last executing test programs:

10m0.597801048s ago: executing program 1 (id=1592):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000)
mlock$auto(0xfbed, 0xc)
mmap$auto(0x7fffffffe000, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x1, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040000}, 0x880)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/platform/dummy_hcd.7/usb8/serial\x00', 0xa2400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001100)=""/4106, 0x100a)
madvise$auto(0x8000, 0x87fff, 0xc)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000000c0), r2)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x3c, r3, 0x1, 0x70bd2d, 0x25dfdbf9, {}, [@L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x58}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x8}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_FD={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

9m59.467400203s ago: executing program 1 (id=1595):
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x6, 0x0, 0x7f, 0x0, 0x8000000000008000, 0x2}, 0x4}, 0x800008, 0x8)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x2, 0x8, 0xc, <r0=>0xe3, 0x4000000002}, 0x6f4)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bus/usb/002/001\x00', 0x88841, 0x0)
statmount$auto(&(0x7f0000000200)={0x0, @inferred=r0, 0x4, 0x7, 0x4}, &(0x7f0000000280)={0x2, 0x8001, 0x97, 0x3d, 0x8001, 0x5, 0x84, 0x8000, 0x7, 0x0, 0x5, 0x2, 0x80000000000008, 0x10000000000000b, 0x7fffffffffffffff, 0x7, 0x7, 0x4, 0x101, 0x1, 0x7fffffff, 0x6, 0x8c, 0x8, 0x6, 0x4, 0x5, 0x80, 0xfa, 0x7ff, 0x9, [0x9, 0xfffffffffffeffff, 0x10, 0x7, 0x3, 0x1a, 0x8000000000000001, 0x6, 0xc217, 0x3, 0x4a5, 0x1000, 0x9, 0x5, 0x800, 0x4, 0x3, 0x1, 0xe, 0x8b, 0x3, 0x7ff, 0x5, 0x2, 0x101, 0x10, 0x2, 0x1, 0x8, 0xffffffff80000001, 0x7, 0x3ff, 0x9, 0x8000000000, 0x200, 0x7, 0x0, 0x0, 0x3ff, 0x9, 0x1, 0x7], "a41c34b6d259817049fe59c8f240d63dbe87b76b6b2d66dbd2bec9b0165f235d82bc338eae47735635416e4495f8692128bde7336e0309574b1d6a9b9ed07d653a5d3d287044a8308dd18eb8e5abada2eb1ec50b7d8a15daaeb7fa48d0924f71357dd15c5536259f2332abca070824e086bd1007f788b0a64dd167a5957359a29bab1c581fe92cde5f440a4a839459855d0add971a4cabefe692eaa26333ebf7e43681db9fb382025aacbd92a93138c23a859e43a3626042bd"}, 0x9, 0x7)
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x0, 0x0)
fsopen$auto(0x0, 0x1)
r3 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r3, 0x6, 0x0, 0x0, 0x0)
write$auto_console_fops_tty_io(r2, &(0x7f0000000000)="c80d1b5d399b", 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1f, 0x5, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000000), r4)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1b0026bd7000fedbdf2503000000040003801800028014001a00fc02000000000000000000000000000112000100898771f1c19f17790485908280350000200003"], 0x64}, 0x1, 0x0, 0x0, 0x4004040}, 0x4001)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xc)
read$auto(0x3, 0x0, 0x8080)

9m58.264545532s ago: executing program 1 (id=1600):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0xffffffffffffffff, 0x4000000000008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000e1, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(r0, 0xb, &(0x7f0000000080)="0848d27b2a66c73c3a92a5005ce07fd5d80b733be9099fdc9e2c65bbec303770f16c4160df53f5cd59e37a0026fb897de723dd0fa0f9336635064ab096d986461c0793ed7260bfdad43eb9d1cced720a58904562461f5ab12074d33f8959dfdbd63adc5e851bb6e16f6691e922aacc334ea000e3320491987b0848105ee9a757e1ad18cfe59c48ee1e63173e3ac35c7eba8b55f90b2346d1f43fe238dbd9e69cf7d1ee7a6301c5f384b97bc7b952", 0xe)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'ip6tnl0\x00', <r2=>0x0})
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="d4f62fa6", @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r2, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaaaaaaaa35000008000200", @ANYRES32=r2, @ANYBLOB="0600060005000000080004003d4b0000"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
futex_waitv$auto(&(0x7f0000000000)={0x0, 0x7e4, 0x2}, 0x1, 0x0, 0x0, 0x623d)
lsm_list_modules$auto(0x0, 0x0, 0x10)

9m57.130687032s ago: executing program 1 (id=1604):
mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567)
setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x4) (async)
setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x4)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) (async)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) (async)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00') (async)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
mremap$auto(0x0, 0x3, 0x3fda, 0x6, 0x7fffffffb000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003f2, 0x14)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb9, 0xf, 0x7, 0x400004, 0xffffffffffffffff, 0xe7b, "00000000000000e3ffffffffffffff00", 0x0, 0xffffffffffffffff, 0x3, 0x7, 0xe5, 0x3}, 0x10) (async)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb9, 0xf, 0x7, 0x400004, 0xffffffffffffffff, 0xe7b, "00000000000000e3ffffffffffffff00", <r0=>0x0, 0xffffffffffffffff, 0x3, 0x7, 0xe5, 0x3}, 0x10)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd=<r1=>0xffffffffffffffff, @target_ifindex=r0, 0x3, 0xa1, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x66) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x66)
listen$auto(0x3, 0x83)
shmctl$auto_SHM_STAT(0x0, 0xd, &(0x7f0000000740)={{0x9, 0xee01, 0xffffffffffffffff, 0xffff, 0x7, 0xffffffff, 0x9}, 0x5, 0x8, 0x3, 0x1, @raw=0x7, @raw=0x6, 0xfffa, 0x0, 0x0, &(0x7f0000000700)="8c45a350303af6ac68888b618c24e4c9523a79357d108ba1d4d21d4304f8ce778379f11d1b2d"})
ioctl$auto_SNDCTL_DSP_STEREO(r1, 0xc0045003, &(0x7f0000000280)="5a30166bfa894ba86b80ad2510d93c2d997654b1af2b3d932dc6f0b409ac654f3ce156faef10ed8ca1e8ac5ac257db6e40d1896534eb5cde921cf3251c79c35658b2060c421b571047aec3f9ac75bae3b04a5efff7ab2280dbdd2d83") (async)
ioctl$auto_SNDCTL_DSP_STEREO(r1, 0xc0045003, &(0x7f0000000280)="5a30166bfa894ba86b80ad2510d93c2d997654b1af2b3d932dc6f0b409ac654f3ce156faef10ed8ca1e8ac5ac257db6e40d1896534eb5cde921cf3251c79c35658b2060c421b571047aec3f9ac75bae3b04a5efff7ab2280dbdd2d83")
ioperm$auto(0x7, 0x8, 0xfd)
syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
ioctl$auto_SW_SYNC_IOC_INC(r2, 0x40045701, 0x0)
close_range$auto(0x2, 0x8, 0x0)

9m55.913503644s ago: executing program 1 (id=1609):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyb4\x00', 0xa7b99635c33910ee, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b3a", 0xfdef)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x1)
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x801, 0x106)
listen$auto(0x3, 0x81)
r1 = io_uring_setup$auto(0x6, 0x0)
openat$auto_trace_time_stamp_mode_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/timestamp_mode\x00', 0x80, 0x0)
getsockopt$auto(r1, 0x11c, 0x1, 0x0, 0x0)

9m55.145877067s ago: executing program 1 (id=1615):
mmap$auto(0x0, 0x4020005, 0xdf, 0x20000000000fb3, 0xffffffffffffffff, 0x8000)
unshare$auto(0x40000080)
r0 = openat$auto_tracing_saved_cmdlines_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/saved_cmdlines\x00', 0x5c3182, 0x0)
preadv$auto(r0, &(0x7f0000000140)={0x0, 0x3}, 0x5, 0x1ff, 0x81)
read$auto(0x3, 0x0, 0x7fffffff)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x50, 0x20000000)
r1 = prctl$auto(0x23, 0x80000000000a, 0x80000001, 0x0, 0x0)
ioctl$auto(0xffffffffffffffff, 0x5646, 0xffffffffffffffff)
r2 = openat$auto_tracing_total_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/buffer_total_size_kb\x00', 0x82000, 0x0)
read$auto_tracing_total_entries_fops_trace(r2, 0x0, 0x0)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0x8bd4, 0x6, 0x0)
madvise$auto(0x1000000000, 0xffffffffffff0005, 0x15)
mmap$auto(0x100000004, 0x7, 0x1, 0x9b72, 0xffffffffffffffff, 0xfffffffffffffffe)
stat$auto(&(0x7f0000000080)='./cgroup\x00', &(0x7f00000004c0)={0x10, 0x51, 0xe44e, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x8, 0x8, 0x8, 0x8000000000000000, 0x4, 0x3, 0x1, 0x6d, 0xb89})
socketpair$auto(0x40001e, 0x8000004, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x10, 0x3e, 0x0, 0x9)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000003f40)=""/156, 0x9c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_hsr(&(0x7f00000000c0), r1)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB='\x00'/14], 0x14}, 0x1, 0x0, 0x0, 0x20060800}, 0x4000)
r5 = socket(0x2, 0x4, 0x107)
getsockopt$auto(r5, 0x0, 0x33, 0xfffffffffffffffe, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$auto_memtype_fops_memtype(0xffffffffffffff9c, &(0x7f0000000040), 0x404200, 0x0)
pread64$auto(r6, 0x0, 0x40b6, 0x10000)
mmap$auto(0x0, 0x40000000009, 0xdf, 0xeb4, r6, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000580)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88d\x11\x00\x00\x00\x00?\xf8\xff\xff\xba\xae\xb8-\x14\xe4\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf6\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9\xc5\x93\x1dD\x811\xb9_\xdd*j\xfd\xeb\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;\x9e\x83\x120\x81\x11\x9a?g`sFh\x00\x00\xda,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xdex\xd8\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/228, 0xfdef, 0x2)
socket(0x16, 0x4, 0x8)
socket(0x29, 0x1, 0x200301)
sendto$auto(0x3, 0x0, 0x2, 0xf035, &(0x7f0000000340)=@hci={0x1f, 0x5865, 0x3}, 0x22)

9m54.496602031s ago: executing program 32 (id=1615):
mmap$auto(0x0, 0x4020005, 0xdf, 0x20000000000fb3, 0xffffffffffffffff, 0x8000)
unshare$auto(0x40000080)
r0 = openat$auto_tracing_saved_cmdlines_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/saved_cmdlines\x00', 0x5c3182, 0x0)
preadv$auto(r0, &(0x7f0000000140)={0x0, 0x3}, 0x5, 0x1ff, 0x81)
read$auto(0x3, 0x0, 0x7fffffff)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x50, 0x20000000)
r1 = prctl$auto(0x23, 0x80000000000a, 0x80000001, 0x0, 0x0)
ioctl$auto(0xffffffffffffffff, 0x5646, 0xffffffffffffffff)
r2 = openat$auto_tracing_total_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/buffer_total_size_kb\x00', 0x82000, 0x0)
read$auto_tracing_total_entries_fops_trace(r2, 0x0, 0x0)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0x8bd4, 0x6, 0x0)
madvise$auto(0x1000000000, 0xffffffffffff0005, 0x15)
mmap$auto(0x100000004, 0x7, 0x1, 0x9b72, 0xffffffffffffffff, 0xfffffffffffffffe)
stat$auto(&(0x7f0000000080)='./cgroup\x00', &(0x7f00000004c0)={0x10, 0x51, 0xe44e, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x8, 0x8, 0x8, 0x8000000000000000, 0x4, 0x3, 0x1, 0x6d, 0xb89})
socketpair$auto(0x40001e, 0x8000004, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x10, 0x3e, 0x0, 0x9)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000003f40)=""/156, 0x9c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_hsr(&(0x7f00000000c0), r1)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB='\x00'/14], 0x14}, 0x1, 0x0, 0x0, 0x20060800}, 0x4000)
r5 = socket(0x2, 0x4, 0x107)
getsockopt$auto(r5, 0x0, 0x33, 0xfffffffffffffffe, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$auto_memtype_fops_memtype(0xffffffffffffff9c, &(0x7f0000000040), 0x404200, 0x0)
pread64$auto(r6, 0x0, 0x40b6, 0x10000)
mmap$auto(0x0, 0x40000000009, 0xdf, 0xeb4, r6, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000580)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88d\x11\x00\x00\x00\x00?\xf8\xff\xff\xba\xae\xb8-\x14\xe4\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf6\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9\xc5\x93\x1dD\x811\xb9_\xdd*j\xfd\xeb\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;\x9e\x83\x120\x81\x11\x9a?g`sFh\x00\x00\xda,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xdex\xd8\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/228, 0xfdef, 0x2)
socket(0x16, 0x4, 0x8)
socket(0x29, 0x1, 0x200301)
sendto$auto(0x3, 0x0, 0x2, 0xf035, &(0x7f0000000340)=@hci={0x1f, 0x5865, 0x3}, 0x22)

2m52.44646806s ago: executing program 2 (id=2775):
r0 = socket(0x10, 0x2, 0x0)
r1 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0)
bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, r1, 0x454f, 0x5f, 0x0, 0x0, r1, 0x80000001}, 0x6d4)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0xffffffff, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"})
ioctl$auto_SNDRV_TIMER_IOCTL_STOP(r2, 0x54a1, 0x0)
r3 = socket(0x2, 0x802, 0x1)
setsockopt$auto_SO_WIFI_STATUS(r3, 0x0, 0x29, 0x0, 0x2008000)
openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/kernel/debug/o2hb/failed_regions\x00', 0x200, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer2\x00', 0x189101, 0x0)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
io_uring_setup$auto(0x6, 0x0)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0)
ioctl$auto(r4, 0xc040564a, r4)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x40181, 0x0)
ioctl$auto_UBI_IOCATT(r5, 0x40186f40, &(0x7f0000000040)={0x9, 0x2, 0xa, 0x100, 0x9, 0x9})
r6 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r6, 0xaf01, 0x5)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x180483, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sg0\x00', 0x20040, 0x0)
close_range$auto(0x2, 0x8, 0x2)
io_uring_enter$auto(0xffffffffffffffff, 0x7, 0x7ffffffb, 0x3, 0x0, 0x3)
mmap$auto(0x0, 0x81, 0x87, 0x19, 0xffffffffffffffff, 0x8000)
ioctl$auto_USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000380)={0x1, 0x9, 0xffff, 0x3424, 0x8, 0x6b6, &(0x7f0000000300)="36f7894aa467114409e212f36afcb134f8742fdc74e9bd25d681832c69c40f6d12044374d5215245e195f1b81359b2ee4e6401072434bf4315ea5a220afc29c6f621430d20d20643f788ee5d4c8f089c9f62ee061d2d5d84bdbb022324d4cf7a54a8aee02d4f589d78684119"})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'geneve0\x00', <r7=>0x0})
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000200000008000200", @ANYRES32=r7, @ANYBLOB="0a009600aaaaaaaaffff000014000100e47fc200000e00000a000100aaaaaaaaaa37000008000200", @ANYRES32=r7, @ANYBLOB="0600060005000000080004003d4b0000"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)

2m51.424773016s ago: executing program 2 (id=2779):
r0 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="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"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000)
mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
fallocate$auto(r1, 0x0, 0x7, 0x4cbd5d)
r2 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/cec10\x00', 0x101901, 0x0)
r3 = openat$auto_hsr_node_table_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0)
fsconfig$auto_FSCONFIG_SET_FLAG(r3, 0x0, &(0x7f0000000000)='#-$@(,\'H.]&]-[$\x00', 0x0, 0x7fff)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000100)={'\x00', 0x0, 0x6, 0x2, 0x9b3, 0x9, "0200000002000000997e763f222ce1", '\x00', "0001410c", '\x00', ["f5404de9641f0000000060c1", "70d9a9a3af9f39d000000001", "ef5ac4927ad89c5c00"]})
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000480)={'\x00', 0x8, 0x4, 0x10, 0x0, 0x20000001, "0573830014ae6d1c64f0c9cfc40a01", "354d40de", ' \x00', "0bea5a5a", ["8844f3d239ba5a2b00d1d4f1", "39eb04fad47fb285746e614c", '\x00', "19c57f7fee8d089a10cdd8c3"]})
write$auto(0x3, 0x0, 0x400000000000050)
r4 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r4, 0x0, 0x53, 0x0, 0x0)
mmap$auto(0xea88, 0x810004, 0xd, 0x10, 0x3, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
socket(0x29, 0x2, 0x0)
socket(0xa, 0x1, 0x84)
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x800000005, &(0x7f0000000500)={&(0x7f0000000080), 0x1ffffffff}, 0x2, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r6 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x2, 0x2, 0x6)
unshare$auto(0x40000080)
r7 = waitid$auto_P_PIDFD(0x3, r6, &(0x7f0000000000)={@_si_pad}, 0x6, 0x0)
capset$auto(&(0x7f0000000140)={0x2, <r8=>0xffffffffffffffff}, &(0x7f0000000180)={0x0, 0xfff, 0xf})
rt_tgsigqueueinfo$auto_SIGCONT(r7, r8, 0x12, &(0x7f00000001c0)={@_si_pad})
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/mempolicy/weighted_interleave/node0\x00', 0xc2082, 0x0)

2m48.080825304s ago: executing program 2 (id=2789):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567)
futex$auto(&(0x7f0000000080)=0x2948, 0x9, 0x2948, 0x0, 0x0, 0x5)
sysfs$auto(0xffff, 0x1, 0x5)
futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x1000)
futex$auto(&(0x7f0000000080)=0x89, 0x5, 0x9, 0x0, &(0x7f0000000000)=0x4, 0x1bc)
mmap$auto(0x0, 0x20009, 0x4000000001df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
socket(0x2, 0x1, 0x106)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = getpgrp(0x0)
r2 = prctl$auto(0x42, 0x4, r1, 0xffffffffffffff81, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x9)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), r3)
sendmsg$auto_NL802154_CMD_SET_WPAN_PHY_NETNS(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x24, r4, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000c00}, 0x4000000)
sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r4, 0x200, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_TX_POWER={0x8, 0xb, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x20044835)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x948b, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r5 = fanotify_init$auto(0x602, 0x3)
mmap$auto(0x0, 0x276, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
openat$auto_wakeup_sources_stats_fops_wakeup(0xffffffffffffff9c, &(0x7f0000000000), 0x36281, 0x0)
mmap$auto(0xa, 0x6, 0xdf, 0xeb1, r5, 0x7ff)

2m46.807797s ago: executing program 2 (id=2793):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_OVS_VPORT_CMD_NEW(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)={0x20, r1, 0x1, 0x70bd2b, 0x25dddbfd, {}, [@OVS_VPORT_ATTR_UPCALL_STATS={0x4}, @OVS_VPORT_ATTR_NAME={0x8, 0x3, '})[\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x80)
r2 = pidfd_open$auto(0x1, 0x0)
setns(r2, 0x60020000)
umount2$auto(&(0x7f0000000080)='.\x00\x17\xe7\xcbK\x17\xa2\xa0\x9a\xf6\x81\xee\xbfB\x9d\x8cL\xc9 \f\xd5\x1f\xf5\xd0\xe2\xfb\x1bG[\x0e\v\xbcq\xa1(Gz\xd7\x02Viw@\x8c9 \xee\x8a\x04\xe7\xd6\xc5\xc6_\xb2\ndUsI\xd8o\x00\x00\x00\xff\xe4\xed^0\xed\xc5\tg\x91\x87\xb5\xa9\xcd\xde\xf2L\x10VL$\xb3\xd4\x89\x01Y@%v\xa2\a\x98G\xf1\x0eMg\xe1p5u\xb3E\xfc\x1c\xd2-\xe4\\;nQJ', 0x8)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/options/overwrite\x00', 0x40800, 0x0)
socket(0x2, 0x3, 0x6)
r3 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x59, 0x0)
read$auto_rng_chrdev_ops_core(r3, &(0x7f0000000040)=""/55, 0x37)
openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0)
socket$nl_generic(0x11, 0x3, 0x10)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x0, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2a, 0x2, 0x6)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0)
openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, 0x0, 0x181441, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000680)='/dev/v4l-subdev5\x00', 0x20281, 0x0)
ioctl$auto(r5, 0xc038563c, r4)

2m46.133303779s ago: executing program 2 (id=2795):
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
unshare$auto(0x40000080)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$auto_NL80211_CMD_SET_COALESCE(0xffffffffffffffff, 0x0, 0x80)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r1, r1, 0x0, 0x3)
close_range$auto(0x2, 0x8, 0x0)
socket(0x26, 0x80805, 0x0)
r2 = socket(0x2a, 0x2, 0x1)
connect$auto(r2, 0x0, 0x55)
socket(0x1, 0x1, 0x1)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/dirty_background_bytes\x00', 0x202, 0x0)
read$auto_proc_sys_file_operations_proc_sysctl(r3, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45)

2m45.711756594s ago: executing program 2 (id=2798):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r0)
sendmsg$auto_TIPC_NL_NET_SET(r0, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000680)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fcdbdf060f0000000c00078008000100e0000002"], 0x20}, 0x1, 0x0, 0x0, 0x8015}, 0x4002)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socket(0x25, 0x5, 0x106)
setsockopt$auto(r2, 0x6, 0x3, 0x0, 0xa1)
r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x62000, 0x0)
read$auto_tracing_buffers_fops_trace(r3, &(0x7f00000002c0)=""/4096, 0x1000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x0, 0x0)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
socket(0x2000000000000021, 0x5, 0x10000000000002)
ioctl$auto_KVM_GET_MSR_INDEX_LIST(r4, 0xc004ae02, &(0x7f0000000080)={0x7, [0x4d, 0xfffffb23, 0xf2, 0x5f, 0x7, 0xa]})
ioctl$auto(0xffffffffffffffff, 0x800064c1, 0xffffffffffffffff)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x9)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x40a00, 0x1c7)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8)
keyctl$auto(0x1d, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
unshare$auto(0xeffffffffffffffb)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r5, 0x0, 0x7)
setresuid$auto(0x0, 0x0, 0x0)

2m40.329850905s ago: executing program 4 (id=2808):
ppoll$auto(0x0, 0xf7, 0x0, 0xfffffffffffffffd, 0x8)
r0 = socket(0x11, 0xa, 0x9)
socket(0x2c, 0xa, 0xa)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ptype\x00', 0x101000, 0x0)
io_uring_register$auto_IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)="62942c6308bd48f432056cd15300588325be81dacb779b37c48e7c020f59b0fac174ceecfeac82c9b2c1eb36ece1e024b17bfc27250341159b28f0ac5d1b23dd", 0xc5)
pread64$auto(r1, 0x0, 0x8, 0xffff)

2m40.191085648s ago: executing program 3 (id=2809):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/dev/cdrom/info\x00', 0x2000, 0x0)
unshare$auto(0x40000080)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyw5\x00', 0x0, 0x0)
ioctl$auto(0x3, 0x40045436, 0x14)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008012, r0, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mlock$auto(0x7c88, 0x7fff)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYRES8, @ANYBLOB], 0x28}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1420e4a7c32a062a100039c10bd2c224a1000000", @ANYRES16=0x0, @ANYBLOB="000326bd700000dcdf2502000000"], 0x14}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x0)
setrlimit$auto(0x1000000007, 0x0)
socket(0x3, 0x2, 0x2)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x9}, 0x3, 0x0)
mmap$auto(0x8000000000, 0xc3a, 0xe2, 0x9b72, 0x7, 0x1000)
openat$auto_output_bpc_fops_(0xffffffffffffff9c, 0x0, 0x400400, 0x0)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x113000, 0x0)
ioctl$auto_SNDCTL_TMR_TEMPO(r1, 0xc0045405, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
unshare$auto(0x40000080)
mmap$auto(0x201, 0x477, 0x80000000000db, 0x11, 0x2, 0x100000000)
r2 = socket(0x1d, 0x2, 0x7)
getsockopt$auto(r2, 0x6d, 0xcd63, 0xfffffffffffffffe, 0x0)
prctl$auto_PR_SET_MM_START_CODE(0x80, 0x1, 0xffffffffffffffff, 0x7, 0x410)
madvise$auto(0x8, 0x6, 0x8)

2m40.021853s ago: executing program 4 (id=2810):
mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000240), 0x80801, 0x0) (async, rerun: 32)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f682, 0x0) (async)
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r0 = io_uring_setup$auto(0x40, &(0x7f00000001c0)={0x1200, 0x5, 0x10000, 0x9, 0x5b77b906, 0x0, 0xffffffffffffffff, [0xcfa, 0x660f], {0x7ffd, 0x7, 0xc, 0x8, 0x4, 0x3, 0x100003ff, 0xffffffff, 0x681e}, {0x20000000, 0x9, 0x7, 0x200002, 0x2, 0x8221, 0x2, 0x449e}})
connect$auto(r0, &(0x7f0000000080)=@qipcrtr={0x2a, 0x1, 0x2}, 0x5) (async)
r1 = socket(0x1f, 0x4, 0x2fe)
setsockopt$auto(r1, 0x107, 0xf, 0x0, 0x6) (async)
capset$auto(0x0, &(0x7f0000000000)={0x2, 0xc, 0x5a})
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000000), 0x205ac, &(0x7f0000000100)={&(0x7f0000000200), 0x1f}, 0x5, 0x0, 0x5, 0x4}, 0x20000005}, 0x5, 0xcae) (async, rerun: 32)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 32)
write$auto(r0, &(0x7f0000000180)='\xddc\xe1\x06\b\x00\x898\x00\t\x00\x00-+y\xcd\xc5\xd9\xd1\x03.\x17\x80@\xc0^[', 0xffffffff7fffffff)
r2 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000280)='\x00', &(0x7f00000002c0)={0xa80, 0x52, 0xa}, 0x18)
sendmmsg$auto(r2, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x5, 0x0, 0xfffffffffffffffc, 0x2665}, 0x2}, 0xe159, 0x9)
socket(0xa, 0x5, 0x84)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/tty/ttyv7/power/control\x00', 0x22902, 0x0) (async)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
r4 = socketcall$auto(0x5, 0x0) (async, rerun: 64)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x210100, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) (async, rerun: 32)
ioctl$auto(0x3, 0xae60, 0x10000000000402) (async, rerun: 32)
ioctl$auto(0x3, 0xae41, r4) (async, rerun: 32)
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000080)='\vz\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x06\x00\x06\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\b\x00\x00\x00\x00\x00\x00\x00&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde\t\x00\x00\x00\x00\x00\x00\x00\"\xact\xee\xc9\x00'/232, 0x2, 0x9) (async, rerun: 32)
ioctl$auto_KVM_GET_MSRS(r3, 0x4400ae8f, &(0x7f0000000040)={0xdd})

2m39.306022598s ago: executing program 4 (id=2812):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1e, 0x5, 0xfffffffe, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
unshare$auto(0x40000080)
write$auto(0xffffffffffffffff, 0x0, 0x400000100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/controlC0\x00', 0x80, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim0/del_port\x00', 0x8a001, 0x0)
write$auto(r1, &(0x7f0000000380)='0\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\xcf\x7f\xbf\xab\x12{\xc2\xc2*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d1s!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xd4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xb7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85K /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
r2 = io_uring_setup$auto(0x2, &(0x7f0000000080)={0x80000003, 0x9, 0x9, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x4000006, 0x2000}, {0x100, 0x1, 0x50, 0x5, 0x1, 0x7, 0x8, 0x8, 0x100000002}})
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r0)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
syslog$auto(0x3, &(0x7f0000000200)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa9q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2\xb2Y\xc9&7\x18\t\xc3\xc5Q\xf8lw\xe3\xdaQN\xcfm~\xf2mJ\xf6\x1c\x12\xb3\xae\x10[\x15\xf1T\xd4\x1b\xdbR\\1\x81\xfd\xd6\xacr(\x9aQ\xcb\xc5\xc9\xcd\xc4\xed3\xc8\xf1\xda\x9e{je\xba\xea\x0e\x8a\x03\x9f\xa7\xd5Hy\xfc\xc5\xafm\xc2Z0K\x90\xf4\xb5\xe7\xc6|\x1c\xeel$y\xe7\xee', 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x4000000000009b72, 0x2, 0x8000)
sched_getattr$auto(0x0, &(0x7f00000001c0)={0xcf83, 0x106, 0x6, 0x4, 0x7, 0xb, 0x80000000000006, 0x7ffffffffffffff7, 0x9, 0x40003}, 0x68, 0x0)
mmap$auto(0x0, 0x800, 0x84, 0x80000010, 0xfffffffffffffffa, 0x8004)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffeffffffffefffa, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x1000045d1f135, 0x9)
getsockopt$auto_SO_SNDTIMEO_OLD(r2, 0x551, 0x15, &(0x7f0000000040)='/sys/devices/netdevsim0/del_port\x00', &(0x7f0000000140)=0x2)
madvise$auto(0x0, 0xffffffffffff0007, 0xffffffff)
listmount$auto(&(0x7f0000000100)={0xa0000024, @inferred=r2, 0xfffffffffffffffe, 0xfffffffffffffffd}, 0x0, 0x7, 0x1)
madvise$auto(0xd, 0x8200000000000000, 0x6)

2m36.190410034s ago: executing program 3 (id=2815):
socket(0x10, 0x3, 0xb)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(r0, 0xffffffffffffffff, 0x82003)
openat$auto_debugfs_devm_entry_ops_file(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/cec/cec24/status\x00', 0x2, 0x0)
r1 = socket(0xa, 0x1, 0x0)
setsockopt$auto(0x3, 0x0, 0x33, 0x0, 0x4)
listen$auto(0x3, 0x81)
r2 = ioctl$auto_TIOCGPTPEER2(0xffffffffffffffff, 0x5441, 0x0)
sendmsg$auto_NL802154_CMD_STOP_BEACONS(r1, &(0x7f0000000340)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYRES16=r2, @ANYRES32=0x0], 0x50}, 0x1, 0x0, 0x0, 0x20040010}, 0x24046885)
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x0)
rename$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='./cgroup\x00')
unshare$auto(0x40000080)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8001)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x49402, 0x0)
getsockopt$auto_SO_NOFCS(r1, 0x513a7970, 0x2b, &(0x7f00000001c0)='MAC80211_HWSIM\x00', 0x0)
read$auto(r4, 0x0, 0x9a28)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f0000000100)={0x0, 0x7}, 0x4000000000007)
getsockopt$auto_SO_NOFCS(r3, 0x68c, 0x2b, 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyu8\x00', 0x82082, 0x0)
r6 = socket(0xa, 0x5, 0x0)
fsmount$auto(r6, 0x6, 0x2)
r7 = getsockopt$auto(r6, 0x84, 0x6, &(0x7f0000000240)='\xc8\xfdV%\r\x80\\\xf7\\\x00\x0eU\xa7\x1a\x04J\xbb\xb3\xcb$=\xdd\xf3\x9a\x98\xf2\xde\x1e{\n\xb5=\xff\x01&\xcbk\xec\xe0P\xdb9\xb5]\xb2E^78\xfd~\x80\x89?\x80\xe2`\xa9M\xf1dJ\xf4TB\xd9\x89\x02\x00\x1e \x15C\tgBd\x0ew\x05\xc7j\xc9-\x82\xabie%\x96\xc1\x12?\xd3\xedF\x9e^O\x1f\x14b\xa9G\xe1\xa7\xb2\xaa1\x0f\xafX\x1c]\xb1\x84\x83\xa5\xdc\xe4\xa7\"\xd2H>\xc0\xb7A\x01\xaa\bu-p(\xb3M*B\xe7)\xc7b$\x8fI\x00'/162, &(0x7f00000000c0)=0x1002)
r8 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x169780, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r8, 0x4c09, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xcaf, 0x2, 0xff, r7, 0xa0)

2m35.968493308s ago: executing program 4 (id=2816):
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(0xffffffffffffffff, 0x0, 0x6, 0xffffffffffffffff, 0x8000000000000, 0x2f)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0x4040aea0, 0x0)
close_range$auto(r0, 0xa, 0xfffffffb)
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
ioctl$auto_MEMGETINFO(0xffffffffffffffff, 0x80204d01, 0x0)

2m35.247492408s ago: executing program 4 (id=2817):
r0 = socket(0x0, 0x4, 0x0)
r1 = getsockopt$auto(r0, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x18)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x3}, 0x2)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x202000, 0x0)
mmap$auto(0x5, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
socket$nl_generic(0x10, 0x3, 0x10)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0)
mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000340)=""/178, 0xb2)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x2000c840)
clone$auto(0xf41ff42, 0x6, 0x0, 0x0, 0x0)
ioctl$auto_EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x40284504, 0x0)
sendmmsg$auto(r0, &(0x7f0000000180)={{&(0x7f0000000000)="919292f853618d8346e98be38e3e10dd9e4598af4a65b6c10db42924022f25c6e21c63ba4817c2acb10861df896d0c96e16ab8557455b7c01ae9bbe0467ad29727b6ca5df57dacfc7244b117aff9ed398fc7d5638b798c9c6d68a04432038c45d47b91", 0x8, &(0x7f00000000c0)={&(0x7f0000000080), 0xfffffffffffffffd}, 0x2, &(0x7f0000000100)="4642aeb5b3014fdd32f2ce4d42763cb11f7da2ff315651e12d952dcedda23942d7b328c83e2246ac4d4cf7ca0818d00d73977009c40558d48ee256b259aab00f5ff741ec948011a9250f", 0x3, 0x1}, 0x4}, 0x9, 0xe)
r4 = openat$auto_hwsim_fops_group_(0xffffffffffffff9c, &(0x7f0000003000)='/sys/kernel/debug/ieee80211/phy0/hwsim/group\x00', 0xa00, 0x0)
ioctl$auto_BCH_IOCTL_DISK_RESIZE(r1, 0x4018bc0e, &(0x7f00000001c0)={0x9, 0x0, 0x10001, 0x5})
shmget$auto(0x8, 0x7, 0x7ff)
setuid$auto(0xe)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)
read$auto(r4, &(0x7f0000003040)='veth1_to_team\x00', 0x9)
ioctl$auto_SCSI_IOCTL_GET_BUS_NUMBER2(r2, 0x5386, &(0x7f0000000400)="31fdf5821ad1175320ac8bfceed37dda43289d5562db4422b4080e495679906b96eaf5c99e0e7ade238783a05b169fee81221e471a19838371f091e44c076b23d777399728694b2f7a1bd618a0b8d8624ddf956c278a2ef545061917ca488034b7859fad1574ccd8a17a73c9de956b0a8a63552074cb9c47e19c08737dd86aed62b327e3bfac9de5bd1107fdeb42f8857819aee0341e4442d798849849e66f644c088e971b94f5f5e49b521eddf41ecdc89d9471548e02799415d00c6dd648cdefa9388187d33bde8639578923b6c98115f2613efcf7ae0469a8e10d7e1404740d784db86e9f670a75da4456a3e5447334e7f3531afe652ad58646f6daceb43d3f69ff65256b7a0393caa4eb5d53ec12eab363b0f4cdd21280494998df646fa6b19b2947d0bcab60ec4d20c415cfb0fc52b3d192bb6ee91f1f398b4662c35c50dd5ae44be65aa915eab5542376df00be8564fa8080b44dd96e8bf8755d386722c803a1a32151ae31256bccfc342e02c94b7a3150b677535646ad10543396ebdf5f42246f0a2face3c2b3332f2a4835606b0eb09a2771c34cdeab4a96c5c0a583ff05b51c48d562764563de5914da9ff51b383d3a4a1b3c8d5a36e4cfe5de56039412e4d61f0a4104c97147c3dabb18bf09a0c9b524860491306767edb7f2946cba57ca1567c536d04a15f52e04481c1d441aece52878646d624a6927ac553eee234446eb940692e53b7eab555b73872fc31e2c4da168ee89c4cc04d639700428689abe10bd46cf176d2b884cee8088a49123ffbd79f514b7d2c580ac5747b62d429d43cd89a5d43ed2d26dd139854f3e336e7babf3165102efc0ca7c34686e32bc7be6155198086d86fa88e648db13ab4b6559047e6573633933b42275c59999b34144d05f305576ddc94e6c6bd3856c027e893f898eb31ed354988037966b0cd7a4a5d80373a03d68b5c4ea4f9d23f2639572dda677caa87d5f7ba8a1950f577bbbe552ae16f4de07ceffc26550e8e167e93358a2bc5123a0d1e5c49b45a97a7231848961c26bc2a33764532fb0770c856938fe34ab080d69cfad3e1474ad6926d3b1077a1e6d4909b569461bcb23068cb8b59b79978027fa0c8a192ba44077d9fba0b321dd4775c31c56278d02f1191bc9d9bb086b4b39c04f380660f3f4951ddedb6d5ce0ff8992171c24919bbaeb1535f05ecbeecfa9c419c947a0edc38fa833d3a1176d19e5cc93ac28cf217a59e51f2cdbe224ab88b7d092674bb882c44775ad2ac029c560b05af8c9f125c1eb4c85d3ff3f485075af6810b02fc72362c7e6ca709933a49dd327770f603854f170d224268c514d0fc8602b2123b7c0ebf60438932e55a9ef14495cafd6a45e5ad2ad0b9cca026c3a8c18223358503048248b593d884e9f14d7d401100cd1a6148822cbacfa250f4a6eeece2a14d53377123a8681d396224d714729c219b469c8a1630dfb23b6abc87fed844e2571ceb719708ed4a5bb9c499842cf65d544634a18a2b1c439266e77dd2a090e19216fac71e5df40813e3c954eb57d3d4f7d1038af0ac404e6c14e62d4fc3ec97acf8add2f5b2085645ed40b28706f24bb281d86aed481750a05f7deb1d06ae598d34ae3f3a42fe922b23c18b3401c81e8d35d14e84632261fd4e0982631064f11a853038990535ca4138723481c3a49367f0657d04292be87eb35935e9da4ac78ce6a106c57e776bf94bed309504774fd37620b514f08b6f8a2b9e223c96cd1746f3d129b167d6bcd20784903da848d06ddbd33c7adcae3cc3b6c72686f5539a678dd7eb92efbcf1f9b63770032d91ec737c8960c84182cf89e3f9fadecf0ca57280be58487b6bc121795b3967eafea9f0d5236a14dc93190f7de3c1b7e066bab7ebed67b9d2c1386a5e812af417e38be912ef416aae413ec894ca665fcf392b2fce7370b61113e22540a57173d4359949ed61695e5f69a1de585cf17b3899bc9fba0f6824e88a252517abafa08f7f8e88aed65adcc5f38556decfc68ec467c74dc687af2c4b48f071e5e73af425697eacb94683979ee1f4b74bd4b3d1164da37fa0eaf8aa4e3a92ba1d002260ac673cdf3274f309933ca9a6a1d76a39cb8922c80fba980ff79c8dfbe026a3d1b935ef7355b8a986e16bdb41e9528b2138bb4552a408519911e641670d9409ae07fb571fb6a4e50de5587206daa2bd82b54fdd58723be9b44174782a28e54e9099cc76fb682dd928f2480be7f5122cbb9b2073bd05576c1fa8b5180300bb5111c8f133c529347f84749273895f056007d6b920ef108412f9c2bb7aa0ed7bdee8ebf0c461bc5899b195d34f5ce1c89449c8b68cb6355ef8724b99c55b92f1e11e6195fdf2c46b8993413c1c8c1c857e40316101957375f4b8c0de07692033ab1e62a96fa85151885b6c89a505581326fee0cd06774a9c3c45aff537d1f7fe6bbac361f035481bd840b1aedae227f82d291ef5e4717d61bf36082557dd683d0b6c01da0668994e4efb326999dc056299b436ba4074a39e51aebcbbbd13b41dd45ec5cc2335b8111c7ab4fa54f4c0337de3e8df784db0cd7a63854141cdf40b47c1f9f52343893750ea4fa10e93b84b11d56db1137acc91ef410fbf1a037c954fc5046b9e5f8031c248cdd578ceda374256755358c19d04d76f31669c29b0df189da9c33cad68815c548c92456eaae84a9de5916345201491151d6704c8a81b308f3862b751e99f63d50564a9334f64a9d1852c5de9e03c255c6479a67b1d37799633cd4a2484c4d0a2f9ff969c2386937a578dc92e1bc217a96f5eaee5bad986fb247a06e3d8b3fa8baf41c3803ef96994548ff1ba34a030b0cae6c3f29dd798aca89d8e9357d83e85398d8c369d2ebbdfc3d917dce0487a8a3422db7fb33066cf2db566f9bb2725e080a162f8e877eefa9c794bc420b0cb5ab557b46204e2941a4b25aeaab2b3c70d903ef7f3a55e45035b2ccd22fe11375886ddaceeca5c1cdb0b5d2469236618d0bcdb00f365f7b6888049be4257e1cae43f1f4c7652d3e55a41cc731f668212bcb7b36d66dc7e51cddd772baee952459dd8f4bc6e43e988e46a6c8cdb73093d935d294f09dac4d6cbafbc1fbcb955af1c8a1d67a9fe908662c2c8e1772e5fb099fed80305808d4f505f54ac6aa897bea35e74a08407f27f7f6b1bff8586a573ad8cbeab90be4f134fb1a1203c42d126362574ad66722017db3a5272c625ce4371ece762d0781c27ca1dba3302094c80ff5340f6bc6a484d1e793371693e7893e703e9383382ea3f478c242ca195f76cc5e5b8836af74432b25c9cae83dff8f17cf99049ec6a221bb3102fa72c1c71f9df32f81c6020b0ba46ed618566714d1c79b210a9a241541053954bc1c8077504d59c69eec5114a468c54b38f7653645c8fde84141ca9d0b7de29ca1a23dce0e5980e0981517214405bc2f0baa4e63a3c854ee78864b965bee6a57dd7596d625a3d52673ccb9f2a99db374e0baffe7b9e7cf1f2ec31e130f6fbc62b9a8e7bf5bef2009af1b3d4991ae9138c0204ec04fc4b35a3d34b6c52906510de612f9a17ca8114817753abfede5bb2790319cba6a62baadea7ecdb1bf19d07883c52f24b1aa7fb83528017f1b25b8757dec7c6e9ef8afee9ed1a430dc294ac32619d3b46120335b2dee30d19d563b18317f56580831c17b938b26450e887325e56d33410a9bc53cd82e7b3f2dec450aeb2fef44af7335cbf2eb99edc808e1ff54e75beebc7509c9d906ce2a8133e08fc458cff2d6595770f62d73d0034e2f59087b0272ecf01e792f6190f4dfaf2f3c874dce7a3ee75d6f5fd26bfb727ab789023b8c62d82c352fbc652c0d630ba43c9e70abf86430718536aa2b355a32a24f5806381c95fcd9c4e694f15c69b48c8393af1008eb276b57df1de322666f8603f3aeb5731a2d53fe2122724f5470ac19da9e428c7bb17ba538b522882ca8e07c225bc6f7ac320490288968d518eb465e8ff5ab2b2e5197ffe88e30d674201a033c2875f858d4e0faf6df51cb27d2db09bc7e842aef39ec1e1538d2220699704e1cf5ad68bb6b880b51faad27c3c22e9b5147ca187929693c69e0af3dbccfc7e83a0bc4b854a5a74437b9901dbeaf9b1816e7cee42c2db49c4c1234721ffaf6235addb845bf35b4e0a6a5a2b6fb2817f942457a918abc8a2217f504b1af10b229ae4814ed173116df3562de76a0e050d0df694f5e29744d40c9e17b6d129d6060591ee8fc45bdf70f7287bed09d207dda47be3d7ee493e51a05b131fcd94b512d26d17d1e626b07036df63e2827239e91ae4112593b6e1bcc856cb8cd3ebec7898e7174673050d7ef71f2a7cc25df1cc137214280df7b523354469d7844d44eff0677b5071b4e5a471b25d7c2840659da238ae8c5bc0b2f1e2eada57bd178e0c11bb52000d3008204934ff7c007c1c0017fb8b017cb7518738a1eac6d41933ab161816c7cc2f9e19f646b5fca62754544d4b77963b104934616dbe96c460873c132e99b30056089e18a7de4d2c85b1328a2b035c07780b0486bcdebb03f6f4dfd677587852d50f863509235329ef41a9d599e8dc4614dfd09cace4fa67e81e0a4b73a570cd3323d2746980cfda1f32c24b92811be559d2ded3ce557c11ecc7986554930296e030c157c95a510ab0988d87af54cbc06c0da67d6d8f2b1a2dfaca0cc3aa4eb85719ed731b17a1cd9e2fb65f93a69d998a1d60d999d2802fec82f74c76f3dd87cb83f39c745a2072cd157e2af167fa02e86a53a64ff483d310b094d89d9fe02f2100a5040a0fcf9eb7d92ba605e419bb14ea6bab9b6d72468e73ee35c46b05d4ad00640fdf2f4c45987f2caa70cad9acd5af8ca2d9541d4eb7d78816d4aafd23891fe8a2568a6113f22122f3fb6148b6af17e9e1a5d9fea6b39aa2f1d5019f12c008b024319f4af736d0b9f44318d01af968c624300d0f10165dd55a91d56e169099234c25aec0e561a9af78b861f843988cf893a7a0a2bf797168601716ed0f40a7dd493df9c53e936c6bbcbd0dbbae6f925230b814755215e3337218fe364ed1c9f10c9b44e9292f3af8b091c98cd5fd3b267b8ac1e8db93a425484e137ae968fb14895576dc5227ca3763304ed226c62d245eaf9427c527efe7eb42d35e20b368a1231a3276f60cf9cb88f9b3239710ddc8fbcf96e3bb8b307202cd5c672ec893e18ad6182fd0484a975059fc68fd89c035a879a6b3898a786f8425d13c8e928a114f00457c6da45589c0b55106cdd67b02c38cbe3788a1fe42ee560b6e78becf512ee121ea7ac2b3a2ae8ce68e56745731621ef863642ad1f6c21b0ad50fa9136f1cda3ca326646aab20c238007e6fd4fa80facc63317cadbcce027b625e4c2695a071e4cd2860abfb9363732e650a452e9a17e8fdcc237332d315356080bde5c76b640b3e54a3cfb8cd5ae5344b1eb2569df195bcd14729866c661286cff9cfaf800c5aabf80e55ffb7d95a08c4cc37cee2eec188c929c02f9c0632e5c2678784fdb8f0aed85db56797300e93ba2e69d61eb2355ca4e0d7069f23386b7ab0fe50e403615481db319005b95ae5e14c297d7b5d56381c633f970e44377434718d6cba029a1980af089350fc1fd424e8f620613384288d1e492e1750958027ce8b7f1cd34c4cff61cd9448c27fb673632a7afc8c636868eea0f9670982bb2b56d86700815b3dfbd3578c779ce4b7baaf25b63860f77b6b0dec817fdbcf5b899e4887510b6bd06552af91b82f4b32116636084b8a708b80b303add0950285ee6")

2m34.370229739s ago: executing program 3 (id=2819):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
socket(0xa, 0x5, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/fs/erofs/features/fragments\x00', 0x115801, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000002980)=""/4075, 0xfeb)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="01032cb57000fbdbdf250a00000f0600010018"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0)
r3 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000040), r1)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000100), 0xffffffffffffffff)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
socket(0x15, 0x5, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r7 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r7, 0x84, 0xc, 0x0, 0x0)
r8 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0)
ioctl$auto_I2C_SMBUS(r8, 0x720, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(r5, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000040)={0x3c, r6, 0x1, 0x703d25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x8}]}, 0x3c}, 0x1, 0x1000000, 0x0, 0x4}, 0x8880)
wait4$auto(r4, 0x0, 0x8, 0x0)
sendmsg$auto_NCSI_CMD_SET_CHANNEL_MASK(r1, &(0x7f0000002700)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000026c0)={&(0x7f00000005c0)={0x600, r3, 0x4, 0x70bd2c, 0x25dfdbfe, {}, [@NCSI_ATTR_DATA={0x2a9, 0x5, "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"}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x1ff}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x1}, @NCSI_ATTR_PACKAGE_LIST={0x4}, @NCSI_ATTR_PACKAGE_LIST={0x329, 0x2, 0x0, 0x1, [@typed={0x8, 0xcb, 0x0, 0x0, @ipv4=@broadcast}, @nested={0xde, 0x87, 0x0, 0x1, [@nested={0x4, 0x168}, @generic="bf85f1b59be6907c1e589e9fffab301cf5377ff7b4439a51ae7c874ef08ff2dc0ab396a6ef68ef2bcd154aac935fa8cc46a735c84e35abf83aa0cb58eed68f7e88d76f255e5e29c1655d203ad0f1ea43f9b899058366d545b32e41bb51b8dc056c623b1f4078cbea8d9c084e95a2c342afc43b597629a4f801a47fd60475e7e08e2b88fa57f770c816a2ab35c1e27bd6f0e9237815ad1a945c29f93ddec4e0d84b8ebbda4ff061455a63e652a956f2c74f12a459bddd278f9694c739f69b3d75804b6d5ee591dd255b598b02bfef6783480d64356310"]}, @generic="a5820c39c52454907dcc7f0b7dcaf8c28e9c79c25be9f40c8c98649621739ef745c6ceb2b57d398b99d48db36be08b94af33d741f5fdc6a9f994133f4f90135b8be40cf12be9b090f9cd96c74a5c6ecd8114a551198ee8433f7d11664d9f42866d99be420a8bd8dc10", @nested={0x1d4, 0x5e, 0x0, 0x1, [@generic="602256ecd2addad48c7b7a1b0108c12d6d41fb873901838e890be5c71b9f8f251e2bb7557b79f881aad4b6f7e81a58d9b19c5ba62e4b7378d644636891ff5aa5051db4ed80e74e0d19cecc2366779cf51ff07924ca8fdb8de4110bebad0aa861730e85ac071c8e9b62fe3e7f866bfd35eb2f258824cb89c464944d9b44ceb30b61d0dd62cf61c504eb17fb4486dce4283ef490bbd463d839ef8fb90cab9f3e3710cbc8a51bdc45a5b99beed991821e6af213b3949a2728d982a392e3e084962076ebee65e95c1afe9e0adcd111422bdd902c8dee9c8fd2784aa372d8b17a40cc3cea", @generic, @generic="b18be3baf048ada1b2d0a8df540348ee226a15c43d976e92ebb250519513ef8c644ecabc0c40add4df48e06c45971138d4d7a66433b4ae226af94fde2f5ff90228df26ccabe5bb68b6387102639f8169b95eabeab7776065c5c61dcfc441274d018c93d59846fc59f0123d141459ef557a652fafdb14f1622dbb7dcbf1c4901f", @generic="a0c7da31c63746ae77b5ecb7fcfe5c9035ab1633b22b4de571b7366f09b922dd0b6491f8624e4671858c1357f32958a01d4c9881eaf142e0531cbd40f16542c631f32da9d6f785c95e858227f469eb313f3356ad85eb", @nested={0x4, 0x136}, @generic, @typed={0x14, 0x161, 0x0, 0x0, @ipv6=@loopback}]}]}]}, 0x600}, 0x1, 0x0, 0x0, 0x4040004}, 0x0)
readahead$auto(0xffffffffffffffff, 0x2, 0x10001)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000380), r1)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r1)

2m33.29195048s ago: executing program 4 (id=2820):
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040)="f6e6812018deadf7e88f819e30236ce79200e01532f2ed0d", 0x18)
r1 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/devices/virtual/net/bond0/bonding/arp_ip_target\x00', 0xa0002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r2, &(0x7f0000003900)='\t', 0x1)
write$auto(r1, &(0x7f0000000080)=')@-!\x00', 0x1e1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000006700)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="13002ebd5000dddbdf25020000000800a71e", @ANYRES32=r5, @ANYBLOB='\b\x00&\x00\x00\x00\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x4c0d4}, 0x20040894)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r6, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000200)={0x34, r7, 0x1, 0x703d25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x14, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}, @nested={0x4, 0x89}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6}]}, 0x34}, 0x1, 0x0, 0x0, 0x804}, 0x8880)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/perf_event_max_contexts_per_stack\x00', 0x202, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3ff, 0x9, 0x5, 0x14, 0x944, 0x1ffe4, 0x3, 0x6, 0x4, 0x9, 0x400005, 0x4000fff, 0x8000007, 0x8001, 0xd, 0x5, 0x3, 0x4, 0x7, 0x20, 0x309, 0x8, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x78, 0x0, 0x0, [0x3, 0x0, 0x0, 0x200, 0x9, 0x0, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x4000000000000, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82, 0x800000000002, 0x9, 0x0, 0xbec, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x10, 0xfffffffffffffffe, 0xffffffffffffd059, 0x0, 0x0, 0x0, 0x2961, 0x0, 0x2]}, 0x2001fb, 0x7f)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r8 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r8, &(0x7f0000000200)={{0x0, 0x1f00, &(0x7f0000000100)={0x0, 0xfdef}, 0x2, 0x0, 0x7, 0xa505}, 0x700}, 0x7, 0x4008)

2m33.213415929s ago: executing program 3 (id=2821):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/sctp/assocs\x00', 0x400, 0x0)
pread64$auto(r0, &(0x7f00000002c0)='\xd5u+~\xa7x\xe0VQ\x1a6\xcf\xce\xfa\xfbN\x19\b\xf64\r\x122i\xd6\x0e\xfa\x96\x9aV:\xe1G\x14\xb2\xd4N\x0e#jX:\xd0\xe4\xa9\xda\xaf\x98\x94G\xa8\xb4\xa7uPc\x1ang\xdb\xb4\xa7\xad\x1b\xcbonh\xd8\x99\x03\x10\xb0\xa5\xfe\x02\xd5F,70\xecG\x8a\fz\x95\x7f\xb0Y{\xddM\x04\x83\xa8,\xa1\xa3E\x03\xd4\xc67U\x93\n\xfc\xa4\x0e_\xf8\x94\xc3a\x00\xe6\xea4\xa2\x7ft\xeb\x8b$\x16\x0e\xe8j\xcaI\xe0c\x05\x12(\v\xef\xc5Z\xfb\xed\xa3\x01\x001\xa5\x18%\xae/\x1b6\xaa\xf5ysD\xa6\xee\xbf\xc0v\"\x93\x96\"\xcak.\x0e_\xb3\xf7\xac\x9e\xbd/w\xdf\xfc\xe24z\x0f\x8f\b\xbe\xda\xfb\xd0Jj\x97\xfa{\x9d\xfd\xfb\x14\x1f\xb0\xe7\b#\xb9\x01\xf7\xf5\x1c1\xfbNX\xd9\xf0\x97@\xff(\x99\x13M\xadM\b\xf5\xcd\xa3\xe1Q|\r\x18\xd5\xb4\x1c\xa5\xfd\xdf\x98\xd9\xa7\xf3u\xa8ak\bHS\xfa\x12\x85\x85\x14\b\x9c\x15\xc10\xb3\xd5.\x13\xc6\xb6\xbak:\xbf\x8f\xcd\x7f\a\xb8\x00\x00\x00', 0x202, 0x7)

2m32.995078234s ago: executing program 3 (id=2822):
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x121102, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
unshare$auto(0x6c000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clock_gettime$auto(0x6, 0x0)
select$auto(0x7ff, &(0x7f0000000080)={[0xa, 0xfffffffffffffffd, 0x1, 0x3, 0x6, 0x6, 0x6, 0x1ffe000, 0xcad, 0x2, 0x9, 0x0, 0x0, 0x8000000000000000, 0xd3, 0x76]}, 0x0, 0x0, 0x0)
landlock_create_ruleset$auto(&(0x7f0000000140)={0xdaa0, 0x1, 0x9}, 0x9, 0x0)
ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5)

2m30.996625526s ago: executing program 3 (id=2824):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000001cc0)='/dev/amidi2\x00', 0x2, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_DROP(r0, 0x40045730, &(0x7f0000001d00)=0x800)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40080, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mincore$auto(0x0, 0x10000, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020089, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1e, 0x6, 0x8, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(0xffffffffffffffff, 0x40095505, 0x0)
r1 = socket(0xa, 0x3, 0x3c)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmsg$auto_CTRL_CMD_GETFAMILY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000380)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002dbd7000fddbdf2503000000280002002f70726f632f7379732f6e65742f676f72652f7270735f646566617572c407009606c3a3"], 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x48050)
write$auto(r1, &(0x7f0000000080)='+&\x00I\xaar\x1c\xbb\xde\ah\x15,\xeb|\x85\xe8\x97Z\xc30\xae}\xa1\x17K(\x80]]\x8d\xb5\xeb-\x9d\xc1\xceU\xbb_\xcf\xe8#U\xd0_|\x15f\x92\xaa\x9f\xa0l}7z#u\xf6\xd1\xe1\x8d\x05=w\xf1\xb9K\xf4\\\a\xdf\x87\xbb\x03d6\xe1\x14\xb1|\x98\x82$\xf3\xb2\xcf\xb7\x7f\xf8f*/\xc2\x82\x8c2\x8d^\x10\xc6\x1cs', 0x263f)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x1d, 0x2, 0x7)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
mmap$auto(0x0, 0x4005, 0xb, 0x40eb2, 0x401, 0x300000000000)
move_pages$auto(0x0, 0x40000000000001, 0x0, 0x0, 0x0, 0x8000000000000000)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/icmp/ratemask\x00', 0xa0202, 0x0)
sendfile$auto(r3, r3, 0x0, 0x8)
socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)

2m17.832151991s ago: executing program 33 (id=2820):
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040)="f6e6812018deadf7e88f819e30236ce79200e01532f2ed0d", 0x18)
r1 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/devices/virtual/net/bond0/bonding/arp_ip_target\x00', 0xa0002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r2, &(0x7f0000003900)='\t', 0x1)
write$auto(r1, &(0x7f0000000080)=')@-!\x00', 0x1e1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000006700)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="13002ebd5000dddbdf25020000000800a71e", @ANYRES32=r5, @ANYBLOB='\b\x00&\x00\x00\x00\x00\x00'], 0x24}, 0x1, 0x0, 0x0, 0x4c0d4}, 0x20040894)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r6, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000200)={0x34, r7, 0x1, 0x703d25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x14, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}, @nested={0x4, 0x89}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6}]}, 0x34}, 0x1, 0x0, 0x0, 0x804}, 0x8880)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/perf_event_max_contexts_per_stack\x00', 0x202, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3ff, 0x9, 0x5, 0x14, 0x944, 0x1ffe4, 0x3, 0x6, 0x4, 0x9, 0x400005, 0x4000fff, 0x8000007, 0x8001, 0xd, 0x5, 0x3, 0x4, 0x7, 0x20, 0x309, 0x8, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x78, 0x0, 0x0, [0x3, 0x0, 0x0, 0x200, 0x9, 0x0, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x4000000000000, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82, 0x800000000002, 0x9, 0x0, 0xbec, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x10, 0xfffffffffffffffe, 0xffffffffffffd059, 0x0, 0x0, 0x0, 0x2961, 0x0, 0x2]}, 0x2001fb, 0x7f)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r8 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r8, &(0x7f0000000200)={{0x0, 0x1f00, &(0x7f0000000100)={0x0, 0xfdef}, 0x2, 0x0, 0x7, 0xa505}, 0x700}, 0x7, 0x4008)

2m15.847879882s ago: executing program 34 (id=2824):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000001cc0)='/dev/amidi2\x00', 0x2, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_DROP(r0, 0x40045730, &(0x7f0000001d00)=0x800)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40080, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mincore$auto(0x0, 0x10000, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020089, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1e, 0x6, 0x8, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(0xffffffffffffffff, 0x40095505, 0x0)
r1 = socket(0xa, 0x3, 0x3c)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmsg$auto_CTRL_CMD_GETFAMILY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000380)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002dbd7000fddbdf2503000000280002002f70726f632f7379732f6e65742f676f72652f7270735f646566617572c407009606c3a3"], 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x48050)
write$auto(r1, &(0x7f0000000080)='+&\x00I\xaar\x1c\xbb\xde\ah\x15,\xeb|\x85\xe8\x97Z\xc30\xae}\xa1\x17K(\x80]]\x8d\xb5\xeb-\x9d\xc1\xceU\xbb_\xcf\xe8#U\xd0_|\x15f\x92\xaa\x9f\xa0l}7z#u\xf6\xd1\xe1\x8d\x05=w\xf1\xb9K\xf4\\\a\xdf\x87\xbb\x03d6\xe1\x14\xb1|\x98\x82$\xf3\xb2\xcf\xb7\x7f\xf8f*/\xc2\x82\x8c2\x8d^\x10\xc6\x1cs', 0x263f)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x1d, 0x2, 0x7)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
mmap$auto(0x0, 0x4005, 0xb, 0x40eb2, 0x401, 0x300000000000)
move_pages$auto(0x0, 0x40000000000001, 0x0, 0x0, 0x0, 0x8000000000000000)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/icmp/ratemask\x00', 0xa0202, 0x0)
sendfile$auto(r3, r3, 0x0, 0x8)
socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)

1.483751004s ago: executing program 0 (id=3061):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000240))
getdents$auto(r0, 0x0, 0x18)
getdents$auto(r0, 0x0, 0xa2b0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r1)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000002000000cf594078f45a69375713dd98aa582aad45e6f49d57d6429275425834d652db872596cbeef7f940b7b1b06f66401fff14a4603666860d7d976747272828242174075e67a0dc447a629a919727b1f6c849257665a525470128e13d64fd75cc8bce50a4e46b1cfd550a60", @ANYRES16=r2, @ANYBLOB="05082dbd7000fbdbdf257e000000"], 0x14}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000)
r3 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000100), 0x163881, 0x0)
close_range$auto(0x2, r1, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/nbd7/power/autosuspend_delay_ms\x00', 0x22902, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = socketcall$auto(0xa, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xaea2, 0x10000000000402)
mbind$auto(0x800000002001, 0x1, 0x10000c000, 0x0, 0x3, 0xd)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r4, 0xae80, 0x0)
mmap$auto(0x0, 0x2, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r7 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x49402, 0x0)
read$auto(r7, 0x0, 0x9a28)
r8 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
ioctl$auto_FS_IOC_UNRESVSP64(r3, 0x4030582b, 0x1ff)
writev$auto(r8, &(0x7f0000000100)={0x0, 0x7}, 0x4000000000007)
getsockopt$auto_SO_NOFCS(0xffffffffffffffff, 0x68c, 0x2b, 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyu8\x00', 0x82082, 0x0)
ioctl$auto(r3, 0xc0305302, 0x38)

1.18089807s ago: executing program 0 (id=3062):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x2, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
shutdown$auto(0x200000003, 0x2)
r0 = openat$auto_uprobe_profile_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/uprobe_profile\x00', 0x200000, 0x0)
preadv$auto(r0, &(0x7f0000000300)={&(0x7f0000000200)="91ac7f1f9d04edad12d0d517ad8622609d54c7529da259e9fd726763659ddc036603f7948857c08bda4b2dd2ed5612cdd6a454c8ff2d4b0a18b5493165088384c708819a2f653d9766c9dc06c7c464d30a48cd9df107ae548db7ff9be823f494d5aff06e7176d71be32fccdfe3d5a4bb79e8c408b0400a35871173822228c709b8eb61c4fe6a024e16c1095fa98629050d506707d90de7e90912f235b70fda48534030dabfa02620910c11b19c29a9071c2cb2d3268feb34c124bd53162810e6525dc05354d891396160e99693d7d07d", 0x2}, 0x8, 0xa, 0xfffffffffffffffe)
socket(0x22, 0x80000, 0x7)
socket(0x10, 0x2, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x2a801, 0x0)
close_range$auto(0x2, 0x8, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x822, 0x4, 0x0, 0x4)
unshare$auto(0x40000080)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/free_buffer\x00', 0x0, 0xebff)
r1 = gettid()
process_vm_writev$auto(r1, 0x0, 0x3, 0x0, 0x8, 0x8)
bind$auto(0xffffffffffffffff, 0x0, 0x6)
mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0)
write$auto(0xca, &(0x7f0000000140)='\x04>\x01\x03\x00J:\xdd\xfc\xb6\xc6\x0f\xaf\xe3\x0f\xd1V\xb1yz\\\xa6\xed\a\xa0-\xe6\xa5=\x04#\x84g+\xa3p(\xf5\x1b\xdc7\x1b\xc4TM\x93\xce\x90\xfa9\x957\xec\xd8\xe0TC\x86\xad\xe1G\xc7\xd4\x96\x12h\x84;Y\xe2\x03i\xa1)`\n\xc3\xfeR\x06\x03\xf5/@\xf0\'\xb9\xdf\xe1\xef\v\x19B\xc0\xe2\xac\xa5^\x01D\xef\xaf#\xbc\xa5\xf9J\xdc\xc3),=1\b\x05\x9c\x82\xd4\'\xe8\xfe\xfd\x9a\x9f\x00\x00\x00\x00\x00\x00\x00\x00', 0x7f)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0x0)

801.435844ms ago: executing program 0 (id=3063):
mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
fanotify_init$auto(0x65, 0x2)
socket(0x1d, 0x2, 0x2)
connect$auto(0x3, 0x0, 0x53)
socket(0x10, 0x3, 0x6)
socketpair$auto(0x1e, 0xb, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x38}, 0x6, 0x0, 0x4, 0x9}, 0x9}, 0x6, 0x1f00)
r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/reset\x00', 0x82, 0x0)
pwritev$auto(r0, &(0x7f0000000180)={0x0, 0x2}, 0x3, 0x5, 0x5)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = socket(0x15, 0x5, 0x0)
bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmsg$auto(r2, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sys/net/ipv4/vs/est_cpulist\x00', 0x2242, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_allowed_congestion_control\x00', 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
select$auto(0xd, 0x0, &(0x7f0000000400)={[0x8, 0x200000000005, 0x7, 0x7, 0x0, 0x80000004, 0xc, 0x6, 0x8fc, 0xb80, 0xe34c, 0x9, 0x3, 0xfffffffffffff954, 0xfffffffffffffff8, 0xfff]}, 0x0, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
setgroups$auto(0x9, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x19, &(0x7f0000000000), 0x0)

300.204966ms ago: executing program 0 (id=3064):
sendmsg$auto_GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x894)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x800008000)
io_uring_setup$auto(0x8, &(0x7f0000000140)={0x1, 0x1, 0x9, 0x210001, 0xc, 0xc05, <r0=>0xffffffffffffffff, [0x7fd, 0x1001, 0x3], {0x9, 0x3, 0x6, 0x0, 0x4, 0x895, 0x3fdc, 0x70f, 0x5}, {0x7, 0x1d11, 0x54ed, 0x0, 0x101, 0xff, 0x7, 0xa, 0xb}})
sendmsg$auto_NL802154_CMD_SET_CHANNEL(r0, 0x0, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
socket(0xf, 0x3, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x18, 0x1, 0x0)
r1 = socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
r2 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r4=>0x0})
sendmsg$auto_NET_SHAPER_CMD_DELETE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090027bd7000fbdbdf250200000008000800", @ANYRES32=r4, @ANYBLOB="140001800800020006000000080001"], 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0xc050)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x3, 0x0, 0x7, 0xa505}, 0x8800}, 0x7, 0x4008)
getsockopt$auto(0x3, 0x200000000001, 0x1d, 0x0, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)

101.921005ms ago: executing program 0 (id=3065):
bpf$auto(0x0, &(0x7f0000000000)=@task_fd_query={0x5, <r0=>0x21ea, 0x7fff, 0x83, 0x9, 0x7, 0x202e, 0x5, 0x101}, 0x6f4)
r1 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NFSD_CMD_THREADS_GET(r4, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000001780)={0x14, 0x0, 0x4, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x44848}, 0x4000000)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000019c0), r4)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r4)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)={0x3c, r5, 0x609, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x2c, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0xfffffffc}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x5}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x8800)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000680), 0xffffffffffffffff)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/rpc/nfs\x00', 0x181000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r6, &(0x7f0000000040)=""/94, 0x5e)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, 0x0, 0x4)
openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000040)={"52b9488db85fffbed6eb138fcd56d5424019963c641252e1e9f1a7bded20e024", 0x400, 0x5, 0x20000000, 0x5, 0x80000000})
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r2, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)={0x50, 0x0, 0x10, 0x70bd2d, 0x25dfdbfb, {}, [@HWSIM_ATTR_RADIO_NAME={0x10, 0x11, '/dev/uinput\x00'}, @HWSIM_ATTR_MLO_SUPPORT={0x4}, @HWSIM_ATTR_MULTI_RADIO={0x4}, @HWSIM_ATTR_FREQ={0x8}, @HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0xfffffffb}, @HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x2}, @HWSIM_ATTR_COOKIE={0xc, 0x8, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
ioctl$auto(0x3, 0x400c55cb, 0x38)
sendmsg$auto_TCP_METRICS_CMD_GET(r7, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000040)={0x14, r1, 0x89c1beb01534ff9b, 0x70bd29, 0x25dfd3f9}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
msgctl$auto_MSG_INFO(0x0, 0xc, 0x0)
lstat$auto(&(0x7f00000000c0)='./file0\x00', &(0x7f00000005c0)={0xff, 0x2, 0xab, 0x3, 0x0, 0x0, 0x0, 0x8, 0x0, 0xc05, 0x4, 0xddb3, 0x0, 0x6f7, 0x7, 0x4, 0xf9})
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0x10001, 0x10, 0x2, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x955b, 0x8, 0x7, 0x5}, 0x10)

0s ago: executing program 0 (id=3066):
madvise$auto(0x110c230000, 0x8031ca, 0x9)
madvise$auto(0x110d230000, 0x1, 0x3)
read$auto_ptdump_fops_(0xffffffffffffffff, 0x0, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000500)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x95\x82 )\xca\x99h\xcf\xfdK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
pread64$auto(0xffffffffffffffff, 0x0, 0x8100000041, 0x413e)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
syz_clone3(&(0x7f0000000100)={0x2108000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r2, 0x400, 0x1)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
openat$auto_u32_array_fops_file(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/netdevsim/netdevsim4/ports/2/udp_ports_table0\x00', 0x40201, 0x0)
r3 = set_tid_address$auto(&(0x7f0000000180)=0xf0)
waitid$auto_P_PIDFD(0x3, r1, &(0x7f0000000040)={@siginfo_0_0={0x2, 0x4000008, 0xf8, @_rt={r3, 0x0, @sival_ptr=&(0x7f0000000280)="79ca6170c72c9b5affac767c0127e58e38f3f407303ed544651fc514ea2bf3a8d8ec1b5efc99d62cbb8043d4582607afd440f400a4fdcd74a0d6cc759ee437d05a5a149e70f79615cb36ed421aea340b2fe6"}}}, 0x20f5, 0x0)
madvise$auto(0x0, 0x2003f2, 0x15)
r4 = fsopen$auto(&(0x7f0000000300)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x7fffffff)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0x4000000000df, 0x336, r4, 0x6)
socket(0xa, 0x4, 0x84)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x200, 0x0)
select$auto(0x4, 0x0, &(0x7f0000000100)={[0x9, 0x7, 0xfffffffffffffff9, 0x9, 0x7ff, 0x3, 0x6, 0x2, 0x9, 0xffff, 0x1ff, 0x10, 0x3, 0x0, 0x5, 0x6]}, 0x0, 0x0)
r5 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x302, 0x0)
write$auto_uprobe_events_ops_trace_uprobe(r5, &(0x7f0000000000)="706f3a82d9e5cc7c2ceda8d50bfc94be9fe6c22ffaf8493a38", 0x19)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0x8)
madvise$auto(0x0, 0xffffffffffff0005, 0x3)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)

kernel console output (not intermixed with test programs):

g a failure.
[  942.092857][T20108] name failslab, interval 1, probability 0, space 0, times 0
[  942.393495][T20108] CPU: 0 UID: 0 PID: 20108 Comm: syz.2.2679 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  942.393535][T20108] Tainted: [L]=SOFTLOCKUP
[  942.393543][T20108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  942.393558][T20108] Call Trace:
[  942.393565][T20108]  <TASK>
[  942.393574][T20108]  dump_stack_lvl+0x100/0x190
[  942.393624][T20108]  should_fail_ex.cold+0x5/0xa
[  942.393655][T20108]  ? sk_prot_alloc+0x10b/0x2a0
[  942.393836][T20108]  should_failslab+0xc2/0x120
[  942.393866][T20108]  __kmalloc_noprof+0xe0/0x850
[  942.393912][T20108]  sk_prot_alloc+0x10b/0x2a0
[  942.393952][T20108]  sk_alloc+0x36/0xe80
[  942.393995][T20108]  alg_create+0x9e/0x150
[  942.394046][T20108]  __sock_create+0x339/0x860
[  942.394099][T20108]  __sys_socket+0x14d/0x260
[  942.394135][T20108]  ? __pfx___sys_socket+0x10/0x10
[  942.394181][T20108]  __x64_sys_socket+0x72/0xb0
[  942.394215][T20108]  ? lockdep_hardirqs_on+0x78/0x100
[  942.394251][T20108]  do_syscall_64+0x115/0x840
[  942.394285][T20108]  ? clear_bhb_loop+0x40/0x90
[  942.394315][T20108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  942.394341][T20108] RIP: 0033:0x7f94f3b9ce59
[  942.394360][T20108] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  942.394385][T20108] RSP: 002b:00007f94f4af4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  942.394409][T20108] RAX: ffffffffffffffda RBX: 00007f94f3e15fa0 RCX: 00007f94f3b9ce59
[  942.394424][T20108] RDX: 0000000000000000 RSI: 0000000000080805 RDI: 0000000000000026
[  942.394439][T20108] RBP: 00007f94f3c32d6f R08: 0000000000000000 R09: 0000000000000000
[  942.394453][T20108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  942.394468][T20108] R13: 00007f94f3e16038 R14: 00007f94f3e15fa0 R15: 00007ffe6a3e6d48
[  942.394497][T20108]  </TASK>
[  944.271857][T20120] FAULT_INJECTION: forcing a failure.
[  944.271857][T20120] name failslab, interval 1, probability 0, space 0, times 0
[  944.418209][T20120] CPU: 0 UID: 0 PID: 20120 Comm: syz.2.2683 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  944.418249][T20120] Tainted: [L]=SOFTLOCKUP
[  944.418258][T20120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  944.418273][T20120] Call Trace:
[  944.418281][T20120]  <TASK>
[  944.418290][T20120]  dump_stack_lvl+0x100/0x190
[  944.418337][T20120]  should_fail_ex.cold+0x5/0xa
[  944.418369][T20120]  should_failslab+0xc2/0x120
[  944.418399][T20120]  __kmalloc_cache_noprof+0x7a/0x6f0
[  944.418435][T20120]  ? do_eventfd+0x67/0x2b0
[  944.418459][T20120]  ? ksys_write+0x1ac/0x250
[  944.418491][T20120]  do_eventfd+0x67/0x2b0
[  944.418517][T20120]  __x64_sys_eventfd+0x32/0x50
[  944.418542][T20120]  do_syscall_64+0x115/0x840
[  944.418577][T20120]  ? clear_bhb_loop+0x40/0x90
[  944.418606][T20120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  944.418631][T20120] RIP: 0033:0x7f94f3b9ce59
[  944.418651][T20120] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  944.418674][T20120] RSP: 002b:00007f94f4af4028 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  944.418707][T20120] RAX: ffffffffffffffda RBX: 00007f94f3e15fa0 RCX: 00007f94f3b9ce59
[  944.418723][T20120] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  944.418737][T20120] RBP: 00007f94f3c32d6f R08: 0000000000000000 R09: 0000000000000000
[  944.418752][T20120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  944.418766][T20120] R13: 00007f94f3e16038 R14: 00007f94f3e15fa0 R15: 00007ffe6a3e6d48
[  944.418796][T20120]  </TASK>
[  944.960969][T20134] futex_wake_op: syz.2.2686 tries to shift op by -2048; fix this program
[  944.975388][T20131] futex_wake_op: syz.3.2687 tries to shift op by -2048; fix this program
[  945.005888][T20131] futex_wake_op: syz.3.2687 tries to shift op by -2048; fix this program
[  945.028122][T20134] FAULT_INJECTION: forcing a failure.
[  945.028122][T20134] name failslab, interval 1, probability 0, space 0, times 0
[  945.119946][T20134] CPU: 0 UID: 0 PID: 20134 Comm: syz.2.2686 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  945.119984][T20134] Tainted: [L]=SOFTLOCKUP
[  945.119992][T20134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  945.120006][T20134] Call Trace:
[  945.120013][T20134]  <TASK>
[  945.120033][T20134]  dump_stack_lvl+0x100/0x190
[  945.120080][T20134]  should_fail_ex.cold+0x5/0xa
[  945.120110][T20134]  should_failslab+0xc2/0x120
[  945.120138][T20134]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  945.120176][T20134]  ? __pmd_alloc+0xbf/0x950
[  945.120210][T20134]  __pmd_alloc+0xbf/0x950
[  945.120243][T20134]  __handle_mm_fault+0xa9c/0x2a00
[  945.120283][T20134]  ? mt_find+0x45e/0x8e0
[  945.120320][T20134]  ? __pfx___handle_mm_fault+0x10/0x10
[  945.120356][T20134]  ? __pfx_mt_find+0x10/0x10
[  945.120389][T20134]  ? __lock_acquire+0x4a5/0x2630
[  945.120441][T20134]  ? find_vma+0xbf/0x140
[  945.120466][T20134]  ? __pfx_find_vma+0x10/0x10
[  945.120512][T20134]  handle_mm_fault+0x37b/0xa30
[  945.120552][T20134]  fixup_user_fault+0x199/0x510
[  945.120585][T20134]  fault_in_user_writeable+0x70/0xe0
[  945.120625][T20134]  futex_wake_op+0xba0/0xdc0
[  945.120661][T20134]  ? __pfx_futex_wake_op+0x10/0x10
[  945.120688][T20134]  ? proc_fail_nth_write+0x9f/0x220
[  945.120759][T20134]  ? find_held_lock+0x2b/0x80
[  945.120794][T20134]  ? ksys_write+0x190/0x250
[  945.120820][T20134]  ? ksys_write+0x190/0x250
[  945.120853][T20134]  do_futex+0x2f1/0x350
[  945.120877][T20134]  ? __pfx_do_futex+0x10/0x10
[  945.120908][T20134]  __x64_sys_futex+0x34f/0x4d0
[  945.120934][T20134]  ? fput+0x79/0x100
[  945.120965][T20134]  ? __pfx___x64_sys_futex+0x10/0x10
[  945.120988][T20134]  ? ksys_write+0x1ac/0x250
[  945.121014][T20134]  ? __pfx_ksys_write+0x10/0x10
[  945.121049][T20134]  ? rcu_is_watching+0x12/0xc0
[  945.121080][T20134]  do_syscall_64+0x115/0x840
[  945.121112][T20134]  ? clear_bhb_loop+0x40/0x90
[  945.121141][T20134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  945.121165][T20134] RIP: 0033:0x7f94f3b9ce59
[  945.121183][T20134] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  945.121206][T20134] RSP: 002b:00007f94f4af4028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  945.121228][T20134] RAX: ffffffffffffffda RBX: 00007f94f3e15fa0 RCX: 00007f94f3b9ce59
[  945.121243][T20134] RDX: 0000000000000038 RSI: 0000000000000085 RDI: 0000000000000000
[  945.121258][T20134] RBP: 00007f94f4af4090 R08: 0000000000000000 R09: 0000000080800005
[  945.121272][T20134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  945.121286][T20134] R13: 00007f94f3e16038 R14: 00007f94f3e15fa0 R15: 00007ffe6a3e6d48
[  945.121315][T20134]  </TASK>
[  946.103148][T20125] Process accounting resumed
[  946.228476][T20142] futex_wake_op: syz.2.2690 tries to shift op by -2048; fix this program
[  946.319897][T20140] 0x000000000001-0x000000020000 : ""
[  946.460717][T20140] ftl_cs: FTL header corrupt!
[  946.774586][T20146] ERROR: Out of memory at tomoyo_memory_ok.
[  948.659635][T20160] FAULT_INJECTION: forcing a failure.
[  948.659635][T20160] name failslab, interval 1, probability 0, space 0, times 0
[  948.734214][T20160] CPU: 0 UID: 0 PID: 20160 Comm: syz.3.2694 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  948.734253][T20160] Tainted: [L]=SOFTLOCKUP
[  948.734261][T20160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  948.734275][T20160] Call Trace:
[  948.734283][T20160]  <TASK>
[  948.734292][T20160]  dump_stack_lvl+0x100/0x190
[  948.734340][T20160]  should_fail_ex.cold+0x5/0xa
[  948.734370][T20160]  should_failslab+0xc2/0x120
[  948.734401][T20160]  __kmalloc_cache_noprof+0x7a/0x6f0
[  948.734436][T20160]  ? do_eventfd+0x67/0x2b0
[  948.734460][T20160]  ? ksys_write+0x1ac/0x250
[  948.734492][T20160]  do_eventfd+0x67/0x2b0
[  948.734521][T20160]  __x64_sys_eventfd+0x32/0x50
[  948.734547][T20160]  do_syscall_64+0x115/0x840
[  948.734581][T20160]  ? clear_bhb_loop+0x40/0x90
[  948.734610][T20160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  948.734635][T20160] RIP: 0033:0x7f49eaf9ce59
[  948.734653][T20160] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  948.734678][T20160] RSP: 002b:00007f49ebd85028 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  948.734700][T20160] RAX: ffffffffffffffda RBX: 00007f49eb215fa0 RCX: 00007f49eaf9ce59
[  948.734717][T20160] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  948.734731][T20160] RBP: 00007f49eb032d6f R08: 0000000000000000 R09: 0000000000000000
[  948.734746][T20160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  948.734760][T20160] R13: 00007f49eb216038 R14: 00007f49eb215fa0 R15: 00007fff98b82fa8
[  948.734790][T20160]  </TASK>
[  949.466088][T12908] Bluetooth: hci1: command 0x0406 tx timeout
[  949.884000][T20164] FAULT_INJECTION: forcing a failure.
[  949.884000][T20164] name failslab, interval 1, probability 0, space 0, times 0
[  949.940622][T20164] CPU: 0 UID: 0 PID: 20164 Comm: syz.3.2696 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  949.940662][T20164] Tainted: [L]=SOFTLOCKUP
[  949.940670][T20164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  949.940685][T20164] Call Trace:
[  949.940692][T20164]  <TASK>
[  949.940702][T20164]  dump_stack_lvl+0x100/0x190
[  949.940750][T20164]  should_fail_ex.cold+0x5/0xa
[  949.940781][T20164]  should_failslab+0xc2/0x120
[  949.940811][T20164]  __kmalloc_cache_noprof+0x7a/0x6f0
[  949.940846][T20164]  ? do_eventfd+0x67/0x2b0
[  949.940869][T20164]  ? ksys_write+0x1ac/0x250
[  949.940902][T20164]  do_eventfd+0x67/0x2b0
[  949.940927][T20164]  __x64_sys_eventfd+0x32/0x50
[  949.940953][T20164]  do_syscall_64+0x115/0x840
[  949.940987][T20164]  ? clear_bhb_loop+0x40/0x90
[  949.941017][T20164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  949.941042][T20164] RIP: 0033:0x7f49eaf9ce59
[  949.941067][T20164] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  949.941093][T20164] RSP: 002b:00007f49ebd85028 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  949.941116][T20164] RAX: ffffffffffffffda RBX: 00007f49eb215fa0 RCX: 00007f49eaf9ce59
[  949.941132][T20164] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  949.941147][T20164] RBP: 00007f49eb032d6f R08: 0000000000000000 R09: 0000000000000000
[  949.941161][T20164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  949.941175][T20164] R13: 00007f49eb216038 R14: 00007f49eb215fa0 R15: 00007fff98b82fa8
[  949.941206][T20164]  </TASK>
[  950.948523][T20181] futex_wake_op: syz.2.2699 tries to shift op by -2048; fix this program
[  951.983525][T20194] futex_wake_op: syz.0.2702 tries to shift op by -2048; fix this program
[  952.067044][T20191] 0x000000000001-0x000000020000 : ""
[  952.111077][T20191] ftl_cs: FTL header corrupt!
[  952.406653][T20200] ERROR: Out of memory at tomoyo_memory_ok.
[  952.515134][T20206] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2705'.
[  952.615879][T20208] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2705'.
[  952.709745][T20208] ipvlan1: entered promiscuous mode
[  952.709808][T20208] ipvlan1: entered allmulticast mode
[  952.709825][T20208] veth0_vlan: entered allmulticast mode
[  953.240174][T20220] FAULT_INJECTION: forcing a failure.
[  953.240174][T20220] name failslab, interval 1, probability 0, space 0, times 0
[  953.240254][T20220] CPU: 0 UID: 0 PID: 20220 Comm: syz.0.2707 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  953.240289][T20220] Tainted: [L]=SOFTLOCKUP
[  953.240297][T20220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  953.240312][T20220] Call Trace:
[  953.240320][T20220]  <TASK>
[  953.240329][T20220]  dump_stack_lvl+0x100/0x190
[  953.240374][T20220]  should_fail_ex.cold+0x5/0xa
[  953.240405][T20220]  should_failslab+0xc2/0x120
[  953.240434][T20220]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  953.240474][T20220]  ? radix_tree_node_alloc.constprop.0+0x66/0x340
[  953.240511][T20220]  radix_tree_node_alloc.constprop.0+0x66/0x340
[  953.240545][T20220]  idr_get_free+0x52e/0xa00
[  953.240585][T20220]  idr_alloc_u32+0x1ac/0x320
[  953.240621][T20220]  ? __pfx_idr_alloc_u32+0x10/0x10
[  953.240658][T20220]  ? lock_acquire+0x1b1/0x370
[  953.240703][T20220]  idr_alloc_cyclic+0x10b/0x230
[  953.240739][T20220]  ? __pfx_idr_alloc_cyclic+0x10/0x10
[  953.240772][T20220]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  953.240814][T20220]  map_create+0x14d8/0x2bc0
[  953.240875][T20220]  ? __pfx_event_filter_pid_sched_wakeup_probe_post+0x10/0x10
[  953.240915][T20220]  ? preempt_schedule_thunk+0x16/0x30
[  953.240961][T20220]  ? __pfx_map_create+0x10/0x10
[  953.240995][T20220]  ? __might_fault+0xc5/0x140
[  953.241032][T20220]  ? __might_fault+0xc5/0x140
[  953.241080][T20220]  __sys_bpf+0x2091/0x4b90
[  953.241102][T20220]  ? futex_private_hash_put+0x107/0x1c0
[  953.241145][T20220]  ? __pfx___sys_bpf+0x10/0x10
[  953.241170][T20220]  ? __pfx_futex_wake+0x10/0x10
[  953.241203][T20220]  ? ksys_write+0x190/0x250
[  953.241230][T20220]  ? ksys_write+0x190/0x250
[  953.241264][T20220]  ? do_futex+0x192/0x350
[  953.241304][T20220]  ? xfd_validate_state+0x129/0x190
[  953.241326][T20220]  ? ksys_write+0x1ac/0x250
[  953.241361][T20220]  __x64_sys_bpf+0x7b/0xc0
[  953.241384][T20220]  ? lockdep_hardirqs_on+0x78/0x100
[  953.241418][T20220]  do_syscall_64+0x115/0x840
[  953.241452][T20220]  ? clear_bhb_loop+0x40/0x90
[  953.241482][T20220]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  953.241506][T20220] RIP: 0033:0x7fc18a59ce59
[  953.241525][T20220] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  953.241549][T20220] RSP: 002b:00007fc18b441028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  953.241577][T20220] RAX: ffffffffffffffda RBX: 00007fc18a816090 RCX: 00007fc18a59ce59
[  953.241592][T20220] RDX: 000000000000000f RSI: 00002000000001c0 RDI: 0000000000000000
[  953.241607][T20220] RBP: 00007fc18a632d6f R08: 0000000000000000 R09: 0000000000000000
[  953.241621][T20220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  953.241635][T20220] R13: 00007fc18a816128 R14: 00007fc18a816090 R15: 00007ffe386ffff8
[  953.241666][T20220]  </TASK>
[  954.046198][T20227] futex_wake_op: syz.3.2709 tries to shift op by -2048; fix this program
[  954.046293][T20227] futex_wake_op: syz.3.2709 tries to shift op by -2048; fix this program
[  954.416542][   T30] audit: type=1800 audit(4294967343.040:43): pid=20233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2710" name="version" dev="configfs" ino=95757 res=0 errno=0
[  955.363794][T20236] ERROR: Out of memory at tomoyo_memory_ok.
[  955.384734][T20245] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2712'.
[  955.741631][T20246] FAULT_INJECTION: forcing a failure.
[  955.741631][T20246] name failslab, interval 1, probability 0, space 0, times 0
[  955.741739][T20246] CPU: 0 UID: 0 PID: 20246 Comm: syz.0.2712 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  955.741773][T20246] Tainted: [L]=SOFTLOCKUP
[  955.741782][T20246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  955.741797][T20246] Call Trace:
[  955.741805][T20246]  <TASK>
[  955.741814][T20246]  dump_stack_lvl+0x100/0x190
[  955.741860][T20246]  should_fail_ex.cold+0x5/0xa
[  955.741892][T20246]  should_failslab+0xc2/0x120
[  955.741922][T20246]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  955.741963][T20246]  ? __d_alloc+0x34/0xa40
[  955.742002][T20246]  __d_alloc+0x34/0xa40
[  955.742039][T20246]  d_alloc+0x4a/0x1e0
[  955.742073][T20246]  lookup_one_qstr_excl+0x171/0x250
[  955.742114][T20246]  start_dirop+0x59/0xb0
[  955.742143][T20246]  simple_start_creating+0xf9/0x110
[  955.742173][T20246]  ? __pfx_simple_start_creating+0x10/0x10
[  955.742204][T20246]  ? mntput+0x70/0xa0
[  955.742229][T20246]  ? simple_pin_fs+0xa3/0x190
[  955.742260][T20246]  debugfs_start_creating.part.0+0x82/0x170
[  955.742289][T20246]  __debugfs_create_file+0xb3/0x4f0
[  955.742319][T20246]  debugfs_create_file_full+0x41/0x60
[  955.742347][T20246]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  955.742373][T20246]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  955.742396][T20246]  ? ida_alloc_range+0x70d/0x830
[  955.742456][T20246]  ? lockdep_init_map_type+0x5c/0x250
[  955.742509][T20246]  preinit_net.part.0+0x252/0x920
[  955.742540][T20246]  copy_net_ns+0x339/0x7c0
[  955.742572][T20246]  create_new_namespaces+0x3ea/0xac0
[  955.742610][T20246]  unshare_nsproxy_namespaces+0xf2/0x220
[  955.742644][T20246]  ksys_unshare+0x438/0xab0
[  955.742680][T20246]  ? __pfx_ksys_unshare+0x10/0x10
[  955.742714][T20246]  ? xfd_validate_state+0x129/0x190
[  955.742737][T20246]  ? ksys_write+0x1ac/0x250
[  955.742773][T20246]  __x64_sys_unshare+0x31/0x40
[  955.742808][T20246]  do_syscall_64+0x115/0x840
[  955.742843][T20246]  ? clear_bhb_loop+0x40/0x90
[  955.742873][T20246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  955.742898][T20246] RIP: 0033:0x7fc18a59ce59
[  955.742917][T20246] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  955.742942][T20246] RSP: 002b:00007fc18b441028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  955.742964][T20246] RAX: ffffffffffffffda RBX: 00007fc18a816090 RCX: 00007fc18a59ce59
[  955.742980][T20246] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  955.742995][T20246] RBP: 00007fc18a632d6f R08: 0000000000000000 R09: 0000000000000000
[  955.743009][T20246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  955.743024][T20246] R13: 00007fc18a816128 R14: 00007fc18a816090 R15: 00007ffe386ffff8
[  955.743055][T20246]  </TASK>
[  958.517336][T20254] netlink: 'syz.3.2713': attribute type 1 has an invalid length.
[  958.769843][T20259] Device name cannot be null; rc = [-22]
[  959.764331][T20271] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2716'.
[  960.097272][ T6128] block nbd101: Receive control failed (result -32)
[  961.509392][T20301] random: crng reseeded on system resumption
[  961.519920][T20297] futex_wake_op: syz.2.2722 tries to shift op by -2048; fix this program
[  961.558776][T20297] 0x000000000001-0x000000020000 : ""
[  961.739095][T20297] ftl_cs: FTL header corrupt!
[  962.081148][T20306] ERROR: Out of memory at tomoyo_memory_ok.
[  962.325519][T20300] ubi: mtd0 is already attached to ubi1
[  964.586964][T20338] ubi3: attaching mtd1
[  966.249389][T20360] random: crng reseeded on system resumption
[  966.489827][T20357] hub 1-0:1.0: USB hub found
[  966.519286][T20357] hub 1-0:1.0: 1 port detected
[  967.370808][ T6128] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  967.381378][ T6128] Bluetooth: hci4: Invalid handle: 0x3a4a > 0x0eff
[  967.998263][T20385] FAULT_INJECTION: forcing a failure.
[  967.998263][T20385] name failslab, interval 1, probability 0, space 0, times 0
[  968.132768][T20385] CPU: 0 UID: 0 PID: 20385 Comm: syz.2.2740 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  968.132812][T20385] Tainted: [L]=SOFTLOCKUP
[  968.132822][T20385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  968.132840][T20385] Call Trace:
[  968.132849][T20385]  <TASK>
[  968.132859][T20385]  dump_stack_lvl+0x100/0x190
[  968.132908][T20385]  should_fail_ex.cold+0x5/0xa
[  968.132938][T20385]  should_failslab+0xc2/0x120
[  968.132968][T20385]  __kmalloc_cache_noprof+0x7a/0x6f0
[  968.133003][T20385]  ? do_eventfd+0x67/0x2b0
[  968.133026][T20385]  ? ksys_write+0x1ac/0x250
[  968.133058][T20385]  do_eventfd+0x67/0x2b0
[  968.133084][T20385]  __x64_sys_eventfd+0x32/0x50
[  968.133109][T20385]  do_syscall_64+0x115/0x840
[  968.133144][T20385]  ? clear_bhb_loop+0x40/0x90
[  968.133172][T20385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  968.133197][T20385] RIP: 0033:0x7f94f3b9ce59
[  968.133216][T20385] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  968.133240][T20385] RSP: 002b:00007f94f4ad3028 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  968.133263][T20385] RAX: ffffffffffffffda RBX: 00007f94f3e16090 RCX: 00007f94f3b9ce59
[  968.133278][T20385] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  968.133293][T20385] RBP: 00007f94f3c32d6f R08: 0000000000000000 R09: 0000000000000000
[  968.133307][T20385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  968.133322][T20385] R13: 00007f94f3e16128 R14: 00007f94f3e16090 R15: 00007ffe6a3e6d48
[  968.133352][T20385]  </TASK>
[  968.476209][T20377] Process accounting resumed
[  968.933005][T20395] ERROR: Out of memory at tomoyo_memory_ok.
[  968.995633][T20392] ERROR: Out of memory at tomoyo_memory_ok.
[  970.397169][T20428] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[18117] was attempted by "ci-qemu-gce-upstream-auto/syz-executor exec"[20428]
[  970.688122][T20432] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2752'.
[  971.413580][ T6128] block nbd102: Receive control failed (result -32)
[  972.114489][T20462] futex_wake_op: syz.2.2759 tries to shift op by -2048; fix this program
[  972.137696][T20471] FAULT_INJECTION: forcing a failure.
[  972.137696][T20471] name failslab, interval 1, probability 0, space 0, times 0
[  972.220830][T20472] 0x000000000001-0x000000020000 : ""
[  972.366339][T20471] CPU: 0 UID: 0 PID: 20471 Comm: syz.3.2758 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  972.366378][T20471] Tainted: [L]=SOFTLOCKUP
[  972.366387][T20471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  972.366402][T20471] Call Trace:
[  972.366409][T20471]  <TASK>
[  972.366418][T20471]  dump_stack_lvl+0x100/0x190
[  972.366466][T20471]  should_fail_ex.cold+0x5/0xa
[  972.366497][T20471]  should_failslab+0xc2/0x120
[  972.366528][T20471]  __kmalloc_cache_noprof+0x7a/0x6f0
[  972.366564][T20471]  ? do_eventfd+0x67/0x2b0
[  972.366588][T20471]  ? ksys_write+0x1ac/0x250
[  972.366620][T20471]  do_eventfd+0x67/0x2b0
[  972.366646][T20471]  __x64_sys_eventfd+0x32/0x50
[  972.366672][T20471]  do_syscall_64+0x115/0x840
[  972.366707][T20471]  ? clear_bhb_loop+0x40/0x90
[  972.366736][T20471]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  972.366761][T20471] RIP: 0033:0x7f49eaf9ce59
[  972.366781][T20471] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  972.366806][T20471] RSP: 002b:00007f49e91f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  972.366833][T20471] RAX: ffffffffffffffda RBX: 00007f49eb216090 RCX: 00007f49eaf9ce59
[  972.366849][T20471] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  972.366862][T20471] RBP: 00007f49eb032d6f R08: 0000000000000000 R09: 0000000000000000
[  972.366885][T20471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  972.366899][T20471] R13: 00007f49eb216128 R14: 00007f49eb216090 R15: 00007fff98b82fa8
[  972.366936][T20471]  </TASK>
[  972.705886][T20475] ubi: mtd0 is already attached to ubi1
[  972.755331][T20472] ftl_cs: FTL header corrupt!
[  973.058508][T20476] ERROR: Out of memory at tomoyo_memory_ok.
[  973.207841][T20484] FAULT_INJECTION: forcing a failure.
[  973.207841][T20484] name failslab, interval 1, probability 0, space 0, times 0
[  973.276505][T20484] CPU: 0 UID: 0 PID: 20484 Comm: syz.3.2762 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  973.276544][T20484] Tainted: [L]=SOFTLOCKUP
[  973.276553][T20484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  973.276567][T20484] Call Trace:
[  973.276575][T20484]  <TASK>
[  973.276584][T20484]  dump_stack_lvl+0x100/0x190
[  973.276632][T20484]  should_fail_ex.cold+0x5/0xa
[  973.276669][T20484]  should_failslab+0xc2/0x120
[  973.276699][T20484]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  973.276739][T20484]  ? do_getname_kernel+0x5d/0x250
[  973.276780][T20484]  do_getname_kernel+0x5d/0x250
[  973.276843][T20484]  kern_path+0x1f/0x50
[  973.276874][T20484]  tomoyo_realpath_nofollow+0x8c/0x100
[  973.277006][T20484]  ? __pfx_tomoyo_realpath_nofollow+0x10/0x10
[  973.277045][T20484]  ? tomoyo_profile+0x47/0x60
[  973.277083][T20484]  ? tomoyo_init_request_info+0x101/0x370
[  973.277130][T20484]  tomoyo_find_next_domain+0x2a8/0x2010
[  973.277160][T20484]  ? __pfx___kernel_read+0x10/0x10
[  973.277186][T20484]  ? __pfx___might_resched+0x10/0x10
[  973.277218][T20484]  ? __pfx_tomoyo_find_next_domain+0x10/0x10
[  973.277257][T20484]  tomoyo_bprm_check_security+0x12d/0x1d0
[  973.277281][T20484]  ? tomoyo_bprm_check_security+0x11f/0x1d0
[  973.277307][T20484]  security_bprm_check+0x87/0x1e0
[  973.277331][T20484]  bprm_execve+0x845/0x1740
[  973.277363][T20484]  ? __pfx_bprm_execve+0x10/0x10
[  973.277387][T20484]  ? copy_string_kernel+0x339/0x3f0
[  973.277419][T20484]  do_execveat_common.isra.0+0x4a5/0x580
[  973.277451][T20484]  __x64_sys_execve+0x93/0xd0
[  973.277479][T20484]  do_syscall_64+0x115/0x840
[  973.277515][T20484]  ? clear_bhb_loop+0x40/0x90
[  973.277545][T20484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  973.277570][T20484] RIP: 0033:0x7f49eaf9ce59
[  973.277606][T20484] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  973.277630][T20484] RSP: 002b:00007f49ebd85028 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  973.277659][T20484] RAX: ffffffffffffffda RBX: 00007f49eb215fa0 RCX: 00007f49eaf9ce59
[  973.277675][T20484] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000080
[  973.277690][T20484] RBP: 00007f49eb032d6f R08: 0000000000000000 R09: 0000000000000000
[  973.277705][T20484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  973.277720][T20484] R13: 00007f49eb216038 R14: 00007f49eb215fa0 R15: 00007fff98b82fa8
[  973.277750][T20484]  </TASK>
[  973.785647][T20484] ERROR: Out of memory at tomoyo_memory_ok.
[  975.160155][T20519] futex_wake_op: syz.3.2767 tries to shift op by -2048; fix this program
[  975.459825][T20512] 0x000000000001-0x000000020000 : ""
[  975.509534][T20512] ftl_cs: FTL header corrupt!
[  975.823076][T20523] ERROR: Out of memory at tomoyo_memory_ok.
[  976.025198][T20527] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2769'.
[  976.040583][T20519] ubi: mtd0 is already attached to ubi1
[  976.254835][T20514] netlink: 206 bytes leftover after parsing attributes in process `syz.4.2768'.
[  976.600160][T20513] Process accounting paused
[  976.829471][T20536] FAULT_INJECTION: forcing a failure.
[  976.829471][T20536] name fail_futex, interval 1, probability 0, space 0, times 0
[  976.931670][T20536] CPU: 0 UID: 0 PID: 20536 Comm: syz.0.2771 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  976.931709][T20536] Tainted: [L]=SOFTLOCKUP
[  976.931717][T20536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  976.931732][T20536] Call Trace:
[  976.931740][T20536]  <TASK>
[  976.931749][T20536]  dump_stack_lvl+0x100/0x190
[  976.931795][T20536]  should_fail_ex.cold+0x5/0xa
[  976.931826][T20536]  get_futex_key+0x1d2/0x1510
[  976.931870][T20536]  ? __pfx_get_futex_key+0x10/0x10
[  976.931907][T20536]  ? futex_hash+0x2ad/0x370
[  976.931948][T20536]  ? lock_acquire+0x1b1/0x370
[  976.931990][T20536]  futex_wake+0xea/0x530
[  976.932017][T20536]  ? rcu_is_watching+0x12/0xc0
[  976.932048][T20536]  ? __pfx_futex_wake+0x10/0x10
[  976.932076][T20536]  ? __mutex_lock+0x26d/0x1b10
[  976.932174][T20536]  ? fdget_pos+0x2aa/0x380
[  976.932208][T20536]  ? ksys_write+0x190/0x250
[  976.932235][T20536]  ? ksys_write+0x190/0x250
[  976.932277][T20536]  do_futex+0x32b/0x350
[  976.932306][T20536]  ? __pfx_do_futex+0x10/0x10
[  976.932339][T20536]  __x64_sys_futex+0x34f/0x4d0
[  976.932367][T20536]  ? fput+0x79/0x100
[  976.932400][T20536]  ? __pfx___x64_sys_futex+0x10/0x10
[  976.932424][T20536]  ? ksys_write+0x1ac/0x250
[  976.932452][T20536]  ? __pfx_ksys_write+0x10/0x10
[  976.932483][T20536]  ? rcu_is_watching+0x12/0xc0
[  976.932515][T20536]  do_syscall_64+0x115/0x840
[  976.932550][T20536]  ? clear_bhb_loop+0x40/0x90
[  976.932579][T20536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  976.932603][T20536] RIP: 0033:0x7fc18a59ce59
[  976.932623][T20536] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  976.932647][T20536] RSP: 002b:00007fc18b4410e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  976.932670][T20536] RAX: ffffffffffffffda RBX: 00007fc18a816098 RCX: 00007fc18a59ce59
[  976.932685][T20536] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc18a81609c
[  976.932700][T20536] RBP: 00007fc18a816090 R08: 0000000000000001 R09: 0000000000000000
[  976.932715][T20536] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  976.932730][T20536] R13: 00007fc18a816128 R14: 00007ffe386fff10 R15: 00007ffe386ffff8
[  976.932760][T20536]  </TASK>
[  977.770057][T20549] ubi9: attaching mtd2
[  977.809975][T20549] ubi9 error: ubi_attach_mtd_dev: bad VID header (10) or data offsets (74)
[  978.704385][T20557] ERROR: Out of memory at tomoyo_memory_ok.
[  979.289368][   T30] audit: type=1800 audit(4294967367.920:44): pid=20562 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2779" name="file0" dev="tmpfs" ino=460 res=0 errno=0
[  980.181517][ T6128] block nbd103: Receive control failed (result -32)
[  985.124413][T20648] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137
[  985.255326][T20648] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138
[  985.411265][T20648] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum
[  985.841705][T20668] netlink: 164 bytes leftover after parsing attributes in process `syz.4.2802'.
[  985.858312][T20666] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 2: bad block bitmap checksum
[  986.593471][T12908] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  986.615475][T12908] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  986.632091][T12908] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  986.647863][T12908] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  986.657198][T12908] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  987.850150][T12908] Bluetooth: hci0: unexpected subevent 0x01 length: 124 > 18
[  987.860485][T20690] futex_wake_op: syz.4.2805 tries to shift op by -2048; fix this program
[  987.927250][T20690] futex_wake_op: syz.4.2805 tries to shift op by -2048; fix this program
[  988.743042][T12908] Bluetooth: hci2: command tx timeout
[  990.822908][T12908] Bluetooth: hci2: command tx timeout
[  991.568548][T20749] random: crng reseeded on system resumption
[  991.670725][T20749] hub 1-0:1.0: USB hub found
[  991.707923][T20749] hub 1-0:1.0: 1 port detected
[  992.364619][T20738] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  992.902504][T12908] Bluetooth: hci2: command tx timeout
[  993.210723][T20676] bridge0: port 1(bridge_slave_0) entered blocking state
[  993.245664][T20676] bridge0: port 1(bridge_slave_0) entered disabled state
[  993.266340][T20676] bridge_slave_0: entered allmulticast mode
[  993.294986][T20676] bridge_slave_0: entered promiscuous mode
[  993.377249][T20676] bridge0: port 2(bridge_slave_1) entered blocking state
[  993.399096][T20676] bridge0: port 2(bridge_slave_1) entered disabled state
[  993.418419][T20676] bridge_slave_1: entered allmulticast mode
[  993.432861][T20676] bridge_slave_1: entered promiscuous mode
[  993.471347][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  993.483030][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  993.601160][T20676] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  993.678964][T20676] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  994.019950][T20676] team0: Port device team_slave_0 added
[  994.074358][T20676] team0: Port device team_slave_1 added
[  994.104597][T20755] FAULT_INJECTION: forcing a failure.
[  994.104597][T20755] name failslab, interval 1, probability 0, space 0, times 0
[  994.169863][T20755] CPU: 0 UID: 0 PID: 20755 Comm: syz.3.2815 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  994.169902][T20755] Tainted: [L]=SOFTLOCKUP
[  994.169910][T20755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  994.169925][T20755] Call Trace:
[  994.169933][T20755]  <TASK>
[  994.169942][T20755]  dump_stack_lvl+0x100/0x190
[  994.169991][T20755]  should_fail_ex.cold+0x5/0xa
[  994.170023][T20755]  should_failslab+0xc2/0x120
[  994.170053][T20755]  __kmalloc_cache_noprof+0x7a/0x6f0
[  994.170089][T20755]  ? pty_common_install+0x10e/0xb30
[  994.170185][T20755]  pty_common_install+0x10e/0xb30
[  994.170216][T20755]  ? __pfx_pty_install+0x10/0x10
[  994.170243][T20755]  tty_init_dev.part.0+0x9e/0x470
[  994.170281][T20755]  tty_open+0xa63/0xfa0
[  994.170319][T20755]  ? __pfx_tty_open+0x10/0x10
[  994.170350][T20755]  ? chrdev_open+0x10b/0x6a0
[  994.170380][T20755]  ? chrdev_open+0x10b/0x6a0
[  994.170415][T20755]  ? __pfx_tty_open+0x10/0x10
[  994.170448][T20755]  chrdev_open+0x234/0x6a0
[  994.170478][T20755]  ? __pfx_apparmor_file_open+0x10/0x10
[  994.170505][T20755]  ? __pfx_chrdev_open+0x10/0x10
[  994.170538][T20755]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  994.170605][T20755]  do_dentry_open+0x6ab/0x14d0
[  994.170635][T20755]  ? __pfx_chrdev_open+0x10/0x10
[  994.170672][T20755]  vfs_open+0x82/0x3f0
[  994.170712][T20755]  path_openat+0x208c/0x31a0
[  994.170752][T20755]  ? __pfx_path_openat+0x10/0x10
[  994.170794][T20755]  do_file_open+0x20e/0x430
[  994.170827][T20755]  ? __pfx_do_file_open+0x10/0x10
[  994.170879][T20755]  ? alloc_fd+0x476/0x790
[  994.170911][T20755]  ? do_getname+0x191/0x390
[  994.170950][T20755]  do_sys_openat2+0x10d/0x1e0
[  994.170988][T20755]  ? __pfx_do_sys_openat2+0x10/0x10
[  994.171028][T20755]  ? __fget_files+0x21f/0x3d0
[  994.171062][T20755]  __x64_sys_openat+0x12d/0x210
[  994.171102][T20755]  ? __pfx___x64_sys_openat+0x10/0x10
[  994.171149][T20755]  ? rcu_is_watching+0x12/0xc0
[  994.171181][T20755]  do_syscall_64+0x115/0x840
[  994.171216][T20755]  ? clear_bhb_loop+0x40/0x90
[  994.171246][T20755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  994.171271][T20755] RIP: 0033:0x7f49eaf9ce59
[  994.171291][T20755] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  994.171315][T20755] RSP: 002b:00007f49e91f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  994.171337][T20755] RAX: ffffffffffffffda RBX: 00007f49eb216090 RCX: 00007f49eaf9ce59
[  994.171353][T20755] RDX: 0000000000082082 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  994.171369][T20755] RBP: 00007f49eb032d6f R08: 0000000000000000 R09: 0000000000000000
[  994.171384][T20755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  994.171398][T20755] R13: 00007f49eb216128 R14: 00007f49eb216090 R15: 00007fff98b82fa8
[  994.171429][T20755]  </TASK>
[  994.478929][T20757] futex_wake_op: syz.4.2816 tries to shift op by -2048; fix this program
[  994.487671][T20757] futex_wake_op: syz.4.2816 tries to shift op by -2048; fix this program
[  994.605954][T20676] batman_adv: batadv0: Adding interface: batadv_slave_0
[  994.613689][T20676] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  994.639769][T20676] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  994.652728][T20676] batman_adv: batadv0: Adding interface: batadv_slave_1
[  994.659716][T20676] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  994.688235][T20676] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  994.737001][T20676] hsr_slave_0: entered promiscuous mode
[  994.743732][T20676] hsr_slave_1: entered promiscuous mode
[  994.749960][T20676] debugfs: 'hsr0' already exists in 'hsr'
[  994.794038][T20676] Cannot create hsr debugfs directory
[  995.018778][T12908] Bluetooth: hci2: command tx timeout
[  995.585044][T20769] random: crng reseeded on system resumption
[  995.788493][T20770] hub 1-0:1.0: USB hub found
[  995.839032][T20770] hub 1-0:1.0: 1 port detected
[  996.458149][T20676] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  996.700381][T12908] block nbd104: Receive control failed (result -32)
[  997.248818][T20676] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  997.268333][T20787] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2820'.
[  997.452934][T20676] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  997.602214][T20784] nbd: socks must be embedded in a SOCK_ITEM attr
[  997.670168][T20784] block nbd105: shutting down sockets
[  997.880024][T20676] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  997.992601][T20780] bond0: invalid ARP target specified
[  998.179619][T20795] FAULT_INJECTION: forcing a failure.
[  998.179619][T20795] name failslab, interval 1, probability 0, space 0, times 0
[  998.260486][T20795] CPU: 0 UID: 0 PID: 20795 Comm: syz.0.2823 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  998.260525][T20795] Tainted: [L]=SOFTLOCKUP
[  998.260533][T20795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  998.260547][T20795] Call Trace:
[  998.260555][T20795]  <TASK>
[  998.260564][T20795]  dump_stack_lvl+0x100/0x190
[  998.260615][T20795]  should_fail_ex.cold+0x5/0xa
[  998.260646][T20795]  should_failslab+0xc2/0x120
[  998.260676][T20795]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  998.260716][T20795]  ? __kernfs_new_node+0xd2/0x9f0
[  998.260749][T20795]  __kernfs_new_node+0xd2/0x9f0
[  998.260779][T20795]  ? __pfx___kernfs_new_node+0x10/0x10
[  998.260814][T20795]  ? find_held_lock+0x2b/0x80
[  998.260844][T20795]  ? kernfs_root+0xee/0x2a0
[  998.260869][T20795]  ? kernfs_root+0xee/0x2a0
[  998.260902][T20795]  kernfs_new_node+0x11b/0x1a0
[  998.260938][T20795]  __kernfs_create_file+0x53/0x350
[  998.260979][T20795]  sysfs_add_file_mode_ns+0x207/0x3c0
[  998.261011][T20795]  sysfs_merge_group+0x194/0x340
[  998.261040][T20795]  ? __pfx_sysfs_merge_group+0x10/0x10
[  998.261069][T20795]  ? bus_add_device+0x368/0x6b0
[  998.261189][T20795]  ? __pfx_bus_add_device+0x10/0x10
[  998.261222][T20795]  ? __pfx_dev_add_physical_location+0x10/0x10
[  998.261287][T20795]  dpm_sysfs_add+0x237/0x280
[  998.261333][T20795]  device_add+0x9ef/0x1950
[  998.261362][T20795]  ? __pfx_device_add+0x10/0x10
[  998.261388][T20795]  ? lockdep_init_map_type+0x5c/0x250
[  998.261429][T20795]  ? __init_waitqueue_head+0xca/0x150
[  998.261464][T20795]  rfkill_register+0x1ad/0xb30
[  998.261525][T20795]  nfc_register_device+0x11f/0x3e0
[  998.261610][T20795]  nci_register_device+0x7f1/0xb80
[  998.261642][T20795]  ? __pfx_nci_register_device+0x10/0x10
[  998.261675][T20795]  ? lockdep_init_map_type+0x5c/0x250
[  998.261720][T20795]  virtual_ncidev_open+0x141/0x220
[  998.261753][T20795]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  998.261779][T20795]  misc_open+0x26d/0x450
[  998.261807][T20795]  ? __pfx_misc_open+0x10/0x10
[  998.261831][T20795]  chrdev_open+0x234/0x6a0
[  998.261862][T20795]  ? __pfx_apparmor_file_open+0x10/0x10
[  998.261889][T20795]  ? __pfx_chrdev_open+0x10/0x10
[  998.261922][T20795]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  998.261960][T20795]  do_dentry_open+0x6ab/0x14d0
[  998.261990][T20795]  ? __pfx_chrdev_open+0x10/0x10
[  998.262027][T20795]  vfs_open+0x82/0x3f0
[  998.262067][T20795]  path_openat+0x208c/0x31a0
[  998.262112][T20795]  ? __pfx_path_openat+0x10/0x10
[  998.262155][T20795]  do_file_open+0x20e/0x430
[  998.262189][T20795]  ? __pfx_do_file_open+0x10/0x10
[  998.262241][T20795]  ? alloc_fd+0x476/0x790
[  998.262273][T20795]  ? do_getname+0x191/0x390
[  998.262312][T20795]  do_sys_openat2+0x10d/0x1e0
[  998.262350][T20795]  ? __pfx_do_sys_openat2+0x10/0x10
[  998.262390][T20795]  ? __fget_files+0x21f/0x3d0
[  998.262425][T20795]  __x64_sys_openat+0x12d/0x210
[  998.262464][T20795]  ? __pfx___x64_sys_openat+0x10/0x10
[  998.262507][T20795]  ? rcu_is_watching+0x12/0xc0
[  998.262538][T20795]  do_syscall_64+0x115/0x840
[  998.262573][T20795]  ? clear_bhb_loop+0x40/0x90
[  998.262602][T20795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  998.262627][T20795] RIP: 0033:0x7fc18a59ce59
[  998.262648][T20795] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  998.262672][T20795] RSP: 002b:00007fc18b420028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  998.262695][T20795] RAX: ffffffffffffffda RBX: 00007fc18a816180 RCX: 00007fc18a59ce59
[  998.262712][T20795] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  998.262727][T20795] RBP: 00007fc18a632d6f R08: 0000000000000000 R09: 0000000000000000
[  998.262742][T20795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  998.262757][T20795] R13: 00007fc18a816218 R14: 00007fc18a816180 R15: 00007ffe386ffff8
[  998.262788][T20795]  </TASK>
[  999.184655][T20792] Process accounting paused
[  999.539597][T20806] FAULT_INJECTION: forcing a failure.
[  999.539597][T20806] name fail_futex, interval 1, probability 0, space 0, times 0
[  999.607060][T20806] CPU: 0 UID: 0 PID: 20806 Comm: syz.0.2825 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  999.607104][T20806] Tainted: [L]=SOFTLOCKUP
[  999.607114][T20806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  999.607128][T20806] Call Trace:
[  999.607136][T20806]  <TASK>
[  999.607144][T20806]  dump_stack_lvl+0x100/0x190
[  999.607193][T20806]  should_fail_ex.cold+0x5/0xa
[  999.607225][T20806]  get_futex_key+0x1d2/0x1510
[  999.607268][T20806]  ? __pfx_get_futex_key+0x10/0x10
[  999.607305][T20806]  ? futex_hash+0x2ad/0x370
[  999.607345][T20806]  ? futex_hash+0x141/0x370
[  999.607387][T20806]  futex_wake+0xea/0x530
[  999.607419][T20806]  ? __pfx_futex_wake+0x10/0x10
[  999.607461][T20806]  do_futex+0x32b/0x350
[  999.607486][T20806]  ? __pfx_do_futex+0x10/0x10
[  999.607518][T20806]  __x64_sys_futex+0x34f/0x4d0
[  999.607545][T20806]  ? fdget_pos+0x2c0/0x380
[  999.607577][T20806]  ? __pfx___x64_sys_futex+0x10/0x10
[  999.607601][T20806]  ? ksys_write+0x1ac/0x250
[  999.607628][T20806]  ? __pfx_ksys_write+0x10/0x10
[  999.607659][T20806]  ? rcu_is_watching+0x12/0xc0
[  999.607690][T20806]  do_syscall_64+0x115/0x840
[  999.607725][T20806]  ? clear_bhb_loop+0x40/0x90
[  999.607755][T20806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  999.607780][T20806] RIP: 0033:0x7fc18a59ce59
[  999.607800][T20806] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  999.607824][T20806] RSP: 002b:00007fc18b4620e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  999.607847][T20806] RAX: ffffffffffffffda RBX: 00007fc18a815fa8 RCX: 00007fc18a59ce59
[  999.607863][T20806] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc18a815fac
[  999.607879][T20806] RBP: 00007fc18a815fa0 R08: 0000000000000001 R09: 0000000000000000
[  999.607893][T20806] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  999.607908][T20806] R13: 00007fc18a816038 R14: 00007ffe386fff10 R15: 00007ffe386ffff8
[  999.607939][T20806]  </TASK>
[ 1001.666776][T20814] FAULT_INJECTION: forcing a failure.
[ 1001.666776][T20814] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1001.702962][T20814] CPU: 0 UID: 0 PID: 20814 Comm: syz.0.2827 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1001.702999][T20814] Tainted: [L]=SOFTLOCKUP
[ 1001.703007][T20814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1001.703021][T20814] Call Trace:
[ 1001.703028][T20814]  <TASK>
[ 1001.703036][T20814]  dump_stack_lvl+0x100/0x190
[ 1001.703083][T20814]  should_fail_ex.cold+0x5/0xa
[ 1001.703113][T20814]  _copy_to_user+0x32/0xd0
[ 1001.703230][T20814]  simple_read_from_buffer+0xcb/0x170
[ 1001.703260][T20814]  proc_fail_nth_read+0x1af/0x230
[ 1001.703298][T20814]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1001.703338][T20814]  ? rw_verify_area+0xce/0x6d0
[ 1001.703361][T20814]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1001.703406][T20814]  vfs_read+0x1e4/0xb30
[ 1001.703435][T20814]  ? __pfx_vfs_read+0x10/0x10
[ 1001.703461][T20814]  ? __fget_files+0x215/0x3d0
[ 1001.703495][T20814]  ? __fget_files+0x21f/0x3d0
[ 1001.703530][T20814]  ksys_read+0x12a/0x250
[ 1001.703556][T20814]  ? __pfx_ksys_read+0x10/0x10
[ 1001.703585][T20814]  ? rcu_is_watching+0x12/0xc0
[ 1001.703616][T20814]  do_syscall_64+0x115/0x840
[ 1001.703650][T20814]  ? clear_bhb_loop+0x40/0x90
[ 1001.703679][T20814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1001.703703][T20814] RIP: 0033:0x7fc18a55d68e
[ 1001.703722][T20814] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1001.703745][T20814] RSP: 002b:00007fc18b461fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1001.703767][T20814] RAX: ffffffffffffffda RBX: 00007fc18b4626c0 RCX: 00007fc18a55d68e
[ 1001.703783][T20814] RDX: 000000000000000f RSI: 00007fc18b4620a0 RDI: 0000000000000005
[ 1001.703797][T20814] RBP: 00007fc18b462090 R08: 0000000000000000 R09: 0000000000000000
[ 1001.703810][T20814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1001.703824][T20814] R13: 00007fc18a816038 R14: 00007fc18a815fa0 R15: 00007ffe386ffff8
[ 1001.703854][T20814]  </TASK>
[ 1003.544329][T20828] futex_wake_op: syz.0.2830 tries to shift op by -2048; fix this program
[ 1003.572179][T20828] 0x000000000001-0x000000020000 : ""
[ 1003.592392][T20828] ftl_cs: FTL header corrupt!
[ 1003.813003][T20832] ERROR: Out of memory at tomoyo_memory_ok.
[ 1004.678702][T20840] futex_wake_op: syz.0.2832 tries to shift op by -2048; fix this program
[ 1004.759265][T20839] 0x000000000001-0x000000020000 : ""
[ 1004.777899][T20839] ftl_cs: FTL header corrupt!
[ 1004.944418][T20841] ERROR: Out of memory at tomoyo_memory_ok.
[ 1004.964190][T20840] ubi: mtd0 is already attached to ubi1
[ 1006.740877][T20845] kexec: Could not allocate control_code_buffer
[ 1006.928880][T20850] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2834'.
[ 1006.964015][T20850] ipvlan1: entered promiscuous mode
[ 1006.982644][T20850] ipvlan1: entered allmulticast mode
[ 1006.989708][T20850] veth0_vlan: entered allmulticast mode
[ 1007.692597][T20854] futex_wake_op: syz.0.2835 tries to shift op by -2048; fix this program
[ 1007.793161][T20853] 0x000000000001-0x000000020000 : ""
[ 1007.812816][T20853] ftl_cs: FTL header corrupt!
[ 1007.986366][T20855] ERROR: Out of memory at tomoyo_memory_ok.
[ 1011.947353][T20879] futex_wake_op: syz.0.2839 tries to shift op by -2048; fix this program
[ 1011.984576][T20879] 0x000000000001-0x000000020000 : ""
[ 1012.008390][T20879] ftl_cs: FTL header corrupt!
[ 1012.252779][T14336] Process accounting resumed
[ 1012.336846][T20882] ERROR: Out of memory at tomoyo_memory_ok.
[ 1012.690417][T20880] ubi: mtd0 is already attached to ubi1
[ 1012.744573][ T6128] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1012.772615][ T6128] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1012.783564][ T6128] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1012.800368][ T6128] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1012.812397][ T6128] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1014.558409][T20886] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1014.595628][T20886] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1014.627266][T20886] bridge_slave_0: entered allmulticast mode
[ 1014.664616][T20886] bridge_slave_0: entered promiscuous mode
[ 1014.706037][T12908] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1014.721467][T12908] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1014.731044][T12908] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1014.756477][T12908] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1014.768174][T12908] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1014.835473][T20886] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1014.874015][T20886] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1014.908788][T12908] Bluetooth: hci3: command tx timeout
[ 1014.925791][T20886] bridge_slave_1: entered allmulticast mode
[ 1014.969818][T20886] bridge_slave_1: entered promiscuous mode
[ 1015.118257][T20886] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1015.175382][T20886] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1015.327774][T20886] team0: Port device team_slave_0 added
[ 1015.360748][T20886] team0: Port device team_slave_1 added
[ 1015.507971][T20886] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1015.546740][T20886] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1015.665166][T20886] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1015.723640][T20886] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1015.758767][T20886] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1015.879747][T20886] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1016.126850][T20886] hsr_slave_0: entered promiscuous mode
[ 1016.151934][T20886] hsr_slave_1: entered promiscuous mode
[ 1016.174397][T20886] debugfs: 'hsr0' already exists in 'hsr'
[ 1016.200226][T20886] Cannot create hsr debugfs directory
[ 1016.830446][T12908] Bluetooth: hci5: command tx timeout
[ 1016.986465][T12908] Bluetooth: hci3: command tx timeout
[ 1017.728500][T20938] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1017.942261][T20936] ERROR: Out of memory at tomoyo_memory_ok.
[ 1017.968871][T20911] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1018.012554][T20911] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1018.029231][T20938] ERROR: Out of memory at tomoyo_memory_ok.
[ 1018.041000][T20911] bridge_slave_0: entered allmulticast mode
[ 1018.089067][T20911] bridge_slave_0: entered promiscuous mode
[ 1018.118405][T20911] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1018.161838][T20911] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1018.190452][T20911] bridge_slave_1: entered allmulticast mode
[ 1018.226065][T20911] bridge_slave_1: entered promiscuous mode
[ 1018.334340][T20911] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1018.391521][T20911] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1018.516137][T20911] team0: Port device team_slave_0 added
[ 1018.567830][T20911] team0: Port device team_slave_1 added
[ 1018.726909][T20911] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1018.754965][T20911] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1018.846054][T20911] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1018.903057][T12908] Bluetooth: hci5: command tx timeout
[ 1018.919962][T20911] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1018.948629][T20911] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1019.039700][T20911] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1019.068885][T12908] Bluetooth: hci3: command tx timeout
[ 1019.374522][T20911] hsr_slave_0: entered promiscuous mode
[ 1019.397925][T20911] hsr_slave_1: entered promiscuous mode
[ 1019.418592][T20911] debugfs: 'hsr0' already exists in 'hsr'
[ 1019.440569][T20911] Cannot create hsr debugfs directory
[ 1020.983010][T12908] Bluetooth: hci5: command tx timeout
[ 1021.145015][T12908] Bluetooth: hci3: command tx timeout
[ 1021.998712][T12908] block nbd105: Receive control failed (result -32)
[ 1022.346461][T20976] FAULT_INJECTION: forcing a failure.
[ 1022.346461][T20976] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1022.395629][T20976] CPU: 0 UID: 0 PID: 20976 Comm: syz.0.2850 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1022.395668][T20976] Tainted: [L]=SOFTLOCKUP
[ 1022.395677][T20976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1022.395691][T20976] Call Trace:
[ 1022.395699][T20976]  <TASK>
[ 1022.395708][T20976]  dump_stack_lvl+0x100/0x190
[ 1022.395755][T20976]  should_fail_ex.cold+0x5/0xa
[ 1022.395787][T20976]  get_futex_key+0x1d2/0x1510
[ 1022.395830][T20976]  ? __pfx_get_futex_key+0x10/0x10
[ 1022.395867][T20976]  ? futex_hash+0x2ad/0x370
[ 1022.395907][T20976]  ? futex_hash+0x141/0x370
[ 1022.395949][T20976]  futex_wake+0xea/0x530
[ 1022.395981][T20976]  ? __pfx_futex_wake+0x10/0x10
[ 1022.396025][T20976]  do_futex+0x32b/0x350
[ 1022.396051][T20976]  ? __pfx_do_futex+0x10/0x10
[ 1022.396083][T20976]  __x64_sys_futex+0x34f/0x4d0
[ 1022.396110][T20976]  ? fdget_pos+0x2c0/0x380
[ 1022.396141][T20976]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1022.396166][T20976]  ? ksys_write+0x1ac/0x250
[ 1022.396193][T20976]  ? __pfx_ksys_write+0x10/0x10
[ 1022.396224][T20976]  ? rcu_is_watching+0x12/0xc0
[ 1022.396256][T20976]  do_syscall_64+0x115/0x840
[ 1022.396292][T20976]  ? clear_bhb_loop+0x40/0x90
[ 1022.396322][T20976]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1022.396347][T20976] RIP: 0033:0x7fc18a59ce59
[ 1022.396367][T20976] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1022.396391][T20976] RSP: 002b:00007fc18b4410e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1022.396414][T20976] RAX: ffffffffffffffda RBX: 00007fc18a816098 RCX: 00007fc18a59ce59
[ 1022.396430][T20976] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc18a81609c
[ 1022.396445][T20976] RBP: 00007fc18a816090 R08: 0000000000000001 R09: 0000000000000000
[ 1022.396460][T20976] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 1022.396474][T20976] R13: 00007fc18a816128 R14: 00007ffe386fff10 R15: 00007ffe386ffff8
[ 1022.396533][T20976]  </TASK>
[ 1023.074682][T12908] Bluetooth: hci5: command tx timeout
[ 1023.395545][T20983] bonding: no command found in bonding_masters - use +ifname or -ifname
[ 1024.859119][T20993] FAULT_INJECTION: forcing a failure.
[ 1024.859119][T20993] name failslab, interval 1, probability 0, space 0, times 0
[ 1024.896557][T20993] CPU: 0 UID: 0 PID: 20993 Comm: syz.0.2854 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1024.896597][T20993] Tainted: [L]=SOFTLOCKUP
[ 1024.896605][T20993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1024.896619][T20993] Call Trace:
[ 1024.896627][T20993]  <TASK>
[ 1024.896636][T20993]  dump_stack_lvl+0x100/0x190
[ 1024.896683][T20993]  should_fail_ex.cold+0x5/0xa
[ 1024.896714][T20993]  ? constrain_params_by_rules+0x175/0xcc0
[ 1024.896823][T20993]  should_failslab+0xc2/0x120
[ 1024.896853][T20993]  __kmalloc_noprof+0xe0/0x850
[ 1024.896891][T20993]  ? unwind_get_return_address+0x59/0xa0
[ 1024.896929][T20993]  constrain_params_by_rules+0x175/0xcc0
[ 1024.896975][T20993]  ? stack_trace_save+0x8e/0xc0
[ 1024.897012][T20993]  ? __pfx_constrain_params_by_rules+0x10/0x10
[ 1024.897059][T20993]  ? __kasan_kmalloc+0xaa/0xb0
[ 1024.897081][T20993]  ? snd_pcm_oss_change_params_locked+0x247/0x39f0
[ 1024.897118][T20993]  ? snd_pcm_oss_make_ready+0xeb/0x1b0
[ 1024.897152][T20993]  ? snd_pcm_oss_set_trigger.isra.0+0x331/0x6c0
[ 1024.897198][T20993]  ? rcu_is_watching+0x12/0xc0
[ 1024.897226][T20993]  ? snd_interval_refine+0x2d0/0x580
[ 1024.897276][T20993]  snd_pcm_hw_refine+0x7e7/0xad0
[ 1024.897320][T20993]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[ 1024.897368][T20993]  ? __asan_memset+0x23/0x50
[ 1024.897405][T20993]  ? _snd_pcm_hw_param_min+0x1ea/0x670
[ 1024.897443][T20993]  snd_pcm_oss_change_params_locked+0x2594/0x39f0
[ 1024.897491][T20993]  ? trace_contention_end+0x122/0x170
[ 1024.897515][T20993]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[ 1024.897559][T20993]  ? __pfx___mutex_lock+0x10/0x10
[ 1024.897596][T20993]  ? __mutex_lock+0x26d/0x1b10
[ 1024.897639][T20993]  ? find_held_lock+0x2b/0x80
[ 1024.897668][T20993]  ? snd_pcm_oss_poll+0x3ba/0xb00
[ 1024.897702][T20993]  ? snd_pcm_oss_poll+0x3ba/0xb00
[ 1024.897752][T20993]  snd_pcm_oss_make_ready+0xeb/0x1b0
[ 1024.897790][T20993]  snd_pcm_oss_set_trigger.isra.0+0x331/0x6c0
[ 1024.897832][T20993]  snd_pcm_oss_poll+0x417/0xb00
[ 1024.897865][T20993]  ? __pfx___pollwait+0x10/0x10
[ 1024.897893][T20993]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[ 1024.897927][T20993]  ? __fget_files+0x21f/0x3d0
[ 1024.897960][T20993]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[ 1024.897996][T20993]  do_select+0xd54/0x1850
[ 1024.898044][T20993]  ? __pfx_do_select+0x10/0x10
[ 1024.898072][T20993]  ? hrtimer_start_range_ns+0x860/0x1a50
[ 1024.898101][T20993]  ? __pfx___pollwait+0x10/0x10
[ 1024.898130][T20993]  ? __pfx_pollwake+0x10/0x10
[ 1024.898159][T20993]  ? __pfx_pollwake+0x10/0x10
[ 1024.898222][T20993]  ? find_held_lock+0x2b/0x80
[ 1024.898252][T20993]  ? __might_fault+0xc5/0x140
[ 1024.898288][T20993]  ? __might_fault+0xc5/0x140
[ 1024.898335][T20993]  ? core_sys_select+0x55b/0xbb0
[ 1024.898362][T20993]  core_sys_select+0x55b/0xbb0
[ 1024.898396][T20993]  ? __pfx_core_sys_select+0x10/0x10
[ 1024.898453][T20993]  ? do_futex+0x192/0x350
[ 1024.898477][T20993]  ? __pfx_do_futex+0x10/0x10
[ 1024.898514][T20993]  kern_select+0x1d0/0x280
[ 1024.898552][T20993]  ? __pfx_kern_select+0x10/0x10
[ 1024.898581][T20993]  ? xfd_validate_state+0x129/0x190
[ 1024.898612][T20993]  __x64_sys_select+0xbd/0x160
[ 1024.898639][T20993]  ? do_syscall_64+0x90/0x840
[ 1024.898673][T20993]  ? lockdep_hardirqs_on+0x78/0x100
[ 1024.898708][T20993]  do_syscall_64+0x115/0x840
[ 1024.898741][T20993]  ? clear_bhb_loop+0x40/0x90
[ 1024.898770][T20993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1024.898795][T20993] RIP: 0033:0x7fc18a59ce59
[ 1024.898815][T20993] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1024.898839][T20993] RSP: 002b:00007fc18b420028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[ 1024.898863][T20993] RAX: ffffffffffffffda RBX: 00007fc18a816180 RCX: 00007fc18a59ce59
[ 1024.898879][T20993] RDX: 0000200000000080 RSI: 0000000000000000 RDI: 0000000000000007
[ 1024.898894][T20993] RBP: 00007fc18a632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1024.898909][T20993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1024.898924][T20993] R13: 00007fc18a816218 R14: 00007fc18a816180 R15: 00007ffe386ffff8
[ 1024.898954][T20993]  </TASK>
[ 1026.802039][T21000] FAULT_INJECTION: forcing a failure.
[ 1026.802039][T21000] name failslab, interval 1, probability 0, space 0, times 0
[ 1026.836528][T21000] CPU: 0 UID: 0 PID: 21000 Comm: syz.0.2856 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1026.836567][T21000] Tainted: [L]=SOFTLOCKUP
[ 1026.836576][T21000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1026.836591][T21000] Call Trace:
[ 1026.836598][T21000]  <TASK>
[ 1026.836607][T21000]  dump_stack_lvl+0x100/0x190
[ 1026.836657][T21000]  should_fail_ex.cold+0x5/0xa
[ 1026.836690][T21000]  should_failslab+0xc2/0x120
[ 1026.836722][T21000]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[ 1026.836763][T21000]  ? alloc_inode+0x68/0x250
[ 1026.836800][T21000]  ? start_dirop+0x79/0xb0
[ 1026.836829][T21000]  ? __pfx_rpc_alloc_inode+0x10/0x10
[ 1026.836949][T21000]  alloc_inode+0x68/0x250
[ 1026.836987][T21000]  new_inode+0x22/0x1c0
[ 1026.837028][T21000]  rpc_new_dir+0x96/0x420
[ 1026.837060][T21000]  rpc_populate.constprop.0+0x125/0x1c0
[ 1026.837094][T21000]  ? d_instantiate+0x8f/0xb0
[ 1026.837130][T21000]  ? __pfx_rpc_fill_super+0x10/0x10
[ 1026.837161][T21000]  rpc_fill_super+0x2b9/0x4f0
[ 1026.837194][T21000]  ? __pfx_rpc_fill_super+0x10/0x10
[ 1026.837232][T21000]  get_tree_keyed+0x10e/0x1d0
[ 1026.837261][T21000]  vfs_get_tree+0x92/0x320
[ 1026.837284][T21000]  vfs_cmd_create+0xd7/0x2a0
[ 1026.837325][T21000]  __do_sys_fsconfig+0x55a/0xcb0
[ 1026.837367][T21000]  ? __pfx___do_sys_fsconfig+0x10/0x10
[ 1026.837407][T21000]  ? xfd_validate_state+0x129/0x190
[ 1026.837437][T21000]  ? rcu_is_watching+0x12/0xc0
[ 1026.837470][T21000]  do_syscall_64+0x115/0x840
[ 1026.837505][T21000]  ? clear_bhb_loop+0x40/0x90
[ 1026.837535][T21000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1026.837560][T21000] RIP: 0033:0x7fc18a59ce59
[ 1026.837580][T21000] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1026.837604][T21000] RSP: 002b:00007fc18b462028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[ 1026.837630][T21000] RAX: ffffffffffffffda RBX: 00007fc18a815fa0 RCX: 00007fc18a59ce59
[ 1026.837647][T21000] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[ 1026.837661][T21000] RBP: 00007fc18a632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1026.837676][T21000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1026.837691][T21000] R13: 00007fc18a816038 R14: 00007fc18a815fa0 R15: 00007ffe386ffff8
[ 1026.837724][T21000]  </TASK>
[ 1027.204165][T21000] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[ 1029.519284][T21022] Process accounting resumed
[ 1032.930430][T21062] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2874'.
[ 1035.399613][T21083] Process accounting resumed
[ 1036.740865][T21101] vivid-008: =================  START STATUS  =================
[ 1036.782826][T21101] vivid-008: ==================  END STATUS  ==================
[ 1037.903267][T21107] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2885'.
[ 1037.915227][T21106] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2885'.
[ 1037.927429][T21107] virt_wifi0: entered allmulticast mode
[ 1038.163463][T21112] FAULT_INJECTION: forcing a failure.
[ 1038.163463][T21112] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1038.216065][T21112] CPU: 0 UID: 0 PID: 21112 Comm: syz.0.2886 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1038.216110][T21112] Tainted: [L]=SOFTLOCKUP
[ 1038.216119][T21112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1038.216133][T21112] Call Trace:
[ 1038.216141][T21112]  <TASK>
[ 1038.216150][T21112]  dump_stack_lvl+0x100/0x190
[ 1038.216198][T21112]  should_fail_ex.cold+0x5/0xa
[ 1038.216225][T21112]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1038.216260][T21112]  should_fail_alloc_page+0xeb/0x140
[ 1038.216292][T21112]  prepare_alloc_pages+0x1f0/0x5f0
[ 1038.216329][T21112]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[ 1038.216370][T21112]  ? stack_trace_save+0x8e/0xc0
[ 1038.216403][T21112]  ? __pfx_stack_trace_save+0x10/0x10
[ 1038.216434][T21112]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[ 1038.216475][T21112]  ? stack_depot_save_flags+0x27/0x9d0
[ 1038.216522][T21112]  ? kasan_save_stack+0x3f/0x50
[ 1038.216546][T21112]  ? kasan_save_stack+0x30/0x50
[ 1038.216568][T21112]  ? kasan_save_track+0x14/0x30
[ 1038.216591][T21112]  ? __kasan_slab_alloc+0x89/0x90
[ 1038.216617][T21112]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1038.216658][T21112]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1038.216699][T21112]  ? do_user_addr_fault+0x74c/0x12f0
[ 1038.216727][T21112]  ? exc_page_fault+0x6f/0xd0
[ 1038.216760][T21112]  ? asm_exc_page_fault+0x26/0x30
[ 1038.216784][T21112]  ? _copy_from_user+0x98/0xd0
[ 1038.216816][T21112]  ? ksys_semctl.constprop.0+0x201/0x2e0
[ 1038.216846][T21112]  ? do_syscall_64+0x115/0x840
[ 1038.216879][T21112]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1038.216916][T21112]  ? __lock_acquire+0x4a5/0x2630
[ 1038.216955][T21112]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1038.216993][T21112]  ? policy_nodemask+0xed/0x4f0
[ 1038.217024][T21112]  alloc_pages_mpol+0x1fb/0x540
[ 1038.217054][T21112]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1038.217082][T21112]  ? __thp_vma_allowable_orders+0x1d9/0xce0
[ 1038.217123][T21112]  ? do_raw_spin_lock+0x128/0x260
[ 1038.217153][T21112]  alloc_pages_noprof+0x1a/0x160
[ 1038.217187][T21112]  pte_alloc_one+0x1c/0x3d0
[ 1038.217221][T21112]  do_fault+0x86c/0x1750
[ 1038.217252][T21112]  ? __pmd_alloc+0x3fb/0x950
[ 1038.217288][T21112]  __handle_mm_fault+0x187d/0x2a00
[ 1038.217330][T21112]  ? mt_find+0x45e/0x8e0
[ 1038.217369][T21112]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1038.217406][T21112]  ? __pfx_mt_find+0x10/0x10
[ 1038.217459][T21112]  ? find_vma+0xbf/0x140
[ 1038.217489][T21112]  ? __pfx_find_vma+0x10/0x10
[ 1038.217519][T21112]  handle_mm_fault+0x37b/0xa30
[ 1038.217562][T21112]  do_user_addr_fault+0x74c/0x12f0
[ 1038.217596][T21112]  ? trace_page_fault_kernel+0x7a/0x200
[ 1038.217627][T21112]  exc_page_fault+0x6f/0xd0
[ 1038.217663][T21112]  asm_exc_page_fault+0x26/0x30
[ 1038.217687][T21112] RIP: 0010:rep_movs_alternative+0x4a/0x90
[ 1038.217715][T21112] Code: 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[ 1038.217739][T21112] RSP: 0018:ffffc9000563fa68 EFLAGS: 00050202
[ 1038.217760][T21112] RAX: 0000000000000001 RBX: 0000000000000081 RCX: 0000000000000278
[ 1038.217776][T21112] RDX: 0000000000000001 RSI: 0000000000000081 RDI: ffff888057baa000
[ 1038.217791][T21112] RBP: 0000000000000278 R08: 0000000000000001 R09: ffffed100af7544e
[ 1038.217807][T21112] R10: ffff888057baa277 R11: 0000000000000000 R12: 0000000000000000
[ 1038.217822][T21112] R13: ffff888057baa000 R14: 0000000000000000 R15: 0000000000000092
[ 1038.217852][T21112]  _copy_from_user+0x98/0xd0
[ 1038.217888][T21112]  semctl_main+0xf27/0x2b10
[ 1038.217921][T21112]  ? __futex_wait+0x256/0x300
[ 1038.217953][T21112]  ? __pfx_semctl_main+0x10/0x10
[ 1038.218027][T21112]  ? do_futex+0x192/0x350
[ 1038.218052][T21112]  ? __pfx_do_futex+0x10/0x10
[ 1038.218080][T21112]  ksys_semctl.constprop.0+0x201/0x2e0
[ 1038.218116][T21112]  ? __pfx_ksys_semctl.constprop.0+0x10/0x10
[ 1038.218146][T21112]  ? __x64_sys_futex+0x34f/0x4d0
[ 1038.218183][T21112]  ? rcu_is_watching+0x12/0xc0
[ 1038.218216][T21112]  do_syscall_64+0x115/0x840
[ 1038.218251][T21112]  ? clear_bhb_loop+0x40/0x90
[ 1038.218281][T21112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1038.218307][T21112] RIP: 0033:0x7fc18a59ce59
[ 1038.218326][T21112] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1038.218349][T21112] RSP: 002b:00007fc18b441028 EFLAGS: 00000246 ORIG_RAX: 0000000000000042
[ 1038.218371][T21112] RAX: ffffffffffffffda RBX: 00007fc18a816090 RCX: 00007fc18a59ce59
[ 1038.218387][T21112] RDX: 0000000000000011 RSI: 000000000000000c RDI: 0000000000000000
[ 1038.218402][T21112] RBP: 00007fc18a632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1038.218417][T21112] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[ 1038.218432][T21112] R13: 00007fc18a816128 R14: 00007fc18a816090 R15: 00007ffe386ffff8
[ 1038.218463][T21112]  </TASK>
[ 1043.551138][T12908] block nbd106: Receive control failed (result -32)
[ 1044.091182][T12908] block nbd107: Receive control failed (result -32)
[ 1044.422258][T21153] ubi: mtd0 is already attached to ubi1
[ 1044.542218][T21157] random: crng reseeded on system resumption
[ 1044.802903][T21162] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1044.809226][T21162] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1044.817795][T21162] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1044.824731][T21162] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1044.840645][T21162] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1044.852541][T21162] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1044.877964][T21162] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1044.890604][T21162] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1044.899940][T21162] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1044.909509][T21162] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1044.920373][T21162] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1044.927833][T21162] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1044.936803][T21162] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1045.041480][T21167] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2897'.
[ 1045.057203][T21167] vhci_hcd vhci_hcd.2: invalid port number 194
[ 1045.174550][ T7925] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 1254 with max blocks 52 with error 117
[ 1045.188283][ T7925] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1045.188283][ T7925] 
[ 1045.580628][T21179] FAULT_INJECTION: forcing a failure.
[ 1045.580628][T21179] name failslab, interval 1, probability 0, space 0, times 0
[ 1045.595197][T21179] CPU: 0 UID: 0 PID: 21179 Comm: syz.0.2900 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1045.595245][T21179] Tainted: [L]=SOFTLOCKUP
[ 1045.595254][T21179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1045.595275][T21179] Call Trace:
[ 1045.595283][T21179]  <TASK>
[ 1045.595293][T21179]  dump_stack_lvl+0x100/0x190
[ 1045.595340][T21179]  should_fail_ex.cold+0x5/0xa
[ 1045.595373][T21179]  should_failslab+0xc2/0x120
[ 1045.595403][T21179]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1045.595444][T21179]  ? ext4_init_io_end+0x24/0x170
[ 1045.595514][T21179]  ext4_init_io_end+0x24/0x170
[ 1045.595549][T21179]  ext4_do_writepages+0x9d4/0x3f20
[ 1045.595576][T21179]  ? do_raw_spin_lock+0x128/0x260
[ 1045.595618][T21179]  ? debug_object_free+0x295/0x550
[ 1045.595656][T21179]  ? __pfx_ext4_do_writepages+0x10/0x10
[ 1045.595697][T21179]  ? ext4_writepages+0x347/0x790
[ 1045.595722][T21179]  ext4_writepages+0x347/0x790
[ 1045.595749][T21179]  ? __pfx_ext4_writepages+0x10/0x10
[ 1045.595792][T21179]  ? __pfx_ext4_writepages+0x10/0x10
[ 1045.595820][T21179]  do_writepages+0x278/0x600
[ 1045.595857][T21179]  ? __pfx_do_writepages+0x10/0x10
[ 1045.595886][T21179]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1045.595915][T21179]  ? _raw_spin_unlock+0x28/0x50
[ 1045.595949][T21179]  filemap_writeback+0x22d/0x2e0
[ 1045.595983][T21179]  ? __pfx_filemap_writeback+0x10/0x10
[ 1045.596015][T21179]  ? bio_await+0x19b/0x240
[ 1045.596120][T21179]  ? mt_find+0x45e/0x8e0
[ 1045.596160][T21179]  ? __pfx_mt_find+0x10/0x10
[ 1045.596201][T21179]  file_write_and_wait_range+0xcd/0x140
[ 1045.596241][T21179]  ext4_sync_file+0x358/0xb90
[ 1045.596273][T21179]  ? __pfx_ext4_sync_file+0x10/0x10
[ 1045.596296][T21179]  ? __up_read+0x1d0/0x6e0
[ 1045.596323][T21179]  ? __pfx___up_read+0x10/0x10
[ 1045.596348][T21179]  ? __do_sys_msync+0x39b/0x590
[ 1045.596373][T21179]  ? __pfx_ext4_sync_file+0x10/0x10
[ 1045.596396][T21179]  vfs_fsync_range+0x9b/0x190
[ 1045.596435][T21179]  __do_sys_msync+0x3ca/0x590
[ 1045.596464][T21179]  do_syscall_64+0x115/0x840
[ 1045.596499][T21179]  ? clear_bhb_loop+0x40/0x90
[ 1045.596530][T21179]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1045.596556][T21179] RIP: 0033:0x7fc18a59ce59
[ 1045.596577][T21179] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1045.596601][T21179] RSP: 002b:00007fc18b462028 EFLAGS: 00000246 ORIG_RAX: 000000000000001a
[ 1045.596625][T21179] RAX: ffffffffffffffda RBX: 00007fc18a815fa0 RCX: 00007fc18a59ce59
[ 1045.596642][T21179] RDX: 0000000400000004 RSI: 017ffffffffffffc RDI: 000000001ffff000
[ 1045.596657][T21179] RBP: 00007fc18a632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1045.596676][T21179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1045.596692][T21179] R13: 00007fc18a816038 R14: 00007fc18a815fa0 R15: 00007ffe386ffff8
[ 1045.596723][T21179]  </TASK>
[ 1046.742416][T12908] Bluetooth: hci0: command 0x2016 tx timeout
[ 1046.822444][T12908] Bluetooth: hci4: command 0x2016 tx timeout
[ 1046.857146][ T6128] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1046.873817][ T6128] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1046.883460][ T6128] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1046.904318][ T6128] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1046.910404][ T6128] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1046.917464][ T6128] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1046.927455][T21191] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1046.982704][T21191] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1047.341951][T21191] block nbd108: Receive control failed (result -32)
[ 1048.112655][T21189] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1048.123277][T21189] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1048.133629][T21189] bridge_slave_0: entered allmulticast mode
[ 1048.141284][T21189] bridge_slave_0: entered promiscuous mode
[ 1048.152256][T21189] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1048.161870][T21189] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1048.170481][T21189] bridge_slave_1: entered allmulticast mode
[ 1048.178502][T21189] bridge_slave_1: entered promiscuous mode
[ 1048.235186][T21189] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1048.248841][T21189] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1048.290782][T21189] team0: Port device team_slave_0 added
[ 1048.300649][T21189] team0: Port device team_slave_1 added
[ 1048.398973][T21189] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1048.417665][T21189] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1048.453625][T21189] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1048.469368][T21189] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1048.477604][T21189] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1048.524461][T21189] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1048.630228][T21189] hsr_slave_0: entered promiscuous mode
[ 1048.652214][T21189] hsr_slave_1: entered promiscuous mode
[ 1048.664320][T21189] debugfs: 'hsr0' already exists in 'hsr'
[ 1048.680269][T21189] Cannot create hsr debugfs directory
[ 1048.776508][T21216] ERROR: Out of memory at tomoyo_memory_ok.
[ 1048.822511][T21191] Bluetooth: hci0: command 0x2016 tx timeout
[ 1048.902841][T21191] Bluetooth: hci4: command 0x2016 tx timeout
[ 1048.982611][T12908] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1048.988686][ T7035] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1048.994881][T21191] Bluetooth: hci1: command tx timeout
[ 1049.062833][T21191] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1050.454823][T21233] FAULT_INJECTION: forcing a failure.
[ 1050.454823][T21233] name failslab, interval 1, probability 0, space 0, times 0
[ 1050.489030][T21233] CPU: 0 UID: 0 PID: 21233 Comm: syz.0.2907 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1050.489071][T21233] Tainted: [L]=SOFTLOCKUP
[ 1050.489080][T21233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1050.489095][T21233] Call Trace:
[ 1050.489103][T21233]  <TASK>
[ 1050.489113][T21233]  dump_stack_lvl+0x100/0x190
[ 1050.489160][T21233]  should_fail_ex.cold+0x5/0xa
[ 1050.489192][T21233]  should_failslab+0xc2/0x120
[ 1050.489223][T21233]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1050.489264][T21233]  ? ptlock_alloc+0x1f/0x70
[ 1050.489306][T21233]  ptlock_alloc+0x1f/0x70
[ 1050.489342][T21233]  pte_alloc_one+0x82/0x3d0
[ 1050.489376][T21233]  do_fault+0x86c/0x1750
[ 1050.489408][T21233]  ? __pmd_alloc+0x3fb/0x950
[ 1050.489442][T21233]  __handle_mm_fault+0x187d/0x2a00
[ 1050.489485][T21233]  ? mt_find+0x45e/0x8e0
[ 1050.489524][T21233]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1050.489560][T21233]  ? __pfx_mt_find+0x10/0x10
[ 1050.489613][T21233]  ? find_vma+0xbf/0x140
[ 1050.489639][T21233]  ? __pfx_find_vma+0x10/0x10
[ 1050.489670][T21233]  handle_mm_fault+0x37b/0xa30
[ 1050.489727][T21233]  do_user_addr_fault+0x74c/0x12f0
[ 1050.489766][T21233]  ? trace_page_fault_kernel+0x7a/0x200
[ 1050.489797][T21233]  exc_page_fault+0x6f/0xd0
[ 1050.489836][T21233]  asm_exc_page_fault+0x26/0x30
[ 1050.489861][T21233] RIP: 0010:rep_movs_alternative+0x4a/0x90
[ 1050.489890][T21233] Code: 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[ 1050.489915][T21233] RSP: 0018:ffffc9000381fa68 EFLAGS: 00050202
[ 1050.489935][T21233] RAX: 0000000000000001 RBX: 0000000000000081 RCX: 0000000000000278
[ 1050.489951][T21233] RDX: 0000000000000001 RSI: 0000000000000081 RDI: ffff88806814b000
[ 1050.489967][T21233] RBP: 0000000000000278 R08: 0000000000000001 R09: ffffed100d02964e
[ 1050.489982][T21233] R10: ffff88806814b277 R11: 0000000000000000 R12: 0000000000000000
[ 1050.489998][T21233] R13: ffff88806814b000 R14: 0000000000000000 R15: 0000000000000092
[ 1050.490028][T21233]  _copy_from_user+0x98/0xd0
[ 1050.490065][T21233]  semctl_main+0xf27/0x2b10
[ 1050.490097][T21233]  ? preempt_schedule_thunk+0x16/0x30
[ 1050.490136][T21233]  ? preempt_schedule_common+0x42/0xc0
[ 1050.490171][T21233]  ? __pfx_semctl_main+0x10/0x10
[ 1050.490197][T21233]  ? preempt_schedule_thunk+0x16/0x30
[ 1050.490280][T21233]  ? do_futex+0x192/0x350
[ 1050.490306][T21233]  ? __pfx_do_futex+0x10/0x10
[ 1050.490334][T21233]  ksys_semctl.constprop.0+0x201/0x2e0
[ 1050.490365][T21233]  ? __pfx_ksys_semctl.constprop.0+0x10/0x10
[ 1050.490395][T21233]  ? __x64_sys_futex+0x34f/0x4d0
[ 1050.490431][T21233]  ? rcu_is_watching+0x12/0xc0
[ 1050.490463][T21233]  do_syscall_64+0x115/0x840
[ 1050.490504][T21233]  ? clear_bhb_loop+0x40/0x90
[ 1050.490535][T21233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1050.490560][T21233] RIP: 0033:0x7fc18a59ce59
[ 1050.490580][T21233] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1050.490604][T21233] RSP: 002b:00007fc18b441028 EFLAGS: 00000246 ORIG_RAX: 0000000000000042
[ 1050.490626][T21233] RAX: ffffffffffffffda RBX: 00007fc18a816090 RCX: 00007fc18a59ce59
[ 1050.490642][T21233] RDX: 0000000000000011 RSI: 000000000000000c RDI: 0000000000000000
[ 1050.490657][T21233] RBP: 00007fc18a632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1050.490672][T21233] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[ 1050.490688][T21233] R13: 00007fc18a816128 R14: 00007fc18a816090 R15: 00007ffe386ffff8
[ 1050.490719][T21233]  </TASK>
[ 1051.076219][T21191] Bluetooth: hci1: command tx timeout
[ 1051.081733][T21191] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1051.088673][T21191] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1051.145742][ T7035] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1052.141065][T21240] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2909'.
[ 1053.142700][ T7035] Bluetooth: hci1: command tx timeout
[ 1053.438242][T21255] bond0: invalid ARP target specified
[ 1054.058680][T21259] FAULT_INJECTION: forcing a failure.
[ 1054.058680][T21259] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1054.108612][T21259] CPU: 0 UID: 0 PID: 21259 Comm: syz.0.2914 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1054.108651][T21259] Tainted: [L]=SOFTLOCKUP
[ 1054.108660][T21259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1054.108675][T21259] Call Trace:
[ 1054.108683][T21259]  <TASK>
[ 1054.108693][T21259]  dump_stack_lvl+0x100/0x190
[ 1054.108741][T21259]  should_fail_ex.cold+0x5/0xa
[ 1054.108768][T21259]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1054.108803][T21259]  should_fail_alloc_page+0xeb/0x140
[ 1054.108835][T21259]  prepare_alloc_pages+0x1f0/0x5f0
[ 1054.108875][T21259]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[ 1054.108918][T21259]  ? stack_trace_save+0x8e/0xc0
[ 1054.108951][T21259]  ? __pfx_stack_trace_save+0x10/0x10
[ 1054.108982][T21259]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[ 1054.109024][T21259]  ? stack_depot_save_flags+0x27/0x9d0
[ 1054.109070][T21259]  ? kasan_save_stack+0x3f/0x50
[ 1054.109093][T21259]  ? kasan_save_stack+0x30/0x50
[ 1054.109116][T21259]  ? kasan_save_track+0x14/0x30
[ 1054.109139][T21259]  ? __kasan_slab_alloc+0x89/0x90
[ 1054.109165][T21259]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1054.109206][T21259]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1054.109248][T21259]  ? do_user_addr_fault+0x74c/0x12f0
[ 1054.109276][T21259]  ? exc_page_fault+0x6f/0xd0
[ 1054.109309][T21259]  ? asm_exc_page_fault+0x26/0x30
[ 1054.109350][T21259]  ? _copy_from_user+0x98/0xd0
[ 1054.109384][T21259]  ? ksys_semctl.constprop.0+0x201/0x2e0
[ 1054.109417][T21259]  ? do_syscall_64+0x115/0x840
[ 1054.109450][T21259]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1054.109487][T21259]  ? __lock_acquire+0x4a5/0x2630
[ 1054.109530][T21259]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1054.109567][T21259]  ? policy_nodemask+0xed/0x4f0
[ 1054.109599][T21259]  alloc_pages_mpol+0x1fb/0x540
[ 1054.109630][T21259]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1054.109660][T21259]  ? __thp_vma_allowable_orders+0x1d9/0xce0
[ 1054.109696][T21259]  ? do_raw_spin_lock+0x128/0x260
[ 1054.109726][T21259]  alloc_pages_noprof+0x1a/0x160
[ 1054.109761][T21259]  pte_alloc_one+0x1c/0x3d0
[ 1054.109794][T21259]  do_fault+0x86c/0x1750
[ 1054.109825][T21259]  ? __pmd_alloc+0x3fb/0x950
[ 1054.109859][T21259]  __handle_mm_fault+0x187d/0x2a00
[ 1054.109902][T21259]  ? mt_find+0x45e/0x8e0
[ 1054.109941][T21259]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1054.109977][T21259]  ? __pfx_mt_find+0x10/0x10
[ 1054.110029][T21259]  ? find_vma+0xbf/0x140
[ 1054.110056][T21259]  ? __pfx_find_vma+0x10/0x10
[ 1054.110086][T21259]  handle_mm_fault+0x37b/0xa30
[ 1054.110130][T21259]  do_user_addr_fault+0x74c/0x12f0
[ 1054.110162][T21259]  ? trace_page_fault_kernel+0x7a/0x200
[ 1054.110194][T21259]  exc_page_fault+0x6f/0xd0
[ 1054.110229][T21259]  asm_exc_page_fault+0x26/0x30
[ 1054.110254][T21259] RIP: 0010:rep_movs_alternative+0x4a/0x90
[ 1054.110282][T21259] Code: 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[ 1054.110306][T21259] RSP: 0018:ffffc90003e77a68 EFLAGS: 00050202
[ 1054.110325][T21259] RAX: 0000000000000001 RBX: 0000000000000081 RCX: 0000000000000278
[ 1054.110341][T21259] RDX: 0000000000000001 RSI: 0000000000000081 RDI: ffff888047779800
[ 1054.110356][T21259] RBP: 0000000000000278 R08: 0000000000000001 R09: ffffed1008eef34e
[ 1054.110371][T21259] R10: ffff888047779a77 R11: 0000000000000000 R12: 0000000000000000
[ 1054.110387][T21259] R13: ffff888047779800 R14: 0000000000000000 R15: 0000000000000092
[ 1054.110423][T21259]  _copy_from_user+0x98/0xd0
[ 1054.110461][T21259]  semctl_main+0xf27/0x2b10
[ 1054.110493][T21259]  ? __futex_wait+0x256/0x300
[ 1054.110527][T21259]  ? __pfx_semctl_main+0x10/0x10
[ 1054.110554][T21259]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1054.110632][T21259]  ? do_futex+0x192/0x350
[ 1054.110657][T21259]  ? __pfx_do_futex+0x10/0x10
[ 1054.110685][T21259]  ksys_semctl.constprop.0+0x201/0x2e0
[ 1054.110716][T21259]  ? __pfx_ksys_semctl.constprop.0+0x10/0x10
[ 1054.110746][T21259]  ? __x64_sys_futex+0x34f/0x4d0
[ 1054.110782][T21259]  ? rcu_is_watching+0x12/0xc0
[ 1054.110814][T21259]  do_syscall_64+0x115/0x840
[ 1054.110849][T21259]  ? clear_bhb_loop+0x40/0x90
[ 1054.110879][T21259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1054.110904][T21259] RIP: 0033:0x7fc18a59ce59
[ 1054.110924][T21259] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1054.110948][T21259] RSP: 002b:00007fc18b441028 EFLAGS: 00000246 ORIG_RAX: 0000000000000042
[ 1054.110970][T21259] RAX: ffffffffffffffda RBX: 00007fc18a816090 RCX: 00007fc18a59ce59
[ 1054.110987][T21259] RDX: 0000000000000011 RSI: 000000000000000c RDI: 0000000000000000
[ 1054.111002][T21259] RBP: 00007fc18a632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1054.111017][T21259] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000
[ 1054.111032][T21259] R13: 00007fc18a816128 R14: 00007fc18a816090 R15: 00007ffe386ffff8
[ 1054.111063][T21259]  </TASK>
[ 1054.908438][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.914963][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.222946][ T7035] Bluetooth: hci1: command tx timeout
[ 1055.254160][T21261] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1055.281868][T21261] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1055.296878][T21261] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1055.306247][T21261] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1055.313362][T21261] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1055.319657][T21261] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1055.326741][T21261] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1055.341579][T21261] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1055.678861][ T7035] block nbd109: Receive control failed (result -32)
[ 1056.136899][T21275] futex_wake_op: syz.0.2918 tries to shift op by -1; fix this program
[ 1057.063278][ T7035] Bluetooth: hci0: command 0x2016 tx timeout
[ 1057.303062][ T7035] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1057.309184][ T7035] Bluetooth: hci4: command 0x2016 tx timeout
[ 1057.383062][T21191] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1057.389176][T12908] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1057.395489][ T7035] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1058.188519][T21288] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1058.197505][T21288] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1058.206989][T21288] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1058.213629][T21288] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1058.221842][T21288] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1058.229629][T21288] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1058.491485][T21293] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.2922: iget: checksum invalid
[ 1058.510453][T21293] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[ 1058.525073][T21293] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.2922: iget: checksum invalid
[ 1058.545035][T21293] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[ 1058.556547][T21293] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.2922: iget: checksum invalid
[ 1058.573230][T21293] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[ 1058.584228][T21293] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.2922: iget: checksum invalid
[ 1058.596037][T21293] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[ 1058.608688][T21293] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[ 1058.619019][T21293] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1059.382800][ T7035] Bluetooth: hci0: command 0x2016 tx timeout
[ 1060.265958][ T7035] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1060.272030][T12908] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1060.278164][T21191] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1060.284339][T12908] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1060.290443][T21191] Bluetooth: hci4: command 0x2016 tx timeout
[ 1061.384487][T21311] ICMPv6: process `syz.0.2925' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead
[ 1061.705588][T21304] block nbd110: Receive control failed (result -32)
[ 1062.342543][T21304] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1063.730533][T21304] block nbd111: Receive control failed (result -32)
[ 1066.355325][T21349] Process accounting paused
[ 1066.716104][T21357] zram: Added device: zram0
[ 1068.380647][T21368] FAULT_INJECTION: forcing a failure.
[ 1068.380647][T21368] name failslab, interval 1, probability 0, space 0, times 0
[ 1068.393914][T21368] CPU: 0 UID: 0 PID: 21368 Comm: syz.0.2937 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1068.393953][T21368] Tainted: [L]=SOFTLOCKUP
[ 1068.393963][T21368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1068.393978][T21368] Call Trace:
[ 1068.393986][T21368]  <TASK>
[ 1068.393996][T21368]  dump_stack_lvl+0x100/0x190
[ 1068.394046][T21368]  should_fail_ex.cold+0x5/0xa
[ 1068.394078][T21368]  should_failslab+0xc2/0x120
[ 1068.394108][T21368]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1068.394148][T21368]  ? create_new_namespaces+0x30/0xac0
[ 1068.394180][T21368]  ? rcu_is_watching+0x12/0xc0
[ 1068.394214][T21368]  create_new_namespaces+0x30/0xac0
[ 1068.394243][T21368]  ? bpf_lsm_capable+0x9/0x10
[ 1068.394297][T21368]  ? security_capable+0x80/0x260
[ 1068.394326][T21368]  unshare_nsproxy_namespaces+0xf2/0x220
[ 1068.394362][T21368]  ksys_unshare+0x438/0xab0
[ 1068.394400][T21368]  ? __pfx_ksys_unshare+0x10/0x10
[ 1068.394434][T21368]  ? xfd_validate_state+0x129/0x190
[ 1068.394458][T21368]  ? ksys_write+0x1ac/0x250
[ 1068.394496][T21368]  __x64_sys_unshare+0x31/0x40
[ 1068.394544][T21368]  do_syscall_64+0x115/0x840
[ 1068.394580][T21368]  ? clear_bhb_loop+0x40/0x90
[ 1068.394610][T21368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1068.394640][T21368] RIP: 0033:0x7fc18a59ce59
[ 1068.394660][T21368] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1068.394685][T21368] RSP: 002b:00007fc18b462028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1068.394709][T21368] RAX: ffffffffffffffda RBX: 00007fc18a815fa0 RCX: 00007fc18a59ce59
[ 1068.394726][T21368] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
[ 1068.394741][T21368] RBP: 00007fc18a632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1068.394757][T21368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1068.394772][T21368] R13: 00007fc18a816038 R14: 00007fc18a815fa0 R15: 00007ffe386ffff8
[ 1068.394803][T21368]  </TASK>
[ 1072.936109][ T6128] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1072.960481][ T6128] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1072.969275][ T6128] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1072.985713][ T6128] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1072.993421][ T6128] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1074.198792][T21397] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1074.214983][T21397] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1074.233167][T21397] bridge_slave_0: entered allmulticast mode
[ 1074.251886][T21397] bridge_slave_0: entered promiscuous mode
[ 1074.270852][T21397] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1074.291188][T21397] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1074.309002][T21397] bridge_slave_1: entered allmulticast mode
[ 1074.324419][T21397] bridge_slave_1: entered promiscuous mode
[ 1074.414822][T21397] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1074.449238][T21397] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1074.525672][T21397] team0: Port device team_slave_0 added
[ 1074.546978][T21397] team0: Port device team_slave_1 added
[ 1074.615084][T21397] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1074.628829][T21397] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1074.707196][T21397] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1074.756280][T21397] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1074.779674][T21397] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1074.876435][T21397] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1075.067077][T21304] Bluetooth: hci6: command tx timeout
[ 1075.089440][T21304] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1075.117181][T21304] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1075.127184][T21304] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1075.149198][T21304] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1075.164696][T21304] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1075.244077][T21397] hsr_slave_0: entered promiscuous mode
[ 1075.270834][T21397] hsr_slave_1: entered promiscuous mode
[ 1075.293295][T21397] debugfs: 'hsr0' already exists in 'hsr'
[ 1075.333158][T21397] Cannot create hsr debugfs directory
[ 1076.647599][T21416] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1076.674608][T21416] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1076.695967][T21416] bridge_slave_0: entered allmulticast mode
[ 1076.710210][T21416] bridge_slave_0: entered promiscuous mode
[ 1076.734051][T21416] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1076.752678][T21416] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1076.761530][T21416] bridge_slave_1: entered allmulticast mode
[ 1076.784188][T21416] bridge_slave_1: entered promiscuous mode
[ 1076.869158][T21416] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1076.895669][T21416] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1076.977960][T21416] team0: Port device team_slave_0 added
[ 1076.997162][T21416] team0: Port device team_slave_1 added
[ 1077.064777][T21416] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1077.082522][T21416] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1077.140336][T21416] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1077.154713][T21304] Bluetooth: hci6: command tx timeout
[ 1077.177312][T21416] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1077.192493][T21416] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1077.235862][T21304] Bluetooth: hci7: command tx timeout
[ 1077.261887][T21416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1077.388165][T21416] hsr_slave_0: entered promiscuous mode
[ 1077.403485][T21416] hsr_slave_1: entered promiscuous mode
[ 1077.415233][T21416] debugfs: 'hsr0' already exists in 'hsr'
[ 1077.432670][T21416] Cannot create hsr debugfs directory
[ 1077.864766][T21393] kexec: Could not allocate control_code_buffer
[ 1079.222770][T21304] Bluetooth: hci6: command tx timeout
[ 1079.302517][T21304] Bluetooth: hci7: command tx timeout
[ 1080.250509][T21446] kexec: Could not allocate control_code_buffer
[ 1080.612041][T21304] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[ 1081.060866][T21456] MTRR 1 not used
[ 1081.302907][ T6128] Bluetooth: hci6: command tx timeout
[ 1081.382855][ T6128] Bluetooth: hci7: command tx timeout
[ 1083.462512][ T6128] Bluetooth: hci7: command tx timeout
[ 1084.371636][T21473] random: crng reseeded on system resumption
[ 1085.895681][T21483] kAFS: No cell specified
[ 1087.203562][T21498] hub 1-0:1.0: USB hub found
[ 1087.210524][T21498] hub 1-0:1.0: 1 port detected
[ 1088.280111][T21504] ERROR: Out of memory at tomoyo_memory_ok.
[ 1092.383246][T21536] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2963'.
[ 1093.673409][ T6128] block nbd112: Receive control failed (result -32)
[ 1093.802844][T21547] futex_wake_op: syz.0.2966 tries to shift op by -2048; fix this program
[ 1093.813669][T21547] 0x000000000001-0x000000020000 : ""
[ 1093.828503][T21547] ftl_cs: FTL header corrupt!
[ 1093.950695][T21549] ubi: mtd0 is already attached to ubi1
[ 1093.961920][T21548] ERROR: Out of memory at tomoyo_memory_ok.
[ 1095.801849][T21558] Process accounting resumed
[ 1097.290340][T21580] FAULT_INJECTION: forcing a failure.
[ 1097.290340][T21580] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1097.309287][T21580] CPU: 0 UID: 0 PID: 21580 Comm: syz.0.2973 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1097.309327][T21580] Tainted: [L]=SOFTLOCKUP
[ 1097.309336][T21580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1097.309352][T21580] Call Trace:
[ 1097.309361][T21580]  <TASK>
[ 1097.309370][T21580]  dump_stack_lvl+0x100/0x190
[ 1097.309419][T21580]  should_fail_ex.cold+0x5/0xa
[ 1097.309450][T21580]  get_futex_key+0x1d2/0x1510
[ 1097.309494][T21580]  ? __pfx_get_futex_key+0x10/0x10
[ 1097.309536][T21580]  ? find_held_lock+0x2b/0x80
[ 1097.309567][T21580]  ? futex_wake+0x456/0x530
[ 1097.309603][T21580]  futex_wake+0xea/0x530
[ 1097.309636][T21580]  ? __pfx_futex_wake+0x10/0x10
[ 1097.309679][T21580]  do_futex+0x32b/0x350
[ 1097.309704][T21580]  ? __pfx_do_futex+0x10/0x10
[ 1097.309737][T21580]  __x64_sys_futex+0x34f/0x4d0
[ 1097.309765][T21580]  ? fdget_pos+0x2c0/0x380
[ 1097.309797][T21580]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1097.309822][T21580]  ? ksys_write+0x1ac/0x250
[ 1097.309850][T21580]  ? __pfx_ksys_write+0x10/0x10
[ 1097.309881][T21580]  ? rcu_is_watching+0x12/0xc0
[ 1097.309913][T21580]  do_syscall_64+0x115/0x840
[ 1097.309949][T21580]  ? clear_bhb_loop+0x40/0x90
[ 1097.309979][T21580]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1097.310012][T21580] RIP: 0033:0x7fc18a59ce59
[ 1097.310034][T21580] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1097.310059][T21580] RSP: 002b:00007fc18b4410e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1097.310082][T21580] RAX: ffffffffffffffda RBX: 00007fc18a816098 RCX: 00007fc18a59ce59
[ 1097.310099][T21580] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc18a81609c
[ 1097.310114][T21580] RBP: 00007fc18a816090 R08: 0000000000000001 R09: 0000000000000000
[ 1097.310130][T21580] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 1097.310145][T21580] R13: 00007fc18a816128 R14: 00007ffe386fff10 R15: 00007ffe386ffff8
[ 1097.310176][T21580]  </TASK>
[ 1097.915906][T21582] zswap: compressor  not available
[ 1098.310853][ T6128] block nbd113: Receive control failed (result -32)
[ 1098.966654][   T30] audit: type=1800 audit(4294967487.600:45): pid=21596 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2976" name="dbroot" dev="configfs" ino=104599 res=0 errno=0
[ 1100.058247][T21609] FAULT_INJECTION: forcing a failure.
[ 1100.058247][T21609] name failslab, interval 1, probability 0, space 0, times 0
[ 1100.071672][T21609] CPU: 0 UID: 0 PID: 21609 Comm: syz.0.2979 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1100.071718][T21609] Tainted: [L]=SOFTLOCKUP
[ 1100.071727][T21609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1100.071742][T21609] Call Trace:
[ 1100.071750][T21609]  <TASK>
[ 1100.071760][T21609]  dump_stack_lvl+0x100/0x190
[ 1100.071807][T21609]  should_fail_ex.cold+0x5/0xa
[ 1100.071838][T21609]  should_failslab+0xc2/0x120
[ 1100.071868][T21609]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1100.071905][T21609]  ? resv_map_alloc+0x46/0x400
[ 1100.071936][T21609]  resv_map_alloc+0x46/0x400
[ 1100.071963][T21609]  hugetlbfs_get_inode+0x385/0x700
[ 1100.071997][T21609]  ? do_futex+0x192/0x350
[ 1100.072027][T21609]  hugetlb_file_setup+0x15b/0x5b0
[ 1100.072066][T21609]  ksys_mmap_pgoff+0x242/0x610
[ 1100.072099][T21609]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 1100.072129][T21609]  ? xfd_validate_state+0x129/0x190
[ 1100.072160][T21609]  __x64_sys_mmap+0x125/0x190
[ 1100.072188][T21609]  do_syscall_64+0x115/0x840
[ 1100.072224][T21609]  ? clear_bhb_loop+0x40/0x90
[ 1100.072257][T21609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1100.072283][T21609] RIP: 0033:0x7fc18a59ce59
[ 1100.072302][T21609] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1100.072326][T21609] RSP: 002b:00007fc18b462028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1100.072350][T21609] RAX: ffffffffffffffda RBX: 00007fc18a815fa0 RCX: 00007fc18a59ce59
[ 1100.072366][T21609] RDX: 000000000000000b RSI: 0000000000004005 RDI: 0000000000000000
[ 1100.072381][T21609] RBP: 00007fc18a632d6f R08: 0000000000000401 R09: 0000300000000000
[ 1100.072397][T21609] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000
[ 1100.072412][T21609] R13: 00007fc18a816038 R14: 00007fc18a815fa0 R15: 00007ffe386ffff8
[ 1100.072443][T21609]  </TASK>
[ 1100.460427][T21614] FAULT_INJECTION: forcing a failure.
[ 1100.460427][T21614] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1100.497903][T21614] CPU: 0 UID: 0 PID: 21614 Comm: syz.0.2980 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1100.497944][T21614] Tainted: [L]=SOFTLOCKUP
[ 1100.497952][T21614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1100.497968][T21614] Call Trace:
[ 1100.497976][T21614]  <TASK>
[ 1100.497985][T21614]  dump_stack_lvl+0x100/0x190
[ 1100.498036][T21614]  should_fail_ex.cold+0x5/0xa
[ 1100.498067][T21614]  get_futex_key+0x1d2/0x1510
[ 1100.498112][T21614]  ? __pfx_get_futex_key+0x10/0x10
[ 1100.498152][T21614]  ? find_held_lock+0x2b/0x80
[ 1100.498183][T21614]  ? futex_wake+0x456/0x530
[ 1100.498219][T21614]  futex_wake+0xea/0x530
[ 1100.498252][T21614]  ? __pfx_futex_wake+0x10/0x10
[ 1100.498294][T21614]  do_futex+0x32b/0x350
[ 1100.498320][T21614]  ? __pfx_do_futex+0x10/0x10
[ 1100.498353][T21614]  __x64_sys_futex+0x34f/0x4d0
[ 1100.498380][T21614]  ? fdget_pos+0x2c0/0x380
[ 1100.498413][T21614]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1100.498438][T21614]  ? ksys_write+0x1ac/0x250
[ 1100.498466][T21614]  ? __pfx_ksys_write+0x10/0x10
[ 1100.498497][T21614]  ? rcu_is_watching+0x12/0xc0
[ 1100.498529][T21614]  do_syscall_64+0x115/0x840
[ 1100.498564][T21614]  ? clear_bhb_loop+0x40/0x90
[ 1100.498595][T21614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1100.498621][T21614] RIP: 0033:0x7fc18a59ce59
[ 1100.498641][T21614] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1100.498672][T21614] RSP: 002b:00007fc18b4410e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1100.498697][T21614] RAX: ffffffffffffffda RBX: 00007fc18a816098 RCX: 00007fc18a59ce59
[ 1100.498713][T21614] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc18a81609c
[ 1100.498729][T21614] RBP: 00007fc18a816090 R08: 0000000000000001 R09: 0000000000000000
[ 1100.498744][T21614] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 1100.498759][T21614] R13: 00007fc18a816128 R14: 00007ffe386fff10 R15: 00007ffe386ffff8
[ 1100.498791][T21614]  </TASK>
[ 1101.075370][   T30] audit: type=1804 audit(4294967489.710:46): pid=21616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2981" name="/newroot/272/file0" dev="tmpfs" ino=1436 res=1 errno=0
[ 1102.323046][T21625] ERROR: Out of memory at tomoyo_memory_ok.
[ 1103.841134][T21647] FAULT_INJECTION: forcing a failure.
[ 1103.841134][T21647] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1103.877668][T21647] CPU: 0 UID: 0 PID: 21647 Comm: syz.0.2987 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1103.877708][T21647] Tainted: [L]=SOFTLOCKUP
[ 1103.877717][T21647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1103.877733][T21647] Call Trace:
[ 1103.877742][T21647]  <TASK>
[ 1103.877752][T21647]  dump_stack_lvl+0x100/0x190
[ 1103.877799][T21647]  should_fail_ex.cold+0x5/0xa
[ 1103.877827][T21647]  ? __css_rstat_updated+0x1ce/0x5a0
[ 1103.877868][T21647]  get_futex_key+0x1d2/0x1510
[ 1103.877911][T21647]  ? __pfx_get_futex_key+0x10/0x10
[ 1103.877952][T21647]  ? trace_ignore_this_task+0xbc/0x100
[ 1103.877984][T21647]  ? trace_ignore_this_task+0xbc/0x100
[ 1103.878045][T21647]  futex_wait_setup+0x83/0x510
[ 1103.878084][T21647]  __futex_wait+0x19f/0x300
[ 1103.878118][T21647]  ? __pfx___futex_wait+0x10/0x10
[ 1103.878148][T21647]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1103.878186][T21647]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1103.878222][T21647]  ? find_held_lock+0x2b/0x80
[ 1103.878252][T21647]  ? futex_wake+0x456/0x530
[ 1103.878290][T21647]  futex_wait+0xe6/0x370
[ 1103.878322][T21647]  ? __pfx_futex_wait+0x10/0x10
[ 1103.878368][T21647]  do_futex+0x1ef/0x350
[ 1103.878398][T21647]  ? __pfx_do_futex+0x10/0x10
[ 1103.878433][T21647]  __x64_sys_futex+0x34f/0x4d0
[ 1103.878460][T21647]  ? fdget_pos+0x2c0/0x380
[ 1103.878492][T21647]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1103.878517][T21647]  ? ksys_write+0x1ac/0x250
[ 1103.878546][T21647]  ? __pfx_ksys_write+0x10/0x10
[ 1103.878577][T21647]  ? rcu_is_watching+0x12/0xc0
[ 1103.878609][T21647]  do_syscall_64+0x115/0x840
[ 1103.878643][T21647]  ? clear_bhb_loop+0x40/0x90
[ 1103.878674][T21647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1103.878699][T21647] RIP: 0033:0x7fc18a59ce59
[ 1103.878720][T21647] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1103.878745][T21647] RSP: 002b:00007fc18b4410e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1103.878768][T21647] RAX: ffffffffffffffda RBX: 00007fc18a816098 RCX: 00007fc18a59ce59
[ 1103.878784][T21647] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc18a816098
[ 1103.878799][T21647] RBP: 00007fc18a816090 R08: 0000000000000000 R09: 0000000000000000
[ 1103.878814][T21647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1103.878829][T21647] R13: 00007fc18a816128 R14: 00007ffe386fff10 R15: 00007ffe386ffff8
[ 1103.878861][T21647]  </TASK>
[ 1108.078114][T21304] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1108.101132][T21304] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1108.111267][T21304] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1108.136493][T21304] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1108.150424][T21304] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1109.018558][T21686] UHID_CREATE from different security context by process 1175 (syz.0.2992), this is not allowed.
[ 1109.802086][T21671] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1109.822613][T21671] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1109.841503][T21671] bridge_slave_0: entered allmulticast mode
[ 1109.854108][T21671] bridge_slave_0: entered promiscuous mode
[ 1109.875884][T21671] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1109.891120][T21671] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1109.891355][T21671] bridge_slave_1: entered allmulticast mode
[ 1109.901741][T21671] bridge_slave_1: entered promiscuous mode
[ 1109.960277][T21671] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1109.976556][T21671] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1110.026741][T21671] team0: Port device team_slave_0 added
[ 1110.036617][T21671] team0: Port device team_slave_1 added
[ 1110.086518][T21671] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1110.086538][T21671] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1110.086570][T21671] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1110.097466][T21671] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1110.097486][T21671] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1110.097519][T21671] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1110.181518][T21671] hsr_slave_0: entered promiscuous mode
[ 1110.182576][T21671] hsr_slave_1: entered promiscuous mode
[ 1110.183275][T21671] debugfs: 'hsr0' already exists in 'hsr'
[ 1110.183296][T21671] Cannot create hsr debugfs directory
[ 1110.262872][ T6128] Bluetooth: hci8: command tx timeout
[ 1110.759537][T21715] blktrace: Concurrent blktraces are not allowed on loop2
[ 1112.342664][ T6128] Bluetooth: hci8: command tx timeout
[ 1114.422567][ T6128] Bluetooth: hci8: command tx timeout
[ 1115.870068][T21741] smc: net device dummy0 applied user defined pnetid DUMMY0
[ 1115.924886][T21741] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.3004: iget: checksum invalid
[ 1115.938990][T21741] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[ 1115.963261][T21741] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.3004: iget: checksum invalid
[ 1115.992973][T21741] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[ 1116.012674][T21741] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.3004: iget: checksum invalid
[ 1116.036192][T21741] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[ 1116.036381][T21741] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.3004: iget: checksum invalid
[ 1116.036748][T21741] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[ 1116.036785][T21741] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[ 1116.036809][T21741] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1116.348425][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.356375][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.503286][T21304] Bluetooth: hci8: command tx timeout
[ 1117.040749][T21304] block nbd114: Receive control failed (result -32)
[ 1118.050729][T21756] random: crng reseeded on system resumption
[ 1118.078438][T21756] hub 1-0:1.0: USB hub found
[ 1118.088648][T21756] hub 1-0:1.0: 1 port detected
[ 1119.547833][T21765] futex_wake_op: syz.0.3010 tries to shift op by -2048; fix this program
[ 1119.563879][T21765] futex_wake_op: syz.0.3010 tries to shift op by -2048; fix this program
[ 1119.605518][T21764] 0x000000000001-0x000000020000 : ""
[ 1119.619951][T21764] ftl_cs: FTL header corrupt!
[ 1119.744814][T21767] ERROR: Out of memory at tomoyo_memory_ok.
[ 1123.101415][   T30] audit: type=1800 audit(4294967511.730:47): pid=21805 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3017" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[ 1123.666557][T21811] FAULT_INJECTION: forcing a failure.
[ 1123.666557][T21811] name failslab, interval 1, probability 0, space 0, times 0
[ 1123.741547][T21811] CPU: 0 UID: 0 PID: 21811 Comm: syz.0.3018 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1123.741587][T21811] Tainted: [L]=SOFTLOCKUP
[ 1123.741596][T21811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1123.741612][T21811] Call Trace:
[ 1123.741620][T21811]  <TASK>
[ 1123.741629][T21811]  dump_stack_lvl+0x100/0x190
[ 1123.741683][T21811]  should_fail_ex.cold+0x5/0xa
[ 1123.741716][T21811]  ? tomoyo_encode2+0xfb/0x3c0
[ 1123.741750][T21811]  should_failslab+0xc2/0x120
[ 1123.741780][T21811]  __kmalloc_noprof+0xe0/0x850
[ 1123.741828][T21811]  tomoyo_encode2+0xfb/0x3c0
[ 1123.741867][T21811]  tomoyo_encode+0x29/0x50
[ 1123.741901][T21811]  tomoyo_mount_acl+0x14c/0x8b0
[ 1123.741934][T21811]  ? is_bpf_text_address+0x8a/0x1a0
[ 1123.741969][T21811]  ? bpf_ksym_find+0x124/0x1c0
[ 1123.741995][T21811]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1123.742032][T21811]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[ 1123.742064][T21811]  ? kernel_text_address+0x8d/0x100
[ 1123.742088][T21811]  ? make_vfsuid+0xec/0x140
[ 1123.742112][T21811]  ? unwind_get_return_address+0x59/0xa0
[ 1123.742174][T21811]  ? tomoyo_domain+0xb2/0x150
[ 1123.742212][T21811]  ? tomoyo_profile+0x47/0x60
[ 1123.742255][T21811]  tomoyo_mount_permission+0x214/0x460
[ 1123.742288][T21811]  ? tomoyo_mount_permission+0x1f6/0x460
[ 1123.742325][T21811]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[ 1123.742377][T21811]  security_sb_mount+0xdd/0x270
[ 1123.742411][T21811]  path_mount+0x158/0x23d0
[ 1123.742452][T21811]  ? __pfx_path_mount+0x10/0x10
[ 1123.742486][T21811]  ? lockdep_hardirqs_on+0x78/0x100
[ 1123.742526][T21811]  ? putname+0xb1/0x110
[ 1123.742557][T21811]  ? kmem_cache_free+0x127/0x6c0
[ 1123.742604][T21811]  ? __x64_sys_mount+0x293/0x310
[ 1123.742637][T21811]  __x64_sys_mount+0x293/0x310
[ 1123.742674][T21811]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1123.742712][T21811]  ? rcu_is_watching+0x12/0xc0
[ 1123.742745][T21811]  do_syscall_64+0x115/0x840
[ 1123.742779][T21811]  ? clear_bhb_loop+0x40/0x90
[ 1123.742810][T21811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1123.742835][T21811] RIP: 0033:0x7fc18a59ce59
[ 1123.742856][T21811] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1123.742880][T21811] RSP: 002b:00007fc18b420028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1123.742904][T21811] RAX: ffffffffffffffda RBX: 00007fc18a816180 RCX: 00007fc18a59ce59
[ 1123.742922][T21811] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000000000000000
[ 1123.742938][T21811] RBP: 00007fc18a632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1123.742953][T21811] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[ 1123.742968][T21811] R13: 00007fc18a816218 R14: 00007fc18a816180 R15: 00007ffe386ffff8
[ 1123.742999][T21811]  </TASK>
[ 1124.489247][T21304] block nbd115: Receive control failed (result -32)
[ 1126.283386][T21827] Process accounting paused
[ 1126.605052][T21830] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3023'.
[ 1128.588975][T21840] sysfs_service_op_store: Client not running :-5:
[ 1132.953883][ T6128] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1132.978137][ T6128] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 1132.991286][ T6128] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 1133.009566][ T6128] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 1133.032559][ T6128] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 1133.275974][T21881] misc userio: Invalid payload size
[ 1133.418602][T21304] Bluetooth: hci4: unexpected event for opcode 0x7c89
[ 1134.433675][T21875] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1134.452949][T21875] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1134.472064][T21875] bridge_slave_0: entered allmulticast mode
[ 1134.487354][T21875] bridge_slave_0: entered promiscuous mode
[ 1134.509986][T21875] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1134.528690][T21875] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1134.545282][T21875] bridge_slave_1: entered allmulticast mode
[ 1134.565667][T21875] bridge_slave_1: entered promiscuous mode
[ 1134.661447][T21875] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1134.703348][T21875] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1134.781495][T21875] team0: Port device team_slave_0 added
[ 1134.809076][T21875] team0: Port device team_slave_1 added
[ 1134.879750][T21875] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1134.890539][T21875] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1134.923826][T21875] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1135.037240][T21875] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1135.077368][T21875] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1135.156051][T21304] Bluetooth: hci9: command tx timeout
[ 1135.183344][T21875] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1135.399240][T21875] hsr_slave_0: entered promiscuous mode
[ 1135.427469][T21875] hsr_slave_1: entered promiscuous mode
[ 1135.449046][T21875] debugfs: 'hsr0' already exists in 'hsr'
[ 1135.481989][T21875] Cannot create hsr debugfs directory
[ 1135.729055][ T6128] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1135.749961][ T6128] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1135.760154][ T6128] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1135.773307][ T6128] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 1135.800755][ T6128] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 1137.099061][T21904] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1137.108210][T21904] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1137.120282][T21904] bridge_slave_0: entered allmulticast mode
[ 1137.128400][T21904] bridge_slave_0: entered promiscuous mode
[ 1137.138483][T21904] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1137.149093][T21904] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1137.157078][T21904] bridge_slave_1: entered allmulticast mode
[ 1137.165145][T21904] bridge_slave_1: entered promiscuous mode
[ 1137.210138][T21904] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1137.225173][ T6128] Bluetooth: hci9: command tx timeout
[ 1137.242097][T21904] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1137.281850][T21904] team0: Port device team_slave_0 added
[ 1137.291131][T21904] team0: Port device team_slave_1 added
[ 1137.338121][T21904] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1137.357428][T21904] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1137.413013][T21904] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1137.441337][T21904] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1137.465845][T21904] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1137.529989][T21904] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1137.665324][T21904] hsr_slave_0: entered promiscuous mode
[ 1137.672670][T21904] hsr_slave_1: entered promiscuous mode
[ 1137.679081][T21904] debugfs: 'hsr0' already exists in 'hsr'
[ 1137.685458][T21904] Cannot create hsr debugfs directory
[ 1137.864915][ T6128] Bluetooth: hci10: command tx timeout
[ 1139.139977][T21950] phram: parameter too long
[ 1139.146109][T21950] random: crng reseeded on system resumption
[ 1139.302976][ T6128] Bluetooth: hci9: command tx timeout
[ 1139.322715][T21953] FAULT_INJECTION: forcing a failure.
[ 1139.322715][T21953] name failslab, interval 1, probability 0, space 0, times 0
[ 1139.343009][T21953] CPU: 0 UID: 0 PID: 21953 Comm: syz.0.3043 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1139.343048][T21953] Tainted: [L]=SOFTLOCKUP
[ 1139.343057][T21953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1139.343073][T21953] Call Trace:
[ 1139.343081][T21953]  <TASK>
[ 1139.343091][T21953]  dump_stack_lvl+0x100/0x190
[ 1139.343139][T21953]  should_fail_ex.cold+0x5/0xa
[ 1139.343171][T21953]  should_failslab+0xc2/0x120
[ 1139.343203][T21953]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1139.343239][T21953]  ? proc_thread_self_get_link+0x1a6/0x210
[ 1139.343276][T21953]  proc_thread_self_get_link+0x1a6/0x210
[ 1139.343307][T21953]  pick_link+0xac2/0x13c0
[ 1139.343332][T21953]  ? __pfx_proc_thread_self_get_link+0x10/0x10
[ 1139.343366][T21953]  step_into_slowpath+0x9ba/0xf90
[ 1139.343398][T21953]  ? __pfx_step_into_slowpath+0x10/0x10
[ 1139.343430][T21953]  ? lookup_fast+0x2da/0x600
[ 1139.343452][T21953]  ? inode_permission+0x374/0x620
[ 1139.343495][T21953]  link_path_walk+0xf28/0x1cc0
[ 1139.343532][T21953]  path_openat+0x1be/0x31a0
[ 1139.343562][T21953]  ? kasan_save_stack+0x3f/0x50
[ 1139.343586][T21953]  ? kasan_save_stack+0x30/0x50
[ 1139.343609][T21953]  ? kasan_save_track+0x14/0x30
[ 1139.343634][T21953]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1139.343691][T21953]  ? __pfx_path_openat+0x10/0x10
[ 1139.343733][T21953]  do_file_open+0x20e/0x430
[ 1139.343768][T21953]  ? __pfx_do_file_open+0x10/0x10
[ 1139.343825][T21953]  ? alloc_fd+0x476/0x790
[ 1139.343858][T21953]  ? do_getname+0x191/0x390
[ 1139.343898][T21953]  do_sys_openat2+0x10d/0x1e0
[ 1139.343937][T21953]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1139.343987][T21953]  __x64_sys_openat+0x12d/0x210
[ 1139.344027][T21953]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1139.344065][T21953]  ? ksys_write+0x1ac/0x250
[ 1139.344097][T21953]  ? rcu_is_watching+0x12/0xc0
[ 1139.344130][T21953]  do_syscall_64+0x115/0x840
[ 1139.344166][T21953]  ? clear_bhb_loop+0x40/0x90
[ 1139.344196][T21953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1139.344222][T21953] RIP: 0033:0x7fc18a59ce59
[ 1139.344242][T21953] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1139.344268][T21953] RSP: 002b:00007fc18b441028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1139.344292][T21953] RAX: ffffffffffffffda RBX: 00007fc18a816090 RCX: 00007fc18a59ce59
[ 1139.344310][T21953] RDX: 0000000000098000 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[ 1139.344326][T21953] RBP: 00007fc18a632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1139.344341][T21953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1139.344356][T21953] R13: 00007fc18a816128 R14: 00007fc18a816090 R15: 00007ffe386ffff8
[ 1139.344387][T21953]  </TASK>
[ 1139.942683][ T6128] Bluetooth: hci10: command tx timeout
[ 1141.382750][ T6128] Bluetooth: hci9: command tx timeout
[ 1142.022714][ T6128] Bluetooth: hci10: command tx timeout
[ 1142.043148][T21982] binder: 21979:21982 ioctl c0306201 200000001100 returned -14
[ 1143.980215][ T6128] block nbd116: Receive control failed (result -32)
[ 1144.102562][ T6128] Bluetooth: hci10: command tx timeout
[ 1144.325127][ T6128] block nbd117: Receive control failed (result -32)
[ 1145.727626][T22014] kexec: Could not allocate control_code_buffer
[ 1146.316916][T22028] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243)
[ 1146.402446][T22028] futex_wake_op: syz.0.3058 tries to shift op by -2048; fix this program
[ 1146.416816][T22028] 0x000000000001-0x000000020000 : ""
[ 1146.438704][T22028] ftl_cs: FTL header corrupt!
[ 1146.519219][T22030] ubi: mtd0 is already attached to ubi1
[ 1146.571274][T22029] ERROR: Out of memory at tomoyo_memory_ok.
[ 1146.683952][T22027] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243)
[ 1146.970004][T22035] zswap: compressor 000 not available
[ 1148.672014][T22046] kvm: user requested TSC rate below hardware speed
[ 1149.035818][ T6128] Bluetooth: hci4: unexpected subevent 0x03 length: 123 > 9
[ 1149.950684][T22063] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3065'.
[ 1150.263331][   T31] INFO: task syz-executor:20676 blocked for more than 143 seconds.
[ 1150.281314][   T31]       Tainted: G             L      syzkaller #0
[ 1150.296038][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1150.318581][   T31] task:syz-executor    state:D stack:24264 pid:20676 tgid:20676 ppid:1      task_flags:0x480140 flags:0x00080002
[ 1150.376196][   T31] Call Trace:
[ 1150.390499][   T31]  <TASK>
[ 1150.399152][   T31]  __schedule+0x1295/0x67a0
[ 1150.415231][   T31]  ? __pfx___schedule+0x10/0x10
[ 1150.433427][   T31]  ? find_held_lock+0x2b/0x80
[ 1150.449813][   T31]  ? schedule+0x2bf/0x390
[ 1150.467229][   T31]  schedule+0xdd/0x390
[ 1150.480178][   T31]  schedule_timeout+0x1b2/0x280
[ 1150.497343][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[ 1150.516230][   T31]  ? mark_held_locks+0x40/0x70
[ 1150.534546][   T31]  __wait_for_common+0x2e7/0x4c0
[ 1150.558644][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[ 1150.585521][   T31]  ? __pfx___wait_for_common+0x10/0x10
[ 1150.613047][   T31]  remove_one+0x312/0x420
[ 1150.637403][   T31]  ? find_next_child+0x18f/0x280
[ 1150.664503][   T31]  __simple_recursive_removal+0x148/0x5c0
[ 1150.690905][   T31]  ? __pfx_remove_one+0x10/0x10
[ 1150.711789][   T31]  debugfs_remove+0x5d/0x80
[ 1150.735279][   T31]  nsim_dev_health_exit+0x3b/0xe0
[ 1150.758720][   T31]  nsim_dev_reload_destroy+0x144/0x4a0
[ 1150.807136][   T31]  nsim_drv_remove+0x52/0x1e0
[ 1150.853913][   T31]  ? __pfx_nsim_bus_remove+0x10/0x10
[ 1150.905124][   T31]  device_remove+0xcb/0x180
[ 1150.937101][   T31]  device_release_driver_internal+0x44e/0x620
[ 1150.956971][   T31]  bus_remove_device+0x2bc/0x560
[ 1150.978671][   T31]  ? __pfx_bus_remove_device+0x10/0x10
[ 1150.993134][   T31]  ? __pfx_device_remove_attrs+0x10/0x10
[ 1151.006457][   T31]  device_del+0x376/0x9b0
[ 1151.019318][   T31]  ? __pfx_device_del+0x10/0x10
[ 1151.035229][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1151.044692][   T31]  device_unregister+0x1d/0xe0
[ 1151.056215][   T31]  del_device_store+0x346/0x480
[ 1151.070756][   T31]  ? __pfx_del_device_store+0x10/0x10
[ 1151.085243][   T31]  ? find_held_lock+0x2b/0x80
[ 1151.094863][   T31]  ? sysfs_file_kobj+0xe4/0x290
[ 1151.105235][   T31]  ? sysfs_file_kobj+0xe4/0x290
[ 1151.117146][   T31]  ? __pfx_del_device_store+0x10/0x10
[ 1151.132459][   T31]  bus_attr_store+0x74/0xb0
[ 1151.137042][   T31]  ? __pfx_bus_attr_store+0x10/0x10
[ 1151.157252][   T31]  sysfs_kf_write+0xf2/0x150
[ 1151.167808][   T31]  kernfs_fop_write_iter+0x3e0/0x5f0
[ 1151.183494][   T31]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1151.192669][   T31]  vfs_write+0x6ac/0x1070
[ 1151.199987][   T31]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1151.206300][   T31]  ? __pfx_vfs_write+0x10/0x10
[ 1151.211133][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1151.217591][   T31]  ksys_write+0x12a/0x250
[ 1151.221987][   T31]  ? __pfx_ksys_write+0x10/0x10
[ 1151.228959][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1151.234146][   T31]  do_syscall_64+0x115/0x840
[ 1151.238789][   T31]  ? clear_bhb_loop+0x40/0x90
[ 1151.246015][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.251966][   T31] RIP: 0033:0x7fdcc4f5d68e
[ 1151.256882][   T31] RSP: 002b:00007ffc7d5b7c38 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1151.267498][   T31] RAX: ffffffffffffffda RBX: 0000555573d5a500 RCX: 00007fdcc4f5d68e
[ 1151.278138][   T31] RDX: 0000000000000001 RSI: 00007ffc7d5b7cc0 RDI: 0000000000000005
[ 1151.287173][   T31] RBP: 00007fdcc50335f2 R08: 0000000000000000 R09: 0000000000000000
[ 1151.295643][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1151.311033][   T31] R13: 00007ffc7d5b7cc0 R14: 00007fdcc5d44620 R15: 0000000000000003
[ 1151.319458][   T31]  </TASK>
[ 1151.367347][   T31] INFO: task syz.4.2820:20783 blocked for more than 144 seconds.
[ 1151.410240][   T31]       Tainted: G             L      syzkaller #0
[ 1151.436449][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1151.472442][   T31] task:syz.4.2820      state:D stack:29032 pid:20783 tgid:20779 ppid:14336  task_flags:0x400040 flags:0x00080002
[ 1151.512471][   T31] Call Trace:
[ 1151.515981][   T31]  <TASK>
[ 1151.518954][   T31]  __schedule+0x1295/0x67a0
[ 1151.527075][   T31]  ? __pfx___schedule+0x10/0x10
[ 1151.556445][   T31]  ? find_held_lock+0x2b/0x80
[ 1151.562594][   T31]  ? schedule+0x2bf/0x390
[ 1151.577393][   T31]  schedule+0xdd/0x390
[ 1151.592408][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1151.611774][   T31]  __mutex_lock+0xced/0x1b10
[ 1151.630870][   T31]  ? devlink_health_report+0x66c/0xb20
[ 1151.648915][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1151.669195][   T31]  ? devlink_recover_notify.constprop.0+0x1e3/0x550
[ 1151.694031][   T31]  ? devlink_health_report+0x66c/0xb20
[ 1151.719517][   T31]  devlink_health_report+0x66c/0xb20
[ 1151.732436][   T31]  ? __pfx_devlink_health_report+0x10/0x10
[ 1151.755684][   T31]  ? _copy_from_user+0x59/0xd0
[ 1151.776225][   T31]  nsim_dev_health_break_write+0x166/0x210
[ 1151.807344][   T31]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[ 1151.831876][   T31]  full_proxy_write+0x135/0x1a0
[ 1151.847667][   T31]  vfs_write+0x2aa/0x1070
[ 1151.882428][   T31]  ? __pfx_full_proxy_write+0x10/0x10
[ 1151.889043][   T31]  ? __pfx_vfs_write+0x10/0x10
[ 1151.900516][   T31]  ? __fget_files+0x215/0x3d0
[ 1151.912588][   T31]  ? __fget_files+0x21f/0x3d0
[ 1151.922760][   T31]  ksys_write+0x12a/0x250
[ 1151.934364][   T31]  ? __pfx_ksys_write+0x10/0x10
[ 1151.952349][   T31]  ? kcov_ioctl+0x16a/0x720
[ 1151.957007][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1151.972399][   T31]  do_syscall_64+0x115/0x840
[ 1151.977095][   T31]  ? clear_bhb_loop+0x40/0x90
[ 1151.981802][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1152.004194][   T31] RIP: 0033:0x7f71f279ce59
[ 1152.014804][   T31] RSP: 002b:00007f71f3685028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1152.032625][   T31] RAX: ffffffffffffffda RBX: 00007f71f2a16090 RCX: 00007f71f279ce59
[ 1152.052423][   T31] RDX: 00000000000001e1 RSI: 0000200000000080 RDI: 0000000000000006
[ 1152.072472][   T31] RBP: 00007f71f2832d6f R08: 0000000000000000 R09: 0000000000000000
[ 1152.089423][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1152.123152][   T31] R13: 00007f71f2a16128 R14: 00007f71f2a16090 R15: 00007fff8e1877d8
[ 1152.132407][   T31]  </TASK>
[ 1152.148701][   T31] 
[ 1152.148701][   T31] Showing all locks held in the system:
[ 1152.218451][   T31] 1 lock held by khungtaskd/31:
[ 1152.233142][   T31]  #0: ffffffff8e7e53e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[ 1152.252461][   T31] 3 locks held by kworker/u10:37/9682:
[ 1152.266328][   T31]  #0: ffff88801c6a6140 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[ 1152.290392][   T31]  #1: ffffc900045ffd08 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[ 1152.323147][   T31]  #2: ffffffff905ed588 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xb8/0x920
[ 1152.351993][   T31] 2 locks held by getty/12433:
[ 1152.357256][   T31]  #0: ffff888037f560a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1152.382406][   T31]  #1: ffffc900035af2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x14f0
[ 1152.412452][   T31] 7 locks held by syz-executor/20676:
[ 1152.419340][   T31]  #0: ffff888037798410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 1152.452451][   T31]  #1: ffff88802c218c80 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[ 1152.465223][   T31]  #2: ffff888029d62b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[ 1152.492508][   T31]  #3: ffffffff8fb87840 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[ 1152.522437][   T31]  #4: ffff8880579b7128 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xb2/0x620
[ 1152.543118][   T31]  #5: ffff8880579b2258 (&devlink->lock_key#10){+.+.}-{4:4}, at: nsim_drv_remove+0x4a/0x1e0
[ 1152.562430][   T31]  #6: ffff8880b1cf6c90 (&sb->s_type->i_mutex_key#9/2){+.+.}-{4:4}, at: __simple_recursive_removal+0xe0/0x5c0
[ 1152.592454][   T31] 3 locks held by syz.4.2820/20783:
[ 1152.601409][   T31]  #0: ffff88807bc17eb0 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2aa/0x380
[ 1152.623913][   T31]  #1: ffff88801fef8410 (sb_writers#8){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 1152.643999][   T31]  #2: ffff8880579b2258 (&devlink->lock_key#10){+.+.}-{4:4}, at: devlink_health_report+0x66c/0xb20
[ 1152.672488][   T31] 4 locks held by syz-executor/20886:
[ 1152.679973][   T31]  #0: ffff888037798410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 1152.702764][   T31]  #1: ffff88805d0d1880 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[ 1152.725762][   T31]  #2: ffff888029d62b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[ 1152.752455][   T31]  #3: ffffffff8fb87840 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[ 1152.772666][   T31] 4 locks held by syz-executor/20911:
[ 1152.782359][   T31]  #0: ffff888037798410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 1152.803836][   T31]  #1: ffff888042584480 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[ 1152.834168][   T31]  #2: ffff888029d62b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[ 1152.862384][   T31]  #3: ffffffff8fb87840 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[ 1152.880699][   T31] 4 locks held by syz-executor/21189:
[ 1152.892428][   T31]  #0: ffff888037798410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 1152.904593][   T31]  #1: ffff88808ca54880 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[ 1152.917850][   T31]  #2: ffff888029d62b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[ 1152.929024][   T31]  #3: ffffffff8fb87840 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[ 1152.939816][   T31] 4 locks held by syz-executor/21397:
[ 1152.948685][   T31]  #0: ffff888037798410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 1152.958168][   T31]  #1: ffff8880399e1080 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[ 1152.968381][   T31]  #2: ffff888029d62b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[ 1152.978867][   T31]  #3: ffffffff8fb87840 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[ 1152.992544][   T31] 4 locks held by syz-executor/21416:
[ 1152.997957][   T31]  #0: ffff888037798410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 1153.007404][   T31]  #1: ffff888067833080 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[ 1153.021031][   T31]  #2: ffff888029d62b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[ 1153.031520][   T31]  #3: ffffffff8fb87840 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[ 1153.042344][   T31] 4 locks held by syz-executor/21671:
[ 1153.047762][   T31]  #0: ffff888037798410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 1153.059139][   T31]  #1: ffff88807582e080 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[ 1153.069580][   T31]  #2: ffff888029d62b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[ 1153.080052][   T31]  #3: ffffffff8fb87840 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[ 1153.093843][   T31] 4 locks held by syz-executor/21875:
[ 1153.099259][   T31]  #0: ffff888037798410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 1153.108759][   T31]  #1: ffff888065e4e880 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[ 1153.122135][   T31]  #2: ffff888029d62b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[ 1153.135922][   T31]  #3: ffffffff8fb87840 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[ 1153.136007][   T31] 4 locks held by syz-executor/21904:
[ 1153.136022][   T31]  #0: ffff888037798410 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 1153.136093][   T31]  #1: ffff888036be9080 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x2c2/0x5f0
[ 1153.136165][   T31]  #2: ffff888029d62b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x332/0x5f0
[ 1153.136242][   T31]  #3: ffffffff8fb87840 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x480
[ 1153.136314][   T31] 2 locks held by syz.0.3066/22066:
[ 1153.136329][   T31]  #0: ffffffff906062e0 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x220
[ 1153.136475][   T31]  #1: ffffffff8e7f0f28 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0
[ 1153.159320][   T31] 
[ 1153.159333][   T31] =============================================
[ 1153.159333][   T31] 
[ 1153.159350][   T31] NMI backtrace for cpu 0
[ 1153.159368][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1153.159401][   T31] Tainted: [L]=SOFTLOCKUP
[ 1153.159409][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1153.159428][   T31] Call Trace:
[ 1153.159436][   T31]  <TASK>
[ 1153.159446][   T31]  dump_stack_lvl+0x100/0x190
[ 1153.159493][   T31]  nmi_cpu_backtrace.cold+0x12d/0x151
[ 1153.159520][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1153.159545][   T31]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[ 1153.159576][   T31]  sys_info+0x141/0x190
[ 1153.159597][   T31]  watchdog+0xcb1/0x1030
[ 1153.159636][   T31]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1153.159669][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1153.159702][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1153.159737][   T31]  ? kthread+0x13a/0x450
[ 1153.159770][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1153.159801][   T31]  kthread+0x370/0x450
[ 1153.159836][   T31]  ? __pfx_kthread+0x10/0x10
[ 1153.159873][   T31]  ret_from_fork+0x72b/0xd50
[ 1153.159900][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1153.159926][   T31]  ? __switch_to+0x800/0x1100
[ 1153.159986][   T31]  ? __switch_to_asm+0x39/0x70
[ 1153.160015][   T31]  ? __pfx_kthread+0x10/0x10
[ 1153.160052][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1153.160096][   T31]  </TASK>
[ 1153.161976][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1153.161994][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1153.162027][   T31] Tainted: [L]=SOFTLOCKUP
[ 1153.162036][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1153.162051][   T31] Call Trace:
[ 1153.162059][   T31]  <TASK>
[ 1153.162068][   T31]  dump_stack_lvl+0x100/0x190
[ 1153.162110][   T31]  vpanic+0x552/0x970
[ 1153.162134][   T31]  ? __pfx_vpanic+0x10/0x10
[ 1153.162157][   T31]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[ 1153.162186][   T31]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[ 1153.162221][   T31]  panic+0xd1/0xe0
[ 1153.162244][   T31]  ? __pfx_panic+0x10/0x10
[ 1153.162271][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[ 1153.162299][   T31]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[ 1153.162327][   T31]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[ 1153.162358][   T31]  ? watchdog.cold+0x1ec/0x234
[ 1153.162385][   T31]  ? watchdog+0xcc1/0x1030
[ 1153.162420][   T31]  watchdog.cold+0x1fd/0x234
[ 1153.162453][   T31]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1153.162486][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1153.162521][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1153.162556][   T31]  ? kthread+0x13a/0x450
[ 1153.162590][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1153.162622][   T31]  kthread+0x370/0x450
[ 1153.162658][   T31]  ? __pfx_kthread+0x10/0x10
[ 1153.162696][   T31]  ret_from_fork+0x72b/0xd50
[ 1153.162722][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1153.162749][   T31]  ? __switch_to+0x800/0x1100
[ 1153.162781][   T31]  ? __switch_to_asm+0x39/0x70
[ 1153.162811][   T31]  ? __pfx_kthread+0x10/0x10
[ 1153.162849][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1153.162893][   T31]  </TASK>
[ 1153.162952][   T31] Kernel Offset: disabled