last executing test programs:

4.838638962s ago: executing program 1 (id=5070):
openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/tracing/buffer_percent\x00', 0x10002, 0x0)
r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x0, 0x0)
r1 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/dri/0000:00:02.0/state\x00', 0x640900, 0x0)
read$auto_drm_debugfs_entry_fops_drm_debugfs(r1, &(0x7f00000001c0)=""/155, 0x9b)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/pci0000:00/0000:00:01.3/power/control\x00', 0xe3102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r3}, 0x6a)
sendto$auto(r2, 0x0, 0x6fffff9, 0xfffffff8, &(0x7f0000000440)=@can, 0x36)
close_range$auto(0x2, 0x8, 0x5)
socket(0x10, 0x2, 0x4)
r4 = socket(0x1d, 0x2, 0x7)
r5 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r6=>0x0})
bind$auto(r4, &(0x7f0000000000)=@can={0x1d, r6}, 0x6a)
r7 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000580)='/dev/adsp1\x00', 0x28600, 0x0)
ioctl$auto_SNDCTL_DSP_GETOPTR(r7, 0x800c5012, &(0x7f0000000640))
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r8=>0x0})
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r8}, 0x18)
sendmsg$auto_NL80211_CMD_STOP_SCHED_SCAN(r0, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="280000001a775b68d62c77b6aeb6d562ec0e5ae6f3a06a0b62bd1a792d20e5fb6d3483b5f7a4a4132b5ff6bad8dddf118ead21858a3709c4ac14e868cd2e84292aedb6528b50d3dccb2f8ed35b742545b0c88632ddceca3a8ecd8a49ae6019238c9175d6d71189c1e9cde1536586a01ebbac3500"/129, @ANYRES16=0x0, @ANYBLOB="000327bd7000fddbdf254c0000000a003a017d1b63537651000008006b0081000000"], 0x28}, 0x1, 0x0, 0x0, 0x10000000}, 0x2800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x1ffcc}, 0x1, 0x0, 0x0, 0x6b6}, 0x7}, 0x3, 0xee)
r9 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r9, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x2, 0x10, 0x8, 0x7fb, &(0x7f00000002c0)})
socket(0xa, 0x5, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)

4.256119384s ago: executing program 3 (id=5073):
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f00000000c0)="3574e512505966a45b3eb62d0ebcbfefe07f6e612b2b6556cace79b4c734c039857ceebca201b48f78ac357ab137307948637c11", 0x84c, 0x0, 0x9, 0x0, 0x3, 0x10b}, 0x800008}, 0x1, 0x10000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x2, 0x4)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/seq/timer\x00', 0x28102, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000001880)=""/4101, 0x1005)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r3, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r1)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vidtv.0/i2c-0/0-0060/modalias\x00', 0x80000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000000)=""/53, 0x35)
read$auto(r3, &(0x7f0000000000)='\x00', 0x91e2)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/fs/ocfs2/cluster_stack\x00', 0x88282, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk\x00', 0x100, 0x0)
fanotify_init$auto(0x65, 0x2)
socket(0x5, 0x3, 0x4)
r5 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES8=r5, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
r6 = socket(0x10, 0x3, 0xa)
sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="24000000eb8aa03ee1579504bb96180871427170bf08a51669d384a9f8b0fb75e382a7a08551d5b76e949f40c6c06dfff42d815d20a139db647a7cd572a6314af726e87b21fc43f724115651a926eeb7da397a459e60225e4023dcefd89eaa022bab6c0053033340ac65b6c4b557c8602ad2818be7979d1da9b36ffec6d64b4efb7ecf03f47fdd6dc12307c95bd7968de8ba87fc956c29356e85a9a34fe359baab8f8a16edac8cd89a681d57b7f19c9e07db3faa71db8af8d515956046a38c313e555aaacb6cb5e4433daa5db485a8b55a076c047d3ebf", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fedbdf257f0000000600960012ff00000800a50001000000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x10)
brk$auto(0x7b5900000000)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000180), 0x7112}, 0x8)

3.83633879s ago: executing program 3 (id=5077):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/system/node/node1/hugepages/hugepages-1048576kB/demote\x00', 0x183841, 0x0)
write$auto(r0, &(0x7f00000003c0)='+\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xadR\\\xcc\x8b\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y', 0x4)

3.698607379s ago: executing program 3 (id=5080):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000040), 0x80302, 0x0)
ioctl$auto_SW_SYNC_IOC_INC(r0, 0x40045701, &(0x7f0000000080)=0xffffffff)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x40, 0x7, 0xdf, 0x53, 0x2, 0x8004)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb5, 0x10, 0x7, 0x4, 0xffffffffffffffff, 0xa, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10)
munmap$auto(0x8000, 0xffffffff)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/saved_tgids\x00', 0x101002, 0x0)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty57\x00', 0x40740, 0x0)
ioctl$auto(0x3, 0x402c542d, r1)
write$auto(0x3, 0x0, 0xfffffdef)
io_uring_setup$auto(0x406, 0x0)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46)

3.29163045s ago: executing program 1 (id=5081):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_HDIO_GETGEO(r0, 0x301, 0x0)

3.033599859s ago: executing program 1 (id=5082):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async)
unshare$auto(0x40000080) (async)
r0 = clone$auto(0x6db, 0x10, 0x0, 0x0, 0x40000006)
migrate_pages$auto(r0, 0x4, 0x0, &(0x7f0000000180)=0x2) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r2, 0x118, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x4}, @NL802154_ATTR_BEACON_INTERVAL={0x5, 0x26, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) (async)
r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
r4 = openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x8a001, 0x0)
ioctl$auto_rfkill_fops_core(r4, 0x1, &(0x7f0000000340)) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
select$auto(0x11, 0x0, 0x0, 0x0, 0x0)
fadvise64$auto_POSIX_FADV_WILLNEED(r3, 0x4, 0xfff, 0x3) (async)
io_cancel$auto(0x6, 0x0, 0x0)

2.737722355s ago: executing program 3 (id=5083):
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
pread64$auto(0xffffffffffffffff, &(0x7f00000002c0)='\x04\xefr\tbgc/\xd0\xe1\xf7$/tg/,s\b\xf5\xf7\x0f\x03\xd5\xef\xbf\xf6j\xe2\xed\x7f0\b\xff^\xe3th\xd2\x1bA\xba&\xba\xd0\xbb\xca\xb0\xa1\t\x00\x00\r(\xccF\xeeg\n\x00\x00\xa9l\x9cd\xcf\xff\x97=\xf4\xa1\xca\x82j\xf2\x17\t\x00\x00\x00\x00\x00\x00\x000\xf76\xb96\xd1\xb9\xde\xe2\x167\xc5\x94\x00A[B\xd9\x82\xaa\xc5\xfcoB\xfe\'\xfbI\xc9\xcb\xc3\xc1\x1e6~\x81\xb9\x0ff\x8e\xd3\x06\xba;yX\x966\x97#\xfb\x8d!F\xfc\x99\x86\x1d\xbb\xaf(\x92\x887\x01Z\xa7\xe3Y\x17\xd2#\x8aO\xef\r\xfa\xe0\x18IiI\xaek\xa9R\x02N;+@\x12>\'\x1a\xa6i\x93\x8c\x16BO@ \xb5\xd9\xd0\xb6S\xfc\x17\x11\x04\x8b?$\xean\xa1|D\xbbV%\xde\x87\xd1@\x00\x8cM\xfdr\xc9\x86\xbaq', 0x100003ffd, 0x6)

2.55953952s ago: executing program 0 (id=5084):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
socket(0x5, 0x4, 0x7)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x42800, 0x0) (async)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x22002, 0x0)
r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/mem\x00', 0x200, 0x0)
read$auto_proc_mem_operations_base(r0, &(0x7f0000000200)=""/81, 0x51) (async)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x2, 0x80002, 0x73) (async)
r2 = io_uring_setup$auto(0x406, 0x0) (async)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, 0x0, 0x80) (async)
getrandom$auto(0x0, 0x6000000, 0x3) (async)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46) (async)
io_uring_enter$auto(r2, 0x7, 0x7ffffffb, 0x3, 0x0, 0x3) (async)
r3 = socket(0x28, 0x1, 0x0)
getsockopt$auto(r3, 0x0, 0x9, 0x0, 0x0)
move_pages$auto(0x0, 0xa, 0x0, 0x0, 0x0, 0x2) (async)
writev$auto(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000040), 0xfff}, 0x3)
acct$auto(&(0x7f0000000180)=':.\xf8}/\x00') (async)
ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(r2, 0x7ab, 0x0) (async)
io_uring_enter$auto(0x3, 0x5, 0x5f3, 0x3, 0x0, 0x2)
write$auto(0x3, 0x0, 0x70)

2.322273104s ago: executing program 3 (id=5085):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x745100, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0x8, 0x3000, 0x6, 0x1000000b, 0xfffffffe, 0xffffffffffffffff, [0x0, 0x2, 0xb], {0x6, 0x6, 0x8c48, 0x10b61047, 0xd, 0x8, 0x106, 0x6, 0x4}, {0x100, 0x1, 0x101, 0x85, 0x2, 0x24, 0xfe000400, 0x2008, 0x3}})
r1 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x0, 0x0)
mknod$auto(&(0x7f0000000080)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f00000002c0)='X))\x00', 0x0, 0x0)
mknod$auto(&(0x7f0000000b00)='X))\x00', 0x67c1, 0x7ff)
mknod$auto(&(0x7f00000000c0)='./file0\x00', 0x67c1, 0x7ff)
read$auto_vhci_fops_hci_vhci(r1, &(0x7f0000000d40)=""/16, 0x10) (async)
read$auto_vhci_fops_hci_vhci(r1, &(0x7f0000000d40)=""/16, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x9, 0x21e9, 0x1, 0x2, 0x2, 0xb, 0x2e, 0x8000, 0x3}, 0x6f4) (async)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x9, 0x21e9, 0x1, 0x2, 0x2, 0xb, 0x2e, 0x8000, 0x3}, 0x6f4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf) (async)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) (async)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000580)={[0x1ff, 0x8000, 0xd, 0x1, 0x948d, 0x3, 0x10015f4da0a, 0xd, 0x7, 0x7, 0x8000001f, 0x8, 0x6d3e, 0xc, 0x2, 0x2]}, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
unshare$auto(0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, &(0x7f0000000000))
ioctl$auto_SNDCTL_DSP_GETOSPACE(0xffffffffffffffff, 0x8010500c, &(0x7f0000000000)="1438ceef99376c9f8ca72df03903c0a495c40ec1e7f71ef62d1fc756d5b473a343f557ecfdc7e60a68b1cc877288360b3ab157080b1947314ce05c5214c73200e89e9e22b29b06b77be3a0b2282c6569110be93671e44097f5948179db6275a9dfaafcb9377aaab5407e0e5b4cabb21389c598ecdaa8fd29a6ed13ee923dc0818e622654e6143bc42fa67e8d60015f19")
ioctl$auto_SNDCTL_DSP_SYNC(0xffffffffffffffff, 0x5001, 0x0)
io_uring_register$auto(0xffffffffffffffff, 0x9, &(0x7f0000000040)="9502682088fccca467aaf7be4e7d29a39cac372e2ff724286289ee877a594371", 0x3) (async)
io_uring_register$auto(0xffffffffffffffff, 0x9, &(0x7f0000000040)="9502682088fccca467aaf7be4e7d29a39cac372e2ff724286289ee877a594371", 0x3)
socket(0x2b, 0x1, 0x0) (async)
socket(0x2b, 0x1, 0x0)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

2.1932042s ago: executing program 2 (id=5086):
r0 = eventfd$auto(0x7f)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000004c0), r0) (async)
r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000004c0), r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="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"/289], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x800) (async)
sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="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"/289], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
read$auto_vhci_fops_hci_vhci(r0, &(0x7f0000000200)=""/36, 0x24)
close_range$auto(0x2, 0x8, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)
socket(0x2, 0x801, 0x100) (async)
r3 = socket(0x2, 0x801, 0x100)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x1ff, 0x7c9, 0x25, 0x4909b6f5, 0x1ffe0, 0x7, 0xffffffff, 0x20000009, 0x9, 0x3, 0x4, 0x1, 0x68d, 0x8, 0x8, 0x10003, 0x80, 0x9, 0x0, 0x6, 0x22000, 0x200, 0xffffff28, 0x84, 0x0, 0xffffffff, 0x0, 0x0, 0x0, [0x8000000000000000, 0x101, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xffffffffffffffff, 0x6, 0xfffffffffffffffc, 0x0, 0x0, 0x80000, 0x0, 0xffff, 0x10, 0x0, 0x8, 0x2000000010000, 0x0, 0x8, 0x90, 0x6, 0xbdcc, 0x10000, 0xfffffffffffffffe, 0x0, 0x100]}, 0x1fe, 0x9) (async)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x1ff, 0x7c9, 0x25, 0x4909b6f5, 0x1ffe0, 0x7, 0xffffffff, 0x20000009, 0x9, 0x3, 0x4, 0x1, 0x68d, 0x8, 0x8, 0x10003, 0x80, 0x9, 0x0, 0x6, 0x22000, 0x200, 0xffffff28, 0x84, 0x0, 0xffffffff, 0x0, 0x0, 0x0, [0x8000000000000000, 0x101, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xffffffffffffffff, 0x6, 0xfffffffffffffffc, 0x0, 0x0, 0x80000, 0x0, 0xffff, 0x10, 0x0, 0x8, 0x2000000010000, 0x0, 0x8, 0x90, 0x6, 0xbdcc, 0x10000, 0xfffffffffffffffe, 0x0, 0x100]}, 0x1fe, 0x9)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x20000008}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x20000008}, 0x40000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
socket(0x10, 0x2, 0x0) (async)
r4 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x20000008000)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="04002bbd7000ffdbdf25050000000800050003e200000c00018008000308"], 0x28}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802) (async)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="04002bbd7000ffdbdf25050000000800050003e200000c00018008000308"], 0x28}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/system/clocksource/clocksource0/available_clocksource\x00', 0x42400, 0x0)
pread64$auto(r5, &(0x7f0000000000)='/dev/cec18\x00', 0x6797, 0x0)
socket(0x10, 0x2, 0x0) (async)
socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fddbdf250300000004000800040003374b0008"], 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="db002cbd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0xffffffff80000000, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x51c, 0x8000)
r6 = socket(0xa, 0x2, 0x73)
ioctl$auto(r6, 0x8918, 0x38) (async)
ioctl$auto(r6, 0x8918, 0x38)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x1892, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0xb, 0xa505}, 0x800}, 0x7, 0x4008)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)

2.143507571s ago: executing program 0 (id=5087):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram1\x00', 0x4000, 0x0)
readahead$auto(r1, 0x9, 0x7fffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, 0x0, 0x406, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_PEER_COOKIE={0xc}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x4040001)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/timer_list\x00', 0x1c9802, 0x0)
pread64$auto(r3, 0x0, 0x101, 0x7fff)
ioctl$auto_HDIO_GETGEO(r2, 0x301, 0x0)

2.027940645s ago: executing program 1 (id=5088):
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/keys\x00', 0x8340, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x736c, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
pwrite64$auto(r0, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0)
preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x5}, 0x3, 0xf8, 0xffffffffffffffff)
mmap$auto(0x0, 0x7069, 0x8, 0x19, 0x401, 0x8ffd)
sendmsg$auto_NFSD_CMD_VERSION_SET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x240800}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYBLOB="20010000", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fcdbdf25040000002c00018008000200391000000800010007000000080002008000000008000100001000000800020001000000181a018008000100f105000008000200010000000400030031fe01800400030004000180340001801c00018008000100cf00000008000100ec0e000008000100760000003c00018008000200e3000000080002000300000008000100e3ee170004000300040003000400030004000300080002000700000004000300040003003000018004000300080002000200000008000100030000008aff020002000000080001000080000008000200be000000"], 0x120}}, 0x5010)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
tee$auto(r3, r3, 0x6, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0)

1.894424533s ago: executing program 0 (id=5089):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/system/node/node1/hugepages/hugepages-1048576kB/demote\x00', 0x183841, 0x0)
write$auto(r0, &(0x7f00000003c0)='+\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xadR\\\xcc\x8b\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y', 0x4)

1.892666604s ago: executing program 2 (id=5090):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/block/nbd5/queue/iosched/write_expire\x00', 0x40004, 0x0)
mmap$auto(0x0, 0x4, 0xde, 0x9b72, 0xffffffffffffffff, 0xa000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media19\x00', 0x28801, 0x0)
ioctl$auto(0x3, 0xc1007c01, 0x38)
io_uring_setup$auto(0x81, 0x0)
pwrite64$auto(0xc8, 0x0, 0xfdf0, 0x39)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
fcntl$auto(r0, 0x400, 0x1)
truncate$auto(&(0x7f0000000080)='./file0\x00', 0x7f)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
r1 = pipe2$auto(0x0, 0x80)
ioctl$auto(r1, 0x5761, 0x4)
mlock$auto(0x100000001, 0x8)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.1GB.limit_in_bytes\x00', 0xa001, 0x0)
write$auto(r2, &(0x7f00000002c0)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k>\xc8\x1f\xad\xf6\xf0\xef\xe4s\x95\xf2\x00\x97S\xb9O\xac\xbe\xd6\\J<\x02YK\xd6M\xe6\xe7\xa0\xb8\xc3[\x01\xc5\xe8|\xb0\xb0\x80\xbf\xa5?=i\x88UB\x1d\x8e\xd3\xc2\x949\xb6\xfb\x006\x02\x9c\x83\x14\x13\x99\xc7\xb4)M\xed\tN $\xd4\x90^?J\x92\x9a?\xf8b\x03\xd8\xdd\x84\xdf\x92\xf0\xcd\xd8\xba\xab\x15\x80\x9eo,\xc8\xf2\x82\xd2\x88\xbeL\xa0\x1a\xd3\xd5Of\x95\xee\x13e\xeb}o\x9b\x86_\xf0?\f<\xf3t7\xb6\x0f\x93\xc79@\xd8x\x9e\xef!\x006\b\xdbWB\x84\xdd\xac\xdau\x86g\x8f\x02@O7\x0f\xf8\x8d(\x9c\xf2NyD\x7f3\x14\x9eg\x86%)\xd6\b\xcd\x1f\x03\x00:\xa6\x83\'\xf4\xf2\x9dd\xf4z\x89\xc5D\xc4\x02\\\x81\xcf\x02Ep\xf6`\xde*\x1dV', 0x81)
mmap$auto(0x0, 0x42000a, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/pcm0p/sub5/xrun_injection\x00', 0x240, 0x0)
close_range$auto(0x2, 0x8, 0x0)
setrlimit$auto(0x1000000007, 0x0)
r3 = prctl$auto_PR_SET_MM_END_DATA(0x4, 0x4, 0xffffffffffffffff, 0x1, 0xfffffffffffffffa)
getsockopt$auto(r3, 0x80000001, 0x81, &(0x7f00000001c0)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k>\xc8\x1f\xad\xf6\xf0\xef\xe4s\x95\xf2\x00\x97S\xb9O\xac\xbe\xd6\\J<\x02YK\xd6M\xe6\xe7\xa0\xb8\xc3[\x01\xc5\xe8|\xb0\xb0\x80\xbf\xa5?=i\x88UB\x1d\x8e\xd3\xc2\x949\xb6\xfb\x006\x02\x9c\x83\x14\x13\x99\xc7\xb4)M\xed\tN $\xd4\x90^?J\x92\x9a?\xf8b\x03\xd8\xdd\x84\xdf\x92\xf0\xcd\xd8\n\xab\x15\x80\x9eo,\xc8\xf2\x82\xd2\x88\xbeL\xa0\x1a\xd3\xd5Of\x95\xee\x13e\xeb}o\x9b\x86_\xf0?\f<\xf3t7\xb6\x0f\x93\xc79@\xd8x\x9e\xef!\x006\b\xdbWB\x84\xdd\xac\xdau\x86g\x8f\x02@O7\x0f\xf8\x8d(\x9c\xf2NyD\x7f3\x14\x9eg\x86%)\xd6\b\xcd\x1f\x03\x00:\xa6\x83\'\xf4\xf2\x9dd\xf4z\x89\xc5D\xc4\x02\\\x81\xcf\x02Ep\xf6`\xde*\x1dV', &(0x7f0000000040)=0x1)
io_uring_setup$auto(0x9f6, 0x0)
r4 = socket(0xa, 0x801, 0x84)
connect$auto(r4, &(0x7f0000000080)=@generic={0xa, "509235679a5532c63bacddae0710"}, 0x54)
remap_file_pages$auto(0x6a27, 0x400000000001000, 0x0, 0x8, 0x1)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000240)='/dev/bus/usb/002/001\x00', 0x40101, 0x0)

1.786901417s ago: executing program 1 (id=5091):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_TUNSETDEBUG(0xffffffffffffffff, 0x400454c9, &(0x7f0000000040)=0x3)
r0 = socket(0x2a, 0x3, 0x0)
mmap$auto(0x0, 0x402000c, 0xdf, 0x12, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r1, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
adjtimex$auto(0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D1\x00', 0x581402, 0x0)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000080), 0xc0402, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0xc0403d11, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x5, 0x3, 0x14, r2, 0x8000)
madvise$auto(0x0, 0x2003f2, 0x15)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r4, &(0x7f00000003c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4G\x0f\xed\xc0D\xd6\xaf%\xa5\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xccT\fZq', 0x100000a3da)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x2c, 0x1, 0x8000000)
open(&(0x7f0000000040)='./cgroup\x00', 0x80, 0xb5d1af1605322de0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
close_range$auto(0x2, 0x8, 0x0)
bind$auto(r0, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68)
r5 = syz_genetlink_get_family_id$auto_net_dm(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NET_DM_CMD_START(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYRES16=r3, @ANYRES16=r5, @ANYBLOB="01002dbd7000fedbdf250300000008000b01000300"/30], 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x4040840)

1.722346071s ago: executing program 0 (id=5092):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000040), 0x80302, 0x0)
ioctl$auto_SW_SYNC_IOC_INC(r0, 0x40045701, &(0x7f0000000080)=0xffffffff)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x40, 0x7, 0xdf, 0x53, 0x2, 0x8004)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb5, 0x10, 0x7, 0x4, 0xffffffffffffffff, 0xa, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10)
munmap$auto(0x8000, 0xffffffff)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/saved_tgids\x00', 0x101002, 0x0)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty57\x00', 0x40740, 0x0)
ioctl$auto(0x3, 0x402c542d, r1)
write$auto(0x3, 0x0, 0xfffffdef)
io_uring_setup$auto(0x406, 0x0)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46)

1.495772041s ago: executing program 2 (id=5093):
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
pread64$auto(0xffffffffffffffff, &(0x7f00000002c0)='\x04\xefr\tbgc/\xd0\xe1\xf7$/tg/,s\b\xf5\xf7\x0f\x03\xd5\xef\xbf\xf6j\xe2\xed\x7f0\b\xff^\xe3th\xd2\x1bA\xba&\xba\xd0\xbb\xca\xb0\xa1\t\x00\x00\r(\xccF\xeeg\n\x00\x00\xa9l\x9cd\xcf\xff\x97=\xf4\xa1\xca\x82j\xf2\x17\t\x00\x00\x00\x00\x00\x00\x000\xf76\xb96\xd1\xb9\xde\xe2\x167\xc5\x94\x00A[B\xd9\x82\xaa\xc5\xfcoB\xfe\'\xfbI\xc9\xcb\xc3\xc1\x1e6~\x81\xb9\x0ff\x8e\xd3\x06\xba;yX\x966\x97#\xfb\x8d!F\xfc\x99\x86\x1d\xbb\xaf(\x92\x887\x01Z\xa7\xe3Y\x17\xd2#\x8aO\xef\r\xfa\xe0\x18IiI\xaek\xa9R\x02N;+@\x12>\'\x1a\xa6i\x93\x8c\x16BO@ \xb5\xd9\xd0\xb6S\xfc\x17\x11\x04\x8b?$\xean\xa1|D\xbbV%\xde\x87\xd1@\x00\x8cM\xfdr\xc9\x86\xbaq', 0x100003ffd, 0x6)

1.359407765s ago: executing program 2 (id=5094):
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
msgrcv$auto(0x8, 0x0, 0xffffffffffffffda, 0x10, 0xb)
mmap$auto(0x0, 0x20009, 0x7fff, 0x17, 0xffffffffffffffff, 0x6)
ioctl$auto_VHOST_SET_MEM_TABLE(r0, 0x4001af84, 0x0)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x0, 0x0)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00')
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$auto_TUNSETQUEUE(r2, 0x400454d9, &(0x7f0000000040)=0x10001)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket(0x11, 0x80003, 0xffff)
r5 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xf, 0xfffffffd, 0x44b, 0x5, 0x5, 0x1007181, 0xd1, 0x400007, 0x3, 0x7ff, 0x800c, 0x80000001, 0x4, 0x80200000000001, 0x200000004, 0xde3, 0x9809588, 0xfffffffd, 0x2, 0x1, 0x864, 0x6, 0x22000, 0x201, 0x4, 0xffff42c1, 0x2000000, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x7fdf, 0x47, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x7, 0x2, 0x39, 0x0, 0xa, 0x0, 0x0, 0x0, 0x6, 0x27, 0x4, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x6, 0x1, 0x0, 0x0, 0x1, 0x0, 0xfff]}, 0xa, 0xd)
r6 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1441, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r6, 0xfffffffffffffd10, &(0x7f00000001c0))
fallocate$auto(r0, 0xffff7fff, 0x7fffffff, 0xf)
ioctl$auto__ctl_fops_dm_ioctl(r5, 0xfffffffffffffd02, &(0x7f00000001c0))
setsockopt$auto(r4, 0x107, 0x12, 0x0, 0x4)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_CQM(r3, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x18, r7, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8000}, 0x81)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3)
r8 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r8, 0x107, 0x12, 0x0, 0x4)
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_LOCAL(r3, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, 0x0, 0x2, 0x70bd27, 0x25dfdbfe, {}, [@BATADV_ATTR_TT_CRC32={0x8, 0x13, 0x4}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x40004}, 0x10)

1.255227945s ago: executing program 0 (id=5095):
bpf$auto(0x0, &(0x7f0000000040)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x5}, 0x92)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sysvipc/sem\x00', 0x88882, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop13\x00', 0x745c02, 0x0)
write$auto(r1, 0x0, 0x80000000)
socket(0x10, 0x2, 0xc)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_GET_MSRS(r2, 0xaea2, &(0x7f00000000c0)={0xfc})
r4 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
ioctl$auto(r4, 0x40084d02, r4)
getdents$auto(r0, 0x0, 0x3f1)
socket(0x10, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000280), r5)
sendmsg$auto_TIPC_NL_MEDIA_SET(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)={0x14, r6, 0x4, 0x70bd2b, 0x2ddfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000040}, 0x80)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x9, 0x10000, 0x0, 0x100, 0xee01, 0x0, 0x0, 0xffffffffffffff94, 0xfd3, 0x6, 0xec, 0x4, 0x100000000, 0x6, 0x8000000000000000, 0xfffffffffffffff8, 0x1})
r7 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x20200, 0x0)
writev$auto(r7, &(0x7f0000000280)={&(0x7f0000000440)="8e2588b506f60fc33c76d9e12061ef516d344eadcb10271787535320dcdce232b4722338882ed9efb589921eaa08ada3a217bbc437141f0394c325ba83cb7ddf79eac354ef8719b9917567ea5420b2ea9d29d4ac2d12e860e7e22077e710da19549bb98258b5608dbdee8597624ed06e9e0c117b680c6f56592660b8e55f9343c6a99ae07d067c568ac5f8f2d681c9169ed031f7886288e91ca84d088429ff55e23d1fdbb088c3affc4722603a1731e0827623d928f71965c3a9db2b92f764922ecf5c9401dee6dc02f9c9", 0x4}, 0x1ff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r8)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="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", @ANYRES16=r9, @ANYBLOB="07031abd70250c00587b22"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x40800)

1.18371631s ago: executing program 3 (id=5096):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x40, 0x7, 0xdf, 0x53, 0x2, 0x8000)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb5, 0x10, 0x7, 0x4, 0xffffffffffffffff, 0xa, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10)
munmap$auto(0x8000, 0xffffffff)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/saved_tgids\x00', 0x101002, 0x0)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty57\x00', 0x40740, 0x0)
ioctl$auto(0x3, 0x402c542d, r0)
write$auto(0x3, 0x0, 0xfffffdef)
io_uring_setup$auto(0x406, 0x0)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46)

1.180417769s ago: executing program 2 (id=5097):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
sysinfo$auto(0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x2000c000}, 0x20040884)
ioctl$auto_TUNSETCARRIER(r0, 0x400454e2, &(0x7f0000000040)) (async)
ioctl$auto_TUNSETCARRIER(r0, 0x400454e2, &(0x7f0000000040))
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0)
read$auto(r1, 0x0, 0x20)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000280)='/dev/sequencer2\x00', 0x101401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
prctl$auto(0x29, 0x17000000, 0x0, 0x0, 0x0) (async)
prctl$auto(0x29, 0x17000000, 0x0, 0x0, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/nbd5/queue/iosched/writes_starved\x00', 0x80302, 0x0)
sendfile$auto(r2, r2, 0x0, 0x3) (async)
sendfile$auto(r2, r2, 0x0, 0x3)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
openat$auto_tracing_total_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/buffer_total_size_kb\x00', 0xc0003, 0x0) (async)
r4 = openat$auto_tracing_total_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/buffer_total_size_kb\x00', 0xc0003, 0x0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x80502, 0x0)
ioctl$auto_TIOCGPTPEER2(r5, 0x5441, 0xebffffff)
bpf$auto(0xfffffffc, &(0x7f00000001c0)=@raw_tracepoint={0x1, r4, 0x0, 0x10001}, 0x0)
ioctl$auto_EXT4_IOC_GETFSUUID(r3, 0x8008662c, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000400000002f5f6e31a270f1ec16aea1f515480e691d1eb874ff73272c10a82318ad14edf8b94790ce88f1ff1beff62197eab1668e55ac9eb828efa82fcf7164e58aa321e0e0172d2c3548315169e8eeb809be6060e04b9887a8d42981afbbf33d99af5eefa4d96ec74ea3cc2c8dd7bcf85861e48b4e7808dfa4912439fc4c9bef7694cc85e014ad71f1ca97d79ba274f1f7c420a266f6b6c3149f72e3418e1e6f9279eed02b8f72f0118c3bab7ea3978b8f96a296d5676fe4cccecd1db5937336cba3fff4c46374275f39ed2cbf4e5bc5588ea5"])
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/bus/pci/00/03.0\x00', 0x1cbc42, 0x0) (async)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/bus/pci/00/03.0\x00', 0x1cbc42, 0x0)
write$auto(r6, 0x0, 0x6)

449.60262ms ago: executing program 1 (id=5098):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram1\x00', 0x4000, 0x0)
readahead$auto(r1, 0x9, 0x7fffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, 0x0, 0x406, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_PEER_COOKIE={0xc}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x4040001)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/timer_list\x00', 0x1c9802, 0x0)
pread64$auto(r3, 0x0, 0x101, 0x7fff)
ioctl$auto_HDIO_GETGEO(r2, 0x301, 0x0)

448.709848ms ago: executing program 0 (id=5106):
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, 0x0, 0x58)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x6, 0x4, 0xeb1, 0x401, 0x8000)
r0 = io_uring_setup$auto(0x406, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
ioctl$auto_VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000000)=0x200000000)
read$auto(r1, 0x0, 0x3ff)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, 0x0, 0x200, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/amidi2\x00', 0x200001, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40, 0x0)
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000800)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x840000, 0x0)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46)
io_uring_enter$auto(r0, 0x7, 0x7ffffffb, 0x3, 0x0, 0x3)

0s ago: executing program 2 (id=5099):
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd4\x00', 0x200100, 0x0)
mmap$auto(0x0, 0x20009, 0x2, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyx0\x00', 0x30403, 0x0)

kernel console output (not intermixed with test programs):

0 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1245.019756][T26217] RSP: 002b:00007f218b42e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1245.019788][T26217] RAX: ffffffffffffffda RBX: 00007f218a815fa0 RCX: 00007f218a59aeb9
[ 1245.019809][T26217] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1245.019828][T26217] RBP: 00007f218a608c1f R08: 0000000000000000 R09: 0000000000000000
[ 1245.019846][T26217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1245.019863][T26217] R13: 00007f218a816038 R14: 00007f218a815fa0 R15: 00007ffd8b1175d8
[ 1245.019908][T26217]  </TASK>
[ 1245.583867][T22536] Bluetooth: hci2: command tx timeout
[ 1245.977164][ T6335] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1246.138548][ T6335] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1246.344998][ T6335] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1246.426389][T26185] chnl_net:caif_netlink_parms(): no params data found
[ 1246.577388][ T6335] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1247.062734][T26185] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1247.075797][T26185] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1247.091066][T26185] bridge_slave_0: entered allmulticast mode
[ 1247.108170][T26185] bridge_slave_0: entered promiscuous mode
[ 1247.294586][T26185] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1247.314662][T26185] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1247.338629][T26185] bridge_slave_1: entered allmulticast mode
[ 1247.370027][T26185] bridge_slave_1: entered promiscuous mode
[ 1247.665169][T22536] Bluetooth: hci2: command tx timeout
[ 1247.822960][T26185] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1247.825058][T26273] FAULT_INJECTION: forcing a failure.
[ 1247.825058][T26273] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1247.847676][ T6335] batadv0: left allmulticast mode
[ 1247.861000][ T6335] batadv0: left promiscuous mode
[ 1247.874867][T26273] CPU: 0 UID: 0 PID: 26273 Comm: syz.0.4656 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1247.874918][T26273] Tainted: [L]=SOFTLOCKUP
[ 1247.874930][T26273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1247.874947][T26273] Call Trace:
[ 1247.874958][T26273]  <TASK>
[ 1247.874970][T26273]  dump_stack_lvl+0x100/0x190
[ 1247.875014][T26273]  should_fail_ex.cold+0x5/0xa
[ 1247.875057][T26273]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1247.875109][T26273]  should_fail_alloc_page+0xeb/0x140
[ 1247.875153][T26273]  prepare_alloc_pages+0x1f0/0x5f0
[ 1247.875191][T26273]  ? css_rstat_updated+0x1ce/0x5a0
[ 1247.875219][T26273]  __alloc_frozen_pages_noprof+0x193/0x2410
[ 1247.875242][T26273]  ? lock_acquire+0x17c/0x330
[ 1247.875270][T26273]  ? rcu_is_watching+0x12/0xc0
[ 1247.875289][T26273]  ? mod_memcg_lruvec_state+0x1a6/0x5d0
[ 1247.875311][T26273]  ? find_held_lock+0x2b/0x80
[ 1247.875330][T26273]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1247.875360][T26273]  ? folio_remove_rmap_pmd+0x69c/0xed0
[ 1247.875383][T26273]  ? split_huge_pmd_locked+0x3bd/0x3c90
[ 1247.875403][T26273]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1247.875424][T26273]  ? policy_nodemask+0xed/0x4f0
[ 1247.875452][T26273]  alloc_pages_mpol+0x1fb/0x550
[ 1247.875479][T26273]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1247.875503][T26273]  ? __split_huge_pmd+0x203/0x350
[ 1247.875521][T26273]  ? __split_huge_pmd+0x203/0x350
[ 1247.875544][T26273]  alloc_pages_noprof+0x131/0x390
[ 1247.875572][T26273]  pte_alloc_one+0x1e/0x3e0
[ 1247.875604][T26273]  __pte_alloc+0x6d/0x3f0
[ 1247.875638][T26273]  ? __pfx___pte_alloc+0x10/0x10
[ 1247.875665][T26273]  ? _raw_spin_unlock+0x28/0x50
[ 1247.875685][T26273]  ? __pmd_alloc+0x6aa/0x9c0
[ 1247.875715][T26273]  move_page_tables+0x24eb/0x43e0
[ 1247.875749][T26273]  ? __pfx_move_page_tables+0x10/0x10
[ 1247.875780][T26273]  ? lock_acquire+0x17c/0x330
[ 1247.875809][T26273]  copy_vma_and_data+0x25c/0x7c0
[ 1247.875834][T26273]  ? __pfx_copy_vma_and_data+0x10/0x10
[ 1247.875870][T26273]  ? find_held_lock+0x2b/0x80
[ 1247.875887][T26273]  ? move_vma+0x50c/0x1990
[ 1247.875906][T26273]  ? move_vma+0x50c/0x1990
[ 1247.875926][T26273]  ? __vm_enough_memory+0x184/0x390
[ 1247.875958][T26273]  move_vma+0x51e/0x1990
[ 1247.875983][T26273]  ? __pfx_move_vma+0x10/0x10
[ 1247.876006][T26273]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[ 1247.876035][T26273]  ? cap_mmap_addr+0x4b/0x120
[ 1247.876058][T26273]  ? bpf_lsm_mmap_addr+0x9/0x10
[ 1247.876082][T26273]  ? security_mmap_addr+0x71/0x1e0
[ 1247.876111][T26273]  ? __get_unmapped_area+0x255/0x3e0
[ 1247.876141][T26273]  ? vrm_set_new_addr+0x204/0x290
[ 1247.876164][T26273]  mremap_to+0x1b7/0x450
[ 1247.876187][T26273]  do_mremap+0xb76/0x2130
[ 1247.876217][T26273]  ? __pfx_do_mremap+0x10/0x10
[ 1247.876243][T26273]  ? ksys_write+0x190/0x250
[ 1247.876270][T26273]  __do_sys_mremap+0x126/0x170
[ 1247.876292][T26273]  ? __pfx___do_sys_mremap+0x10/0x10
[ 1247.876319][T26273]  ? __x64_sys_futex+0x34f/0x4d0
[ 1247.876358][T26273]  do_syscall_64+0xc9/0xf80
[ 1247.876382][T26273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1247.876402][T26273] RIP: 0033:0x7f218a59aeb9
[ 1247.876417][T26273] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1247.876434][T26273] RSP: 002b:00007f218b42e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[ 1247.876453][T26273] RAX: ffffffffffffffda RBX: 00007f218a815fa0 RCX: 00007f218a59aeb9
[ 1247.876464][T26273] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000
[ 1247.876475][T26273] RBP: 00007f218a608c1f R08: 0000000100000000 R09: 0000000000000000
[ 1247.876487][T26273] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[ 1247.876498][T26273] R13: 00007f218a816038 R14: 00007f218a815fa0 R15: 00007ffd8b1175d8
[ 1247.876521][T26273]  </TASK>
[ 1248.261055][ T6335] bridge0: port 2(batadv0) entered disabled state
[ 1248.519822][ T6335] bridge_slave_0: left allmulticast mode
[ 1248.526514][ T6335] bridge_slave_0: left promiscuous mode
[ 1248.533646][ T6335] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1249.734650][T22536] Bluetooth: hci2: command tx timeout
[ 1249.851046][T26292] FAULT_INJECTION: forcing a failure.
[ 1249.851046][T26292] name failslab, interval 1, probability 393216, space 0, times 0
[ 1249.890985][T26292] CPU: 1 UID: 0 PID: 26292 Comm: syz.0.4658 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1249.891031][T26292] Tainted: [L]=SOFTLOCKUP
[ 1249.891041][T26292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1249.891057][T26292] Call Trace:
[ 1249.891067][T26292]  <TASK>
[ 1249.891078][T26292]  dump_stack_lvl+0x100/0x190
[ 1249.891117][T26292]  should_fail_ex.cold+0x5/0xa
[ 1249.891162][T26292]  should_failslab+0xc2/0x120
[ 1249.891201][T26292]  kmem_cache_alloc_noprof+0x83/0x780
[ 1249.891236][T26292]  ? alloc_uid+0xe2/0x4c0
[ 1249.891270][T26292]  ? alloc_uid+0x13d/0x4c0
[ 1249.891311][T26292]  ? alloc_uid+0x13d/0x4c0
[ 1249.891343][T26292]  alloc_uid+0x13d/0x4c0
[ 1249.891378][T26292]  ? __pfx_alloc_uid+0x10/0x10
[ 1249.891414][T26292]  ? bpf_lsm_capable+0x9/0x10
[ 1249.891437][T26292]  ? security_capable+0x80/0x260
[ 1249.891476][T26292]  __sys_setuid+0x1be/0x440
[ 1249.891508][T26292]  do_syscall_64+0xc9/0xf80
[ 1249.891544][T26292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1249.891573][T26292] RIP: 0033:0x7f218a59aeb9
[ 1249.891596][T26292] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1249.891622][T26292] RSP: 002b:00007f218b42e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000069
[ 1249.891650][T26292] RAX: ffffffffffffffda RBX: 00007f218a815fa0 RCX: 00007f218a59aeb9
[ 1249.891669][T26292] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[ 1249.891686][T26292] RBP: 00007f218a608c1f R08: 0000000000000000 R09: 0000000000000000
[ 1249.891703][T26292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1249.891720][T26292] R13: 00007f218a816038 R14: 00007f218a815fa0 R15: 00007ffd8b1175d8
[ 1249.891770][T26292]  </TASK>
[ 1250.359813][ T6335] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1250.378067][ T6335] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1250.389478][ T6335] bond0 (unregistering): Released all slaves
[ 1250.546220][T26185] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1250.886079][T26185] team0: Port device team_slave_0 added
[ 1250.984401][T26185] team0: Port device team_slave_1 added
[ 1251.531990][T26185] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1251.569544][T26185] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1251.645286][T26185] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1251.678820][T26185] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1251.696528][T26185] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1251.804076][T22536] Bluetooth: hci2: command tx timeout
[ 1251.817913][T26185] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1252.185418][ T6335] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1252.214325][ T6335] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1252.259981][ T6335] veth1_macvtap: left promiscuous mode
[ 1252.300981][ T6335] veth0_macvtap: left promiscuous mode
[ 1252.306643][ T6335] veth1_vlan: left promiscuous mode
[ 1252.341293][ T6335] veth0_vlan: left promiscuous mode
[ 1254.006110][ T6335] team0 (unregistering): Port device team_slave_1 removed
[ 1254.296766][ T6335] team0 (unregistering): Port device team_slave_0 removed
[ 1255.530686][T26379] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4677'.
[ 1255.549598][T26379] dummy0: entered promiscuous mode
[ 1255.555753][T26379] dummy0: entered allmulticast mode
[ 1255.589194][T26185] hsr_slave_0: entered promiscuous mode
[ 1255.657351][T26185] hsr_slave_1: entered promiscuous mode
[ 1256.057948][T26389] tipc: Started in network mode
[ 1256.092573][T26389] tipc: Node identity ffffffff, cluster identity 4711
[ 1256.101680][T26389] tipc: Node number set to 4294967295
[ 1256.611896][T26395] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.4680: iget: checksum invalid
[ 1256.672522][T26395] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[ 1256.752548][T26395] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.4680: iget: checksum invalid
[ 1256.827543][T26395] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[ 1256.879939][T26395] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.4680: iget: checksum invalid
[ 1257.010683][T26395] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[ 1257.111718][T26395] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.4680: iget: checksum invalid
[ 1257.163418][T26395] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[ 1257.173339][T26395] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[ 1257.183592][T26395] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1257.427384][T26185] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1257.499166][T26185] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1257.570108][T26185] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1257.597851][T26185] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1257.685875][T26395] Process accounting paused
[ 1257.916242][T26185] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1258.015315][T26185] 8021q: adding VLAN 0 to HW filter on device team0
[ 1258.075466][ T6339] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1258.075688][ T6339] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1258.108268][T14494] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1258.127069][T14494] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1259.321421][T26185] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1259.446683][T26185] veth0_vlan: entered promiscuous mode
[ 1259.559034][T26185] veth1_vlan: entered promiscuous mode
[ 1259.894404][T26185] veth0_macvtap: entered promiscuous mode
[ 1259.918050][T26185] veth1_macvtap: entered promiscuous mode
[ 1260.074617][T26185] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1260.170397][T26490] bridge0: port 3(gretap0) entered blocking state
[ 1260.195044][T26490] bridge0: port 3(gretap0) entered disabled state
[ 1260.222259][T26490] gretap0: entered allmulticast mode
[ 1260.247434][T26490] gretap0: entered promiscuous mode
[ 1260.277997][T26490] bridge0: port 3(gretap0) entered blocking state
[ 1260.284699][T26490] bridge0: port 3(gretap0) entered forwarding state
[ 1260.364215][T26185] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1260.401334][T20864] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.677178][T20864] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.731002][T20864] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.739801][T20864] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.931441][T26501] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.4695: iget: checksum invalid
[ 1261.062301][T26501] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[ 1261.109528][T26501] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.4695: iget: checksum invalid
[ 1261.241713][T26501] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[ 1261.289695][T26501] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.4695: iget: checksum invalid
[ 1261.338361][T26501] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[ 1261.358144][T26501] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.4695: iget: checksum invalid
[ 1261.393122][T20864] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1261.394282][T26501] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[ 1261.431324][T26501] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[ 1261.439228][T20864] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1261.480996][T26501] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1261.546500][ T6335] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1261.569972][ T6335] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1263.935545][T26564] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4708: iget: checksum invalid
[ 1263.965953][T26564] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[ 1264.020317][T26564] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4708: iget: checksum invalid
[ 1264.054388][T26564] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[ 1264.095826][T26564] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4708: iget: checksum invalid
[ 1264.181178][T26564] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[ 1264.224930][T26564] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4708: iget: checksum invalid
[ 1264.261258][T26564] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[ 1264.294280][T26564] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[ 1264.341217][T26564] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1265.654651][ T6337] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1265.664712][ T6337] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1265.677290][ T6337] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1265.713169][ T6337] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1265.726211][ T6337] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1266.583396][T26593] chnl_net:caif_netlink_parms(): no params data found
[ 1266.931685][T26593] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1266.947380][T26593] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1266.965479][T26593] bridge_slave_0: entered allmulticast mode
[ 1266.975535][T26593] bridge_slave_0: entered promiscuous mode
[ 1267.088043][T26593] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1267.100279][T26593] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1267.109205][T26593] bridge_slave_1: entered allmulticast mode
[ 1267.123875][T26593] bridge_slave_1: entered promiscuous mode
[ 1267.304045][T26620] warning: `syz.3.4725' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[ 1267.533893][T20864] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1267.628284][T26593] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1267.737678][T20864] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1267.803014][ T6337] Bluetooth: hci4: command tx timeout
[ 1267.846095][T26593] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1267.917707][T20864] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1267.989931][T26593] team0: Port device team_slave_0 added
[ 1268.058417][T20864] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1268.072961][T26627] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1268.089963][T26593] team0: Port device team_slave_1 added
[ 1268.183918][T26593] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1268.184586][T26628] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1268.195810][T26593] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1268.240321][T26593] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1268.285530][T26593] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1268.292817][T26593] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1268.324048][T26593] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1268.637963][T20864] gretap0: left allmulticast mode
[ 1268.650209][T20864] gretap0: left promiscuous mode
[ 1268.691753][T20864] bridge0: port 3(gretap0) entered disabled state
[ 1268.704719][T20864] batadv0: left allmulticast mode
[ 1268.709840][T20864] batadv0: left promiscuous mode
[ 1268.727819][T20864] bridge0: port 2(batadv0) entered disabled state
[ 1268.773070][T20864] bridge_slave_0: left allmulticast mode
[ 1268.821387][T20864] bridge_slave_0: left promiscuous mode
[ 1268.830001][T20864] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1269.467893][T26650] FAULT_INJECTION: forcing a failure.
[ 1269.467893][T26650] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1269.493349][T26650] CPU: 1 UID: 0 PID: 26650 Comm: syz.0.4732 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1269.493408][T26650] Tainted: [L]=SOFTLOCKUP
[ 1269.493419][T26650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1269.493436][T26650] Call Trace:
[ 1269.493447][T26650]  <TASK>
[ 1269.493458][T26650]  dump_stack_lvl+0x100/0x190
[ 1269.493500][T26650]  should_fail_ex.cold+0x5/0xa
[ 1269.493548][T26650]  get_futex_key+0x1d2/0x1620
[ 1269.493591][T26650]  ? __pfx_get_futex_key+0x10/0x10
[ 1269.493640][T26650]  futex_wake+0xea/0x530
[ 1269.493687][T26650]  ? __pfx_futex_wake+0x10/0x10
[ 1269.493731][T26650]  ? exit_mm_release+0x19/0x30
[ 1269.493779][T26650]  do_futex+0x32b/0x350
[ 1269.493818][T26650]  ? __pfx_do_futex+0x10/0x10
[ 1269.493853][T26650]  ? __might_fault+0xc5/0x140
[ 1269.493894][T26650]  mm_release+0x24a/0x2f0
[ 1269.493929][T26650]  do_exit+0x675/0x2a30
[ 1269.493973][T26650]  ? __pfx_do_exit+0x10/0x10
[ 1269.494014][T26650]  ? do_raw_spin_lock+0x128/0x260
[ 1269.494054][T26650]  ? find_held_lock+0x2b/0x80
[ 1269.494081][T26650]  ? get_signal+0x7e0/0x21e0
[ 1269.494117][T26650]  do_group_exit+0xd5/0x2a0
[ 1269.494163][T26650]  get_signal+0x1ec7/0x21e0
[ 1269.494202][T26650]  ? find_held_lock+0x2b/0x80
[ 1269.494235][T26650]  ? __pfx_get_signal+0x10/0x10
[ 1269.494276][T26650]  ? do_futex+0x192/0x350
[ 1269.494321][T26650]  arch_do_signal_or_restart+0x91/0x770
[ 1269.494364][T26650]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1269.494423][T26650]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1269.494460][T26650]  ? xfd_validate_state+0x129/0x190
[ 1269.494510][T26650]  exit_to_user_mode_loop+0x86/0x4b0
[ 1269.494548][T26650]  ? rcu_is_watching+0x12/0xc0
[ 1269.494577][T26650]  do_syscall_64+0x4ea/0xf80
[ 1269.494613][T26650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1269.494639][T26650] RIP: 0033:0x7f218a59aeb9
[ 1269.494661][T26650] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1269.494687][T26650] RSP: 002b:00007f218b42e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1269.494714][T26650] RAX: fffffffffffffe00 RBX: 00007f218a815fa8 RCX: 00007f218a59aeb9
[ 1269.494732][T26650] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f218a815fa8
[ 1269.494750][T26650] RBP: 00007f218a815fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1269.494768][T26650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1269.494785][T26650] R13: 00007f218a816038 R14: 00007ffd8b1174f0 R15: 00007ffd8b1175d8
[ 1269.494825][T26650]  </TASK>
[ 1269.898014][ T6337] Bluetooth: hci4: command tx timeout
[ 1270.254957][T20864] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1270.276781][T20864] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1270.288344][T20864] bond0 (unregistering): Released all slaves
[ 1270.304471][T26593] hsr_slave_0: entered promiscuous mode
[ 1270.311211][T26593] hsr_slave_1: entered promiscuous mode
[ 1270.317379][T26593] debugfs: 'hsr0' already exists in 'hsr'
[ 1270.324065][T26593] Cannot create hsr debugfs directory
[ 1270.775125][T20864] hsr_slave_0: left promiscuous mode
[ 1270.788332][T20864] hsr_slave_1: left promiscuous mode
[ 1270.795701][T20864] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1270.803999][T20864] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1270.814618][T20864] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1270.822253][T20864] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1270.857730][T20864] veth1_macvtap: left promiscuous mode
[ 1270.863608][T20864] veth0_macvtap: left promiscuous mode
[ 1270.869353][T20864] veth1_vlan: left promiscuous mode
[ 1270.876649][T20864] veth0_vlan: left promiscuous mode
[ 1271.972010][ T6337] Bluetooth: hci4: command tx timeout
[ 1272.860239][T26593] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1273.135483][T26593] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1273.167611][T26593] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1273.224345][T26593] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1273.510387][T26716] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4743'.
[ 1273.692439][T26713] FAULT_INJECTION: forcing a failure.
[ 1273.692439][T26713] name failslab, interval 1, probability 393216, space 0, times 0
[ 1273.710506][T26713] CPU: 1 UID: 0 PID: 26713 Comm: syz.0.4741 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1273.710557][T26713] Tainted: [L]=SOFTLOCKUP
[ 1273.710580][T26713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1273.710605][T26713] Call Trace:
[ 1273.710616][T26713]  <TASK>
[ 1273.710628][T26713]  dump_stack_lvl+0x100/0x190
[ 1273.710669][T26713]  should_fail_ex.cold+0x5/0xa
[ 1273.710723][T26713]  should_failslab+0xc2/0x120
[ 1273.710768][T26713]  __kmalloc_node_track_caller_noprof+0xf9/0x9d0
[ 1273.710812][T26713]  ? vidtv_psi_short_event_desc_init+0x429/0x5f0
[ 1273.710873][T26713]  ? kstrdup+0x51/0xe0
[ 1273.710910][T26713]  kstrdup+0x51/0xe0
[ 1273.710947][T26713]  vidtv_psi_short_event_desc_init+0x429/0x5f0
[ 1273.711009][T26713]  vidtv_psi_desc_clone+0x33f/0x5d0
[ 1273.711046][T26713]  vidtv_channel_si_init+0x764/0x18d0
[ 1273.711099][T26713]  vidtv_mux_init+0x526/0xbf0
[ 1273.711144][T26713]  vidtv_start_feed+0x33e/0x4c0
[ 1273.711191][T26713]  ? __pfx_vidtv_start_feed+0x10/0x10
[ 1273.711235][T26713]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1273.711278][T26713]  ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10
[ 1273.711328][T26713]  ? mark_held_locks+0x40/0x70
[ 1273.711374][T26713]  ? __pfx_vidtv_start_feed+0x10/0x10
[ 1273.711419][T26713]  dmx_ts_feed_start_filtering+0xf6/0x220
[ 1273.711474][T26713]  dvb_dmxdev_start_feed+0x273/0x3f0
[ 1273.711522][T26713]  dvb_dmxdev_filter_start+0x1b6/0xdd0
[ 1273.711569][T26713]  ? dvb_dmxdev_add_pid+0x2a1/0x380
[ 1273.711626][T26713]  dvb_demux_do_ioctl+0xe64/0x1200
[ 1273.711684][T26713]  dvb_usercopy+0x167/0x340
[ 1273.711723][T26713]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[ 1273.711770][T26713]  ? __pfx_dvb_usercopy+0x10/0x10
[ 1273.711826][T26713]  ? __fget_files+0x21f/0x3d0
[ 1273.711868][T26713]  dvb_demux_ioctl+0x29/0x40
[ 1273.711904][T26713]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[ 1273.711941][T26713]  __x64_sys_ioctl+0x18e/0x210
[ 1273.711994][T26713]  do_syscall_64+0xc9/0xf80
[ 1273.712037][T26713]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1273.712068][T26713] RIP: 0033:0x7f218a59aeb9
[ 1273.712094][T26713] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1273.712123][T26713] RSP: 002b:00007f218b42e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1273.712152][T26713] RAX: ffffffffffffffda RBX: 00007f218a815fa0 RCX: 00007f218a59aeb9
[ 1273.712172][T26713] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003
[ 1273.712190][T26713] RBP: 00007f218a608c1f R08: 0000000000000000 R09: 0000000000000000
[ 1273.712208][T26713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1273.712226][T26713] R13: 00007f218a816038 R14: 00007f218a815fa0 R15: 00007ffd8b1175d8
[ 1273.712271][T26713]  </TASK>
[ 1274.024072][T26593] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1274.043719][T26593] 8021q: adding VLAN 0 to HW filter on device team0
[ 1274.072841][T26593] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1274.083241][T26593] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1274.167524][ T6337] Bluetooth: hci4: command tx timeout
[ 1274.177550][ T6339] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1274.184711][ T6339] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1274.302101][ T6339] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1274.309349][ T6339] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1274.901967][T26745] FAULT_INJECTION: forcing a failure.
[ 1274.901967][T26745] name failslab, interval 1, probability 393216, space 0, times 0
[ 1274.924458][T26593] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1274.939218][T26745] CPU: 0 UID: 0 PID: 26745 Comm: syz.3.4746 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1274.939274][T26745] Tainted: [L]=SOFTLOCKUP
[ 1274.939286][T26745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1274.939306][T26745] Call Trace:
[ 1274.939316][T26745]  <TASK>
[ 1274.939330][T26745]  dump_stack_lvl+0x100/0x190
[ 1274.939375][T26745]  should_fail_ex.cold+0x5/0xa
[ 1274.939434][T26745]  should_failslab+0xc2/0x120
[ 1274.939479][T26745]  __kmalloc_cache_noprof+0x80/0x810
[ 1274.939514][T26745]  ? alloc_bprm+0x86/0x710
[ 1274.939551][T26745]  ? alloc_bprm+0x86/0x710
[ 1274.939580][T26745]  alloc_bprm+0x86/0x710
[ 1274.939615][T26745]  do_execveat_common.isra.0+0x1d0/0x5b0
[ 1274.939657][T26745]  __x64_sys_execve+0x8e/0xb0
[ 1274.939692][T26745]  do_syscall_64+0xc9/0xf80
[ 1274.939734][T26745]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1274.939766][T26745] RIP: 0033:0x7fb784f9aeb9
[ 1274.939791][T26745] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1274.939821][T26745] RSP: 002b:00007fb785de1028 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[ 1274.939852][T26745] RAX: ffffffffffffffda RBX: 00007fb785216090 RCX: 00007fb784f9aeb9
[ 1274.939873][T26745] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000001c0
[ 1274.939892][T26745] RBP: 00007fb785008c1f R08: 0000000000000000 R09: 0000000000000000
[ 1274.939911][T26745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1274.939929][T26745] R13: 00007fb785216128 R14: 00007fb785216090 R15: 00007ffef3f2c8d8
[ 1274.939972][T26745]  </TASK>
[ 1275.024912][T26593] veth0_vlan: entered promiscuous mode
[ 1275.362974][T26593] veth1_vlan: entered promiscuous mode
[ 1275.450277][T26754] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1275.452103][T26593] veth0_macvtap: entered promiscuous mode
[ 1275.516512][T26593] veth1_macvtap: entered promiscuous mode
[ 1275.580198][T26593] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1275.617418][T26593] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1275.645340][T17427] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1275.654756][T17427] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1275.686006][T17427] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1275.695512][T17427] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1275.814033][T17427] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1275.833728][T17427] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1275.870563][T20864] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1275.879442][T20864] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1276.604663][T22536] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1276.625326][T22536] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1276.642995][T22536] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1276.655480][T22536] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1276.671057][T22536] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1277.627296][T26802] vhci_hcd vhci_hcd.2: invalid port number 16
[ 1277.647239][T26802] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[ 1277.927159][T26803] FAULT_INJECTION: forcing a failure.
[ 1277.927159][T26803] name failslab, interval 1, probability 393216, space 0, times 0
[ 1277.980780][T26803] CPU: 1 UID: 0 PID: 26803 Comm: syz.2.4753 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1277.980833][T26803] Tainted: [L]=SOFTLOCKUP
[ 1277.980845][T26803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1277.980862][T26803] Call Trace:
[ 1277.980874][T26803]  <TASK>
[ 1277.980886][T26803]  dump_stack_lvl+0x100/0x190
[ 1277.980929][T26803]  should_fail_ex.cold+0x5/0xa
[ 1277.980978][T26803]  should_failslab+0xc2/0x120
[ 1277.981024][T26803]  __kmalloc_node_track_caller_noprof+0xf9/0x9d0
[ 1277.981069][T26803]  ? vidtv_psi_short_event_desc_init+0x429/0x5f0
[ 1277.981129][T26803]  ? kstrdup+0x51/0xe0
[ 1277.981163][T26803]  kstrdup+0x51/0xe0
[ 1277.981201][T26803]  vidtv_psi_short_event_desc_init+0x429/0x5f0
[ 1277.981248][T26803]  vidtv_psi_desc_clone+0x33f/0x5d0
[ 1277.981283][T26803]  vidtv_channel_si_init+0x764/0x18d0
[ 1277.981344][T26803]  vidtv_mux_init+0x526/0xbf0
[ 1277.981388][T26803]  vidtv_start_feed+0x33e/0x4c0
[ 1277.981436][T26803]  ? __pfx_vidtv_start_feed+0x10/0x10
[ 1277.981477][T26803]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1277.981522][T26803]  ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10
[ 1277.981572][T26803]  ? mark_held_locks+0x40/0x70
[ 1277.981620][T26803]  ? __pfx_vidtv_start_feed+0x10/0x10
[ 1277.981663][T26803]  dmx_ts_feed_start_filtering+0xf6/0x220
[ 1277.981715][T26803]  dvb_dmxdev_start_feed+0x273/0x3f0
[ 1277.981761][T26803]  dvb_dmxdev_filter_start+0x1b6/0xdd0
[ 1277.981810][T26803]  ? dvb_dmxdev_add_pid+0x2a1/0x380
[ 1277.981858][T26803]  dvb_demux_do_ioctl+0xe64/0x1200
[ 1277.981916][T26803]  dvb_usercopy+0x167/0x340
[ 1277.981954][T26803]  ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[ 1277.981999][T26803]  ? __pfx_dvb_usercopy+0x10/0x10
[ 1277.982055][T26803]  ? __fget_files+0x21f/0x3d0
[ 1277.982096][T26803]  dvb_demux_ioctl+0x29/0x40
[ 1277.982133][T26803]  ? __pfx_dvb_demux_ioctl+0x10/0x10
[ 1277.982194][T26803]  __x64_sys_ioctl+0x18e/0x210
[ 1277.982248][T26803]  do_syscall_64+0xc9/0xf80
[ 1277.982290][T26803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1277.982330][T26803] RIP: 0033:0x7f6f4c59aeb9
[ 1277.982359][T26803] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1277.982389][T26803] RSP: 002b:00007f6f4d465028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1277.982419][T26803] RAX: ffffffffffffffda RBX: 00007f6f4c815fa0 RCX: 00007f6f4c59aeb9
[ 1277.982440][T26803] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003
[ 1277.982459][T26803] RBP: 00007f6f4c608c1f R08: 0000000000000000 R09: 0000000000000000
[ 1277.982477][T26803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1277.982496][T26803] R13: 00007f6f4c816038 R14: 00007f6f4c815fa0 R15: 00007ffe6eaedea8
[ 1277.982541][T26803]  </TASK>
[ 1278.464327][T26784] chnl_net:caif_netlink_parms(): no params data found
[ 1278.638677][T26825] FAULT_INJECTION: forcing a failure.
[ 1278.638677][T26825] name failslab, interval 1, probability 393216, space 0, times 0
[ 1278.655956][T26825] CPU: 0 UID: 0 PID: 26825 Comm: syz.0.4758 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1278.656002][T26825] Tainted: [L]=SOFTLOCKUP
[ 1278.656013][T26825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1278.656029][T26825] Call Trace:
[ 1278.656039][T26825]  <TASK>
[ 1278.656050][T26825]  dump_stack_lvl+0x100/0x190
[ 1278.656090][T26825]  should_fail_ex.cold+0x5/0xa
[ 1278.656136][T26825]  should_failslab+0xc2/0x120
[ 1278.656175][T26825]  kmem_cache_alloc_noprof+0x83/0x780
[ 1278.656211][T26825]  ? getname_flags.part.0+0x4c/0x540
[ 1278.656259][T26825]  ? getname_flags.part.0+0x4c/0x540
[ 1278.656298][T26825]  getname_flags.part.0+0x4c/0x540
[ 1278.656351][T26825]  getname_flags+0x93/0xf0
[ 1278.656380][T26825]  do_sys_openat2+0xc5/0x220
[ 1278.656420][T26825]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1278.656459][T26825]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1278.656499][T26825]  ? __fget_files+0x21f/0x3d0
[ 1278.656537][T26825]  __x64_sys_openat+0x12d/0x210
[ 1278.656580][T26825]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1278.656618][T26825]  ? ksys_write+0x1ac/0x250
[ 1278.656662][T26825]  do_syscall_64+0xc9/0xf80
[ 1278.656698][T26825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1278.656725][T26825] RIP: 0033:0x7f218a59aeb9
[ 1278.656749][T26825] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1278.656776][T26825] RSP: 002b:00007f218b42e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1278.656804][T26825] RAX: ffffffffffffffda RBX: 00007f218a815fa0 RCX: 00007f218a59aeb9
[ 1278.656823][T26825] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1278.656841][T26825] RBP: 00007f218b42e090 R08: 0000000000000000 R09: 0000000000000000
[ 1278.656858][T26825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1278.656874][T26825] R13: 00007f218a816038 R14: 00007f218a815fa0 R15: 00007ffd8b1175d8
[ 1278.656913][T26825]  </TASK>
[ 1278.719116][T26827] FAULT_INJECTION: forcing a failure.
[ 1278.719116][T26827] name failslab, interval 1, probability 393216, space 0, times 0
[ 1278.761645][T22536] Bluetooth: hci3: command tx timeout
[ 1278.851034][T26827] CPU: 1 UID: 0 PID: 26827 Comm: syz.2.4759 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1278.851077][T26827] Tainted: [L]=SOFTLOCKUP
[ 1278.851088][T26827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1278.851104][T26827] Call Trace:
[ 1278.851114][T26827]  <TASK>
[ 1278.851126][T26827]  dump_stack_lvl+0x100/0x190
[ 1278.851164][T26827]  should_fail_ex.cold+0x5/0xa
[ 1278.851207][T26827]  should_failslab+0xc2/0x120
[ 1278.851245][T26827]  __kmalloc_cache_noprof+0x80/0x810
[ 1278.851275][T26827]  ? snd_seq_prioq_new+0x3f/0x110
[ 1278.851321][T26827]  ? snd_seq_prioq_new+0x3f/0x110
[ 1278.851357][T26827]  snd_seq_prioq_new+0x3f/0x110
[ 1278.851403][T26827]  snd_seq_queue_alloc+0x12b/0x590
[ 1278.851443][T26827]  snd_seq_ioctl_create_queue+0xa9/0x370
[ 1278.851490][T26827]  call_seq_client_ctl+0xa3/0x130
[ 1278.851521][T26827]  snd_seq_kernel_client_ctl+0x77/0xd0
[ 1278.851552][T26827]  alloc_seq_queue+0xdb/0x180
[ 1278.851582][T26827]  ? __pfx_alloc_seq_queue+0x10/0x10
[ 1278.851633][T26827]  ? mark_held_locks+0x40/0x70
[ 1278.851667][T26827]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1278.851696][T26827]  ? lockdep_hardirqs_on+0x78/0x100
[ 1278.851733][T26827]  snd_seq_oss_open+0x2b2/0xa10
[ 1278.851771][T26827]  odev_open+0x79/0xc0
[ 1278.851796][T26827]  ? __pfx_odev_open+0x10/0x10
[ 1278.851822][T26827]  soundcore_open+0x2e3/0x5a0
[ 1278.851857][T26827]  ? __pfx_soundcore_open+0x10/0x10
[ 1278.851885][T26827]  chrdev_open+0x234/0x6a0
[ 1278.851916][T26827]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1278.851950][T26827]  ? __pfx_chrdev_open+0x10/0x10
[ 1278.851984][T26827]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1278.852024][T26827]  do_dentry_open+0x73e/0x1570
[ 1278.852055][T26827]  ? __pfx_chrdev_open+0x10/0x10
[ 1278.852088][T26827]  ? security_inode_permission+0xbf/0x250
[ 1278.852132][T26827]  vfs_open+0x82/0x3f0
[ 1278.852173][T26827]  path_openat+0x21dc/0x3120
[ 1278.852218][T26827]  ? __pfx_path_openat+0x10/0x10
[ 1278.852264][T26827]  do_filp_open+0x1f7/0x420
[ 1278.852298][T26827]  ? __pfx_do_filp_open+0x10/0x10
[ 1278.852356][T26827]  ? _raw_spin_unlock+0x28/0x50
[ 1278.852381][T26827]  ? alloc_fd+0x476/0x790
[ 1278.852439][T26827]  do_sys_openat2+0x12e/0x220
[ 1278.852479][T26827]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1278.852523][T26827]  ? __fget_files+0x21f/0x3d0
[ 1278.852560][T26827]  __x64_sys_openat+0x12d/0x210
[ 1278.852602][T26827]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1278.852641][T26827]  ? xfd_validate_state+0x129/0x190
[ 1278.852695][T26827]  do_syscall_64+0xc9/0xf80
[ 1278.852730][T26827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1278.852758][T26827] RIP: 0033:0x7f6f4c59aeb9
[ 1278.852781][T26827] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1278.852807][T26827] RSP: 002b:00007f6f4d465028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1278.852835][T26827] RAX: ffffffffffffffda RBX: 00007f6f4c815fa0 RCX: 00007f6f4c59aeb9
[ 1278.852853][T26827] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1278.852870][T26827] RBP: 00007f6f4c608c1f R08: 0000000000000000 R09: 0000000000000000
[ 1278.852886][T26827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1278.852902][T26827] R13: 00007f6f4c816038 R14: 00007f6f4c815fa0 R15: 00007ffe6eaedea8
[ 1278.852940][T26827]  </TASK>
[ 1279.316321][T16669] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1279.556553][T16669] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1279.734152][T16669] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1279.765794][T26850] vhci_hcd vhci_hcd.2: invalid port number 16
[ 1279.781299][T26850] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[ 1279.793138][T26784] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1279.811348][T26784] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1279.838940][T26784] bridge_slave_0: entered allmulticast mode
[ 1279.870510][T26784] bridge_slave_0: entered promiscuous mode
[ 1279.914138][T16669] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1279.948690][T26784] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1279.961913][T26784] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1279.975365][T26784] bridge_slave_1: entered allmulticast mode
[ 1280.014280][T26784] bridge_slave_1: entered promiscuous mode
[ 1280.094682][T26784] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1280.127241][T26784] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1280.241893][T26860] FAULT_INJECTION: forcing a failure.
[ 1280.241893][T26860] name failslab, interval 1, probability 393216, space 0, times 0
[ 1280.241946][T26860] CPU: 1 UID: 0 PID: 26860 Comm: syz.3.4767 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1280.241992][T26860] Tainted: [L]=SOFTLOCKUP
[ 1280.242003][T26860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1280.242021][T26860] Call Trace:
[ 1280.242032][T26860]  <TASK>
[ 1280.242045][T26860]  dump_stack_lvl+0x100/0x190
[ 1280.242087][T26860]  should_fail_ex.cold+0x5/0xa
[ 1280.242139][T26860]  should_failslab+0xc2/0x120
[ 1280.242206][T26860]  __kmalloc_cache_noprof+0x80/0x810
[ 1280.242241][T26860]  ? snd_seq_prioq_new+0x3f/0x110
[ 1280.242311][T26860]  ? snd_seq_prioq_new+0x3f/0x110
[ 1280.242358][T26860]  snd_seq_prioq_new+0x3f/0x110
[ 1280.242403][T26860]  snd_seq_queue_alloc+0x153/0x590
[ 1280.242453][T26860]  snd_seq_ioctl_create_queue+0xa9/0x370
[ 1280.242508][T26860]  call_seq_client_ctl+0xa3/0x130
[ 1280.242541][T26860]  snd_seq_kernel_client_ctl+0x77/0xd0
[ 1280.242576][T26860]  alloc_seq_queue+0xdb/0x180
[ 1280.242611][T26860]  ? __pfx_alloc_seq_queue+0x10/0x10
[ 1280.242681][T26860]  ? mark_held_locks+0x40/0x70
[ 1280.242723][T26860]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1280.242758][T26860]  ? lockdep_hardirqs_on+0x78/0x100
[ 1280.242803][T26860]  snd_seq_oss_open+0x2b2/0xa10
[ 1280.242855][T26860]  odev_open+0x79/0xc0
[ 1280.242883][T26860]  ? __pfx_odev_open+0x10/0x10
[ 1280.242915][T26860]  soundcore_open+0x2e3/0x5a0
[ 1280.242955][T26860]  ? __pfx_soundcore_open+0x10/0x10
[ 1280.242990][T26860]  chrdev_open+0x234/0x6a0
[ 1280.243028][T26860]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1280.243069][T26860]  ? __pfx_chrdev_open+0x10/0x10
[ 1280.243111][T26860]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1280.243158][T26860]  do_dentry_open+0x73e/0x1570
[ 1280.243195][T26860]  ? __pfx_chrdev_open+0x10/0x10
[ 1280.243240][T26860]  ? security_inode_permission+0xbf/0x250
[ 1280.243310][T26860]  vfs_open+0x82/0x3f0
[ 1280.243363][T26860]  path_openat+0x21dc/0x3120
[ 1280.243417][T26860]  ? __pfx_path_openat+0x10/0x10
[ 1280.243473][T26860]  do_filp_open+0x1f7/0x420
[ 1280.243513][T26860]  ? __pfx_do_filp_open+0x10/0x10
[ 1280.243579][T26860]  ? _raw_spin_unlock+0x28/0x50
[ 1280.243610][T26860]  ? alloc_fd+0x476/0x790
[ 1280.243659][T26860]  do_sys_openat2+0x12e/0x220
[ 1280.243705][T26860]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1280.243753][T26860]  ? __fget_files+0x21f/0x3d0
[ 1280.243798][T26860]  __x64_sys_openat+0x12d/0x210
[ 1280.243844][T26860]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1280.243897][T26860]  ? xfd_validate_state+0x129/0x190
[ 1280.243963][T26860]  do_syscall_64+0xc9/0xf80
[ 1280.244006][T26860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1280.244038][T26860] RIP: 0033:0x7fb784f9aeb9
[ 1280.244064][T26860] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1280.244094][T26860] RSP: 002b:00007fb785e02028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1280.244125][T26860] RAX: ffffffffffffffda RBX: 00007fb785215fa0 RCX: 00007fb784f9aeb9
[ 1280.244155][T26860] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1280.244175][T26860] RBP: 00007fb785008c1f R08: 0000000000000000 R09: 0000000000000000
[ 1280.244193][T26860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1280.244212][T26860] R13: 00007fb785216038 R14: 00007fb785215fa0 R15: 00007ffef3f2c8d8
[ 1280.244257][T26860]  </TASK>
[ 1280.329363][T26784] team0: Port device team_slave_0 added
[ 1280.343376][T26784] team0: Port device team_slave_1 added
[ 1280.366709][T26863] FAULT_INJECTION: forcing a failure.
[ 1280.366709][T26863] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1280.366757][T26863] CPU: 1 UID: 0 PID: 26863 Comm: syz.0.4768 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1280.366797][T26863] Tainted: [L]=SOFTLOCKUP
[ 1280.366807][T26863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1280.366824][T26863] Call Trace:
[ 1280.366833][T26863]  <TASK>
[ 1280.366845][T26863]  dump_stack_lvl+0x100/0x190
[ 1280.366884][T26863]  should_fail_ex.cold+0x5/0xa
[ 1280.366930][T26863]  strncpy_from_user+0x3b/0x2d0
[ 1280.366976][T26863]  getname_flags.part.0+0x8f/0x540
[ 1280.367024][T26863]  getname_flags+0x93/0xf0
[ 1280.367053][T26863]  do_sys_openat2+0xc5/0x220
[ 1280.367097][T26863]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1280.367137][T26863]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1280.367179][T26863]  ? __fget_files+0x21f/0x3d0
[ 1280.367218][T26863]  __x64_sys_openat+0x12d/0x210
[ 1280.367262][T26863]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1280.367302][T26863]  ? ksys_write+0x1ac/0x250
[ 1280.367357][T26863]  do_syscall_64+0xc9/0xf80
[ 1280.367395][T26863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1280.367424][T26863] RIP: 0033:0x7f218a59aeb9
[ 1280.367447][T26863] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1280.367473][T26863] RSP: 002b:00007f218b42e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1280.367502][T26863] RAX: ffffffffffffffda RBX: 00007f218a815fa0 RCX: 00007f218a59aeb9
[ 1280.367521][T26863] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1280.367539][T26863] RBP: 00007f218b42e090 R08: 0000000000000000 R09: 0000000000000000
[ 1280.367556][T26863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1280.367573][T26863] R13: 00007f218a816038 R14: 00007f218a815fa0 R15: 00007ffd8b1175d8
[ 1280.367613][T26863]  </TASK>
[ 1280.542991][T26865] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1280.553678][T26784] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1280.553704][T26784] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1280.553742][T26784] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1280.560038][T26784] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1280.560063][T26784] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1280.560101][T26784] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1280.735305][T16669] bridge_slave_0: left allmulticast mode
[ 1280.735383][T16669] bridge_slave_0: left promiscuous mode
[ 1280.735585][T16669] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1281.321549][T22536] Bluetooth: hci3: command tx timeout
[ 1281.968058][T16669] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1281.978565][T16669] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1281.994257][T16669] bond0 (unregistering): Released all slaves
[ 1282.081470][T26784] hsr_slave_0: entered promiscuous mode
[ 1282.082864][T26784] hsr_slave_1: entered promiscuous mode
[ 1282.083740][T26784] debugfs: 'hsr0' already exists in 'hsr'
[ 1282.083768][T26784] Cannot create hsr debugfs directory
[ 1282.088211][T16669] : left promiscuous mode
[ 1282.259572][T16669] tipc: Left network mode
[ 1283.400744][T22536] Bluetooth: hci3: command tx timeout
[ 1283.514884][T26912] vhci_hcd vhci_hcd.2: invalid port number 16
[ 1283.534535][T26912] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[ 1283.750674][T16669] hsr_slave_0: left promiscuous mode
[ 1283.763363][T16669] hsr_slave_1: left promiscuous mode
[ 1283.814000][T16669] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1283.837205][T16669] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1283.864663][T16669] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1283.891869][T16669] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1284.001014][T16669] veth1_macvtap: left promiscuous mode
[ 1284.006643][T16669] veth0_macvtap: left promiscuous mode
[ 1284.050942][T16669] veth1_vlan: left promiscuous mode
[ 1284.056607][T16669] veth0_vlan: left promiscuous mode
[ 1285.483101][T22536] Bluetooth: hci3: command tx timeout
[ 1285.825231][   T30] audit: type=1804 audit(4294967406.140:107): pid=26955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.4783" name="/newroot/14/file0" dev="tmpfs" ino=89 res=1 errno=0
[ 1285.873733][   T30] audit: type=1800 audit(4294967406.160:108): pid=26955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4783" name="file0" dev="tmpfs" ino=89 res=0 errno=0
[ 1288.194229][T26784] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1288.255240][T26784] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1288.346652][T26784] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1288.395893][T26784] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1288.714763][T26784] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1288.788485][T26784] 8021q: adding VLAN 0 to HW filter on device team0
[ 1288.836924][ T6339] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1288.844162][ T6339] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1288.908690][ T6339] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1288.915953][ T6339] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1289.415722][T26784] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1289.907143][T26784] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1290.031272][T26784] veth0_vlan: entered promiscuous mode
[ 1290.069036][T26784] veth1_vlan: entered promiscuous mode
[ 1290.169018][T26784] veth0_macvtap: entered promiscuous mode
[ 1290.232583][T26784] veth1_macvtap: entered promiscuous mode
[ 1290.344185][T26784] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1290.378291][T26784] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1290.627073][T27054] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4796'.
[ 1290.674791][T16669] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1290.818455][T27059] Invalid ELF header magic: != ELF
[ 1290.842227][T17427] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1290.874537][T17427] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1291.022021][T17427] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1291.681433][T14494] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1291.691306][T14494] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1291.861963][T16669] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1291.881400][T16669] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1292.276805][T27090] FAULT_INJECTION: forcing a failure.
[ 1292.276805][T27090] name failslab, interval 1, probability 393216, space 0, times 0
[ 1292.300686][T27090] CPU: 1 UID: 0 PID: 27090 Comm: syz.0.4804 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1292.300733][T27090] Tainted: [L]=SOFTLOCKUP
[ 1292.300744][T27090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1292.300761][T27090] Call Trace:
[ 1292.300771][T27090]  <TASK>
[ 1292.300783][T27090]  dump_stack_lvl+0x100/0x190
[ 1292.300825][T27090]  should_fail_ex.cold+0x5/0xa
[ 1292.300873][T27090]  should_failslab+0xc2/0x120
[ 1292.300913][T27090]  __kmalloc_cache_noprof+0x80/0x810
[ 1292.300945][T27090]  ? snd_seq_oss_open+0x54/0xa10
[ 1292.300986][T27090]  ? snd_seq_oss_open+0x54/0xa10
[ 1292.301019][T27090]  snd_seq_oss_open+0x54/0xa10
[ 1292.301060][T27090]  odev_open+0x79/0xc0
[ 1292.301087][T27090]  ? __pfx_odev_open+0x10/0x10
[ 1292.301115][T27090]  soundcore_open+0x2e3/0x5a0
[ 1292.301150][T27090]  ? __pfx_soundcore_open+0x10/0x10
[ 1292.301182][T27090]  chrdev_open+0x234/0x6a0
[ 1292.301218][T27090]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1292.301255][T27090]  ? __pfx_chrdev_open+0x10/0x10
[ 1292.301294][T27090]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1292.301338][T27090]  do_dentry_open+0x73e/0x1570
[ 1292.301373][T27090]  ? __pfx_chrdev_open+0x10/0x10
[ 1292.301409][T27090]  ? security_inode_permission+0xbf/0x250
[ 1292.301459][T27090]  vfs_open+0x82/0x3f0
[ 1292.301515][T27090]  path_openat+0x21dc/0x3120
[ 1292.301564][T27090]  ? __pfx_path_openat+0x10/0x10
[ 1292.301614][T27090]  do_filp_open+0x1f7/0x420
[ 1292.301653][T27090]  ? __pfx_do_filp_open+0x10/0x10
[ 1292.301715][T27090]  ? _raw_spin_unlock+0x28/0x50
[ 1292.301743][T27090]  ? alloc_fd+0x476/0x790
[ 1292.301789][T27090]  do_sys_openat2+0x12e/0x220
[ 1292.301834][T27090]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1292.301874][T27090]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1292.301919][T27090]  ? __fget_files+0x21f/0x3d0
[ 1292.301957][T27090]  __x64_sys_openat+0x12d/0x210
[ 1292.302003][T27090]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1292.302045][T27090]  ? ksys_write+0x1ac/0x250
[ 1292.302113][T27090]  do_syscall_64+0xc9/0xf80
[ 1292.302153][T27090]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1292.302182][T27090] RIP: 0033:0x7f218a59aeb9
[ 1292.302207][T27090] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1292.302235][T27090] RSP: 002b:00007f218b42e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1292.302263][T27090] RAX: ffffffffffffffda RBX: 00007f218a815fa0 RCX: 00007f218a59aeb9
[ 1292.302283][T27090] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1292.302302][T27090] RBP: 00007f218b42e090 R08: 0000000000000000 R09: 0000000000000000
[ 1292.302320][T27090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1292.302338][T27090] R13: 00007f218a816038 R14: 00007f218a815fa0 R15: 00007ffd8b1175d8
[ 1292.302380][T27090]  </TASK>
[ 1294.576637][T27150] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.4819: iget: checksum invalid
[ 1294.599021][T27152] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4822'.
[ 1294.796318][T27142] FAULT_INJECTION: forcing a failure.
[ 1294.796318][T27142] name failslab, interval 1, probability 393216, space 0, times 0
[ 1294.813302][T27142] CPU: 1 UID: 0 PID: 27142 Comm: syz.3.4820 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1294.813340][T27142] Tainted: [L]=SOFTLOCKUP
[ 1294.813347][T27142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1294.813358][T27142] Call Trace:
[ 1294.813366][T27142]  <TASK>
[ 1294.813373][T27142]  dump_stack_lvl+0x100/0x190
[ 1294.813400][T27142]  should_fail_ex.cold+0x5/0xa
[ 1294.813430][T27142]  should_failslab+0xc2/0x120
[ 1294.813456][T27142]  ? tomoyo_encode2+0xfb/0x3c0
[ 1294.813476][T27142]  __kmalloc_noprof+0xf6/0x9c0
[ 1294.813502][T27142]  ? tomoyo_encode2+0xfb/0x3c0
[ 1294.813519][T27142]  tomoyo_encode2+0xfb/0x3c0
[ 1294.813540][T27142]  tomoyo_encode+0x29/0x50
[ 1294.813558][T27142]  tomoyo_realpath_from_path+0x18c/0x690
[ 1294.813582][T27142]  tomoyo_check_open_permission+0x2af/0x3c0
[ 1294.813610][T27142]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1294.813659][T27142]  ? do_raw_spin_lock+0x128/0x260
[ 1294.813689][T27142]  ? path_get+0x61/0x80
[ 1294.813715][T27142]  tomoyo_file_open+0x6b/0x90
[ 1294.813738][T27142]  security_file_open+0xb5/0x1e0
[ 1294.813755][T27142]  do_dentry_open+0x58c/0x1570
[ 1294.813779][T27142]  ? security_inode_permission+0xbf/0x250
[ 1294.813809][T27142]  vfs_open+0x82/0x3f0
[ 1294.813838][T27142]  path_openat+0x21dc/0x3120
[ 1294.813868][T27142]  ? __pfx_path_openat+0x10/0x10
[ 1294.813898][T27142]  do_filp_open+0x1f7/0x420
[ 1294.813921][T27142]  ? __pfx_do_filp_open+0x10/0x10
[ 1294.813959][T27142]  ? _raw_spin_unlock+0x28/0x50
[ 1294.813978][T27142]  ? alloc_fd+0x476/0x790
[ 1294.814004][T27142]  do_sys_openat2+0x12e/0x220
[ 1294.814033][T27142]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1294.814069][T27142]  __x64_sys_openat+0x12d/0x210
[ 1294.814098][T27142]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1294.814125][T27142]  ? xfd_validate_state+0x129/0x190
[ 1294.814166][T27142]  do_syscall_64+0xc9/0xf80
[ 1294.814191][T27142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1294.814217][T27142] RIP: 0033:0x7fb784f9aeb9
[ 1294.814232][T27142] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1294.814251][T27142] RSP: 002b:00007fb785e02028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1294.814270][T27142] RAX: ffffffffffffffda RBX: 00007fb785215fa0 RCX: 00007fb784f9aeb9
[ 1294.814285][T27142] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1294.814297][T27142] RBP: 00007fb785008c1f R08: 0000000000000000 R09: 0000000000000000
[ 1294.814308][T27142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1294.814320][T27142] R13: 00007fb785216038 R14: 00007fb785215fa0 R15: 00007ffef3f2c8d8
[ 1294.814351][T27142]  </TASK>
[ 1294.814395][T27142] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1295.097358][T27150] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[ 1295.110891][T27150] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.4819: iget: checksum invalid
[ 1295.180368][T27150] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[ 1295.213072][T27150] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.4819: iget: checksum invalid
[ 1295.248376][T27150] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[ 1295.280314][T27150] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.4819: iget: checksum invalid
[ 1295.451027][T27150] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[ 1295.565490][T27150] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[ 1295.565540][T27150] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1296.157472][T27183] Invalid ELF header magic: != ELF
[ 1297.020908][T27200] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1297.075105][T27206] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1297.088804][T27206] FAULT_INJECTION: forcing a failure.
[ 1297.088804][T27206] name failslab, interval 1, probability 393216, space 0, times 0
[ 1297.119713][T27206] CPU: 0 UID: 0 PID: 27206 Comm: syz.1.4837 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1297.119765][T27206] Tainted: [L]=SOFTLOCKUP
[ 1297.119775][T27206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1297.119794][T27206] Call Trace:
[ 1297.119804][T27206]  <TASK>
[ 1297.119817][T27206]  dump_stack_lvl+0x100/0x190
[ 1297.119857][T27206]  should_fail_ex.cold+0x5/0xa
[ 1297.119907][T27206]  should_failslab+0xc2/0x120
[ 1297.119949][T27206]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1297.119978][T27206]  __kmalloc_noprof+0xf6/0x9c0
[ 1297.120007][T27206]  ? kfree+0x2a9/0x690
[ 1297.120044][T27206]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1297.120075][T27206]  tomoyo_realpath_from_path+0xb6/0x690
[ 1297.120116][T27206]  tomoyo_check_open_permission+0x2af/0x3c0
[ 1297.120164][T27206]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1297.120255][T27206]  ? lock_acquire+0x17c/0x330
[ 1297.120294][T27206]  ? find_held_lock+0x2b/0x80
[ 1297.120335][T27206]  tomoyo_file_open+0x6b/0x90
[ 1297.120373][T27206]  security_file_open+0xb5/0x1e0
[ 1297.120407][T27206]  do_dentry_open+0x58c/0x1570
[ 1297.120445][T27206]  ? security_inode_permission+0xbf/0x250
[ 1297.120501][T27206]  vfs_open+0x82/0x3f0
[ 1297.120552][T27206]  path_openat+0x21dc/0x3120
[ 1297.120602][T27206]  ? __pfx_path_openat+0x10/0x10
[ 1297.120654][T27206]  do_filp_open+0x1f7/0x420
[ 1297.120692][T27206]  ? __pfx_do_filp_open+0x10/0x10
[ 1297.120756][T27206]  ? _raw_spin_unlock+0x28/0x50
[ 1297.120785][T27206]  ? alloc_fd+0x476/0x790
[ 1297.120829][T27206]  do_sys_openat2+0x12e/0x220
[ 1297.120875][T27206]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1297.120924][T27206]  ? find_held_lock+0x2b/0x80
[ 1297.120964][T27206]  __x64_sys_openat+0x12d/0x210
[ 1297.121011][T27206]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1297.121056][T27206]  ? xfd_validate_state+0x129/0x190
[ 1297.121119][T27206]  do_syscall_64+0xc9/0xf80
[ 1297.121158][T27206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1297.121188][T27206] RIP: 0033:0x7f7ce0f9aeb9
[ 1297.121223][T27206] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1297.121252][T27206] RSP: 002b:00007f7ce1ef9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1297.121282][T27206] RAX: ffffffffffffffda RBX: 00007f7ce1215fa0 RCX: 00007f7ce0f9aeb9
[ 1297.121302][T27206] RDX: 0000000000000502 RSI: 0000200000004680 RDI: ffffffffffffff9c
[ 1297.121324][T27206] RBP: 00007f7ce1008c1f R08: 0000000000000000 R09: 0000000000000000
[ 1297.121343][T27206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1297.121361][T27206] R13: 00007f7ce1216038 R14: 00007f7ce1215fa0 R15: 00007fff2252c9b8
[ 1297.121404][T27206]  </TASK>
[ 1297.402688][T27206] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1298.006133][T27207] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1298.337218][T27230] FAULT_INJECTION: forcing a failure.
[ 1298.337218][T27230] name failslab, interval 1, probability 393216, space 0, times 0
[ 1298.357434][T27230] CPU: 0 UID: 0 PID: 27230 Comm: syz.3.4843 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1298.357491][T27230] Tainted: [L]=SOFTLOCKUP
[ 1298.357502][T27230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1298.357519][T27230] Call Trace:
[ 1298.357530][T27230]  <TASK>
[ 1298.357541][T27230]  dump_stack_lvl+0x100/0x190
[ 1298.357584][T27230]  should_fail_ex.cold+0x5/0xa
[ 1298.357633][T27230]  should_failslab+0xc2/0x120
[ 1298.357675][T27230]  kmem_cache_alloc_lru_noprof+0x8e/0x7d0
[ 1298.357718][T27230]  ? __d_alloc+0x34/0xa80
[ 1298.357761][T27230]  ? __d_alloc+0x34/0xa80
[ 1298.357793][T27230]  __d_alloc+0x34/0xa80
[ 1298.357826][T27230]  ? stack_depot_save_flags+0x27/0x9c0
[ 1298.357876][T27230]  d_alloc_parallel+0x111/0x14e0
[ 1298.357906][T27230]  ? kasan_save_stack+0x30/0x50
[ 1298.357941][T27230]  ? kasan_save_free_info+0x3b/0x70
[ 1298.357968][T27230]  ? __kasan_slab_free+0x5f/0x80
[ 1298.358002][T27230]  ? kfree+0x1c7/0x690
[ 1298.358027][T27230]  ? link_path_walk+0x161f/0x1cc0
[ 1298.358054][T27230]  ? do_filp_open+0x1f7/0x420
[ 1298.358088][T27230]  ? do_syscall_64+0xc9/0xf80
[ 1298.358126][T27230]  ? __pfx_d_alloc_parallel+0x10/0x10
[ 1298.358159][T27230]  ? lockdep_init_map_type+0x5c/0x250
[ 1298.358200][T27230]  ? lockdep_init_map_type+0x5c/0x250
[ 1298.358247][T27230]  __lookup_slow+0x193/0x460
[ 1298.358292][T27230]  ? __pfx___lookup_slow+0x10/0x10
[ 1298.358370][T27230]  lookup_slow+0x50/0x70
[ 1298.358430][T27230]  link_path_walk+0x1377/0x1cc0
[ 1298.358483][T27230]  path_openat+0x1be/0x3120
[ 1298.358515][T27230]  ? getname_flags+0x93/0xf0
[ 1298.358543][T27230]  ? do_sys_openat2+0xc5/0x220
[ 1298.358582][T27230]  ? __x64_sys_openat+0x12d/0x210
[ 1298.358625][T27230]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1298.358666][T27230]  ? __pfx_path_openat+0x10/0x10
[ 1298.358717][T27230]  do_filp_open+0x1f7/0x420
[ 1298.358756][T27230]  ? __pfx_do_filp_open+0x10/0x10
[ 1298.358802][T27230]  ? __pfx_kfree_link+0x10/0x10
[ 1298.358857][T27230]  ? _raw_spin_unlock+0x28/0x50
[ 1298.358886][T27230]  ? alloc_fd+0x476/0x790
[ 1298.358931][T27230]  do_sys_openat2+0x12e/0x220
[ 1298.358976][T27230]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1298.359037][T27230]  __x64_sys_openat+0x12d/0x210
[ 1298.359082][T27230]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1298.359124][T27230]  ? xfd_validate_state+0x129/0x190
[ 1298.359185][T27230]  do_syscall_64+0xc9/0xf80
[ 1298.359224][T27230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1298.359253][T27230] RIP: 0033:0x7fb784f9aeb9
[ 1298.359278][T27230] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1298.359301][T27230] RSP: 002b:00007fb785e02028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1298.359326][T27230] RAX: ffffffffffffffda RBX: 00007fb785215fa0 RCX: 00007fb784f9aeb9
[ 1298.359342][T27230] RDX: 0000000000000480 RSI: 00002000000002c0 RDI: ffffffffffffff9c
[ 1298.359357][T27230] RBP: 00007fb785008c1f R08: 0000000000000000 R09: 0000000000000000
[ 1298.359371][T27230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1298.359385][T27230] R13: 00007fb785216038 R14: 00007fb785215fa0 R15: 00007ffef3f2c8d8
[ 1298.359418][T27230]  </TASK>
[ 1300.162420][T27252] FAULT_INJECTION: forcing a failure.
[ 1300.162420][T27252] name failslab, interval 1, probability 393216, space 0, times 0
[ 1300.236924][T27252] CPU: 1 UID: 0 PID: 27252 Comm: syz.2.4846 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1300.236972][T27252] Tainted: [L]=SOFTLOCKUP
[ 1300.236983][T27252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1300.237001][T27252] Call Trace:
[ 1300.237011][T27252]  <TASK>
[ 1300.237023][T27252]  dump_stack_lvl+0x100/0x190
[ 1300.237065][T27252]  should_fail_ex.cold+0x5/0xa
[ 1300.237113][T27252]  should_failslab+0xc2/0x120
[ 1300.237155][T27252]  __kmalloc_cache_noprof+0x80/0x810
[ 1300.237187][T27252]  ? snd_seq_prioq_new+0x3f/0x110
[ 1300.237238][T27252]  ? snd_seq_prioq_new+0x3f/0x110
[ 1300.237287][T27252]  snd_seq_prioq_new+0x3f/0x110
[ 1300.237329][T27252]  snd_seq_queue_alloc+0x12b/0x590
[ 1300.237374][T27252]  snd_seq_ioctl_create_queue+0xa9/0x370
[ 1300.237425][T27252]  call_seq_client_ctl+0xa3/0x130
[ 1300.237458][T27252]  snd_seq_kernel_client_ctl+0x77/0xd0
[ 1300.237491][T27252]  alloc_seq_queue+0xdb/0x180
[ 1300.237523][T27252]  ? __pfx_alloc_seq_queue+0x10/0x10
[ 1300.237578][T27252]  ? mark_held_locks+0x40/0x70
[ 1300.237615][T27252]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1300.237646][T27252]  ? lockdep_hardirqs_on+0x78/0x100
[ 1300.237686][T27252]  snd_seq_oss_open+0x2b2/0xa10
[ 1300.237727][T27252]  odev_open+0x79/0xc0
[ 1300.237753][T27252]  ? __pfx_odev_open+0x10/0x10
[ 1300.237780][T27252]  soundcore_open+0x2e3/0x5a0
[ 1300.237816][T27252]  ? __pfx_soundcore_open+0x10/0x10
[ 1300.237848][T27252]  chrdev_open+0x234/0x6a0
[ 1300.237883][T27252]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1300.237921][T27252]  ? __pfx_chrdev_open+0x10/0x10
[ 1300.237958][T27252]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1300.238003][T27252]  do_dentry_open+0x73e/0x1570
[ 1300.238038][T27252]  ? __pfx_chrdev_open+0x10/0x10
[ 1300.238075][T27252]  ? security_inode_permission+0xbf/0x250
[ 1300.238124][T27252]  vfs_open+0x82/0x3f0
[ 1300.238171][T27252]  path_openat+0x21dc/0x3120
[ 1300.238220][T27252]  ? __pfx_path_openat+0x10/0x10
[ 1300.238279][T27252]  do_filp_open+0x1f7/0x420
[ 1300.238317][T27252]  ? __pfx_do_filp_open+0x10/0x10
[ 1300.238382][T27252]  ? _raw_spin_unlock+0x28/0x50
[ 1300.238409][T27252]  ? alloc_fd+0x476/0x790
[ 1300.238454][T27252]  do_sys_openat2+0x12e/0x220
[ 1300.238497][T27252]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1300.238537][T27252]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1300.238579][T27252]  ? __fget_files+0x21f/0x3d0
[ 1300.238619][T27252]  __x64_sys_openat+0x12d/0x210
[ 1300.238664][T27252]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1300.238705][T27252]  ? ksys_write+0x1ac/0x250
[ 1300.238754][T27252]  do_syscall_64+0xc9/0xf80
[ 1300.238792][T27252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1300.238821][T27252] RIP: 0033:0x7f6f4c59aeb9
[ 1300.238844][T27252] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1300.238871][T27252] RSP: 002b:00007f6f4d465028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1300.238901][T27252] RAX: ffffffffffffffda RBX: 00007f6f4c815fa0 RCX: 00007f6f4c59aeb9
[ 1300.238920][T27252] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1300.238939][T27252] RBP: 00007f6f4d465090 R08: 0000000000000000 R09: 0000000000000000
[ 1300.238957][T27252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1300.238975][T27252] R13: 00007f6f4c816038 R14: 00007f6f4c815fa0 R15: 00007ffe6eaedea8
[ 1300.239017][T27252]  </TASK>
[ 1300.969178][T27265] netlink: 'syz.3.4850': attribute type 4 has an invalid length.
[ 1301.010676][T27265] netlink: 314 bytes leftover after parsing attributes in process `syz.3.4850'.
[ 1301.369679][T27276] kAFS: Invalid Command on /proc/fs/afs/cells file
[ 1301.968530][T27291] kAFS: Invalid Command on /proc/fs/afs/cells file
[ 1302.506458][T27304] FAULT_INJECTION: forcing a failure.
[ 1302.506458][T27304] name failslab, interval 1, probability 393216, space 0, times 0
[ 1302.506503][T27304] CPU: 0 UID: 0 PID: 27304 Comm: syz.0.4863 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1302.506544][T27304] Tainted: [L]=SOFTLOCKUP
[ 1302.506553][T27304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1302.506568][T27304] Call Trace:
[ 1302.506578][T27304]  <TASK>
[ 1302.506588][T27304]  dump_stack_lvl+0x100/0x190
[ 1302.506625][T27304]  should_fail_ex.cold+0x5/0xa
[ 1302.506668][T27304]  should_failslab+0xc2/0x120
[ 1302.506704][T27304]  __kmalloc_cache_noprof+0x80/0x810
[ 1302.506732][T27304]  ? snd_seq_prioq_new+0x3f/0x110
[ 1302.506778][T27304]  ? snd_seq_prioq_new+0x3f/0x110
[ 1302.506813][T27304]  snd_seq_prioq_new+0x3f/0x110
[ 1302.506849][T27304]  snd_seq_queue_alloc+0x153/0x590
[ 1302.506889][T27304]  snd_seq_ioctl_create_queue+0xa9/0x370
[ 1302.506933][T27304]  call_seq_client_ctl+0xa3/0x130
[ 1302.506962][T27304]  snd_seq_kernel_client_ctl+0x77/0xd0
[ 1302.506992][T27304]  alloc_seq_queue+0xdb/0x180
[ 1302.507021][T27304]  ? __pfx_alloc_seq_queue+0x10/0x10
[ 1302.507077][T27304]  ? mark_held_locks+0x40/0x70
[ 1302.507110][T27304]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1302.507137][T27304]  ? lockdep_hardirqs_on+0x78/0x100
[ 1302.507171][T27304]  snd_seq_oss_open+0x2b2/0xa10
[ 1302.507215][T27304]  odev_open+0x79/0xc0
[ 1302.507239][T27304]  ? __pfx_odev_open+0x10/0x10
[ 1302.507263][T27304]  soundcore_open+0x2e3/0x5a0
[ 1302.507295][T27304]  ? __pfx_soundcore_open+0x10/0x10
[ 1302.507323][T27304]  chrdev_open+0x234/0x6a0
[ 1302.507354][T27304]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1302.507389][T27304]  ? __pfx_chrdev_open+0x10/0x10
[ 1302.507423][T27304]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1302.507463][T27304]  do_dentry_open+0x73e/0x1570
[ 1302.507493][T27304]  ? __pfx_chrdev_open+0x10/0x10
[ 1302.507525][T27304]  ? security_inode_permission+0xbf/0x250
[ 1302.507570][T27304]  vfs_open+0x82/0x3f0
[ 1302.507611][T27304]  path_openat+0x21dc/0x3120
[ 1302.507654][T27304]  ? __pfx_path_openat+0x10/0x10
[ 1302.507699][T27304]  do_filp_open+0x1f7/0x420
[ 1302.507732][T27304]  ? __pfx_do_filp_open+0x10/0x10
[ 1302.507790][T27304]  ? _raw_spin_unlock+0x28/0x50
[ 1302.507814][T27304]  ? alloc_fd+0x476/0x790
[ 1302.507855][T27304]  do_sys_openat2+0x12e/0x220
[ 1302.507893][T27304]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1302.507928][T27304]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1302.507966][T27304]  ? __fget_files+0x21f/0x3d0
[ 1302.508000][T27304]  __x64_sys_openat+0x12d/0x210
[ 1302.508040][T27304]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1302.508077][T27304]  ? ksys_write+0x1ac/0x250
[ 1302.508119][T27304]  do_syscall_64+0xc9/0xf80
[ 1302.508153][T27304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1302.508180][T27304] RIP: 0033:0x7f218a59aeb9
[ 1302.508208][T27304] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1302.508233][T27304] RSP: 002b:00007f218b42e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1302.508259][T27304] RAX: ffffffffffffffda RBX: 00007f218a815fa0 RCX: 00007f218a59aeb9
[ 1302.508277][T27304] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1302.508294][T27304] RBP: 00007f218b42e090 R08: 0000000000000000 R09: 0000000000000000
[ 1302.508310][T27304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1302.508326][T27304] R13: 00007f218a816038 R14: 00007f218a815fa0 R15: 00007ffd8b1175d8
[ 1302.508363][T27304]  </TASK>
[ 1302.629762][T27310] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1302.959163][T27313] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1303.018080][   T30] audit: type=1806 audit(4294967423.331:109): xattr="." res=0
[ 1303.687104][T27329] kAFS: Invalid Command on /proc/fs/afs/cells file
[ 1304.045479][T22536] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1304.427689][T27347] queue_state_write: operation too long
[ 1304.443802][T27347] queue_state_write: use 'run', 'start' or 'kick'
[ 1304.590273][T27352] FAULT_INJECTION: forcing a failure.
[ 1304.590273][T27352] name failslab, interval 1, probability 393216, space 0, times 0
[ 1304.667467][T27352] CPU: 1 UID: 0 PID: 27352 Comm: syz.1.4877 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1304.667503][T27352] Tainted: [L]=SOFTLOCKUP
[ 1304.667510][T27352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1304.667521][T27352] Call Trace:
[ 1304.667528][T27352]  <TASK>
[ 1304.667536][T27352]  dump_stack_lvl+0x100/0x190
[ 1304.667564][T27352]  should_fail_ex.cold+0x5/0xa
[ 1304.667594][T27352]  should_failslab+0xc2/0x120
[ 1304.667621][T27352]  __kmalloc_cache_noprof+0x80/0x810
[ 1304.667642][T27352]  ? snd_seq_timer_new+0x44/0x1b0
[ 1304.667675][T27352]  ? snd_seq_timer_new+0x44/0x1b0
[ 1304.667703][T27352]  snd_seq_timer_new+0x44/0x1b0
[ 1304.667733][T27352]  snd_seq_queue_alloc+0x177/0x590
[ 1304.667762][T27352]  snd_seq_ioctl_create_queue+0xa9/0x370
[ 1304.667799][T27352]  call_seq_client_ctl+0xa3/0x130
[ 1304.667820][T27352]  snd_seq_kernel_client_ctl+0x77/0xd0
[ 1304.667841][T27352]  alloc_seq_queue+0xdb/0x180
[ 1304.667862][T27352]  ? __pfx_alloc_seq_queue+0x10/0x10
[ 1304.667895][T27352]  ? mark_held_locks+0x40/0x70
[ 1304.667919][T27352]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1304.667939][T27352]  ? lockdep_hardirqs_on+0x78/0x100
[ 1304.667964][T27352]  snd_seq_oss_open+0x2b2/0xa10
[ 1304.667989][T27352]  odev_open+0x79/0xc0
[ 1304.668007][T27352]  ? __pfx_odev_open+0x10/0x10
[ 1304.668024][T27352]  soundcore_open+0x2e3/0x5a0
[ 1304.668047][T27352]  ? __pfx_soundcore_open+0x10/0x10
[ 1304.668067][T27352]  chrdev_open+0x234/0x6a0
[ 1304.668090][T27352]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1304.668115][T27352]  ? __pfx_chrdev_open+0x10/0x10
[ 1304.668140][T27352]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1304.668169][T27352]  do_dentry_open+0x73e/0x1570
[ 1304.668191][T27352]  ? __pfx_chrdev_open+0x10/0x10
[ 1304.668214][T27352]  ? security_inode_permission+0xbf/0x250
[ 1304.668253][T27352]  vfs_open+0x82/0x3f0
[ 1304.668283][T27352]  path_openat+0x21dc/0x3120
[ 1304.668314][T27352]  ? __pfx_path_openat+0x10/0x10
[ 1304.668344][T27352]  do_filp_open+0x1f7/0x420
[ 1304.668369][T27352]  ? __pfx_do_filp_open+0x10/0x10
[ 1304.668407][T27352]  ? _raw_spin_unlock+0x28/0x50
[ 1304.668425][T27352]  ? alloc_fd+0x476/0x790
[ 1304.668453][T27352]  do_sys_openat2+0x12e/0x220
[ 1304.668485][T27352]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1304.668512][T27352]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1304.668540][T27352]  ? __fget_files+0x21f/0x3d0
[ 1304.668564][T27352]  __x64_sys_openat+0x12d/0x210
[ 1304.668593][T27352]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1304.668621][T27352]  ? ksys_write+0x1ac/0x250
[ 1304.668650][T27352]  do_syscall_64+0xc9/0xf80
[ 1304.668674][T27352]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1304.668694][T27352] RIP: 0033:0x7f7ce0f9aeb9
[ 1304.668709][T27352] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1304.668728][T27352] RSP: 002b:00007f7ce1ef9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1304.668746][T27352] RAX: ffffffffffffffda RBX: 00007f7ce1215fa0 RCX: 00007f7ce0f9aeb9
[ 1304.668758][T27352] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1304.668770][T27352] RBP: 00007f7ce1ef9090 R08: 0000000000000000 R09: 0000000000000000
[ 1304.668780][T27352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1304.668791][T27352] R13: 00007f7ce1216038 R14: 00007f7ce1215fa0 R15: 00007fff2252c9b8
[ 1304.668815][T27352]  </TASK>
[ 1305.139534][T27354] FAULT_INJECTION: forcing a failure.
[ 1305.139534][T27354] name failslab, interval 1, probability 393216, space 0, times 0
[ 1305.231377][T27354] CPU: 1 UID: 0 PID: 27354 Comm: syz.2.4878 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1305.231430][T27354] Tainted: [L]=SOFTLOCKUP
[ 1305.231442][T27354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1305.231461][T27354] Call Trace:
[ 1305.231488][T27354]  <TASK>
[ 1305.231502][T27354]  dump_stack_lvl+0x100/0x190
[ 1305.231548][T27354]  should_fail_ex.cold+0x5/0xa
[ 1305.231595][T27354]  should_failslab+0xc2/0x120
[ 1305.231636][T27354]  kmem_cache_alloc_lru_noprof+0x8e/0x7d0
[ 1305.231674][T27354]  ? d_splice_alias_ops+0x5a2/0x1320
[ 1305.231702][T27354]  ? d_splice_alias_ops+0x5a2/0x1320
[ 1305.231733][T27354]  ? __d_alloc+0x34/0xa80
[ 1305.231777][T27354]  ? __d_alloc+0x34/0xa80
[ 1305.231814][T27354]  __d_alloc+0x34/0xa80
[ 1305.231858][T27354]  d_alloc_parallel+0x111/0x14e0
[ 1305.231900][T27354]  ? find_held_lock+0x2b/0x80
[ 1305.231931][T27354]  ? __d_lookup+0x25c/0x4a0
[ 1305.231959][T27354]  ? __pfx_d_alloc_parallel+0x10/0x10
[ 1305.231994][T27354]  ? __d_lookup+0x266/0x4a0
[ 1305.232034][T27354]  lookup_open.isra.0+0x633/0x1890
[ 1305.232077][T27354]  ? __pfx_lookup_open.isra.0+0x10/0x10
[ 1305.232135][T27354]  ? mnt_get_write_access+0x1e9/0x2f0
[ 1305.232190][T27354]  path_openat+0xa9b/0x3120
[ 1305.232239][T27354]  ? __pfx_path_openat+0x10/0x10
[ 1305.232289][T27354]  do_filp_open+0x1f7/0x420
[ 1305.232330][T27354]  ? __pfx_do_filp_open+0x10/0x10
[ 1305.232400][T27354]  ? _raw_spin_unlock+0x28/0x50
[ 1305.232434][T27354]  ? alloc_fd+0x476/0x790
[ 1305.232493][T27354]  do_sys_openat2+0x12e/0x220
[ 1305.232543][T27354]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1305.232596][T27354]  ? __fget_files+0x21f/0x3d0
[ 1305.232640][T27354]  __x64_sys_openat+0x12d/0x210
[ 1305.232686][T27354]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1305.232750][T27354]  ? xfd_validate_state+0x129/0x190
[ 1305.232813][T27354]  do_syscall_64+0xc9/0xf80
[ 1305.232855][T27354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1305.232886][T27354] RIP: 0033:0x7f6f4c59aeb9
[ 1305.232912][T27354] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1305.232942][T27354] RSP: 002b:00007f6f4d465028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1305.232973][T27354] RAX: ffffffffffffffda RBX: 00007f6f4c815fa0 RCX: 00007f6f4c59aeb9
[ 1305.232994][T27354] RDX: 0000000000028102 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1305.233015][T27354] RBP: 00007f6f4c608c1f R08: 0000000000000000 R09: 0000000000000000
[ 1305.233033][T27354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1305.233051][T27354] R13: 00007f6f4c816038 R14: 00007f6f4c815fa0 R15: 00007ffe6eaedea8
[ 1305.233095][T27354]  </TASK>
[ 1305.500821][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1305.507164][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1308.673928][T27400] input: f¬
 as /devices/virtual/input/input31
[ 1309.260482][T27405] netlink: 'syz.1.4891': attribute type 33 has an invalid length.
[ 1309.260516][T27405] netlink: 322 bytes leftover after parsing attributes in process `syz.1.4891'.
[ 1309.597307][T27395] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1310.823569][T27442] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4901'.
[ 1310.832820][T27442] mac80211_hwsim hwsim53 wlan1: entered promiscuous mode
[ 1310.840495][T27442] mac80211_hwsim hwsim53 wlan1: entered allmulticast mode
[ 1310.858477][T27442] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4901'.
[ 1312.284825][T27454] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1313.488892][T27465] CIFS: VFS: Invalid SecurityFlags: 
[ 1315.209409][T27492] can: request_module (can-proto-4) failed.
[ 1318.348677][T27542] netlink: 'syz.3.4926': attribute type 33 has an invalid length.
[ 1318.348712][T27542] netlink: 322 bytes leftover after parsing attributes in process `syz.3.4926'.
[ 1318.635842][T27547] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4927'.
[ 1318.667114][T27547] mac80211_hwsim hwsim33 wlan1: entered promiscuous mode
[ 1318.675363][T27547] mac80211_hwsim hwsim33 wlan1: entered allmulticast mode
[ 1318.723026][T27547] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4927'.
[ 1318.824387][T27551] FAULT_INJECTION: forcing a failure.
[ 1318.824387][T27551] name failslab, interval 1, probability 393216, space 0, times 0
[ 1318.838200][T27551] CPU: 1 UID: 0 PID: 27551 Comm: syz.1.4928 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1318.838252][T27551] Tainted: [L]=SOFTLOCKUP
[ 1318.838265][T27551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1318.838284][T27551] Call Trace:
[ 1318.838295][T27551]  <TASK>
[ 1318.838308][T27551]  dump_stack_lvl+0x100/0x190
[ 1318.838351][T27551]  should_fail_ex.cold+0x5/0xa
[ 1318.838400][T27551]  should_failslab+0xc2/0x120
[ 1318.838440][T27551]  __kmalloc_cache_noprof+0x80/0x810
[ 1318.838473][T27551]  ? snd_seq_prioq_new+0x3f/0x110
[ 1318.838524][T27551]  ? snd_seq_prioq_new+0x3f/0x110
[ 1318.838567][T27551]  snd_seq_prioq_new+0x3f/0x110
[ 1318.838609][T27551]  snd_seq_queue_alloc+0x153/0x590
[ 1318.838652][T27551]  snd_seq_ioctl_create_queue+0xa9/0x370
[ 1318.838703][T27551]  call_seq_client_ctl+0xa3/0x130
[ 1318.838735][T27551]  snd_seq_kernel_client_ctl+0x77/0xd0
[ 1318.838768][T27551]  alloc_seq_queue+0xdb/0x180
[ 1318.838800][T27551]  ? __pfx_alloc_seq_queue+0x10/0x10
[ 1318.838855][T27551]  ? mark_held_locks+0x40/0x70
[ 1318.838894][T27551]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1318.838927][T27551]  ? lockdep_hardirqs_on+0x78/0x100
[ 1318.838968][T27551]  snd_seq_oss_open+0x2b2/0xa10
[ 1318.839006][T27551]  odev_open+0x79/0xc0
[ 1318.839031][T27551]  ? __pfx_odev_open+0x10/0x10
[ 1318.839068][T27551]  soundcore_open+0x2e3/0x5a0
[ 1318.839101][T27551]  ? __pfx_soundcore_open+0x10/0x10
[ 1318.839131][T27551]  chrdev_open+0x234/0x6a0
[ 1318.839170][T27551]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1318.839206][T27551]  ? __pfx_chrdev_open+0x10/0x10
[ 1318.839241][T27551]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1318.839280][T27551]  do_dentry_open+0x73e/0x1570
[ 1318.839312][T27551]  ? __pfx_chrdev_open+0x10/0x10
[ 1318.839349][T27551]  ? security_inode_permission+0xbf/0x250
[ 1318.839394][T27551]  vfs_open+0x82/0x3f0
[ 1318.839443][T27551]  path_openat+0x21dc/0x3120
[ 1318.839496][T27551]  ? __pfx_path_openat+0x10/0x10
[ 1318.839548][T27551]  do_filp_open+0x1f7/0x420
[ 1318.839586][T27551]  ? __pfx_do_filp_open+0x10/0x10
[ 1318.839651][T27551]  ? _raw_spin_unlock+0x28/0x50
[ 1318.839682][T27551]  ? alloc_fd+0x476/0x790
[ 1318.839729][T27551]  do_sys_openat2+0x12e/0x220
[ 1318.839776][T27551]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1318.839825][T27551]  ? __fget_files+0x21f/0x3d0
[ 1318.839869][T27551]  __x64_sys_openat+0x12d/0x210
[ 1318.839913][T27551]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1318.839952][T27551]  ? xfd_validate_state+0x129/0x190
[ 1318.840011][T27551]  do_syscall_64+0xc9/0xf80
[ 1318.840051][T27551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1318.840093][T27551] RIP: 0033:0x7f7ce0f9aeb9
[ 1318.840122][T27551] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1318.840151][T27551] RSP: 002b:00007f7ce1ef9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1318.840182][T27551] RAX: ffffffffffffffda RBX: 00007f7ce1215fa0 RCX: 00007f7ce0f9aeb9
[ 1318.840202][T27551] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1318.840220][T27551] RBP: 00007f7ce1008c1f R08: 0000000000000000 R09: 0000000000000000
[ 1318.840238][T27551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1318.840256][T27551] R13: 00007f7ce1216038 R14: 00007f7ce1215fa0 R15: 00007fff2252c9b8
[ 1318.840297][T27551]  </TASK>
[ 1322.530091][T27605] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4939'.
[ 1322.608501][T27616] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4939'.
[ 1322.677570][T27605] mac80211_hwsim hwsim56 wlan1: entered promiscuous mode
[ 1322.742534][T27605] mac80211_hwsim hwsim56 wlan1: entered allmulticast mode
[ 1326.875977][T27686] input: f¬
 as /devices/virtual/input/input32
[ 1328.506025][T27713] FAULT_INJECTION: forcing a failure.
[ 1328.506025][T27713] name failslab, interval 1, probability 393216, space 0, times 0
[ 1328.506059][T27713] CPU: 1 UID: 0 PID: 27713 Comm: syz.3.4965 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1328.506085][T27713] Tainted: [L]=SOFTLOCKUP
[ 1328.506092][T27713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1328.506104][T27713] Call Trace:
[ 1328.506110][T27713]  <TASK>
[ 1328.506117][T27713]  dump_stack_lvl+0x100/0x190
[ 1328.506144][T27713]  should_fail_ex.cold+0x5/0xa
[ 1328.506174][T27713]  should_failslab+0xc2/0x120
[ 1328.506200][T27713]  __kmalloc_cache_noprof+0x80/0x810
[ 1328.506234][T27713]  ? snd_seq_prioq_new+0x3f/0x110
[ 1328.506265][T27713]  ? snd_seq_prioq_new+0x3f/0x110
[ 1328.506292][T27713]  snd_seq_prioq_new+0x3f/0x110
[ 1328.506319][T27713]  snd_seq_queue_alloc+0x12b/0x590
[ 1328.506347][T27713]  snd_seq_ioctl_create_queue+0xa9/0x370
[ 1328.506379][T27713]  call_seq_client_ctl+0xa3/0x130
[ 1328.506408][T27713]  snd_seq_kernel_client_ctl+0x77/0xd0
[ 1328.506441][T27713]  alloc_seq_queue+0xdb/0x180
[ 1328.506473][T27713]  ? __pfx_alloc_seq_queue+0x10/0x10
[ 1328.506529][T27713]  ? mark_held_locks+0x40/0x70
[ 1328.506569][T27713]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1328.506602][T27713]  ? lockdep_hardirqs_on+0x78/0x100
[ 1328.506645][T27713]  snd_seq_oss_open+0x2b2/0xa10
[ 1328.506688][T27713]  odev_open+0x79/0xc0
[ 1328.506717][T27713]  ? __pfx_odev_open+0x10/0x10
[ 1328.506749][T27713]  soundcore_open+0x2e3/0x5a0
[ 1328.506788][T27713]  ? __pfx_soundcore_open+0x10/0x10
[ 1328.506821][T27713]  chrdev_open+0x234/0x6a0
[ 1328.506859][T27713]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1328.506899][T27713]  ? __pfx_chrdev_open+0x10/0x10
[ 1328.506940][T27713]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1328.506985][T27713]  do_dentry_open+0x73e/0x1570
[ 1328.507022][T27713]  ? __pfx_chrdev_open+0x10/0x10
[ 1328.507061][T27713]  ? security_inode_permission+0xbf/0x250
[ 1328.507115][T27713]  vfs_open+0x82/0x3f0
[ 1328.507166][T27713]  path_openat+0x21dc/0x3120
[ 1328.507220][T27713]  ? __pfx_path_openat+0x10/0x10
[ 1328.507282][T27713]  do_filp_open+0x1f7/0x420
[ 1328.507324][T27713]  ? __pfx_do_filp_open+0x10/0x10
[ 1328.507395][T27713]  ? _raw_spin_unlock+0x28/0x50
[ 1328.507426][T27713]  ? alloc_fd+0x476/0x790
[ 1328.507474][T27713]  do_sys_openat2+0x12e/0x220
[ 1328.507522][T27713]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1328.507567][T27713]  ? __fget_files+0x21f/0x3d0
[ 1328.507608][T27713]  __x64_sys_openat+0x12d/0x210
[ 1328.507657][T27713]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1328.507722][T27713]  do_syscall_64+0xc9/0xf80
[ 1328.507765][T27713]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1328.507798][T27713] RIP: 0033:0x7fb784f9aeb9
[ 1328.507822][T27713] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1328.507853][T27713] RSP: 002b:00007fb785e02028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1328.507884][T27713] RAX: ffffffffffffffda RBX: 00007fb785215fa0 RCX: 00007fb784f9aeb9
[ 1328.507905][T27713] RDX: 0000000000101002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1328.507924][T27713] RBP: 00007fb785008c1f R08: 0000000000000000 R09: 0000000000000000
[ 1328.507943][T27713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1328.507961][T27713] R13: 00007fb785216038 R14: 00007fb785215fa0 R15: 00007ffef3f2c8d8
[ 1328.508002][T27713]  </TASK>
[ 1332.604676][T27788] FAULT_INJECTION: forcing a failure.
[ 1332.604676][T27788] name failslab, interval 1, probability 393216, space 0, times 0
[ 1332.604738][T27788] CPU: 0 UID: 0 PID: 27788 Comm: syz.3.4989 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1332.604780][T27788] Tainted: [L]=SOFTLOCKUP
[ 1332.604790][T27788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1332.604807][T27788] Call Trace:
[ 1332.604817][T27788]  <TASK>
[ 1332.604829][T27788]  dump_stack_lvl+0x100/0x190
[ 1332.604870][T27788]  should_fail_ex.cold+0x5/0xa
[ 1332.604919][T27788]  should_failslab+0xc2/0x120
[ 1332.604972][T27788]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1332.605002][T27788]  __kmalloc_noprof+0xf6/0x9c0
[ 1332.605043][T27788]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1332.605072][T27788]  tomoyo_realpath_from_path+0xb6/0x690
[ 1332.605112][T27788]  tomoyo_path_number_perm+0x23c/0x580
[ 1332.605153][T27788]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1332.605198][T27788]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1332.605286][T27788]  ? find_held_lock+0x2b/0x80
[ 1332.605316][T27788]  ? hook_file_ioctl_common+0x146/0x410
[ 1332.605358][T27788]  ? __fget_files+0x215/0x3d0
[ 1332.605398][T27788]  ? __fget_files+0x21f/0x3d0
[ 1332.605437][T27788]  security_file_ioctl+0xd3/0x230
[ 1332.605483][T27788]  __x64_sys_ioctl+0xb7/0x210
[ 1332.605533][T27788]  do_syscall_64+0xc9/0xf80
[ 1332.605573][T27788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1332.605624][T27788] RIP: 0033:0x7fb784f9aeb9
[ 1332.605648][T27788] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1332.605676][T27788] RSP: 002b:00007fb785e02028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1332.605704][T27788] RAX: ffffffffffffffda RBX: 00007fb785215fa0 RCX: 00007fb784f9aeb9
[ 1332.605723][T27788] RDX: 0000200000000540 RSI: 0000000000000301 RDI: 0000000000000003
[ 1332.605741][T27788] RBP: 00007fb785e02090 R08: 0000000000000000 R09: 0000000000000000
[ 1332.605757][T27788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1332.605774][T27788] R13: 00007fb785216038 R14: 00007fb785215fa0 R15: 00007ffef3f2c8d8
[ 1332.605816][T27788]  </TASK>
[ 1332.605827][T27788] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1333.112094][T27805] FAULT_INJECTION: forcing a failure.
[ 1333.112094][T27805] name failslab, interval 1, probability 393216, space 0, times 0
[ 1333.112155][T27805] CPU: 1 UID: 0 PID: 27805 Comm: syz.0.4992 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1333.112195][T27805] Tainted: [L]=SOFTLOCKUP
[ 1333.112204][T27805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1333.112230][T27805] Call Trace:
[ 1333.112239][T27805]  <TASK>
[ 1333.112250][T27805]  dump_stack_lvl+0x100/0x190
[ 1333.112289][T27805]  should_fail_ex.cold+0x5/0xa
[ 1333.112335][T27805]  should_failslab+0xc2/0x120
[ 1333.112373][T27805]  __kmalloc_cache_noprof+0x80/0x810
[ 1333.112403][T27805]  ? __io_uring_add_tctx_node+0x133/0x370
[ 1333.112453][T27805]  ? __io_uring_add_tctx_node+0x133/0x370
[ 1333.112495][T27805]  __io_uring_add_tctx_node+0x133/0x370
[ 1333.112536][T27805]  ? __fget_files+0x215/0x3d0
[ 1333.112568][T27805]  ? __pfx___io_uring_add_tctx_node+0x10/0x10
[ 1333.112631][T27805]  ? __fget_files+0x21f/0x3d0
[ 1333.112665][T27805]  __io_uring_add_tctx_node_from_submit+0x89/0x130
[ 1333.112716][T27805]  __do_sys_io_uring_enter+0x1173/0x15b0
[ 1333.112759][T27805]  ? __fget_files+0x21f/0x3d0
[ 1333.112790][T27805]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[ 1333.112832][T27805]  ? fput+0x79/0x100
[ 1333.112869][T27805]  ? ksys_write+0x1ac/0x250
[ 1333.112901][T27805]  ? __pfx_ksys_write+0x10/0x10
[ 1333.112935][T27805]  ? do_user_addr_fault+0x8d6/0x12f0
[ 1333.112976][T27805]  do_syscall_64+0xc9/0xf80
[ 1333.113016][T27805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1333.113046][T27805] RIP: 0033:0x7f218a59aeb9
[ 1333.113070][T27805] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1333.113098][T27805] RSP: 002b:00007f218b3ec028 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1333.113127][T27805] RAX: ffffffffffffffda RBX: 00007f218a816180 RCX: 00007f218a59aeb9
[ 1333.113147][T27805] RDX: 000000007ffffffb RSI: 0000000000000007 RDI: 0000000000000003
[ 1333.113165][T27805] RBP: 00007f218b3ec090 R08: 0000000000000000 R09: 0000000000000003
[ 1333.113183][T27805] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[ 1333.113201][T27805] R13: 00007f218a816218 R14: 00007f218a816180 R15: 00007ffd8b1175d8
[ 1333.113251][T27805]  </TASK>
[ 1333.518129][T27816] FAULT_INJECTION: forcing a failure.
[ 1333.518129][T27816] name failslab, interval 1, probability 393216, space 0, times 0
[ 1333.518183][T27816] CPU: 1 UID: 0 PID: 27816 Comm: syz.0.4999 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1333.518227][T27816] Tainted: [L]=SOFTLOCKUP
[ 1333.518238][T27816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1333.518256][T27816] Call Trace:
[ 1333.518268][T27816]  <TASK>
[ 1333.518280][T27816]  dump_stack_lvl+0x100/0x190
[ 1333.518322][T27816]  should_fail_ex.cold+0x5/0xa
[ 1333.518373][T27816]  should_failslab+0xc2/0x120
[ 1333.518418][T27816]  kmem_cache_alloc_lru_noprof+0x8e/0x7d0
[ 1333.518458][T27816]  ? dquot_alloc_inode+0x51b/0xb10
[ 1333.518506][T27816]  ? __d_alloc+0x34/0xa80
[ 1333.518551][T27816]  ? __d_alloc+0x34/0xa80
[ 1333.518586][T27816]  __d_alloc+0x34/0xa80
[ 1333.518628][T27816]  d_alloc_pseudo+0x1c/0xc0
[ 1333.518657][T27816]  alloc_file_pseudo+0xcf/0x230
[ 1333.518705][T27816]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1333.518763][T27816]  __shmem_file_setup+0x1a3/0x330
[ 1333.518801][T27816]  shmem_zero_setup+0x93/0x1b0
[ 1333.518846][T27816]  __mmap_region+0x2101/0x2820
[ 1333.518889][T27816]  ? __pfx___mmap_region+0x10/0x10
[ 1333.518957][T27816]  ? finish_task_switch.isra.0+0x1ff/0xb70
[ 1333.519001][T27816]  ? finish_task_switch.isra.0+0x1ff/0xb70
[ 1333.519058][T27816]  ? __schedule+0xff6/0x5e10
[ 1333.519145][T27816]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[ 1333.519193][T27816]  ? rcu_is_watching+0x12/0xc0
[ 1333.519235][T27816]  mmap_region+0x180/0x3e0
[ 1333.519278][T27816]  do_mmap+0xc63/0x12f0
[ 1333.519332][T27816]  ? __pfx_do_mmap+0x10/0x10
[ 1333.519378][T27816]  ? __pfx_down_write_killable+0x10/0x10
[ 1333.519429][T27816]  vm_mmap_pgoff+0x29e/0x470
[ 1333.519483][T27816]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1333.519539][T27816]  ? __x64_sys_futex+0x34f/0x4d0
[ 1333.519579][T27816]  ? __x64_sys_futex+0x358/0x4d0
[ 1333.519628][T27816]  ksys_mmap_pgoff+0x7d/0x5b0
[ 1333.519681][T27816]  __x64_sys_mmap+0x125/0x190
[ 1333.519717][T27816]  do_syscall_64+0xc9/0xf80
[ 1333.519759][T27816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1333.519791][T27816] RIP: 0033:0x7f218a59aeb9
[ 1333.519816][T27816] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1333.519847][T27816] RSP: 002b:00007f218b42e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1333.519877][T27816] RAX: ffffffffffffffda RBX: 00007f218a815fa0 RCX: 00007f218a59aeb9
[ 1333.519899][T27816] RDX: 00000000000000df RSI: 0000000000020009 RDI: 0000000000000000
[ 1333.519917][T27816] RBP: 00007f218a608c1f R08: 0000000000000401 R09: 0000000000008000
[ 1333.519936][T27816] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[ 1333.519954][T27816] R13: 00007f218a816038 R14: 00007f218a815fa0 R15: 00007ffd8b1175d8
[ 1333.520005][T27816]  </TASK>
[ 1333.946671][T27827] FAULT_INJECTION: forcing a failure.
[ 1333.946671][T27827] name failslab, interval 1, probability 393216, space 0, times 0
[ 1333.946720][T27827] CPU: 0 UID: 0 PID: 27827 Comm: syz.3.5000 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1333.946759][T27827] Tainted: [L]=SOFTLOCKUP
[ 1333.946769][T27827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1333.946795][T27827] Call Trace:
[ 1333.946805][T27827]  <TASK>
[ 1333.946816][T27827]  dump_stack_lvl+0x100/0x190
[ 1333.946854][T27827]  should_fail_ex.cold+0x5/0xa
[ 1333.946915][T27827]  should_failslab+0xc2/0x120
[ 1333.946956][T27827]  ? tomoyo_encode2+0xfb/0x3c0
[ 1333.946989][T27827]  __kmalloc_noprof+0xf6/0x9c0
[ 1333.947030][T27827]  ? tomoyo_encode2+0xfb/0x3c0
[ 1333.947055][T27827]  tomoyo_encode2+0xfb/0x3c0
[ 1333.947089][T27827]  tomoyo_encode+0x29/0x50
[ 1333.947115][T27827]  tomoyo_realpath_from_path+0x18c/0x690
[ 1333.947154][T27827]  tomoyo_path_number_perm+0x23c/0x580
[ 1333.947194][T27827]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1333.947238][T27827]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1333.947321][T27827]  ? find_held_lock+0x2b/0x80
[ 1333.947349][T27827]  ? hook_file_ioctl_common+0x146/0x410
[ 1333.947390][T27827]  ? __fget_files+0x215/0x3d0
[ 1333.947429][T27827]  ? __fget_files+0x21f/0x3d0
[ 1333.947467][T27827]  security_file_ioctl+0xd3/0x230
[ 1333.947511][T27827]  __x64_sys_ioctl+0xb7/0x210
[ 1333.947560][T27827]  do_syscall_64+0xc9/0xf80
[ 1333.947597][T27827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1333.947626][T27827] RIP: 0033:0x7fb784f9aeb9
[ 1333.947648][T27827] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1333.947675][T27827] RSP: 002b:00007fb785e02028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1333.947701][T27827] RAX: ffffffffffffffda RBX: 00007fb785215fa0 RCX: 00007fb784f9aeb9
[ 1333.947720][T27827] RDX: 0000200000000540 RSI: 0000000000000301 RDI: 0000000000000003
[ 1333.947737][T27827] RBP: 00007fb785e02090 R08: 0000000000000000 R09: 0000000000000000
[ 1333.947753][T27827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1333.947769][T27827] R13: 00007fb785216038 R14: 00007fb785215fa0 R15: 00007ffef3f2c8d8
[ 1333.947810][T27827]  </TASK>
[ 1333.968294][T27827] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1335.020384][T27848] FAULT_INJECTION: forcing a failure.
[ 1335.020384][T27848] name failslab, interval 1, probability 393216, space 0, times 0
[ 1335.381497][T27848] CPU: 1 UID: 0 PID: 27848 Comm: syz.1.5007 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1335.381527][T27848] Tainted: [L]=SOFTLOCKUP
[ 1335.381534][T27848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1335.381545][T27848] Call Trace:
[ 1335.381551][T27848]  <TASK>
[ 1335.381559][T27848]  dump_stack_lvl+0x100/0x190
[ 1335.381587][T27848]  should_fail_ex.cold+0x5/0xa
[ 1335.381617][T27848]  should_failslab+0xc2/0x120
[ 1335.381645][T27848]  __kmalloc_cache_noprof+0x80/0x810
[ 1335.381665][T27848]  ? __io_uring_add_tctx_node+0x133/0x370
[ 1335.381698][T27848]  ? __io_uring_add_tctx_node+0x133/0x370
[ 1335.381727][T27848]  __io_uring_add_tctx_node+0x133/0x370
[ 1335.381756][T27848]  ? __fget_files+0x215/0x3d0
[ 1335.381777][T27848]  ? __pfx___io_uring_add_tctx_node+0x10/0x10
[ 1335.381823][T27848]  ? __fget_files+0x21f/0x3d0
[ 1335.381845][T27848]  __io_uring_add_tctx_node_from_submit+0x89/0x130
[ 1335.381877][T27848]  __do_sys_io_uring_enter+0x1173/0x15b0
[ 1335.381905][T27848]  ? __fget_files+0x21f/0x3d0
[ 1335.381925][T27848]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[ 1335.381951][T27848]  ? fput+0x79/0x100
[ 1335.381975][T27848]  ? ksys_write+0x1ac/0x250
[ 1335.381997][T27848]  ? __pfx_ksys_write+0x10/0x10
[ 1335.382022][T27848]  ? do_user_addr_fault+0x8d6/0x12f0
[ 1335.382048][T27848]  do_syscall_64+0xc9/0xf80
[ 1335.382073][T27848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1335.382093][T27848] RIP: 0033:0x7f7ce0f9aeb9
[ 1335.382109][T27848] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1335.382127][T27848] RSP: 002b:00007f7ce1ed8028 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[ 1335.382146][T27848] RAX: ffffffffffffffda RBX: 00007f7ce1216090 RCX: 00007f7ce0f9aeb9
[ 1335.382158][T27848] RDX: 000000007ffffffb RSI: 0000000000000007 RDI: 0000000000000003
[ 1335.382179][T27848] RBP: 00007f7ce1ed8090 R08: 0000000000000000 R09: 0000000000000003
[ 1335.382190][T27848] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[ 1335.382201][T27848] R13: 00007f7ce1216128 R14: 00007f7ce1216090 R15: 00007fff2252c9b8
[ 1335.382224][T27848]  </TASK>
[ 1336.073557][T27867] FAULT_INJECTION: forcing a failure.
[ 1336.073557][T27867] name failslab, interval 1, probability 393216, space 0, times 0
[ 1336.085332][T27864] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1336.127687][T27867] CPU: 0 UID: 0 PID: 27867 Comm: syz.1.5012 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1336.127735][T27867] Tainted: [L]=SOFTLOCKUP
[ 1336.127747][T27867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1336.127764][T27867] Call Trace:
[ 1336.127775][T27867]  <TASK>
[ 1336.127787][T27867]  dump_stack_lvl+0x100/0x190
[ 1336.127827][T27867]  should_fail_ex.cold+0x5/0xa
[ 1336.127875][T27867]  should_failslab+0xc2/0x120
[ 1336.127918][T27867]  __kmalloc_node_track_caller_noprof+0xf9/0x9d0
[ 1336.127960][T27867]  ? scsi_bios_ptable+0xfe/0x220
[ 1336.128004][T27867]  ? kmemdup_noprof+0x29/0x60
[ 1336.128040][T27867]  kmemdup_noprof+0x29/0x60
[ 1336.128116][T27867]  scsi_bios_ptable+0xfe/0x220
[ 1336.128147][T27867]  scsi_partsize+0x2c/0x520
[ 1336.128172][T27867]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1336.128211][T27867]  scsicam_bios_param+0x2e/0x5b0
[ 1336.128237][T27867]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1336.128285][T27867]  sd_getgeo+0x2df/0x380
[ 1336.128316][T27867]  ? __pfx_sd_getgeo+0x10/0x10
[ 1336.128346][T27867]  ? find_held_lock+0x2b/0x80
[ 1336.128375][T27867]  ? hook_file_ioctl_common+0x146/0x410
[ 1336.128424][T27867]  blkdev_ioctl+0x32b/0x6f0
[ 1336.128460][T27867]  ? __pfx_blkdev_ioctl+0x10/0x10
[ 1336.128500][T27867]  ? __pfx_blkdev_ioctl+0x10/0x10
[ 1336.128537][T27867]  __x64_sys_ioctl+0x18e/0x210
[ 1336.128586][T27867]  do_syscall_64+0xc9/0xf80
[ 1336.128625][T27867]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1336.128655][T27867] RIP: 0033:0x7f7ce0f9aeb9
[ 1336.128678][T27867] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1336.128712][T27867] RSP: 002b:00007f7ce1ef9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1336.128741][T27867] RAX: ffffffffffffffda RBX: 00007f7ce1215fa0 RCX: 00007f7ce0f9aeb9
[ 1336.128761][T27867] RDX: 0000200000000540 RSI: 0000000000000301 RDI: 0000000000000003
[ 1336.128779][T27867] RBP: 00007f7ce1ef9090 R08: 0000000000000000 R09: 0000000000000000
[ 1336.128796][T27867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1336.128813][T27867] R13: 00007f7ce1216038 R14: 00007f7ce1215fa0 R15: 00007fff2252c9b8
[ 1336.128853][T27867]  </TASK>
[ 1336.629786][ T6337] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1336.645273][ T6337] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1336.654870][T27873] snd_aloop snd_aloop.0: control 7:265:7:ͺΈθ:2 is already present
[ 1336.666202][ T6337] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1336.685678][ T6337] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1336.696676][ T6337] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1337.193121][T27880] FAULT_INJECTION: forcing a failure.
[ 1337.193121][T27880] name failslab, interval 1, probability 393216, space 0, times 0
[ 1337.223971][T27882] nbd: must specify at least one socket
[ 1337.239053][T27880] CPU: 1 UID: 0 PID: 27880 Comm: syz.1.5017 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1337.239103][T27880] Tainted: [L]=SOFTLOCKUP
[ 1337.239115][T27880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1337.239134][T27880] Call Trace:
[ 1337.239145][T27880]  <TASK>
[ 1337.239158][T27880]  dump_stack_lvl+0x100/0x190
[ 1337.239212][T27880]  should_fail_ex.cold+0x5/0xa
[ 1337.239284][T27880]  should_failslab+0xc2/0x120
[ 1337.239330][T27880]  __kmalloc_cache_noprof+0x80/0x810
[ 1337.239366][T27880]  ? snd_seq_prioq_new+0x3f/0x110
[ 1337.239420][T27880]  ? snd_seq_prioq_new+0x3f/0x110
[ 1337.239465][T27880]  snd_seq_prioq_new+0x3f/0x110
[ 1337.239527][T27880]  snd_seq_queue_alloc+0x12b/0x590
[ 1337.239581][T27880]  snd_seq_ioctl_create_queue+0xa9/0x370
[ 1337.239636][T27880]  call_seq_client_ctl+0xa3/0x130
[ 1337.239680][T27880]  snd_seq_kernel_client_ctl+0x77/0xd0
[ 1337.239717][T27880]  alloc_seq_queue+0xdb/0x180
[ 1337.239750][T27880]  ? __pfx_alloc_seq_queue+0x10/0x10
[ 1337.239816][T27880]  ? mark_held_locks+0x40/0x70
[ 1337.239871][T27880]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1337.239905][T27880]  ? lockdep_hardirqs_on+0x78/0x100
[ 1337.239955][T27880]  snd_seq_oss_open+0x2b2/0xa10
[ 1337.239999][T27880]  odev_open+0x79/0xc0
[ 1337.240027][T27880]  ? __pfx_odev_open+0x10/0x10
[ 1337.240057][T27880]  soundcore_open+0x2e3/0x5a0
[ 1337.240097][T27880]  ? __pfx_soundcore_open+0x10/0x10
[ 1337.240129][T27880]  chrdev_open+0x234/0x6a0
[ 1337.240164][T27880]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1337.240202][T27880]  ? __pfx_chrdev_open+0x10/0x10
[ 1337.240239][T27880]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1337.240294][T27880]  do_dentry_open+0x73e/0x1570
[ 1337.240331][T27880]  ? __pfx_chrdev_open+0x10/0x10
[ 1337.240369][T27880]  ? security_inode_permission+0xbf/0x250
[ 1337.240421][T27880]  vfs_open+0x82/0x3f0
[ 1337.240469][T27880]  path_openat+0x21dc/0x3120
[ 1337.240521][T27880]  ? __pfx_path_openat+0x10/0x10
[ 1337.240575][T27880]  do_filp_open+0x1f7/0x420
[ 1337.240616][T27880]  ? __pfx_do_filp_open+0x10/0x10
[ 1337.240683][T27880]  ? _raw_spin_unlock+0x28/0x50
[ 1337.240713][T27880]  ? alloc_fd+0x476/0x790
[ 1337.240760][T27880]  do_sys_openat2+0x12e/0x220
[ 1337.240808][T27880]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1337.240858][T27880]  ? __fget_files+0x21f/0x3d0
[ 1337.240902][T27880]  __x64_sys_openat+0x12d/0x210
[ 1337.240951][T27880]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1337.240996][T27880]  ? xfd_validate_state+0x129/0x190
[ 1337.241057][T27880]  do_syscall_64+0xc9/0xf80
[ 1337.241099][T27880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1337.241130][T27880] RIP: 0033:0x7f7ce0f9aeb9
[ 1337.241156][T27880] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1337.241185][T27880] RSP: 002b:00007f7ce1ef9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1337.241216][T27880] RAX: ffffffffffffffda RBX: 00007f7ce1215fa0 RCX: 00007f7ce0f9aeb9
[ 1337.241236][T27880] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1337.241256][T27880] RBP: 00007f7ce1008c1f R08: 0000000000000000 R09: 0000000000000000
[ 1337.241283][T27880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1337.241302][T27880] R13: 00007f7ce1216038 R14: 00007f7ce1215fa0 R15: 00007fff2252c9b8
[ 1337.241345][T27880]  </TASK>
[ 1338.189735][T27899] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[ 1338.201265][T27894] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[ 1338.376709][T27869] chnl_net:caif_netlink_parms(): no params data found
[ 1338.732589][T27869] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1338.739729][T27869] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1338.739912][T27869] bridge_slave_0: entered allmulticast mode
[ 1338.741494][T27869] bridge_slave_0: entered promiscuous mode
[ 1338.743659][T27869] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1338.743766][T27869] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1338.743899][T27869] bridge_slave_1: entered allmulticast mode
[ 1338.745172][T27869] bridge_slave_1: entered promiscuous mode
[ 1338.825928][T27869] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1338.844917][ T6337] Bluetooth: hci5: command tx timeout
[ 1338.901877][T27869] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1338.966633][T27914] hub 1-0:1.0: USB hub found
[ 1338.967061][T27914] hub 1-0:1.0: 1 port detected
[ 1339.014859][T27869] team0: Port device team_slave_0 added
[ 1339.017067][T27869] team0: Port device team_slave_1 added
[ 1339.114991][T27869] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1339.125787][T27869] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1339.125834][T27869] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1339.158855][T27869] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1339.158878][T27869] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1339.158902][T27869] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1339.285779][T27869] hsr_slave_0: entered promiscuous mode
[ 1339.286605][T27869] hsr_slave_1: entered promiscuous mode
[ 1339.287116][T27869] debugfs: 'hsr0' already exists in 'hsr'
[ 1339.287143][T27869] Cannot create hsr debugfs directory
[ 1339.724050][T27869] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1339.906674][T27869] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1340.096639][T27869] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1340.109472][T27927] FAULT_INJECTION: forcing a failure.
[ 1340.109472][T27927] name failslab, interval 1, probability 393216, space 0, times 0
[ 1340.139376][T27927] CPU: 0 UID: 0 PID: 27927 Comm: syz.2.5028 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1340.139407][T27927] Tainted: [L]=SOFTLOCKUP
[ 1340.139414][T27927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1340.139425][T27927] Call Trace:
[ 1340.139431][T27927]  <TASK>
[ 1340.139439][T27927]  dump_stack_lvl+0x100/0x190
[ 1340.139467][T27927]  should_fail_ex.cold+0x5/0xa
[ 1340.139498][T27927]  should_failslab+0xc2/0x120
[ 1340.139525][T27927]  ? kernfs_fop_write_iter+0x26a/0x5f0
[ 1340.139543][T27927]  __kmalloc_noprof+0xf6/0x9c0
[ 1340.139569][T27927]  ? kernfs_fop_write_iter+0x26a/0x5f0
[ 1340.139587][T27927]  kernfs_fop_write_iter+0x26a/0x5f0
[ 1340.139609][T27927]  vfs_write+0x6ac/0x1070
[ 1340.139631][T27927]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1340.139652][T27927]  ? __pfx_vfs_write+0x10/0x10
[ 1340.139672][T27927]  ? find_held_lock+0x2b/0x80
[ 1340.139705][T27927]  ksys_write+0x12a/0x250
[ 1340.139726][T27927]  ? __pfx_ksys_write+0x10/0x10
[ 1340.139753][T27927]  do_syscall_64+0xc9/0xf80
[ 1340.139778][T27927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1340.139798][T27927] RIP: 0033:0x7f6f4c59aeb9
[ 1340.139812][T27927] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1340.139831][T27927] RSP: 002b:00007f6f4d465028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1340.139849][T27927] RAX: ffffffffffffffda RBX: 00007f6f4c815fa0 RCX: 00007f6f4c59aeb9
[ 1340.139861][T27927] RDX: 0000000000000004 RSI: 00002000000003c0 RDI: 0000000000000003
[ 1340.139872][T27927] RBP: 00007f6f4d465090 R08: 0000000000000000 R09: 0000000000000000
[ 1340.139883][T27927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1340.139894][T27927] R13: 00007f6f4c816038 R14: 00007f6f4c815fa0 R15: 00007ffe6eaedea8
[ 1340.139918][T27927]  </TASK>
[ 1340.345711][T27930] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5030'.
[ 1340.689678][T27869] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1340.921583][ T6337] Bluetooth: hci5: command tx timeout
[ 1341.332164][T27869] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1341.383158][T27869] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1341.399838][T27869] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1341.409277][T27869] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1341.679093][T27869] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1341.708900][T27869] 8021q: adding VLAN 0 to HW filter on device team0
[ 1341.731806][ T6335] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1341.738976][ T6335] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1341.812645][T14414] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1341.819919][T14414] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1342.352238][T27974] FAULT_INJECTION: forcing a failure.
[ 1342.352238][T27974] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1342.403201][T27974] CPU: 0 UID: 0 PID: 27974 Comm: syz.1.5041 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1342.403249][T27974] Tainted: [L]=SOFTLOCKUP
[ 1342.403259][T27974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1342.403276][T27974] Call Trace:
[ 1342.403286][T27974]  <TASK>
[ 1342.403297][T27974]  dump_stack_lvl+0x100/0x190
[ 1342.403338][T27974]  should_fail_ex.cold+0x5/0xa
[ 1342.403385][T27974]  _copy_from_iter+0x1f4/0x1690
[ 1342.403437][T27974]  ? __pfx__copy_from_iter+0x10/0x10
[ 1342.403479][T27974]  ? rcu_is_watching+0x12/0xc0
[ 1342.403506][T27974]  ? kernfs_fop_write_iter+0x26a/0x5f0
[ 1342.403536][T27974]  ? trace_kmalloc+0x83/0xb0
[ 1342.403573][T27974]  ? __kmalloc_noprof+0x365/0x9c0
[ 1342.403617][T27974]  kernfs_fop_write_iter+0x186/0x5f0
[ 1342.403653][T27974]  vfs_write+0x6ac/0x1070
[ 1342.403688][T27974]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1342.403724][T27974]  ? __pfx_vfs_write+0x10/0x10
[ 1342.403753][T27974]  ? find_held_lock+0x2b/0x80
[ 1342.403809][T27974]  ksys_write+0x12a/0x250
[ 1342.403843][T27974]  ? __pfx_ksys_write+0x10/0x10
[ 1342.403888][T27974]  do_syscall_64+0xc9/0xf80
[ 1342.403926][T27974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1342.403956][T27974] RIP: 0033:0x7f7ce0f9aeb9
[ 1342.403990][T27974] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1342.404018][T27974] RSP: 002b:00007f7ce1ef9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1342.404048][T27974] RAX: ffffffffffffffda RBX: 00007f7ce1215fa0 RCX: 00007f7ce0f9aeb9
[ 1342.404068][T27974] RDX: 0000000000000004 RSI: 00002000000003c0 RDI: 0000000000000003
[ 1342.404085][T27974] RBP: 00007f7ce1ef9090 R08: 0000000000000000 R09: 0000000000000000
[ 1342.404102][T27974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1342.404119][T27974] R13: 00007f7ce1216038 R14: 00007f7ce1215fa0 R15: 00007fff2252c9b8
[ 1342.404162][T27974]  </TASK>
[ 1342.444589][T27869] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1342.772100][T27869] veth0_vlan: entered promiscuous mode
[ 1342.788742][T27869] veth1_vlan: entered promiscuous mode
[ 1342.923872][T27869] veth0_macvtap: entered promiscuous mode
[ 1342.940012][T27869] veth1_macvtap: entered promiscuous mode
[ 1342.981642][T27869] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1343.005429][ T6337] Bluetooth: hci5: command tx timeout
[ 1343.044368][T27869] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1343.117847][T14414] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1343.128061][T14414] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1343.136894][T14414] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1343.157788][T14414] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1343.213188][T27978] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1343.234806][T27978] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1343.274444][T27978] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1343.361425][T27978] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1343.371327][T27978] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1343.391466][T27978] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1343.437760][T27978] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1343.470206][T27978] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1343.544677][T27978] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1343.594875][T27978] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1343.611554][T27978] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1343.690429][T27978] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1343.815513][T20864] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1343.865467][T20864] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1343.913514][T20865] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1343.925781][T20865] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1344.637547][T28013] FAULT_INJECTION: forcing a failure.
[ 1344.637547][T28013] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1344.684746][T28013] CPU: 1 UID: 0 PID: 28013 Comm: syz.2.5052 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1344.684800][T28013] Tainted: [L]=SOFTLOCKUP
[ 1344.684810][T28013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1344.684828][T28013] Call Trace:
[ 1344.684838][T28013]  <TASK>
[ 1344.684849][T28013]  dump_stack_lvl+0x100/0x190
[ 1344.684891][T28013]  should_fail_ex.cold+0x5/0xa
[ 1344.684938][T28013]  _copy_to_user+0x32/0xd0
[ 1344.684994][T28013]  simple_read_from_buffer+0xcb/0x170
[ 1344.685029][T28013]  proc_fail_nth_read+0x1af/0x230
[ 1344.685067][T28013]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1344.685106][T28013]  ? rw_verify_area+0xce/0x6d0
[ 1344.685136][T28013]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1344.685170][T28013]  vfs_read+0x1e4/0xb30
[ 1344.685207][T28013]  ? __pfx_vfs_read+0x10/0x10
[ 1344.685233][T28013]  ? find_held_lock+0x2b/0x80
[ 1344.685262][T28013]  ? __fget_files+0x215/0x3d0
[ 1344.685300][T28013]  ? __fget_files+0x21f/0x3d0
[ 1344.685343][T28013]  ksys_read+0x12a/0x250
[ 1344.685375][T28013]  ? __pfx_ksys_read+0x10/0x10
[ 1344.685420][T28013]  do_syscall_64+0xc9/0xf80
[ 1344.685460][T28013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1344.685487][T28013] RIP: 0033:0x7f6f4c55b78e
[ 1344.685511][T28013] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1344.685538][T28013] RSP: 002b:00007f6f4d464fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1344.685566][T28013] RAX: ffffffffffffffda RBX: 00007f6f4d4656c0 RCX: 00007f6f4c55b78e
[ 1344.685584][T28013] RDX: 000000000000000f RSI: 00007f6f4d4650a0 RDI: 0000000000000004
[ 1344.685600][T28013] RBP: 00007f6f4d465090 R08: 0000000000000000 R09: 0000000000000000
[ 1344.685617][T28013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1344.685635][T28013] R13: 00007f6f4c816038 R14: 00007f6f4c815fa0 R15: 00007ffe6eaedea8
[ 1344.685676][T28013]  </TASK>
[ 1345.240690][ T6337] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1345.382459][T28026] synth uevent: /devices/virtual/tty/ptyd8: unknown uevent action string
[ 1345.404225][ T6337] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1345.430389][T28026] tty ptyd8: uevent: failed to send synthetic uevent: -22
[ 1345.481201][ T6337] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1345.647073][ T6337] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1345.689681][T28038] FAULT_INJECTION: forcing a failure.
[ 1345.689681][T28038] name failslab, interval 1, probability 393216, space 0, times 0
[ 1345.730649][T28038] CPU: 0 UID: 0 PID: 28038 Comm: syz.2.5061 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1345.730697][T28038] Tainted: [L]=SOFTLOCKUP
[ 1345.730707][T28038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1345.730724][T28038] Call Trace:
[ 1345.730734][T28038]  <TASK>
[ 1345.730745][T28038]  dump_stack_lvl+0x100/0x190
[ 1345.730787][T28038]  should_fail_ex.cold+0x5/0xa
[ 1345.730835][T28038]  should_failslab+0xc2/0x120
[ 1345.730886][T28038]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1345.730916][T28038]  __kmalloc_noprof+0xf6/0x9c0
[ 1345.730959][T28038]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1345.730989][T28038]  tomoyo_realpath_from_path+0xb6/0x690
[ 1345.731030][T28038]  tomoyo_path_number_perm+0x23c/0x580
[ 1345.731071][T28038]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1345.731117][T28038]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1345.731202][T28038]  ? find_held_lock+0x2b/0x80
[ 1345.731230][T28038]  ? hook_file_ioctl_common+0x146/0x410
[ 1345.731273][T28038]  ? __fget_files+0x215/0x3d0
[ 1345.731313][T28038]  ? __fget_files+0x21f/0x3d0
[ 1345.731353][T28038]  security_file_ioctl+0xd3/0x230
[ 1345.731398][T28038]  __x64_sys_ioctl+0xb7/0x210
[ 1345.731448][T28038]  do_syscall_64+0xc9/0xf80
[ 1345.731488][T28038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1345.731519][T28038] RIP: 0033:0x7f6f4c59aeb9
[ 1345.731543][T28038] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1345.731576][T28038] RSP: 002b:00007f6f4d465028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1345.731605][T28038] RAX: ffffffffffffffda RBX: 00007f6f4c815fa0 RCX: 00007f6f4c59aeb9
[ 1345.731625][T28038] RDX: 0000000000000000 RSI: 0000000000000301 RDI: 0000000000000003
[ 1345.731643][T28038] RBP: 00007f6f4d465090 R08: 0000000000000000 R09: 0000000000000000
[ 1345.731660][T28038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1345.731677][T28038] R13: 00007f6f4c816038 R14: 00007f6f4c815fa0 R15: 00007ffe6eaedea8
[ 1345.731720][T28038]  </TASK>
[ 1345.732928][T28038] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1346.762530][T28060] nbd: couldn't find a device at index 35644
[ 1347.218721][T28075] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1347.232907][T28071] vhci_hcd vhci_hcd.2: invalid port number 16
[ 1347.254756][T28071] vhci_hcd vhci_hcd.2: invalid port number 16
[ 1347.331494][ T6337] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1347.490136][ T6337] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1347.541429][T28063] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1347.561121][ T6337] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1347.672936][T28063] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1347.694286][T28063] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1347.722893][ T6337] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1347.730288][T28063] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1347.736395][T28063] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1348.438256][    C0] vcan0: j1939_tp_rxtimer: 0xffff88805acbf800: rx timeout, send abort
[ 1348.441339][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805acbf800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 1349.731598][T22536] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1349.737686][T22536] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1349.800165][T22536] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1349.806492][ T6337] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1366.923097][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1366.929606][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1428.362670][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1428.369043][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1489.802195][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1489.808707][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1502.599259][   T31] INFO: task jbd2/sda1-8:5155 blocked for more than 143 seconds.
[ 1502.607136][   T31]       Tainted: G             L      syzkaller #0
[ 1502.613728][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1502.622462][   T31] task:jbd2/sda1-8     state:D stack:25736 pid:5155  tgid:5155  ppid:2      task_flags:0x240040 flags:0x00080000
[ 1502.634484][   T31] Call Trace:
[ 1502.637769][   T31]  <TASK>
[ 1502.640769][   T31]  ? __schedule+0xf65/0x5e10
[ 1502.645790][   T31]  __schedule+0xfe4/0x5e10
[ 1502.650308][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1502.655405][   T31]  ? __pfx___schedule+0x10/0x10
[ 1502.660355][   T31]  ? find_held_lock+0x2b/0x80
[ 1502.665078][   T31]  ? schedule+0x2bf/0x390
[ 1502.669502][   T31]  schedule+0xdd/0x390
[ 1502.673624][   T31]  io_schedule+0x8a/0xf0
[ 1502.677914][   T31]  bit_wait_io+0xd/0xe0
[ 1502.682204][   T31]  __wait_on_bit+0x65/0x180
[ 1502.686845][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1502.691908][   T31]  out_of_line_wait_on_bit+0xdc/0x110
[ 1502.697338][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1502.703513][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1502.709074][   T31]  ? __pfx___might_resched+0x10/0x10
[ 1502.714426][   T31]  __wait_on_buffer+0x64/0x70
[ 1502.719204][   T31]  jbd2_journal_commit_transaction+0x379c/0x6680
[ 1502.725611][   T31]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[ 1502.732370][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1502.738222][   T31]  ? debug_object_deactivate+0x2e4/0x3b0
[ 1502.744008][   T31]  ? __pfx_debug_object_deactivate+0x10/0x10
[ 1502.750485][   T31]  ? find_held_lock+0x2b/0x80
[ 1502.755209][   T31]  ? __try_to_del_timer_sync+0x107/0x160
[ 1502.760961][   T31]  ? __try_to_del_timer_sync+0x107/0x160
[ 1502.766668][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1502.772612][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1502.777421][   T31]  ? __timer_delete_sync+0x151/0x1c0
[ 1502.782784][   T31]  kjournald2+0x200/0x760
[ 1502.787164][   T31]  ? __pfx_kjournald2+0x10/0x10
[ 1502.792175][   T31]  ? find_held_lock+0x2b/0x80
[ 1502.796889][   T31]  ? __kthread_parkme+0xbb/0x230
[ 1502.801891][   T31]  ? __kthread_parkme+0xbb/0x230
[ 1502.806880][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1502.811785][   T31]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1502.817921][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1502.823011][   T31]  ? __pfx_kjournald2+0x10/0x10
[ 1502.827899][   T31]  kthread+0x3b3/0x730
[ 1502.832088][   T31]  ? __pfx_kthread+0x10/0x10
[ 1502.836733][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1502.841719][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1502.846480][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1502.852261][   T31]  ? __pfx_kthread+0x10/0x10
[ 1502.856914][   T31]  ret_from_fork+0x754/0xaf0
[ 1502.861561][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1502.866724][   T31]  ? __switch_to+0x7b9/0x10c0
[ 1502.871528][   T31]  ? __pfx_kthread+0x10/0x10
[ 1502.876202][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1502.881071][   T31]  </TASK>
[ 1502.884142][   T31] INFO: task syz-executor:5809 blocked for more than 143 seconds.
[ 1502.892052][   T31]       Tainted: G             L      syzkaller #0
[ 1502.898585][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1502.907393][   T31] task:syz-executor    state:D stack:22296 pid:5809  tgid:5809  ppid:5808   task_flags:0x440100 flags:0x00080000
[ 1502.919524][   T31] Call Trace:
[ 1502.922802][   T31]  <TASK>
[ 1502.925750][   T31]  ? __schedule+0xf65/0x5e10
[ 1502.930495][   T31]  __schedule+0xfe4/0x5e10
[ 1502.934954][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1502.940002][   T31]  ? __pfx___schedule+0x10/0x10
[ 1502.944905][   T31]  ? find_held_lock+0x2b/0x80
[ 1502.949662][   T31]  ? schedule+0x2bf/0x390
[ 1502.954258][   T31]  schedule+0xdd/0x390
[ 1502.958359][   T31]  io_schedule+0x8a/0xf0
[ 1502.962656][   T31]  bit_wait_io+0xd/0xe0
[ 1502.966846][   T31]  __wait_on_bit+0x65/0x180
[ 1502.971429][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1502.976498][   T31]  out_of_line_wait_on_bit+0xdc/0x110
[ 1502.981931][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1502.987950][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1502.993487][   T31]  do_get_write_access+0x82f/0x1190
[ 1502.998721][   T31]  ? jbd2_write_access_granted+0x61/0x3d0
[ 1503.004631][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1503.010683][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1503.016799][   T31]  ext4_reserve_inode_write+0x1b7/0x330
[ 1503.022403][   T31]  __ext4_mark_inode_dirty+0x18f/0x840
[ 1503.027923][   T31]  ? trace_kmem_cache_alloc+0x80/0xb0
[ 1503.033402][   T31]  ? kmem_cache_alloc_noprof+0x2ff/0x780
[ 1503.039109][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1503.045107][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1503.049953][   T31]  ? trace_jbd2_handle_start+0x7f/0x200
[ 1503.055752][   T31]  ? jbd2__journal_start+0xf7/0x6a0
[ 1503.061033][   T31]  ? __ext4_journal_start_sb+0x32a/0x5c0
[ 1503.066702][   T31]  ? __ext4_journal_start_sb+0x1ce/0x5c0
[ 1503.072419][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1503.077395][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1503.082868][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1503.087674][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1503.092591][   T31]  __mark_inode_dirty+0x1ec/0x1560
[ 1503.097840][   T31]  generic_update_time+0xcf/0xf0
[ 1503.102897][   T31]  file_update_time_flags+0x401/0x510
[ 1503.108400][   T31]  ext4_page_mkwrite+0x35b/0x1980
[ 1503.114110][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1503.119768][   T31]  do_page_mkwrite+0x17a/0x440
[ 1503.124575][   T31]  do_fault+0x3d7/0x1990
[ 1503.128916][   T31]  __handle_mm_fault+0x1807/0x2b50
[ 1503.134075][   T31]  ? reacquire_held_locks+0xce/0x1e0
[ 1503.139454][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1503.144955][   T31]  ? lock_vma_under_rcu+0x17c/0x5a0
[ 1503.150275][   T31]  handle_mm_fault+0x36d/0xa20
[ 1503.155467][   T31]  do_user_addr_fault+0x5a3/0x12f0
[ 1503.160724][   T31]  exc_page_fault+0x6f/0xd0
[ 1503.165274][   T31]  asm_exc_page_fault+0x26/0x30
[ 1503.170197][   T31] RIP: 0033:0x7f6cbda795a7
[ 1503.174646][   T31] RSP: 002b:00007ffdcdc2e110 EFLAGS: 00010246
[ 1503.180780][   T31] RAX: 00007f6cbcd54000 RBX: 00005555823faa00 RCX: 0000000000000000
[ 1503.188829][   T31] RDX: 0000000000003f4a RSI: 00005555823fe248 RDI: 0000000000000001
[ 1503.196845][   T31] RBP: 00007ffdcdc2e610 R08: 00000000000004d6 R09: 00005555823fe260
[ 1503.205003][   T31] R10: 00007f6cbda00000 R11: 0000000000000202 R12: 00007ffdcdc2e450
[ 1503.213066][   T31] R13: 00007ffdcdc2e240 R14: 585858582e7a7973 R15: 00007ffdcdc2e190
[ 1503.221108][   T31]  </TASK>
[ 1503.224214][   T31] INFO: task syz.1.5098:28170 blocked for more than 143 seconds.
[ 1503.232082][   T31]       Tainted: G             L      syzkaller #0
[ 1503.238604][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1503.247357][   T31] task:syz.1.5098      state:D stack:26584 pid:28170 tgid:28170 ppid:26784  task_flags:0x440040 flags:0x00080002
[ 1503.259659][   T31] Call Trace:
[ 1503.262971][   T31]  <TASK>
[ 1503.265901][   T31]  ? __schedule+0xf65/0x5e10
[ 1503.270557][   T31]  __schedule+0xfe4/0x5e10
[ 1503.275003][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1503.280026][   T31]  ? __pfx___schedule+0x10/0x10
[ 1503.284910][   T31]  ? find_held_lock+0x2b/0x80
[ 1503.289656][   T31]  ? schedule+0x2bf/0x390
[ 1503.294019][   T31]  schedule+0xdd/0x390
[ 1503.298091][   T31]  io_schedule+0x8a/0xf0
[ 1503.302382][   T31]  bit_wait_io+0xd/0xe0
[ 1503.306572][   T31]  __wait_on_bit+0x65/0x180
[ 1503.311132][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1503.316151][   T31]  out_of_line_wait_on_bit+0xdc/0x110
[ 1503.321667][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1503.327782][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1503.333327][   T31]  do_get_write_access+0x82f/0x1190
[ 1503.338560][   T31]  ? jbd2_write_access_granted+0x61/0x3d0
[ 1503.344371][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1503.350443][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1503.356568][   T31]  ext4_reserve_inode_write+0x1b7/0x330
[ 1503.362601][   T31]  __ext4_mark_inode_dirty+0x18f/0x840
[ 1503.368116][   T31]  ? trace_kmem_cache_alloc+0x80/0xb0
[ 1503.373564][   T31]  ? kmem_cache_alloc_noprof+0x2ff/0x780
[ 1503.379278][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1503.385269][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1503.390072][   T31]  ? trace_jbd2_handle_start+0x7f/0x200
[ 1503.395662][   T31]  ? jbd2__journal_start+0xf7/0x6a0
[ 1503.400907][   T31]  ? __ext4_journal_start_sb+0x32a/0x5c0
[ 1503.406570][   T31]  ? __ext4_journal_start_sb+0x1ce/0x5c0
[ 1503.412358][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1503.417355][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1503.422810][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1503.427608][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1503.432451][   T31]  __mark_inode_dirty+0x1ec/0x1560
[ 1503.437611][   T31]  generic_update_time+0xcf/0xf0
[ 1503.442620][   T31]  file_update_time_flags+0x401/0x510
[ 1503.448038][   T31]  ext4_page_mkwrite+0x35b/0x1980
[ 1503.453169][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1503.458706][   T31]  do_page_mkwrite+0x17a/0x440
[ 1503.463979][   T31]  do_fault+0x3d7/0x1990
[ 1503.468278][   T31]  __handle_mm_fault+0x1807/0x2b50
[ 1503.473463][   T31]  ? reacquire_held_locks+0xce/0x1e0
[ 1503.479004][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1503.484735][   T31]  ? lock_vma_under_rcu+0x17c/0x5a0
[ 1503.490216][   T31]  ? lockdep_hardirqs_on+0x78/0x100
[ 1503.495511][   T31]  handle_mm_fault+0x36d/0xa20
[ 1503.500368][   T31]  do_user_addr_fault+0x5a3/0x12f0
[ 1503.505527][   T31]  exc_page_fault+0x6f/0xd0
[ 1503.510113][   T31]  asm_exc_page_fault+0x26/0x30
[ 1503.514992][   T31] RIP: 0033:0x7f7ce0e6f6c0
[ 1503.519449][   T31] RSP: 002b:00007fff2252ca00 EFLAGS: 00010202
[ 1503.525633][   T31] RAX: 0000001b2e419000 RBX: ffffffff828806a2 RCX: 0000001b2e418ff8
[ 1503.533710][   T31] RDX: 0000001b2de2421c RSI: 0000000000000008 RDI: 00007f7ce1d45720
[ 1503.541779][   T31] RBP: 0000000000000150 R08: 00007f7ce1200000 R09: 00007f7ce1202000
[ 1503.549991][   T31] R10: 00000000828806a6 R11: 0000000000000004 R12: 00007f7ce1216128
[ 1503.557991][   T31] R13: 000000000000018c R14: ffffffff828800bd R15: 00007f7ce1d45720
[ 1503.566379][   T31]  ? path_openat+0x6fd/0x3120
[ 1503.571151][   T31]  ? path_openat+0xce2/0x3120
[ 1503.575948][   T31]  </TASK>
[ 1503.579036][   T31] INFO: task syz.0.5106:28172 blocked for more than 144 seconds.
[ 1503.586797][   T31]       Tainted: G             L      syzkaller #0
[ 1503.593485][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1503.602218][   T31] task:syz.0.5106      state:D stack:27640 pid:28172 tgid:28172 ppid:27869  task_flags:0x440040 flags:0x00080002
[ 1503.614204][   T31] Call Trace:
[ 1503.617517][   T31]  <TASK>
[ 1503.620679][   T31]  ? __schedule+0xf65/0x5e10
[ 1503.625323][   T31]  __schedule+0xfe4/0x5e10
[ 1503.629802][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1503.634803][   T31]  ? __pfx___schedule+0x10/0x10
[ 1503.639717][   T31]  ? find_held_lock+0x2b/0x80
[ 1503.644601][   T31]  ? schedule+0x2bf/0x390
[ 1503.649011][   T31]  schedule+0xdd/0x390
[ 1503.653118][   T31]  io_schedule+0x8a/0xf0
[ 1503.657368][   T31]  bit_wait_io+0xd/0xe0
[ 1503.661607][   T31]  __wait_on_bit+0x65/0x180
[ 1503.666161][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1503.671512][   T31]  out_of_line_wait_on_bit+0xdc/0x110
[ 1503.676975][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1503.683022][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1503.688520][   T31]  do_get_write_access+0x82f/0x1190
[ 1503.693786][   T31]  ? jbd2_write_access_granted+0x61/0x3d0
[ 1503.699705][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1503.705722][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1503.712025][   T31]  ext4_reserve_inode_write+0x1b7/0x330
[ 1503.717635][   T31]  __ext4_mark_inode_dirty+0x18f/0x840
[ 1503.723197][   T31]  ? trace_kmem_cache_alloc+0x80/0xb0
[ 1503.728612][   T31]  ? kmem_cache_alloc_noprof+0x2ff/0x780
[ 1503.734345][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1503.740429][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1503.745238][   T31]  ? trace_jbd2_handle_start+0x7f/0x200
[ 1503.750915][   T31]  ? jbd2__journal_start+0xf7/0x6a0
[ 1503.756147][   T31]  ? __ext4_journal_start_sb+0x32a/0x5c0
[ 1503.761955][   T31]  ? __ext4_journal_start_sb+0x1ce/0x5c0
[ 1503.767650][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1503.773201][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1503.778632][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1503.783493][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1503.788794][   T31]  __mark_inode_dirty+0x1ec/0x1560
[ 1503.793962][   T31]  generic_update_time+0xcf/0xf0
[ 1503.799007][   T31]  file_update_time_flags+0x401/0x510
[ 1503.804426][   T31]  ext4_page_mkwrite+0x35b/0x1980
[ 1503.809814][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1503.815331][   T31]  do_page_mkwrite+0x17a/0x440
[ 1503.820196][   T31]  do_fault+0x3d7/0x1990
[ 1503.824494][   T31]  __handle_mm_fault+0x1807/0x2b50
[ 1503.829754][   T31]  ? reacquire_held_locks+0xce/0x1e0
[ 1503.835086][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1503.840608][   T31]  ? lock_vma_under_rcu+0x17c/0x5a0
[ 1503.845846][   T31]  ? lockdep_hardirqs_on+0x78/0x100
[ 1503.851106][   T31]  handle_mm_fault+0x36d/0xa20
[ 1503.855968][   T31]  do_user_addr_fault+0x5a3/0x12f0
[ 1503.861179][   T31]  exc_page_fault+0x6f/0xd0
[ 1503.865718][   T31]  asm_exc_page_fault+0x26/0x30
[ 1503.870639][   T31] RIP: 0033:0x7f048546f6c0
[ 1503.875310][   T31] RSP: 002b:00007ffdd3585d90 EFLAGS: 00010202
[ 1503.882117][   T31] RAX: 0000001b32921000 RBX: ffffffff8495ea9c RCX: 0000001b32920ff8
[ 1503.890327][   T31] RDX: 0000001b32324220 RSI: 0000000000000008 RDI: 00007f0486345720
[ 1503.898451][   T31] RBP: 000000000000004a R08: 00007f0485800000 R09: 00007f0485802000
[ 1503.906517][   T31] R10: 000000008495eaa0 R11: 0000000000000002 R12: 00007f0485816038
[ 1503.914550][   T31] R13: 0000000000000049 R14: ffffffff8495e57f R15: 00007f0486345720
[ 1503.922598][   T31]  ? cap_capable+0x1f/0x3f0
[ 1503.927145][   T31]  ? cap_capset+0x10c/0x490
[ 1503.931740][   T31]  </TASK>
[ 1503.934796][   T31] INFO: task syz.2.5099:28175 blocked for more than 144 seconds.
[ 1503.942597][   T31]       Tainted: G             L      syzkaller #0
[ 1503.949150][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1503.957898][   T31] task:syz.2.5099      state:D stack:28280 pid:28175 tgid:28175 ppid:26593  task_flags:0x440040 flags:0x00080002
[ 1503.969983][   T31] Call Trace:
[ 1503.973380][   T31]  <TASK>
[ 1503.976541][   T31]  ? __schedule+0xf65/0x5e10
[ 1503.981223][   T31]  __schedule+0xfe4/0x5e10
[ 1503.985672][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1503.990706][   T31]  ? __pfx___schedule+0x10/0x10
[ 1503.995589][   T31]  ? find_held_lock+0x2b/0x80
[ 1504.000312][   T31]  ? schedule+0x2bf/0x390
[ 1504.004682][   T31]  schedule+0xdd/0x390
[ 1504.008809][   T31]  io_schedule+0x8a/0xf0
[ 1504.013084][   T31]  bit_wait_io+0xd/0xe0
[ 1504.017265][   T31]  __wait_on_bit+0x65/0x180
[ 1504.021860][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1504.026841][   T31]  out_of_line_wait_on_bit+0xdc/0x110
[ 1504.032264][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1504.038281][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1504.043877][   T31]  do_get_write_access+0x82f/0x1190
[ 1504.049283][   T31]  ? jbd2_write_access_granted+0x61/0x3d0
[ 1504.055065][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1504.061131][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1504.067256][   T31]  ext4_reserve_inode_write+0x1b7/0x330
[ 1504.072959][   T31]  __ext4_mark_inode_dirty+0x18f/0x840
[ 1504.078693][   T31]  ? kmem_cache_alloc_noprof+0x2ff/0x780
[ 1504.084464][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1504.090515][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1504.095309][   T31]  ? trace_jbd2_handle_start+0x7f/0x200
[ 1504.100952][   T31]  ? jbd2__journal_start+0xf7/0x6a0
[ 1504.106196][   T31]  ? __ext4_journal_start_sb+0x32a/0x5c0
[ 1504.111933][   T31]  ? __ext4_journal_start_sb+0x1ce/0x5c0
[ 1504.117615][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1504.122710][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1504.128125][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1504.133100][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1504.137929][   T31]  __mark_inode_dirty+0x1ec/0x1560
[ 1504.143129][   T31]  ? mnt_get_write_access+0x52/0x2f0
[ 1504.148468][   T31]  generic_update_time+0xcf/0xf0
[ 1504.153483][   T31]  touch_atime+0x4f5/0x5d0
[ 1504.157951][   T31]  ext4_file_mmap_prepare+0x4ab/0x5a0
[ 1504.163418][   T31]  __mmap_region+0xe7f/0x2820
[ 1504.168148][   T31]  ? __alloc_frozen_pages_noprof+0x2a0/0x2410
[ 1504.174321][   T31]  ? __pfx___mmap_region+0x10/0x10
[ 1504.179798][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1504.184800][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1504.189822][   T31]  ? lock_acquire+0x17c/0x330
[ 1504.194577][   T31]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[ 1504.200640][   T31]  mmap_region+0x30a/0x3e0
[ 1504.205114][   T31]  do_mmap+0xc63/0x12f0
[ 1504.209382][   T31]  ? __pfx_do_mmap+0x10/0x10
[ 1504.214021][   T31]  ? __pfx_down_write_killable+0x10/0x10
[ 1504.219739][   T31]  vm_mmap_pgoff+0x29e/0x470
[ 1504.224354][   T31]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1504.229533][   T31]  ? __fget_files+0x215/0x3d0
[ 1504.234244][   T31]  ? __fget_files+0x21f/0x3d0
[ 1504.239024][   T31]  ksys_mmap_pgoff+0x328/0x5b0
[ 1504.243830][   T31]  ? __pfx___do_sys_prctl+0x10/0x10
[ 1504.249142][   T31]  __x64_sys_mmap+0x125/0x190
[ 1504.253879][   T31]  do_syscall_64+0xc9/0xf80
[ 1504.258413][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1504.264384][   T31] RIP: 0033:0x7f6f4c59ac22
[ 1504.268908][   T31] RSP: 002b:00007ffe6eaedfc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1504.277369][   T31] RAX: ffffffffffffffda RBX: 0000001b32964000 RCX: 00007f6f4c59ac22
[ 1504.286151][   T31] RDX: 0000000000000003 RSI: 00000000003c0000 RDI: 0000001b32964000
[ 1504.294220][   T31] RBP: 0000000000100001 R08: 0000000000000004 R09: 0000000000040000
[ 1504.302325][   T31] R10: 0000000000100001 R11: 0000000000000206 R12: 0000000000000063
[ 1504.310365][   T31] R13: 00000000000927c0 R14: 0000000000149f12 R15: 00007ffe6eaee2a0
[ 1504.318362][   T31]  </TASK>
[ 1504.321437][   T31] 
[ 1504.321437][   T31] Showing all locks held in the system:
[ 1504.329246][   T31] 1 lock held by khungtaskd/31:
[ 1504.334122][   T31]  #0: ffffffff8e5e3120 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[ 1504.344189][   T31] 3 locks held by syz-executor/5809:
[ 1504.349526][   T31]  #0: ffff88807c437448 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x11d/0x5a0
[ 1504.358850][   T31]  #1: ffff8880362cc518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x17a/0x440
[ 1504.368441][   T31]  #2: ffff88814dcc8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xfaa/0x13a0
[ 1504.378135][   T31] 2 locks held by getty/6022:
[ 1504.382876][   T31]  #0: ffff888031c690a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1504.393165][   T31]  #1: ffffc90003ca32f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x1500
[ 1504.403423][   T31] 6 locks held by kworker/u10:55/20865:
[ 1504.409004][   T31]  #0: ffff888141eb7148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x11ae/0x1840
[ 1504.419947][   T31]  #1: ffffc9000bbb7c98 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x927/0x1840
[ 1504.432002][   T31]  #2: ffff8880362cc0e0 (&type->s_umount_key#32){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0
[ 1504.442655][   T31]  #3: ffff8880362ceb98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x278/0x600
[ 1504.453018][   T31]  #4: ffff88814dcc8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xfaa/0x13a0
[ 1504.462700][   T31]  #5: ffff8880781c3c30 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x469/0x13c0
[ 1504.472738][   T31] 3 locks held by syz.1.5098/28170:
[ 1504.477953][   T31]  #0: ffff8880843f46c8 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x11d/0x5a0
[ 1504.487557][   T31]  #1: ffff8880362cc518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x17a/0x440
[ 1504.497255][   T31]  #2: ffff88814dcc8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xfaa/0x13a0
[ 1504.506967][   T31] 3 locks held by syz.0.5106/28172:
[ 1504.512224][   T31]  #0: ffff88802b257088 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x11d/0x5a0
[ 1504.521982][   T31]  #1: ffff8880362cc518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x17a/0x440
[ 1504.531602][   T31]  #2: ffff88814dcc8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xfaa/0x13a0
[ 1504.541302][   T31] 3 locks held by syz.2.5099/28175:
[ 1504.546500][   T31]  #0: ffff88807ad17180 (&mm->mmap_lock){++++}-{4:4}, at: vm_mmap_pgoff+0x1f5/0x470
[ 1504.555963][   T31]  #1: ffff8880362cc420 (sb_writers#4){.+.+}-{0:0}, at: ext4_file_mmap_prepare+0x4ab/0x5a0
[ 1504.566082][   T31]  #2: ffff88814dcc8950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xfaa/0x13a0
[ 1504.575756][   T31] 
[ 1504.578102][   T31] =============================================
[ 1504.578102][   T31] 
[ 1504.586661][   T31] NMI backtrace for cpu 1
[ 1504.586687][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1504.586729][   T31] Tainted: [L]=SOFTLOCKUP
[ 1504.586740][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1504.586758][   T31] Call Trace:
[ 1504.586769][   T31]  <TASK>
[ 1504.586780][   T31]  dump_stack_lvl+0x100/0x190
[ 1504.586821][   T31]  nmi_cpu_backtrace.cold+0x12d/0x151
[ 1504.586861][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1504.586907][   T31]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[ 1504.586964][   T31]  sys_info+0x141/0x190
[ 1504.587001][   T31]  watchdog+0xcc3/0xfe0
[ 1504.587043][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1504.587075][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1504.587109][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1504.587141][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1504.587168][   T31]  kthread+0x3b3/0x730
[ 1504.587209][   T31]  ? __pfx_kthread+0x10/0x10
[ 1504.587247][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1504.587273][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1504.587300][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1504.587329][   T31]  ? __pfx_kthread+0x10/0x10
[ 1504.587371][   T31]  ret_from_fork+0x754/0xaf0
[ 1504.587400][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1504.587431][   T31]  ? __switch_to+0x7b9/0x10c0
[ 1504.587467][   T31]  ? __pfx_kthread+0x10/0x10
[ 1504.587509][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1504.587570][   T31]  </TASK>
[ 1504.587581][   T31] Sending NMI from CPU 1 to CPUs 0:
[ 1504.733673][    C0] NMI backtrace for cpu 0
[ 1504.733697][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1504.733729][    C0] Tainted: [L]=SOFTLOCKUP
[ 1504.733737][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1504.733750][    C0] RIP: 0010:__lock_acquire+0x82/0x2630
[ 1504.733784][    C0] Code: 03 00 00 48 3d 10 a6 ea 93 0f 84 ff 02 00 00 8b 15 d3 f1 10 19 85 d2 0f 94 c0 41 89 c5 83 fb 07 76 08 84 c0 0f 85 ec 02 00 00 <65> 48 8b 2d 4e 6f 01 12 83 fb 01 0f 87 1e 03 00 00 89 d8 0f 87 42
[ 1504.733805][    C0] RSP: 0018:ffffc90000007e20 EFLAGS: 00000097
[ 1504.733825][    C0] RAX: ffffffff9af38a01 RBX: 0000000000000000 RCX: 0000000000000002
[ 1504.733839][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff9af38c88
[ 1504.733852][    C0] RBP: ffffffff9af38c88 R08: 0000000000000001 R09: 0000000000000001
[ 1504.733866][    C0] R10: ffffffff9af38c88 R11: 0000000000000001 R12: 0000000000000000
[ 1504.733880][    C0] R13: 000000009af38a01 R14: 0000000000000002 R15: 0000000000000000
[ 1504.733895][    C0] FS:  0000000000000000(0000) GS:ffff8881245e3000(0000) knlGS:0000000000000000
[ 1504.733918][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1504.733934][    C0] CR2: 000056402c90c660 CR3: 0000000031a8e000 CR4: 00000000003526f0
[ 1504.733950][    C0] Call Trace:
[ 1504.733957][    C0]  <IRQ>
[ 1504.733966][    C0]  ? sched_clock+0x38/0x60
[ 1504.733997][    C0]  ? __lock_acquire+0x4a5/0x2630
[ 1504.734025][    C0]  ? __pfx_sched_clock_cpu+0x10/0x10
[ 1504.734054][    C0]  lock_acquire+0x17c/0x330
[ 1504.734081][    C0]  ? tick_nohz_start_idle+0x107/0x270
[ 1504.734108][    C0]  ? lock_acquire+0x17c/0x330
[ 1504.734145][    C0]  ktime_get+0x80/0x300
[ 1504.734168][    C0]  ? tick_nohz_start_idle+0x107/0x270
[ 1504.734203][    C0]  tick_nohz_start_idle+0x107/0x270
[ 1504.734229][    C0]  tick_nohz_irq_exit+0x86/0xd0
[ 1504.734255][    C0]  irq_exit_rcu+0x9/0x30
[ 1504.734280][    C0]  sysvec_call_function_single+0xa3/0xc0
[ 1504.734307][    C0]  </IRQ>
[ 1504.734315][    C0]  <TASK>
[ 1504.734324][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[ 1504.734349][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[ 1504.734373][    C0] Code: a6 7a 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 63 6c 17 00 fb f4 <e9> fc 31 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[ 1504.734399][    C0] RSP: 0018:ffffffff8e207e00 EFLAGS: 00000246
[ 1504.734416][    C0] RAX: 0000000000aaccff RBX: ffffffff8e297ac0 RCX: ffffffff8b7414b5
[ 1504.734431][    C0] RDX: 0000000000000000 RSI: ffffffff8dc41a76 RDI: ffffffff8bfa3320
[ 1504.734446][    C0] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed101708673d
[ 1504.734460][    C0] R10: ffff8880b84339eb R11: 0000000000000000 R12: fffffbfff1c52f58
[ 1504.734474][    C0] R13: 0000000000000000 R14: ffffffff90b76fd0 R15: 0000000000000000
[ 1504.734491][    C0]  ? ct_kernel_exit+0x125/0x180
[ 1504.734519][    C0]  default_idle+0x9/0x10
[ 1504.734546][    C0]  default_idle_call+0x6c/0xb0
[ 1504.734574][    C0]  do_idle+0x35b/0x4b0
[ 1504.734596][    C0]  ? __pfx_do_idle+0x10/0x10
[ 1504.734622][    C0]  cpu_startup_entry+0x4f/0x60
[ 1504.734643][    C0]  rest_init+0x251/0x260
[ 1504.734672][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[ 1504.734698][    C0]  start_kernel+0x47a/0x480
[ 1504.734719][    C0]  x86_64_start_reservations+0x24/0x30
[ 1504.734742][    C0]  x86_64_start_kernel+0x122/0x130
[ 1504.734766][    C0]  common_startup_64+0x13e/0x148
[ 1504.734798][    C0]  </TASK>
[ 1504.735672][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1504.735695][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1504.735732][   T31] Tainted: [L]=SOFTLOCKUP
[ 1504.735742][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1504.735757][   T31] Call Trace:
[ 1504.735767][   T31]  <TASK>
[ 1504.735778][   T31]  dump_stack_lvl+0x100/0x190
[ 1504.735813][   T31]  vpanic+0x20d/0x630
[ 1504.735841][   T31]  panic+0xd1/0xd1
[ 1504.735864][   T31]  ? __pfx_panic+0x10/0x10
[ 1504.735891][   T31]  ? wq_watchdog_touch+0xec/0x1a0
[ 1504.735936][   T31]  ? nmi_trigger_cpumask_backtrace+0x1be/0x230
[ 1504.735975][   T31]  ? watchdog.cold+0x198/0x1ca
[ 1504.736003][   T31]  ? watchdog+0xcd3/0xfe0
[ 1504.736033][   T31]  watchdog.cold+0x1a9/0x1ca
[ 1504.736072][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1504.736101][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1504.736133][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1504.736162][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1504.736188][   T31]  kthread+0x3b3/0x730
[ 1504.736226][   T31]  ? __pfx_kthread+0x10/0x10
[ 1504.736260][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1504.736284][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1504.736310][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1504.736336][   T31]  ? __pfx_kthread+0x10/0x10
[ 1504.736374][   T31]  ret_from_fork+0x754/0xaf0
[ 1504.736401][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1504.736430][   T31]  ? __switch_to+0x7b9/0x10c0
[ 1504.736461][   T31]  ? __pfx_kthread+0x10/0x10
[ 1504.736499][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1504.736552][   T31]  </TASK>
[ 1505.218924][   T31] Kernel Offset: disabled
[ 1505.223257][   T31] Rebooting in 86400 seconds..