ? __pfx_canbcm_pernet_init+0x10/0x10
[  544.567742][T12632]  ? __pfx_rpcsec_gss_init_net+0x10/0x10
[  544.567757][T12632]  ops_init+0x1e2/0x5f0
[  544.567776][T12632]  setup_net+0x11d/0x3a0
[  544.567792][T12632]  ? __pfx_setup_net+0x10/0x10
[  544.567807][T12632]  ? lockdep_init_map_type+0x5c/0x270
[  544.567823][T12632]  ? mutex_init_lockep+0x110/0x150
[  544.567841][T12632]  copy_net_ns+0x351/0x5d0
[  544.567861][T12632]  create_new_namespaces+0x3ea/0xab0
[  544.567885][T12632]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  544.567906][T12632]  ksys_unshare+0x45b/0xa40
[  544.567919][T12632]  ? __pfx_ksys_unshare+0x10/0x10
[  544.567934][T12632]  ? syscall_user_dispatch+0x78/0x140
[  544.567956][T12632]  __x64_sys_unshare+0x31/0x40
[  544.567968][T12632]  do_syscall_64+0xcd/0xf80
[  544.567986][T12632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.568000][T12632] RIP: 0033:0x7fb195d8f7c9
[  544.568013][T12632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  544.568027][T12632] RSP: 002b:00007fb196cd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  544.568041][T12632] RAX: ffffffffffffffda RBX: 00007fb195fe5fa0 RCX: 00007fb195d8f7c9
[  544.568051][T12632] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  544.568061][T12632] RBP: 00007fb195e13f91 R08: 0000000000000000 R09: 0000000000000000
[  544.568071][T12632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  544.568080][T12632] R13: 00007fb195fe6038 R14: 00007fb195fe5fa0 R15: 00007ffdb87cc1b8
[  544.568099][T12632]  </TASK>
[  544.831596][   T30] audit: type=1804 audit(4294968222.929:14): pid=12634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1893" name=2F6E6577726F6F742F3436322F3531310A dev="tmpfs" ino=2438 res=1 errno=0
[  545.216586][   T30] audit: type=1800 audit(4294968222.959:15): pid=12634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1893" name=3531310A dev="tmpfs" ino=2438 res=0 errno=0
[  545.826959][T12637] zswap: compressor  not available
[  547.355288][T12656] FAULT_INJECTION: forcing a failure.
[  547.355288][T12656] name fail_futex, interval 1, probability 0, space 0, times 0
[  547.428552][T12656] CPU: 0 UID: 0 PID: 12656 Comm: syz.2.1896 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  547.428585][T12656] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  547.428593][T12656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  547.428602][T12656] Call Trace:
[  547.428608][T12656]  <TASK>
[  547.428613][T12656]  dump_stack_lvl+0x16c/0x1f0
[  547.428636][T12656]  should_fail_ex+0x512/0x640
[  547.428655][T12656]  get_futex_key+0x1d0/0x15f0
[  547.428675][T12656]  ? __pfx_get_futex_key+0x10/0x10
[  547.428696][T12656]  futex_wake+0xea/0x530
[  547.428712][T12656]  ? lockdep_hardirqs_on+0x7c/0x110
[  547.428731][T12656]  ? __pfx_futex_wake+0x10/0x10
[  547.428748][T12656]  ? kmem_cache_free+0x328/0x7d0
[  547.428763][T12656]  ? getname_flags.part.0+0x24c/0x550
[  547.428781][T12656]  ? getname_flags.part.0+0x24c/0x550
[  547.428793][T12656]  ? getname_flags.part.0+0x1c5/0x550
[  547.428812][T12656]  do_futex+0x1e3/0x350
[  547.428828][T12656]  ? __pfx_do_futex+0x10/0x10
[  547.428849][T12656]  __x64_sys_futex+0x1e0/0x4c0
[  547.428867][T12656]  ? __x64_sys_openat+0x174/0x210
[  547.428884][T12656]  ? __pfx___x64_sys_futex+0x10/0x10
[  547.428900][T12656]  ? xfd_validate_state+0x61/0x180
[  547.428926][T12656]  do_syscall_64+0xcd/0xf80
[  547.428943][T12656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  547.428957][T12656] RIP: 0033:0x7fbd00f8f7c9
[  547.428969][T12656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  547.428982][T12656] RSP: 002b:00007fbd01ead0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  547.428995][T12656] RAX: ffffffffffffffda RBX: 00007fbd011e6098 RCX: 00007fbd00f8f7c9
[  547.429004][T12656] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbd011e609c
[  547.429012][T12656] RBP: 00007fbd011e6090 R08: 00007fbd01ecf000 R09: 0000000000000000
[  547.429021][T12656] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  547.429029][T12656] R13: 00007fbd011e6128 R14: 00007ffe558ff0b0 R15: 00007ffe558ff198
[  547.429047][T12656]  </TASK>
[  547.875810][T12653] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17
[  551.098453][T12690] serio: Serial port ttyS2
[  553.397119][T12703] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1910'.
[  554.738184][ T5844] Bluetooth: hci1: unexpected event 0x0e length: 440 > 260
[  554.739127][ T5844] Bluetooth: hci1: unexpected event for opcode 0x0f00
[  555.474194][T12743] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1921'.
[  555.971505][T12749] random: crng reseeded on system resumption
[  556.105851][T12750] hub 1-0:1.0: USB hub found
[  556.175234][T12750] hub 1-0:1.0: 1 port detected
[  556.228947][T12749] Restarting kernel threads ...
[  556.318419][T12749] Done restarting kernel threads.
[  557.418333][T12773] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1927'.
[  557.578015][T12779] netlink: 93 bytes leftover after parsing attributes in process `syz.2.1927'.
[  558.304755][T12786] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  558.346241][T12763] kexec: Could not allocate control_code_buffer
[  558.372927][T12786] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  558.788661][ T5844] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  558.798047][ T5844] Bluetooth: hci1: Injecting HCI hardware error event
[  558.806252][ T5844] Bluetooth: hci1: hardware error 0x00
[  559.315107][T12357] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  559.315133][T12357] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  559.331344][T12357] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  559.331391][T12357] Bluetooth: hci1: adv larger than maximum supported
[  559.338782][T12357] Bluetooth: hci1: adv larger than maximum supported
[  559.345511][T12357] Bluetooth: hci1: Malformed LE Event: 0x0d
[  560.866834][ T5844] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  561.205725][T12821] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1938'.
[  564.334647][T12847] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  564.384710][T12847] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  564.427147][T12847] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  564.826550][T12863] netlink: 'syz.2.1949': attribute type 1 has an invalid length.
[  565.170565][T12850] FAULT_INJECTION: forcing a failure.
[  565.170565][T12850] name failslab, interval 1, probability 0, space 0, times 0
[  565.389086][T12850] CPU: 0 UID: 0 PID: 12850 Comm: syz.0.1948 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  565.389134][T12850] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  565.389142][T12850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  565.389151][T12850] Call Trace:
[  565.389157][T12850]  <TASK>
[  565.389163][T12850]  dump_stack_lvl+0x16c/0x1f0
[  565.389192][T12850]  should_fail_ex+0x512/0x640
[  565.389210][T12850]  ? kmem_cache_alloc_noprof+0x62/0x720
[  565.389228][T12850]  should_failslab+0xc2/0x120
[  565.389250][T12850]  kmem_cache_alloc_noprof+0x75/0x720
[  565.389265][T12850]  ? __anon_vma_prepare+0x344/0x5e0
[  565.389282][T12850]  ? __anon_vma_prepare+0x344/0x5e0
[  565.389293][T12850]  __anon_vma_prepare+0x344/0x5e0
[  565.389305][T12850]  ? __pfx___pte_alloc+0x10/0x10
[  565.389319][T12850]  ? __lock_acquire+0x433/0x22f0
[  565.389336][T12850]  __vmf_anon_prepare+0x11c/0x240
[  565.389355][T12850]  do_pte_missing+0x10f2/0x4000
[  565.389374][T12850]  ? mtree_range_walk+0x718/0xc00
[  565.389387][T12850]  ? pgd_none+0x9f/0xe0
[  565.389399][T12850]  ? __pfx_pgd_none+0x10/0x10
[  565.389410][T12850]  ? find_held_lock+0x2b/0x80
[  565.389431][T12850]  __handle_mm_fault+0x14ca/0x2a30
[  565.389456][T12850]  ? __pfx___handle_mm_fault+0x10/0x10
[  565.389495][T12850]  handle_mm_fault+0x3fe/0xad0
[  565.389519][T12850]  __get_user_pages+0x605/0x33c0
[  565.389544][T12850]  ? __pfx___get_user_pages+0x10/0x10
[  565.389567][T12850]  populate_vma_page_range+0x267/0x3f0
[  565.389586][T12850]  ? __pfx_populate_vma_page_range+0x10/0x10
[  565.389605][T12850]  ? __pfx_find_vma_intersection+0x10/0x10
[  565.389622][T12850]  ? do_mmap+0x69c/0x1210
[  565.389640][T12850]  __mm_populate+0x1d8/0x380
[  565.389659][T12850]  ? __pfx___mm_populate+0x10/0x10
[  565.389678][T12850]  ? up_write+0x282/0x4e0
[  565.389696][T12850]  vm_mmap_pgoff+0x37f/0x470
[  565.389722][T12850]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  565.389744][T12850]  ? __x64_sys_futex+0x1e0/0x4c0
[  565.389763][T12850]  ? __x64_sys_futex+0x1e9/0x4c0
[  565.389783][T12850]  ksys_mmap_pgoff+0x7d/0x5c0
[  565.389808][T12850]  ? xfd_validate_state+0x61/0x180
[  565.389829][T12850]  ? __pfx_do_writev+0x10/0x10
[  565.389849][T12850]  __x64_sys_mmap+0x125/0x190
[  565.389864][T12850]  do_syscall_64+0xcd/0xf80
[  565.389883][T12850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  565.389897][T12850] RIP: 0033:0x7f992038f7c9
[  565.389909][T12850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  565.389923][T12850] RSP: 002b:00007f99212ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  565.389937][T12850] RAX: ffffffffffffffda RBX: 00007f99205e5fa0 RCX: 00007f992038f7c9
[  565.389946][T12850] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  565.389955][T12850] RBP: 00007f9920413f91 R08: 0000000000000002 R09: 0000000000008000
[  565.389963][T12850] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  565.389972][T12850] R13: 00007f99205e6038 R14: 00007f99205e5fa0 R15: 00007fff5172e398
[  565.389991][T12850]  </TASK>
[  566.166991][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout
[  566.503718][T12357] Bluetooth: hci3: command 0x0c1a tx timeout
[  566.510647][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout
[  568.070482][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  568.076947][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  568.972740][T12876] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  569.013261][T12876] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  569.061039][T12876] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  569.267072][T12357] Bluetooth: hci0: command 0x0c1a tx timeout
[  570.100648][T12924] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1964'.
[  570.979918][T12936] device-mapper: ioctl: Unable to rename non-existent device,  to uuid �
[  571.026408][T12357] Bluetooth: hci2: command 0x0c1a tx timeout
[  571.106436][T12357] Bluetooth: hci3: command 0x0c1a tx timeout
[  571.216927][T12938] ubi: mtd0 is already attached to ubi31
[  571.568642][T12946] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1971'.
[  571.655464][T12951] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1971'.
[  572.361463][T12956] FAULT_INJECTION: forcing a failure.
[  572.361463][T12956] name failslab, interval 1, probability 0, space 0, times 0
[  572.688782][T12956] CPU: 0 UID: 0 PID: 12956 Comm: syz.3.1974 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  572.688818][T12956] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  572.688825][T12956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  572.688834][T12956] Call Trace:
[  572.688839][T12956]  <TASK>
[  572.688845][T12956]  dump_stack_lvl+0x16c/0x1f0
[  572.688867][T12956]  should_fail_ex+0x512/0x640
[  572.688884][T12956]  ? kmem_cache_alloc_noprof+0x62/0x720
[  572.688902][T12956]  should_failslab+0xc2/0x120
[  572.688922][T12956]  kmem_cache_alloc_noprof+0x75/0x720
[  572.688937][T12956]  ? __kernfs_new_node+0xd2/0x8d0
[  572.688957][T12956]  ? __kernfs_new_node+0xd2/0x8d0
[  572.688970][T12956]  __kernfs_new_node+0xd2/0x8d0
[  572.688987][T12956]  ? __pfx___kernfs_new_node+0x10/0x10
[  572.689007][T12956]  ? find_held_lock+0x2b/0x80
[  572.689027][T12956]  ? kernfs_root+0xee/0x2a0
[  572.689045][T12956]  kernfs_new_node+0x13c/0x1e0
[  572.689066][T12956]  __kernfs_create_file+0x53/0x350
[  572.689088][T12956]  sysfs_add_file_mode_ns+0x207/0x3c0
[  572.689107][T12956]  sysfs_merge_group+0x1aa/0x340
[  572.689124][T12956]  ? __pfx_sysfs_merge_group+0x10/0x10
[  572.689142][T12956]  ? __pfx_dev_add_physical_location+0x10/0x10
[  572.689157][T12956]  ? bus_to_subsys+0x131/0x160
[  572.689176][T12956]  dpm_sysfs_add+0x237/0x280
[  572.689191][T12956]  device_add+0x9a6/0x1950
[  572.689207][T12956]  ? __pfx_device_add+0x10/0x10
[  572.689220][T12956]  ? lockdep_init_map_type+0x5c/0x270
[  572.689245][T12956]  ? __init_waitqueue_head+0xca/0x150
[  572.689268][T12956]  rfkill_register+0x1ad/0xb40
[  572.689285][T12956]  nfc_register_device+0x11f/0x3c0
[  572.689304][T12956]  nci_register_device+0x7f1/0xb80
[  572.689319][T12956]  ? __pfx_nci_register_device+0x10/0x10
[  572.689335][T12956]  ? lockdep_init_map_type+0x5c/0x270
[  572.689353][T12956]  virtual_ncidev_open+0x141/0x220
[  572.689371][T12956]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  572.689387][T12956]  misc_open+0x26d/0x450
[  572.689403][T12956]  ? __pfx_misc_open+0x10/0x10
[  572.689417][T12956]  chrdev_open+0x234/0x6a0
[  572.689436][T12956]  ? __pfx_apparmor_file_open+0x10/0x10
[  572.689452][T12956]  ? __pfx_chrdev_open+0x10/0x10
[  572.689471][T12956]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  572.689495][T12956]  do_dentry_open+0x748/0x1590
[  572.689512][T12956]  ? __pfx_chrdev_open+0x10/0x10
[  572.689536][T12956]  vfs_open+0x82/0x3f0
[  572.689551][T12956]  path_openat+0x2078/0x3140
[  572.689576][T12956]  ? __pfx_path_openat+0x10/0x10
[  572.689602][T12956]  do_filp_open+0x20b/0x470
[  572.689620][T12956]  ? __pfx_do_filp_open+0x10/0x10
[  572.689654][T12956]  ? alloc_fd+0x471/0x7d0
[  572.689677][T12956]  do_sys_openat2+0x11f/0x280
[  572.689691][T12956]  ? __pfx_do_sys_openat2+0x10/0x10
[  572.689713][T12956]  __x64_sys_openat+0x174/0x210
[  572.689728][T12956]  ? __pfx___x64_sys_openat+0x10/0x10
[  572.689750][T12956]  do_syscall_64+0xcd/0xf80
[  572.689767][T12956]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.689781][T12956] RIP: 0033:0x7fb195d8f7c9
[  572.689794][T12956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.689807][T12956] RSP: 002b:00007fb196cd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  572.689821][T12956] RAX: ffffffffffffffda RBX: 00007fb195fe5fa0 RCX: 00007fb195d8f7c9
[  572.689830][T12956] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  572.689839][T12956] RBP: 00007fb195e13f91 R08: 0000000000000000 R09: 0000000000000000
[  572.689847][T12956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  572.689855][T12956] R13: 00007fb195fe6038 R14: 00007fb195fe5fa0 R15: 00007ffdb87cc1b8
[  572.689875][T12956]  </TASK>
[  574.246685][T12973] tipc: Started in network mode
[  574.251807][T12973] tipc: Node identity ffffffff, cluster identity 4711
[  574.279731][T12976] ubi: mtd0 is already attached to ubi31
[  574.291484][T12973] tipc: Node number set to 4294967295
[  574.466078][T12979] vivid-007: =================  START STATUS  =================
[  574.535797][T12979] vivid-007: Generate PTS: true
[  574.545925][T12979] vivid-007: Generate SCR: true
[  574.566480][T12979] tpg source WxH: 320x240 (Y'CbCr)
[  574.571612][T12979] tpg field: 1
[  574.574965][T12979] tpg crop: (0,0)/320x240
[  574.636840][T12979] tpg compose: (0,0)/320x240
[  574.646940][T12979] tpg colorspace: 8
[  574.650767][T12979] tpg transfer function: 0/0
[  574.657045][T12979] tpg Y'CbCr encoding: 0/0
[  574.661455][T12979] tpg quantization: 0/0
[  574.736146][T12979] tpg RGB range: 0/2
[  574.767752][T12979] vivid-007: ==================  END STATUS  ==================
[  576.115658][T12993] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1982'.
[  576.635940][T12998] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1983'.
[  577.709400][T13011] input: f�
 as /devices/virtual/input/input19
[  578.072015][T13019] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1990'.
[  578.121618][T13014] FAULT_INJECTION: forcing a failure.
[  578.121618][T13014] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  578.137754][T13020] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1990'.
[  578.208030][T13014] CPU: 0 UID: 0 PID: 13014 Comm: syz.1.1989 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  578.208065][T13014] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  578.208073][T13014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  578.208082][T13014] Call Trace:
[  578.208087][T13014]  <TASK>
[  578.208093][T13014]  dump_stack_lvl+0x16c/0x1f0
[  578.208114][T13014]  should_fail_ex+0x512/0x640
[  578.208134][T13014]  should_fail_alloc_page+0xe7/0x130
[  578.208157][T13014]  prepare_alloc_pages+0x3c2/0x610
[  578.208176][T13014]  ? finish_task_switch.isra.0+0x202/0xbc0
[  578.208199][T13014]  __alloc_frozen_pages_noprof+0x18b/0x2440
[  578.208213][T13014]  ? lockdep_hardirqs_on+0x7c/0x110
[  578.208230][T13014]  ? finish_task_switch.isra.0+0x207/0xbc0
[  578.208249][T13014]  ? rcu_is_watching+0x12/0xc0
[  578.208268][T13014]  ? trace_sched_exit_tp+0xd1/0x110
[  578.208280][T13014]  ? __schedule+0x10b9/0x6150
[  578.208294][T13014]  ? __schedule+0x114c/0x6150
[  578.208310][T13014]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  578.208324][T13014]  ? __lock_acquire+0x433/0x22f0
[  578.208348][T13014]  ? find_held_lock+0x2b/0x80
[  578.208367][T13014]  ? aa_file_perm+0x29f/0x1560
[  578.208385][T13014]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  578.208407][T13014]  ? policy_nodemask+0xea/0x4e0
[  578.208431][T13014]  alloc_pages_mpol+0x1fb/0x550
[  578.208452][T13014]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  578.208471][T13014]  ? __pfx_aa_file_perm+0x10/0x10
[  578.208491][T13014]  ? __lock_acquire+0x433/0x22f0
[  578.208508][T13014]  ___kmalloc_large_node+0xed/0x160
[  578.208530][T13014]  __kmalloc_large_noprof+0x1c/0x70
[  578.208550][T13014]  nsim_dev_take_snapshot_write+0xa6/0x1f0
[  578.208567][T13014]  ? __debugfs_file_get+0x1fe/0x840
[  578.208581][T13014]  ? __pfx_nsim_dev_take_snapshot_write+0x10/0x10
[  578.208603][T13014]  full_proxy_write+0x131/0x1a0
[  578.208619][T13014]  ? __pfx_full_proxy_write+0x10/0x10
[  578.208632][T13014]  vfs_write+0x2a0/0x11d0
[  578.208651][T13014]  ? __pfx___mutex_lock+0x10/0x10
[  578.208670][T13014]  ? __pfx_vfs_write+0x10/0x10
[  578.208692][T13014]  ? __fget_files+0x20e/0x3c0
[  578.208715][T13014]  ksys_write+0x12a/0x250
[  578.208732][T13014]  ? __pfx_ksys_write+0x10/0x10
[  578.208763][T13014]  do_syscall_64+0xcd/0xf80
[  578.208782][T13014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  578.208797][T13014] RIP: 0033:0x7f2bf638f7c9
[  578.208809][T13014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  578.208823][T13014] RSP: 002b:00007f2bf7164038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  578.208837][T13014] RAX: ffffffffffffffda RBX: 00007f2bf65e6090 RCX: 00007f2bf638f7c9
[  578.208846][T13014] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[  578.208854][T13014] RBP: 00007f2bf6413f91 R08: 0000000000000000 R09: 0000000000000000
[  578.208863][T13014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  578.208871][T13014] R13: 00007f2bf65e6128 R14: 00007f2bf65e6090 R15: 00007ffef08556d8
[  578.208892][T13014]  </TASK>
[  578.519635][    C0] vkms_vblank_simulate: vblank timer overrun
[  580.327280][T13034] FAULT_INJECTION: forcing a failure.
[  580.327280][T13034] name failslab, interval 1, probability 0, space 0, times 0
[  580.499651][T13034] CPU: 0 UID: 0 PID: 13034 Comm: syz.0.1994 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  580.499685][T13034] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  580.499693][T13034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  580.499702][T13034] Call Trace:
[  580.499707][T13034]  <TASK>
[  580.499713][T13034]  dump_stack_lvl+0x16c/0x1f0
[  580.499736][T13034]  should_fail_ex+0x512/0x640
[  580.499753][T13034]  ? __kmalloc_cache_noprof+0x5f/0x770
[  580.499770][T13034]  should_failslab+0xc2/0x120
[  580.499790][T13034]  __kmalloc_cache_noprof+0x72/0x770
[  580.499804][T13034]  ? vhost_net_open+0xb9/0x8a0
[  580.499822][T13034]  ? vhost_net_open+0xb9/0x8a0
[  580.499835][T13034]  vhost_net_open+0xb9/0x8a0
[  580.499849][T13034]  ? __pfx_vhost_net_open+0x10/0x10
[  580.499863][T13034]  misc_open+0x26d/0x450
[  580.499879][T13034]  ? __pfx_misc_open+0x10/0x10
[  580.499894][T13034]  chrdev_open+0x234/0x6a0
[  580.499913][T13034]  ? __pfx_apparmor_file_open+0x10/0x10
[  580.499930][T13034]  ? __pfx_chrdev_open+0x10/0x10
[  580.499949][T13034]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  580.499973][T13034]  do_dentry_open+0x748/0x1590
[  580.499991][T13034]  ? __pfx_chrdev_open+0x10/0x10
[  580.500016][T13034]  vfs_open+0x82/0x3f0
[  580.500031][T13034]  path_openat+0x2078/0x3140
[  580.500056][T13034]  ? __pfx_path_openat+0x10/0x10
[  580.500081][T13034]  do_filp_open+0x20b/0x470
[  580.500100][T13034]  ? __pfx_do_filp_open+0x10/0x10
[  580.500132][T13034]  ? alloc_fd+0x471/0x7d0
[  580.500155][T13034]  do_sys_openat2+0x11f/0x280
[  580.500169][T13034]  ? __pfx_do_sys_openat2+0x10/0x10
[  580.500189][T13034]  __x64_sys_openat+0x174/0x210
[  580.500204][T13034]  ? __pfx___x64_sys_openat+0x10/0x10
[  580.500225][T13034]  do_syscall_64+0xcd/0xf80
[  580.500243][T13034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.500258][T13034] RIP: 0033:0x7f992038f7c9
[  580.500269][T13034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  580.500283][T13034] RSP: 002b:00007f99212ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  580.500297][T13034] RAX: ffffffffffffffda RBX: 00007f99205e5fa0 RCX: 00007f992038f7c9
[  580.500306][T13034] RDX: 0000000000101600 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  580.500315][T13034] RBP: 00007f9920413f91 R08: 0000000000000000 R09: 0000000000000000
[  580.500324][T13034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  580.500332][T13034] R13: 00007f99205e6038 R14: 00007f99205e5fa0 R15: 00007fff5172e398
[  580.500352][T13034]  </TASK>
[  580.760195][    C0] vkms_vblank_simulate: vblank timer overrun
[  584.247752][T13098] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2005'.
[  584.342519][T13098] netlink: 354 bytes leftover after parsing attributes in process `syz.2.2005'.
[  584.680384][T13106] ubi: mtd0 is already attached to ubi31
[  585.117978][T13110] FAULT_INJECTION: forcing a failure.
[  585.117978][T13110] name failslab, interval 1, probability 0, space 0, times 0
[  585.232116][T13110] CPU: 0 UID: 0 PID: 13110 Comm: syz.1.2007 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  585.232159][T13110] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  585.232167][T13110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  585.232176][T13110] Call Trace:
[  585.232182][T13110]  <TASK>
[  585.232188][T13110]  dump_stack_lvl+0x16c/0x1f0
[  585.232208][T13110]  should_fail_ex+0x512/0x640
[  585.232226][T13110]  ? __kmalloc_cache_noprof+0x5f/0x770
[  585.232243][T13110]  should_failslab+0xc2/0x120
[  585.232264][T13110]  __kmalloc_cache_noprof+0x72/0x770
[  585.232278][T13110]  ? vhost_net_open+0xb9/0x8a0
[  585.232296][T13110]  ? vhost_net_open+0xb9/0x8a0
[  585.232309][T13110]  vhost_net_open+0xb9/0x8a0
[  585.232322][T13110]  ? __pfx_vhost_net_open+0x10/0x10
[  585.232337][T13110]  misc_open+0x26d/0x450
[  585.232353][T13110]  ? __pfx_misc_open+0x10/0x10
[  585.232368][T13110]  chrdev_open+0x234/0x6a0
[  585.232388][T13110]  ? __pfx_apparmor_file_open+0x10/0x10
[  585.232404][T13110]  ? __pfx_chrdev_open+0x10/0x10
[  585.232424][T13110]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  585.232448][T13110]  do_dentry_open+0x748/0x1590
[  585.232466][T13110]  ? __pfx_chrdev_open+0x10/0x10
[  585.232490][T13110]  vfs_open+0x82/0x3f0
[  585.232506][T13110]  path_openat+0x2078/0x3140
[  585.232531][T13110]  ? __pfx_path_openat+0x10/0x10
[  585.232556][T13110]  do_filp_open+0x20b/0x470
[  585.232575][T13110]  ? __pfx_do_filp_open+0x10/0x10
[  585.232607][T13110]  ? alloc_fd+0x471/0x7d0
[  585.232630][T13110]  do_sys_openat2+0x11f/0x280
[  585.232644][T13110]  ? __pfx_do_sys_openat2+0x10/0x10
[  585.232666][T13110]  __x64_sys_openat+0x174/0x210
[  585.232680][T13110]  ? __pfx___x64_sys_openat+0x10/0x10
[  585.232701][T13110]  do_syscall_64+0xcd/0xf80
[  585.232719][T13110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  585.232734][T13110] RIP: 0033:0x7f2bf638f7c9
[  585.232746][T13110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  585.232759][T13110] RSP: 002b:00007f2bf7185038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  585.232772][T13110] RAX: ffffffffffffffda RBX: 00007f2bf65e5fa0 RCX: 00007f2bf638f7c9
[  585.232782][T13110] RDX: 0000000000101600 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  585.232792][T13110] RBP: 00007f2bf6413f91 R08: 0000000000000000 R09: 0000000000000000
[  585.232801][T13110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  585.232809][T13110] R13: 00007f2bf65e6038 R14: 00007f2bf65e5fa0 R15: 00007ffef08556d8
[  585.232829][T13110]  </TASK>
[  586.004693][T13119] Invalid ELF header magic: != ELF
[  589.697417][T13185] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  590.014911][T13196] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2028'.
[  591.751513][T13237] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2035'.
[  591.895777][T13225] zswap: compressor  not available
[  592.697034][T13258] netlink: 17 bytes leftover after parsing attributes in process `syz.2.2038'.
[  594.086988][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  596.147361][ T5844] Bluetooth: hci4: command 0xfc11 tx timeout
[  596.154619][T12357] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  596.307624][T13293] netlink: 13 bytes leftover after parsing attributes in process `syz.1.2045'.
[  596.955903][T13304] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2048'.
[  597.067356][T13309] netlink: 'syz.1.2048': attribute type 1 has an invalid length.
[  597.150261][T13309] netlink: 5 bytes leftover after parsing attributes in process `syz.1.2048'.
[  597.646503][T13314] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20
[  598.506932][T13324] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2054'.
[  598.950171][T13336] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2056'.
[  599.540697][T13342] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2059'.
[  599.852729][T13348] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2061'.
[  600.098414][T13353] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2063'.
[  600.446550][T13361] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21
[  600.774510][T13365] vcan0: tx drop: invalid sa for name 0x00000000000000fd
[  601.758673][T13377] netlink: 17 bytes leftover after parsing attributes in process `syz.2.2070'.
[  603.026569][T13396] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22
[  604.738666][T13414] netlink: 9 bytes leftover after parsing attributes in process `syz.2.2088'.
[  605.527598][T13424] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2091'.
[  607.515856][ T5844] Bluetooth: hci4: command 0xfc11 tx timeout
[  607.524390][T12357] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  608.641245][T13460] netlink: 17 bytes leftover after parsing attributes in process `syz.3.2082'.
[  609.026140][T13465] netlink: zone id is out of range
[  609.116440][T13465] netlink: del zone limit has 4 unknown bytes
[  610.349009][T13484] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2097'.
[  610.804721][T13485] mkiss: ax0: crc mode is auto.
[  611.141968][T13489] queue_state_write: operation too long
[  611.189469][T13489] queue_state_write: use 'run', 'start' or 'kick'
[  611.859329][T13502] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2109'.
[  612.727819][T13502] bridge0: port 2(bridge_slave_1) entered disabled state
[  612.937828][T13502] bridge_slave_1 (unregistering): left allmulticast mode
[  613.054803][T13502] bridge_slave_1 (unregistering): left promiscuous mode
[  613.129743][T13502] bridge0: port 2(bridge_slave_1) entered disabled state
[  613.531249][T13508] Invalid ELF header magic: != ELF
[  613.769188][T13507] delete_channel: no stack
[  614.374108][T13511] Invalid ELF header magic: != ELF
[  614.736001][T13516] input: f�
 as /devices/virtual/input/input23
[  614.823770][T13515] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2103'.
[  614.926571][T13515] bridge_slave_1: left allmulticast mode
[  614.960365][T13515] bridge_slave_1: left promiscuous mode
[  614.996790][T13515] bridge0: port 2(bridge_slave_1) entered disabled state
[  615.109785][T13515] bridge_slave_0: left allmulticast mode
[  615.149748][T13515] bridge_slave_0: left promiscuous mode
[  615.180783][T13515] bridge0: port 1(bridge_slave_0) entered disabled state
[  616.155041][T13521] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2105'.
[  616.253973][T13526] netlink: 5 bytes leftover after parsing attributes in process `syz.3.2105'.
[  616.898391][T13535] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  617.415092][T13535] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  618.462264][T13556] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2114'.
[  620.727881][T13585] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2121'.
[  620.805847][T13585] : renamed from veth1_vlan (while UP)
[  620.857653][T13589] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  621.010643][T13585] : entered allmulticast mode
[  621.234081][T13589] CIFS mount error: No usable UNC path provided in device string!
[  621.234081][T13589] 
[  621.367848][T13589] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  622.423344][T13610] mkiss: ax0: crc mode is auto.
[  622.595725][T13615] queue_state_write: operation too long
[  622.726401][T13615] queue_state_write: use 'run', 'start' or 'kick'
[  622.784888][T13618] FAULT_INJECTION: forcing a failure.
[  622.784888][T13618] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  622.895640][T13618] CPU: 0 UID: 0 PID: 13618 Comm: syz.1.2127 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  622.895675][T13618] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  622.895683][T13618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  622.895692][T13618] Call Trace:
[  622.895698][T13618]  <TASK>
[  622.895704][T13618]  dump_stack_lvl+0x16c/0x1f0
[  622.895727][T13618]  should_fail_ex+0x512/0x640
[  622.895748][T13618]  should_fail_alloc_page+0xe7/0x130
[  622.895770][T13618]  prepare_alloc_pages+0x3c2/0x610
[  622.895793][T13618]  __alloc_frozen_pages_noprof+0x18b/0x2440
[  622.895817][T13618]  ? __lock_acquire+0x433/0x22f0
[  622.895832][T13618]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  622.895855][T13618]  ? __pfx___might_resched+0x10/0x10
[  622.895875][T13618]  ? rcu_is_watching+0x12/0xc0
[  622.895894][T13618]  ? trace_contention_end+0xdd/0x110
[  622.895908][T13618]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  622.895929][T13618]  ? policy_nodemask+0xea/0x4e0
[  622.895949][T13618]  alloc_pages_mpol+0x1fb/0x550
[  622.895968][T13618]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  622.895994][T13618]  ? __lock_acquire+0x433/0x22f0
[  622.896014][T13618]  ___kmalloc_large_node+0xed/0x160
[  622.896038][T13618]  __kmalloc_large_noprof+0x1c/0x70
[  622.896059][T13618]  uhid_char_open+0x24/0x250
[  622.896077][T13618]  ? __pfx_uhid_char_open+0x10/0x10
[  622.896093][T13618]  misc_open+0x26d/0x450
[  622.896109][T13618]  ? __pfx_misc_open+0x10/0x10
[  622.896123][T13618]  chrdev_open+0x234/0x6a0
[  622.896142][T13618]  ? __pfx_apparmor_file_open+0x10/0x10
[  622.896158][T13618]  ? __pfx_chrdev_open+0x10/0x10
[  622.896178][T13618]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  622.896201][T13618]  do_dentry_open+0x748/0x1590
[  622.896218][T13618]  ? __pfx_chrdev_open+0x10/0x10
[  622.896242][T13618]  vfs_open+0x82/0x3f0
[  622.896257][T13618]  path_openat+0x2078/0x3140
[  622.896285][T13618]  ? __pfx_path_openat+0x10/0x10
[  622.896311][T13618]  do_filp_open+0x20b/0x470
[  622.896329][T13618]  ? __pfx_do_filp_open+0x10/0x10
[  622.896362][T13618]  ? alloc_fd+0x471/0x7d0
[  622.896387][T13618]  do_sys_openat2+0x11f/0x280
[  622.896401][T13618]  ? __pfx_do_sys_openat2+0x10/0x10
[  622.896415][T13618]  ? find_held_lock+0x2b/0x80
[  622.896438][T13618]  __x64_sys_openat+0x174/0x210
[  622.896452][T13618]  ? __pfx___x64_sys_openat+0x10/0x10
[  622.896474][T13618]  do_syscall_64+0xcd/0xf80
[  622.896492][T13618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  622.896506][T13618] RIP: 0033:0x7f2bf638f7c9
[  622.896518][T13618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  622.896532][T13618] RSP: 002b:00007f2bf7164038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  622.896546][T13618] RAX: ffffffffffffffda RBX: 00007f2bf65e6090 RCX: 00007f2bf638f7c9
[  622.896555][T13618] RDX: 0000000000002201 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  622.896563][T13618] RBP: 00007f2bf6413f91 R08: 0000000000000000 R09: 0000000000000000
[  622.896571][T13618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  622.896579][T13618] R13: 00007f2bf65e6128 R14: 00007f2bf65e6090 R15: 00007ffef08556d8
[  622.896599][T13618]  </TASK>
[  625.314986][T13636] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2129'.
[  628.075250][T13657] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2136'.
[  628.577323][T13663] FAULT_INJECTION: forcing a failure.
[  628.577323][T13663] name failslab, interval 1, probability 0, space 0, times 0
[  628.763541][T13663] CPU: 0 UID: 0 PID: 13663 Comm: syz.3.2137 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  628.763577][T13663] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  628.763590][T13663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  628.763599][T13663] Call Trace:
[  628.763604][T13663]  <TASK>
[  628.763610][T13663]  dump_stack_lvl+0x16c/0x1f0
[  628.763633][T13663]  should_fail_ex+0x512/0x640
[  628.763650][T13663]  ? __kmalloc_cache_noprof+0x5f/0x770
[  628.763667][T13663]  should_failslab+0xc2/0x120
[  628.763689][T13663]  __kmalloc_cache_noprof+0x72/0x770
[  628.763703][T13663]  ? drm_atomic_helper_connector_duplicate_state+0x70/0xd0
[  628.763726][T13663]  ? drm_atomic_helper_connector_duplicate_state+0x70/0xd0
[  628.763743][T13663]  drm_atomic_helper_connector_duplicate_state+0x70/0xd0
[  628.763761][T13663]  drm_atomic_get_connector_state+0x396/0x750
[  628.763781][T13663]  drm_atomic_add_affected_connectors+0x2e0/0x3f0
[  628.763798][T13663]  ? __pfx_drm_atomic_add_affected_connectors+0x10/0x10
[  628.763815][T13663]  ? modeset_lock+0x114/0x6d0
[  628.763839][T13663]  __drm_atomic_helper_set_config+0x5ef/0xea0
[  628.763857][T13663]  ? __pfx___drm_atomic_helper_set_config+0x10/0x10
[  628.763876][T13663]  ? drm_client_rotation+0x4da/0x6a0
[  628.763894][T13663]  drm_client_modeset_commit_atomic+0x53d/0x7e0
[  628.763915][T13663]  ? __mutex_lock+0x27b/0x1b10
[  628.763932][T13663]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  628.763947][T13663]  ? trace_contention_end+0xdd/0x110
[  628.763983][T13663]  drm_client_modeset_commit_locked+0x14d/0x580
[  628.764002][T13663]  drm_client_modeset_commit+0x4f/0x80
[  628.764018][T13663]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[  628.764034][T13663]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  628.764054][T13663]  drm_fbdev_client_restore+0x2c/0x40
[  628.764073][T13663]  drm_client_dev_restore+0x1f6/0x2a0
[  628.764086][T13663]  ? drm_close_helper.isra.0+0x186/0x1f0
[  628.764104][T13663]  drm_release+0x2c4/0x360
[  628.764120][T13663]  ? __pfx_drm_release+0x10/0x10
[  628.764132][T13663]  __fput+0x402/0xb70
[  628.764151][T13663]  task_work_run+0x150/0x240
[  628.764168][T13663]  ? __pfx_task_work_run+0x10/0x10
[  628.764182][T13663]  ? __do_sys_close_range+0x278/0x730
[  628.764207][T13663]  exit_to_user_mode_loop+0xfb/0x540
[  628.764227][T13663]  do_syscall_64+0x4ee/0xf80
[  628.764245][T13663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  628.764259][T13663] RIP: 0033:0x7fb195d8f7c9
[  628.764272][T13663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  628.764285][T13663] RSP: 002b:00007fb196cb4038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  628.764299][T13663] RAX: 0000000000000000 RBX: 00007fb195fe6090 RCX: 00007fb195d8f7c9
[  628.764308][T13663] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  628.764316][T13663] RBP: 00007fb195e13f91 R08: 0000000000000000 R09: 0000000000000000
[  628.764325][T13663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  628.764333][T13663] R13: 00007fb195fe6128 R14: 00007fb195fe6090 R15: 00007ffdb87cc1b8
[  628.764354][T13663]  </TASK>
[  629.600345][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  629.618898][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  631.167769][T13694] netlink: 'syz.1.2144': attribute type 2 has an invalid length.
[  631.227111][T13694] netlink: 'syz.1.2144': attribute type 3 has an invalid length.
[  631.269620][T13694] netlink: 'syz.1.2144': attribute type 2 has an invalid length.
[  631.316382][T13694] netlink: 'syz.1.2144': attribute type 3 has an invalid length.
[  631.371753][T13694] netlink: 30 bytes leftover after parsing attributes in process `syz.1.2144'.
[  632.063041][T13701] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  633.606549][T13730] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2153'.
[  633.832536][T13734] netlink: 11 bytes leftover after parsing attributes in process `syz.3.2155'.
[  635.961345][T13766] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2163'.
[  636.066500][T12357] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  636.417807][T13769] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2165'.
[  636.537724][T13774] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2168'.
[  636.821561][T13780] mmap: syz.0.2170 (13780): VmData 45883392 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data.
[  637.439022][T13793] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2174'.
[  637.733600][T13797] ima: policy update failed
[  637.765570][   T30] audit: type=1802 audit(4294967391.369:16): pid=13797 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2175" res=0 errno=0
[  637.790062][T13797] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2175'.
[  638.532131][T13803] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input24
[  638.955055][T13810] FAULT_INJECTION: forcing a failure.
[  638.955055][T13810] name failslab, interval 1, probability 0, space 0, times 0
[  639.021752][T13810] CPU: 0 UID: 0 PID: 13810 Comm: syz.0.2180 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  639.021788][T13810] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  639.021796][T13810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  639.021804][T13810] Call Trace:
[  639.021810][T13810]  <TASK>
[  639.021815][T13810]  dump_stack_lvl+0x16c/0x1f0
[  639.021838][T13810]  should_fail_ex+0x512/0x640
[  639.021856][T13810]  ? __kmalloc_noprof+0xca/0x870
[  639.021871][T13810]  should_failslab+0xc2/0x120
[  639.021891][T13810]  __kmalloc_noprof+0xdd/0x870
[  639.021909][T13810]  ? __lock_acquire+0x433/0x22f0
[  639.021925][T13810]  ? sk_prot_alloc+0x1a8/0x2a0
[  639.021947][T13810]  ? sk_prot_alloc+0x1a8/0x2a0
[  639.021964][T13810]  sk_prot_alloc+0x1a8/0x2a0
[  639.021984][T13810]  sk_alloc+0x36/0xb80
[  639.021998][T13810]  packet_create+0x127/0x8e0
[  639.022021][T13810]  __sock_create+0x339/0x8a0
[  639.022043][T13810]  __sys_socket+0x153/0x2d0
[  639.022062][T13810]  ? __pfx___sys_socket+0x10/0x10
[  639.022081][T13810]  ? xfd_validate_state+0x61/0x180
[  639.022105][T13810]  __x64_sys_socket+0x72/0xb0
[  639.022123][T13810]  ? lockdep_hardirqs_on+0x7c/0x110
[  639.022139][T13810]  do_syscall_64+0xcd/0xf80
[  639.022156][T13810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  639.022170][T13810] RIP: 0033:0x7f992038f7c9
[  639.022182][T13810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  639.022195][T13810] RSP: 002b:00007f99212ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  639.022209][T13810] RAX: ffffffffffffffda RBX: 00007f99205e5fa0 RCX: 00007f992038f7c9
[  639.022218][T13810] RDX: 0000000000000300 RSI: 0000000000080003 RDI: 0000000000000011
[  639.022226][T13810] RBP: 00007f9920413f91 R08: 0000000000000000 R09: 0000000000000000
[  639.022234][T13810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  639.022242][T13810] R13: 00007f99205e6038 R14: 00007f99205e5fa0 R15: 00007fff5172e398
[  639.022260][T13810]  </TASK>
[  640.660416][T13829] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25
[  640.758648][T13831] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2185'.
[  642.827776][T13859] block nbd10: not configured, cannot reconfigure
[  645.063813][T13882] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2200'.
[  646.350412][T13895] FAULT_INJECTION: forcing a failure.
[  646.350412][T13895] name failslab, interval 1, probability 0, space 0, times 0
[  646.436740][T13895] CPU: 0 UID: 0 PID: 13895 Comm: syz.3.2204 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  646.436776][T13895] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  646.436784][T13895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  646.436793][T13895] Call Trace:
[  646.436798][T13895]  <TASK>
[  646.436804][T13895]  dump_stack_lvl+0x16c/0x1f0
[  646.436825][T13895]  should_fail_ex+0x512/0x640
[  646.436842][T13895]  ? __kmalloc_noprof+0xca/0x870
[  646.436857][T13895]  should_failslab+0xc2/0x120
[  646.436879][T13895]  __kmalloc_noprof+0xdd/0x870
[  646.436892][T13895]  ? lsm_blob_alloc+0x68/0x90
[  646.436908][T13895]  ? lsm_blob_alloc+0x68/0x90
[  646.436921][T13895]  lsm_blob_alloc+0x68/0x90
[  646.436935][T13895]  security_sk_alloc+0x30/0x270
[  646.436951][T13895]  sk_prot_alloc+0xfb/0x2a0
[  646.436971][T13895]  sk_alloc+0x36/0xb80
[  646.436985][T13895]  tipc_sk_create+0xce/0x2280
[  646.437004][T13895]  ? find_held_lock+0x2b/0x80
[  646.437031][T13895]  ? __sock_create+0x2f3/0x8a0
[  646.437053][T13895]  __sock_create+0x339/0x8a0
[  646.437076][T13895]  __sys_socketpair+0x25c/0x5a0
[  646.437098][T13895]  ? __pfx___sys_socketpair+0x10/0x10
[  646.437121][T13895]  ? xfd_validate_state+0x61/0x180
[  646.437145][T13895]  __x64_sys_socketpair+0x96/0x100
[  646.437164][T13895]  ? lockdep_hardirqs_on+0x7c/0x110
[  646.437181][T13895]  do_syscall_64+0xcd/0xf80
[  646.437198][T13895]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  646.437212][T13895] RIP: 0033:0x7fb195d8f7c9
[  646.437224][T13895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  646.437238][T13895] RSP: 002b:00007fb196cd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  646.437252][T13895] RAX: ffffffffffffffda RBX: 00007fb195fe5fa0 RCX: 00007fb195d8f7c9
[  646.437261][T13895] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 000000000000001e
[  646.437269][T13895] RBP: 00007fb195e13f91 R08: 0000000000000000 R09: 0000000000000000
[  646.437277][T13895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  646.437285][T13895] R13: 00007fb195fe6038 R14: 00007fb195fe5fa0 R15: 00007ffdb87cc1b8
[  646.437303][T13895]  </TASK>
[  646.666116][T13897] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2205'.
[  646.677555][T13897] netlink: 354 bytes leftover after parsing attributes in process `syz.1.2205'.
[  648.900041][T13901] Falling back ldisc for pty66.
[  649.742978][T13906] FAULT_INJECTION: forcing a failure.
[  649.742978][T13906] name failslab, interval 1, probability 0, space 0, times 0
[  649.846710][T13906] CPU: 0 UID: 0 PID: 13906 Comm: syz.1.2207 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  649.846745][T13906] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  649.846753][T13906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  649.846762][T13906] Call Trace:
[  649.846767][T13906]  <TASK>
[  649.846773][T13906]  dump_stack_lvl+0x16c/0x1f0
[  649.846794][T13906]  should_fail_ex+0x512/0x640
[  649.846812][T13906]  ? __kmalloc_noprof+0xca/0x870
[  649.846835][T13906]  should_failslab+0xc2/0x120
[  649.846856][T13906]  __kmalloc_noprof+0xdd/0x870
[  649.846870][T13906]  ? argv_split+0x188/0x440
[  649.846887][T13906]  ? argv_split+0x188/0x440
[  649.846899][T13906]  argv_split+0x188/0x440
[  649.846913][T13906]  ? __pfx___trace_eprobe_create+0x10/0x10
[  649.846928][T13906]  trace_probe_create+0x7d/0x100
[  649.846946][T13906]  ? __pfx_trace_probe_create+0x10/0x10
[  649.846967][T13906]  create_dyn_event+0xee/0x1c0
[  649.846982][T13906]  trace_parse_run_command+0x1a9/0x400
[  649.847001][T13906]  ? __pfx_create_dyn_event+0x10/0x10
[  649.847016][T13906]  ? __pfx_dyn_event_write+0x10/0x10
[  649.847029][T13906]  vfs_write+0x2a0/0x11d0
[  649.847048][T13906]  ? __pfx___mutex_lock+0x10/0x10
[  649.847066][T13906]  ? __pfx_vfs_write+0x10/0x10
[  649.847089][T13906]  ? __fget_files+0x20e/0x3c0
[  649.847112][T13906]  ksys_write+0x12a/0x250
[  649.847129][T13906]  ? __pfx_ksys_write+0x10/0x10
[  649.847152][T13906]  do_syscall_64+0xcd/0xf80
[  649.847170][T13906]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  649.847195][T13906] RIP: 0033:0x7f2bf638f7c9
[  649.847208][T13906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  649.847222][T13906] RSP: 002b:00007f2bf7185038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  649.847237][T13906] RAX: ffffffffffffffda RBX: 00007f2bf65e5fa0 RCX: 00007f2bf638f7c9
[  649.847246][T13906] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000000005
[  649.847254][T13906] RBP: 00007f2bf6413f91 R08: 0000000000000000 R09: 0000000000000000
[  649.847262][T13906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  649.847273][T13906] R13: 00007f2bf65e6038 R14: 00007f2bf65e5fa0 R15: 00007ffef08556d8
[  649.847292][T13906]  </TASK>
[  650.213311][T13908] can0: slcan on ptm0.
[  651.387131][T13905] can0 (unregistered): slcan off ptm0.
[  651.750852][T13926] block nbd0: Unsupported socket: should be TCP or UNIX.
[  651.949536][T13929] ptrace attach of "./syz-executor exec"[5834] was attempted by "�# :T�\x5c���Ac�h��R%�����c���s�P�H�<2j��yD$�(�����x��O�W��� \x5c���KJe����ָCe�$���p��\x5c�z�`J�>�4�o�\x1b4�*q/w�,rV�\x0a��\x0b���%ī8g\x0a�������3�.ɔ=�Jo}�@��c�� }���bB�\x09�\x07��o`��s�`��AP,8y<;[��F+�j�o��l�d�\x07�\x0a#7�/��Oy�j+QO�C���\x5c*t�Ǒ������f7)|픻�옶<w���vJR��vV���ܚ)ݴ�;��1G��W8?����]׵)C��h�CI��C��m`����L� ���W�3_�lI�����6b�ӢR�5�4��&��A/ðO��ؿ�Ods�B6����.$Jt�5�H�\x07��q=��
J��&��\x5cTaA����\x0bvV��Vvp�~},�7]b�\x22���,�oR�r���BD�l};�,�LL�(�A��%8��XVӨNmm�\x1b�D��
a O�����bH>���\x0b\x09��dL��Eb
>������9��uP�����@�6\x07,MP{���b��v\x0c��!�#\x5c�D\x0c��v��L5��ah�]wyQ�IҺǘ/ʶ\x1bnt�m;ŕ\x09�w�ց����EK�Ldh��CT\x09��2�-�-��&�p\x0a�>Z���g��p>�Zk��h.c�OƯ\x5cw3֪���\x22?�W�d%��R�ѓr]�˾b�D�gf��/,fUiѲ��$���q�k�m�
V�@ڀ�3��x�>�\x5c�H�!(��O��������Z��ߺ��ͤE1�ک�f���}YtD���^9Յ���K3A(hQp����B������6�͛�8W56x��ߋ Qf����z�B6�j]2����M,��բ����ß�
[  652.224641][T13932] FAULT_INJECTION: forcing a failure.
[  652.224641][T13932] name failslab, interval 1, probability 0, space 0, times 0
[  652.881094][T13932] CPU: 0 UID: 0 PID: 13932 Comm: syz.1.2218 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  652.881128][T13932] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  652.881136][T13932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  652.881145][T13932] Call Trace:
[  652.881150][T13932]  <TASK>
[  652.881158][T13932]  dump_stack_lvl+0x16c/0x1f0
[  652.881179][T13932]  should_fail_ex+0x512/0x640
[  652.881196][T13932]  ? __kmalloc_node_track_caller_noprof+0xcb/0x890
[  652.881217][T13932]  should_failslab+0xc2/0x120
[  652.881237][T13932]  __kmalloc_node_track_caller_noprof+0xde/0x890
[  652.881255][T13932]  ? setup_ipc_sysctls+0x5e/0x300
[  652.881273][T13932]  ? kmemdup_noprof+0x29/0x60
[  652.881285][T13932]  kmemdup_noprof+0x29/0x60
[  652.881299][T13932]  setup_ipc_sysctls+0x5e/0x300
[  652.881315][T13932]  copy_ipcs+0x53c/0x790
[  652.881333][T13932]  create_new_namespaces+0x20a/0xab0
[  652.881354][T13932]  ? security_capable+0x7e/0x260
[  652.881371][T13932]  copy_namespaces+0x468/0x570
[  652.881391][T13932]  copy_process+0x27c6/0x74e0
[  652.881419][T13932]  ? __pfx_copy_process+0x10/0x10
[  652.881445][T13932]  ? _copy_from_user+0x59/0xd0
[  652.881465][T13932]  kernel_clone+0xfc/0x910
[  652.881486][T13932]  ? __pfx_kernel_clone+0x10/0x10
[  652.881505][T13932]  ? futex_private_hash_put+0x160/0x1b0
[  652.881523][T13932]  ? __pfx_futex_wait+0x10/0x10
[  652.881546][T13932]  __do_sys_clone3+0x212/0x290
[  652.881565][T13932]  ? __pfx___do_sys_clone3+0x10/0x10
[  652.881592][T13932]  ? find_held_lock+0x2b/0x80
[  652.881624][T13932]  do_syscall_64+0xcd/0xf80
[  652.881642][T13932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  652.881656][T13932] RIP: 0033:0x7f2bf638f7c9
[  652.881667][T13932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  652.881680][T13932] RSP: 002b:00007f2bf7184f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  652.881695][T13932] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f2bf638f7c9
[  652.881704][T13932] RDX: 00007f2bf7184f20 RSI: 0000000000000058 RDI: 00007f2bf7184f20
[  652.881713][T13932] RBP: 00007f2bf6413f91 R08: 0000000000000000 R09: 0000000000000058
[  652.881721][T13932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  652.881729][T13932] R13: 00007f2bf65e6038 R14: 00007f2bf65e5fa0 R15: 00007ffef08556d8
[  652.881755][T13932]  </TASK>
[  653.122893][    C0] vkms_vblank_simulate: vblank timer overrun
[  654.193819][T13959] random: crng reseeded on system resumption
[  654.793324][T13970] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2228'.
[  655.047509][T13970] vlan1: entered promiscuous mode
[  655.052763][T13970] vlan1: entered allmulticast mode
[  655.119743][T13970] veth0_vlan: entered allmulticast mode
[  658.176106][T14004] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26
[  658.408391][T14010] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2240'.
[  658.430456][T13995] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2235'.
[  659.263448][T14019] input: f�
 as /devices/virtual/input/input27
[  659.461339][T14005] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input28
[  660.518414][T14026] rtc_cmos 00:00: Alarms can be up to one day in the future
[  661.106656][T12023] rtc_cmos 00:00: Alarms can be up to one day in the future
[  661.150586][T12023] rtc_cmos 00:00: Alarms can be up to one day in the future
[  661.216342][T12023] rtc_cmos 00:00: Alarms can be up to one day in the future
[  661.281421][T12023] rtc_cmos 00:00: Alarms can be up to one day in the future
[  661.336387][T12023] rtc rtc0: __rtc_set_alarm: err=-22
[  662.116524][T14045] netlink: 'syz.2.2246': attribute type 1 has an invalid length.
[  662.377339][    C0] ------------[ cut here ]------------
[  662.383158][    C0] WARNING: net/mptcp/subflow.c:1519 at subflow_data_ready+0x40b/0x790, CPU#0: ksoftirqd/0/15
[  662.393405][    C0] Modules linked in:
[  662.397640][    C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  662.408493][    C0] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  662.418577][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  662.428672][    C0] RIP: 0010:subflow_data_ready+0x40b/0x790
[  662.434503][    C0] Code: 89 ee e8 28 da 75 f6 40 84 ed 75 21 e8 ce df 75 f6 44 89 fe bf 07 00 00 00 e8 71 da 75 f6 41 83 ff 07 74 09 e8 b6 df 75 f6 90 <0f> 0b 90 e8 ad df 75 f6 48 89 df e8 c5 ae ff ff 31 ff 89 c5 89 c6
[  662.454186][    C0] RSP: 0000:ffffc90000147348 EFLAGS: 00010246
[  662.460377][    C0] RAX: 0000000000000000 RBX: ffff888058e94c80 RCX: ffffffff8b47604f
[  662.468371][    C0] RDX: ffff88801d6a3d00 RSI: ffffffff8b47605a RDI: 0000000000000005
[  662.476358][    C0] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007
[  662.484323][    C0] R10: 0000000000000004 R11: ffffffff9ab7c1b0 R12: ffff88802a458c00
[  662.492428][    C0] R13: 1ffff92000028e69 R14: ffff88807c7cec00 R15: 0000000000000004
[  662.500421][    C0] FS:  0000000000000000(0000) GS:ffff888124ba5000(0000) knlGS:0000000000000000
[  662.509489][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  662.516067][    C0] CR2: 00007fbd01d17d60 CR3: 00000000322f6000 CR4: 00000000003526f0
[  662.524070][    C0] Call Trace:
[  662.527355][    C0]  <TASK>
[  662.530291][    C0]  ? __pfx_subflow_data_ready+0x10/0x10
[  662.536526][    C0]  tcp_data_queue+0x139c/0x5000
[  662.541411][    C0]  ? tcp_urg+0x10f/0xb80
[  662.545701][    C0]  ? __pfx_tcp_data_queue+0x10/0x10
[  662.550991][    C0]  ? tcp_parse_options+0x1170/0x1250
[  662.556318][    C0]  tcp_rcv_state_process+0xfb6/0x6490
[  662.561703][    C0]  ? lock_acquire+0x179/0x330
[  662.566407][    C0]  ? __pfx_tcp_rcv_state_process+0x10/0x10
[  662.572217][    C0]  ? sk_filter_trim_cap+0x11a/0xd90
[  662.577457][    C0]  ? lock_acquire+0x179/0x330
[  662.582138][    C0]  ? do_raw_spin_lock+0x12c/0x2b0
[  662.587194][    C0]  ? tcp_v4_do_rcv+0x68e/0x10a0
[  662.592038][    C0]  tcp_v4_do_rcv+0x68e/0x10a0
[  662.596740][    C0]  tcp_v4_rcv+0x3077/0x4db0
[  662.601247][    C0]  ? __pfx_tcp_v4_rcv+0x10/0x10
[  662.606107][    C0]  ? __pfx_raw_local_deliver+0x10/0x10
[  662.611773][    C0]  ? __pfx_tcp_v4_rcv+0x10/0x10
[  662.616642][    C0]  ip_protocol_deliver_rcu+0xba/0x4c0
[  662.622032][    C0]  ip_local_deliver_finish+0x3f2/0x720
[  662.627559][    C0]  ip_local_deliver+0x18e/0x1f0
[  662.632502][    C0]  ip_rcv+0x2e0/0x600
[  662.636507][    C0]  ? __pfx_ip_rcv+0x10/0x10
[  662.641006][    C0]  __netif_receive_skb_one_core+0x197/0x1e0
[  662.646932][    C0]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  662.653345][    C0]  ? lock_acquire+0x179/0x330
[  662.658109][    C0]  ? process_backlog+0x450/0x1650
[  662.663126][    C0]  __netif_receive_skb+0x1d/0x160
[  662.668173][    C0]  process_backlog+0x4a2/0x1650
[  662.673023][    C0]  __napi_poll.constprop.0+0xba/0x550
[  662.678421][    C0]  ? skb_defer_free_flush+0x149/0x280
[  662.683792][    C0]  net_rx_action+0x9f9/0xfe0
[  662.688406][    C0]  ? find_held_lock+0x2b/0x80
[  662.693085][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  662.698223][    C0]  ? rcu_is_watching+0x12/0xc0
[  662.702992][    C0]  ? finish_task_switch.isra.0+0x207/0xbc0
[  662.708832][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  662.714031][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  662.719262][    C0]  ? sched_clock+0x38/0x60
[  662.723680][    C0]  ? sched_clock_cpu+0x6c/0x530
[  662.728648][    C0]  handle_softirqs+0x219/0x8b0
[  662.733436][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  662.738805][    C0]  ? __pfx_run_ksoftirqd+0x10/0x10
[  662.743922][    C0]  ? smpboot_thread_fn+0x326/0xae0
[  662.749056][    C0]  run_ksoftirqd+0x3a/0x60
[  662.753471][    C0]  smpboot_thread_fn+0x3f7/0xae0
[  662.758423][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  662.763875][    C0]  kthread+0x3c5/0x780
[  662.767999][    C0]  ? __pfx_kthread+0x10/0x10
[  662.772675][    C0]  ? rcu_is_watching+0x12/0xc0
[  662.777502][    C0]  ? __pfx_kthread+0x10/0x10
[  662.782086][    C0]  ret_from_fork+0x983/0xb10
[  662.786701][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  662.791808][    C0]  ? __switch_to+0x7af/0x10d0
[  662.796504][    C0]  ? __pfx_kthread+0x10/0x10
[  662.801114][    C0]  ret_from_fork_asm+0x1a/0x30
[  662.805884][    C0]  </TASK>
[  662.808970][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  662.816239][    C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[  662.827012][    C0] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[  662.837160][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  662.847293][    C0] Call Trace:
[  662.850650][    C0]  <TASK>
[  662.853674][    C0]  dump_stack_lvl+0x3d/0x1f0
[  662.858495][    C0]  vpanic+0x640/0x6f0
[  662.862487][    C0]  ? subflow_data_ready+0x40b/0x790
[  662.867794][    C0]  panic+0xca/0xd0
[  662.871530][    C0]  ? __pfx_panic+0x10/0x10
[  662.875959][    C0]  ? check_panic_on_warn+0x1f/0xb0
[  662.881158][    C0]  check_panic_on_warn+0xab/0xb0
[  662.886094][    C0]  __warn+0x108/0x3c0
[  662.890074][    C0]  __report_bug+0x2a0/0x520
[  662.894580][    C0]  ? subflow_data_ready+0x40b/0x790
[  662.899780][    C0]  ? __pfx___report_bug+0x10/0x10
[  662.904793][    C0]  ? mptcp_get_options+0x19c/0x2af0
[  662.910000][    C0]  ? subflow_data_ready+0x40b/0x790
[  662.915190][    C0]  report_bug+0xb2/0x220
[  662.919422][    C0]  ? subflow_data_ready+0x40b/0x790
[  662.924614][    C0]  handle_bug+0x127/0x260
[  662.928940][    C0]  exc_invalid_op+0x17/0x50
[  662.933435][    C0]  asm_exc_invalid_op+0x1a/0x20
[  662.938279][    C0] RIP: 0010:subflow_data_ready+0x40b/0x790
[  662.944088][    C0] Code: 89 ee e8 28 da 75 f6 40 84 ed 75 21 e8 ce df 75 f6 44 89 fe bf 07 00 00 00 e8 71 da 75 f6 41 83 ff 07 74 09 e8 b6 df 75 f6 90 <0f> 0b 90 e8 ad df 75 f6 48 89 df e8 c5 ae ff ff 31 ff 89 c5 89 c6
[  662.963688][    C0] RSP: 0000:ffffc90000147348 EFLAGS: 00010246
[  662.969835][    C0] RAX: 0000000000000000 RBX: ffff888058e94c80 RCX: ffffffff8b47604f
[  662.977882][    C0] RDX: ffff88801d6a3d00 RSI: ffffffff8b47605a RDI: 0000000000000005
[  662.986070][    C0] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000007
[  662.994054][    C0] R10: 0000000000000004 R11: ffffffff9ab7c1b0 R12: ffff88802a458c00
[  663.002038][    C0] R13: 1ffff92000028e69 R14: ffff88807c7cec00 R15: 0000000000000004
[  663.010014][    C0]  ? subflow_data_ready+0x3ff/0x790
[  663.015306][    C0]  ? subflow_data_ready+0x40a/0x790
[  663.020505][    C0]  ? subflow_data_ready+0x40a/0x790
[  663.025698][    C0]  ? __pfx_subflow_data_ready+0x10/0x10
[  663.031244][    C0]  tcp_data_queue+0x139c/0x5000
[  663.036185][    C0]  ? tcp_urg+0x10f/0xb80
[  663.040421][    C0]  ? __pfx_tcp_data_queue+0x10/0x10
[  663.045613][    C0]  ? tcp_parse_options+0x1170/0x1250
[  663.050897][    C0]  tcp_rcv_state_process+0xfb6/0x6490
[  663.056267][    C0]  ? lock_acquire+0x179/0x330
[  663.060939][    C0]  ? __pfx_tcp_rcv_state_process+0x10/0x10
[  663.066747][    C0]  ? sk_filter_trim_cap+0x11a/0xd90
[  663.071941][    C0]  ? lock_acquire+0x179/0x330
[  663.076607][    C0]  ? do_raw_spin_lock+0x12c/0x2b0
[  663.081623][    C0]  ? tcp_v4_do_rcv+0x68e/0x10a0
[  663.086457][    C0]  tcp_v4_do_rcv+0x68e/0x10a0
[  663.091119][    C0]  tcp_v4_rcv+0x3077/0x4db0
[  663.095618][    C0]  ? __pfx_tcp_v4_rcv+0x10/0x10
[  663.100456][    C0]  ? __pfx_raw_local_deliver+0x10/0x10
[  663.105904][    C0]  ? __pfx_tcp_v4_rcv+0x10/0x10
[  663.110756][    C0]  ip_protocol_deliver_rcu+0xba/0x4c0
[  663.116141][    C0]  ip_local_deliver_finish+0x3f2/0x720
[  663.121643][    C0]  ip_local_deliver+0x18e/0x1f0
[  663.126492][    C0]  ip_rcv+0x2e0/0x600
[  663.130468][    C0]  ? __pfx_ip_rcv+0x10/0x10
[  663.134961][    C0]  __netif_receive_skb_one_core+0x197/0x1e0
[  663.140846][    C0]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  663.147250][    C0]  ? lock_acquire+0x179/0x330
[  663.151924][    C0]  ? process_backlog+0x450/0x1650
[  663.156933][    C0]  __netif_receive_skb+0x1d/0x160
[  663.161944][    C0]  process_backlog+0x4a2/0x1650
[  663.166813][    C0]  __napi_poll.constprop.0+0xba/0x550
[  663.172184][    C0]  ? skb_defer_free_flush+0x149/0x280
[  663.177563][    C0]  net_rx_action+0x9f9/0xfe0
[  663.182146][    C0]  ? find_held_lock+0x2b/0x80
[  663.186823][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  663.191946][    C0]  ? rcu_is_watching+0x12/0xc0
[  663.196790][    C0]  ? finish_task_switch.isra.0+0x207/0xbc0
[  663.202620][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[  663.207825][    C0]  ? kvm_sched_clock_read+0x11/0x20
[  663.213015][    C0]  ? sched_clock+0x38/0x60
[  663.217429][    C0]  ? sched_clock_cpu+0x6c/0x530
[  663.222283][    C0]  handle_softirqs+0x219/0x8b0
[  663.227059][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  663.232363][    C0]  ? __pfx_run_ksoftirqd+0x10/0x10
[  663.237480][    C0]  ? smpboot_thread_fn+0x326/0xae0
[  663.242581][    C0]  run_ksoftirqd+0x3a/0x60
[  663.247007][    C0]  smpboot_thread_fn+0x3f7/0xae0
[  663.251954][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  663.257407][    C0]  kthread+0x3c5/0x780
[  663.261499][    C0]  ? __pfx_kthread+0x10/0x10
[  663.266093][    C0]  ? rcu_is_watching+0x12/0xc0
[  663.270888][    C0]  ? __pfx_kthread+0x10/0x10
[  663.275497][    C0]  ret_from_fork+0x983/0xb10
[  663.280097][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  663.285201][    C0]  ? __switch_to+0x7af/0x10d0
[  663.289876][    C0]  ? __pfx_kthread+0x10/0x10
[  663.294463][    C0]  ret_from_fork_asm+0x1a/0x30
[  663.299405][    C0]  </TASK>
[  663.302468][    C0] Kernel Offset: disabled
[  663.306795][    C0] Rebooting in 86400 seconds..