last executing test programs:

10.054163725s ago: executing program 0 (id=2265):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'veth0_to_team\x00'})
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x7fffffff}, 0x6, 0x3, 0x4, 0x6e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x40)
ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, &(0x7f0000000540)={0xfff, &(0x7f0000000180)="f2e37aa851f172bd24308737938225756749a2cd058f981d81224e731c1514b4f90290f2fb02e666a68c1d72ad5615b16c73b5c0cedf17801dfece4a243f6e3a47ecc1c5db92b3500cefe0e7c269c25cd32701679442d287388dedeedd83d20b9d079d0a971a993bfa4a4499f8631caa1722a7a93bf79c2535ea752a9b05e21efeebdeaa71269153bdd6ba4fac9b230a6653e8cbaf66e11ea7c105"})
sendmsg$auto_NL80211_CMD_UNEXPECTED_FRAME(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fddbdf2553000000060048000400000008006a00020000001a0024001d283da00ec8bd26bb202e590c48803903d4e63546f7000005005900000000000600ed0068000000ef94b31bdb69c352fddd532567ff164d34467e5be0974dc55b73580c69b0ae96a24f76ecb71073c8027e5c6d39724be56f3e775b32b732c362e3ff8af907734a91399675dba8bf00195097c7f56d7cac089c68414e254ac70bc7f6156812c2b75b18b245b90e95b31f39d1f7ae74fc501c746255ead46950ab33b69d3cd20abc2da662a38f7e97"], 0x50}, 0x1, 0x0, 0x0, 0x40}, 0x24040050)
rseq$auto(&(0x7f0000000b80)={0x5, 0x208, 0x9416, 0x4, 0xe, 0x80006, "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"}, 0x80000002, 0x8, 0x1ff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x112)
rt_sigsuspend$auto(0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto_EVIOCGMASK(r2, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x105})
ioctl$auto(0x3, 0x80004509, 0x10000000000402)
ioctl$auto(0x3, 0x800005411, 0x38)
mbind$auto(0x0, 0x800606, 0x1, &(0x7f0000000500)=0xffff, 0xa, 0x1)
futex_wake$auto(0x0, 0x5, 0x4, 0xa)
socket(0x11, 0x80003, 0x1d12)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82940, 0x0)
getdents$auto(0xffffffffffffffff, &(0x7f0000001c40)={0x81, 0xffffffffffffffff, 0x4}, 0x4)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000003c0), 0x101200, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_NFC_CMD_LLC_SDREQ(r3, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYRES64=r4, @ANYRES16=r1, @ANYBLOB="00012a3d7000fedbdf2513000000"], 0x14}, 0x1, 0x0, 0x0, 0x4011}, 0x40)

8.618035531s ago: executing program 3 (id=2270):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x4040, 0x0)
r1 = semctl$auto(0x8, 0x0, 0x0, 0x14d)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'geneve1\x00', <r2=>0x0})
sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, &(0x7f0000001e40)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001e00)={&(0x7f0000001e80)={0x1abc, 0x0, 0x100, 0x70bd25, 0x25dfdbfc, {}, [@MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_OFFLOAD={0x8f, 0x9, 0x0, 0x1, [@generic="a3458e973f3fe00d0941464d0ef4a0a0f2cfa8d72b3aa2c9b8bdb266c53d47ef33c4b015c8e2b57e45c3fb53744cc9e77ffb34937d3e5a010c3ee776cdf40f2beb98b439bfc3f346ea8901e908dc71d673502ee47ae53320ccab080e31cfbde215cbd9836cf3e5762c4927f54d360b49ad10d30d2d67289ea20cec7bd01224afa9d76e23a73cf824e32610"]}, @MACSEC_ATTR_RXSC_CONFIG={0x74, 0x2, 0x0, 0x1, [@nested={0x70, 0x5c, 0x0, 0x1, [@nested={0x4, 0x15}, @generic="46b625851a486631f5c24331189bf3cc0e0517ad83ebb08265d0e69b7edb6d78ceb11a1bceb7d92b9d702862bff5c62fffc0ed0349cd4b422a8e400b29f8355eb46edc04dd991f7adcc0e08c97e42c68f40ad20f", @typed={0xc, 0x8d, 0x0, 0x0, @u64}, @typed={0x5, 0x106, 0x0, 0x0, @str='\x00'}]}]}, @MACSEC_ATTR_SA_CONFIG={0x3a5, 0x3, 0x0, 0x1, [@nested={0x19c, 0xd4, 0x0, 0x1, [@typed={0x8, 0x10c, 0x0, 0x0, @fd=r0}, @nested={0x4, 0x7f}, @typed={0x8, 0x8f, 0x0, 0x0, @pid}, @typed={0x8, 0x87, 0x0, 0x0, @pid}, @generic="7561550d663323b38c82ddda693a51b26996eb495d34d013b72474a0ad2cea1be451c43a6a18", @typed={0x8, 0xb2, 0x0, 0x0, @pid=r1}, @nested={0x4, 0x50}, @generic="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", @generic="87a4becf5ef1ac8d3ecb0e427e652365dce705e48dd3ff2cdc215bc7c04f0b7794e3844f95275905532c52e1552590b5094c102e0eedacdb1e6035fc4fe7fe1a30bc58ab162da235b7f186bedde392"]}, @nested={0x104, 0x5b, 0x0, 0x1, [@nested={0x4, 0x9}, @typed={0x8, 0x29, 0x0, 0x0, @ipv4=@remote}, @nested={0x4, 0x38}, @nested={0x4, 0xe7}, @generic="fb63ed8a5240060f37a9933c75b9f202fe8e9289a7098e4c76c32dffc108fb75127c9da6f61689c90bf9ed11980a13b466ea4c8812d64c133de68a5ce20f078d8914e9df70424cf14948f00d4e4d480469f0c83cd38405ad3606214adeb7a4baa66997d41f9f7e1bf83dc4d36d9598351a66b38301f2f25e658e68005a004ba1cd9e29f1de1081c78798d69b00df56358998058a13efff7125c3674639", @typed={0x8, 0xd2, 0x0, 0x0, @u32=0x10001}, @nested={0x4, 0x7}, @generic="4c10e587682e9caf276635e295c2f0470de92c8a45ed4a9a3d8516fc86d6c217d2874a29dc5b895e92522ba090b6622c8a92c47d3575f27af3198b8f00280d38f26545"]}, @generic="81890f0f256f5c6f86dca81ed126b7751189918cf2b2e398f0b5f92e43ebd10e513b7e05bf3ed855afe8b5aa897a093aabf712d953560cad4415a6f2731921d184637f9716c26a39bdfd66ec7824292d823adde78fab3bc3965b10d0629491beaa2e74ae82c6fd94e8db04f4fea02fdae9fa8287c40dade4", @typed={0x8, 0x80, 0x0, 0x0, @u32=0x9}, @generic="378f0cd3764bd241f51beb75fb67c84be5fb7e73d787730607d31f55f3caed421c2e23e80788656bcee50eb3e638a9949c0a0c7d2f50a4a8c4518c9a355798d2340e0ced6c0d1812c32161d033c5720c92672cf32e28108443d8a73289d72293c2bdc0dfd9f4baab31f4bc084382af22798681862089e1c666ae605d0a88d96460"]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r2}, @MACSEC_ATTR_OFFLOAD={0x1a8, 0x9, 0x0, 0x1, [@nested={0x1a2, 0x9, 0x0, 0x1, [@generic="b46bdda36281359763c43b98ee4d86c1bb13a5f401b1032d77373bd149086a72409494ff5c431a450246ecd7b8605476cb64303cbae3712305642dc594eaa359099d200a20f2a2ae43cf", @nested={0x4, 0xf7}, @generic="985c17c199cf1ae3902903945336f0b00a0f6e4de50d95216f7c15c23d1c89e52939c2446c323bad3752f7dd34a90d281efe0d978494acb302428886a35ea992b87c497f6dc3fb4f8d0d7022af09372d51e79a80f966715dffebfeedd5a0aa9abd61af89fbfba497f140e22e993648", @generic="300d89f05e880e4660b738c538c870c9d525fea8bd4ceae92690f2992b254ba4aa1a6d60cc8fee919fce3588b981b748b91766dd5ebc6d6b99e1a931c5b0e98ba3be08fbce95dca947bd0844f33798c4ed56ff1523c2783baf2d318401da1066699d81f26f27275cb9151e0e6b698aa272ccc97fd7327a2e4075bacd46d624069e55e3bec32d8e2a18ef5c8826b1e086987ee1bea5e01ca42e61b0b6ce47c5a4095bd740c18dfcb1fa87f8d3ce067274492c4a4cf90e4598a997fc1b03199064fd589f7c029e42c910a20ba9588fef1c92f5738989aa54321d718025e56d9f6661"]}]}, @MACSEC_ATTR_SA_CONFIG={0x143c, 0x3, 0x0, 0x1, [@nested={0xf1, 0x90, 0x0, 0x1, [@generic="f67d307636d02ecabc960fb9c978d5e1f6230bc8c85535a10a67ff12ab1e4fa51e817015cec62306aa477b56017fb99b", @nested={0x4, 0x4c}, @nested={0x4, 0x9}, @generic="1b51eb0e2b24f8458baf9c93aa66ec0a6ce37263c652cab88e75b69d01693938af40dc469c79799ca54898c490f3983262381aee4301e144519f8f5c5f39dcd56b15b9dcc5e598a2a88fd6c175b493f4baa75ac470471c110ee2fa08bb52debebe14a5c2316c2e44669c3049236362bafcbffddfdba5dfaa34cd9146fae33bee1409b96120e5aba070d9a9c9e652e08c261ef592c3ed891f5ca7e0ea1ac2fd4c07d3be159cf0cb2b24", @nested={0x4, 0x54}, @nested={0x4, 0x23}, @nested={0x4, 0x105}]}, @typed={0x8, 0x88, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x117, 0x0, 0x0, @ipv4=@private=0xa010102}, @generic="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", @nested={0xf4, 0x66, 0x0, 0x1, [@typed={0x8, 0x125, 0x0, 0x0, @u32=0x9}, @nested={0x4, 0x148}, @typed={0x7b, 0xaa, 0x0, 0x0, @str='/dev/dri/card1\x00_\xe2t\"\b\x13\x88\x8d\xecc(\x8a4B\x17\xc3\x06\r\xcd\xaf\x96EEe\xaf\xc6t\xdb\xcf\xe1\xe0\x96\x9c\xf5\xa0\x88\x90\x8f\xf5\x1eB\x98\xc3\xd4\x06!h\xd2\x97\xad|\x0f8\xfd\x99&(J\xb8\x06\x8dYA\x01\x00\x00\x00\xe6d\x97G`.$\xc4\xb4\xa4\xda\xbf\xad\xfb\ro\xeb\xaf\xb68\rC\x1e%\x94\x05D\xe2\x84\xaa$\\n\x8b\xe3\xde\x0e'}, @nested={0x4, 0x13a}, @typed={0x3f, 0x80, 0x0, 0x0, @binary="317f60dee5038f2e6743f05a3df4ab2c9ddd0dce67db3d0c5d21e4beb2951099de678729e35d291397e00d730c25fd33edea3cbb56747ebfe3d4e0"}, @generic="feca36c4c593eae6d3f46e5b7e8357df52b41985", @nested={0x4, 0x11c}, @nested={0x4, 0x38}, @typed={0x8, 0x143, 0x0, 0x0, @u32}]}, @nested={0x229, 0x2, 0x0, 0x1, [@generic="9108c57b0e8e2762b1df5d93ea2032d9cd06dbd79e26fc14b9fdc2251de7186715700336e0", @generic="3211c2df8d4c3392ce2cf1c86cb1073c572c1e46fb654face6f6c22072861625764f5e5ff10ed8474cdb13d52ccf000f1ced628d04daf98987647530cc782da3703077adede3642275b31f8b5745ac29313132d538965410e359bc7b6315a26f7322", @generic="2ad2395cb7764a98b48cb2fd247af9143e5e92b48d22abc68574a9fd293f55ac02a7ef3f91f6f6027c7b058205d61e9801c8314da48e9746c483c5f3d2bc5047945c677f9c4ded5b76edc96568b9b67d1afe7a2b0cad08edde2dc93bcc161c553f23dc8bc7c8c7c7cbb0bf33e2afab3a7225b6990636e934eeb5ce27a498d409f470f5d75beb8797dca918a690bba626d7a4b06019a5a8d38a47b5a0e21ebeb0f1cbcefe3267ef351370fd4c2a3153f7eb2e1eb8500dfe", @generic="0abf57870d789dda1145c9a6e3357a1c5d035b2d2905b7f14fd63fe796a879afc89197b8cf94ba038d580a30dc48fa06d9e996212598d4e60eb28d9f4792c6eb50af80a123d829bf93fa805f539fc21470a0b933d5b5175c0a99250a4eb2688a4073f01987eec75aef4580275368cf8797eb864201683d5dbc1868cc2875625b610912333d62885b0526f8d02c755393eaa131df1a722c530efd90362c54e39fd1268f7b50978b8e0aa0293f9bf32999833dba8cfaf136e8b9c2108bdcc591017584c7cc967f2ee080351d5d153ce8083ab29a6822dba5", @nested={0x4, 0x137}, @typed={0x8, 0x112, 0x0, 0x0, @uid}, @nested={0x4, 0xea}]}, @typed={0x14, 0xd8, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x1abc}}, 0x1)
fadvise64$auto(r0, 0x7fffffffffffffff, 0x400000040000005, 0x4)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
writev$auto(0x8000, &(0x7f0000000040)={0x0, 0x2}, 0x1000002bf)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1)
sendto$auto(0xffffffffffffffff, 0x0, 0x8000000008000, 0x0, 0x0, 0x80)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f00000000c0), 0x3c3501, 0x0)
write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000140)='}[,&*}\x00')
r6 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
getdents64$auto(r6, 0x0, 0x400)
ioctl$auto(r5, 0x2284, r4)
socket$nl_generic(0x10, 0x3, 0x10)

8.130511739s ago: executing program 3 (id=2271):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x4040, 0x0)
semctl$auto(0x8, 0x0, 0x0, 0x14d)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'geneve1\x00'})
msgctl$auto_IPC_INFO(0x6, 0x3, &(0x7f0000000300)={{0x5cfd, 0x0, 0xee01, 0x80000001, 0x5, 0x6, 0x6}, &(0x7f0000000280)=0xf, &(0x7f00000002c0)=0xd, 0x8, 0x56eb, 0x7, 0x2, 0x36f2, 0x0, 0x40, 0x2, @raw=0x2, @raw=0xa0})
fadvise64$auto(r0, 0x7fffffffffffffff, 0x400000040000005, 0x4)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
writev$auto(0x8000, &(0x7f0000000040)={0x0, 0x2}, 0x1000002bf)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1)
sendto$auto(0xffffffffffffffff, 0x0, 0x8000000008000, 0x0, 0x0, 0x80)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f00000000c0), 0x3c3501, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000140)='}[,&*}\x00')
r4 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
getdents64$auto(r4, 0x0, 0x400)
ioctl$auto(r3, 0x2284, r2)
socket$nl_generic(0x10, 0x3, 0x10)

7.290365505s ago: executing program 2 (id=2274):
mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8)
io_uring_setup$auto(0x1ff, 0x0)
setsockopt$auto(0x3, 0x1, 0xd, 0x0, 0x9)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r2 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000100), r0)
sendmsg$auto_KSMBD_EVENT_RPC_RESPONSE(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r2, 0x200, 0x70bd26, 0x25dfdbfe, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000800}, 0x4008000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0x200000000003, 0x2f4a3a23)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2, 0x0)
writev$auto(r3, 0x0, 0x3)
mmap$auto(0xfffffffffffffffe, 0xe983, 0xc, 0xebe, 0xffffffffffffffff, 0x54f5cfc0)
r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x40100, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x4604, 0x0)
close_range$auto(r4, r1, 0x1)

7.062176589s ago: executing program 3 (id=2275):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) (async)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = socket(0x1e, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84) (async)
socket(0xa, 0x801, 0x84)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
connect$auto(r4, &(0x7f0000000000)=@tipc=@id={0x1e, 0x3, 0x2, {0x4e20, 0x3}}, 0x10)
r5 = socket(0x10, 0x2, 0xc)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="01002dbd7000fddbdf25030000000c0001"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES8=r5, @ANYBLOB="18000000", @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x40000f0) (async)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES8=r5, @ANYBLOB="18000000", @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x40000f0)
write$auto(r3, &(0x7f0000000000)='-\x00', 0x30)

6.48765616s ago: executing program 3 (id=2276):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x5609, r1)
mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x6, 0x0, 0x800000001, 0x0, 0x7, 0xa505}, 0x4}, 0x2, 0x4048)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x149041, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x5}, 0xa)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
madvise$auto(0x110c234f05, 0x8031ca, 0x9)
bpf$auto(0x2, &(0x7f0000000500)=@bpf_attr_11={0x5, 0x8000000000000001, 0x9, 0x5, 0xf870e9f, 0x7, 0x8}, 0x9)
bpf$auto(0x1, 0x0, 0xf)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)

6.461297108s ago: executing program 0 (id=2277):
mmap$auto(0xde25, 0x2020009, 0xf3d, 0x1000000eb5, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x2a742, 0x0)
mmap$auto(0x0, 0x10000, 0xde, 0x11, r0, 0x28000)
openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
madvise$auto(0x0, 0x2000040080000008, 0x2)
r1 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
write$auto_proc_mem_operations_base(r1, &(0x7f0000001680)="a7", 0x80000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
symlink$auto(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000100)='./file0\x00')
sendmsg$auto_IOAM6_CMD_DUMP_SCHEMAS(r2, &(0x7f0000001240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001200)={&(0x7f0000001180)={0x14, 0x0, 0x400, 0x70bd2e, 0x25dfdbfc, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000001}, 0x52f89ee0c2ae972e)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03+\x9e\x94\xc4\xfa\xe7,\xfa\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x2)
read$auto_proc_pid_smaps_operations_internal(r2, &(0x7f0000000180)=""/4096, 0x1000)
r4 = gettid()
rt_sigsuspend$auto(&(0x7f0000000040)={0x8}, 0x8)
tkill$auto(r4, 0x7)
mmap$auto(0x0, 0x9, 0xff7, 0x8000000008011, 0x4, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x100, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x9, 0xff7, 0x8000000008012, 0x1000000004, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_CEC_RECEIVE(0xffffffffffffffff, 0xc0386106, 0x0)
close_range$auto(0x2, 0x8, 0x0)
getsockopt$auto_SO_REUSEPORT(0xffffffffffffffff, 0x6, 0xf, &(0x7f0000000000)='/dev/cec12\x00', &(0x7f0000000040)=0x6)

6.388155702s ago: executing program 2 (id=2278):
mmap$auto(0x0, 0x24020009, 0x6, 0xeb1, 0x401, 0x8)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x5, 0x0)
semctl$auto(0x7, 0x2, 0x13, 0x1)
r1 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r1, 0x84, 0x10, 0x0, 0x0)
setsockopt$auto(r0, 0x0, 0x2e, 0x0, 0x108)
mmap$auto(0x0, 0x0, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1adac3, 0x0)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4)
r3 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/numa_maps\x00', 0x22000, 0x0)
read$auto_proc_sessionid_operations_base(r3, 0x0, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/0000:00:03.0/rescan\x00', 0xa001, 0x0)
write$auto(r4, &(0x7f00000002c0)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k>\xc8\x1f\xad\xf6\xf0\xef\xe4s\x95\xf2\x00\x97S\xb9O\xac\xbe\xd6\\J<\x02YK\xd6M\xe6\xe7\xa0\xb8\xc3[\x01\xc5\xe8|\xb0\xb0\x80\xbf\xa5?=i\x88UB\x1d\x8e\xd3\xc2\x949\xb6\xfb\x006\x02\x9c\x83\x14\x13\x99\xc7\xb4)M\xed\tN $\xd4\x90^?J\x92\x9a?\xf8b\x03\xd8\xdd\x84\xdf\x92\xf0\xcd\xd8\xba\xab\x15\x80\x9eo,\xc8\xf2\x82\xd2\x88\xbeL\xa0\x1a\xd3\xd5Of\x95\xee\x13e\xeb}o\x9b\x86_\xf0?\f<\xf3t7\xb6\x0f\x93\xc79@\xd8x\x9e\xef!\x006\b\xdbWB\x84\xdd\xac\xdau\x86g\x8f\x02@O7\x0f\xf8\x8d(\x9c\xf2NyD\x7f3\x14\x9eg\x86%)\xd6\b\xcd\x1f\x03\x00:\xa6\x83\'\xf4\xf2\x9dd\xf4z\x89\xc5D\xc4\x02\\\x81\xcf\x02Ep\xf6`\xde*\x1dV', 0x81)
write$auto_ocfs2_control_fops_stack_user(r2, &(0x7f0000003900)='\t', 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xc0400, 0x0)
socketpair$auto(0x1, 0x2, 0xfffffffd, 0x0)
open(0x0, 0x64842, 0x0)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ptyq3\x00', 0x561001, 0x0)
ioctl$auto_TIOCSETD2(r6, 0x5423, 0x0)
readv$auto(r5, &(0x7f00000000c0)={&(0x7f0000000000)="a4d18e357827aea4467c52d7d15e66267d4a75eee0517485c67e744349f93f332ce687729ce99e1a4ea9204e036bf74769a15eb68c49cae13741847da34df1e21d68baab8dc738d36fa1a400e7ea2027a68a14f12b18202dcfc4c4f13d4449faa997d776786ccd18447d0bf46881f8259ab41b55d08e8c0649d3c0578cd71e6f12cf95d894abf8800400048c06ab6978469b90eac3817531d06cb4853ac213ebe6", 0x5}, 0x1ff)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/virtual/block/loop13/queue/nr_requests\x00', 0x1, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000001140)=ANY=[@ANYBLOB="4c009154000000", @ANYRES16, @ANYBLOB="01002dbd7000f9dbdf25010000000600020000000000050007000200000008000b000a00000008000a0008000000050004000000000008000b000d00000006001b004e210000"], 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x400c004)
write$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f00000003c0)='4', 0x1)
socket(0xa, 0x3, 0x0)
mmap$auto(0x0, 0x3fffff, 0x7, 0x11, 0xdd, 0x0)

5.145646493s ago: executing program 2 (id=2279):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x7fffffff}, 0x6, 0x3, 0x4, 0x6e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x40)
ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, &(0x7f0000000540)={0xfff, &(0x7f0000000180)="f2e37aa851f172bd24308737938225756749a2cd058f981d81224e731c1514b4f90290f2fb02e666a68c1d72ad5615b16c73b5c0cedf17801dfece4a243f6e3a47ecc1c5db92b3500cefe0e7c269c25cd32701679442d287388dedeedd83d20b9d079d0a971a993bfa4a4499f8631caa1722a7a93bf79c2535ea752a9b05e21efeebdeaa71269153bdd6ba4fac9b230a6653e8cbaf66e11ea7c105"})
sendmsg$auto_NL80211_CMD_UNEXPECTED_FRAME(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fddbdf2553000000060048000400000008006a00020000001a0024001d283da00ec8bd26bb202e590c48803903d4e63546f7000005005900000000000600ed0068000000ef94b31bdb69c352fddd532567ff164d34467e5be0974dc55b73580c69b0ae96a24f76ecb71073c8027e5c6d39724be56f3e775b32b732c362e3ff8af907734a91399675dba8bf00195097c7f56d7cac089c68414e254ac70bc7f6156812c2b75b18b245b90e95b31f39d1f7ae74fc501c746255ead46950ab33b69d3cd20abc2da662a38f7e97"], 0x50}, 0x1, 0x0, 0x0, 0x40}, 0x24040050)
rseq$auto(&(0x7f0000000b80)={0x5, 0x208, 0x9416, 0x4, 0xe, 0x80006, "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"}, 0x80000002, 0x8, 0x1ff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x112)
rt_sigsuspend$auto(0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto_EVIOCGMASK(r2, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x105})
ioctl$auto(0x3, 0x80004509, 0x10000000000402)
ioctl$auto(0x3, 0x800005411, 0x38)
mbind$auto(0x0, 0x800606, 0x1, &(0x7f0000000500)=0xffff, 0xa, 0x1)
futex_wake$auto(0x0, 0x5, 0x4, 0xa)
socket(0x11, 0x80003, 0x1d12)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82940, 0x0)
getdents$auto(0xffffffffffffffff, &(0x7f0000001c40)={0x81, 0xffffffffffffffff, 0x4}, 0x4)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000003c0), 0x101200, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_NFC_CMD_LLC_SDREQ(r3, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYRES64=r4, @ANYRES16=r1, @ANYBLOB="00012a3d7000fedbdf2513000000"], 0x14}, 0x1, 0x0, 0x0, 0x4011}, 0x40)

4.898233189s ago: executing program 3 (id=2280):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x9d7, 0x5, 0x9b72, 0xffffffffffffffff, 0x741)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
write$auto(r4, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8587)
syz_genetlink_get_family_id$auto_nl80211(0x0, r3)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x208240, 0x0)
ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2})
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r1, 0x40045010, &(0x7f0000000080))
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x8001, 0x0)
write$auto(r6, &(0x7f0000000100)='d>*\xd2x\xc7\xbf\xff\x9a\xc01(\x00iM\x9c\bAa\x9e\xe98\xee\x15\xd3\xc5v\x99\f|\xe3\xbf\xd9\xf4C\x14A\xe6k\x105\xee\xc5\xaa$\x16\t?g\xb8b\x12\v*\xf9@B\xd0\xd2\x99{\x8b^\xff@\x83\x02Tvt\xc1_\x98\x9f\x16\xd5Is', 0x100000a3da)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
mlockall$auto(0x800000000000005)
msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004)
r7 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0)
read$auto_proc_pid_smaps_operations_internal(r7, &(0x7f00000002c0)=""/190, 0xfffffe39)
ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(r0, 0x1, &(0x7f0000000000)="1404000000000000a5")

4.856239553s ago: executing program 1 (id=2281):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x2041, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000400)={0x400, 0xffffffba})

4.707998906s ago: executing program 1 (id=2282):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000000000600010000000a0005000000000000000000b3fc010000000000000000000a000100000000000000000006000600050000000800", @ANYBLOB="080004"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='.'], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x94)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000280), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
setresuid$auto(0x2, 0x7, 0x0)
prctl$auto(0x1000000001c, 0x5, 0x8, 0x9, 0x80001)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x1f40)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x880)
read$auto(0x3, 0x0, 0x8080)
write$auto(0x3, 0x0, 0xffd8)
io_uring_register$auto(0xffffffffffffffff, 0x1f, &(0x7f00000000c0)="c646c61ca87c", 0x1)
write$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffffff, &(0x7f0000000200)="624d1bfe595046ab5c98199adfff0600de16b8ef6176e6021e1dce210500e8fdffff0000000000fffffffe00a7ed73de11691c13403c82be18ecfdf9b0a051779efa1a756fdbf986a298215baf3e6bd7a97b26aebb478bfaac553da2f50d0e1531162fd9c6c6ca7d2316eb660cab29b8e5c0ce1574ef9370005da1efe6c293cb02d95ffe803df1c59b6ccc0b02ec896766cfe3c729ffce659ca157173397d4c5c5e74218ddf46aed92103afc30c34f52e4b66c17e3b73f49c4fbc39059155d9691eadc1adc22f81a69d274ad4dc776861a5895315f65b1efa359ee24666a78774bd00121a1d9b2ac54d3", 0x6a)
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x0, 0x10000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x5)

4.260772438s ago: executing program 0 (id=2283):
openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/setgroups\x00', 0x149002, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x1, 0x0)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000980)=ANY=[], 0x14}}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0)
ioctl$auto_UI_SET_RELBIT(r3, 0x40045566, &(0x7f0000000040)=0x7fffffff)
r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00 \x00\a\x00'/21, 0x100000002, 0x100000001)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mq_notify$auto(0xffffffffffffffff, &(0x7f0000000180)={@sival_ptr=0x0, @inferred, 0x0, @_sigev_thread={0x0, 0x0}})
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_timedsend$auto(r1, 0x0, 0x2, 0x9, 0x0)

3.768155172s ago: executing program 2 (id=2284):
syz_clone(0x21001091, 0x0, 0x54, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptya7\x00', 0x101e81, 0x0)
waitid$auto(0x8, 0xffffffffffffffff, &(0x7f0000000100)={@siginfo_0_0={0x5, 0x98, 0x10, @_timer={<r0=>0x0, 0x40002, @sival_int=0xa, 0x2}}}, 0x3, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r1, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$auto_VHOST_SET_BACKEND_FEATURES(r3, 0x4008af25, 0x0)
mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000)
rseq$auto(&(0x7f0000000580)={0x5, 0x85, 0x9416, 0x1, 0x7, 0x6, "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"}, 0x6, 0x3, 0xff)
socket(0x2c, 0x80003, 0x0)
unshare$auto(0x40000080)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r4, 0x0, 0x100000a3d9)
getcwd$auto(0x0, 0x7)
socket(0x2b, 0x1, 0x0)
mmap$auto(0x0, 0x202000c, 0x9, 0xfffffffffffffffe, r3, 0x80008)
prctl$auto(0x37, 0x7fffffffffffffff, r0, 0x0, 0x81)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(0x2, 0xa, 0x0)
fcntl$auto_F_DUPFD_QUERY(r4, 0x403, r2)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/mm/mempolicy/weighted_interleave/node0\x00', 0xa001, 0x0)
write$auto(r5, &(0x7f0000000180)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0xfdf1)
lstat$auto(0x0, 0x0)

3.632615973s ago: executing program 1 (id=2285):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/machinecheck/machinecheck0/cmci_disabled\x00', 0x2062, 0x0)
write$auto(r0, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(r0, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/v4l-subdev0\x00', 0x0, 0x0)
statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xebf, 0x4, 0x8000)
sendmsg$auto(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_clone(0x80000000, 0x0, 0x1, 0x0, 0x0, 0x0)
ptrace$auto(0xf, r2, 0x200, 0x7)
ptrace$auto_PTRACE_SET_THREAD_AREA(0x1a, r2, 0x5, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xc4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\xfe\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?,\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1ff, 0xffe, 0x5, 0x717e, 0x0, 0x3, 0x200000000000003, 0xd, 0x2, 0x80001, 0x4, 0x1ffffffffffd, 0xb5, 0xfffffffffffffffe, 0x7, 0x80010002, 0x7f, 0x2a2, 0x5, 0xa, 0x22000, 0x6, 0x4, 0x84, 0x8, 0x0, 0x0, 0x3, 0xfffffffc, [0x56, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x46, 0x0, 0x0, 0x0, 0x0, 0x7, 0x6, 0x400, 0x0, 0x0, 0x7, 0x7ff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0xffffffffffffffff, 0x0, 0x8000000, 0x80000001, 0xffffffffffffffff, 0x3]}, 0x1fe, 0x69b51714)
r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffffffffffd03, &(0x7f00000001c0))
connect$auto(0x3, &(0x7f00000018c0)=@ethernet={0x1, @remote}, 0x8)
mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000)
mmap$auto(0x3, 0x46c, 0x3, 0x800000000000ebd, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0xd, 0x0)
r4 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000000380), r4)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000400)='/dev/midi2\x00', 0x24201, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x800, 0x0)
ioctl$auto(0xffffffffffffffff, 0x80a86f3d, 0x38)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/smt/control\x00', 0x2ab42, 0x0)

2.532507839s ago: executing program 1 (id=2286):
mmap$auto(0x0, 0x4000002, 0xfffffffffffffe01, 0x8051, 0x3, 0x0)
r0 = syz_clone(0x5004000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x503083, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x40800)
unshare$auto(0x40000080)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0)
bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)=@link_detach={r2}, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r4)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="05082dbd7000fbdbdf257e0000000800db00ab29dc931f0e02b7745be74fb8e8255f614f85f94bc5ef8facda4b1cb3e135ef23203752a9a06f5adc02fe10fd6059eb5ec860fbb39453d7ba92bd5a73e0e45ce2d585cccf203901d41ed36536bffcadc5fa27dbe72d209b4c922ee03aba35fb65731b21d405c9def0a3765c9b0ff8fbbff63336633bec215ead541e5766cb7e6a546c58ddbc3cbd", @ANYRESHEX=r0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4004044}, 0x20008000)
sendmsg$auto_NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f00000012c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001280)={0x0}, 0x1, 0x0, 0x0, 0x44811}, 0x10)
ioctl$auto_MON_IOCX_MFETCH(r3, 0xc0109207, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r3, 0xc0109207, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r6)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r8=>0x0})
r9 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x2041, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_TLV_READ(r9, 0xc008551a, &(0x7f0000000040)={0x1, 0xffffffba})
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r10, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01002cbd7000fcdbdf252100000008000300", @ANYRES32=r8], 0x28}}, 0x40480d0)
r11 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r13=>0x0})
r14 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r14, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="01002dbd7100f97bf53b7200000408000300", @ANYRES32=r13], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80)

2.361317479s ago: executing program 3 (id=2287):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
setsockopt$auto_SO_TIMESTAMPING_OLD(r2, 0x29, 0x25, &(0x7f0000000040)='%\x00', 0x3)
socket(0x2, 0x5, 0x0)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
ioctl$auto(0x3, 0x8905, 0x38)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)=ANY=[], 0x70}}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR64(r1, 0xc0884123, &(0x7f0000000480)={0x0, 0x0, @status={0x3730, 0x0, {}, 0x1, {}, {0x4, 0x8}, 0x1, 0x0, {0x7568, 0x2}}, @control={{}, 0xf67a, {}, {}, 0x8}})
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/neigh/vlan0/anycast_delay\x00', 0x88042, 0x0)
sendfile$auto(r5, r5, 0x0, 0xd021)
pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00', 0x100000002, 0x100000001)

2.254348778s ago: executing program 0 (id=2288):
mmap$auto(0x0, 0x24020009, 0x6, 0xeb1, 0x401, 0x8)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x5, 0x0)
semctl$auto(0x7, 0x2, 0x13, 0x1)
r1 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r1, 0x84, 0x10, 0x0, 0x0)
setsockopt$auto(r0, 0x0, 0x2e, 0x0, 0x108)
mmap$auto(0x0, 0x0, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1adac3, 0x0)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4)
r3 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/numa_maps\x00', 0x22000, 0x0)
read$auto_proc_sessionid_operations_base(r3, 0x0, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/0000:00:03.0/rescan\x00', 0xa001, 0x0)
write$auto(r4, &(0x7f00000002c0)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k>\xc8\x1f\xad\xf6\xf0\xef\xe4s\x95\xf2\x00\x97S\xb9O\xac\xbe\xd6\\J<\x02YK\xd6M\xe6\xe7\xa0\xb8\xc3[\x01\xc5\xe8|\xb0\xb0\x80\xbf\xa5?=i\x88UB\x1d\x8e\xd3\xc2\x949\xb6\xfb\x006\x02\x9c\x83\x14\x13\x99\xc7\xb4)M\xed\tN $\xd4\x90^?J\x92\x9a?\xf8b\x03\xd8\xdd\x84\xdf\x92\xf0\xcd\xd8\xba\xab\x15\x80\x9eo,\xc8\xf2\x82\xd2\x88\xbeL\xa0\x1a\xd3\xd5Of\x95\xee\x13e\xeb}o\x9b\x86_\xf0?\f<\xf3t7\xb6\x0f\x93\xc79@\xd8x\x9e\xef!\x006\b\xdbWB\x84\xdd\xac\xdau\x86g\x8f\x02@O7\x0f\xf8\x8d(\x9c\xf2NyD\x7f3\x14\x9eg\x86%)\xd6\b\xcd\x1f\x03\x00:\xa6\x83\'\xf4\xf2\x9dd\xf4z\x89\xc5D\xc4\x02\\\x81\xcf\x02Ep\xf6`\xde*\x1dV', 0x81)
write$auto_ocfs2_control_fops_stack_user(r2, &(0x7f0000003900)='\t', 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xc0400, 0x0)
socketpair$auto(0x1, 0x2, 0xfffffffd, 0x0)
open(0x0, 0x64842, 0x0)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ptyq3\x00', 0x561001, 0x0)
ioctl$auto_TIOCSETD2(r6, 0x5423, 0x0)
readv$auto(r5, &(0x7f00000000c0)={&(0x7f0000000000)="a4d18e357827aea4467c52d7d15e66267d4a75eee0517485c67e744349f93f332ce687729ce99e1a4ea9204e036bf74769a15eb68c49cae13741847da34df1e21d68baab8dc738d36fa1a400e7ea2027a68a14f12b18202dcfc4c4f13d4449faa997d776786ccd18447d0bf46881f8259ab41b55d08e8c0649d3c0578cd71e6f12cf95d894abf8800400048c06ab6978469b90eac3817531d06cb4853ac213ebe6", 0x5}, 0x1ff)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/virtual/block/loop13/queue/nr_requests\x00', 0x1, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000001140)=ANY=[@ANYBLOB="4c009154000000", @ANYRES16, @ANYBLOB="01002dbd7000f9dbdf25010000000600020000000000050007000200000008000b000a00000008000a0008000000050004000000000008000b000d00000006001b004e210000"], 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x400c004)
write$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f00000003c0)='4', 0x1)
socket(0xa, 0x3, 0x0)
mmap$auto(0x0, 0x3fffff, 0x7, 0x11, 0xdd, 0x0)

1.367214315s ago: executing program 2 (id=2289):
socket$nl_generic(0x10, 0x3, 0x10)
statmount$auto(0x0, 0x0, 0x200, 0x81)
mmap$auto(0xce, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/kexec_crash_loaded\x00', 0x100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000240)=""/140, 0x8c)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x23, 0xfffffffffffffff3, r1, 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
mmap$auto(0x9, 0x200, 0x4, 0x18, 0x3, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/block/nbd5/hctx0/cpu1/read_rq_list\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0x8080)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/fail-nth\x00', 0x204800, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
bpf$auto(0x0, 0x0, 0x6f4)
write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x01\x00\x01\x00\x00\x00\x00\x00\xc7k', 0x81)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x6, 0x10000000)
r5 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000100), 0x80080, 0x0)
r6 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0)
ioctl$auto_UI_DEV_SETUP(r6, 0x405c5503, &(0x7f0000000400)={{0xc, 0x23, 0xa6, 0x83}, "66ac010005000000000068d190eb0d4a4cada7272464294b9183349eef4c1f028fdcc8ecc66fdd02316f064ebd893007abb4c0bbc3b822f66eaf240963110d61771552c03de65800", 0x2})
ioctl$auto_UI_DEV_CREATE(r6, 0x5501, 0x0)
socket(0x29, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
msgctl$auto_IPC_INFO(0x3, 0x3, &(0x7f0000000180)={{0x9, 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x101, 0x2}, 0x0, 0x0, 0x1, 0x1000, 0x94, 0x8, 0x1, 0x31, 0x100, 0x3})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYRES8=r5], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
close_range$auto(0x2, 0x8, 0x0)

1.175589373s ago: executing program 1 (id=2290):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x2041, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000400)={0x400, 0xffffffba})

989.938157ms ago: executing program 1 (id=2292):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/machinecheck/machinecheck0/cmci_disabled\x00', 0x2062, 0x0)
write$auto(r0, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/v4l-subdev0\x00', 0x0, 0x0)
statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x4, 0x8000)
sendmsg$auto(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_clone(0x80000000, 0x0, 0x1, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r3, 0x400000003, 0x7)
ptrace$auto_PTRACE_SET_THREAD_AREA(0x1a, r3, 0x5, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1ff, 0x1001, 0x5, 0x717e, 0x0, 0x7, 0x200000000000003, 0xd, 0x2, 0x80001, 0x4, 0x1ffffffffffd, 0xb5, 0xfffffffffffffffe, 0x7, 0x10002, 0x9, 0x2a2, 0x5, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x8, 0x0, 0x0, 0x0, 0xfffffffc, [0x56, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x46, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4, 0x400, 0x0, 0x0, 0x200000000000000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x8000000, 0x80000001, 0xffffffffffffffff, 0x3]}, 0x1fe, 0xd)
r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffffffffffd01, &(0x7f00000005c0)="ed2a735b4b0bb6ee90acb2c935b31bd550cc2a2b971b4d4718c4000000000000dc72e122c0a993e484747659d3a715bd6a186a7f707fb7afa3e7319b3e36b88ff4e9997bc265326f54e96a3df538f1be16d45e0e4af8b80650fb6fd1060c46cb2daab3e4f12e59212e4a0400eeaf718fa69f52b6f9b82cffbce673555fe4b2a10c84f668fc74927d8e6c06dbdefaaa53c244b0528cb63bfe91ca14a7dc67cb4daec227c8ee86f1aeb71d3b700c1d4742ad6908b4793b946110b25dd26eac463d5d7004a0d218ed227be2efd50a138aec568d4aadac22aee0120f987e2a9e7771d9")
connect$auto(0x3, &(0x7f00000018c0)=@ethernet={0x1, @remote}, 0x8)
mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000)
mmap$auto(0x3, 0x46c, 0x3, 0x800000000000ebd, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0xd, 0x0)
r5 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r5, 0x8, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000000040), r2)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000400)='/dev/dmmidi2\x00', 0x24201, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x800, 0x0)
ioctl$auto(0xffffffffffffffff, 0x80a86f3d, 0x38)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/smt/control\x00', 0x2ab42, 0x0)

811.119134ms ago: executing program 0 (id=2293):
setgroups$auto(0xa1, &(0x7f0000000000)=0xc)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xfffffffc}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4002000}, 0x40010)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop5\x00', 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r3, 0xc0481273, 0x0)
mmap$auto(0x8, 0x6, 0x3, 0x13, 0xffffffffffffffff, 0x400)
prctl$auto(0x3d, 0x40005, 0x0, 0x6, 0x0)
ioctl$auto_TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000100)=0x5)

264.694098ms ago: executing program 2 (id=2294):
r0 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000040)='/proc/version\x00', 0x101001, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r1, 0x10f, 0x6, 0x0, 0x9b5)
pread64$auto(r0, &(0x7f0000000240)='}\xf7\x1dG\x9d\x95\xc3%9\x8d\x1c\xba\x95\x03\xd7\xe3\xf5\x03\x9aI3\xc6\xc2\x90Q\x18\xb93\x16\\zW\xe2\xe8&`(\xd8<H[\x91L5\xb4\x8a.\x13\xcc\x19,\xeby~v\x8e\x0f\x81\xc0j;\x85\r\xe2\xc7\xb9\xc1%\xc5\xc1\xe2\xf5s\x1fr\x16\fS\x0e\xe0qD\x9dE^\xc0\x92\nz1\x01\x9d\xbb(\xdc8]UE\xcd\xe8yT\xb3\xdck\x9a\xa3ZX0\x84\xd3\x8a\xef\x82\xae\x8b\x17\xbbG/N\x1aw\x95\b\x80\xe8%\xef\xbb\xd9;\xe0S@\xe1\xe5\xbd\x88}\xdf\f\xea\x81\xce', 0x81, 0x2)
write$auto_console_fops_tty_io(r0, &(0x7f0000000180)="ca91619fc5598d7ac973b84714e2bdc0098dc505dd62130633", 0x19)
openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = pipe$auto(0x0)
ioctl$auto_SNDRV_PCM_IOCTL_RESUME2(r2, 0x4147, 0x0)
write$auto_tracing_mark_fops_trace(r2, &(0x7f0000000080)="4e848cd7d3ab9bed924968b34583569e3fa58ac12036f156e4e83f28de5285d733de957b8f60e58d0c23f72df6c6e37b2c2cbacc4c79586e477cfd3f852447cdca9283011228692577e1fd8827c4c5d91ef4a684197afae14df32fa6a4de17fdf7ef62a59e431e8b8ab0bb87a49c00dd772e7dc030582246cdaafb1cc035ef2e70ba2a49031ec82db777026a56f67fcfee11949e6ba12f2e6fd91d1f1155ac90fa762fa968a6e8271d30fdfbeec1fa3d73ac94143638c318b527288d459075b26e446dd0126c8de2", 0xc8)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
write$auto_ocfs2_control_fops_stack_user(r2, 0x0, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/uvcvideo/parameters/clock\x00', 0xb02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x7ff)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
read$auto(r4, 0x0, 0xfdef)
mmap$auto(0x4, 0x7, 0x400002, 0x41eb1, 0x602, 0x300000000000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)

0s ago: executing program 0 (id=2295):
r0 = openat$auto_clear_warn_once_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
write$auto(r0, &(0x7f0000000080)='9\x00d1L\xff\x15\xba\xa17\t\x00\x00\x00\x00\n\x00\x00^\xa1/[`.\xf7~\xd2\xfd\xf3\x95\x1d\xf8\x06\x00\x00\x00\x00\x00\x00\x00\xf8-\x10\xa6\xa0\n\xd1\xdd\xc9WY\n\x87\xcc\xb1([\xd1n2\xcd2\x05\x00\x00\x00', 0x40400)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='9\x00;T\x16\b\x06\x00\x00\x00\xecQ\xb4\xa2;\xfbj\x98\x05?\xe6\xf8i\x03\b\xfaP\x88\xaf\xae\xf1[c\xab\xdc\xe2\\\x98o\x0e\xf6\xe4\xcci>>\xf5\xf0w\xfc\xfb6h\x1c98\':Y<\xd4\xe9^\xcb.\x93\xcaQ\xdb\"P\xc0\xd8`\xbbqP\xb8\xc5\xd7\x18\xa1\xc4\xdf\xbe\xdb\x14\x18Y\xcb\x7f\xf4', 0x40000012)
getsockopt$auto_SO_PREFER_BUSY_POLL(0xffffffffffffffff, 0x200, 0x45, &(0x7f0000000000)='-)\x00', &(0x7f0000000040))

kernel console output (not intermixed with test programs):

00000 RSI: 0000000000000080 RDI: 00007f8da3a15fa8
[  636.294978][T15458] RBP: 00007f8da3a15fa0 R08: 0000000000000000 R09: 0000000000000000
[  636.294987][T15458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  636.294996][T15458] R13: 00007f8da3a16038 R14: 00007ffffb69e4b0 R15: 00007ffffb69e598
[  636.295016][T15458]  </TASK>
[  636.779879][T15460] sd 0:0:1:0: device reset
[  636.826409][ T6144] Bluetooth: hci1: command 0x0c1a tx timeout
[  636.833742][ T6144] Bluetooth: hci0: command 0x0c1a tx timeout
[  636.840030][ T6144] Bluetooth: hci2: command 0x0c1a tx timeout
[  636.902985][T15461] FAULT_INJECTION: forcing a failure.
[  636.902985][T15461] name failslab, interval 1, probability 0, space 0, times 0
[  636.980171][T12082] Bluetooth: hci3: command 0x0c1a tx timeout
[  637.024285][T15461] CPU: 0 UID: 0 PID: 15461 Comm: syz.1.1886 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  637.024312][T15461] Tainted: [L]=SOFTLOCKUP
[  637.024318][T15461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  637.024328][T15461] Call Trace:
[  637.024333][T15461]  <TASK>
[  637.024340][T15461]  dump_stack_lvl+0x100/0x190
[  637.024368][T15461]  should_fail_ex.cold+0x5/0xa
[  637.024388][T15461]  should_failslab+0xc2/0x120
[  637.024404][T15461]  __kmalloc_cache_noprof+0x7a/0x6f0
[  637.024424][T15461]  ? vkms_plane_duplicate_state+0x45/0x130
[  637.024452][T15461]  vkms_plane_duplicate_state+0x45/0x130
[  637.024475][T15461]  drm_atomic_get_plane_state+0x279/0x760
[  637.024503][T15461]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  637.024523][T15461]  ? trace_contention_end+0x140/0x180
[  637.024546][T15461]  ? __mutex_lock+0x26a/0x1b90
[  637.024566][T15461]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  637.024586][T15461]  ? drm_master_internal_acquire+0x21/0x80
[  637.024623][T15461]  drm_client_modeset_commit_locked+0x14d/0x580
[  637.024645][T15461]  drm_client_modeset_commit+0x4f/0x80
[  637.024664][T15461]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  637.024686][T15461]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  637.024707][T15461]  drm_fbdev_client_restore+0x1b/0x30
[  637.024730][T15461]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  637.024752][T15461]  drm_client_dev_restore+0x205/0x2a0
[  637.024774][T15461]  drm_release+0x2c6/0x360
[  637.024791][T15461]  ? __pfx_drm_release+0x10/0x10
[  637.024808][T15461]  __fput+0x3ff/0xb40
[  637.024830][T15461]  task_work_run+0x150/0x240
[  637.024852][T15461]  ? __pfx_task_work_run+0x10/0x10
[  637.024879][T15461]  exit_to_user_mode_loop+0x100/0x4a0
[  637.024901][T15461]  do_syscall_64+0x668/0xf80
[  637.024925][T15461]  ? clear_bhb_loop+0x40/0x90
[  637.024950][T15461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  637.024967][T15461] RIP: 0033:0x7f219a19c799
[  637.024981][T15461] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  637.024997][T15461] RSP: 002b:00007f219b07b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  637.025011][T15461] RAX: 0000000000000000 RBX: 00007f219a415fa0 RCX: 00007f219a19c799
[  637.025021][T15461] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  637.025030][T15461] RBP: 00007f219a232c99 R08: 0000000000000000 R09: 0000000000000000
[  637.025039][T15461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  637.025048][T15461] R13: 00007f219a416038 R14: 00007f219a415fa0 R15: 00007ffd77432b98
[  637.025069][T15461]  </TASK>
[  637.289081][T15461] sd 0:0:1:0: device reset
[  640.404682][T15488] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  640.461878][T15488] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  640.501667][T15488] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  640.549548][T15488] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  640.943604][T15504] netlink: 206 bytes leftover after parsing attributes in process `syz.1.1895'.
[  641.659066][T15518] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1897'.
[  641.819800][T12082] Bluetooth: hci0: command 0x0c1a tx timeout
[  641.896365][T15515] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1897'.
[  642.008835][T15523] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1898'.
[  642.152237][T15533] openvswitch: HfR: Dropping previously announced user features
[  642.539364][T12082] Bluetooth: hci2: command 0x0c1a tx timeout
[  642.545475][ T6144] Bluetooth: hci1: command 0x0c1a tx timeout
[  642.619336][T12082] Bluetooth: hci3: command 0x0c1a tx timeout
[  643.873710][T15578] sd 0:0:1:0: device reset
[  643.948126][T15561] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  644.007503][T15561] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  644.075789][T15561] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  644.147429][T15561] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  644.237952][T15585] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1910'.
[  644.434310][T15587] openvswitch: HfR: Dropping previously announced user features
[  645.556037][T15616] FAULT_INJECTION: forcing a failure.
[  645.556037][T15616] name failslab, interval 1, probability 0, space 0, times 0
[  645.698795][T15593] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  645.730089][T15593] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  645.736218][T15616] CPU: 0 UID: 0 PID: 15616 Comm: syz.1.1916 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  645.736246][T15616] Tainted: [L]=SOFTLOCKUP
[  645.736252][T15616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  645.736262][T15616] Call Trace:
[  645.736268][T15616]  <TASK>
[  645.736276][T15616]  dump_stack_lvl+0x100/0x190
[  645.736303][T15616]  should_fail_ex.cold+0x5/0xa
[  645.736324][T15616]  should_failslab+0xc2/0x120
[  645.736340][T15616]  __kmalloc_cache_noprof+0x7a/0x6f0
[  645.736359][T15616]  ? vkms_plane_duplicate_state+0x45/0x130
[  645.736387][T15616]  vkms_plane_duplicate_state+0x45/0x130
[  645.736411][T15616]  drm_atomic_get_plane_state+0x279/0x760
[  645.736439][T15616]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  645.736459][T15616]  ? trace_contention_end+0x140/0x180
[  645.736482][T15616]  ? __mutex_lock+0x26a/0x1b90
[  645.736501][T15616]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  645.736520][T15616]  ? drm_master_internal_acquire+0x21/0x80
[  645.736556][T15616]  drm_client_modeset_commit_locked+0x14d/0x580
[  645.736579][T15616]  drm_client_modeset_commit+0x4f/0x80
[  645.736599][T15616]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  645.736622][T15616]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  645.736642][T15616]  drm_fbdev_client_restore+0x1b/0x30
[  645.736666][T15616]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  645.736688][T15616]  drm_client_dev_restore+0x205/0x2a0
[  645.736710][T15616]  drm_release+0x2c6/0x360
[  645.736727][T15616]  ? __pfx_drm_release+0x10/0x10
[  645.736743][T15616]  __fput+0x3ff/0xb40
[  645.736766][T15616]  task_work_run+0x150/0x240
[  645.736788][T15616]  ? __pfx_task_work_run+0x10/0x10
[  645.736815][T15616]  exit_to_user_mode_loop+0x100/0x4a0
[  645.736837][T15616]  do_syscall_64+0x668/0xf80
[  645.736855][T15616]  ? clear_bhb_loop+0x40/0x90
[  645.736874][T15616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  645.736890][T15616] RIP: 0033:0x7f219a19c799
[  645.736903][T15616] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  645.736919][T15616] RSP: 002b:00007f219b07b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  645.736935][T15616] RAX: 0000000000000000 RBX: 00007f219a415fa0 RCX: 00007f219a19c799
[  645.736945][T15616] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  645.736954][T15616] RBP: 00007f219a232c99 R08: 0000000000000000 R09: 0000000000000000
[  645.736964][T15616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  645.736974][T15616] R13: 00007f219a416038 R14: 00007f219a415fa0 R15: 00007ffd77432b98
[  645.736995][T15616]  </TASK>
[  646.009480][T15616] sd 0:0:1:0: device reset
[  646.118959][T15593] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  646.125073][T15593] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  647.182026][ T6144] Bluetooth: hci0: command 0x0c1a tx timeout
[  647.501271][T15645] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1923'.
[  647.541599][T15645] openvswitch: HfR: Dropping previously announced user features
[  647.743816][ T6144] Bluetooth: hci1: command 0x0c1a tx timeout
[  647.765978][T15654] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1928'.
[  648.382703][ T6144] Bluetooth: hci3: command 0x0c1a tx timeout
[  648.388968][T12082] Bluetooth: hci2: command 0x0c1a tx timeout
[  649.440750][T15690] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1935'.
[  649.498277][T15693] openvswitch: HfR: Dropping previously announced user features
[  649.589442][T15691] NFSD: Failed to start, no listeners configured.
[  652.670515][T15760] FAULT_INJECTION: forcing a failure.
[  652.670515][T15760] name failslab, interval 1, probability 0, space 0, times 0
[  652.894665][T15760] CPU: 0 UID: 0 PID: 15760 Comm: syz.0.1951 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  652.894694][T15760] Tainted: [L]=SOFTLOCKUP
[  652.894700][T15760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  652.894710][T15760] Call Trace:
[  652.894716][T15760]  <TASK>
[  652.894723][T15760]  dump_stack_lvl+0x100/0x190
[  652.894751][T15760]  should_fail_ex.cold+0x5/0xa
[  652.894771][T15760]  should_failslab+0xc2/0x120
[  652.894788][T15760]  __kmalloc_cache_noprof+0x7a/0x6f0
[  652.894808][T15760]  ? vkms_plane_duplicate_state+0x45/0x130
[  652.894836][T15760]  vkms_plane_duplicate_state+0x45/0x130
[  652.894860][T15760]  drm_atomic_get_plane_state+0x279/0x760
[  652.894887][T15760]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  652.894907][T15760]  ? trace_contention_end+0x140/0x180
[  652.894930][T15760]  ? __mutex_lock+0x26a/0x1b90
[  652.894949][T15760]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  652.894968][T15760]  ? drm_master_internal_acquire+0x21/0x80
[  652.895004][T15760]  drm_client_modeset_commit_locked+0x14d/0x580
[  652.895026][T15760]  drm_client_modeset_commit+0x4f/0x80
[  652.895046][T15760]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  652.895068][T15760]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  652.895089][T15760]  drm_fbdev_client_restore+0x1b/0x30
[  652.895112][T15760]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  652.895135][T15760]  drm_client_dev_restore+0x205/0x2a0
[  652.895157][T15760]  drm_release+0x2c6/0x360
[  652.895174][T15760]  ? __pfx_drm_release+0x10/0x10
[  652.895191][T15760]  __fput+0x3ff/0xb40
[  652.895213][T15760]  task_work_run+0x150/0x240
[  652.895235][T15760]  ? __pfx_task_work_run+0x10/0x10
[  652.895261][T15760]  exit_to_user_mode_loop+0x100/0x4a0
[  652.895284][T15760]  do_syscall_64+0x668/0xf80
[  652.895301][T15760]  ? clear_bhb_loop+0x40/0x90
[  652.895320][T15760]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  652.895335][T15760] RIP: 0033:0x7fd54bd9c799
[  652.895349][T15760] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  652.895364][T15760] RSP: 002b:00007fd54cca9028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  652.895379][T15760] RAX: 0000000000000000 RBX: 00007fd54c015fa0 RCX: 00007fd54bd9c799
[  652.895389][T15760] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  652.895397][T15760] RBP: 00007fd54be32c99 R08: 0000000000000000 R09: 0000000000000000
[  652.895407][T15760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  652.895416][T15760] R13: 00007fd54c016038 R14: 00007fd54c015fa0 R15: 00007ffd50bce3b8
[  652.895445][T15760]  </TASK>
[  652.898384][T15769] sd 0:0:1:0: device reset
[  658.102788][T15795] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1960'.
[  658.179960][T15800] FAULT_INJECTION: forcing a failure.
[  658.179960][T15800] name failslab, interval 1, probability 0, space 0, times 0
[  658.248001][T15800] CPU: 0 UID: 0 PID: 15800 Comm: syz.3.1962 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  658.248029][T15800] Tainted: [L]=SOFTLOCKUP
[  658.248035][T15800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  658.248045][T15800] Call Trace:
[  658.248053][T15800]  <TASK>
[  658.248060][T15800]  dump_stack_lvl+0x100/0x190
[  658.248088][T15800]  should_fail_ex.cold+0x5/0xa
[  658.248109][T15800]  should_failslab+0xc2/0x120
[  658.248125][T15800]  __kmalloc_cache_noprof+0x7a/0x6f0
[  658.248144][T15800]  ? vkms_plane_duplicate_state+0x45/0x130
[  658.248171][T15800]  vkms_plane_duplicate_state+0x45/0x130
[  658.248194][T15800]  drm_atomic_get_plane_state+0x279/0x760
[  658.248222][T15800]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  658.248242][T15800]  ? trace_contention_end+0x140/0x180
[  658.248265][T15800]  ? __mutex_lock+0x26a/0x1b90
[  658.248283][T15800]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  658.248303][T15800]  ? drm_master_internal_acquire+0x21/0x80
[  658.248338][T15800]  drm_client_modeset_commit_locked+0x14d/0x580
[  658.248360][T15800]  drm_client_modeset_commit+0x4f/0x80
[  658.248380][T15800]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  658.248402][T15800]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  658.248423][T15800]  drm_fbdev_client_restore+0x1b/0x30
[  658.248447][T15800]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  658.248470][T15800]  drm_client_dev_restore+0x205/0x2a0
[  658.248492][T15800]  drm_release+0x2c6/0x360
[  658.248509][T15800]  ? __pfx_drm_release+0x10/0x10
[  658.248525][T15800]  __fput+0x3ff/0xb40
[  658.248547][T15800]  task_work_run+0x150/0x240
[  658.248569][T15800]  ? __pfx_task_work_run+0x10/0x10
[  658.248596][T15800]  exit_to_user_mode_loop+0x100/0x4a0
[  658.248618][T15800]  do_syscall_64+0x668/0xf80
[  658.248635][T15800]  ? clear_bhb_loop+0x40/0x90
[  658.248654][T15800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.248670][T15800] RIP: 0033:0x7fb43f59c799
[  658.248684][T15800] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  658.248700][T15800] RSP: 002b:00007fb440427028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  658.248715][T15800] RAX: 0000000000000000 RBX: 00007fb43f815fa0 RCX: 00007fb43f59c799
[  658.248725][T15800] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  658.248735][T15800] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  658.248744][T15800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  658.248753][T15800] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  658.248775][T15800]  </TASK>
[  658.793261][T15801] openvswitch: HfR: Dropping previously announced user features
[  658.804734][T15789] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  658.847515][T15789] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  658.887568][T15789] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  658.893629][T15789] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  659.712918][T15800] sd 0:0:1:0: device reset
[  660.309093][T15826] FAULT_INJECTION: forcing a failure.
[  660.309093][T15826] name failslab, interval 1, probability 0, space 0, times 0
[  660.349924][T15826] CPU: 0 UID: 0 PID: 15826 Comm: syz.3.1967 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  660.349952][T15826] Tainted: [L]=SOFTLOCKUP
[  660.349958][T15826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  660.349968][T15826] Call Trace:
[  660.349974][T15826]  <TASK>
[  660.349980][T15826]  dump_stack_lvl+0x100/0x190
[  660.350009][T15826]  should_fail_ex.cold+0x5/0xa
[  660.350029][T15826]  should_failslab+0xc2/0x120
[  660.350046][T15826]  __kmalloc_cache_noprof+0x7a/0x6f0
[  660.350066][T15826]  ? vkms_plane_duplicate_state+0x87/0x130
[  660.350093][T15826]  vkms_plane_duplicate_state+0x87/0x130
[  660.350117][T15826]  drm_atomic_get_plane_state+0x279/0x760
[  660.350145][T15826]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  660.350165][T15826]  ? trace_contention_end+0x140/0x180
[  660.350188][T15826]  ? __mutex_lock+0x26a/0x1b90
[  660.350207][T15826]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  660.350264][T15826]  ? drm_master_internal_acquire+0x21/0x80
[  660.350318][T15826]  drm_client_modeset_commit_locked+0x14d/0x580
[  660.350351][T15826]  drm_client_modeset_commit+0x4f/0x80
[  660.350370][T15826]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  660.350394][T15826]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  660.350415][T15826]  drm_fbdev_client_restore+0x1b/0x30
[  660.350446][T15826]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  660.350470][T15826]  drm_client_dev_restore+0x205/0x2a0
[  660.350493][T15826]  drm_release+0x2c6/0x360
[  660.350510][T15826]  ? __pfx_drm_release+0x10/0x10
[  660.350526][T15826]  __fput+0x3ff/0xb40
[  660.350549][T15826]  task_work_run+0x150/0x240
[  660.350572][T15826]  ? __pfx_task_work_run+0x10/0x10
[  660.350599][T15826]  exit_to_user_mode_loop+0x100/0x4a0
[  660.350621][T15826]  do_syscall_64+0x668/0xf80
[  660.350639][T15826]  ? clear_bhb_loop+0x40/0x90
[  660.350658][T15826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  660.350674][T15826] RIP: 0033:0x7fb43f59c799
[  660.350688][T15826] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  660.350703][T15826] RSP: 002b:00007fb440427028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  660.350719][T15826] RAX: 0000000000000000 RBX: 00007fb43f815fa0 RCX: 00007fb43f59c799
[  660.350729][T15826] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  660.350738][T15826] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  660.350748][T15826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  660.350757][T15826] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  660.350779][T15826]  </TASK>
[  661.042686][T12082] Bluetooth: hci3: command 0x0c1a tx timeout
[  661.048859][T12082] Bluetooth: hci2: command 0x0c1a tx timeout
[  661.054964][T12082] Bluetooth: hci1: command 0x0c1a tx timeout
[  661.229653][T15826] sd 0:0:1:0: device reset
[  661.251526][T15811] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  661.296982][T15811] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  661.329462][T15811] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  661.439708][T15811] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  661.509557][ T6144] Bluetooth: hci0: command 0x0c1a tx timeout
[  661.578379][T15810] Process accounting resumed
[  661.800920][T15835] FAULT_INJECTION: forcing a failure.
[  661.800920][T15835] name failslab, interval 1, probability 0, space 0, times 0
[  661.886146][T15835] CPU: 0 UID: 0 PID: 15835 Comm: syz.3.1969 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  661.886174][T15835] Tainted: [L]=SOFTLOCKUP
[  661.886180][T15835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  661.886190][T15835] Call Trace:
[  661.886196][T15835]  <TASK>
[  661.886203][T15835]  dump_stack_lvl+0x100/0x190
[  661.886231][T15835]  should_fail_ex.cold+0x5/0xa
[  661.886251][T15835]  should_failslab+0xc2/0x120
[  661.886268][T15835]  __kmalloc_cache_noprof+0x7a/0x6f0
[  661.886287][T15835]  ? vkms_plane_duplicate_state+0x87/0x130
[  661.886315][T15835]  vkms_plane_duplicate_state+0x87/0x130
[  661.886338][T15835]  drm_atomic_get_plane_state+0x279/0x760
[  661.886365][T15835]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  661.886385][T15835]  ? trace_contention_end+0x140/0x180
[  661.886408][T15835]  ? __mutex_lock+0x26a/0x1b90
[  661.886428][T15835]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  661.886448][T15835]  ? drm_master_internal_acquire+0x21/0x80
[  661.886484][T15835]  drm_client_modeset_commit_locked+0x14d/0x580
[  661.886506][T15835]  drm_client_modeset_commit+0x4f/0x80
[  661.886525][T15835]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  661.886548][T15835]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  661.886575][T15835]  drm_fbdev_client_restore+0x1b/0x30
[  661.886600][T15835]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  661.886623][T15835]  drm_client_dev_restore+0x205/0x2a0
[  661.886647][T15835]  drm_release+0x2c6/0x360
[  661.886664][T15835]  ? __pfx_drm_release+0x10/0x10
[  661.886680][T15835]  __fput+0x3ff/0xb40
[  661.886703][T15835]  task_work_run+0x150/0x240
[  661.886725][T15835]  ? __pfx_task_work_run+0x10/0x10
[  661.886752][T15835]  exit_to_user_mode_loop+0x100/0x4a0
[  661.886774][T15835]  do_syscall_64+0x668/0xf80
[  661.886792][T15835]  ? clear_bhb_loop+0x40/0x90
[  661.886811][T15835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  661.886827][T15835] RIP: 0033:0x7fb43f59c799
[  661.886840][T15835] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  661.886855][T15835] RSP: 002b:00007fb440427028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  661.886870][T15835] RAX: 0000000000000000 RBX: 00007fb43f815fa0 RCX: 00007fb43f59c799
[  661.886880][T15835] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  661.886889][T15835] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  661.886898][T15835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  661.886907][T15835] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  661.886928][T15835]  </TASK>
[  662.155005][T15841] sd 0:0:1:0: device reset
[  663.316814][T15852] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1973'.
[  663.349899][ T6144] Bluetooth: hci2: command 0x0c1a tx timeout
[  663.355981][T12082] Bluetooth: hci1: command 0x0c1a tx timeout
[  663.381706][T15855] openvswitch: HfR: Dropping previously announced user features
[  663.481240][T15846] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  663.515819][ T6144] Bluetooth: hci3: command 0x0c1a tx timeout
[  663.605805][T15846] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  663.605958][T15846] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  663.606096][T15846] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  664.059146][T15853] hub 1-0:1.0: USB hub found
[  664.064967][T15853] hub 1-0:1.0: 1 port detected
[  664.855582][T15884] FAULT_INJECTION: forcing a failure.
[  664.855582][T15884] name failslab, interval 1, probability 0, space 0, times 0
[  664.855616][T15884] CPU: 0 UID: 0 PID: 15884 Comm: syz.1.1981 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  664.855641][T15884] Tainted: [L]=SOFTLOCKUP
[  664.855647][T15884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  664.855657][T15884] Call Trace:
[  664.855662][T15884]  <TASK>
[  664.855669][T15884]  dump_stack_lvl+0x100/0x190
[  664.855696][T15884]  should_fail_ex.cold+0x5/0xa
[  664.855716][T15884]  should_failslab+0xc2/0x120
[  664.855733][T15884]  __kmalloc_cache_noprof+0x7a/0x6f0
[  664.855753][T15884]  ? vkms_plane_duplicate_state+0x45/0x130
[  664.855781][T15884]  vkms_plane_duplicate_state+0x45/0x130
[  664.855805][T15884]  drm_atomic_get_plane_state+0x279/0x760
[  664.855833][T15884]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  664.855853][T15884]  ? trace_contention_end+0x140/0x180
[  664.855878][T15884]  ? __mutex_lock+0x26a/0x1b90
[  664.855897][T15884]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  664.855917][T15884]  ? drm_master_internal_acquire+0x21/0x80
[  664.855952][T15884]  drm_client_modeset_commit_locked+0x14d/0x580
[  664.855974][T15884]  drm_client_modeset_commit+0x4f/0x80
[  664.855994][T15884]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  664.856016][T15884]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  664.856038][T15884]  drm_fbdev_client_restore+0x1b/0x30
[  664.856061][T15884]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  664.856083][T15884]  drm_client_dev_restore+0x205/0x2a0
[  664.856105][T15884]  drm_release+0x2c6/0x360
[  664.856121][T15884]  ? __pfx_drm_release+0x10/0x10
[  664.856137][T15884]  __fput+0x3ff/0xb40
[  664.856160][T15884]  task_work_run+0x150/0x240
[  664.856182][T15884]  ? __pfx_task_work_run+0x10/0x10
[  664.856208][T15884]  exit_to_user_mode_loop+0x100/0x4a0
[  664.856230][T15884]  do_syscall_64+0x668/0xf80
[  664.856247][T15884]  ? clear_bhb_loop+0x40/0x90
[  664.856266][T15884]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  664.856282][T15884] RIP: 0033:0x7f219a19c799
[  664.856296][T15884] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  664.856311][T15884] RSP: 002b:00007f219b07b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  664.856326][T15884] RAX: 0000000000000000 RBX: 00007f219a415fa0 RCX: 00007f219a19c799
[  664.856336][T15884] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  664.856345][T15884] RBP: 00007f219a232c99 R08: 0000000000000000 R09: 0000000000000000
[  664.856354][T15884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  664.856363][T15884] R13: 00007f219a416038 R14: 00007f219a415fa0 R15: 00007ffd77432b98
[  664.856384][T15884]  </TASK>
[  664.952009][ T6144] Bluetooth: hci0: command 0x0c1a tx timeout
[  665.002382][T15888] sd 0:0:1:0: device reset
[  665.343797][T15895] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1984'.
[  665.585694][T15892] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1984'.
[  665.641640][T15900] block2mtd: error: cannot open device çi
[  665.670945][ T6144] Bluetooth: hci3: command 0x0c1a tx timeout
[  665.670977][ T6144] Bluetooth: hci2: command 0x0c1a tx timeout
[  665.670997][ T6144] Bluetooth: hci1: command 0x0c1a tx timeout
[  667.263591][T15941] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1991'.
[  667.302170][T15941] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1991'.
[  667.462860][T15930] hub 1-0:1.0: USB hub found
[  667.465111][T15930] hub 1-0:1.0: 1 port detected
[  667.500592][T15928] hub 1-0:1.0: USB hub found
[  667.507982][T15928] hub 1-0:1.0: 1 port detected
[  668.049927][T12082] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  670.074325][T12082] Bluetooth: hci3: command 0x0c1a tx timeout
[  671.754075][T16000] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  671.791071][T16000] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  671.818305][T16000] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  671.883358][T16000] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  671.914063][T16015] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2004'.
[  672.042451][T16016] openvswitch: HfR: Dropping previously announced user features
[  672.118102][T16018] Zero length message leads to an empty skb
[  673.274795][ T6144] Bluetooth: hci0: command 0x0c1a tx timeout
[  673.722683][T16057] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2011'.
[  673.835007][ T6144] Bluetooth: hci2: command 0x0c1a tx timeout
[  673.841499][T12082] Bluetooth: hci1: command 0x0c1a tx timeout
[  673.915681][ T6144] Bluetooth: hci3: command 0x0c1a tx timeout
[  673.942273][T16054] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2011'.
[  674.190786][T16060] block nbd8: Unsupported socket: should be TCP or UNIX.
[  674.588551][T16066] sd 0:0:1:0: device reset
[  674.647276][T16074] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2015'.
[  674.846483][T16077] openvswitch: HfR: Dropping previously announced user features
[  675.345220][T16086] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2016'.
[  675.369970][T16090] FAULT_INJECTION: forcing a failure.
[  675.369970][T16090] name failslab, interval 1, probability 0, space 0, times 0
[  675.445473][T16090] CPU: 0 UID: 0 PID: 16090 Comm: syz.3.2017 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  675.445501][T16090] Tainted: [L]=SOFTLOCKUP
[  675.445507][T16090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  675.445517][T16090] Call Trace:
[  675.445523][T16090]  <TASK>
[  675.445530][T16090]  dump_stack_lvl+0x100/0x190
[  675.445558][T16090]  should_fail_ex.cold+0x5/0xa
[  675.445579][T16090]  should_failslab+0xc2/0x120
[  675.445599][T16090]  __kmalloc_cache_noprof+0x7a/0x6f0
[  675.445619][T16090]  ? vkms_plane_duplicate_state+0x87/0x130
[  675.445647][T16090]  vkms_plane_duplicate_state+0x87/0x130
[  675.445670][T16090]  drm_atomic_get_plane_state+0x279/0x760
[  675.445697][T16090]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  675.445717][T16090]  ? trace_contention_end+0x140/0x180
[  675.445741][T16090]  ? __mutex_lock+0x26a/0x1b90
[  675.445761][T16090]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  675.445780][T16090]  ? drm_master_internal_acquire+0x21/0x80
[  675.445816][T16090]  drm_client_modeset_commit_locked+0x14d/0x580
[  675.445839][T16090]  drm_client_modeset_commit+0x4f/0x80
[  675.445859][T16090]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  675.445881][T16090]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  675.445901][T16090]  drm_fbdev_client_restore+0x1b/0x30
[  675.445931][T16090]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  675.445965][T16090]  drm_client_dev_restore+0x205/0x2a0
[  675.445988][T16090]  drm_release+0x2c6/0x360
[  675.446006][T16090]  ? __pfx_drm_release+0x10/0x10
[  675.446023][T16090]  __fput+0x3ff/0xb40
[  675.446047][T16090]  task_work_run+0x150/0x240
[  675.446069][T16090]  ? __pfx_task_work_run+0x10/0x10
[  675.446096][T16090]  exit_to_user_mode_loop+0x100/0x4a0
[  675.446118][T16090]  do_syscall_64+0x668/0xf80
[  675.446135][T16090]  ? clear_bhb_loop+0x40/0x90
[  675.446154][T16090]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  675.446170][T16090] RIP: 0033:0x7fb43f59c799
[  675.446184][T16090] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  675.446200][T16090] RSP: 002b:00007fb440427028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  675.446215][T16090] RAX: 0000000000000000 RBX: 00007fb43f815fa0 RCX: 00007fb43f59c799
[  675.446225][T16090] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  675.446235][T16090] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  675.446251][T16090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  675.446261][T16090] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  675.446283][T16090]  </TASK>
[  676.988956][T16120] sd 0:0:1:0: device reset
[  677.932200][T16125] FAULT_INJECTION: forcing a failure.
[  677.932200][T16125] name failslab, interval 1, probability 0, space 0, times 0
[  678.007044][T16125] CPU: 0 UID: 0 PID: 16125 Comm: syz.1.2023 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  678.007071][T16125] Tainted: [L]=SOFTLOCKUP
[  678.007077][T16125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  678.007087][T16125] Call Trace:
[  678.007093][T16125]  <TASK>
[  678.007099][T16125]  dump_stack_lvl+0x100/0x190
[  678.007127][T16125]  should_fail_ex.cold+0x5/0xa
[  678.007147][T16125]  should_failslab+0xc2/0x120
[  678.007163][T16125]  __kmalloc_cache_noprof+0x7a/0x6f0
[  678.007184][T16125]  ? vkms_plane_duplicate_state+0x45/0x130
[  678.007211][T16125]  vkms_plane_duplicate_state+0x45/0x130
[  678.007234][T16125]  drm_atomic_get_plane_state+0x279/0x760
[  678.007262][T16125]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  678.007283][T16125]  ? trace_contention_end+0x140/0x180
[  678.007306][T16125]  ? __mutex_lock+0x26a/0x1b90
[  678.007326][T16125]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  678.007345][T16125]  ? drm_master_internal_acquire+0x21/0x80
[  678.007382][T16125]  drm_client_modeset_commit_locked+0x14d/0x580
[  678.007404][T16125]  drm_client_modeset_commit+0x4f/0x80
[  678.007424][T16125]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  678.007446][T16125]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  678.007466][T16125]  drm_fbdev_client_restore+0x1b/0x30
[  678.007489][T16125]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  678.007512][T16125]  drm_client_dev_restore+0x205/0x2a0
[  678.007534][T16125]  drm_release+0x2c6/0x360
[  678.007552][T16125]  ? __pfx_drm_release+0x10/0x10
[  678.007568][T16125]  __fput+0x3ff/0xb40
[  678.007600][T16125]  task_work_run+0x150/0x240
[  678.007623][T16125]  ? __pfx_task_work_run+0x10/0x10
[  678.007651][T16125]  exit_to_user_mode_loop+0x100/0x4a0
[  678.007673][T16125]  do_syscall_64+0x668/0xf80
[  678.007691][T16125]  ? clear_bhb_loop+0x40/0x90
[  678.007710][T16125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  678.007726][T16125] RIP: 0033:0x7f219a19c799
[  678.007740][T16125] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  678.007755][T16125] RSP: 002b:00007f219b07b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  678.007770][T16125] RAX: 0000000000000000 RBX: 00007f219a415fa0 RCX: 00007f219a19c799
[  678.007780][T16125] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  678.007789][T16125] RBP: 00007f219a232c99 R08: 0000000000000000 R09: 0000000000000000
[  678.007798][T16125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  678.007807][T16125] R13: 00007f219a416038 R14: 00007f219a415fa0 R15: 00007ffd77432b98
[  678.007828][T16125]  </TASK>
[  678.645924][T16129] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2025'.
[  678.698480][T16129] openvswitch: HfR: Dropping previously announced user features
[  678.898827][T16136] syz.0.2022 uses obsolete (PF_INET,SOCK_PACKET)
[  679.746724][T16167] sd 0:0:1:0: device reset
[  680.346320][T16175] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2030'.
[  680.356556][T16177] FAULT_INJECTION: forcing a failure.
[  680.356556][T16177] name failslab, interval 1, probability 0, space 0, times 0
[  680.450520][T16177] CPU: 0 UID: 0 PID: 16177 Comm: syz.3.2031 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  680.450548][T16177] Tainted: [L]=SOFTLOCKUP
[  680.450554][T16177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  680.450563][T16177] Call Trace:
[  680.450569][T16177]  <TASK>
[  680.450576][T16177]  dump_stack_lvl+0x100/0x190
[  680.450604][T16177]  should_fail_ex.cold+0x5/0xa
[  680.450623][T16177]  should_failslab+0xc2/0x120
[  680.450640][T16177]  __kmalloc_cache_noprof+0x7a/0x6f0
[  680.450660][T16177]  ? vkms_plane_duplicate_state+0x45/0x130
[  680.450686][T16177]  vkms_plane_duplicate_state+0x45/0x130
[  680.450710][T16177]  drm_atomic_get_plane_state+0x279/0x760
[  680.450737][T16177]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  680.450758][T16177]  ? trace_contention_end+0x140/0x180
[  680.450781][T16177]  ? __mutex_lock+0x26a/0x1b90
[  680.450800][T16177]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  680.450821][T16177]  ? drm_master_internal_acquire+0x21/0x80
[  680.450866][T16177]  drm_client_modeset_commit_locked+0x14d/0x580
[  680.450889][T16177]  drm_client_modeset_commit+0x4f/0x80
[  680.450909][T16177]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  680.450932][T16177]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  680.450953][T16177]  drm_fbdev_client_restore+0x1b/0x30
[  680.450977][T16177]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  680.450999][T16177]  drm_client_dev_restore+0x205/0x2a0
[  680.451021][T16177]  drm_release+0x2c6/0x360
[  680.451038][T16177]  ? __pfx_drm_release+0x10/0x10
[  680.451054][T16177]  __fput+0x3ff/0xb40
[  680.451077][T16177]  task_work_run+0x150/0x240
[  680.451099][T16177]  ? __pfx_task_work_run+0x10/0x10
[  680.451125][T16177]  exit_to_user_mode_loop+0x100/0x4a0
[  680.451147][T16177]  do_syscall_64+0x668/0xf80
[  680.451165][T16177]  ? clear_bhb_loop+0x40/0x90
[  680.451184][T16177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  680.451200][T16177] RIP: 0033:0x7fb43f59c799
[  680.451214][T16177] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  680.451230][T16177] RSP: 002b:00007fb440427028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  680.451245][T16177] RAX: 0000000000000000 RBX: 00007fb43f815fa0 RCX: 00007fb43f59c799
[  680.451255][T16177] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  680.451264][T16177] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  680.451273][T16177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  680.451282][T16177] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  680.451303][T16177]  </TASK>
[  680.725070][T16181] sd 0:0:1:0: device reset
[  681.494821][T16187] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2032'.
[  681.644581][T16184] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2032'.
[  682.270278][T16195] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2035'.
[  682.318584][T16195] openvswitch: HfR: Dropping previously announced user features
[  682.854818][T16210] FAULT_INJECTION: forcing a failure.
[  682.854818][T16210] name failslab, interval 1, probability 0, space 0, times 0
[  682.909760][T16210] CPU: 0 UID: 0 PID: 16210 Comm: syz.3.2039 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  682.909787][T16210] Tainted: [L]=SOFTLOCKUP
[  682.909793][T16210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  682.909803][T16210] Call Trace:
[  682.909809][T16210]  <TASK>
[  682.909816][T16210]  dump_stack_lvl+0x100/0x190
[  682.909843][T16210]  should_fail_ex.cold+0x5/0xa
[  682.909863][T16210]  should_failslab+0xc2/0x120
[  682.909880][T16210]  __kmalloc_cache_noprof+0x7a/0x6f0
[  682.909901][T16210]  ? vkms_plane_duplicate_state+0x87/0x130
[  682.909928][T16210]  vkms_plane_duplicate_state+0x87/0x130
[  682.909952][T16210]  drm_atomic_get_plane_state+0x279/0x760
[  682.909979][T16210]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  682.909999][T16210]  ? trace_contention_end+0x140/0x180
[  682.910022][T16210]  ? __mutex_lock+0x26a/0x1b90
[  682.910042][T16210]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  682.910062][T16210]  ? drm_master_internal_acquire+0x21/0x80
[  682.910097][T16210]  drm_client_modeset_commit_locked+0x14d/0x580
[  682.910119][T16210]  drm_client_modeset_commit+0x4f/0x80
[  682.910139][T16210]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  682.910161][T16210]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  682.910182][T16210]  drm_fbdev_client_restore+0x1b/0x30
[  682.910205][T16210]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  682.910228][T16210]  drm_client_dev_restore+0x205/0x2a0
[  682.910250][T16210]  drm_release+0x2c6/0x360
[  682.910268][T16210]  ? __pfx_drm_release+0x10/0x10
[  682.910284][T16210]  __fput+0x3ff/0xb40
[  682.910307][T16210]  task_work_run+0x150/0x240
[  682.910329][T16210]  ? __pfx_task_work_run+0x10/0x10
[  682.910355][T16210]  exit_to_user_mode_loop+0x100/0x4a0
[  682.910377][T16210]  do_syscall_64+0x668/0xf80
[  682.910395][T16210]  ? clear_bhb_loop+0x40/0x90
[  682.910414][T16210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  682.910430][T16210] RIP: 0033:0x7fb43f59c799
[  682.910443][T16210] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  682.910459][T16210] RSP: 002b:00007fb440427028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  682.910474][T16210] RAX: 0000000000000000 RBX: 00007fb43f815fa0 RCX: 00007fb43f59c799
[  682.910484][T16210] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  682.910493][T16210] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  682.910502][T16210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  682.910511][T16210] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  682.910533][T16210]  </TASK>
[  684.168855][T16210] sd 0:0:1:0: device reset
[  684.360385][T16233] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2045'.
[  684.423374][T16233] openvswitch: HfR: Dropping previously announced user features
[  686.011308][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  686.018487][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  686.562429][T16260] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  686.582011][T16260] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  686.600836][T16260] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  686.627455][T16260] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  686.856816][T16279] FAULT_INJECTION: forcing a failure.
[  686.856816][T16279] name failslab, interval 1, probability 0, space 0, times 0
[  686.925485][T16279] CPU: 0 UID: 0 PID: 16279 Comm: syz.1.2055 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  686.925513][T16279] Tainted: [L]=SOFTLOCKUP
[  686.925522][T16279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  686.925531][T16279] Call Trace:
[  686.925537][T16279]  <TASK>
[  686.925544][T16279]  dump_stack_lvl+0x100/0x190
[  686.925571][T16279]  should_fail_ex.cold+0x5/0xa
[  686.925591][T16279]  should_failslab+0xc2/0x120
[  686.925608][T16279]  __kmalloc_cache_noprof+0x7a/0x6f0
[  686.925627][T16279]  ? vkms_plane_duplicate_state+0x87/0x130
[  686.925657][T16279]  vkms_plane_duplicate_state+0x87/0x130
[  686.925680][T16279]  drm_atomic_get_plane_state+0x279/0x760
[  686.925707][T16279]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  686.925727][T16279]  ? trace_contention_end+0x140/0x180
[  686.925751][T16279]  ? __mutex_lock+0x26a/0x1b90
[  686.925770][T16279]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  686.925789][T16279]  ? drm_master_internal_acquire+0x21/0x80
[  686.925825][T16279]  drm_client_modeset_commit_locked+0x14d/0x580
[  686.925848][T16279]  drm_client_modeset_commit+0x4f/0x80
[  686.925868][T16279]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  686.925890][T16279]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  686.925910][T16279]  drm_fbdev_client_restore+0x1b/0x30
[  686.925933][T16279]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  686.925956][T16279]  drm_client_dev_restore+0x205/0x2a0
[  686.925978][T16279]  drm_release+0x2c6/0x360
[  686.925995][T16279]  ? __pfx_drm_release+0x10/0x10
[  686.926011][T16279]  __fput+0x3ff/0xb40
[  686.926035][T16279]  task_work_run+0x150/0x240
[  686.926057][T16279]  ? __pfx_task_work_run+0x10/0x10
[  686.926083][T16279]  exit_to_user_mode_loop+0x100/0x4a0
[  686.926105][T16279]  do_syscall_64+0x668/0xf80
[  686.926123][T16279]  ? clear_bhb_loop+0x40/0x90
[  686.926142][T16279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  686.926158][T16279] RIP: 0033:0x7f219a19c799
[  686.926172][T16279] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  686.926187][T16279] RSP: 002b:00007f219b07b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  686.926202][T16279] RAX: 0000000000000000 RBX: 00007f219a415fa0 RCX: 00007f219a19c799
[  686.926212][T16279] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  686.926221][T16279] RBP: 00007f219a232c99 R08: 0000000000000000 R09: 0000000000000000
[  686.926231][T16279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  686.926239][T16279] R13: 00007f219a416038 R14: 00007f219a415fa0 R15: 00007ffd77432b98
[  686.926261][T16279]  </TASK>
[  687.197947][T16283] sd 0:0:1:0: device reset
[  687.313389][T16281] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2054'.
[  687.324817][T16281] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2054'.
[  687.932936][T16295] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2057'.
[  688.027939][ T6144] Bluetooth: hci0: command 0x0c1a tx timeout
[  688.642313][ T6144] Bluetooth: hci3: command 0x0c1a tx timeout
[  688.648668][T12082] Bluetooth: hci2: command 0x0c1a tx timeout
[  688.655848][ T6151] Bluetooth: hci1: command 0x0c1a tx timeout
[  689.758569][T16314] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2056'.
[  689.920929][T16322] mmap: syz.3.2059 (16322) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  689.938812][T16319] openvswitch: netlink: Duplicate key (type 15).
[  690.062979][T16309] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2056'.
[  690.561696][T16332] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  690.893584][T16337] FAULT_INJECTION: forcing a failure.
[  690.893584][T16337] name failslab, interval 1, probability 0, space 0, times 0
[  691.057200][T16337] CPU: 0 UID: 0 PID: 16337 Comm: syz.0.2064 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  691.057229][T16337] Tainted: [L]=SOFTLOCKUP
[  691.057235][T16337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  691.057245][T16337] Call Trace:
[  691.057251][T16337]  <TASK>
[  691.057258][T16337]  dump_stack_lvl+0x100/0x190
[  691.057286][T16337]  should_fail_ex.cold+0x5/0xa
[  691.057305][T16337]  should_failslab+0xc2/0x120
[  691.057322][T16337]  __kmalloc_cache_noprof+0x7a/0x6f0
[  691.057341][T16337]  ? vkms_plane_duplicate_state+0x87/0x130
[  691.057368][T16337]  vkms_plane_duplicate_state+0x87/0x130
[  691.057391][T16337]  drm_atomic_get_plane_state+0x279/0x760
[  691.057419][T16337]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  691.057439][T16337]  ? trace_contention_end+0x140/0x180
[  691.057463][T16337]  ? __mutex_lock+0x26a/0x1b90
[  691.057482][T16337]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  691.057502][T16337]  ? drm_master_internal_acquire+0x21/0x80
[  691.057538][T16337]  drm_client_modeset_commit_locked+0x14d/0x580
[  691.057560][T16337]  drm_client_modeset_commit+0x4f/0x80
[  691.057580][T16337]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  691.057602][T16337]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  691.057623][T16337]  drm_fbdev_client_restore+0x1b/0x30
[  691.057646][T16337]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  691.057668][T16337]  drm_client_dev_restore+0x205/0x2a0
[  691.057690][T16337]  drm_release+0x2c6/0x360
[  691.057708][T16337]  ? __pfx_drm_release+0x10/0x10
[  691.057724][T16337]  __fput+0x3ff/0xb40
[  691.057755][T16337]  task_work_run+0x150/0x240
[  691.057779][T16337]  ? __pfx_task_work_run+0x10/0x10
[  691.057806][T16337]  exit_to_user_mode_loop+0x100/0x4a0
[  691.057830][T16337]  do_syscall_64+0x668/0xf80
[  691.057848][T16337]  ? clear_bhb_loop+0x40/0x90
[  691.057866][T16337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  691.057882][T16337] RIP: 0033:0x7fd54bd9c799
[  691.057897][T16337] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  691.057911][T16337] RSP: 002b:00007fd54cca9028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  691.057926][T16337] RAX: 0000000000000000 RBX: 00007fd54c015fa0 RCX: 00007fd54bd9c799
[  691.057936][T16337] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  691.057945][T16337] RBP: 00007fd54be32c99 R08: 0000000000000000 R09: 0000000000000000
[  691.057954][T16337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  691.057964][T16337] R13: 00007fd54c016038 R14: 00007fd54c015fa0 R15: 00007ffd50bce3b8
[  691.057985][T16337]  </TASK>
[  691.167780][T16337] sd 0:0:1:0: device reset
[  692.024773][T16350] netlink: 206 bytes leftover after parsing attributes in process `syz.1.2066'.
[  692.173425][T16320] netlink: zone id is out of range
[  692.173439][T16320] netlink: zone id is out of range
[  692.173446][T16320] netlink: zone id is out of range
[  692.173452][T16320] netlink: zone id is out of range
[  692.173458][T16320] netlink: zone id is out of range
[  693.665370][T16345] Process accounting paused
[  693.969556][T16356] program syz.0.2067 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  694.940106][T16395] can: request_module (can-proto-0) failed.
[  695.383118][T16410] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2077'.
[  695.592733][T16413] FAULT_INJECTION: forcing a failure.
[  695.592733][T16413] name failslab, interval 1, probability 0, space 0, times 0
[  695.743182][T16413] CPU: 0 UID: 0 PID: 16413 Comm: syz.0.2078 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  695.743212][T16413] Tainted: [L]=SOFTLOCKUP
[  695.743218][T16413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  695.743227][T16413] Call Trace:
[  695.743234][T16413]  <TASK>
[  695.743241][T16413]  dump_stack_lvl+0x100/0x190
[  695.743269][T16413]  should_fail_ex.cold+0x5/0xa
[  695.743289][T16413]  should_failslab+0xc2/0x120
[  695.743305][T16413]  __kmalloc_cache_noprof+0x7a/0x6f0
[  695.743325][T16413]  ? vkms_plane_duplicate_state+0x45/0x130
[  695.743352][T16413]  vkms_plane_duplicate_state+0x45/0x130
[  695.743375][T16413]  drm_atomic_get_plane_state+0x279/0x760
[  695.743403][T16413]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  695.743423][T16413]  ? trace_contention_end+0x140/0x180
[  695.743446][T16413]  ? __mutex_lock+0x26a/0x1b90
[  695.743466][T16413]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  695.743487][T16413]  ? drm_master_internal_acquire+0x21/0x80
[  695.743523][T16413]  drm_client_modeset_commit_locked+0x14d/0x580
[  695.743545][T16413]  drm_client_modeset_commit+0x4f/0x80
[  695.743565][T16413]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  695.743587][T16413]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  695.743608][T16413]  drm_fbdev_client_restore+0x1b/0x30
[  695.743632][T16413]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  695.743654][T16413]  drm_client_dev_restore+0x205/0x2a0
[  695.743677][T16413]  drm_release+0x2c6/0x360
[  695.743694][T16413]  ? __pfx_drm_release+0x10/0x10
[  695.743710][T16413]  __fput+0x3ff/0xb40
[  695.743732][T16413]  task_work_run+0x150/0x240
[  695.743755][T16413]  ? __pfx_task_work_run+0x10/0x10
[  695.743790][T16413]  exit_to_user_mode_loop+0x100/0x4a0
[  695.743816][T16413]  do_syscall_64+0x668/0xf80
[  695.743834][T16413]  ? clear_bhb_loop+0x40/0x90
[  695.743854][T16413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  695.743870][T16413] RIP: 0033:0x7fd54bd9c799
[  695.743884][T16413] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  695.743899][T16413] RSP: 002b:00007fd54cca9028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  695.743914][T16413] RAX: 0000000000000000 RBX: 00007fd54c015fa0 RCX: 00007fd54bd9c799
[  695.743924][T16413] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  695.743932][T16413] RBP: 00007fd54be32c99 R08: 0000000000000000 R09: 0000000000000000
[  695.743943][T16413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  695.743952][T16413] R13: 00007fd54c016038 R14: 00007fd54c015fa0 R15: 00007ffd50bce3b8
[  695.743973][T16413]  </TASK>
[  695.857632][T16404] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2077'.
[  695.873069][T16413] sd 0:0:1:0: device reset
[  696.210008][T16425] process 'syz.3.2080' launched './file0' with NULL argv: empty string added
[  696.549329][T16424] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjEùrõ£Ò„yù*›"¤l-ý¤ôy–ú„
[  697.927005][T16441] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2083'.
[  697.945645][T16431] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  697.945819][T16431] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  697.945967][T16431] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  697.946224][T16431] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  699.368144][ T6144] Bluetooth: hci0: command 0x0c1a tx timeout
[  699.417008][T16452] netlink: 206 bytes leftover after parsing attributes in process `syz.3.2086'.
[  700.007999][ T6144] Bluetooth: hci3: command 0x0c1a tx timeout
[  700.014074][T12082] Bluetooth: hci2: command 0x0c1a tx timeout
[  700.020852][ T6151] Bluetooth: hci1: command 0x0c1a tx timeout
[  700.270605][T16483] sd 0:0:1:0: device reset
[  702.041729][T16504] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  702.059460][T16504] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  702.079274][T16504] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  702.099254][T16504] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  702.220047][T16513] netlink: 206 bytes leftover after parsing attributes in process `syz.1.2094'.
[  702.407938][T16519] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2096'.
[  702.468090][T16524] openvswitch: HfR: Dropping previously announced user features
[  702.655407][T16529] FAULT_INJECTION: forcing a failure.
[  702.655407][T16529] name failslab, interval 1, probability 0, space 0, times 0
[  702.713253][T16529] CPU: 0 UID: 0 PID: 16529 Comm: syz.3.2098 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  702.713281][T16529] Tainted: [L]=SOFTLOCKUP
[  702.713287][T16529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  702.713297][T16529] Call Trace:
[  702.713303][T16529]  <TASK>
[  702.713310][T16529]  dump_stack_lvl+0x100/0x190
[  702.713337][T16529]  should_fail_ex.cold+0x5/0xa
[  702.713357][T16529]  should_failslab+0xc2/0x120
[  702.713374][T16529]  __kmalloc_cache_noprof+0x7a/0x6f0
[  702.713393][T16529]  ? vkms_plane_duplicate_state+0x45/0x130
[  702.713429][T16529]  vkms_plane_duplicate_state+0x45/0x130
[  702.713452][T16529]  drm_atomic_get_plane_state+0x279/0x760
[  702.713481][T16529]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  702.713501][T16529]  ? trace_contention_end+0x140/0x180
[  702.713525][T16529]  ? __mutex_lock+0x26a/0x1b90
[  702.713545][T16529]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  702.713565][T16529]  ? drm_master_internal_acquire+0x21/0x80
[  702.713601][T16529]  drm_client_modeset_commit_locked+0x14d/0x580
[  702.713623][T16529]  drm_client_modeset_commit+0x4f/0x80
[  702.713643][T16529]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  702.713673][T16529]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  702.713694][T16529]  drm_fbdev_client_restore+0x1b/0x30
[  702.713718][T16529]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  702.713741][T16529]  drm_client_dev_restore+0x205/0x2a0
[  702.713763][T16529]  drm_release+0x2c6/0x360
[  702.713780][T16529]  ? __pfx_drm_release+0x10/0x10
[  702.713796][T16529]  __fput+0x3ff/0xb40
[  702.713820][T16529]  task_work_run+0x150/0x240
[  702.713842][T16529]  ? __pfx_task_work_run+0x10/0x10
[  702.713868][T16529]  exit_to_user_mode_loop+0x100/0x4a0
[  702.713890][T16529]  do_syscall_64+0x668/0xf80
[  702.713908][T16529]  ? clear_bhb_loop+0x40/0x90
[  702.713927][T16529]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  702.713942][T16529] RIP: 0033:0x7fb43f59c799
[  702.713958][T16529] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  702.713973][T16529] RSP: 002b:00007fb440427028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  702.713988][T16529] RAX: 0000000000000000 RBX: 00007fb43f815fa0 RCX: 00007fb43f59c799
[  702.713998][T16529] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  702.714008][T16529] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  702.714018][T16529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  702.714027][T16529] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  702.714049][T16529]  </TASK>
[  703.653162][ T6144] Bluetooth: hci0: command 0x0c1a tx timeout
[  704.100948][ T6144] Bluetooth: hci3: command 0x0c1a tx timeout
[  704.107017][T12082] Bluetooth: hci2: command 0x0c1a tx timeout
[  704.113787][ T6144] Bluetooth: hci1: command 0x0c1a tx timeout
[  704.236948][T16543] netlink: 206 bytes leftover after parsing attributes in process `syz.2.2100'.
[  704.337152][T16546] sd 0:0:1:0: device reset
[  704.648479][T16558] FAULT_INJECTION: forcing a failure.
[  704.648479][T16558] name failslab, interval 1, probability 0, space 0, times 0
[  704.743621][T16558] CPU: 0 UID: 0 PID: 16558 Comm: syz.3.2102 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  704.743654][T16558] Tainted: [L]=SOFTLOCKUP
[  704.743660][T16558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  704.743670][T16558] Call Trace:
[  704.743676][T16558]  <TASK>
[  704.743683][T16558]  dump_stack_lvl+0x100/0x190
[  704.743711][T16558]  should_fail_ex.cold+0x5/0xa
[  704.743731][T16558]  should_failslab+0xc2/0x120
[  704.743748][T16558]  __kmalloc_cache_noprof+0x7a/0x6f0
[  704.743771][T16558]  ? vkms_plane_duplicate_state+0x45/0x130
[  704.743798][T16558]  vkms_plane_duplicate_state+0x45/0x130
[  704.743821][T16558]  drm_atomic_get_plane_state+0x279/0x760
[  704.743849][T16558]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  704.743868][T16558]  ? trace_contention_end+0x140/0x180
[  704.743892][T16558]  ? __mutex_lock+0x26a/0x1b90
[  704.743911][T16558]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  704.743931][T16558]  ? drm_master_internal_acquire+0x21/0x80
[  704.743966][T16558]  drm_client_modeset_commit_locked+0x14d/0x580
[  704.743989][T16558]  drm_client_modeset_commit+0x4f/0x80
[  704.744008][T16558]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  704.744031][T16558]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  704.744051][T16558]  drm_fbdev_client_restore+0x1b/0x30
[  704.744074][T16558]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  704.744097][T16558]  drm_client_dev_restore+0x205/0x2a0
[  704.744119][T16558]  drm_release+0x2c6/0x360
[  704.744136][T16558]  ? __pfx_drm_release+0x10/0x10
[  704.744152][T16558]  __fput+0x3ff/0xb40
[  704.744175][T16558]  task_work_run+0x150/0x240
[  704.744197][T16558]  ? __pfx_task_work_run+0x10/0x10
[  704.744224][T16558]  exit_to_user_mode_loop+0x100/0x4a0
[  704.744247][T16558]  do_syscall_64+0x668/0xf80
[  704.744265][T16558]  ? clear_bhb_loop+0x40/0x90
[  704.744283][T16558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  704.744299][T16558] RIP: 0033:0x7fb43f59c799
[  704.744314][T16558] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  704.744328][T16558] RSP: 002b:00007fb440427028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  704.744343][T16558] RAX: 0000000000000000 RBX: 00007fb43f815fa0 RCX: 00007fb43f59c799
[  704.744353][T16558] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  704.744362][T16558] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  704.744371][T16558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  704.744379][T16558] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  704.744400][T16558]  </TASK>
[  704.865186][T16561] sd 0:0:1:0: device reset
[  706.357639][T16550] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  706.357819][T16550] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  706.357957][T16550] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  706.358091][T16550] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  706.674871][T16591] FAULT_INJECTION: forcing a failure.
[  706.674871][T16591] name failslab, interval 1, probability 0, space 0, times 0
[  706.690159][T16590] netlink: 'syz.2.2110': attribute type 11 has an invalid length.
[  706.735303][T12082] Bluetooth: hci0: command 0x0c1a tx timeout
[  706.791338][T16591] CPU: 0 UID: 0 PID: 16591 Comm: syz.1.2111 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  706.791365][T16591] Tainted: [L]=SOFTLOCKUP
[  706.791371][T16591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  706.791381][T16591] Call Trace:
[  706.791387][T16591]  <TASK>
[  706.791395][T16591]  dump_stack_lvl+0x100/0x190
[  706.791422][T16591]  should_fail_ex.cold+0x5/0xa
[  706.791442][T16591]  should_failslab+0xc2/0x120
[  706.791458][T16591]  __kmalloc_cache_noprof+0x7a/0x6f0
[  706.791478][T16591]  ? vkms_plane_duplicate_state+0x45/0x130
[  706.791505][T16591]  vkms_plane_duplicate_state+0x45/0x130
[  706.791528][T16591]  drm_atomic_get_plane_state+0x279/0x760
[  706.791556][T16591]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  706.791575][T16591]  ? trace_contention_end+0x140/0x180
[  706.791599][T16591]  ? __mutex_lock+0x26a/0x1b90
[  706.791619][T16591]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  706.791639][T16591]  ? drm_master_internal_acquire+0x21/0x80
[  706.791675][T16591]  drm_client_modeset_commit_locked+0x14d/0x580
[  706.791698][T16591]  drm_client_modeset_commit+0x4f/0x80
[  706.791717][T16591]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  706.791739][T16591]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  706.791759][T16591]  drm_fbdev_client_restore+0x1b/0x30
[  706.791782][T16591]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  706.791805][T16591]  drm_client_dev_restore+0x205/0x2a0
[  706.791826][T16591]  drm_release+0x2c6/0x360
[  706.791844][T16591]  ? __pfx_drm_release+0x10/0x10
[  706.791860][T16591]  __fput+0x3ff/0xb40
[  706.791882][T16591]  task_work_run+0x150/0x240
[  706.791904][T16591]  ? __pfx_task_work_run+0x10/0x10
[  706.791931][T16591]  exit_to_user_mode_loop+0x100/0x4a0
[  706.791953][T16591]  do_syscall_64+0x668/0xf80
[  706.791971][T16591]  ? clear_bhb_loop+0x40/0x90
[  706.791990][T16591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  706.792006][T16591] RIP: 0033:0x7f219a19c799
[  706.792020][T16591] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  706.792035][T16591] RSP: 002b:00007f219b07b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  706.792051][T16591] RAX: 0000000000000000 RBX: 00007f219a415fa0 RCX: 00007f219a19c799
[  706.792061][T16591] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  706.792070][T16591] RBP: 00007f219a232c99 R08: 0000000000000000 R09: 0000000000000000
[  706.792079][T16591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  706.792088][T16591] R13: 00007f219a416038 R14: 00007f219a415fa0 R15: 00007ffd77432b98
[  706.792109][T16591]  </TASK>
[  707.066956][T16591] sd 0:0:1:0: device reset
[  708.384062][T16625] netlink: 206 bytes leftover after parsing attributes in process `syz.2.2117'.
[  708.417735][T12082] Bluetooth: hci3: command 0x0c1a tx timeout
[  708.424824][ T6151] Bluetooth: hci2: command 0x0c1a tx timeout
[  708.430812][ T6151] Bluetooth: hci1: command 0x0c1a tx timeout
[  709.463054][T16650] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2121'.
[  709.503216][T16650] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2121'.
[  709.992143][T16642] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  710.053195][T16642] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  710.154114][T16642] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  710.181764][T16642] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  711.308360][T16681] FAULT_INJECTION: forcing a failure.
[  711.308360][T16681] name failslab, interval 1, probability 0, space 0, times 0
[  711.400155][T16681] CPU: 0 UID: 0 PID: 16681 Comm: syz.0.2127 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  711.400184][T16681] Tainted: [L]=SOFTLOCKUP
[  711.400190][T16681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  711.400200][T16681] Call Trace:
[  711.400205][T16681]  <TASK>
[  711.400212][T16681]  dump_stack_lvl+0x100/0x190
[  711.400241][T16681]  should_fail_ex.cold+0x5/0xa
[  711.400261][T16681]  should_failslab+0xc2/0x120
[  711.400277][T16681]  __kmalloc_cache_noprof+0x7a/0x6f0
[  711.400298][T16681]  ? vkms_plane_duplicate_state+0x45/0x130
[  711.400325][T16681]  vkms_plane_duplicate_state+0x45/0x130
[  711.400349][T16681]  drm_atomic_get_plane_state+0x279/0x760
[  711.400376][T16681]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  711.400396][T16681]  ? trace_contention_end+0x140/0x180
[  711.400419][T16681]  ? __mutex_lock+0x26a/0x1b90
[  711.400438][T16681]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  711.400457][T16681]  ? drm_master_internal_acquire+0x21/0x80
[  711.400493][T16681]  drm_client_modeset_commit_locked+0x14d/0x580
[  711.400516][T16681]  drm_client_modeset_commit+0x4f/0x80
[  711.400535][T16681]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  711.400558][T16681]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  711.400579][T16681]  drm_fbdev_client_restore+0x1b/0x30
[  711.400602][T16681]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  711.400625][T16681]  drm_client_dev_restore+0x205/0x2a0
[  711.400647][T16681]  drm_release+0x2c6/0x360
[  711.400664][T16681]  ? __pfx_drm_release+0x10/0x10
[  711.400680][T16681]  __fput+0x3ff/0xb40
[  711.400703][T16681]  task_work_run+0x150/0x240
[  711.400725][T16681]  ? __pfx_task_work_run+0x10/0x10
[  711.400752][T16681]  exit_to_user_mode_loop+0x100/0x4a0
[  711.400774][T16681]  do_syscall_64+0x668/0xf80
[  711.400791][T16681]  ? clear_bhb_loop+0x40/0x90
[  711.400810][T16681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  711.400826][T16681] RIP: 0033:0x7fd54bd9c799
[  711.400840][T16681] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  711.400863][T16681] RSP: 002b:00007fd54cca9028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  711.400879][T16681] RAX: 0000000000000000 RBX: 00007fd54c015fa0 RCX: 00007fd54bd9c799
[  711.400889][T16681] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  711.400898][T16681] RBP: 00007fd54be32c99 R08: 0000000000000000 R09: 0000000000000000
[  711.400908][T16681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  711.400917][T16681] R13: 00007fd54c016038 R14: 00007fd54c015fa0 R15: 00007ffd50bce3b8
[  711.400939][T16681]  </TASK>
[  711.675160][T16661] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  711.681224][T16661] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  711.687303][T16661] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  711.693298][T16661] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  712.814343][ T6144] Bluetooth: hci0: command 0x0c1a tx timeout
[  713.646812][T16701] sd 0:0:1:0: device reset
[  713.715052][T16693] program syz.2.2130 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  714.105061][ T6144] Bluetooth: hci3: command 0x0c1a tx timeout
[  714.111123][ T6151] Bluetooth: hci2: command 0x0c1a tx timeout
[  714.117172][T12082] Bluetooth: hci1: command 0x0c1a tx timeout
[  714.518400][T16698] program syz.3.2128 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  714.642683][T16716] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2134'.
[  714.700183][T16719] openvswitch: HfR: Dropping previously announced user features
[  714.772224][T16712] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000
[  714.822552][T16712] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  714.892343][T16712] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000
[  714.942251][T16712] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  714.980388][T16721] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2135'.
[  714.995557][T16712] page dumped because: unmovable page
[  715.015609][T16712] page_owner info is not present (never set?)
[  715.073283][T16721] openvswitch: HfR: Dropping previously announced user features
[  716.196842][T16736] netlink: 206 bytes leftover after parsing attributes in process `syz.3.2138'.
[  716.319434][T16742] FAULT_INJECTION: forcing a failure.
[  716.319434][T16742] name failslab, interval 1, probability 0, space 0, times 0
[  716.359729][T16743] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2139'.
[  716.379938][T16742] CPU: 0 UID: 0 PID: 16742 Comm: syz.1.2140 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  716.379967][T16742] Tainted: [L]=SOFTLOCKUP
[  716.379974][T16742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  716.379983][T16742] Call Trace:
[  716.379989][T16742]  <TASK>
[  716.379996][T16742]  dump_stack_lvl+0x100/0x190
[  716.380024][T16742]  should_fail_ex.cold+0x5/0xa
[  716.380043][T16742]  should_failslab+0xc2/0x120
[  716.380059][T16742]  __kmalloc_cache_noprof+0x7a/0x6f0
[  716.380079][T16742]  ? vkms_plane_duplicate_state+0x45/0x130
[  716.380107][T16742]  vkms_plane_duplicate_state+0x45/0x130
[  716.380130][T16742]  drm_atomic_get_plane_state+0x279/0x760
[  716.380158][T16742]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  716.380178][T16742]  ? trace_contention_end+0x140/0x180
[  716.380201][T16742]  ? __mutex_lock+0x26a/0x1b90
[  716.380221][T16742]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  716.380241][T16742]  ? drm_master_internal_acquire+0x21/0x80
[  716.380277][T16742]  drm_client_modeset_commit_locked+0x14d/0x580
[  716.380299][T16742]  drm_client_modeset_commit+0x4f/0x80
[  716.380319][T16742]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  716.380343][T16742]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  716.380363][T16742]  drm_fbdev_client_restore+0x1b/0x30
[  716.380386][T16742]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  716.380408][T16742]  drm_client_dev_restore+0x205/0x2a0
[  716.380438][T16742]  drm_release+0x2c6/0x360
[  716.380455][T16742]  ? __pfx_drm_release+0x10/0x10
[  716.380472][T16742]  __fput+0x3ff/0xb40
[  716.380495][T16742]  task_work_run+0x150/0x240
[  716.380517][T16742]  ? __pfx_task_work_run+0x10/0x10
[  716.380544][T16742]  exit_to_user_mode_loop+0x100/0x4a0
[  716.380566][T16742]  do_syscall_64+0x668/0xf80
[  716.380583][T16742]  ? clear_bhb_loop+0x40/0x90
[  716.380602][T16742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  716.380618][T16742] RIP: 0033:0x7f219a19c799
[  716.380632][T16742] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  716.380647][T16742] RSP: 002b:00007f219b07b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  716.380662][T16742] RAX: 0000000000000000 RBX: 00007f219a415fa0 RCX: 00007f219a19c799
[  716.380672][T16742] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  716.380681][T16742] RBP: 00007f219a232c99 R08: 0000000000000000 R09: 0000000000000000
[  716.380691][T16742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  716.380700][T16742] R13: 00007f219a416038 R14: 00007f219a415fa0 R15: 00007ffd77432b98
[  716.380722][T16742]  </TASK>
[  717.032288][T16738] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2139'.
[  717.687270][T16757] sd 0:0:1:0: device reset
[  718.246725][T16764] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2144'.
[  718.367500][T16763] openvswitch: HfR: Dropping previously announced user features
[  718.370062][T16768] openvswitch: HfR: Dropping previously announced user features
[  719.329948][T16770] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  719.330150][T16770] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  719.330290][T16770] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  719.330423][T16770] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  720.454221][T16796] bonding: no command found in bonding_masters - use +ifname or -ifname
[  720.845110][T16800] netlink: 'syz.2.2151': attribute type 1 has an invalid length.
[  720.877075][T16800] netlink: 'syz.2.2151': attribute type 6 has an invalid length.
[  720.898396][ T6144] Bluetooth: hci0: command 0x0c1a tx timeout
[  720.978617][T16802] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2151'.
[  721.161993][T16791] program syz.0.2148 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  721.263680][T16804] zswap: compressor  not available
[  721.380116][ T6151] Bluetooth: hci2: command 0x0c1a tx timeout
[  721.386224][T12082] Bluetooth: hci1: command 0x0c1a tx timeout
[  721.392345][ T6144] Bluetooth: hci3: command 0x0c1a tx timeout
[  722.100197][T16823] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2154'.
[  722.160751][T16823] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2154'.
[  722.298615][T16829] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2155'.
[  722.404754][T16833] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2155'.
[  722.865231][T16843] FAULT_INJECTION: forcing a failure.
[  722.865231][T16843] name failslab, interval 1, probability 0, space 0, times 0
[  722.865266][T16843] CPU: 0 UID: 0 PID: 16843 Comm: syz.2.2159 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  722.865287][T16843] Tainted: [L]=SOFTLOCKUP
[  722.865293][T16843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  722.865303][T16843] Call Trace:
[  722.865309][T16843]  <TASK>
[  722.865315][T16843]  dump_stack_lvl+0x100/0x190
[  722.865343][T16843]  should_fail_ex.cold+0x5/0xa
[  722.865363][T16843]  should_failslab+0xc2/0x120
[  722.865379][T16843]  __kmalloc_cache_noprof+0x7a/0x6f0
[  722.865399][T16843]  ? vkms_plane_duplicate_state+0x45/0x130
[  722.865426][T16843]  vkms_plane_duplicate_state+0x45/0x130
[  722.865450][T16843]  drm_atomic_get_plane_state+0x279/0x760
[  722.865477][T16843]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  722.865498][T16843]  ? trace_contention_end+0x140/0x180
[  722.865521][T16843]  ? __mutex_lock+0x26a/0x1b90
[  722.865540][T16843]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  722.865560][T16843]  ? drm_master_internal_acquire+0x21/0x80
[  722.865596][T16843]  drm_client_modeset_commit_locked+0x14d/0x580
[  722.865617][T16843]  drm_client_modeset_commit+0x4f/0x80
[  722.865636][T16843]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  722.865658][T16843]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  722.865679][T16843]  drm_fbdev_client_restore+0x1b/0x30
[  722.865712][T16843]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  722.865735][T16843]  drm_client_dev_restore+0x205/0x2a0
[  722.865758][T16843]  drm_release+0x2c6/0x360
[  722.865775][T16843]  ? __pfx_drm_release+0x10/0x10
[  722.865793][T16843]  __fput+0x3ff/0xb40
[  722.865815][T16843]  task_work_run+0x150/0x240
[  722.865838][T16843]  ? __pfx_task_work_run+0x10/0x10
[  722.865864][T16843]  exit_to_user_mode_loop+0x100/0x4a0
[  722.865886][T16843]  do_syscall_64+0x668/0xf80
[  722.865904][T16843]  ? clear_bhb_loop+0x40/0x90
[  722.865923][T16843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.865939][T16843] RIP: 0033:0x7f8da379c799
[  722.865953][T16843] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  722.865968][T16843] RSP: 002b:00007f8da463c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  722.865983][T16843] RAX: 0000000000000000 RBX: 00007f8da3a15fa0 RCX: 00007f8da379c799
[  722.865993][T16843] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  722.866002][T16843] RBP: 00007f8da3832c99 R08: 0000000000000000 R09: 0000000000000000
[  722.866011][T16843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  722.866020][T16843] R13: 00007f8da3a16038 R14: 00007f8da3a15fa0 R15: 00007ffffb69e598
[  722.866042][T16843]  </TASK>
[  723.055422][T16846] netlink: 206 bytes leftover after parsing attributes in process `syz.0.2160'.
[  723.092594][T16847] sd 0:0:1:0: device reset
[  723.804736][T16839] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  723.804925][T16839] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  723.805062][T16839] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  723.805224][T16839] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  724.580379][ T6144] Bluetooth: hci0: command 0x0c1a tx timeout
[  724.722910][T16868] FAULT_INJECTION: forcing a failure.
[  724.722910][T16868] name failslab, interval 1, probability 0, space 0, times 0
[  724.783576][T16868] CPU: 0 UID: 0 PID: 16868 Comm: syz.0.2164 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  724.783604][T16868] Tainted: [L]=SOFTLOCKUP
[  724.783610][T16868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  724.783620][T16868] Call Trace:
[  724.783626][T16868]  <TASK>
[  724.783633][T16868]  dump_stack_lvl+0x100/0x190
[  724.783661][T16868]  should_fail_ex.cold+0x5/0xa
[  724.783681][T16868]  should_failslab+0xc2/0x120
[  724.783698][T16868]  __kmalloc_cache_noprof+0x7a/0x6f0
[  724.783717][T16868]  ? vkms_plane_duplicate_state+0x45/0x130
[  724.783745][T16868]  vkms_plane_duplicate_state+0x45/0x130
[  724.783768][T16868]  drm_atomic_get_plane_state+0x279/0x760
[  724.783796][T16868]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  724.783815][T16868]  ? trace_contention_end+0x140/0x180
[  724.783839][T16868]  ? __mutex_lock+0x26a/0x1b90
[  724.783863][T16868]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  724.783884][T16868]  ? drm_master_internal_acquire+0x21/0x80
[  724.783922][T16868]  drm_client_modeset_commit_locked+0x14d/0x580
[  724.783945][T16868]  drm_client_modeset_commit+0x4f/0x80
[  724.783964][T16868]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  724.783986][T16868]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  724.784006][T16868]  drm_fbdev_client_restore+0x1b/0x30
[  724.784030][T16868]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  724.784053][T16868]  drm_client_dev_restore+0x205/0x2a0
[  724.784075][T16868]  drm_release+0x2c6/0x360
[  724.784092][T16868]  ? __pfx_drm_release+0x10/0x10
[  724.784108][T16868]  __fput+0x3ff/0xb40
[  724.784130][T16868]  task_work_run+0x150/0x240
[  724.784152][T16868]  ? __pfx_task_work_run+0x10/0x10
[  724.784179][T16868]  exit_to_user_mode_loop+0x100/0x4a0
[  724.784202][T16868]  do_syscall_64+0x668/0xf80
[  724.784219][T16868]  ? clear_bhb_loop+0x40/0x90
[  724.784238][T16868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.784254][T16868] RIP: 0033:0x7fd54bd9c799
[  724.784268][T16868] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  724.784283][T16868] RSP: 002b:00007fd54cca9028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  724.784298][T16868] RAX: 0000000000000000 RBX: 00007fd54c015fa0 RCX: 00007fd54bd9c799
[  724.784308][T16868] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  724.784318][T16868] RBP: 00007fd54be32c99 R08: 0000000000000000 R09: 0000000000000000
[  724.784327][T16868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  724.784337][T16868] R13: 00007fd54c016038 R14: 00007fd54c015fa0 R15: 00007ffd50bce3b8
[  724.784359][T16868]  </TASK>
[  725.149453][T16857] Process accounting resumed
[  725.867740][ T6144] Bluetooth: hci3: command 0x0c1a tx timeout
[  725.875757][ T6151] Bluetooth: hci2: command 0x0c1a tx timeout
[  725.881821][ T6144] Bluetooth: hci1: command 0x0c1a tx timeout
[  727.065662][T16901] netlink: 206 bytes leftover after parsing attributes in process `syz.1.2172'.
[  727.137338][T16904] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2173'.
[  727.174293][T16904] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2173'.
[  727.305892][T16868] sd 0:0:1:0: device reset
[  727.896026][T16916] FAULT_INJECTION: forcing a failure.
[  727.896026][T16916] name failslab, interval 1, probability 0, space 0, times 0
[  727.896091][T16916] CPU: 0 UID: 0 PID: 16916 Comm: syz.3.2176 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  727.896122][T16916] Tainted: [L]=SOFTLOCKUP
[  727.896128][T16916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  727.896138][T16916] Call Trace:
[  727.896143][T16916]  <TASK>
[  727.896150][T16916]  dump_stack_lvl+0x100/0x190
[  727.896176][T16916]  should_fail_ex.cold+0x5/0xa
[  727.896196][T16916]  should_failslab+0xc2/0x120
[  727.896212][T16916]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  727.896235][T16916]  ? __d_alloc+0x34/0xa80
[  727.896257][T16916]  __d_alloc+0x34/0xa80
[  727.896284][T16916]  d_alloc_parallel+0x111/0x14e0
[  727.896307][T16916]  ? __lock_acquire+0x4a5/0x2630
[  727.896327][T16916]  ? look_up_lock_class+0x64/0x120
[  727.896348][T16916]  ? register_lock_class+0x40/0x560
[  727.896369][T16916]  ? __pfx_d_alloc_parallel+0x10/0x10
[  727.896392][T16916]  ? lockdep_init_map_type+0x5c/0x250
[  727.896412][T16916]  ? lockdep_init_map_type+0x5c/0x250
[  727.896435][T16916]  __lookup_slow+0x193/0x460
[  727.896456][T16916]  ? __pfx___lookup_slow+0x10/0x10
[  727.896486][T16916]  ? __d_lookup+0x266/0x4a0
[  727.896511][T16916]  lookup_slow+0x50/0x70
[  727.896530][T16916]  link_path_walk+0x1377/0x1cc0
[  727.896558][T16916]  path_openat+0x1be/0x31a0
[  727.896572][T16916]  ? kasan_save_stack+0x3f/0x50
[  727.896593][T16916]  ? kasan_save_stack+0x30/0x50
[  727.896614][T16916]  ? kasan_save_track+0x14/0x30
[  727.896636][T16916]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  727.896662][T16916]  ? __pfx_path_openat+0x10/0x10
[  727.896684][T16916]  do_file_open+0x20e/0x430
[  727.896701][T16916]  ? __pfx_do_file_open+0x10/0x10
[  727.896730][T16916]  ? alloc_fd+0x476/0x790
[  727.896747][T16916]  ? do_getname+0x191/0x390
[  727.896766][T16916]  do_sys_openat2+0x10d/0x1e0
[  727.896786][T16916]  ? __pfx_do_sys_openat2+0x10/0x10
[  727.896812][T16916]  __x64_sys_openat+0x12d/0x210
[  727.896832][T16916]  ? __pfx___x64_sys_openat+0x10/0x10
[  727.896859][T16916]  do_syscall_64+0x106/0xf80
[  727.896876][T16916]  ? clear_bhb_loop+0x40/0x90
[  727.896895][T16916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.896911][T16916] RIP: 0033:0x7fb43f59c799
[  727.896924][T16916] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  727.896940][T16916] RSP: 002b:00007fb440427028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  727.896955][T16916] RAX: ffffffffffffffda RBX: 00007fb43f815fa0 RCX: 00007fb43f59c799
[  727.896965][T16916] RDX: 0000000000008d00 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  727.896975][T16916] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  727.896985][T16916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  727.896994][T16916] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  727.897015][T16916]  </TASK>
[  729.345342][T16926] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  729.345522][T16926] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  729.345663][T16926] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  729.345798][T16926] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  729.817920][T16946] FAULT_INJECTION: forcing a failure.
[  729.817920][T16946] name failslab, interval 1, probability 0, space 0, times 0
[  729.817951][T16946] CPU: 0 UID: 0 PID: 16946 Comm: syz.1.2183 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  729.817974][T16946] Tainted: [L]=SOFTLOCKUP
[  729.817980][T16946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  729.817990][T16946] Call Trace:
[  729.817995][T16946]  <TASK>
[  729.818002][T16946]  dump_stack_lvl+0x100/0x190
[  729.818029][T16946]  should_fail_ex.cold+0x5/0xa
[  729.818048][T16946]  should_failslab+0xc2/0x120
[  729.818065][T16946]  __kmalloc_cache_noprof+0x7a/0x6f0
[  729.818085][T16946]  ? vkms_plane_duplicate_state+0x45/0x130
[  729.818112][T16946]  vkms_plane_duplicate_state+0x45/0x130
[  729.818135][T16946]  drm_atomic_get_plane_state+0x279/0x760
[  729.818163][T16946]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  729.818183][T16946]  ? trace_contention_end+0x140/0x180
[  729.818224][T16946]  ? __mutex_lock+0x26a/0x1b90
[  729.818246][T16946]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  729.818265][T16946]  ? drm_master_internal_acquire+0x21/0x80
[  729.818303][T16946]  drm_client_modeset_commit_locked+0x14d/0x580
[  729.818325][T16946]  drm_client_modeset_commit+0x4f/0x80
[  729.818345][T16946]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  729.818370][T16946]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  729.818390][T16946]  drm_fbdev_client_restore+0x1b/0x30
[  729.818413][T16946]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  729.818436][T16946]  drm_client_dev_restore+0x205/0x2a0
[  729.818458][T16946]  drm_release+0x2c6/0x360
[  729.818475][T16946]  ? __pfx_drm_release+0x10/0x10
[  729.818491][T16946]  __fput+0x3ff/0xb40
[  729.818513][T16946]  task_work_run+0x150/0x240
[  729.818535][T16946]  ? __pfx_task_work_run+0x10/0x10
[  729.818562][T16946]  exit_to_user_mode_loop+0x100/0x4a0
[  729.818583][T16946]  do_syscall_64+0x668/0xf80
[  729.818601][T16946]  ? clear_bhb_loop+0x40/0x90
[  729.818620][T16946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  729.818636][T16946] RIP: 0033:0x7f219a19c799
[  729.818651][T16946] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  729.818666][T16946] RSP: 002b:00007f219b07b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  729.818681][T16946] RAX: 0000000000000000 RBX: 00007f219a415fa0 RCX: 00007f219a19c799
[  729.818691][T16946] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  729.818701][T16946] RBP: 00007f219a232c99 R08: 0000000000000000 R09: 0000000000000000
[  729.818710][T16946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  729.818720][T16946] R13: 00007f219a416038 R14: 00007f219a415fa0 R15: 00007ffd77432b98
[  729.818741][T16946]  </TASK>
[  729.970185][T16954] sd 0:0:1:0: device reset
[  730.431030][ T6151] Bluetooth: hci0: command 0x0c1a tx timeout
[  730.447698][T16967] netlink: 206 bytes leftover after parsing attributes in process `syz.2.2185'.
[  730.508008][T16968] netlink: 206 bytes leftover after parsing attributes in process `syz.1.2186'.
[  731.383653][ T6151] Bluetooth: hci3: command 0x0c1a tx timeout
[  731.383684][ T6151] Bluetooth: hci2: command 0x0c1a tx timeout
[  731.383703][ T6151] Bluetooth: hci1: command 0x0c1a tx timeout
[  731.460253][T16981] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2188'.
[  731.474878][T16981] openvswitch: HfR: Dropping previously announced user features
[  731.629996][T16987] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2190'.
[  731.635729][T16987] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2190'.
[  731.825063][T16992] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2191'.
[  731.863334][T16992] openvswitch: HfR: Dropping previously announced user features
[  732.025201][T16996] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2192'.
[  732.074469][T16996] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2192'.
[  733.248069][T17026] netlink: 206 bytes leftover after parsing attributes in process `syz.2.2198'.
[  733.982450][T17038] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2200'.
[  734.110557][T17043] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2200'.
[  735.544265][T17055] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  735.544446][T17055] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  735.544597][T17055] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  735.544730][T17055] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  736.079095][T17078] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  736.079095][T17078] The task syz.2.2209 (17078) triggered the difference, watch for misbehavior.
[  736.906791][T12082] Bluetooth: hci0: command 0x0c1a tx timeout
[  737.546755][T12082] Bluetooth: hci3: command 0x0c1a tx timeout
[  737.552858][T12082] Bluetooth: hci2: command 0x0c1a tx timeout
[  737.560524][ T6151] Bluetooth: hci1: command 0x0c1a tx timeout
[  738.640371][T17115] FAULT_INJECTION: forcing a failure.
[  738.640371][T17115] name failslab, interval 1, probability 0, space 0, times 0
[  738.791808][T17115] CPU: 0 UID: 0 PID: 17115 Comm: syz.3.2215 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  738.791836][T17115] Tainted: [L]=SOFTLOCKUP
[  738.791842][T17115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  738.791852][T17115] Call Trace:
[  738.791858][T17115]  <TASK>
[  738.791865][T17115]  dump_stack_lvl+0x100/0x190
[  738.791893][T17115]  should_fail_ex.cold+0x5/0xa
[  738.791913][T17115]  should_failslab+0xc2/0x120
[  738.791930][T17115]  __kmalloc_cache_noprof+0x7a/0x6f0
[  738.791951][T17115]  ? vkms_plane_duplicate_state+0x45/0x130
[  738.791979][T17115]  vkms_plane_duplicate_state+0x45/0x130
[  738.792002][T17115]  drm_atomic_get_plane_state+0x279/0x760
[  738.792030][T17115]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  738.792050][T17115]  ? trace_contention_end+0x140/0x180
[  738.792074][T17115]  ? __mutex_lock+0x26a/0x1b90
[  738.792093][T17115]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  738.792114][T17115]  ? drm_master_internal_acquire+0x21/0x80
[  738.792150][T17115]  drm_client_modeset_commit_locked+0x14d/0x580
[  738.792172][T17115]  drm_client_modeset_commit+0x4f/0x80
[  738.792192][T17115]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  738.792222][T17115]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  738.792243][T17115]  drm_fbdev_client_restore+0x1b/0x30
[  738.792268][T17115]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  738.792291][T17115]  drm_client_dev_restore+0x205/0x2a0
[  738.792313][T17115]  drm_release+0x2c6/0x360
[  738.792331][T17115]  ? __pfx_drm_release+0x10/0x10
[  738.792347][T17115]  __fput+0x3ff/0xb40
[  738.792370][T17115]  task_work_run+0x150/0x240
[  738.792393][T17115]  ? __pfx_task_work_run+0x10/0x10
[  738.792419][T17115]  exit_to_user_mode_loop+0x100/0x4a0
[  738.792442][T17115]  do_syscall_64+0x668/0xf80
[  738.792459][T17115]  ? clear_bhb_loop+0x40/0x90
[  738.792478][T17115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  738.792494][T17115] RIP: 0033:0x7fb43f59c799
[  738.792508][T17115] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  738.792523][T17115] RSP: 002b:00007fb440427028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  738.792538][T17115] RAX: 0000000000000000 RBX: 00007fb43f815fa0 RCX: 00007fb43f59c799
[  738.792548][T17115] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  738.792556][T17115] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  738.792565][T17115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  738.792575][T17115] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  738.792597][T17115]  </TASK>
[  739.369537][T17115] sd 0:0:1:0: device reset
[  739.435264][T17119] sd 0:0:1:0: PR command failed: 1026
[  739.453262][T17119] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  739.487225][T17119] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  740.162864][T17090] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  740.214063][T17090] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  740.264122][T17090] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  740.310543][T17090] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  741.359491][T17140] zswap: compressor  not available
[  741.717662][T17140] zswap: compressor  not available
[  741.986210][T17140] zswap: compressor  not available
[  742.190113][ T6151] Bluetooth: hci0: command 0x0c1a tx timeout
[  742.201015][T17174] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2224'.
[  742.269098][ T6151] Bluetooth: hci2: command 0x0c1a tx timeout
[  742.275196][T12082] Bluetooth: hci1: command 0x0c1a tx timeout
[  742.351385][T12082] Bluetooth: hci3: command 0x0c1a tx timeout
[  742.417807][T17177] openvswitch: HfR: Dropping previously announced user features
[  743.205260][T17181] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  743.205454][T17181] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  743.205591][T17181] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  743.205744][T17181] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  743.534959][T17197] FAULT_INJECTION: forcing a failure.
[  743.534959][T17197] name failslab, interval 1, probability 0, space 0, times 0
[  743.534999][T17197] CPU: 0 UID: 0 PID: 17197 Comm: syz.0.2229 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  743.535021][T17197] Tainted: [L]=SOFTLOCKUP
[  743.535026][T17197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  743.535036][T17197] Call Trace:
[  743.535041][T17197]  <TASK>
[  743.535047][T17197]  dump_stack_lvl+0x100/0x190
[  743.535073][T17197]  should_fail_ex.cold+0x5/0xa
[  743.535091][T17197]  ? tomoyo_realpath_from_path+0xb6/0x690
[  743.535109][T17197]  should_failslab+0xc2/0x120
[  743.535125][T17197]  __kmalloc_noprof+0xe0/0x850
[  743.535152][T17197]  tomoyo_realpath_from_path+0xb6/0x690
[  743.535174][T17197]  tomoyo_path_number_perm+0x23c/0x580
[  743.535197][T17197]  ? tomoyo_path_number_perm+0x22e/0x580
[  743.535221][T17197]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  743.535264][T17197]  ? find_held_lock+0x2b/0x80
[  743.535278][T17197]  ? __fget_files+0x215/0x3d0
[  743.535291][T17197]  ? hook_file_ioctl_common+0x146/0x410
[  743.535320][T17197]  ? __fget_files+0x21f/0x3d0
[  743.535337][T17197]  security_file_ioctl+0xd3/0x230
[  743.535363][T17197]  __x64_sys_ioctl+0xb7/0x210
[  743.535386][T17197]  do_syscall_64+0x106/0xf80
[  743.535404][T17197]  ? clear_bhb_loop+0x40/0x90
[  743.535423][T17197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  743.535438][T17197] RIP: 0033:0x7fd54bd9c799
[  743.535452][T17197] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  743.535467][T17197] RSP: 002b:00007fd54cca9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  743.535482][T17197] RAX: ffffffffffffffda RBX: 00007fd54c015fa0 RCX: 00007fd54bd9c799
[  743.535492][T17197] RDX: 0000000000000000 RSI: 000000000000125f RDI: 0000000000000006
[  743.535501][T17197] RBP: 00007fd54cca9090 R08: 0000000000000000 R09: 0000000000000000
[  743.535510][T17197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  743.535519][T17197] R13: 00007fd54c016038 R14: 00007fd54c015fa0 R15: 00007ffd50bce3b8
[  743.535538][T17197]  </TASK>
[  743.535544][T17197] ERROR: Out of memory at tomoyo_realpath_from_path.
[  743.894543][T17205] FAULT_INJECTION: forcing a failure.
[  743.894543][T17205] name failslab, interval 1, probability 0, space 0, times 0
[  743.894575][T17205] CPU: 0 UID: 0 PID: 17205 Comm: syz.0.2231 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  743.894598][T17205] Tainted: [L]=SOFTLOCKUP
[  743.894604][T17205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  743.894613][T17205] Call Trace:
[  743.894619][T17205]  <TASK>
[  743.894626][T17205]  dump_stack_lvl+0x100/0x190
[  743.894653][T17205]  should_fail_ex.cold+0x5/0xa
[  743.894673][T17205]  should_failslab+0xc2/0x120
[  743.894689][T17205]  __kmalloc_cache_noprof+0x7a/0x6f0
[  743.894744][T17205]  ? vkms_plane_duplicate_state+0x45/0x130
[  743.894772][T17205]  vkms_plane_duplicate_state+0x45/0x130
[  743.894797][T17205]  drm_atomic_get_plane_state+0x279/0x760
[  743.894827][T17205]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  743.894847][T17205]  ? trace_contention_end+0x140/0x180
[  743.894870][T17205]  ? __mutex_lock+0x26a/0x1b90
[  743.894890][T17205]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  743.894909][T17205]  ? drm_master_internal_acquire+0x21/0x80
[  743.894945][T17205]  drm_client_modeset_commit_locked+0x14d/0x580
[  743.894967][T17205]  drm_client_modeset_commit+0x4f/0x80
[  743.894987][T17205]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  743.895010][T17205]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  743.895031][T17205]  drm_fbdev_client_restore+0x1b/0x30
[  743.895054][T17205]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  743.895077][T17205]  drm_client_dev_restore+0x205/0x2a0
[  743.895099][T17205]  drm_release+0x2c6/0x360
[  743.895115][T17205]  ? __pfx_drm_release+0x10/0x10
[  743.895132][T17205]  __fput+0x3ff/0xb40
[  743.895154][T17205]  task_work_run+0x150/0x240
[  743.895176][T17205]  ? __pfx_task_work_run+0x10/0x10
[  743.895203][T17205]  exit_to_user_mode_loop+0x100/0x4a0
[  743.895225][T17205]  do_syscall_64+0x668/0xf80
[  743.895242][T17205]  ? clear_bhb_loop+0x40/0x90
[  743.895261][T17205]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  743.895277][T17205] RIP: 0033:0x7fd54bd9c799
[  743.895291][T17205] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  743.895306][T17205] RSP: 002b:00007fd54cca9028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  743.895321][T17205] RAX: 0000000000000000 RBX: 00007fd54c015fa0 RCX: 00007fd54bd9c799
[  743.895332][T17205] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  743.895340][T17205] RBP: 00007fd54be32c99 R08: 0000000000000000 R09: 0000000000000000
[  743.895350][T17205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  743.895359][T17205] R13: 00007fd54c016038 R14: 00007fd54c015fa0 R15: 00007ffd50bce3b8
[  743.895381][T17205]  </TASK>
[  744.001375][T17207] sd 0:0:1:0: device reset
[  744.592391][T12082] Bluetooth: hci0: command 0x0c1a tx timeout
[  745.231167][T12082] Bluetooth: hci3: command 0x0c1a tx timeout
[  745.231199][T12082] Bluetooth: hci2: command 0x0c1a tx timeout
[  745.231224][T12082] Bluetooth: hci1: command 0x0c1a tx timeout
[  745.381635][T17234] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2235'.
[  745.383538][T17234] openvswitch: HfR: Dropping previously announced user features
[  745.985465][T17239] NFSD: Failed to start, no listeners configured.
[  746.062351][T17246] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26)
[  746.976882][T17256] netlink: 206 bytes leftover after parsing attributes in process `syz.2.2239'.
[  747.199109][T17212] ima: policy update failed
[  747.207292][   T29] audit: type=1802 audit(1773338308.548:6): pid=17212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2233" res=0 errno=0
[  747.476896][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  747.476948][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  748.183792][T17277] FAULT_INJECTION: forcing a failure.
[  748.183792][T17277] name failslab, interval 1, probability 0, space 0, times 0
[  748.183825][T17277] CPU: 0 UID: 0 PID: 17277 Comm: syz.1.2243 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  748.183848][T17277] Tainted: [L]=SOFTLOCKUP
[  748.183854][T17277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  748.183864][T17277] Call Trace:
[  748.183870][T17277]  <TASK>
[  748.183876][T17277]  dump_stack_lvl+0x100/0x190
[  748.183905][T17277]  should_fail_ex.cold+0x5/0xa
[  748.183925][T17277]  should_failslab+0xc2/0x120
[  748.183942][T17277]  __kmalloc_cache_noprof+0x7a/0x6f0
[  748.183962][T17277]  ? vkms_plane_duplicate_state+0x45/0x130
[  748.183990][T17277]  vkms_plane_duplicate_state+0x45/0x130
[  748.184013][T17277]  drm_atomic_get_plane_state+0x279/0x760
[  748.184040][T17277]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  748.184060][T17277]  ? trace_contention_end+0x140/0x180
[  748.184084][T17277]  ? __mutex_lock+0x26a/0x1b90
[  748.184103][T17277]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  748.184122][T17277]  ? drm_master_internal_acquire+0x21/0x80
[  748.184158][T17277]  drm_client_modeset_commit_locked+0x14d/0x580
[  748.184180][T17277]  drm_client_modeset_commit+0x4f/0x80
[  748.184209][T17277]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  748.184231][T17277]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  748.184253][T17277]  drm_fbdev_client_restore+0x1b/0x30
[  748.184277][T17277]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  748.184299][T17277]  drm_client_dev_restore+0x205/0x2a0
[  748.184321][T17277]  drm_release+0x2c6/0x360
[  748.184339][T17277]  ? __pfx_drm_release+0x10/0x10
[  748.184355][T17277]  __fput+0x3ff/0xb40
[  748.184378][T17277]  task_work_run+0x150/0x240
[  748.184400][T17277]  ? __pfx_task_work_run+0x10/0x10
[  748.184427][T17277]  exit_to_user_mode_loop+0x100/0x4a0
[  748.184448][T17277]  do_syscall_64+0x668/0xf80
[  748.184466][T17277]  ? clear_bhb_loop+0x40/0x90
[  748.184485][T17277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  748.184501][T17277] RIP: 0033:0x7f219a19c799
[  748.184515][T17277] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  748.184529][T17277] RSP: 002b:00007f219b07b028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  748.184545][T17277] RAX: 0000000000000000 RBX: 00007f219a415fa0 RCX: 00007f219a19c799
[  748.184555][T17277] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  748.184564][T17277] RBP: 00007f219a232c99 R08: 0000000000000000 R09: 0000000000000000
[  748.184574][T17277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  748.184585][T17277] R13: 00007f219a416038 R14: 00007f219a415fa0 R15: 00007ffd77432b98
[  748.184606][T17277]  </TASK>
[  748.316396][T17281] netlink: 206 bytes leftover after parsing attributes in process `syz.2.2244'.
[  748.397385][T17282] sd 0:0:1:0: device reset
[  748.854272][T17288] FAULT_INJECTION: forcing a failure.
[  748.854272][T17288] name failslab, interval 1, probability 0, space 0, times 0
[  748.854333][T17288] CPU: 0 UID: 0 PID: 17288 Comm: syz.0.2245 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  748.854355][T17288] Tainted: [L]=SOFTLOCKUP
[  748.854361][T17288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  748.854371][T17288] Call Trace:
[  748.854376][T17288]  <TASK>
[  748.854382][T17288]  dump_stack_lvl+0x100/0x190
[  748.854409][T17288]  should_fail_ex.cold+0x5/0xa
[  748.854428][T17288]  ? ring_buffer_read_start+0x1b9/0x460
[  748.854450][T17288]  should_failslab+0xc2/0x120
[  748.854466][T17288]  __kmalloc_noprof+0xe0/0x850
[  748.854492][T17288]  ring_buffer_read_start+0x1b9/0x460
[  748.854514][T17288]  ? __pfx_ring_buffer_read_start+0x10/0x10
[  748.854535][T17288]  ? lockdep_init_map_type+0x5c/0x250
[  748.854556][T17288]  ? ring_buffer_overruns+0x14e/0x1a0
[  748.854577][T17288]  tracing_open+0x9cd/0xef0
[  748.854598][T17288]  do_dentry_open+0x6d8/0x1660
[  748.854613][T17288]  ? __pfx_tracing_open+0x10/0x10
[  748.854635][T17288]  vfs_open+0x82/0x3f0
[  748.854656][T17288]  path_openat+0x208c/0x31a0
[  748.854678][T17288]  ? __pfx_path_openat+0x10/0x10
[  748.854700][T17288]  do_file_open+0x20e/0x430
[  748.854724][T17288]  ? __pfx_do_file_open+0x10/0x10
[  748.854754][T17288]  ? alloc_fd+0x476/0x790
[  748.854772][T17288]  ? do_getname+0x191/0x390
[  748.854793][T17288]  do_sys_openat2+0x10d/0x1e0
[  748.854813][T17288]  ? __pfx_do_sys_openat2+0x10/0x10
[  748.854840][T17288]  __x64_sys_openat+0x12d/0x210
[  748.854860][T17288]  ? __pfx___x64_sys_openat+0x10/0x10
[  748.854888][T17288]  do_syscall_64+0x106/0xf80
[  748.854906][T17288]  ? clear_bhb_loop+0x40/0x90
[  748.854925][T17288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  748.854940][T17288] RIP: 0033:0x7fd54bd9c799
[  748.854955][T17288] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  748.854970][T17288] RSP: 002b:00007fd54cca9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  748.854985][T17288] RAX: ffffffffffffffda RBX: 00007fd54c015fa0 RCX: 00007fd54bd9c799
[  748.854996][T17288] RDX: 1a6b75d638929210 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  748.855005][T17288] RBP: 00007fd54be32c99 R08: 0000000000000000 R09: 0000000000000000
[  748.855015][T17288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  748.855024][T17288] R13: 00007fd54c016038 R14: 00007fd54c015fa0 R15: 00007ffd50bce3b8
[  748.855045][T17288]  </TASK>
[  749.983759][T17310] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2251'.
[  750.006601][T17310] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2251'.
[  752.048027][T17340] sysfs: cannot create duplicate filename '/class/ieee80211/!PjEùrõ£Ò„yù*›"¤l-ý¤ôyåÁ–ú„L̓÷ÓÄ]'
[  752.048074][T17340] CPU: 0 UID: 0 PID: 17340 Comm: syz.1.2256 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  752.048098][T17340] Tainted: [L]=SOFTLOCKUP
[  752.048104][T17340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  752.048114][T17340] Call Trace:
[  752.048120][T17340]  <TASK>
[  752.048126][T17340]  dump_stack_lvl+0x100/0x190
[  752.048153][T17340]  sysfs_warn_dup.cold+0x1c/0x28
[  752.048177][T17340]  sysfs_do_create_link_sd+0x113/0x140
[  752.048200][T17340]  sysfs_create_link+0x61/0xc0
[  752.048220][T17340]  device_add+0x675/0x1950
[  752.048238][T17340]  ? __pfx_device_add+0x10/0x10
[  752.048252][T17340]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  752.048278][T17340]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[  752.048301][T17340]  wiphy_register+0x1e5b/0x2d30
[  752.048320][T17340]  ? __rtnl_unlock+0xb9/0xf0
[  752.048341][T17340]  ? netdev_run_todo+0x780/0x12c0
[  752.048364][T17340]  ? __pfx_wiphy_register+0x10/0x10
[  752.048384][T17340]  ? __asan_memset+0x23/0x50
[  752.048406][T17340]  ? minstrel_ht_alloc+0x5e6/0x7f0
[  752.048434][T17340]  ieee80211_register_hw+0x2cfd/0x4140
[  752.048464][T17340]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  752.048484][T17340]  ? __pfx___debug_object_init+0x10/0x10
[  752.048510][T17340]  ? find_held_lock+0x2b/0x80
[  752.048525][T17340]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  752.048550][T17340]  ? __hrtimer_setup+0x178/0x280
[  752.048572][T17340]  mac80211_hwsim_new_radio+0x2847/0x57d0
[  752.048606][T17340]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  752.048629][T17340]  ? __asan_memcpy+0x3c/0x60
[  752.048651][T17340]  hwsim_new_radio_nl+0xc1f/0x1340
[  752.048674][T17340]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  752.048701][T17340]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[  752.048725][T17340]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[  752.048751][T17340]  genl_family_rcv_msg_doit+0x214/0x300
[  752.048776][T17340]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  752.048798][T17340]  ? genl_get_cmd+0x3ef/0x720
[  752.048823][T17340]  ? bpf_lsm_capable+0x9/0x10
[  752.048839][T17340]  ? security_capable+0x80/0x260
[  752.048870][T17340]  ? ns_capable+0xd2/0xf0
[  752.048887][T17340]  genl_rcv_msg+0x560/0x800
[  752.048912][T17340]  ? __pfx_genl_rcv_msg+0x10/0x10
[  752.048936][T17340]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  752.048965][T17340]  netlink_rcv_skb+0x159/0x420
[  752.048984][T17340]  ? __pfx_genl_rcv_msg+0x10/0x10
[  752.049007][T17340]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  752.049035][T17340]  ? netlink_deliver_tap+0x1ae/0xcc0
[  752.049057][T17340]  genl_rcv+0x28/0x40
[  752.049077][T17340]  netlink_unicast+0x5aa/0x870
[  752.049099][T17340]  ? __pfx_netlink_unicast+0x10/0x10
[  752.049127][T17340]  netlink_sendmsg+0x8b0/0xda0
[  752.049150][T17340]  ? __pfx_netlink_sendmsg+0x10/0x10
[  752.049169][T17340]  ? __import_iovec+0x1d2/0x640
[  752.049186][T17340]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  752.049211][T17340]  ____sys_sendmsg+0x9e1/0xb70
[  752.049231][T17340]  ? __pfx_netlink_sendmsg+0x10/0x10
[  752.049253][T17340]  ? __pfx_____sys_sendmsg+0x10/0x10
[  752.049279][T17340]  ? __pfx_futex_wake_mark+0x10/0x10
[  752.049304][T17340]  ___sys_sendmsg+0x190/0x1e0
[  752.049328][T17340]  ? __pfx____sys_sendmsg+0x10/0x10
[  752.049375][T17340]  __sys_sendmsg+0x170/0x220
[  752.049394][T17340]  ? __pfx___sys_sendmsg+0x10/0x10
[  752.049412][T17340]  ? __x64_sys_futex+0x34f/0x4d0
[  752.049443][T17340]  do_syscall_64+0x106/0xf80
[  752.049461][T17340]  ? clear_bhb_loop+0x40/0x90
[  752.049480][T17340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.049496][T17340] RIP: 0033:0x7f219a19c799
[  752.049511][T17340] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  752.049526][T17340] RSP: 002b:00007f219b039028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  752.049541][T17340] RAX: ffffffffffffffda RBX: 00007f219a416180 RCX: 00007f219a19c799
[  752.049552][T17340] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 000000000000000b
[  752.049562][T17340] RBP: 00007f219a232c99 R08: 0000000000000000 R09: 0000000000000000
[  752.049571][T17340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  752.049580][T17340] R13: 00007f219a416218 R14: 00007f219a416180 R15: 00007ffd77432b98
[  752.049602][T17340]  </TASK>
[  755.329701][T17356] program syz.0.2260 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  755.702737][T17371] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  755.873085][T17374] FAULT_INJECTION: forcing a failure.
[  755.873085][T17374] name failslab, interval 1, probability 0, space 0, times 0
[  755.873117][T17374] CPU: 0 UID: 0 PID: 17374 Comm: syz.1.2263 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  755.873138][T17374] Tainted: [L]=SOFTLOCKUP
[  755.873144][T17374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  755.873153][T17374] Call Trace:
[  755.873159][T17374]  <TASK>
[  755.873166][T17374]  dump_stack_lvl+0x100/0x190
[  755.873194][T17374]  should_fail_ex.cold+0x5/0xa
[  755.873214][T17374]  should_failslab+0xc2/0x120
[  755.873230][T17374]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  755.873252][T17374]  ? vm_area_dup+0x27/0x8e0
[  755.873276][T17374]  vm_area_dup+0x27/0x8e0
[  755.873297][T17374]  copy_vma+0x643/0xac0
[  755.873321][T17374]  ? __pfx_copy_vma+0x10/0x10
[  755.873348][T17374]  ? __lock_acquire+0x4a5/0x2630
[  755.873378][T17374]  ? finish_task_switch.isra.0+0x200/0xb80
[  755.873396][T17374]  copy_vma_and_data+0x1cf/0x7c0
[  755.873419][T17374]  ? __pfx_copy_vma_and_data+0x10/0x10
[  755.873449][T17374]  ? __vma_start_write+0x17f/0x280
[  755.873468][T17374]  ? __pfx___vma_start_write+0x10/0x10
[  755.873502][T17374]  move_vma+0x51b/0x1890
[  755.873527][T17374]  ? __pfx_move_vma+0x10/0x10
[  755.873551][T17374]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[  755.873569][T17374]  ? cap_mmap_addr+0x4b/0x120
[  755.873590][T17374]  ? bpf_lsm_mmap_addr+0x9/0x30
[  755.873612][T17374]  ? security_mmap_addr+0x71/0x1e0
[  755.873628][T17374]  ? __get_unmapped_area+0x255/0x3e0
[  755.873646][T17374]  ? vrm_set_new_addr+0x204/0x290
[  755.873669][T17374]  mremap_to+0x1b7/0x450
[  755.873692][T17374]  do_mremap+0xb76/0x2130
[  755.873721][T17374]  ? __pfx_do_mremap+0x10/0x10
[  755.873752][T17374]  __do_sys_mremap+0x126/0x170
[  755.873773][T17374]  ? __pfx___do_sys_mremap+0x10/0x10
[  755.873795][T17374]  ? find_held_lock+0x2b/0x80
[  755.873811][T17374]  ? __x64_sys_futex+0x34f/0x4d0
[  755.873842][T17374]  do_syscall_64+0x106/0xf80
[  755.873860][T17374]  ? clear_bhb_loop+0x40/0x90
[  755.873878][T17374]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  755.873894][T17374] RIP: 0033:0x7f219a19c799
[  755.873908][T17374] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  755.873923][T17374] RSP: 002b:00007f219b07b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  755.873938][T17374] RAX: ffffffffffffffda RBX: 00007f219a415fa0 RCX: 00007f219a19c799
[  755.873948][T17374] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200001000000
[  755.873957][T17374] RBP: 00007f219a232c99 R08: 0000000100000000 R09: 0000000000000000
[  755.873967][T17374] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  755.873976][T17374] R13: 00007f219a416038 R14: 00007f219a415fa0 R15: 00007ffd77432b98
[  755.873996][T17374]  </TASK>
[  755.939509][   T29] audit: type=1800 audit(1773338317.294:7): pid=17374 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2263" name="features" dev="configfs" ino=57137 res=0 errno=0
[  756.041353][T17375] vivid-001: =================  START STATUS  =================
[  756.041539][T17375] vivid-001: Radio HW Seek Mode: Bounded
[  756.041578][T17375] vivid-001: Radio Programmable HW Seek: false
[  756.041595][T17375] vivid-001: RDS Rx I/O Mode: Block I/O
[  756.041612][T17375] vivid-001: Generate RBDS Instead of RDS: false
[  756.041629][T17375] vivid-001: RDS Reception: true
[  756.041645][T17375] vivid-001: RDS Program Type: 0 inactive
[  756.041666][T17375] vivid-001: RDS PS Name:  inactive
[  756.041685][T17375] vivid-001: RDS Radio Text:  inactive
[  756.041703][T17375] vivid-001: RDS Traffic Announcement: false inactive
[  756.041722][T17375] vivid-001: RDS Traffic Program: false inactive
[  756.041742][T17375] vivid-001: RDS Music: false inactive
[  756.041761][T17375] vivid-001: ==================  END STATUS  ==================
[  756.526352][T17370] rtc_cmos 00:00: Alarms can be up to one day in the future
[  756.965596][T17327] Process accounting paused
[  757.119834][T17390] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2267'.
[  757.165624][T17390] FAULT_INJECTION: forcing a failure.
[  757.165624][T17390] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  757.247282][ T5831] rtc_cmos 00:00: Alarms can be up to one day in the future
[  757.254777][T17390] CPU: 0 UID: 0 PID: 17390 Comm: syz.2.2267 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  757.254802][T17390] Tainted: [L]=SOFTLOCKUP
[  757.254808][T17390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  757.254817][T17390] Call Trace:
[  757.254824][T17390]  <TASK>
[  757.254831][T17390]  dump_stack_lvl+0x100/0x190
[  757.254857][T17390]  should_fail_ex.cold+0x5/0xa
[  757.254875][T17390]  _copy_from_user+0x2e/0xd0
[  757.254891][T17390]  copy_msghdr_from_user+0x9f/0x4f0
[  757.254917][T17390]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  757.254943][T17390]  ? rcu_is_watching+0x12/0xc0
[  757.254965][T17390]  ? ___sys_sendmsg+0x19d/0x1e0
[  757.254987][T17390]  ? kfree+0x2ec/0x6b0
[  757.255008][T17390]  ___sys_sendmsg+0x106/0x1e0
[  757.255032][T17390]  ? __pfx____sys_sendmsg+0x10/0x10
[  757.255072][T17390]  ? __pfx___might_resched+0x10/0x10
[  757.255097][T17390]  __sys_sendmmsg+0x205/0x430
[  757.255119][T17390]  ? __pfx___sys_sendmmsg+0x10/0x10
[  757.255143][T17390]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  757.255171][T17390]  ? fput+0x79/0x100
[  757.255188][T17390]  ? ksys_write+0x1ac/0x250
[  757.255202][T17390]  ? __pfx_ksys_write+0x10/0x10
[  757.255218][T17390]  __x64_sys_sendmmsg+0x9c/0x100
[  757.255236][T17390]  ? lockdep_hardirqs_on+0x78/0x100
[  757.255254][T17390]  do_syscall_64+0x106/0xf80
[  757.255271][T17390]  ? clear_bhb_loop+0x40/0x90
[  757.255290][T17390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  757.255306][T17390] RIP: 0033:0x7f8da379c799
[  757.255319][T17390] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  757.255334][T17390] RSP: 002b:00007f8da463c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  757.255349][T17390] RAX: ffffffffffffffda RBX: 00007f8da3a15fa0 RCX: 00007f8da379c799
[  757.255359][T17390] RDX: 0000000000000407 RSI: 0000200000000200 RDI: 0000000000000004
[  757.255368][T17390] RBP: 00007f8da463c090 R08: 0000000000000000 R09: 0000000000000000
[  757.255376][T17390] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002
[  757.255386][T17390] R13: 00007f8da3a16038 R14: 00007f8da3a15fa0 R15: 00007ffffb69e598
[  757.255405][T17390]  </TASK>
[  757.703569][ T5831] rtc_cmos 00:00: Alarms can be up to one day in the future
[  757.729192][ T5831] rtc_cmos 00:00: Alarms can be up to one day in the future
[  757.744630][ T5831] rtc_cmos 00:00: Alarms can be up to one day in the future
[  757.759808][ T5831] rtc rtc0: __rtc_set_alarm: err=-22
[  757.859679][T17399] FAULT_INJECTION: forcing a failure.
[  757.859679][T17399] name fail_futex, interval 1, probability 0, space 0, times 0
[  757.927719][T17399] CPU: 0 UID: 8 PID: 17399 Comm: syz.2.2268 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  757.927747][T17399] Tainted: [L]=SOFTLOCKUP
[  757.927754][T17399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  757.927763][T17399] Call Trace:
[  757.927768][T17399]  <TASK>
[  757.927775][T17399]  dump_stack_lvl+0x100/0x190
[  757.927804][T17399]  should_fail_ex.cold+0x5/0xa
[  757.927821][T17399]  ? __kernel_text_address+0xd/0x30
[  757.927845][T17399]  get_futex_key+0x1d2/0x1620
[  757.927865][T17399]  ? __pfx_get_futex_key+0x10/0x10
[  757.927884][T17399]  ? putname+0xb1/0x110
[  757.927904][T17399]  ? stack_trace_save+0x8e/0xc0
[  757.927919][T17399]  ? __pfx_stack_trace_save+0x10/0x10
[  757.927936][T17399]  futex_wait_setup+0x83/0x510
[  757.927963][T17399]  __futex_wait+0x19f/0x300
[  757.927986][T17399]  ? __pfx___futex_wait+0x10/0x10
[  757.928011][T17399]  ? __pfx_futex_wake_mark+0x10/0x10
[  757.928038][T17399]  ? futex_hash+0x2c5/0x380
[  757.928061][T17399]  futex_wait+0xed/0x380
[  757.928086][T17399]  ? __pfx_futex_wait+0x10/0x10
[  757.928113][T17399]  ? putname+0xb1/0x110
[  757.928128][T17399]  ? kmem_cache_free+0x124/0x6a0
[  757.928148][T17399]  ? do_sys_openat2+0x1b4/0x1e0
[  757.928171][T17399]  do_futex+0x1ef/0x350
[  757.928190][T17399]  ? __pfx_do_futex+0x10/0x10
[  757.928207][T17399]  ? __pfx_do_sys_openat2+0x10/0x10
[  757.928228][T17399]  ? __fget_files+0x21f/0x3d0
[  757.928244][T17399]  __x64_sys_futex+0x34f/0x4d0
[  757.928264][T17399]  ? __x64_sys_openat+0x12d/0x210
[  757.928283][T17399]  ? __pfx___x64_sys_futex+0x10/0x10
[  757.928310][T17399]  do_syscall_64+0x106/0xf80
[  757.928328][T17399]  ? clear_bhb_loop+0x40/0x90
[  757.928346][T17399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  757.928362][T17399] RIP: 0033:0x7f8da379c799
[  757.928376][T17399] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  757.928391][T17399] RSP: 002b:00007f8da463c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  757.928413][T17399] RAX: ffffffffffffffda RBX: 00007f8da3a15fa8 RCX: 00007f8da379c799
[  757.928424][T17399] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8da3a15fa8
[  757.928433][T17399] RBP: 00007f8da3a15fa0 R08: 0000000000000000 R09: 0000000000000000
[  757.928443][T17399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  757.928452][T17399] R13: 00007f8da3a16038 R14: 00007ffffb69e4b0 R15: 00007ffffb69e598
[  757.928473][T17399]  </TASK>
[  758.453254][T17401] FAULT_INJECTION: forcing a failure.
[  758.453254][T17401] name failslab, interval 1, probability 0, space 0, times 0
[  758.487557][T17401] CPU: 0 UID: 0 PID: 17401 Comm: syz.3.2270 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  758.487585][T17401] Tainted: [L]=SOFTLOCKUP
[  758.487590][T17401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  758.487600][T17401] Call Trace:
[  758.487606][T17401]  <TASK>
[  758.487612][T17401]  dump_stack_lvl+0x100/0x190
[  758.487640][T17401]  should_fail_ex.cold+0x5/0xa
[  758.487660][T17401]  should_failslab+0xc2/0x120
[  758.487676][T17401]  __kmalloc_cache_noprof+0x7a/0x6f0
[  758.487696][T17401]  ? vkms_plane_duplicate_state+0x45/0x130
[  758.487723][T17401]  vkms_plane_duplicate_state+0x45/0x130
[  758.487746][T17401]  drm_atomic_get_plane_state+0x279/0x760
[  758.487774][T17401]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  758.487794][T17401]  ? trace_contention_end+0x140/0x180
[  758.487817][T17401]  ? __mutex_lock+0x26a/0x1b90
[  758.487836][T17401]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  758.487856][T17401]  ? drm_master_internal_acquire+0x21/0x80
[  758.487892][T17401]  drm_client_modeset_commit_locked+0x14d/0x580
[  758.487914][T17401]  drm_client_modeset_commit+0x4f/0x80
[  758.487933][T17401]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  758.487955][T17401]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  758.487975][T17401]  drm_fbdev_client_restore+0x1b/0x30
[  758.487998][T17401]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  758.488021][T17401]  drm_client_dev_restore+0x205/0x2a0
[  758.488043][T17401]  drm_release+0x2c6/0x360
[  758.488060][T17401]  ? __pfx_drm_release+0x10/0x10
[  758.488076][T17401]  __fput+0x3ff/0xb40
[  758.488100][T17401]  task_work_run+0x150/0x240
[  758.488122][T17401]  ? __pfx_task_work_run+0x10/0x10
[  758.488149][T17401]  exit_to_user_mode_loop+0x100/0x4a0
[  758.488171][T17401]  do_syscall_64+0x668/0xf80
[  758.488190][T17401]  ? clear_bhb_loop+0x40/0x90
[  758.488209][T17401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  758.488225][T17401] RIP: 0033:0x7fb43f59c799
[  758.488239][T17401] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  758.488254][T17401] RSP: 002b:00007fb440427028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  758.488269][T17401] RAX: 0000000000000000 RBX: 00007fb43f815fa0 RCX: 00007fb43f59c799
[  758.488279][T17401] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  758.488288][T17401] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  758.488297][T17401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  758.488306][T17401] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  758.488326][T17401]  </TASK>
[  758.845549][T17405] sd 0:0:1:0: device reset
[  759.308237][T17412] FAULT_INJECTION: forcing a failure.
[  759.308237][T17412] name failslab, interval 1, probability 0, space 0, times 0
[  759.410755][T17412] CPU: 0 UID: 0 PID: 17412 Comm: syz.3.2271 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  759.410783][T17412] Tainted: [L]=SOFTLOCKUP
[  759.410789][T17412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  759.410799][T17412] Call Trace:
[  759.410805][T17412]  <TASK>
[  759.410812][T17412]  dump_stack_lvl+0x100/0x190
[  759.410840][T17412]  should_fail_ex.cold+0x5/0xa
[  759.410860][T17412]  should_failslab+0xc2/0x120
[  759.410877][T17412]  __kmalloc_cache_noprof+0x7a/0x6f0
[  759.410897][T17412]  ? vkms_plane_duplicate_state+0x45/0x130
[  759.410924][T17412]  vkms_plane_duplicate_state+0x45/0x130
[  759.410947][T17412]  drm_atomic_get_plane_state+0x279/0x760
[  759.410975][T17412]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  759.410995][T17412]  ? trace_contention_end+0x140/0x180
[  759.411019][T17412]  ? __mutex_lock+0x26a/0x1b90
[  759.411038][T17412]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  759.411058][T17412]  ? drm_master_internal_acquire+0x21/0x80
[  759.411094][T17412]  drm_client_modeset_commit_locked+0x14d/0x580
[  759.411116][T17412]  drm_client_modeset_commit+0x4f/0x80
[  759.411136][T17412]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  759.411158][T17412]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  759.411180][T17412]  drm_fbdev_client_restore+0x1b/0x30
[  759.411203][T17412]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  759.411226][T17412]  drm_client_dev_restore+0x205/0x2a0
[  759.411248][T17412]  drm_release+0x2c6/0x360
[  759.411273][T17412]  ? __pfx_drm_release+0x10/0x10
[  759.411290][T17412]  __fput+0x3ff/0xb40
[  759.411314][T17412]  task_work_run+0x150/0x240
[  759.411337][T17412]  ? __pfx_task_work_run+0x10/0x10
[  759.411364][T17412]  exit_to_user_mode_loop+0x100/0x4a0
[  759.411386][T17412]  do_syscall_64+0x668/0xf80
[  759.411404][T17412]  ? clear_bhb_loop+0x40/0x90
[  759.411423][T17412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  759.411439][T17412] RIP: 0033:0x7fb43f59c799
[  759.411453][T17412] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  759.411468][T17412] RSP: 002b:00007fb440427028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  759.411483][T17412] RAX: 0000000000000000 RBX: 00007fb43f815fa0 RCX: 00007fb43f59c799
[  759.411494][T17412] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  759.411503][T17412] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  759.411513][T17412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  759.411522][T17412] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  759.411544][T17412]  </TASK>
[  759.811675][T17412] sd 0:0:1:0: device reset
[  761.913983][T17441] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  761.941631][T17441] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  761.965697][T17441] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  761.980832][T17441] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  762.437433][T17459] netlink: 206 bytes leftover after parsing attributes in process `syz.1.2282'.
[  762.923574][ T6151] Bluetooth: hci0: command 0x0c1a tx timeout
[  763.960516][ T6151] Bluetooth: hci2: command 0x0c1a tx timeout
[  763.966651][T12082] Bluetooth: hci1: command 0x0c1a tx timeout
[  764.040469][ T6151] Bluetooth: hci3: command 0x0c1a tx timeout
[  764.082152][T17454] program syz.3.2280 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  765.123799][T17508] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2286'.
[  765.294109][T17496] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2286'.
[  765.941157][T17518] input: f¬
 as /devices/virtual/input/input21
[  766.410195][T17527] NFSD: Failed to start, no listeners configured.
[  766.441792][T17524] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1534274285.4004907851.3383930000), cmd(1)
[  766.560405][T12082] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  766.580390][T12082] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  766.589513][T12082] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  766.602219][T12082] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  766.610686][T12082] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  767.045423][T10271] ------------[ cut here ]------------
[  767.050953][T10271] ODEBUG: free active (active state 0) object: ffff888076b09460 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0
[  767.063875][T10271] WARNING: lib/debugobjects.c:629 at debug_print_object+0x18e/0x2a0, CPU#0: syz.3.938/10271
[  767.074059][T10271] Modules linked in:
[  767.077950][T10271] CPU: 0 UID: 0 PID: 10271 Comm: syz.3.938 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  767.089103][T10271] Tainted: [L]=SOFTLOCKUP
[  767.093446][T10271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  767.103565][T10271] RIP: 0010:debug_print_object+0x19b/0x2a0
[  767.110043][T10271] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d 12 70 e8 0b 41 56 48 8b 14 dd 60 0b 1b 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 4c 0f de 0b 01 48 83 c4 18 5b 5d 41 5c 41
[  767.130309][T10271] RSP: 0018:ffffc9000566f708 EFLAGS: 00010246
[  767.136817][T10271] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000
[  767.145311][T10271] RDX: ffffffff8c1b0aa0 RSI: ffffffff8c1b06c0 RDI: ffffffff90e442a0
[  767.153820][T10271] RBP: 0000000000000001 R08: ffff888076b09460 R09: ffffffff8bb2b8a0
[  767.162494][T10271] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1b06c0
[  767.170481][T10271] R13: ffffffff8bb2b8e0 R14: ffffffff8a95d7c0 R15: ffffc9000566f808
[  767.178518][T10271] FS:  0000000000000000(0000) GS:ffff88812434d000(0000) knlGS:0000000000000000
[  767.187482][T10271] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  767.194090][T10271] CR2: 0000200000600000 CR3: 0000000032e08000 CR4: 00000000003526f0
[  767.202080][T10271] Call Trace:
[  767.205378][T10271]  <TASK>
[  767.208309][T10271]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  767.213991][T10271]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  767.219792][T10271]  debug_check_no_obj_freed+0x4da/0x630
[  767.225924][T10271]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  767.232322][T10271]  ? __page_table_check_zero+0x333/0x410
[  767.237965][T10271]  ? __page_table_check_zero+0x338/0x410
[  767.243635][T10271]  __free_frozen_pages+0x392/0x10d0
[  767.249335][T10271]  hci_release_dev+0x4ef/0x630
[  767.254483][T10271]  ? __pfx_hci_release_dev+0x10/0x10
[  767.259767][T10271]  ? device_release+0x69/0x240
[  767.264665][T10271]  ? rcu_is_watching+0x12/0xc0
[  767.269472][T10271]  ? device_release+0x69/0x240
[  767.274338][T10271]  ? kfree+0x2ec/0x6b0
[  767.278408][T10271]  bt_host_release+0x6a/0xb0
[  767.283055][T10271]  ? __pfx_bt_host_release+0x10/0x10
[  767.288375][T10271]  device_release+0xa4/0x240
[  767.293035][T10271]  kobject_put+0x1f7/0x640
[  767.297519][T10271]  put_device+0x1f/0x30
[  767.301736][T10271]  vhci_release+0x185/0x230
[  767.306271][T10271]  ? __pfx_vhci_release+0x10/0x10
[  767.311293][T10271]  __fput+0x3ff/0xb40
[  767.315317][T10271]  task_work_run+0x150/0x240
[  767.319911][T10271]  ? __pfx_task_work_run+0x10/0x10
[  767.325221][T10271]  do_exit+0x8b8/0x2b60
[  767.329377][T10271]  ? __pfx_do_exit+0x10/0x10
[  767.334483][T10271]  ? cgroup_update_frozen_flag+0x107/0x210
[  767.340712][T10271]  ? find_held_lock+0x2b/0x80
[  767.345439][T10271]  ? get_signal+0x184f/0x21e0
[  767.350586][T10271]  do_group_exit+0xd5/0x2a0
[  767.355435][T10271]  get_signal+0x1ec7/0x21e0
[  767.359930][T10271]  ? __asan_memset+0x23/0x50
[  767.364558][T10271]  ? __pfx_get_signal+0x10/0x10
[  767.369400][T10271]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  767.374648][T10271]  arch_do_signal_or_restart+0x91/0x770
[  767.380185][T10271]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  767.386389][T10271]  ? __x64_sys_clock_nanosleep+0x347/0x480
[  767.392266][T10271]  exit_to_user_mode_loop+0x86/0x4a0
[  767.397549][T10271]  do_syscall_64+0x668/0xf80
[  767.402219][T10271]  ? clear_bhb_loop+0x40/0x90
[  767.406904][T10271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  767.412819][T10271] RIP: 0033:0x7fb43f55cfce
[  767.417220][T10271] Code: Unable to access opcode bytes at 0x7fb43f55cfa4.
[  767.424277][T10271] RSP: 002b:00007fb440426f58 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6
[  767.433223][T10271] RAX: fffffffffffffdfc RBX: 00007fb4404276c0 RCX: 00007fb43f55cfce
[  767.441520][T10271] RDX: 00007fb440426fb0 RSI: 0000000000000000 RDI: 0000000000000000
[  767.449532][T10271] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  767.458017][T10271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  767.466345][T10271] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  767.474369][T10271]  </TASK>
[  767.477402][T10271] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  767.484670][T10271] CPU: 0 UID: 0 PID: 10271 Comm: syz.3.938 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  767.495587][T10271] Tainted: [L]=SOFTLOCKUP
[  767.499889][T10271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  767.509928][T10271] Call Trace:
[  767.513189][T10271]  <TASK>
[  767.516280][T10271]  dump_stack_lvl+0x100/0x190
[  767.520974][T10271]  vpanic+0x552/0x970
[  767.524953][T10271]  ? __pfx_vpanic+0x10/0x10
[  767.529442][T10271]  panic+0xd1/0xe0
[  767.533150][T10271]  ? __pfx_panic+0x10/0x10
[  767.537638][T10271]  ? check_panic_on_warn+0x1f/0x90
[  767.542740][T10271]  check_panic_on_warn.cold+0x19/0x34
[  767.548098][T10271]  ? debug_print_object+0x18e/0x2a0
[  767.553283][T10271]  __warn.cold+0x191/0x348
[  767.557773][T10271]  __report_bug+0x296/0x3d0
[  767.562262][T10271]  ? debug_print_object+0x18e/0x2a0
[  767.567452][T10271]  ? __pfx___report_bug+0x10/0x10
[  767.572472][T10271]  ? __lock_acquire+0x4a5/0x2630
[  767.577397][T10271]  ? unwind_next_frame+0x3c8/0x1ea0
[  767.582595][T10271]  report_bug_entry+0xe1/0x290
[  767.587370][T10271]  ? debug_print_object+0x19b/0x2a0
[  767.592580][T10271]  handle_bug+0x1cd/0x2a0
[  767.596911][T10271]  exc_invalid_op+0x17/0x50
[  767.601412][T10271]  asm_exc_invalid_op+0x1a/0x20
[  767.606261][T10271] RIP: 0010:debug_print_object+0x19b/0x2a0
[  767.612061][T10271] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d 12 70 e8 0b 41 56 48 8b 14 dd 60 0b 1b 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 4c 0f de 0b 01 48 83 c4 18 5b 5d 41 5c 41
[  767.631653][T10271] RSP: 0018:ffffc9000566f708 EFLAGS: 00010246
[  767.637721][T10271] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000
[  767.645678][T10271] RDX: ffffffff8c1b0aa0 RSI: ffffffff8c1b06c0 RDI: ffffffff90e442a0
[  767.653634][T10271] RBP: 0000000000000001 R08: ffff888076b09460 R09: ffffffff8bb2b8a0
[  767.661596][T10271] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1b06c0
[  767.669559][T10271] R13: ffffffff8bb2b8e0 R14: ffffffff8a95d7c0 R15: ffffc9000566f808
[  767.677515][T10271]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  767.682969][T10271]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  767.688416][T10271]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  767.694217][T10271]  debug_check_no_obj_freed+0x4da/0x630
[  767.699760][T10271]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  767.705819][T10271]  ? __page_table_check_zero+0x333/0x410
[  767.711457][T10271]  ? __page_table_check_zero+0x338/0x410
[  767.717075][T10271]  __free_frozen_pages+0x392/0x10d0
[  767.722265][T10271]  hci_release_dev+0x4ef/0x630
[  767.727022][T10271]  ? __pfx_hci_release_dev+0x10/0x10
[  767.732319][T10271]  ? device_release+0x69/0x240
[  767.737067][T10271]  ? rcu_is_watching+0x12/0xc0
[  767.741822][T10271]  ? device_release+0x69/0x240
[  767.746570][T10271]  ? kfree+0x2ec/0x6b0
[  767.750627][T10271]  bt_host_release+0x6a/0xb0
[  767.755204][T10271]  ? __pfx_bt_host_release+0x10/0x10
[  767.760474][T10271]  device_release+0xa4/0x240
[  767.765051][T10271]  kobject_put+0x1f7/0x640
[  767.769462][T10271]  put_device+0x1f/0x30
[  767.773610][T10271]  vhci_release+0x185/0x230
[  767.778097][T10271]  ? __pfx_vhci_release+0x10/0x10
[  767.783106][T10271]  __fput+0x3ff/0xb40
[  767.787078][T10271]  task_work_run+0x150/0x240
[  767.791661][T10271]  ? __pfx_task_work_run+0x10/0x10
[  767.796767][T10271]  do_exit+0x8b8/0x2b60
[  767.800921][T10271]  ? __pfx_do_exit+0x10/0x10
[  767.805513][T10271]  ? cgroup_update_frozen_flag+0x107/0x210
[  767.811313][T10271]  ? find_held_lock+0x2b/0x80
[  767.815974][T10271]  ? get_signal+0x184f/0x21e0
[  767.820659][T10271]  do_group_exit+0xd5/0x2a0
[  767.825153][T10271]  get_signal+0x1ec7/0x21e0
[  767.829643][T10271]  ? __asan_memset+0x23/0x50
[  767.834233][T10271]  ? __pfx_get_signal+0x10/0x10
[  767.839069][T10271]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  767.844258][T10271]  arch_do_signal_or_restart+0x91/0x770
[  767.849811][T10271]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  767.855974][T10271]  ? __x64_sys_clock_nanosleep+0x347/0x480
[  767.861870][T10271]  exit_to_user_mode_loop+0x86/0x4a0
[  767.867150][T10271]  do_syscall_64+0x668/0xf80
[  767.871735][T10271]  ? clear_bhb_loop+0x40/0x90
[  767.876412][T10271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  767.882290][T10271] RIP: 0033:0x7fb43f55cfce
[  767.886690][T10271] Code: Unable to access opcode bytes at 0x7fb43f55cfa4.
[  767.893688][T10271] RSP: 002b:00007fb440426f58 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6
[  767.902090][T10271] RAX: fffffffffffffdfc RBX: 00007fb4404276c0 RCX: 00007fb43f55cfce
[  767.910044][T10271] RDX: 00007fb440426fb0 RSI: 0000000000000000 RDI: 0000000000000000
[  767.918087][T10271] RBP: 00007fb43f632c99 R08: 0000000000000000 R09: 0000000000000000
[  767.926039][T10271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  767.933992][T10271] R13: 00007fb43f816038 R14: 00007fb43f815fa0 R15: 00007ffe4ac6ba98
[  767.942046][T10271]  </TASK>
[  767.945122][T10271] Kernel Offset: disabled
[  767.949434][T10271] Rebooting in 86400 seconds..