last executing test programs:

11.545234128s ago: executing program 1 (id=2349):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x80040, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = inotify_init1$auto(0x3ff)
fcntl$auto_F_GETFD(r2, 0x1, 0x1)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [{0xc0010140, 0x11, 0x1}]})

9.985547683s ago: executing program 3 (id=2356):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000048c0)='/dev/dsp1\x00', 0x20000, 0x0)
pwrite64$auto(0xffffffffffffffff, 0x0, 0x10, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x8000000eb1, 0x401, 0x8000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x5}, 0x4, 0x9)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D1\x00', 0x48a0c0, 0x0)
write$auto(r0, 0x0, 0x100100a3d8)
set_mempolicy$auto(0x4006, &(0x7f0000000000)=0xa, 0x7)
kexec_load$auto(0x5, 0x2, 0x0, 0x4)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2000b, 0x5, 0x100eb1, 0x401, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x48041, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r3, 0x4, 0x7)
ptrace$auto_PTRACE_SETSIGINFO(0x4203, r3, 0x7fffffffffffffff, 0xffffffffffff8000)
r4 = setfsuid$auto(0xee00)
setreuid$auto(r4, 0x0)
shmctl$auto_SHM_INFO(0x5, 0xe, &(0x7f0000000240)={{0x7, <r5=>0x0, 0xffffffffffffffff, 0x0, 0x8, 0xb, 0xa3ef}, 0x3, 0x9, 0x573f31a3, 0x7, @inferred=r3, @inferred=r3, 0x4f8, 0x0, &(0x7f0000000300)="d619971d5f2ef47e6bb403db85a66fa9429f01ef477ef6d8f9fb5cab30353b288fe9bf5fcf2d49eef8e21f3858318b53cfab0d378921c28851d5facc55d184f681d2b780dcbe168c437753e6ba1af66f08b3015cc519c84dc1c1f349dc2de0b10715063a5b61be81ab72d52ba5a08a7b5a2c83e3323ed35cd75c7e37defed06766d1442a3edd8adf0d9bf52ffa09e994413c5023dee74874aa8735e58ec7253cbcfbcbff69238756dd96aed4941783f09be7dc286e73337abd27ed44eae11bd812ec60", &(0x7f0000000400)="cd0f726e7c4be67c74899d46c8107078e9985655bc9e7bdfd4b28a8e0cfab75fe30c9b389a3b173d61c8498a1fd5fa83dfb69c4bac4a51740010c0e762a0c2aaae1aa70565e9ead4dcc3696f"})
r6 = socket(0x10, 0x2, 0x4)
write$auto(r6, &(0x7f0000000000)='-\x00', 0xfdef)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r1, &(0x7f00000110c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB='@%\x00\x00', @ANYRES16=r2, @ANYBLOB="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", @ANYBLOB="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", @ANYRES32=r5, @ANYBLOB="0c021980040046000800b100", @ANYRES32=r6, @ANYBLOB="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"], 0x2540}, 0x1, 0x0, 0x0, 0x20008105}, 0x40)
r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=r7, @ANYBLOB="00042cbd7000fedbdf251200000020000180140002006772653000000000000000000000000008000300acfc0000080007000300000008000800e0000000"], 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x8000800)
mmap$auto(0x10001, 0x2020009, 0x7fff, 0x10000000eb3, r0, 0xfdda)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/irq/2/hwirq\x00', 0x80000, 0x0)
read$auto(r8, 0x0, 0x20)
socket(0x2, 0x5, 0x0)
mremap$auto(0x1, 0x5, 0x5, 0xb, 0xfffffffffffffff6)

9.422684261s ago: executing program 2 (id=2359):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
read$auto(0x3, 0x0, 0x8080)
socket(0xa, 0x1, 0x100)
unshare$auto(0x40000080)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0)
ioctl$auto_TUNSETOFFLOAD2(r1, 0x400454d0, &(0x7f0000000080)=0x21)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0)
mmap$auto(0x0, 0x40000000ffffffff, 0x4000000000df, 0xeb1, 0x401, 0x7)
r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x403c6f2b, 0x0)
read$auto(r2, 0x0, 0x1)
r3 = openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/free_buffer\x00', 0x201, 0x0)
mmap$auto(0x3, 0x20007, 0xe3, 0x100000eb1, r3, 0x8000)
mprotect$auto(0x1ffff000, 0x8000000000000007, 0x1000010)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x3498c2, 0x0)
mmap$auto(0x3, 0x1000000002020009, 0x4, 0xeb5, 0xffffffffffffffff, 0x6)
read$auto(0xffffffffffffffff, 0x0, 0x1f)

8.099802362s ago: executing program 3 (id=2360):
syz_clone3(&(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0}}, 0x58)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video67\x00', 0x169000, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x169780, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r2, 0x4c08, 0x0)
ioctl$auto(r1, 0xc0285629, r1)
ioctl$auto_FITHAW(r0, 0xc0045878, 0x5)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x141401, 0x0)
fcntl$auto_F_GETLK(0xffffffffffffffff, 0x5, 0x1)
sendmsg$auto_KSMBD_EVENT_TREE_CONNECT_REQUEST(r0, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, 0x0, 0x300, 0x70bd27, 0x25dfdbff, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000084}, 0x44000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)

7.912710206s ago: executing program 3 (id=2361):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
io_uring_setup$auto(0xc, 0x0)
read$auto(0x3, 0x0, 0x80)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/008/001\x00', 0x204080, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/default_smp_affinity\x00', 0x40000, 0x0)
mmap$auto(0x0, 0x1, 0xfd5, 0x12, 0xffffffffffffffff, 0x0)

7.628127674s ago: executing program 2 (id=2363):
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) (async)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_LINK_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000051c0)={&(0x7f0000000f40)={0x14, r2, 0x301, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x24000055}, 0x4) (async)
socketcall$auto(0x8000, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
io_uring_setup$auto(0x6, 0x0) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000080), r4)
r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC0\x00', 0x802, 0x0) (async)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) (async)
openat$auto_autofs_root_operations_autofs_i(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim2/hwstats/l3\x00', 0x4300, 0x0)
ioctl$auto(r0, 0x0, r5) (async)
ioctl$auto_KVM_CREATE_VM(r1, 0xc040aed5, 0x0)

7.426595805s ago: executing program 2 (id=2364):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0x10001}, 0x5, 0x20000000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f00000001c0))
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d638828712, 0x0)
write$auto(0x3, 0x0, 0x100082)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x4000, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x2, 0x0, 0x0, 0x40)
setsockopt$auto(0x3, 0x6, 0x3, 0x0, 0xd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x0, 0x2091d1, 0x1, 0x0, 0x6, 0x2)
bpf$auto_BPF_MAP_LOOKUP_BATCH(0x18, &(0x7f0000000080)=@raw_tracepoint={0x81, r0, 0x0, 0x252}, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x0, 0x0)

6.87896928s ago: executing program 3 (id=2365):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/nbd5/queue/scheduler\x00', 0x1a3b02, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, &(0x7f0000000200)={"fd000084", 0x0, 0x5, 0x2, 0x7ff, 0x6, "2eed928bf87bc54e1384f96996bd00", '\x00', "0400e6ad", "003d0002", ["f5404de6f32d14706f4f9b9f", "f8ffffffffffffffe8ff0001", "b06f8da10cff7fbcbd6b17ba", "9200000000001000"]})
r1 = socket(0x2c, 0x3, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x8000000000000006, 0xeb5, 0xfffffffffffffffa, 0x8002)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer2\x00', 0x200, 0x0)
r2 = epoll_create$auto(0x6)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.7/usb8/ltm_capable\x00', 0x181800, 0x0)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd4/integrity/read_verify\x00', 0x20a800, 0x0)
socket(0x10, 0x2, 0x4)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/seq/oss\x00', 0x20082, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="a8020000", @ANYRES16], 0x2a8}}, 0x40000)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000001940)={&(0x7f0000001980)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f00000044c0)={0x14, 0x0, 0x800, 0x70bd28, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x39ad6a8f77ef6040}, 0x4000000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x40100, 0x0)
r3 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r4 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0)
write$auto(r4, 0x0, 0xc3)
r5 = syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f0000000300), r1)
sendmsg$auto_NLBL_MGMT_C_REMOVE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="02000012", @ANYRES16=r5, @ANYBLOB="000425bd7000fcdbdf250200000008000400ff0f000008000c00ff070000080004000200000008000c000000008008000c000a0000000500010000000000080003000000000009000100405b5b2600000000080003000bda531f"], 0x60}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040000)
sendmsg$auto_NLBL_MGMT_C_LISTDEF(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="80000000", @ANYRES16=r5, @ANYBLOB="100026bd7000fcdb5f2506000000080003008100000006000b00feff0000080002000600000008000100265b5d0006000b000100000008000200060000000800020006190000330001002f7379732f646576696365732f706369303030303a30302f303030303a30303a30342e302f6e756d615f6e6f64650000"], 0x80}, 0x1, 0x0, 0x0, 0x4004000}, 0x4000480)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
ptrace$auto(0x1, r3, 0x7, 0x2)

6.809460582s ago: executing program 0 (id=2366):
r0 = socket(0x1e, 0x1, 0x0)
bind$auto(r0, &(0x7f0000000040)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x40, 0x0, 0x2}}, 0x66)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000080))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/mtd0ro\x00', 0x10400, 0x0)
close_range$auto(r2, 0xfffffffffffff000, 0x6)
symlink$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
close_range$auto(0x0, 0x5, 0x0)
setfsuid$auto(0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/veth0/retrans_time_ms\x00', 0x8a042, 0x0)
sendfile$auto(r4, r3, 0x0, 0x48)
write$auto(0xca, &(0x7f0000000040)='\x04\x1c\xdc\xec7z\xdf3\xf2\xd3!\v\xb0M\xf8Q\x15\f', 0x2d8)
r5 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
mmap$auto(0x7, 0x400008, 0xdf, 0x9b71, r2, 0x7fff)
r6 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto_EVIOCSCLOCKID(r6, 0x400445a0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/haltpoll/parameters/guest_halt_poll_grow\x00', 0x400040, 0x0)
io_uring_register$auto_IORING_REGISTER_PBUF_RING(r5, 0x16, &(0x7f0000000640)="018fac297e857e25b7371f9d3e9a350e7ac811c087f2794823b838385544315f18c78aee068e8971ca6feb7f5f21444f160ffbc6db39677d21dec99144eadfc787b697614aa78b2a09a39bcb0208ff082e47645c25907bbc783bdd342c0650e39eca7a57213fceadff804bb496b0e41c2e02a57a5ef51c54f23bf5287e1db445733328b476535b7090cb672953e1120510e1a584e9fcfc1c4808ac9cede07dd7e98c09a3995a9da60b347a878e0f225d96e77240f4a7fa722cbb4c8227aff94545ceeb882986e65511321297dbb4499c00000000000019c766a6278ff3c4630cc2a2ec836612116b9e025e852d42e7584d4a0f60125302c5c74ea60ed92538424e4622d1250cc2ce405778e9957a7cb1b94ff1f3e3817ae961cc6df39e5fd5f0f3728179ba600fc6fecf9f8d2a0b1a8f11eec6bdd4b76bc2a9016c4aa19e0050504a34252502d6d09ceadd2153c18f3b4641fec28a498a5e89a03a111cd6b127481c7de2e3cdd0b24dfdae8716990506ab3f120cdbb47350a2079a81f79cd1765cdd52bbeb74f1d2412174a9760c9781cec2b69b458f73ccae98b745dfaa4264f3701df6f9f67efb7dca62f60aab39b339eeae128beb47e77e61cbb0f19a30ca4c3855a1", 0x8)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80800, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x181482, 0x0)
mmap$auto(0x0, 0x4, 0x7f, 0x40eb1, 0xffffffffffffffff, 0x3000001ffffd)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSTI2(r7, 0x545c, 0x0)
ioctl$auto_MEMGETREGIONCOUNT(0xffffffffffffffff, 0x80044d07, 0x0)

6.4783952s ago: executing program 3 (id=2367):
mmap$auto(0x7ffffffd, 0x40000c, 0x11, 0x9b72, 0x2, 0x8000)
epoll_create$auto(0x4)
socket(0x1d, 0x1, 0x7fff)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vivid.0/video4linux/video68/name\x00', 0x8001, 0x0)
writev$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/pcmC1D0c\x00', 0x400080, 0x0)
socket(0x18, 0x5, 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="8c000000", @ANYRES16=r3, @ANYBLOB="2f212bbd7000fcdbdf258100000008000300", @ANYRES32=r4, @ANYRESHEX], 0x8c}, 0x1, 0x0, 0x0, 0x804}, 0x4000000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop12\x00', 0x30d0f47cd7664d64, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000002340), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_SET(r5, &(0x7f0000002480)={0x0, 0x0, &(0x7f0000002440)={&(0x7f0000000400)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYRES8=r5, @ANYRES32=0x0, @ANYBLOB="0800010005000000"], 0x38}, 0x1, 0x0, 0x0, 0x48000}, 0x4000)
mmap$auto(0xfffffffffffffffb, 0x8, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r7 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0)
pread64$auto(r7, 0x0, 0x4, 0x102)
setresuid$auto(0x0, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
open(0x0, 0x22240, 0x9)
r8 = socket(0x23, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000001c0)={'ipvlan0\x00'})
openat$auto_hwsim_fops_rx_rssi_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy6/hwsim/rx_rssi\x00', 0x2, 0x0)
socket(0x1d, 0x2, 0x6)

6.421609947s ago: executing program 2 (id=2368):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000048c0)='/dev/dsp1\x00', 0x20000, 0x0)
pwrite64$auto(0xffffffffffffffff, 0x0, 0x10, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x8000000eb1, 0x401, 0x8000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x5}, 0x4, 0x9)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D1\x00', 0x48a0c0, 0x0)
write$auto(r0, 0x0, 0x100100a3d8)
set_mempolicy$auto(0x4006, &(0x7f0000000000)=0xa, 0x7)
kexec_load$auto(0x5, 0x2, 0x0, 0x4)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2000b, 0x5, 0x100eb1, 0x401, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x48041, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r3, 0x4, 0x7)
ptrace$auto_PTRACE_SETSIGINFO(0x4203, r3, 0x7fffffffffffffff, 0xffffffffffff8000)
r4 = setfsuid$auto(0xee00)
setreuid$auto(r4, 0x0)
shmctl$auto_SHM_INFO(0x5, 0xe, &(0x7f0000000240)={{0x7, <r5=>0x0, 0xffffffffffffffff, 0x0, 0x8, 0xb, 0xa3ef}, 0x3, 0x9, 0x573f31a3, 0x7, @inferred=r3, @inferred=r3, 0x4f8, 0x0, &(0x7f0000000300)="d619971d5f2ef47e6bb403db85a66fa9429f01ef477ef6d8f9fb5cab30353b288fe9bf5fcf2d49eef8e21f3858318b53cfab0d378921c28851d5facc55d184f681d2b780dcbe168c437753e6ba1af66f08b3015cc519c84dc1c1f349dc2de0b10715063a5b61be81ab72d52ba5a08a7b5a2c83e3323ed35cd75c7e37defed06766d1442a3edd8adf0d9bf52ffa09e994413c5023dee74874aa8735e58ec7253cbcfbcbff69238756dd96aed4941783f09be7dc286e73337abd27ed44eae11bd812ec60", &(0x7f0000000400)="cd0f726e7c4be67c74899d46c8107078e9985655bc9e7bdfd4b28a8e0cfab75fe30c9b389a3b173d61c8498a1fd5fa83dfb69c4bac4a51740010c0e762a0c2aaae1aa70565e9ead4dcc3696f"})
r6 = socket(0x10, 0x2, 0x4)
write$auto(r6, &(0x7f0000000000)='-\x00', 0xfdef)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r1, &(0x7f00000110c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB='@%\x00\x00', @ANYRES16=r2, @ANYRES32=r5, @ANYBLOB="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", @ANYRES32=r5, @ANYBLOB="0c021980040046000800b100", @ANYRES32=r6, @ANYBLOB="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"], 0x2540}, 0x1, 0x0, 0x0, 0x20008105}, 0x40)
r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=r7, @ANYBLOB="00042cbd7000fedbdf251200000020000180140002006772653000000000000000000000000008000300acfc0000080007000300000008000800e0000000"], 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x8000800)
mmap$auto(0x10001, 0x2020009, 0x7fff, 0x10000000eb3, r0, 0xfdda)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/irq/2/hwirq\x00', 0x80000, 0x0)
read$auto(r8, 0x0, 0x20)
socket(0x2, 0x5, 0x0)
mremap$auto(0x1, 0x5, 0x5, 0xb, 0xfffffffffffffff6)

5.815708761s ago: executing program 0 (id=2369):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
getrlimit$auto(0x3, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/bond0/address\x00', 0x0, 0x0)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x3, 0x2, 0x3, 0x1)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/i915/parameters/mitigations\x00', 0x88302, 0x0)
sendfile$auto(r1, r1, 0x0, 0x7ffff000)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x8, 0x3, 0x2, 0x4)
keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x401, 0x9c5, 0xfffffffffffffff8, 0x0)
setrlimit$auto(0xc, &(0x7f0000000040)={0x5, 0xfffffffffffffffe})
socket(0x15, 0x3, 0x1)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)
ioctl$auto(0x3, 0xae41, r0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/admmidi2\x00', 0x400102, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram2\x00', 0x10ba02, 0x0)
ioprio_set$auto(0x1, 0x0, 0x0)
sendfile$auto(r3, 0x3, 0x0, 0x400000000006)
read$auto(r2, 0x0, 0x20)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20800, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-0/xps_cpus\x00', 0x10b062, 0x0)
write$auto(r4, &(0x7f00000001c0)=',\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
pwrite64$auto(0xc8, 0x0, 0xc, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyv2\x00', 0xf29c0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/v4l-subdev7\x00', 0x0, 0x0)

4.674335145s ago: executing program 2 (id=2370):
mmap$auto(0x0, 0x2020005, 0x203, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0xe8)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0x0, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r2 = openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
sendfile$auto(r2, r2, 0x0, 0x7fffffffffffffff)

4.665470708s ago: executing program 0 (id=2371):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
read$auto(0x3, 0x0, 0x8080)
socket(0xa, 0x1, 0x100)
unshare$auto(0x40000080)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0)
ioctl$auto_TUNSETOFFLOAD2(r1, 0x400454d0, &(0x7f0000000080)=0x21)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0)
mmap$auto(0x0, 0x40000000ffffffff, 0x4000000000df, 0xeb1, 0x401, 0x7)
r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x403c6f2b, 0x0)
read$auto(r2, 0x0, 0x1)
r3 = openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/free_buffer\x00', 0x201, 0x0)
mmap$auto(0x3, 0x20007, 0xe3, 0x100000eb1, r3, 0x8000)
mprotect$auto(0x1ffff000, 0x8000000000000007, 0x1000010)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x3498c2, 0x0)
mmap$auto(0x3, 0x1000000002020009, 0x4, 0xeb5, 0xffffffffffffffff, 0x6)
read$auto(0xffffffffffffffff, 0x0, 0x1f)

3.643057538s ago: executing program 2 (id=2372):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
io_uring_setup$auto(0xc, 0x0)
read$auto(0x3, 0x0, 0x80)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/008/001\x00', 0x204080, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/default_smp_affinity\x00', 0x40000, 0x0)
mmap$auto(0x0, 0x1, 0xfd5, 0x12, 0xffffffffffffffff, 0x0)

2.980254953s ago: executing program 1 (id=2351):
mmap$auto(0x0, 0x400008, 0x36, 0x1009b72, 0x2, 0x8000)
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
close_range$auto(0x2, 0x8000, 0x0)
r1 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_fd=r2, r2, 0x4, 0x1ff, r1, @relative_fd=r0, 0xe600}, 0xf)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0x6)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sg0\x00', 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/034/001\x00', 0xcc842, 0x0)
socket(0x18, 0xa, 0x103)
mmap$auto(0x5, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r4, 0xffffffffffdffe00, &(0x7f0000000140)=';')
r5 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$auto(0x3, 0x40086203, r5)
mmap$auto(0x2, 0xffffffffffffff13, 0x7, 0x401b72, r3, 0x8000)
setresuid$auto(0x2, 0x7, 0x8080)
clone$auto(0x6fc, 0x4dbb2, 0x0, 0x0, 0x4000c1a)
mmap$auto(0x0, 0x2, 0xfffffffffffffffb, 0x100000eb1, 0x40000000000a1, 0x8000)

2.919661517s ago: executing program 0 (id=2373):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r1=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1}, 0x6a)
sendto$auto(r0, 0x0, 0x6fffff9, 0xfffffff8, &(0x7f0000000440)=@can, 0x36)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
r2 = socket(0x1d, 0x2, 0x7)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(0x1, 0x1, 0x43, &(0x7f0000000000)='\x00', 0xbb)
r3 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r4=>0x0})
bind$auto(r2, &(0x7f0000000000)=@can={0x1d, r4}, 0x6a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r5=>0x0})
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r5}, 0x18)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x1ffcc}, 0x1, 0x0, 0x0, 0x6b6}, 0x7}, 0x3, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x82043, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r6 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r6, 0x0, 0x53, 0x0, 0x0)

2.463725811s ago: executing program 1 (id=2375):
r0 = socket(0x1e, 0x1, 0x0)
bind$auto(r0, &(0x7f0000000040)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x40, 0x0, 0x2}}, 0x66)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000080))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/mtd0ro\x00', 0x10400, 0x0)
close_range$auto(r2, 0xfffffffffffff000, 0x6)
close_range$auto(0x0, 0x5, 0x0)
r3 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
sendmsg$auto_NL80211_CMD_DEL_STATION(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000840)={0x1158, r4, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@NL80211_ATTR_SUPPORT_MESH_AUTH={0x4}, @NL80211_ATTR_REG_RULES={0x1004, 0x22, 0x0, 0x1, [@generic="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"]}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x1}, @NL80211_ATTR_NAN_FUNC={0xa4, 0xf0, 0x0, 0x1, [@nested={0xa0, 0xaa, 0x0, 0x1, [@typed={0x8, 0xca, 0x0, 0x0, @fd=r1}, @typed={0x38, 0x43, 0x0, 0x0, @binary="afd3d0787d11b518c858dd6f374a24052eccf894427105b14dd80d5ba19cddb2a583672fc985d0e0e77008921d6b442b83874ab9"}, @generic="50d86a30a79bec759d750559d5f5163f67487f85258426bc6718f4c4a9dfd101c60cc8c9f56e08c26f293d29998260f27bb22eeb9b60802be794975d4e11eaaeebb551414483d1273d946d21b2719a44", @typed={0xc, 0x2e, 0x0, 0x0, @u64=0x5}]}]}, @NL80211_ATTR_FILS_NONCES={0x6b, 0xf3, "0a813c5b97fbbdd3491a52fff3b3f065ca376e2143f9214df4e43159d1bd88e826953fd37a42da40f5e5506a6cf32d1d355d0dea364a3fcb6d060287ed23d1b7b06bdfc1b01233ace8ccfa33ad0c52451b1398c488186a1f447b787d086a8975a5cd728af52c42"}, @NL80211_ATTR_KEY_SEQ={0x11, 0xa, "90bebc950b6e5e62ee30f7f9a9"}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0xff}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x1}]}, 0x1158}}, 0x880)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x7, 0x400008, 0xdf, 0x9b71, r2, 0x7fff)
r5 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto_EVIOCSCLOCKID(r5, 0x400445a0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/nbd15/queue/io_poll\x00', 0x400040, 0x0)
io_uring_register$auto_IORING_REGISTER_PBUF_RING(r3, 0x16, &(0x7f0000000640)="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", 0x8)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x181482, 0x0)
mmap$auto(0x0, 0x4, 0x7f, 0x40eb1, 0xffffffffffffffff, 0x3000001ffffd)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSTI2(r6, 0x545c, 0x0)
ioctl$auto_TIOCVHANGUP2(r6, 0x5437, 0x0)

1.263132656s ago: executing program 1 (id=2376):
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
fanotify_init$auto(0x65, 0x2)
pipe$auto(0x0) (async)
r1 = pipe$auto(0x0)
dup2$auto(0x5, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9)
ioctl$auto_VHOST_SET_LOG_BASE2(r0, 0x4008af04, &(0x7f0000000040)=0x1000)
write$auto(0x6, 0x0, 0x100000001)
setsockopt$auto(0x3, 0x1, 0x29, 0x0, 0x9) (async)
setsockopt$auto(0x3, 0x1, 0x29, 0x0, 0x9)
recvfrom$auto(0x3, 0x0, 0x80000000002, 0x6, 0x0, 0x0) (async)
recvfrom$auto(0x3, 0x0, 0x80000000002, 0x6, 0x0, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/fs/ocfs2/cluster_stack\x00', 0x88282, 0x0)
sendfile$auto(r2, r2, 0x0, 0x71)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x7ff, 0x2, 0xeb1, 0x401, 0x8002) (async)
mmap$auto(0x0, 0x7ff, 0x2, 0xeb1, 0x401, 0x8002)
epoll_create$auto(0x3e)
mmap$auto(0x0, 0x66e, 0x5, 0x20eb0, r1, 0x100000001)
prctl$auto(0x2c, 0xff, 0xffffffffffffffff, 0x2, 0x8)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x7)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
socket(0x2b, 0x1, 0x0) (async)
r3 = socket(0x2b, 0x1, 0x0)
socket(0x1d, 0x3, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000080), 0x42080, 0x0)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000) (async)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xfff, 0x1, 0x948b, 0x3, 0x95f4da2d, 0x20d, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x4, 0x5]}, 0x0)

1.182667065s ago: executing program 0 (id=2377):
mmap$auto(0x0, 0x3, 0xb, 0x3132, 0x4008df3, 0x0)
r0 = getsockopt$auto(0xffffffffffffffff, 0x84, 0x72, 0x0, &(0x7f0000000100)=0x22a)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/pressure/memory\x00', 0xa2102, 0x0)
read$auto_proc_sys_file_operations_proc_sysctl(r0, &(0x7f0000000140)=""/137, 0x89)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
poll$auto(&(0x7f0000000040)={0xffffffffffffffff, 0x7ff, 0x200}, 0x100, 0x6)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
mlockall$auto(0x7)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/sctp/assocs\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, 0x0, 0xfffffe36)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000040)=""/9, 0x9)

385.591316ms ago: executing program 0 (id=2378):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000048c0)='/dev/dsp1\x00', 0x20000, 0x0)
pwrite64$auto(0xffffffffffffffff, 0x0, 0x10, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x8000000eb1, 0x401, 0x8000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x5}, 0x4, 0x9)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D1\x00', 0x48a0c0, 0x0)
write$auto(r0, 0x0, 0x100100a3d8)
set_mempolicy$auto(0x4006, &(0x7f0000000000)=0xa, 0x7)
kexec_load$auto(0x5, 0x2, 0x0, 0x4)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2000b, 0x5, 0x100eb1, 0x401, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x48041, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r3, 0x4, 0x7)
ptrace$auto_PTRACE_SETSIGINFO(0x4203, r3, 0x7fffffffffffffff, 0xffffffffffff8000)
r4 = setfsuid$auto(0xee00)
setreuid$auto(r4, 0x0)
shmctl$auto_SHM_INFO(0x5, 0xe, &(0x7f0000000240)={{0x7, <r5=>0x0, 0xffffffffffffffff, 0x0, 0x8, 0xb, 0xa3ef}, 0x3, 0x9, 0x573f31a3, 0x7, @inferred=r3, @inferred=r3, 0x4f8, 0x0, &(0x7f0000000300)="d619971d5f2ef47e6bb403db85a66fa9429f01ef477ef6d8f9fb5cab30353b288fe9bf5fcf2d49eef8e21f3858318b53cfab0d378921c28851d5facc55d184f681d2b780dcbe168c437753e6ba1af66f08b3015cc519c84dc1c1f349dc2de0b10715063a5b61be81ab72d52ba5a08a7b5a2c83e3323ed35cd75c7e37defed06766d1442a3edd8adf0d9bf52ffa09e994413c5023dee74874aa8735e58ec7253cbcfbcbff69238756dd96aed4941783f09be7dc286e73337abd27ed44eae11bd812ec60", &(0x7f0000000400)="cd0f726e7c4be67c74899d46c8107078e9985655bc9e7bdfd4b28a8e0cfab75fe30c9b389a3b173d61c8498a1fd5fa83dfb69c4bac4a51740010c0e762a0c2aaae1aa70565e9ead4dcc3696f"})
r6 = socket(0x10, 0x2, 0x4)
write$auto(r6, &(0x7f0000000000)='-\x00', 0xfdef)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r1, &(0x7f00000110c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB='@%\x00\x00', @ANYRES16=r2, @ANYRES32=r5, @ANYBLOB="020d6aa9460e82223cb2798526101961bcc2c0eebe2df9ef00caddaf8456f4ff7c157b1422b4d7f88af0ba7798d149993ced38ed5dfe86e6c920257aa09dbba642090c5859c75d13d468822cbcc9fa409b3130d3eb24ea309554b1f0b281c117450ba7870826c753c704002b2e4028bb72f11c00b710068041c95bca4d59713cae5bc2fc53f8bcb52337d2a8d73f600ba7d6d7d1d43885854afd9ff8714187b95f5ccbd22c63afab95f8df8e15e63c2a2087e772a2f34e229cdf061136c8bbc33aa381a48757f60b4a6c0efb4e6658effad86b912651eca1a6f86f7f19f3b7b589611ae1c03995c7aaec2c6e2664a39aa63090cabdb7e64516b64a12420c57dc4f40f282a2d2d8ce3b60915edc1928cec969c8db88d4a609e01afca895c15dff613d85a9941b265b45e592fec9709fb2d557caabb2a2f43bf7dc6008274c791a59ee801dfb70baf96544ffb8947a96ffd43c8a4cf1b07a916dbd72267cadcf3099fceb204f886d122497f11e843160447345a98fdbaaaf56d9eb6763b3b3fb38f0baf4955e69a577f96d6ffb54c9b39dc0928d00d0afd019335b16d0793ea53150d115b45bb345217b79f8a9e20682c30a823ab31aa10d37e07b86a7b351a237f51ff10bfaf9d1e4d071741d942764a39f6312f4d702141ef88e56f01726794550602438a198bf68ec8c75e309b63a80c5f9d90379168f516625cb0120b0f3b0955d9073d659f080802df3abdb8b9776b249c4d1393e1e85198dd4926f9d008a6f8c1477f630d90cf3caeed86bff30ef4ce716411c2e1e33c5ee2ba080ecad522c5b7edbc4145fb6fbe69b8d01164d44f80973d611fbecd0747966b4908d0487b94cd55c968aed68c95a1a70ad6276ef56149c88dbf6ca771f7cf0b87c9805c9c7a001738a1b46e087acd78b4de44d8ae9e06c755776afb11e817696c2a890b89eebc0b6298b22c1358852cd1ed6202240b20a11dff784f6597f07ba0173786ba7809598a0af87afc2164f899bd53a22d029c0d905ff1d12ad2c3bc276056412fe625f66ed94b73855ca372e2f7832201c2831f970271e0a658c85e724906f99dc91cb056729c2254946b3e0e75ddb13387cd03367247b8c60863e2a74964fd11a33ed4c28304a68f1278922f8c88dfb63da1d3ac8e2d28004624907cc23b4b95067c8d67ab1f6c81ff25c520424865383bc253c92aa59756d46f9dd9a58f39d85ea8b15a9e9ca283006d843cdb85ccef081275e303c94cd82c602af310a61d82ddbbd31a40151105cb17bba291b4bdb21914bb4167e573ebde7b4fed8c7fea77969fd68e6116f14f61e3a0a1059a765f52938b267a41d8f7fa7aece7aee06ba1e2cd25a994d09a88e4b9e8ceb62b7ecb0511070424f06609b297a023c960d2adcc5bf1f42ab76167f1d27908b2aa324a58b633016bdadeb936c9bb06cd5a982f131dc8dacb64899835e3667eda653791c1744e6a77560a2a0d0ed66328a94d0332987cb2c38094cfdd4a4d351d839ee342c28c54e3d4e42f74817a149710ddd5c8713bfd3884bbf0d794653be07a37ab3296b41ed0a035cedebf37d02f8d51bb11330fc95832bd9a360f1d46931cfa5e649bbc554c76ee3b6049947e1ce43cb5a04f81d8e09498798719e6eaf62f9aebf431cd960c33517fe8751fca6d66d77369f6c0fc8763553245975b515260cf7b0ec400f64d2e2e48e5dd2cb9814e060b1ca85ce3d540ce6ea99185b31f1de5ccebbb5ae5164c428247f031a24f12c7f8cb2c59a8c89308d0c73b5c7e68921f70a493b1695f15d9597f5b3ea381ce3411065428dbc387ee373e639ba878cf7ea34fc42bc8530ada2188b1838db6612fbfab1afe5952e2522b9ef59893c6cad65faf3028dcb494ab77839971bd8b6eb3751949315590676a40d2f7747197b912a058d8083e6f192b14b92606be32da1800c7f2fd26baf2f4ca3a1ccdbdbdd0b0d9881469721100f8b60e28b656ab803ead8d495e4f59e30600b4027910f6ec9a6a6783fc100618a4deae2786b91631c4a16871a978a568b55095bda56202d2af0335cdbffba21eca2991d37100e08c391e13c01e9f92efb12eb66a09f84f4e2d1e2d928b60bd1228eaced49496693c90b388bed5ab0a37421d99f392d366fcc4d10d766db19e4c7ee75c1718e8fe5309a6008b22128050654b3d200c344df81d86b4918aa31d9c8fd8b22b5b4a88d4716160757db098ed83bedb718039a9252c34d0a22f2359b8ec04c33f295204997892bb91345384260cad4a0c923467bdb90c3b4c5a9d207f20910a9dfe31dc2fd835be21b2d3a2f8b160f82fa4e1137a7bd985165d647cb52d01c9107fe666fae3e371f4d72cf2b5d0d6004b5dd3ea3a738170099e42144e128a922e170031d4c252eb93713494b2097c73135367334decf7481c908a28eb37941fdd9dd4ef648db0464597182e5fb8f038bf2a042deadaadb9d0156b16712b11784ad816ec7c03dd5dbf7b7c05559baff4b5bf8ac5f42894f55644d1de5ba73a92b9be004a4e703ec7de72f514e37eb47ea7786b49bdce086a11716f40aea94b1869d98d8254033a2f01855ff3dc0b397a37ee6a687ea15d2ccb5a840ceb7fcbaf1d23cf4c612df7512a4ae7b66289b3402fbd81f4140a2d366cfa93796d7f8c0888a013f29bdebf6064181e251ea66f04963667015ad327f9d9ea05de8d2a4a227bad5b42432a26e4836fa046dee0cc0761a446b13d5a83239ac18bc1ae2d546f71f8d9329dbf8cdaa16f2eb97e8ef57216afbeb954751b3af3d1e05dcfd6c29289c186414b5ea4fa35434b7d1da561a0dd9b4ba5a03e15c4afb7a8292715b718ef15c5945c8867e7181f6f5e2c81df23e16bcf0376d66b5159cf7184aa3439c78b7ed5cc8aa58106aedefa3a93bc4ce8382bc0d2e951b5fc87ca2513df0d0097ffb868f782dbd1d888b1045ef1dd5fa5225218dbbf6230ccaa7232721cc6ca1e1ede579709223a0bf26664bb4ef919cf41e08acc11423b7dcedbd9242549d5ca5908abe50dba1ab8588f7af3dea8bcac14bcee1c10128340eb0735aab4f7689a6fe0cf4b72bc339d779a82f3623bf5bba2a556807e77fac913b6c95932d3a3fb20c3a8d029d0161457fe55a1de4b7750f1a65096eb99ead9253e9fadea1f898370487bee819a234cfdc774e90f30cee2477ae500cd14d3bb47a9b000aa2f7e8220c3f2469983b00aabdcaa6df9fd160266b2f00007edf871756a33bd70a7240d3ae1ada3c5d9b1fed28e64338e16b75d1af2a213a981ed9da728f7d56237cc1a860d1b25609997fb839ff874ccdf35bfc203d643c22085a1edf3d7857a1345aa7d393e84df8ccfe0382677880dbcbb8fdd99944bbf9e278050c444c062798bd38d422ac94c400a09e0b3f0cca2e9c88d42c44269a316243c29c7c0199d19b12675924f322f5a4194c64afb01a5ee719088ca493dfccfd90ef7fb976e733deb02df71f1b7ae65d92513fb7d2be2e623d3b8b2b7bcea5706730eeb67b3215a53f00115a8fc75aafa4ef13353be4449242fc9d759d6b1a9840d3703a5f20349533a8f92cd282ae409672af7f08ee16626d02667753fa11ca75adc27ae588b4e5c980b4fe58dcf94b899d0a423b23c66193aace99b0218e114b5d0c2dc240a50b9411ea133ed725e7c22d0e2a6058ad3e8a9b5c1b2bb63766e47a33bb91f9a83e824c5879832dc2a07adc15d41f417493737064c4cb56b3aee19afb9ab11cc4784470ea3661ef140a4d65f5b0ee87caf61b40f4e25041af23c91d405c7dfc9a381b835abbbc53574eebced3e16c1f6fcbed3789e6dfea45016fc0708bd07c87ffc806ed061426026dbdb755cb6e6578cfd2ce36a4e0309d9d39800fd2f9275c8b07cdc6497b577050f6f0289ef366bee0668bcef31c91ef8ebd55626ee08a5acd384009922cc82e5470ba7b9f7083df90505efd6133b9025bd1d1de451336295615793cf47af0fb7310f4931d97c9402af5e4e6be6d117aa7dddd860420dd1b5f9998328d82c9c4c2e127d45bbdb64c932f0bbf3a201025609b3dc90e34024f956096da8084c4f13810a145da9a31ca0865ed7c597a010d4ab8d07f50ac2ab4b467228b3f0029f2d39b09813ed39287394af39a0c71fa0deee4bff4720711038c9e7b12a7385adb2edc021dc8a94af0f6343bc1bff8df5cb26cca0b4c380d54c973c1cb7134d7b64305f127e90bac4840fda2a032c20d097b72c9fba1d296fd3607a7f1e338a4303e3c45bf1b9c28c4e4603411ece4adbab413926c2a37c401d048c0afc215113509db220413893f7174d5c5e49d72f9c6bf44f074f187a36290bd477d19dc1a1695ad1188b10342986691a1a5b8c31f6163a3ffaa0e4fad6f802a073e7585c7c01f97f013c1e9646f5d5c360dcff89d6205955161347bf14b803c293791bdcf50bbd34bbcd2fd4b65bd98c70d2e7b968f67e5d31b2a624f1694891aecd435734c96e7c313bb73738c485f36bb3b608e3b3d30a737447f789e1b4a3407d8e396e1cf1bf3e955cbb44f8e28fb963d5d70c0bfa910beafc1528972438db544ecbb7fd68e819f2b8dada1c73ad88597c7e88697de008bd905d0258cb0e7d80221d61856e0677ae9299d8c1876fc894125e7c8fa5b7da23d183761df68bbf0ce403bfba583e774d949a790ef08d1a78eac5a13a5ca4badd590113f3a7bc2cbf9c3756683769abbe257ff73355ef4eb5e497ab85015bce382d85fcea03358eb211034705753cc9d9e750d8ed50bf9fa5b0675557e74f95ff34c4432a79e66c93a9827f1d2bf11f1d1b85b819bdf398b6b4bc02a218db190d00926a17a37d5bb871f76099f5b78f0b3f4a3790c786fd859e6b01b2a746ec833988fd325e191c33e0425511d640502f4facb0bcd260a6f27e909f77d0ce5021e581b4aaf24037c1a024fa8d160efea59e08c5bee60bfe72f46fa0538a70ed24c55426208eac51786c1b9bb21a15f3f5f6b8c096f804bf349fc2ec5fc15d5da81fb2d292b9488a3c29c0016a5fc78464c87092d951b297ae9ad9dee67708f33ace79d7104b1d443db66639e1996f135b982d9513cdc1bf58e07cdf0d94d723c8e7855367adc50d724027ab8f495d4d880ab9c442ed54545cfcecbe883eac0f6d46377ded695bbbb0f6d3c7f31a1790de833beb8086c82033c345fe636c2340378751aeb3fe35c5267866255d73216629312a28d331bdd8e7fa780d9ad9e06873f606323a313b7e55e20a7d0b21b8730b19807ed2f5bef61bbdb662be76ec63a7ee6454c48f75e9b2cf639c5cac8c9b7ff69bdd8e3773131f7b091b68da47c194da8f721e4084c941da39390edfbbac945bfe18ac13fa6007814fdf7ecc9d8a3bed70aa854a48723d7e0defee0efff2ba6364abb52262ac601325cbfc0b6bb27079e107b7123d16d67a42d747de910bac15a8865acdd366c0ac3edfa7c1922cb3b89a8650223b41e16651f23d141c75b652b056dac776692fc0ccb7414723811f0b80c7cace9c513850bc9706b6b5e993f7cf466e6a73d4a686a80e1497d4e4f9df973f834cb387cc7b19be35cd07e175b78e8504a34cfbb9ce23eb26a9416993bf3e042c08b06fe9eb317d82c793ba4fc4def392f9c0d13ebd3762545ac7a7b7cf6caaf8b962529fae2cd38ebf86098f2da68e12b8182cae7ed215b527c589ac1260a380fb832b9506dba30120694300ef122039a53e1a67acdbebd055cc3ee62d492066b5302e4059e651a5bf1cccd9d8ae3d7ce5e13ae0de0d75b0bc6f11e83c180fadf55a245c850da2e20afa1140894f9ffdc310a00b461aa651b8cbb5c0f03bc914f71f5bc2ec47f0e9cdc598137c89317e64d17fe1b442a1b39a71c495692553002351a292efd2270718db88499fae6a298d564afc123f931e1fa9e0b80ddedf818bbea18b1cb0999783bb208d2774bafd550c0c78394a27431ce0c0c8fb0ae632d0c00e9800400178004007880c7beb962ae3bafd31b0e99615e59c804fb1ffcd80d0dc6a8c588d4ea514942f88e69dfecac63b33d54ec46b160d14667cf188dd3907214c61651383fc6219d71d88c8c758669c1c2625ab5bec06bc94c89222c4bb4e3d62bcf2dfa40a546a5a224d57ef18741996371118699f65a0768d29dc9eebdffb5de0828c527a347f29861d656011bf18e7ed1f5726dd12bbb6bd8758018594170e7bc6d71eedef9430b0b39d2c27fa14e00c8000180e2272cb5c022aa7657c66943cc53ee97771af1b46065094399d54e27f5dc9ec686b39a06ee917adc4ed38a6ed62ca2b873b5f92a7137951e5ada932c08ff898baea581515d4f5154e3f8dd1956e196db06062086af8dfbdb126d0c34c188010a9c25150e575c2133e39e548a6013f93d25d479365750f65d11dd944371cc8ffcad8da4021bdf8da573c95aebe56578a973e00abc8a2180ab4463246524133d47e21d5207096c51184c588884afa18ea4b445e9ba1f251dc501ad51f80800b800ac1e010149020480eace3ff56204f7f425c4b8d5aef8fad1d3da770c3746175da5421da23c193f45cf1c7eceb6554ed2fd575683009b2efcf808009a00", @ANYRES32=r5, @ANYBLOB="0c021980040046000800b100", @ANYRES32=r6, @ANYBLOB="0b7d2047135d2fb50b09167f5f4e4e5f77769a5a01d9e0a8820472fd9862f0dd1208bc069bd587244f245f6ec38a625b8d55d29814a434bad0bbcfd4a70ac18a648be734ca910a07ad5334570c310895f30be3746340adf5e6ec5e69d96d2b4cbae58c9f796ee91831fbc5820b4cdbacebbba1792d7fc5d1a5ad22912d78688736fc756ff7ed39cd9c385fb03f6773314e8ab1db721744ecfdbdcac4ffe74e81aeac53cbdf011ea4556a9493bab4b336838c3c0b83fd95df0be59dee8edf050d4322dd08ff8b301b22d8846cd51e0f355f4770751a6d3afca9f2f1ba02e52d7c8046f09d9391f61f122d15bf2ae032fc73a3e60c435551dc610fae6c374bed0d7c6ff68d099112d287e9a0f5f1e785b25b3aada6b419bd6e7c378d6f9bd3410b598c8ff44d0365b6c6115b171a169a37d236a3c024887bb236152a0000000000000008c3cbd1a89b7e890814eca067335de88ec667dd1de9d316a475639788215c6966ae5e03802ef7612ec2e54e177969d5dbf4dca7353e00372fab5e8a5a8915624893c43276c1be99d299646d6cc3953f408df0abadca4b28166bf905340b2e0a12372dc08d160d8ae45adef52af945393af326148b196dba6f4ff06b0420d24105ddc71c4d02a212484a209560ab971605fb5411c7e7e5076f8f8f42cfea4a7b7ea3e135b13be3ebc7919483f91facf4a70300af00e3d9ea271e000000"], 0x2540}, 0x1, 0x0, 0x0, 0x20008105}, 0x40)
r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=r7, @ANYBLOB="00042cbd7000fedbdf251200000020000180140002006772653000000000000000000000000008000300acfc0000080007000300000008000800e0000000"], 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x8000800)
mmap$auto(0x10001, 0x2020009, 0x7fff, 0x10000000eb3, r0, 0xfdda)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/irq/2/hwirq\x00', 0x80000, 0x0)
read$auto(r8, 0x0, 0x20)
socket(0x2, 0x5, 0x0)
mremap$auto(0x1, 0x5, 0x5, 0xb, 0xfffffffffffffff6)

315.055602ms ago: executing program 3 (id=2379):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/workqueue/parameters/power_efficient\x00', 0x406103, 0x0)
io_uring_register$auto_IORING_UNREGISTER_FILES(r0, 0x3, &(0x7f0000000080)="193f32b995f0ecb4ddf8cd83baeda5c352a745214ad880cc4c561670de2d13131c656d339507302cd18f379f551569932d17bb17195ecfc677eb23ac801128003ef54e78817f1a", 0x3)
sendfile$auto(r0, r0, &(0x7f0000000000)=0x3, 0xad7)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram2\x00', 0xe0e42, 0x0)
ioctl$auto_BLKFLSBUF(0xffffffffffffffff, 0x1261, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
read$auto(0xffffffffffffffff, 0x0, 0x20)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/fs/cifs/LinuxExtensionsEnabled\x00', 0x48041, 0x0)
mmap$auto(0x0, 0xf4, 0xdf, 0xeb1, 0x69a5, 0xa800000000000000)
r3 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy0/aqm\x00', 0x82, 0x0)
write$auto_debugfs_full_proxy_file_operations_internal(r3, 0x0, 0x20)
write$auto(r2, 0x0, 0x6)
r4 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/block/sda/sched/read0_fifo_list\x00', 0x121240, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r4, &(0x7f0000000040)=""/163, 0xa3)
unshare$auto(0x40000080)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000000)="b2", 0x1)
r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0)
sendfile$auto(r1, r6, 0x0, 0x1)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x1, 0x48, 0x0, 0x9)
r7 = socket(0x1c, 0x1, 0xfe000000)
bind$auto(r7, &(0x7f0000000140)=@generic={0x18, "930000000400989fa33500000091"}, 0x6a)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vgem/driver_override\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff)

202.810588ms ago: executing program 1 (id=2380):
r0 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x2801, 0x0)
read$auto_tracing_pipe_fops_trace(r0, &(0x7f0000000040)=""/4096, 0x1000)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000001040)='./file0\x00', 0x420000, 0x144)
bpf$auto_BPF_MAP_GET_NEXT_KEY(0x4, &(0x7f0000001080)=@token_create={0x1000, <r2=>r1}, 0x9)
r3 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001140)='/dev/fuse\x00', 0x10400, 0x0)
ioctl$auto_FUSE_DEV_IOC_BACKING_OPEN(r3, 0x4010e501, &(0x7f0000001180)={<r4=>r2, 0x4000000})
write$auto_tracing_mark_fops_trace(r4, &(0x7f00000011c0)="21115422ceafcb", 0x7)
r5 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000001200), 0x111001, 0x0)
bind$auto(r5, &(0x7f0000001240)=@vsock={0x28, 0x0, 0x2711, @my=0x0}, 0x5)
capget$auto(&(0x7f0000001280)={0x9, <r6=>0x0}, &(0x7f00000012c0)={0x5, 0xf, 0x80})
readv$auto(r0, &(0x7f0000001400)={&(0x7f0000001300)="6306d261e5a4f44c0737daa36c3a285a1d2b67161620109871a4f7fc2c0ffe53dd9ab6432d29c7e5284c4170157f90477f6bb70195101a3dcc1d77ba2131e72b02a7c1c07cd7a283fe5fc8b377157b0a48448dd37844c6617b06f4734bd6669cd8fb6a751f15dd91b45339da41e38baf2c10df8ddcd15974ce2f3ad66336a875428bfcc02a7b61575149bfadfddba018fee8f908c9ac771f0cf3d72edc4c7aa2b7c40536326ff55028baeafa6f10a1a9c7ef1b6240a3de8c0a4949f069cc82e3c46eba5ac16bcf7b6002e3493692aa9e8973e6103441f7cba3b7cc52055b4f5fb857c372423221aa0e710aea21672f454450d10e", 0x1ff}, 0x7f)
r7 = openat$auto_bsg_fops_bsg(0xffffffffffffff9c, &(0x7f0000001440)='/dev/bsg/0:0:0:0\x00', 0x6a4800, 0x0)
ioctl$auto_VHOST_SET_VRING_CALL(r2, 0x4008af21, &(0x7f0000001480)={0x0, <r8=>r7})
shmctl$auto_SHM_INFO(0x4, 0xe, &(0x7f0000001580)={{0x37c, <r9=>0xee00, <r10=>0x0, 0x9, 0x0, 0x5, 0x5}, 0x7fffffff, 0x100, 0x2, 0xe, @raw=0x7ff, @raw=0x3, 0x100, 0x0, &(0x7f00000014c0)="29fcefe0abce401dc31078bd1171", &(0x7f0000001500)="d194df8dea6d6e815f1a190243d400d9ea42d2af8d25d86f4b1f666347236b2795aeb10df40939d2d11c851dbbb6ad7acfe0dfb1684429abaf15bbd8df2c1bd98a739dec0eb1f014511a74cc6be41fdaae9bb92a36b56d6499f1e1a8a2344261e348"})
quotactl_fd$auto(r7, 0x6, r10, &(0x7f0000001600)="df4b58a89af820729b6840fd92648b9786c2a78aa47ffd11efe4c56569202149c83ee9412c3366ec5a9d7c52c818be726b0ac88afd85ddc89825fd9ab91983429c666fe1126eee984afa7f7ca8423ce9bc7cd86206455682bdd219ad5b021574b3cb1d8c737b27a29ae3dfe3cb1340ef08d4ff188e00127f3be3390e502d4e757ac1630f35776998cf28e5a827d175f01fed37ab77a61f4ae911576d89c258f095a199ca04ec09e8d7e03bcdfe54ac004aff36b253f443265faf05fb215f8c5e7e4d3d7a")
getsockopt$auto_SO_SNDTIMEO_NEW(r4, 0x1, 0x43, &(0x7f0000001700)='-\'^\x00', &(0x7f0000001740)=0x20)
shmctl$auto_IPC_RMID(0x80000000, 0x0, &(0x7f00000018c0)={{0x6, r9, <r11=>r10, 0xff, 0x8001, 0xcf1d, 0x6}, 0x4, 0x3, 0x0, 0xe, @inferred=r6, @inferred=<r12=>r6, 0x4, 0x0, &(0x7f0000001780)="7941bb6dfab1a3453c294ed69098766d47444b7c976d31759506a354f8a96ee2388a7a2f03d62cf109a691bb23e7160bd4ea09be425fe47ded28922f40c544751b0cbb978f23d1b66fb546fdc6ff6c98a6c1491ad895bf3b97466b06426ddd658c9c7d1d18c5978799ea20f40bdfc5949bd7174cc6ae529fe0e0024931b487bf10f6700bfbc2c125c361cd467a1ac3eea1a8b64016c211a021a67fc2689884b6bb33805a3060fe5bf88e785170db64428d00065a560e49423c54710a744c44404349df19d44682f57e954bd4d75ff726b0a564783179489add2dec1ad0654ce8c2783d6721", &(0x7f0000001880)="a031ebc23a08388d5368bc8dc027b7fb73a8ca3b9bf65b8d261b9e2dbcc6ad985cd38c"})
pread64$auto(r8, &(0x7f0000001940)='\x00', 0x3, 0x3)
r13 = fcntl$auto_F_DUPFD_CLOEXEC(r3, 0x406, r3)
close_range$auto(r13, r4, 0x2)
ioctl$auto_PPPIOCGIDLE64(r8, 0x8010743f, &(0x7f0000001980)={0x0, 0x1})
msgctl$auto_IPC_SET(0x2, 0x1, &(0x7f0000001a80)={{0x4, <r14=>r9, r11, 0x9, 0x0, 0xffff, 0xfff7}, &(0x7f0000001a00)=0x5, &(0x7f0000001a40)=0x9, 0x8000000000000000, 0xd4b, 0x0, 0xe, 0x81, 0x7f, 0x1000, 0x7, @raw=0x3, @inferred=r12})
lchown$auto(&(0x7f00000019c0)='./file0\x00', r14, r11)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000001b00), 0xd00, 0x0)
r15 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001b80), r1)
sendmsg$auto_NL80211_CMD_SET_PMK(r13, &(0x7f0000001d00)={&(0x7f0000001b40)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001cc0)={&(0x7f0000001bc0)={0xd8, r15, 0x620, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_TIMEOUT={0x8, 0x110, 0x6a1}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0xe}, @NL80211_ATTR_PREV_BSSID={0xb4, 0x4f, "55ee2c65fbc93fc3c8cdef764e4d434d925041c55c1c768499a1a03119529381479cbe58c1d027badc9387bcdfbe86f5e0b338edebd62af39fa62e1a8fbf45aefa6ef25ad6ded31d09f569e8a312299a0f3be90d75dae4377558a9b8f776f879a2f53a405a2a8f7d11c97be50ff6a503d154cdd5251559243ba3d9fd6800eb3250a4358c21b394e999309b821c3436d0628ea67987433838104881e0426604b68571660e3c786e9c94246660415468e5"}]}, 0xd8}, 0x1, 0x0, 0x0, 0x2040000}, 0x8000)
fcntl$auto_F_GET_RW_HINT(r0, 0x40b, 0x2b1d)
read$auto_bridges_fops_(r4, &(0x7f0000001d40)=""/146, 0x92)
shutdown$auto(r0, 0x0)
getsockname$auto(r13, &(0x7f0000001e00)=@tipc=@id={0x1e, 0x3, 0x0, {0xc, 0x1}}, &(0x7f0000001e40)=0x40)

0s ago: executing program 1 (id=2381):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
mmap$auto_proc_reg_file_ops_compat_inode(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x8010, 0xffffffffffffffff, 0x6)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0)
r2 = openat$auto_page_owner_stack_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000140), 0x121140, 0x0)
read$auto_page_owner_stack_operations_page_owner(r2, &(0x7f0000000380)=""/4096, 0x1000)
r3 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/etherd/err\x00', 0x800, 0x0)
read$auto_aoe_fops_aoechr(r3, 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
mmap$auto(0x6, 0x5, 0xd4, 0x91, r2, 0x9)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/v4l-subdev1\x00', 0x169000, 0x0)
mmap$auto(0x0, 0x3, 0xb, 0x3132, 0x4008df3, 0x0)
sched_setaffinity$auto(0x0, 0x9899, &(0x7f00000000c0)=0xf19d)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_CTRL_CMD_GETPOLICY(r4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40e1}, 0x40000)
mmap$auto(0x0, 0xd, 0xfffffffffffffffc, 0x40000000eb1, 0x401, 0x5)
r5 = socket(0xa, 0x801, 0x86)
getpid()
setsockopt$auto(r5, 0x10000000084, 0x9, 0x0, 0x9c)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x4000000000004, 0x8002020009, 0x3, 0x8000000000008010, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, 0x0, 0x40, 0x0)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x141f02, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r6, 0x0)
socket(0xa, 0x2, 0x88)

kernel console output (not intermixed with test programs):

Out of memory at tomoyo_memory_ok.
[  497.699493][T14337] netlink: 'syz.1.1837': attribute type 2 has an invalid length.
[  497.704846][T14338] FAULT_INJECTION: forcing a failure.
[  497.704846][T14338] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  497.737070][T14338] CPU: 0 UID: 0 PID: 14338 Comm: syz.0.1836 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  497.737114][T14338] Tainted: [L]=SOFTLOCKUP
[  497.737122][T14338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  497.737138][T14338] Call Trace:
[  497.737147][T14338]  <TASK>
[  497.737157][T14338]  dump_stack_lvl+0x16c/0x1f0
[  497.737190][T14338]  should_fail_ex+0x512/0x640
[  497.737233][T14338]  _copy_from_user+0x2e/0xd0
[  497.737278][T14338]  __x64_sys_rt_sigtimedwait+0x182/0x2f0
[  497.737323][T14338]  ? __pfx___x64_sys_rt_sigtimedwait+0x10/0x10
[  497.737363][T14338]  ? __x64_sys_futex+0x1e0/0x4c0
[  497.737396][T14338]  ? fput+0x70/0xf0
[  497.737436][T14338]  do_syscall_64+0xcd/0xf80
[  497.737467][T14338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  497.737494][T14338] RIP: 0033:0x7f199c78f7c9
[  497.737516][T14338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  497.737543][T14338] RSP: 002b:00007f199d6a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000080
[  497.737569][T14338] RAX: ffffffffffffffda RBX: 00007f199c9e5fa0 RCX: 00007f199c78f7c9
[  497.737587][T14338] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[  497.737603][T14338] RBP: 00007f199c813f91 R08: 0000000000000000 R09: 0000000000000000
[  497.737620][T14338] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[  497.737636][T14338] R13: 00007f199c9e6038 R14: 00007f199c9e5fa0 R15: 00007ffe6b3987c8
[  497.737673][T14338]  </TASK>
[  497.744430][T14337] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1837'.
[  499.580166][T14362] FAULT_INJECTION: forcing a failure.
[  499.580166][T14362] name failslab, interval 1, probability 0, space 0, times 0
[  499.603019][T14362] CPU: 1 UID: 0 PID: 14362 Comm: syz.1.1842 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  499.603065][T14362] Tainted: [L]=SOFTLOCKUP
[  499.603075][T14362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  499.603092][T14362] Call Trace:
[  499.603101][T14362]  <TASK>
[  499.603111][T14362]  dump_stack_lvl+0x16c/0x1f0
[  499.603152][T14362]  should_fail_ex+0x512/0x640
[  499.603189][T14362]  ? __kmalloc_node_track_caller_noprof+0xcb/0x930
[  499.603232][T14362]  should_failslab+0xc2/0x120
[  499.603270][T14362]  __kmalloc_node_track_caller_noprof+0xec/0x930
[  499.603306][T14362]  ? __kthread_create_on_node+0x186/0x3f0
[  499.603353][T14362]  ? kvasprintf+0xbc/0x150
[  499.603385][T14362]  kvasprintf+0xbc/0x150
[  499.603419][T14362]  ? __pfx_kvasprintf+0x10/0x10
[  499.603468][T14362]  ? __pfx_rescuer_thread+0x10/0x10
[  499.603496][T14362]  __kthread_create_on_node+0x186/0x3f0
[  499.603538][T14362]  ? __pfx___kthread_create_on_node+0x10/0x10
[  499.603585][T14362]  ? __pfx_vsnprintf+0x10/0x10
[  499.603631][T14362]  ? __pfx_rescuer_thread+0x10/0x10
[  499.603661][T14362]  kthread_create_on_node+0xc7/0x100
[  499.603700][T14362]  ? __pfx_kthread_create_on_node+0x10/0x10
[  499.603737][T14362]  ? __pfx_scnprintf+0x10/0x10
[  499.603781][T14362]  init_rescuer+0x319/0x590
[  499.603808][T14362]  ? __pfx_init_rescuer+0x10/0x10
[  499.603843][T14362]  ? wq_adjust_max_active+0x39d/0x4a0
[  499.603875][T14362]  __alloc_workqueue+0xda4/0x1810
[  499.603924][T14362]  alloc_workqueue_noprof+0xd2/0x200
[  499.603964][T14362]  ? __pfx_alloc_workqueue_noprof+0x10/0x10
[  499.604025][T14362]  nci_register_device+0x511/0xb80
[  499.604065][T14362]  ? __pfx_nci_register_device+0x10/0x10
[  499.604107][T14362]  ? lockdep_init_map_type+0x5c/0x270
[  499.604147][T14362]  virtual_ncidev_open+0x141/0x220
[  499.604182][T14362]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  499.604213][T14362]  misc_open+0x26d/0x450
[  499.604249][T14362]  ? __pfx_misc_open+0x10/0x10
[  499.604283][T14362]  chrdev_open+0x234/0x6a0
[  499.604320][T14362]  ? __pfx_apparmor_file_open+0x10/0x10
[  499.604354][T14362]  ? __pfx_chrdev_open+0x10/0x10
[  499.604395][T14362]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  499.604444][T14362]  do_dentry_open+0x748/0x1590
[  499.604480][T14362]  ? __pfx_chrdev_open+0x10/0x10
[  499.604526][T14362]  vfs_open+0x82/0x3f0
[  499.604558][T14362]  path_openat+0x2078/0x3140
[  499.604603][T14362]  ? __pfx_path_openat+0x10/0x10
[  499.604650][T14362]  do_filp_open+0x20b/0x470
[  499.604683][T14362]  ? __pfx_do_filp_open+0x10/0x10
[  499.604738][T14362]  ? alloc_fd+0x471/0x7d0
[  499.604778][T14362]  do_sys_openat2+0x11f/0x280
[  499.604803][T14362]  ? __pfx_do_sys_openat2+0x10/0x10
[  499.604832][T14362]  ? __fput+0x68d/0xb70
[  499.604865][T14362]  __x64_sys_openat+0x174/0x210
[  499.604891][T14362]  ? __pfx___x64_sys_openat+0x10/0x10
[  499.604933][T14362]  do_syscall_64+0xcd/0xf80
[  499.604959][T14362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  499.604985][T14362] RIP: 0033:0x7f527738f7c9
[  499.605004][T14362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  499.605031][T14362] RSP: 002b:00007f52781e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  499.605057][T14362] RAX: ffffffffffffffda RBX: 00007f52775e6180 RCX: 00007f527738f7c9
[  499.605075][T14362] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  499.605090][T14362] RBP: 00007f5277413f91 R08: 0000000000000000 R09: 0000000000000000
[  499.605106][T14362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  499.605121][T14362] R13: 00007f52775e6218 R14: 00007f52775e6180 R15: 00007ffee7b63c58
[  499.605165][T14362]  </TASK>
[  499.607624][T14362] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -ENOMEM
[  500.264337][T14377] netlink: 'syz.1.1847': attribute type 2 has an invalid length.
[  500.328167][T14377] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1847'.
[  500.385173][T14380] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  500.402577][T14380] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  501.600301][T14407] netlink: zone id is out of range
[  501.620986][T14407] netlink: del zone limit has 4 unknown bytes
[  502.282702][T14412] netlink: 'syz.3.1857': attribute type 2 has an invalid length.
[  502.318446][T14412] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1857'.
[  504.944335][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  504.950638][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  505.271218][T14433] FAULT_INJECTION: forcing a failure.
[  505.271218][T14433] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  505.352008][T14433] CPU: 1 UID: 0 PID: 14433 Comm: syz.3.1863 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  505.352053][T14433] Tainted: [L]=SOFTLOCKUP
[  505.352062][T14433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  505.352078][T14433] Call Trace:
[  505.352087][T14433]  <TASK>
[  505.352097][T14433]  dump_stack_lvl+0x16c/0x1f0
[  505.352131][T14433]  should_fail_ex+0x512/0x640
[  505.352179][T14433]  should_fail_alloc_page+0xe7/0x130
[  505.352222][T14433]  prepare_alloc_pages+0x401/0x670
[  505.352266][T14433]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  505.352317][T14433]  ? __lock_acquire+0x436/0x2890
[  505.352344][T14433]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  505.352382][T14433]  ? register_lock_class+0x41/0x4b0
[  505.352418][T14433]  ? __lock_acquire+0x436/0x2890
[  505.352446][T14433]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  505.352497][T14433]  ? policy_nodemask+0xea/0x4e0
[  505.352540][T14433]  alloc_pages_mpol+0x1fb/0x550
[  505.352581][T14433]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  505.352618][T14433]  ? __pfx___mutex_lock+0x10/0x10
[  505.352656][T14433]  alloc_pages_noprof+0x131/0x390
[  505.352692][T14433]  __pmd_alloc+0x3b/0x9c0
[  505.352729][T14433]  huge_pte_alloc+0x41d/0x5b0
[  505.352757][T14433]  hugetlb_fault+0x36b/0x1730
[  505.352790][T14433]  ? __pfx_hugetlb_fault+0x10/0x10
[  505.352832][T14433]  ? find_vma+0xbf/0x140
[  505.352863][T14433]  ? __pfx_find_vma+0x10/0x10
[  505.352900][T14433]  handle_mm_fault+0x95d/0xad0
[  505.352932][T14433]  do_user_addr_fault+0x7a6/0x1370
[  505.352967][T14433]  ? rcu_is_watching+0x12/0xc0
[  505.353007][T14433]  exc_page_fault+0x64/0xc0
[  505.353034][T14433]  asm_exc_page_fault+0x26/0x30
[  505.353060][T14433] RIP: 0010:__put_user_4+0xd/0x20
[  505.353085][T14433] Code: 66 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90
[  505.353111][T14433] RSP: 0018:ffffc90018c5fd78 EFLAGS: 00050246
[  505.353132][T14433] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  505.353148][T14433] RDX: 0000000000080000 RSI: ffffffff89007a92 RDI: ffffffff8bf24480
[  505.353165][T14433] RBP: 1ffff9200318bfb1 R08: 00000000ffffffff R09: 00000000ffffffff
[  505.353179][T14433] R10: 0000000000000001 R11: ffff88801cf24830 R12: 0000000000000000
[  505.353196][T14433] R13: 00000000800455d1 R14: ffff8880545ca810 R15: ffff8880545ca800
[  505.353221][T14433]  ? snd_ctl_ioctl+0x322/0x13e0
[  505.353247][T14433]  snd_ctl_ioctl+0x32c/0x13e0
[  505.353269][T14433]  ? __pfx_snd_ctl_ioctl+0x10/0x10
[  505.353298][T14433]  ? find_held_lock+0x2b/0x80
[  505.353328][T14433]  ? hook_file_ioctl_common+0x144/0x410
[  505.353372][T14433]  ? __fget_files+0x20e/0x3c0
[  505.353412][T14433]  ? __pfx_snd_ctl_ioctl+0x10/0x10
[  505.353440][T14433]  __x64_sys_ioctl+0x18e/0x210
[  505.353488][T14433]  do_syscall_64+0xcd/0xf80
[  505.353519][T14433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.353543][T14433] RIP: 0033:0x7f3ca578f7c9
[  505.353563][T14433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  505.353588][T14433] RSP: 002b:00007f3ca668c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  505.353611][T14433] RAX: ffffffffffffffda RBX: 00007f3ca59e6090 RCX: 00007f3ca578f7c9
[  505.353630][T14433] RDX: 0000000000000000 RSI: 00000000800455d1 RDI: 0000000000000006
[  505.353645][T14433] RBP: 00007f3ca5813f91 R08: 0000000000000000 R09: 0000000000000000
[  505.353660][T14433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  505.353674][T14433] R13: 00007f3ca59e6128 R14: 00007f3ca59e6090 R15: 00007fff3e043c78
[  505.353711][T14433]  </TASK>
[  506.234848][T14451] debugfs: '!PjEùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' already exists in 'ieee80211'
[  506.500370][T14455] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  507.086844][T14470] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  507.142419][T14470] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  508.595584][T14498] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1877'.
[  508.802598][T14510] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  508.826043][T14510] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  509.083519][T14517] __vm_enough_memory: pid: 14517, comm: syz.2.1881, bytes: 4398046511104 not enough memory for the allocation
[  509.992388][T14536] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  510.067569][T14536] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  511.156468][T14563] netlink: 'syz.3.1894': attribute type 2 has an invalid length.
[  511.172272][T14563] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1894'.
[  511.273494][T14560] delete_channel: no stack
[  511.913450][T14580] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input34
[  512.013097][T14582] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  512.045309][T14582] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  512.142655][T14583] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input35
[  514.141507][T14626] vhci_hcd vhci_hcd.2: default hub control req: f90c v0001 i0006 l257
[  514.376625][T14628] FAULT_INJECTION: forcing a failure.
[  514.376625][T14628] name fail_futex, interval 1, probability 0, space 0, times 0
[  514.390587][T14628] CPU: 1 UID: 0 PID: 14628 Comm: syz.1.1908 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  514.390634][T14628] Tainted: [L]=SOFTLOCKUP
[  514.390644][T14628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  514.390660][T14628] Call Trace:
[  514.390669][T14628]  <TASK>
[  514.390680][T14628]  dump_stack_lvl+0x16c/0x1f0
[  514.390715][T14628]  should_fail_ex+0x512/0x640
[  514.390757][T14628]  get_futex_key+0x1d0/0x15f0
[  514.390791][T14628]  ? __pfx_get_futex_key+0x10/0x10
[  514.390819][T14628]  ? find_held_lock+0x2b/0x80
[  514.390875][T14628]  futex_wake+0xea/0x530
[  514.390913][T14628]  ? __lock_acquire+0x436/0x2890
[  514.390938][T14628]  ? __pfx_futex_wake+0x10/0x10
[  514.390978][T14628]  ? __lock_acquire+0x436/0x2890
[  514.391012][T14628]  do_futex+0x1e3/0x350
[  514.391044][T14628]  ? __pfx_do_futex+0x10/0x10
[  514.391085][T14628]  __x64_sys_futex+0x1e0/0x4c0
[  514.391119][T14628]  ? fdget_pos+0x2b8/0x370
[  514.391160][T14628]  ? __pfx___x64_sys_futex+0x10/0x10
[  514.391192][T14628]  ? __pfx_do_writev+0x10/0x10
[  514.391229][T14628]  ? fdget+0x187/0x210
[  514.391270][T14628]  do_syscall_64+0xcd/0xf80
[  514.391303][T14628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.391331][T14628] RIP: 0033:0x7f527738f7c9
[  514.391353][T14628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  514.391381][T14628] RSP: 002b:00007f52782070e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  514.391408][T14628] RAX: ffffffffffffffda RBX: 00007f52775e6098 RCX: 00007f527738f7c9
[  514.391428][T14628] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f52775e609c
[  514.391446][T14628] RBP: 00007f52775e6090 R08: 00007f5278229000 R09: 0000000000000000
[  514.391463][T14628] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  514.391481][T14628] R13: 00007f52775e6128 R14: 00007ffee7b63b70 R15: 00007ffee7b63c58
[  514.391523][T14628]  </TASK>
[  514.983664][T14634] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input37
[  515.477703][T14652] netlink: 'syz.2.1913': attribute type 4 has an invalid length.
[  515.542175][T14652] netlink: 314 bytes leftover after parsing attributes in process `syz.2.1913'.
[  515.543897][T14638] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input38
[  515.690467][T14655] netlink: 'syz.2.1914': attribute type 2 has an invalid length.
[  515.698641][T14655] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1914'.
[  516.157935][T14667] netlink: 'syz.1.1918': attribute type 2 has an invalid length.
[  516.167402][T14667] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1918'.
[  516.575292][T14683] netlink: 'syz.0.1922': attribute type 1 has an invalid length.
[  516.599637][T14685] netlink: 'syz.2.1923': attribute type 2 has an invalid length.
[  516.632994][T14685] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1923'.
[  516.913341][T14691] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input39
[  517.012272][T14698] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input40
[  517.756598][T14715] FAULT_INJECTION: forcing a failure.
[  517.756598][T14715] name failslab, interval 1, probability 0, space 0, times 0
[  517.772027][T14715] CPU: 0 UID: 0 PID: 14715 Comm: syz.3.1930 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  517.772074][T14715] Tainted: [L]=SOFTLOCKUP
[  517.772084][T14715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  517.772101][T14715] Call Trace:
[  517.772111][T14715]  <TASK>
[  517.772121][T14715]  dump_stack_lvl+0x16c/0x1f0
[  517.772156][T14715]  should_fail_ex+0x512/0x640
[  517.772193][T14715]  ? __kmalloc_cache_noprof+0x5f/0x800
[  517.772229][T14715]  should_failslab+0xc2/0x120
[  517.772270][T14715]  __kmalloc_cache_noprof+0x80/0x800
[  517.772299][T14715]  ? do_raw_spin_lock+0x12c/0x2b0
[  517.772328][T14715]  ? kobject_uevent_env+0x265/0x1920
[  517.772367][T14715]  ? kobject_uevent_env+0x265/0x1920
[  517.772400][T14715]  kobject_uevent_env+0x265/0x1920
[  517.772433][T14715]  ? __pfx_dev_uevent_name+0x10/0x10
[  517.772471][T14715]  ? bus_to_subsys+0x131/0x160
[  517.772506][T14715]  device_add+0x1103/0x1980
[  517.772536][T14715]  ? __pfx_device_add+0x10/0x10
[  517.772583][T14715]  nfc_register_device+0x41/0x410
[  517.772615][T14715]  nci_register_device+0x7f1/0xb80
[  517.772656][T14715]  ? __pfx_nci_register_device+0x10/0x10
[  517.772697][T14715]  ? lockdep_init_map_type+0x5c/0x270
[  517.772731][T14715]  virtual_ncidev_open+0x141/0x220
[  517.772763][T14715]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  517.772794][T14715]  misc_open+0x26d/0x450
[  517.772828][T14715]  ? __pfx_misc_open+0x10/0x10
[  517.772863][T14715]  chrdev_open+0x234/0x6a0
[  517.772900][T14715]  ? __pfx_apparmor_file_open+0x10/0x10
[  517.772934][T14715]  ? __pfx_chrdev_open+0x10/0x10
[  517.772973][T14715]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  517.773020][T14715]  do_dentry_open+0x748/0x1590
[  517.773055][T14715]  ? __pfx_chrdev_open+0x10/0x10
[  517.773102][T14715]  vfs_open+0x82/0x3f0
[  517.773134][T14715]  path_openat+0x2078/0x3140
[  517.773183][T14715]  ? __pfx_path_openat+0x10/0x10
[  517.773234][T14715]  do_filp_open+0x20b/0x470
[  517.773272][T14715]  ? __pfx_do_filp_open+0x10/0x10
[  517.773337][T14715]  ? alloc_fd+0x471/0x7d0
[  517.773384][T14715]  do_sys_openat2+0x11f/0x280
[  517.773413][T14715]  ? __pfx_do_sys_openat2+0x10/0x10
[  517.773444][T14715]  ? __fput+0x68d/0xb70
[  517.773478][T14715]  __x64_sys_openat+0x174/0x210
[  517.773507][T14715]  ? __pfx___x64_sys_openat+0x10/0x10
[  517.773551][T14715]  do_syscall_64+0xcd/0xf80
[  517.773588][T14715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  517.773617][T14715] RIP: 0033:0x7f3ca578f7c9
[  517.773639][T14715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  517.773666][T14715] RSP: 002b:00007f3ca668c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  517.773693][T14715] RAX: ffffffffffffffda RBX: 00007f3ca59e6090 RCX: 00007f3ca578f7c9
[  517.773712][T14715] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  517.773730][T14715] RBP: 00007f3ca5813f91 R08: 0000000000000000 R09: 0000000000000000
[  517.773747][T14715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  517.773763][T14715] R13: 00007f3ca59e6128 R14: 00007f3ca59e6090 R15: 00007fff3e043c78
[  517.773802][T14715]  </TASK>
[  518.455757][T14731] netlink: 'syz.0.1935': attribute type 2 has an invalid length.
[  518.474662][T14731] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1935'.
[  519.326762][T14754] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input41
[  519.505989][T14760] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input42
[  519.797530][T14769] FAULT_INJECTION: forcing a failure.
[  519.797530][T14769] name failslab, interval 1, probability 0, space 0, times 0
[  519.827760][T14769] CPU: 1 UID: 0 PID: 14769 Comm: syz.0.1943 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  519.827808][T14769] Tainted: [L]=SOFTLOCKUP
[  519.827818][T14769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  519.827835][T14769] Call Trace:
[  519.827844][T14769]  <TASK>
[  519.827854][T14769]  dump_stack_lvl+0x16c/0x1f0
[  519.827891][T14769]  should_fail_ex+0x512/0x640
[  519.827928][T14769]  ? __kmalloc_cache_noprof+0x5f/0x800
[  519.827963][T14769]  should_failslab+0xc2/0x120
[  519.828003][T14769]  __kmalloc_cache_noprof+0x80/0x800
[  519.828032][T14769]  ? do_raw_spin_lock+0x12c/0x2b0
[  519.828063][T14769]  ? kobject_uevent_env+0x265/0x1920
[  519.828112][T14769]  ? kobject_uevent_env+0x265/0x1920
[  519.828154][T14769]  kobject_uevent_env+0x265/0x1920
[  519.828189][T14769]  ? __pfx_dev_uevent_name+0x10/0x10
[  519.828229][T14769]  ? bus_to_subsys+0x131/0x160
[  519.828264][T14769]  device_add+0x1103/0x1980
[  519.828294][T14769]  ? __pfx_device_add+0x10/0x10
[  519.828334][T14769]  nfc_register_device+0x41/0x410
[  519.828366][T14769]  nci_register_device+0x7f1/0xb80
[  519.828405][T14769]  ? __pfx_nci_register_device+0x10/0x10
[  519.828476][T14769]  ? lockdep_init_map_type+0x5c/0x270
[  519.828510][T14769]  virtual_ncidev_open+0x141/0x220
[  519.828542][T14769]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  519.828570][T14769]  misc_open+0x26d/0x450
[  519.828604][T14769]  ? __pfx_misc_open+0x10/0x10
[  519.828635][T14769]  chrdev_open+0x234/0x6a0
[  519.828668][T14769]  ? __pfx_apparmor_file_open+0x10/0x10
[  519.828710][T14769]  ? __pfx_chrdev_open+0x10/0x10
[  519.828753][T14769]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  519.828798][T14769]  do_dentry_open+0x748/0x1590
[  519.828834][T14769]  ? __pfx_chrdev_open+0x10/0x10
[  519.828882][T14769]  vfs_open+0x82/0x3f0
[  519.828915][T14769]  path_openat+0x2078/0x3140
[  519.828965][T14769]  ? __pfx_path_openat+0x10/0x10
[  519.829016][T14769]  do_filp_open+0x20b/0x470
[  519.829055][T14769]  ? __pfx_do_filp_open+0x10/0x10
[  519.829120][T14769]  ? alloc_fd+0x471/0x7d0
[  519.829170][T14769]  do_sys_openat2+0x11f/0x280
[  519.829199][T14769]  ? __pfx_do_sys_openat2+0x10/0x10
[  519.829233][T14769]  ? __fput+0x68d/0xb70
[  519.829267][T14769]  __x64_sys_openat+0x174/0x210
[  519.829299][T14769]  ? __pfx___x64_sys_openat+0x10/0x10
[  519.829344][T14769]  do_syscall_64+0xcd/0xf80
[  519.829377][T14769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.829404][T14769] RIP: 0033:0x7f199c78f7c9
[  519.829428][T14769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  519.829456][T14769] RSP: 002b:00007f199d6a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  519.829483][T14769] RAX: ffffffffffffffda RBX: 00007f199c9e5fa0 RCX: 00007f199c78f7c9
[  519.829504][T14769] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  519.829523][T14769] RBP: 00007f199c813f91 R08: 0000000000000000 R09: 0000000000000000
[  519.829541][T14769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  519.829558][T14769] R13: 00007f199c9e6038 R14: 00007f199c9e5fa0 R15: 00007ffe6b3987c8
[  519.829597][T14769]  </TASK>
[  521.211373][T14792] FAULT_INJECTION: forcing a failure.
[  521.211373][T14792] name failslab, interval 1, probability 0, space 0, times 0
[  521.237708][T14792] CPU: 1 UID: 0 PID: 14792 Comm: syz.3.1950 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  521.237753][T14792] Tainted: [L]=SOFTLOCKUP
[  521.237765][T14792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  521.237783][T14792] Call Trace:
[  521.237793][T14792]  <TASK>
[  521.237806][T14792]  dump_stack_lvl+0x16c/0x1f0
[  521.237840][T14792]  should_fail_ex+0x512/0x640
[  521.237877][T14792]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  521.237914][T14792]  should_failslab+0xc2/0x120
[  521.237953][T14792]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  521.237987][T14792]  ? __d_alloc+0x35/0xa80
[  521.238028][T14792]  ? __d_alloc+0x35/0xa80
[  521.238060][T14792]  __d_alloc+0x35/0xa80
[  521.238101][T14792]  d_alloc_parallel+0x111/0x1510
[  521.238141][T14792]  ? find_held_lock+0x2b/0x80
[  521.238175][T14792]  ? __pfx_d_alloc_parallel+0x10/0x10
[  521.238209][T14792]  ? __d_lookup+0x266/0x4a0
[  521.238247][T14792]  lookup_open.isra.0+0x66c/0x1780
[  521.238290][T14792]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  521.238342][T14792]  ? lookup_fast+0x156/0x610
[  521.238376][T14792]  path_openat+0x12bb/0x3140
[  521.238433][T14792]  ? __pfx_path_openat+0x10/0x10
[  521.238485][T14792]  do_filp_open+0x20b/0x470
[  521.238527][T14792]  ? __pfx_do_filp_open+0x10/0x10
[  521.238594][T14792]  ? alloc_fd+0x471/0x7d0
[  521.238647][T14792]  do_sys_openat2+0x11f/0x280
[  521.238681][T14792]  ? __pfx_do_sys_openat2+0x10/0x10
[  521.238729][T14792]  __x64_sys_openat+0x174/0x210
[  521.238757][T14792]  ? __pfx___x64_sys_openat+0x10/0x10
[  521.238801][T14792]  do_syscall_64+0xcd/0xf80
[  521.238830][T14792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  521.238857][T14792] RIP: 0033:0x7f3ca578f7c9
[  521.238880][T14792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  521.238910][T14792] RSP: 002b:00007f3ca66ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  521.238938][T14792] RAX: ffffffffffffffda RBX: 00007f3ca59e5fa0 RCX: 00007f3ca578f7c9
[  521.238958][T14792] RDX: 0000000000100000 RSI: 0000200000000300 RDI: ffffffffffffff9c
[  521.238977][T14792] RBP: 00007f3ca5813f91 R08: 0000000000000000 R09: 0000000000000000
[  521.238995][T14792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  521.239012][T14792] R13: 00007f3ca59e6038 R14: 00007f3ca59e5fa0 R15: 00007fff3e043c78
[  521.239047][T14792]  </TASK>
[  521.815060][T14795] FAULT_INJECTION: forcing a failure.
[  521.815060][T14795] name failslab, interval 1, probability 0, space 0, times 0
[  521.831258][T14795] CPU: 1 UID: 0 PID: 14795 Comm: syz.2.1951 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  521.831305][T14795] Tainted: [L]=SOFTLOCKUP
[  521.831317][T14795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  521.831336][T14795] Call Trace:
[  521.831347][T14795]  <TASK>
[  521.831359][T14795]  dump_stack_lvl+0x16c/0x1f0
[  521.831395][T14795]  should_fail_ex+0x512/0x640
[  521.831432][T14795]  ? __kmalloc_noprof+0xca/0x910
[  521.831466][T14795]  should_failslab+0xc2/0x120
[  521.831506][T14795]  __kmalloc_noprof+0xeb/0x910
[  521.831535][T14795]  ? iter_file_splice_write+0x1cc/0x12b0
[  521.831582][T14795]  ? iter_file_splice_write+0x1cc/0x12b0
[  521.831627][T14795]  iter_file_splice_write+0x1cc/0x12b0
[  521.831672][T14795]  ? kfree+0x2f8/0x6e0
[  521.831698][T14795]  ? copy_splice_read+0x897/0xc20
[  521.831741][T14795]  ? copy_splice_read+0x897/0xc20
[  521.831777][T14795]  ? copy_splice_read+0x89c/0xc20
[  521.831812][T14795]  ? __pfx_iter_file_splice_write+0x10/0x10
[  521.831858][T14795]  ? __pfx_copy_splice_read+0x10/0x10
[  521.831898][T14795]  ? look_up_lock_class+0x59/0x130
[  521.831937][T14795]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  521.831974][T14795]  ? __pfx_iter_file_splice_write+0x10/0x10
[  521.832016][T14795]  direct_splice_actor+0x192/0x6c0
[  521.832058][T14795]  splice_direct_to_actor+0x345/0xa30
[  521.832097][T14795]  ? __pfx_direct_splice_actor+0x10/0x10
[  521.832138][T14795]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  521.832187][T14795]  do_splice_direct+0x174/0x240
[  521.832226][T14795]  ? __pfx_do_splice_direct+0x10/0x10
[  521.832264][T14795]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  521.832303][T14795]  ? bpf_lsm_file_permission+0x9/0x10
[  521.832334][T14795]  ? security_file_permission+0x71/0x210
[  521.832376][T14795]  ? rw_verify_area+0xcf/0x6c0
[  521.832413][T14795]  do_sendfile+0xb06/0xe50
[  521.832454][T14795]  ? __pfx_do_sendfile+0x10/0x10
[  521.832494][T14795]  ? __x64_sys_futex+0x1e0/0x4c0
[  521.832524][T14795]  ? __x64_sys_futex+0x1e9/0x4c0
[  521.832559][T14795]  __x64_sys_sendfile64+0x1d8/0x220
[  521.832602][T14795]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  521.832661][T14795]  do_syscall_64+0xcd/0xf80
[  521.832688][T14795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  521.832715][T14795] RIP: 0033:0x7f39a578f7c9
[  521.832738][T14795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  521.832764][T14795] RSP: 002b:00007f39a65ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  521.832790][T14795] RAX: ffffffffffffffda RBX: 00007f39a59e5fa0 RCX: 00007f39a578f7c9
[  521.832809][T14795] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005
[  521.832826][T14795] RBP: 00007f39a5813f91 R08: 0000000000000000 R09: 0000000000000000
[  521.832842][T14795] R10: 7fffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  521.832859][T14795] R13: 00007f39a59e6038 R14: 00007f39a59e5fa0 R15: 00007ffd5a9186d8
[  521.832897][T14795]  </TASK>
[  522.569831][T14798] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1952'.
[  523.382511][T14815] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input43
[  523.646544][T14816] netlink: 588 bytes leftover after parsing attributes in process `syz.0.1957'.
[  523.679340][T14816] netlink: 217 bytes leftover after parsing attributes in process `syz.0.1957'.
[  523.692194][T14810] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input44
[  524.729656][T14814] kexec: Could not allocate control_code_buffer
[  524.874324][T14837] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1963'.
[  525.279788][   T30] audit: type=1804 audit(4295091303.480:23): pid=14844 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1965" name="/newroot/490/file0" dev="tmpfs" ino=2542 res=1 errno=0
[  525.929656][T14861] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input45
[  526.129506][T14878] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  526.155675][T14878] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  526.313024][T14866] Process accounting resumed
[  526.669001][T14884] netlink: 588 bytes leftover after parsing attributes in process `syz.2.1973'.
[  526.737275][T14884] netlink: 217 bytes leftover after parsing attributes in process `syz.2.1973'.
[  527.101824][T14903] FAULT_INJECTION: forcing a failure.
[  527.101824][T14903] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  527.120074][T14903] CPU: 0 UID: 0 PID: 14903 Comm: syz.1.1976 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  527.120117][T14903] Tainted: [L]=SOFTLOCKUP
[  527.120127][T14903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  527.120144][T14903] Call Trace:
[  527.120153][T14903]  <TASK>
[  527.120172][T14903]  dump_stack_lvl+0x16c/0x1f0
[  527.120206][T14903]  should_fail_ex+0x512/0x640
[  527.120243][T14903]  should_fail_alloc_page+0xe7/0x130
[  527.120282][T14903]  prepare_alloc_pages+0x401/0x670
[  527.120315][T14903]  ? arch_stack_walk+0xa6/0x100
[  527.120345][T14903]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  527.120380][T14903]  ? stack_trace_save+0x8e/0xc0
[  527.120413][T14903]  ? __pfx_stack_trace_save+0x10/0x10
[  527.120447][T14903]  ? stack_depot_save_flags+0x29/0x9b0
[  527.120479][T14903]  ? __lock_acquire+0x436/0x2890
[  527.120504][T14903]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  527.120533][T14903]  ? kasan_save_stack+0x33/0x60
[  527.120560][T14903]  ? kasan_save_track+0x14/0x30
[  527.120587][T14903]  ? kasan_save_free_info+0x3b/0x60
[  527.120610][T14903]  ? __kasan_slab_free+0x5f/0x80
[  527.120639][T14903]  ? kfree+0x2f8/0x6e0
[  527.120661][T14903]  ? read_kcore_iter+0x1665/0x1990
[  527.120693][T14903]  ? proc_reg_read_iter+0x11b/0x310
[  527.120725][T14903]  ? __x64_sys_sendfile64+0x1d8/0x220
[  527.120761][T14903]  ? do_syscall_64+0xcd/0xf80
[  527.120785][T14903]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  527.120818][T14903]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  527.120859][T14903]  ? policy_nodemask+0xea/0x4e0
[  527.120897][T14903]  alloc_pages_mpol+0x1fb/0x550
[  527.120935][T14903]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  527.120981][T14903]  ___kmalloc_large_node+0x10c/0x150
[  527.121024][T14903]  __kmalloc_large_node_noprof+0x1c/0x70
[  527.121066][T14903]  __kmalloc_noprof.cold+0xc/0x62
[  527.121102][T14903]  ? read_kcore_iter+0x1665/0x1990
[  527.121135][T14903]  ? read_kcore_iter+0x1377/0x1990
[  527.121181][T14903]  ? read_kcore_iter+0x1377/0x1990
[  527.121216][T14903]  read_kcore_iter+0x1377/0x1990
[  527.121250][T14903]  ? should_fail_alloc_page+0xee/0x130
[  527.121299][T14903]  ? __pfx_read_kcore_iter+0x10/0x10
[  527.121335][T14903]  ? stack_trace_save+0x8e/0xc0
[  527.121455][T14903]  ? proc_reg_read_iter+0x11b/0x310
[  527.121484][T14903]  proc_reg_read_iter+0x11b/0x310
[  527.121517][T14903]  copy_splice_read+0x618/0xc20
[  527.121561][T14903]  ? __pfx_copy_splice_read+0x10/0x10
[  527.121598][T14903]  ? look_up_lock_class+0x59/0x130
[  527.121631][T14903]  ? lockdep_init_map_type+0x5c/0x270
[  527.121659][T14903]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  527.121695][T14903]  ? __pfx_copy_splice_read+0x10/0x10
[  527.121728][T14903]  do_splice_read+0x285/0x370
[  527.121765][T14903]  splice_direct_to_actor+0x2a1/0xa30
[  527.121803][T14903]  ? __pfx_direct_splice_actor+0x10/0x10
[  527.121845][T14903]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  527.121879][T14903]  ? get_pid_task+0xfc/0x250
[  527.121912][T14903]  do_splice_direct+0x174/0x240
[  527.121948][T14903]  ? __pfx_do_splice_direct+0x10/0x10
[  527.121983][T14903]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  527.122021][T14903]  ? bpf_lsm_file_permission+0x9/0x10
[  527.122050][T14903]  ? security_file_permission+0x71/0x210
[  527.122089][T14903]  ? rw_verify_area+0xcf/0x6c0
[  527.122124][T14903]  do_sendfile+0xb06/0xe50
[  527.122170][T14903]  ? __pfx_do_sendfile+0x10/0x10
[  527.122204][T14903]  ? __fget_files+0x20e/0x3c0
[  527.122247][T14903]  __x64_sys_sendfile64+0x1d8/0x220
[  527.122284][T14903]  ? ksys_write+0x1ac/0x250
[  527.122317][T14903]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  527.122367][T14903]  do_syscall_64+0xcd/0xf80
[  527.122397][T14903]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  527.122423][T14903] RIP: 0033:0x7f527738f7c9
[  527.122444][T14903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  527.122469][T14903] RSP: 002b:00007f5278228038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  527.122494][T14903] RAX: ffffffffffffffda RBX: 00007f52775e5fa0 RCX: 00007f527738f7c9
[  527.122513][T14903] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004
[  527.122528][T14903] RBP: 00007f5278228090 R08: 0000000000000000 R09: 0000000000000000
[  527.122544][T14903] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000001
[  527.122560][T14903] R13: 00007f52775e6038 R14: 00007f52775e5fa0 R15: 00007ffee7b63c58
[  527.122598][T14903]  </TASK>
[  527.442207][T14882] kexec: Could not allocate control_code_buffer
[  528.036295][T14921] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  528.084442][T14921] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  528.251927][T14927] FAULT_INJECTION: forcing a failure.
[  528.251927][T14927] name failslab, interval 1, probability 0, space 0, times 0
[  528.284662][T14927] CPU: 1 UID: 0 PID: 14927 Comm: syz.0.1982 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  528.284690][T14927] Tainted: [L]=SOFTLOCKUP
[  528.284696][T14927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  528.284705][T14927] Call Trace:
[  528.284711][T14927]  <TASK>
[  528.284717][T14927]  dump_stack_lvl+0x16c/0x1f0
[  528.284738][T14927]  should_fail_ex+0x512/0x640
[  528.284760][T14927]  ? kmem_cache_alloc_noprof+0x62/0x770
[  528.284782][T14927]  should_failslab+0xc2/0x120
[  528.284805][T14927]  kmem_cache_alloc_noprof+0x83/0x770
[  528.284822][T14927]  ? vm_area_alloc+0x1f/0x160
[  528.284842][T14927]  ? vm_area_alloc+0x1f/0x160
[  528.284856][T14927]  vm_area_alloc+0x1f/0x160
[  528.284870][T14927]  __mmap_region+0x107a/0x2a00
[  528.284891][T14927]  ? __pfx___mmap_region+0x10/0x10
[  528.284914][T14927]  ? is_bpf_text_address+0x8a/0x1a0
[  528.284941][T14927]  ? unwind_get_return_address+0x59/0xa0
[  528.284968][T14927]  ? __pfx_hugetlb_file_mmap_prepare_success+0x10/0x10
[  528.284994][T14927]  ? stack_trace_save+0x8e/0xc0
[  528.285043][T14927]  ? rcu_is_watching+0x12/0xc0
[  528.285069][T14927]  mmap_region+0x1ab/0x3f0
[  528.285086][T14927]  ? __get_unmapped_area+0x267/0x3f0
[  528.285110][T14927]  do_mmap+0xa3e/0x1210
[  528.285142][T14927]  ? __pfx_do_mmap+0x10/0x10
[  528.285165][T14927]  ? __pfx_down_write_killable+0x10/0x10
[  528.285189][T14927]  vm_mmap_pgoff+0x29e/0x470
[  528.285215][T14927]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  528.285234][T14927]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  528.285252][T14927]  ? hugetlbfs_get_inode+0x31f/0x700
[  528.285281][T14927]  ksys_mmap_pgoff+0x1c8/0x5c0
[  528.285305][T14927]  __x64_sys_mmap+0x125/0x190
[  528.285324][T14927]  do_syscall_64+0xcd/0xf80
[  528.285341][T14927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  528.285357][T14927] RIP: 0033:0x7f199c78f7c9
[  528.285370][T14927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  528.285385][T14927] RSP: 002b:00007f199d6a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  528.285400][T14927] RAX: ffffffffffffffda RBX: 00007f199c9e5fa0 RCX: 00007f199c78f7c9
[  528.285411][T14927] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000000
[  528.285420][T14927] RBP: 00007f199c813f91 R08: 0000000000000401 R09: 0000300000000000
[  528.285429][T14927] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000
[  528.285439][T14927] R13: 00007f199c9e6038 R14: 00007f199c9e5fa0 R15: 00007ffe6b3987c8
[  528.285459][T14927]  </TASK>
[  528.879741][T14935] netlink: 'syz.3.1984': attribute type 1 has an invalid length.
[  528.956274][T14940] netlink: 'syz.0.1985': attribute type 1 has an invalid length.
[  529.727196][T14949] FAULT_INJECTION: forcing a failure.
[  529.727196][T14949] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  529.759935][T14949] CPU: 1 UID: 0 PID: 14949 Comm: syz.2.1987 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  529.759978][T14949] Tainted: [L]=SOFTLOCKUP
[  529.759986][T14949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  529.760001][T14949] Call Trace:
[  529.760010][T14949]  <TASK>
[  529.760021][T14949]  dump_stack_lvl+0x16c/0x1f0
[  529.760053][T14949]  should_fail_ex+0x512/0x640
[  529.760090][T14949]  should_fail_alloc_page+0xe7/0x130
[  529.760130][T14949]  prepare_alloc_pages+0x401/0x670
[  529.760173][T14949]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  529.760203][T14949]  ? __lock_acquire+0x436/0x2890
[  529.760228][T14949]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  529.760265][T14949]  ? is_bpf_text_address+0x94/0x1a0
[  529.760307][T14949]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  529.760343][T14949]  ? __pfx___might_resched+0x10/0x10
[  529.760385][T14949]  ? __mutex_lock+0x27b/0x1ca0
[  529.760416][T14949]  ? anon_pipe_write+0x15d/0x1bd0
[  529.760452][T14949]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  529.760489][T14949]  ? policy_nodemask+0xea/0x4e0
[  529.760527][T14949]  alloc_pages_mpol+0x1fb/0x550
[  529.760563][T14949]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  529.760607][T14949]  alloc_pages_noprof+0x131/0x390
[  529.760643][T14949]  anon_pipe_write+0xeb0/0x1bd0
[  529.760682][T14949]  ? __print_lock_name+0x60/0xe0
[  529.760715][T14949]  ? get_pid_task+0xfc/0x250
[  529.760749][T14949]  ? __pfx_anon_pipe_write+0x10/0x10
[  529.760782][T14949]  ? common_file_perm+0x1b1/0x500
[  529.760821][T14949]  ? bpf_lsm_file_permission+0x9/0x10
[  529.760851][T14949]  ? security_file_permission+0x71/0x210
[  529.760890][T14949]  ? rw_verify_area+0xcf/0x6c0
[  529.760924][T14949]  vfs_write+0x7d3/0x11d0
[  529.760958][T14949]  ? __pfx_anon_pipe_write+0x10/0x10
[  529.760997][T14949]  ? __pfx_vfs_write+0x10/0x10
[  529.761028][T14949]  ? find_held_lock+0x2b/0x80
[  529.761081][T14949]  ksys_write+0x1f8/0x250
[  529.761115][T14949]  ? __pfx_ksys_write+0x10/0x10
[  529.761159][T14949]  do_syscall_64+0xcd/0xf80
[  529.761189][T14949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  529.761215][T14949] RIP: 0033:0x7f39a578f7c9
[  529.761236][T14949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  529.761260][T14949] RSP: 002b:00007f39a65ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  529.761284][T14949] RAX: ffffffffffffffda RBX: 00007f39a59e5fa0 RCX: 00007f39a578f7c9
[  529.761302][T14949] RDX: 000000000200ffd8 RSI: 0000000000000000 RDI: 0000000000000003
[  529.761318][T14949] RBP: 00007f39a65ad090 R08: 0000000000000000 R09: 0000000000000000
[  529.761334][T14949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  529.761350][T14949] R13: 00007f39a59e6038 R14: 00007f39a59e5fa0 R15: 00007ffd5a9186d8
[  529.761388][T14949]  </TASK>
[  530.503577][T14956] netlink: 588 bytes leftover after parsing attributes in process `syz.0.1989'.
[  530.569047][T14956] netlink: 217 bytes leftover after parsing attributes in process `syz.0.1989'.
[  531.632508][T14953] kexec: Could not allocate control_code_buffer
[  531.882508][T14988] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  531.898939][T14988] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  531.925505][T14989] netlink: 'syz.1.1999': attribute type 1 has an invalid length.
[  533.627790][T15022] netlink: 217 bytes leftover after parsing attributes in process `syz.0.2006'.
[  534.015667][T15034] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2009'.
[  534.405501][T15038] netlink: 'syz.2.2010': attribute type 1 has an invalid length.
[  534.707490][T15018] kexec: Could not allocate control_code_buffer
[  536.208526][T15075] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[  536.484120][T15086] netlink: 217 bytes leftover after parsing attributes in process `syz.1.2022'.
[  536.959984][T15083] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  536.998702][ T5921] Bluetooth: hci2: Opcode 0x0c1a failed: -112
[  537.015560][T15102] zswap: compressor  not available
[  537.015759][T15083] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  537.050962][T15083] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  537.517827][T15119] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  537.565404][T15119] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  537.679707][T15082] kexec: Could not allocate control_code_buffer
[  537.688016][T15121] netlink: 'syz.3.2029': attribute type 2 has an invalid length.
[  537.696079][T15121] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2029'.
[  537.857788][T15126] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2032'.
[  538.341257][T15148] FAULT_INJECTION: forcing a failure.
[  538.341257][T15148] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  538.392182][T15148] CPU: 0 UID: 0 PID: 15148 Comm: syz.2.2037 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  538.392224][T15148] Tainted: [L]=SOFTLOCKUP
[  538.392234][T15148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  538.392250][T15148] Call Trace:
[  538.392259][T15148]  <TASK>
[  538.392270][T15148]  dump_stack_lvl+0x16c/0x1f0
[  538.392319][T15148]  should_fail_ex+0x512/0x640
[  538.392359][T15148]  should_fail_alloc_page+0xe7/0x130
[  538.392400][T15148]  prepare_alloc_pages+0x401/0x670
[  538.392450][T15148]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  538.392496][T15148]  ? find_held_lock+0x2b/0x80
[  538.392530][T15148]  ? is_bpf_text_address+0x8a/0x1a0
[  538.392563][T15148]  ? bpf_ksym_find+0x124/0x1c0
[  538.392593][T15148]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  538.392625][T15148]  ? kernel_text_address+0x8d/0x100
[  538.392655][T15148]  ? __kernel_text_address+0xd/0x40
[  538.392682][T15148]  ? unwind_get_return_address+0x59/0xa0
[  538.392715][T15148]  ? arch_stack_walk+0xa6/0x100
[  538.392757][T15148]  ? __lock_acquire+0x436/0x2890
[  538.392781][T15148]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  538.392820][T15148]  ? policy_nodemask+0xea/0x4e0
[  538.392874][T15148]  alloc_pages_mpol+0x1fb/0x550
[  538.392919][T15148]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  538.392966][T15148]  folio_alloc_mpol_noprof+0x36/0x2f0
[  538.392995][T15148]  shmem_alloc_folio+0x135/0x160
[  538.393046][T15148]  shmem_alloc_and_add_folio+0x494/0xc20
[  538.393084][T15148]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  538.393116][T15148]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  538.393154][T15148]  shmem_get_folio_gfp+0x67f/0x1610
[  538.393197][T15148]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  538.393227][T15148]  ? filemap_map_pages+0x12dd/0x1e00
[  538.393268][T15148]  shmem_fault+0x1fe/0xa00
[  538.393300][T15148]  ? __pfx_shmem_fault+0x10/0x10
[  538.393335][T15148]  ? __pfx_filemap_map_pages+0x10/0x10
[  538.393374][T15148]  ? __pfx_filemap_map_pages+0x10/0x10
[  538.393400][T15148]  __do_fault+0x10d/0x490
[  538.393438][T15148]  ? __pfx_filemap_map_pages+0x10/0x10
[  538.393464][T15148]  do_fault+0xae4/0x1ad0
[  538.393497][T15148]  ? __pfx_filemap_map_pages+0x10/0x10
[  538.393539][T15148]  __handle_mm_fault+0x1919/0x2bb0
[  538.393577][T15148]  ? __pfx___handle_mm_fault+0x10/0x10
[  538.393627][T15148]  ? find_vma+0xbf/0x140
[  538.393658][T15148]  ? __pfx_find_vma+0x10/0x10
[  538.393701][T15148]  handle_mm_fault+0x3fe/0xad0
[  538.393735][T15148]  do_user_addr_fault+0x7a6/0x1370
[  538.393778][T15148]  ? rcu_is_watching+0x12/0xc0
[  538.393817][T15148]  exc_page_fault+0x64/0xc0
[  538.393844][T15148]  asm_exc_page_fault+0x26/0x30
[  538.393870][T15148] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  538.393904][T15148] Code: 81 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 4f 81 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  538.393928][T15148] RSP: 0018:ffffc9000eb4fa38 EFLAGS: 00050206
[  538.393950][T15148] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  538.393967][T15148] RDX: 0000000000000000 RSI: 0000000000001000 RDI: ffff888078ecc000
[  538.393984][T15148] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100f1d99ff
[  538.394002][T15148] R10: ffff888078eccfff R11: 0000000000000000 R12: 0000000000001000
[  538.394019][T15148] R13: ffffea0001e3b300 R14: ffffc9000eb4fd90 R15: ffff888078ecc000
[  538.394057][T15148]  _copy_from_iter+0x355/0x16c0
[  538.394094][T15148]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  538.394135][T15148]  ? __pfx__copy_from_iter+0x10/0x10
[  538.394171][T15148]  ? alloc_pages_mpol+0x25a/0x550
[  538.394209][T15148]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  538.394252][T15148]  copy_page_from_iter+0xde/0x180
[  538.394292][T15148]  anon_pipe_write+0xed5/0x1bd0
[  538.394331][T15148]  ? __print_lock_name+0x60/0xe0
[  538.394372][T15148]  ? __pfx_anon_pipe_write+0x10/0x10
[  538.394412][T15148]  ? common_file_perm+0x1b1/0x500
[  538.394453][T15148]  ? bpf_lsm_file_permission+0x9/0x10
[  538.394482][T15148]  ? security_file_permission+0x71/0x210
[  538.394521][T15148]  ? rw_verify_area+0xcf/0x6c0
[  538.394557][T15148]  vfs_write+0x7d3/0x11d0
[  538.394592][T15148]  ? __pfx_anon_pipe_write+0x10/0x10
[  538.394632][T15148]  ? __pfx_vfs_write+0x10/0x10
[  538.394664][T15148]  ? find_held_lock+0x2b/0x80
[  538.394719][T15148]  ksys_write+0x1f8/0x250
[  538.394752][T15148]  ? __pfx_ksys_write+0x10/0x10
[  538.394798][T15148]  do_syscall_64+0xcd/0xf80
[  538.394828][T15148]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  538.394854][T15148] RIP: 0033:0x7f39a578f7c9
[  538.394875][T15148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  538.394899][T15148] RSP: 002b:00007f39a65ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  538.394923][T15148] RAX: ffffffffffffffda RBX: 00007f39a59e5fa0 RCX: 00007f39a578f7c9
[  538.394941][T15148] RDX: 000000000200ffd8 RSI: 0000000000000000 RDI: 0000000000000003
[  538.394957][T15148] RBP: 00007f39a65ad090 R08: 0000000000000000 R09: 0000000000000000
[  538.394974][T15148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  538.394990][T15148] R13: 00007f39a59e6038 R14: 00007f39a59e5fa0 R15: 00007ffd5a9186d8
[  538.395028][T15148]  </TASK>
[  538.920505][ T5149] Bluetooth: hci1: command 0x0c1a tx timeout
[  539.079446][ T5149] Bluetooth: hci0: command 0x0c1a tx timeout
[  539.079457][ T5841] Bluetooth: hci3: command 0x0c1a tx timeout
[  539.230492][T15155] binder: 15153:15155 ioctl c0306201 0 returned -14
[  539.467935][T15156] netlink: 217 bytes leftover after parsing attributes in process `syz.1.2039'.
[  540.121671][T15152] kexec: Could not allocate control_code_buffer
[  540.488646][T15183] sp0: Synchronizing with TNC
[  540.752741][T15198] FAULT_INJECTION: forcing a failure.
[  540.752741][T15198] name failslab, interval 1, probability 0, space 0, times 0
[  540.801132][T15198] CPU: 0 UID: 0 PID: 15198 Comm: syz.3.2048 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  540.801179][T15198] Tainted: [L]=SOFTLOCKUP
[  540.801190][T15198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  540.801207][T15198] Call Trace:
[  540.801217][T15198]  <TASK>
[  540.801228][T15198]  dump_stack_lvl+0x16c/0x1f0
[  540.801263][T15198]  should_fail_ex+0x512/0x640
[  540.801300][T15198]  ? __kmalloc_noprof+0xca/0x910
[  540.801334][T15198]  should_failslab+0xc2/0x120
[  540.801373][T15198]  __kmalloc_noprof+0xeb/0x910
[  540.801402][T15198]  ? __register_sysctl_table+0xe8e/0x1900
[  540.801437][T15198]  ? __register_sysctl_table+0xea2/0x1900
[  540.801478][T15198]  ? __register_sysctl_table+0xea2/0x1900
[  540.801512][T15198]  __register_sysctl_table+0xea2/0x1900
[  540.801556][T15198]  ? __pfx___register_sysctl_table+0x10/0x10
[  540.801594][T15198]  ? kfree+0x211/0x6e0
[  540.801624][T15198]  ? __asan_memcpy+0x3c/0x60
[  540.801659][T15198]  setup_ipc_sysctls+0x1aa/0x300
[  540.801696][T15198]  copy_ipcs+0x570/0x7d0
[  540.801734][T15198]  create_new_namespaces+0x20a/0xab0
[  540.801770][T15198]  ? security_capable+0x7e/0x260
[  540.801807][T15198]  copy_namespaces+0x468/0x570
[  540.801845][T15198]  copy_process+0x2a70/0x7430
[  540.801900][T15198]  ? __pfx_copy_process+0x10/0x10
[  540.801957][T15198]  ? _copy_from_user+0x59/0xd0
[  540.802000][T15198]  kernel_clone+0xfc/0x910
[  540.802043][T15198]  ? __pfx_kernel_clone+0x10/0x10
[  540.802081][T15198]  ? futex_private_hash_put+0x160/0x1b0
[  540.802118][T15198]  ? __pfx_futex_wait+0x10/0x10
[  540.802162][T15198]  __do_sys_clone3+0x212/0x290
[  540.802199][T15198]  ? __pfx___do_sys_clone3+0x10/0x10
[  540.802249][T15198]  ? find_held_lock+0x2b/0x80
[  540.802307][T15198]  do_syscall_64+0xcd/0xf80
[  540.802338][T15198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  540.802367][T15198] RIP: 0033:0x7f3ca578f7c9
[  540.802391][T15198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  540.802417][T15198] RSP: 002b:00007f3ca66acf08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  540.802444][T15198] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f3ca578f7c9
[  540.802463][T15198] RDX: 00007f3ca66acf20 RSI: 0000000000000058 RDI: 00007f3ca66acf20
[  540.802482][T15198] RBP: 00007f3ca5813f91 R08: 0000000000000000 R09: 0000000000000058
[  540.802500][T15198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  540.802517][T15198] R13: 00007f3ca59e6038 R14: 00007f3ca59e5fa0 R15: 00007fff3e043c78
[  540.802555][T15198]  </TASK>
[  540.871476][T15198] sysctl could not get directory: /kernel -12
[  541.661183][T15210] FAULT_INJECTION: forcing a failure.
[  541.661183][T15210] name failslab, interval 1, probability 0, space 0, times 0
[  541.674192][T15210] CPU: 0 UID: 0 PID: 15210 Comm: syz.2.2052 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  541.674235][T15210] Tainted: [L]=SOFTLOCKUP
[  541.674247][T15210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  541.674264][T15210] Call Trace:
[  541.674275][T15210]  <TASK>
[  541.674287][T15210]  dump_stack_lvl+0x16c/0x1f0
[  541.674323][T15210]  should_fail_ex+0x512/0x640
[  541.674361][T15210]  ? kmem_cache_alloc_noprof+0x62/0x770
[  541.674398][T15210]  should_failslab+0xc2/0x120
[  541.674438][T15210]  kmem_cache_alloc_noprof+0x83/0x770
[  541.674469][T15210]  ? vm_area_alloc+0x1f/0x160
[  541.674504][T15210]  ? vm_area_alloc+0x1f/0x160
[  541.674528][T15210]  vm_area_alloc+0x1f/0x160
[  541.674555][T15210]  __mmap_region+0x107a/0x2a00
[  541.674589][T15210]  ? __lock_acquire+0x436/0x2890
[  541.674614][T15210]  ? __pfx___mmap_region+0x10/0x10
[  541.674654][T15210]  ? lock_acquire+0x179/0x330
[  541.674693][T15210]  ? finish_task_switch.isra.0+0x207/0xbd0
[  541.674788][T15210]  ? rcu_is_watching+0x12/0xc0
[  541.674830][T15210]  mmap_region+0x1ab/0x3f0
[  541.674859][T15210]  ? __get_unmapped_area+0x267/0x3f0
[  541.674901][T15210]  do_mmap+0xa3e/0x1210
[  541.674941][T15210]  ? __pfx_do_mmap+0x10/0x10
[  541.674975][T15210]  ? __pfx_down_write_killable+0x10/0x10
[  541.675013][T15210]  vm_mmap_pgoff+0x29e/0x470
[  541.675054][T15210]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  541.675099][T15210]  ? __x64_sys_futex+0x1e0/0x4c0
[  541.675141][T15210]  ? __x64_sys_futex+0x1e9/0x4c0
[  541.675178][T15210]  ksys_mmap_pgoff+0x7d/0x5c0
[  541.675217][T15210]  ? xfd_validate_state+0x61/0x180
[  541.675249][T15210]  __x64_sys_mmap+0x125/0x190
[  541.675281][T15210]  do_syscall_64+0xcd/0xf80
[  541.675314][T15210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  541.675342][T15210] RIP: 0033:0x7f39a578f7c9
[  541.675365][T15210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  541.675391][T15210] RSP: 002b:00007f39a65ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  541.675418][T15210] RAX: ffffffffffffffda RBX: 00007f39a59e5fa0 RCX: 00007f39a578f7c9
[  541.675438][T15210] RDX: 0000000000000007 RSI: 0000000002020009 RDI: 0000000000000000
[  541.675455][T15210] RBP: 00007f39a5813f91 R08: fffffffffffffffa R09: 0000000000008000
[  541.675474][T15210] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  541.675492][T15210] R13: 00007f39a59e6038 R14: 00007f39a59e5fa0 R15: 00007ffd5a9186d8
[  541.675529][T15210]  </TASK>
[  543.851451][T15241] netlink: 217 bytes leftover after parsing attributes in process `syz.0.2055'.
[  544.428369][T15250] sysfs_service_op_show: Client not running :-5:
[  544.629224][T15238] kexec: Could not allocate control_code_buffer
[  545.031740][T15260] FAULT_INJECTION: forcing a failure.
[  545.031740][T15260] name failslab, interval 1, probability 0, space 0, times 0
[  545.076520][T15260] CPU: 1 UID: 0 PID: 15260 Comm: syz.3.2061 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  545.076563][T15260] Tainted: [L]=SOFTLOCKUP
[  545.076573][T15260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  545.076591][T15260] Call Trace:
[  545.076601][T15260]  <TASK>
[  545.076612][T15260]  dump_stack_lvl+0x16c/0x1f0
[  545.076647][T15260]  should_fail_ex+0x512/0x640
[  545.076692][T15260]  ? __kmalloc_cache_noprof+0x5f/0x800
[  545.076729][T15260]  should_failslab+0xc2/0x120
[  545.076767][T15260]  __kmalloc_cache_noprof+0x80/0x800
[  545.076797][T15260]  ? percpu_ref_init+0xec/0x410
[  545.076828][T15260]  ? percpu_ref_init+0xec/0x410
[  545.076854][T15260]  ? __pfx_free_ioctx_reqs+0x10/0x10
[  545.076891][T15260]  percpu_ref_init+0xec/0x410
[  545.076919][T15260]  ? __init_waitqueue_head+0xca/0x150
[  545.076955][T15260]  ioctx_alloc+0x3e0/0x2230
[  545.076993][T15260]  ? find_held_lock+0x2b/0x80
[  545.077027][T15260]  ? __pfx_ioctx_alloc+0x10/0x10
[  545.077049][T15260]  ? __might_fault+0x13b/0x190
[  545.077089][T15260]  __x64_sys_io_setup+0xc9/0x230
[  545.077119][T15260]  do_syscall_64+0xcd/0xf80
[  545.077151][T15260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  545.077179][T15260] RIP: 0033:0x7f3ca578f7c9
[  545.077203][T15260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  545.077230][T15260] RSP: 002b:00007f3ca66ad038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  545.077255][T15260] RAX: ffffffffffffffda RBX: 00007f3ca59e5fa0 RCX: 00007f3ca578f7c9
[  545.077275][T15260] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 000000000000000e
[  545.077298][T15260] RBP: 00007f3ca5813f91 R08: 0000000000000000 R09: 0000000000000000
[  545.077316][T15260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  545.077333][T15260] R13: 00007f3ca59e6038 R14: 00007f3ca59e5fa0 R15: 00007fff3e043c78
[  545.077375][T15260]  </TASK>
[  545.778758][T15273] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  545.867637][T15273] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  546.315766][   T30] audit: type=1800 audit(2147483662.422:24): pid=15279 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2065" name="lu_gp_id" dev="configfs" ino=58937 res=0 errno=0
[  546.402199][   T30] audit: type=1800 audit(2147483662.512:25): pid=15279 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2065" name="version" dev="configfs" ino=58942 res=0 errno=0
[  548.279106][T15312] Line length is too long: Should be less than 4094
[  548.518792][T15318] netlink: 'syz.2.2077': attribute type 1 has an invalid length.
[  548.916941][T15328] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  548.945120][T15328] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  549.102032][   T30] audit: type=1804 audit(2147483665.225:26): pid=15332 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2080" name="/newroot/544/file0" dev="tmpfs" ino=2842 res=1 errno=0
[  550.232586][T15355] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2086'.
[  550.708386][T15355] syz.2.2086 (15355): /proc/15354/oom_adj is deprecated, please use /proc/15354/oom_score_adj instead.
[  550.933950][T15365] netlink: 'syz.1.2087': attribute type 1 has an invalid length.
[  553.557034][T15412] netlink: 'syz.3.2098': attribute type 1 has an invalid length.
[  553.674595][T15422] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  553.682136][T15422] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  554.947635][T15452] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2107'.
[  555.467315][ T5149] Bluetooth: hci2: Malformed LE Event: 0x1b
[  555.521576][T15460] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.2.2110: bg 4: bad block bitmap checksum
[  555.600099][T15460] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 74
[  555.624978][T15460] EXT4-fs (sda1): This should not happen!! Data will be lost
[  555.624978][T15460] 
[  555.762433][T15465] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2112'.
[  556.348338][T15463] Process accounting paused
[  556.640797][T15484] netlink: 'syz.1.2115': attribute type 1 has an invalid length.
[  558.944922][T15540] netlink: 'syz.2.2127': attribute type 1 has an invalid length.
[  559.395782][T15548] FAULT_INJECTION: forcing a failure.
[  559.395782][T15548] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  559.426647][T15548] CPU: 0 UID: 0 PID: 15548 Comm: syz.3.2129 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  559.426687][T15548] Tainted: [L]=SOFTLOCKUP
[  559.426697][T15548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  559.426711][T15548] Call Trace:
[  559.426720][T15548]  <TASK>
[  559.426731][T15548]  dump_stack_lvl+0x16c/0x1f0
[  559.426764][T15548]  should_fail_ex+0x512/0x640
[  559.426804][T15548]  _copy_from_user+0x2e/0xd0
[  559.426838][T15548]  move_addr_to_kernel+0x65/0x170
[  559.426871][T15548]  __copy_msghdr+0x386/0x470
[  559.426905][T15548]  copy_msghdr_from_user+0xc1/0x160
[  559.426940][T15548]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  559.426980][T15548]  ? __pfx__kstrtoull+0x10/0x10
[  559.427011][T15548]  ___sys_sendmsg+0xfe/0x1d0
[  559.427047][T15548]  ? __pfx____sys_sendmsg+0x10/0x10
[  559.427096][T15548]  ? find_held_lock+0x2b/0x80
[  559.427145][T15548]  __sys_sendmmsg+0x200/0x420
[  559.427184][T15548]  ? __pfx___sys_sendmmsg+0x10/0x10
[  559.427233][T15548]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  559.427271][T15548]  ? fput+0x70/0xf0
[  559.427296][T15548]  ? ksys_write+0x1ac/0x250
[  559.427329][T15548]  ? __pfx_ksys_write+0x10/0x10
[  559.427367][T15548]  __x64_sys_sendmmsg+0x9c/0x100
[  559.427402][T15548]  ? lockdep_hardirqs_on+0x7c/0x110
[  559.427428][T15548]  do_syscall_64+0xcd/0xf80
[  559.427457][T15548]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  559.427484][T15548] RIP: 0033:0x7f3ca578f7c9
[  559.427505][T15548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  559.427530][T15548] RSP: 002b:00007f3ca66ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  559.427554][T15548] RAX: ffffffffffffffda RBX: 00007f3ca59e5fa0 RCX: 00007f3ca578f7c9
[  559.427573][T15548] RDX: 0000000000000005 RSI: 0000200000000100 RDI: 0000000000000003
[  559.427590][T15548] RBP: 00007f3ca66ad090 R08: 0000000000000000 R09: 0000000000000000
[  559.427606][T15548] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001
[  559.427630][T15548] R13: 00007f3ca59e6038 R14: 00007f3ca59e5fa0 R15: 00007fff3e043c78
[  559.427666][T15548]  </TASK>
[  561.307411][   T30] audit: type=1800 audit(2147483647.994:27): pid=15585 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=60828 res=0 errno=0
[  561.337202][T15589] FAULT_INJECTION: forcing a failure.
[  561.337202][T15589] name fail_futex, interval 1, probability 0, space 0, times 0
[  561.406256][T15589] CPU: 1 UID: 0 PID: 15589 Comm: syz.0.2138 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  561.406302][T15589] Tainted: [L]=SOFTLOCKUP
[  561.406313][T15589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  561.406330][T15589] Call Trace:
[  561.406339][T15589]  <TASK>
[  561.406351][T15589]  dump_stack_lvl+0x16c/0x1f0
[  561.406383][T15589]  should_fail_ex+0x512/0x640
[  561.406425][T15589]  get_futex_key+0x1d0/0x15f0
[  561.406459][T15589]  ? __pfx_get_futex_key+0x10/0x10
[  561.406511][T15589]  futex_wake+0xea/0x530
[  561.406546][T15589]  ? kasan_quarantine_put+0x10a/0x240
[  561.406583][T15589]  ? __pfx_futex_wake+0x10/0x10
[  561.406624][T15589]  ? putname+0xf5/0x1a0
[  561.406659][T15589]  do_futex+0x1e3/0x350
[  561.406690][T15589]  ? __pfx_do_futex+0x10/0x10
[  561.406725][T15589]  ? kfree+0x2f8/0x6e0
[  561.406755][T15589]  __x64_sys_futex+0x1e0/0x4c0
[  561.406789][T15589]  ? __x64_sys_openat+0x174/0x210
[  561.406820][T15589]  ? __pfx___x64_sys_futex+0x10/0x10
[  561.406865][T15589]  do_syscall_64+0xcd/0xf80
[  561.406897][T15589]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  561.406926][T15589] RIP: 0033:0x7f199c78f7c9
[  561.406948][T15589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  561.406975][T15589] RSP: 002b:00007f199d6a20e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  561.407001][T15589] RAX: ffffffffffffffda RBX: 00007f199c9e5fa8 RCX: 00007f199c78f7c9
[  561.407020][T15589] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f199c9e5fac
[  561.407038][T15589] RBP: 00007f199c9e5fa0 R08: 00007f199d6a3000 R09: 0000000000000000
[  561.407056][T15589] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000000
[  561.407073][T15589] R13: 00007f199c9e6038 R14: 00007ffe6b3986e0 R15: 00007ffe6b3987c8
[  561.407108][T15589]  </TASK>
[  562.173669][T15601] netlink: 'syz.2.2140': attribute type 1 has an invalid length.
[  562.251472][ T5149] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  562.418609][T15610] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2143'.
[  562.447620][T15610] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2143'.
[  562.481050][T15610] netlink: 170 bytes leftover after parsing attributes in process `syz.0.2143'.
[  562.635225][T15604] binder: 15602:15604 ioctl c00c6211 0 returned -14
[  563.015450][T15622] netlink: 217 bytes leftover after parsing attributes in process `syz.1.2145'.
[  563.616727][   T30] audit: type=1804 audit(2147483650.305:28): pid=15640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2149" name="/newroot/540/file0" dev="tmpfs" ino=2801 res=1 errno=0
[  563.619276][T15631] mkiss: ax0: crc mode is auto.
[  564.320024][ T5149] Bluetooth: hci2: command 0x0c1a tx timeout
[  564.425891][T15619] kexec: Could not allocate control_code_buffer
[  565.051438][T15671] netlink: 'syz.3.2156': attribute type 1 has an invalid length.
[  565.917132][T15685] Invalid ELF header magic: != ELF
[  566.078351][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  566.085335][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  566.360092][T15701] FAULT_INJECTION: forcing a failure.
[  566.360092][T15701] name failslab, interval 1, probability 0, space 0, times 0
[  566.390549][ T5149] Bluetooth: hci2: command 0x0c1a tx timeout
[  566.444220][T15701] CPU: 0 UID: 0 PID: 15701 Comm: syz.2.2163 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  566.444263][T15701] Tainted: [L]=SOFTLOCKUP
[  566.444273][T15701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  566.444289][T15701] Call Trace:
[  566.444298][T15701]  <TASK>
[  566.444309][T15701]  dump_stack_lvl+0x16c/0x1f0
[  566.444343][T15701]  should_fail_ex+0x512/0x640
[  566.444384][T15701]  ? __kmalloc_cache_noprof+0x5f/0x800
[  566.444417][T15701]  should_failslab+0xc2/0x120
[  566.444453][T15701]  __kmalloc_cache_noprof+0x80/0x800
[  566.444480][T15701]  ? find_held_lock+0x2b/0x80
[  566.444512][T15701]  ? sctp_association_new+0xbb/0x29d0
[  566.444549][T15701]  ? sctp_association_new+0xbb/0x29d0
[  566.444580][T15701]  sctp_association_new+0xbb/0x29d0
[  566.444614][T15701]  ? sctp_v4_scope+0x183/0x1a0
[  566.444654][T15701]  sctp_connect_new_asoc+0x1a8/0x770
[  566.444690][T15701]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  566.444725][T15701]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  566.444759][T15701]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  566.444799][T15701]  sctp_sendmsg+0x157c/0x1e20
[  566.444843][T15701]  ? __pfx_sctp_sendmsg+0x10/0x10
[  566.444871][T15701]  ? __pfx___might_resched+0x10/0x10
[  566.444904][T15701]  ? __lock_acquire+0x436/0x2890
[  566.444930][T15701]  ? aa_sk_perm+0x2f2/0xae0
[  566.444970][T15701]  ? __pfx_aa_sk_perm+0x10/0x10
[  566.445013][T15701]  ? __pfx_sctp_sendmsg+0x10/0x10
[  566.445048][T15701]  inet_sendmsg+0x11c/0x140
[  566.445099][T15701]  ____sys_sendmsg+0x973/0xc30
[  566.445132][T15701]  ? __pfx_____sys_sendmsg+0x10/0x10
[  566.445174][T15701]  ? __pfx__kstrtoull+0x10/0x10
[  566.445206][T15701]  ___sys_sendmsg+0x134/0x1d0
[  566.445250][T15701]  ? __pfx____sys_sendmsg+0x10/0x10
[  566.445303][T15701]  ? find_held_lock+0x2b/0x80
[  566.445363][T15701]  __sys_sendmmsg+0x200/0x420
[  566.445405][T15701]  ? __pfx___sys_sendmmsg+0x10/0x10
[  566.445454][T15701]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  566.445500][T15701]  ? fput+0x70/0xf0
[  566.445524][T15701]  ? ksys_write+0x1ac/0x250
[  566.445557][T15701]  ? __pfx_ksys_write+0x10/0x10
[  566.445597][T15701]  __x64_sys_sendmmsg+0x9c/0x100
[  566.445635][T15701]  ? lockdep_hardirqs_on+0x7c/0x110
[  566.445661][T15701]  do_syscall_64+0xcd/0xf80
[  566.445690][T15701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  566.445716][T15701] RIP: 0033:0x7f39a578f7c9
[  566.445738][T15701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  566.445761][T15701] RSP: 002b:00007f39a65ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  566.445786][T15701] RAX: ffffffffffffffda RBX: 00007f39a59e5fa0 RCX: 00007f39a578f7c9
[  566.445802][T15701] RDX: 0000000000000005 RSI: 0000200000000100 RDI: 0000000000000003
[  566.445818][T15701] RBP: 00007f39a65ad090 R08: 0000000000000000 R09: 0000000000000000
[  566.445835][T15701] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001
[  566.445851][T15701] R13: 00007f39a59e6038 R14: 00007f39a59e5fa0 R15: 00007ffd5a9186d8
[  566.445888][T15701]  </TASK>
[  566.760864][T15703] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  566.774522][T15703] EXT4-fs (sda1): This should not happen!! Data will be lost
[  566.774522][T15703] 
[  567.322423][T15710] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  567.385741][T15710] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  567.577207][T15720] EXT4-fs error (device sda1): ext4_discard_preallocations:5703: comm syz.3.2167: Error -117 reading block bitmap for 4
[  568.886927][T15744] FAULT_INJECTION: forcing a failure.
[  568.886927][T15744] name failslab, interval 1, probability 0, space 0, times 0
[  568.938334][T15744] CPU: 0 UID: 0 PID: 15744 Comm: syz.2.2172 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  568.938376][T15744] Tainted: [L]=SOFTLOCKUP
[  568.938382][T15744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  568.938392][T15744] Call Trace:
[  568.938398][T15744]  <TASK>
[  568.938404][T15744]  dump_stack_lvl+0x16c/0x1f0
[  568.938424][T15744]  should_fail_ex+0x512/0x640
[  568.938445][T15744]  ? __kmalloc_noprof+0xca/0x910
[  568.938463][T15744]  should_failslab+0xc2/0x120
[  568.938485][T15744]  __kmalloc_noprof+0xeb/0x910
[  568.938501][T15744]  ? iter_file_splice_write+0x1cc/0x12b0
[  568.938527][T15744]  ? iter_file_splice_write+0x1cc/0x12b0
[  568.938547][T15744]  iter_file_splice_write+0x1cc/0x12b0
[  568.938571][T15744]  ? kfree+0x2f8/0x6e0
[  568.938586][T15744]  ? copy_splice_read+0x897/0xc20
[  568.938609][T15744]  ? copy_splice_read+0x897/0xc20
[  568.938628][T15744]  ? copy_splice_read+0x89c/0xc20
[  568.938648][T15744]  ? __pfx_iter_file_splice_write+0x10/0x10
[  568.938673][T15744]  ? __pfx_copy_splice_read+0x10/0x10
[  568.938695][T15744]  ? look_up_lock_class+0x59/0x130
[  568.938716][T15744]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  568.938737][T15744]  ? __pfx_iter_file_splice_write+0x10/0x10
[  568.938759][T15744]  direct_splice_actor+0x192/0x6c0
[  568.938783][T15744]  splice_direct_to_actor+0x345/0xa30
[  568.938805][T15744]  ? __pfx_direct_splice_actor+0x10/0x10
[  568.938830][T15744]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  568.938857][T15744]  do_splice_direct+0x174/0x240
[  568.938878][T15744]  ? __pfx_do_splice_direct+0x10/0x10
[  568.938899][T15744]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  568.938921][T15744]  ? bpf_lsm_file_permission+0x9/0x10
[  568.938938][T15744]  ? security_file_permission+0x71/0x210
[  568.938962][T15744]  ? rw_verify_area+0xcf/0x6c0
[  568.938984][T15744]  do_sendfile+0xb06/0xe50
[  568.939007][T15744]  ? __pfx_do_sendfile+0x10/0x10
[  568.939029][T15744]  ? __x64_sys_futex+0x1e0/0x4c0
[  568.939046][T15744]  ? __x64_sys_futex+0x1e9/0x4c0
[  568.939064][T15744]  __x64_sys_sendfile64+0x1d8/0x220
[  568.939088][T15744]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  568.939118][T15744]  do_syscall_64+0xcd/0xf80
[  568.939134][T15744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.939150][T15744] RIP: 0033:0x7f39a578f7c9
[  568.939163][T15744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  568.939178][T15744] RSP: 002b:00007f39a65ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  568.939193][T15744] RAX: ffffffffffffffda RBX: 00007f39a59e5fa0 RCX: 00007f39a578f7c9
[  568.939204][T15744] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005
[  568.939213][T15744] RBP: 00007f39a5813f91 R08: 0000000000000000 R09: 0000000000000000
[  568.939222][T15744] R10: 7fffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  568.939237][T15744] R13: 00007f39a59e6038 R14: 00007f39a59e5fa0 R15: 00007ffd5a9186d8
[  568.939256][T15744]  </TASK>
[  570.458460][T15734] kexec: Could not allocate control_code_buffer
[  571.463748][   T30] audit: type=1804 audit(2147483658.202:29): pid=15787 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2183" name="/newroot/553/file0" dev="tmpfs" ino=2880 res=1 errno=0
[  571.723907][T15791] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2186'.
[  572.615591][T15821] FAULT_INJECTION: forcing a failure.
[  572.615591][T15821] name failslab, interval 1, probability 0, space 0, times 0
[  572.652622][T15821] CPU: 0 UID: 0 PID: 15821 Comm: syz.0.2194 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  572.652666][T15821] Tainted: [L]=SOFTLOCKUP
[  572.652676][T15821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  572.652693][T15821] Call Trace:
[  572.652704][T15821]  <TASK>
[  572.652715][T15821]  dump_stack_lvl+0x16c/0x1f0
[  572.652748][T15821]  should_fail_ex+0x512/0x640
[  572.652781][T15821]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  572.652818][T15821]  should_failslab+0xc2/0x120
[  572.652854][T15821]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  572.652887][T15821]  ? __d_alloc+0x35/0xa80
[  572.652938][T15821]  ? __d_alloc+0x35/0xa80
[  572.652972][T15821]  __d_alloc+0x35/0xa80
[  572.653010][T15821]  d_alloc_pseudo+0x1c/0xc0
[  572.653039][T15821]  alloc_file_pseudo+0xcf/0x230
[  572.653069][T15821]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  572.653101][T15821]  ? do_raw_spin_unlock+0x172/0x230
[  572.653135][T15821]  __anon_inode_getfile+0xe8/0x280
[  572.653168][T15821]  anon_inode_getfile_fmode+0x37/0xa0
[  572.653198][T15821]  __do_sys_fanotify_init+0xa51/0xeb0
[  572.653238][T15821]  do_syscall_64+0xcd/0xf80
[  572.653266][T15821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.653292][T15821] RIP: 0033:0x7f199c78f7c9
[  572.653313][T15821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.653338][T15821] RSP: 002b:00007f199d6a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c
[  572.653366][T15821] RAX: ffffffffffffffda RBX: 00007f199c9e5fa0 RCX: 00007f199c78f7c9
[  572.653385][T15821] RDX: 0000000000000000 RSI: 0002000000000002 RDI: 00000000000006a1
[  572.653401][T15821] RBP: 00007f199c813f91 R08: 0000000000000000 R09: 0000000000000000
[  572.653418][T15821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  572.653434][T15821] R13: 00007f199c9e6038 R14: 00007f199c9e5fa0 R15: 00007ffe6b3987c8
[  572.653473][T15821]  </TASK>
[  573.930985][ T5149] Bluetooth: hci3: ACL packet for unknown connection handle 0
[  574.582658][T15853] netlink: 'syz.3.2200': attribute type 1 has an invalid length.
[  574.666301][T15855] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2201'.
[  574.840208][T15861] FAULT_INJECTION: forcing a failure.
[  574.840208][T15861] name failslab, interval 1, probability 0, space 0, times 0
[  574.840288][T15861] CPU: 0 UID: 0 PID: 15861 Comm: syz.1.2203 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  574.840326][T15861] Tainted: [L]=SOFTLOCKUP
[  574.840337][T15861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  574.840354][T15861] Call Trace:
[  574.840363][T15861]  <TASK>
[  574.840373][T15861]  dump_stack_lvl+0x16c/0x1f0
[  574.840407][T15861]  should_fail_ex+0x512/0x640
[  574.840445][T15861]  ? fs_reclaim_acquire+0xae/0x150
[  574.840484][T15861]  should_failslab+0xc2/0x120
[  574.840518][T15861]  __kmalloc_noprof+0xeb/0x910
[  574.840552][T15861]  ? mempool_init_node+0x2f7/0x6e0
[  574.840589][T15861]  ? __pfx_mempool_kmalloc+0x10/0x10
[  574.840616][T15861]  ? mempool_init_node+0x2f7/0x6e0
[  574.840646][T15861]  ? __pfx_mempool_kmalloc+0x10/0x10
[  574.840676][T15861]  mempool_init_node+0x2f7/0x6e0
[  574.840717][T15861]  ? __pfx_mempool_kmalloc+0x10/0x10
[  574.840749][T15861]  ? __pfx_mempool_kfree+0x10/0x10
[  574.840782][T15861]  mempool_init_noprof+0x3a/0x50
[  574.840821][T15861]  do_fanotify_mark+0x2ebd/0x3a30
[  574.840873][T15861]  ? __pfx_do_fanotify_mark+0x10/0x10
[  574.840912][T15861]  ? __x64_sys_futex+0x1e9/0x4c0
[  574.840950][T15861]  ? xfd_validate_state+0x61/0x180
[  574.840976][T15861]  ? __pfx_ksys_write+0x10/0x10
[  574.841017][T15861]  __x64_sys_fanotify_mark+0xbd/0x160
[  574.841053][T15861]  ? do_syscall_64+0x91/0xf80
[  574.841080][T15861]  ? lockdep_hardirqs_on+0x7c/0x110
[  574.841108][T15861]  do_syscall_64+0xcd/0xf80
[  574.841138][T15861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  574.841166][T15861] RIP: 0033:0x7f527738f7c9
[  574.841189][T15861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  574.841216][T15861] RSP: 002b:00007f5278228038 EFLAGS: 00000246 ORIG_RAX: 000000000000012d
[  574.841243][T15861] RAX: ffffffffffffffda RBX: 00007f52775e5fa0 RCX: 00007f527738f7c9
[  574.841263][T15861] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000
[  574.841281][T15861] RBP: 00007f5277413f91 R08: 0000000000000000 R09: 0000000000000000
[  574.841298][T15861] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  574.841314][T15861] R13: 00007f52775e6038 R14: 00007f52775e5fa0 R15: 00007ffee7b63c58
[  574.841353][T15861]  </TASK>
[  575.073406][T15868] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  575.073454][T15868] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  575.559354][T15880] ima: policy update failed
[  575.572231][   T30] audit: type=1802 audit(2147483662.321:30): pid=15880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2206" res=0 errno=0
[  576.613644][T15896] nvme_fabrics: unknown parameter or missing value 'û@è' in ctrl creation request
[  577.558265][T15902] binder: 15901:15902 ioctl c0306201 0 returned -14
[  578.274761][T15907] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2211'.
[  579.843237][T15929] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  579.867292][T15929] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  580.051898][T15882] blktrace: Concurrent blktraces are not allowed on ram7
[  580.620143][   T30] audit: type=1800 audit(2147483667.395:31): pid=15942 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2219" name="lu_gp_id" dev="configfs" ino=62705 res=0 errno=0
[  580.633714][T15942] kstrtoul() returned -22 for lu_gp_id
[  580.732551][T15944] ecryptfs_miscdev_write: memdup_user returned error [-14]
[  580.776347][T15944] FAULT_INJECTION: forcing a failure.
[  580.776347][T15944] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  580.797511][T15944] CPU: 1 UID: 0 PID: 15944 Comm: syz.2.2220 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  580.797556][T15944] Tainted: [L]=SOFTLOCKUP
[  580.797566][T15944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  580.797583][T15944] Call Trace:
[  580.797593][T15944]  <TASK>
[  580.797604][T15944]  dump_stack_lvl+0x16c/0x1f0
[  580.797639][T15944]  should_fail_ex+0x512/0x640
[  580.797680][T15944]  should_fail_alloc_page+0xe7/0x130
[  580.797723][T15944]  prepare_alloc_pages+0x401/0x670
[  580.797766][T15944]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  580.797799][T15944]  ? stack_trace_save+0x8e/0xc0
[  580.797842][T15944]  ? __pfx_stack_trace_save+0x10/0x10
[  580.797875][T15944]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.797900][T15944]  ? stack_depot_save_flags+0x29/0x9b0
[  580.797945][T15944]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  580.797974][T15944]  ? __kasan_kmalloc+0xaa/0xb0
[  580.798002][T15944]  ? copy_splice_read+0x1a8/0xc20
[  580.798036][T15944]  ? splice_direct_to_actor+0x2a1/0xa30
[  580.798069][T15944]  ? do_splice_direct+0x174/0x240
[  580.798098][T15944]  ? do_sendfile+0xb06/0xe50
[  580.798126][T15944]  ? __x64_sys_sendfile64+0x1d8/0x220
[  580.798161][T15944]  ? do_syscall_64+0xcd/0xf80
[  580.798187][T15944]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.798243][T15944]  alloc_pages_bulk_noprof+0x77a/0x1410
[  580.798288][T15944]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  580.798331][T15944]  ? copy_splice_read+0x1a8/0xc20
[  580.798376][T15944]  copy_splice_read+0x1e1/0xc20
[  580.798431][T15944]  ? __pfx_copy_splice_read+0x10/0x10
[  580.798471][T15944]  ? look_up_lock_class+0x59/0x130
[  580.798507][T15944]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  580.798548][T15944]  ? __pfx_copy_splice_read+0x10/0x10
[  580.798582][T15944]  do_splice_read+0x285/0x370
[  580.798617][T15944]  splice_direct_to_actor+0x2a1/0xa30
[  580.798655][T15944]  ? __pfx_direct_splice_actor+0x10/0x10
[  580.798700][T15944]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  580.798745][T15944]  do_splice_direct+0x174/0x240
[  580.798779][T15944]  ? __pfx_do_splice_direct+0x10/0x10
[  580.798816][T15944]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  580.798853][T15944]  ? bpf_lsm_file_permission+0x9/0x10
[  580.798882][T15944]  ? security_file_permission+0x71/0x210
[  580.798923][T15944]  ? rw_verify_area+0xcf/0x6c0
[  580.798962][T15944]  do_sendfile+0xb06/0xe50
[  580.799004][T15944]  ? __pfx_do_sendfile+0x10/0x10
[  580.799045][T15944]  ? __x64_sys_futex+0x1e0/0x4c0
[  580.799076][T15944]  ? __x64_sys_futex+0x1e9/0x4c0
[  580.799111][T15944]  __x64_sys_sendfile64+0x1d8/0x220
[  580.799149][T15944]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  580.799202][T15944]  do_syscall_64+0xcd/0xf80
[  580.799232][T15944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.799262][T15944] RIP: 0033:0x7f39a578f7c9
[  580.799286][T15944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  580.799313][T15944] RSP: 002b:00007f39a65ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  580.799339][T15944] RAX: ffffffffffffffda RBX: 00007f39a59e5fa0 RCX: 00007f39a578f7c9
[  580.799359][T15944] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[  580.799376][T15944] RBP: 00007f39a5813f91 R08: 0000000000000000 R09: 0000000000000000
[  580.799392][T15944] R10: 7fffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  580.799419][T15944] R13: 00007f39a59e6038 R14: 00007f39a59e5fa0 R15: 00007ffd5a9186d8
[  580.799458][T15944]  </TASK>
[  581.664408][T15963] binder: 15962:15963 ioctl 40046210 0 returned -14
[  581.772232][T15968] netlink: 'syz.2.2226': attribute type 1 has an invalid length.
[  581.863387][T15953] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  581.914899][T15972] FAULT_INJECTION: forcing a failure.
[  581.914899][T15972] name failslab, interval 1, probability 0, space 0, times 0
[  581.932369][T15953] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  581.943964][T15953] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  581.952935][T15953] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  582.011891][T15972] CPU: 1 UID: 0 PID: 15972 Comm: syz.1.2224 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  582.011917][T15972] Tainted: [L]=SOFTLOCKUP
[  582.011923][T15972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  582.011932][T15972] Call Trace:
[  582.011937][T15972]  <TASK>
[  582.011944][T15972]  dump_stack_lvl+0x16c/0x1f0
[  582.011964][T15972]  should_fail_ex+0x512/0x640
[  582.011985][T15972]  ? kmem_cache_alloc_noprof+0x62/0x770
[  582.012005][T15972]  should_failslab+0xc2/0x120
[  582.012035][T15972]  kmem_cache_alloc_noprof+0x83/0x770
[  582.012052][T15972]  ? alloc_empty_file+0x55/0x1e0
[  582.012071][T15972]  ? alloc_empty_file+0x55/0x1e0
[  582.012085][T15972]  alloc_empty_file+0x55/0x1e0
[  582.012101][T15972]  alloc_file_pseudo+0x13a/0x230
[  582.012117][T15972]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  582.012138][T15972]  __shmem_file_setup+0x1a8/0x350
[  582.012164][T15972]  shmem_zero_setup+0x93/0x1b0
[  582.012183][T15972]  __mmap_region+0x2271/0x2a00
[  582.012203][T15972]  ? __lock_acquire+0x436/0x2890
[  582.012217][T15972]  ? __pfx___mmap_region+0x10/0x10
[  582.012240][T15972]  ? lock_acquire+0x179/0x330
[  582.012261][T15972]  ? finish_task_switch.isra.0+0x207/0xbd0
[  582.012317][T15972]  ? rcu_is_watching+0x12/0xc0
[  582.012343][T15972]  mmap_region+0x1ab/0x3f0
[  582.012360][T15972]  ? __get_unmapped_area+0x267/0x3f0
[  582.012384][T15972]  do_mmap+0xa3e/0x1210
[  582.012409][T15972]  ? __pfx_do_mmap+0x10/0x10
[  582.012431][T15972]  ? __pfx_down_write_killable+0x10/0x10
[  582.012454][T15972]  vm_mmap_pgoff+0x29e/0x470
[  582.012478][T15972]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  582.012503][T15972]  ? __x64_sys_futex+0x1e0/0x4c0
[  582.012519][T15972]  ? __x64_sys_futex+0x1e9/0x4c0
[  582.012539][T15972]  ksys_mmap_pgoff+0x7d/0x5c0
[  582.012558][T15972]  ? xfd_validate_state+0x61/0x180
[  582.012572][T15972]  ? __task_pid_nr_ns+0x1f5/0x500
[  582.012588][T15972]  __x64_sys_mmap+0x125/0x190
[  582.012605][T15972]  do_syscall_64+0xcd/0xf80
[  582.012629][T15972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  582.012645][T15972] RIP: 0033:0x7f527738f7c9
[  582.012658][T15972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  582.012673][T15972] RSP: 002b:00007f5278207038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  582.012688][T15972] RAX: ffffffffffffffda RBX: 00007f52775e6090 RCX: 00007f527738f7c9
[  582.012698][T15972] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000
[  582.012707][T15972] RBP: 00007f5277413f91 R08: 0000000000000401 R09: 0000000000008000
[  582.012717][T15972] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  582.012726][T15972] R13: 00007f52775e6128 R14: 00007f52775e6090 R15: 00007ffee7b63c58
[  582.012745][T15972]  </TASK>
[  582.842538][T15982] ERROR: Out of memory at tomoyo_memory_ok.
[  582.856242][T15986] ERROR: Out of memory at tomoyo_memory_ok.
[  583.173452][T16002] FAULT_INJECTION: forcing a failure.
[  583.173452][T16002] name failslab, interval 1, probability 0, space 0, times 0
[  583.223520][T16001] sg_write: data in/out 14745563/34144 bytes for SCSI command 0x0-- guessing data in;
[  583.223520][T16001]    program syz.0.2231 not setting count and/or reply_len properly
[  583.263958][T16002] CPU: 0 UID: 0 PID: 16002 Comm: syz.3.2232 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  583.264014][T16002] Tainted: [L]=SOFTLOCKUP
[  583.264025][T16002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  583.264042][T16002] Call Trace:
[  583.264052][T16002]  <TASK>
[  583.264063][T16002]  dump_stack_lvl+0x16c/0x1f0
[  583.264098][T16002]  should_fail_ex+0x512/0x640
[  583.264134][T16002]  ? __kmalloc_noprof+0xca/0x910
[  583.264168][T16002]  should_failslab+0xc2/0x120
[  583.264205][T16002]  __kmalloc_noprof+0xeb/0x910
[  583.264234][T16002]  ? kvm_dev_ioctl+0x1287/0x1a80
[  583.264274][T16002]  ? kvm_dev_ioctl+0x1287/0x1a80
[  583.264305][T16002]  kvm_dev_ioctl+0x1287/0x1a80
[  583.264345][T16002]  ? find_held_lock+0x2b/0x80
[  583.264379][T16002]  ? hook_file_ioctl_common+0x144/0x410
[  583.264417][T16002]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  583.264463][T16002]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  583.264499][T16002]  __x64_sys_ioctl+0x18e/0x210
[  583.264534][T16002]  do_syscall_64+0xcd/0xf80
[  583.264565][T16002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.264592][T16002] RIP: 0033:0x7f3ca578f7c9
[  583.264615][T16002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  583.264642][T16002] RSP: 002b:00007f3ca66ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  583.264669][T16002] RAX: ffffffffffffffda RBX: 00007f3ca59e5fa0 RCX: 00007f3ca578f7c9
[  583.264688][T16002] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  583.264705][T16002] RBP: 00007f3ca5813f91 R08: 0000000000000000 R09: 0000000000000000
[  583.264722][T16002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  583.264739][T16002] R13: 00007f3ca59e6038 R14: 00007f3ca59e5fa0 R15: 00007fff3e043c78
[  583.264777][T16002]  </TASK>
[  583.921011][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout
[  583.927127][ T5149] Bluetooth: hci2: command 0x0c1a tx timeout
[  583.964169][T16010] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46
[  583.997743][ T5841] Bluetooth: hci0: command 0x0c1a tx timeout
[  584.003928][ T5149] Bluetooth: hci3: command 0x0c1a tx timeout
[  584.036784][T16012] FAULT_INJECTION: forcing a failure.
[  584.036784][T16012] name failslab, interval 1, probability 0, space 0, times 0
[  584.086085][T16015] ERROR: Out of memory at tomoyo_memory_ok.
[  584.126929][T16012] CPU: 1 UID: 0 PID: 16012 Comm: syz.0.2234 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  584.126955][T16012] Tainted: [L]=SOFTLOCKUP
[  584.126961][T16012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  584.126971][T16012] Call Trace:
[  584.126978][T16012]  <TASK>
[  584.126984][T16012]  dump_stack_lvl+0x16c/0x1f0
[  584.127005][T16012]  should_fail_ex+0x512/0x640
[  584.127027][T16012]  ? fs_reclaim_acquire+0xae/0x150
[  584.127053][T16012]  should_failslab+0xc2/0x120
[  584.127076][T16012]  __kmalloc_noprof+0xeb/0x910
[  584.127093][T16012]  ? tomoyo_encode2+0x100/0x3e0
[  584.127117][T16012]  ? tomoyo_encode2+0x100/0x3e0
[  584.127130][T16012]  tomoyo_encode2+0x100/0x3e0
[  584.127147][T16012]  tomoyo_encode+0x29/0x50
[  584.127160][T16012]  tomoyo_realpath_from_path+0x18f/0x6e0
[  584.127182][T16012]  tomoyo_path_number_perm+0x245/0x580
[  584.127203][T16012]  ? tomoyo_path_number_perm+0x237/0x580
[  584.127226][T16012]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  584.127267][T16012]  ? d_alloc_parallel+0xb4e/0x1510
[  584.127287][T16012]  ? current_check_access_path+0x33b/0x460
[  584.127312][T16012]  ? __pfx_current_check_access_path+0x10/0x10
[  584.127342][T16012]  tomoyo_path_mknod+0x10c/0x190
[  584.127359][T16012]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  584.127378][T16012]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  584.127404][T16012]  security_path_mknod+0x161/0x310
[  584.127426][T16012]  lookup_open.isra.0+0xc10/0x1780
[  584.127450][T16012]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  584.127472][T16012]  ? find_held_lock+0x2b/0x80
[  584.127496][T16012]  ? __pfx_down_write+0x10/0x10
[  584.127519][T16012]  path_openat+0xa95/0x3140
[  584.127547][T16012]  ? __pfx_path_openat+0x10/0x10
[  584.127572][T16012]  ? __lock_acquire+0x436/0x2890
[  584.127588][T16012]  do_filp_open+0x20b/0x470
[  584.127610][T16012]  ? __pfx_do_filp_open+0x10/0x10
[  584.127646][T16012]  ? _raw_spin_unlock+0x28/0x50
[  584.127668][T16012]  ? alloc_fd+0x471/0x7d0
[  584.127694][T16012]  do_sys_openat2+0x11f/0x280
[  584.127711][T16012]  ? __pfx_do_sys_openat2+0x10/0x10
[  584.127735][T16012]  __x64_sys_open+0x153/0x1e0
[  584.127751][T16012]  ? __pfx___x64_sys_open+0x10/0x10
[  584.127772][T16012]  ? rcu_is_watching+0x12/0xc0
[  584.127794][T16012]  do_syscall_64+0xcd/0xf80
[  584.127812][T16012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  584.127827][T16012] RIP: 0033:0x7f199c78f7c9
[  584.127841][T16012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  584.127856][T16012] RSP: 002b:00007f199d681038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  584.127871][T16012] RAX: ffffffffffffffda RBX: 00007f199c9e6090 RCX: 00007f199c78f7c9
[  584.127881][T16012] RDX: 0000000000000082 RSI: 0000000000163ac1 RDI: 0000200000000800
[  584.127891][T16012] RBP: 00007f199c813f91 R08: 0000000000000000 R09: 0000000000000000
[  584.127901][T16012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  584.127911][T16012] R13: 00007f199c9e6128 R14: 00007f199c9e6090 R15: 00007ffe6b3987c8
[  584.127932][T16012]  </TASK>
[  584.127950][T16012] ERROR: Out of memory at tomoyo_realpath_from_path.
[  584.584382][T16027] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  584.869823][T16037] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  584.913488][T16037] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  585.789572][ T5149] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  585.789612][ T5149] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  585.806146][ T5149] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  585.806189][ T5149] Bluetooth: hci1: Unknown advertising packet type: 0x14
[  585.813286][ T5149] Bluetooth: hci1: Unknown advertising packet type: 0x14
[  585.822023][ T5149] Bluetooth: hci1: Unknown advertising packet type: 0x14
[  585.829351][ T5149] Bluetooth: hci1: Unknown advertising packet type: 0x72
[  585.836444][ T5149] Bluetooth: hci1: Unknown advertising packet type: 0x14
[  585.843810][ T5149] Bluetooth: hci1: Malformed LE Event: 0x0d
[  586.272532][T16064] Process accounting resumed
[  586.301755][T16066] input: f¬
 as /devices/virtual/input/input47
[  586.352937][T16068] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2248'.
[  586.407819][T16068] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  586.537653][T16068] batman_adv: batadv0: Removing interface: batadv_slave_1
[  587.118016][T16077] netlink: 217 bytes leftover after parsing attributes in process `syz.3.2249'.
[  587.476916][T16086] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2251'.
[  587.665844][T16086] HfR: entered promiscuous mode
[  588.107639][T16094] random: crng reseeded on system resumption
[  588.309139][T16099] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  588.316919][T16099] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  588.500725][T16073] kexec: Could not allocate control_code_buffer
[  588.721119][T16107] netlink: 'syz.3.2255': attribute type 1 has an invalid length.
[  591.536996][ T5149] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  591.544735][ T5149] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff
[  591.659702][T16155] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  591.701454][T16155] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  591.739872][T16147] netlink: 217 bytes leftover after parsing attributes in process `syz.2.2263'.
[  592.352961][T16143] kexec: Could not allocate control_code_buffer
[  593.138975][T16195] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2275'.
[  593.168549][T16195] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2275'.
[  593.236619][T16195] FAULT_INJECTION: forcing a failure.
[  593.236619][T16195] name failslab, interval 1, probability 0, space 0, times 0
[  593.258685][T16195] CPU: 1 UID: 0 PID: 16195 Comm: syz.0.2275 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  593.258730][T16195] Tainted: [L]=SOFTLOCKUP
[  593.258739][T16195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  593.258756][T16195] Call Trace:
[  593.258765][T16195]  <TASK>
[  593.258777][T16195]  dump_stack_lvl+0x16c/0x1f0
[  593.258813][T16195]  should_fail_ex+0x512/0x640
[  593.258850][T16195]  ? __kmalloc_noprof+0xca/0x910
[  593.258882][T16195]  should_failslab+0xc2/0x120
[  593.258921][T16195]  __kmalloc_noprof+0xeb/0x910
[  593.258951][T16195]  ? copy_splice_read+0x1a8/0xc20
[  593.258990][T16195]  ? copy_splice_read+0x1a8/0xc20
[  593.259023][T16195]  copy_splice_read+0x1a8/0xc20
[  593.259057][T16195]  ? __pfx_iter_file_splice_write+0x10/0x10
[  593.259102][T16195]  ? __pfx_copy_splice_read+0x10/0x10
[  593.259140][T16195]  ? look_up_lock_class+0x59/0x130
[  593.259177][T16195]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  593.259215][T16195]  ? __pfx_copy_splice_read+0x10/0x10
[  593.259250][T16195]  do_splice_read+0x285/0x370
[  593.259290][T16195]  splice_direct_to_actor+0x2a1/0xa30
[  593.259329][T16195]  ? __pfx_direct_splice_actor+0x10/0x10
[  593.259372][T16195]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  593.259425][T16195]  do_splice_direct+0x174/0x240
[  593.259462][T16195]  ? __pfx_do_splice_direct+0x10/0x10
[  593.259500][T16195]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  593.259539][T16195]  ? bpf_lsm_file_permission+0x9/0x10
[  593.259569][T16195]  ? security_file_permission+0x71/0x210
[  593.259607][T16195]  ? rw_verify_area+0xcf/0x6c0
[  593.259645][T16195]  do_sendfile+0xb06/0xe50
[  593.259683][T16195]  ? __pfx_do_sendfile+0x10/0x10
[  593.259719][T16195]  ? __x64_sys_futex+0x1e0/0x4c0
[  593.259748][T16195]  ? __x64_sys_futex+0x1e9/0x4c0
[  593.259782][T16195]  __x64_sys_sendfile64+0x1d8/0x220
[  593.259823][T16195]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  593.259874][T16195]  do_syscall_64+0xcd/0xf80
[  593.259904][T16195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.259938][T16195] RIP: 0033:0x7f199c78f7c9
[  593.259962][T16195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  593.259991][T16195] RSP: 002b:00007f199d6a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  593.260019][T16195] RAX: ffffffffffffffda RBX: 00007f199c9e5fa0 RCX: 00007f199c78f7c9
[  593.260039][T16195] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000005
[  593.260057][T16195] RBP: 00007f199c813f91 R08: 0000000000000000 R09: 0000000000000000
[  593.260074][T16195] R10: 7fffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  593.260092][T16195] R13: 00007f199c9e6038 R14: 00007f199c9e5fa0 R15: 00007ffe6b3987c8
[  593.260130][T16195]  </TASK>
[  593.294779][T16197] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2276'.
[  593.770506][T16199] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input48
[  594.483346][T16206] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input49
[  594.632624][T16221] binder: 16214:16221 ioctl 400c620e 0 returned -22
[  595.361067][T16235] netlink: 'syz.0.2282': attribute type 1 has an invalid length.
[  596.983347][T16279] netlink: 217 bytes leftover after parsing attributes in process `syz.2.2292'.
[  597.907045][T16295] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2296'.
[  597.987789][T16277] kexec: Could not allocate control_code_buffer
[  598.102219][T16298] netlink: 'syz.3.2297': attribute type 1 has an invalid length.
[  598.332263][T16309] FAULT_INJECTION: forcing a failure.
[  598.332263][T16309] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  598.398953][T16309] CPU: 0 UID: 0 PID: 16309 Comm: syz.2.2299 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  598.398996][T16309] Tainted: [L]=SOFTLOCKUP
[  598.399005][T16309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  598.399020][T16309] Call Trace:
[  598.399030][T16309]  <TASK>
[  598.399040][T16309]  dump_stack_lvl+0x16c/0x1f0
[  598.399074][T16309]  should_fail_ex+0x512/0x640
[  598.399113][T16309]  _copy_from_user+0x2e/0xd0
[  598.399148][T16309]  copy_msghdr_from_user+0x98/0x160
[  598.399195][T16309]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  598.399248][T16309]  ___sys_sendmsg+0xfe/0x1d0
[  598.399287][T16309]  ? __pfx____sys_sendmsg+0x10/0x10
[  598.399365][T16309]  __sys_sendmsg+0x16d/0x220
[  598.399402][T16309]  ? __pfx___sys_sendmsg+0x10/0x10
[  598.399462][T16309]  do_syscall_64+0xcd/0xf80
[  598.399492][T16309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.399518][T16309] RIP: 0033:0x7f39a578f7c9
[  598.399539][T16309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  598.399563][T16309] RSP: 002b:00007f39a65ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  598.399587][T16309] RAX: ffffffffffffffda RBX: 00007f39a59e5fa0 RCX: 00007f39a578f7c9
[  598.399605][T16309] RDX: 0000000000018800 RSI: 0000200000001400 RDI: 0000000000000003
[  598.399622][T16309] RBP: 00007f39a65ad090 R08: 0000000000000000 R09: 0000000000000000
[  598.399638][T16309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  598.399653][T16309] R13: 00007f39a59e6038 R14: 00007f39a59e5fa0 R15: 00007ffd5a9186d8
[  598.399689][T16309]  </TASK>
[  599.042547][T16322] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  599.058125][T16323] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2305'.
[  599.092169][T16322] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  599.372377][T16326] zswap: compressor û not available
[  600.555262][T16361] FAULT_INJECTION: forcing a failure.
[  600.555262][T16361] name failslab, interval 1, probability 0, space 0, times 0
[  600.670326][T16361] CPU: 0 UID: 0 PID: 16361 Comm: syz.1.2311 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  600.670367][T16361] Tainted: [L]=SOFTLOCKUP
[  600.670375][T16361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  600.670391][T16361] Call Trace:
[  600.670399][T16361]  <TASK>
[  600.670410][T16361]  dump_stack_lvl+0x16c/0x1f0
[  600.670442][T16361]  should_fail_ex+0x512/0x640
[  600.670466][T16361]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[  600.670488][T16361]  should_failslab+0xc2/0x120
[  600.670510][T16361]  kmem_cache_alloc_node_noprof+0x86/0x800
[  600.670528][T16361]  ? __alloc_skb+0x156/0x410
[  600.670552][T16361]  ? __alloc_skb+0x156/0x410
[  600.670571][T16361]  __alloc_skb+0x156/0x410
[  600.670589][T16361]  ? __alloc_skb+0x35d/0x410
[  600.670608][T16361]  ? __pfx___alloc_skb+0x10/0x10
[  600.670628][T16361]  ? netlink_autobind.isra.0+0x158/0x370
[  600.670651][T16361]  netlink_alloc_large_skb+0x69/0x140
[  600.670668][T16361]  netlink_sendmsg+0x698/0xdd0
[  600.670686][T16361]  ? __pfx_netlink_sendmsg+0x10/0x10
[  600.670704][T16361]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  600.670726][T16361]  ____sys_sendmsg+0xa5d/0xc30
[  600.670744][T16361]  ? copy_msghdr_from_user+0x10a/0x160
[  600.670766][T16361]  ? __pfx_____sys_sendmsg+0x10/0x10
[  600.670791][T16361]  ___sys_sendmsg+0x134/0x1d0
[  600.670815][T16361]  ? __pfx____sys_sendmsg+0x10/0x10
[  600.670859][T16361]  __sys_sendmsg+0x16d/0x220
[  600.670882][T16361]  ? __pfx___sys_sendmsg+0x10/0x10
[  600.670924][T16361]  do_syscall_64+0xcd/0xf80
[  600.670941][T16361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.670958][T16361] RIP: 0033:0x7f527738f7c9
[  600.670971][T16361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  600.670986][T16361] RSP: 002b:00007f5278228038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  600.671001][T16361] RAX: ffffffffffffffda RBX: 00007f52775e5fa0 RCX: 00007f527738f7c9
[  600.671011][T16361] RDX: 0000000000018800 RSI: 0000200000001400 RDI: 0000000000000003
[  600.671020][T16361] RBP: 00007f5278228090 R08: 0000000000000000 R09: 0000000000000000
[  600.671029][T16361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  600.671038][T16361] R13: 00007f52775e6038 R14: 00007f52775e5fa0 R15: 00007ffee7b63c58
[  600.671058][T16361]  </TASK>
[  601.088134][T16367] usb usb36: usbfs: process 16367 (syz.0.2313) did not claim interface 0 before use
[  601.542475][T16375] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137
[  601.573589][T16375] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138
[  601.607623][T16375] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum
[  601.789030][T16377] kvm: kvm [16376]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc1) = 0x2
[  602.260876][ T5841] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  602.275382][ T5841] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  602.283931][ T5841] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  602.292335][ T5841] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  602.300260][ T5841] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  602.481281][T16395] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2318'.
[  602.510033][T16395] mac80211_hwsim hwsim8 wlan1: entered promiscuous mode
[  602.552621][T16395] mac80211_hwsim hwsim8 wlan1: entered allmulticast mode
[  603.294689][T16388] chnl_net:caif_netlink_parms(): no params data found
[  603.556948][T16406] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  603.633264][T16406] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  604.152078][T16388] bridge0: port 1(bridge_slave_0) entered blocking state
[  604.179192][T16388] bridge0: port 1(bridge_slave_0) entered disabled state
[  604.212274][T16388] bridge_slave_0: entered allmulticast mode
[  604.251686][T16388] bridge_slave_0: entered promiscuous mode
[  604.372139][ T5841] Bluetooth: hci4: command tx timeout
[  604.454212][T16418] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2322'.
[  604.538410][T16388] bridge0: port 2(bridge_slave_1) entered blocking state
[  604.563954][T16388] bridge0: port 2(bridge_slave_1) entered disabled state
[  604.571277][T16388] bridge_slave_1: entered allmulticast mode
[  604.582620][T16388] bridge_slave_1: entered promiscuous mode
[  604.827293][T16388] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  604.905210][T16420] futex_wake_op: syz.0.2323 tries to shift op by -2048; fix this program
[  605.015470][ T7603] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  605.102720][T16388] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  605.299905][ T7603] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  605.419030][T16388] team0: Port device team_slave_0 added
[  605.459186][ T7603] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  605.509221][T16388] team0: Port device team_slave_1 added
[  605.644992][T16423] zswap: compressor  not available
[  605.689162][ T7603] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  605.728926][T16388] batman_adv: batadv0: Adding interface: batadv_slave_0
[  605.755428][T16388] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  605.806612][T16388] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  605.840748][T16388] batman_adv: batadv0: Adding interface: batadv_slave_1
[  605.854244][T16388] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  605.914642][T16388] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  606.179119][T16388] hsr_slave_0: entered promiscuous mode
[  606.199516][T16388] hsr_slave_1: entered promiscuous mode
[  606.223169][T16388] debugfs: 'hsr0' already exists in 'hsr'
[  606.229216][T16388] Cannot create hsr debugfs directory
[  606.442110][ T5841] Bluetooth: hci4: command tx timeout
[  606.455986][T16425] kexec: Could not allocate control_code_buffer
[  606.958122][ T7603] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  606.974686][ T7603] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  606.985615][ T7603] bond0 (unregistering): Released all slaves
[  607.171753][ T7603] .^: left promiscuous mode
[  607.339401][T16439] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2327'.
[  607.359195][T16439] openvswitch: netlink: IP tunnel dst address not specified
[  607.798831][T16445] bond0: invalid ARP target specified
[  608.340173][T16388] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  608.406118][T16388] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  608.472455][T16388] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  608.522353][ T5841] Bluetooth: hci4: command tx timeout
[  608.524178][T16388] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  608.611119][ T7603] hsr_slave_0: left promiscuous mode
[  608.630135][ T7603] hsr_slave_1: left promiscuous mode
[  608.643578][ T7603] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  608.661670][ T7603] batman_adv: batadv0: Removing interface: batadv_slave_0
[  608.681068][ T7603] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  608.698016][ T7603] batman_adv: batadv0: Removing interface: batadv_slave_1
[  608.739246][T16468] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  608.746909][T16468] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  608.770314][ T7603] veth1_vlan: left promiscuous mode
[  608.791967][ T7603] veth0_vlan: left promiscuous mode
[  609.661175][ T7603] team0 (unregistering): Port device team_slave_1 removed
[  609.719585][ T7603] team0 (unregistering): Port device team_slave_0 removed
[  610.536292][T16484] FAULT_INJECTION: forcing a failure.
[  610.536292][T16484] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  610.556422][T16484] CPU: 0 UID: 0 PID: 16484 Comm: syz.1.2337 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  610.556468][T16484] Tainted: [L]=SOFTLOCKUP
[  610.556478][T16484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  610.556495][T16484] Call Trace:
[  610.556504][T16484]  <TASK>
[  610.556514][T16484]  dump_stack_lvl+0x16c/0x1f0
[  610.556547][T16484]  should_fail_ex+0x512/0x640
[  610.556585][T16484]  should_fail_alloc_page+0xe7/0x130
[  610.556625][T16484]  prepare_alloc_pages+0x401/0x670
[  610.556664][T16484]  ? rcu_is_watching+0x12/0xc0
[  610.556701][T16484]  __alloc_frozen_pages_noprof+0x18b/0x2430
[  610.556733][T16484]  ? css_rstat_updated+0x1c2/0x510
[  610.556760][T16484]  ? __pfx_css_rstat_updated+0x10/0x10
[  610.556785][T16484]  ? kasan_save_stack+0x42/0x60
[  610.556827][T16484]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  610.556858][T16484]  ? __mod_zone_page_state+0xcc/0x1a0
[  610.556887][T16484]  ? lru_gen_add_folio+0x1a4/0xef0
[  610.556919][T16484]  ? __lock_acquire+0x436/0x2890
[  610.556947][T16484]  ? __lock_acquire+0x436/0x2890
[  610.556971][T16484]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  610.557011][T16484]  ? policy_nodemask+0xea/0x4e0
[  610.557051][T16484]  alloc_pages_mpol+0x1fb/0x550
[  610.557089][T16484]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  610.557136][T16484]  folio_alloc_mpol_noprof+0x36/0x2f0
[  610.557162][T16484]  vma_alloc_folio_noprof+0xed/0x1e0
[  610.557189][T16484]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  610.557236][T16484]  do_anonymous_page+0xc81/0x2190
[  610.557275][T16484]  __handle_mm_fault+0x1ecf/0x2bb0
[  610.557310][T16484]  ? __pfx___handle_mm_fault+0x10/0x10
[  610.557339][T16484]  ? __pte_offset_map_lock+0x174/0x310
[  610.557371][T16484]  ? find_held_lock+0x2b/0x80
[  610.557413][T16484]  ? follow_page_pte+0x5cf/0x1390
[  610.557458][T16484]  handle_mm_fault+0x3fe/0xad0
[  610.557489][T16484]  __get_user_pages+0x54e/0x3590
[  610.557538][T16484]  ? __pfx___get_user_pages+0x10/0x10
[  610.557584][T16484]  populate_vma_page_range+0x267/0x3f0
[  610.557624][T16484]  ? __pfx_populate_vma_page_range+0x10/0x10
[  610.557662][T16484]  ? __pfx_find_vma_intersection+0x10/0x10
[  610.557698][T16484]  ? do_mmap+0x69c/0x1210
[  610.557737][T16484]  __mm_populate+0x1d8/0x380
[  610.557777][T16484]  ? __pfx___mm_populate+0x10/0x10
[  610.557815][T16484]  ? up_write+0x282/0x4e0
[  610.557846][T16484]  vm_mmap_pgoff+0x37f/0x470
[  610.557882][T16484]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  610.557922][T16484]  ? __x64_sys_futex+0x1e0/0x4c0
[  610.557952][T16484]  ? __x64_sys_futex+0x1e9/0x4c0
[  610.557986][T16484]  ksys_mmap_pgoff+0x7d/0x5c0
[  610.558022][T16484]  ? xfd_validate_state+0x61/0x180
[  610.558052][T16484]  __x64_sys_mmap+0x125/0x190
[  610.558085][T16484]  do_syscall_64+0xcd/0xf80
[  610.558117][T16484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  610.558146][T16484] RIP: 0033:0x7f527738f7c9
[  610.558171][T16484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  610.558196][T16484] RSP: 002b:00007f5278228038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  610.558231][T16484] RAX: ffffffffffffffda RBX: 00007f52775e5fa0 RCX: 00007f527738f7c9
[  610.558251][T16484] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000
[  610.558269][T16484] RBP: 00007f5277413f91 R08: 0000000000000007 R09: 0000000000028000
[  610.558287][T16484] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  610.558304][T16484] R13: 00007f52775e6038 R14: 00007f52775e5fa0 R15: 00007ffee7b63c58
[  610.558343][T16484]  </TASK>
[  610.601102][T16388] 8021q: adding VLAN 0 to HW filter on device bond0
[  610.608038][ T5841] Bluetooth: hci4: command tx timeout
[  610.675246][T16482] syz_tun: refused to change device tx_queue_len
[  610.950167][T16388] 8021q: adding VLAN 0 to HW filter on device team0
[  610.995507][ T3427] bridge0: port 1(bridge_slave_0) entered blocking state
[  611.002729][ T3427] bridge0: port 1(bridge_slave_0) entered forwarding state
[  611.031693][T13386] bridge0: port 2(bridge_slave_1) entered blocking state
[  611.038873][T13386] bridge0: port 2(bridge_slave_1) entered forwarding state
[  611.356167][   T30] audit: type=1800 audit(2147483698.279:32): pid=16498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2338" name="dbroot" dev="configfs" ino=66909 res=0 errno=0
[  611.444265][T16499] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  611.527825][T16499] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  611.879794][T16388] 8021q: adding VLAN 0 to HW filter on device batadv0
[  612.160525][T16388] veth0_vlan: entered promiscuous mode
[  612.269674][T16388] veth1_vlan: entered promiscuous mode
[  612.491330][T16388] veth0_macvtap: entered promiscuous mode
[  612.536541][T16388] veth1_macvtap: entered promiscuous mode
[  612.622088][T16522] netlink: 5068 bytes leftover after parsing attributes in process `syz.1.2343'.
[  612.655512][T16530] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2344'.
[  612.687819][T16522] netlink: 217 bytes leftover after parsing attributes in process `syz.1.2343'.
[  612.915695][T16534] binder: 16533:16534 ioctl c0306201 0 returned -14
[  613.208257][T16388] batman_adv: batadv0: Interface activated: batadv_slave_0
[  613.218447][T16534] FAULT_INJECTION: forcing a failure.
[  613.218447][T16534] name failslab, interval 1, probability 0, space 0, times 0
[  613.250016][T16534] CPU: 1 UID: 0 PID: 16534 Comm: syz.0.2345 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  613.250067][T16534] Tainted: [L]=SOFTLOCKUP
[  613.250078][T16534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  613.250098][T16534] Call Trace:
[  613.250108][T16534]  <TASK>
[  613.250120][T16534]  dump_stack_lvl+0x16c/0x1f0
[  613.250154][T16534]  should_fail_ex+0x512/0x640
[  613.250191][T16534]  ? __kmalloc_noprof+0xca/0x910
[  613.250226][T16534]  should_failslab+0xc2/0x120
[  613.250272][T16534]  __kmalloc_noprof+0xeb/0x910
[  613.250300][T16534]  ? lockdep_init_map_type+0x5c/0x270
[  613.250329][T16534]  ? ops_init+0x77/0x5f0
[  613.250359][T16534]  ? ops_init+0x77/0x5f0
[  613.250381][T16534]  ops_init+0x77/0x5f0
[  613.250410][T16534]  setup_net+0x11d/0x3a0
[  613.250437][T16534]  ? __pfx_setup_net+0x10/0x10
[  613.250460][T16534]  ? lockdep_init_map_type+0x5c/0x270
[  613.250489][T16534]  ? mutex_init_lockep+0x110/0x150
[  613.250521][T16534]  copy_net_ns+0x351/0x7c0
[  613.250553][T16534]  create_new_namespaces+0x3ea/0xab0
[  613.250597][T16534]  copy_namespaces+0x468/0x570
[  613.250635][T16534]  copy_process+0x2a70/0x7430
[  613.250692][T16534]  ? __pfx_copy_process+0x10/0x10
[  613.250738][T16534]  ? futex_private_hash_put+0x160/0x1b0
[  613.250776][T16534]  kernel_clone+0xfc/0x910
[  613.250817][T16534]  ? __pfx_kernel_clone+0x10/0x10
[  613.250876][T16534]  __do_sys_clone+0xce/0x120
[  613.250914][T16534]  ? __pfx___do_sys_clone+0x10/0x10
[  613.250972][T16534]  ? syscall_user_dispatch+0x78/0x140
[  613.251017][T16534]  do_syscall_64+0xcd/0xf80
[  613.251055][T16534]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  613.251085][T16534] RIP: 0033:0x7f199c78f7c9
[  613.251107][T16534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  613.251133][T16534] RSP: 002b:00007f199d6a1fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  613.251159][T16534] RAX: ffffffffffffffda RBX: 00007f199c9e5fa0 RCX: 00007f199c78f7c9
[  613.251176][T16534] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040180211
[  613.251192][T16534] RBP: 00007f199c813f91 R08: 0000000000000000 R09: 0000000000000000
[  613.251209][T16534] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  613.251225][T16534] R13: 00007f199c9e6038 R14: 00007f199c9e5fa0 R15: 00007ffe6b3987c8
[  613.251263][T16534]  </TASK>
[  613.557871][T16388] batman_adv: batadv0: Interface activated: batadv_slave_1
[  613.577072][T13386] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  613.590086][T13386] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  613.612886][T13386] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  613.668252][T13386] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  613.831470][T16540] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  613.843870][T16520] kexec: Could not allocate control_code_buffer
[  613.887449][T16540] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  614.015045][T13390] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  614.054823][T13390] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  614.203314][T11395] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  614.237665][T11395] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  614.732136][   T30] audit: type=1800 audit(2147483701.665:33): pid=16555 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2315" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  615.076151][ T5149] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  615.087399][ T5149] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  615.100431][ T5149] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  615.113534][ T5149] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  615.121473][ T5149] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  615.127149][T16566] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2352'.
[  615.464560][T16575] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  615.504589][T16575] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  615.822527][T16567] chnl_net:caif_netlink_parms(): no params data found
[  616.062222][T16567] bridge0: port 1(bridge_slave_0) entered blocking state
[  616.069717][T16567] bridge0: port 1(bridge_slave_0) entered disabled state
[  616.080589][T16567] bridge_slave_0: entered allmulticast mode
[  616.088511][T16567] bridge_slave_0: entered promiscuous mode
[  616.098538][T16567] bridge0: port 2(bridge_slave_1) entered blocking state
[  616.105986][T16567] bridge0: port 2(bridge_slave_1) entered disabled state
[  616.113502][T16567] bridge_slave_1: entered allmulticast mode
[  616.121626][T16567] bridge_slave_1: entered promiscuous mode
[  616.247613][T16592] netlink: 5068 bytes leftover after parsing attributes in process `syz.3.2356'.
[  616.269158][T16567] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  616.287666][T16592] netlink: 217 bytes leftover after parsing attributes in process `syz.3.2356'.
[  616.513426][T16567] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  616.990296][T16567] team0: Port device team_slave_0 added
[  617.020957][T16567] team0: Port device team_slave_1 added
[  617.040387][T16609] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  617.050890][T16609] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  617.203945][ T5841] Bluetooth: hci1: command tx timeout
[  617.234603][T16567] batman_adv: batadv0: Adding interface: batadv_slave_0
[  617.250436][T16567] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  617.320880][T16567] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  617.498643][T16567] batman_adv: batadv0: Adding interface: batadv_slave_1
[  617.513832][T16567] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  617.570258][T16567] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  617.700039][T16587] kexec: Could not allocate control_code_buffer
[  617.845730][T16567] hsr_slave_0: entered promiscuous mode
[  617.863726][T16567] hsr_slave_1: entered promiscuous mode
[  617.879460][T16567] debugfs: 'hsr0' already exists in 'hsr'
[  617.885247][T16567] Cannot create hsr debugfs directory
[  618.273956][T16567] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  618.501596][T16567] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  618.596861][T16567] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  618.690296][T16567] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  619.013508][T16567] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  619.045155][T16567] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  619.067377][T16567] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  619.103205][T16567] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  619.239015][ T5841] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5
[  619.262368][ T5841] Bluetooth: hci1: command tx timeout
[  619.558939][T16656] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2367'.
[  619.641575][T16567] 8021q: adding VLAN 0 to HW filter on device bond0
[  619.720102][T16567] 8021q: adding VLAN 0 to HW filter on device team0
[  619.766971][ T7565] bridge0: port 1(bridge_slave_0) entered blocking state
[  619.774165][ T7565] bridge0: port 1(bridge_slave_0) entered forwarding state
[  619.824843][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  619.832011][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  619.950162][T16567] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  620.020332][T16567] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  620.205870][T16661] Setting dangerous option i915.mitigations - tainting kernel
[  620.928079][T16567] 8021q: adding VLAN 0 to HW filter on device batadv0
[  621.068707][T16651] kexec: Could not allocate control_code_buffer
[  621.078841][T16567] veth0_vlan: entered promiscuous mode
[  621.120303][T16567] veth1_vlan: entered promiscuous mode
[  621.267063][T16567] veth0_macvtap: entered promiscuous mode
[  621.324939][T16567] veth1_macvtap: entered promiscuous mode
[  621.333985][ T5841] Bluetooth: hci1: command tx timeout
[  621.385027][T16567] batman_adv: batadv0: Interface activated: batadv_slave_0
[  621.439710][T16567] batman_adv: batadv0: Interface activated: batadv_slave_1
[  621.490507][ T3427] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  621.515777][ T3427] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  621.520959][T16672] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  621.563526][T16672] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  621.600819][ T3427] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  621.669186][ T3427] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  622.564908][T13386] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  622.587289][T13386] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  622.704067][T11395] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  622.722712][T11395] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  623.402740][ T5841] Bluetooth: hci1: command tx timeout
[  624.195233][ T5149] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  624.212381][ T5149] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  624.238571][ T5149] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  624.247279][ T5149] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  624.259115][ T5149] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  625.427445][T16692] chnl_net:caif_netlink_parms(): no params data found
[  625.718113][ T6164] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  625.762160][T16717] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  625.898237][T16715] ==================================================================
[  625.898257][T16715] BUG: KASAN: slab-use-after-free in fbcon_prepare_logo+0xa03/0xc70
[  625.898301][T16715] Read of size 256 at addr ffff88805ef163c0 by task syz.3.2379/16715
[  625.898324][T16715] 
[  625.898341][T16715] CPU: 0 UID: 0 PID: 16715 Comm: syz.3.2379 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  625.898383][T16715] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  625.898395][T16715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  625.898413][T16715] Call Trace:
[  625.898422][T16715]  <TASK>
[  625.898433][T16715]  dump_stack_lvl+0x116/0x1f0
[  625.898462][T16715]  print_report+0xcd/0x630
[  625.898499][T16715]  ? __virt_addr_valid+0x81/0x610
[  625.898538][T16715]  ? __phys_addr+0xe8/0x180
[  625.898575][T16715]  ? fbcon_prepare_logo+0xa03/0xc70
[  625.898607][T16715]  kasan_report+0xe0/0x110
[  625.898643][T16715]  ? fbcon_prepare_logo+0xa03/0xc70
[  625.898682][T16715]  kasan_check_range+0x100/0x1b0
[  625.898708][T16715]  __asan_memcpy+0x23/0x60
[  625.898737][T16715]  fbcon_prepare_logo+0xa03/0xc70
[  625.898777][T16715]  fbcon_init+0xda0/0x1930
[  625.898811][T16715]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[  625.898849][T16715]  visual_init+0x320/0x620
[  625.898893][T16715]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  625.898939][T16715]  store_bind+0x61d/0x760
[  625.898978][T16715]  ? sysfs_file_kobj+0xe4/0x290
[  625.899003][T16715]  ? __pfx_store_bind+0x10/0x10
[  625.899039][T16715]  dev_attr_store+0x58/0x80
[  625.899076][T16715]  ? __pfx_dev_attr_store+0x10/0x10
[  625.899109][T16715]  sysfs_kf_write+0xf2/0x150
[  625.899134][T16715]  kernfs_fop_write_iter+0x3af/0x570
[  625.899169][T16715]  ? __pfx_sysfs_kf_write+0x10/0x10
[  625.899196][T16715]  iter_file_splice_write+0xa24/0x12b0
[  625.899253][T16715]  ? __pfx_iter_file_splice_write+0x10/0x10
[  625.899296][T16715]  ? __pfx_copy_splice_read+0x10/0x10
[  625.899342][T16715]  ? __pfx_iter_file_splice_write+0x10/0x10
[  625.899381][T16715]  direct_splice_actor+0x192/0x6c0
[  625.899419][T16715]  splice_direct_to_actor+0x345/0xa30
[  625.899455][T16715]  ? __pfx_direct_splice_actor+0x10/0x10
[  625.899495][T16715]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  625.899536][T16715]  do_splice_direct+0x174/0x240
[  625.899572][T16715]  ? __pfx_do_splice_direct+0x10/0x10
[  625.899607][T16715]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  625.899638][T16715]  ? rw_verify_area+0xcf/0x6c0
[  625.899665][T16715]  do_sendfile+0xb06/0xe50
[  625.899693][T16715]  ? __pfx_do_sendfile+0x10/0x10
[  625.899722][T16715]  ? __x64_sys_futex+0x1e0/0x4c0
[  625.899748][T16715]  ? __x64_sys_futex+0x1e9/0x4c0
[  625.899776][T16715]  __x64_sys_sendfile64+0x1d8/0x220
[  625.899810][T16715]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  625.899851][T16715]  do_syscall_64+0xcd/0xf80
[  625.899893][T16715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.899917][T16715] RIP: 0033:0x7f1bb038f7c9
[  625.899935][T16715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  625.899962][T16715] RSP: 002b:00007f1bb12eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  625.899987][T16715] RAX: ffffffffffffffda RBX: 00007f1bb05e6090 RCX: 00007f1bb038f7c9
[  625.900004][T16715] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000003
[  625.900019][T16715] RBP: 00007f1bb0413f91 R08: 0000000000000000 R09: 0000000000000000
[  625.900034][T16715] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  625.900050][T16715] R13: 00007f1bb05e6128 R14: 00007f1bb05e6090 R15: 00007ffe43660618
[  625.900076][T16715]  </TASK>
[  625.900087][T16715] 
[  625.900095][T16715] Allocated by task 7603:
[  625.900108][T16715]  kasan_save_stack+0x33/0x60
[  625.900141][T16715]  kasan_save_track+0x14/0x30
[  625.900173][T16715]  __kasan_slab_alloc+0x89/0x90
[  625.900201][T16715]  kmem_cache_alloc_node_noprof+0x298/0x800
[  625.900226][T16715]  __alloc_skb+0x156/0x410
[  625.900257][T16715]  nsim_dev_trap_report_work+0x2b1/0xcf0
[  625.900287][T16715]  process_one_work+0x9ba/0x1b20
[  625.900314][T16715]  worker_thread+0x6c8/0xf10
[  625.900339][T16715]  kthread+0x3c5/0x780
[  625.900358][T16715]  ret_from_fork+0x983/0xb10
[  625.900377][T16715]  ret_from_fork_asm+0x1a/0x30
[  625.900408][T16715] 
[  625.900414][T16715] Freed by task 7603:
[  625.900424][T16715]  kasan_save_stack+0x33/0x60
[  625.900448][T16715]  kasan_save_track+0x14/0x30
[  625.900473][T16715]  kasan_save_free_info+0x3b/0x60
[  625.900493][T16715]  __kasan_slab_free+0x5f/0x80
[  625.900519][T16715]  kmem_cache_free+0x2d8/0x770
[  625.900542][T16715]  kfree_skbmem+0x1a4/0x1f0
[  625.900563][T16715]  consume_skb+0xcc/0x100
[  625.900584][T16715]  nsim_dev_trap_report_work+0x8bd/0xcf0
[  625.900612][T16715]  process_one_work+0x9ba/0x1b20
[  625.900633][T16715]  worker_thread+0x6c8/0xf10
[  625.900653][T16715]  kthread+0x3c5/0x780
[  625.900672][T16715]  ret_from_fork+0x983/0xb10
[  625.900694][T16715]  ret_from_fork_asm+0x1a/0x30
[  625.900724][T16715] 
[  625.900729][T16715] The buggy address belongs to the object at ffff88805ef163c0
[  625.900729][T16715]  which belongs to the cache skbuff_head_cache of size 240
[  625.900750][T16715] The buggy address is located 0 bytes inside of
[  625.900750][T16715]  freed 240-byte region [ffff88805ef163c0, ffff88805ef164b0)
[  625.900777][T16715] 
[  625.900785][T16715] The buggy address belongs to the physical page:
[  625.900807][T16715] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5ef16
[  625.900833][T16715] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  625.900873][T16715] page_type: f5(slab)
[  625.900899][T16715] raw: 00fff00000000000 ffff888140e81a00 0000000000000000 dead000000000001
[  625.900919][T16715] raw: 0000000000000000 00000000000c000c 00000000f5000000 0000000000000000
[  625.900933][T16715] page dumped because: kasan: bad access detected
[  625.900950][T16715] page_owner tracks the page as allocated
[  625.900961][T16715] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 16567, tgid 16567 (syz-executor), ts 615496081651, free_ts 615495527780
[  625.901007][T16715]  post_alloc_hook+0x1af/0x220
[  625.901036][T16715]  get_page_from_freelist+0xd0b/0x31a0
[  625.901067][T16715]  __alloc_frozen_pages_noprof+0x25f/0x2430
[  625.901099][T16715]  alloc_pages_mpol+0x1fb/0x550
[  625.901138][T16715]  new_slab+0x2c3/0x430
[  625.901165][T16715]  ___slab_alloc+0xe18/0x1c90
[  625.901188][T16715]  __slab_alloc.constprop.0+0x63/0x110
[  625.901211][T16715]  kmem_cache_alloc_node_noprof+0x44a/0x800
[  625.901236][T16715]  __alloc_skb+0x156/0x410
[  625.901268][T16715]  alloc_uevent_skb+0x7d/0x210
[  625.901300][T16715]  kobject_uevent_env+0x1277/0x1920
[  625.901327][T16715]  netdev_queue_update_kobjects+0x1a7/0x710
[  625.901353][T16715]  netdev_register_kobject+0x2b3/0x3d0
[  625.901377][T16715]  register_netdevice+0x13ac/0x21d0
[  625.901399][T16715]  br_dev_newlink+0x6a/0x170
[  625.901429][T16715]  rtnl_newlink+0xc19/0x1f50
[  625.901449][T16715] page last free pid 14700 tgid 14700 stack trace:
[  625.901463][T16715]  __free_frozen_pages+0x7df/0x1170
[  625.901486][T16715]  vfree+0x1fd/0xb50
[  625.901519][T16715]  kcov_close+0x34/0x60
[  625.901552][T16715]  __fput+0x402/0xb70
[  625.901573][T16715]  task_work_run+0x150/0x240
[  625.901598][T16715]  do_exit+0x87f/0x2bd0
[  625.901620][T16715]  do_group_exit+0xd3/0x2a0
[  625.901643][T16715]  get_signal+0x2671/0x26d0
[  625.901675][T16715]  arch_do_signal_or_restart+0x8f/0x7a0
[  625.901706][T16715]  exit_to_user_mode_loop+0x8c/0x540
[  625.901738][T16715]  do_syscall_64+0x4ee/0xf80
[  625.901761][T16715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.901781][T16715] 
[  625.901786][T16715] Memory state around the buggy address:
[  625.901797][T16715]  ffff88805ef16280: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  625.901813][T16715]  ffff88805ef16300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc
[  625.901828][T16715] >ffff88805ef16380: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[  625.901841][T16715]                                            ^
[  625.901853][T16715]  ffff88805ef16400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  625.901866][T16715]  ffff88805ef16480: fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc
[  625.901886][T16715] ==================================================================
[  625.923713][T16715] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  625.923740][T16715] CPU: 0 UID: 0 PID: 16715 Comm: syz.3.2379 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  625.923782][T16715] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  625.923794][T16715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  625.923811][T16715] Call Trace:
[  625.923821][T16715]  <TASK>
[  625.923832][T16715]  dump_stack_lvl+0x3d/0x1f0
[  625.923863][T16715]  vpanic+0x640/0x6f0
[  625.923900][T16715]  panic+0xca/0xd0
[  625.923924][T16715]  ? __pfx_panic+0x10/0x10
[  625.923950][T16715]  ? fbcon_prepare_logo+0xa03/0xc70
[  625.923983][T16715]  ? preempt_schedule_common+0x44/0xc0
[  625.924010][T16715]  ? preempt_schedule_thunk+0x16/0x30
[  625.924039][T16715]  check_panic_on_warn+0xab/0xb0
[  625.924066][T16715]  end_report+0x107/0x160
[  625.924102][T16715]  kasan_report+0xee/0x110
[  625.924136][T16715]  ? fbcon_prepare_logo+0xa03/0xc70
[  625.924173][T16715]  kasan_check_range+0x100/0x1b0
[  625.924199][T16715]  __asan_memcpy+0x23/0x60
[  625.924228][T16715]  fbcon_prepare_logo+0xa03/0xc70
[  625.924267][T16715]  fbcon_init+0xda0/0x1930
[  625.924298][T16715]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[  625.924333][T16715]  visual_init+0x320/0x620
[  625.924367][T16715]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  625.924411][T16715]  store_bind+0x61d/0x760
[  625.924450][T16715]  ? sysfs_file_kobj+0xe4/0x290
[  625.924475][T16715]  ? __pfx_store_bind+0x10/0x10
[  625.924510][T16715]  dev_attr_store+0x58/0x80
[  625.924549][T16715]  ? __pfx_dev_attr_store+0x10/0x10
[  625.924584][T16715]  sysfs_kf_write+0xf2/0x150
[  625.924610][T16715]  kernfs_fop_write_iter+0x3af/0x570
[  625.924646][T16715]  ? __pfx_sysfs_kf_write+0x10/0x10
[  625.924673][T16715]  iter_file_splice_write+0xa24/0x12b0
[  625.924720][T16715]  ? __pfx_iter_file_splice_write+0x10/0x10
[  625.924760][T16715]  ? __pfx_copy_splice_read+0x10/0x10
[  625.924802][T16715]  ? __pfx_iter_file_splice_write+0x10/0x10
[  625.924840][T16715]  direct_splice_actor+0x192/0x6c0
[  625.924885][T16715]  splice_direct_to_actor+0x345/0xa30
[  625.924921][T16715]  ? __pfx_direct_splice_actor+0x10/0x10
[  625.924959][T16715]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  625.925000][T16715]  do_splice_direct+0x174/0x240
[  625.925034][T16715]  ? __pfx_do_splice_direct+0x10/0x10
[  625.925069][T16715]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  625.925106][T16715]  ? rw_verify_area+0xcf/0x6c0
[  625.925140][T16715]  do_sendfile+0xb06/0xe50
[  625.925175][T16715]  ? __pfx_do_sendfile+0x10/0x10
[  625.925209][T16715]  ? __x64_sys_futex+0x1e0/0x4c0
[  625.925238][T16715]  ? __x64_sys_futex+0x1e9/0x4c0
[  625.925269][T16715]  __x64_sys_sendfile64+0x1d8/0x220
[  625.925309][T16715]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  625.925352][T16715]  do_syscall_64+0xcd/0xf80
[  625.925381][T16715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.925408][T16715] RIP: 0033:0x7f1bb038f7c9
[  625.925430][T16715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  625.925456][T16715] RSP: 002b:00007f1bb12eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  625.925483][T16715] RAX: ffffffffffffffda RBX: 00007f1bb05e6090 RCX: 00007f1bb038f7c9
[  625.925502][T16715] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000003
[  625.925519][T16715] RBP: 00007f1bb0413f91 R08: 0000000000000000 R09: 0000000000000000
[  625.925537][T16715] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  625.925554][T16715] R13: 00007f1bb05e6128 R14: 00007f1bb05e6090 R15: 00007ffe43660618
[  625.925582][T16715]  </TASK>
[  625.925982][T16715] Kernel Offset: disabled