last executing test programs:

1m17.361064501s ago: executing program 0 (id=3284):
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec2\x00', 0x20081, 0x0)
ioctl$auto_CEC_TRANSMIT(r0, 0xc0386105, &(0x7f0000000080)={0x40000000001, 0xfffffffffffffffe, 0x2, 0x8, 0x6, 0x206, "8af870f11121d0d95a00", 0x6, 0xff, 0x86, 0x9, 0x6, 0x5, 0x3})

1m17.039204764s ago: executing program 0 (id=3286):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
r0 = openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
read$auto(r0, 0x0, 0xa)
write$auto(r0, 0x0, 0x81)

1m16.645576354s ago: executing program 0 (id=3289):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000080))

1m16.352298218s ago: executing program 0 (id=3290):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/034/001\x00', 0xcc842, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0xf2, 0xfffffffffffffffe, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r1, 0x400454a4, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/ip6_flowlabel\x00', 0x42000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000002100)=""/15, 0xf)
close_range$auto(0x2, 0x8, 0x0)

1m14.641783385s ago: executing program 0 (id=3293):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/034/001\x00', 0xcc842, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0xf2, 0xfffffffffffffffe, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r1, 0x400454a4, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/ip6_flowlabel\x00', 0x42000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000002100)=""/15, 0xf)
close_range$auto(0x2, 0x8, 0x0)

1m12.565688488s ago: executing program 0 (id=3298):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r1 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000f40), 0x2100, 0x0)
ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(r1, 0x80489439, &(0x7f0000000f80)=[{0x3ff, 0x3, 0x8000000000000000}, {0x5, 0x5, 0x2}, {0xa6, 0x1, 0x2}])
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0)
statmount$auto(0x0, 0x0, 0x1fe, 0x5)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D2\x00', 0x80980, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r2 = openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
read$auto(r2, 0x0, 0xa)
write$auto(r2, 0x0, 0x81)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000000)="b2", 0x1)

57.494064306s ago: executing program 32 (id=3298):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r1 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000f40), 0x2100, 0x0)
ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(r1, 0x80489439, &(0x7f0000000f80)=[{0x3ff, 0x3, 0x8000000000000000}, {0x5, 0x5, 0x2}, {0xa6, 0x1, 0x2}])
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0)
statmount$auto(0x0, 0x0, 0x1fe, 0x5)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D2\x00', 0x80980, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r2 = openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
read$auto(r2, 0x0, 0xa)
write$auto(r2, 0x0, 0x81)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000000)="b2", 0x1)

12.607558198s ago: executing program 2 (id=3427):
clock_settime$auto(0x0, &(0x7f0000000000)={0x100000000, 0x3b9ac9ff})
adjtimex$auto(0x0)
adjtimex$auto(&(0x7f0000000540)={0x6f, 0x0, 0xff, 0x4, 0x5, 0x4, 0x800, 0x0, 0x7f, 0x4, 0x7, {0x200, 0x40000000000002}, 0x7f, 0x200100000001, 0x5, 0x9, 0x0, 0x100000081, 0x40000021, 0x18d, 0x6, 0x100000001, 0x2011})

12.223398912s ago: executing program 2 (id=3431):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/034/001\x00', 0xcc842, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0xf2, 0xfffffffffffffffe, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r0, 0x400454a4, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/ip6_flowlabel\x00', 0x42000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000002100)=""/15, 0xf)
close_range$auto(0x2, 0x8, 0x0)

10.324548997s ago: executing program 2 (id=3440):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
timer_create$auto(0x2, 0x0, 0x0)
timer_delete$auto(0x0)

9.571605534s ago: executing program 2 (id=3444):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r1, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0xffffffffffffff7f, 0x368e, 0x2, {0xffffffff, 0x20000000010000}, 0x5, 0x6, 0xfffffffffffffffd, 0x7, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0xdead, 0x804})
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x581402, 0x0)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000080), 0xc0402, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0xc0403d11, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
waitid$auto_P_ALL(0x0, 0x3b000, &(0x7f0000000280)={@siginfo_0_0={0x200, 0x0, 0x6, @_sigsys={&(0x7f00000000c0)="55eb8df319677f9aebf453b195011dc75b314a6a2de037085459dc03a1ad19978559dbc978c89a4fb1f552151699faea53575d94e9e2f930abeb4f1cd2fa58efd12b9315baeca5f900c19f32e51de1ba99fb4f82871232b3", 0x1000, 0x826}}}, 0x3, &(0x7f0000000300)={{0xda0000000000000, 0x969d}, {0x2, 0x6}, 0x8000000000000000, 0xa, 0x8, 0x9, 0xb871, 0x6, 0x9ffd, 0x81, 0x0, 0x1000000000f8c5, 0x1000, 0x81, 0xc, 0xd})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x1d)
pwrite64$auto(0xc8, 0x0, 0xfded, 0x6)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0)
open(&(0x7f0000000040)='./cgroup\x00', 0x80, 0xb5d1af1605322de0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
close_range$auto(0x2, 0x8, 0x0)

6.461340718s ago: executing program 3 (id=3460):
io_uring_register$auto(0xffffffffffffffff, 0xf, 0x0, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x21, 0x2, 0x2)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)

6.222392469s ago: executing program 3 (id=3463):
syz_clone3(0x0, 0x0)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03d4c62b24ede44c0c76c34edf7bde061903c2ee4c64110ac668239fa53ba42933ae74c3d173663248ff0945dd2e405e0d378b5a8e4643a7bc3b35a7248431450ca8901467ea6dc5d86de1e90f869f6a04ac10043676f3b2c7f1339b2d7468133fb8447d17846b6b78079ecc31d7d0f74caa4a3db1ac4d312bfdb34bd331f1f771a2396108561a52153d63a7b2a3a077a7e4c1a22bcb23e1f3e511fee310baa67904d2aad4d6671e8b77c7720e37e84e0efecb60a35f188cbe8b8b2fb3967b78aa482aabb103f23083baa9b2ae653731d5993db4054233dea4af25795e12eb4d6b046bdeea6adce8626e0def15dd32b0ec16a85d93e1dea980794033f4b46973062c64c0209f9d3efc6ea7704c8e8dfea8cdfbe2cb1e367bf634a1952190e0660994f79f0c622d47ee8f93ce1c2852db907ae68a29bcc960b26e0e634173287fd012c4bb3063c41d35c92e896b44080bc5a98e90907cd1d01cc0708019cc1c93c71f29bfe841c873ad2aa0565dfaeb86c8b8e58ea2075de2a562ba1b5dc4ca452df21f25453b7c7f9a3e31547f4e803cefbac3b94715f2ab1f9fc66570244472f2f29deb9bdf6dc5b18d54e3c2264f9598f2ea749d170a66d351acf003c3f37fe74a09a8a964ce2818e4b4efd1eb0e3bca5dfd2a053eeb5735b96d282d2e03866bd6581b5e5e541c74f0b92b932b234ac117342f156b4b23fc6dcbc92ada00ce404f54443b6e7fdac9acb79e5258a865ced633ff5356d13a3e9923bcd8e6d177c9fb8618f9393798d90d70c78207e40f95bb2b0a9308f29f4331bbdfc1021dface5a740473b462c47286fee1c9d0036c78134e108b5b218d3022fd277e1cdf0cdf8cd4b37d74c8dd47e00e50fcf8d336978a0e7624f94b8fdcd1c9459201231f343c7cb602083aa5", 0x2f8)
ioctl$auto_SNDCTL_SEQ_SYNC(r0, 0x5101, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x4000000000000000)
sendto$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3)
ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(0xffffffffffffffff, 0x80083314, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xebe, 0x401, 0x8402)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
timer_create$auto(0x3, 0x0, 0x0)
io_uring_setup$auto(0x40000002c55, 0x0)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0xa, 0x801, 0x84)
shutdown$auto(0xffffffffffffffff, 0x2)
socket(0xa, 0x1, 0x100)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r1, 0x0, 0x7ff, 0x400)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x1, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffeffffffff]}, 0x0)
write$auto(r2, 0x0, 0x100000a3d9)
select$auto(0x6, 0x0, 0x0, 0x0, 0x0)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)

5.081742906s ago: executing program 3 (id=3466):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/034/001\x00', 0xcc842, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0xf2, 0xfffffffffffffffe, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r0, 0x400454a4, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/ip6_flowlabel\x00', 0x42000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000002100)=""/15, 0xf)
close_range$auto(0x2, 0x8, 0x0)

4.792698424s ago: executing program 1 (id=3468):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x4c440, 0x0)
preadv2$auto(0x3, &(0x7f0000000180)={0x0, 0x80000001}, 0x5, 0x3, 0x7, 0x1000)

4.497647212s ago: executing program 1 (id=3470):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth0_to_bond\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r1)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000300)={0x28, r3, 0x1, 0x70bd2a, 0x25dfdc00, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x8800}, 0x4)

4.212047633s ago: executing program 1 (id=3472):
r0 = gettid()
semget$auto(0x0, 0x2e4a, 0x8000)
semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x4, 0x0)
semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x0, 0x36ec}, 0x1, 0x0)
kill$auto(r0, 0x11)

4.02058337s ago: executing program 4 (id=3473):
unshare$auto(0x40000080)

3.847993924s ago: executing program 1 (id=3474):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/034/001\x00', 0xcc842, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0xf2, 0xfffffffffffffffe, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r1, 0x400454a4, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/ip6_flowlabel\x00', 0x42000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000002100)=""/15, 0xf)
close_range$auto(0x2, 0x8, 0x0)

3.762595414s ago: executing program 3 (id=3475):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_clone3(0x0, 0x0)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040)="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", 0x2f8)
ioctl$auto_SNDCTL_SEQ_SYNC(r0, 0x5101, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x4000000000000000)
sendto$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3)
ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(0xffffffffffffffff, 0x80083314, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xebe, 0x401, 0x8402)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
timer_create$auto(0x3, 0x0, 0x0)
io_uring_setup$auto(0x40000002c55, 0x0)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0xa, 0x801, 0x84)
shutdown$auto(0xffffffffffffffff, 0x2)
socket(0xa, 0x1, 0x100)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r1, 0x0, 0x7ff, 0x400)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x1, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffeffffffff]}, 0x0)
write$auto(r2, 0x0, 0x100000a3d9)
select$auto(0x6, 0x0, 0x0, 0x0, 0x0)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)

3.353903583s ago: executing program 4 (id=3476):
r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x8882, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xc9\xb3\xbc\x8c\x1dga08\x90\x86\xdde\x1cJ\x99\x00\x11:\x14\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd8\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto_BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000000c0))

3.018635585s ago: executing program 4 (id=3477):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, 0x0, 0x54)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x52)

2.676793856s ago: executing program 3 (id=3478):
mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000)
sysfs$auto(0x2, 0x1f, 0x0)
r0 = socket(0x2, 0x801, 0x106)
getsockopt$auto(r0, 0x11c, 0x2, 0x0, 0x0)
io_uring_setup$auto(0x14f, 0x0)

2.675569579s ago: executing program 4 (id=3479):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vbi17\x00', 0x1a9001, 0x0)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
select$auto(0x5, 0x0, &(0x7f00000005c0)={[0x5, 0x80000001, 0x6, 0xffffffffffff77ca, 0x9, 0x7ffffffe, 0x100008, 0xfffffffffffffffa, 0x0, 0x5, 0x40000000400, 0x5, 0x5, 0xfffffffffffffff4, 0xb, 0xffffffffffffffff]}, 0x0, 0x0)

1.706486713s ago: executing program 4 (id=3480):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)

1.70292896s ago: executing program 1 (id=3481):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/034/001\x00', 0xcc842, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0xf2, 0xfffffffffffffffe, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r1, 0x400454a4, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/ip6_flowlabel\x00', 0x42000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000002100)=""/15, 0xf)
close_range$auto(0x2, 0x8, 0x0)

1.700055199s ago: executing program 2 (id=3482):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/034/001\x00', 0xcc842, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0xf2, 0xfffffffffffffffe, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r1, 0x400454a4, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/ip6_flowlabel\x00', 0x42000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000002100)=""/15, 0xf)
close_range$auto(0x2, 0x8, 0x0)

1.54617559s ago: executing program 4 (id=3483):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x4265)
unshare$auto(0x40000080)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129a00, 0x0)

237.136603ms ago: executing program 2 (id=3484):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_clone3(0x0, 0x0)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040)="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", 0x23a)
ioctl$auto_SNDCTL_SEQ_SYNC(r0, 0x5101, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x4000000000000000)
sendto$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)

87.952006ms ago: executing program 1 (id=3485):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(0x2, 0x8, 0x0)

0s ago: executing program 3 (id=3486):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_handshake(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$auto_HANDSHAKE_CMD_ACCEPT(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x70bd27, 0x25dfdc00, {}, [@HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4002040}, 0x2004881c)

kernel console output (not intermixed with test programs):

SCALL_64_after_hwframe+0x77/0x7f
[  459.373480][T13712] RIP: 0033:0x7fcb5b18f7c9
[  459.373502][T13712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  459.373534][T13712] RSP: 002b:00007fcb5c106038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  459.373560][T13712] RAX: ffffffffffffffda RBX: 00007fcb5b3e5fa0 RCX: 00007fcb5b18f7c9
[  459.373579][T13712] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  459.373595][T13712] RBP: 00007fcb5b213f91 R08: 0000000000000000 R09: 0000000000000000
[  459.373612][T13712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  459.373628][T13712] R13: 00007fcb5b3e6038 R14: 00007fcb5b3e5fa0 R15: 00007ffd1a652bc8
[  459.373666][T13712]  </TASK>
[  461.900416][T13720] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1784 with max blocks 1 with error 117
[  461.958501][T13720] EXT4-fs (sda1): This should not happen!! Data will be lost
[  461.958501][T13720] 
[  462.396491][T13748] sp0: Synchronizing with TNC
[  462.557516][T13734] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2110'.
[  464.207647][T13767] FAULT_INJECTION: forcing a failure.
[  464.207647][T13767] name failslab, interval 1, probability 0, space 0, times 0
[  464.337901][T13767] CPU: 1 UID: 0 PID: 13767 Comm: syz.0.2118 Not tainted syzkaller #0 PREEMPT(full) 
[  464.337940][T13767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  464.337958][T13767] Call Trace:
[  464.337968][T13767]  <TASK>
[  464.337980][T13767]  dump_stack_lvl+0x16c/0x1f0
[  464.338016][T13767]  should_fail_ex+0x512/0x640
[  464.338044][T13767]  ? kmem_cache_alloc_noprof+0x62/0x720
[  464.338091][T13767]  should_failslab+0xc2/0x120
[  464.338127][T13767]  kmem_cache_alloc_noprof+0x75/0x720
[  464.338170][T13767]  ? sk_prot_alloc+0x60/0x2a0
[  464.338210][T13767]  ? sk_prot_alloc+0x60/0x2a0
[  464.338241][T13767]  sk_prot_alloc+0x60/0x2a0
[  464.338284][T13767]  sk_alloc+0x36/0xb80
[  464.338314][T13767]  inet6_create+0x381/0x12b0
[  464.338352][T13767]  ? inet6_create+0x7f/0x12b0
[  464.338391][T13767]  __sock_create+0x339/0x8a0
[  464.338435][T13767]  inet_ctl_sock_create+0x94/0x230
[  464.338475][T13767]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[  464.338515][T13767]  ? ndisc_net_init+0x1bc/0x250
[  464.338553][T13767]  ? __pfx_ndisc_net_init+0x10/0x10
[  464.338594][T13767]  ? __pfx_igmp6_net_init+0x10/0x10
[  464.338633][T13767]  igmp6_net_init+0x35/0x470
[  464.338658][T13767]  ? __pfx_igmp6_net_init+0x10/0x10
[  464.338696][T13767]  ops_init+0x1e2/0x5f0
[  464.338730][T13767]  setup_net+0x11d/0x3a0
[  464.338762][T13767]  ? __pfx_setup_net+0x10/0x10
[  464.338790][T13767]  ? lockdep_init_map_type+0x5c/0x270
[  464.338820][T13767]  ? mutex_init_lockep+0x110/0x150
[  464.338856][T13767]  copy_net_ns+0x351/0x5d0
[  464.338893][T13767]  create_new_namespaces+0x3ea/0xab0
[  464.338941][T13767]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  464.338981][T13767]  ksys_unshare+0x45b/0xa40
[  464.339006][T13767]  ? __pfx_ksys_unshare+0x10/0x10
[  464.339047][T13767]  ? xfd_validate_state+0x61/0x180
[  464.339097][T13767]  __x64_sys_unshare+0x31/0x40
[  464.339121][T13767]  do_syscall_64+0xcd/0xf80
[  464.339155][T13767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  464.339183][T13767] RIP: 0033:0x7fcb5b18f7c9
[  464.339206][T13767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  464.339233][T13767] RSP: 002b:00007fcb5c106038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  464.339260][T13767] RAX: ffffffffffffffda RBX: 00007fcb5b3e5fa0 RCX: 00007fcb5b18f7c9
[  464.339285][T13767] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  464.339301][T13767] RBP: 00007fcb5b213f91 R08: 0000000000000000 R09: 0000000000000000
[  464.339319][T13767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  464.339336][T13767] R13: 00007fcb5b3e6038 R14: 00007fcb5b3e5fa0 R15: 00007ffd1a652bc8
[  464.339377][T13767]  </TASK>
[  464.637732][T13767] Failed to initialize the IGMP6 control socket (err -105)
[  465.930577][T13785] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  465.941550][ T3464] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1808 with max blocks 1 with error 117
[  465.984445][ T3464] EXT4-fs (sda1): This should not happen!! Data will be lost
[  465.984445][ T3464] 
[  467.961781][T13803] Format for adding new device is "id port_count num_queues" (uint uint unit).
[  473.270579][T13864] size and base must be multiples of 4 kiB
[  473.276425][T13864] CPU: 0 UID: 0 PID: 13864 Comm: syz.3.2145 Not tainted syzkaller #0 PREEMPT(full) 
[  473.276447][T13864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  473.276457][T13864] Call Trace:
[  473.276464][T13864]  <TASK>
[  473.276471][T13864]  dump_stack_lvl+0x16c/0x1f0
[  473.276496][T13864]  mtrr_del+0xd1/0x110
[  473.276520][T13864]  mtrr_ioctl+0x922/0xcf0
[  473.276541][T13864]  ? __pfx_mtrr_ioctl+0x10/0x10
[  473.276564][T13864]  ? find_held_lock+0x2b/0x80
[  473.276589][T13864]  ? __fget_files+0x20e/0x3c0
[  473.276607][T13864]  ? __pfx_mtrr_ioctl+0x10/0x10
[  473.276627][T13864]  proc_reg_unlocked_ioctl+0x229/0x320
[  473.276644][T13864]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  473.276661][T13864]  __x64_sys_ioctl+0x18e/0x210
[  473.276677][T13864]  do_syscall_64+0xcd/0xf80
[  473.276695][T13864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  473.276710][T13864] RIP: 0033:0x7fe35578f7c9
[  473.276724][T13864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  473.276738][T13864] RSP: 002b:00007fe3565aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  473.276753][T13864] RAX: ffffffffffffffda RBX: 00007fe3559e5fa0 RCX: 00007fe35578f7c9
[  473.276762][T13864] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000009
[  473.276771][T13864] RBP: 00007fe355813f91 R08: 0000000000000000 R09: 0000000000000000
[  473.276780][T13864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  473.276789][T13864] R13: 00007fe3559e6038 R14: 00007fe3559e5fa0 R15: 00007fff537f3b38
[  473.276810][T13864]  </TASK>
[  474.558964][T13881] ptp ptp0: only physical clock in use now
[  476.749416][T13914] bond0: invalid ARP target specified
[  479.272572][T13931] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2158'.
[  481.673499][T13972] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  483.031235][   T30] audit: type=1806 audit(4294967395.389:9): xattr="." res=0
[  483.048649][T13991] FAULT_INJECTION: forcing a failure.
[  483.048649][T13991] name failslab, interval 1, probability 0, space 0, times 0
[  483.069076][T13991] CPU: 1 UID: 0 PID: 13991 Comm: syz.0.2170 Not tainted syzkaller #0 PREEMPT(full) 
[  483.069116][T13991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  483.069134][T13991] Call Trace:
[  483.069144][T13991]  <TASK>
[  483.069157][T13991]  dump_stack_lvl+0x16c/0x1f0
[  483.069196][T13991]  should_fail_ex+0x512/0x640
[  483.069224][T13991]  ? kmem_cache_alloc_node_noprof+0x65/0x760
[  483.069270][T13991]  should_failslab+0xc2/0x120
[  483.069304][T13991]  kmem_cache_alloc_node_noprof+0x78/0x760
[  483.069346][T13991]  ? __alloc_skb+0x2b2/0x380
[  483.069379][T13991]  ? __alloc_skb+0x2b2/0x380
[  483.069401][T13991]  __alloc_skb+0x2b2/0x380
[  483.069425][T13991]  ? __pfx___alloc_skb+0x10/0x10
[  483.069450][T13991]  ? _copy_from_iter+0x15d/0x1720
[  483.069492][T13991]  _sctp_make_chunk+0x51/0x270
[  483.069523][T13991]  sctp_make_datafrag_empty+0x16f/0x240
[  483.069556][T13991]  ? __pfx_sctp_make_datafrag_empty+0x10/0x10
[  483.069599][T13991]  sctp_datamsg_from_user+0x595/0x1330
[  483.069645][T13991]  sctp_sendmsg_to_asoc+0xae2/0x1bd0
[  483.069681][T13991]  ? sctp_assoc_set_primary+0x177/0x300
[  483.069718][T13991]  ? sctp_assoc_add_peer+0x252/0x1510
[  483.069761][T13991]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[  483.069794][T13991]  ? sctp_connect_new_asoc+0x41e/0x770
[  483.069834][T13991]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  483.069873][T13991]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  483.069912][T13991]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  483.069953][T13991]  sctp_sendmsg+0xe99/0x1e00
[  483.070001][T13991]  ? __pfx_sctp_sendmsg+0x10/0x10
[  483.070048][T13991]  ? __pfx___might_resched+0x10/0x10
[  483.070096][T13991]  ? aa_sk_perm+0x2f4/0xae0
[  483.070134][T13991]  ? __pfx_aa_sk_perm+0x10/0x10
[  483.070181][T13991]  ? __pfx_sctp_sendmsg+0x10/0x10
[  483.070221][T13991]  inet_sendmsg+0x11c/0x140
[  483.070249][T13991]  ____sys_sendmsg+0x973/0xc30
[  483.070288][T13991]  ? __pfx_____sys_sendmsg+0x10/0x10
[  483.070328][T13991]  ? find_held_lock+0x2b/0x80
[  483.070364][T13991]  ? futex_unqueue+0x133/0x2c0
[  483.070398][T13991]  ___sys_sendmsg+0x134/0x1d0
[  483.070431][T13991]  ? __pfx____sys_sendmsg+0x10/0x10
[  483.070478][T13991]  ? find_held_lock+0x2b/0x80
[  483.070537][T13991]  __sys_sendmmsg+0x200/0x420
[  483.070572][T13991]  ? __pfx___sys_sendmmsg+0x10/0x10
[  483.070612][T13991]  ? __pfx_do_futex+0x10/0x10
[  483.070663][T13991]  ? xfd_validate_state+0x61/0x180
[  483.070700][T13991]  ? __pfx_do_writev+0x10/0x10
[  483.070737][T13991]  __x64_sys_sendmmsg+0x9c/0x100
[  483.070766][T13991]  ? lockdep_hardirqs_on+0x7c/0x110
[  483.070797][T13991]  do_syscall_64+0xcd/0xf80
[  483.070831][T13991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.070859][T13991] RIP: 0033:0x7fcb5b18f7c9
[  483.070882][T13991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  483.070909][T13991] RSP: 002b:00007fcb5c106038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  483.070954][T13991] RAX: ffffffffffffffda RBX: 00007fcb5b3e5fa0 RCX: 00007fcb5b18f7c9
[  483.070973][T13991] RDX: 0000000000000008 RSI: 0000200000000140 RDI: 0000000000000003
[  483.070991][T13991] RBP: 00007fcb5b213f91 R08: 0000000000000000 R09: 0000000000000000
[  483.071009][T13991] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000000
[  483.071035][T13991] R13: 00007fcb5b3e6038 R14: 00007fcb5b3e5fa0 R15: 00007ffd1a652bc8
[  483.071074][T13991]  </TASK>
[  483.410774][   T60] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 948 with max blocks 2 with error 117
[  483.426877][   T60] EXT4-fs (sda1): This should not happen!! Data will be lost
[  483.426877][   T60] 
[  483.705077][T13993] can0: slcan on ttyS2.
[  483.819317][T13993] can0 (unregistered): slcan off ttyS2.
[  488.445800][T14087] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1718 with max blocks 1 with error 117
[  488.460500][T14087] EXT4-fs (sda1): This should not happen!! Data will be lost
[  488.460500][T14087] 
[  488.822904][   T51] Bluetooth: hci0: unexpected event 0x32 length: 727 > 9
[  489.442820][T14095] zswap: compressor  not available
[  489.805250][T14095] random: crng reseeded on system resumption
[  490.077516][T14102] FAULT_INJECTION: forcing a failure.
[  490.077516][T14102] name failslab, interval 1, probability 0, space 0, times 0
[  490.117464][T14102] CPU: 0 UID: 0 PID: 14102 Comm: syz.0.2192 Not tainted syzkaller #0 PREEMPT(full) 
[  490.117498][T14102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  490.117509][T14102] Call Trace:
[  490.117515][T14102]  <TASK>
[  490.117530][T14102]  dump_stack_lvl+0x16c/0x1f0
[  490.117553][T14102]  should_fail_ex+0x512/0x640
[  490.117569][T14102]  ? __kmalloc_cache_noprof+0x5f/0x770
[  490.117594][T14102]  should_failslab+0xc2/0x120
[  490.117613][T14102]  __kmalloc_cache_noprof+0x72/0x770
[  490.117635][T14102]  ? init_srcu_struct_fields+0x97a/0xde0
[  490.117656][T14102]  ? init_srcu_struct_fields+0x97a/0xde0
[  490.117672][T14102]  init_srcu_struct_fields+0x97a/0xde0
[  490.117690][T14102]  ? lockdep_init_map_type+0x5c/0x270
[  490.117709][T14102]  kvm_dev_ioctl+0x7ac/0x1a80
[  490.117729][T14102]  ? find_held_lock+0x2b/0x80
[  490.117748][T14102]  ? hook_file_ioctl_common+0x145/0x410
[  490.117766][T14102]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  490.117784][T14102]  ? __fget_files+0x20e/0x3c0
[  490.117804][T14102]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  490.117822][T14102]  __x64_sys_ioctl+0x18e/0x210
[  490.117838][T14102]  do_syscall_64+0xcd/0xf80
[  490.117857][T14102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.117872][T14102] RIP: 0033:0x7fcb5b18f7c9
[  490.117885][T14102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  490.117899][T14102] RSP: 002b:00007fcb5c0e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  490.117914][T14102] RAX: ffffffffffffffda RBX: 00007fcb5b3e6090 RCX: 00007fcb5b18f7c9
[  490.117923][T14102] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000004
[  490.117932][T14102] RBP: 00007fcb5b213f91 R08: 0000000000000000 R09: 0000000000000000
[  490.117941][T14102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  490.117950][T14102] R13: 00007fcb5b3e6128 R14: 00007fcb5b3e6090 R15: 00007ffd1a652bc8
[  490.117969][T14102]  </TASK>
[  492.412169][T14124] FAULT_INJECTION: forcing a failure.
[  492.412169][T14124] name failslab, interval 1, probability 0, space 0, times 0
[  492.412211][T14124] CPU: 0 UID: 0 PID: 14124 Comm: syz.0.2197 Not tainted syzkaller #0 PREEMPT(full) 
[  492.412244][T14124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  492.412262][T14124] Call Trace:
[  492.412272][T14124]  <TASK>
[  492.412283][T14124]  dump_stack_lvl+0x16c/0x1f0
[  492.412318][T14124]  should_fail_ex+0x512/0x640
[  492.412346][T14124]  ? __kmalloc_cache_noprof+0x5f/0x770
[  492.412389][T14124]  should_failslab+0xc2/0x120
[  492.412425][T14124]  __kmalloc_cache_noprof+0x72/0x770
[  492.412464][T14124]  ? kvm_dev_ioctl+0xa8a/0x1a80
[  492.412502][T14124]  ? kvm_dev_ioctl+0xa8a/0x1a80
[  492.412532][T14124]  kvm_dev_ioctl+0xa8a/0x1a80
[  492.412569][T14124]  ? find_held_lock+0x2b/0x80
[  492.412604][T14124]  ? hook_file_ioctl_common+0x145/0x410
[  492.412637][T14124]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  492.412677][T14124]  ? __fget_files+0x20e/0x3c0
[  492.412713][T14124]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  492.412747][T14124]  __x64_sys_ioctl+0x18e/0x210
[  492.412778][T14124]  do_syscall_64+0xcd/0xf80
[  492.412813][T14124]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.412841][T14124] RIP: 0033:0x7fcb5b18f7c9
[  492.412863][T14124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  492.412889][T14124] RSP: 002b:00007fcb5c0e5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  492.412915][T14124] RAX: ffffffffffffffda RBX: 00007fcb5b3e6090 RCX: 00007fcb5b18f7c9
[  492.412934][T14124] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  492.412951][T14124] RBP: 00007fcb5b213f91 R08: 0000000000000000 R09: 0000000000000000
[  492.412977][T14124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  492.412994][T14124] R13: 00007fcb5b3e6128 R14: 00007fcb5b3e6090 R15: 00007ffd1a652bc8
[  492.413034][T14124]  </TASK>
[  495.241950][T14155] usb usb36: usbfs: process 14155 (syz.2.2206) did not claim interface 0 before use
[  496.067716][   T60] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1810 with max blocks 1 with error 117
[  496.093347][   T60] EXT4-fs (sda1): This should not happen!! Data will be lost
[  496.093347][   T60] 
[  496.159483][T14170] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  497.359903][T14184] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1719 with max blocks 1 with error 117
[  497.387366][T14184] EXT4-fs (sda1): This should not happen!! Data will be lost
[  497.387366][T14184] 
[  497.928852][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805bfdb400: rx timeout, send abort
[  497.937331][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805bfdb400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  501.539463][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  501.547843][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  502.093048][T14270] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20
[  502.369027][T14272] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21
[  503.611363][   T51] Bluetooth: hci2: unexpected event 0x16 length: 440 > 6
[  504.103805][T14307] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.1.2231: Error -117 reading block bitmap for 3
[  504.151212][T14307] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.1.2231: Error -117 reading block bitmap for 2
[  504.167770][T14307] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.1.2231: Error -117 reading block bitmap for 2
[  504.203083][T14307] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.1.2231: Error -117 reading block bitmap for 2
[  504.283237][T14307] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.1.2231: bg 1: bad block bitmap checksum
[  504.296992][T14307] EXT4-fs error (device sda1) in ext4_mb_clear_bb:6667: Filesystem failed CRC
[  504.699771][T14324] [U] 	
[  504.703001][T14324] [U] 
[  504.705746][T14324] [U] 
[  504.708469][T14324] [U] 
[  504.711190][T14324] [U] 
[  504.787357][T14324] [U] 
[  504.790103][T14324] [U] 
[  504.793052][T14324] [U] 
[  504.795750][T14324] [U] 
[  504.959778][   T30] audit: type=1800 audit(4294967417.319:10): pid=14328 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2238" name="SYSV00000014" dev="hugetlbfs" ino=0 res=0 errno=0
[  505.369986][T14324] [U] 
[  507.690763][T14373] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE�r��҄y�*�"�l-���y–��
[  512.866378][T14441] rtc_cmos 00:00: Alarms can be up to one day in the future
[  514.635013][T14470] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.3.2261: bg 4: bad block bitmap checksum
[  514.655246][T14470] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 74
[  514.701471][T14470] EXT4-fs (sda1): This should not happen!! Data will be lost
[  514.701471][T14470] 
[  515.260654][T14462] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  515.289176][T14462] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  515.339629][T14462] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  515.532707][T14462] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  516.123073][T14491] ima: policy update failed
[  516.171475][   T30] audit: type=1802 audit(4294967428.529:11): pid=14491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2265" res=0 errno=0
[  516.208321][T14491] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2265'.
[  516.474327][T14503] usb usb36: usbfs: process 14503 (syz.0.2268) did not claim interface 0 before use
[  516.580467][   T51] Bluetooth: hci0: command 0x0c1a tx timeout
[  517.297368][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  517.377339][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  517.439170][T14517] nvme_fcloop: unknown parameter or missing value '�I�ߋ�E�o'
[  517.547336][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  518.444712][T14542] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2274'.
[  518.616272][T14538] Console: switching to colour frame buffer device 4x6
[  518.778730][T14542] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  518.902741][T14542] bond0 (unregistering): Released all slaves
[  521.494498][T14597] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  521.518499][T14597] EXT4-fs (sda1): This should not happen!! Data will be lost
[  521.518499][T14597] 
[  521.551038][T14592] random: crng reseeded on system resumption
[  521.566087][T14589] zswap: compressor  not available
[  523.048498][T14615] random: crng reseeded on system resumption
[  523.471546][T14608] FAULT_INJECTION: forcing a failure.
[  523.471546][T14608] name failslab, interval 1, probability 0, space 0, times 0
[  523.549676][T14608] CPU: 0 UID: 0 PID: 14608 Comm: syz.0.2287 Not tainted syzkaller #0 PREEMPT(full) 
[  523.549715][T14608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  523.549731][T14608] Call Trace:
[  523.549742][T14608]  <TASK>
[  523.549753][T14608]  dump_stack_lvl+0x16c/0x1f0
[  523.549792][T14608]  should_fail_ex+0x512/0x640
[  523.549819][T14608]  ? __kmalloc_noprof+0xca/0x870
[  523.549860][T14608]  should_failslab+0xc2/0x120
[  523.549891][T14608]  __kmalloc_noprof+0xdd/0x870
[  523.549927][T14608]  ? ops_init+0x77/0x5f0
[  523.549960][T14608]  ? ops_init+0x77/0x5f0
[  523.549995][T14608]  ops_init+0x77/0x5f0
[  523.550025][T14608]  setup_net+0x11d/0x3a0
[  523.550055][T14608]  ? __pfx_setup_net+0x10/0x10
[  523.550085][T14608]  ? lockdep_init_map_type+0x5c/0x270
[  523.550117][T14608]  ? mutex_init_lockep+0x110/0x150
[  523.550151][T14608]  copy_net_ns+0x351/0x5d0
[  523.550186][T14608]  create_new_namespaces+0x3ea/0xab0
[  523.550230][T14608]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  523.550267][T14608]  ksys_unshare+0x45b/0xa40
[  523.550293][T14608]  ? __pfx_ksys_unshare+0x10/0x10
[  523.550345][T14608]  __x64_sys_unshare+0x31/0x40
[  523.550369][T14608]  do_syscall_64+0xcd/0xf80
[  523.550402][T14608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  523.550430][T14608] RIP: 0033:0x7fcb5b18f7c9
[  523.550452][T14608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  523.550478][T14608] RSP: 002b:00007fcb5c106038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  523.550504][T14608] RAX: ffffffffffffffda RBX: 00007fcb5b3e5fa0 RCX: 00007fcb5b18f7c9
[  523.550523][T14608] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  523.550539][T14608] RBP: 00007fcb5b213f91 R08: 0000000000000000 R09: 0000000000000000
[  523.550556][T14608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  523.550573][T14608] R13: 00007fcb5b3e6038 R14: 00007fcb5b3e5fa0 R15: 00007ffd1a652bc8
[  523.550612][T14608]  </TASK>
[  523.968196][T14628] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2289'.
[  524.760904][T14640] ima: policy update failed
[  524.765819][   T30] audit: type=1802 audit(4294967437.119:12): pid=14640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2293" res=0 errno=0
[  524.769094][T14640] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2293'.
[  524.792970][T14637] block nbd7: not configured, cannot reconfigure
[  525.220564][T14646] usb usb36: usbfs: process 14646 (syz.1.2294) did not claim interface 0 before use
[  525.585350][T14653] random: crng reseeded on system resumption
[  525.624335][T14650] zswap: compressor  not available
[  526.378969][ T3533] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 2035 with max blocks 1 with error 117
[  526.445587][ T3533] EXT4-fs (sda1): This should not happen!! Data will be lost
[  526.445587][ T3533] 
[  527.500990][T14673] zswap: compressor  not available
[  529.303285][T14705] random: crng reseeded on system resumption
[  529.677759][   T51] Bluetooth: hci1: unexpected event 0x31 length: 19 > 6
[  531.357770][T14736] zswap: compressor  not available
[  531.428074][T14736] random: crng reseeded on system resumption
[  532.698419][T14755] [U] 	
[  532.701378][T14755] [U] 
[  532.704341][T14755] [U] 
[  532.707043][T14755] [U] 
[  532.709818][T14755] [U] 
[  533.078790][T14755] [U] 
[  533.081606][T14755] [U] 
[  533.084481][T14755] [U] 
[  533.087436][T14755] [U] 
[  533.099568][T14755] [U] 
[  533.102465][T14755] [U] 
[  533.105348][T14755] [U] 
[  533.108077][T14755] [U] 
[  533.842264][T14757] [U] 
[  534.294210][T14782] zswap: compressor  not available
[  534.445623][T14782] random: crng reseeded on system resumption
[  535.174181][T14795] serio: Serial port pty6
[  535.713606][T14797] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  535.764326][T14797] EXT4-fs (sda1): This should not happen!! Data will be lost
[  535.764326][T14797] 
[  535.879257][T14806] FAULT_INJECTION: forcing a failure.
[  535.879257][T14806] name failslab, interval 1, probability 0, space 0, times 0
[  535.911772][T14803] zswap: compressor  not available
[  535.915979][T14806] CPU: 0 UID: 0 PID: 14806 Comm: syz.1.2327 Not tainted syzkaller #0 PREEMPT(full) 
[  535.916017][T14806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  535.916034][T14806] Call Trace:
[  535.916043][T14806]  <TASK>
[  535.916054][T14806]  dump_stack_lvl+0x16c/0x1f0
[  535.916091][T14806]  should_fail_ex+0x512/0x640
[  535.916118][T14806]  ? __kmalloc_cache_noprof+0x5f/0x770
[  535.916162][T14806]  should_failslab+0xc2/0x120
[  535.916196][T14806]  __kmalloc_cache_noprof+0x72/0x770
[  535.916236][T14806]  ? vb2_vmalloc_alloc+0xf9/0x3f0
[  535.916269][T14806]  ? vb2_vmalloc_alloc+0xf9/0x3f0
[  535.916295][T14806]  vb2_vmalloc_alloc+0xf9/0x3f0
[  535.916323][T14806]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  535.916351][T14806]  __vb2_queue_alloc+0x8c9/0x1280
[  535.916394][T14806]  vb2_core_reqbufs+0xa90/0xfe0
[  535.916437][T14806]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[  535.916486][T14806]  __vb2_init_fileio+0x3f1/0x1100
[  535.916513][T14806]  ? vb2_fop_read+0xe6/0x3e0
[  535.916561][T14806]  __vb2_perform_fileio+0x9c2/0x1660
[  535.916599][T14806]  ? __pfx___vb2_perform_fileio+0x10/0x10
[  535.916639][T14806]  vb2_fop_read+0x215/0x3e0
[  535.916685][T14806]  v4l2_read+0x229/0x360
[  535.916715][T14806]  ? __pfx_v4l2_read+0x10/0x10
[  535.916746][T14806]  vfs_read+0x1e4/0xcf0
[  535.916784][T14806]  ? __pfx_vfs_read+0x10/0x10
[  535.916810][T14806]  ? find_held_lock+0x2b/0x80
[  535.916844][T14806]  ? __fget_files+0x204/0x3c0
[  535.916873][T14806]  ? __fget_files+0x20e/0x3c0
[  535.916912][T14806]  ksys_read+0x12a/0x250
[  535.916941][T14806]  ? __pfx_ksys_read+0x10/0x10
[  535.916981][T14806]  do_syscall_64+0xcd/0xf80
[  535.917010][T14806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  535.917037][T14806] RIP: 0033:0x7f27b358f7c9
[  535.917059][T14806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  535.917087][T14806] RSP: 002b:00007f27b439e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  535.917112][T14806] RAX: ffffffffffffffda RBX: 00007f27b37e5fa0 RCX: 00007f27b358f7c9
[  535.917131][T14806] RDX: 0000000000000028 RSI: 0000200000000280 RDI: 0000000000000005
[  535.917149][T14806] RBP: 00007f27b3613f91 R08: 0000000000000000 R09: 0000000000000000
[  535.917166][T14806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  535.917181][T14806] R13: 00007f27b37e6038 R14: 00007f27b37e5fa0 R15: 00007fff8fed6618
[  535.917218][T14806]  </TASK>
[  536.269398][T14803] random: crng reseeded on system resumption
[  538.769664][T14850] serio: Serial port pty6
[  538.938456][T14857] Invalid ELF header magic: != ELF
[  539.084622][T14857] vhci_hcd: invalid port number 16
[  539.119511][T14857] vhci_hcd: invalid port number 16
[  539.758680][T14867] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  539.858802][T14867] EXT4-fs (sda1): This should not happen!! Data will be lost
[  539.858802][T14867] 
[  543.419976][T14914] Console: switching to colour VGA+ 4x100
[  543.555096][ T3464] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 943 with max blocks 7 with error 117
[  543.595812][ T3464] EXT4-fs (sda1): This should not happen!! Data will be lost
[  543.595812][ T3464] 
[  545.340443][T14952] vhci_hcd: invalid port number 16
[  545.659086][T14945] FAULT_INJECTION: forcing a failure.
[  545.659086][T14945] name failslab, interval 1, probability 0, space 0, times 0
[  545.747742][T14945] CPU: 1 UID: 0 PID: 14945 Comm: syz.1.2351 Not tainted syzkaller #0 PREEMPT(full) 
[  545.747766][T14945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  545.747776][T14945] Call Trace:
[  545.747782][T14945]  <TASK>
[  545.747788][T14945]  dump_stack_lvl+0x16c/0x1f0
[  545.747810][T14945]  should_fail_ex+0x512/0x640
[  545.747826][T14945]  ? kmem_cache_alloc_noprof+0x62/0x720
[  545.747852][T14945]  should_failslab+0xc2/0x120
[  545.747872][T14945]  kmem_cache_alloc_noprof+0x75/0x720
[  545.747895][T14945]  ? proc_reg_open+0x23f/0x5f0
[  545.747913][T14945]  ? proc_reg_open+0x23f/0x5f0
[  545.747926][T14945]  proc_reg_open+0x23f/0x5f0
[  545.747941][T14945]  do_dentry_open+0x748/0x1590
[  545.747958][T14945]  ? __pfx_proc_reg_open+0x10/0x10
[  545.747977][T14945]  vfs_open+0x82/0x3f0
[  545.748001][T14945]  path_openat+0x2078/0x3140
[  545.748025][T14945]  ? __pfx_path_openat+0x10/0x10
[  545.748050][T14945]  do_filp_open+0x20b/0x470
[  545.748068][T14945]  ? __pfx_do_filp_open+0x10/0x10
[  545.748100][T14945]  ? alloc_fd+0x471/0x7d0
[  545.748123][T14945]  do_sys_openat2+0x11f/0x280
[  545.748135][T14945]  ? __pfx_do_sys_openat2+0x10/0x10
[  545.748156][T14945]  __x64_sys_openat+0x174/0x210
[  545.748169][T14945]  ? __pfx___x64_sys_openat+0x10/0x10
[  545.748184][T14945]  ? syscall_user_dispatch+0x78/0x140
[  545.748208][T14945]  do_syscall_64+0xcd/0xf80
[  545.748226][T14945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  545.748241][T14945] RIP: 0033:0x7f27b358f7c9
[  545.748254][T14945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  545.748268][T14945] RSP: 002b:00007f27b437d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  545.748283][T14945] RAX: ffffffffffffffda RBX: 00007f27b37e6090 RCX: 00007f27b358f7c9
[  545.748292][T14945] RDX: 0000000000008340 RSI: 00002000000002c0 RDI: ffffffffffffff9c
[  545.748302][T14945] RBP: 00007f27b3613f91 R08: 0000000000000000 R09: 0000000000000000
[  545.748311][T14945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  545.748320][T14945] R13: 00007f27b37e6128 R14: 00007f27b37e6090 R15: 00007fff8fed6618
[  545.748341][T14945]  </TASK>
[  547.393211][T14971] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2355'.
[  549.395971][T15004] zswap: compressor  not available
[  549.406404][T15007] debugfs: '!PjE�r��҄y�*�"�l-���y–��L̓���]' already exists in 'ieee80211'
[  549.467501][T15004] random: crng reseeded on system resumption
[  550.064481][T15017] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  550.088483][T15017] EXT4-fs (sda1): This should not happen!! Data will be lost
[  550.088483][T15017] 
[  550.733429][T15020] FAULT_INJECTION: forcing a failure.
[  550.733429][T15020] name failslab, interval 1, probability 0, space 0, times 0
[  550.748774][T15020] CPU: 1 UID: 0 PID: 15020 Comm: syz.0.2364 Not tainted syzkaller #0 PREEMPT(full) 
[  550.748813][T15020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  550.748830][T15020] Call Trace:
[  550.748839][T15020]  <TASK>
[  550.748851][T15020]  dump_stack_lvl+0x16c/0x1f0
[  550.748888][T15020]  should_fail_ex+0x512/0x640
[  550.748916][T15020]  ? kmem_cache_alloc_noprof+0x62/0x720
[  550.748954][T15020]  should_failslab+0xc2/0x120
[  550.748973][T15020]  kmem_cache_alloc_noprof+0x75/0x720
[  550.748995][T15020]  ? alloc_empty_file+0x55/0x1e0
[  550.749019][T15020]  ? alloc_empty_file+0x55/0x1e0
[  550.749038][T15020]  ? _raw_spin_unlock+0x28/0x50
[  550.749052][T15020]  alloc_empty_file+0x55/0x1e0
[  550.749073][T15020]  alloc_file_pseudo+0x13a/0x230
[  550.749095][T15020]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  550.749129][T15020]  __shmem_file_setup+0x1a3/0x330
[  550.749153][T15020]  shmem_zero_setup+0x93/0x1a0
[  550.749177][T15020]  __mmap_region+0x2076/0x2770
[  550.749194][T15020]  ? __pfx___mmap_region+0x10/0x10
[  550.749216][T15020]  ? rcu_is_watching+0x12/0xc0
[  550.749236][T15020]  ? trace_sched_exit_tp+0xd1/0x110
[  550.749253][T15020]  ? __schedule+0x1149/0x5de0
[  550.749268][T15020]  ? __schedule+0x11dc/0x5de0
[  550.749281][T15020]  ? rcu_is_watching+0x12/0xc0
[  550.749343][T15020]  ? rcu_is_watching+0x12/0xc0
[  550.749367][T15020]  mmap_region+0x1ab/0x3f0
[  550.749381][T15020]  ? __get_unmapped_area+0x267/0x440
[  550.749399][T15020]  do_mmap+0xa3e/0x1210
[  550.749418][T15020]  ? __pfx_do_mmap+0x10/0x10
[  550.749434][T15020]  ? __pfx_down_write_killable+0x10/0x10
[  550.749457][T15020]  vm_mmap_pgoff+0x29e/0x470
[  550.749476][T15020]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  550.749496][T15020]  ? __x64_sys_futex+0x1e0/0x4c0
[  550.749511][T15020]  ? __x64_sys_futex+0x1e9/0x4c0
[  550.749529][T15020]  ksys_mmap_pgoff+0x7d/0x5c0
[  550.749544][T15020]  ? xfd_validate_state+0x61/0x180
[  550.749564][T15020]  ? __pfx_kernel_set_mempolicy+0x10/0x10
[  550.749585][T15020]  __x64_sys_mmap+0x125/0x190
[  550.749600][T15020]  do_syscall_64+0xcd/0xf80
[  550.749618][T15020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.749633][T15020] RIP: 0033:0x7fcb5b18f7c9
[  550.749646][T15020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  550.749661][T15020] RSP: 002b:00007fcb5c106038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  550.749677][T15020] RAX: ffffffffffffffda RBX: 00007fcb5b3e5fa0 RCX: 00007fcb5b18f7c9
[  550.749688][T15020] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  550.749697][T15020] RBP: 00007fcb5b213f91 R08: fffffffffffffffa R09: 0000000000008000
[  550.749707][T15020] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  550.749716][T15020] R13: 00007fcb5b3e6038 R14: 00007fcb5b3e5fa0 R15: 00007ffd1a652bc8
[  550.749736][T15020]  </TASK>
[  552.084007][   T51] Bluetooth: hci2: unexpected event 0x31 length: 19 > 6
[  553.210610][T15062] hub 1-0:1.0: USB hub found
[  553.226886][T15062] hub 1-0:1.0: 1 port detected
[  553.501967][T15073] device-mapper: ioctl: Unable to rename non-existent device,  to �
[  554.150994][T15082] debugfs: '!PjE�r��҄y�*�"�l-���y–��L̓���]' already exists in 'ieee80211'
[  555.941644][T15104] svc: failed to register nfsdv3 RPC service (errno 101).
[  556.186112][T15104] svc: failed to register nfsaclv3 RPC service (errno 101).
[  556.369439][T15126] vhci_hcd: invalid port number 16
[  556.845664][ T4429] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:13: bg 5: bad block bitmap checksum
[  556.905665][ T4429] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 2128 with max blocks 1 with error 74
[  556.966137][ T4429] EXT4-fs (sda1): This should not happen!! Data will be lost
[  556.966137][ T4429] 
[  557.490643][T15144] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2388'.
[  557.583704][T15144] bridge0: port 2(bridge_slave_1) entered disabled state
[  557.654567][T15144] bridge_slave_1 (unregistering): left allmulticast mode
[  557.683366][T15144] bridge_slave_1 (unregistering): left promiscuous mode
[  557.717577][T15144] bridge0: port 2(bridge_slave_1) entered disabled state
[  557.895386][T15147] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2389'.
[  558.411657][T15163] zswap: compressor  not available
[  558.561814][T15163] random: crng reseeded on system resumption
[  559.451906][T15179] zswap: compressor  not available
[  559.537736][T15179] random: crng reseeded on system resumption
[  559.873428][   T51] Bluetooth: hci2: unexpected event 0x10 length: 438 > 1
[  559.875786][ T5847] Bluetooth: hci2: hardware error 0x00
[  561.784073][T15215] netlink: set zone limit has 8 unknown bytes
[  561.949585][ T5847] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  562.350278][ T5847] Bluetooth: hci3: unexpected event 0x31 length: 19 > 6
[  562.986972][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  563.005528][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  563.945828][T15253] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[  564.655505][T15255] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2409'.
[  565.099105][T15281] vhci_hcd: invalid port number 16
[  565.593858][T15289] random: crng reseeded on system resumption
[  565.726726][T15287] zswap: compressor  not available
[  566.589180][T15302] zswap: compressor  not available
[  566.667408][T15302] random: crng reseeded on system resumption
[  567.588215][T15324] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2419'.
[  567.590356][T15324] bridge0: port 2(bridge_slave_1) entered disabled state
[  567.830816][T15324] bridge_slave_1 (unregistering): left allmulticast mode
[  567.830838][T15324] bridge_slave_1 (unregistering): left promiscuous mode
[  567.830901][T15324] bridge0: port 2(bridge_slave_1) entered disabled state
[  568.381612][T15336] random: crng reseeded on system resumption
[  569.818475][T15359] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.2.2429: Error -117 reading block bitmap for 5
[  569.887955][T15359] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.2.2429: Error -117 reading block bitmap for 4
[  570.122784][T15356] Invalid ELF header magic: != ELF
[  570.234092][T15356] vhci_hcd: invalid port number 16
[  570.246079][T15356] vhci_hcd: invalid port number 16
[  571.271583][T15376] netlink: set zone limit has 8 unknown bytes
[  571.614555][T15391] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  573.089083][  T149] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1387 with max blocks 4 with error 117
[  573.178971][T15411] zswap: compressor  not available
[  573.221171][  T149] EXT4-fs (sda1): This should not happen!! Data will be lost
[  573.221171][  T149] 
[  573.230126][T15411] random: crng reseeded on system resumption
[  574.077555][T15433] Invalid ELF header magic: != ELF
[  574.302384][T15429] vhci_hcd: invalid port number 16
[  574.316873][T15429] vhci_hcd: invalid port number 16
[  574.875284][T15442] FAULT_INJECTION: forcing a failure.
[  574.875284][T15442] name failslab, interval 1, probability 0, space 0, times 0
[  574.897235][T15442] CPU: 1 UID: 0 PID: 15442 Comm: syz.0.2452 Not tainted syzkaller #0 PREEMPT(full) 
[  574.897274][T15442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  574.897297][T15442] Call Trace:
[  574.897306][T15442]  <TASK>
[  574.897318][T15442]  dump_stack_lvl+0x16c/0x1f0
[  574.897354][T15442]  should_fail_ex+0x512/0x640
[  574.897381][T15442]  ? __kmalloc_noprof+0xca/0x870
[  574.897423][T15442]  should_failslab+0xc2/0x120
[  574.897455][T15442]  __kmalloc_noprof+0xdd/0x870
[  574.897490][T15442]  ? get_tree_keyed+0x10e/0x1d0
[  574.897517][T15442]  ? memcg_list_lru_alloc+0x4e9/0x740
[  574.897561][T15442]  ? memcg_list_lru_alloc+0x4e9/0x740
[  574.897596][T15442]  memcg_list_lru_alloc+0x4e9/0x740
[  574.897642][T15442]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[  574.897699][T15442]  __memcg_slab_post_alloc_hook+0x133/0x940
[  574.897741][T15442]  ? kasan_save_track+0x14/0x30
[  574.897774][T15442]  kmem_cache_alloc_lru_noprof+0x556/0x720
[  574.897815][T15442]  ? __d_alloc+0x35/0xa80
[  574.897852][T15442]  ? __pfx_rpc_fill_super+0x10/0x10
[  574.897879][T15442]  ? __d_alloc+0x35/0xa80
[  574.897910][T15442]  __d_alloc+0x35/0xa80
[  574.897946][T15442]  ? __pfx_rpc_fill_super+0x10/0x10
[  574.897971][T15442]  d_make_root+0x3e/0x90
[  574.898005][T15442]  rpc_fill_super+0x26f/0x4f0
[  574.898033][T15442]  ? __pfx_rpc_fill_super+0x10/0x10
[  574.898058][T15442]  get_tree_keyed+0x10e/0x1d0
[  574.898090][T15442]  vfs_get_tree+0x8e/0x330
[  574.898116][T15442]  vfs_cmd_create+0xd7/0x2a0
[  574.898143][T15442]  __do_sys_fsconfig+0x7b8/0xbe0
[  574.898172][T15442]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  574.898216][T15442]  do_syscall_64+0xcd/0xf80
[  574.898249][T15442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  574.898276][T15442] RIP: 0033:0x7fcb5b18f7c9
[  574.898307][T15442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  574.898334][T15442] RSP: 002b:00007fcb5c106038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  574.898361][T15442] RAX: ffffffffffffffda RBX: 00007fcb5b3e5fa0 RCX: 00007fcb5b18f7c9
[  574.898381][T15442] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[  574.898398][T15442] RBP: 00007fcb5b213f91 R08: 0000000000000000 R09: 0000000000000000
[  574.898415][T15442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  574.898431][T15442] R13: 00007fcb5b3e6038 R14: 00007fcb5b3e5fa0 R15: 00007ffd1a652bc8
[  574.898470][T15442]  </TASK>
[  575.449987][T15455] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[  576.986612][T15445] kexec: Could not allocate control_code_buffer
[  578.357976][ T3500] Trying to write to read-only block-device sda1
[  581.487928][T15552] zswap: compressor  not available
[  581.546966][T15552] random: crng reseeded on system resumption
[  583.215213][T15578] random: crng reseeded on system resumption
[  584.667712][T15594] zswap: compressor  not available
[  584.729610][T15594] random: crng reseeded on system resumption
[  587.915789][T15647] random: crng reseeded on system resumption
[  590.245724][T15673] Invalid ELF header magic: != ELF
[  591.130636][ T5909] Process accounting resumed
[  595.830917][T15744] kexec: Could not allocate control_code_buffer
[  596.065831][T15764] random: crng reseeded on system resumption
[  597.479485][T15790] random: crng reseeded on system resumption
[  597.583422][T15788] zswap: compressor  not available
[  598.403828][T15807] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  600.428448][T15827] random: crng reseeded on system resumption
[  601.225570][T15839] zswap: compressor  not available
[  602.000092][T15850] Invalid ELF header magic: != ELF
[  603.965865][T15876] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  606.488817][T15901] zswap: compressor  not available
[  606.545424][T15907] random: crng reseeded on system resumption
[  607.636496][T15933] netlink: zone id is out of range
[  607.647308][T15933] netlink: del zone limit has 4 unknown bytes
[  607.660801][T15931] netlink: set zone limit has 8 unknown bytes
[  607.840436][T15931] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2537'.
[  607.900911][T15933] HfR: entered promiscuous mode
[  609.602948][T15966] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  610.441688][T15975] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 2 with max blocks 2 with error 117
[  610.517316][T15975] EXT4-fs (sda1): This should not happen!! Data will be lost
[  610.517316][T15975] 
[  611.536786][ T5847] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  611.727811][T15997] netlink: set zone limit has 8 unknown bytes
[  611.810323][T15997] netlink: zone id is out of range
[  611.815502][T15997] netlink: del zone limit has 4 unknown bytes
[  611.921231][T16001] HfR: entered promiscuous mode
[  612.028463][T15996] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2550'.
[  613.050099][T16010] Invalid ELF header magic: != ELF
[  613.617403][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  614.831072][T16046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2560'.
[  616.033593][T16071] zero sized request
[  619.115168][T16110] random: crng reseeded on system resumption
[  621.047384][   T30] audit: type=1804 audit(4294967301.769:13): pid=16146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2579" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=21 res=1 errno=0
[  622.638399][T16164] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [2147479552].
[  624.423135][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  624.429761][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  624.558649][T16179] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2586'.
[  625.680379][T16210] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 939 with max blocks 11 with error 117
[  625.721421][T16210] EXT4-fs (sda1): This should not happen!! Data will be lost
[  625.721421][T16210] 
[  626.793655][T16233] random: crng reseeded on system resumption
[  629.552087][T16259] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  629.616459][T16259] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  629.647509][T16259] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  629.673423][T16259] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  630.845401][T16307] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24
[  631.405132][T16308] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25
[  631.445787][T16322] zero sized request
[  631.617459][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  631.617467][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout
[  631.697225][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  633.463610][ T3500] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 948 with max blocks 1 with error 117
[  633.622753][ T3500] EXT4-fs (sda1): This should not happen!! Data will be lost
[  633.622753][ T3500] 
[  633.698300][ T3500] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1377 with max blocks 14 with error 117
[  633.733853][ T3500] EXT4-fs (sda1): This should not happen!! Data will be lost
[  633.733853][ T3500] 
[  633.779021][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  635.386583][T16395] zero sized request
[  637.113778][T16425] binder: 16411:16425 ioctl 4018620d 9 returned -22
[  642.551608][T16487] FAULT_INJECTION: forcing a failure.
[  642.551608][T16487] name failslab, interval 1, probability 0, space 0, times 0
[  642.609555][T16487] CPU: 0 UID: 7 PID: 16487 Comm: syz.2.2642 Not tainted syzkaller #0 PREEMPT(full) 
[  642.609593][T16487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  642.609611][T16487] Call Trace:
[  642.609620][T16487]  <TASK>
[  642.609631][T16487]  dump_stack_lvl+0x16c/0x1f0
[  642.609671][T16487]  should_fail_ex+0x512/0x640
[  642.609699][T16487]  ? kmem_cache_alloc_lru_noprof+0x66/0x720
[  642.609743][T16487]  should_failslab+0xc2/0x120
[  642.609777][T16487]  kmem_cache_alloc_lru_noprof+0x79/0x720
[  642.609817][T16487]  ? alloc_inode+0x64/0x240
[  642.609849][T16487]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  642.609877][T16487]  ? alloc_inode+0x64/0x240
[  642.609898][T16487]  alloc_inode+0x64/0x240
[  642.609924][T16487]  new_inode+0x22/0x1c0
[  642.609952][T16487]  debugfs_create_dir+0xdd/0x5f0
[  642.609985][T16487]  nsim_dev_health_init+0x10f/0x3a0
[  642.610026][T16487]  nsim_drv_probe+0xd3a/0x1520
[  642.610063][T16487]  ? __pfx_nsim_drv_probe+0x10/0x10
[  642.610116][T16487]  ? kernfs_put+0x35/0x60
[  642.610150][T16487]  ? sysfs_create_link+0x68/0xc0
[  642.610180][T16487]  ? __pfx_nsim_bus_probe+0x10/0x10
[  642.610216][T16487]  really_probe+0x241/0xa90
[  642.610257][T16487]  __driver_probe_device+0x1de/0x440
[  642.610291][T16487]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  642.610324][T16487]  driver_probe_device+0x4c/0x1b0
[  642.610366][T16487]  __device_attach_driver+0x1df/0x310
[  642.610403][T16487]  ? __pfx___device_attach_driver+0x10/0x10
[  642.610440][T16487]  bus_for_each_drv+0x159/0x1e0
[  642.610469][T16487]  ? __pfx_bus_for_each_drv+0x10/0x10
[  642.610513][T16487]  __device_attach+0x1e4/0x4b0
[  642.610550][T16487]  ? __pfx___device_attach+0x10/0x10
[  642.610587][T16487]  ? do_raw_spin_unlock+0x172/0x230
[  642.610628][T16487]  bus_probe_device+0x17f/0x1c0
[  642.610664][T16487]  device_add+0x1148/0x1950
[  642.610694][T16487]  ? __pfx_device_add+0x10/0x10
[  642.610718][T16487]  ? lockdep_init_map_type+0x5c/0x270
[  642.610744][T16487]  ? __init_waitqueue_head+0xca/0x150
[  642.610786][T16487]  new_device_store+0x41b/0x730
[  642.610822][T16487]  ? __pfx_new_device_store+0x10/0x10
[  642.610860][T16487]  ? find_held_lock+0x2b/0x80
[  642.610896][T16487]  ? sysfs_file_kobj+0xe4/0x290
[  642.610931][T16487]  ? __pfx_new_device_store+0x10/0x10
[  642.610967][T16487]  bus_attr_store+0x74/0xb0
[  642.610990][T16487]  ? __pfx_bus_attr_store+0x10/0x10
[  642.611016][T16487]  sysfs_kf_write+0xf2/0x150
[  642.611057][T16487]  kernfs_fop_write_iter+0x3af/0x570
[  642.611099][T16487]  ? __pfx_sysfs_kf_write+0x10/0x10
[  642.611136][T16487]  do_iter_readv_writev+0x662/0x9e0
[  642.611164][T16487]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  642.611212][T16487]  vfs_writev+0x35f/0xde0
[  642.611240][T16487]  ? rcu_is_watching+0x12/0xc0
[  642.611283][T16487]  ? __pfx_vfs_writev+0x10/0x10
[  642.611309][T16487]  ? fdget_pos+0x2a2/0x370
[  642.611341][T16487]  ? lockdep_hardirqs_on+0x7c/0x110
[  642.611397][T16487]  ? __fget_files+0x20e/0x3c0
[  642.611438][T16487]  ? do_writev+0x132/0x340
[  642.611462][T16487]  do_writev+0x132/0x340
[  642.611491][T16487]  ? __pfx_do_writev+0x10/0x10
[  642.611531][T16487]  do_syscall_64+0xcd/0xf80
[  642.611564][T16487]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  642.611591][T16487] RIP: 0033:0x7f3e7638f7c9
[  642.611614][T16487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  642.611640][T16487] RSP: 002b:00007f3e7726e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  642.611665][T16487] RAX: ffffffffffffffda RBX: 00007f3e765e5fa0 RCX: 00007f3e7638f7c9
[  642.611683][T16487] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000004
[  642.611702][T16487] RBP: 00007f3e76413f91 R08: 0000000000000000 R09: 0000000000000000
[  642.611719][T16487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  642.611736][T16487] R13: 00007f3e765e6038 R14: 00007f3e765e5fa0 R15: 00007ffc099f2f78
[  642.611777][T16487]  </TASK>
[  642.611816][T16487] debugfs: out of free dentries, can not create directory 'health'
[  644.590082][T16501] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2645'.
[  645.037440][T16513] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26
[  645.091670][T16516] random: crng reseeded on system resumption
[  645.755493][T16517] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27
[  646.516413][T16487] netdevsim netdevsim511: probe with driver netdevsim failed with error -12
[  647.638258][T16556] mkiss: ax0: crc mode is auto.
[  647.835434][T16537] kexec: Could not allocate control_code_buffer
[  648.067515][T16541] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2655'.
[  649.297761][T16581] random: crng reseeded on system resumption
[  649.965654][T16587] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 944 with max blocks 6 with error 117
[  649.984822][T16587] EXT4-fs (sda1): This should not happen!! Data will be lost
[  649.984822][T16587] 
[  651.708242][T16644] block nbd9: NBD_DISCONNECT
[  652.327740][ T3533] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1381 with max blocks 10 with error 117
[  652.434468][ T3533] EXT4-fs (sda1): This should not happen!! Data will be lost
[  652.434468][ T3533] 
[  652.625816][ T3533] EXT4-fs (sda1): Delayed block allocation failed for inode 2026 at logical offset 2 with max blocks 1 with error 117
[  652.702094][ T3533] EXT4-fs (sda1): This should not happen!! Data will be lost
[  652.702094][ T3533] 
[  652.778852][T16624] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2673'.
[  654.597270][ T5847] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  655.177642][    C1] vcan0: j1939_xtp_rx_dat: no tx connection found
[  655.934150][    C1] vcan0: j1939_tp_rxtimer: 0xffff888050303400: rx timeout, send abort
[  656.442493][    C1] vcan0: j1939_tp_rxtimer: 0xffff888050303400: abort rx timeout. Force session deactivation
[  658.353283][T16698] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  658.382368][T16698] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  658.482783][T16698] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  660.031610][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout
[  660.417284][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout
[  660.497245][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  665.365418][T16802] mkiss: ax0: crc mode is auto.
[  666.448215][T16799] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  666.568559][T16799] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  666.623403][T16799] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  667.688668][ T5847] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  668.348111][T16827] netlink: set zone limit has 8 unknown bytes
[  668.498547][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout
[  668.578275][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout
[  668.667325][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  668.769395][T16804] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2697'.
[  670.737356][ T5847] Bluetooth: hci3: command 0x0c1a tx timeout
[  672.404732][T16898] netlink: 504 bytes leftover after parsing attributes in process `syz.2.2713'.
[  673.738645][ T5847] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  673.992857][T16910] zswap: compressor  not available
[  674.721157][T16922] netlink: set zone limit has 8 unknown bytes
[  675.332949][T16929] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2718'.
[  675.807228][ T5847] Bluetooth: hci0: command 0x0c1a tx timeout
[  685.863050][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  685.869717][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  686.512979][T17061] zswap: compressor  not available
[  687.414546][T17056] kexec: Could not allocate control_code_buffer
[  692.079835][T17124] random: crng reseeded on system resumption
[  696.169384][   T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1360 with max blocks 9 with error 117
[  696.247417][   T13] EXT4-fs (sda1): This should not happen!! Data will be lost
[  696.247417][   T13] 
[  696.301782][   T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 932 with max blocks 18 with error 117
[  696.376003][   T13] EXT4-fs (sda1): This should not happen!! Data will be lost
[  696.376003][   T13] 
[  696.470947][   T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 948 with max blocks 2 with error 117
[  696.486119][   T13] EXT4-fs (sda1): This should not happen!! Data will be lost
[  696.486119][   T13] 
[  697.928140][T17175] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2758'.
[  697.958817][T17175] veth0_macvtap: left promiscuous mode
[  698.059893][T17175] macvtap0: entered promiscuous mode
[  698.077213][T17175] macvtap0: entered allmulticast mode
[  698.158450][T17181] FAULT_INJECTION: forcing a failure.
[  698.158450][T17181] name fail_futex, interval 1, probability 0, space 0, times 0
[  698.182563][T17181] CPU: 1 UID: 0 PID: 17181 Comm: syz.1.2758 Not tainted syzkaller #0 PREEMPT(full) 
[  698.182602][T17181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  698.182617][T17181] Call Trace:
[  698.182625][T17181]  <TASK>
[  698.182636][T17181]  dump_stack_lvl+0x16c/0x1f0
[  698.182686][T17181]  should_fail_ex+0x512/0x640
[  698.182711][T17181]  ? __lock_acquire+0x433/0x22f0
[  698.182747][T17181]  get_futex_key+0x293/0x1560
[  698.182793][T17181]  ? __pfx_get_futex_key+0x10/0x10
[  698.182816][T17181]  ? lock_acquire+0x179/0x330
[  698.182845][T17181]  ? __pfx___might_resched+0x10/0x10
[  698.182890][T17181]  futex_wake+0xea/0x530
[  698.182918][T17181]  ? __mutex_lock+0x27b/0x1b10
[  698.182952][T17181]  ? __pfx_futex_wake+0x10/0x10
[  698.182999][T17181]  do_futex+0x1e3/0x350
[  698.183027][T17181]  ? __pfx_do_futex+0x10/0x10
[  698.183052][T17181]  ? __might_fault+0xe3/0x190
[  698.183094][T17181]  mm_release+0x24e/0x300
[  698.183127][T17181]  do_exit+0x696/0x2bc0
[  698.183158][T17181]  ? __pfx_do_exit+0x10/0x10
[  698.183180][T17181]  ? do_raw_spin_lock+0x12c/0x2b0
[  698.183207][T17181]  ? find_held_lock+0x2b/0x80
[  698.183244][T17181]  do_group_exit+0xd3/0x2a0
[  698.183269][T17181]  get_signal+0x2671/0x26d0
[  698.183319][T17181]  ? __pfx_get_signal+0x10/0x10
[  698.183349][T17181]  ? do_futex+0x122/0x350
[  698.183377][T17181]  ? __pfx_do_futex+0x10/0x10
[  698.183406][T17181]  arch_do_signal_or_restart+0x8f/0x790
[  698.183440][T17181]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  698.183482][T17181]  ? xfd_validate_state+0x61/0x180
[  698.183523][T17181]  ? __pfx_ksys_write+0x10/0x10
[  698.183560][T17181]  exit_to_user_mode_loop+0x85/0x130
[  698.183591][T17181]  do_syscall_64+0x4d8/0xf80
[  698.183623][T17181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  698.183648][T17181] RIP: 0033:0x7f27b358f7c9
[  698.183670][T17181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  698.183694][T17181] RSP: 002b:00007f27b437d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  698.183719][T17181] RAX: fffffffffffffe00 RBX: 00007f27b37e6098 RCX: 00007f27b358f7c9
[  698.183737][T17181] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f27b37e6098
[  698.183753][T17181] RBP: 00007f27b37e6090 R08: 0000000000000000 R09: 0000000000000000
[  698.183769][T17181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  698.183785][T17181] R13: 00007f27b37e6128 R14: 00007fff8fed6530 R15: 00007fff8fed6618
[  698.183821][T17181]  </TASK>
[  700.460936][T17202] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2761'.
[  701.856694][T17235] device-mapper: ioctl: Invalid ioctl structure: name �, dev 200010002
[  701.949558][T17218] zswap: compressor  not available
[  702.071785][T17226] zswap: compressor  not available
[  702.246140][T17240] usb usb36: usbfs: process 17240 (syz.2.2768) did not claim interface 0 before use
[  702.951928][T17242] kernel read not supported for file /set_event_pid (pid: 17242 comm: syz.2.2768)
[  702.961544][   T30] audit: type=1800 audit(4294967383.729:14): pid=17242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2768" name="set_event_pid" dev="tracefs" ino=23 res=0 errno=0
[  704.476717][T17267] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input28
[  705.938348][T17277] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2775'.
[  706.034460][T17270] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input29
[  708.680356][T17329] FAULT_INJECTION: forcing a failure.
[  708.680356][T17329] name failslab, interval 1, probability 0, space 0, times 0
[  708.802099][T17329] CPU: 0 UID: 0 PID: 17329 Comm: syz.2.2785 Not tainted syzkaller #0 PREEMPT(full) 
[  708.802145][T17329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  708.802162][T17329] Call Trace:
[  708.802172][T17329]  <TASK>
[  708.802183][T17329]  dump_stack_lvl+0x16c/0x1f0
[  708.802220][T17329]  should_fail_ex+0x512/0x640
[  708.802249][T17329]  ? __kmalloc_cache_node_noprof+0x62/0x790
[  708.802282][T17329]  should_failslab+0xc2/0x120
[  708.802311][T17329]  __kmalloc_cache_node_noprof+0x75/0x790
[  708.802330][T17329]  ? tracing_mark_open+0x44f/0x6f0
[  708.802354][T17329]  ? tracing_mark_open+0x44f/0x6f0
[  708.802372][T17329]  tracing_mark_open+0x44f/0x6f0
[  708.802397][T17329]  do_dentry_open+0x748/0x1590
[  708.802414][T17329]  ? __pfx_tracing_mark_open+0x10/0x10
[  708.802438][T17329]  vfs_open+0x82/0x3f0
[  708.802461][T17329]  path_openat+0x2078/0x3140
[  708.802486][T17329]  ? __pfx_path_openat+0x10/0x10
[  708.802512][T17329]  do_filp_open+0x20b/0x470
[  708.802530][T17329]  ? __pfx_do_filp_open+0x10/0x10
[  708.802562][T17329]  ? alloc_fd+0x471/0x7d0
[  708.802585][T17329]  do_sys_openat2+0x11f/0x280
[  708.802597][T17329]  ? __pfx_do_sys_openat2+0x10/0x10
[  708.802618][T17329]  __x64_sys_openat+0x174/0x210
[  708.802631][T17329]  ? __pfx___x64_sys_openat+0x10/0x10
[  708.802652][T17329]  do_syscall_64+0xcd/0xf80
[  708.802671][T17329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  708.802686][T17329] RIP: 0033:0x7f3e7638f7c9
[  708.802698][T17329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  708.802713][T17329] RSP: 002b:00007f3e7724d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  708.802731][T17329] RAX: ffffffffffffffda RBX: 00007f3e765e6090 RCX: 00007f3e7638f7c9
[  708.802741][T17329] RDX: 0000000000000201 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  708.802750][T17329] RBP: 00007f3e76413f91 R08: 0000000000000000 R09: 0000000000000000
[  708.802759][T17329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  708.802767][T17329] R13: 00007f3e765e6128 R14: 00007f3e765e6090 R15: 00007ffc099f2f78
[  708.802788][T17329]  </TASK>
[  709.663830][    C0] vcan0: j1939_xtp_rx_dat: no tx connection found
[  710.330892][T17352] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30
[  710.420372][    C0] vcan0: j1939_tp_rxtimer: 0xffff88809dd87800: rx timeout, send abort
[  710.928669][    C0] vcan0: j1939_tp_rxtimer: 0xffff88809dd87800: abort rx timeout. Force session deactivation
[  711.230865][T17353] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31
[  712.635936][T17365] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2789'.
[  715.889910][T17407] usb usb36: usbfs: process 17407 (syz.0.2796) did not claim interface 0 before use
[  717.693393][T17412] kernel read not supported for file /set_event_pid (pid: 17412 comm: syz.0.2796)
[  717.897432][   T30] audit: type=1800 audit(4294967398.499:15): pid=17412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2796" name="set_event_pid" dev="tracefs" ino=23 res=0 errno=0
[  718.409064][T17426] FAULT_INJECTION: forcing a failure.
[  718.409064][T17426] name failslab, interval 1, probability 0, space 0, times 0
[  718.457430][T17426] CPU: 1 UID: 0 PID: 17426 Comm: syz.2.2800 Not tainted syzkaller #0 PREEMPT(full) 
[  718.457470][T17426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  718.457487][T17426] Call Trace:
[  718.457497][T17426]  <TASK>
[  718.457509][T17426]  dump_stack_lvl+0x16c/0x1f0
[  718.457548][T17426]  should_fail_ex+0x512/0x640
[  718.457575][T17426]  ? kmem_cache_alloc_noprof+0x62/0x720
[  718.457620][T17426]  should_failslab+0xc2/0x120
[  718.457656][T17426]  kmem_cache_alloc_noprof+0x75/0x720
[  718.457695][T17426]  ? create_new_namespaces+0x30/0xab0
[  718.457737][T17426]  ? create_new_namespaces+0x30/0xab0
[  718.457769][T17426]  create_new_namespaces+0x30/0xab0
[  718.457812][T17426]  __do_sys_setns+0x210/0x1f90
[  718.457847][T17426]  ? fput+0x9b/0xd0
[  718.457882][T17426]  ? __pfx___do_sys_setns+0x10/0x10
[  718.457930][T17426]  do_syscall_64+0xcd/0xf80
[  718.457965][T17426]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  718.457991][T17426] RIP: 0033:0x7f3e7638f7c9
[  718.458013][T17426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  718.458038][T17426] RSP: 002b:00007f3e7726e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[  718.458064][T17426] RAX: ffffffffffffffda RBX: 00007f3e765e5fa0 RCX: 00007f3e7638f7c9
[  718.458082][T17426] RDX: 0000000000000000 RSI: 0000000060020000 RDI: 0000000000000005
[  718.458098][T17426] RBP: 00007f3e76413f91 R08: 0000000000000000 R09: 0000000000000000
[  718.458112][T17426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  718.458129][T17426] R13: 00007f3e765e6038 R14: 00007f3e765e5fa0 R15: 00007ffc099f2f78
[  718.458167][T17426]  </TASK>
[  721.671588][T17489] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2815'.
[  725.268139][T17529] usb usb36: usbfs: process 17529 (syz.3.2811) did not claim interface 0 before use
[  726.436995][T17530] kernel read not supported for file /set_event_pid (pid: 17530 comm: syz.3.2811)
[  726.463134][   T30] audit: type=1800 audit(4294967407.229:16): pid=17530 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2811" name="set_event_pid" dev="tracefs" ino=23 res=0 errno=0
[  728.279896][ T1135] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1372 with max blocks 19 with error 117
[  728.317303][ T1135] EXT4-fs (sda1): This should not happen!! Data will be lost
[  728.317303][ T1135] 
[  732.615968][T17608] usb usb36: usbfs: process 17608 (syz.1.2826) did not claim interface 0 before use
[  732.749316][T17591] sp0: Synchronizing with TNC
[  733.312535][T17612] kernel read not supported for file /set_event_pid (pid: 17612 comm: syz.1.2826)
[  733.361319][   T30] audit: type=1800 audit(4294967414.119:17): pid=17612 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2826" name="set_event_pid" dev="tracefs" ino=23 res=0 errno=0
[  736.127337][T17660] ptrace attach of "./syz-executor exec"[17661] was attempted by "./syz-executor exec"[17660]
[  747.310399][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  747.316785][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  748.163986][T17818] random: crng reseeded on system resumption
[  749.167230][T17618] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  751.192760][T17849] FAULT_INJECTION: forcing a failure.
[  751.192760][T17849] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  751.267367][T17849] CPU: 1 UID: 0 PID: 17849 Comm: syz.1.2866 Not tainted syzkaller #0 PREEMPT(full) 
[  751.267405][T17849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  751.267421][T17849] Call Trace:
[  751.267430][T17849]  <TASK>
[  751.267442][T17849]  dump_stack_lvl+0x16c/0x1f0
[  751.267481][T17849]  should_fail_ex+0x512/0x640
[  751.267512][T17849]  should_fail_alloc_page+0xe7/0x130
[  751.267548][T17849]  prepare_alloc_pages+0x3c2/0x610
[  751.267586][T17849]  __alloc_frozen_pages_noprof+0x18b/0x2440
[  751.267640][T17849]  ? mas_find+0x156/0x6d0
[  751.267687][T17849]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  751.267734][T17849]  ? __pfx_validate_mm+0x10/0x10
[  751.267781][T17849]  ? kmem_cache_free+0x172/0x7d0
[  751.267806][T17849]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  751.267840][T17849]  ? vma_wants_writenotify+0x10b/0x390
[  751.267867][T17849]  ? __pfx_vma_wants_writenotify+0x10/0x10
[  751.267893][T17849]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  751.267924][T17849]  ? policy_nodemask+0xea/0x4e0
[  751.267960][T17849]  alloc_pages_mpol+0x1fb/0x550
[  751.267995][T17849]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  751.268035][T17849]  alloc_pages_noprof+0x12d/0x180
[  751.268067][T17849]  __pmd_alloc+0x3b/0x8b0
[  751.268098][T17849]  __handle_mm_fault+0xa3c/0x2a30
[  751.268141][T17849]  ? __pfx___handle_mm_fault+0x10/0x10
[  751.268206][T17849]  handle_mm_fault+0x3fe/0xad0
[  751.268248][T17849]  __get_user_pages+0x605/0x33c0
[  751.268292][T17849]  ? __pfx___get_user_pages+0x10/0x10
[  751.268335][T17849]  populate_vma_page_range+0x267/0x3f0
[  751.268367][T17849]  ? __pfx_populate_vma_page_range+0x10/0x10
[  751.268397][T17849]  ? __pfx_find_vma_intersection+0x10/0x10
[  751.268425][T17849]  ? do_mmap+0x69c/0x1210
[  751.268454][T17849]  __mm_populate+0x1d8/0x380
[  751.268487][T17849]  ? __pfx___mm_populate+0x10/0x10
[  751.268520][T17849]  ? up_write+0x282/0x4e0
[  751.268550][T17849]  vm_mmap_pgoff+0x37f/0x470
[  751.268581][T17849]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  751.268618][T17849]  ? __x64_sys_futex+0x1e0/0x4c0
[  751.268704][T17849]  ? __x64_sys_futex+0x1e9/0x4c0
[  751.268739][T17849]  ksys_mmap_pgoff+0x7d/0x5c0
[  751.268766][T17849]  ? xfd_validate_state+0x61/0x180
[  751.268802][T17849]  ? __pfx_ksys_read+0x10/0x10
[  751.268837][T17849]  __x64_sys_mmap+0x125/0x190
[  751.268864][T17849]  do_syscall_64+0xcd/0xf80
[  751.268897][T17849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  751.268922][T17849] RIP: 0033:0x7f27b358f7c9
[  751.268945][T17849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  751.268971][T17849] RSP: 002b:00007f27b439e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  751.268997][T17849] RAX: ffffffffffffffda RBX: 00007f27b37e5fa0 RCX: 00007f27b358f7c9
[  751.269015][T17849] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  751.269032][T17849] RBP: 00007f27b3613f91 R08: ffffffffffffffff R09: 0000000000000000
[  751.269050][T17849] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  751.269064][T17849] R13: 00007f27b37e6038 R14: 00007f27b37e5fa0 R15: 00007fff8fed6618
[  751.269101][T17849]  </TASK>
[  755.624489][T17919] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000
[  755.697609][T17919] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  755.787427][T17919] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000
[  755.796391][T17919] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  755.917829][T17919] page dumped because: unmovable page
[  755.923335][T17919] page_owner info is not present (never set?)
[  757.432874][T17930] mkiss: ax0: crc mode is auto.
[  758.757842][T17760] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 946 with max blocks 4 with error 117
[  758.811156][T17760] EXT4-fs (sda1): This should not happen!! Data will be lost
[  758.811156][T17760] 
[  759.002156][T17760] EXT4-fs (sda1): Delayed block allocation failed for inode 2026 at logical offset 2 with max blocks 4 with error 117
[  759.027283][T17760] EXT4-fs (sda1): This should not happen!! Data will be lost
[  759.027283][T17760] 
[  759.069755][T17760] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 949 with max blocks 1 with error 117
[  759.082521][T17760] EXT4-fs (sda1): This should not happen!! Data will be lost
[  759.082521][T17760] 
[  761.703842][T17657] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 4 with max blocks 2 with error 117
[  761.722381][T17657] EXT4-fs (sda1): This should not happen!! Data will be lost
[  761.722381][T17657] 
[  762.868330][T17986] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x3cf pfn:0x78001
[  762.877704][T17986] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  762.884961][T17986] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  762.893774][T17986] raw: 00000000000003cf 0000000000000000 00000001ffffffff 0000000000000000
[  762.902554][T17986] page dumped because: unmovable page
[  762.908300][T17986] page_owner tracks the page as allocated
[  762.915903][T17986] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO), pid 16585, tgid 16577 (syz.0.2672), ts 649818903148, free_ts 647769097528
[  762.935277][T17986]  post_alloc_hook+0x1af/0x220
[  762.940697][T17986]  get_page_from_freelist+0xd0b/0x31a0
[  762.946300][T17986]  __alloc_frozen_pages_noprof+0x25f/0x2440
[  762.952483][T17986]  alloc_pages_mpol+0x1fb/0x550
[  762.957571][T17986]  alloc_pages_noprof+0x12d/0x180
[  762.962726][T17986]  brd_submit_bio+0xfee/0x18c0
[  762.967777][T17986]  __submit_bio+0x304/0x690
[  762.972576][T17986]  submit_bio_noacct_nocheck+0x72f/0xbe0
[  762.978509][T17986]  submit_bio_noacct+0x5bd/0x1f40
[  762.983676][T17986]  __block_write_full_folio+0x735/0xe00
[  762.989790][T17986]  block_write_full_folio+0x31d/0x3e0
[  762.995367][T17986]  blkdev_writepages+0xb8/0x140
[  763.000416][T17986]  do_writepages+0x27a/0x600
[  763.005118][T17986]  filemap_writeback+0x225/0x2d0
[  763.010250][T17986]  filemap_write_and_wait_range+0xa6/0x130
[  763.016243][T17986]  sync_blockdev+0x4a/0x70
[  763.021009][T17986] page last free pid 16537 tgid 16536 stack trace:
[  763.038086][T17986]  __free_frozen_pages+0x7df/0x1160
[  763.043564][T17986]  kimage_free_page_list+0x130/0x230
[  763.049240][T17986]  kimage_alloc_control_pages+0x3d3/0xa00
[  763.055202][T17986]  do_kexec_load+0x439/0x860
[  763.060006][T17986]  __x64_sys_kexec_load+0x1bf/0x230
[  763.065332][T17986]  do_syscall_64+0xcd/0xf80
[  763.070021][T17986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.410973][   T30] audit: type=1800 audit(4294967444.179:18): pid=17993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2886" name="lu_gp_id" dev="configfs" ino=78455 res=0 errno=0
[  763.850993][T17998] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  763.859852][T17998] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  763.871723][T17998] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  763.909406][T17998] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  763.976402][T17998] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  765.857426][T17618] Bluetooth: hci0: command 0x0c1a tx timeout
[  765.937828][T17613] Bluetooth: hci1: command 0x0c1a tx timeout
[  765.943981][T17618] Bluetooth: hci3: command 0x0c1a tx timeout
[  766.693100][T18050] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2899'.
[  767.459212][T18070] delete_channel: no stack
[  767.937308][T17618] Bluetooth: hci0: command 0x0c1a tx timeout
[  768.017335][T17618] Bluetooth: hci3: command 0x0c1a tx timeout
[  773.987636][T18151] serio: Serial port ttyS2
[  779.157477][T18204] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2926'.
[  782.927221][   T30] audit: type=1800 audit(4294967463.669:19): pid=18238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm=050820 name="lu_gp_id" dev="configfs" ino=80198 res=0 errno=0
[  784.737373][T17618] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  784.817309][T17613] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  787.879641][T17657] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 2 with max blocks 4 with error 117
[  787.923319][T17657] EXT4-fs (sda1): This should not happen!! Data will be lost
[  787.923319][T17657] 
[  788.032293][T17657] EXT4-fs (sda1): Delayed block allocation failed for inode 2026 at logical offset 2 with max blocks 4 with error 117
[  788.048453][T17657] EXT4-fs (sda1): This should not happen!! Data will be lost
[  788.048453][T17657] 
[  788.078290][T17657] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1365 with max blocks 4 with error 117
[  788.186391][T17657] EXT4-fs (sda1): This should not happen!! Data will be lost
[  788.186391][T17657] 
[  788.281857][T17657] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1377 with max blocks 14 with error 117
[  788.322697][T17657] EXT4-fs (sda1): This should not happen!! Data will be lost
[  788.322697][T17657] 
[  789.747793][T18315] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  789.778039][T18315] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  791.533864][T17671] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  791.547359][T18357] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137
[  791.595078][T18357] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138
[  791.626009][T18357] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum
[  791.779383][T17613] Bluetooth: hci0: command 0x0c1a tx timeout
[  791.863868][T17613] Bluetooth: hci1: command 0x0c1a tx timeout
[  791.890380][T17671] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  792.300718][T17671] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  792.471277][T17618] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  792.487391][T17618] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  792.500872][T17618] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  792.510214][T17618] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  792.544532][T17618] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  792.987380][T17671] bridge_slave_0: left allmulticast mode
[  792.993581][T17671] bridge_slave_0: left promiscuous mode
[  793.008023][T17671] bridge0: port 1(bridge_slave_0) entered disabled state
[  793.382046][T18384] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2950'.
[  794.580591][T17618] Bluetooth: hci3: command tx timeout
[  795.069530][T17671] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  795.121160][T17671] bond0 (unregistering): Released all slaves
[  795.425466][T17671] HfR: left promiscuous mode
[  795.666155][T18373] chnl_net:caif_netlink_parms(): no params data found
[  796.062733][T18373] bridge0: port 1(bridge_slave_0) entered blocking state
[  796.081611][T18373] bridge0: port 1(bridge_slave_0) entered disabled state
[  796.122262][T18373] bridge_slave_0: entered allmulticast mode
[  796.139067][T18373] bridge_slave_0: entered promiscuous mode
[  796.148551][T18373] bridge0: port 2(bridge_slave_1) entered blocking state
[  796.157285][T18373] bridge0: port 2(bridge_slave_1) entered disabled state
[  796.165260][T18373] bridge_slave_1: entered allmulticast mode
[  796.178427][T18373] bridge_slave_1: entered promiscuous mode
[  796.551164][T18373] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  796.657936][T17618] Bluetooth: hci3: command tx timeout
[  796.791854][T18373] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  796.905254][T18373] team0: Port device team_slave_0 added
[  796.915929][T18373] team0: Port device team_slave_1 added
[  797.111602][T18373] batman_adv: batadv0: Adding interface: batadv_slave_0
[  797.187610][T18373] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  797.353808][T18373] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  797.496931][T18373] batman_adv: batadv0: Adding interface: batadv_slave_1
[  797.509677][T18373] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  797.537641][T18373] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  798.005074][T18373] hsr_slave_0: entered promiscuous mode
[  798.015356][T18373] hsr_slave_1: entered promiscuous mode
[  798.022272][T18373] debugfs: 'hsr0' already exists in 'hsr'
[  798.028329][T18373] Cannot create hsr debugfs directory
[  798.817586][T17618] Bluetooth: hci3: command tx timeout
[  799.559930][T17671] hsr_slave_0: left promiscuous mode
[  799.833595][T17671] hsr_slave_1: left promiscuous mode
[  799.844555][T17671] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  799.867849][T17671] batman_adv: batadv0: Removing interface: batadv_slave_0
[  800.022066][T17671] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  800.031707][T17671] batman_adv: batadv0: Removing interface: batadv_slave_1
[  800.318607][T17671] veth1_macvtap: left promiscuous mode
[  800.324460][T17671] veth0_macvtap: left promiscuous mode
[  800.337539][T17671] veth1_vlan: left promiscuous mode
[  800.343086][T17671] veth0_vlan: left promiscuous mode
[  800.897451][T17618] Bluetooth: hci3: command tx timeout
[  802.709799][T17618] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5
[  803.035357][T17671] team0 (unregistering): Port device team_slave_1 removed
[  803.179523][T17671] team0 (unregistering): Port device team_slave_0 removed
[  805.839456][T18533] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  805.893614][T18533] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  805.937852][T18533] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  805.967899][T18533] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  805.994119][T18373] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  806.035027][T18533] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  806.115186][T18373] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  806.228022][T18373] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  806.253484][T18373] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  806.721280][T18373] 8021q: adding VLAN 0 to HW filter on device bond0
[  806.757606][T18373] 8021q: adding VLAN 0 to HW filter on device team0
[  806.783035][T17627] bridge0: port 1(bridge_slave_0) entered blocking state
[  806.790247][T17627] bridge0: port 1(bridge_slave_0) entered forwarding state
[  806.883037][T17611] bridge0: port 2(bridge_slave_1) entered blocking state
[  806.890743][T17611] bridge0: port 2(bridge_slave_1) entered forwarding state
[  807.368902][T18569] FAULT_INJECTION: forcing a failure.
[  807.368902][T18569] name failslab, interval 1, probability 0, space 0, times 0
[  807.417207][T18569] CPU: 1 UID: 0 PID: 18569 Comm: syz.1.2970 Not tainted syzkaller #0 PREEMPT(full) 
[  807.417245][T18569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  807.417262][T18569] Call Trace:
[  807.417271][T18569]  <TASK>
[  807.417282][T18569]  dump_stack_lvl+0x16c/0x1f0
[  807.417316][T18569]  should_fail_ex+0x512/0x640
[  807.417344][T18569]  ? kmem_cache_alloc_lru_noprof+0x66/0x720
[  807.417388][T18569]  should_failslab+0xc2/0x120
[  807.417419][T18569]  kmem_cache_alloc_lru_noprof+0x79/0x720
[  807.417454][T18569]  ? create_new_namespaces+0x3ea/0xab0
[  807.417482][T18569]  ? unshare_nsproxy_namespaces+0xc0/0x1f0
[  807.417510][T18569]  ? ksys_unshare+0x45b/0xa40
[  807.417531][T18569]  ? sock_alloc_inode+0x25/0x1c0
[  807.417567][T18569]  ? __pfx_sock_alloc_inode+0x10/0x10
[  807.417598][T18569]  ? sock_alloc_inode+0x25/0x1c0
[  807.417626][T18569]  sock_alloc_inode+0x25/0x1c0
[  807.417655][T18569]  alloc_inode+0x64/0x240
[  807.417692][T18569]  sock_alloc+0x40/0x280
[  807.417725][T18569]  sock_create_lite+0x82/0x120
[  807.417760][T18569]  __netlink_kernel_create+0xbd/0x7b0
[  807.417794][T18569]  ? __pfx___netlink_kernel_create+0x10/0x10
[  807.417825][T18569]  ? find_held_lock+0x2b/0x80
[  807.417861][T18569]  ? audit_net_init+0x190/0x440
[  807.417895][T18569]  audit_net_init+0x1ae/0x440
[  807.417923][T18569]  ? __pfx_audit_net_init+0x10/0x10
[  807.417952][T18569]  ? rcu_is_watching+0x12/0xc0
[  807.417987][T18569]  ? __pfx_audit_receive+0x10/0x10
[  807.418017][T18569]  ? __pfx_audit_multicast_bind+0x10/0x10
[  807.418049][T18569]  ? __pfx_audit_multicast_unbind+0x10/0x10
[  807.418082][T18569]  ? __pfx_genl_unbind+0x10/0x10
[  807.418114][T18569]  ? ops_init+0x77/0x5f0
[  807.418146][T18569]  ? __pfx_audit_net_init+0x10/0x10
[  807.418174][T18569]  ops_init+0x1e2/0x5f0
[  807.418207][T18569]  setup_net+0x11d/0x3a0
[  807.418238][T18569]  ? __pfx_setup_net+0x10/0x10
[  807.418265][T18569]  ? lockdep_init_map_type+0x5c/0x270
[  807.418298][T18569]  ? mutex_init_lockep+0x110/0x150
[  807.418332][T18569]  copy_net_ns+0x351/0x5d0
[  807.418368][T18569]  create_new_namespaces+0x3ea/0xab0
[  807.418412][T18569]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  807.418450][T18569]  ksys_unshare+0x45b/0xa40
[  807.418475][T18569]  ? __pfx_ksys_unshare+0x10/0x10
[  807.418515][T18569]  ? xfd_validate_state+0x61/0x180
[  807.418563][T18569]  __x64_sys_unshare+0x31/0x40
[  807.418587][T18569]  do_syscall_64+0xcd/0xf80
[  807.418619][T18569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  807.418646][T18569] RIP: 0033:0x7f27b358f7c9
[  807.418675][T18569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  807.418698][T18569] RSP: 002b:00007f27b437d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  807.418722][T18569] RAX: ffffffffffffffda RBX: 00007f27b37e6090 RCX: 00007f27b358f7c9
[  807.418738][T18569] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  807.418755][T18569] RBP: 00007f27b3613f91 R08: 0000000000000000 R09: 0000000000000000
[  807.418771][T18569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  807.418787][T18569] R13: 00007f27b37e6128 R14: 00007f27b37e6090 R15: 00007fff8fed6618
[  807.418825][T18569]  </TASK>
[  807.421174][T18569] audit: cannot initialize netlink socket in namespace
[  807.867161][T17618] Bluetooth: hci0: command 0x0c1a tx timeout
[  807.937389][T17618] Bluetooth: hci1: command 0x0c1a tx timeout
[  808.011554][T18373] 8021q: adding VLAN 0 to HW filter on device batadv0
[  808.018770][T17618] Bluetooth: hci3: command 0x0c1a tx timeout
[  808.131596][T18373] veth0_vlan: entered promiscuous mode
[  808.184398][T18373] veth1_vlan: entered promiscuous mode
[  808.236070][T18373] veth0_macvtap: entered promiscuous mode
[  808.273161][T18373] veth1_macvtap: entered promiscuous mode
[  808.322083][T18373] batman_adv: batadv0: Interface activated: batadv_slave_0
[  808.371917][T18373] batman_adv: batadv0: Interface activated: batadv_slave_1
[  808.416550][T18445] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  808.439317][T18445] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  808.513461][T18445] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  808.742813][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  808.749393][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  808.825098][T18445] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  809.090238][T17627] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  809.140992][T17627] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  809.357856][T18445] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  809.407241][T18445] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  810.097346][T17618] Bluetooth: hci3: command 0x0c1a tx timeout
[  811.157805][T18652] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2979'.
[  812.178029][T17618] Bluetooth: hci3: command 0x0c1a tx timeout
[  816.155706][T18712] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2989'.
[  817.617965][T18722] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  817.638551][T18722] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  817.651031][T18722] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  819.405864][T18751] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 948 with max blocks 2 with error 117
[  819.454939][T18751] EXT4-fs (sda1): This should not happen!! Data will be lost
[  819.454939][T18751] 
[  819.697506][T17804] Bluetooth: hci0: command 0x0c1a tx timeout
[  819.705857][T17613] Bluetooth: hci1: command 0x0c1a tx timeout
[  819.705941][T17618] Bluetooth: hci3: command 0x0c1a tx timeout
[  827.156131][T18862] vivid-007: =================  START STATUS  =================
[  827.196583][T18862] vivid-007: Generate PTS: true
[  827.206842][T18862] vivid-007: Generate SCR: true
[  827.236388][T18862] tpg source WxH: 320x240 (Y'CbCr)
[  827.294825][T18862] tpg field: 1
[  827.313427][T18862] tpg crop: (0,0)/320x240
[  827.357560][T18862] tpg compose: (0,0)/320x240
[  827.372607][T18862] tpg colorspace: 8
[  827.376468][T18862] tpg transfer function: 0/0
[  827.407193][T18862] tpg Y'CbCr encoding: 0/0
[  827.411647][T18862] tpg quantization: 0/0
[  827.415789][T18862] tpg RGB range: 0/2
[  827.467959][T18862] vivid-007: ==================  END STATUS  ==================
[  830.360050][T18900] Unable to find swap-space signature
[  834.882476][T17760] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 946 with max blocks 4 with error 117
[  834.905416][T17760] EXT4-fs (sda1): This should not happen!! Data will be lost
[  834.905416][T17760] 
[  835.298191][T17618] Bluetooth: hci1: unexpected event 0x3e length: 508 > 260
[  835.298227][T17618] Bluetooth: hci1: unexpected subevent 0x02 length: 507 > 260
[  835.314306][T17618] Bluetooth: hci1: Dropping invalid advertising data
[  835.322492][T17618] Bluetooth: hci1: unknown advertising packet type: 0xe9
[  835.322522][T17618] Bluetooth: hci1: unknown advertising packet type: 0xbd
[  835.330265][T17618] Bluetooth: hci1: Dropping invalid advertising data
[  835.344000][T17618] Bluetooth: hci1: Malformed LE Event: 0x02
[  836.117460][T18956] vhci_hcd: invalid port number 16
[  843.246094][T19035] program syz.3.3044 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  849.218502][T19102] FAULT_INJECTION: forcing a failure.
[  849.218502][T19102] name failslab, interval 1, probability 0, space 0, times 0
[  849.231186][T19102] CPU: 0 UID: 0 PID: 19102 Comm: syz.2.3055 Not tainted syzkaller #0 PREEMPT(full) 
[  849.231214][T19102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  849.231225][T19102] Call Trace:
[  849.231233][T19102]  <TASK>
[  849.231240][T19102]  dump_stack_lvl+0x16c/0x1f0
[  849.231264][T19102]  should_fail_ex+0x512/0x640
[  849.231284][T19102]  should_failslab+0xc2/0x120
[  849.231304][T19102]  kmem_cache_alloc_noprof+0x75/0x720
[  849.231327][T19102]  ? sctp_get_port_local+0x54d/0x1670
[  849.231349][T19102]  ? sctp_get_port_local+0x54d/0x1670
[  849.231365][T19102]  sctp_get_port_local+0x54d/0x1670
[  849.231387][T19102]  ? __pfx_sctp_get_port_local+0x10/0x10
[  849.231403][T19102]  ? sctp_bind_addr_match+0x193/0x300
[  849.231421][T19102]  ? sctp_bind_addr_match+0x19d/0x300
[  849.231438][T19102]  sctp_do_bind+0x223/0x700
[  849.231461][T19102]  sctp_connect_new_asoc+0x5e7/0x770
[  849.231482][T19102]  ? register_lock_class+0x41/0x4b0
[  849.231498][T19102]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  849.231520][T19102]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  849.231545][T19102]  __sctp_connect+0x3f3/0xc60
[  849.231568][T19102]  ? do_raw_spin_lock+0x12c/0x2b0
[  849.231586][T19102]  ? __pfx___sctp_connect+0x10/0x10
[  849.231607][T19102]  ? __pfx_sctp_inet_connect+0x10/0x10
[  849.231628][T19102]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  849.231649][T19102]  ? __pfx_sctp_inet_connect+0x10/0x10
[  849.231668][T19102]  sctp_inet_connect+0x15f/0x200
[  849.231690][T19102]  __sys_connect_file+0x141/0x1a0
[  849.231714][T19102]  __sys_connect+0x13b/0x160
[  849.231735][T19102]  ? __pfx___sys_connect+0x10/0x10
[  849.231762][T19102]  ? xfd_validate_state+0x61/0x180
[  849.231787][T19102]  __x64_sys_connect+0x72/0xb0
[  849.231807][T19102]  ? lockdep_hardirqs_on+0x7c/0x110
[  849.231824][T19102]  do_syscall_64+0xcd/0xf80
[  849.231842][T19102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  849.231857][T19102] RIP: 0033:0x7f3e7638f7c9
[  849.231870][T19102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  849.231885][T19102] RSP: 002b:00007f3e7724d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  849.231900][T19102] RAX: ffffffffffffffda RBX: 00007f3e765e6090 RCX: 00007f3e7638f7c9
[  849.231910][T19102] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003
[  849.231920][T19102] RBP: 00007f3e76413f91 R08: 0000000000000000 R09: 0000000000000000
[  849.231929][T19102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  849.231939][T19102] R13: 00007f3e765e6128 R14: 00007f3e765e6090 R15: 00007ffc099f2f78
[  849.231959][T19102]  </TASK>
[  853.346305][T19161] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  854.494095][T19161] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3063'.
[  856.497365][T19231] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[  860.981868][T19293] [U]  
[  860.984689][T19293] [U] 
[  860.987375][T19293] [U] 
[  860.990056][T19293] [U] 
[  861.010924][T19293] [U] 
[  861.013648][T19293] [U] 
[  861.016329][T19293] [U] 
[  861.019012][T19293] [U] 
[  861.284686][T19293] [U] 
[  861.374208][T19293] [U] �C�,AU�T{��J�N@���/��C�Ϟ33�P��ɀ'�
4[��L�Γ9K�����,��BJԊ�4}�U}ʅE���SC�U����\��B��`���M��Ӵ����WM��-����5��%)�)��ސ1��ΗA�ЗH�J�M2���FVCN1�ֽ�ԭR��VS�[0���_�D�C��H1��F;{+����6*��͉WS4�KÈ�0WF�%�OL,�N�G}�����I4��5M�C��T^�ŬW�}YY_����V�7EQ=Kɺ��&»!��,DUAF��O�X�9T��Y��W�A]�GWŎ:����2�����ӟ� �]�NE`��C�@���T��G�JGTJ���;       _�K?Օ�K���Eċ�$Sߘ���]�,9:��3��U�5��8
[  861.618499][T19293] [U] �Ӆ�_(�G�H6TS�.�Y`.շ���R�6��}Y�͋��2��6���WZ�I
��B Z/.S*�Z�
[  861.761571][T19293] [U] �YR�����3��/���LH�ܒ��PUK�#��G–��~[͆+�S�˓1�}VS�[5PL
�����Q�'1Y�JU     Z�=���$KCD�G2Xܴ�HѮ�I
�MKM>X�C�BK�
V����)AMZ�Q��Z2|&��^'N�Q���Л.JG��1˾Pƴԯ�8�D�ܷ�����B�Xݻ&�VB؈�#F���
[  861.928312][T19293] [U] ��˸����ME���QTN_[����M�̮��
8�Q^�L1�)�U<#W8ˮ�FO�Y͸S�DPY<�#�͈�EO��E�IJ
[  862.022400][T19293] [U] �M7}P�L�      $J57�����!�
�M��6�G�5V���37BG�3�D���3RVUުAFTJI��S��|�\��J��F�5+G�¿0�9�Y(�.,ZV�Ņ��,!�_�Y3�K?N?H�,M}��%�ܟ��>:Q|�VE�߆F�%�A�ˬ�:��C�!��AH�!}>U�}̜|�>�Z�J�0�}�\MC��-QP?���{
[  862.167598][T19293] [U] ыR-7ZJJR[�N�Y���HG��M�>�D�:ET������5�T��\C�OL"�Hʠ�V*�Z1?����7��APC�����E9#�S���EZ�U����#�^�<�IN���OW{
[  862.191489][T19293] [U] O$�K
[  862.194911][T19293] [U] �]�4�-�̅F)
[  862.230344][T19293] [U] ��۝��Y�IJI�νO�VPG�'�[�UEZ{�Q��;��=�Y�Z���">��7<��~��(Xԣ8CT`��[��V����%���I�<Q%�P�<_Z�CW�O�3L��9>��B0M�VXE     WT:Á�����EW\�ɾ�L�-��D�ճ0�TN‹��U
[  862.319040][T19293] [U] �3U`��)
[  862.327673][T19293] [U] D�D��7_Ђ`����T��<�*�U�1�S1�0�DL��IQU���а��$
[  863.525545][   T30] audit: type=1800 audit(4294967550.294:20): pid=19324 uid=0 auid=1000 ses=9 subj=unconfined op=collect_data cause=failed comm="syz.1.3080" name="members" dev="configfs" ino=84298 res=0 errno=0
[  868.388119][T17760] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 931 with max blocks 18 with error 117
[  868.401402][T17760] EXT4-fs (sda1): This should not happen!! Data will be lost
[  868.401402][T17760] 
[  870.184610][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  870.200865][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  874.162833][T17611] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 931 with max blocks 1 with error 117
[  874.211458][T17611] EXT4-fs (sda1): This should not happen!! Data will be lost
[  874.211458][T17611] 
[  874.678692][T19460] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[  878.772074][T19492] FAULT_INJECTION: forcing a failure.
[  878.772074][T19492] name failslab, interval 1, probability 0, space 0, times 0
[  878.839101][T19492] CPU: 0 UID: 0 PID: 19492 Comm: syz.1.3109 Not tainted syzkaller #0 PREEMPT(full) 
[  878.839140][T19492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  878.839155][T19492] Call Trace:
[  878.839165][T19492]  <TASK>
[  878.839175][T19492]  dump_stack_lvl+0x16c/0x1f0
[  878.839210][T19492]  should_fail_ex+0x512/0x640
[  878.839238][T19492]  ? kmem_cache_alloc_lru_noprof+0x66/0x720
[  878.839276][T19492]  should_failslab+0xc2/0x120
[  878.839295][T19492]  kmem_cache_alloc_lru_noprof+0x79/0x720
[  878.839318][T19492]  ? alloc_inode+0xc3/0x240
[  878.839335][T19492]  ? alloc_inode+0xc3/0x240
[  878.839346][T19492]  alloc_inode+0xc3/0x240
[  878.839359][T19492]  new_inode+0x22/0x1c0
[  878.839374][T19492]  configfs_new_inode+0x24/0x4a0
[  878.839398][T19492]  configfs_create+0xd9/0x3a0
[  878.839417][T19492]  configfs_lookup+0x38f/0x780
[  878.839438][T19492]  ? __pfx_configfs_lookup+0x10/0x10
[  878.839456][T19492]  lookup_open.isra.0+0x4e2/0x1780
[  878.839478][T19492]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  878.839505][T19492]  ? mnt_get_write_access+0x1e9/0x2f0
[  878.839531][T19492]  path_openat+0x12bb/0x3140
[  878.839555][T19492]  ? __pfx_path_openat+0x10/0x10
[  878.839580][T19492]  do_filp_open+0x20b/0x470
[  878.839598][T19492]  ? __pfx_do_filp_open+0x10/0x10
[  878.839630][T19492]  ? alloc_fd+0x471/0x7d0
[  878.839653][T19492]  do_sys_openat2+0x11f/0x280
[  878.839666][T19492]  ? __pfx_do_sys_openat2+0x10/0x10
[  878.839680][T19492]  ? find_held_lock+0x2b/0x80
[  878.839704][T19492]  __x64_sys_openat+0x174/0x210
[  878.839718][T19492]  ? __pfx___x64_sys_openat+0x10/0x10
[  878.839739][T19492]  do_syscall_64+0xcd/0xf80
[  878.839757][T19492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  878.839773][T19492] RIP: 0033:0x7f27b358f7c9
[  878.839786][T19492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  878.839801][T19492] RSP: 002b:00007f27b437d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  878.839815][T19492] RAX: ffffffffffffffda RBX: 00007f27b37e6090 RCX: 00007f27b358f7c9
[  878.839825][T19492] RDX: 0000000000000001 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  878.839835][T19492] RBP: 00007f27b3613f91 R08: 0000000000000000 R09: 0000000000000000
[  878.839845][T19492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  878.839853][T19492] R13: 00007f27b37e6128 R14: 00007f27b37e6090 R15: 00007fff8fed6618
[  878.839874][T19492]  </TASK>
[  884.852443][T19571] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3122'.
[  887.048995][T19591] zswap: compressor  not available
[  887.750657][T19598] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[  889.379276][T17616] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 1357 with max blocks 4 with error 117
[  889.393806][T17616] EXT4-fs (sda1): This should not happen!! Data will be lost
[  889.393806][T17616] 
[  890.105018][T19619] zswap: compressor  not available
[  890.557964][T19619] random: crng reseeded on system resumption
[  891.081846][T19635] FAULT_INJECTION: forcing a failure.
[  891.081846][T19635] name failslab, interval 1, probability 0, space 0, times 0
[  891.198240][T19635] CPU: 1 UID: 0 PID: 19635 Comm: syz.0.3132 Not tainted syzkaller #0 PREEMPT(full) 
[  891.198278][T19635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  891.198293][T19635] Call Trace:
[  891.198302][T19635]  <TASK>
[  891.198313][T19635]  dump_stack_lvl+0x16c/0x1f0
[  891.198349][T19635]  should_fail_ex+0x512/0x640
[  891.198374][T19635]  ? kmem_cache_alloc_lru_noprof+0x66/0x720
[  891.198416][T19635]  should_failslab+0xc2/0x120
[  891.198447][T19635]  kmem_cache_alloc_lru_noprof+0x79/0x720
[  891.198481][T19635]  ? find_held_lock+0x2b/0x80
[  891.198514][T19635]  ? bdev_alloc_inode+0x26/0x90
[  891.198545][T19635]  ? __pfx_bdev_alloc_inode+0x10/0x10
[  891.198570][T19635]  ? bdev_alloc_inode+0x26/0x90
[  891.198594][T19635]  bdev_alloc_inode+0x26/0x90
[  891.198616][T19635]  ? __pfx_bdev_alloc_inode+0x10/0x10
[  891.198639][T19635]  alloc_inode+0x64/0x240
[  891.198662][T19635]  new_inode+0x22/0x1c0
[  891.198686][T19635]  bdev_alloc+0x2b/0x420
[  891.198715][T19635]  __alloc_disk_node+0x116/0x640
[  891.198754][T19635]  __blk_mq_alloc_disk+0x89/0x120
[  891.198780][T19635]  loop_add+0x490/0xb70
[  891.198878][T19635]  ? __pfx_loop_add+0x10/0x10
[  891.198917][T19635]  ? find_held_lock+0x2b/0x80
[  891.198941][T19635]  loop_control_ioctl+0x13e/0x630
[  891.198960][T19635]  ? __pfx_loop_control_ioctl+0x10/0x10
[  891.198996][T19635]  ? __pfx_loop_control_ioctl+0x10/0x10
[  891.199016][T19635]  __x64_sys_ioctl+0x18e/0x210
[  891.199035][T19635]  do_syscall_64+0xcd/0xf80
[  891.199054][T19635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  891.199070][T19635] RIP: 0033:0x7efe3cb8f7c9
[  891.199113][T19635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  891.199133][T19635] RSP: 002b:00007efe3d9ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  891.199149][T19635] RAX: ffffffffffffffda RBX: 00007efe3cde6090 RCX: 00007efe3cb8f7c9
[  891.199159][T19635] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000004
[  891.199172][T19635] RBP: 00007efe3cc13f91 R08: 0000000000000000 R09: 0000000000000000
[  891.199182][T19635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  891.199191][T19635] R13: 00007efe3cde6128 R14: 00007efe3cde6090 R15: 00007ffd13ca72b8
[  891.199210][T19635]  </TASK>
[  892.437330][T19644] zswap: compressor  not available
[  893.086292][T19657] block nbd7: not configured, cannot reconfigure
[  893.177564][T19644] FAULT_INJECTION: forcing a failure.
[  893.177564][T19644] name failslab, interval 1, probability 0, space 0, times 0
[  893.340970][T19644] CPU: 0 UID: 0 PID: 19644 Comm: syz.0.3134 Not tainted syzkaller #0 PREEMPT(full) 
[  893.341010][T19644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  893.341027][T19644] Call Trace:
[  893.341036][T19644]  <TASK>
[  893.341046][T19644]  dump_stack_lvl+0x16c/0x1f0
[  893.341083][T19644]  should_fail_ex+0x512/0x640
[  893.341109][T19644]  ? fs_reclaim_acquire+0xae/0x150
[  893.341144][T19644]  should_failslab+0xc2/0x120
[  893.341176][T19644]  kmem_cache_alloc_noprof+0x75/0x720
[  893.341214][T19644]  ? __pfx_map_id_range_down+0x10/0x10
[  893.341245][T19644]  ? security_inode_alloc+0x3b/0x2b0
[  893.341280][T19644]  ? security_inode_alloc+0x3b/0x2b0
[  893.341306][T19644]  security_inode_alloc+0x3b/0x2b0
[  893.341335][T19644]  inode_init_always_gfp+0xced/0x1040
[  893.341371][T19644]  alloc_inode+0x86/0x240
[  893.341394][T19644]  new_inode+0x22/0x1c0
[  893.341421][T19644]  debugfs_create_symlink+0xd3/0x320
[  893.341456][T19644]  ref_tracker_dir_symlink+0x255/0x360
[  893.341484][T19644]  ? __pfx_ref_tracker_dir_symlink+0x10/0x10
[  893.341515][T19644]  ? __lock_acquire+0x433/0x22f0
[  893.341563][T19644]  ? __lock_acquire+0x433/0x22f0
[  893.341587][T19644]  ? crng_make_state+0x48e/0x6c0
[  893.341631][T19644]  ? __pfx_net_ns_net_init+0x10/0x10
[  893.341659][T19644]  net_ns_net_init+0xd2/0x120
[  893.341687][T19644]  ops_init+0x1e2/0x5f0
[  893.341720][T19644]  setup_net+0x11d/0x3a0
[  893.341750][T19644]  ? __pfx_setup_net+0x10/0x10
[  893.341776][T19644]  ? lockdep_init_map_type+0x5c/0x270
[  893.341818][T19644]  ? mutex_init_lockep+0x110/0x150
[  893.341853][T19644]  copy_net_ns+0x351/0x5d0
[  893.341886][T19644]  create_new_namespaces+0x3ea/0xab0
[  893.341928][T19644]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  893.341966][T19644]  ksys_unshare+0x45b/0xa40
[  893.341990][T19644]  ? __pfx_ksys_unshare+0x10/0x10
[  893.342029][T19644]  ? xfd_validate_state+0x61/0x180
[  893.342078][T19644]  __x64_sys_unshare+0x31/0x40
[  893.342100][T19644]  do_syscall_64+0xcd/0xf80
[  893.342133][T19644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  893.342159][T19644] RIP: 0033:0x7efe3cb8f7c9
[  893.342180][T19644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  893.342204][T19644] RSP: 002b:00007efe3d9eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  893.342230][T19644] RAX: ffffffffffffffda RBX: 00007efe3cde5fa0 RCX: 00007efe3cb8f7c9
[  893.342248][T19644] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  893.342265][T19644] RBP: 00007efe3cc13f91 R08: 0000000000000000 R09: 0000000000000000
[  893.342281][T19644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  893.342297][T19644] R13: 00007efe3cde6038 R14: 00007efe3cde5fa0 R15: 00007ffd13ca72b8
[  893.342334][T19644]  </TASK>
[  893.342374][T19644] debugfs: out of free dentries, can not create symlink 'netns-3fa-4026532860-notrefcnt'

syzkaller
syzkaller login: [  895.584390][T19684] binder: 19681:19684 ioctl c018620c 0 returned -22
[  895.599246][T19684] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3142'.
[  897.059409][T19698] nvme_fcloop: unknown parameter or missing value '7'
[  899.751325][T19710] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  901.374213][T19741] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3152'.
[  902.202792][T19754] mkiss: ax0: crc mode is auto.
[  904.532138][T19799] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3162'.
[  907.429668][T19830] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[  911.779195][T19884] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3178'.
[  913.790618][T19898] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  913.852273][T19898] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  913.865142][T19898] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  915.857477][T17804] Bluetooth: hci0: command 0x0c1a tx timeout
[  915.864476][T17618] Bluetooth: hci1: command 0x0c1a tx timeout
[  915.949112][T17618] Bluetooth: hci3: command 0x0c1a tx timeout
[  916.526199][    T9] smpboot: CPU 1 is now offline
[  917.341405][T19957] random: crng reseeded on system resumption
[  918.085750][T19966] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3195'.
[  918.422845][T19966] veth1_macvtap: left promiscuous mode
[  920.337355][T17618] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  920.624130][T19987] snd_aloop snd_aloop.0: control 7:265:7:���:2 is already present
[  921.128782][T20001] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 2 with max blocks 1 with error 117
[  921.170513][T20001] EXT4-fs (sda1): This should not happen!! Data will be lost
[  921.170513][T20001] 
[  921.342239][T20004] ubi0: attaching mtd1
[  921.360586][T20004] ubi0: scanning is finished
[  921.384254][T20004] ubi0: empty MTD device detected
[  921.434961][T20004] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  922.003393][T20004] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd1, error -22
[  924.721049][T20031] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  924.877824][T20044] random: crng reseeded on system resumption
[  925.081114][T17627] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 946 with max blocks 4 with error 117
[  925.150315][T17627] EXT4-fs (sda1): This should not happen!! Data will be lost
[  925.150315][T17627] 
[  925.259017][T17627] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1374 with max blocks 17 with error 117
[  925.344083][T17627] EXT4-fs (sda1): This should not happen!! Data will be lost
[  925.344083][T17627] 
[  925.423240][T17627] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 946 with max blocks 1 with error 117
[  925.508764][T17627] EXT4-fs (sda1): This should not happen!! Data will be lost
[  925.508764][T17627] 
[  927.937144][T17618] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  929.200200][T20092] serio: Serial port ttyS2
[  931.623166][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  931.629617][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  932.224977][T20130] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  932.329004][T20130] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  932.449756][T20130] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  934.257974][T17618] Bluetooth: hci0: command 0x0c1a tx timeout
[  934.347284][T17804] Bluetooth: hci1: command 0x0c1a tx timeout
[  934.353353][T17618] Bluetooth: hci3: command 0x0c1a tx timeout
[  937.049713][T20189] mkiss: ax0: crc mode is auto.
[  942.787713][T20232] random: crng reseeded on system resumption
[  945.857936][T17618] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  958.913152][T20426] netlink: 186 bytes leftover after parsing attributes in process `syz.1.3288'.
[  962.837184][T18429] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1358 with max blocks 33 with error 117
[  962.909423][T18429] EXT4-fs (sda1): This should not happen!! Data will be lost
[  962.909423][T18429] 
[  973.496302][T20560] FAULT_INJECTION: forcing a failure.
[  973.496302][T20560] name failslab, interval 1, probability 0, space 0, times 0
[  973.788698][T20560] CPU: 0 UID: 0 PID: 20560 Comm: syz.2.3322 Not tainted syzkaller #0 PREEMPT(full) 
[  973.788723][T20560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  973.788733][T20560] Call Trace:
[  973.788739][T20560]  <TASK>
[  973.788746][T20560]  dump_stack_lvl+0x16c/0x1f0
[  973.788773][T20560]  should_fail_ex+0x512/0x640
[  973.788788][T20560]  ? __kmalloc_noprof+0xca/0x870
[  973.788813][T20560]  should_failslab+0xc2/0x120
[  973.788834][T20560]  __kmalloc_noprof+0xdd/0x870
[  973.788855][T20560]  ? sk_prot_alloc+0x1a8/0x2a0
[  973.788876][T20560]  ? sk_prot_alloc+0x1a8/0x2a0
[  973.788893][T20560]  sk_prot_alloc+0x1a8/0x2a0
[  973.788912][T20560]  sk_alloc+0x36/0xb80
[  973.788927][T20560]  __netlink_create+0x5e/0x2c0
[  973.788944][T20560]  __netlink_kernel_create+0xed/0x7b0
[  973.788963][T20560]  ? __pfx___netlink_kernel_create+0x10/0x10
[  973.789003][T20560]  uevent_net_init+0xf8/0x350
[  973.789023][T20560]  ? __pfx_uevent_net_init+0x10/0x10
[  973.789042][T20560]  ? rcu_is_watching+0x12/0xc0
[  973.789062][T20560]  ? __pfx_uevent_net_rcv+0x10/0x10
[  973.789146][T20560]  ? ops_init+0x77/0x5f0
[  973.789166][T20560]  ? __pfx_uevent_net_init+0x10/0x10
[  973.789185][T20560]  ops_init+0x1e2/0x5f0
[  973.789204][T20560]  setup_net+0x11d/0x3a0
[  973.789222][T20560]  ? __pfx_setup_net+0x10/0x10
[  973.789239][T20560]  ? lockdep_init_map_type+0x5c/0x270
[  973.789255][T20560]  ? mutex_init_lockep+0x110/0x150
[  973.789273][T20560]  copy_net_ns+0x351/0x5d0
[  973.789293][T20560]  create_new_namespaces+0x3ea/0xab0
[  973.789316][T20560]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  973.789337][T20560]  ksys_unshare+0x45b/0xa40
[  973.789351][T20560]  ? __pfx_ksys_unshare+0x10/0x10
[  973.789372][T20560]  ? xfd_validate_state+0x61/0x180
[  973.789400][T20560]  __x64_sys_unshare+0x31/0x40
[  973.789412][T20560]  do_syscall_64+0xcd/0xf80
[  973.789431][T20560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  973.789446][T20560] RIP: 0033:0x7f3e7638f7c9
[  973.789459][T20560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  973.789473][T20560] RSP: 002b:00007f3e7724d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  973.789490][T20560] RAX: ffffffffffffffda RBX: 00007f3e765e6090 RCX: 00007f3e7638f7c9
[  973.789500][T20560] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  973.789509][T20560] RBP: 00007f3e76413f91 R08: 0000000000000000 R09: 0000000000000000
[  973.789518][T20560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  973.789528][T20560] R13: 00007f3e765e6128 R14: 00007f3e765e6090 R15: 00007ffc099f2f78
[  973.789549][T20560]  </TASK>
[  973.789674][T20560] kobject_uevent: unable to create netlink socket!
[  974.379672][T17618] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260
[  974.379700][T17618] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260
[  974.396044][T17618] Bluetooth: hci0: Dropping invalid advertising data
[  974.403191][T17618] Bluetooth: hci0: unknown advertising packet type: 0xe9
[  974.403210][T17618] Bluetooth: hci0: unknown advertising packet type: 0xbd
[  974.417159][T17618] Bluetooth: hci0: Dropping invalid advertising data
[  974.431390][T17618] Bluetooth: hci0: Malformed LE Event: 0x02
[  978.253659][T17804] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  978.269893][T17804] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  978.278295][T17804] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  978.285906][T17804] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  978.293751][T17804] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  980.348547][T17804] Bluetooth: hci4: command tx timeout
[  981.629134][T17739] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  981.963224][T20577] chnl_net:caif_netlink_parms(): no params data found
[  982.289062][T17739] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  982.417680][T17804] Bluetooth: hci4: command tx timeout
[  982.806527][T17739] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  983.022223][T20577] bridge0: port 1(bridge_slave_0) entered blocking state
[  983.057218][T20577] bridge0: port 1(bridge_slave_0) entered disabled state
[  983.064425][T20577] bridge_slave_0: entered allmulticast mode
[  983.119712][T20577] bridge_slave_0: entered promiscuous mode
[  983.161587][T20577] bridge0: port 2(bridge_slave_1) entered blocking state
[  983.197188][T20577] bridge0: port 2(bridge_slave_1) entered disabled state
[  983.204398][T20577] bridge_slave_1: entered allmulticast mode
[  983.252265][T20577] bridge_slave_1: entered promiscuous mode
[  983.404000][T20605] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[  983.515655][T20577] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  983.583996][T20577] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  983.680803][T17739] bridge_slave_1: left allmulticast mode
[  983.686554][T17739] bridge_slave_1: left promiscuous mode
[  983.740095][T17739] bridge0: port 2(bridge_slave_1) entered disabled state
[  983.788196][T17739] bridge_slave_0: left allmulticast mode
[  983.827147][T17739] bridge_slave_0: left promiscuous mode
[  983.867339][T17739] bridge0: port 1(bridge_slave_0) entered disabled state
[  984.497663][T17804] Bluetooth: hci4: command tx timeout
[  986.297983][T17739] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  986.366219][T20650] binder: 20648:20650 ioctl c018620c 0 returned -22
[  986.465973][T20651] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3335'.
[  986.552552][T17739] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  986.577510][T17804] Bluetooth: hci4: command tx timeout
[  986.976815][T17739] bond0 (unregistering): Released all slaves
[  990.799911][T20577] team0: Port device team_slave_0 added
[  990.844250][T20577] team0: Port device team_slave_1 added
[  991.249858][T20577] batman_adv: batadv0: Adding interface: batadv_slave_0
[  991.296716][T20577] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  991.407081][T20577] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  991.598593][T20577] batman_adv: batadv0: Adding interface: batadv_slave_1
[  991.605581][T20577] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  991.751917][T20577] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  992.070591][T20577] hsr_slave_0: entered promiscuous mode
[  992.090170][T20577] hsr_slave_1: entered promiscuous mode
[  992.120438][T20577] debugfs: 'hsr0' already exists in 'hsr'
[  992.149141][T20577] Cannot create hsr debugfs directory
[  992.899184][T20577] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  993.061961][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  993.071578][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  993.223856][T17657] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1376 with max blocks 15 with error 117
[  993.287101][T17657] EXT4-fs (sda1): This should not happen!! Data will be lost
[  993.287101][T17657] 
[  994.637405][T20577] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  995.966403][T20577] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  996.265654][T20577] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  996.582050][T17739] hsr_slave_0: left promiscuous mode
[  996.605401][T17739] hsr_slave_1: left promiscuous mode
[  996.627795][T17739] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  996.661929][T17739] batman_adv: batadv0: Removing interface: batadv_slave_0
[  996.688126][T17739] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  996.695536][T17739] batman_adv: batadv0: Removing interface: batadv_slave_1
[  996.783949][T17739] veth1_macvtap: left promiscuous mode
[  996.811320][T17739] veth0_macvtap: left promiscuous mode
[  996.816910][T17739] veth1_vlan: left promiscuous mode
[  996.854429][T17739] veth0_vlan: left promiscuous mode
[  998.153138][T17739] team0 (unregistering): Port device team_slave_1 removed
[  998.231169][T17739] team0 (unregistering): Port device team_slave_0 removed
[  999.163886][T20577] 8021q: adding VLAN 0 to HW filter on device bond0
[  999.279815][T20577] 8021q: adding VLAN 0 to HW filter on device team0
[  999.312086][T19509] bridge0: port 1(bridge_slave_0) entered blocking state
[  999.319313][T19509] bridge0: port 1(bridge_slave_0) entered forwarding state
[  999.440597][T19509] bridge0: port 2(bridge_slave_1) entered blocking state
[  999.447768][T19509] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1000.117434][T20577] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1001.299423][T20577] veth0_vlan: entered promiscuous mode
[ 1001.344659][T20577] veth1_vlan: entered promiscuous mode
[ 1001.524823][T20577] veth0_macvtap: entered promiscuous mode
[ 1001.561195][T20577] veth1_macvtap: entered promiscuous mode
[ 1001.618783][T20577] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1001.652446][T20577] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1001.692784][T19509] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1001.729550][T19509] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1001.802229][T19509] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1001.867606][T19509] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1001.997615][T19509] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1002.037399][T19509] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1002.104093][T17625] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1002.130507][T17625] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1002.592054][T20829] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3354'.
[ 1002.807510][T20834] Unable to find swap-space signature
[ 1004.388823][T20856] netlink: 186 bytes leftover after parsing attributes in process `syz.4.3359'.
[ 1005.581378][T20868] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[ 1006.091058][T20876] nvme_fcloop: unknown parameter or missing value '7'
[ 1008.513563][T20905] random: crng reseeded on system resumption
[ 1008.622380][T20900] zswap: compressor  not available
[ 1009.885952][T19509] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1376 with max blocks 1 with error 117
[ 1009.957167][T19509] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1009.957167][T19509] 
[ 1014.832904][T20993] ubi3: attaching mtd1
[ 1014.846573][T20993] ubi3: scanning is finished
[ 1014.867173][T20993] ubi3: empty MTD device detected
[ 1014.891643][T20993] ubi3 error: ubi_early_get_peb: no free eraseblocks
[ 1014.972243][T20993] ubi3 error: ubi_attach_mtd_dev: failed to attach mtd1, error -28
[ 1015.762476][T21014] FAULT_INJECTION: forcing a failure.
[ 1015.762476][T21014] name failslab, interval 1, probability 0, space 0, times 0
[ 1015.809373][T21014] CPU: 0 UID: 0 PID: 21014 Comm: syz.4.3388 Not tainted syzkaller #0 PREEMPT(full) 
[ 1015.809397][T21014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1015.809407][T21014] Call Trace:
[ 1015.809413][T21014]  <TASK>
[ 1015.809420][T21014]  dump_stack_lvl+0x16c/0x1f0
[ 1015.809443][T21014]  should_fail_ex+0x512/0x640
[ 1015.809460][T21014]  ? kmem_cache_alloc_lru_noprof+0x66/0x720
[ 1015.809486][T21014]  should_failslab+0xc2/0x120
[ 1015.809507][T21014]  kmem_cache_alloc_lru_noprof+0x79/0x720
[ 1015.809530][T21014]  ? __lock_acquire+0x433/0x22f0
[ 1015.809545][T21014]  ? __d_alloc+0x35/0xa80
[ 1015.809567][T21014]  ? __d_alloc+0x35/0xa80
[ 1015.809584][T21014]  __d_alloc+0x35/0xa80
[ 1015.809609][T21014]  ? bpf_lsm_inode_permission+0x9/0x10
[ 1015.809633][T21014]  d_alloc+0x4a/0x1e0
[ 1015.809654][T21014]  vfs_tmpfile+0x148/0x9b0
[ 1015.809678][T21014]  path_openat+0x1936/0x3140
[ 1015.809695][T21014]  ? do_syscall_64+0xcd/0xf80
[ 1015.809712][T21014]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1015.809732][T21014]  ? __pfx_path_openat+0x10/0x10
[ 1015.809757][T21014]  do_filp_open+0x20b/0x470
[ 1015.809773][T21014]  ? __lock_acquire+0x433/0x22f0
[ 1015.809788][T21014]  ? __pfx_do_filp_open+0x10/0x10
[ 1015.809819][T21014]  ? _raw_spin_unlock+0x28/0x50
[ 1015.809833][T21014]  ? alloc_fd+0x471/0x7d0
[ 1015.809856][T21014]  do_sys_openat2+0x11f/0x280
[ 1015.809869][T21014]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1015.809889][T21014]  __x64_sys_open+0x153/0x1e0
[ 1015.809902][T21014]  ? __pfx___x64_sys_open+0x10/0x10
[ 1015.809920][T21014]  ? rcu_is_watching+0x12/0xc0
[ 1015.809941][T21014]  do_syscall_64+0xcd/0xf80
[ 1015.809959][T21014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1015.809973][T21014] RIP: 0033:0x7ff111b8f7c9
[ 1015.809986][T21014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1015.810000][T21014] RSP: 002b:00007ff1129a1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1015.810015][T21014] RAX: ffffffffffffffda RBX: 00007ff111de5fa0 RCX: 00007ff111b8f7c9
[ 1015.810025][T21014] RDX: 0000000000000408 RSI: 0000000000591002 RDI: 0000200000000100
[ 1015.810033][T21014] RBP: 00007ff111c13f91 R08: 0000000000000000 R09: 0000000000000000
[ 1015.810042][T21014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1015.810051][T21014] R13: 00007ff111de6038 R14: 00007ff111de5fa0 R15: 00007ffedf545878
[ 1015.810071][T21014]  </TASK>
[ 1016.886727][T21022] random: crng reseeded on system resumption
[ 1016.920920][T21022] TCP: TCP_TX_DELAY enabled
[ 1017.251018][T17625] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 946 with max blocks 3 with error 117
[ 1017.310978][T17625] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1017.310978][T17625] 
[ 1019.113457][T17627] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 944 with max blocks 6 with error 117
[ 1019.167198][T17627] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1019.167198][T17627] 
[ 1022.324144][T21145] netlink: 'syz.3.3424': attribute type 11 has an invalid length.
[ 1026.612333][T21212] zswap: compressor  not available
[ 1028.029063][T21237] netlink: 288 bytes leftover after parsing attributes in process `syz.4.3456'.
[ 1032.457189][T21302] FAULT_INJECTION: forcing a failure.
[ 1032.457189][T21302] name failslab, interval 1, probability 0, space 0, times 0
[ 1032.520461][T21302] CPU: 0 UID: 0 PID: 21302 Comm: syz.4.3479 Not tainted syzkaller #0 PREEMPT(full) 
[ 1032.520484][T21302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1032.520494][T21302] Call Trace:
[ 1032.520501][T21302]  <TASK>
[ 1032.520508][T21302]  dump_stack_lvl+0x16c/0x1f0
[ 1032.520531][T21302]  should_fail_ex+0x512/0x640
[ 1032.520548][T21302]  ? __kmalloc_noprof+0xca/0x870
[ 1032.520572][T21302]  should_failslab+0xc2/0x120
[ 1032.520592][T21302]  __kmalloc_noprof+0xdd/0x870
[ 1032.520612][T21302]  ? __vb2_queue_alloc+0x23e/0x1280
[ 1032.520630][T21302]  ? __vb2_queue_alloc+0x23e/0x1280
[ 1032.520642][T21302]  __vb2_queue_alloc+0x23e/0x1280
[ 1032.520656][T21302]  ? trace_kmalloc+0x2b/0xb0
[ 1032.520674][T21302]  ? vb2_core_allocated_buffers_storage+0xc4/0x220
[ 1032.520695][T21302]  vb2_core_reqbufs+0xa90/0xfe0
[ 1032.520713][T21302]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[ 1032.520739][T21302]  __vb2_init_fileio+0x3f1/0x1100
[ 1032.520760][T21302]  vb2_core_poll+0x486/0x700
[ 1032.520776][T21302]  vb2_poll+0x4b/0xe0
[ 1032.520797][T21302]  vb2_fop_poll+0x10f/0x2c0
[ 1032.520837][T21302]  ? __pfx_vb2_fop_poll+0x10/0x10
[ 1032.520866][T21302]  v4l2_poll+0x163/0x320
[ 1032.520886][T21302]  ? __pfx_v4l2_poll+0x10/0x10
[ 1032.520904][T21302]  do_select+0xd3d/0x17e0
[ 1032.520936][T21302]  ? __pfx_do_select+0x10/0x10
[ 1032.520950][T21302]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1032.520974][T21302]  ? __pfx_pollwake+0x10/0x10
[ 1032.521019][T21302]  ? find_held_lock+0x2b/0x80
[ 1032.521038][T21302]  ? __might_fault+0xe3/0x190
[ 1032.521058][T21302]  ? __might_fault+0xe3/0x190
[ 1032.521077][T21302]  ? __might_fault+0x13b/0x190
[ 1032.521106][T21302]  ? core_sys_select+0x457/0xae0
[ 1032.521129][T21302]  core_sys_select+0x457/0xae0
[ 1032.521154][T21302]  ? __pfx_core_sys_select+0x10/0x10
[ 1032.521174][T21302]  ? futex_wait+0x120/0x380
[ 1032.521208][T21302]  ? __pfx_do_futex+0x10/0x10
[ 1032.521229][T21302]  kern_select+0x15d/0x1e0
[ 1032.521245][T21302]  ? __pfx_kern_select+0x10/0x10
[ 1032.521264][T21302]  ? xfd_validate_state+0x61/0x180
[ 1032.521285][T21302]  ? __pfx_ksys_write+0x10/0x10
[ 1032.521305][T21302]  __x64_sys_select+0xbd/0x160
[ 1032.521320][T21302]  ? do_syscall_64+0x91/0xf80
[ 1032.521336][T21302]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1032.521352][T21302]  do_syscall_64+0xcd/0xf80
[ 1032.521370][T21302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1032.521385][T21302] RIP: 0033:0x7ff111b8f7c9
[ 1032.521398][T21302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1032.521414][T21302] RSP: 002b:00007ff1129a1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[ 1032.521429][T21302] RAX: ffffffffffffffda RBX: 00007ff111de5fa0 RCX: 00007ff111b8f7c9
[ 1032.521439][T21302] RDX: 00002000000005c0 RSI: 0000000000000000 RDI: 0000000000000005
[ 1032.521448][T21302] RBP: 00007ff111c13f91 R08: 0000000000000000 R09: 0000000000000000
[ 1032.521456][T21302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1032.521465][T21302] R13: 00007ff111de6038 R14: 00007ff111de5fa0 R15: 00007ffedf545878
[ 1032.521486][T21302]  </TASK>
[ 1035.114625][T21326] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] SMP KASAN PTI
[ 1035.126634][T21326] KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]
[ 1035.135045][T21326] CPU: 0 UID: 0 PID: 21326 Comm: syz.3.3486 Not tainted syzkaller #0 PREEMPT(full) 
[ 1035.144573][T21326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1035.154799][T21326] RIP: 0010:handshake_complete+0x31/0x390
[ 1035.160605][T21326] Code: 56 41 55 49 89 d5 41 54 41 89 f4 55 53 48 89 fb e8 d4 fc 6f f6 48 8d 7b 28 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 0f 03 00 00 48 8b 6b 28 e8 dc 23 0e 00 48 b8 00
[ 1035.180217][T21326] RSP: 0018:ffffc90003aa74f8 EFLAGS: 00010206
[ 1035.186453][T21326] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc9000cd0b000
[ 1035.194418][T21326] RDX: 0000000000000005 RSI: ffffffff8b4d245c RDI: 0000000000000028
[ 1035.202468][T21326] RBP: ffffc90003aa75c0 R08: 0000000000000000 R09: ffffed10281d1180
[ 1035.210547][T21326] R10: ffff888140e88c03 R11: 0000000000000001 R12: 00000000fffffffb
[ 1035.218507][T21326] R13: 0000000000000000 R14: ffff8880912a0340 R15: ffff88807ae42500
[ 1035.226480][T21326] FS:  00007fe3565aa6c0(0000) GS:ffff888124ba8000(0000) knlGS:0000000000000000
[ 1035.235411][T21326] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1035.241999][T21326] CR2: 000000110de787a6 CR3: 000000009ad42000 CR4: 00000000003526f0
[ 1035.250065][T21326] Call Trace:
[ 1035.253349][T21326]  <TASK>
[ 1035.256271][T21326]  handshake_nl_accept_doit+0x2dc/0x910
[ 1035.261838][T21326]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1035.267381][T21326]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1035.273452][T21326]  ? __dev_queue_xmit+0xaf1/0x4330
[ 1035.278603][T21326]  ? genl_get_cmd+0x194/0x580
[ 1035.283311][T21326]  ? bpf_lsm_capable+0x9/0x10
[ 1035.288071][T21326]  ? security_capable+0x7e/0x260
[ 1035.293021][T21326]  genl_rcv_msg+0x55c/0x800
[ 1035.297535][T21326]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1035.302562][T21326]  ? __pfx_handshake_nl_accept_doit+0x10/0x10
[ 1035.308661][T21326]  netlink_rcv_skb+0x158/0x420
[ 1035.313489][T21326]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1035.318508][T21326]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1035.323994][T21326]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1035.329370][T21326]  genl_rcv+0x28/0x40
[ 1035.333434][T21326]  netlink_unicast+0x5aa/0x870
[ 1035.338206][T21326]  ? __pfx_netlink_unicast+0x10/0x10
[ 1035.343486][T21326]  netlink_sendmsg+0x8c8/0xdd0
[ 1035.348257][T21326]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1035.353564][T21326]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[ 1035.359631][T21326]  ____sys_sendmsg+0xa5d/0xc30
[ 1035.364481][T21326]  ? copy_msghdr_from_user+0x10a/0x160
[ 1035.369954][T21326]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1035.375249][T21326]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1035.380571][T21326]  ___sys_sendmsg+0x134/0x1d0
[ 1035.385242][T21326]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1035.390431][T21326]  ? __lock_acquire+0x433/0x22f0
[ 1035.395453][T21326]  __sys_sendmsg+0x16d/0x220
[ 1035.400038][T21326]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1035.405399][T21326]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1035.410330][T21326]  do_syscall_64+0xcd/0xf80
[ 1035.414863][T21326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1035.421318][T21326] RIP: 0033:0x7fe35578f7c9
[ 1035.425837][T21326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1035.446163][T21326] RSP: 002b:00007fe3565aa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1035.454762][T21326] RAX: ffffffffffffffda RBX: 00007fe3559e5fa0 RCX: 00007fe35578f7c9
[ 1035.462732][T21326] RDX: 000000002004881c RSI: 0000200000000580 RDI: 0000000000000003
[ 1035.470780][T21326] RBP: 00007fe355813f91 R08: 0000000000000000 R09: 0000000000000000
[ 1035.478745][T21326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1035.486709][T21326] R13: 00007fe3559e6038 R14: 00007fe3559e5fa0 R15: 00007fff537f3b38
[ 1035.494813][T21326]  </TASK>
[ 1035.497837][T21326] Modules linked in:
[ 1035.501907][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1035.509841][T21326] ---[ end trace 0000000000000000 ]---
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1036.670735][T21016] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1036.687404][T21319] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.2.3482: Error -117 reading block bitmap for 3
[ 1036.802872][T21319] EXT4-fs error (device sda1) in ext4_free_inode:361: Corrupt filesystem
[ 1036.819310][T21016] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1036.864445][T21319] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.2.3482: Error -117 reading block bitmap for 2
[ 1036.912658][T21016] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1036.949648][T21319] EXT4-fs error (device sda1) in ext4_free_inode:361: Corrupt filesystem
[ 1036.961339][T21016] bridge0: port 3(netdevsim1) entered disabled state
[ 1036.978841][T21016] netdevsim netdevsim2 netdevsim1 (unregistering): left allmulticast mode
[ 1037.023044][T21293] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.1.3474: Error -117 reading block bitmap for 3
[ 1037.036058][T21016] netdevsim netdevsim2 netdevsim1 (unregistering): left promiscuous mode
[ 1037.077433][T21016] bridge0: port 3(netdevsim1) entered disabled state
[ 1037.085279][T21016] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1037.102421][T21313] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.4.3483: Error -117 reading block bitmap for 2
[ 1037.157899][T21293] EXT4-fs error (device sda1) in ext4_free_inode:361: Corrupt filesystem
[ 1037.166456][T21293] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.1.3474: Error -117 reading block bitmap for 2
[ 1037.186667][T21313] EXT4-fs error (device sda1) in ext4_free_inode:361: Corrupt filesystem
[ 1037.217651][T21313] EXT4-fs error (device sda1): ext4_discard_preallocations:5681: comm syz.4.3483: Error -117 reading block bitmap for 2
[ 1037.239189][T21016] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1037.455017][T21016] bridge_slave_0: left allmulticast mode
[ 1037.478195][T21326] RIP: 0010:handshake_complete+0x31/0x390
[ 1037.483952][T21326] Code: 56 41 55 49 89 d5 41 54 41 89 f4 55 53 48 89 fb e8 d4 fc 6f f6 48 8d 7b 28 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 0f 03 00 00 48 8b 6b 28 e8 dc 23 0e 00 48 b8 00
[ 1037.503567][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1037.514640][T21016] bridge_slave_0: left promiscuous mode
[ 1037.540265][T21016] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1037.609792][T21326] RSP: 0018:ffffc90003aa74f8 EFLAGS: 00010206
[ 1037.615887][T21326] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc9000cd0b000
[ 1037.687334][T21326] RDX: 0000000000000005 RSI: ffffffff8b4d245c RDI: 0000000000000028
[ 1037.695340][T21326] RBP: ffffc90003aa75c0 R08: 0000000000000000 R09: ffffed10281d1180
[ 1037.748415][T21326] R10: ffff888140e88c03 R11: 0000000000000001 R12: 00000000fffffffb
[ 1037.756439][T21326] R13: 0000000000000000 R14: ffff8880912a0340 R15: ffff88807ae42500
[ 1037.821406][T21326] FS:  00007fe3565aa6c0(0000) GS:ffff888124ba8000(0000) knlGS:0000000000000000
[ 1037.840769][T21016] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1037.853418][T21326] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1037.877817][T21016] bond0 (unregistering): Released all slaves
[ 1037.884840][T21326] CR2: 00007f5bd5467368 CR3: 000000009ad42000 CR4: 00000000003526f0
[ 1037.914064][T21016] HfR: left promiscuous mode
[ 1037.918842][T21326] Kernel panic - not syncing: Fatal exception
[ 1037.924950][T21326] Kernel Offset: disabled
[ 1037.929296][T21326] Mem-Info:
[ 1037.932396][T21326] active_anon:3896 inactive_anon:18 isolated_anon:0
[ 1037.932396][T21326]  active_file:4360 inactive_file:47630 isolated_file:0
[ 1037.932396][T21326]  unevictable:768 dirty:38 writeback:0
[ 1037.932396][T21326]  slab_reclaimable:12546 slab_unreclaimable:97565
[ 1037.932396][T21326]  mapped:7447 shmem:1370 pagetables:836
[ 1037.932396][T21326]  sec_pagetables:0 bounce:0
[ 1037.932396][T21326]  kernel_misc_reclaimable:0
[ 1037.932396][T21326]  free:1352848 free_pcp:21305 free_cma:0
[ 1037.977360][T21326] Node 0 active_anon:15584kB inactive_anon:72kB active_file:17440kB inactive_file:190384kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:29788kB dirty:148kB writeback:0kB shmem:3944kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB kernel_stack:10992kB pagetables:3204kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1038.009306][T21326] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1038.039079][T21326] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1038.068867][T21326] lowmem_reserve[]: 0 2482 2484 2484 2484
[ 1038.074676][T21326] Node 0 DMA32 free:1492864kB boost:0kB min:34344kB low:42928kB high:51512kB reserved_highatomic:0KB free_highatomic:0KB active_anon:15584kB inactive_anon:72kB active_file:17440kB inactive_file:190384kB unevictable:1536kB writepending:148kB zspages:0kB present:3129332kB managed:2542524kB mlocked:0kB bounce:0kB free_pcp:75292kB local_pcp:75292kB free_cma:0kB
[ 1038.108111][T21326] lowmem_reserve[]: 0 0 1 1 1
[ 1038.112806][T21326] Node 0 Normal free:4kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[ 1038.142509][T21326] lowmem_reserve[]: 0 0 0 0 0
[ 1038.147216][T21326] Node 1 Normal free:3903164kB boost:0kB min:55532kB low:69412kB high:83292kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:9924kB local_pcp:9924kB free_cma:0kB
[ 1038.179697][T21326] lowmem_reserve[]: 0 0 0 0 0
[ 1038.184388][T21326] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1038.197094][T21326] Node 0 DMA32: 6921*4kB (UME) 4937*8kB (UME) 3664*16kB (UM) 2696*32kB (UM) 1569*64kB (UME) 740*128kB (UME) 423*256kB (UME) 215*512kB (UME) 107*1024kB (UME) 52*2048kB (UM) 159*4096kB (UM) = 1492908kB
[ 1038.216718][T21326] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[ 1038.228515][T21326] Node 1 Normal: 192*4kB (UME) 63*8kB (UME) 57*16kB (UME) 203*32kB (UME) 102*64kB (UME) 41*128kB (UME) 13*256kB (UME) 11*512kB (UME) 5*1024kB (UM) 5*2048kB (UE) 942*4096kB (UM) = 3903208kB
[ 1038.247222][T21326] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1038.256928][T21326] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1038.266316][T21326] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1038.275852][T21326] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1038.285121][T21326] 53344 total pagecache pages
[ 1038.289780][T21326] 12 pages in swap cache
[ 1038.294007][T21326] Free swap  = 124996kB
[ 1038.298135][T21326] Total swap = 124996kB
[ 1038.302302][T21326] 2097051 pages RAM
[ 1038.306083][T21326] 0 pages HighMem/MovableOnly
[ 1038.310735][T21326] 429330 pages reserved
[ 1038.314892][T21326] 0 pages cma reserved
[ 1038.318935][T21326] INFO: lockdep is turned off.
[ 1038.323684][T21326] NMI backtrace for cpu 0
[ 1038.323702][T21326] CPU: 0 UID: 0 PID: 21326 Comm: syz.3.3486 Tainted: G      D             syzkaller #0 PREEMPT(full) 
[ 1038.323724][T21326] Tainted: [D]=DIE
[ 1038.323729][T21326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1038.323739][T21326] Call Trace:
[ 1038.323746][T21326]  <TASK>
[ 1038.323753][T21326]  dump_stack_lvl+0x3d/0x1f0
[ 1038.323774][T21326]  nmi_cpu_backtrace+0x27b/0x390
[ 1038.323795][T21326]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1038.323818][T21326]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[ 1038.323840][T21326]  sys_info+0x113/0x160
[ 1038.323859][T21326]  vpanic+0x234/0x6f0
[ 1038.323874][T21326]  panic+0xca/0xd0
[ 1038.323886][T21326]  ? __pfx_panic+0x10/0x10
[ 1038.323901][T21326]  ? __show_regs+0x4bf/0x750
[ 1038.323919][T21326]  ? oops_end+0x84/0x110
[ 1038.323940][T21326]  oops_end+0xac/0x110
[ 1038.323960][T21326]  exc_general_protection+0x154/0x230
[ 1038.323985][T21326]  asm_exc_general_protection+0x26/0x30
[ 1038.324000][T21326] RIP: 0010:handshake_complete+0x31/0x390
[ 1038.324016][T21326] Code: 56 41 55 49 89 d5 41 54 41 89 f4 55 53 48 89 fb e8 d4 fc 6f f6 48 8d 7b 28 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 0f 03 00 00 48 8b 6b 28 e8 dc 23 0e 00 48 b8 00
[ 1038.324032][T21326] RSP: 0018:ffffc90003aa74f8 EFLAGS: 00010206
[ 1038.324044][T21326] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc9000cd0b000
[ 1038.324055][T21326] RDX: 0000000000000005 RSI: ffffffff8b4d245c RDI: 0000000000000028
[ 1038.324065][T21326] RBP: ffffc90003aa75c0 R08: 0000000000000000 R09: ffffed10281d1180
[ 1038.324074][T21326] R10: ffff888140e88c03 R11: 0000000000000001 R12: 00000000fffffffb
[ 1038.324084][T21326] R13: 0000000000000000 R14: ffff8880912a0340 R15: ffff88807ae42500
[ 1038.324097][T21326]  ? handshake_complete+0x1c/0x390
[ 1038.324112][T21326]  ? handshake_complete+0x1c/0x390
[ 1038.324126][T21326]  handshake_nl_accept_doit+0x2dc/0x910
[ 1038.324149][T21326]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1038.324177][T21326]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1038.324196][T21326]  ? __dev_queue_xmit+0xaf1/0x4330
[ 1038.324218][T21326]  ? genl_get_cmd+0x194/0x580
[ 1038.324237][T21326]  ? bpf_lsm_capable+0x9/0x10
[ 1038.324254][T21326]  ? security_capable+0x7e/0x260
[ 1038.324270][T21326]  genl_rcv_msg+0x55c/0x800
[ 1038.324290][T21326]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1038.324310][T21326]  ? __pfx_handshake_nl_accept_doit+0x10/0x10
[ 1038.324334][T21326]  netlink_rcv_skb+0x158/0x420
[ 1038.324352][T21326]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1038.324371][T21326]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1038.324392][T21326]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1038.324409][T21326]  genl_rcv+0x28/0x40
[ 1038.324426][T21326]  netlink_unicast+0x5aa/0x870
[ 1038.324444][T21326]  ? __pfx_netlink_unicast+0x10/0x10
[ 1038.324465][T21326]  netlink_sendmsg+0x8c8/0xdd0
[ 1038.324483][T21326]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1038.324502][T21326]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[ 1038.324518][T21326]  ____sys_sendmsg+0xa5d/0xc30
[ 1038.324537][T21326]  ? copy_msghdr_from_user+0x10a/0x160
[ 1038.324553][T21326]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1038.324573][T21326]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1038.324593][T21326]  ___sys_sendmsg+0x134/0x1d0
[ 1038.324609][T21326]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1038.324624][T21326]  ? __lock_acquire+0x433/0x22f0
[ 1038.324648][T21326]  __sys_sendmsg+0x16d/0x220
[ 1038.324663][T21326]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1038.324678][T21326]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1038.324698][T21326]  do_syscall_64+0xcd/0xf80
[ 1038.324715][T21326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1038.324730][T21326] RIP: 0033:0x7fe35578f7c9
[ 1038.324744][T21326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1038.324758][T21326] RSP: 002b:00007fe3565aa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1038.324772][T21326] RAX: ffffffffffffffda RBX: 00007fe3559e5fa0 RCX: 00007fe35578f7c9
[ 1038.324782][T21326] RDX: 000000002004881c RSI: 0000200000000580 RDI: 0000000000000003
[ 1038.324791][T21326] RBP: 00007fe355813f91 R08: 0000000000000000 R09: 0000000000000000
[ 1038.324800][T21326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1038.324809][T21326] R13: 00007fe3559e6038 R14: 00007fe3559e5fa0 R15: 00007fff537f3b38
[ 1038.324824][T21326]  </TASK>
[ 1038.741645][T21326] Rebooting in 86400 seconds..