last executing test programs:

1m45.54482282s ago: executing program 3 (id=286):
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
write$auto(0x3, 0x0, 0x9)
mmap$auto(0x2, 0x420009, 0xfff, 0xeb1, 0x401, 0x7ffd)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
fanotify_init$auto(0xb88, 0x0)
sysfs$auto(0x2, 0x49, 0x0)
fsopen$auto(0x0, 0x1)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/sit0/statistics/tx_compressed\x00', 0x80000, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x0, 0x0)
ioctl$auto_TCFLSH2(r2, 0x5453, 0x0)
ioctl$auto(0x3, 0x5415, r1)
r3 = bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_1={0xffffffffffffffff, 0xc08, @next_key=0x8, 0x9}, 0x6f4)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14fa02, 0x0)
mmap$auto(0x0, 0x2020009, 0x8000000003, 0xd5, r3, 0x8000)
io_uring_setup$auto(0x1, 0x0)
connect$auto(0x3, 0x0, 0x55)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_stats_fops_(0xffffffffffffff9c, 0x0, 0x400, 0x0)
ioctl$auto_SNDCTL_TMR_CONTINUE(r3, 0x5404, &(0x7f00000000c0)="873302e301e0b01ae9e5d8a7401b66e72e4857fababb0070dec76e27ea1c71b7f8b800abcfb9974f59c538ef")
mmap$auto(0x0, 0x402000a, 0xffffffffffffffff, 0x400eb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)

1m44.636035968s ago: executing program 3 (id=287):
mmap$auto(0x0, 0x276, 0xdb, 0x10eb1, 0x401, 0xb)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(r0, 0x29, 0x39, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110)
r1 = mq_open$auto(&(0x7f0000000000)='\x00', 0x2, 0xff, &(0x7f0000000040)={0x0, 0x6, 0x0, 0x8000000000000000})
close_range$auto(r1, r0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
pipe$auto(0x0)
socket(0x1e, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(0x1, 0x0, 0x80000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
timerfd_create$auto(0x9, 0x0)
ioctl$auto(0x3, 0x40085400, 0x5)

1m43.960923773s ago: executing program 3 (id=289):
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x22a02, 0x0)
write$auto(r0, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7\xe6\x04\x8c\x83k', 0x1000000007e)
mremap$auto(0x200000000000, 0x4, 0x4, 0x3, 0x100000021)

1m42.882851808s ago: executing program 3 (id=292):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb0, 0x401, 0x8000)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x480, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_TLV_WRITE(r0, 0xc008551b, &(0x7f0000000140)={0xdf, 0x20000})
unshare$auto(0x40000080)
flock$auto(0xffffffffffffffff, 0xffffffff)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0)
readv$auto(0x3, 0x0, 0x1)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/oom_score\x00', 0x0, 0x0)
ioctl$auto_FS_IOC_GETVERSION(0xffffffffffffffff, 0xff01, &(0x7f0000000080)=0x80)
r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000001040)='/dev/binderfs/binder1\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0x3, 0x1, 0x48, 0x0, 0x9)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x600347, 0x0)
socket(0x10, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
io_uring_setup$auto(0x2, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
sendmsg$auto_MACSEC_CMD_UPD_OFFLOAD(r2, &(0x7f0000000940)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000900)={&(0x7f0000001140)={0x614, 0x0, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@MACSEC_ATTR_RXSC_CONFIG={0x4a8, 0x2, 0x0, 0x1, [@nested={0x1c0, 0x2e, 0x0, 0x1, [@nested={0x196, 0x85, 0x0, 0x1, [@typed={0x46, 0x82, 0x0, 0x0, @binary="0a341f09e4784de1b7bccc46dee0dd77c47bcc4ec05fa399a18437558c98605e495c1c3607ff1dfdaf26a35e3d52431de4101a93e53ebd5cdb66677db02197be82f7"}, @generic="893c09c86190ce5e6067a1bb3048b875f71c", @typed={0x14, 0xf6, 0x0, 0x0, @ipv6=@empty}, @nested={0xe6, 0xf4, 0x0, 0x1, [@typed={0x4, 0x93}, @typed={0x4, 0x155}, @generic="7c9bb036fbaad812900a65e94300e74d3dcf192a3afca382e2122100fab5d452dbea29e04834f5faedb1fb1a6c0f66447df9dca08d284571f00c8b9047566599fa91c3eb48ec53a0825ea81487467ed11b76181318dc19257cca524e85d0f2819cd41ecf6a15ecaf2b5f39d70a5dc795ecd28906dac820e6e7c285465ddb9298ffcc7fbb6f40a5f0f7954cdb83ea13513c4ba79e84a1224a9babccb511bcb025660a17ce6f7fb152f0fb620d18b0424be4d1f920e65f978142e86ee5aa5784ff40a06030be77973262dc0d9307c7877f4409", @nested={0x4, 0x8}, @typed={0x4, 0xc6}]}, @nested={0x8, 0x104, 0x0, 0x1, [@nested={0x4, 0x5e}]}, @typed={0xc, 0x1a, 0x0, 0x0, @u64=0x9a51}, @nested={0x18, 0x125, 0x0, 0x1, [@typed={0x14, 0x159, 0x0, 0x0, @ipv6=@mcast1}]}, @typed={0x8, 0x4d, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x138, 0x0, 0x0, @u32=0xe}]}, @nested={0x4, 0x8}, @typed={0xc, 0xd8, 0x0, 0x0, @u64}, @typed={0x14, 0x76, 0x0, 0x0, @ipv6=@mcast1}]}, @nested={0x8, 0x8c, 0x0, 0x1, [@nested={0x4, 0x13f}]}, @nested={0x2c8, 0x107, 0x0, 0x1, [@generic="fd84d35cfb1cac64a3234298bb8398ce3266c5700d25a780954bef7e25b92cc0a2e989a4d905a1e79143babc825d38d8c9f009f5a6496c0819adb2a013b352cb66a4e668", @generic="9da5571decbab0ae7fd0c1c203ca8974fb79dadc4033c9c50184b55492eac875b82e4a471dbc17db5cdb2a660dfe905f7d03ed8513036d13a7e15f46b17c5fae997a2f47192e5af29bb0a41967359800980a13aa494b34af67b431ad3d016c4a8f21e392c2faa418635fddf26bc49d73b2b47608940e22aee858bfca00", @generic="d43d1893a6c76ce80f913f482b68bb8219ee15bfc8b863a8b0c5db445ba8c0519a799b2e23f3a9d9477cbdd3e08cc0e7abd2e4411c79e0bc109cf3239288709ae5e8f741bf08d101bccfa9761119419ca7fb943ff0fa19af7644bcf9b1df5d54a4ea", @typed={0x8, 0x3a, 0x0, 0x0, @ipv4=@empty}, @generic="40e1fba348b2a7d98a36e10b30930ffdf08ddcb09b16ba86ee672eebbb5434e21489c309a35b779e1f660da8ac6ab598c34445910c8c6b1431a9d05c66cc79fa31fa6eb5faf196348132ef3326569803479cbf902aa61da5e7ed6a0c45f75b0ec672e831332708a89da94e0c79a3ea51d90b6190336b6ff41c2ae464fc412b6c0405eaf3252bc43f75f189e5e03315f9b98d5e880de8ca530b9a9de32f779f5c583ed71ad533060096", @generic="bb78c7cde8c30d00b5bb13be00186e872690de4b79f34e8aace6a14521adead299fb3b592f05ea12d2e823caebc3ce2e373bd61b7f10bf0d23460ca47188145d61ca809e5f9675301cbe31c694006b6417eec2a8c26ed97e90778134b61f21f62674b6c94b8792be746ad0df844d9bf2b6f263b161e9fdeda21f5ab80ac2c3290767b9d80556217e8d3c2aa904e4d61bce54ea4be3b2c26b4a394d0dfebb4ea96207b40b3debb6f11332ca60258a28957d925eb2b0f93cd2437d718349cd5522c6c2940165e35ea3e2e1a7d86a5fad1895ed9f632bb54b94", @nested={0x4, 0x10e}, @typed={0x8, 0x16, 0x0, 0x0, @u32=0x3ff}, @nested={0x4, 0x8c}, @typed={0x8, 0x10a, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}]}, @nested={0xc, 0x21, 0x0, 0x1, [@typed={0x8, 0x108, 0x0, 0x0, @uid}]}, @typed={0x8, 0x13e, 0x0, 0x0, @fd=r1}]}, @MACSEC_ATTR_RXSC_CONFIG={0x158, 0x2, 0x0, 0x1, [@nested={0x118, 0x10, 0x0, 0x1, [@nested={0xab, 0xf9, 0x0, 0x1, [@generic="2e79b842625554c052ded98f3d86ed1bc4354cd601dae7eef2712211b874b61d600104bc1488c5cb972e803a70193339f6e4b0c15453f3b4592048dbbe590198b54ade86f3037bce3ab89dfa7ff515ab17f996c44c1c8dee8fd0d1e1f85d2c769d5775a92657dae1c7272a18e58ef615b4e64140e91a19c215a6c1104c9cf4bb9f799c0f6f5002eda6da71bcc404a97b09aa2f052531722f0f67200f71b92866b30c81290442da"]}, @generic="ec6b994f1d32bfb2b399d4f4f63a78ba8bc0d11dec3e603d8325b4e6b76cb4434c3c899c69932d981514adcec82f13b335634bc130ff122f2545976ddc266a37dda32c3ad92ae8f5365fc93f109359f207a3416b33f6be4338c1054916faeafd95f8f59c28676a3d"]}, @typed={0x8, 0x93, 0x0, 0x0, @ipv4=@loopback}, @typed={0x8, 0x4e, 0x0, 0x0, @fd=r0}, @generic="b4993893fcbcfcfd263d4e0d5218daa2d7c364cb9237f61ae8478012f951b36415ea6c2cef1a1762a7959590"]}]}, 0x614}, 0x1, 0x0, 0x0, 0x800}, 0x48010)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80040, 0x0)
r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/input/event0\x00', 0x101, 0x0)
writev$auto(r4, &(0x7f0000001100)={&(0x7f0000001080), 0xff}, 0x7f)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x6ab82, 0x0)
openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0)
socketpair$auto(0x3, 0x1, 0x8, 0x0)
ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0)
ioctl$auto_TIOCVHANGUP2(r3, 0x5437, 0x0)

1m40.598232713s ago: executing program 3 (id=297):
socket(0x80000000000000a, 0x2, 0x0)
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC1D0c\x00', 0x181, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x2, 0x3, 0x6)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x401c5820, 0x0)
mkdir$auto(0x0, 0x353)
ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE2(r0, 0xc2604110, &(0x7f0000000200)={0x8, [{[0x22b8, 0x80, 0x5, 0x9, 0x1, 0x84, 0x1000, 0x2]}, {[0x7, 0x7, 0x1, 0x6, 0x4, 0x8, 0xa, 0x8]}, {[0x2, 0x2, 0x8, 0x4, 0x7, 0xfffffffc, 0x1ff, 0x80]}], [{[0x8, 0x2, 0x731, 0x5, 0x31bf, 0x0, 0x100, 0x60]}, {[0x0, 0x4, 0x80000000, 0x9, 0x5, 0x6, 0x8, 0xfffffff9]}, {[0x80000001, 0x8, 0x8b9, 0x6, 0xe, 0x9, 0x7, 0x1]}, {[0x4, 0x100, 0x8, 0x7a7, 0x1, 0x2, 0x9, 0xc]}, {[0x47916cb0, 0xaa, 0xf, 0x3, 0x9, 0x6, 0x7, 0x5]}], [{0x3, 0x0, 0x1, 0x1, 0x1, 0x1}, {0x8, 0x7fff, 0x1, 0x1, 0x1, 0x1}, {0xffffffff, 0x81, 0x1, 0x0, 0x1}, {0x0, 0x9, 0x1}, {0x9, 0x1e5dae08, 0x1, 0x1, 0x1}, {0x4, 0x9b, 0x0, 0x0, 0x0, 0x1}, {0x1, 0x7, 0x0, 0x0, 0x1}, {0x6, 0x3, 0x1, 0x0, 0x0, 0x1}, {0x8000, 0xc2, 0x0, 0x1, 0x0, 0x1}, {0x3, 0x0, 0x1, 0x1}, {0x2, 0x5, 0x1}, {0x4, 0x454, 0x1}], [{0x3ff, 0x31b7, 0x1, 0x0, 0x1, 0x1}, {0x0, 0x7, 0x1, 0x0, 0x1}, {0x2, 0xfc, 0x0, 0x0, 0x0, 0x1}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1}, {0xf09, 0x108, 0x0, 0x0, 0x1}, {0x0, 0x5, 0x1, 0x1}, {0x4, 0x1, 0x0, 0x0, 0x1}, {0x7fffffff, 0x9, 0x0, 0x0, 0x1, 0x1}, {0x7, 0x6, 0x0, 0x1, 0x1}], 0x3, 0x59e7, 0x5, 0x8001, 0x8, 0xffffffff, 0x8001, "d2b8146f1f1ef0c4fb03db1405350dcb", "7a5493dd77eb8b4fdf90e666658e7f86efdc4bb3a9d876c22e4950d3f2ad94c594195f67755b9d451c813db3f0ab8994"})
socket(0x10, 0x2, 0x0)
socket(0x15, 0x5, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm0p/sub2/xrun_injection\x00', 0x18000, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/013/001\x00', 0xa901, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x10, 0x2, 0xc)
socket(0x10, 0x2, 0x0)
socket(0x15, 0x5, 0x0)
socket(0x2, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
pipe$auto(0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x6f)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x2100, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)

1m39.890198394s ago: executing program 3 (id=301):
ioctl$auto_MON_IOCH_MFLUSH(0xffffffffffffffff, 0x9208, 0x0)
openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, 0x0, 0xc2622, 0x0)
mmap$auto(0x4, 0xb, 0xdf, 0x11, 0x2, 0x8004)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
setreuid$auto(0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
io_uring_setup$auto(0x4, 0x0)
ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3)

1m24.347498526s ago: executing program 32 (id=301):
ioctl$auto_MON_IOCH_MFLUSH(0xffffffffffffffff, 0x9208, 0x0)
openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, 0x0, 0xc2622, 0x0)
mmap$auto(0x4, 0xb, 0xdf, 0x11, 0x2, 0x8004)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
setreuid$auto(0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
io_uring_setup$auto(0x4, 0x0)
ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3)

5.309145588s ago: executing program 4 (id=580):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r0 = socket(0x28, 0x1, 0x0)
sendmsg$auto_KSMBD_EVENT_SHARE_CONFIG_REQUEST(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x4000085)
r1 = socket(0x10, 0x2, 0x0)
clock_adjtime$auto(0x0, &(0x7f0000000040)={0xfbb, 0x0, 0x7f, 0xfffffffff7fffffe, 0x5fe, 0x8, 0x7, 0x0, 0xb, 0xb, 0x1, {0x3ff, 0x7}, 0xfffffffffffffffa, 0x200000a5, 0xa, 0x13c, 0x0, 0xc3, 0x9, 0x2, 0x5, 0x90, 0xfffffff5}) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbf4250200080008000300000000001b0004"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0d566b3dd008e4edd9650200000000000008"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

5.245966802s ago: executing program 2 (id=581):
r0 = ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, &(0x7f0000000140)={0x5, "0be36ab0225d7d713235697325cb0d2a5ec9478a9c828bf90507024d9e8fe04d", @raw=0x6})
ioctl$auto_BLKROGET(r0, 0x125e, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
bpf$auto(0x21, &(0x7f0000000080)=@query={@target_ifindex, 0x201000, 0xafef, 0x4, 0x1008, @count=0x7, 0x0, 0x0, 0x290, 0x7, 0xb}, 0xc4a)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x42000, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000080)={0x0, 0x66}, 0x3)
openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/bluetooth/hci3/force_wakeup\x00', 0x8742, 0x0)

5.03233559s ago: executing program 1 (id=582):
openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x48000, 0x0)
mmap$auto(0x0, 0x20008, 0xdf, 0xeb1, 0x401, 0x8000)
lsm_list_modules$auto(0x0, &(0x7f0000000100)=0xbefc, 0x0)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
fsconfig$auto_HIDEPID_NOT_PTRACEABLE(r0, 0x7, &(0x7f0000000140)='MAC80211_HWSIM\x00', 0x0, 0x4)
r1 = open_tree$auto(r0, &(0x7f0000000000)='./file0\x00', 0x6)
ioctl$auto(r1, 0xf42, r0)

4.660923945s ago: executing program 2 (id=583):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/bus/input/handlers\x00', 0x20400, 0x0)
pread64$auto(r0, 0x0, 0x8, 0x8000) (async)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x1, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4040}, 0xc, &(0x7f0000000740)={&(0x7f0000000280)=ANY=[@ANYBLOB="3c020000", @ANYRES16=r1, @ANYBLOB="020028bd7000fbdbdf2502000000540001800800030004000000140002006261746164", @ANYBLOB="0800030001000000080003007245ffff08000300", @ANYRES64=r0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB="2000018008000300040000001400020069705f7674693000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB, @ANYBLOB='\b\x00', @ANYBLOB="1400020076657468305f746f5f6261746164760008000300000200", @ANYRES32=0x0, @ANYBLOB, @ANYRESHEX=r1, @ANYBLOB="54000180140002006772653000", @ANYBLOB, @ANYRES32, @ANYBLOB, @ANYRES32, @ANYRES32, @ANYRESHEX=r2], 0x23c}, 0x1, 0x0, 0x0, 0x4c011}, 0x90) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram1\x00', 0x26e602, 0x0) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
bpf$auto(0x1, &(0x7f0000000000)=@batch={0xfffffffffffffffb, 0x44, 0x2, 0x9, 0x81, <r3=>0xffffffffffffffff, 0x2, 0x8}, 0x100000cf)
r4 = socket(0x29, 0x2, 0x0)
r5 = socket(0x10, 0x2, 0x0)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) (async)
poll$auto(&(0x7f0000000040)={r6, 0x1, 0xa}, 0x5, 0x108) (async)
ioctl$auto_TIOCVHANGUP2(r6, 0x5437, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="e43e9c2ccd548c997b49c5c0c7e320000000", @ANYBLOB="1215", @ANYBLOB], 0x1ac}}, 0x40000) (async)
ustat$auto(0x1, &(0x7f0000000000)={0x3, 0x1000, "fc1671f4c44d", "69b53cb9cab7"})
ioctl$auto_BTRFS_IOC_SNAP_DESTROY(r3, 0x5000940f, &(0x7f0000001900)={@inferred=r6, "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"}) (async)
recvmmsg$auto(r5, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r4, 0x89f1, 0x24) (async)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) (async)
sendmmsg$auto(0x3, 0x0, 0x9a9, 0x7) (async)
epoll_create$auto(0x8800001) (async)
mmap$auto(0x9, 0x8000000000000004, 0x20003, 0xeb1, 0xfffffffffffffffa, 0xf28)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) (async)
getpid()

4.659148398s ago: executing program 4 (id=584):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r0)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2c, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x1000000, 0x40480c0}, 0x80)

4.545382138s ago: executing program 4 (id=585):
mmap$auto(0x0, 0x4, 0xdf, 0xeb1, 0x401, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x40, 0x0)
ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR64(r0, 0xc0884123, &(0x7f0000000280)={0x5, 0x0, @reserved="e5d3ae87fbcd20f354bc462d9518a90adaffe1ee53ac907ef49a78f7f58694e39f46c35bd0c8ad2a47a2aff7fda026a07e8dd68f0a57203bb6c2cf1b764eaba7", @control={{}, 0x4, {}, {}, 0x6}}) (async)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/nbd6/sched/write0_fifo_list\x00', 0x400, 0x0)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1) (async)
socket(0x10, 0x2, 0x4) (async)
socket(0x2, 0x3, 0x4) (async)
ioctl$auto(0x3, 0x800005411, 0x38)

4.530416135s ago: executing program 1 (id=586):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1e, 0x0, 0x0)
r0 = socket(0x2b, 0x1, 0x0)
r1 = openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/o2hb/quorum_regions\x00', 0x500, 0x0)
bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x17}}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000280)="205fb9255274f8ddc3edaae67c75fe0497abc44df62328ef06b30f66223392a1a37c8cc79bcffcdaed8a319e821f82a5afd4a6edfff955c395e9cdd8b3051d904e848b127374cc5c09a123f22c0f119aa3cc71b41f9420d59de22ba60bf0905499c3c9ed090d4b8e4087265350f82393c75a1a96f75bfadc73903adabd", 0x12, 0x0, 0x2009, 0x0, 0x1f, 0xb}, 0x6000}, 0x2, 0x20000003)
sendfile$auto(0x1, 0x3, 0x0, 0x7ff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/fs/bcache/register_quiet\x00', 0x401, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/nr15/queues/tx-0/tx_maxrate\x00', 0x10b942, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000001000)='/dev/dsp\x00', 0x1, 0x0)
ioctl$auto_SOUND_MIXER_READ_RECMASK2(r3, 0x80044dfd, 0x0)
setregid$auto(0xffffffffffffffff, 0xfffe)
setresgid$auto(0x0, 0x0, 0x0)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket(0x15, 0x5, 0x3)
connect$auto(0x3, 0x0, 0x55)
r4 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x199)
execveat$auto(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r5 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000080), r4)
openat$auto_force_suspend_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/bluetooth/hci2/force_suspend\x00', 0x2600, 0x0)
mmap$auto(0x0, 0x1, 0x1, 0xeb1, 0xfffffffffffffffa, 0x8000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe)
futex$auto(0x0, 0x3, 0x2, 0x0, 0x0, 0x71a8dce0)
bind$auto(0xffffffffffffffff, &(0x7f0000000240)=@l2tp={0x2, 0x0, @local}, 0x7)
sendmsg$auto_NFC_CMD_START_POLL(r4, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c0000", @ANYRES16=r5, @ANYBLOB="01002bbd7000ffdb0700000000001e00000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4044081}, 0x10)
socket(0x9, 0x4, 0x7fffffff)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/state\x00', 0x102, 0x0)
sendfile$auto(r6, r2, 0x0, 0x7)

4.330000809s ago: executing program 1 (id=587):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
shmctl$auto_SHM_UNLOCK(0x1000, 0xc, 0x0)
msgctl$auto_IPC_INFO(0x107ffe, 0x3, 0x0)
waitid$auto_P_PID(0x1, 0x0, 0x0, 0x849, 0x0)
close_range$auto(0x2, 0x8, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x6, 0x0, 0x8000cf4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
arch_prctl$auto(0x9, 0x3)
r0 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x400400, 0x0)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, &(0x7f00000004c0)={{r0, &(0x7f0000000180)="c4484027d828120f57cd8cc438c2c390b1d5a62b57628e7351b768d6d679b450b53bd7c6fe7d4570dd878bc4bae003b2890fb024fa61c185091a73ec191acb51f29b119d2cdae76e7b3e9c07b57ddc6273", 0x10, 0x0, 0x3, 0x0, 0x0}, {[0x400, 0x2, 0x100, 0x7ff]}, 0x5, 0x0, &(0x7f0000000440)="ce965c9a701746305497814fe209e1983a80cba79c9e4f3df2ebf5603221f6775a443349"})
unshare$auto(0x40000080)
unshare$auto(0x40000080)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x402, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8a241, 0x0)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4044001)
ioctl$auto_USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000000)={0x23, 0x1, 0x2, 0x2, 0x9, 0x105, &(0x7f0000000200)})
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)
acct$auto(0x0)
socketpair$auto(0x800, 0x1, 0x8000000000000000, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
bpf$auto(0x1, &(0x7f0000000000)=@batch={0xfffffffffffffffb, 0x44, 0x2, 0x9, 0x81, 0xffffffffffffffff, 0x2, 0x8}, 0x100000cf)
r1 = socket(0x29, 0x2, 0x0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200"], 0x1ac}}, 0x40000)
recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x800}, 0x6}, 0xfffffdf9, 0x10, 0x0)
ioctl$auto(r1, 0x89f1, 0x24)

4.326833394s ago: executing program 0 (id=588):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000100)='.\x00', 0x595002, 0x60c)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x10, 0x2, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010026bd7000ffdbdf250400000014001a80ffff04800c0001"], 0x28}, 0x1, 0x0, 0x0, 0x891}, 0x4)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b", @ANYRES8], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0xf000000, 0x9}, 0x7}, 0x3, 0x0)

4.278904085s ago: executing program 4 (id=589):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/dynamic_debug/control\x00', 0x482, 0x0)
process_vm_readv$auto(0x0, 0x0, 0x1002000000001, &(0x7f0000000280)={0x0, 0xbbb}, 0x6, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0)
socket(0x2, 0x1, 0x106)
socketpair$auto(0x1a, 0x1, 0x8000000000000000, 0x0)
writev$auto(r0, &(0x7f0000000200)={&(0x7f0000000200), 0x1}, 0xb)

4.162974764s ago: executing program 0 (id=590):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000240)='/dev/usbmon32\x00', 0x80440, 0x0)
ioctl$auto_MON_IOCX_GET(r0, 0x40189206, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
write$auto(r2, &(0x7f0000000040)='Fm_\xbd\xc3!\x00', 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_0={0x9, 0xb5, 0x4, 0x48d0, 0x4, 0xffffffffffffffff, 0x74b, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x4, 0xe5, 0x3}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cec8\x00', 0x0, 0x0)
ioctl$auto_CEC_DQEVENT(r3, 0xc0506107, 0x0)
ioctl$auto_CEC_DQEVENT(r3, 0xc0506107, 0x0)
ioctl$auto_MON_IOCQ_RING_SIZE(r0, 0x9205, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/032/001\x00', 0x8202, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x2000, 0x80009, 0xffff, 0x8000000008011, 0xffffffffffffffff, 0x0)
r4 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0)
ioctl$auto_PROCMAP_QUERY(r4, 0xc0686611, &(0x7f0000000080)={0x101, 0x31, 0x7fff, 0x5, 0x8, 0x1, 0x800, 0x101, 0x5, 0x7f93, 0xfffffffe, 0x7ffffffd, 0x3, 0x7, 0xd})
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000)
r5 = socket(0x10, 0x2, 0x0)
r6 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000000), 0x204100, 0x0)
ioctl$auto_PPPIOCATTACH(r6, 0x4004743d, &(0x7f0000000100))
sendmsg$auto_NL80211_CMD_GET_REG(r5, 0x0, 0x40000)

3.717470894s ago: executing program 4 (id=591):
r0 = socket(0x2, 0x800, 0x108)
setsockopt$auto(r0, 0x0, 0xc, &(0x7f00000000c0)='l]U(\x01\t=\x1e\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00$\xa9\t{&\xc0\x14D\n\xa2\xad\xde\xb1\xd2\xadL\xa8\xf8\xcc\xea]d\v5\x0fr\xfc\a0\xe5\x1b\x81\xf3%6\x1f\xe8\rM\xc4\x0e\x1a\x12{\v\x1dTRL$\x02\xf3\xf0\x1eO\xb9^\xcdC\x13\xc6\x1b\xbd\xa37x\xa7.\xb1\x17', 0x4000fff)
mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0)
read$auto(r1, 0x0, 0x1ff)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0)
r2 = socket(0x2, 0x1, 0x3)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$auto_PR_SET_THP_DISABLE(0x29, 0x6, 0x2, 0x0, 0x40000)
mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYRESOCT=r3, @ANYRESOCT=r3, @ANYRES32=r3], 0x14}}, 0x20000040)
close_range$auto(0x2, r3, 0x4)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/ifb0/flags\x00', 0xb82, 0x0)
sendfile$auto(r4, r4, 0x0, 0x3)
write$auto(0xffffffffffffffff, &(0x7f0000000600)='0\x00\xa6\xcc\r\x91\xa4}l\x13\x97\x16r\xe3.p\xc9\xaa\xceQU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8azWyag\xe2\xc7cOV[8\x04c\xdf:]\xdd\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xc6t\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcd\xff\xaf!\xff\x80\x03\xcd\x9b\xb6\xd2\xe4\x15\x9a0d\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\x1cL\xd25\x02\x85]Z\xb6\x84\x19\xf3g\xa1_\xe1\xa5h\xa8\x99}\xbd5\xae\xf4\xf2\x818\x1e\x8cs\xf0\xe7\x87\x03\x91\xc6d\xccT0\xce\xe1\xa3\v\xdap\x1ex\xef\x85\xb8\x94\x1a\"Xy/\xc5\x02\xc8\xf4\xd7/A`a\x860\xf8\xe2Zv\xfb?\a\xc5F\xad#\x1a1%D\xb5\x06g\x93\xcf\xa2\x16\xb4\x03QI\x127|[\x06Yi)tq\x14\xc8\x01}M;\xe1\xe9\xfd\xa6{R_A\xcf\xbc\x18\x94:\x8b\xed\x1d\xc4\xff\xa5j%j\xe6%o,\xdbi`u\x85\xc9\xfd\"\xb7\x86\xe0\xca\x95\xfc\xc2\x1c\xba\f\xac\x86tk\xf1r\x147\xf7\xbbL\x16\xfaSt\xc5\xbf\x00[E<\xb0p\x84b\x94\x19\xe7\xa2\xab\x8d9\xf7%A\xbf(\xa6\xd5\xb4\x13\xc4DL\x92\xb7?\xbd-q\r9\x86/5', 0x80000000)
unshare$auto(0x40000080)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/plpmtud_probe_interval\x00', 0x88002, 0x0)
sendfile$auto(r4, 0x3, 0x0, 0x840000000000a)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/pci0000:00/0000:00:01.1/ata1/host0/target0:0:0/0:0:0:0/scsi_generic/sg0/power/runtime_suspended_time\x00', 0x346441, 0x0)
r6 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
write$auto_proc_mem_operations_base(r6, 0x0, 0x0)
write$auto(r5, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
r7 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D2\x00', 0x488601, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
setsockopt$auto_SO_REUSEADDR(r7, 0x9, 0x2, &(0x7f0000000180)='\x00', 0xd10c)
mlockall$auto(0x7)
mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, 0x2, 0x8000)
prctl$auto_PR_SET_THP_DISABLE(0x29, 0x0, 0x34, 0x4, 0x1)

3.586083095s ago: executing program 2 (id=592):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/dynamic_debug/control\x00', 0x482, 0x0)
process_vm_readv$auto(0x0, 0x0, 0x1002000000001, &(0x7f0000000280)={0x0, 0xbbb}, 0x6, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_NODE_GET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001e40)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="010200000000fbdbdf250d000000"], 0x14}, 0x1, 0x0, 0x0, 0x2000000}, 0x4)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r3 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), r3)
ioctl$auto_XFS_IOC_ATTRMULTI_BY_HANDLE(r3, 0x4048587b, &(0x7f0000000540)={{<r6=>r1, &(0x7f0000000140)="0e1019f56d53f9c12bccff6d04e0c3c4703d1a5136660b93c88a3f6f2ac3d4f84b7e853e10819c40e031f907964954eee2133cd392ecbb91b645df1a3bfb1381411fd59d022efc1e69b7263b312dfec824ba43af620214aa8304bbf5af4660e33c051e9d53d45139d16d0a632a33264e46356cbfa834c71f52af9aa215e152943a21b6649830c85f25f8e3f65571f81fa85f31545e374b23200e", 0x4, &(0x7f0000000240)="2a995d2de6", 0x3, &(0x7f00000002c0)="6964c7a182351c126148ad2e51b57aa52be8ba805b1cd91b6e792a197add4e54b50f1778649caf05781ed0fa57bfdf05073b62a722b02f223d183a4ecf35ffb718", &(0x7f0000000340)=0xfff}, 0x8, &(0x7f0000000500)={0x1, 0xfffffffe, &(0x7f0000000380)="449a742cf07b92485b58b915c2c4b36401684cddabd53e6d", &(0x7f0000000480)="ba144cf2e6c8acb3f717542b9297a02a50be544dcc527fb3ab6b07fe56328c954680c3c79b3598185f20cac1b31555f7ab097d2e08631de6bd1917761570696280acc9ada0df325c08a4e81b4757d6386553e86a4e6b668f3675a811309b", 0x94fd, 0xff}})
r7 = semctl$auto_GETPID(0x9, 0x7f, 0xb, 0x9)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r1, &(0x7f0000000900)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000008c0)={&(0x7f00000005c0)={0x2ec, r5, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0x1}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x7}, @NL802154_ATTR_PEER={0x18a, 0x28, 0x0, 0x1, [@nested={0x5e, 0x122, 0x0, 0x1, [@typed={0x6, 0x67, 0x0, 0x0, @str='\\\x00'}, @generic="fa791f066e9d7788e5f64de7098aab3db756ca629380f0d9028277d4cadbea7f979aff0d75c9484af3748a27168e6e7b5fb376ea02093fa0becc9e7700d2337fa1e422d0eb83", @typed={0x8, 0x15, 0x0, 0x0, @fd=r6}, @nested={0x4, 0x100}]}, @nested={0x2c, 0x141, 0x0, 0x1, [@typed={0x8, 0x23, 0x0, 0x0, @fd=r4}, @nested={0x4, 0x60}, @typed={0x8, 0xcb, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x14, 0x154, 0x0, 0x0, @ipv6=@remote}]}, @generic="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"]}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x2a}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x5}, @NL802154_ATTR_SCAN_DONE_REASON={0x5, 0x25, 0xe2}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x1d}, @NL802154_ATTR_SEC_KEY={0x118, 0x30, 0x0, 0x1, [@generic, @typed={0x4, 0x123}, @nested={0xf9, 0xb2, 0x0, 0x1, [@nested={0x4, 0xc9}, @typed={0xf, 0xd3, 0x0, 0x0, @str='\\\xa1:.)]:).}\x00'}, @nested={0x4, 0xec}, @typed={0x8, 0x107, 0x0, 0x0, @pid=r7}, @typed={0x2a, 0x1b, 0x0, 0x0, @binary="533375ad0d97cd78d309db323364d41a98aa873e2c9e7a5de44a808defdd340b64633351abd8"}, @generic="e7a438556832c285897e2c5603211338a25cbd99a371c13d576ba51546bbf5b71ad97e00b71803f34c1b2cab78fb91727b75f4a85fb07acbb609c54f023f54d0352bdd442a4c5d28501da7908dcae83b1b74e844c31d743ab89cc8eb408b66d76a357e466a7f11888db979bb7790fa618783cca3017dfdf3b07ca37d259ae029459b0f2eb4c42b1633d516ad6623ae298965680f3f6dbe8445c80e3b5ecdceea5f", @nested={0x4, 0x9f}, @generic="56d2dda8"]}, @typed={0x14, 0xb1, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}]}]}, 0x2ec}, 0x1, 0x0, 0x0, 0x24008045}, 0x20000000)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$nl_generic(0x11, 0x3, 0x10)
bind$auto(r8, &(0x7f0000000200)=@generic={0x11, "0000100000000000929e006300"}, 0x80)
eventfd$auto(0x3)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0)
socket(0x2, 0x1, 0x106)
socketpair$auto(0x1a, 0x1, 0x8000000000000000, 0x0)
writev$auto(r0, &(0x7f0000000200)={&(0x7f0000000200), 0x1}, 0xb)

2.877239007s ago: executing program 2 (id=593):
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x4000) (async, rerun: 64)
open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000280)={0x3e, 0x7, "d439a68f09110090b7a28d721c2db21e4fbc90f853909450ef2dc9c600000000000000222b326c7b0d1471e7687a4c70d9a97a6bd1e8496256fcd70c84de"}, 0xa0000001) (async, rerun: 64)
kexec_load$auto(0x55c5f39b, 0xffffffffffffffff, &(0x7f0000000180)={@kbuf=&(0x7f00000001c0)="098e68650d4ea0c641cd00b8c7984a", 0x1, 0x4800c003, 0x7ffffffe}, 0x4) (async)
sysfs$auto(0x4, 0x23, 0x9) (async)
mmap$auto(0x3, 0x2020005, 0x1000000000002, 0x2000000000ebd, 0xffffffffffffffff, 0x2)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000440)='/proc/fs/cifs/DebugData\x00', 0x2000, 0x0) (async)
read$auto(0xffffffffffffffff, &(0x7f0000000480)='/proc/h\xa4\xac\xcd\x94\xe1\x92\tdevaces\x00\xf9K\xf9\n\x802\xf7\xba:\xc9 \x9a\x19om\x1d\xd8\x9c\x8f\x83=|1\x05\xc2\xff\x1e\xf6\x9e\x80\xcd\xe4H\x14e\xe3\x9e\xd5\x87\xc7\x19v\xb8\x9a\x1b[_m\xc4nr%\x04\xdbC\x8f,X%\xdf}\xa2yd]\xe7{\x87\xf4\xf8\x99\x98\xa8\x8d\xd1 \x9e\xd8\xa3\x00\xe5#*k\xb2\xf5\x1b\xe9/\xf1\xc4\xfd\xc3|\xa1\x9f\xd9\x81W\x13\xb3I8\xee(<Z\xccEE`vBM\xceO\xe2\xc5\x1a\xd8\x8d\x11H6D\n\xe9\xa7*\x01\xb8y\xbe\x11\xdb(\x1b\"\xadJT;XwF&\xdd\x1c9\xacDxI5\xcfq\xd1|\xc8,+\xa6\xadE\x1d\xc5y\xb5)\xab F\xa3&\xd5\xd3\x01\xb2:f\xa4', 0xc9e4)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D1c\x00', 0x420901, 0x0) (async)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0) (async)
r0 = socket(0x10, 0x2, 0x0) (async, rerun: 64)
r1 = socket(0x1d, 0x800, 0x6) (rerun: 64)
r2 = socket(0x2, 0x1, 0x1)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/platform/dummy_hcd.3/usb4/ep_00/bInterval\x00', 0x2384c0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000080)=""/69, 0x45)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
write$auto(0x3, 0x0, 0x81)
sendfile$auto(r1, r0, &(0x7f0000000100)=0x7fffffffffffffff, 0x1) (async, rerun: 64)
inotify_init1$auto(0x3000000000000) (rerun: 64)
io_uring_setup$auto(0x57, &(0x7f0000000200)={0xe71, 0xb, 0x3804, 0x2, 0x20008ae, 0x400a, 0xffffffffffffffff, [0x8, 0xfffffffd], {0x6, 0x80000001, 0x8c48, 0x29b, 0x3, 0x82, 0xfffff001, 0x6, 0xfffffffffffffffd}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c2, 0x9, 0x100000000}}) (async)
pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x5, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0x3, 0xffffffff, 0x7fffffffffffffff, 0x0, 0x1000, 0x2, 0x8, 0x3ff]}, 0x0, 0x0, 0x0, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async, rerun: 64)
unshare$auto(0x40000080) (rerun: 64)
socket(0x1, 0x2, 0x2) (async, rerun: 64)
mmap$auto(0x6, 0x6, 0x3, 0xeb1, 0x7, 0x8000) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x80000008000) (async)
r4 = socket(0xa, 0x1, 0x84)
setsockopt$auto(r4, 0x10000000084, 0x7f, 0x0, 0xad4)

2.586865803s ago: executing program 2 (id=594):
r0 = prctl$auto(0x34, 0x0, 0x0, 0x3999, 0x3ff)
openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000180), 0x48402, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x123002, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sr0\x00', 0x8ee46, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000680), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = fsopen$auto(0x0, 0x1)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000280), 0x20822, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x8, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TCFLSH2(r2, 0x540a, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0xffffffffffffffff, 0x10008000)
write$auto(0x1, 0x0, 0x80000000)
mmap$auto(0xfffffffffffffffe, 0x9, 0xdf, 0xeb0, 0x401, 0x7)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), r0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f00000004c0)={0x14, r3, 0x20, 0x70bd22, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x240048cd}, 0x20040080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000240)='/dev/admmidi2\x00', 0x101000, 0x0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYRESOCT=r1, @ANYRES16=r3, @ANYBLOB="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"], 0x48}, 0x1, 0x0, 0x0, 0x4000010}, 0x4088040)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
mmap$auto(0x0, 0x202000c, 0x3, 0xeb4, 0xffffffffffffffff, 0x8000)
socket(0x3, 0x4, 0x0)
ioctl$auto(0xc8, 0x400454d0, 0x0)

2.433097242s ago: executing program 0 (id=595):
msgctl$auto_IPC_STAT(0x1, 0x2, &(0x7f0000000640)={{0x5, 0x0, 0x0, 0xa8f1, 0x6, 0x6, 0x7}, 0x0, 0x0, 0xfffffffffffffffd, 0x80000001, 0xd, 0x9, 0x80cf, 0x7fff, 0xf, 0xfff8, @raw=0x7})
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00')
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x2, 0x3, 0x0)
listen$auto(0x3, 0x81)
ioctl$auto(0x3, 0x541b, 0x74)
ioctl$auto(r0, 0xc, 0xffffffffffffffff)
mmap$auto(0x1000000000003, 0x4, 0x0, 0x9b32, 0xffffffffffffffff, 0x8000)
getsockopt$auto_SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, 0x0, &(0x7f0000005b00)=0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS2\x00', 0x101e81, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x125a02, 0x0)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0xd00, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty1\x00', 0x40, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyr0\x00', 0x6a500, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
setfsuid$auto(0xee01)
close_range$auto(r0, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x3, 0x6)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, r0, 0x20800000)
socket(0xa, 0x5, 0x0)
r2 = memfd_create$auto(0x0, 0x5)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), r2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="d8da8fb0e1cc119ce3c1f8f8042bde3b73f633faff5f9ec760a6837b5f5330c5029827cac5fe0eff9a793f9eebf5a03f379c5aee9f840918767536834eca502479abfbb844158cc0805d2adc8094bf6367a7c4063331e34a5fadee6fdec1cb602e74ec7adc548901f4b4866a307bbe83c9c2dbb407ce6a767f0151879413c16b6c39f7deb455de7a799e1e9aeb0384b5d6faecc312b0d497cba6a148ee64aaf703dd18fa02af2949938a72c53e274d668fa1103e305e1723b5917419bed76333c1cb05586cfb8825593266f2fdc903e14efbac552d7460e9caa2f1e0dce65e15af8873d1187ae5351ad1", @ANYRES16=r4, @ANYBLOB="010425bd700002dcdf25030000000400080004000800ba000780ca1860ccc0df4d98b936891dcaacb62ea6836747b74712fd78976fdd4f0ca99fc6f27ba18f382a2abed0e41ed96e3d134fc9d6c0c1d4acfbf5e4e7576980eb7cdd3e39e3112b9e2925d52f1ff48faf1ebcb74d69bca012191c3a0b00236383e569fe50828d0eb421e74fda03c0ba095db9b52df703f86f4a88ec1255256b6c3648dad8bb9bb27b2e1c3a3dd08b34e30e788d4604eb40933c4c617c0f6c26df4282fc45e6d4a2b3a171914022af8689b494e07c64d08f0000"], 0xd8}, 0x1, 0x0, 0x0, 0x80}, 0x800)
ioctl$sock_SIOCGIFINDEX(r1, 0x401c5820, 0x0)

1.831344964s ago: executing program 0 (id=596):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1e, 0x0, 0x0)
r0 = socket(0x2b, 0x1, 0x0)
r1 = openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/o2hb/quorum_regions\x00', 0x500, 0x0)
bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x17}}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000280)="205fb9255274f8ddc3edaae67c75fe0497abc44df62328ef06b30f66223392a1a37c8cc79bcffcdaed8a319e821f82a5afd4a6edfff955c395e9cdd8b3051d904e848b127374cc5c09a123f22c0f119aa3cc71b41f9420d59de22ba60bf0905499c3c9ed090d4b8e4087265350f82393c75a1a96f75bfadc73903adabd", 0x12, 0x0, 0x2009, 0x0, 0x1f, 0xb}, 0x6000}, 0x2, 0x20000003)
sendfile$auto(0x1, 0x3, 0x0, 0x7ff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/fs/bcache/register_quiet\x00', 0x401, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/nr15/queues/tx-0/tx_maxrate\x00', 0x10b942, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000001000)='/dev/dsp\x00', 0x1, 0x0)
ioctl$auto_SOUND_MIXER_READ_RECMASK2(r3, 0x80044dfd, 0x0)
setregid$auto(0xffffffffffffffff, 0xfffe)
setresgid$auto(0x0, 0x0, 0x0)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket(0x15, 0x5, 0x3)
connect$auto(0x3, 0x0, 0x55)
r4 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x199)
execveat$auto(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r5 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000080), r4)
openat$auto_force_suspend_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/bluetooth/hci2/force_suspend\x00', 0x2600, 0x0)
mmap$auto(0x0, 0x1, 0x1, 0xeb1, 0xfffffffffffffffa, 0x8000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe)
futex$auto(0x0, 0x3, 0x2, 0x0, 0x0, 0x71a8dce0)
bind$auto(0xffffffffffffffff, &(0x7f0000000240)=@l2tp={0x2, 0x0, @local}, 0x7)
sendmsg$auto_NFC_CMD_START_POLL(r4, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c0000", @ANYRES16=r5, @ANYBLOB="01002bbd7000ffdb0700000000001e00000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4044081}, 0x10)
socket(0x9, 0x4, 0x7fffffff)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/state\x00', 0x102, 0x0)
sendfile$auto(r6, r2, 0x0, 0x7)

1.621228028s ago: executing program 0 (id=597):
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f00000001c0)="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")
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_nl80211(0x0, r1)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x1d, 0x2, 0x7)
bind$auto(0x3, &(0x7f0000000040)=@can, 0x6a)
sendto$auto(r3, 0x0, 0x6fffff9, 0xfffffff8, &(0x7f0000000440)=@can, 0x36)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0xf0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xc, 0x800008000)
vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2})
write$auto(0xffffffffffffffff, &(0x7f0000000100)='d>*\xd2x\xc7\xbf\xff\x9a\xc01(\x00iM\x9c\bAa\x9e\xe98\xee\x15\xd3\xc5v\x99\f|\xe3\xbf\xd9\xf4C\x14A\xe6k\x105\xee\xc5\xaa$\x16\t?g\xb8b\x12\v*\xf9@B\xd0\xd2\x99{\x8b^\xff@\x83\x02Tvt\xc1_\x98\x9f\x16\xd5Is', 0x100000a3da)

1.345745662s ago: executing program 1 (id=598):
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008012, 0x3, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/transparent_hugepage/khugepaged/max_ptes_none\x00', 0x183042, 0x0)
writev$auto(r0, &(0x7f0000000040)={&(0x7f0000000140), 0x6}, 0x1)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'wg0\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), 0xffffffffffffffff)
r5 = socket(0x2, 0x3, 0xa)
getsockopt$auto(r5, 0x0, 0x30, 0x0, &(0x7f0000000040)=0xdbb)
sendmsg$auto_WG_CMD_SET_DEVICE(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x24, r4, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r3}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x10000}]}, 0x24}}, 0x810)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0_to_hsr\x00'})
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$auto_XFS_IOC_PATH_TO_FSHANDLE(0xffffffffffffffff, 0xc0385868, &(0x7f00000003c0)={0xffffffffffffffff, 0x0, 0xf4, 0x0, 0x2, &(0x7f0000000200)="8605162ae41561947c97616419bf9ce4713c68cc31392e13383f2b6e81bf8db7d14c1f087579971f95079c7d9561ed24f0173dae220a4fad877b349926c1d09e4285c8d9ae1e7ead513aed30ebd583f8badf4d7b5b896f5ab011100c8a9ce366d5247edb9d07ac432751b46ab2443f85f5c274f0d745b4d02f", 0x0})
close_range$auto(0x2, 0x8, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/input/event0\x00', 0x0, 0x0)
socket(0xa, 0x5, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r7)
ioctl$auto_KVM_GET_MSRS(r6, 0x4140aecd, &(0x7f0000000180)={0x7})
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x2000000006, 0x6)
socket(0x2c, 0x3, 0x0)

1.274416524s ago: executing program 2 (id=599):
mmap$auto(0x0, 0x400008, 0x40000df, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
ioctl$auto_RNDADDTOENTCNT(0xffffffffffffffff, 0x40045201, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x494400, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x0)
r0 = openat$auto_fake_panic_fops_(0xffffffffffffff9c, &(0x7f00000001c0), 0x21a803, 0x0)
connect$auto(r0, 0x0, 0x80835e)
mq_open$auto(&(0x7f0000000000)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\xb8b\xed\xfb\x0f\xe5\x9dZ\xc2\x00\x01\x00\x00\x00\x00\x00\x00\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\x00\x80\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagqu5<y\xa5\x97\x13\xef\xc4g\xca\xa4&\x81I6\v\xcc\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc2\xd8\xaerVa\xeen\x80\xa6\xe6$\x9b\xc9A\x90\xfb\xf8#\n\xb6\x1b\x8e[7:iV+s\x90\xce\xb0B\x87\xfc`@\x8ac\xe5\x89\x86K\xd8\xc2\xdc\xaa\xe8\x1eW>\x80', 0x6, 0x7, 0x0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x100)
write$auto_cachefiles_daemon_fops_internal(r1, &(0x7f00000000c0)='a', 0x1)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio1\x00', 0x80502, 0x0)
socket(0x2, 0x2, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/bus/platform/drivers/dln2-spi/bind\x00', 0x6019aa8e5ca3bfae, 0x0)
fremovexattr$auto(0xffffffffffffffff, &(0x7f00000002c0)='system.posix_acl_access\x00e\xd8\v\x1b\x02\xd5q?\x8c\xf1\x8f\x89\x7f\xd47\x84dG\xb3\xf1\xa6\x1b\x03\x18s8G \x950\xf0\xe0H!\x86,\xd1{\xf0\vX-c\xfd\xc4\xf24\xdd\xac\xea\x1f1\xc2+0\xc7gA\xa8\xc6B\xc9f\'_]\xe5.\xc6X\xe0c\xbbtzB\xe7\x9383\xdf\xf7x\x18\xd8\xfb(\xae\xb6\xc3\x02;mlG\x14\xdf\x9f\xea\xbf\x93\xae\xa5.\xfd\xe2a\xa4\x1bK\xbbZA\xb8\xc4\x9f\x93\xff\x86l\xd2\a7\xba=LC\xc4\xdc3\xf3%\xef\x7f\x81\x9eB\x9ak\a\xa3\xea?\x11\xd8LuY\x9b\xa8\xe2j\x98\\\xd0\xd72_c\b\xb3\xd1\xa6g,5\b|\x95\x98\xb0c\x90\xfd\x12\x1f\x1c!)(\xae\xfe\xc4\xec\x8f\xa1\x98\te\'\xc8\x97\xda\xe4&)\xe5\xa3)@\x13In\x1e0\xe5\xff\xcbv\xd2B\xd5\xaf+\xc8T\xc2\xb1\xd3\xaan\xfe}\x17\xcd\xebD[\xba\x9d\'\xb0')
setxattr$auto(&(0x7f00000001c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', &(0x7f00000002c0), &(0x7f00000004c0), 0x3, 0x2)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0xb, 0x252, 0x2007d48, 0x948b, 0x4, 0x0, 0x4b, 0x3, 0xfffffffffffffffd, 0x80000005, 0x7, 0x4, 0x5, 0x1, 0x1]}, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x840000000002, 0x3, 0xff)
socketpair$auto(0x4, 0x3, 0x2, &(0x7f0000000180)=0x4)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @local}, 0x55)
mmap$auto(0x0, 0x240009, 0xdf, 0x8000009b72, 0x7, 0x28000)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)
write$auto(0x3, 0x0, 0xffd8)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/transparent_hugepage/khugepaged/max_ptes_none\x00', 0x183042, 0x0)

530.625828ms ago: executing program 0 (id=600):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_VENDOR(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000001700)={0x14, r1, 0x705, 0x70bd27, 0x25dfdbfb, {0x67, 0x0, 0xfff0}}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x80)

313.44202ms ago: executing program 1 (id=601):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x48, r1, 0x1b, 0x70bd25, 0x25dfdbf9, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x14, 0x3, 0x0, 0x1, [@nested={0x10, 0xc, 0x0, 0x1, [@nested={0x14, 0x9, 0x0, 0x1, [@typed={0x8, 0x3b, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}, @OVS_PACKET_ATTR_PROBE={0x4}]}, 0x48}, 0x1, 0x0, 0x0, 0x50}, 0x400c880)

243.82597ms ago: executing program 4 (id=602):
socket(0xa, 0x2, 0x73)
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) (async)
setresgid$auto(0x81, 0x800000a0, 0x8) (async)
setgroups$auto(0xc00000000, 0xfffffffffffffffc) (async, rerun: 64)
setresuid$auto(0x8, 0x8, 0x0) (rerun: 64)
r0 = setfsuid$auto(0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/lock_policy\x00', 0xa6340, 0x0)
write$auto(r1, 0x0, 0x2) (async)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfs4.idtoname/content\x00', 0x181b80, 0x0)
msgctl$auto_IPC_SET(0xffffffff, 0x1, &(0x7f0000000100)={{0x3, r0, <r3=>0xee01, 0xd, 0x938, 0x200, 0x1f}, &(0x7f0000000080)=0xb, &(0x7f00000000c0)=0x6, 0x10, 0x6, 0x100000000, 0x0, 0x0, 0x0, 0x5, 0x8, @inferred=<r4=>0x0, @raw=0x7})
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000ac0)='/sys/devices/virtual/block/nbd7/queue/io_poll\x00', 0x40000, 0x0) (async)
shmctl$auto_SHM_STAT(0x2, 0xd, &(0x7f0000000940)={{0x9, r0, <r5=>0xee00, 0x8000, 0x5, 0x4, 0x3}, 0x9, 0xe9, 0x0, 0xffffffff, @raw=0x8, @inferred=r4, 0x7, 0x0, &(0x7f0000000340)="9a5d9e3183e74769c65da67b08f3e80c4cea162cfe2acc6b5759ecc98d400727765e293425d9849ce8f15ac28ac0d9345bb8a938de33244ca57da093bab769c52519d724be0a0acff088694a2f49dd957655572bd32cab0989c9b1231baa94e584b4f59634fed61b197f103e9f6a0b5774421a396d8161b2c463c8c218bf71a61d8fa9ede736618588242d2770215db9f70b6be7fc745442c5947938da1c6b490efa0110ed64296f3aa188ad67acf307c4e1fe1fbfbf84bf6379ecc14b15b5e7b4e3539ab298dbb4bdbdc7219b26826147b644ba19011d4e8d06f5144792694e000075db7cfc91bf83ec16f9b4", &(0x7f0000000b00)="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"})
setregid$auto(r3, r5) (async, rerun: 64)
read$auto(r2, &(0x7f00000006c0)='2\x06J Nwe0\xbd\"\x8f\xe5h_b\xde\x19\xa5\x0e\xfa\xe0\xcb\xb7\xaceW\x1a\x1f\xae\xd8\xfe\x01Y\xd6\xba\xde3\xc7\xf8\x91\xda\xf6_%\xf30\xdc\x97<\xf3A\xa7\xb4\x8dj\xbd\x02\xb1}{e\xf64\xecC\x83,\xecp7j\xf8<\xc8x\xd4\xb0\x1d\b\xb08\x01\x9e\x9et\x8aa\xe1\re\xcf\x8e\x02\xeeW\xf0z\vk\x02_\xdb\x15f8>;zM\xa95\x16\xe9l\xf5\xaa\xaa\x03\x18p\x0e\xde$\xc3\xa9\xac\xc7\x98\x05<\xef\xcd@z\fx}F\x93\xe1\xbd\xb3s\x80\xc1e\xe9T1\xbf\xc8_^\a\x03\xad\ni\n~-u)\x88\x97\xed\xa7\x9b\x0f\xef\x99\x13\xdc<\xd1{\br\xd6[\xd3\xa9-(KH\b\xdfJ\xdek\xef\xc9\xd7\n\x83m\x86\xf2\a\x8d\x19\xe0%\x02u\xfd\xda\xa3\xefA\xbd2?C\xa5\x8a\xe3\xc6\xd7\x00\x14n\xb8<\xab\x96\x8d\xa1\xf4\x87\xe5\a:z\xea\xcc\xa1\x8d\xae8\x12\xa6\xb9\xd99\xaa\xc5\x10\xad\xdd\x89\xddC\xf5\xd2Q\x92\xcd\xcc\x9f\x1a\xdbR\xeeL:\x87\xb3\xb0\x84\x1bR\xf2\xe2/\xa3\x0e\x90\x98\x8c\xc0\xa4\xda+U\b\x88\xa7\x88\x1fC\xbb\xa8\xce\x0f\xd5\xdew\x99\x18G.s\x16\xfa\xf2\x96|\x1e]\xe5\xf8\xb1\x8b.}\x841\xd8\x98\xd8f86h\xab\x94\x7f\xc4<\x03\xdd\x86=\xb6\x1e@\xab6\x81\xce\xaa\xcf\xfd\x947\xc3\x86\xfe\xb7O\xd9\xa9\xb6[\xcc\xd8\xe1\xa9\x84[\xe0\xd4\x03\x90@\x03\xbe\xba\xee\xed\xe9\xb1\xd2\xf1\x8cgn\xb7m/\xf1\"\xc2\xeb\x1d\x04\xf3\xf1\x96\xf2\x00C\xf0wg\xd6\x11\x18\xb5o\x9d\xd7`\xce\x81\x9b1b\x8ce\x99*\xa3\xd2\x8dAw\xd9\xa6l\\\x17\xbb\xf6\xe2\xa2<\n\xc0\f:\x97\xff\xc6y\x05<\xa6\x81\xd92\xc9\x9e\f[\xf9\xfc\xf1ih\"J\x92\xd2\xd4\xc2\xe8\x89 \x81\xbf8C\xa9\x1at\xa1\xdc\x94\xc5\xc8K\xbb\x14h\xa9)\xaa\xf2\xda\xaf\xb0\rs\xe6\x97\x1e\xcc6\x94\xff\x1b\x8e\x98\xf7\xa0\x8aqm\xea\xc2\xfd\xfc\x8b\xdc\x02\xde\xfb{\x98G\x871\x95 \xfa\xb7\x93=\x15\xd9\xff>v\t\x1cIv\x10\xd5\xa7Bm{`\x88-Sd\x8d\x12\x83\xfaUc\x8f \xbc\xa8\xb8\xd2\xea\x93l\xb4\'\x97=}\x87\xf6\xc4\xe1\x16\xa5\xca\x10\xe7\xe69M\xa2t\x12\xd2\x98^f\x9a\xd1\xf0', 0x67b) (async, rerun: 64)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x68b82, 0x0)
ioctl$auto_KVM_GET_MSR_FEATURE_INDEX_LIST(r6, 0xc004ae0a, 0x0) (async, rerun: 64)
r7 = ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) (rerun: 64)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), r7)
bpf$auto_BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000a00)=@info={r2, 0x3, 0x8}, 0x1) (async)
ioctl$auto_BTRFS_IOC_LOGICAL_INO_V2(r7, 0xc038943b, &(0x7f00000002c0)={0x7, 0x7f, [0x4, 0xe, 0x7fffffff], 0x7, 0x3}) (async, rerun: 32)
connect$auto(0x3, 0x0, 0x50) (async, rerun: 32)
r8 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r8, 0xc0045516, &(0x7f0000000040)=0x5) (async)
r9 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x123001, 0x0) (async)
ioctl$auto_XFS_IOC_FREESP(0xffffffffffffffff, 0x4030580b, &(0x7f0000000000)={0x1ff, 0x0, 0xff, 0x800, 0x8, <r10=>0xffffffffffffffff}) (async)
r11 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x101401, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r11, &(0x7f0000000180)="868d180916c735e093b9861f0bde02ef6484efd1225c2444fcc82c0d59436954f1c5f1868337cc88c0551ac5e2456b2d59f35d15836a45174dd7a65e2b9c11584402a2d233711c1075c65047b196855f291971f6fa05a6ce417e5956bc9c1b3d364815d3f66cf7e1f2579c955b9490f89af6f234d145f17a3830dd2773e81e48dae316b7eedc93a2d3aa1f6e25ae9345a238bb040fbe002bfa003e9067ebdc1eff0c263241c8f40b", 0xa8) (async, rerun: 64)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r8, 0xc1105517, &(0x7f0000000580)={{@inferred=r10, 0x10001, 0x9, 0x3, "790eaa00ffff8eac2cdafc1f64010043eeb0b053030001ffff000e00"}, 0x4, 0x2000966, 0x3, @raw=0x404, @reserved="b20200a3077300f2c167afeb0a9902da3d58908ea1a8475fbd3a75d4690e48fc922df576c85b023b6deb06dbb68aec3f51e29bcc8b59d74badbdcc1ba97a2004117190c9a050186fa73f5a197762a94460d134b357b8b4d0caaf1ca142917779cef3673e637f2f5fde573fa4d4328a9ea0be7eccec0adb4f642cbb53d4faa89d", "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1cb04b435b3fcd0c7c61c329794e5311121c760cb9611c78e6947a99806bcc100"}) (async, rerun: 64)
ioctl$auto_SNDRV_CTL_IOCTL_TLV_COMMAND(r9, 0xc008551c, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/snd/midiC2D2\x00', 0x82, 0x0)

0s ago: executing program 1 (id=603):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000040))
mmap$auto(0xfffffffffffff000, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)

kernel console output (not intermixed with test programs):

.119520][ T5636] bridge_slave_1: entered promiscuous mode
[  100.128395][ T5635] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.135820][ T5635] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.143529][ T5635] bridge_slave_0: entered allmulticast mode
[  100.152808][ T5635] bridge_slave_0: entered promiscuous mode
[  100.197654][ T5635] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.205037][ T5635] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.213201][ T5635] bridge_slave_1: entered allmulticast mode
[  100.221259][ T5635] bridge_slave_1: entered promiscuous mode
[  100.230939][ T5637] team0: Port device team_slave_0 added
[  100.251728][ T5636] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  100.274460][ T5637] team0: Port device team_slave_1 added
[  100.305704][ T5636] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  100.383312][ T5635] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  100.394073][ T5637] batman_adv: batadv0: Adding interface: batadv_slave_0
[  100.401263][ T5637] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  100.427335][ T5637] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  100.448593][ T5636] team0: Port device team_slave_0 added
[  100.456862][ T5635] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  100.467014][ T5637] batman_adv: batadv0: Adding interface: batadv_slave_1
[  100.474142][ T5637] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  100.500791][ T5637] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  100.529142][ T5636] team0: Port device team_slave_1 added
[  100.594955][ T5635] team0: Port device team_slave_0 added
[  100.619676][ T5636] batman_adv: batadv0: Adding interface: batadv_slave_0
[  100.626958][ T5636] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  100.653005][ T5636] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  100.666439][ T5635] team0: Port device team_slave_1 added
[  100.691375][ T5636] batman_adv: batadv0: Adding interface: batadv_slave_1
[  100.698490][ T5636] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  100.725606][ T5636] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  100.761302][ T5637] hsr_slave_0: entered promiscuous mode
[  100.767766][ T5637] hsr_slave_1: entered promiscuous mode
[  100.774462][ T5637] debugfs: 'hsr0' already exists in 'hsr'
[  100.780492][ T5637] Cannot create hsr debugfs directory
[  100.837805][ T5635] batman_adv: batadv0: Adding interface: batadv_slave_0
[  100.844966][ T5635] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  100.871324][ T5635] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  100.911152][ T5635] batman_adv: batadv0: Adding interface: batadv_slave_1
[  100.918288][ T5635] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  100.944374][ T5635] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  101.046991][ T5636] hsr_slave_0: entered promiscuous mode
[  101.053586][ T5636] hsr_slave_1: entered promiscuous mode
[  101.059834][ T5636] debugfs: 'hsr0' already exists in 'hsr'
[  101.066176][ T5636] Cannot create hsr debugfs directory
[  101.184623][ T5635] hsr_slave_0: entered promiscuous mode
[  101.192119][ T5635] hsr_slave_1: entered promiscuous mode
[  101.198565][ T5635] debugfs: 'hsr0' already exists in 'hsr'
[  101.204847][ T5635] Cannot create hsr debugfs directory
[  101.351426][ T5634] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  101.367764][ T5634] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  101.409826][ T5634] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  101.421315][ T5634] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  101.455564][ T5634] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  101.466259][ T5634] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  101.498712][ T5634] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  101.511247][ T5634] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  101.639521][ T5637] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  101.658343][ T5637] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  101.667032][ T5637] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  101.678416][ T5637] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  101.687090][ T5637] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  101.698580][ T5637] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  101.707730][ T5637] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  101.719085][ T5637] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  101.840850][ T5635] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  101.855380][ T5635] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  101.875105][ T5635] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  101.887990][ T5635] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  101.900375][ T5638] Bluetooth: hci2: command tx timeout
[  101.906631][   T50] Bluetooth: hci0: command tx timeout
[  101.913456][ T5638] Bluetooth: hci3: command tx timeout
[  101.914062][ T5641] Bluetooth: hci1: command tx timeout
[  101.927809][ T5635] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  101.939012][ T5635] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  101.947513][ T5635] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  101.958144][ T5635] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  102.066500][ T5636] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  102.076794][ T5636] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  102.085501][ T5636] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  102.096220][ T5636] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  102.105711][ T5636] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  102.116617][ T5636] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  102.125291][ T5636] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  102.135700][ T5636] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  102.203390][ T5634] 8021q: adding VLAN 0 to HW filter on device bond0
[  102.272966][ T5637] 8021q: adding VLAN 0 to HW filter on device bond0
[  102.297821][ T5634] 8021q: adding VLAN 0 to HW filter on device team0
[  102.326787][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.334593][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.367561][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.374736][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.388082][ T5637] 8021q: adding VLAN 0 to HW filter on device team0
[  102.427205][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.434600][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.461020][ T1116] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.468225][ T1116] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.534456][ T5635] 8021q: adding VLAN 0 to HW filter on device bond0
[  102.586025][ T5635] 8021q: adding VLAN 0 to HW filter on device team0
[  102.616125][ T5636] 8021q: adding VLAN 0 to HW filter on device bond0
[  102.638199][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.645374][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.688190][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.695563][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.752862][ T5636] 8021q: adding VLAN 0 to HW filter on device team0
[  102.814955][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.822238][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.846423][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.853671][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.818250][ T5637] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.916982][ T5634] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.981065][ T5641] Bluetooth: hci1: command tx timeout
[  103.987847][ T5638] Bluetooth: hci2: command tx timeout
[  103.993439][ T5641] Bluetooth: hci3: command tx timeout
[  103.999571][   T50] Bluetooth: hci0: command tx timeout
[  104.059531][ T5637] veth0_vlan: entered promiscuous mode
[  104.130780][ T5637] veth1_vlan: entered promiscuous mode
[  104.160824][ T5636] 8021q: adding VLAN 0 to HW filter on device batadv0
[  104.176768][ T5635] 8021q: adding VLAN 0 to HW filter on device batadv0
[  104.243818][ T5634] veth0_vlan: entered promiscuous mode
[  104.284125][ T5634] veth1_vlan: entered promiscuous mode
[  104.294210][ T5637] veth0_macvtap: entered promiscuous mode
[  104.337369][ T5637] veth1_macvtap: entered promiscuous mode
[  104.381889][ T5636] veth0_vlan: entered promiscuous mode
[  104.414189][ T5635] veth0_vlan: entered promiscuous mode
[  104.422969][ T5636] veth1_vlan: entered promiscuous mode
[  104.456614][ T5637] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.479086][ T5634] veth0_macvtap: entered promiscuous mode
[  104.488756][ T5635] veth1_vlan: entered promiscuous mode
[  104.498638][ T5637] batman_adv: batadv0: Interface activated: batadv_slave_1
[  104.511138][ T5634] veth1_macvtap: entered promiscuous mode
[  104.543873][   T35] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.555352][   T35] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.576810][   T35] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.585984][   T35] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.627146][ T5634] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.663515][ T5636] veth0_macvtap: entered promiscuous mode
[  104.695435][ T5634] batman_adv: batadv0: Interface activated: batadv_slave_1
[  104.716653][ T5636] veth1_macvtap: entered promiscuous mode
[  104.729759][ T5635] veth0_macvtap: entered promiscuous mode
[  104.743943][ T5635] veth1_macvtap: entered promiscuous mode
[  104.772728][   T35] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.784512][   T35] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.812326][   T35] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.821266][   T35] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.855200][ T5636] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.889135][ T5636] batman_adv: batadv0: Interface activated: batadv_slave_1
[  104.903330][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.905862][ T5635] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.911545][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.974562][ T5635] batman_adv: batadv0: Interface activated: batadv_slave_1
[  105.011112][   T48] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  105.020057][   T48] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.063038][   T48] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.073211][   T48] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.086719][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.094894][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.112900][   T48] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  105.121884][   T48] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.132750][   T48] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.153886][   T48] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.171378][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.203382][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.316473][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.328147][ T5637] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  105.341338][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.460842][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.486133][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.581111][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.600638][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.689392][ T1166] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.707254][ T1166] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.755562][ T5787] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2'.
[  105.776996][   T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.814601][   T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.062172][   T50] Bluetooth: hci0: command tx timeout
[  106.068491][ T5641] Bluetooth: hci3: command tx timeout
[  106.071099][ T5638] Bluetooth: hci2: command tx timeout
[  106.075431][   T50] Bluetooth: hci1: command tx timeout
[  106.744486][ T5797] random: crng reseeded on system resumption
[  106.870454][ T5810] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  108.186695][    C0] vcan0: j1939_tp_rxtimer: 0xffff88807a226800: rx timeout, send abort
[  108.196963][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88807a226800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  108.666596][ T5821] FAULT_INJECTION: forcing a failure.
[  108.666596][ T5821] name failslab, interval 1, probability 0, space 0, times 1
[  108.692706][ T5821] CPU: 0 UID: 0 PID: 5821 Comm: syz.1.10 Not tainted syzkaller #0 PREEMPT(full) 
[  108.692756][ T5821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  108.692785][ T5821] Call Trace:
[  108.692796][ T5821]  <TASK>
[  108.692809][ T5821]  dump_stack_lvl+0x100/0x190
[  108.692858][ T5821]  should_fail_ex.cold+0x5/0xa
[  108.692902][ T5821]  should_failslab+0xc2/0x120
[  108.692945][ T5821]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  108.693000][ T5821]  ? skb_clone+0x190/0x400
[  108.693046][ T5821]  skb_clone+0x190/0x400
[  108.693091][ T5821]  netlink_broadcast_filtered+0xab3/0xe90
[  108.693155][ T5821]  ? netlink_has_listeners+0x21b/0x430
[  108.693210][ T5821]  netlink_broadcast+0x39/0x50
[  108.693259][ T5821]  kobject_uevent_env+0xcdd/0x18b0
[  108.693310][ T5821]  ? bus_to_subsys+0x114/0x150
[  108.693367][ T5821]  device_add+0x116e/0x1950
[  108.693415][ T5821]  ? __pfx_device_add+0x10/0x10
[  108.693477][ T5821]  nfc_register_device+0x41/0x3e0
[  108.693531][ T5821]  nci_register_device+0x7f1/0xb80
[  108.693585][ T5821]  ? __pfx_nci_register_device+0x10/0x10
[  108.693632][ T5821]  ? lockdep_init_map_type+0x5c/0x250
[  108.693677][ T5821]  virtual_ncidev_open+0x141/0x220
[  108.693734][ T5821]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  108.693787][ T5821]  misc_open+0x26d/0x450
[  108.693829][ T5821]  ? __pfx_misc_open+0x10/0x10
[  108.693872][ T5821]  chrdev_open+0x234/0x6a0
[  108.693918][ T5821]  ? __pfx_chrdev_open+0x10/0x10
[  108.693965][ T5821]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  108.694020][ T5821]  do_dentry_open+0x6d8/0x1660
[  108.694062][ T5821]  ? __pfx_chrdev_open+0x10/0x10
[  108.694116][ T5821]  vfs_open+0x82/0x3f0
[  108.694172][ T5821]  path_openat+0x208c/0x31a0
[  108.694229][ T5821]  ? __pfx_path_openat+0x10/0x10
[  108.694284][ T5821]  do_file_open+0x20e/0x430
[  108.694330][ T5821]  ? __pfx_do_file_open+0x10/0x10
[  108.694406][ T5821]  ? alloc_fd+0x476/0x790
[  108.694453][ T5821]  ? do_getname+0x191/0x390
[  108.694519][ T5821]  do_sys_openat2+0x10d/0x1e0
[  108.694584][ T5821]  ? __pfx_do_sys_openat2+0x10/0x10
[  108.694655][ T5821]  __x64_sys_openat+0x12d/0x210
[  108.694711][ T5821]  ? __pfx___x64_sys_openat+0x10/0x10
[  108.694773][ T5821]  ? rcu_is_watching+0x12/0xc0
[  108.694820][ T5821]  do_syscall_64+0x10b/0xf80
[  108.694869][ T5821]  ? clear_bhb_loop+0x40/0x90
[  108.694917][ T5821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.694957][ T5821] RIP: 0033:0x7f6094b9ce59
[  108.694990][ T5821] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  108.695023][ T5821] RSP: 002b:00007f6095b33028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  108.695063][ T5821] RAX: ffffffffffffffda RBX: 00007f6094e15fa0 RCX: 00007f6094b9ce59
[  108.695086][ T5821] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  108.695108][ T5821] RBP: 00007f6094c32d6f R08: 0000000000000000 R09: 0000000000000000
[  108.695128][ T5821] R10: 000000000000ffe4 R11: 0000000000000246 R12: 0000000000000000
[  108.695149][ T5821] R13: 00007f6094e16038 R14: 00007f6094e15fa0 R15: 00007fff65482088
[  108.695195][ T5821]  </TASK>
[  109.852152][ T5839] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  112.472649][ T5873] Zero length message leads to an empty skb
[  113.304686][ T5852] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  115.645733][ T5909] udc dummy_udc.0: soft-connect without a gadget driver
[  116.336526][ T5918] warning: `syz.2.30' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  116.429748][ T5921] syz.1.29(5921): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  118.634953][ T5939] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  119.287287][ T5968] netlink: zone id is out of range
[  119.317424][ T5968] netlink: zone id is out of range
[  119.355994][ T5968] netlink: zone id is out of range
[  119.377638][ T5968] netlink: set zone limit has 8 unknown bytes
[  119.863822][ T5977] FAULT_INJECTION: forcing a failure.
[  119.863822][ T5977] name failslab, interval 1, probability 0, space 0, times 0
[  119.911247][ T5977] CPU: 0 UID: 0 PID: 5977 Comm: syz.0.40 Not tainted syzkaller #0 PREEMPT(full) 
[  119.911289][ T5977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  119.911306][ T5977] Call Trace:
[  119.911316][ T5977]  <TASK>
[  119.911328][ T5977]  dump_stack_lvl+0x100/0x190
[  119.911387][ T5977]  should_fail_ex.cold+0x5/0xa
[  119.911429][ T5977]  should_failslab+0xc2/0x120
[  119.911469][ T5977]  __kmalloc_cache_noprof+0x7a/0x6f0
[  119.911520][ T5977]  ? __request_module+0x2c3/0x6c0
[  119.911557][ T5977]  ? lockdep_hardirqs_on+0x78/0x100
[  119.911611][ T5977]  __request_module+0x2c3/0x6c0
[  119.911647][ T5977]  ? __pfx___request_module+0x10/0x10
[  119.911679][ T5977]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  119.911736][ T5977]  ? lockdep_init_map_type+0x5c/0x250
[  119.911782][ T5977]  ? inode_init_always_gfp+0xce1/0x1000
[  119.911839][ T5977]  __sock_create+0x5c4/0x860
[  119.911895][ T5977]  __sys_socket+0x14d/0x260
[  119.911946][ T5977]  ? __pfx___sys_socket+0x10/0x10
[  119.911995][ T5977]  ? ksys_write+0x1ac/0x250
[  119.912045][ T5977]  __x64_sys_socket+0x72/0xb0
[  119.912094][ T5977]  ? lockdep_hardirqs_on+0x78/0x100
[  119.912147][ T5977]  do_syscall_64+0x10b/0xf80
[  119.912210][ T5977]  ? clear_bhb_loop+0x40/0x90
[  119.912251][ T5977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.912287][ T5977] RIP: 0033:0x7f7d7859ce59
[  119.912324][ T5977] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  119.912362][ T5977] RSP: 002b:00007f7d794d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  119.912394][ T5977] RAX: ffffffffffffffda RBX: 00007f7d78815fa0 RCX: 00007f7d7859ce59
[  119.912417][ T5977] RDX: 000000000000000b RSI: 0000000000000003 RDI: 0000000000000000
[  119.912437][ T5977] RBP: 00007f7d78632d6f R08: 0000000000000000 R09: 0000000000000000
[  119.912457][ T5977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  119.912477][ T5977] R13: 00007f7d78816038 R14: 00007f7d78815fa0 R15: 00007ffcb26aed18
[  119.912525][ T5977]  </TASK>
[  120.542388][ T5978] syz.3.41: vmalloc error: size 107752139522048, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  120.563157][ T5978] CPU: 0 UID: 0 PID: 5978 Comm: syz.3.41 Not tainted syzkaller #0 PREEMPT(full) 
[  120.563199][ T5978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  120.563219][ T5978] Call Trace:
[  120.563230][ T5978]  <TASK>
[  120.563243][ T5978]  dump_stack_lvl+0x100/0x190
[  120.563289][ T5978]  warn_alloc.cold+0x95/0x1c1
[  120.563326][ T5978]  ? __pfx_warn_alloc+0x10/0x10
[  120.563378][ T5978]  ? clockevents_program_event+0x1ef/0x820
[  120.563431][ T5978]  ? __pfx_clockevents_program_event+0x10/0x10
[  120.563474][ T5978]  ? find_held_lock+0x2b/0x80
[  120.563525][ T5978]  ? __hrtimer_rearm_deferred+0x24d/0x740
[  120.563571][ T5978]  ? __hrtimer_rearm_deferred+0x24d/0x740
[  120.563626][ T5978]  __vmalloc_node_range_noprof+0x136c/0x1630
[  120.563675][ T5978]  ? irqentry_exit+0x24d/0x7e0
[  120.563725][ T5978]  ? lockdep_hardirqs_on+0x78/0x100
[  120.563786][ T5978]  ? disksize_store+0x11a/0x4e0
[  120.563852][ T5978]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  120.563904][ T5978]  ? __pfx___might_resched+0x10/0x10
[  120.563955][ T5978]  ? disksize_store+0x11a/0x4e0
[  120.564006][ T5978]  __vmalloc_node_noprof+0xad/0xf0
[  120.564051][ T5978]  ? disksize_store+0x11a/0x4e0
[  120.564115][ T5978]  disksize_store+0x11a/0x4e0
[  120.564177][ T5978]  ? sysfs_file_kobj+0xe4/0x290
[  120.564212][ T5978]  ? __pfx_disksize_store+0x10/0x10
[  120.564263][ T5978]  dev_attr_store+0x58/0x80
[  120.564305][ T5978]  ? __pfx_dev_attr_store+0x10/0x10
[  120.564345][ T5978]  sysfs_kf_write+0xf2/0x150
[  120.564380][ T5978]  kernfs_fop_write_iter+0x3e0/0x5f0
[  120.564428][ T5978]  ? __pfx_sysfs_kf_write+0x10/0x10
[  120.564465][ T5978]  vfs_write+0x6ac/0x1070
[  120.564506][ T5978]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  120.564559][ T5978]  ? __pfx_vfs_write+0x10/0x10
[  120.564628][ T5978]  ksys_write+0x12a/0x250
[  120.564668][ T5978]  ? __pfx_ksys_write+0x10/0x10
[  120.564705][ T5978]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  120.564761][ T5978]  ? syscall_user_dispatch+0x76/0x130
[  120.564806][ T5978]  do_syscall_64+0x10b/0xf80
[  120.564856][ T5978]  ? clear_bhb_loop+0x40/0x90
[  120.564899][ T5978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.564934][ T5978] RIP: 0033:0x7f661df9ce59
[  120.564960][ T5978] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  120.564992][ T5978] RSP: 002b:00007f661c1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  120.565025][ T5978] RAX: ffffffffffffffda RBX: 00007f661e215fa0 RCX: 00007f661df9ce59
[  120.565047][ T5978] RDX: 0000000000003dec RSI: 00002000000001c0 RDI: 0000000000000006
[  120.565067][ T5978] RBP: 00007f661e032d6f R08: 0000000000000000 R09: 0000000000000000
[  120.565087][ T5978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  120.565136][ T5978] R13: 00007f661e216038 R14: 00007f661e215fa0 R15: 00007ffda4dac958
[  120.565189][ T5978]  </TASK>
[  120.565761][ T5978] Mem-Info:
[  120.978239][ T5978] active_anon:6766 inactive_anon:12 isolated_anon:0
[  120.978239][ T5978]  active_file:2336 inactive_file:40521 isolated_file:0
[  120.978239][ T5978]  unevictable:768 dirty:480 writeback:0
[  120.978239][ T5978]  slab_reclaimable:13706 slab_unreclaimable:85908
[  120.978239][ T5978]  mapped:25827 shmem:2467 pagetables:1131
[  120.978239][ T5978]  sec_pagetables:0 bounce:0
[  120.978239][ T5978]  kernel_misc_reclaimable:0
[  120.978239][ T5978]  free:1345570 free_pcp:8461 free_cma:0
[  121.082072][ T5978] Node 0 active_anon:30636kB inactive_anon:48kB active_file:9344kB inactive_file:161876kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:104108kB dirty:1916kB writeback:0kB shmem:9932kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB kernel_stack:11840kB pagetables:4388kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  121.247009][ T5978] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:208kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  121.350281][ T5978] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  121.398381][ T5978] lowmem_reserve[]: 0 2477 2478 2478 2478
[  121.447335][ T5978] Node 0 DMA32 free:1410760kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:34700kB inactive_anon:48kB active_file:9344kB inactive_file:159876kB unevictable:1536kB writepending:2116kB zspages:0kB present:3129332kB managed:2537308kB mlocked:0kB bounce:0kB free_pcp:33248kB local_pcp:11896kB free_cma:0kB
[  121.646900][ T5978] lowmem_reserve[]: 0 0 1 1 1
[  121.699819][ T5978] Node 0 Normal free:0kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1100kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[  121.906895][ T5978] lowmem_reserve[]: 0 0 0 0 0
[  121.938920][ T5978] Node 1 Normal free:3953452kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:208kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:720kB local_pcp:488kB free_cma:0kB
[  122.035629][ T6005] syz.1.47 uses obsolete (PF_INET,SOCK_PACKET)
[  122.182171][ T5978] lowmem_reserve[]: 0 0 0 0 0
[  122.226054][ T5978] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  122.226326][ T5978] Node 0 DMA32: 220*4kB (UE) 385*8kB (U) 35*16kB (UM) 101*32kB (UE) 7*64kB (U) 36*128kB (UM) 25*256kB (UM) 10*512kB (ME) 9*1024kB (ME) 2*2048kB (UE) 332*4096kB (UM) = 1397512kB
[  122.226587][ T5978] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  122.226715][ T5978] Node 1 Normal: 3*4kB (UM) 9*8kB (U) 10*16kB (U) 1*32kB (U) 0*64kB 3*128kB (U) 3*256kB (UM) 3*512kB (UM) 2*1024kB (UM) 0*2048kB 964*4096kB (M) = 3953556kB
[  122.227236][ T5978] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  122.227257][ T5978] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  122.227276][ T5978] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  122.227295][ T5978] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  122.227314][ T5978] 47315 total pagecache pages
[  122.227324][ T5978] 0 pages in swap cache
[  122.227332][ T5978] Free swap  = 124996kB
[  122.227341][ T5978] Total swap = 124996kB
[  122.227351][ T5978] 2097051 pages RAM
[  122.227359][ T5978] 0 pages HighMem/MovableOnly
[  122.227367][ T5978] 430834 pages reserved
[  122.227376][ T5978] 0 pages cma reserved
[  124.896272][ T6034] FAULT_INJECTION: forcing a failure.
[  124.896272][ T6034] name failslab, interval 1, probability 0, space 0, times 0
[  124.988923][ T6034] CPU: 0 UID: 0 PID: 6034 Comm: syz.3.53 Not tainted syzkaller #0 PREEMPT(full) 
[  124.988972][ T6034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  124.988992][ T6034] Call Trace:
[  124.989003][ T6034]  <TASK>
[  124.989016][ T6034]  dump_stack_lvl+0x100/0x190
[  124.989062][ T6034]  should_fail_ex.cold+0x5/0xa
[  124.989106][ T6034]  should_failslab+0xc2/0x120
[  124.989146][ T6034]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  124.989200][ T6034]  ? ptlock_alloc+0x1f/0x70
[  124.989259][ T6034]  ptlock_alloc+0x1f/0x70
[  124.989308][ T6034]  pte_alloc_one+0x82/0x3d0
[  124.989357][ T6034]  __pte_alloc+0x6d/0x3e0
[  124.989396][ T6034]  ? __pfx___pte_alloc+0x10/0x10
[  124.989439][ T6034]  ? _raw_spin_unlock+0x28/0x50
[  124.989484][ T6034]  ? __pmd_alloc+0x3fb/0x950
[  124.989532][ T6034]  copy_page_range+0x3dbb/0x5b00
[  124.989601][ T6034]  ? find_held_lock+0x2b/0x80
[  124.989670][ T6034]  ? mas_wr_store_entry+0xa1/0x1e80
[  124.989706][ T6034]  ? __pfx_copy_page_range+0x10/0x10
[  124.989765][ T6034]  ? mas_store+0x666/0xac0
[  124.989801][ T6034]  ? __pfx_mas_store+0x10/0x10
[  124.989843][ T6034]  ? __pfx___vma_start_write+0x10/0x10
[  124.989911][ T6034]  dup_mmap+0xd25/0x2180
[  124.989973][ T6034]  ? __pfx_dup_mmap+0x10/0x10
[  124.990017][ T6034]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  124.990073][ T6034]  ? __lock_acquire+0x4a5/0x2630
[  124.990105][ T6034]  ? find_held_lock+0x2b/0x80
[  124.990147][ T6034]  ? __percpu_counter_init_many+0x2bc/0x3b0
[  124.990214][ T6034]  copy_process+0x6c78/0x7ed0
[  124.990261][ T6034]  ? __futex_wait+0x256/0x300
[  124.990327][ T6034]  ? __pfx_copy_process+0x10/0x10
[  124.990380][ T6034]  ? futex_hash+0x141/0x370
[  124.990423][ T6034]  kernel_clone+0x12e/0x9c0
[  124.990468][ T6034]  ? __pfx_futex_wait+0x10/0x10
[  124.990516][ T6034]  ? __pfx_kernel_clone+0x10/0x10
[  124.990587][ T6034]  __do_sys_clone+0xd9/0x120
[  124.990636][ T6034]  ? __pfx___do_sys_clone+0x10/0x10
[  124.990739][ T6034]  ? rcu_is_watching+0x12/0xc0
[  124.990787][ T6034]  do_syscall_64+0x10b/0xf80
[  124.990838][ T6034]  ? clear_bhb_loop+0x40/0x90
[  124.990888][ T6034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.990923][ T6034] RIP: 0033:0x7f661df9ce59
[  124.990951][ T6034] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  124.990984][ T6034] RSP: 002b:00007f661c1d4fd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  124.991016][ T6034] RAX: ffffffffffffffda RBX: 00007f661e216090 RCX: 00007f661df9ce59
[  124.991038][ T6034] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  124.991058][ T6034] RBP: 00007f661e032d6f R08: 0000000000000000 R09: 0000000000000000
[  124.991078][ T6034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  124.991097][ T6034] R13: 00007f661e216128 R14: 00007f661e216090 R15: 00007ffda4dac958
[  124.991143][ T6034]  </TASK>
[  125.757892][ T6043] capability: warning: `syz.0.57' uses 32-bit capabilities (legacy support in use)
[  125.825049][ T6039] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  127.832752][ T6076] netlink: 8 bytes leftover after parsing attributes in process `syz.0.63'.
[  129.826189][    C1] vcan0: j1939_tp_rxtimer: 0xffff888069eac400: rx timeout, send abort
[  129.835511][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888069eac400: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  130.374945][ T6115] FAULT_INJECTION: forcing a failure.
[  130.374945][ T6115] name failslab, interval 1, probability 0, space 0, times 0
[  130.432376][ T6115] CPU: 0 UID: 0 PID: 6115 Comm: syz.2.71 Not tainted syzkaller #0 PREEMPT(full) 
[  130.432421][ T6115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  130.432439][ T6115] Call Trace:
[  130.432450][ T6115]  <TASK>
[  130.432461][ T6115]  dump_stack_lvl+0x100/0x190
[  130.432507][ T6115]  should_fail_ex.cold+0x5/0xa
[  130.432550][ T6115]  should_failslab+0xc2/0x120
[  130.432591][ T6115]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  130.432645][ T6115]  ? ptlock_alloc+0x1f/0x70
[  130.432702][ T6115]  ptlock_alloc+0x1f/0x70
[  130.432763][ T6115]  pte_alloc_one+0x82/0x3d0
[  130.432813][ T6115]  __pte_alloc+0x6d/0x3e0
[  130.432852][ T6115]  ? __pfx___pte_alloc+0x10/0x10
[  130.432891][ T6115]  ? _raw_spin_unlock+0x28/0x50
[  130.432934][ T6115]  ? __pmd_alloc+0x3fb/0x950
[  130.432981][ T6115]  copy_page_range+0x3dbb/0x5b00
[  130.433052][ T6115]  ? find_held_lock+0x2b/0x80
[  130.433122][ T6115]  ? mas_wr_store_entry+0xa1/0x1e80
[  130.433158][ T6115]  ? __pfx_copy_page_range+0x10/0x10
[  130.433218][ T6115]  ? mas_store+0x666/0xac0
[  130.433254][ T6115]  ? __pfx_mas_store+0x10/0x10
[  130.433294][ T6115]  ? __pfx___vma_start_write+0x10/0x10
[  130.433369][ T6115]  dup_mmap+0xd25/0x2180
[  130.433432][ T6115]  ? __pfx_dup_mmap+0x10/0x10
[  130.433478][ T6115]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  130.433534][ T6115]  ? __lock_acquire+0x4a5/0x2630
[  130.433569][ T6115]  ? find_held_lock+0x2b/0x80
[  130.433614][ T6115]  ? __percpu_counter_init_many+0x2bc/0x3b0
[  130.433686][ T6115]  copy_process+0x6c78/0x7ed0
[  130.433743][ T6115]  ? __futex_wait+0x256/0x300
[  130.433813][ T6115]  ? __pfx_copy_process+0x10/0x10
[  130.433862][ T6115]  ? find_held_lock+0x2b/0x80
[  130.433923][ T6115]  kernel_clone+0x12e/0x9c0
[  130.433969][ T6115]  ? __pfx_futex_wait+0x10/0x10
[  130.434017][ T6115]  ? __pfx_kernel_clone+0x10/0x10
[  130.434090][ T6115]  __do_sys_clone+0xd9/0x120
[  130.434140][ T6115]  ? __pfx___do_sys_clone+0x10/0x10
[  130.434216][ T6115]  ? rcu_is_watching+0x12/0xc0
[  130.434264][ T6115]  do_syscall_64+0x10b/0xf80
[  130.434314][ T6115]  ? clear_bhb_loop+0x40/0x90
[  130.434357][ T6115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.434392][ T6115] RIP: 0033:0x7fa1b7f9ce59
[  130.434420][ T6115] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  130.434454][ T6115] RSP: 002b:00007fa1b8d7dfd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  130.434487][ T6115] RAX: ffffffffffffffda RBX: 00007fa1b8216090 RCX: 00007fa1b7f9ce59
[  130.434509][ T6115] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  130.434528][ T6115] RBP: 00007fa1b8032d6f R08: 0000000000000000 R09: 0000000000000000
[  130.434548][ T6115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  130.434568][ T6115] R13: 00007fa1b8216128 R14: 00007fa1b8216090 R15: 00007ffdfa6f0fa8
[  130.434614][ T6115]  </TASK>
[  132.835350][    C0] vcan0: j1939_tp_rxtimer: 0xffff888076612000: rx timeout, send abort
[  132.844212][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888076612000: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  132.961551][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  132.968957][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  136.366757][ T6183] syz.1.85: vmalloc error: size 107752139522048, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  136.424074][ T6183] CPU: 0 UID: 0 PID: 6183 Comm: syz.1.85 Not tainted syzkaller #0 PREEMPT(full) 
[  136.424120][ T6183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  136.424138][ T6183] Call Trace:
[  136.424148][ T6183]  <TASK>
[  136.424158][ T6183]  dump_stack_lvl+0x100/0x190
[  136.424197][ T6183]  warn_alloc.cold+0x95/0x1c1
[  136.424228][ T6183]  ? __pfx_warn_alloc+0x10/0x10
[  136.424274][ T6183]  ? unwind_get_return_address+0x59/0xa0
[  136.424342][ T6183]  ? look_up_lock_class+0x55/0x120
[  136.424389][ T6183]  ? register_lock_class+0x40/0x560
[  136.424424][ T6183]  __vmalloc_node_range_noprof+0x136c/0x1630
[  136.424468][ T6183]  ? __lock_acquire+0x4a5/0x2630
[  136.424500][ T6183]  ? ksys_write+0x12a/0x250
[  136.424533][ T6183]  ? disksize_store+0x11a/0x4e0
[  136.424590][ T6183]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  136.424635][ T6183]  ? __pfx___might_resched+0x10/0x10
[  136.424678][ T6183]  ? disksize_store+0x11a/0x4e0
[  136.424725][ T6183]  __vmalloc_node_noprof+0xad/0xf0
[  136.424764][ T6183]  ? disksize_store+0x11a/0x4e0
[  136.424815][ T6183]  disksize_store+0x11a/0x4e0
[  136.424862][ T6183]  ? sysfs_file_kobj+0xe4/0x290
[  136.424891][ T6183]  ? __pfx_disksize_store+0x10/0x10
[  136.424935][ T6183]  dev_attr_store+0x58/0x80
[  136.424971][ T6183]  ? __pfx_dev_attr_store+0x10/0x10
[  136.425007][ T6183]  sysfs_kf_write+0xf2/0x150
[  136.425036][ T6183]  kernfs_fop_write_iter+0x3e0/0x5f0
[  136.425077][ T6183]  ? __pfx_sysfs_kf_write+0x10/0x10
[  136.425106][ T6183]  vfs_write+0x6ac/0x1070
[  136.425140][ T6183]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  136.425185][ T6183]  ? __pfx_vfs_write+0x10/0x10
[  136.425240][ T6183]  ksys_write+0x12a/0x250
[  136.425273][ T6183]  ? __pfx_ksys_write+0x10/0x10
[  136.425310][ T6183]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  136.425356][ T6183]  ? syscall_user_dispatch+0x76/0x130
[  136.425397][ T6183]  do_syscall_64+0x10b/0xf80
[  136.425443][ T6183]  ? clear_bhb_loop+0x40/0x90
[  136.425478][ T6183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.425507][ T6183] RIP: 0033:0x7f6094b9ce59
[  136.425531][ T6183] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  136.425558][ T6183] RSP: 002b:00007f6095b33028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  136.425585][ T6183] RAX: ffffffffffffffda RBX: 00007f6094e15fa0 RCX: 00007f6094b9ce59
[  136.425604][ T6183] RDX: 0000000000003dec RSI: 00002000000001c0 RDI: 0000000000000006
[  136.425621][ T6183] RBP: 00007f6094c32d6f R08: 0000000000000000 R09: 0000000000000000
[  136.425639][ T6183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  136.425655][ T6183] R13: 00007f6094e16038 R14: 00007f6094e15fa0 R15: 00007fff65482088
[  136.425692][ T6183]  </TASK>
[  137.091195][ T6183] Mem-Info:
[  137.137662][ T6183] active_anon:34898 inactive_anon:12 isolated_anon:0
[  137.137662][ T6183]  active_file:12581 inactive_file:40382 isolated_file:0
[  137.137662][ T6183]  unevictable:768 dirty:940 writeback:0
[  137.137662][ T6183]  slab_reclaimable:16039 slab_unreclaimable:85681
[  137.137662][ T6183]  mapped:45221 shmem:30110 pagetables:1151
[  137.137662][ T6183]  sec_pagetables:0 bounce:0
[  137.137662][ T6183]  kernel_misc_reclaimable:0
[  137.137662][ T6183]  free:1300505 free_pcp:13587 free_cma:0
[  137.388433][ T6183] Node 0 active_anon:145024kB inactive_anon:48kB active_file:50280kB inactive_file:161320kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:183816kB dirty:3712kB writeback:0kB shmem:124100kB shmem_thp:2048kB shmem_pmdmapped:2048kB anon_thp:2048kB kernel_stack:11808kB pagetables:4596kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  137.454884][ T6183] Node 1 active_anon:0kB inactive_anon:0kB active_file:44kB inactive_file:208kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:44kB dirty:48kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  137.657149][ T6183] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  137.810532][ T6183] lowmem_reserve[]: 0 2477 2478 2478 2478
[  137.825131][ T6183] Node 0 DMA32 free:1226128kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:150024kB inactive_anon:48kB active_file:50280kB inactive_file:161320kB unevictable:1536kB writepending:3712kB zspages:0kB present:3129332kB managed:2537308kB mlocked:0kB bounce:0kB free_pcp:50644kB local_pcp:24588kB free_cma:0kB
[  137.959693][ T6183] lowmem_reserve[]: 0 0 1 1 1
[  137.989896][ T6183] Node 0 Normal free:0kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1100kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[  138.202346][ T6183] lowmem_reserve[]: 0 0 0 0 0
[  138.236418][ T6183] Node 1 Normal free:3953244kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:44kB inactive_file:208kB unevictable:1536kB writepending:48kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:988kB local_pcp:988kB free_cma:0kB
[  138.342135][ T6183] lowmem_reserve[]: 0 0 0 0 0
[  138.354851][    C1] vcan0: j1939_tp_rxtimer: 0xffff888036069400: rx timeout, send abort
[  138.363324][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888036069400: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  138.431173][ T6183] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  138.499002][ T6183] Node 0 DMA32: 69*4kB (U) 64*8kB (UME) 37*16kB (UME) 107*32kB (UM) 12*64kB (UM) 3*128kB (UM) 3*256kB (U) 3*512kB (UME) 0*1024kB 1*2048kB (E) 293*4096kB (M) = 1210436kB
[  138.585987][ T6183] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  138.644843][ T6183] Node 1 Normal: 3*4kB (UM) 2*8kB (M) 4*16kB (UM) 2*32kB (UM) 3*64kB (U) 4*128kB (UM) 1*256kB (U) 3*512kB (UM) 2*1024kB (UM) 0*2048kB 964*4096kB (M) = 3953244kB
[  138.718227][ T6183] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  138.784430][ T6183] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  138.841723][ T6183] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  138.905175][ T6183] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  138.945317][ T6183] 91286 total pagecache pages
[  138.980589][ T6183] 1 pages in swap cache
[  139.011442][ T6183] Free swap  = 124992kB
[  139.031812][ T6183] Total swap = 124996kB
[  139.051287][ T6183] 2097051 pages RAM
[  139.072766][ T6183] 0 pages HighMem/MovableOnly
[  139.109206][ T6183] 430834 pages reserved
[  139.134045][ T6183] 0 pages cma reserved
[  143.037141][    C1] vcan0: j1939_tp_rxtimer: 0xffff888067dd1000: rx timeout, send abort
[  143.046744][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888067dd1000: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  144.078078][ T6284] netlink: zone id is out of range
[  144.105854][ T6284] netlink: zone id is out of range
[  144.141038][ T6284] netlink: zone id is out of range
[  144.259464][ T6284] netlink: set zone limit has 8 unknown bytes
[  146.429969][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807aed7000: rx timeout, send abort
[  146.440244][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88807aed7000: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  147.797796][ T6342] netlink: zone id is out of range
[  147.836373][ T6342] netlink: zone id is out of range
[  147.877958][ T6342] netlink: zone id is out of range
[  148.005518][ T6342] netlink: set zone limit has 8 unknown bytes
[  148.269129][ T6354] FAULT_INJECTION: forcing a failure.
[  148.269129][ T6354] name fail_futex, interval 1, probability 0, space 0, times 1
[  148.295062][ T6354] CPU: 1 UID: 0 PID: 6354 Comm: syz.2.134 Not tainted syzkaller #0 PREEMPT(full) 
[  148.295107][ T6354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  148.295127][ T6354] Call Trace:
[  148.295138][ T6354]  <TASK>
[  148.295150][ T6354]  dump_stack_lvl+0x100/0x190
[  148.295197][ T6354]  should_fail_ex.cold+0x5/0xa
[  148.295240][ T6354]  get_futex_key+0x1d2/0x1510
[  148.295280][ T6354]  ? __pfx_get_futex_key+0x10/0x10
[  148.295315][ T6354]  ? __destroy_inode+0x2cd/0x710
[  148.295365][ T6354]  ? __pfx_sock_free_inode+0x10/0x10
[  148.295412][ T6354]  ? destroy_inode+0x139/0x1c0
[  148.295478][ T6354]  futex_wake+0xea/0x530
[  148.295532][ T6354]  ? __pfx_futex_wake+0x10/0x10
[  148.295592][ T6354]  do_futex+0x32b/0x350
[  148.295630][ T6354]  ? __pfx_do_futex+0x10/0x10
[  148.295665][ T6354]  ? iput+0x3a/0x40
[  148.295709][ T6354]  ? __sock_release+0x184/0x260
[  148.295756][ T6354]  __x64_sys_futex+0x34f/0x4d0
[  148.295800][ T6354]  ? __pfx___x64_sys_futex+0x10/0x10
[  148.295836][ T6354]  ? ksys_write+0x1ac/0x250
[  148.295882][ T6354]  ? rcu_is_watching+0x12/0xc0
[  148.295929][ T6354]  do_syscall_64+0x10b/0xf80
[  148.295978][ T6354]  ? clear_bhb_loop+0x40/0x90
[  148.296020][ T6354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.296053][ T6354] RIP: 0033:0x7fa1b7f9ce59
[  148.296080][ T6354] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  148.296111][ T6354] RSP: 002b:00007fa1b8d9f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  148.296143][ T6354] RAX: ffffffffffffffda RBX: 00007fa1b8215fa8 RCX: 00007fa1b7f9ce59
[  148.296165][ T6354] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa1b8215fac
[  148.296185][ T6354] RBP: 00007fa1b8215fa0 R08: 0000000000000001 R09: 0000000000000000
[  148.296205][ T6354] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  148.296226][ T6354] R13: 00007fa1b8216038 R14: 00007ffdfa6f0ec0 R15: 00007ffdfa6f0fa8
[  148.296269][ T6354]  </TASK>
[  150.461815][    C1] vcan0: j1939_tp_rxtimer: 0xffff888059ef5000: rx timeout, send abort
[  150.471346][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888059ef5000: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  151.077525][ T6395] udc dummy_udc.0: soft-connect without a gadget driver
[  152.198204][ T6404] FAULT_INJECTION: forcing a failure.
[  152.198204][ T6404] name fail_futex, interval 1, probability 0, space 0, times 0
[  152.254164][ T6404] CPU: 1 UID: 0 PID: 6404 Comm: syz.1.137 Not tainted syzkaller #0 PREEMPT(full) 
[  152.254206][ T6404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  152.254224][ T6404] Call Trace:
[  152.254234][ T6404]  <TASK>
[  152.254245][ T6404]  dump_stack_lvl+0x100/0x190
[  152.254285][ T6404]  should_fail_ex.cold+0x5/0xa
[  152.254323][ T6404]  get_futex_key+0x1d2/0x1510
[  152.254357][ T6404]  ? __pfx_get_futex_key+0x10/0x10
[  152.254387][ T6404]  ? __destroy_inode+0x2cd/0x710
[  152.254428][ T6404]  ? __pfx_sock_free_inode+0x10/0x10
[  152.254469][ T6404]  ? destroy_inode+0x139/0x1c0
[  152.254515][ T6404]  futex_wake+0xea/0x530
[  152.254570][ T6404]  ? __pfx_futex_wake+0x10/0x10
[  152.254624][ T6404]  do_futex+0x32b/0x350
[  152.254657][ T6404]  ? __pfx_do_futex+0x10/0x10
[  152.254686][ T6404]  ? iput+0x3a/0x40
[  152.254726][ T6404]  ? __sock_release+0x184/0x260
[  152.254766][ T6404]  __x64_sys_futex+0x34f/0x4d0
[  152.254804][ T6404]  ? __pfx___x64_sys_futex+0x10/0x10
[  152.254835][ T6404]  ? ksys_write+0x1ac/0x250
[  152.254873][ T6404]  ? rcu_is_watching+0x12/0xc0
[  152.254913][ T6404]  do_syscall_64+0x10b/0xf80
[  152.254955][ T6404]  ? clear_bhb_loop+0x40/0x90
[  152.254989][ T6404]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.255018][ T6404] RIP: 0033:0x7f6094b9ce59
[  152.255042][ T6404] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  152.255069][ T6404] RSP: 002b:00007f6095b330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  152.255096][ T6404] RAX: ffffffffffffffda RBX: 00007f6094e15fa8 RCX: 00007f6094b9ce59
[  152.255115][ T6404] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6094e15fac
[  152.255133][ T6404] RBP: 00007f6094e15fa0 R08: 0000000000000001 R09: 0000000000000000
[  152.255150][ T6404] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  152.255168][ T6404] R13: 00007f6094e16038 R14: 00007fff65481fa0 R15: 00007fff65482088
[  152.255205][ T6404]  </TASK>
[  152.794778][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807a02cc00: rx timeout, send abort
[  152.803417][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88807a02cc00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  154.430045][ T6444] udc dummy_udc.0: soft-connect without a gadget driver
[  154.794775][ T6454] FAULT_INJECTION: forcing a failure.
[  154.794775][ T6454] name failslab, interval 1, probability 0, space 0, times 0
[  154.823291][ T6454] CPU: 0 UID: 0 PID: 6454 Comm: syz.3.148 Not tainted syzkaller #0 PREEMPT(full) 
[  154.823337][ T6454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  154.823358][ T6454] Call Trace:
[  154.823369][ T6454]  <TASK>
[  154.823390][ T6454]  dump_stack_lvl+0x100/0x190
[  154.823434][ T6454]  should_fail_ex.cold+0x5/0xa
[  154.823481][ T6454]  should_failslab+0xc2/0x120
[  154.823523][ T6454]  __kmalloc_cache_noprof+0x7a/0x6f0
[  154.823575][ T6454]  ? call_usermodehelper_setup+0xaf/0x360
[  154.823619][ T6454]  ? __pfx_free_modprobe_argv+0x10/0x10
[  154.823658][ T6454]  call_usermodehelper_setup+0xaf/0x360
[  154.823704][ T6454]  __request_module+0x3d3/0x6c0
[  154.823743][ T6454]  ? __pfx___request_module+0x10/0x10
[  154.823779][ T6454]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  154.823835][ T6454]  ? lockdep_init_map_type+0x5c/0x250
[  154.823879][ T6454]  ? inode_init_always_gfp+0xce1/0x1000
[  154.823939][ T6454]  __sock_create+0x5c4/0x860
[  154.823997][ T6454]  __sys_socket+0x14d/0x260
[  154.824047][ T6454]  ? __pfx___sys_socket+0x10/0x10
[  154.824096][ T6454]  ? ksys_write+0x1ac/0x250
[  154.824147][ T6454]  __x64_sys_socket+0x72/0xb0
[  154.824196][ T6454]  ? lockdep_hardirqs_on+0x78/0x100
[  154.824247][ T6454]  do_syscall_64+0x10b/0xf80
[  154.824295][ T6454]  ? clear_bhb_loop+0x40/0x90
[  154.824336][ T6454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.824371][ T6454] RIP: 0033:0x7f661df9ce59
[  154.824405][ T6454] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  154.824437][ T6454] RSP: 002b:00007f661c1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  154.824469][ T6454] RAX: ffffffffffffffda RBX: 00007f661e215fa0 RCX: 00007f661df9ce59
[  154.824492][ T6454] RDX: 000000000000000b RSI: 0000000000000003 RDI: 0000000000000000
[  154.824511][ T6454] RBP: 00007f661e032d6f R08: 0000000000000000 R09: 0000000000000000
[  154.824531][ T6454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  154.824551][ T6454] R13: 00007f661e216038 R14: 00007f661e215fa0 R15: 00007ffda4dac958
[  154.824594][ T6454]  </TASK>
[  157.005410][    C0] vcan0: j1939_tp_rxtimer: 0xffff888067d12800: rx timeout, send abort
[  157.013973][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888067d12800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  159.111071][ T6525] FAULT_INJECTION: forcing a failure.
[  159.111071][ T6525] name failslab, interval 1, probability 0, space 0, times 0
[  159.126876][ T6525] CPU: 1 UID: 0 PID: 6525 Comm: syz.2.164 Not tainted syzkaller #0 PREEMPT(full) 
[  159.126920][ T6525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  159.126939][ T6525] Call Trace:
[  159.126950][ T6525]  <TASK>
[  159.126962][ T6525]  dump_stack_lvl+0x100/0x190
[  159.127007][ T6525]  should_fail_ex.cold+0x5/0xa
[  159.127051][ T6525]  should_failslab+0xc2/0x120
[  159.127094][ T6525]  __kmalloc_cache_noprof+0x7a/0x6f0
[  159.127147][ T6525]  ? nfc_llcp_register_device+0x4b/0xa60
[  159.127206][ T6525]  nfc_llcp_register_device+0x4b/0xa60
[  159.127258][ T6525]  nfc_register_device+0x6d/0x3e0
[  159.127313][ T6525]  nci_register_device+0x7f1/0xb80
[  159.127356][ T6525]  ? __pfx_nci_register_device+0x10/0x10
[  159.127404][ T6525]  ? lockdep_init_map_type+0x5c/0x250
[  159.127448][ T6525]  virtual_ncidev_open+0x141/0x220
[  159.127502][ T6525]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  159.127570][ T6525]  misc_open+0x26d/0x450
[  159.127615][ T6525]  ? __pfx_misc_open+0x10/0x10
[  159.127658][ T6525]  chrdev_open+0x234/0x6a0
[  159.127701][ T6525]  ? __pfx_apparmor_file_open+0x10/0x10
[  159.127756][ T6525]  ? __pfx_chrdev_open+0x10/0x10
[  159.127802][ T6525]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  159.127863][ T6525]  do_dentry_open+0x6d8/0x1660
[  159.127905][ T6525]  ? __pfx_chrdev_open+0x10/0x10
[  159.127979][ T6525]  vfs_open+0x82/0x3f0
[  159.128043][ T6525]  path_openat+0x208c/0x31a0
[  159.128101][ T6525]  ? __pfx_path_openat+0x10/0x10
[  159.128160][ T6525]  do_file_open+0x20e/0x430
[  159.128208][ T6525]  ? __pfx_do_file_open+0x10/0x10
[  159.128276][ T6525]  ? alloc_fd+0x476/0x790
[  159.128309][ T6525]  ? do_getname+0x191/0x390
[  159.128348][ T6525]  do_sys_openat2+0x10d/0x1e0
[  159.128387][ T6525]  ? __pfx_do_sys_openat2+0x10/0x10
[  159.128435][ T6525]  __x64_sys_openat+0x12d/0x210
[  159.128474][ T6525]  ? __pfx___x64_sys_openat+0x10/0x10
[  159.128557][ T6525]  ? rcu_is_watching+0x12/0xc0
[  159.128592][ T6525]  do_syscall_64+0x10b/0xf80
[  159.128628][ T6525]  ? clear_bhb_loop+0x40/0x90
[  159.128658][ T6525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.128682][ T6525] RIP: 0033:0x7fa1b7f9ce59
[  159.128702][ T6525] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  159.128725][ T6525] RSP: 002b:00007fa1b8d9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  159.128746][ T6525] RAX: ffffffffffffffda RBX: 00007fa1b8215fa0 RCX: 00007fa1b7f9ce59
[  159.128762][ T6525] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  159.128776][ T6525] RBP: 00007fa1b8032d6f R08: 0000000000000000 R09: 0000000000000000
[  159.128791][ T6525] R10: 000000000000ffe4 R11: 0000000000000246 R12: 0000000000000000
[  159.128804][ T6525] R13: 00007fa1b8216038 R14: 00007fa1b8215fa0 R15: 00007ffdfa6f0fa8
[  159.128834][ T6525]  </TASK>
[  159.128870][ T6525] nfc: nfc_register_device: Could not register llcp device
[  159.665028][ T6524] llcp: nfc_llcp_remove_local: Shutting down device not found
[  160.757185][    C0] vcan0: j1939_tp_rxtimer: 0xffff88807dbe5800: rx timeout, send abort
[  160.766129][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88807dbe5800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  161.345774][ T6559] FAULT_INJECTION: forcing a failure.
[  161.345774][ T6559] name failslab, interval 1, probability 0, space 0, times 0
[  161.390188][ T6560] futex_wake_op: syz.1.174 tries to shift op by -2048; fix this program
[  161.399868][ T6559] CPU: 1 UID: 0 PID: 6559 Comm: syz.2.171 Not tainted syzkaller #0 PREEMPT(full) 
[  161.399913][ T6559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  161.399933][ T6559] Call Trace:
[  161.399944][ T6559]  <TASK>
[  161.399956][ T6559]  dump_stack_lvl+0x100/0x190
[  161.400002][ T6559]  should_fail_ex.cold+0x5/0xa
[  161.400046][ T6559]  should_failslab+0xc2/0x120
[  161.400090][ T6559]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  161.400144][ T6559]  ? anon_vma_clone+0x2ba/0xcd0
[  161.400196][ T6559]  anon_vma_clone+0x2ba/0xcd0
[  161.400246][ T6559]  __split_vma+0x51f/0xd90
[  161.400300][ T6559]  ? __pfx___split_vma+0x10/0x10
[  161.400369][ T6559]  vma_modify+0x12ad/0x25c0
[  161.400446][ T6559]  ? __pfx_vma_modify+0x10/0x10
[  161.400525][ T6559]  vma_modify_policy+0x238/0x300
[  161.400582][ T6559]  ? __pfx_vma_modify_policy+0x10/0x10
[  161.400637][ T6559]  ? find_held_lock+0x2b/0x80
[  161.400715][ T6559]  mbind_range+0x175/0x550
[  161.400767][ T6559]  do_mbind+0x7dc/0xfd0
[  161.400825][ T6559]  ? __pfx_do_mbind+0x10/0x10
[  161.400872][ T6559]  ? ksys_write+0x190/0x250
[  161.400931][ T6559]  ? __pfx_get_nodes+0x10/0x10
[  161.400977][ T6559]  kernel_mbind+0x1b7/0x200
[  161.401027][ T6559]  ? __pfx_kernel_mbind+0x10/0x10
[  161.401077][ T6559]  ? rcu_is_watching+0x12/0xc0
[  161.401124][ T6559]  do_syscall_64+0x10b/0xf80
[  161.401173][ T6559]  ? clear_bhb_loop+0x40/0x90
[  161.401214][ T6559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.401248][ T6559] RIP: 0033:0x7fa1b7f9ce59
[  161.401275][ T6559] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  161.401307][ T6559] RSP: 002b:00007fa1b61f6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  161.401339][ T6559] RAX: ffffffffffffffda RBX: 00007fa1b8216180 RCX: 00007fa1b7f9ce59
[  161.401361][ T6559] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000
[  161.401380][ T6559] RBP: 00007fa1b8032d6f R08: 0000000000000006 R09: 0000000000000002
[  161.401400][ T6559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  161.401427][ T6559] R13: 00007fa1b8216218 R14: 00007fa1b8216180 R15: 00007ffdfa6f0fa8
[  161.401470][ T6559]  </TASK>
[  161.621598][ T6560] futex_wake_op: syz.1.174 tries to shift op by -2048; fix this program
[  161.632345][ T6560] 0x000000000001-0x000000020000 : ""
[  161.783315][ T6560] ftl_cs: FTL header corrupt!
[  162.881244][ T6588] netlink: 40 bytes leftover after parsing attributes in process `syz.0.182'.
[  163.939926][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807d4e1400: rx timeout, send abort
[  163.948471][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88807d4e1400: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  164.199727][ T6602] FAULT_INJECTION: forcing a failure.
[  164.199727][ T6602] name failslab, interval 1, probability 0, space 0, times 0
[  164.276990][ T6602] CPU: 0 UID: 0 PID: 6602 Comm: syz.1.186 Not tainted syzkaller #0 PREEMPT(full) 
[  164.277038][ T6602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  164.277059][ T6602] Call Trace:
[  164.277070][ T6602]  <TASK>
[  164.277082][ T6602]  dump_stack_lvl+0x100/0x190
[  164.277126][ T6602]  should_fail_ex.cold+0x5/0xa
[  164.277172][ T6602]  should_failslab+0xc2/0x120
[  164.277202][ T6602]  __kmalloc_cache_noprof+0x7a/0x6f0
[  164.277238][ T6602]  ? open_substream+0xec/0x9b0
[  164.277288][ T6602]  open_substream+0xec/0x9b0
[  164.277330][ T6602]  ? lockdep_hardirqs_on+0x78/0x100
[  164.277369][ T6602]  rawmidi_open_priv+0x595/0x6f0
[  164.277398][ T6602]  snd_rawmidi_open+0x4c9/0xba0
[  164.277429][ T6602]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  164.277457][ T6602]  ? __pfx_default_wake_function+0x10/0x10
[  164.277493][ T6602]  ? kobject_get_unless_zero+0x156/0x200
[  164.277522][ T6602]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  164.277547][ T6602]  snd_open+0x201/0x450
[  164.277592][ T6602]  ? __pfx_snd_open+0x10/0x10
[  164.277626][ T6602]  chrdev_open+0x234/0x6a0
[  164.277656][ T6602]  ? __pfx_apparmor_file_open+0x10/0x10
[  164.277696][ T6602]  ? __pfx_chrdev_open+0x10/0x10
[  164.277728][ T6602]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  164.277767][ T6602]  do_dentry_open+0x6d8/0x1660
[  164.277796][ T6602]  ? __pfx_chrdev_open+0x10/0x10
[  164.277834][ T6602]  vfs_open+0x82/0x3f0
[  164.277873][ T6602]  path_openat+0x208c/0x31a0
[  164.277913][ T6602]  ? __pfx_path_openat+0x10/0x10
[  164.277954][ T6602]  do_file_open+0x20e/0x430
[  164.277987][ T6602]  ? __pfx_do_file_open+0x10/0x10
[  164.278038][ T6602]  ? alloc_fd+0x476/0x790
[  164.278073][ T6602]  ? do_getname+0x191/0x390
[  164.278146][ T6602]  do_sys_openat2+0x10d/0x1e0
[  164.278199][ T6602]  ? __pfx_do_sys_openat2+0x10/0x10
[  164.278263][ T6602]  __x64_sys_openat+0x12d/0x210
[  164.278310][ T6602]  ? __pfx___x64_sys_openat+0x10/0x10
[  164.278362][ T6602]  ? rcu_is_watching+0x12/0xc0
[  164.278402][ T6602]  do_syscall_64+0x10b/0xf80
[  164.278448][ T6602]  ? clear_bhb_loop+0x40/0x90
[  164.278483][ T6602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.278512][ T6602] RIP: 0033:0x7f6094b9ce59
[  164.278536][ T6602] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  164.278573][ T6602] RSP: 002b:00007f6095b33028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  164.278601][ T6602] RAX: ffffffffffffffda RBX: 00007f6094e15fa0 RCX: 00007f6094b9ce59
[  164.278620][ T6602] RDX: 0000000000000001 RSI: 00002000000003c0 RDI: ffffffffffffff9c
[  164.278639][ T6602] RBP: 00007f6094c32d6f R08: 0000000000000000 R09: 0000000000000000
[  164.278657][ T6602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  164.278674][ T6602] R13: 00007f6094e16038 R14: 00007f6094e15fa0 R15: 00007fff65482088
[  164.278713][ T6602]  </TASK>
[  165.280818][ T6623] FAULT_INJECTION: forcing a failure.
[  165.280818][ T6623] name fail_futex, interval 1, probability 0, space 0, times 0
[  165.318660][ T6623] CPU: 1 UID: 0 PID: 6623 Comm: syz.0.191 Not tainted syzkaller #0 PREEMPT(full) 
[  165.318708][ T6623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  165.318729][ T6623] Call Trace:
[  165.318740][ T6623]  <TASK>
[  165.318752][ T6623]  dump_stack_lvl+0x100/0x190
[  165.318805][ T6623]  should_fail_ex.cold+0x5/0xa
[  165.318848][ T6623]  get_futex_key+0x1d2/0x1510
[  165.318888][ T6623]  ? __pfx_get_futex_key+0x10/0x10
[  165.318937][ T6623]  futex_wait_setup+0x83/0x510
[  165.319001][ T6623]  __futex_wait+0x19f/0x300
[  165.319050][ T6623]  ? __pfx___futex_wait+0x10/0x10
[  165.319094][ T6623]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  165.319150][ T6623]  ? __pfx_futex_wake_mark+0x10/0x10
[  165.319202][ T6623]  ? futex_hash+0x2ad/0x370
[  165.319237][ T6623]  ? futex_hash+0x141/0x370
[  165.319276][ T6623]  futex_wait+0xe6/0x370
[  165.319329][ T6623]  ? __pfx_futex_wait+0x10/0x10
[  165.319372][ T6623]  ? path_setxattrat+0x21c/0x3b0
[  165.319439][ T6623]  do_futex+0x1ef/0x350
[  165.319477][ T6623]  ? __pfx_do_futex+0x10/0x10
[  165.319525][ T6623]  __x64_sys_futex+0x34f/0x4d0
[  165.319570][ T6623]  ? __pfx___x64_sys_futex+0x10/0x10
[  165.319610][ T6623]  ? ksys_write+0x1ac/0x250
[  165.319650][ T6623]  ? __pfx___x64_sys_pidfd_open+0x10/0x10
[  165.319686][ T6623]  ? rcu_is_watching+0x12/0xc0
[  165.319732][ T6623]  do_syscall_64+0x10b/0xf80
[  165.319781][ T6623]  ? clear_bhb_loop+0x40/0x90
[  165.319823][ T6623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.319858][ T6623] RIP: 0033:0x7f7d7859ce59
[  165.319884][ T6623] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  165.319916][ T6623] RSP: 002b:00007f7d794d50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  165.319947][ T6623] RAX: ffffffffffffffda RBX: 00007f7d78815fa8 RCX: 00007f7d7859ce59
[  165.319976][ T6623] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f7d78815fa8
[  165.319997][ T6623] RBP: 00007f7d78815fa0 R08: 0000000000000000 R09: 0000000000000000
[  165.320016][ T6623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  165.320035][ T6623] R13: 00007f7d78816038 R14: 00007ffcb26aec30 R15: 00007ffcb26aed18
[  165.320075][ T6623]  </TASK>
[  167.140518][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  172.914259][ T6733] random: crng reseeded on system resumption
[  173.556775][ T6747] Process accounting resumed
[  177.243454][ T6812] netlink: 504 bytes leftover after parsing attributes in process `syz.2.236'.
[  178.468430][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802d375800: rx timeout, send abort
[  178.477048][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88802d375800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  178.844782][   T29] audit: type=1800 audit(1778854030.766:2): pid=6827 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.238" name="discovery_nqn" dev="configfs" ino=14112 res=0 errno=0
[  181.336635][ T6841] futex_wake_op: syz.3.241 tries to shift op by -2048; fix this program
[  181.396335][    C0] vcan0: j1939_tp_rxtimer: 0xffff88807d48b800: rx timeout, send abort
[  181.405003][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88807d48b800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  181.490150][ T6841] futex_wake_op: syz.3.241 tries to shift op by -2048; fix this program
[  181.565827][ T6842] 0x000000000001-0x000000020000 : ""
[  181.816679][ T6842] ftl_cs: FTL header corrupt!
[  182.012247][   T29] audit: type=1800 audit(1778854033.936:3): pid=6850 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.243" name="discovery_nqn" dev="configfs" ino=13002 res=0 errno=0
[  185.978614][ T6884] netlink: 504 bytes leftover after parsing attributes in process `syz.1.249'.
[  192.874220][   T50] Bluetooth: hci2: unexpected event 0x02 length: 1021 > 260
[  193.293123][ T6949] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  193.343500][ T6949] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  193.478895][ T6949] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  193.546660][ T6949] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  193.578326][ T6949] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  193.629248][ T6949] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  193.659979][ T6949] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  193.679530][ T6949] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  193.724437][ T6931] futex_wake_op: syz.3.256 tries to shift op by -2048; fix this program
[  193.747002][ T6949] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  193.774820][ T6949] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  193.784727][ T6966] 0x000000000001-0x000000020000 : ""
[  193.794235][ T6949] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  193.835876][ T6949] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  193.872556][ T6966] ftl_cs: FTL header corrupt!
[  194.320144][   T29] audit: type=1800 audit(1778854046.236:4): pid=6969 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.263" name="file0" dev="tmpfs" ino=404 res=0 errno=0
[  194.382861][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  194.389322][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  194.644590][ T6979] program syz.2.266 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  195.020566][ T5641] Bluetooth: hci3: command 0x0c1a tx timeout
[  195.581295][ T5641] Bluetooth: hci2: command 0x0c1a tx timeout
[  195.661395][ T5641] Bluetooth: hci1: command 0x0c1a tx timeout
[  195.820461][ T5641] Bluetooth: hci0: command 0x0c1a tx timeout
[  196.546180][ T6984] sd 0:0:1:0: PR command failed: 1026
[  196.592971][ T6984] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  196.647471][ T6984] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  197.110490][ T5641] Bluetooth: hci3: command 0x0c1a tx timeout
[  197.670247][ T5641] Bluetooth: hci2: command 0x0c1a tx timeout
[  197.740833][ T5641] Bluetooth: hci1: command 0x0c1a tx timeout
[  197.912708][ T5641] Bluetooth: hci0: command 0x0c1a tx timeout
[  198.972580][ T7012] FAULT_INJECTION: forcing a failure.
[  198.972580][ T7012] name failslab, interval 1, probability 0, space 0, times 0
[  198.999489][ T7012] CPU: 0 UID: 0 PID: 7012 Comm: syz.3.272 Not tainted syzkaller #0 PREEMPT(full) 
[  198.999535][ T7012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  198.999555][ T7012] Call Trace:
[  198.999565][ T7012]  <TASK>
[  198.999577][ T7012]  dump_stack_lvl+0x100/0x190
[  198.999623][ T7012]  should_fail_ex.cold+0x5/0xa
[  198.999667][ T7012]  ? get_callchain_buffers+0x123/0x380
[  198.999713][ T7012]  should_failslab+0xc2/0x120
[  198.999755][ T7012]  __kmalloc_noprof+0xe0/0x850
[  198.999787][ T7012]  ? __pfx_rcu_is_watching+0x10/0x10
[  198.999843][ T7012]  get_callchain_buffers+0x123/0x380
[  198.999889][ T7012]  ? bpf_lsm_capable+0x9/0x10
[  198.999928][ T7012]  ? security_capable+0x80/0x260
[  198.999985][ T7012]  stack_map_alloc+0x316/0x610
[  199.000029][ T7012]  ? __pfx_stack_map_mem_usage+0x10/0x10
[  199.000069][ T7012]  map_create+0x84e/0x2bc0
[  199.000117][ T7012]  ? futex_unqueue+0x13d/0x2c0
[  199.000152][ T7012]  ? __futex_wait+0x256/0x300
[  199.000204][ T7012]  ? __pfx_map_create+0x10/0x10
[  199.000252][ T7012]  ? __might_fault+0xc5/0x140
[  199.000302][ T7012]  ? __might_fault+0xc5/0x140
[  199.000382][ T7012]  __sys_bpf+0x2091/0x4b90
[  199.000424][ T7012]  ? __pfx___sys_bpf+0x10/0x10
[  199.000459][ T7012]  ? __pfx_futex_wait+0x10/0x10
[  199.000514][ T7012]  ? ksys_write+0x190/0x250
[  199.000563][ T7012]  ? do_futex+0x192/0x350
[  199.000624][ T7012]  ? xfd_validate_state+0x129/0x190
[  199.000670][ T7012]  __x64_sys_bpf+0x7b/0xc0
[  199.000705][ T7012]  ? lockdep_hardirqs_on+0x78/0x100
[  199.000758][ T7012]  do_syscall_64+0x10b/0xf80
[  199.000807][ T7012]  ? clear_bhb_loop+0x40/0x90
[  199.000850][ T7012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.000885][ T7012] RIP: 0033:0x7f661df9ce59
[  199.000913][ T7012] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  199.000945][ T7012] RSP: 002b:00007f661c1f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  199.000979][ T7012] RAX: ffffffffffffffda RBX: 00007f661e215fa0 RCX: 00007f661df9ce59
[  199.001002][ T7012] RDX: 00000000000006f4 RSI: 0000200000000580 RDI: 0000000000000000
[  199.001022][ T7012] RBP: 00007f661e032d6f R08: 0000000000000000 R09: 0000000000000000
[  199.001042][ T7012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  199.001062][ T7012] R13: 00007f661e216038 R14: 00007f661e215fa0 R15: 00007ffda4dac958
[  199.001110][ T7012]  </TASK>
[  199.014710][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  199.248307][ T5641] Bluetooth: hci3: command 0x0c1a tx timeout
[  199.740203][ T5641] Bluetooth: hci2: command 0x0c1a tx timeout
[  199.830268][ T5641] Bluetooth: hci1: command 0x0c1a tx timeout
[  199.980526][ T5641] Bluetooth: hci0: command 0x0c1a tx timeout
[  201.720330][   T29] audit: type=1800 audit(1778854053.636:5): pid=7032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.279" name="file0" dev="tmpfs" ino=430 res=0 errno=0
[  202.922001][ T7054] netlink: 20 bytes leftover after parsing attributes in process `syz.1.284'.
[  203.988726][ T7054] Process accounting paused
[  204.942876][ T7079] FAULT_INJECTION: forcing a failure.
[  204.942876][ T7079] name fail_futex, interval 1, probability 0, space 0, times 0
[  204.956249][ T7079] CPU: 1 UID: 0 PID: 7079 Comm: syz.3.289 Not tainted syzkaller #0 PREEMPT(full) 
[  204.956289][ T7079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  204.956308][ T7079] Call Trace:
[  204.956318][ T7079]  <TASK>
[  204.956330][ T7079]  dump_stack_lvl+0x100/0x190
[  204.956380][ T7079]  should_fail_ex.cold+0x5/0xa
[  204.956422][ T7079]  get_futex_key+0xf78/0x1510
[  204.956461][ T7079]  ? __pfx_get_futex_key+0x10/0x10
[  204.956496][ T7079]  ? lock_acquire+0x1b1/0x370
[  204.956540][ T7079]  futex_wake+0xea/0x530
[  204.956585][ T7079]  ? __pfx_futex_wake+0x10/0x10
[  204.956626][ T7079]  ? exit_mm_release+0x19/0x30
[  204.956686][ T7079]  do_futex+0x32b/0x350
[  204.956723][ T7079]  ? __pfx_do_futex+0x10/0x10
[  204.956756][ T7079]  ? __might_fault+0xc5/0x140
[  204.956818][ T7079]  mm_release+0x24a/0x2f0
[  204.956860][ T7079]  do_exit+0x707/0x2af0
[  204.956917][ T7079]  ? __pfx_do_exit+0x10/0x10
[  204.956968][ T7079]  ? do_raw_spin_lock+0x128/0x260
[  204.957005][ T7079]  ? find_held_lock+0x2b/0x80
[  204.957046][ T7079]  ? get_signal+0x7e5/0x2210
[  204.957091][ T7079]  do_group_exit+0xd5/0x2a0
[  204.957125][ T7079]  get_signal+0x20ff/0x2210
[  204.957182][ T7079]  ? __pfx_get_signal+0x10/0x10
[  204.957229][ T7079]  ? do_futex+0x192/0x350
[  204.957267][ T7079]  arch_do_signal_or_restart+0x91/0x7a0
[  204.957321][ T7079]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  204.957391][ T7079]  ? rcu_is_watching+0x12/0xc0
[  204.957434][ T7079]  exit_to_user_mode_loop+0x8b/0x4f0
[  204.957465][ T7079]  ? rcu_is_watching+0x12/0xc0
[  204.957507][ T7079]  do_syscall_64+0x6f2/0xf80
[  204.957554][ T7079]  ? clear_bhb_loop+0x40/0x90
[  204.957594][ T7079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.957627][ T7079] RIP: 0033:0x7f661df9ce59
[  204.957654][ T7079] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  204.957684][ T7079] RSP: 002b:00007f661c1f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  204.957714][ T7079] RAX: fffffffffffffe00 RBX: 00007f661e215fa8 RCX: 00007f661df9ce59
[  204.957736][ T7079] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f661e215fa8
[  204.957755][ T7079] RBP: 00007f661e215fa0 R08: 0000000000000000 R09: 0000000000000000
[  204.957774][ T7079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  204.957798][ T7079] R13: 00007f661e216038 R14: 00007ffda4dac870 R15: 00007ffda4dac958
[  204.957840][ T7079]  </TASK>
[  205.728792][ T7073] sd 0:0:1:0: PR command failed: 1026
[  205.740772][ T7073] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  205.764611][ T7073] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  206.152088][ T6621] syz.3.188 (6621) used greatest stack depth: 20168 bytes left
[  207.647287][   T29] audit: type=1800 audit(1778854059.566:6): pid=7110 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.295" name="members" dev="configfs" ino=15841 res=0 errno=0
[  208.069670][ T7116] netlink: 338 bytes leftover after parsing attributes in process `syz.0.296'.
[  208.280804][ T6613] syz.3.188 (6613) used greatest stack depth: 19704 bytes left
[  208.795070][ T7120] nfs4: Unknown parameter 'EC�H�];^��Y�ى��ZL�`�~^g��'
[  209.188521][   T29] audit: type=1800 audit(1778854061.106:7): pid=7132 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.299" name="file0" dev="tmpfs" ino=382 res=0 errno=0
[  211.399517][ T7164] FAULT_INJECTION: forcing a failure.
[  211.399517][ T7164] name failslab, interval 1, probability 0, space 0, times 0
[  211.440543][ T7164] CPU: 0 UID: 0 PID: 7164 Comm: syz.2.308 Not tainted syzkaller #0 PREEMPT(full) 
[  211.440586][ T7164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  211.440605][ T7164] Call Trace:
[  211.440618][ T7164]  <TASK>
[  211.440631][ T7164]  dump_stack_lvl+0x100/0x190
[  211.440681][ T7164]  should_fail_ex.cold+0x5/0xa
[  211.440725][ T7164]  should_failslab+0xc2/0x120
[  211.440766][ T7164]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  211.440820][ T7164]  ? anon_vma_clone+0x2ba/0xcd0
[  211.440879][ T7164]  anon_vma_clone+0x2ba/0xcd0
[  211.440938][ T7164]  anon_vma_fork+0x1bb/0x6b0
[  211.440996][ T7164]  dup_mmap+0x141f/0x2180
[  211.441058][ T7164]  ? __pfx_dup_mmap+0x10/0x10
[  211.441102][ T7164]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  211.441159][ T7164]  ? __lock_acquire+0x4a5/0x2630
[  211.441194][ T7164]  ? find_held_lock+0x2b/0x80
[  211.441238][ T7164]  ? __percpu_counter_init_many+0x2bc/0x3b0
[  211.441309][ T7164]  copy_process+0x6c78/0x7ed0
[  211.441392][ T7164]  ? __pfx_copy_process+0x10/0x10
[  211.441442][ T7164]  ? find_held_lock+0x2b/0x80
[  211.441493][ T7164]  ? futex_private_hash_put+0x107/0x1c0
[  211.441536][ T7164]  kernel_clone+0x12e/0x9c0
[  211.441587][ T7164]  ? __pfx_kernel_clone+0x10/0x10
[  211.441659][ T7164]  __do_sys_clone+0xd9/0x120
[  211.441708][ T7164]  ? __pfx___do_sys_clone+0x10/0x10
[  211.441784][ T7164]  ? rcu_is_watching+0x12/0xc0
[  211.441835][ T7164]  do_syscall_64+0x10b/0xf80
[  211.441884][ T7164]  ? clear_bhb_loop+0x40/0x90
[  211.441924][ T7164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.441958][ T7164] RIP: 0033:0x7fa1b7f9ce59
[  211.441985][ T7164] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  211.442017][ T7164] RSP: 002b:00007fa1b8d9efd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  211.442048][ T7164] RAX: ffffffffffffffda RBX: 00007fa1b8215fa0 RCX: 00007fa1b7f9ce59
[  211.442071][ T7164] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000007000000
[  211.442091][ T7164] RBP: 00007fa1b8032d6f R08: 0000000000000000 R09: 0000000000000000
[  211.442111][ T7164] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  211.442130][ T7164] R13: 00007fa1b8216038 R14: 00007fa1b8215fa0 R15: 00007ffdfa6f0fa8
[  211.442174][ T7164]  </TASK>
[  212.063768][ T7167] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes
[  212.480338][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  214.471650][ T7203] FAULT_INJECTION: forcing a failure.
[  214.471650][ T7203] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  214.514935][ T7203] CPU: 1 UID: 0 PID: 7203 Comm: syz.0.316 Not tainted syzkaller #0 PREEMPT(full) 
[  214.514967][ T7203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  214.514981][ T7203] Call Trace:
[  214.514989][ T7203]  <TASK>
[  214.514998][ T7203]  dump_stack_lvl+0x100/0x190
[  214.515028][ T7203]  should_fail_ex.cold+0x5/0xa
[  214.515054][ T7203]  ? prepare_alloc_pages+0x16d/0x5f0
[  214.515088][ T7203]  should_fail_alloc_page+0xeb/0x140
[  214.515119][ T7203]  prepare_alloc_pages+0x1f0/0x5f0
[  214.515150][ T7203]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  214.515188][ T7203]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  214.515236][ T7203]  ? __pfx_debug_object_activate+0x10/0x10
[  214.515275][ T7203]  ? do_raw_spin_lock+0x128/0x260
[  214.515308][ T7203]  ? tick_program_event+0xb0/0x140
[  214.515346][ T7203]  ? hrtimer_reprogram+0x165/0x6c0
[  214.515374][ T7203]  ? timerqueue_linked_add+0x260/0x430
[  214.515407][ T7203]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  214.515448][ T7203]  ? find_held_lock+0x2b/0x80
[  214.515484][ T7203]  ? mark_held_locks+0x40/0x70
[  214.515506][ T7203]  ? finish_task_switch.isra.0+0x2cb/0x1010
[  214.515544][ T7203]  ? __lock_acquire+0x4a5/0x2630
[  214.515569][ T7203]  ? __lock_acquire+0x4a5/0x2630
[  214.515591][ T7203]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  214.515629][ T7203]  ? policy_nodemask+0xed/0x4f0
[  214.515660][ T7203]  alloc_pages_mpol+0x1fb/0x540
[  214.515689][ T7203]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  214.515724][ T7203]  ? do_raw_spin_lock+0x128/0x260
[  214.515755][ T7203]  alloc_pages_noprof+0x1a/0x160
[  214.515788][ T7203]  pte_alloc_one+0x1c/0x3d0
[  214.515850][ T7203]  __pte_alloc+0x6d/0x3e0
[  214.515892][ T7203]  ? __pfx___pte_alloc+0x10/0x10
[  214.515920][ T7203]  ? __pfx___might_resched+0x10/0x10
[  214.515946][ T7203]  ? copy_page_range+0x1c2d/0x5b00
[  214.515986][ T7203]  copy_page_range+0x3dbb/0x5b00
[  214.516053][ T7203]  ? mas_wr_store_entry+0xa1/0x1e80
[  214.516078][ T7203]  ? __pfx_copy_page_range+0x10/0x10
[  214.516125][ T7203]  ? __pfx___might_resched+0x10/0x10
[  214.516163][ T7203]  ? up_write+0x28c/0x4f0
[  214.516192][ T7203]  dup_mmap+0xd25/0x2180
[  214.516241][ T7203]  ? __pfx_dup_mmap+0x10/0x10
[  214.516272][ T7203]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  214.516312][ T7203]  ? __lock_acquire+0x4a5/0x2630
[  214.516336][ T7203]  ? find_held_lock+0x2b/0x80
[  214.516367][ T7203]  ? __percpu_counter_init_many+0x2bc/0x3b0
[  214.516415][ T7203]  copy_process+0x6c78/0x7ed0
[  214.516448][ T7203]  ? __futex_wait+0x256/0x300
[  214.516495][ T7203]  ? __pfx_copy_process+0x10/0x10
[  214.516530][ T7203]  ? find_held_lock+0x2b/0x80
[  214.516573][ T7203]  kernel_clone+0x12e/0x9c0
[  214.516605][ T7203]  ? __pfx_futex_wait+0x10/0x10
[  214.516639][ T7203]  ? __pfx_kernel_clone+0x10/0x10
[  214.516689][ T7203]  __do_sys_clone+0xd9/0x120
[  214.516725][ T7203]  ? __pfx___do_sys_clone+0x10/0x10
[  214.516779][ T7203]  ? rcu_is_watching+0x12/0xc0
[  214.516812][ T7203]  do_syscall_64+0x10b/0xf80
[  214.516847][ T7203]  ? clear_bhb_loop+0x40/0x90
[  214.516876][ T7203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.516901][ T7203] RIP: 0033:0x7f7d7859ce59
[  214.516920][ T7203] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  214.516943][ T7203] RSP: 002b:00007f7d794d4fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  214.516964][ T7203] RAX: ffffffffffffffda RBX: 00007f7d78815fa0 RCX: 00007f7d7859ce59
[  214.516980][ T7203] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000007001000
[  214.516994][ T7203] RBP: 00007f7d78632d6f R08: 0000000000000000 R09: 0000000000000000
[  214.517008][ T7203] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  214.517022][ T7203] R13: 00007f7d78816038 R14: 00007f7d78815fa0 R15: 00007ffcb26aed18
[  214.517052][ T7203]  </TASK>
[  215.512300][ T7216] netlink: 342 bytes leftover after parsing attributes in process `syz.2.319'.
[  216.279952][ T7236] FAULT_INJECTION: forcing a failure.
[  216.279952][ T7236] name failslab, interval 1, probability 0, space 0, times 0
[  216.338066][ T7236] CPU: 1 UID: 0 PID: 7236 Comm: syz.1.322 Not tainted syzkaller #0 PREEMPT(full) 
[  216.338118][ T7236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  216.338141][ T7236] Call Trace:
[  216.338153][ T7236]  <TASK>
[  216.338167][ T7236]  dump_stack_lvl+0x100/0x190
[  216.338217][ T7236]  should_fail_ex.cold+0x5/0xa
[  216.338266][ T7236]  should_failslab+0xc2/0x120
[  216.338318][ T7236]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  216.338378][ T7236]  ? __kernfs_new_node+0xd2/0x9f0
[  216.338430][ T7236]  __kernfs_new_node+0xd2/0x9f0
[  216.338480][ T7236]  ? __pfx___kernfs_new_node+0x10/0x10
[  216.338534][ T7236]  ? find_held_lock+0x2b/0x80
[  216.338584][ T7236]  ? kernfs_root+0xee/0x2a0
[  216.338624][ T7236]  ? kernfs_root+0xee/0x2a0
[  216.338675][ T7236]  kernfs_new_node+0x11b/0x1a0
[  216.338730][ T7236]  __kernfs_create_file+0x53/0x350
[  216.338793][ T7236]  sysfs_add_file_mode_ns+0x207/0x3c0
[  216.338844][ T7236]  sysfs_merge_group+0x194/0x340
[  216.338889][ T7236]  ? __pfx_sysfs_merge_group+0x10/0x10
[  216.338943][ T7236]  ? bus_add_device+0x368/0x6b0
[  216.338981][ T7236]  ? __pfx_bus_add_device+0x10/0x10
[  216.339014][ T7236]  ? __pfx_dev_add_physical_location+0x10/0x10
[  216.339077][ T7236]  dpm_sysfs_add+0x237/0x280
[  216.339128][ T7236]  device_add+0x9ef/0x1950
[  216.339181][ T7236]  ? __pfx_device_add+0x10/0x10
[  216.339230][ T7236]  ? lockdep_init_map_type+0x5c/0x250
[  216.339270][ T7236]  ? __init_waitqueue_head+0xca/0x150
[  216.339327][ T7236]  rfkill_register+0x1ad/0xb30
[  216.339381][ T7236]  nfc_register_device+0x11f/0x3e0
[  216.339442][ T7236]  nci_register_device+0x7f1/0xb80
[  216.339492][ T7236]  ? __pfx_nci_register_device+0x10/0x10
[  216.339545][ T7236]  ? lockdep_init_map_type+0x5c/0x250
[  216.339594][ T7236]  virtual_ncidev_open+0x141/0x220
[  216.339654][ T7236]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  216.339714][ T7236]  misc_open+0x26d/0x450
[  216.339764][ T7236]  ? __pfx_misc_open+0x10/0x10
[  216.339811][ T7236]  chrdev_open+0x234/0x6a0
[  216.339859][ T7236]  ? __pfx_apparmor_file_open+0x10/0x10
[  216.339932][ T7236]  ? __pfx_chrdev_open+0x10/0x10
[  216.339985][ T7236]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  216.340046][ T7236]  do_dentry_open+0x6d8/0x1660
[  216.340091][ T7236]  ? __pfx_chrdev_open+0x10/0x10
[  216.340150][ T7236]  vfs_open+0x82/0x3f0
[  216.340224][ T7236]  path_openat+0x208c/0x31a0
[  216.340287][ T7236]  ? __pfx_path_openat+0x10/0x10
[  216.340350][ T7236]  do_file_open+0x20e/0x430
[  216.340400][ T7236]  ? __pfx_do_file_open+0x10/0x10
[  216.340482][ T7236]  ? alloc_fd+0x476/0x790
[  216.340532][ T7236]  ? do_getname+0x191/0x390
[  216.340592][ T7236]  do_sys_openat2+0x10d/0x1e0
[  216.340649][ T7236]  ? __pfx_do_sys_openat2+0x10/0x10
[  216.340709][ T7236]  ? __fget_files+0x21f/0x3d0
[  216.340761][ T7236]  __x64_sys_openat+0x12d/0x210
[  216.340821][ T7236]  ? __pfx___x64_sys_openat+0x10/0x10
[  216.340887][ T7236]  ? rcu_is_watching+0x12/0xc0
[  216.340947][ T7236]  do_syscall_64+0x10b/0xf80
[  216.341003][ T7236]  ? clear_bhb_loop+0x40/0x90
[  216.341047][ T7236]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.341084][ T7236] RIP: 0033:0x7f6094b9ce59
[  216.341114][ T7236] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  216.341148][ T7236] RSP: 002b:00007f6095af1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  216.341200][ T7236] RAX: ffffffffffffffda RBX: 00007f6094e16180 RCX: 00007f6094b9ce59
[  216.341225][ T7236] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  216.341248][ T7236] RBP: 00007f6094c32d6f R08: 0000000000000000 R09: 0000000000000000
[  216.341271][ T7236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  216.341292][ T7236] R13: 00007f6094e16218 R14: 00007f6094e16180 R15: 00007fff65482088
[  216.341341][ T7236]  </TASK>
[  217.764242][ T5641] Bluetooth: hci2: unexpected event for opcode 0x7c89
[  218.429193][   T29] audit: type=1800 audit(1778854070.346:8): pid=7259 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.327" name="members" dev="configfs" ino=16160 res=0 errno=0
[  220.628029][ T7278] KVM: debugfs: duplicate directory 7278-3
[  222.002363][   T29] audit: type=1800 audit(1778854073.926:9): pid=7307 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.339" name="members" dev="configfs" ino=16655 res=0 errno=0
[  224.883752][   T50] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  224.901654][   T50] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  224.913198][   T50] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  224.922863][   T50] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  224.933757][   T50] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  227.021127][ T5641] Bluetooth: hci4: command tx timeout
[  227.156842][   T48] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  227.438060][   T48] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  227.677248][   T48] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  227.963472][   T48] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.100175][ T5641] Bluetooth: hci4: command tx timeout
[  230.208080][   T48] bridge_slave_1: left allmulticast mode
[  230.250331][   T48] bridge_slave_1: left promiscuous mode
[  230.271476][   T48] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.371542][   T48] bridge_slave_0: left allmulticast mode
[  230.398080][   T48] bridge_slave_0: left promiscuous mode
[  230.407777][   T48] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.180192][ T5641] Bluetooth: hci4: command tx timeout
[  231.392298][   T48] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  231.434755][   T48] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  231.470651][   T48] bond0 (unregistering): Released all slaves
[  231.607280][ T7351] bridge0: port 1(bridge_slave_0) entered blocking state
[  231.633470][ T7351] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.648853][ T7351] bridge_slave_0: entered allmulticast mode
[  231.672250][ T7351] bridge_slave_0: entered promiscuous mode
[  231.683412][ T7351] bridge0: port 2(bridge_slave_1) entered blocking state
[  231.694104][ T7351] bridge0: port 2(bridge_slave_1) entered disabled state
[  231.714842][ T7351] bridge_slave_1: entered allmulticast mode
[  231.759000][ T7351] bridge_slave_1: entered promiscuous mode
[  232.148165][ T7351] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  232.194853][ T7351] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  232.532082][ T7351] team0: Port device team_slave_0 added
[  232.565558][ T7351] team0: Port device team_slave_1 added
[  232.750302][ T7417] netlink: 28 bytes leftover after parsing attributes in process `syz.0.361'.
[  232.819614][ T7351] batman_adv: batadv0: Adding interface: batadv_slave_0
[  232.837826][ T7351] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  232.899072][ T7351] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  233.091426][ T7351] batman_adv: batadv0: Adding interface: batadv_slave_1
[  233.106830][ T7351] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  233.188329][ T7351] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  233.263218][ T5641] Bluetooth: hci4: command tx timeout
[  233.890490][ T7351] hsr_slave_0: entered promiscuous mode
[  233.912379][ T7351] hsr_slave_1: entered promiscuous mode
[  233.934613][ T7351] debugfs: 'hsr0' already exists in 'hsr'
[  233.949588][ T7351] Cannot create hsr debugfs directory
[  234.384490][   T48] hsr_slave_0: left promiscuous mode
[  234.407497][   T48] hsr_slave_1: left promiscuous mode
[  234.427759][   T48] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  234.442746][ T7364] Process accounting resumed
[  234.450264][   T48] batman_adv: batadv0: Removing interface: batadv_slave_0
[  234.475307][   T48] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  234.494922][   T48] batman_adv: batadv0: Removing interface: batadv_slave_1
[  234.583254][   T48] veth1_macvtap: left promiscuous mode
[  234.596768][   T48] veth0_macvtap: left promiscuous mode
[  234.610456][   T48] veth1_vlan: left promiscuous mode
[  234.625270][   T48] veth0_vlan: left promiscuous mode
[  235.426706][   T48] team0 (unregistering): Port device team_slave_1 removed
[  235.475678][   T48] team0 (unregistering): Port device team_slave_0 removed
[  238.174421][ T7461] FAULT_INJECTION: forcing a failure.
[  238.174421][ T7461] name failslab, interval 1, probability 0, space 0, times 0
[  238.220306][ T7461] CPU: 1 UID: 0 PID: 7461 Comm: syz.0.368 Not tainted syzkaller #0 PREEMPT(full) 
[  238.220349][ T7461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  238.220369][ T7461] Call Trace:
[  238.220380][ T7461]  <TASK>
[  238.220392][ T7461]  dump_stack_lvl+0x100/0x190
[  238.220434][ T7461]  should_fail_ex.cold+0x5/0xa
[  238.220478][ T7461]  should_failslab+0xc2/0x120
[  238.220519][ T7461]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  238.220573][ T7461]  ? security_file_alloc+0x34/0x2c0
[  238.220611][ T7461]  ? trace_kmem_cache_alloc+0xd5/0x100
[  238.220659][ T7461]  security_file_alloc+0x34/0x2c0
[  238.220705][ T7461]  init_file+0x95/0x480
[  238.220756][ T7461]  alloc_empty_file+0x79/0x1c0
[  238.220806][ T7461]  alloc_file_pseudo+0x13a/0x230
[  238.220858][ T7461]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  238.220906][ T7461]  ? alloc_fd+0x476/0x790
[  238.220950][ T7461]  ? do_raw_spin_unlock+0x145/0x1e0
[  238.220996][ T7461]  __anon_inode_getfile+0xe8/0x280
[  238.221054][ T7461]  anon_inode_getfile_fmode+0x37/0xa0
[  238.221108][ T7461]  do_eventfd+0x159/0x2b0
[  238.221145][ T7461]  __x64_sys_eventfd+0x32/0x50
[  238.221182][ T7461]  do_syscall_64+0x10b/0xf80
[  238.221233][ T7461]  ? clear_bhb_loop+0x40/0x90
[  238.221284][ T7461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.221319][ T7461] RIP: 0033:0x7f7d7859ce59
[  238.221347][ T7461] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  238.221379][ T7461] RSP: 002b:00007f7d794d5028 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  238.221411][ T7461] RAX: ffffffffffffffda RBX: 00007f7d78815fa0 RCX: 00007f7d7859ce59
[  238.221433][ T7461] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  238.221453][ T7461] RBP: 00007f7d78632d6f R08: 0000000000000000 R09: 0000000000000000
[  238.221473][ T7461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  238.221492][ T7461] R13: 00007f7d78816038 R14: 00007f7d78815fa0 R15: 00007ffcb26aed18
[  238.221535][ T7461]  </TASK>
[  238.305450][ T7351] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  238.606073][ T7351] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  238.648132][ T7351] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  238.720179][ T7351] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  238.761009][ T7351] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  238.823992][ T7351] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  238.846568][ T7351] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  238.894687][ T7351] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  239.652025][ T7351] 8021q: adding VLAN 0 to HW filter on device bond0
[  239.931459][ T7351] 8021q: adding VLAN 0 to HW filter on device team0
[  239.956654][  T623] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.963893][  T623] bridge0: port 1(bridge_slave_0) entered forwarding state
[  240.034876][  T623] bridge0: port 2(bridge_slave_1) entered blocking state
[  240.042126][  T623] bridge0: port 2(bridge_slave_1) entered forwarding state
[  241.099146][ T7499] random: crng reseeded on system resumption
[  242.484868][ T7351] 8021q: adding VLAN 0 to HW filter on device batadv0
[  242.721888][ T7517] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  243.479691][ T7351] veth0_vlan: entered promiscuous mode
[  243.527264][ T7351] veth1_vlan: entered promiscuous mode
[  243.639336][ T7351] veth0_macvtap: entered promiscuous mode
[  243.667956][ T7351] veth1_macvtap: entered promiscuous mode
[  243.769192][ T7351] batman_adv: batadv0: Interface activated: batadv_slave_0
[  243.817486][ T7351] batman_adv: batadv0: Interface activated: batadv_slave_1
[  243.873900][  T623] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  243.934486][  T623] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  243.992715][  T623] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.024507][  T623] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  244.404153][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  244.435665][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  244.597138][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  244.635311][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  245.006240][ T5641] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  246.713398][ T7569] netlink: 12 bytes leftover after parsing attributes in process `syz.0.393'.
[  247.434808][ T7582] random: crng reseeded on system resumption
[  248.602654][ T7595] netlink: 28 bytes leftover after parsing attributes in process `syz.1.388'.
[  251.159783][ T7626] netlink: 12 bytes leftover after parsing attributes in process `syz.1.397'.
[  252.168136][ T7641] random: crng reseeded on system resumption
[  253.797460][ T7658] netlink: 28 bytes leftover after parsing attributes in process `syz.4.401'.
[  253.813769][ T7653] vcan0: tx drop: invalid sa for name 0x00000000000000fd
[  255.589803][ T7664] netlink: 28 bytes leftover after parsing attributes in process `syz.4.404'.
[  255.824561][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  255.831008][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  257.206111][ T7696] netlink: 202 bytes leftover after parsing attributes in process `syz.4.407'.
[  257.914601][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  257.923078][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  258.941491][ T7733] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  260.041180][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  261.123323][ T7749] netlink: 28 bytes leftover after parsing attributes in process `syz.0.419'.
[  261.158042][ T7749] macvlan0: entered promiscuous mode
[  261.189277][ T7749] macvlan0: entered allmulticast mode
[  261.197721][ T7749] veth1_vlan: entered allmulticast mode
[  263.720314][ T7780] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff81b0ef5a (__mcheck_cpu_init_prepare_banks+0x18a/0x380)
[  263.736182][ T7780] Call Trace:
[  263.739488][ T7780]  <TASK>
[  263.742435][ T7780]  ? __pfx___mcheck_cpu_init_prepare_banks+0x10/0x10
[  263.749139][ T7780]  ? __pfx_call_function_single_prep_ipi+0x10/0x10
[  263.755678][ T7780]  mce_cpu_restart+0xd5/0x1f0
[  263.760379][ T7780]  ? __pfx_mce_cpu_restart+0x10/0x10
[  263.765688][ T7780]  smp_call_function_many_cond+0x13d4/0x1700
[  263.771713][ T7780]  ? __pfx_mce_cpu_restart+0x10/0x10
[  263.777031][ T7780]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  263.782908][ T7780]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  263.789318][ T7780]  ? __pfx___try_to_del_timer_sync+0x10/0x10
[  263.795379][ T7780]  ? __timer_delete_sync+0x151/0x1c0
[  263.800735][ T7780]  ? __pfx_mce_cpu_restart+0x10/0x10
[  263.806083][ T7780]  on_each_cpu_cond_mask+0x40/0x90
[  263.811274][ T7780]  set_bank+0x240/0x3a0
[  263.815493][ T7780]  ? __pfx_set_bank+0x10/0x10
[  263.820225][ T7780]  ? find_held_lock+0x2b/0x80
[  263.825006][ T7780]  ? sysfs_file_kobj+0xe4/0x290
[  263.829912][ T7780]  ? sysfs_file_kobj+0xe4/0x290
[  263.834818][ T7780]  ? __pfx_set_bank+0x10/0x10
[  263.839552][ T7780]  dev_attr_store+0x58/0x80
[  263.844163][ T7780]  ? __pfx_dev_attr_store+0x10/0x10
[  263.849420][ T7780]  sysfs_kf_write+0xf2/0x150
[  263.854038][ T7780]  kernfs_fop_write_iter+0x3e0/0x5f0
[  263.859348][ T7780]  ? __pfx_sysfs_kf_write+0x10/0x10
[  263.864561][ T7780]  vfs_write+0x6ac/0x1070
[  263.868938][ T7780]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  263.874783][ T7780]  ? __pfx_vfs_write+0x10/0x10
[  263.879686][ T7780]  ksys_write+0x12a/0x250
[  263.884043][ T7780]  ? __pfx_ksys_write+0x10/0x10
[  263.888920][ T7780]  ? rcu_is_watching+0x12/0xc0
[  263.893748][ T7780]  do_syscall_64+0x10b/0xf80
[  263.898372][ T7780]  ? clear_bhb_loop+0x40/0x90
[  263.903094][ T7780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.909021][ T7780] RIP: 0033:0x7fa1b7f9ce59
[  263.913480][ T7780] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  263.933124][ T7780] RSP: 002b:00007fa1b8d9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  263.941583][ T7780] RAX: ffffffffffffffda RBX: 00007fa1b8215fa0 RCX: 00007fa1b7f9ce59
[  263.949583][ T7780] RDX: 0000000000000003 RSI: 0000200000000240 RDI: 0000000000000004
[  263.957570][ T7780] RBP: 00007fa1b8032d6f R08: 0000000000000000 R09: 0000000000000000
[  263.965557][ T7780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  263.973538][ T7780] R13: 00007fa1b8216038 R14: 00007fa1b8215fa0 R15: 00007ffdfa6f0fa8
[  263.981569][ T7780]  </TASK>
[  264.682028][ T7788] Process accounting paused
[  268.497656][ T7848] vhci_hcd vhci_hcd.2: invalid port number 194
[  268.523635][ T7848] vhci_hcd vhci_hcd.2: invalid port number 194
[  268.562390][ T7853] FAULT_INJECTION: forcing a failure.
[  268.562390][ T7853] name failslab, interval 1, probability 0, space 0, times 0
[  268.623967][ T7853] CPU: 0 UID: 0 PID: 7853 Comm: syz.1.448 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  268.624016][ T7853] Tainted: [L]=SOFTLOCKUP
[  268.624027][ T7853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  268.624044][ T7853] Call Trace:
[  268.624054][ T7853]  <TASK>
[  268.624066][ T7853]  dump_stack_lvl+0x100/0x190
[  268.624106][ T7853]  should_fail_ex.cold+0x5/0xa
[  268.624148][ T7853]  should_failslab+0xc2/0x120
[  268.624187][ T7853]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  268.624239][ T7853]  ? posix_lock_inode+0x427/0x2420
[  268.624283][ T7853]  ? locks_get_lock_context+0x34f/0x620
[  268.624329][ T7853]  posix_lock_inode+0x427/0x2420
[  268.624388][ T7853]  ? __pfx_posix_lock_inode+0x10/0x10
[  268.624453][ T7853]  vfs_lock_file+0xfb/0x150
[  268.624500][ T7853]  fcntl_setlk+0x768/0xe20
[  268.624550][ T7853]  ? __pfx_fcntl_setlk+0x10/0x10
[  268.624601][ T7853]  ? __might_fault+0xc5/0x140
[  268.624650][ T7853]  ? __might_fault+0xc5/0x140
[  268.624715][ T7853]  do_fcntl+0xf39/0x1670
[  268.624768][ T7853]  ? __pfx_do_fcntl+0x10/0x10
[  268.624813][ T7853]  ? __fget_files+0x215/0x3d0
[  268.624865][ T7853]  ? tomoyo_file_fcntl+0x6c/0xc0
[  268.624920][ T7853]  __x64_sys_fcntl+0x163/0x200
[  268.624975][ T7853]  do_syscall_64+0x10b/0xf80
[  268.625023][ T7853]  ? clear_bhb_loop+0x40/0x90
[  268.625062][ T7853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.625095][ T7853] RIP: 0033:0x7f6094b9ce59
[  268.625121][ T7853] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  268.625151][ T7853] RSP: 002b:00007f6095b33028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  268.625181][ T7853] RAX: ffffffffffffffda RBX: 00007f6094e15fa0 RCX: 00007f6094b9ce59
[  268.625201][ T7853] RDX: 0000000000000008 RSI: 0000000000000007 RDI: 8000000000000001
[  268.625220][ T7853] RBP: 00007f6095b33090 R08: 0000000000000000 R09: 0000000000000000
[  268.625239][ T7853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  268.625257][ T7853] R13: 00007f6094e16038 R14: 00007f6094e15fa0 R15: 00007fff65482088
[  268.625298][ T7853]  </TASK>
[  270.459596][ T7888] MTRR 2 not used
[  270.546504][ T7883] futex_wake_op: syz.2.463 tries to shift op by -2048; fix this program
[  270.573006][ T7883] 0x000000000001-0x000000020000 : ""
[  270.614590][ T7883] ftl_cs: FTL header corrupt!
[  271.438226][ T7900] vcan0: tx drop: invalid da for name 0x000000000000003f
[  272.488289][ T7892] FAULT_INJECTION: forcing a failure.
[  272.488289][ T7892] name failslab, interval 1, probability 0, space 0, times 0
[  272.545127][ T7892] CPU: 0 UID: 0 PID: 7892 Comm: syz.2.463 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  272.545182][ T7892] Tainted: [L]=SOFTLOCKUP
[  272.545195][ T7892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  272.545214][ T7892] Call Trace:
[  272.545230][ T7892]  <TASK>
[  272.545239][ T7892]  dump_stack_lvl+0x100/0x190
[  272.545270][ T7892]  should_fail_ex.cold+0x5/0xa
[  272.545301][ T7892]  should_failslab+0xc2/0x120
[  272.545330][ T7892]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  272.545371][ T7892]  ? __d_alloc+0x34/0xa40
[  272.545409][ T7892]  __d_alloc+0x34/0xa40
[  272.545445][ T7892]  d_alloc+0x4a/0x1e0
[  272.545479][ T7892]  lookup_one_qstr_excl+0x171/0x250
[  272.545523][ T7892]  start_dirop+0x59/0xb0
[  272.545551][ T7892]  simple_start_creating+0xf9/0x110
[  272.545581][ T7892]  ? __pfx_simple_start_creating+0x10/0x10
[  272.545611][ T7892]  ? mntput+0x70/0xa0
[  272.545636][ T7892]  ? simple_pin_fs+0xa3/0x190
[  272.545663][ T7892]  debugfs_start_creating.part.0+0x82/0x170
[  272.545705][ T7892]  __debugfs_create_file+0xb3/0x4f0
[  272.545747][ T7892]  debugfs_create_file_full+0x41/0x60
[  272.545788][ T7892]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  272.545820][ T7892]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  272.545849][ T7892]  ? ida_alloc_range+0x70d/0x830
[  272.545911][ T7892]  ? lockdep_init_map_type+0x5c/0x250
[  272.545940][ T7892]  preinit_net.part.0+0x252/0x920
[  272.545972][ T7892]  copy_net_ns+0x339/0x7c0
[  272.546012][ T7892]  create_new_namespaces+0x3ea/0xac0
[  272.546052][ T7892]  unshare_nsproxy_namespaces+0xf2/0x220
[  272.546087][ T7892]  ksys_unshare+0x438/0xab0
[  272.546126][ T7892]  ? __pfx_ksys_unshare+0x10/0x10
[  272.546161][ T7892]  ? xfd_validate_state+0x129/0x190
[  272.546185][ T7892]  ? ksys_write+0x1ac/0x250
[  272.546221][ T7892]  __x64_sys_unshare+0x31/0x40
[  272.546257][ T7892]  do_syscall_64+0x10b/0xf80
[  272.546292][ T7892]  ? clear_bhb_loop+0x40/0x90
[  272.546321][ T7892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.546345][ T7892] RIP: 0033:0x7fa1b7f9ce59
[  272.546364][ T7892] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  272.546387][ T7892] RSP: 002b:00007fa1b61f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  272.546409][ T7892] RAX: ffffffffffffffda RBX: 00007fa1b8216180 RCX: 00007fa1b7f9ce59
[  272.546425][ T7892] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  272.546439][ T7892] RBP: 00007fa1b8032d6f R08: 0000000000000000 R09: 0000000000000000
[  272.546453][ T7892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  272.546467][ T7892] R13: 00007fa1b8216218 R14: 00007fa1b8216180 R15: 00007ffdfa6f0fa8
[  272.546497][ T7892]  </TASK>
[  275.616386][ T5641] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  277.304760][ T7960] FAULT_INJECTION: forcing a failure.
[  277.304760][ T7960] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  277.304843][ T7960] CPU: 0 UID: 0 PID: 7960 Comm: syz.1.475 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  277.304889][ T7960] Tainted: [L]=SOFTLOCKUP
[  277.304897][ T7960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  277.304910][ T7960] Call Trace:
[  277.304918][ T7960]  <TASK>
[  277.304926][ T7960]  dump_stack_lvl+0x100/0x190
[  277.304954][ T7960]  should_fail_ex.cold+0x5/0xa
[  277.304983][ T7960]  _copy_to_user+0x32/0xd0
[  277.305007][ T7960]  simple_read_from_buffer+0xcb/0x170
[  277.305037][ T7960]  proc_fail_nth_read+0x1af/0x230
[  277.305075][ T7960]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  277.305120][ T7960]  ? rw_verify_area+0xce/0x6d0
[  277.305143][ T7960]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  277.305180][ T7960]  vfs_read+0x1e4/0xb30
[  277.305210][ T7960]  ? __pfx_vfs_read+0x10/0x10
[  277.305235][ T7960]  ? __fget_files+0x215/0x3d0
[  277.305268][ T7960]  ? __fget_files+0x21f/0x3d0
[  277.305303][ T7960]  ksys_read+0x12a/0x250
[  277.305329][ T7960]  ? __pfx_ksys_read+0x10/0x10
[  277.305358][ T7960]  ? rcu_is_watching+0x12/0xc0
[  277.305390][ T7960]  do_syscall_64+0x10b/0xf80
[  277.305424][ T7960]  ? clear_bhb_loop+0x40/0x90
[  277.305452][ T7960]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.305475][ T7960] RIP: 0033:0x7f6094b5d68e
[  277.305493][ T7960] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  277.305515][ T7960] RSP: 002b:00007f6095b32fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  277.305536][ T7960] RAX: ffffffffffffffda RBX: 00007f6095b336c0 RCX: 00007f6094b5d68e
[  277.305554][ T7960] RDX: 000000000000000f RSI: 00007f6095b330a0 RDI: 0000000000000004
[  277.305567][ T7960] RBP: 00007f6095b33090 R08: 0000000000000000 R09: 0000000000000000
[  277.305581][ T7960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  277.305594][ T7960] R13: 00007f6094e16038 R14: 00007f6094e15fa0 R15: 00007fff65482088
[  277.305625][ T7960]  </TASK>
[  277.660162][ T5641] Bluetooth: hci4: command 0x2016 tx timeout
[  278.297830][ T7970] block2mtd: error: cannot open device 
[  278.373255][ T5641] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  278.373282][ T5641] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  278.373443][ T5641] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  278.373493][ T5641] Bluetooth: hci0: adv larger than maximum supported
[  278.373508][ T5641] Bluetooth: hci0: adv larger than maximum supported
[  278.373523][ T5641] Bluetooth: hci0: Malformed LE Event: 0x0d
[  279.753719][ T5641] Bluetooth: hci4: command 0x2016 tx timeout
[  280.585018][ T8013] x_tables: duplicate underflow at hook 4
[  280.694999][ T8013] usb usb11: usbfs: interface 0 claimed by hub while 'syz.4.489' sets config #7
[  282.228594][ T8046] binder: 8045:8046 ioctl c00c6211 0 returned -14
[  282.795432][ T8055] random: crng reseeded on system resumption
[  284.775953][ T8083] hub 1-0:1.0: USB hub found
[  284.803210][ T8083] hub 1-0:1.0: 1 port detected
[  285.086224][ T8087] FAULT_INJECTION: forcing a failure.
[  285.086224][ T8087] name failslab, interval 1, probability 0, space 0, times 0
[  285.131776][ T8087] CPU: 0 UID: 0 PID: 8087 Comm: syz.1.509 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  285.131817][ T8087] Tainted: [L]=SOFTLOCKUP
[  285.131826][ T8087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  285.131840][ T8087] Call Trace:
[  285.131847][ T8087]  <TASK>
[  285.131856][ T8087]  dump_stack_lvl+0x100/0x190
[  285.131886][ T8087]  should_fail_ex.cold+0x5/0xa
[  285.131916][ T8087]  ? ima_alloc_init_template+0xb6/0x6d0
[  285.131939][ T8087]  should_failslab+0xc2/0x120
[  285.131973][ T8087]  __kmalloc_noprof+0xe0/0x850
[  285.131995][ T8087]  ? find_held_lock+0x2b/0x80
[  285.132027][ T8087]  ? take_dentry_name_snapshot+0x30b/0x7c0
[  285.132072][ T8087]  ima_alloc_init_template+0xb6/0x6d0
[  285.132097][ T8087]  ? take_dentry_name_snapshot+0x310/0x7c0
[  285.132140][ T8087]  ima_store_measurement+0x1e3/0x5b0
[  285.132167][ T8087]  ? __pfx_ima_store_measurement+0x10/0x10
[  285.132202][ T8087]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  285.132242][ T8087]  process_measurement+0x19cc/0x2350
[  285.132288][ T8087]  ? stack_trace_save+0x8e/0xc0
[  285.132322][ T8087]  ? __pfx_process_measurement+0x10/0x10
[  285.132360][ T8087]  ? __lock_acquire+0x4a5/0x2630
[  285.132383][ T8087]  ? __kasan_slab_alloc+0x89/0x90
[  285.132407][ T8087]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  285.132447][ T8087]  ? init_file+0x95/0x480
[  285.132480][ T8087]  ? alloc_empty_file+0x79/0x1c0
[  285.132515][ T8087]  ? alloc_file_pseudo+0x13a/0x230
[  285.132550][ T8087]  ? ksys_mmap_pgoff+0x242/0x610
[  285.132577][ T8087]  ? __x64_sys_mmap+0x125/0x190
[  285.132606][ T8087]  ? do_syscall_64+0x10b/0xf80
[  285.132669][ T8087]  ? __pfx_aa_file_perm+0x10/0x10
[  285.132709][ T8087]  ima_file_mmap+0x1c4/0x1f0
[  285.132747][ T8087]  ? __pfx_ima_file_mmap+0x10/0x10
[  285.132792][ T8087]  security_mmap_file+0x278/0x9b0
[  285.132832][ T8087]  vm_mmap_pgoff+0xec/0x470
[  285.132867][ T8087]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  285.132896][ T8087]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  285.132934][ T8087]  ? hugetlbfs_get_inode+0x3f5/0x700
[  285.132983][ T8087]  ksys_mmap_pgoff+0x285/0x610
[  285.133016][ T8087]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  285.133045][ T8087]  ? xfd_validate_state+0x129/0x190
[  285.133076][ T8087]  __x64_sys_mmap+0x125/0x190
[  285.133107][ T8087]  do_syscall_64+0x10b/0xf80
[  285.133142][ T8087]  ? clear_bhb_loop+0x40/0x90
[  285.133171][ T8087]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.133195][ T8087] RIP: 0033:0x7f6094b9ce59
[  285.133214][ T8087] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  285.133237][ T8087] RSP: 002b:00007f6095b33028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  285.133259][ T8087] RAX: ffffffffffffffda RBX: 00007f6094e15fa0 RCX: 00007f6094b9ce59
[  285.133275][ T8087] RDX: 00004000000000df RSI: 0000000000000003 RDI: 00000000eaffffff
[  285.133289][ T8087] RBP: 00007f6094c32d6f R08: 0000000000000401 R09: 0000300000000000
[  285.133303][ T8087] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  285.133317][ T8087] R13: 00007f6094e16038 R14: 00007f6094e15fa0 R15: 00007fff65482088
[  285.133347][ T8087]  </TASK>
[  285.138160][   T29] audit: type=1804 audit(1778854137.056:10): pid=8087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.1.509" name="anon_hugepage" dev="hugetlbfs" ino=21292 res=0 errno=0
[  285.708873][ T8091] hub 1-0:1.0: USB hub found
[  285.734990][ T8091] hub 1-0:1.0: 1 port detected
[  287.979339][ T8113] futex_wake_op: syz.0.517 tries to shift op by -2048; fix this program
[  287.992021][ T8113] 0x000000000001-0x000000020000 : ""
[  288.005955][ T8113] ftl_cs: FTL header corrupt!
[  290.260546][ T8114] FAULT_INJECTION: forcing a failure.
[  290.260546][ T8114] name failslab, interval 1, probability 0, space 0, times 0
[  290.274772][ T8114] CPU: 1 UID: 0 PID: 8114 Comm: syz.0.517 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  290.274823][ T8114] Tainted: [L]=SOFTLOCKUP
[  290.274835][ T8114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  290.274854][ T8114] Call Trace:
[  290.274865][ T8114]  <TASK>
[  290.274877][ T8114]  dump_stack_lvl+0x100/0x190
[  290.274920][ T8114]  should_fail_ex.cold+0x5/0xa
[  290.274965][ T8114]  should_failslab+0xc2/0x120
[  290.275006][ T8114]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  290.275062][ T8114]  ? __d_alloc+0x34/0xa40
[  290.275118][ T8114]  __d_alloc+0x34/0xa40
[  290.275174][ T8114]  d_alloc+0x4a/0x1e0
[  290.275223][ T8114]  lookup_one_qstr_excl+0x171/0x250
[  290.275279][ T8114]  start_dirop+0x59/0xb0
[  290.275320][ T8114]  simple_start_creating+0xf9/0x110
[  290.275363][ T8114]  ? __pfx_simple_start_creating+0x10/0x10
[  290.275407][ T8114]  ? mntput+0x70/0xa0
[  290.275443][ T8114]  ? simple_pin_fs+0xa3/0x190
[  290.275481][ T8114]  debugfs_start_creating.part.0+0x82/0x170
[  290.275537][ T8114]  __debugfs_create_file+0xb3/0x4f0
[  290.275605][ T8114]  debugfs_create_file_full+0x41/0x60
[  290.275664][ T8114]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  290.275710][ T8114]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  290.275753][ T8114]  ? ida_alloc_range+0x70d/0x830
[  290.275841][ T8114]  ? lockdep_init_map_type+0x5c/0x250
[  290.275885][ T8114]  preinit_net.part.0+0x252/0x920
[  290.275931][ T8114]  copy_net_ns+0x339/0x7c0
[  290.275981][ T8114]  create_new_namespaces+0x3ea/0xac0
[  290.276035][ T8114]  unshare_nsproxy_namespaces+0xf2/0x220
[  290.276084][ T8114]  ksys_unshare+0x438/0xab0
[  290.276136][ T8114]  ? __pfx_ksys_unshare+0x10/0x10
[  290.276186][ T8114]  ? xfd_validate_state+0x129/0x190
[  290.276223][ T8114]  ? ksys_write+0x1ac/0x250
[  290.276276][ T8114]  __x64_sys_unshare+0x31/0x40
[  290.276325][ T8114]  do_syscall_64+0x10b/0xf80
[  290.276373][ T8114]  ? clear_bhb_loop+0x40/0x90
[  290.276414][ T8114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.276448][ T8114] RIP: 0033:0x7f7d7859ce59
[  290.276476][ T8114] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  290.276508][ T8114] RSP: 002b:00007f7d794b4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  290.276540][ T8114] RAX: ffffffffffffffda RBX: 00007f7d78816090 RCX: 00007f7d7859ce59
[  290.276562][ T8114] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  290.276582][ T8114] RBP: 00007f7d78632d6f R08: 0000000000000000 R09: 0000000000000000
[  290.276611][ T8114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  290.276631][ T8114] R13: 00007f7d78816128 R14: 00007f7d78816090 R15: 00007ffcb26aed18
[  290.276674][ T8114]  </TASK>
[  292.580528][ T8163] x_tables: duplicate underflow at hook 4
[  292.688837][ T8171] usb usb11: usbfs: interface 0 claimed by hub while 'syz.0.529' sets config #7
[  293.516903][ T8178] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  293.530448][ T8178] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  293.542112][ T8178] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  293.548202][ T8178] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  293.664165][ T8178] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  293.709895][ T8178] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  293.784995][ T8178] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  294.943834][ T8170] Process accounting resumed
[  295.164340][ T8213] FAULT_INJECTION: forcing a failure.
[  295.164340][ T8213] name failslab, interval 1, probability 0, space 0, times 0
[  295.220157][ T8213] CPU: 0 UID: 0 PID: 8213 Comm: syz.1.542 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  295.220206][ T8213] Tainted: [L]=SOFTLOCKUP
[  295.220217][ T8213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  295.220235][ T8213] Call Trace:
[  295.220245][ T8213]  <TASK>
[  295.220257][ T8213]  dump_stack_lvl+0x100/0x190
[  295.220297][ T8213]  should_fail_ex.cold+0x5/0xa
[  295.220339][ T8213]  ? copy_splice_read+0x1a3/0xb90
[  295.220378][ T8213]  should_failslab+0xc2/0x120
[  295.220417][ T8213]  __kmalloc_noprof+0xe0/0x850
[  295.220457][ T8213]  copy_splice_read+0x1a3/0xb90
[  295.220507][ T8213]  ? __pfx_copy_splice_read+0x10/0x10
[  295.220556][ T8213]  ? look_up_lock_class+0x55/0x120
[  295.220613][ T8213]  ? lockdep_init_map_type+0x5c/0x250
[  295.220649][ T8213]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  295.220691][ T8213]  ? __pfx_copy_splice_read+0x10/0x10
[  295.220741][ T8213]  do_splice_read+0x285/0x370
[  295.220787][ T8213]  splice_direct_to_actor+0x2a1/0xa30
[  295.220832][ T8213]  ? __pfx_direct_splice_actor+0x10/0x10
[  295.220881][ T8213]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  295.220937][ T8213]  do_splice_direct+0x174/0x240
[  295.220980][ T8213]  ? __pfx_do_splice_direct+0x10/0x10
[  295.221023][ T8213]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  295.221071][ T8213]  ? rw_verify_area+0xce/0x6d0
[  295.221107][ T8213]  do_sendfile+0xadc/0xe20
[  295.221151][ T8213]  ? __pfx_do_sendfile+0x10/0x10
[  295.221188][ T8213]  ? __fget_files+0x21f/0x3d0
[  295.221239][ T8213]  __x64_sys_sendfile64+0x1d8/0x220
[  295.221282][ T8213]  ? ksys_write+0x1ac/0x250
[  295.221319][ T8213]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  295.221369][ T8213]  ? rcu_is_watching+0x12/0xc0
[  295.221415][ T8213]  do_syscall_64+0x10b/0xf80
[  295.221463][ T8213]  ? clear_bhb_loop+0x40/0x90
[  295.221501][ T8213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.221533][ T8213] RIP: 0033:0x7f6094b9ce59
[  295.221558][ T8213] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  295.221588][ T8213] RSP: 002b:00007f6095b33028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  295.221619][ T8213] RAX: ffffffffffffffda RBX: 00007f6094e15fa0 RCX: 00007f6094b9ce59
[  295.221639][ T8213] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  295.221658][ T8213] RBP: 00007f6095b33090 R08: 0000000000000000 R09: 0000000000000000
[  295.221677][ T8213] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  295.221695][ T8213] R13: 00007f6094e16038 R14: 00007f6094e15fa0 R15: 00007fff65482088
[  295.221744][ T8213]  </TASK>
[  295.290789][   T50] Bluetooth: hci3: command 0x0c1a tx timeout
[  295.581975][   T50] Bluetooth: hci0: command 0x0c1a tx timeout
[  295.582648][ T5641] Bluetooth: hci2: command 0x0c1a tx timeout
[  295.741814][ T5641] Bluetooth: hci4: command 0x2016 tx timeout
[  295.818560][ T8215] x_tables: duplicate underflow at hook 4
[  295.907752][ T8221] usb usb11: usbfs: interface 0 claimed by hub while 'syz.2.543' sets config #7
[  296.968964][ T8231] [U] ^\
[  297.660335][ T5641] Bluetooth: hci0: command 0x0c1a tx timeout
[  297.820316][ T5641] Bluetooth: hci4: command 0x2016 tx timeout
[  298.212186][ T5641] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[  298.212218][ T5641] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260
[  298.230808][ T5641] Bluetooth: hci4: Unknown advertising packet type: 0x7f
[  298.230849][ T5641] Bluetooth: hci4: adv larger than maximum supported
[  298.238986][ T5641] Bluetooth: hci4: adv larger than maximum supported
[  298.245802][ T5641] Bluetooth: hci4: adv larger than maximum supported
[  298.252616][ T5641] Bluetooth: hci4: Malformed LE Event: 0x0d
[  299.900424][ T5641] Bluetooth: hci4: command 0x2016 tx timeout
[  301.557895][ T5641] Bluetooth: hci0: unexpected event for opcode 0x7c89
[  301.809583][ T8335] random: crng reseeded on system resumption
[  303.484341][ T8362] FAULT_INJECTION: forcing a failure.
[  303.484341][ T8362] name failslab, interval 1, probability 0, space 0, times 0
[  303.537959][ T8362] CPU: 1 UID: 0 PID: 8362 Comm: syz.2.581 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  303.538013][ T8362] Tainted: [L]=SOFTLOCKUP
[  303.538027][ T8362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  303.538053][ T8362] Call Trace:
[  303.538065][ T8362]  <TASK>
[  303.538079][ T8362]  dump_stack_lvl+0x100/0x190
[  303.538124][ T8362]  should_fail_ex.cold+0x5/0xa
[  303.538168][ T8362]  ? tomoyo_realpath_from_path+0xb6/0x690
[  303.538214][ T8362]  should_failslab+0xc2/0x120
[  303.538257][ T8362]  __kmalloc_noprof+0xe0/0x850
[  303.538288][ T8362]  ? kfree+0x1dd/0x6c0
[  303.538347][ T8362]  tomoyo_realpath_from_path+0xb6/0x690
[  303.538402][ T8362]  tomoyo_path_perm+0x276/0x460
[  303.538438][ T8362]  ? tomoyo_path_perm+0x262/0x460
[  303.538477][ T8362]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  303.538534][ T8362]  ? lockdown_is_locked_down+0x3d/0x140
[  303.538613][ T8362]  ? __pfx_ima_file_check+0x10/0x10
[  303.538665][ T8362]  ? hook_file_truncate+0xc3/0x240
[  303.538714][ T8362]  security_file_truncate+0xb5/0x1e0
[  303.538758][ T8362]  path_openat+0x1c6e/0x31a0
[  303.538818][ T8362]  ? __pfx_path_openat+0x10/0x10
[  303.538878][ T8362]  do_file_open+0x20e/0x430
[  303.538927][ T8362]  ? __pfx_do_file_open+0x10/0x10
[  303.539003][ T8362]  ? alloc_fd+0x476/0x790
[  303.539052][ T8362]  ? do_getname+0x191/0x390
[  303.539109][ T8362]  do_sys_openat2+0x10d/0x1e0
[  303.539164][ T8362]  ? __pfx_do_sys_openat2+0x10/0x10
[  303.539222][ T8362]  ? __fget_files+0x21f/0x3d0
[  303.539272][ T8362]  __x64_sys_openat+0x12d/0x210
[  303.539325][ T8362]  ? __pfx___x64_sys_openat+0x10/0x10
[  303.539386][ T8362]  ? rcu_is_watching+0x12/0xc0
[  303.539434][ T8362]  do_syscall_64+0x10b/0xf80
[  303.539484][ T8362]  ? clear_bhb_loop+0x40/0x90
[  303.539527][ T8362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.539573][ T8362] RIP: 0033:0x7fa1b7f9ce59
[  303.539601][ T8362] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  303.539637][ T8362] RSP: 002b:00007fa1b8d9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  303.539678][ T8362] RAX: ffffffffffffffda RBX: 00007fa1b8215fa0 RCX: 00007fa1b7f9ce59
[  303.539702][ T8362] RDX: 0000000000008742 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  303.539725][ T8362] RBP: 00007fa1b8032d6f R08: 0000000000000000 R09: 0000000000000000
[  303.539746][ T8362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  303.539768][ T8362] R13: 00007fa1b8216038 R14: 00007fa1b8215fa0 R15: 00007ffdfa6f0fa8
[  303.539814][ T8362]  </TASK>
[  303.791488][ T8362] ERROR: Out of memory at tomoyo_realpath_from_path.
[  305.359024][ T8410] dyndbg: bad flag-op , at start of 
[  305.396172][ T8410] dyndbg: flags parse failed
[  307.336277][ T8462] FAULT_INJECTION: forcing a failure.
[  307.336277][ T8462] name failslab, interval 1, probability 0, space 0, times 0
[  307.389606][ T8462] CPU: 0 UID: 0 PID: 8462 Comm: syz.1.598 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  307.389660][ T8462] Tainted: [L]=SOFTLOCKUP
[  307.389674][ T8462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  307.389693][ T8462] Call Trace:
[  307.389703][ T8462]  <TASK>
[  307.389716][ T8462]  dump_stack_lvl+0x100/0x190
[  307.389762][ T8462]  should_fail_ex.cold+0x5/0xa
[  307.389806][ T8462]  should_failslab+0xc2/0x120
[  307.389849][ T8462]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  307.389908][ T8462]  ? __d_alloc+0x34/0xa40
[  307.389961][ T8462]  ? lockdep_init_map_type+0x5c/0x250
[  307.390003][ T8462]  __d_alloc+0x34/0xa40
[  307.390054][ T8462]  d_alloc_pseudo+0x1c/0xc0
[  307.390088][ T8462]  alloc_file_pseudo+0xcf/0x230
[  307.390144][ T8462]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  307.390198][ T8462]  ? alloc_fd+0x476/0x790
[  307.390247][ T8462]  sock_alloc_file+0x50/0x210
[  307.390300][ T8462]  __sys_socket+0x1c0/0x260
[  307.390353][ T8462]  ? __pfx___sys_socket+0x10/0x10
[  307.390405][ T8462]  ? ksys_write+0x1ac/0x250
[  307.390455][ T8462]  __x64_sys_socket+0x72/0xb0
[  307.390505][ T8462]  ? lockdep_hardirqs_on+0x78/0x100
[  307.390557][ T8462]  do_syscall_64+0x10b/0xf80
[  307.390608][ T8462]  ? clear_bhb_loop+0x40/0x90
[  307.390649][ T8462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.390685][ T8462] RIP: 0033:0x7f6094b9ce59
[  307.390711][ T8462] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  307.390746][ T8462] RSP: 002b:00007f6095b33028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  307.390778][ T8462] RAX: ffffffffffffffda RBX: 00007f6094e15fa0 RCX: 00007f6094b9ce59
[  307.390801][ T8462] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  307.390822][ T8462] RBP: 00007f6094c32d6f R08: 0000000000000000 R09: 0000000000000000
[  307.390841][ T8462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  307.390860][ T8462] R13: 00007f6094e16038 R14: 00007f6094e15fa0 R15: 00007fff65482088
[  307.390903][ T8462]  </TASK>
[  308.524392][ T8487] ==================================================================
[  308.532563][ T8487] BUG: KASAN: slab-out-of-bounds in cache_seq_start_rcu+0x3fe/0x420
[  308.540613][ T8487] Read of size 8 at addr ffff8880293d7800 by task syz.4.602/8487
[  308.548407][ T8487] 
[  308.550856][ T8487] CPU: 0 UID: 0 PID: 8487 Comm: syz.4.602 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  308.550904][ T8487] Tainted: [L]=SOFTLOCKUP
[  308.550916][ T8487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  308.550936][ T8487] Call Trace:
[  308.550947][ T8487]  <TASK>
[  308.550958][ T8487]  dump_stack_lvl+0x100/0x190
[  308.550997][ T8487]  print_report+0x13d/0x4b0
[  308.551041][ T8487]  ? __virt_addr_valid+0x239/0x430
[  308.551093][ T8487]  ? cache_seq_start_rcu+0x3fe/0x420
[  308.551124][ T8487]  kasan_report+0xdf/0x1d0
[  308.551160][ T8487]  ? cache_seq_start_rcu+0x3fe/0x420
[  308.551197][ T8487]  cache_seq_start_rcu+0x3fe/0x420
[  308.551232][ T8487]  seq_read_iter+0x2c1/0x1270
[  308.551278][ T8487]  seq_read+0x33b/0x4c0
[  308.551312][ T8487]  ? __pfx_seq_read+0x10/0x10
[  308.551349][ T8487]  ? lock_acquire+0x1b1/0x370
[  308.551386][ T8487]  ? __pfx_seq_read+0x10/0x10
[  308.551420][ T8487]  proc_reg_read+0x240/0x330
[  308.551458][ T8487]  ? __pfx_proc_reg_read+0x10/0x10
[  308.551496][ T8487]  vfs_read+0x1e4/0xb30
[  308.551534][ T8487]  ? __pfx_vfs_read+0x10/0x10
[  308.551568][ T8487]  ? __fget_files+0x215/0x3d0
[  308.551610][ T8487]  ? __fget_files+0x21f/0x3d0
[  308.551652][ T8487]  ksys_read+0x12a/0x250
[  308.551696][ T8487]  ? __pfx_ksys_read+0x10/0x10
[  308.551733][ T8487]  ? rcu_is_watching+0x12/0xc0
[  308.551775][ T8487]  do_syscall_64+0x10b/0xf80
[  308.551824][ T8487]  ? clear_bhb_loop+0x40/0x90
[  308.551860][ T8487]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.551893][ T8487] RIP: 0033:0x7fba6059ce59
[  308.551918][ T8487] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  308.551948][ T8487] RSP: 002b:00007fba61478028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  308.551976][ T8487] RAX: ffffffffffffffda RBX: 00007fba60816180 RCX: 00007fba6059ce59
[  308.551998][ T8487] RDX: 000000000000067b RSI: 00002000000006c0 RDI: 0000000000000004
[  308.552018][ T8487] RBP: 00007fba60632d6f R08: 0000000000000000 R09: 0000000000000000
[  308.552037][ T8487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  308.552057][ T8487] R13: 00007fba60816218 R14: 00007fba60816180 R15: 00007ffe0c60bf38
[  308.552090][ T8487]  </TASK>
[  308.552101][ T8487] 
[  308.776282][ T8487] Allocated by task 7351:
[  308.780651][ T8487]  kasan_save_stack+0x30/0x50
[  308.785364][ T8487]  kasan_save_track+0x14/0x30
[  308.790071][ T8487]  __kasan_kmalloc+0xaa/0xb0
[  308.794688][ T8487]  __kmalloc_noprof+0x301/0x850
[  308.799576][ T8487]  cache_create_net+0xa2/0x1f0
[  308.804420][ T8487]  nfsd_idmap_init+0x62/0x250
[  308.809135][ T8487]  nfsd_net_init+0x85/0x3e0
[  308.813698][ T8487]  ops_init+0x1e2/0x5f0
[  308.817923][ T8487]  setup_net+0x118/0x3a0
[  308.822208][ T8487]  copy_net_ns+0x46f/0x7c0
[  308.826679][ T8487]  create_new_namespaces+0x3ea/0xac0
[  308.832099][ T8487]  unshare_nsproxy_namespaces+0xf2/0x220
[  308.837873][ T8487]  ksys_unshare+0x438/0xab0
[  308.842425][ T8487]  __x64_sys_unshare+0x31/0x40
[  308.847235][ T8487]  do_syscall_64+0x10b/0xf80
[  308.851966][ T8487]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.857893][ T8487] 
[  308.860244][ T8487] The buggy address belongs to the object at ffff8880293d7000
[  308.860244][ T8487]  which belongs to the cache kmalloc-2k of size 2048
[  308.874331][ T8487] The buggy address is located 0 bytes to the right of
[  308.874331][ T8487]  allocated 2048-byte region [ffff8880293d7000, ffff8880293d7800)
[  308.888945][ T8487] 
[  308.891321][ T8487] The buggy address belongs to the physical page:
[  308.897769][ T8487] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x293d0
[  308.906569][ T8487] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  308.915103][ T8487] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  308.922684][ T8487] page_type: f5(slab)
[  308.926702][ T8487] raw: 00fff00000000040 ffff88813fe2f000 dead000000000100 dead000000000122
[  308.935328][ T8487] raw: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000
[  308.943955][ T8487] head: 00fff00000000040 ffff88813fe2f000 dead000000000100 dead000000000122
[  308.952657][ T8487] head: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000
[  308.961362][ T8487] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff
[  308.970069][ T8487] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  308.978766][ T8487] page dumped because: kasan: bad access detected
[  308.985310][ T8487] page_owner tracks the page as allocated
[  308.991044][ T8487] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 131, tgid 131 (kworker/u8:5), ts 8149577452, free_ts 0
[  309.011316][ T8487]  post_alloc_hook+0x153/0x170
[  309.016180][ T8487]  get_page_from_freelist+0x11a6/0x33b0
[  309.021783][ T8487]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  309.027726][ T8487]  new_slab+0xa6/0x6c0
[  309.031929][ T8487]  refill_objects+0x277/0x420
[  309.036740][ T8487]  __pcs_replace_empty_main+0x375/0x650
[  309.042336][ T8487]  __kmalloc_noprof+0x688/0x850
[  309.047235][ T8487]  scsi_alloc_target+0x12f/0xc70
[  309.052226][ T8487]  __scsi_scan_target+0x124/0x570
[  309.057294][ T8487]  scsi_scan_channel+0x13d/0x1e0
[  309.062284][ T8487]  scsi_scan_host_selected+0x2fe/0x3e0
[  309.067803][ T8487]  do_scsi_scan_host+0x1f4/0x270
[  309.072797][ T8487]  do_scan_async+0x42/0x480
[  309.077368][ T8487]  async_run_entry_fn+0x9f/0x580
[  309.082380][ T8487]  process_one_work+0xa0e/0x1980
[  309.087354][ T8487]  worker_thread+0x5ef/0xe50
[  309.092248][ T8487] page_owner free stack trace missing
[  309.097636][ T8487] 
[  309.099983][ T8487] Memory state around the buggy address:
[  309.105655][ T8487]  ffff8880293d7700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  309.113746][ T8487]  ffff8880293d7780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  309.121856][ T8487] >ffff8880293d7800: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  309.129953][ T8487]                    ^
[  309.134060][ T8487]  ffff8880293d7880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  309.142249][ T8487]  ffff8880293d7900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  309.150353][ T8487] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  309.463340][ T8487] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  309.470629][ T8487] CPU: 1 UID: 0 PID: 8487 Comm: syz.4.602 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  309.481451][ T8487] Tainted: [L]=SOFTLOCKUP
[  309.485914][ T8487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  309.496026][ T8487] Call Trace:
[  309.499346][ T8487]  <TASK>
[  309.502308][ T8487]  dump_stack_lvl+0x100/0x190
[  309.507025][ T8487]  vpanic+0x552/0x970
[  309.511477][ T8487]  ? __pfx_vpanic+0x10/0x10
[  309.516019][ T8487]  ? mark_held_locks+0x40/0x70
[  309.520823][ T8487]  ? cache_seq_start_rcu+0x3fe/0x420
[  309.526145][ T8487]  panic+0xd1/0xe0
[  309.529904][ T8487]  ? __pfx_panic+0x10/0x10
[  309.534367][ T8487]  ? cache_seq_start_rcu+0x3fe/0x420
[  309.539686][ T8487]  ? preempt_schedule_common+0x42/0xc0
[  309.545201][ T8487]  ? check_panic_on_warn+0x1f/0x90
[  309.550362][ T8487]  check_panic_on_warn.cold+0x19/0x34
[  309.555775][ T8487]  end_report.part.0+0x3a/0x90
[  309.560588][ T8487]  kasan_report.cold+0xe/0x18
[  309.565319][ T8487]  ? cache_seq_start_rcu+0x3fe/0x420
[  309.570643][ T8487]  cache_seq_start_rcu+0x3fe/0x420
[  309.575810][ T8487]  seq_read_iter+0x2c1/0x1270
[  309.580557][ T8487]  seq_read+0x33b/0x4c0
[  309.584780][ T8487]  ? __pfx_seq_read+0x10/0x10
[  309.589522][ T8487]  ? lock_acquire+0x1b1/0x370
[  309.594260][ T8487]  ? __pfx_seq_read+0x10/0x10
[  309.598980][ T8487]  proc_reg_read+0x240/0x330
[  309.603614][ T8487]  ? __pfx_proc_reg_read+0x10/0x10
[  309.608772][ T8487]  vfs_read+0x1e4/0xb30
[  309.612968][ T8487]  ? __pfx_vfs_read+0x10/0x10
[  309.617683][ T8487]  ? __fget_files+0x215/0x3d0
[  309.622435][ T8487]  ? __fget_files+0x21f/0x3d0
[  309.627174][ T8487]  ksys_read+0x12a/0x250
[  309.631459][ T8487]  ? __pfx_ksys_read+0x10/0x10
[  309.636273][ T8487]  ? rcu_is_watching+0x12/0xc0
[  309.641089][ T8487]  do_syscall_64+0x10b/0xf80
[  309.645749][ T8487]  ? clear_bhb_loop+0x40/0x90
[  309.650478][ T8487]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.656423][ T8487] RIP: 0033:0x7fba6059ce59
[  309.660880][ T8487] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  309.681049][ T8487] RSP: 002b:00007fba61478028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  309.689505][ T8487] RAX: ffffffffffffffda RBX: 00007fba60816180 RCX: 00007fba6059ce59
[  309.697523][ T8487] RDX: 000000000000067b RSI: 00002000000006c0 RDI: 0000000000000004
[  309.705550][ T8487] RBP: 00007fba60632d6f R08: 0000000000000000 R09: 0000000000000000
[  309.713570][ T8487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  309.721670][ T8487] R13: 00007fba60816218 R14: 00007fba60816180 R15: 00007ffe0c60bf38
[  309.729694][ T8487]  </TASK>
[  309.733583][ T8487] Kernel Offset: disabled
[  309.737934][ T8487] Rebooting in 86400 seconds..