last executing test programs:

5.559107843s ago: executing program 2 (id=219):
mmap$auto(0x0, 0x4020009, 0xdf, 0xebe, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mq_open$auto(&(0x7f0000000000)='\xbe\xf2\x82\xe7\x14g\xb5\xeeMQ\x13\xa2_g\xbf\t\xfa\xf2_N\xb0{\xf9\xb57v\xeeG\xd9l\xbf\x86q w\x96\xd9\xe9\xa8\xe1\xf0\xc7\x1f\x1e\xc4\xc4\x89u\x83\xe8}\xbd\x7fO\x91\xc1UVW.\xb6\xad\x04u\x02w.\xec`O\xc1\x0e\x15\xe7:\xc9\x1bK\xcddY\x03\x95\xd1\xae\xc1\x9b\x96\x9faj\xd2\xfc\xfc\x1f7\xaf\xcan\xf6\xc0wK\xce\xe7Q\xae\xc9Hg\x01\xef\xda[\xe5\xa3\xa3%\'\x8f\xcf\x96X:\x04Dkt\x7f\xde\x80\x01\xddX\x91\x88\xa1\t\xc3\xf1\xfe[\x93$O8 b\xb4\x92\xf4\xbc\xc5\xb9\x989\xfcF\xec\xdc@\xdd\xdaeM\xe0U\xc8;\xf5\xe7$Q8\xd2\x87\xdd\xc5\x9d\xc5\xe8\xb5\xb5\xb8\xdfD\xd0\xe8t\x8aS\xaa\xbe\xaa\xba\x9e^0\x1a\xf8Y\xf5Jp\bu\xba\x98\x00\xf0H5\xa9u\x0e\xc4\x04\x13\xf58p\x9f\x11\xc07\xefS*|\xd87\x12\xd8\xce\xde0\xd82;\xcd\x18\r\xccI\x99\n\xd2\x86', 0xdd1, 0x8, 0x0)
mq_notify$auto(0x4, &(0x7f0000000040)={@sival_ptr=0x0, @inferred=r0, 0x2})
close_range$auto(0x2, 0x8, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xde, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x2a, 0x2, 0x0)
r1 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0)
ioctl$auto_LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
r2 = epoll_create$auto(0xb)
truncate$auto(&(0x7f0000000140)='./file1\x00', 0x3)
r3 = socket(0xa, 0x2, 0x88)
setsockopt$auto(r3, 0x29, 0x5, 0x0, 0x1)
open(&(0x7f0000000000)='./file0\x00', 0x1eb343, 0x100)
ioctl$auto_FS_IOC_RESVSP64(r2, 0x4030582a, 0x1)
r4 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x2040, 0x0)
read$auto_stats_fops_(r4, &(0x7f00000000c0)=""/2, 0x2)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), r2)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/nbd0/sched/write1_fifo_list\x00', 0x2000, 0x0)
mmap$auto(0x0, 0x1400004, 0x400, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x20009, 0xde, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x1, 0x84)
socket(0x2a, 0x2, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1e2102, 0x0)
io_uring_setup$auto(0x6, 0x0)

5.154575268s ago: executing program 2 (id=220):
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
sysfs$auto(0x2, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
timerfd_create$auto(0x9, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
socket(0x11, 0x3, 0x9)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
r0 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r0, 0x107, 0x1, 0x0, 0x8004)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto(0x3, 0x40085400, 0x5)
mmap$auto(0x0, 0x9, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sg0\x00', 0x82802, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x0, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002dbd7000f9dbdf2501000000060002000100000005000700570000000800090108000000050004000300000014001f00fe88000000000000000000000000000114002000ff010000000000000000000000000001"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
write$auto(r1, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8587)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000140), 0x7111}, 0x8)

4.095815283s ago: executing program 2 (id=226):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_fault_inject_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/make-it-fail\x00', 0x381080, 0x0)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'batadv0\x00'})
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x20500, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
open(&(0x7f0000000000)='./cgroup\x00', 0x4201, 0x64)
madvise$auto_MADV_DODUMP(0x8, 0x5, 0x11)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020011, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r3 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000005c0), 0x2000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_GSTATUS(r3, 0xc0505405, 0x0)
r4 = prctl$auto(0x3e, 0x0, 0x4, 0x8, 0x7fe)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0)
pread64$auto(r5, 0x0, 0x40000000f42c, 0x80002)
r6 = io_uring_setup$auto(0x7, 0x0)
epoll_ctl$auto(0xffffffffffffffff, 0x80000000, r6, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
ioctl$auto_BTRFS_IOC_SEND_32(r2, 0x40449426, &(0x7f00000005c0)={@inferred=r4, 0x4, 0x3, 0xe0, 0x7fff, 0xfffffffe, "fd64ab47b98fa2408fa518c6aeeb26534e24eab2a94d69169092f351"})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

3.556271631s ago: executing program 0 (id=230):
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x22202, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0x1dfbdb30)
openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, 0x0, 0x41, 0x0)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x161342, 0x100)
write$auto(r1, &(0x7f0000000000)='}\x00', 0x5)
lseek$auto(0x3, 0x2, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

3.264221554s ago: executing program 1 (id=232):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x0, 0x0)
mmap$auto(0x0, 0x2000d, 0x3, 0xeb1, 0x404, 0x10008000)
sysfs$auto(0x2, 0x1f, 0x0)
r1 = fsopen$auto(0x0, 0x1)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/freezer.state\x00', 0x10b342, 0x0)
sendfile$auto(r2, r2, 0x0, 0x4456)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000140), 0x200000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000100), r3)
sendmsg$auto_GTP_CMD_ECHOREQ(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="01002bbd7000fbdb1e8322893ac06f9227a66ca5b1369c0e0e4b6196c9c2121985bd838104810a4167d6e87dbea771f046c2065712481a3f3250dfeebf70f37452bd8154e92d0000000000001823d9f8673907dcb9f68611298a29bb43b59be85202cde837d5600e1b82e31fff452328fd8cc319f7bfd7ffb0fa6241c30000000000"], 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x8044)
r5 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
read$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(r5, 0x0, 0x17)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3dd)
r6 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x8a141, 0x0)
write$auto_lowpan_enable_fops_(r6, &(0x7f00000000c0)='3', 0x1)
mmap$auto(0x0, 0xd, 0xb7ed, 0x17, 0x0, 0x8002)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_INFO(0xffffffffffffffff, 0x80e85411, 0x0)
read$auto_l2cap_debugfs_fops_(r1, &(0x7f0000000040)=""/68, 0x44)
ioctl$auto_KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/asound/card1/pcm0p/sub0/xrun_injection\x00', 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
socket(0x2, 0x5, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x40, r8, 0x1b, 0x74bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x133, 0x0, 0x1, [@nested={0x8, 0x5, 0x0, 0x1, [@nested={0x4, 0x33}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
mmap$auto(0x0, 0x2020009, 0x400000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)

2.834928036s ago: executing program 2 (id=235):
r0 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/projid_map\x00', 0x141800, 0x0)
read$auto(r0, &(0x7f0000000100)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x141000, 0x0)
poll$auto(&(0x7f0000000180)={r1, 0xa0b, 0x9816}, 0x7f, 0x0)
io_uring_setup$auto(0x406, 0x0)
ioctl$auto_VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r2 = socket(0x10, 0x3, 0xc)
setsockopt$auto(r2, 0x104000000000010e, 0x1, 0x0, 0x16)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x84800, 0x0)
ioctl$auto_PPPIOCSCOMPRESS(r3, 0x4010744d, &(0x7f0000000180)={&(0x7f0000000140)='#)[:\xda\x00', 0x7ff, 0x6})
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card2/midi0\x00', 0x28102, 0x0)
lseek$auto(r4, 0x7fffffffffffffdf, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000080)=""/173, 0xad)

2.808009936s ago: executing program 0 (id=236):
mmap$auto(0x0, 0x40000c, 0x45bb, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
r0 = socket(0x2, 0x1, 0x106)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdc, 0xeb5, 0x401, 0x40)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x1000)
ioctl$auto_USB_RAW_IOCTL_EP_SET_HALT(0xffffffffffffffff, 0x4004550d, &(0x7f0000000180)=0x798)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYRES64=r0, @ANYRES64=r1, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc045}, 0x8004)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_0={0x8000, 0x1, 0x8, 0x9, 0x4e, r0, 0x80100001, "787d66da4a620eab7f736e854ef61529", 0x0, 0xffffffffffffffff, 0x7, 0x6, 0x2, 0x1}, 0x7)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090)
r4 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r4, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0)
ioctl$auto(r5, 0x4018620d, 0x9)
r6 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0)
ioctl$auto(r6, 0x4018620d, 0x9)
read$auto_kernfs_file_fops_kernfs_internal(r3, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3b, 0x0, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0xf08f, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000001ff, 0x4, 0xd, 0x1, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0xd, 0xd, 0x1]}, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r7 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0)
read$auto_v4l2_fops_v4l2_dev(r7, &(0x7f0000000000)=""/194, 0xc2)
close_range$auto(0x2, 0xa, 0x0)

2.739461047s ago: executing program 1 (id=237):
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/fail-nth\x00', 0xc327b401350e1582, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x20d00, 0x0)
r0 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000100), 0x1cbc0, 0x0)
write$auto(r0, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\f\x1c\xc7k', 0x800)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
setsockopt$auto(0x3, 0x10000000084, 0x19, 0x0, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x22, 0x5, 0x20)
mlock$auto(0x112, 0x80006)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/input/event1\x00', 0x400000, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x381300, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [{0x2ff, 0x3, 0x3e}]})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
setitimer$auto_ITIMER_VIRTUAL(0x1, &(0x7f0000000540)={{0x7fffffffffffffff, 0x6}, {0x1, 0x6}}, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)

2.510479699s ago: executing program 2 (id=239):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'}) (async)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)={0x20, r1, 0x1, 0x74bd2a, 0x25dfdbfd, {}, [@ETHTOOL_A_COALESCE_HEADER={0x4}, @ETHTOOL_A_COALESCE_PKT_RATE_HIGH={0x8, 0x12, 0xd}]}, 0x20}, 0x1, 0x0, 0x0, 0x48c1}, 0x40000)

2.394075245s ago: executing program 1 (id=240):
mmap$auto(0x0, 0x7ffffffff018, 0x8004, 0xeb1, 0xfffffffffffffffa, 0x8000)

2.392793778s ago: executing program 3 (id=241):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x6, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f00000001c0)=0x6)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
mmap$auto(0xff, 0x2020009, 0x4000000000003, 0xeb1, r0, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
getgroups$auto(0xeda, 0x0)
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000180)={0x45, 0x3, 0x1, @raw=0xaa}})
madvise$auto(0x110c230000, 0x1, 0x9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0)
write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, &(0x7f0000003900), 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/fail-nth\x00', 0x200400, 0x0)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000140)={0x80, 0x6, 0x917d, 0x8, 0x3, 0x4000003, 0x0})
connect$auto(r0, &(0x7f0000000380)=@l2={0x1f, 0xdb, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0xb, 0x2}, 0x9)
getrandom$auto(0x0, 0x3, 0x80000001)
getrandom$auto(&(0x7f00000003c0)='/dev/ppp\x00', 0x0, 0x6)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/pci0000:00/0000:00:01.3/power/control\x00', 0xe3102, 0x0)
madvise$auto(0x1000, 0x9, 0x3)
landlock_add_rule$auto_LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f00000002c0)="47c4322fa14637684cac6018ddb7a4b3503261c30a66b82a7e40e94deef154c9a7c3dbf0c5535702ba8a5b93ae785aace243611c7be2a22a4cd76f5208e7b100d582e021be97bb47ed6019f62e714b60bdf1111948ab9990a5d484f6ae4ea4f77a74705c06a39a4e8eba0ff6e14e7e427462e86c1d3abba2ce659f9e74a9006b37d4385f4c040f1d2babcd38932d36c0a7fda0f1a504f222921596de1626e1", 0x3)
sendfile$auto(r3, r1, 0x0, 0x2)
remap_file_pages$auto(0x6a27, 0x1003, 0x0, 0xb74, 0x66a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
keyctl$auto(0x9, 0x1, 0x1, 0x4, 0x6)
write$auto(0xca, &(0x7f00000001c0)='\x04\x13\xac\x04\x00\x00\x00\x00\x00\x00\x00\x01\n\xdc\x10\x00\x00\xef\xab\xe1ME:\xab \x87|\xe0Z\x1b\x9eZ\xa8\xff\x92+\xc9\x9fs\xbf\xd8\f\x00\x00\x00\xa5V\b\xf1Ne\xc6l\xd0\xdd7\x96gf\xb2\xa0\xf2cN\x8b\x95\xeb\xf3(\x9eM-\xdc\x84N\xc3\tts%\xe9\xbf<\xf1\xdav\xe0n\x04\xb33\x97\xd5\xb4\x02\x94B\xbb\x995\x1e\xf7@\xd8\xca\x8d\a0 \xfa\x87V\xeb1\xe4M%\xdd\xfd\xf6\x8d\xb4\xc7\x9b\x9d\xf5\xd9^\xcdL@\x0f\xd4\x15F,\xc1\xd1i\xa4f/{\xfa\xd5\n\xe1\x95l[\x91\xbfX\xea2\x1b\x8a\x85\t\x00\x05m\x1e\x9b\xca\xfb\x81\x9d{\x19S\xff\xe4\xd2k\x1b/wJ&\x03+{\x84R\xa8\x92\xad\xec\x1b\xb1\xe9\xa7XUo\x93\xd5\xfb\x94\xc4\xdf\x8e\xdd\x97\xfc\x00\x13\xd6\x80g\x7fR;\x88\xf7bm\x8f\xb5\x89\x1a\xb63\x98\xaa\xcc\xbf\x94\xbf#u\xb9', 0x2b)
msync$auto(0x110c230000, 0x200001, 0x6)

2.200140103s ago: executing program 1 (id=242):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sr0\x00', 0x60742, 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
mmap$auto(0x0, 0x400009, 0x4, 0xa911, 0xffffffffffffffff, 0x7ffd)
close_range$auto(r0, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
getrlimit$auto(0x3, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/tty/ttyq9/uevent\x00', 0x10f403, 0x0)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x3, 0x3, 0x4, 0x1)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x8, 0x3, 0x2, 0x4)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x401, 0x200000000000000, 0xfffffffffffffff8, 0x0)
setrlimit$auto(0xc, &(0x7f0000000040)={0x5, 0x2})
socket(0x3, 0x800, 0x4)
mmap$auto(0x3, 0x9, 0x1003ff57696, 0x12, 0x2, 0x8000000000007ffd)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
ioctl$auto(0x3, 0xae41, r1)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000200)='/dev/admmidi2\x00', 0xac0c3, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram10\x00', 0x10b903, 0x0)
ioprio_set$auto(0x1, 0x0, 0x0)
sendfile$auto(r3, 0x3, 0x0, 0x400000000006)
read$auto(r2, 0x0, 0x20)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x7b0c0, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20800, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/net/bond0/queues/tx-0/xps_cpus\x00', 0x10b062, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000180)='\x00\xefx{F\x89\x16\x17\xa1\'Y\x88\xbe\x9a\xb1\xa2\x1a\x16\xd12\xd7\xa3\xc6\xc0U\xfbc\x9f;\'\x8d@c)\x1c\x94\xf9)\x87\xf7\xe8\xa7\xe7S\xe0X\x89\xd4\x8c\xa7m\x16\x97\x7f\xb3\x1f\xdd\xa2YO\xb2\x1fpR\t\x00\x00\x00\x00\x00\x00\x00\xed\x16\'\xbe', 0x30000081)
pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3)
prctl$auto(0x6, 0x771c, 0xffffffffffffffff, 0x1000000000004284, 0x400000004)
mmap$auto(0x3, 0x12120009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyv2\x00', 0xd2dc0, 0x0)

2.199955603s ago: executing program 2 (id=243):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_fault_inject_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/make-it-fail\x00', 0x381080, 0x0)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb5, 0xffffffffffffffff, 0x8000)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x20500, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
open(&(0x7f0000000000)='./cgroup\x00', 0x4201, 0x64)
madvise$auto_MADV_DODUMP(0x8, 0x5, 0x11)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020011, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000005c0), 0x2000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_GSTATUS(r2, 0xc0505405, 0x0)
r3 = prctl$auto(0x3e, 0x0, 0x4, 0x8, 0x7fe)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0)
pread64$auto(r4, 0x0, 0x40000000f42c, 0x80002)
r5 = io_uring_setup$auto(0x7, 0x0)
epoll_ctl$auto(0xffffffffffffffff, 0x80000000, r5, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
ioctl$auto_BTRFS_IOC_SEND_32(r1, 0x40449426, &(0x7f00000005c0)={@inferred=r3, 0x4, 0x3, 0xe0, 0x7fff, 0xfffffffe, "fd64ab47b98fa2408fa518c6aeeb26534e24eab2a94d69169092f351"})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

1.909079327s ago: executing program 1 (id=244):
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x22202, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0x1dfbdb30)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x161342, 0x100)
write$auto(r1, &(0x7f0000000000)='}\x00', 0x5)
lseek$auto(0x3, 0x2, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

1.722646397s ago: executing program 0 (id=245):
pipe$auto(&(0x7f0000000500)=<r0=>0xffffffffffffffff)
msgctl$auto_IPC_RMID(0x8, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
r2 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000080), 0x100401, 0x0)
write$auto_evm_xattr_ops_evm_secfs(r2, 0x0, 0x0)
socket(0x1e, 0x805, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x100000000000031, 0x0)
fsopen$auto(0x0, 0x1)
fsconfig$auto(r1, 0x1, &(0x7f00000001c0)='+\x00', &(0x7f0000000280), 0x0)
fcntl$auto_F_ADD_SEALS(r0, 0x409, 0x4)
sendmsg$auto_L2TP_CMD_TUNNEL_DELETE(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, 0x0, 0x400, 0x70bd29, 0x25dfdbfc, {}, [@L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x8}, @L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e23}]}, 0x24}, 0x1, 0x0, 0x0, 0x20040810}, 0x80000)
r3 = socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(r3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
ustat$auto(0x801, 0x0)
sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r5 = getpid()
r6 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vkms/clients\x00', 0x2100, 0x0)
r7 = pipe2$auto(&(0x7f00000000c0), 0x0)
socket(0x2b, 0x1, 0x0)
listen$auto(0x3, 0x81)
select$auto(0xa, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x5, 0x3, 0x5, 0x2000000000000002, 0x9, 0x8, 0x400000000ff, 0xa, 0x4, 0xaab, 0x8, 0x7]}, 0x0, 0x0)
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0x1001}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x20000000000000)
ioctl$auto(r4, 0x40246f4c, 0x38)
bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f0000000180)=@bpf_attr_4={0x80000000, r6, 0x2002, r7}, 0x8000000)

1.512752386s ago: executing program 0 (id=246):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000400)='/dev/amidi2\x00', 0x201, 0x0)
mmap$auto(0x0, 0x400008, 0x803c, 0x9b72, 0xffffffffffffffff, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x407, 0x1, 0x44f, 0x7, 0x1, 0x1007181, 0x8a0d, 0xa, 0x7, 0x7, 0x89, 0x28, 0x574, 0x200000000001, 0xfffffffffffff343, 0xfffffffffffffffa, 0x500000000000000, 0xfffffffe, 0x30, 0x0, 0x864, 0xe, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x80, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa, 0x0, 0xd4, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x9, 0xd)
r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffffd, &(0x7f0000000440)="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")
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dri/card1\x00', 0x101002, 0x0)
ioctl$auto(r0, 0x9000641a, 0xc35)
r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x80040, 0x40, 0xe}, 0x18)
fremovexattr$auto(r1, &(0x7f0000000000)='system.posix_acl_access\x00')
syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff)
r2 = getsockopt$auto(0xffffffffffffffff, 0x9, 0x1, &(0x7f0000000080)=']@/^h\\*^\x00', &(0x7f00000000c0)=0x4)
unshare$auto(0x3)
write$auto(0xffffffffffffffff, 0x0, 0x7)
r3 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000080), 0x100401, 0x0)
write$auto_evm_xattr_ops_evm_secfs(r3, &(0x7f00000000c0)='.', 0x1)
r4 = socket(0x10, 0x2, 0x0)
shmget$auto(0x5, 0x5, 0x7)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB, @ANYRES64], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
read$auto(r4, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/capability\x00', 0x129102, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x7ad82, 0x0)
ioctl$auto(r5, 0x0, 0xffffffffffffffff)
prctl$auto(0x41, 0x3, 0x0, 0x7, 0x4)
madvise$auto(0x0, 0x2000040080000004, 0x1)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto(r2, 0x0, 0x7)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptydb\x00', 0x2802, 0x0)

1.418676073s ago: executing program 3 (id=247):
r0 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/projid_map\x00', 0x141800, 0x0)
read$auto(r0, &(0x7f0000000100)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x141000, 0x0)
poll$auto(&(0x7f0000000180)={r1, 0xa0b, 0x9816}, 0x7f, 0x0)
io_uring_setup$auto(0x406, 0x0)
ioctl$auto_VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r2 = socket(0x10, 0x3, 0xc)
setsockopt$auto(r2, 0x104000000000010e, 0x1, 0x0, 0x16)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x84800, 0x0)
ioctl$auto_PPPIOCSCOMPRESS(r3, 0x4010744d, &(0x7f0000000180)={&(0x7f0000000140)='#)[:\xda\x00', 0x7ff, 0x6})
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card2/midi0\x00', 0x28102, 0x0)
lseek$auto(r4, 0x7fffffffffffffdf, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000080)=""/173, 0xad)

1.248265665s ago: executing program 3 (id=248):
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000180), 0xffffffffffffffff)
mprotect$auto(0x200000000000, 0x806121, 0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0xfeffffff, 0x0, 0x4004080}, 0x20040894)

1.0563181s ago: executing program 3 (id=249):
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/fail-nth\x00', 0xc327b401350e1582, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x20d00, 0x0)
r0 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000100), 0x1cbc0, 0x0)
write$auto(r0, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\f\x1c\xc7k', 0x800)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
setsockopt$auto(0x3, 0x10000000084, 0x19, 0x0, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x22, 0x5, 0x20)
mlock$auto(0x112, 0x80006)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/input/event1\x00', 0x400000, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x381300, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [{0x2ff, 0x3, 0x3e}]})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
setitimer$auto_ITIMER_VIRTUAL(0x1, &(0x7f0000000540)={{0x7fffffffffffffff, 0x6}, {0x1, 0x6}}, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)

927.014878ms ago: executing program 3 (id=250):
ioctl$auto_VHOST_SET_VRING_ERR2(0xffffffffffffffff, 0x4008af22, &(0x7f0000000100)={0x2, <r0=>0xffffffffffffffff})
mmap$auto(0x0, 0x2020009, 0x3, 0x18, r0, 0x8002)
io_uring_setup$auto(0x1, 0x0)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x8040, 0x0)
close_range$auto(0x2, 0x8, 0x0)
listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x80000024, 0xfffffffffffffff7, 0x8}, 0x0, 0xf4240, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
r2 = socket(0xa, 0x3, 0x1)
getsockopt$auto_SO_DEBUG(r2, 0xff, 0x1, 0x0, 0x0)
sysfs$auto(0x2, 0x1, 0x0)
r3 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r3, 0x8, 0x0, 0x0, 0x0)
fsmount$auto(0x4, 0x0, 0x200006)
write$auto_console_fops_tty_io(r1, &(0x7f0000002940)="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", 0x115)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r5 = fanotify_init$auto(0x1ff, 0x0)
close$auto(r5)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sg0\x00', 0x6000, 0x0)
write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
r6 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x109801, 0x0)
ioctl$auto(r6, 0x9210640b, 0xffffffffffffffff)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x82f00, 0x0)

826.289002ms ago: executing program 0 (id=251):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) (async)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
capset$auto(0x0, 0x0)
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff038}})
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy1/total_ps_buffered\x00', 0x141482, 0x0) (async)
r1 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy1/total_ps_buffered\x00', 0x141482, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(r1, 0x0, 0x0) (async)
read$auto_debugfs_full_proxy_file_operations_internal(r1, 0x0, 0x0)
statmount$auto(0x0, 0x0, 0x1fe, 0xd)
close_range$auto(0x2, 0x8, 0x0)

204.248238ms ago: executing program 3 (id=252):
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bluetooth/hci6/rfkill31/soft\x00', 0x28d00, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/power/pm_wakeup_irq\x00', 0x8000, 0x0)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040), 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
read$auto(0xffffffffffffffff, 0x0, 0x1)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001280)='/sys/kernel/security/tomoyo/query\x00', 0x80402, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x103040, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x8, 0x8000000000000d3e, 0x2, 0x948f, 0x3, 0x95f4da09, 0xfeffffffffffffff, 0x4, 0x7, 0x80000000, 0x0, 0x6d3f, 0x9, 0x6, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x400000000001ff, 0x100000001, 0x5, 0x1, 0x4, 0x3, 0xa199, 0x5, 0x3, 0x8, 0x5, 0x7a0, 0x6d3c, 0x9, 0x6, 0x200000009]}, 0x0)
openat$auto_hwsim_fops_ps_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy1/hwsim/ps\x00', 0x1102, 0x0)
mmap$auto(0x0, 0x400004, 0x200000000000df, 0x9b72, 0xffffffffffffffff, 0x8000)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r3, 0xc0305710, &(0x7f00000000c0)={0x1, 0x81, 0xec, 0x1, 0x5, "e7227115127a1e8f00"})
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1eb842, 0x0)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r4, 0x0, 0x1f40)
write$auto(0x3, 0x0, 0x100082)
mkdir$auto(&(0x7f0000004440)='./file0\x00', 0x1)
mount$auto(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='xfs\x00', 0x5, 0x0)

135.879516ms ago: executing program 0 (id=253):
r0 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)
socket(0x2, 0x1, 0x0)
r1 = socket(0x1e, 0x1, 0x0)
r2 = socket(0x10, 0x2, 0x0)
memfd_create$auto(0x0, 0x4)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0x9)
copy_file_range$auto(r0, 0x0, r0, 0x0, 0x2, 0x0)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x181201, 0x0)
chdir$auto(&(0x7f0000000200)='./bus\x00')
r4 = openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0)
setsockopt$auto_SO_TIMESTAMPNS_NEW(r4, 0x7, 0x40, &(0x7f0000000080)='$@(\xe2]-&\x00', 0x2)
ioctl$auto_BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000240)={"ef65ce6c00cf81000000ffffffffffffff291d000000000700", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d, <r6=>0x0})
shmctl$auto_IPC_SET(0x4000, 0x1, &(0x7f0000000440)={{0x7, <r7=>0xee00, 0xffffffffffffffff, 0xd48, 0xfecc, 0x7, 0x19ca}, 0x10001, 0x9c, 0xc341, 0x1ff, @raw=0x6, @inferred=<r8=>r6, 0xac1f, 0x0, &(0x7f0000000180)="6df3d19bac66699b99cf9e95166766c22416f14d611ea340f0e84babea06e555e4f7477269e07a7a665e261f18da07999e38d06dadaacb31234a91943a35676bfc98", &(0x7f00000002c0)="81e0964f8a40dbf1dc0e98d7e18718ae627983e70fcccf94a61c79ab9e79458e3e69beb9b1c616913982c95c158c3c892fd78ce501ecc0502609228fd18e4e3d69a9bb2477448fa2db73b3f0cc23db59168257752aea2cb1b4bec70dbe8310d95d327bb9cdebbe788317176922fdc7ceef4ca1c7d505b8b4a718a5cfe049f28533a8770d8144f647bbf344e6369cba2eb394fea24a552ab0ac22108f72b8305864f39d8e3a1f79357160f09ad6834994ab0d837adef485ad86fac5abf687ab7945ebb8ae22882d9802f0ce94be776ec622760fc2d94c4046f6440f6296cc7108ed22f7020e44677c54a322e1d77ced79fee214c21b"})
pidfd_send_signal$auto_PIDFD_SIGNAL_THREAD_GROUP(r1, 0x8, &(0x7f00000003c0)={@siginfo_0_0={0x1, 0x7ff, 0x5, @_sigchld={r8, r7, 0x1, 0x5, 0x5f8}}}, 0x2)
ioctl$auto_BLKTRACETEARDOWN(r5, 0x1276, 0x0)
open(0x0, 0x80, 0xb5d1af1605322de0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r9)
r11 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/rds/tcp/rds_tcp_sndbuf\x00', 0x40601, 0x0)
write$auto(r11, 0x0, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB=',\b\x00\x00', @ANYRES16=r10, @ANYBLOB="010026bd7000f7dbdf2503000000050002000800000005000300000000000500020003000000"], 0x2c}, 0x1, 0x0, 0x0, 0x24000890}, 0x4040)
getsockopt$auto_SO_BSDCOMPAT(r2, 0x7, 0xe, &(0x7f00000004c0)='ethtool\x00', &(0x7f0000000500)=0x2)
write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

0s ago: executing program 1 (id=254):
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x11, 0x3, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mprotect$auto(0x0, 0x806121, 0x8)
mmap$auto(0x0, 0x4, 0xdf, 0x9b72, 0x2, 0x801f)
madvise$auto(0x0, 0x2003f0, 0x15)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.139' (ED25519) to the list of known hosts.
[   82.396278][ T5818] cgroup: Unknown subsys name 'net'
[   82.505891][ T5818] cgroup: Unknown subsys name 'cpuset'
[   82.514955][ T5818] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   83.991142][ T5818] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   85.805074][ T5151] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   85.818107][ T5151] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   85.825901][ T5151] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   85.834816][ T5151] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   85.845004][ T5151] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   85.845491][ T5837] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   85.853718][ T5151] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   85.865921][ T5837] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   85.867552][ T5151] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   85.874557][ T5837] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   85.894205][ T5835] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   85.916480][ T5843] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   85.926198][ T5151] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   85.926661][ T5842] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   85.943466][ T5842] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   85.943530][ T5151] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   85.950757][ T5842] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   85.963380][ T5151] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   85.978814][ T5842] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   85.987132][ T5842] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   86.519428][ T5831] chnl_net:caif_netlink_parms(): no params data found
[   86.630547][ T5829] chnl_net:caif_netlink_parms(): no params data found
[   86.663318][ T5840] chnl_net:caif_netlink_parms(): no params data found
[   86.676180][ T5834] chnl_net:caif_netlink_parms(): no params data found
[   86.795455][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.813473][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.821805][ T5831] bridge_slave_0: entered allmulticast mode
[   86.830783][ T5831] bridge_slave_0: entered promiscuous mode
[   86.849643][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.857150][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.865088][ T5831] bridge_slave_1: entered allmulticast mode
[   86.873265][ T5831] bridge_slave_1: entered promiscuous mode
[   87.040500][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.048930][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.056578][ T5829] bridge_slave_0: entered allmulticast mode
[   87.065052][ T5829] bridge_slave_0: entered promiscuous mode
[   87.085750][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.106962][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.114396][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.121559][ T5829] bridge_slave_1: entered allmulticast mode
[   87.129473][ T5829] bridge_slave_1: entered promiscuous mode
[   87.148935][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.178432][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.185759][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.193037][ T5840] bridge_slave_0: entered allmulticast mode
[   87.200147][ T5840] bridge_slave_0: entered promiscuous mode
[   87.217930][ T5834] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.225305][ T5834] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.232562][ T5834] bridge_slave_0: entered allmulticast mode
[   87.239599][ T5834] bridge_slave_0: entered promiscuous mode
[   87.257292][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.264814][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.271981][ T5840] bridge_slave_1: entered allmulticast mode
[   87.279271][ T5840] bridge_slave_1: entered promiscuous mode
[   87.296476][ T5834] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.303718][ T5834] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.310875][ T5834] bridge_slave_1: entered allmulticast mode
[   87.318165][ T5834] bridge_slave_1: entered promiscuous mode
[   87.327822][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.349002][ T5831] team0: Port device team_slave_0 added
[   87.366982][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.387958][ T5831] team0: Port device team_slave_1 added
[   87.415309][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.436941][ T5834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.460321][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.480389][ T5834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.491630][ T5829] team0: Port device team_slave_0 added
[   87.509101][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.516113][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.542718][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.565915][ T5829] team0: Port device team_slave_1 added
[   87.580546][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.587705][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.613844][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.647105][ T5840] team0: Port device team_slave_0 added
[   87.664796][ T5834] team0: Port device team_slave_0 added
[   87.681480][ T5840] team0: Port device team_slave_1 added
[   87.703222][ T5834] team0: Port device team_slave_1 added
[   87.709560][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.716709][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.742713][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.774380][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.781339][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.807593][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.829689][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.836731][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.863423][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.886221][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.893399][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.919564][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.933624][ T5837] Bluetooth: hci1: command tx timeout
[   87.952110][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.959305][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.986251][ T5834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.012148][ T5831] hsr_slave_0: entered promiscuous mode
[   88.012683][ T5837] Bluetooth: hci2: command tx timeout
[   88.019611][ T5831] hsr_slave_1: entered promiscuous mode
[   88.034450][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.041447][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.067549][ T5834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.082717][ T5838] Bluetooth: hci3: command tx timeout
[   88.088483][ T5842] Bluetooth: hci0: command tx timeout
[   88.181539][ T5840] hsr_slave_0: entered promiscuous mode
[   88.187953][ T5840] hsr_slave_1: entered promiscuous mode
[   88.194385][ T5840] debugfs: 'hsr0' already exists in 'hsr'
[   88.200173][ T5840] Cannot create hsr debugfs directory
[   88.211969][ T5829] hsr_slave_0: entered promiscuous mode
[   88.219323][ T5829] hsr_slave_1: entered promiscuous mode
[   88.225535][ T5829] debugfs: 'hsr0' already exists in 'hsr'
[   88.231269][ T5829] Cannot create hsr debugfs directory
[   88.295998][ T5834] hsr_slave_0: entered promiscuous mode
[   88.302371][ T5834] hsr_slave_1: entered promiscuous mode
[   88.308645][ T5834] debugfs: 'hsr0' already exists in 'hsr'
[   88.314912][ T5834] Cannot create hsr debugfs directory
[   88.702117][ T5831] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   88.721444][ T5831] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   88.744843][ T5831] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   88.765071][ T5831] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   88.819991][ T5840] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   88.831459][ T5840] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   88.841985][ T5840] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   88.870835][ T5840] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   88.935136][ T5834] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   88.949684][ T5834] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   88.962226][ T5834] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   89.000583][ T5834] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   89.084722][ T5829] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   89.109945][ T5829] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   89.126703][ T5829] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   89.145900][ T5829] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   89.219777][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.267208][ T5831] 8021q: adding VLAN 0 to HW filter on device team0
[   89.316943][ T3786] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.324286][ T3786] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.361862][ T3019] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.369058][ T3019] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.394445][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.408524][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.462000][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[   89.477634][ T5840] 8021q: adding VLAN 0 to HW filter on device team0
[   89.496801][ T3786] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.503929][ T3786] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.521225][ T3786] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.528441][ T3786] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.539562][ T3786] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.546691][ T3786] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.577536][ T3666] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.584691][ T3666] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.722191][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.806663][ T5829] 8021q: adding VLAN 0 to HW filter on device team0
[   89.830200][ T3786] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.837428][ T3786] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.857014][ T3724] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.864214][ T3724] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.003149][ T5842] Bluetooth: hci1: command tx timeout
[   90.029139][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.084003][ T5842] Bluetooth: hci2: command tx timeout
[   90.170307][ T5837] Bluetooth: hci3: command tx timeout
[   90.176214][ T5842] Bluetooth: hci0: command tx timeout
[   90.225413][ T5831] veth0_vlan: entered promiscuous mode
[   90.260441][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.275823][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.289097][ T5831] veth1_vlan: entered promiscuous mode
[   90.426599][ T5831] veth0_macvtap: entered promiscuous mode
[   90.448476][ T5831] veth1_macvtap: entered promiscuous mode
[   90.457236][ T5840] veth0_vlan: entered promiscuous mode
[   90.492447][ T5840] veth1_vlan: entered promiscuous mode
[   90.504881][ T5834] veth0_vlan: entered promiscuous mode
[   90.514916][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.540641][ T5834] veth1_vlan: entered promiscuous mode
[   90.556831][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.575741][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.594478][ T3724] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.603948][ T3724] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.617084][ T3724] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.626223][ T3724] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.654117][ T5840] veth0_macvtap: entered promiscuous mode
[   90.668433][ T5840] veth1_macvtap: entered promiscuous mode
[   90.710993][ T5834] veth0_macvtap: entered promiscuous mode
[   90.739302][ T5834] veth1_macvtap: entered promiscuous mode
[   90.748715][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.790854][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.848570][ T3786] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.858170][ T3786] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.872229][ T3724] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.885798][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.893170][ T3786] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.902376][ T3724] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.906916][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.934283][ T3786] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.968770][ T5829] veth0_vlan: entered promiscuous mode
[   90.981530][ T3724] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.991646][ T3724] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.005300][ T3724] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.007721][ T3786] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.024184][ T3786] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.032851][ T3724] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.045569][ T5829] veth1_vlan: entered promiscuous mode
[   91.171474][ T5831] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   91.194922][ T5829] veth0_macvtap: entered promiscuous mode
[   91.210241][ T3724] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.219635][ T3724] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.247093][ T5829] veth1_macvtap: entered promiscuous mode
[   91.308033][ T3786] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.317165][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.328128][ T3786] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.354800][ T5927] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   91.367944][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.414081][ T3786] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.425156][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.435307][ T3786] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.485079][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.523736][ T3786] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.535147][ T3786] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.549762][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.587062][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.661944][ T3786] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.687853][ T3786] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.756071][ T3019] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.793063][ T3019] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.944158][    T9] cfg80211: failed to load regulatory.db
[   92.043325][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.084277][ T5837] Bluetooth: hci1: command tx timeout
[   92.163612][ T5837] Bluetooth: hci2: command tx timeout
[   92.255437][ T5837] Bluetooth: hci3: command tx timeout
[   92.255919][ T5842] Bluetooth: hci0: command tx timeout
[   92.382246][ T5945] random: crng reseeded on system resumption
[   92.423575][ T5933] Zero length message leads to an empty skb
[   92.608993][ T5933] binder: BINDER_SET_CONTEXT_MGR already set
[   92.623726][ T5933] binder: 5931:5933 ioctl 4018620d 9 returned -16
[   92.632744][ T5948] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7'.
[   92.748658][ T5951] FAULT_INJECTION: forcing a failure.
[   92.748658][ T5951] name failslab, interval 1, probability 0, space 0, times 1
[   92.825644][ T5951] CPU: 1 UID: 0 PID: 5951 Comm: syz.0.7 Not tainted syzkaller #0 PREEMPT(full) 
[   92.825681][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   92.825702][ T5951] Call Trace:
[   92.825711][ T5951]  <TASK>
[   92.825721][ T5951]  dump_stack_lvl+0x16c/0x1f0
[   92.825765][ T5951]  should_fail_ex+0x512/0x640
[   92.825808][ T5951]  ? __kmalloc_noprof+0xca/0x910
[   92.825842][ T5951]  should_failslab+0xc2/0x120
[   92.825883][ T5951]  __kmalloc_noprof+0xeb/0x910
[   92.825914][ T5951]  ? rcu_is_watching+0x12/0xc0
[   92.825951][ T5951]  ? eeprom_prepare_data+0x1ce/0x920
[   92.825991][ T5951]  ? eeprom_prepare_data+0x1ce/0x920
[   92.826023][ T5951]  eeprom_prepare_data+0x1ce/0x920
[   92.826062][ T5951]  ? __pfx_eeprom_prepare_data+0x10/0x10
[   92.826103][ T5951]  ? __pfx___mutex_lock+0x10/0x10
[   92.826142][ T5951]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   92.826178][ T5951]  ? skb_put+0x138/0x1b0
[   92.826233][ T5951]  ethnl_default_dump_one+0x29b/0xa20
[   92.826272][ T5951]  ethnl_default_dumpit+0x28d/0x6c0
[   92.826309][ T5951]  ? __pfx_ethnl_default_dumpit+0x10/0x10
[   92.826351][ T5951]  genl_dumpit+0x125/0x230
[   92.826390][ T5951]  netlink_dump+0x539/0xd30
[   92.826426][ T5951]  ? __pfx_netlink_dump+0x10/0x10
[   92.826456][ T5951]  ? __pfx_eeprom_parse_request+0x10/0x10
[   92.826506][ T5951]  ? __pfx_ethnl_default_start+0x10/0x10
[   92.826534][ T5951]  ? genl_start+0x67f/0x980
[   92.826575][ T5951]  __netlink_dump_start+0x6d6/0x990
[   92.826613][ T5951]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[   92.826655][ T5951]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[   92.826693][ T5951]  ? consume_skb+0xcc/0x100
[   92.826734][ T5951]  ? __pfx_genl_start+0x10/0x10
[   92.826767][ T5951]  ? __pfx_genl_dumpit+0x10/0x10
[   92.826801][ T5951]  ? __pfx_genl_done+0x10/0x10
[   92.826839][ T5951]  ? bpf_lsm_capable+0x9/0x10
[   92.826875][ T5951]  ? security_capable+0x7e/0x260
[   92.826914][ T5951]  ? ns_capable+0xd7/0x110
[   92.826953][ T5951]  genl_rcv_msg+0x46e/0x800
[   92.826995][ T5951]  ? __pfx_genl_rcv_msg+0x10/0x10
[   92.827033][ T5951]  ? __pfx_ethnl_default_start+0x10/0x10
[   92.827060][ T5951]  ? __pfx_ethnl_default_dumpit+0x10/0x10
[   92.827097][ T5951]  ? __pfx_ethnl_default_done+0x10/0x10
[   92.827139][ T5951]  netlink_rcv_skb+0x158/0x420
[   92.827174][ T5951]  ? __pfx_genl_rcv_msg+0x10/0x10
[   92.827215][ T5951]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   92.827266][ T5951]  ? netlink_deliver_tap+0x1ae/0xd30
[   92.827303][ T5951]  genl_rcv+0x28/0x40
[   92.827336][ T5951]  netlink_unicast+0x5aa/0x870
[   92.827374][ T5951]  ? __pfx_netlink_unicast+0x10/0x10
[   92.827422][ T5951]  netlink_sendmsg+0x8c8/0xdd0
[   92.827462][ T5951]  ? __pfx_netlink_sendmsg+0x10/0x10
[   92.827500][ T5951]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[   92.827547][ T5951]  ____sys_sendmsg+0xa5d/0xc30
[   92.827585][ T5951]  ? copy_msghdr_from_user+0x10a/0x160
[   92.827614][ T5951]  ? __pfx_____sys_sendmsg+0x10/0x10
[   92.827648][ T5951]  ? preempt_schedule_thunk+0x16/0x30
[   92.827683][ T5951]  ? try_to_wake_up+0xa67/0x1860
[   92.827729][ T5951]  ___sys_sendmsg+0x134/0x1d0
[   92.827760][ T5951]  ? __pfx____sys_sendmsg+0x10/0x10
[   92.827789][ T5951]  ? futex_private_hash_put+0x160/0x1b0
[   92.827863][ T5951]  __sys_sendmsg+0x16d/0x220
[   92.827893][ T5951]  ? __pfx___sys_sendmsg+0x10/0x10
[   92.827921][ T5951]  ? __x64_sys_futex+0x1e0/0x4c0
[   92.827976][ T5951]  do_syscall_64+0xcd/0xf80
[   92.828014][ T5951]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.828043][ T5951] RIP: 0033:0x7fbd7138f7c9
[   92.828080][ T5951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.828117][ T5951] RSP: 002b:00007fbd72286038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   92.828144][ T5951] RAX: ffffffffffffffda RBX: 00007fbd715e6090 RCX: 00007fbd7138f7c9
[   92.828163][ T5951] RDX: 0000000004004840 RSI: 0000200000001780 RDI: 0000000000000009
[   92.828181][ T5951] RBP: 00007fbd71413f91 R08: 0000000000000000 R09: 0000000000000000
[   92.828199][ T5951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   92.828215][ T5951] R13: 00007fbd715e6128 R14: 00007fbd715e6090 R15: 00007fffe3d59c78
[   92.828256][ T5951]  </TASK>
[   93.326985][ T5948] i2c i2c-0: new_device: Invalid device name
[   93.394019][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.402679][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.463510][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.473260][    T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!!
[   93.482947][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[   93.693766][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.735878][ T5961] process 'syz.0.9' launched ':,' with NULL argv: empty string added
[   93.937938][ T5959] binder: BINDER_SET_CONTEXT_MGR already set
[   93.962940][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.974436][ T5959] binder: 5953:5959 ioctl 4018620d 9 returned -16
[   94.162479][ T5842] Bluetooth: hci1: command tx timeout
[   94.250523][ T5837] Bluetooth: hci2: command tx timeout
[   94.323615][ T5837] Bluetooth: hci3: command tx timeout
[   94.332737][ T5837] Bluetooth: hci0: command tx timeout
[   94.513037][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   95.093950][ T5978] binder: BINDER_SET_CONTEXT_MGR already set
[   95.099998][ T5978] binder: 5976:5978 ioctl 4018620d 9 returned -16
[   95.110374][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   95.263683][ T5984] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   95.322226][ T5981] Invalid ELF header magic: != ELF
[   96.124291][ T5993] binder: BINDER_SET_CONTEXT_MGR already set
[   96.131047][ T5993] binder: 5992:5993 ioctl 4018620d 9 returned -16
[   96.765115][   T30] audit: type=1806 audit(1765377050.732:2): xattr="" res=-22
[   96.820208][ T6008] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[   96.974251][ T6006] binder: BINDER_SET_CONTEXT_MGR already set
[   96.990538][ T6006] binder: 6002:6006 ioctl 4018620d 9 returned -16
[   98.437454][ T6036] binder: BINDER_SET_CONTEXT_MGR already set
[   98.454302][ T6036] binder: 6034:6036 ioctl 4018620d 9 returned -16
[   99.173595][ T6049] binder: BINDER_SET_CONTEXT_MGR already set
[   99.179651][ T6049] binder: 6043:6049 ioctl 4018620d 9 returned -16
[   99.731852][ T6068] sysfs_service_op_store: Client not running :-5:
[  100.047047][ T6070] lo: entered allmulticast mode
[  100.052289][ T6070] lo: left allmulticast mode
[  100.412042][ T6079] syz.1.31 uses obsolete (PF_INET,SOCK_PACKET)
[  101.176483][ T6093] binder: BINDER_SET_CONTEXT_MGR already set
[  101.208013][ T6093] binder: 6089:6093 ioctl 4018620d 9 returned -16
[  101.582786][ T6100] FAULT_INJECTION: forcing a failure.
[  101.582786][ T6100] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  101.632572][ T6100] CPU: 0 UID: 0 PID: 6100 Comm: syz.2.37 Not tainted syzkaller #0 PREEMPT(full) 
[  101.632608][ T6100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  101.632624][ T6100] Call Trace:
[  101.632634][ T6100]  <TASK>
[  101.632644][ T6100]  dump_stack_lvl+0x16c/0x1f0
[  101.632682][ T6100]  should_fail_ex+0x512/0x640
[  101.632727][ T6100]  strncpy_from_user+0x3b/0x2e0
[  101.632775][ T6100]  getname_flags.part.0+0x8f/0x550
[  101.632815][ T6100]  getname_flags+0x93/0xf0
[  101.632874][ T6100]  acct_on+0x82/0xa00
[  101.632910][ T6100]  ? __pfx_acct_on+0x10/0x10
[  101.632946][ T6100]  ? bpf_lsm_capable+0x9/0x10
[  101.632998][ T6100]  __x64_sys_acct+0x81/0x1e0
[  101.633037][ T6100]  ? lockdep_hardirqs_on+0x7c/0x110
[  101.633074][ T6100]  do_syscall_64+0xcd/0xf80
[  101.633109][ T6100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.633136][ T6100] RIP: 0033:0x7fa78f78f7c9
[  101.633157][ T6100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.633182][ T6100] RSP: 002b:00007fa790559038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[  101.633211][ T6100] RAX: ffffffffffffffda RBX: 00007fa78f9e6090 RCX: 00007fa78f78f7c9
[  101.633229][ T6100] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[  101.633245][ T6100] RBP: 00007fa790559090 R08: 0000000000000000 R09: 0000000000000000
[  101.633261][ T6100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.633277][ T6100] R13: 00007fa78f9e6128 R14: 00007fa78f9e6090 R15: 00007ffe32e98e98
[  101.633315][ T6100]  </TASK>
[  103.373816][ T6113] binder: BINDER_SET_CONTEXT_MGR already set
[  103.392882][ T6113] binder: 6111:6113 ioctl 4018620d 9 returned -16
[  103.559697][ T6124] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  104.692262][ T6140] binder: BINDER_SET_CONTEXT_MGR already set
[  104.699539][ T6140] binder: 6137:6140 ioctl 4018620d 9 returned -16
[  106.331799][ T6162] binder: BINDER_SET_CONTEXT_MGR already set
[  106.367558][ T6156] binder: BINDER_SET_CONTEXT_MGR already set
[  106.384786][ T6162] binder: 6159:6162 ioctl 4018620d 9 returned -16
[  106.391375][ T6156] binder: 6154:6156 ioctl 4018620d 9 returned -16
[  106.843516][ T6169] netlink: 28 bytes leftover after parsing attributes in process `syz.0.49'.
[  107.400696][ T6179] netlink: 4 bytes leftover after parsing attributes in process `syz.2.50'.
[  107.539815][ T6183] FAULT_INJECTION: forcing a failure.
[  107.539815][ T6183] name failslab, interval 1, probability 0, space 0, times 0
[  107.609768][ T6183] CPU: 0 UID: 0 PID: 6183 Comm: syz.2.50 Not tainted syzkaller #0 PREEMPT(full) 
[  107.609806][ T6183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  107.609823][ T6183] Call Trace:
[  107.609831][ T6183]  <TASK>
[  107.609841][ T6183]  dump_stack_lvl+0x16c/0x1f0
[  107.609880][ T6183]  should_fail_ex+0x512/0x640
[  107.609922][ T6183]  ? __kmalloc_noprof+0xca/0x910
[  107.609956][ T6183]  should_failslab+0xc2/0x120
[  107.609996][ T6183]  __kmalloc_noprof+0xeb/0x910
[  107.610024][ T6183]  ? rcu_is_watching+0x12/0xc0
[  107.610059][ T6183]  ? eeprom_prepare_data+0x1ce/0x920
[  107.610098][ T6183]  ? eeprom_prepare_data+0x1ce/0x920
[  107.610129][ T6183]  eeprom_prepare_data+0x1ce/0x920
[  107.610166][ T6183]  ? __pfx_eeprom_prepare_data+0x10/0x10
[  107.610197][ T6183]  ? __pfx___mutex_lock+0x10/0x10
[  107.610236][ T6183]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  107.610269][ T6183]  ? skb_put+0x138/0x1b0
[  107.610323][ T6183]  ethnl_default_dump_one+0x29b/0xa20
[  107.610360][ T6183]  ethnl_default_dumpit+0x28d/0x6c0
[  107.610397][ T6183]  ? __pfx_ethnl_default_dumpit+0x10/0x10
[  107.610440][ T6183]  genl_dumpit+0x125/0x230
[  107.610479][ T6183]  netlink_dump+0x539/0xd30
[  107.610515][ T6183]  ? __pfx_netlink_dump+0x10/0x10
[  107.610544][ T6183]  ? __pfx_eeprom_parse_request+0x10/0x10
[  107.610594][ T6183]  ? __pfx_ethnl_default_start+0x10/0x10
[  107.610622][ T6183]  ? genl_start+0x67f/0x980
[  107.610674][ T6183]  __netlink_dump_start+0x6d6/0x990
[  107.610714][ T6183]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[  107.610757][ T6183]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  107.610796][ T6183]  ? consume_skb+0xcc/0x100
[  107.610837][ T6183]  ? __pfx_genl_start+0x10/0x10
[  107.610870][ T6183]  ? __pfx_genl_dumpit+0x10/0x10
[  107.610903][ T6183]  ? __pfx_genl_done+0x10/0x10
[  107.610941][ T6183]  ? bpf_lsm_capable+0x9/0x10
[  107.610976][ T6183]  ? security_capable+0x7e/0x260
[  107.611015][ T6183]  ? ns_capable+0xd7/0x110
[  107.611054][ T6183]  genl_rcv_msg+0x46e/0x800
[  107.611095][ T6183]  ? __pfx_genl_rcv_msg+0x10/0x10
[  107.611132][ T6183]  ? __pfx_ethnl_default_start+0x10/0x10
[  107.611157][ T6183]  ? __pfx_ethnl_default_dumpit+0x10/0x10
[  107.611185][ T6183]  ? __pfx_ethnl_default_done+0x10/0x10
[  107.611224][ T6183]  netlink_rcv_skb+0x158/0x420
[  107.611256][ T6183]  ? __pfx_genl_rcv_msg+0x10/0x10
[  107.611294][ T6183]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  107.611341][ T6183]  ? netlink_deliver_tap+0x1ae/0xd30
[  107.611376][ T6183]  genl_rcv+0x28/0x40
[  107.611409][ T6183]  netlink_unicast+0x5aa/0x870
[  107.611445][ T6183]  ? __pfx_netlink_unicast+0x10/0x10
[  107.611490][ T6183]  netlink_sendmsg+0x8c8/0xdd0
[  107.611529][ T6183]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.611586][ T6183]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  107.611632][ T6183]  ____sys_sendmsg+0xa5d/0xc30
[  107.611677][ T6183]  ? copy_msghdr_from_user+0x10a/0x160
[  107.611707][ T6183]  ? __pfx_____sys_sendmsg+0x10/0x10
[  107.611752][ T6183]  ? __pfx_futex_wake_mark+0x10/0x10
[  107.611794][ T6183]  ___sys_sendmsg+0x134/0x1d0
[  107.611826][ T6183]  ? __pfx____sys_sendmsg+0x10/0x10
[  107.611855][ T6183]  ? futex_private_hash_put+0x160/0x1b0
[  107.611925][ T6183]  __sys_sendmsg+0x16d/0x220
[  107.611956][ T6183]  ? __pfx___sys_sendmsg+0x10/0x10
[  107.611984][ T6183]  ? __x64_sys_futex+0x1e0/0x4c0
[  107.612038][ T6183]  do_syscall_64+0xcd/0xf80
[  107.612075][ T6183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.612104][ T6183] RIP: 0033:0x7fa78f78f7c9
[  107.612128][ T6183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.612154][ T6183] RSP: 002b:00007fa790559038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  107.612182][ T6183] RAX: ffffffffffffffda RBX: 00007fa78f9e6090 RCX: 00007fa78f78f7c9
[  107.612200][ T6183] RDX: 0000000004004840 RSI: 0000200000001780 RDI: 000000000000000a
[  107.612217][ T6183] RBP: 00007fa78f813f91 R08: 0000000000000000 R09: 0000000000000000
[  107.612235][ T6183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  107.612252][ T6183] R13: 00007fa78f9e6128 R14: 00007fa78f9e6090 R15: 00007ffe32e98e98
[  107.612292][ T6183]  </TASK>
[  108.014177][ T6185] i2c i2c-0: new_device: Invalid device name
[  108.154629][ T6179] FAULT_INJECTION: forcing a failure.
[  108.154629][ T6179] name failslab, interval 1, probability 0, space 0, times 0
[  108.262536][ T6179] CPU: 0 UID: 0 PID: 6179 Comm: syz.2.50 Not tainted syzkaller #0 PREEMPT(full) 
[  108.262581][ T6179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  108.262597][ T6179] Call Trace:
[  108.262605][ T6179]  <TASK>
[  108.262616][ T6179]  dump_stack_lvl+0x16c/0x1f0
[  108.262655][ T6179]  should_fail_ex+0x512/0x640
[  108.262697][ T6179]  ? __kmalloc_cache_noprof+0x5f/0x800
[  108.262732][ T6179]  should_failslab+0xc2/0x120
[  108.262773][ T6179]  __kmalloc_cache_noprof+0x80/0x800
[  108.262804][ T6179]  ? rcu_is_watching+0x12/0xc0
[  108.262840][ T6179]  ? __request_module+0x2ad/0x660
[  108.262874][ T6179]  ? lockdep_hardirqs_on+0x7c/0x110
[  108.262910][ T6179]  ? __request_module+0x2ad/0x660
[  108.262944][ T6179]  __request_module+0x2ad/0x660
[  108.262978][ T6179]  ? __pfx___request_module+0x10/0x10
[  108.263030][ T6179]  ? find_held_lock+0x2b/0x80
[  108.263079][ T6179]  inet_create+0xa97/0x1040
[  108.263107][ T6179]  ? inet_create+0x93/0x1040
[  108.263141][ T6179]  __sock_create+0x339/0x8a0
[  108.263186][ T6179]  __sys_socket+0x14d/0x260
[  108.263222][ T6179]  ? fput+0x70/0xf0
[  108.263247][ T6179]  ? __pfx___sys_socket+0x10/0x10
[  108.263283][ T6179]  ? xfd_validate_state+0x61/0x180
[  108.263307][ T6179]  ? __pfx_ksys_write+0x10/0x10
[  108.263352][ T6179]  __x64_sys_socket+0x72/0xb0
[  108.263388][ T6179]  ? lockdep_hardirqs_on+0x7c/0x110
[  108.263421][ T6179]  do_syscall_64+0xcd/0xf80
[  108.263457][ T6179]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.263485][ T6179] RIP: 0033:0x7fa78f78f7c9
[  108.263507][ T6179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.263531][ T6179] RSP: 002b:00007fa79057a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  108.263566][ T6179] RAX: ffffffffffffffda RBX: 00007fa78f9e5fa0 RCX: 00007fa78f78f7c9
[  108.263586][ T6179] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000002
[  108.263602][ T6179] RBP: 00007fa78f813f91 R08: 0000000000000000 R09: 0000000000000000
[  108.263620][ T6179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  108.263637][ T6179] R13: 00007fa78f9e6038 R14: 00007fa78f9e5fa0 R15: 00007ffe32e98e98
[  108.263675][ T6179]  </TASK>
[  108.724839][   T30] audit: type=1806 audit(4294967313.684:3): xattr="" res=-22
[  108.798697][ T6193] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  109.021547][ T6194] binder: BINDER_SET_CONTEXT_MGR already set
[  109.037647][ T6194] binder: 6188:6194 ioctl 4018620d 9 returned -16
[  110.338023][ T6218] netlink: 'syz.3.61': attribute type 4 has an invalid length.
[  110.351429][ T6218] netlink: 314 bytes leftover after parsing attributes in process `syz.3.61'.
[  110.407932][ T6218] IPv6: NLM_F_CREATE should be specified when creating new route
[  110.476899][ T6218] IPv6: Can't replace route, no match found
[  110.695834][ T6219] binder: BINDER_SET_CONTEXT_MGR already set
[  110.711230][ T6219] binder: 6212:6219 ioctl 4018620d 9 returned -16
[  110.925148][ T6225] random: crng reseeded on system resumption
[  111.088968][ T6225] FAULT_INJECTION: forcing a failure.
[  111.088968][ T6225] name failslab, interval 1, probability 0, space 0, times 0
[  111.189170][ T6225] CPU: 0 UID: 60928 PID: 6225 Comm: syz.3.63 Not tainted syzkaller #0 PREEMPT(full) 
[  111.189207][ T6225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  111.189228][ T6225] Call Trace:
[  111.189237][ T6225]  <TASK>
[  111.189247][ T6225]  dump_stack_lvl+0x16c/0x1f0
[  111.189288][ T6225]  should_fail_ex+0x512/0x640
[  111.189329][ T6225]  ? __kmalloc_noprof+0xca/0x910
[  111.189364][ T6225]  should_failslab+0xc2/0x120
[  111.189406][ T6225]  __kmalloc_noprof+0xeb/0x910
[  111.189434][ T6225]  ? drm_atomic_state_init+0x183/0x540
[  111.189477][ T6225]  ? drm_atomic_state_init+0x183/0x540
[  111.189510][ T6225]  drm_atomic_state_init+0x183/0x540
[  111.189546][ T6225]  ? kasan_save_track+0x14/0x30
[  111.189583][ T6225]  drm_atomic_state_alloc+0xd3/0x120
[  111.189627][ T6225]  drm_client_modeset_commit_atomic+0xcc/0x7e0
[  111.189654][ T6225]  ? rcu_is_watching+0x12/0xc0
[  111.189688][ T6225]  ? trace_contention_end+0xdd/0x110
[  111.189715][ T6225]  ? __mutex_lock+0x27b/0x1ca0
[  111.189752][ T6225]  ? __mutex_lock+0x27b/0x1ca0
[  111.189787][ T6225]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  111.189816][ T6225]  ? trace_contention_end+0xdd/0x110
[  111.189883][ T6225]  drm_client_modeset_commit_locked+0x14d/0x580
[  111.189920][ T6225]  drm_client_modeset_commit+0x4f/0x80
[  111.189951][ T6225]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  111.190002][ T6225]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  111.190058][ T6225]  drm_fbdev_client_restore+0x1b/0x30
[  111.190101][ T6225]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  111.190142][ T6225]  drm_client_dev_restore+0x200/0x2a0
[  111.190179][ T6225]  drm_release+0x2c6/0x360
[  111.190231][ T6225]  ? __pfx_drm_release+0x10/0x10
[  111.190272][ T6225]  __fput+0x402/0xb70
[  111.190310][ T6225]  task_work_run+0x150/0x240
[  111.190344][ T6225]  ? __pfx_task_work_run+0x10/0x10
[  111.190372][ T6225]  ? __do_sys_close_range+0x278/0x730
[  111.190426][ T6225]  exit_to_user_mode_loop+0xfb/0x540
[  111.190466][ T6225]  do_syscall_64+0x4ee/0xf80
[  111.190503][ T6225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.190536][ T6225] RIP: 0033:0x7fdbfaf8f7c9
[  111.190559][ T6225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.190586][ T6225] RSP: 002b:00007fdbfbe71038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  111.190614][ T6225] RAX: 0000000000000000 RBX: 00007fdbfb1e5fa0 RCX: 00007fdbfaf8f7c9
[  111.190633][ T6225] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  111.190651][ T6225] RBP: 00007fdbfb013f91 R08: 0000000000000000 R09: 0000000000000000
[  111.190668][ T6225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  111.190685][ T6225] R13: 00007fdbfb1e6038 R14: 00007fdbfb1e5fa0 R15: 00007ffee869a688
[  111.190727][ T6225]  </TASK>
[  111.603724][ T6223] binder: BINDER_SET_CONTEXT_MGR already set
[  111.703387][ T6223] binder: 6221:6223 ioctl 4018620d 9 returned -16
[  111.813626][ T6234] kafs: addr_prefs: Too many elements in string
[  112.092138][ T6238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.66'.
[  112.216417][ T6240] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  112.254117][ T6238] FAULT_INJECTION: forcing a failure.
[  112.254117][ T6238] name failslab, interval 1, probability 0, space 0, times 0
[  112.338168][ T6240] i2c i2c-0: new_device: Invalid device name
[  112.364736][ T6238] CPU: 1 UID: 0 PID: 6238 Comm: syz.3.66 Not tainted syzkaller #0 PREEMPT(full) 
[  112.364758][ T6238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  112.364768][ T6238] Call Trace:
[  112.364773][ T6238]  <TASK>
[  112.364778][ T6238]  dump_stack_lvl+0x16c/0x1f0
[  112.364800][ T6238]  should_fail_ex+0x512/0x640
[  112.364823][ T6238]  ? __kmalloc_cache_noprof+0x5f/0x800
[  112.364841][ T6238]  should_failslab+0xc2/0x120
[  112.364863][ T6238]  __kmalloc_cache_noprof+0x80/0x800
[  112.364878][ T6238]  ? rcu_is_watching+0x12/0xc0
[  112.364896][ T6238]  ? __request_module+0x2ad/0x660
[  112.364913][ T6238]  ? lockdep_hardirqs_on+0x7c/0x110
[  112.364932][ T6238]  ? __request_module+0x2ad/0x660
[  112.364949][ T6238]  __request_module+0x2ad/0x660
[  112.364966][ T6238]  ? __pfx___request_module+0x10/0x10
[  112.364992][ T6238]  ? find_held_lock+0x2b/0x80
[  112.365015][ T6238]  inet_create+0xa97/0x1040
[  112.365030][ T6238]  ? inet_create+0x93/0x1040
[  112.365045][ T6238]  __sock_create+0x339/0x8a0
[  112.365068][ T6238]  __sys_socket+0x14d/0x260
[  112.365086][ T6238]  ? fput+0x70/0xf0
[  112.365099][ T6238]  ? __pfx___sys_socket+0x10/0x10
[  112.365118][ T6238]  ? xfd_validate_state+0x61/0x180
[  112.365130][ T6238]  ? __pfx_ksys_write+0x10/0x10
[  112.365154][ T6238]  __x64_sys_socket+0x72/0xb0
[  112.365172][ T6238]  ? lockdep_hardirqs_on+0x7c/0x110
[  112.365188][ T6238]  do_syscall_64+0xcd/0xf80
[  112.365213][ T6238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.365228][ T6238] RIP: 0033:0x7fdbfaf8f7c9
[  112.365241][ T6238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.365255][ T6238] RSP: 002b:00007fdbfbe71038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  112.365269][ T6238] RAX: ffffffffffffffda RBX: 00007fdbfb1e5fa0 RCX: 00007fdbfaf8f7c9
[  112.365279][ T6238] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000002
[  112.365287][ T6238] RBP: 00007fdbfb013f91 R08: 0000000000000000 R09: 0000000000000000
[  112.365295][ T6238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  112.365303][ T6238] R13: 00007fdbfb1e6038 R14: 00007fdbfb1e5fa0 R15: 00007ffee869a688
[  112.365322][ T6238]  </TASK>
[  113.708953][ T6260] binder: BINDER_SET_CONTEXT_MGR already set
[  113.785079][ T6260] binder: 6259:6260 ioctl 4018620d 9 returned -16
[  114.328894][ T6275] mmap: syz.3.75 (6275) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  114.786208][ T6272] capability: warning: `syz.0.73' uses 32-bit capabilities (legacy support in use)
[  115.474780][ T6287] binder: BINDER_SET_CONTEXT_MGR already set
[  115.481971][ T6287] binder: 6279:6287 ioctl 4018620d 9 returned -16
[  116.906802][ T6318] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  117.629711][ T6337] netlink: 'syz.2.84': attribute type 27 has an invalid length.
[  117.916371][ T6337] netlink: 'syz.2.84': attribute type 28 has an invalid length.
[  117.956365][ T6337] netlink: 'syz.2.84': attribute type 29 has an invalid length.
[  117.964231][ T6337] netlink: 'syz.2.84': attribute type 30 has an invalid length.
[  118.006492][ T6337] netlink: 'syz.2.84': attribute type 31 has an invalid length.
[  118.056218][ T6337] netlink: 'syz.2.84': attribute type 32 has an invalid length.
[  118.066402][ T6337] netlink: 'syz.2.84': attribute type 33 has an invalid length.
[  118.086804][ T6337] netlink: 'syz.2.84': attribute type 35 has an invalid length.
[  118.102439][ T6337] netlink: 'syz.2.84': attribute type 37 has an invalid length.
[  118.140903][ T6337] netlink: 18 bytes leftover after parsing attributes in process `syz.2.84'.
[  118.187495][ T6343] FAULT_INJECTION: forcing a failure.
[  118.187495][ T6343] name failslab, interval 1, probability 0, space 0, times 0
[  118.236931][ T6343] CPU: 1 UID: 0 PID: 6343 Comm: syz.1.85 Not tainted syzkaller #0 PREEMPT(full) 
[  118.236975][ T6343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  118.236990][ T6343] Call Trace:
[  118.236998][ T6343]  <TASK>
[  118.237007][ T6343]  dump_stack_lvl+0x16c/0x1f0
[  118.237041][ T6343]  should_fail_ex+0x512/0x640
[  118.237076][ T6343]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  118.237110][ T6343]  should_failslab+0xc2/0x120
[  118.237147][ T6343]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  118.237178][ T6343]  ? shmem_alloc_inode+0x25/0x50
[  118.237218][ T6343]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  118.237248][ T6343]  ? shmem_alloc_inode+0x25/0x50
[  118.237277][ T6343]  shmem_alloc_inode+0x25/0x50
[  118.237311][ T6343]  alloc_inode+0x64/0x240
[  118.237334][ T6343]  new_inode+0x22/0x1c0
[  118.237363][ T6343]  shmem_get_inode+0x19a/0xfb0
[  118.237399][ T6343]  ? __vm_enough_memory+0x184/0x3f0
[  118.237436][ T6343]  __shmem_file_setup+0x290/0x350
[  118.237476][ T6343]  shmem_zero_setup+0x93/0x1b0
[  118.237507][ T6343]  __mmap_region+0x2271/0x2a00
[  118.237545][ T6343]  ? __lock_acquire+0x436/0x2890
[  118.237567][ T6343]  ? __pfx___mmap_region+0x10/0x10
[  118.237618][ T6343]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  118.237656][ T6343]  ? is_bpf_text_address+0x94/0x1a0
[  118.237758][ T6343]  ? rcu_is_watching+0x12/0xc0
[  118.237801][ T6343]  mmap_region+0x1ab/0x3f0
[  118.237831][ T6343]  ? __get_unmapped_area+0x267/0x3f0
[  118.237869][ T6343]  do_mmap+0xa3e/0x1210
[  118.237906][ T6343]  ? __pfx_do_mmap+0x10/0x10
[  118.237940][ T6343]  ? __pfx_down_write_killable+0x10/0x10
[  118.237981][ T6343]  vm_mmap_pgoff+0x29e/0x470
[  118.238023][ T6343]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  118.238062][ T6343]  ? __fget_files+0x20e/0x3c0
[  118.238108][ T6343]  ksys_mmap_pgoff+0x7d/0x5c0
[  118.238144][ T6343]  ? __pfx_ksys_write+0x10/0x10
[  118.238185][ T6343]  __x64_sys_mmap+0x125/0x190
[  118.238217][ T6343]  do_syscall_64+0xcd/0xf80
[  118.238251][ T6343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.238278][ T6343] RIP: 0033:0x7f6b1f38f7c9
[  118.238300][ T6343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.238324][ T6343] RSP: 002b:00007f6b2025a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  118.238349][ T6343] RAX: ffffffffffffffda RBX: 00007f6b1f5e5fa0 RCX: 00007f6b1f38f7c9
[  118.238367][ T6343] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000
[  118.238383][ T6343] RBP: 00007f6b2025a090 R08: 0000000000000401 R09: 0000000000008000
[  118.238399][ T6343] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001
[  118.238415][ T6343] R13: 00007f6b1f5e6038 R14: 00007f6b1f5e5fa0 R15: 00007ffcc1936458
[  118.238452][ T6343]  </TASK>
[  119.426377][ T6384] FAULT_INJECTION: forcing a failure.
[  119.426377][ T6384] name failslab, interval 1, probability 0, space 0, times 0
[  119.470032][ T6384] CPU: 0 UID: 0 PID: 6384 Comm: syz.0.91 Not tainted syzkaller #0 PREEMPT(full) 
[  119.470066][ T6384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  119.470080][ T6384] Call Trace:
[  119.470088][ T6384]  <TASK>
[  119.470098][ T6384]  dump_stack_lvl+0x16c/0x1f0
[  119.470135][ T6384]  should_fail_ex+0x512/0x640
[  119.470174][ T6384]  ? kmem_cache_alloc_noprof+0x62/0x770
[  119.470209][ T6384]  should_failslab+0xc2/0x120
[  119.470248][ T6384]  kmem_cache_alloc_noprof+0x83/0x770
[  119.470277][ T6384]  ? arch_stack_walk+0xa6/0x100
[  119.470308][ T6384]  ? alloc_empty_file+0x55/0x1e0
[  119.470358][ T6384]  ? alloc_empty_file+0x55/0x1e0
[  119.470385][ T6384]  alloc_empty_file+0x55/0x1e0
[  119.470414][ T6384]  path_openat+0xde/0x3140
[  119.470452][ T6384]  ? __pfx_stack_trace_save+0x10/0x10
[  119.470493][ T6384]  ? stack_depot_save_flags+0x29/0x9b0
[  119.470539][ T6384]  ? __pfx_path_openat+0x10/0x10
[  119.470574][ T6384]  ? kasan_save_stack+0x42/0x60
[  119.470612][ T6384]  ? kasan_save_stack+0x33/0x60
[  119.470643][ T6384]  ? kasan_save_track+0x14/0x30
[  119.470675][ T6384]  ? __kasan_slab_alloc+0x89/0x90
[  119.470710][ T6384]  ? kmem_cache_alloc_noprof+0x25e/0x770
[  119.470739][ T6384]  ? getname_flags.part.0+0x4c/0x550
[  119.470765][ T6384]  ? getname_flags+0x93/0xf0
[  119.470796][ T6384]  ? acct_on+0x82/0xa00
[  119.470828][ T6384]  ? __x64_sys_acct+0x81/0x1e0
[  119.470860][ T6384]  ? do_syscall_64+0xcd/0xf80
[  119.470891][ T6384]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.470924][ T6384]  do_filp_open+0x20b/0x470
[  119.470964][ T6384]  ? __pfx_do_filp_open+0x10/0x10
[  119.471033][ T6384]  ? find_held_lock+0x2b/0x80
[  119.471066][ T6384]  ? __might_fault+0xe3/0x190
[  119.471095][ T6384]  ? __might_fault+0xe3/0x190
[  119.471122][ T6384]  ? __might_fault+0x13b/0x190
[  119.471158][ T6384]  file_open_name+0x2a3/0x450
[  119.471190][ T6384]  ? __pfx_file_open_name+0x10/0x10
[  119.471224][ T6384]  ? getname_flags.part.0+0x1c5/0x550
[  119.471260][ T6384]  acct_on+0xc7/0xa00
[  119.471295][ T6384]  ? __pfx_acct_on+0x10/0x10
[  119.471331][ T6384]  ? bpf_lsm_capable+0x9/0x10
[  119.471374][ T6384]  __x64_sys_acct+0x81/0x1e0
[  119.471407][ T6384]  ? lockdep_hardirqs_on+0x7c/0x110
[  119.471439][ T6384]  do_syscall_64+0xcd/0xf80
[  119.471474][ T6384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.471501][ T6384] RIP: 0033:0x7fbd7138f7c9
[  119.471523][ T6384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.471546][ T6384] RSP: 002b:00007fbd72286038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[  119.471572][ T6384] RAX: ffffffffffffffda RBX: 00007fbd715e6090 RCX: 00007fbd7138f7c9
[  119.471590][ T6384] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[  119.471612][ T6384] RBP: 00007fbd72286090 R08: 0000000000000000 R09: 0000000000000000
[  119.471629][ T6384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.471645][ T6384] R13: 00007fbd715e6128 R14: 00007fbd715e6090 R15: 00007fffe3d59c78
[  119.471682][ T6384]  </TASK>
[  120.473419][ T6389] FAULT_INJECTION: forcing a failure.
[  120.473419][ T6389] name failslab, interval 1, probability 0, space 0, times 0
[  120.486552][ T6389] CPU: 1 UID: 0 PID: 6389 Comm: syz.0.93 Not tainted syzkaller #0 PREEMPT(full) 
[  120.486591][ T6389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  120.486610][ T6389] Call Trace:
[  120.486620][ T6389]  <TASK>
[  120.486631][ T6389]  dump_stack_lvl+0x16c/0x1f0
[  120.486672][ T6389]  should_fail_ex+0x512/0x640
[  120.486714][ T6389]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  120.486753][ T6389]  should_failslab+0xc2/0x120
[  120.486795][ T6389]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  120.486829][ T6389]  ? __d_lookup+0x25c/0x4a0
[  120.486861][ T6389]  ? __d_alloc+0x35/0xa80
[  120.486908][ T6389]  ? __d_alloc+0x35/0xa80
[  120.486949][ T6389]  __d_alloc+0x35/0xa80
[  120.486996][ T6389]  d_alloc+0x4a/0x1e0
[  120.487040][ T6389]  lookup_one_qstr_excl+0x175/0x250
[  120.487070][ T6389]  ? mnt_want_write+0x161/0x450
[  120.487107][ T6389]  filename_create+0x1cf/0x400
[  120.487143][ T6389]  ? __pfx_filename_create+0x10/0x10
[  120.487185][ T6389]  ? find_held_lock+0x2b/0x80
[  120.487218][ T6389]  ? __might_fault+0xe3/0x190
[  120.487253][ T6389]  do_mknodat+0x19c/0x6f0
[  120.487286][ T6389]  ? __pfx_do_mknodat+0x10/0x10
[  120.487325][ T6389]  ? getname_flags.part.0+0x1c5/0x550
[  120.487364][ T6389]  __x64_sys_mknod+0x87/0xb0
[  120.487404][ T6389]  do_syscall_64+0xcd/0xf80
[  120.487441][ T6389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.487477][ T6389] RIP: 0033:0x7fbd7138f7c9
[  120.487496][ T6389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.487527][ T6389] RSP: 002b:00007fbd722a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  120.487553][ T6389] RAX: ffffffffffffffda RBX: 00007fbd715e5fa0 RCX: 00007fbd7138f7c9
[  120.487570][ T6389] RDX: 0000000000000103 RSI: 0000000000000007 RDI: 00002000000003c0
[  120.487587][ T6389] RBP: 00007fbd71413f91 R08: 0000000000000000 R09: 0000000000000000
[  120.487603][ T6389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  120.487619][ T6389] R13: 00007fbd715e6038 R14: 00007fbd715e5fa0 R15: 00007fffe3d59c78
[  120.487656][ T6389]  </TASK>
[  120.798725][ T6393] program syz.0.93 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  120.983095][ T6393] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  121.002900][ T6397] FAULT_INJECTION: forcing a failure.
[  121.002900][ T6397] name fail_futex, interval 1, probability 0, space 0, times 1
[  121.034365][ T6397] CPU: 1 UID: 0 PID: 6397 Comm: syz.1.92 Not tainted syzkaller #0 PREEMPT(full) 
[  121.034406][ T6397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  121.034423][ T6397] Call Trace:
[  121.034433][ T6397]  <TASK>
[  121.034444][ T6397]  dump_stack_lvl+0x16c/0x1f0
[  121.034485][ T6397]  should_fail_ex+0x512/0x640
[  121.034531][ T6397]  get_futex_key+0x1d0/0x15f0
[  121.034566][ T6397]  ? __pfx_get_futex_key+0x10/0x10
[  121.034595][ T6397]  ? register_lock_class+0x41/0x4b0
[  121.034622][ T6397]  ? commit_creds+0x755/0x10e0
[  121.034660][ T6397]  futex_wake+0xea/0x530
[  121.034701][ T6397]  ? __pfx_futex_wake+0x10/0x10
[  121.034754][ T6397]  do_futex+0x1e3/0x350
[  121.034792][ T6397]  ? __pfx_do_futex+0x10/0x10
[  121.034824][ T6397]  ? down_write+0x14d/0x200
[  121.034867][ T6397]  __x64_sys_futex+0x1e0/0x4c0
[  121.034901][ T6397]  ? native_tss_update_io_bitmap+0x3e1/0x740
[  121.034933][ T6397]  ? __pfx___x64_sys_futex+0x10/0x10
[  121.034964][ T6397]  ? xfd_validate_state+0x61/0x180
[  121.034988][ T6397]  ? __pfx_ksys_write+0x10/0x10
[  121.035036][ T6397]  do_syscall_64+0xcd/0xf80
[  121.035072][ T6397]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.035101][ T6397] RIP: 0033:0x7f6b1f38f7c9
[  121.035124][ T6397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.035150][ T6397] RSP: 002b:00007f6b2025a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  121.035177][ T6397] RAX: ffffffffffffffda RBX: 00007f6b1f5e5fa8 RCX: 00007f6b1f38f7c9
[  121.035334][ T6397] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6b1f5e5fac
[  121.035353][ T6397] RBP: 00007f6b1f5e5fa0 R08: 00007f6b2025b000 R09: 0000000000000000
[  121.035372][ T6397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  121.035390][ T6397] R13: 00007f6b1f5e6038 R14: 00007ffcc1936370 R15: 00007ffcc1936458
[  121.035431][ T6397]  </TASK>
[  122.089911][ T6411] binder: BINDER_SET_CONTEXT_MGR already set
[  122.095944][ T6411] binder: 6404:6411 ioctl 4018620d 9 returned -16
[  123.198011][ T6442] binder: BINDER_SET_CONTEXT_MGR already set
[  123.209013][ T6442] binder: 6434:6442 ioctl 4018620d 9 returned -16
[  123.291137][ T6433] binder: BINDER_SET_CONTEXT_MGR already set
[  123.297897][ T6433] binder: 6428:6433 ioctl 4018620d 9 returned -16
[  123.544850][ T6449] FAULT_INJECTION: forcing a failure.
[  123.544850][ T6449] name failslab, interval 1, probability 0, space 0, times 0
[  123.589584][ T6449] CPU: 0 UID: 0 PID: 6449 Comm: syz.0.99 Not tainted syzkaller #0 PREEMPT(full) 
[  123.589618][ T6449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  123.589632][ T6449] Call Trace:
[  123.589639][ T6449]  <TASK>
[  123.589646][ T6449]  dump_stack_lvl+0x16c/0x1f0
[  123.589669][ T6449]  should_fail_ex+0x512/0x640
[  123.589691][ T6449]  ? __kmalloc_cache_noprof+0x5f/0x800
[  123.589709][ T6449]  should_failslab+0xc2/0x120
[  123.589730][ T6449]  __kmalloc_cache_noprof+0x80/0x800
[  123.589746][ T6449]  ? __vb2_init_fileio+0x253/0x1100
[  123.589771][ T6449]  ? __vb2_init_fileio+0x253/0x1100
[  123.589792][ T6449]  __vb2_init_fileio+0x253/0x1100
[  123.589812][ T6449]  ? vb2_fop_read+0xe6/0x3e0
[  123.589836][ T6449]  __vb2_perform_fileio+0x9c2/0x1660
[  123.589862][ T6449]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  123.589884][ T6449]  ? get_pid_task+0xfc/0x250
[  123.589900][ T6449]  vb2_fop_read+0x215/0x3e0
[  123.589944][ T6449]  v4l2_read+0x229/0x360
[  123.589959][ T6449]  ? __pfx_v4l2_read+0x10/0x10
[  123.589975][ T6449]  vfs_read+0x1e4/0xcf0
[  123.589997][ T6449]  ? __pfx_vfs_read+0x10/0x10
[  123.590014][ T6449]  ? find_held_lock+0x2b/0x80
[  123.590033][ T6449]  ? __fget_files+0x204/0x3c0
[  123.590054][ T6449]  ? __fget_files+0x20e/0x3c0
[  123.590078][ T6449]  ksys_read+0x12a/0x250
[  123.590096][ T6449]  ? __pfx_ksys_read+0x10/0x10
[  123.590120][ T6449]  do_syscall_64+0xcd/0xf80
[  123.590139][ T6449]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.590153][ T6449] RIP: 0033:0x7fbd7138f7c9
[  123.590166][ T6449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.590179][ T6449] RSP: 002b:00007fbd72244038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  123.590192][ T6449] RAX: ffffffffffffffda RBX: 00007fbd715e6270 RCX: 00007fbd7138f7c9
[  123.590202][ T6449] RDX: 00000000000000c2 RSI: 0000200000000000 RDI: 000000000000000b
[  123.590210][ T6449] RBP: 00007fbd72244090 R08: 0000000000000000 R09: 0000000000000000
[  123.590218][ T6449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.590226][ T6449] R13: 00007fbd715e6308 R14: 00007fbd715e6270 R15: 00007fffe3d59c78
[  123.590250][ T6449]  </TASK>
[  124.368771][ T6463] netlink: zone id is out of range
[  124.423865][ T6463] netlink: zone id is out of range
[  124.446405][ T6463] netlink: get zone limit has 4 unknown bytes
[  124.677582][ T6468] FAULT_INJECTION: forcing a failure.
[  124.677582][ T6468] name failslab, interval 1, probability 0, space 0, times 0
[  124.749786][ T6468] CPU: 1 UID: 0 PID: 6468 Comm: syz.0.103 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  124.749836][ T6468] Tainted: [L]=SOFTLOCKUP
[  124.749842][ T6468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  124.749851][ T6468] Call Trace:
[  124.749856][ T6468]  <TASK>
[  124.749863][ T6468]  dump_stack_lvl+0x16c/0x1f0
[  124.749885][ T6468]  should_fail_ex+0x512/0x640
[  124.749908][ T6468]  ? kmem_cache_alloc_noprof+0x62/0x770
[  124.749928][ T6468]  should_failslab+0xc2/0x120
[  124.749950][ T6468]  kmem_cache_alloc_noprof+0x83/0x770
[  124.749966][ T6468]  ? key_alloc+0x3e0/0x1330
[  124.749984][ T6468]  ? key_alloc+0x3e0/0x1330
[  124.749996][ T6468]  key_alloc+0x3e0/0x1330
[  124.750016][ T6468]  ? __pfx_key_alloc+0x10/0x10
[  124.750031][ T6468]  ? apparmor_cred_prepare+0x173/0x370
[  124.750054][ T6468]  keyring_alloc+0x44/0xc0
[  124.750072][ T6468]  lookup_user_key+0xc51/0x1300
[  124.750097][ T6468]  ? __pfx_lookup_user_key+0x10/0x10
[  124.750118][ T6468]  ? vfs_write+0x15d/0x11d0
[  124.750141][ T6468]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  124.750167][ T6468]  ? __fput+0x68d/0xb70
[  124.750182][ T6468]  keyctl_setperm_key+0x9d/0x3a0
[  124.750203][ T6468]  ? __pfx_keyctl_setperm_key+0x10/0x10
[  124.750223][ T6468]  ? xfd_validate_state+0x61/0x180
[  124.750236][ T6468]  ? __pfx_ksys_write+0x10/0x10
[  124.750258][ T6468]  __do_sys_keyctl+0x29a/0x590
[  124.750279][ T6468]  do_syscall_64+0xcd/0xf80
[  124.750297][ T6468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.750312][ T6468] RIP: 0033:0x7fbd7138f7c9
[  124.750324][ T6468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.750338][ T6468] RSP: 002b:00007fbd722a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  124.750352][ T6468] RAX: ffffffffffffffda RBX: 00007fbd715e5fa0 RCX: 00007fbd7138f7c9
[  124.750361][ T6468] RDX: 0000000000000005 RSI: ffffffffffffffff RDI: 0000000000000005
[  124.750370][ T6468] RBP: 00007fbd71413f91 R08: 0000000000000008 R09: 0000000000000000
[  124.750378][ T6468] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  124.750386][ T6468] R13: 00007fbd715e6038 R14: 00007fbd715e5fa0 R15: 00007fffe3d59c78
[  124.750405][ T6468]  </TASK>
[  125.460291][ T6479] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  126.770613][ T6502] FAULT_INJECTION: forcing a failure.
[  126.770613][ T6502] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  126.802422][ T5837] Bluetooth: hci1: unexpected subevent 0x04 length: 122 > 11
[  126.891320][ T6502] CPU: 1 UID: 0 PID: 6502 Comm: syz.0.109 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  126.891368][ T6502] Tainted: [L]=SOFTLOCKUP
[  126.891377][ T6502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  126.891393][ T6502] Call Trace:
[  126.891402][ T6502]  <TASK>
[  126.891412][ T6502]  dump_stack_lvl+0x16c/0x1f0
[  126.891451][ T6502]  should_fail_ex+0x512/0x640
[  126.891500][ T6502]  should_fail_alloc_page+0xe7/0x130
[  126.891543][ T6502]  prepare_alloc_pages+0x401/0x670
[  126.891591][ T6502]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  126.891627][ T6502]  ? trace_mm_page_alloc+0x11b/0x180
[  126.891672][ T6502]  ? kasan_save_stack+0x42/0x60
[  126.891706][ T6502]  ? kasan_save_stack+0x33/0x60
[  126.891738][ T6502]  ? kasan_save_track+0x14/0x30
[  126.891772][ T6502]  ? __kasan_slab_alloc+0x89/0x90
[  126.891805][ T6502]  ? kmem_cache_alloc_noprof+0x25e/0x770
[  126.891836][ T6502]  ? __pmd_alloc+0xbf/0x9c0
[  126.891883][ T6502]  ? __handle_mm_fault+0xbeb/0x2bb0
[  126.891911][ T6502]  ? handle_mm_fault+0x3fe/0xad0
[  126.891937][ T6502]  ? do_user_addr_fault+0x7a6/0x1370
[  126.891971][ T6502]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  126.892002][ T6502]  ? getname_flags.part.0+0x8f/0x550
[  126.892049][ T6502]  ? do_sys_openat2+0xb8/0x280
[  126.892079][ T6502]  ? do_syscall_64+0xcd/0xf80
[  126.892111][ T6502]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.892160][ T6502]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  126.892203][ T6502]  ? policy_nodemask+0xea/0x4e0
[  126.892247][ T6502]  alloc_pages_mpol+0x1fb/0x550
[  126.892289][ T6502]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  126.892340][ T6502]  alloc_pages_noprof+0x131/0x390
[  126.892382][ T6502]  pte_alloc_one+0x1e/0x3d0
[  126.892419][ T6502]  do_fault+0x8b8/0x1ad0
[  126.892457][ T6502]  ? __pfx_filemap_map_pages+0x10/0x10
[  126.892485][ T6502]  ? __pmd_alloc+0x6aa/0x9c0
[  126.892527][ T6502]  __handle_mm_fault+0x1919/0x2bb0
[  126.892575][ T6502]  ? __pfx___handle_mm_fault+0x10/0x10
[  126.892627][ T6502]  ? find_vma+0xbf/0x140
[  126.892663][ T6502]  ? __pfx_find_vma+0x10/0x10
[  126.892701][ T6502]  handle_mm_fault+0x3fe/0xad0
[  126.892736][ T6502]  do_user_addr_fault+0x7a6/0x1370
[  126.892774][ T6502]  ? rcu_is_watching+0x12/0xc0
[  126.892816][ T6502]  exc_page_fault+0x64/0xc0
[  126.892849][ T6502]  asm_exc_page_fault+0x26/0x30
[  126.892883][ T6502] RIP: 0010:strncpy_from_user+0x147/0x2e0
[  126.892923][ T6502] Code: 00 00 4d 89 74 1d 00 48 83 ed 08 bf 07 00 00 00 48 83 c3 08 48 89 ee e8 47 3b e0 fc 48 83 fd 07 76 22 e8 6c 40 e0 fc 45 31 ff <49> 8b 04 1c 31 ff 44 89 fe 49 89 c6 e8 f8 3a e0 fc 45 85 ff 0f 84
[  126.892950][ T6502] RSP: 0018:ffffc9000c2dfd00 EFLAGS: 00050246
[  126.892972][ T6502] RAX: 0000000000000038 RBX: 0000000000000000 RCX: ffffc9000c331000
[  126.892990][ T6502] RDX: 0000000000080000 RSI: ffffffff84de0584 RDI: 0000000000000007
[  126.893008][ T6502] RBP: 0000000000000fe0 R08: 0000000000000007 R09: 0000000000000007
[  126.893025][ T6502] R10: 0000000000000fe0 R11: 0000000000000000 R12: 0000000000000000
[  126.893041][ T6502] R13: ffff888023340020 R14: 0000000000000fe0 R15: 0000000000000000
[  126.893070][ T6502]  ? strncpy_from_user+0x144/0x2e0
[  126.893120][ T6502]  getname_flags.part.0+0x8f/0x550
[  126.893155][ T6502]  getname_flags+0x93/0xf0
[  126.893188][ T6502]  do_sys_openat2+0xb8/0x280
[  126.893218][ T6502]  ? __pfx_do_sys_openat2+0x10/0x10
[  126.893262][ T6502]  __x64_sys_openat+0x174/0x210
[  126.893294][ T6502]  ? __pfx___x64_sys_openat+0x10/0x10
[  126.893341][ T6502]  do_syscall_64+0xcd/0xf80
[  126.893377][ T6502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.893404][ T6502] RIP: 0033:0x7fbd7138f7c9
[  126.893426][ T6502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.893451][ T6502] RSP: 002b:00007fbd722a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  126.893476][ T6502] RAX: ffffffffffffffda RBX: 00007fbd715e5fa0 RCX: 00007fbd7138f7c9
[  126.893496][ T6502] RDX: 0000000000000002 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  126.893513][ T6502] RBP: 00007fbd71413f91 R08: 0000000000000000 R09: 0000000000000000
[  126.893531][ T6502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  126.893548][ T6502] R13: 00007fbd715e6038 R14: 00007fbd715e5fa0 R15: 00007fffe3d59c78
[  126.893586][ T6502]  </TASK>
[  128.245449][ T6514] FAULT_INJECTION: forcing a failure.
[  128.245449][ T6514] name failslab, interval 1, probability 0, space 0, times 0
[  128.288767][ T6514] CPU: 1 UID: 0 PID: 6514 Comm: syz.3.112 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  128.288811][ T6514] Tainted: [L]=SOFTLOCKUP
[  128.288821][ T6514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  128.288839][ T6514] Call Trace:
[  128.288849][ T6514]  <TASK>
[  128.288860][ T6514]  dump_stack_lvl+0x16c/0x1f0
[  128.288904][ T6514]  should_fail_ex+0x512/0x640
[  128.288946][ T6514]  ? kmem_cache_alloc_noprof+0x62/0x770
[  128.288983][ T6514]  should_failslab+0xc2/0x120
[  128.289026][ T6514]  kmem_cache_alloc_noprof+0x83/0x770
[  128.289057][ T6514]  ? key_alloc+0x3e0/0x1330
[  128.289089][ T6514]  ? key_alloc+0x3e0/0x1330
[  128.289113][ T6514]  key_alloc+0x3e0/0x1330
[  128.289153][ T6514]  ? __pfx_key_alloc+0x10/0x10
[  128.289183][ T6514]  ? apparmor_cred_prepare+0x173/0x370
[  128.289226][ T6514]  keyring_alloc+0x44/0xc0
[  128.289261][ T6514]  lookup_user_key+0xc51/0x1300
[  128.289309][ T6514]  ? __pfx_lookup_user_key+0x10/0x10
[  128.289350][ T6514]  ? vfs_write+0x15d/0x11d0
[  128.289393][ T6514]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  128.289465][ T6514]  ? __fput+0x68d/0xb70
[  128.289504][ T6514]  keyctl_setperm_key+0x9d/0x3a0
[  128.289545][ T6514]  ? __pfx_keyctl_setperm_key+0x10/0x10
[  128.289584][ T6514]  ? xfd_validate_state+0x61/0x180
[  128.289608][ T6514]  ? __pfx_ksys_write+0x10/0x10
[  128.289649][ T6514]  __do_sys_keyctl+0x29a/0x590
[  128.289691][ T6514]  do_syscall_64+0xcd/0xf80
[  128.289724][ T6514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.289752][ T6514] RIP: 0033:0x7fdbfaf8f7c9
[  128.289774][ T6514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.289798][ T6514] RSP: 002b:00007fdbfbe71038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  128.289826][ T6514] RAX: ffffffffffffffda RBX: 00007fdbfb1e5fa0 RCX: 00007fdbfaf8f7c9
[  128.289843][ T6514] RDX: 0000000000000005 RSI: ffffffffffffffff RDI: 0000000000000005
[  128.289858][ T6514] RBP: 00007fdbfb013f91 R08: 0000000000000008 R09: 0000000000000000
[  128.289873][ T6514] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  128.289888][ T6514] R13: 00007fdbfb1e6038 R14: 00007fdbfb1e5fa0 R15: 00007ffee869a688
[  128.289926][ T6514]  </TASK>
[  128.940955][ T6523] netlink: 'syz.1.115': attribute type 4 has an invalid length.
[  128.969467][ T6523] netlink: 314 bytes leftover after parsing attributes in process `syz.1.115'.
[  129.526275][ T6533] binder: BINDER_SET_CONTEXT_MGR already set
[  129.532748][ T6533] binder: 6526:6533 ioctl 4018620d 9 returned -16
[  132.023456][ T6562] random: crng reseeded on system resumption
[  132.361111][ T6570] FAULT_INJECTION: forcing a failure.
[  132.361111][ T6570] name failslab, interval 1, probability 0, space 0, times 0
[  132.382653][ T6570] CPU: 0 UID: 0 PID: 6570 Comm: syz.1.126 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  132.382679][ T6570] Tainted: [L]=SOFTLOCKUP
[  132.382684][ T6570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  132.382692][ T6570] Call Trace:
[  132.382697][ T6570]  <TASK>
[  132.382703][ T6570]  dump_stack_lvl+0x16c/0x1f0
[  132.382726][ T6570]  should_fail_ex+0x512/0x640
[  132.382748][ T6570]  ? kmem_cache_alloc_noprof+0x62/0x770
[  132.382769][ T6570]  should_failslab+0xc2/0x120
[  132.382795][ T6570]  kmem_cache_alloc_noprof+0x83/0x770
[  132.382811][ T6570]  ? key_alloc+0x3e0/0x1330
[  132.382829][ T6570]  ? key_alloc+0x3e0/0x1330
[  132.382841][ T6570]  key_alloc+0x3e0/0x1330
[  132.382861][ T6570]  ? __pfx_key_alloc+0x10/0x10
[  132.382876][ T6570]  ? apparmor_cred_prepare+0x173/0x370
[  132.382899][ T6570]  keyring_alloc+0x44/0xc0
[  132.382917][ T6570]  lookup_user_key+0xc51/0x1300
[  132.382942][ T6570]  ? __pfx_lookup_user_key+0x10/0x10
[  132.382963][ T6570]  ? vfs_write+0x15d/0x11d0
[  132.382986][ T6570]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  132.383015][ T6570]  ? __fput+0x68d/0xb70
[  132.383031][ T6570]  keyctl_setperm_key+0x9d/0x3a0
[  132.383053][ T6570]  ? __pfx_keyctl_setperm_key+0x10/0x10
[  132.383076][ T6570]  ? xfd_validate_state+0x61/0x180
[  132.383089][ T6570]  ? __pfx_ksys_write+0x10/0x10
[  132.383119][ T6570]  __do_sys_keyctl+0x29a/0x590
[  132.383143][ T6570]  do_syscall_64+0xcd/0xf80
[  132.383168][ T6570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.383183][ T6570] RIP: 0033:0x7f6b1f38f7c9
[  132.383196][ T6570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.383210][ T6570] RSP: 002b:00007f6b2025a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  132.383224][ T6570] RAX: ffffffffffffffda RBX: 00007f6b1f5e5fa0 RCX: 00007f6b1f38f7c9
[  132.383234][ T6570] RDX: 0000000000000005 RSI: ffffffffffffffff RDI: 0000000000000005
[  132.383242][ T6570] RBP: 00007f6b1f413f91 R08: 0000000000000008 R09: 0000000000000000
[  132.383251][ T6570] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  132.383260][ T6570] R13: 00007f6b1f5e6038 R14: 00007f6b1f5e5fa0 R15: 00007ffcc1936458
[  132.383281][ T6570]  </TASK>
[  134.713430][ T6593] FAULT_INJECTION: forcing a failure.
[  134.713430][ T6593] name failslab, interval 1, probability 0, space 0, times 0
[  134.833285][ T6593] CPU: 1 UID: 0 PID: 6593 Comm: syz.2.133 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  134.833311][ T6593] Tainted: [L]=SOFTLOCKUP
[  134.833317][ T6593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  134.833325][ T6593] Call Trace:
[  134.833331][ T6593]  <TASK>
[  134.833337][ T6593]  dump_stack_lvl+0x16c/0x1f0
[  134.833359][ T6593]  should_fail_ex+0x512/0x640
[  134.833383][ T6593]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[  134.833404][ T6593]  should_failslab+0xc2/0x120
[  134.833426][ T6593]  kmem_cache_alloc_node_noprof+0x86/0x800
[  134.833443][ T6593]  ? __alloc_skb+0x156/0x410
[  134.833469][ T6593]  ? __alloc_skb+0x156/0x410
[  134.833488][ T6593]  __alloc_skb+0x156/0x410
[  134.833507][ T6593]  ? __alloc_skb+0x35d/0x410
[  134.833527][ T6593]  ? __pfx___alloc_skb+0x10/0x10
[  134.833550][ T6593]  ? kfree+0x2f8/0x6e0
[  134.833564][ T6593]  ? mpls_dev_notify+0x72b/0x9d0
[  134.833584][ T6593]  mpls_netconf_notify_devconf+0x4a/0x110
[  134.833602][ T6593]  mpls_dev_notify+0x73e/0x9d0
[  134.833620][ T6593]  notifier_call_chain+0xbc/0x3e0
[  134.833642][ T6593]  ? __pfx_mpls_dev_notify+0x10/0x10
[  134.833662][ T6593]  call_netdevice_notifiers_info+0xbe/0x110
[  134.833683][ T6593]  unregister_netdevice_many_notify+0xf81/0x2590
[  134.833708][ T6593]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  134.833726][ T6593]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  134.833755][ T6593]  unregister_netdevice_queue+0x305/0x3c0
[  134.833776][ T6593]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  134.833794][ T6593]  ? __pfx_locks_remove_file+0x10/0x10
[  134.833814][ T6593]  ? kmem_cache_free+0x171/0x770
[  134.833833][ T6593]  ? __pfx_ppp_release+0x10/0x10
[  134.833850][ T6593]  ppp_release+0x209/0x230
[  134.833867][ T6593]  __fput+0x402/0xb70
[  134.833885][ T6593]  task_work_run+0x150/0x240
[  134.833901][ T6593]  ? __pfx_task_work_run+0x10/0x10
[  134.833915][ T6593]  ? __do_sys_close_range+0x278/0x730
[  134.833941][ T6593]  exit_to_user_mode_loop+0xfb/0x540
[  134.833962][ T6593]  do_syscall_64+0x4ee/0xf80
[  134.833981][ T6593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.833995][ T6593] RIP: 0033:0x7fa78f78f7c9
[  134.834016][ T6593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.834031][ T6593] RSP: 002b:00007fa79057a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  134.834045][ T6593] RAX: 0000000000000000 RBX: 00007fa78f9e5fa0 RCX: 00007fa78f78f7c9
[  134.834056][ T6593] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  134.834064][ T6593] RBP: 00007fa78f813f91 R08: 0000000000000000 R09: 0000000000000000
[  134.834073][ T6593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  134.834081][ T6593] R13: 00007fa78f9e6038 R14: 00007fa78f9e5fa0 R15: 00007ffe32e98e98
[  134.834102][ T6593]  </TASK>
[  135.587467][ T6588] binder: BINDER_SET_CONTEXT_MGR already set
[  135.632356][ T6588] binder: 6586:6588 ioctl 4018620d 9 returned -16
[  137.158429][ T6591] binder: BINDER_SET_CONTEXT_MGR already set
[  137.211025][ T6591] binder: 6590:6591 ioctl 4018620d 9 returned -16
[  138.144889][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  138.153584][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  139.633668][ T6638] FAULT_INJECTION: forcing a failure.
[  139.633668][ T6638] name failslab, interval 1, probability 0, space 0, times 0
[  139.666862][ T6638] CPU: 0 UID: 0 PID: 6638 Comm: syz.3.141 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  139.666889][ T6638] Tainted: [L]=SOFTLOCKUP
[  139.666894][ T6638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  139.666903][ T6638] Call Trace:
[  139.666909][ T6638]  <TASK>
[  139.666915][ T6638]  dump_stack_lvl+0x16c/0x1f0
[  139.666937][ T6638]  should_fail_ex+0x512/0x640
[  139.666960][ T6638]  ? fs_reclaim_acquire+0xae/0x150
[  139.666985][ T6638]  should_failslab+0xc2/0x120
[  139.667006][ T6638]  __kmalloc_noprof+0xeb/0x910
[  139.667022][ T6638]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  139.667048][ T6638]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  139.667064][ T6638]  tomoyo_realpath_from_path+0xc2/0x6e0
[  139.667085][ T6638]  tomoyo_check_open_permission+0x2ab/0x3c0
[  139.667114][ T6638]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  139.667155][ T6638]  ? do_raw_spin_lock+0x12c/0x2b0
[  139.667178][ T6638]  tomoyo_file_open+0x6b/0x90
[  139.667201][ T6638]  security_file_open+0x84/0x1e0
[  139.667217][ T6638]  do_dentry_open+0x597/0x1590
[  139.667238][ T6638]  ? security_inode_permission+0xbf/0x260
[  139.667263][ T6638]  vfs_open+0x82/0x3f0
[  139.667280][ T6638]  path_openat+0x2078/0x3140
[  139.667307][ T6638]  ? __pfx_path_openat+0x10/0x10
[  139.667334][ T6638]  do_filp_open+0x20b/0x470
[  139.667355][ T6638]  ? __pfx_do_filp_open+0x10/0x10
[  139.667389][ T6638]  ? alloc_fd+0x471/0x7d0
[  139.667414][ T6638]  do_sys_openat2+0x11f/0x280
[  139.667429][ T6638]  ? __pfx_do_sys_openat2+0x10/0x10
[  139.667451][ T6638]  __x64_sys_openat+0x174/0x210
[  139.667467][ T6638]  ? __pfx___x64_sys_openat+0x10/0x10
[  139.667492][ T6638]  do_syscall_64+0xcd/0xf80
[  139.667524][ T6638]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.667540][ T6638] RIP: 0033:0x7fdbfaf8f7c9
[  139.667553][ T6638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.667567][ T6638] RSP: 002b:00007fdbfbe71038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  139.667581][ T6638] RAX: ffffffffffffffda RBX: 00007fdbfb1e5fa0 RCX: 00007fdbfaf8f7c9
[  139.667591][ T6638] RDX: 0000000000109801 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  139.667601][ T6638] RBP: 00007fdbfb013f91 R08: 0000000000000000 R09: 0000000000000000
[  139.667616][ T6638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  139.667624][ T6638] R13: 00007fdbfb1e6038 R14: 00007fdbfb1e5fa0 R15: 00007ffee869a688
[  139.667645][ T6638]  </TASK>
[  139.667652][ T6638] ERROR: Out of memory at tomoyo_realpath_from_path.
[  140.466020][ T6657] FAULT_INJECTION: forcing a failure.
[  140.466020][ T6657] name failslab, interval 1, probability 0, space 0, times 0
[  140.520335][ T6657] CPU: 1 UID: 0 PID: 6657 Comm: syz.3.147 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  140.520378][ T6657] Tainted: [L]=SOFTLOCKUP
[  140.520388][ T6657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  140.520403][ T6657] Call Trace:
[  140.520410][ T6657]  <TASK>
[  140.520419][ T6657]  dump_stack_lvl+0x16c/0x1f0
[  140.520464][ T6657]  should_fail_ex+0x512/0x640
[  140.520504][ T6657]  ? kmem_cache_alloc_noprof+0x62/0x770
[  140.520538][ T6657]  should_failslab+0xc2/0x120
[  140.520577][ T6657]  kmem_cache_alloc_noprof+0x83/0x770
[  140.520609][ T6657]  ? key_alloc+0x3e0/0x1330
[  140.520638][ T6657]  ? key_alloc+0x3e0/0x1330
[  140.520662][ T6657]  key_alloc+0x3e0/0x1330
[  140.520700][ T6657]  ? __pfx_key_alloc+0x10/0x10
[  140.520729][ T6657]  ? apparmor_cred_prepare+0x173/0x370
[  140.520769][ T6657]  keyring_alloc+0x44/0xc0
[  140.520797][ T6657]  lookup_user_key+0xc51/0x1300
[  140.520841][ T6657]  ? __pfx_lookup_user_key+0x10/0x10
[  140.520880][ T6657]  ? vfs_write+0x15d/0x11d0
[  140.520922][ T6657]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  140.520971][ T6657]  ? count_memcg_events+0x122/0x290
[  140.521015][ T6657]  keyctl_setperm_key+0x9d/0x3a0
[  140.521051][ T6657]  ? __pfx_keyctl_setperm_key+0x10/0x10
[  140.521088][ T6657]  ? xfd_validate_state+0x61/0x180
[  140.521112][ T6657]  ? __pfx_ksys_write+0x10/0x10
[  140.521151][ T6657]  __do_sys_keyctl+0x29a/0x590
[  140.521199][ T6657]  do_syscall_64+0xcd/0xf80
[  140.521233][ T6657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.521262][ T6657] RIP: 0033:0x7fdbfaf8f7c9
[  140.521284][ T6657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.521310][ T6657] RSP: 002b:00007fdbfbe71038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  140.521338][ T6657] RAX: ffffffffffffffda RBX: 00007fdbfb1e5fa0 RCX: 00007fdbfaf8f7c9
[  140.521356][ T6657] RDX: 0000000000000005 RSI: ffffffffffffffff RDI: 0000000000000005
[  140.521371][ T6657] RBP: 00007fdbfb013f91 R08: 0000000000000008 R09: 0000000000000000
[  140.521388][ T6657] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  140.521404][ T6657] R13: 00007fdbfb1e6038 R14: 00007fdbfb1e5fa0 R15: 00007ffee869a688
[  140.521450][ T6657]  </TASK>
[  140.989771][ T6660] binder: BINDER_SET_CONTEXT_MGR already set
[  140.998185][ T6660] binder: 6658:6660 ioctl 4018620d 9 returned -16
[  141.541586][ T6671] netlink: 338 bytes leftover after parsing attributes in process `syz.2.151'.
[  141.557184][ T6669] FAULT_INJECTION: forcing a failure.
[  141.557184][ T6669] name failslab, interval 1, probability 0, space 0, times 0
[  141.630373][ T6669] CPU: 0 UID: 0 PID: 6669 Comm: syz.0.150 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  141.630408][ T6669] Tainted: [L]=SOFTLOCKUP
[  141.630413][ T6669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  141.630422][ T6669] Call Trace:
[  141.630428][ T6669]  <TASK>
[  141.630434][ T6669]  dump_stack_lvl+0x16c/0x1f0
[  141.630457][ T6669]  should_fail_ex+0x512/0x640
[  141.630479][ T6669]  ? __kmalloc_cache_noprof+0x5f/0x800
[  141.630497][ T6669]  should_failslab+0xc2/0x120
[  141.630519][ T6669]  __kmalloc_cache_noprof+0x80/0x800
[  141.630535][ T6669]  ? kvm_dev_ioctl+0x1358/0x1a80
[  141.630557][ T6669]  ? kvm_dev_ioctl+0x1358/0x1a80
[  141.630575][ T6669]  kvm_dev_ioctl+0x1358/0x1a80
[  141.630599][ T6669]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  141.630623][ T6669]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  141.630642][ T6669]  __x64_sys_ioctl+0x18e/0x210
[  141.630661][ T6669]  do_syscall_64+0xcd/0xf80
[  141.630679][ T6669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.630694][ T6669] RIP: 0033:0x7fbd7138f7c9
[  141.630707][ T6669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.630721][ T6669] RSP: 002b:00007fbd722a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  141.630734][ T6669] RAX: ffffffffffffffda RBX: 00007fbd715e5fa0 RCX: 00007fbd7138f7c9
[  141.630744][ T6669] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009
[  141.630752][ T6669] RBP: 00007fbd71413f91 R08: 0000000000000000 R09: 0000000000000000
[  141.630760][ T6669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  141.630768][ T6669] R13: 00007fbd715e6038 R14: 00007fbd715e5fa0 R15: 00007fffe3d59c78
[  141.630787][ T6669]  </TASK>
[  142.601060][ T6694] FAULT_INJECTION: forcing a failure.
[  142.601060][ T6694] name failslab, interval 1, probability 0, space 0, times 0
[  142.613976][ T6694] CPU: 0 UID: 0 PID: 6694 Comm: syz.1.157 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  142.614019][ T6694] Tainted: [L]=SOFTLOCKUP
[  142.614028][ T6694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  142.614043][ T6694] Call Trace:
[  142.614051][ T6694]  <TASK>
[  142.614061][ T6694]  dump_stack_lvl+0x16c/0x1f0
[  142.614097][ T6694]  should_fail_ex+0x512/0x640
[  142.614137][ T6694]  ? kmem_cache_alloc_noprof+0x62/0x770
[  142.614172][ T6694]  should_failslab+0xc2/0x120
[  142.614211][ T6694]  kmem_cache_alloc_noprof+0x83/0x770
[  142.614254][ T6694]  ? key_alloc+0x3e0/0x1330
[  142.614289][ T6694]  ? key_alloc+0x3e0/0x1330
[  142.614313][ T6694]  key_alloc+0x3e0/0x1330
[  142.614352][ T6694]  ? __pfx_key_alloc+0x10/0x10
[  142.614381][ T6694]  ? apparmor_cred_prepare+0x173/0x370
[  142.614426][ T6694]  keyring_alloc+0x44/0xc0
[  142.614462][ T6694]  lookup_user_key+0xc51/0x1300
[  142.614511][ T6694]  ? __pfx_lookup_user_key+0x10/0x10
[  142.614554][ T6694]  ? vfs_write+0x15d/0x11d0
[  142.614599][ T6694]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  142.614650][ T6694]  ? count_memcg_events+0x122/0x290
[  142.614693][ T6694]  keyctl_setperm_key+0x9d/0x3a0
[  142.614733][ T6694]  ? __pfx_keyctl_setperm_key+0x10/0x10
[  142.614775][ T6694]  ? xfd_validate_state+0x61/0x180
[  142.614799][ T6694]  ? __pfx_ksys_write+0x10/0x10
[  142.614842][ T6694]  __do_sys_keyctl+0x29a/0x590
[  142.614884][ T6694]  do_syscall_64+0xcd/0xf80
[  142.614928][ T6694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.614956][ T6694] RIP: 0033:0x7f6b1f38f7c9
[  142.614979][ T6694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.615004][ T6694] RSP: 002b:00007f6b2025a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  142.615031][ T6694] RAX: ffffffffffffffda RBX: 00007f6b1f5e5fa0 RCX: 00007f6b1f38f7c9
[  142.615049][ T6694] RDX: 0000000000000005 RSI: ffffffffffffffff RDI: 0000000000000005
[  142.615067][ T6694] RBP: 00007f6b1f413f91 R08: 0000000000000008 R09: 0000000000000000
[  142.615084][ T6694] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  142.615100][ T6694] R13: 00007f6b1f5e6038 R14: 00007f6b1f5e5fa0 R15: 00007ffcc1936458
[  142.615137][ T6694]  </TASK>
[  142.946109][ T6691] binder: BINDER_SET_CONTEXT_MGR already set
[  142.960391][ T6691] binder: 6685:6691 ioctl 4018620d 9 returned -16
[  143.512622][ T6707] binder: 6700:6707 ioctl 80000001 9 returned -22
[  144.452752][   T30] audit: type=1806 audit(4294967319.383:4): xattr="" res=-22
[  144.512615][ T6724] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  144.677997][ T6726] wlan1: mtu less than device minimum
[  144.951526][ T6276] syz.3.75 (6276) used greatest stack depth: 18472 bytes left
[  145.174971][ T6743] FAULT_INJECTION: forcing a failure.
[  145.174971][ T6743] name failslab, interval 1, probability 0, space 0, times 0
[  145.205019][ T6743] CPU: 0 UID: 0 PID: 6743 Comm: syz.1.170 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  145.205063][ T6743] Tainted: [L]=SOFTLOCKUP
[  145.205072][ T6743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  145.205088][ T6743] Call Trace:
[  145.205096][ T6743]  <TASK>
[  145.205106][ T6743]  dump_stack_lvl+0x16c/0x1f0
[  145.205144][ T6743]  should_fail_ex+0x512/0x640
[  145.205182][ T6743]  ? __kvmalloc_node_noprof+0x129/0xa40
[  145.205216][ T6743]  should_failslab+0xc2/0x120
[  145.205255][ T6743]  __kvmalloc_node_noprof+0x14a/0xa40
[  145.205292][ T6743]  ? io_alloc_cache_init+0x38/0x170
[  145.205333][ T6743]  ? io_alloc_cache_init+0x38/0x170
[  145.205369][ T6743]  ? __init_waitqueue_head+0xca/0x150
[  145.205401][ T6743]  io_alloc_cache_init+0x38/0x170
[  145.205438][ T6743]  io_uring_setup+0x578/0x1f60
[  145.205471][ T6743]  ? __pfx_io_uring_setup+0x10/0x10
[  145.205501][ T6743]  ? do_futex+0x122/0x350
[  145.205531][ T6743]  ? __pfx_do_futex+0x10/0x10
[  145.205577][ T6743]  ? fput+0x70/0xf0
[  145.205604][ T6743]  ? xfd_validate_state+0x61/0x180
[  145.205629][ T6743]  ? __pfx_ksys_write+0x10/0x10
[  145.205673][ T6743]  __x64_sys_io_uring_setup+0xc2/0x170
[  145.205705][ T6743]  do_syscall_64+0xcd/0xf80
[  145.205740][ T6743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.205769][ T6743] RIP: 0033:0x7f6b1f38f7c9
[  145.205792][ T6743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.205818][ T6743] RSP: 002b:00007f6b2025a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  145.205845][ T6743] RAX: ffffffffffffffda RBX: 00007f6b1f5e5fa0 RCX: 00007f6b1f38f7c9
[  145.205865][ T6743] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  145.205881][ T6743] RBP: 00007f6b1f413f91 R08: 0000000000000000 R09: 0000000000000000
[  145.205898][ T6743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  145.205914][ T6743] R13: 00007f6b1f5e6038 R14: 00007f6b1f5e5fa0 R15: 00007ffcc1936458
[  145.205951][ T6743]  </TASK>
[  146.002318][ T6754] binder: BINDER_SET_CONTEXT_MGR already set
[  146.013385][ T6757] binder: 6752:6757 ioctl c0306201 0 returned -14
[  146.030422][ T6754] binder: 6750:6754 ioctl 4018620d 9 returned -16
[  146.396088][ T6757] FAULT_INJECTION: forcing a failure.
[  146.396088][ T6757] name failslab, interval 1, probability 0, space 0, times 0
[  146.431766][ T6757] CPU: 0 UID: 0 PID: 6757 Comm: syz.3.172 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  146.431793][ T6757] Tainted: [L]=SOFTLOCKUP
[  146.431798][ T6757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  146.431807][ T6757] Call Trace:
[  146.431812][ T6757]  <TASK>
[  146.431819][ T6757]  dump_stack_lvl+0x16c/0x1f0
[  146.431845][ T6757]  should_fail_ex+0x512/0x640
[  146.431868][ T6757]  ? __kmalloc_node_track_caller_noprof+0xcb/0x930
[  146.431893][ T6757]  should_failslab+0xc2/0x120
[  146.431915][ T6757]  __kmalloc_node_track_caller_noprof+0xec/0x930
[  146.431936][ T6757]  ? cache_create_net+0x2b/0x220
[  146.431955][ T6757]  ? __pfx_nfsd_net_init+0x10/0x10
[  146.431977][ T6757]  ? kmemdup_noprof+0x29/0x60
[  146.431993][ T6757]  kmemdup_noprof+0x29/0x60
[  146.432010][ T6757]  cache_create_net+0x2b/0x220
[  146.432028][ T6757]  ? __pfx_nfsd_net_init+0x10/0x10
[  146.432048][ T6757]  nfsd_idmap_init+0x62/0x250
[  146.432065][ T6757]  ? __pfx_nfsd_net_init+0x10/0x10
[  146.432099][ T6757]  nfsd_net_init+0x69/0x3d0
[  146.432138][ T6757]  ? __pfx_nfsd_net_init+0x10/0x10
[  146.432159][ T6757]  ops_init+0x1e2/0x5f0
[  146.432177][ T6757]  setup_net+0x11d/0x3a0
[  146.432193][ T6757]  ? __pfx_setup_net+0x10/0x10
[  146.432207][ T6757]  ? lockdep_init_map_type+0x5c/0x270
[  146.432222][ T6757]  ? mutex_init_lockep+0x110/0x150
[  146.432239][ T6757]  copy_net_ns+0x351/0x7c0
[  146.432258][ T6757]  create_new_namespaces+0x3ea/0xab0
[  146.432282][ T6757]  copy_namespaces+0x468/0x570
[  146.432301][ T6757]  copy_process+0x2a70/0x7430
[  146.432331][ T6757]  ? __pfx_copy_process+0x10/0x10
[  146.432367][ T6757]  ? futex_private_hash_put+0x160/0x1b0
[  146.432388][ T6757]  kernel_clone+0xfc/0x910
[  146.432410][ T6757]  ? __pfx_kernel_clone+0x10/0x10
[  146.432441][ T6757]  __do_sys_clone+0xce/0x120
[  146.432461][ T6757]  ? __pfx___do_sys_clone+0x10/0x10
[  146.432491][ T6757]  ? xfd_validate_state+0x61/0x180
[  146.432511][ T6757]  do_syscall_64+0xcd/0xf80
[  146.432530][ T6757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.432545][ T6757] RIP: 0033:0x7fdbfaf8f7c9
[  146.432557][ T6757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.432572][ T6757] RSP: 002b:00007fdbfbe4ffe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  146.432593][ T6757] RAX: ffffffffffffffda RBX: 00007fdbfb1e6090 RCX: 00007fdbfaf8f7c9
[  146.432603][ T6757] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211
[  146.432612][ T6757] RBP: 00007fdbfb013f91 R08: 0000000000000000 R09: 0000000000000000
[  146.432620][ T6757] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  146.432630][ T6757] R13: 00007fdbfb1e6128 R14: 00007fdbfb1e6090 R15: 00007ffee869a688
[  146.432649][ T6757]  </TASK>
[  148.782887][   T30] audit: type=1806 audit(4294967323.713:5): xattr="" res=-22
[  148.870937][ T6786] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  148.960816][   T30] audit: type=1806 audit(4294967323.893:6): xattr=636F76657220656E61626C65207772697465207472616365206661696C65642C206D6F64653D30 res=-22
[  148.979507][   T30] audit: type=1806 audit(4294967323.893:7): xattr=20286572726E6F203929 res=-22
[  150.239582][ T6804] binder: BINDER_SET_CONTEXT_MGR already set
[  150.269777][ T6804] binder: 6798:6804 ioctl 4018620d 9 returned -16
[  151.326952][ T5837] Bluetooth: hci0: unexpected subevent 0x04 length: 122 > 11
[  151.649750][ T6827] Invalid ELF header magic: != ELF
[  152.137089][ T6836] random: crng reseeded on system resumption
[  152.609682][ T6843] binder: BINDER_SET_CONTEXT_MGR already set
[  152.622813][ T6843] binder: 6841:6843 ioctl 4018620d 9 returned -16
[  153.413558][ T6850] binder: BINDER_SET_CONTEXT_MGR already set
[  153.419592][ T6850] binder: 6844:6850 ioctl 4018620d 9 returned -16
[  154.114729][ T6871] binder: BINDER_SET_CONTEXT_MGR already set
[  154.120899][ T6871] binder: 6864:6871 ioctl 4018620d 9 returned -16
[  154.151114][ T5837] Bluetooth: hci3: unexpected subevent 0x04 length: 122 > 11
[  155.972864][ T6901] netlink: 338 bytes leftover after parsing attributes in process `syz.0.206'.
[  156.255049][ T5837] Bluetooth: hci0: unexpected subevent 0x04 length: 122 > 11
[  156.667075][ T6905] binder: BINDER_SET_CONTEXT_MGR already set
[  156.689202][ T6905] binder: 6904:6905 ioctl 4018620d 9 returned -16
[  157.783434][ T6934] binder: BINDER_SET_CONTEXT_MGR already set
[  157.794375][ T6934] binder: 6933:6934 ioctl 4018620d 9 returned -16
[  157.893406][ T5837] Bluetooth: hci1: unexpected subevent 0x04 length: 122 > 11
[  158.653088][ T6953] lo: entered allmulticast mode
[  158.680675][ T6953] lo: left allmulticast mode
[  158.736480][ T6957] FAULT_INJECTION: forcing a failure.
[  158.736480][ T6957] name failslab, interval 1, probability 0, space 0, times 0
[  158.769372][ T6957] CPU: 1 UID: 0 PID: 6957 Comm: syz.3.222 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  158.769400][ T6957] Tainted: [L]=SOFTLOCKUP
[  158.769405][ T6957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  158.769414][ T6957] Call Trace:
[  158.769419][ T6957]  <TASK>
[  158.769426][ T6957]  dump_stack_lvl+0x16c/0x1f0
[  158.769448][ T6957]  should_fail_ex+0x512/0x640
[  158.769471][ T6957]  ? kmem_cache_alloc_noprof+0x62/0x770
[  158.769494][ T6957]  should_failslab+0xc2/0x120
[  158.769515][ T6957]  kmem_cache_alloc_noprof+0x83/0x770
[  158.769532][ T6957]  ? key_alloc+0x3e0/0x1330
[  158.769550][ T6957]  ? key_alloc+0x3e0/0x1330
[  158.769562][ T6957]  key_alloc+0x3e0/0x1330
[  158.769585][ T6957]  ? __pfx_key_alloc+0x10/0x10
[  158.769601][ T6957]  ? apparmor_cred_prepare+0x173/0x370
[  158.769623][ T6957]  keyring_alloc+0x44/0xc0
[  158.769641][ T6957]  lookup_user_key+0xc51/0x1300
[  158.769666][ T6957]  ? __pfx_lookup_user_key+0x10/0x10
[  158.769687][ T6957]  ? vfs_write+0x15d/0x11d0
[  158.769710][ T6957]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  158.769736][ T6957]  ? count_memcg_events+0x122/0x290
[  158.769758][ T6957]  keyctl_setperm_key+0x9d/0x3a0
[  158.769778][ T6957]  ? __pfx_keyctl_setperm_key+0x10/0x10
[  158.769798][ T6957]  ? xfd_validate_state+0x61/0x180
[  158.769811][ T6957]  ? __pfx_ksys_write+0x10/0x10
[  158.769833][ T6957]  __do_sys_keyctl+0x29a/0x590
[  158.769854][ T6957]  do_syscall_64+0xcd/0xf80
[  158.769873][ T6957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.769887][ T6957] RIP: 0033:0x7fdbfaf8f7c9
[  158.769900][ T6957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.769914][ T6957] RSP: 002b:00007fdbfbe71038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  158.769928][ T6957] RAX: ffffffffffffffda RBX: 00007fdbfb1e5fa0 RCX: 00007fdbfaf8f7c9
[  158.769938][ T6957] RDX: 0000000000000005 RSI: ffffffffffffffff RDI: 0000000000000005
[  158.769946][ T6957] RBP: 00007fdbfb013f91 R08: 0000000000000008 R09: 0000000000000000
[  158.769954][ T6957] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  158.769962][ T6957] R13: 00007fdbfb1e6038 R14: 00007fdbfb1e5fa0 R15: 00007ffee869a688
[  158.769981][ T6957]  </TASK>
[  159.442115][ T6964] binder: BINDER_SET_CONTEXT_MGR already set
[  159.448145][ T6964] binder: 6959:6964 ioctl 4018620d 9 returned -16
[  159.760450][ T5837] Bluetooth: hci2: unexpected subevent 0x04 length: 122 > 11
[  159.982652][ T6978] netlink: 11784 bytes leftover after parsing attributes in process `syz.3.229'.
[  160.353254][ T6990] netlink: 'syz.3.231': attribute type 4 has an invalid length.
[  160.377286][ T6990] netlink: 314 bytes leftover after parsing attributes in process `syz.3.231'.
[  161.130690][ T7012] binder: BINDER_SET_CONTEXT_MGR already set
[  161.136730][ T7012] binder: 7002:7012 ioctl 4018620d 9 returned -16
[  161.936935][   T30] audit: type=1806 audit(4294967303.170:8): xattr="" res=-22
[  161.965848][ T7040] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  162.298415][   T30] audit: type=1806 audit(4294967303.530:9): xattr="." res=0
[  162.933855][ T7059] FAULT_INJECTION: forcing a failure.
[  162.933855][ T7059] name failslab, interval 1, probability 0, space 0, times 0
[  163.025010][ T7059] CPU: 1 UID: 0 PID: 7059 Comm: syz.3.250 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  163.025047][ T7059] Tainted: [L]=SOFTLOCKUP
[  163.025052][ T7059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  163.025061][ T7059] Call Trace:
[  163.025067][ T7059]  <TASK>
[  163.025073][ T7059]  dump_stack_lvl+0x16c/0x1f0
[  163.025097][ T7059]  should_fail_ex+0x512/0x640
[  163.025125][ T7059]  ? fs_reclaim_acquire+0xae/0x150
[  163.025151][ T7059]  should_failslab+0xc2/0x120
[  163.025173][ T7059]  __kmalloc_noprof+0xeb/0x910
[  163.025189][ T7059]  ? tomoyo_encode2+0x100/0x3e0
[  163.025209][ T7059]  ? tomoyo_encode2+0x100/0x3e0
[  163.025223][ T7059]  tomoyo_encode2+0x100/0x3e0
[  163.025240][ T7059]  tomoyo_encode+0x29/0x50
[  163.025255][ T7059]  tomoyo_realpath_from_path+0x18f/0x6e0
[  163.025276][ T7059]  tomoyo_check_open_permission+0x2ab/0x3c0
[  163.025299][ T7059]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  163.025341][ T7059]  ? do_raw_spin_lock+0x12c/0x2b0
[  163.025362][ T7059]  tomoyo_file_open+0x6b/0x90
[  163.025381][ T7059]  security_file_open+0x84/0x1e0
[  163.025396][ T7059]  do_dentry_open+0x597/0x1590
[  163.025418][ T7059]  ? security_inode_permission+0xbf/0x260
[  163.025443][ T7059]  vfs_open+0x82/0x3f0
[  163.025460][ T7059]  path_openat+0x2078/0x3140
[  163.025486][ T7059]  ? __pfx_path_openat+0x10/0x10
[  163.025513][ T7059]  do_filp_open+0x20b/0x470
[  163.025534][ T7059]  ? __pfx_do_filp_open+0x10/0x10
[  163.025568][ T7059]  ? alloc_fd+0x471/0x7d0
[  163.025593][ T7059]  do_sys_openat2+0x11f/0x280
[  163.025608][ T7059]  ? __pfx_do_sys_openat2+0x10/0x10
[  163.025630][ T7059]  __x64_sys_openat+0x174/0x210
[  163.025646][ T7059]  ? __pfx___x64_sys_openat+0x10/0x10
[  163.025669][ T7059]  do_syscall_64+0xcd/0xf80
[  163.025688][ T7059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.025703][ T7059] RIP: 0033:0x7fdbfaf8f7c9
[  163.025715][ T7059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.025729][ T7059] RSP: 002b:00007fdbfbe71038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  163.025743][ T7059] RAX: ffffffffffffffda RBX: 00007fdbfb1e5fa0 RCX: 00007fdbfaf8f7c9
[  163.025752][ T7059] RDX: 0000000000109801 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  163.025761][ T7059] RBP: 00007fdbfb013f91 R08: 0000000000000000 R09: 0000000000000000
[  163.025769][ T7059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  163.025778][ T7059] R13: 00007fdbfb1e6038 R14: 00007fdbfb1e5fa0 R15: 00007ffee869a688
[  163.025798][ T7059]  </TASK>
[  163.025815][ T7059] ERROR: Out of memory at tomoyo_realpath_from_path.
[  163.614197][ T7067] FAULT_INJECTION: forcing a failure.
[  163.614197][ T7067] name failslab, interval 1, probability 0, space 0, times 0
[  163.637569][ T7067] CPU: 0 UID: 0 PID: 7067 Comm: syz.0.253 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  163.637615][ T7067] Tainted: [L]=SOFTLOCKUP
[  163.637625][ T7067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  163.637641][ T7067] Call Trace:
[  163.637650][ T7067]  <TASK>
[  163.637661][ T7067]  dump_stack_lvl+0x16c/0x1f0
[  163.637702][ T7067]  should_fail_ex+0x512/0x640
[  163.637742][ T7067]  ? __kmalloc_noprof+0xca/0x910
[  163.637773][ T7067]  should_failslab+0xc2/0x120
[  163.637813][ T7067]  __kmalloc_noprof+0xeb/0x910
[  163.637839][ T7067]  ? tracepoint_add_func+0x2a6/0xea0
[  163.637870][ T7067]  ? __pfx_blk_add_trace_bio_frontmerge+0x10/0x10
[  163.637891][ T7067]  ? tracepoint_add_func+0x2a6/0xea0
[  163.637912][ T7067]  tracepoint_add_func+0x2a6/0xea0
[  163.637933][ T7067]  ? __pfx_blk_add_trace_bio_frontmerge+0x10/0x10
[  163.637957][ T7067]  ? __pfx_blk_add_trace_bio_frontmerge+0x10/0x10
[  163.637976][ T7067]  tracepoint_probe_register+0xbf/0x100
[  163.637998][ T7067]  ? __pfx_tracepoint_probe_register+0x10/0x10
[  163.638020][ T7067]  ? __pfx_blk_add_trace_bio_frontmerge+0x10/0x10
[  163.638040][ T7067]  ? debugfs_create_file_full+0x41/0x60
[  163.638065][ T7067]  blk_register_tracepoints+0x156/0x430
[  163.638080][ T7067]  blk_trace_setup_finalize+0x336/0x3d0
[  163.638096][ T7067]  blk_trace_setup+0x200/0x3b0
[  163.638115][ T7067]  ? __pfx_blk_trace_setup+0x10/0x10
[  163.638131][ T7067]  ? vsnprintf+0x331/0x11e0
[  163.638151][ T7067]  ? __pfx_vsnprintf+0x10/0x10
[  163.638177][ T7067]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  163.638199][ T7067]  ? do_vfs_ioctl+0x128/0x14f0
[  163.638218][ T7067]  blk_trace_ioctl+0x2ce/0x300
[  163.638236][ T7067]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  163.638256][ T7067]  ? find_held_lock+0x2b/0x80
[  163.638274][ T7067]  ? hook_file_ioctl_common+0x144/0x410
[  163.638299][ T7067]  blkdev_ioctl+0x1fa/0x6e0
[  163.638313][ T7067]  ? __pfx_blkdev_ioctl+0x10/0x10
[  163.638329][ T7067]  ? __pfx_blkdev_ioctl+0x10/0x10
[  163.638343][ T7067]  __x64_sys_ioctl+0x18e/0x210
[  163.638362][ T7067]  do_syscall_64+0xcd/0xf80
[  163.638380][ T7067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.638398][ T7067] RIP: 0033:0x7fbd7138f7c9
[  163.638412][ T7067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.638426][ T7067] RSP: 002b:00007fbd722a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  163.638440][ T7067] RAX: ffffffffffffffda RBX: 00007fbd715e5fa0 RCX: 00007fbd7138f7c9
[  163.638450][ T7067] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 0000000000000008
[  163.638459][ T7067] RBP: 00007fbd71413f91 R08: 0000000000000000 R09: 0000000000000000
[  163.638468][ T7067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  163.638476][ T7067] R13: 00007fbd715e6038 R14: 00007fbd715e5fa0 R15: 00007fffe3d59c78
[  163.638497][ T7067]  </TASK>
[  163.740755][ T7067] ------------[ cut here ]------------
[  163.927110][ T7067] WARNING: kernel/trace/blktrace.c:1344 at blk_register_tracepoints+0x399/0x430, CPU#1: syz.0.253/7067
[  163.938696][ T7067] Modules linked in:
[  163.943167][ T7067] CPU: 1 UID: 0 PID: 7067 Comm: syz.0.253 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  163.954007][ T7067] Tainted: [L]=SOFTLOCKUP
[  163.958351][ T7067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  163.968488][ T7067] RIP: 0010:blk_register_tracepoints+0x399/0x430
[  163.974901][ T7067] Code: 0f 0b 90 e9 6b fd ff ff e8 f4 b9 f7 ff 90 0f 0b 90 e9 8a fd ff ff e8 e6 b9 f7 ff 90 0f 0b 90 e9 a9 fd ff ff e8 d8 b9 f7 ff 90 <0f> 0b 90 e9 c8 fd ff ff e8 ca b9 f7 ff 90 0f 0b 90 e9 e7 fd ff ff
[  163.994625][ T7067] RSP: 0018:ffffc90019157b20 EFLAGS: 00010283
[  164.000711][ T7067] RAX: 00000000000720e5 RBX: 00000000fffffff4 RCX: ffffc9000c331000
[  164.008680][ T7067] RDX: 0000000000080000 RSI: ffffffff81c68c18 RDI: 0000000000000005
[  164.016739][ T7067] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  164.024744][ T7067] R10: 00000000fffffff4 R11: 0000000000000000 R12: 200000000040000d
[  164.033002][ T7067] R13: ffffc90019157da8 R14: ffff888025f72fa8 R15: 0000000000000001
[  164.041613][ T7067] FS:  00007fbd722a76c0(0000) GS:ffff888124a04000(0000) knlGS:0000000000000000
[  164.050612][ T7067] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  164.057215][ T7067] CR2: 00007f6b1f5e7dac CR3: 000000003328c000 CR4: 00000000003526f0
[  164.065217][ T7067] Call Trace:
[  164.068487][ T7067]  <TASK>
[  164.071437][ T7067]  blk_trace_setup_finalize+0x336/0x3d0
[  164.076979][ T7067]  blk_trace_setup+0x200/0x3b0
[  164.081772][ T7067]  ? __pfx_blk_trace_setup+0x10/0x10
[  164.087048][ T7067]  ? vsnprintf+0x331/0x11e0
[  164.091570][ T7067]  ? __pfx_vsnprintf+0x10/0x10
[  164.096331][ T7067]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  164.102251][ T7067]  ? do_vfs_ioctl+0x128/0x14f0
[  164.107009][ T7067]  blk_trace_ioctl+0x2ce/0x300
[  164.111785][ T7067]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  164.117066][ T7067]  ? find_held_lock+0x2b/0x80
[  164.121762][ T7067]  ? hook_file_ioctl_common+0x144/0x410
[  164.127309][ T7067]  blkdev_ioctl+0x1fa/0x6e0
[  164.131847][ T7067]  ? __pfx_blkdev_ioctl+0x10/0x10
[  164.137247][ T7067]  ? __pfx_blkdev_ioctl+0x10/0x10
[  164.142555][ T7067]  __x64_sys_ioctl+0x18e/0x210
[  164.147326][ T7067]  do_syscall_64+0xcd/0xf80
[  164.151848][ T7067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.157786][ T7067] RIP: 0033:0x7fbd7138f7c9
[  164.162227][ T7067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.181881][ T7067] RSP: 002b:00007fbd722a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  164.190318][ T7067] RAX: ffffffffffffffda RBX: 00007fbd715e5fa0 RCX: 00007fbd7138f7c9
[  164.198298][ T7067] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 0000000000000008
[  164.206337][ T7067] RBP: 00007fbd71413f91 R08: 0000000000000000 R09: 0000000000000000
[  164.214330][ T7067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  164.222340][ T7067] R13: 00007fbd715e6038 R14: 00007fbd715e5fa0 R15: 00007fffe3d59c78
[  164.230400][ T7067]  </TASK>
[  164.233440][ T7067] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  164.240736][ T7067] CPU: 1 UID: 0 PID: 7067 Comm: syz.0.253 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  164.251527][ T7067] Tainted: [L]=SOFTLOCKUP
[  164.255866][ T7067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  164.265946][ T7067] Call Trace:
[  164.269230][ T7067]  <TASK>
[  164.272163][ T7067]  dump_stack_lvl+0x3d/0x1f0
[  164.276769][ T7067]  vpanic+0x640/0x6f0
[  164.280763][ T7067]  ? blk_register_tracepoints+0x399/0x430
[  164.286494][ T7067]  panic+0xca/0xd0
[  164.290222][ T7067]  ? __pfx_panic+0x10/0x10
[  164.294665][ T7067]  check_panic_on_warn+0xab/0xb0
[  164.299610][ T7067]  __warn+0x108/0x3c0
[  164.303606][ T7067]  __report_bug+0x2a0/0x520
[  164.308116][ T7067]  ? blk_register_tracepoints+0x399/0x430
[  164.313849][ T7067]  ? __pfx___report_bug+0x10/0x10
[  164.318888][ T7067]  ? __mutex_unlock_slowpath+0x161/0x790
[  164.324534][ T7067]  ? tracepoint_add_func+0x2a6/0xea0
[  164.329843][ T7067]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  164.335837][ T7067]  ? __pfx_blk_add_trace_bio_frontmerge+0x10/0x10
[  164.342266][ T7067]  ? blk_register_tracepoints+0x399/0x430
[  164.347999][ T7067]  report_bug+0xb2/0x220
[  164.352257][ T7067]  ? blk_register_tracepoints+0x399/0x430
[  164.357984][ T7067]  handle_bug+0x127/0x260
[  164.362331][ T7067]  exc_invalid_op+0x17/0x50
[  164.366850][ T7067]  asm_exc_invalid_op+0x1a/0x20
[  164.371706][ T7067] RIP: 0010:blk_register_tracepoints+0x399/0x430
[  164.378041][ T7067] Code: 0f 0b 90 e9 6b fd ff ff e8 f4 b9 f7 ff 90 0f 0b 90 e9 8a fd ff ff e8 e6 b9 f7 ff 90 0f 0b 90 e9 a9 fd ff ff e8 d8 b9 f7 ff 90 <0f> 0b 90 e9 c8 fd ff ff e8 ca b9 f7 ff 90 0f 0b 90 e9 e7 fd ff ff
[  164.397658][ T7067] RSP: 0018:ffffc90019157b20 EFLAGS: 00010283
[  164.403731][ T7067] RAX: 00000000000720e5 RBX: 00000000fffffff4 RCX: ffffc9000c331000
[  164.411703][ T7067] RDX: 0000000000080000 RSI: ffffffff81c68c18 RDI: 0000000000000005
[  164.419674][ T7067] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  164.427646][ T7067] R10: 00000000fffffff4 R11: 0000000000000000 R12: 200000000040000d
[  164.435620][ T7067] R13: ffffc90019157da8 R14: ffff888025f72fa8 R15: 0000000000000001
[  164.443607][ T7067]  ? blk_register_tracepoints+0x398/0x430
[  164.449347][ T7067]  blk_trace_setup_finalize+0x336/0x3d0
[  164.454939][ T7067]  blk_trace_setup+0x200/0x3b0
[  164.459721][ T7067]  ? __pfx_blk_trace_setup+0x10/0x10
[  164.465018][ T7067]  ? vsnprintf+0x331/0x11e0
[  164.469537][ T7067]  ? __pfx_vsnprintf+0x10/0x10
[  164.474325][ T7067]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  164.480237][ T7067]  ? do_vfs_ioctl+0x128/0x14f0
[  164.485017][ T7067]  blk_trace_ioctl+0x2ce/0x300
[  164.489793][ T7067]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  164.495106][ T7067]  ? find_held_lock+0x2b/0x80
[  164.499810][ T7067]  ? hook_file_ioctl_common+0x144/0x410
[  164.505377][ T7067]  blkdev_ioctl+0x1fa/0x6e0
[  164.509889][ T7067]  ? __pfx_blkdev_ioctl+0x10/0x10
[  164.514928][ T7067]  ? __pfx_blkdev_ioctl+0x10/0x10
[  164.519955][ T7067]  __x64_sys_ioctl+0x18e/0x210
[  164.524741][ T7067]  do_syscall_64+0xcd/0xf80
[  164.529263][ T7067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.535159][ T7067] RIP: 0033:0x7fbd7138f7c9
[  164.539576][ T7067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.559280][ T7067] RSP: 002b:00007fbd722a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  164.567705][ T7067] RAX: ffffffffffffffda RBX: 00007fbd715e5fa0 RCX: 00007fbd7138f7c9
[  164.575679][ T7067] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 0000000000000008
[  164.583650][ T7067] RBP: 00007fbd71413f91 R08: 0000000000000000 R09: 0000000000000000
[  164.591626][ T7067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  164.599613][ T7067] R13: 00007fbd715e6038 R14: 00007fbd715e5fa0 R15: 00007fffe3d59c78
[  164.607623][ T7067]  </TASK>
[  164.611011][ T7067] Kernel Offset: disabled
[  164.615338][ T7067] Rebooting in 86400 seconds..