last executing test programs:

17m14.0690589s ago: executing program 1 (id=458):
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$RDS_CANCEL_SENT_TO(0xffffffffffffffff, 0x114, 0x1, 0x0, 0x0)
io_uring_setup(0x667, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = fsopen(0x0, 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r6 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x2)
ftruncate(r6, 0xffff)
fcntl$addseals(r6, 0x409, 0x7)
r7 = ioctl$UDMABUF_CREATE(r5, 0x40187542, &(0x7f0000000000)={r6, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, &(0x7f00000001c0)=0x1)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
ioctl$FS_IOC_GETFLAGS(r8, 0x80086601, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000680)={0xffffffffffffffff, 0x3, 0x8}, 0xc)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000740)=@bpf_tracing={0x1a, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="518e30e36bcd85"], &(0x7f0000000300)='GPL\x00', 0x33, 0xa2, &(0x7f0000000340)=""/162, 0x40f00, 0x2, '\x00', 0x0, 0x17, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x9, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x7ab4, r0, 0x3, 0x0, &(0x7f0000000700)=[{0x4, 0x3, 0x7, 0x1}, {0x3, 0x5, 0xe, 0xc}, {0x2, 0x2, 0xb}], 0x10, 0x8c}, 0x94)
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, 0x0)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x81, &(0x7f0000001280)=""/4107, 0x0)

17m12.186041482s ago: executing program 1 (id=460):
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x108843, 0x98)
fcntl$setlease(r0, 0x400, 0x1)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0019030320d812010079de01ec020109021b0001000003000904000001785ecc00090585020004"], 0x0)
timer_create(0x0, 0x0, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

17m8.830929584s ago: executing program 1 (id=467):
r0 = socket(0x1d, 0x2, 0x6)
setsockopt$RDS_GET_MR(r0, 0x114, 0x2, 0x0, 0x0)
r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
r2 = add_key$keyring(&(0x7f0000000f40), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, r1)
r3 = add_key$user(&(0x7f0000000ec0), &(0x7f0000000f00)={'syz', 0x1}, &(0x7f0000000240)='J', 0x1, r2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000000f80)={0x0, 0x0, 0x0}, 0x0)
madvise(&(0x7f0000e95000/0x4000)=nil, 0x4000, 0x66)
prctl$PR_SET_IO_FLUSHER(0x43, 0x1)
prctl$PR_SET_IO_FLUSHER(0x43, 0x0)
close(r5)
recvmsg(r5, &(0x7f0000000900)={0x0, 0xffffffffffffffb5, &(0x7f0000000100)=[{&(0x7f0000000480)=""/210, 0xd2}], 0x1}, 0x0)
dup(0xffffffffffffffff)
syz_open_dev$video4linux(&(0x7f0000000040), 0xff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x3cd400, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x2c, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0xff, 0x0, 0x0, 0x0, 0x3}})
getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000000)=""/145, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, 0x0, &(0x7f0000000080)=@keyring={'key_or_keyring:', r3})

17m7.024070075s ago: executing program 1 (id=470):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xd, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_clone(0xb21e0000, 0x0, 0x1e, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x80042, 0x0)
socket(0x1, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)

17m4.432708826s ago: executing program 1 (id=472):
openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
pipe(&(0x7f00000007c0))
socket$inet6(0xa, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
clock_gettime(0xfffffff2, 0x0)

16m58.356699108s ago: executing program 1 (id=484):
preadv2(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4080, 0xff0}], 0x1, 0x0, 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r2 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

16m42.854038459s ago: executing program 32 (id=484):
preadv2(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4080, 0xff0}], 0x1, 0x0, 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r2 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

15m5.315645636s ago: executing program 4 (id=613):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x84, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0x40045542, 0x0)
syz_open_dev$dmmidi(&(0x7f0000000080), 0x200, 0x40002)

15m3.875302041s ago: executing program 4 (id=616):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0x4}], 0x1c)
sendto$inet6(r0, &(0x7f0000000040)='l', 0x1, 0x7ddfdbdfafa51cdd, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @loopback, 0xffffffff}, 0x1c)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='stat\x00')
lseek(r1, 0x9, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CREATE(r1, 0xc02054a5, &(0x7f0000000140)={0x1000, r0, 'id1\x00'})

15m1.94693511s ago: executing program 4 (id=622):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x28}}, 0x0)

15m1.63775687s ago: executing program 4 (id=623):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
socket$vsock_stream(0x28, 0x1, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
socket$alg(0x26, 0x5, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0xa, 0x0, 0x3, 0x8000000000, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x0, 0x7fffffff, 0x6}, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
pread64(0xffffffffffffffff, 0x0, 0x0, 0xe0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000200)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha384\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r1, 0x117, 0x5, 0x0, 0xb)

14m57.874509969s ago: executing program 4 (id=626):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0, <r3=>0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000080)={0x50, 0x0, r2, {0x7, 0x29, 0x9, 0xffffffff9080edc4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2}}, 0x50)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x2c)
syz_fuse_handle_req(r1, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, &(0x7f00000063c0)="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", 0x2000, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="28030000000000000600000000000000000000000000000001000000000000000200000000000000030000000000000002000000130b00000200000000000000463800000000000006000000000000000900000000000000070000000000000004000000000000000100000040000000010001000040000008000000", @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="9500000004000000000000000600000000000000310000000000000002000000090000006664000000000000030000000000000003000000000000000100000000000000000000000000000001000000040000000600000000000000fffeffffffffffff050000000000000002000000000000000100000000000000090000000000000000000000090000000104000000800000ffffff", @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="02000000c36b00000000000003000000000000008000000000000000030000000d000000fd2a2c00000000000500000000000000030000000000000008000000000000000001000000000000020000000500000004000000000000000100000000000000d1000000000000000800000000000000050000000000000002000000000000008100000003000000030000000080000001000000", @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="06000000090000000000000006000000000000000300"], 0x0, 0x0, 0x0})
getdents64(r5, &(0x7f0000000100)=""/134, 0x86)
close_range(r0, 0xffffffffffffffff, 0x0)

14m57.4389542s ago: executing program 4 (id=628):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0}, 0x1, 0x0, 0x0, 0x4000004}, 0x0)
sendmsg$inet(r0, 0x0, 0x4000001)
recvmsg(r0, 0x0, 0x11102)
close(r1)
sendmsg$NLBL_MGMT_C_VERSION(0xffffffffffffffff, 0x0, 0x40804)
ioctl$sock_proto_private(0xffffffffffffffff, 0x8b21, 0x0)
socket$inet6(0xa, 0x2, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x22020400)
socket$kcm(0x2b, 0x1, 0x0)
r3 = syz_init_net_socket$ax25(0x3, 0x5, 0xc4)
getsockopt$ax25_int(r3, 0x101, 0x5, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r7=>0x0})
r8 = syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/net\x00')
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010c25bd7000ffdbdf251400000008001d00", @ANYRES32=r8, @ANYBLOB="08000300", @ANYRES32=r7], 0x24}, 0x1, 0x0, 0x0, 0x20040801}, 0x20000004)
socket$nl_route(0x10, 0x3, 0x0)

14m41.959606263s ago: executing program 33 (id=628):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0}, 0x1, 0x0, 0x0, 0x4000004}, 0x0)
sendmsg$inet(r0, 0x0, 0x4000001)
recvmsg(r0, 0x0, 0x11102)
close(r1)
sendmsg$NLBL_MGMT_C_VERSION(0xffffffffffffffff, 0x0, 0x40804)
ioctl$sock_proto_private(0xffffffffffffffff, 0x8b21, 0x0)
socket$inet6(0xa, 0x2, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x22020400)
socket$kcm(0x2b, 0x1, 0x0)
r3 = syz_init_net_socket$ax25(0x3, 0x5, 0xc4)
getsockopt$ax25_int(r3, 0x101, 0x5, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r7=>0x0})
r8 = syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/net\x00')
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010c25bd7000ffdbdf251400000008001d00", @ANYRES32=r8, @ANYBLOB="08000300", @ANYRES32=r7], 0x24}, 0x1, 0x0, 0x0, 0x20040801}, 0x20000004)
socket$nl_route(0x10, 0x3, 0x0)

14m15.715919624s ago: executing program 3 (id=678):
socket$kcm(0x10, 0x2, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000040)=0x5, 0x4)
r0 = accept4$inet(0xffffffffffffffff, 0x0, &(0x7f0000000340), 0x40000)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x2, 0x81, 0x1fd, 0x1, 0x1}, 0x1c)
recvmsg$unix(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)=""/254, 0xfe}], 0x1}, 0x20)
sendmmsg(r2, &(0x7f00000030c0), 0x0, 0x9200000000000000)
setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000540)=0x5, 0x4)
recvmsg$unix(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)=""/254, 0xfe}], 0x1}, 0x20)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
ioctl$FBIOPUT_CON2FBMAP(0xffffffffffffffff, 0x4610, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_emit_ethernet(0x4a, 0x0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
lseek(r4, 0x9, 0x0)
write$tun(r4, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x3)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)

14m12.597144869s ago: executing program 3 (id=681):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000001c0)=ANY=[@ANYBLOB="120100009dea7840b418fbff7bdc01020301090212000100000000090401"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000008c0)={0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="00000100000001"], 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)

14m11.058669467s ago: executing program 3 (id=684):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00', 0xd, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0x3, 0x0, &(0x7f0000000100)="9581c9", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/pid_for_children\x00')
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="190000001900010028bd7000030000000a"], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x80)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r3, 0x0)
ioctl$sock_netrom_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bpq0, 0x4, 'syz1\x00', @default, 0x1, 0x0, [@null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @default]})
unshare(0x6a040000)
r4 = socket(0x8, 0x3, 0x0)
ioctl$sock_netrom_SIOCADDRT(r4, 0x6180, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(r1, 0x0, 0x81, &(0x7f0000000140)={'broute\x00', 0x0, 0x0, 0x0, [0x1, 0x374e, 0x99, 0xffffffffffffff93, 0xf, 0x4], 0x0, &(0x7f0000000040)=[{}]}, 0x50)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x32600)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x6, 0x1d, &(0x7f0000000380)=@raw=[@printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8007f}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x81}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0xbf91}, @generic={0xc, 0x6, 0x7, 0xbc1, 0xe}, @func={0x85, 0x0, 0x1, 0x0, 0xb}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xfffffffffffffff8}, @tail_call={{0x18, 0x2, 0x1, 0x0, r3}}], &(0x7f0000000080)='GPL\x00', 0x81, 0x10, &(0x7f0000000500)=""/16, 0x41100, 0x9, '\x00', 0x0, 0x25, r3, 0x8, &(0x7f0000000540)={0x2, 0x3}, 0x8, 0x10, &(0x7f0000000580)={0x2, 0x5, 0x6, 0x7}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000480)=[{0x4, 0x1, 0x8, 0x9}, {0x2, 0x1, 0x3, 0x7}, {0x0, 0x4, 0xe, 0xb}, {0x0, 0x2, 0xf, 0x7}], 0x10, 0xe}, 0x94)
ioctl$sock_kcm_SIOCKCMATTACH(0xffffffffffffffff, 0x89e0, &(0x7f00000006c0)={r2, r5})
unshare(0x50030900)
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000100)={0x0, 0x8, 0x55, 0x2, @vifc_lcl_ifindex, @private=0xa010102}, 0x10)

14m3.922660831s ago: executing program 3 (id=691):
socket$netlink(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r4, 0x29, 0x16, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x80003, 0xff)
socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r5, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
close_range(r3, 0xffffffffffffffff, 0x0)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000040)={0x0, 0x3, &(0x7f00000000c0)={0x0}, 0x1, 0x400000000000000}, 0x0)
setpgid(0x0, 0x0)

14m2.534035295s ago: executing program 3 (id=693):
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DEVICE_ATTR_vcpu(r0, 0x4018aee2, &(0x7f0000000080)=@attr_pmu_init)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000140)={0x0, 0x0, 0x100800})
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
r3 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r3, 0x29, 0x16, &(0x7f0000000000)=0xfffffffe, 0x4)
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x482, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r4, 0x0)
syz_open_dev$vim2m(&(0x7f0000002c80), 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000100), 0xfffffd9d)
r6 = socket(0x1e, 0x4, 0x0)
connect$tipc(r6, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x1, 0x4}}, 0x10)

13m58.092443709s ago: executing program 3 (id=698):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00', 0xd, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0x3, 0x0, &(0x7f0000000100)="9581c9", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/pid_for_children\x00')
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="190000001900010028bd7000030000000a"], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x80)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
ioctl$sock_netrom_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bpq0, 0x4, 'syz1\x00', @default, 0x1, 0x0, [@null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @default]})
unshare(0x6a040000)
r3 = socket(0x8, 0x3, 0x0)
ioctl$sock_netrom_SIOCADDRT(r3, 0x6180, 0x0)

13m42.94241171s ago: executing program 34 (id=698):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00', 0xd, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0x3, 0x0, &(0x7f0000000100)="9581c9", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/pid_for_children\x00')
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="190000001900010028bd7000030000000a"], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x80)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
ioctl$sock_netrom_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bpq0, 0x4, 'syz1\x00', @default, 0x1, 0x0, [@null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @default]})
unshare(0x6a040000)
r3 = socket(0x8, 0x3, 0x0)
ioctl$sock_netrom_SIOCADDRT(r3, 0x6180, 0x0)

8.226101748s ago: executing program 6 (id=1770):
r0 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="840000", @ANYRES16=r0, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002"], 0x84}}, 0x0)

8.115885027s ago: executing program 2 (id=1771):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x40090)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000940)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @objref={{0xb}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_OBJREF_IMM_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJREF_IMM_TYPE={0x8, 0x1, 0x1, 0x0, 0x7}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x80}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840) (fail_nth: 1)

7.819687251s ago: executing program 6 (id=1773):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$ppp(0xffffffffffffff9c, 0x0, 0x1, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="280100000000000001000000"], 0x128}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580), 0x100}, 0x0)
syz_usb_connect(0x2, 0x24, &(0x7f0000000600)=ANY=[@ANYBLOB="120100001d9167204f17316a3f26010203010902120001000000000904"], 0x0)

7.767906196s ago: executing program 2 (id=1774):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000000c0)={<r1=>0x0}, &(0x7f0000000140)=0xc)
r2 = getpgrp(r1)
sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000080), 0x900, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="01000000060000000800000008"], 0x50)

7.029930768s ago: executing program 2 (id=1776):
r0 = openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000a00)={&(0x7f0000000900)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000980)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000009c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x4, 0x9, 0x6})

6.612154331s ago: executing program 2 (id=1778):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
sched_setscheduler(r0, 0x2, &(0x7f0000000080)=0x9)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000180)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="440000000206030000000000000000000d0000000c000300686173683a69700005000400000000000900020073797a310000000005000500020000000500010006000000b0104b4ea122693f55d9084376898317fd61eee3a7a9fb38bcd40cb22e7dd17ef40873085a637f468b4c5dd34b7db6949de0d94c069f3c6b396db96c59e332aadefbae555e1e37c83ae46113"], 0x44}}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r5, 0x4c80, 0xfffff)

6.380840666s ago: executing program 2 (id=1780):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
connect$tipc(0xffffffffffffffff, &(0x7f0000000040)=@name={0x1e, 0x2, 0x1, {{}, 0x2}}, 0x10)
connect$tipc(0xffffffffffffffff, &(0x7f0000000000)=@id, 0x10)
close(0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000140003007465616d5f736c6176655f30000000000800014000000001140000"], 0xd4}}, 0x4000010)

5.51372587s ago: executing program 2 (id=1782):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000180081084e81f782db44b904021d080006067c09e8fe55a10a0015400800142603600e120800160000001001a8001600a4000140", 0x38}], 0x1, 0x0, 0x0, 0x6000}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000000)="d800000010008104687da3aa7143a0b8c81d080b25000000e8fe5538250015000600149b0000001208000313eba96240a8002b", 0x33}], 0x1}, 0x80)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0xfe33)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='uid_map\x00')
pread64(r1, &(0x7f0000000480)=""/177, 0xb1, 0x21)
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000001c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x3})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000453000/0x18000)=nil, &(0x7f0000000500)=[@text16={0x10, 0x0}], 0x1, 0x1a, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000040)={0x1, 0x0, [{0x4b564d02, 0xec000000, 0xcd}]})
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000100)={"b46474f815e8d5535f0887c44335cc824dc6121bc72a77f532ff5dad4d643a9cab29d2310e04be14eb26c0af4985fe45e3b3b0680b3ec92725d74b9716e0f7c3119a2c9a0ae65ff4772e2e12733cb013c4308fe40863480747c0a7ddb9361b1578015ca1bb2c1677ebae096f08345476f567443842946ed946434c75916d1db83fe305920de65bfaf9bd940672216846cb16b8ae67cd3affc61375381f91b3b9f1cc5e38cafe5239aee71dcd481fbe1ecd2547ffbaad4469a74697c28fb9beefa6a5d736712a55eb9110c2cf7964062ba8cbc1c038e84f0f5db7fc7053118bf5221e3efa6fc3edb5d0ca3cde7054dd0751a332520aa8478b1775d552c5cc24d3c2df9eb333e5ca3aa06c1c2cf8526714f5caff2f55b41976fc20b64f1fc61d5b44f50953582a1825d32130a31abfeafd1987317879e29ac51b93c9659e023fff3ddb5e39dd19cc3ef1d883c78b9e073d08a9197fb3717df238b9831831214b186693be9dd2568bb77272e80df5dfed03e8c467627bedfbd93359a9f79a3aa37e873dc1357b37b43d813ea85267b0dc8b1c4cc51bd985328833beb2679b7fb762555bbea2da936b36f8f1673fd5f606b2b6eb23b72bf947206e8dbfeb40ca6f265a3485c8446e0f0da652860b88328073d2282c14b48a7774e62754a968b60e92205e8fafcdd70a55c3c4d1a4821ff44e6e3681f15ae091262e3a3290a24d8ceae30ebbf9d24287bb8a5d73c608d47d287f9e716cf02b4796a83fb0c05e45b89de9ef8bce834e6d7a0be6e30d2c66cb6e640cb01898454ad361bc0701d8fe56113335ae6adec59300db04691cc4a689034272a8e086a32ce7061b4f79fa8afbb48a6ce4b62bdc44af013d78980457e1fa61eb9204818606f4c3b03c0f33cd2a841ac9bc2b73151a96e31ab99e6ec969b5f2c3edd5f9abc69845e487af992758ba445368da93dae1d44360d52a534a88276b8aaf349841d8a4788c60408618437c442308dbf70efeda2e54e9b9e4fe5f76997c9dcb945a26bd75748c85d19ca8b99264dce50580e8d4dbda401dad7df31e9a7a6a3a83bfbdfb5394abd581ac0824fbcd75d2f5205c0b7c9188e6f26bfd97734d9a20433f6cdba9d14a5f32a4d97a57f4603b21146fd1aebf082e863d463c224ad623c17d8043d3bf083f0322408dd6ead6915ac6a4222ab51480eb6e11a8913348219515170d9df90d72d7363bbda3e327d19f98c0a856f98076380e788e602e8a2ae0a1930786874dc21a2e99abda15f35457cf1dcb440c4b41350d0eda352aad7f57a0adc8a6914da06460635ed21c4c11cd1a8ec778064c9f62efba2927828b23f94b16619a5520731c2c40ab8583c9f2e73233d74b84f4877ce6b35bb1180300"})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e23, 0xccb, @dev={0xfe, 0x80, '\x00', 0x13}, 0x3}, 0x1c)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, '\x00', 0x33}}, 0x1a)
ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f0000000280)={r0, r0, 0x5541, 0xc0, &(0x7f0000000040)="b965f39341b46a418b16357b9e6a92eb4ea6fe3b21cd026fef74fb515b83c4831d733424255360ea78770445b8adcccf9a206f9b0a513993f9869474986045a300e4bc29e84d8943746179c65a138bd7690d3da3d310581b5ccd68f699b2077cb4030cef432318244b5d98b512e9dec507eea284ab71a42f6d23c70b62417df62d1b04cb7348564d6eda3d9fd83f946525d3786fd3b6a94e7c8e4982b19939c180aa3556bd3aace2f62fbb7bbb4de349cf4aa31236331910d5f0aa6cfa216c2b", 0xf, 0x9, 0x100, 0x0, 0x5, 0x1, 0x25a13ba9, 'syz0\x00'})

3.119192401s ago: executing program 0 (id=1785):
syz_io_uring_setup(0x8d2, 0x0, 0x0, 0x0)
ptrace$ARCH_SET_GS(0x1e, 0x0, 0x0, 0x1001)
syz_emit_vhci(&(0x7f0000000400)=ANY=[@ANYBLOB], 0xc3)

3.106222244s ago: executing program 6 (id=1786):
r0 = openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000a00)={&(0x7f0000000900)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000980)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000009c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x4, 0x9, 0x6})

2.90794639s ago: executing program 6 (id=1787):
r0 = syz_open_dev$video(&(0x7f00000002c0), 0x20000000005, 0x8100)
ioctl$VIDIOC_CROPCAP(r0, 0xc02c563a, 0x0)

2.824345484s ago: executing program 6 (id=1788):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
socket$packet(0x11, 0xa, 0x300)
sendto$packet(r0, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r2, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x47, &(0x7f0000001fc0)={@link_local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "108114", 0x11, 0x11, 0x0, @empty, @mcast2, {[], {0x4000, 0xe22, 0x11, 0x0, @gue={{0x2, 0x1, 0x2, 0x5}, 'f'}}}}}}}, 0x0)

2.458833986s ago: executing program 6 (id=1789):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x9e, 0x17, 0x36, 0x10, 0x17ef, 0x721e, 0xde06, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6}}]}}]}}, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r1 = io_uring_setup(0xfc6, &(0x7f0000000180))
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r2, 0x6, 0x21, &(0x7f0000000b00)="86cf8445f4ba1d9f20174688f169e58c", 0x10)
close_range(r1, 0xffffffffffffffff, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000480)={0x2c, &(0x7f00000002c0)={0x20, 0xc, 0x4, "2b300be5"}, 0x0, 0x0, 0x0, 0x0})

2.156988815s ago: executing program 0 (id=1790):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
connect$tipc(0xffffffffffffffff, &(0x7f0000000040)=@name={0x1e, 0x2, 0x1, {{}, 0x2}}, 0x10)
connect$tipc(0xffffffffffffffff, &(0x7f0000000000)=@id, 0x10)
close(0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000140003007465616d5f736c6176655f30000000000800014000000001140000"], 0xd4}}, 0x4000010)

2.046324651s ago: executing program 0 (id=1791):
r0 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="840000", @ANYRES16=r0, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002"], 0x84}}, 0x0)

1.991967601s ago: executing program 0 (id=1792):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000100)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f0000000040)={{@my=0x0, 0x4a}, @hyper, 0x0, 0x0, 0x8000000, 0xb40, 0x6, 0x4, 0x2})

1.894584314s ago: executing program 0 (id=1793):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000000c0)={<r1=>0x0}, &(0x7f0000000140)=0xc)
r2 = getpgrp(r1)
sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000080), 0x900, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="01000000060000000800000008"], 0x50)

0s ago: executing program 0 (id=1794):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffe3a}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r1, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r1, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000a00)=@newqdisc={0x78, 0x24, 0xf0b, 0x70bd2c, 0x0, {0x0, 0x0, 0x12, r2, {0x0, 0x3}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xfffffffe, 0x3, 0x9, 0x8, 0x4}, 0x5, 0x0, 0x3, 0x1, 0xffff, 0x6, 0x11, 0x19, 0x6, 0x6, {0x1, 0x1ff, 0xd, 0x6, 0xfffffffe, 0x3}}}}]}, 0x78}}, 0x4000010) (fail_nth: 1)

kernel console output (not intermixed with test programs):

13455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1345.331050][T13455] RIP: 0033:0x7fa6bed3aeb9
[ 1345.331087][T13455] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1345.331172][T13455] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1345.331244][T13455] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1345.331286][T13455] RDX: 0000000000000040 RSI: 0000200000009b40 RDI: 0000000000000003
[ 1345.331321][T13455] RBP: 00007fa6bcf96090 R08: 0000000000000000 R09: 0000000000000000
[ 1345.331361][T13455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1345.331393][T13455] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1345.331478][T13455]  </TASK>
[ 1345.986437][T11171] usb 7-1: USB disconnect, device number 28
[ 1346.075118][T13462] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1690'.
[ 1350.148693][T13471] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1688'.
[ 1350.148730][T13471] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1688'.
[ 1350.148746][T13471] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1688'.
[ 1350.159153][T13471] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1688'.
[ 1350.159188][T13471] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1688'.
[ 1350.159206][T13471] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1688'.
[ 1351.474324][ T1123] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1351.564315][ T1123] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1351.609670][ T1123] bond0 (unregistering): Released all slaves
[ 1351.672855][T13394] lo speed is unknown, defaulting to 1000
[ 1352.229199][T13463] : entered promiscuous mode
[ 1352.362757][T13394] lo speed is unknown, defaulting to 1000
[ 1354.035062][T13501] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1698'.
[ 1354.462662][ T5884] usb 1-1: new full-speed USB device number 77 using dummy_hcd
[ 1354.619512][T13354] chnl_net:caif_netlink_parms(): no params data found
[ 1354.683508][ T5884] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[ 1354.683545][ T5884] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[ 1354.683572][ T5884] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid maxpacket 121, setting to 64
[ 1354.743600][ T5884] usb 1-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[ 1354.743635][ T5884] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1354.743657][ T5884] usb 1-1: Product: syz
[ 1354.743672][ T5884] usb 1-1: Manufacturer: syz
[ 1354.743687][ T5884] usb 1-1: SerialNumber: syz
[ 1354.750497][ T5884] usb 1-1: config 0 descriptor??
[ 1354.754481][T13503] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1354.754610][T13503] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1354.875253][ T5884] usb 1-1: ucan: probing device on interface #0
[ 1355.047016][T13503] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1355.047598][T13503] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1355.924123][ T5884] usb 1-1: ucan: could not read protocol version, ret=-110
[ 1355.924200][ T5884] usb 1-1: ucan: probe failed; try to update the device firmware
[ 1356.543063][T13474] usb 1-1: USB disconnect, device number 77
[ 1358.173280][T13517] syz.2.1703 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1358.173326][T13517] CPU: 0 UID: 0 PID: 13517 Comm: syz.2.1703 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1358.173357][T13517] Tainted: [L]=SOFTLOCKUP
[ 1358.173366][T13517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1358.173380][T13517] Call Trace:
[ 1358.173392][T13517]  <TASK>
[ 1358.173404][T13517]  dump_stack_lvl+0xe8/0x150
[ 1358.173443][T13517]  dump_header+0xd3/0x4c0
[ 1358.173474][T13517]  oom_kill_process+0x3ab/0x970
[ 1358.173511][T13517]  out_of_memory+0x106c/0x1410
[ 1358.173557][T13517]  ? __pfx_out_of_memory+0x10/0x10
[ 1358.173585][T13517]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1358.173616][T13517]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1358.173647][T13517]  ? _mutex_lock_killable+0x152/0x1d0
[ 1358.173671][T13517]  ? try_charge_memcg+0xbca/0x1630
[ 1358.173708][T13517]  try_charge_memcg+0xc92/0x1630
[ 1358.173762][T13517]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1358.173801][T13517]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1358.173853][T13517]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1358.173877][T13517]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1358.173906][T13517]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1358.173935][T13517]  __mem_cgroup_charge+0xab/0x1e0
[ 1358.173984][T13517]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1358.174043][T13517]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1358.174092][T13517]  ? __lock_acquire+0x6b5/0x2cf0
[ 1358.174132][T13517]  shmem_fault+0x170/0x380
[ 1358.174172][T13517]  ? do_pte_missing+0x1404/0x2e60
[ 1358.174197][T13517]  __do_fault+0x138/0x390
[ 1358.174219][T13517]  ? do_pte_missing+0x1404/0x2e60
[ 1358.174244][T13517]  do_pte_missing+0x18d3/0x2e60
[ 1358.174287][T13517]  ? handle_mm_fault+0xe7/0x13c0
[ 1358.174325][T13517]  handle_mm_fault+0xd0a/0x13c0
[ 1358.174366][T13517]  ? handle_mm_fault+0xe7/0x13c0
[ 1358.174404][T13517]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1358.174438][T13517]  ? follow_page_pte+0xc25/0x13c0
[ 1358.174483][T13517]  ? __pfx_follow_page_pte+0x10/0x10
[ 1358.174529][T13517]  __get_user_pages+0x1679/0x2800
[ 1358.174597][T13517]  populate_vma_page_range+0x2be/0x3c0
[ 1358.174633][T13517]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1358.174661][T13517]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1358.174703][T13517]  ? rt_mutex_slowunlock+0x61e/0x8b0
[ 1358.174742][T13517]  __mm_populate+0x25f/0x390
[ 1358.174775][T13517]  ? __pfx___mm_populate+0x10/0x10
[ 1358.174805][T13517]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1358.174837][T13517]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1358.174866][T13517]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1358.174903][T13517]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1358.174933][T13517]  ? __se_sys_futex+0x3a8/0x450
[ 1358.174965][T13517]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1358.174999][T13517]  ? rcu_is_watching+0x15/0xb0
[ 1358.175038][T13517]  ? __x64_sys_mmap+0x7f/0x140
[ 1358.175068][T13517]  do_syscall_64+0xe2/0xf80
[ 1358.175099][T13517]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1358.175122][T13517]  ? trace_irq_disable+0x37/0x100
[ 1358.175151][T13517]  ? clear_bhb_loop+0x60/0xb0
[ 1358.175180][T13517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1358.175203][T13517] RIP: 0033:0x7fa6bed3aeb9
[ 1358.175225][T13517] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1358.175245][T13517] RSP: 002b:00007fa6bcf54028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1358.175285][T13517] RAX: ffffffffffffffda RBX: 00007fa6befb6180 RCX: 00007fa6bed3aeb9
[ 1358.175303][T13517] RDX: 0000000000000002 RSI: 0000000000b36000 RDI: 0000200000000000
[ 1358.175319][T13517] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 000000006a855000
[ 1358.175336][T13517] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1358.175352][T13517] R13: 00007fa6befb6218 R14: 00007fa6befb6180 R15: 00007ffdb819cba8
[ 1358.175391][T13517]  </TASK>
[ 1358.175403][T13517] memory: usage 307200kB, limit 307200kB, failcnt 46736
[ 1358.175419][T13517] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1358.175436][T13517] kmem: usage 3904kB, limit 9007199254740988kB, failcnt 0
[ 1358.175451][T13517] Memory cgroup stats for /syz2:
[ 1358.175584][T13517] cache 310198272
[ 1358.175595][T13517] rss 245760
[ 1358.175604][T13517] shmem 310198272
[ 1358.175612][T13517] mapped_file 294912
[ 1358.175621][T13517] dirty 0
[ 1358.175629][T13517] writeback 0
[ 1358.175638][T13517] workingset_refault_anon 5
[ 1358.175647][T13517] workingset_refault_file 1996
[ 1358.175657][T13517] swap 127995904
[ 1358.175666][T13517] swapcached 0
[ 1358.175674][T13517] pgpgin 947403
[ 1358.175682][T13517] pgpgout 871609
[ 1358.175690][T13517] pgfault 587828
[ 1358.175699][T13517] pgmajfault 28
[ 1358.175708][T13517] inactive_anon 303013888
[ 1358.175717][T13517] active_anon 7385088
[ 1358.175725][T13517] inactive_file 0
[ 1358.175734][T13517] active_file 0
[ 1358.175743][T13517] unevictable 0
[ 1358.175751][T13517] hierarchical_memory_limit 314572800
[ 1358.175762][T13517] hierarchical_memsw_limit 9223372036854771712
[ 1358.175772][T13517] total_cache 310198272
[ 1358.175782][T13517] total_rss 245760
[ 1358.175790][T13517] total_shmem 310198272
[ 1358.175799][T13517] total_mapped_file 294912
[ 1358.175808][T13517] total_dirty 0
[ 1358.175817][T13517] total_writeback 0
[ 1358.175826][T13517] total_workingset_refault_anon 5
[ 1358.175836][T13517] total_workingset_refault_file 1996
[ 1358.175846][T13517] total_swap 127995904
[ 1358.175856][T13517] total_swapcached 0
[ 1358.175865][T13517] total_pgpgin 947403
[ 1358.175873][T13517] total_pgpgout 871609
[ 1358.175883][T13517] total_pgfault 587828
[ 1358.175891][T13517] total_pgmajfault 28
[ 1358.175900][T13517] total_inactive_anon 303013888
[ 1358.175910][T13517] total_active_anon 7385088
[ 1358.175919][T13517] total_inactive_file 0
[ 1358.175928][T13517] total_active_file 0
[ 1358.175937][T13517] total_unevictable 0
[ 1358.175946][T13517] anon_cost 13106
[ 1358.175955][T13517] file_cost 3390
[ 1358.175964][T13517] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1703,pid=13514,uid=0
[ 1358.176142][T13517] Memory cgroup out of memory: Killed process 13514 (syz.2.1703) total-vm:104508kB, anon-rss:1344kB, file-rss:22800kB, shmem-rss:256kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1359.162582][T13526] syz.2.1706 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1359.162616][T13526] CPU: 1 UID: 0 PID: 13526 Comm: syz.2.1706 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1359.162639][T13526] Tainted: [L]=SOFTLOCKUP
[ 1359.162646][T13526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1359.162657][T13526] Call Trace:
[ 1359.162665][T13526]  <TASK>
[ 1359.162674][T13526]  dump_stack_lvl+0xe8/0x150
[ 1359.162702][T13526]  dump_header+0xd3/0x4c0
[ 1359.162724][T13526]  oom_kill_process+0x3ab/0x970
[ 1359.162773][T13526]  out_of_memory+0x106c/0x1410
[ 1359.162805][T13526]  ? __pfx_out_of_memory+0x10/0x10
[ 1359.162826][T13526]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1359.162855][T13526]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1359.162878][T13526]  ? _mutex_lock_killable+0x152/0x1d0
[ 1359.162896][T13526]  ? try_charge_memcg+0xbca/0x1630
[ 1359.162923][T13526]  try_charge_memcg+0xc92/0x1630
[ 1359.162961][T13526]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1359.162989][T13526]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1359.163013][T13526]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1359.163030][T13526]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1359.163049][T13526]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1359.163069][T13526]  __mem_cgroup_charge+0xab/0x1e0
[ 1359.163094][T13526]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1359.163138][T13526]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1359.163160][T13526]  ? __lock_acquire+0x6b5/0x2cf0
[ 1359.163187][T13526]  shmem_fault+0x170/0x380
[ 1359.163215][T13526]  ? do_pte_missing+0x1404/0x2e60
[ 1359.163233][T13526]  __do_fault+0x138/0x390
[ 1359.163248][T13526]  ? do_pte_missing+0x1404/0x2e60
[ 1359.163264][T13526]  do_pte_missing+0x18d3/0x2e60
[ 1359.163287][T13526]  ? handle_mm_fault+0xe7/0x13c0
[ 1359.163313][T13526]  handle_mm_fault+0xd0a/0x13c0
[ 1359.163342][T13526]  ? handle_mm_fault+0xe7/0x13c0
[ 1359.163367][T13526]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1359.163392][T13526]  ? follow_page_pte+0xc25/0x13c0
[ 1359.163422][T13526]  ? __pfx_follow_page_pte+0x10/0x10
[ 1359.163453][T13526]  __get_user_pages+0x1679/0x2800
[ 1359.163500][T13526]  populate_vma_page_range+0x2be/0x3c0
[ 1359.163525][T13526]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1359.163546][T13526]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1359.163571][T13526]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1359.163595][T13526]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1359.163623][T13526]  __mm_populate+0x25f/0x390
[ 1359.163646][T13526]  ? __pfx___mm_populate+0x10/0x10
[ 1359.163668][T13526]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1359.163691][T13526]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1359.163712][T13526]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1359.163736][T13526]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1359.163758][T13526]  ? __se_sys_futex+0x3a8/0x450
[ 1359.163780][T13526]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1359.163803][T13526]  ? rcu_is_watching+0x15/0xb0
[ 1359.163830][T13526]  ? __x64_sys_mmap+0x7f/0x140
[ 1359.163856][T13526]  do_syscall_64+0xe2/0xf80
[ 1359.163879][T13526]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1359.163895][T13526]  ? trace_irq_disable+0x37/0x100
[ 1359.163922][T13526]  ? clear_bhb_loop+0x60/0xb0
[ 1359.163942][T13526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1359.163958][T13526] RIP: 0033:0x7fa6bed3aeb9
[ 1359.163974][T13526] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1359.163988][T13526] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1359.164004][T13526] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1359.164017][T13526] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000
[ 1359.164029][T13526] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 0000000000000000
[ 1359.164040][T13526] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1359.164050][T13526] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1359.164076][T13526]  </TASK>
[ 1359.164083][T13526] memory: usage 307200kB, limit 307200kB, failcnt 46873
[ 1359.164094][T13526] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1359.164110][T13526] kmem: usage 3776kB, limit 9007199254740988kB, failcnt 0
[ 1359.164120][T13526] Memory cgroup stats for /syz2:
[ 1359.164215][T13526] cache 310276096
[ 1359.164222][T13526] rss 229376
[ 1359.164228][T13526] shmem 310276096
[ 1359.164234][T13526] mapped_file 372736
[ 1359.164240][T13526] dirty 0
[ 1359.164246][T13526] writeback 0
[ 1359.164251][T13526] workingset_refault_anon 5
[ 1359.164257][T13526] workingset_refault_file 1996
[ 1359.164264][T13526] swap 127995904
[ 1359.164270][T13526] swapcached 0
[ 1359.164275][T13526] pgpgin 947621
[ 1359.164281][T13526] pgpgout 871814
[ 1359.164287][T13526] pgfault 588172
[ 1359.164292][T13526] pgmajfault 28
[ 1359.164298][T13526] inactive_anon 303095808
[ 1359.164304][T13526] active_anon 7385088
[ 1359.164310][T13526] inactive_file 0
[ 1359.164316][T13526] active_file 0
[ 1359.164321][T13526] unevictable 0
[ 1359.164327][T13526] hierarchical_memory_limit 314572800
[ 1359.164334][T13526] hierarchical_memsw_limit 9223372036854771712
[ 1359.164341][T13526] total_cache 310276096
[ 1359.164347][T13526] total_rss 229376
[ 1359.164352][T13526] total_shmem 310276096
[ 1359.164359][T13526] total_mapped_file 372736
[ 1359.164365][T13526] total_dirty 0
[ 1359.164371][T13526] total_writeback 0
[ 1359.164376][T13526] total_workingset_refault_anon 5
[ 1359.164383][T13526] total_workingset_refault_file 1996
[ 1359.164389][T13526] total_swap 127995904
[ 1359.164396][T13526] total_swapcached 0
[ 1359.164401][T13526] total_pgpgin 947621
[ 1359.164407][T13526] total_pgpgout 871814
[ 1359.164413][T13526] total_pgfault 588172
[ 1359.164419][T13526] total_pgmajfault 28
[ 1359.164426][T13526] total_inactive_anon 303095808
[ 1359.164432][T13526] total_active_anon 7385088
[ 1359.164438][T13526] total_inactive_file 0
[ 1359.164444][T13526] total_active_file 0
[ 1359.164450][T13526] total_unevictable 0
[ 1359.164456][T13526] anon_cost 13106
[ 1359.164462][T13526] file_cost 3390
[ 1359.164468][T13526] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1706,pid=13525,uid=0
[ 1359.164601][T13526] Memory cgroup out of memory: Killed process 13525 (syz.2.1706) total-vm:104244kB, anon-rss:1344kB, file-rss:22540kB, shmem-rss:256kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1359.262836][   T10] usb 1-1: new high-speed USB device number 78 using dummy_hcd
[ 1359.606111][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1359.606204][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1359.606272][   T10] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1359.606386][   T10] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1359.606449][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1359.939739][   T10] usb 1-1: config 0 descriptor??
[ 1360.381325][   T10] hid_parser_main: 5 callbacks suppressed
[ 1360.381343][   T10] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1360.381365][   T10] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1360.381384][   T10] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1360.381403][   T10] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1360.381421][   T10] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1360.381439][   T10] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1360.381458][   T10] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1360.381476][   T10] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1360.381495][   T10] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1360.381513][   T10] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[ 1360.422642][   T10] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[ 1360.481877][T13528] syz.2.1707 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1360.481910][T13528] CPU: 0 UID: 0 PID: 13528 Comm: syz.2.1707 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1360.481933][T13528] Tainted: [L]=SOFTLOCKUP
[ 1360.481940][T13528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1360.481950][T13528] Call Trace:
[ 1360.481958][T13528]  <TASK>
[ 1360.481966][T13528]  dump_stack_lvl+0xe8/0x150
[ 1360.481995][T13528]  dump_header+0xd3/0x4c0
[ 1360.482017][T13528]  oom_kill_process+0x3ab/0x970
[ 1360.482051][T13528]  out_of_memory+0x106c/0x1410
[ 1360.482083][T13528]  ? __pfx_out_of_memory+0x10/0x10
[ 1360.482104][T13528]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1360.482127][T13528]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1360.482150][T13528]  ? _mutex_lock_killable+0x152/0x1d0
[ 1360.482168][T13528]  ? try_charge_memcg+0xbca/0x1630
[ 1360.482195][T13528]  try_charge_memcg+0xc92/0x1630
[ 1360.482233][T13528]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1360.482260][T13528]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1360.482283][T13528]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1360.482301][T13528]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1360.482320][T13528]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1360.482340][T13528]  __mem_cgroup_charge+0xab/0x1e0
[ 1360.482365][T13528]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1360.482408][T13528]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1360.482430][T13528]  ? __lock_acquire+0x6b5/0x2cf0
[ 1360.482457][T13528]  shmem_fault+0x170/0x380
[ 1360.482527][T13528]  ? do_pte_missing+0x1404/0x2e60
[ 1360.482552][T13528]  __do_fault+0x138/0x390
[ 1360.482578][T13528]  ? do_pte_missing+0x1404/0x2e60
[ 1360.482595][T13528]  do_pte_missing+0x18d3/0x2e60
[ 1360.482618][T13528]  ? handle_mm_fault+0xe7/0x13c0
[ 1360.482645][T13528]  handle_mm_fault+0xd0a/0x13c0
[ 1360.482673][T13528]  ? handle_mm_fault+0xe7/0x13c0
[ 1360.482700][T13528]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1360.482724][T13528]  ? follow_page_pte+0xc25/0x13c0
[ 1360.482755][T13528]  ? __pfx_follow_page_pte+0x10/0x10
[ 1360.482786][T13528]  __get_user_pages+0x1679/0x2800
[ 1360.482833][T13528]  populate_vma_page_range+0x2be/0x3c0
[ 1360.482857][T13528]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1360.482890][T13528]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1360.482915][T13528]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1360.482937][T13528]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1360.482964][T13528]  __mm_populate+0x25f/0x390
[ 1360.482985][T13528]  ? __pfx___mm_populate+0x10/0x10
[ 1360.483006][T13528]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1360.483033][T13528]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1360.483054][T13528]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1360.483078][T13528]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1360.483099][T13528]  ? __se_sys_futex+0x3a8/0x450
[ 1360.483121][T13528]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1360.483142][T13528]  ? __pfx___se_sys_futex+0x10/0x10
[ 1360.483167][T13528]  ? __x64_sys_mmap+0x7f/0x140
[ 1360.483188][T13528]  do_syscall_64+0xe2/0xf80
[ 1360.483209][T13528]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1360.483225][T13528]  ? trace_irq_disable+0x37/0x100
[ 1360.483246][T13528]  ? clear_bhb_loop+0x60/0xb0
[ 1360.483265][T13528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1360.483281][T13528] RIP: 0033:0x7fa6bed3aeb9
[ 1360.483296][T13528] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1360.483310][T13528] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1360.483327][T13528] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1360.483339][T13528] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000
[ 1360.483350][T13528] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 0000000000000000
[ 1360.483362][T13528] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1360.483373][T13528] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1360.483398][T13528]  </TASK>
[ 1360.555509][T13528] memory: usage 307200kB, limit 307200kB, failcnt 47002
[ 1360.555533][T13528] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1360.555554][T13528] kmem: usage 3756kB, limit 9007199254740988kB, failcnt 0
[ 1360.555565][T13528] Memory cgroup stats for /syz2:
[ 1360.555660][T13528] cache 310497280
[ 1360.555668][T13528] rss 229376
[ 1360.555673][T13528] shmem 310497280
[ 1360.555679][T13528] mapped_file 593920
[ 1360.555684][T13528] dirty 0
[ 1360.555690][T13528] writeback 0
[ 1360.555695][T13528] workingset_refault_anon 5
[ 1360.555701][T13528] workingset_refault_file 1996
[ 1360.555707][T13528] swap 127995904
[ 1360.555713][T13528] swapcached 0
[ 1360.555718][T13528] pgpgin 947800
[ 1360.555724][T13528] pgpgout 871939
[ 1360.555729][T13528] pgfault 588410
[ 1360.555735][T13528] pgmajfault 28
[ 1360.555741][T13528] inactive_anon 303239168
[ 1360.555747][T13528] active_anon 7385088
[ 1360.555752][T13528] inactive_file 0
[ 1360.555758][T13528] active_file 0
[ 1360.555763][T13528] unevictable 0
[ 1360.555768][T13528] hierarchical_memory_limit 314572800
[ 1360.555775][T13528] hierarchical_memsw_limit 9223372036854771712
[ 1360.555782][T13528] total_cache 310497280
[ 1360.555788][T13528] total_rss 229376
[ 1360.555793][T13528] total_shmem 310497280
[ 1360.555799][T13528] total_mapped_file 593920
[ 1360.555805][T13528] total_dirty 0
[ 1360.555811][T13528] total_writeback 0
[ 1360.555816][T13528] total_workingset_refault_anon 5
[ 1360.555823][T13528] total_workingset_refault_file 1996
[ 1360.555829][T13528] total_swap 127995904
[ 1360.555835][T13528] total_swapcached 0
[ 1360.555840][T13528] total_pgpgin 947800
[ 1360.555846][T13528] total_pgpgout 871939
[ 1360.555852][T13528] total_pgfault 588410
[ 1360.555858][T13528] total_pgmajfault 28
[ 1360.555863][T13528] total_inactive_anon 303239168
[ 1360.555870][T13528] total_active_anon 7385088
[ 1360.555876][T13528] total_inactive_file 0
[ 1360.555882][T13528] total_active_file 0
[ 1360.555888][T13528] total_unevictable 0
[ 1360.555893][T13528] anon_cost 13106
[ 1360.555899][T13528] file_cost 3390
[ 1360.555905][T13528] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1707,pid=13527,uid=0
[ 1360.556003][T13528] Memory cgroup out of memory: Killed process 13527 (syz.2.1707) total-vm:102196kB, anon-rss:1344kB, file-rss:22284kB, shmem-rss:512kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1360.612672][   T10] usb 7-1: new full-speed USB device number 29 using dummy_hcd
[ 1361.310117][T13530] loop5: detected capacity change from 0 to 4095
[ 1361.609344][T13540] syz.2.1709 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1361.609379][T13540] CPU: 1 UID: 0 PID: 13540 Comm: syz.2.1709 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1361.609401][T13540] Tainted: [L]=SOFTLOCKUP
[ 1361.609407][T13540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1361.609418][T13540] Call Trace:
[ 1361.609427][T13540]  <TASK>
[ 1361.609435][T13540]  dump_stack_lvl+0xe8/0x150
[ 1361.609464][T13540]  dump_header+0xd3/0x4c0
[ 1361.609486][T13540]  oom_kill_process+0x3ab/0x970
[ 1361.609514][T13540]  out_of_memory+0x106c/0x1410
[ 1361.609547][T13540]  ? __pfx_out_of_memory+0x10/0x10
[ 1361.609568][T13540]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1361.609590][T13540]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1361.609613][T13540]  ? _mutex_lock_killable+0x152/0x1d0
[ 1361.609631][T13540]  ? try_charge_memcg+0xbca/0x1630
[ 1361.609657][T13540]  try_charge_memcg+0xc92/0x1630
[ 1361.609696][T13540]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1361.609724][T13540]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1361.609747][T13540]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1361.609765][T13540]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1361.609785][T13540]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1361.609805][T13540]  __mem_cgroup_charge+0xab/0x1e0
[ 1361.609830][T13540]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1361.609879][T13540]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1361.609901][T13540]  ? __lock_acquire+0x6b5/0x2cf0
[ 1361.609928][T13540]  shmem_fault+0x170/0x380
[ 1361.609962][T13540]  ? do_pte_missing+0x1404/0x2e60
[ 1361.609979][T13540]  __do_fault+0x138/0x390
[ 1361.609994][T13540]  ? do_pte_missing+0x1404/0x2e60
[ 1361.610011][T13540]  do_pte_missing+0x18d3/0x2e60
[ 1361.610033][T13540]  ? handle_mm_fault+0xe7/0x13c0
[ 1361.610061][T13540]  handle_mm_fault+0xd0a/0x13c0
[ 1361.610089][T13540]  ? handle_mm_fault+0xe7/0x13c0
[ 1361.610115][T13540]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1361.610139][T13540]  ? follow_page_pte+0xc25/0x13c0
[ 1361.610170][T13540]  ? __pfx_follow_page_pte+0x10/0x10
[ 1361.610201][T13540]  __get_user_pages+0x1679/0x2800
[ 1361.610247][T13540]  populate_vma_page_range+0x2be/0x3c0
[ 1361.610272][T13540]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1361.610292][T13540]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1361.610318][T13540]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1361.610342][T13540]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1361.610369][T13540]  __mm_populate+0x25f/0x390
[ 1361.610393][T13540]  ? __pfx___mm_populate+0x10/0x10
[ 1361.610414][T13540]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1361.610437][T13540]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1361.610458][T13540]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1361.610483][T13540]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1361.610505][T13540]  ? __se_sys_futex+0x3a8/0x450
[ 1361.610527][T13540]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1361.610548][T13540]  ? __pfx___se_sys_futex+0x10/0x10
[ 1361.610568][T13540]  ? __pfx___se_sys_prctl+0x10/0x10
[ 1361.610596][T13540]  ? __x64_sys_mmap+0x7f/0x140
[ 1361.610616][T13540]  do_syscall_64+0xe2/0xf80
[ 1361.610639][T13540]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1361.610655][T13540]  ? trace_irq_disable+0x37/0x100
[ 1361.610676][T13540]  ? clear_bhb_loop+0x60/0xb0
[ 1361.610697][T13540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1361.610713][T13540] RIP: 0033:0x7fa6bed3aeb9
[ 1361.610729][T13540] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1361.610744][T13540] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1361.610761][T13540] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1361.610774][T13540] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000
[ 1361.610786][T13540] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 0000000000000000
[ 1361.610797][T13540] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1361.610807][T13540] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1361.610833][T13540]  </TASK>
[ 1361.610840][T13540] memory: usage 307200kB, limit 307200kB, failcnt 47075
[ 1361.610851][T13540] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1361.610862][T13540] kmem: usage 3776kB, limit 9007199254740988kB, failcnt 0
[ 1361.610872][T13540] Memory cgroup stats for /syz2:
[ 1361.610973][T13540] cache 310407168
[ 1361.610981][T13540] rss 229376
[ 1361.610987][T13540] shmem 310407168
[ 1361.610993][T13540] mapped_file 503808
[ 1361.610999][T13540] dirty 0
[ 1361.611004][T13540] writeback 0
[ 1361.611010][T13540] workingset_refault_anon 5
[ 1361.611017][T13540] workingset_refault_file 1996
[ 1361.611023][T13540] swap 127995904
[ 1361.611029][T13540] swapcached 0
[ 1361.611035][T13540] pgpgin 947959
[ 1361.611041][T13540] pgpgout 872120
[ 1361.611047][T13540] pgfault 588628
[ 1361.611053][T13540] pgmajfault 28
[ 1361.611059][T13540] inactive_anon 303251456
[ 1361.611066][T13540] active_anon 7385088
[ 1361.611072][T13540] inactive_file 0
[ 1361.611078][T13540] active_file 0
[ 1361.611084][T13540] unevictable 0
[ 1361.611090][T13540] hierarchical_memory_limit 314572800
[ 1361.611097][T13540] hierarchical_memsw_limit 9223372036854771712
[ 1361.611104][T13540] total_cache 310407168
[ 1361.611111][T13540] total_rss 229376
[ 1361.611117][T13540] total_shmem 310407168
[ 1361.611123][T13540] total_mapped_file 503808
[ 1361.611129][T13540] total_dirty 0
[ 1361.611135][T13540] total_writeback 0
[ 1361.611142][T13540] total_workingset_refault_anon 5
[ 1361.611148][T13540] total_workingset_refault_file 1996
[ 1361.611155][T13540] total_swap 127995904
[ 1361.611162][T13540] total_swapcached 0
[ 1361.611167][T13540] total_pgpgin 947959
[ 1361.611174][T13540] total_pgpgout 872120
[ 1361.611179][T13540] total_pgfault 588628
[ 1361.611186][T13540] total_pgmajfault 28
[ 1361.611191][T13540] total_inactive_anon 303251456
[ 1361.611198][T13540] total_active_anon 7385088
[ 1361.611204][T13540] total_inactive_file 0
[ 1361.611210][T13540] total_active_file 0
[ 1361.611216][T13540] total_unevictable 0
[ 1361.611222][T13540] anon_cost 13106
[ 1361.611228][T13540] file_cost 3390
[ 1361.611235][T13540] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1709,pid=13539,uid=0
[ 1361.611383][T13540] Memory cgroup out of memory: Killed process 13539 (syz.2.1709) total-vm:102196kB, anon-rss:1216kB, file-rss:22408kB, shmem-rss:384kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1362.344330][ T1123] hsr_slave_0: left promiscuous mode
[ 1362.399566][T13521] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1362.413987][ T1123] hsr_slave_1: left promiscuous mode
[ 1362.415166][ T1123] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1362.415192][ T1123] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1362.417131][T13521] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1362.516166][ T1123] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1362.516235][ T1123] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1362.638514][ T5905] usb 1-1: reset high-speed USB device number 78 using dummy_hcd
[ 1363.123662][T13546] syz.2.1710 invoked oom-killer: gfp_mask=0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), order=0, oom_score_adj=1000
[ 1363.123715][T13546] CPU: 1 UID: 0 PID: 13546 Comm: syz.2.1710 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1363.123749][T13546] Tainted: [L]=SOFTLOCKUP
[ 1363.123757][T13546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1363.123770][T13546] Call Trace:
[ 1363.123780][T13546]  <TASK>
[ 1363.123791][T13546]  dump_stack_lvl+0xe8/0x150
[ 1363.123829][T13546]  dump_header+0xd3/0x4c0
[ 1363.123861][T13546]  oom_kill_process+0x3ab/0x970
[ 1363.123899][T13546]  out_of_memory+0x106c/0x1410
[ 1363.123943][T13546]  ? __pfx_out_of_memory+0x10/0x10
[ 1363.123972][T13546]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1363.124003][T13546]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1363.124034][T13546]  ? _mutex_lock_killable+0x152/0x1d0
[ 1363.124056][T13546]  ? try_charge_memcg+0xbca/0x1630
[ 1363.124089][T13546]  try_charge_memcg+0xc92/0x1630
[ 1363.124134][T13546]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1363.124170][T13546]  ? percpu_ref_tryget+0x15/0x180
[ 1363.124211][T13546]  ? __memcg_kmem_charge_page+0x11f/0x460
[ 1363.124245][T13546]  __memcg_kmem_charge_page+0x2dd/0x460
[ 1363.124272][T13546]  ? __memcg_kmem_charge_page+0x11f/0x460
[ 1363.124315][T13546]  __alloc_frozen_pages_noprof+0x1c1/0x380
[ 1363.124340][T13546]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1363.124367][T13546]  ? __pfx_policy_nodemask+0x10/0x10
[ 1363.124402][T13546]  ? __pfx_kvm_mmu_notifier_invalidate_range_start+0x10/0x10
[ 1363.124445][T13546]  alloc_pages_mpol+0xd1/0x380
[ 1363.124493][T13546]  alloc_pages_noprof+0xce/0x1e0
[ 1363.124529][T13546]  __pud_alloc+0x3a/0x6e0
[ 1363.124568][T13546]  copy_page_range+0xbc2/0x1110
[ 1363.124608][T13546]  ? __pfx_copy_page_range+0x10/0x10
[ 1363.124637][T13546]  ? anon_vma_fork+0x4a2/0x500
[ 1363.124674][T13546]  dup_mmap+0xf7c/0x1b70
[ 1363.124723][T13546]  ? __pfx_dup_mmap+0x10/0x10
[ 1363.124758][T13546]  ? copy_mm+0x130/0x4b0
[ 1363.124800][T13546]  copy_mm+0x13b/0x4b0
[ 1363.124827][T13546]  copy_process+0x16db/0x3a90
[ 1363.124866][T13546]  ? copy_process+0x939/0x3a90
[ 1363.124899][T13546]  ? __pfx_copy_process+0x10/0x10
[ 1363.124925][T13546]  ? __asan_memset+0x22/0x50
[ 1363.124957][T13546]  kernel_clone+0x249/0x7f0
[ 1363.124984][T13546]  ? __pfx_kernel_clone+0x10/0x10
[ 1363.125027][T13546]  __se_sys_clone3+0x33c/0x360
[ 1363.125057][T13546]  ? __pfx___se_sys_clone3+0x10/0x10
[ 1363.125097][T13546]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1363.125137][T13546]  ? __pfx_kcov_ioctl+0x10/0x10
[ 1363.125179][T13546]  do_syscall_64+0xe2/0xf80
[ 1363.125210][T13546]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1363.125233][T13546]  ? trace_irq_disable+0x37/0x100
[ 1363.125263][T13546]  ? clear_bhb_loop+0x60/0xb0
[ 1363.125289][T13546]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1363.125311][T13546] RIP: 0033:0x7fa6bed3aeb9
[ 1363.125333][T13546] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1363.125353][T13546] RSP: 002b:00007fa6bcf74ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 1363.125377][T13546] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fa6bed3aeb9
[ 1363.125394][T13546] RDX: 00007fa6bcf74f10 RSI: 0000000000000058 RDI: 00007fa6bcf74f10
[ 1363.125410][T13546] RBP: 00007fa6beda8c1f R08: 0000000000000000 R09: 0000000000000058
[ 1363.125424][T13546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1363.125437][T13546] R13: 00007fa6befb6128 R14: 00007fa6befb6090 R15: 00007ffdb819cba8
[ 1363.125471][T13546]  </TASK>
[ 1363.125490][T13546] memory: usage 307200kB, limit 307200kB, failcnt 47195
[ 1363.125505][T13546] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1363.125520][T13546] kmem: usage 4288kB, limit 9007199254740988kB, failcnt 0
[ 1363.125534][T13546] Memory cgroup stats for /syz2:
[ 1363.125655][T13546] cache 309903360
[ 1363.125666][T13546] rss 278528
[ 1363.125673][T13546] shmem 309903360
[ 1363.125681][T13546] mapped_file 0
[ 1363.125690][T13546] dirty 0
[ 1363.125696][T13546] writeback 0
[ 1363.125703][T13546] workingset_refault_anon 5
[ 1363.125712][T13546] workingset_refault_file 1996
[ 1363.125720][T13546] swap 127995904
[ 1363.125728][T13546] swapcached 0
[ 1363.125737][T13546] pgpgin 948006
[ 1363.125744][T13546] pgpgout 872278
[ 1363.125752][T13546] pgfault 588744
[ 1363.125759][T13546] pgmajfault 28
[ 1363.125766][T13546] inactive_anon 302792704
[ 1363.125774][T13546] active_anon 7385088
[ 1363.125781][T13546] inactive_file 0
[ 1363.125789][T13546] active_file 0
[ 1363.125797][T13546] unevictable 0
[ 1363.125804][T13546] hierarchical_memory_limit 314572800
[ 1363.125814][T13546] hierarchical_memsw_limit 9223372036854771712
[ 1363.125824][T13546] total_cache 309903360
[ 1363.125833][T13546] total_rss 278528
[ 1363.125840][T13546] total_shmem 309903360
[ 1363.125849][T13546] total_mapped_file 0
[ 1363.125856][T13546] total_dirty 0
[ 1363.125864][T13546] total_writeback 0
[ 1363.125872][T13546] total_workingset_refault_anon 5
[ 1363.125881][T13546] total_workingset_refault_file 1996
[ 1363.125890][T13546] total_swap 127995904
[ 1363.125899][T13546] total_swapcached 0
[ 1363.125907][T13546] total_pgpgin 948006
[ 1363.125915][T13546] total_pgpgout 872278
[ 1363.125924][T13546] total_pgfault 588744
[ 1363.125933][T13546] total_pgmajfault 28
[ 1363.125941][T13546] total_inactive_anon 302792704
[ 1363.125950][T13546] total_active_anon 7385088
[ 1363.125959][T13546] total_inactive_file 0
[ 1363.125968][T13546] total_active_file 0
[ 1363.125977][T13546] total_unevictable 0
[ 1363.125985][T13546] anon_cost 13106
[ 1363.125994][T13546] file_cost 3390
[ 1363.126003][T13546] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1710,pid=13543,uid=0
[ 1363.332935][T13546] Memory cgroup out of memory: Killed process 13543 (syz.2.1710) total-vm:102328kB, anon-rss:1344kB, file-rss:23076kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1363.842950][   T10] usb 7-1: no configurations
[ 1363.842972][   T10] usb 7-1: can't read configurations, error -22
[ 1363.889818][ T1123] veth1_macvtap: left promiscuous mode
[ 1363.889897][ T1123] veth0_macvtap: left promiscuous mode
[ 1363.890127][ T1123] veth1_vlan: left promiscuous mode
[ 1363.890251][ T1123] veth0_vlan: left promiscuous mode
[ 1364.257867][T12959] usb 1-1: USB disconnect, device number 78
[ 1364.361219][T13550] FAULT_INJECTION: forcing a failure.
[ 1364.361219][T13550] name failslab, interval 1, probability 0, space 0, times 0
[ 1364.361287][T13550] CPU: 1 UID: 0 PID: 13550 Comm: syz.6.1711 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1364.361318][T13550] Tainted: [L]=SOFTLOCKUP
[ 1364.361326][T13550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1364.361341][T13550] Call Trace:
[ 1364.361351][T13550]  <TASK>
[ 1364.361361][T13550]  dump_stack_lvl+0xe8/0x150
[ 1364.361399][T13550]  should_fail_ex+0x46b/0x600
[ 1364.361429][T13550]  should_failslab+0xa8/0x100
[ 1364.361467][T13550]  __kvmalloc_node_noprof+0x16f/0x8f0
[ 1364.361502][T13550]  ? seq_read_iter+0x203/0xe20
[ 1364.361529][T13550]  ? mutex_lock_nested+0x152/0x1d0
[ 1364.361552][T13550]  ? seq_read_iter+0xb8/0xe20
[ 1364.361582][T13550]  seq_read_iter+0x203/0xe20
[ 1364.361615][T13550]  ? finish_task_switch+0x23c/0x920
[ 1364.361653][T13550]  ? __asan_memset+0x22/0x50
[ 1364.361688][T13550]  seq_read+0x36a/0x490
[ 1364.361725][T13550]  ? __pfx_seq_read+0x10/0x10
[ 1364.361773][T13550]  ? __pfx_seq_read+0x10/0x10
[ 1364.361797][T13550]  proc_reg_read+0x1f6/0x2f0
[ 1364.361828][T13550]  ? __pfx_proc_reg_read+0x10/0x10
[ 1364.361860][T13550]  vfs_read+0x212/0xa70
[ 1364.361891][T13550]  ? preempt_schedule_thunk+0x16/0x30
[ 1364.361917][T13550]  ? __pfx_vfs_read+0x10/0x10
[ 1364.361943][T13550]  ? preempt_schedule_thunk+0x16/0x30
[ 1364.361972][T13550]  ? _raw_spin_unlock_irqrestore+0x74/0x80
[ 1364.362003][T13550]  ? mutex_lock_nested+0x152/0x1d0
[ 1364.362025][T13550]  ? fdget_pos+0x252/0x320
[ 1364.362054][T13550]  ksys_read+0x156/0x270
[ 1364.362085][T13550]  ? __pfx_ksys_read+0x10/0x10
[ 1364.362125][T13550]  do_syscall_64+0xe2/0xf80
[ 1364.362153][T13550]  ? rcu_is_watching+0x15/0xb0
[ 1364.362179][T13550]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1364.362202][T13550]  ? clear_bhb_loop+0x60/0xb0
[ 1364.362230][T13550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1364.362252][T13550] RIP: 0033:0x7f324d8daeb9
[ 1364.362272][T13550] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1364.362290][T13550] RSP: 002b:00007f324baf4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1364.362314][T13550] RAX: ffffffffffffffda RBX: 00007f324db56180 RCX: 00007f324d8daeb9
[ 1364.362348][T13550] RDX: 0000000000002020 RSI: 0000200000000640 RDI: 0000000000000005
[ 1364.362363][T13550] RBP: 00007f324baf4090 R08: 0000000000000000 R09: 0000000000000000
[ 1364.362378][T13550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1364.362393][T13550] R13: 00007f324db56218 R14: 00007f324db56180 R15: 00007ffc675db508
[ 1364.362430][T13550]  </TASK>
[ 1367.051532][T13565] FAULT_INJECTION: forcing a failure.
[ 1367.051532][T13565] name failslab, interval 1, probability 0, space 0, times 0
[ 1367.051599][T13565] CPU: 1 UID: 0 PID: 13565 Comm: syz.6.1715 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1367.051629][T13565] Tainted: [L]=SOFTLOCKUP
[ 1367.051638][T13565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1367.051651][T13565] Call Trace:
[ 1367.051660][T13565]  <TASK>
[ 1367.051671][T13565]  dump_stack_lvl+0xe8/0x150
[ 1367.051707][T13565]  should_fail_ex+0x46b/0x600
[ 1367.051735][T13565]  ? getname_flags+0xb7/0x540
[ 1367.051767][T13565]  should_failslab+0xa8/0x100
[ 1367.051800][T13565]  ? getname_flags+0xb7/0x540
[ 1367.051831][T13565]  kmem_cache_alloc_noprof+0x83/0x6a0
[ 1367.051870][T13565]  getname_flags+0xb7/0x540
[ 1367.051907][T13565]  user_path_at+0x24/0x60
[ 1367.051932][T13565]  do_fchownat+0xf5/0x240
[ 1367.051968][T13565]  ? __pfx_do_fchownat+0x10/0x10
[ 1367.052013][T13565]  __x64_sys_fchownat+0xb5/0xd0
[ 1367.052049][T13565]  do_syscall_64+0xe2/0xf80
[ 1367.052077][T13565]  ? rcu_is_watching+0x15/0xb0
[ 1367.052104][T13565]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1367.052126][T13565]  ? clear_bhb_loop+0x60/0xb0
[ 1367.052153][T13565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1367.052182][T13565] RIP: 0033:0x7f324d8daeb9
[ 1367.052202][T13565] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1367.052222][T13565] RSP: 002b:00007f324baf4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000104
[ 1367.052245][T13565] RAX: ffffffffffffffda RBX: 00007f324db56180 RCX: 00007f324d8daeb9
[ 1367.052262][T13565] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffffff
[ 1367.052277][T13565] RBP: 00007f324baf4090 R08: 0000000000001000 R09: 0000000000000000
[ 1367.052292][T13565] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[ 1367.052307][T13565] R13: 00007f324db56218 R14: 00007f324db56180 R15: 00007ffc675db508
[ 1367.052342][T13565]  </TASK>
[ 1368.204164][T13567] syz.2.1717 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1368.204196][T13567] CPU: 0 UID: 0 PID: 13567 Comm: syz.2.1717 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1368.204218][T13567] Tainted: [L]=SOFTLOCKUP
[ 1368.204224][T13567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1368.204235][T13567] Call Trace:
[ 1368.204242][T13567]  <TASK>
[ 1368.204249][T13567]  dump_stack_lvl+0xe8/0x150
[ 1368.204297][T13567]  dump_header+0xd3/0x4c0
[ 1368.204329][T13567]  oom_kill_process+0x3ab/0x970
[ 1368.204368][T13567]  out_of_memory+0x106c/0x1410
[ 1368.204416][T13567]  ? __pfx_out_of_memory+0x10/0x10
[ 1368.204438][T13567]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1368.204461][T13567]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1368.204483][T13567]  ? _mutex_lock_killable+0x152/0x1d0
[ 1368.204499][T13567]  ? try_charge_memcg+0xbca/0x1630
[ 1368.204526][T13567]  try_charge_memcg+0xc92/0x1630
[ 1368.204563][T13567]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1368.204590][T13567]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1368.204616][T13567]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1368.204633][T13567]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1368.204651][T13567]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1368.204671][T13567]  __mem_cgroup_charge+0xab/0x1e0
[ 1368.204695][T13567]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1368.204737][T13567]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1368.204758][T13567]  ? __lock_acquire+0x6b5/0x2cf0
[ 1368.204783][T13567]  shmem_fault+0x170/0x380
[ 1368.204810][T13567]  ? do_pte_missing+0x1404/0x2e60
[ 1368.204827][T13567]  __do_fault+0x138/0x390
[ 1368.204840][T13567]  ? do_pte_missing+0x1404/0x2e60
[ 1368.204857][T13567]  do_pte_missing+0x18d3/0x2e60
[ 1368.204878][T13567]  ? handle_mm_fault+0xe7/0x13c0
[ 1368.204904][T13567]  handle_mm_fault+0xd0a/0x13c0
[ 1368.204931][T13567]  ? handle_mm_fault+0xe7/0x13c0
[ 1368.204955][T13567]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1368.204979][T13567]  ? follow_page_pte+0xc25/0x13c0
[ 1368.205009][T13567]  ? __pfx_follow_page_pte+0x10/0x10
[ 1368.205039][T13567]  __get_user_pages+0x1679/0x2800
[ 1368.205083][T13567]  populate_vma_page_range+0x2be/0x3c0
[ 1368.205112][T13567]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1368.205132][T13567]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1368.205158][T13567]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1368.205181][T13567]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1368.205219][T13567]  __mm_populate+0x25f/0x390
[ 1368.205240][T13567]  ? __pfx___mm_populate+0x10/0x10
[ 1368.205260][T13567]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1368.205317][T13567]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1368.205346][T13567]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1368.205380][T13567]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1368.205408][T13567]  ? __se_sys_futex+0x3a8/0x450
[ 1368.205438][T13567]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1368.205472][T13567]  ? rcu_is_watching+0x15/0xb0
[ 1368.205510][T13567]  ? __x64_sys_mmap+0x7f/0x140
[ 1368.205540][T13567]  do_syscall_64+0xe2/0xf80
[ 1368.205570][T13567]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1368.205592][T13567]  ? trace_irq_disable+0x37/0x100
[ 1368.205621][T13567]  ? clear_bhb_loop+0x60/0xb0
[ 1368.205650][T13567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1368.205674][T13567] RIP: 0033:0x7fa6bed3aeb9
[ 1368.205696][T13567] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1368.205717][T13567] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1368.205741][T13567] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1368.205758][T13567] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000
[ 1368.205774][T13567] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 0000000000000000
[ 1368.205790][T13567] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1368.205803][T13567] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1368.205840][T13567]  </TASK>
[ 1368.216762][T13567] memory: usage 307200kB, limit 307200kB, failcnt 47301
[ 1368.216788][T13567] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1368.216807][T13567] kmem: usage 3744kB, limit 9007199254740988kB, failcnt 0
[ 1368.216817][T13567] Memory cgroup stats for /syz2:
[ 1368.216934][T13567] cache 310501376
[ 1368.216942][T13567] rss 229376
[ 1368.216948][T13567] shmem 310501376
[ 1368.216954][T13567] mapped_file 598016
[ 1368.216960][T13567] dirty 0
[ 1368.216966][T13567] writeback 0
[ 1368.216971][T13567] workingset_refault_anon 5
[ 1368.216978][T13567] workingset_refault_file 1996
[ 1368.216985][T13567] swap 127995904
[ 1368.216990][T13567] swapcached 0
[ 1368.216996][T13567] pgpgin 948219
[ 1368.217002][T13567] pgpgout 872357
[ 1368.217008][T13567] pgfault 589075
[ 1368.217013][T13567] pgmajfault 28
[ 1368.217019][T13567] inactive_anon 303312896
[ 1368.217025][T13567] active_anon 7385088
[ 1368.217031][T13567] inactive_file 0
[ 1368.217037][T13567] active_file 0
[ 1368.217051][T13567] unevictable 0
[ 1368.217266][T13567] hierarchical_memory_limit 314572800
[ 1368.217291][T13567] hierarchical_memsw_limit 9223372036854771712
[ 1368.217302][T13567] total_cache 310501376
[ 1368.217394][T13567] total_rss 229376
[ 1368.217405][T13567] total_shmem 310501376
[ 1368.217414][T13567] total_mapped_file 598016
[ 1368.217427][T13567] total_dirty 0
[ 1368.217434][T13567] total_writeback 0
[ 1368.217440][T13567] total_workingset_refault_anon 5
[ 1368.217446][T13567] total_workingset_refault_file 1996
[ 1368.217453][T13567] total_swap 127995904
[ 1368.217465][T13567] total_swapcached 0
[ 1368.217471][T13567] total_pgpgin 948219
[ 1368.217478][T13567] total_pgpgout 872357
[ 1368.217484][T13567] total_pgfault 589075
[ 1368.217490][T13567] total_pgmajfault 28
[ 1368.217496][T13567] total_inactive_anon 303312896
[ 1368.217503][T13567] total_active_anon 7385088
[ 1368.217509][T13567] total_inactive_file 0
[ 1368.217516][T13567] total_active_file 0
[ 1368.217524][T13567] total_unevictable 0
[ 1368.217530][T13567] anon_cost 13106
[ 1368.217536][T13567] file_cost 3390
[ 1368.217543][T13567] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1717,pid=13566,uid=0
[ 1368.228267][T13567] Memory cgroup out of memory: Killed process 13566 (syz.2.1717) total-vm:102196kB, anon-rss:1264kB, file-rss:22284kB, shmem-rss:384kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1368.452971][   T10] usb 1-1: new high-speed USB device number 79 using dummy_hcd
[ 1369.416508][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1369.416538][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1369.416555][   T10] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1369.416587][   T10] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1369.416604][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1369.486288][   T10] usb 1-1: config 0 descriptor??
[ 1371.603027][   T10] usbhid 1-1:0.0: can't add hid device: -71
[ 1371.603125][   T10] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1371.613056][   T10] usb 1-1: USB disconnect, device number 79
[ 1372.067352][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1372.992827][T12956] usb 3-1: new high-speed USB device number 71 using dummy_hcd
[ 1373.155324][T12956] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1373.155375][T12956] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1373.155398][T12956] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1373.155440][T12956] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1373.155465][T12956] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1373.224205][T12956] usb 3-1: config 0 descriptor??
[ 1373.728317][T12956] hid_parser_main: 5 callbacks suppressed
[ 1373.728335][T12956] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[ 1373.728358][T12956] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[ 1373.728376][T12956] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[ 1373.728395][T12956] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[ 1373.728414][T12956] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[ 1373.728432][T12956] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[ 1373.728450][T12956] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[ 1373.728469][T12956] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[ 1373.728487][T12956] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[ 1373.728505][T12956] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[ 1373.888864][T12956] plantronics 0003:047F:FFFF.0015: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[ 1374.144261][T13594] FAULT_INJECTION: forcing a failure.
[ 1374.144261][T13594] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1374.144299][T13594] CPU: 0 UID: 0 PID: 13594 Comm: syz.0.1727 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1374.144328][T13594] Tainted: [L]=SOFTLOCKUP
[ 1374.144336][T13594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1374.144349][T13594] Call Trace:
[ 1374.144357][T13594]  <TASK>
[ 1374.144367][T13594]  dump_stack_lvl+0xe8/0x150
[ 1374.144400][T13594]  should_fail_ex+0x46b/0x600
[ 1374.144427][T13594]  _copy_from_user+0x2d/0xb0
[ 1374.144457][T13594]  ___sys_sendmsg+0x1c6/0x360
[ 1374.144478][T13594]  ? __lock_acquire+0x6b5/0x2cf0
[ 1374.144506][T13594]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1374.144572][T13594]  ? __fget_files+0x2a/0x420
[ 1374.144590][T13594]  ? __fget_files+0x3a6/0x420
[ 1374.144619][T13594]  __x64_sys_sendmsg+0x1c3/0x2a0
[ 1374.144643][T13594]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1374.144674][T13594]  ? __pfx_ksys_write+0x10/0x10
[ 1374.144710][T13594]  do_syscall_64+0xe2/0xf80
[ 1374.144736][T13594]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1374.144755][T13594]  ? trace_irq_disable+0x37/0x100
[ 1374.144798][T13594]  ? clear_bhb_loop+0x60/0xb0
[ 1374.144821][T13594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1374.144842][T13594] RIP: 0033:0x7f6243d3aeb9
[ 1374.144862][T13594] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1374.144882][T13594] RSP: 002b:00007f6241f75028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1374.144905][T13594] RAX: ffffffffffffffda RBX: 00007f6243fb6090 RCX: 00007f6243d3aeb9
[ 1374.144921][T13594] RDX: 0000000000000010 RSI: 0000200000000400 RDI: 0000000000000006
[ 1374.144935][T13594] RBP: 00007f6241f75090 R08: 0000000000000000 R09: 0000000000000000
[ 1374.144949][T13594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1374.144962][T13594] R13: 00007f6243fb6128 R14: 00007f6243fb6090 R15: 00007ffc6a73ed28
[ 1374.144996][T13594]  </TASK>
[ 1374.413289][T13584] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1374.413771][T13584] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1374.493529][ T6533] usb 3-1: USB disconnect, device number 71
[ 1377.272726][T12956] usb 3-1: new high-speed USB device number 72 using dummy_hcd
[ 1377.422693][T12956] usb 3-1: Using ep0 maxpacket: 16
[ 1377.444096][T12956] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[ 1377.444129][T12956] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1377.444150][T12956] usb 3-1: Product: syz
[ 1377.444179][T12956] usb 3-1: Manufacturer: syz
[ 1377.444194][T12956] usb 3-1: SerialNumber: syz
[ 1377.542140][T12956] r8152-cfgselector 3-1: Unknown version 0x0000
[ 1377.542172][T12956] r8152-cfgselector 3-1: config 0 descriptor??
[ 1378.030619][T13605] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1378.031163][T13605] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1378.034206][T13605] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1378.034799][T13605] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1378.065447][ T6533] r8152-cfgselector 3-1: USB disconnect, device number 72
[ 1378.915917][T13626] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1738'.
[ 1379.324101][T13631] syz.2.1740 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1379.324146][T13631] CPU: 1 UID: 0 PID: 13631 Comm: syz.2.1740 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1379.324176][T13631] Tainted: [L]=SOFTLOCKUP
[ 1379.324185][T13631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1379.324199][T13631] Call Trace:
[ 1379.324212][T13631]  <TASK>
[ 1379.324224][T13631]  dump_stack_lvl+0xe8/0x150
[ 1379.324260][T13631]  dump_header+0xd3/0x4c0
[ 1379.324289][T13631]  oom_kill_process+0x3ab/0x970
[ 1379.324325][T13631]  out_of_memory+0x106c/0x1410
[ 1379.324369][T13631]  ? __pfx_out_of_memory+0x10/0x10
[ 1379.324396][T13631]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1379.324425][T13631]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1379.324456][T13631]  ? _mutex_lock_killable+0x152/0x1d0
[ 1379.324479][T13631]  ? try_charge_memcg+0xbca/0x1630
[ 1379.324514][T13631]  try_charge_memcg+0xc92/0x1630
[ 1379.324564][T13631]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1379.324600][T13631]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1379.324631][T13631]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1379.324653][T13631]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1379.324679][T13631]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1379.324705][T13631]  __mem_cgroup_charge+0xab/0x1e0
[ 1379.324737][T13631]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1379.324795][T13631]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1379.324822][T13631]  ? __lock_acquire+0x6b5/0x2cf0
[ 1379.324858][T13631]  shmem_fault+0x170/0x380
[ 1379.324895][T13631]  ? do_pte_missing+0x1404/0x2e60
[ 1379.324918][T13631]  __do_fault+0x138/0x390
[ 1379.324937][T13631]  ? do_pte_missing+0x1404/0x2e60
[ 1379.324959][T13631]  do_pte_missing+0x18d3/0x2e60
[ 1379.324988][T13631]  ? handle_mm_fault+0xe7/0x13c0
[ 1379.325024][T13631]  handle_mm_fault+0xd0a/0x13c0
[ 1379.325070][T13631]  ? handle_mm_fault+0xe7/0x13c0
[ 1379.325105][T13631]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1379.325137][T13631]  ? follow_page_pte+0xc25/0x13c0
[ 1379.325178][T13631]  ? __pfx_follow_page_pte+0x10/0x10
[ 1379.325219][T13631]  __get_user_pages+0x1679/0x2800
[ 1379.325281][T13631]  populate_vma_page_range+0x2be/0x3c0
[ 1379.325312][T13631]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1379.325340][T13631]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1379.325372][T13631]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1379.325404][T13631]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1379.325441][T13631]  __mm_populate+0x25f/0x390
[ 1379.325472][T13631]  ? __pfx___mm_populate+0x10/0x10
[ 1379.325501][T13631]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1379.325531][T13631]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1379.325559][T13631]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1379.325592][T13631]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1379.325619][T13631]  ? __se_sys_futex+0x3a8/0x450
[ 1379.325649][T13631]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1379.325676][T13631]  ? __pfx___se_sys_futex+0x10/0x10
[ 1379.325701][T13631]  ? rcu_is_watching+0x15/0xb0
[ 1379.325739][T13631]  ? __x64_sys_mmap+0x7f/0x140
[ 1379.325766][T13631]  do_syscall_64+0xe2/0xf80
[ 1379.325796][T13631]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1379.325818][T13631]  ? trace_irq_disable+0x37/0x100
[ 1379.325847][T13631]  ? clear_bhb_loop+0x60/0xb0
[ 1379.325873][T13631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1379.325894][T13631] RIP: 0033:0x7fa6bed3aeb9
[ 1379.325915][T13631] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1379.325934][T13631] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1379.325959][T13631] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1379.325976][T13631] RDX: b635773f06ebbeef RSI: 0000000000b36000 RDI: 0000200000000000
[ 1379.325992][T13631] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 0000000000000000
[ 1379.326008][T13631] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1379.326022][T13631] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1379.326058][T13631]  </TASK>
[ 1379.326077][T13631] memory: usage 307200kB, limit 307200kB, failcnt 47338
[ 1379.326093][T13631] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1379.326108][T13631] kmem: usage 3772kB, limit 9007199254740988kB, failcnt 0
[ 1379.326123][T13631] Memory cgroup stats for /syz2:
[ 1379.326255][T13631] cache 310460416
[ 1379.326266][T13631] rss 229376
[ 1379.326273][T13631] shmem 310460416
[ 1379.326282][T13631] mapped_file 557056
[ 1379.326289][T13631] dirty 0
[ 1379.326298][T13631] writeback 0
[ 1379.326306][T13631] workingset_refault_anon 5
[ 1379.326314][T13631] workingset_refault_file 1996
[ 1379.326324][T13631] swap 127995904
[ 1379.326333][T13631] swapcached 0
[ 1379.326342][T13631] pgpgin 948603
[ 1379.326349][T13631] pgpgout 872751
[ 1379.326357][T13631] pgfault 589944
[ 1379.326365][T13631] pgmajfault 28
[ 1379.326372][T13631] inactive_anon 303169536
[ 1379.326381][T13631] active_anon 7385088
[ 1379.326389][T13631] inactive_file 0
[ 1379.326397][T13631] active_file 0
[ 1379.326405][T13631] unevictable 0
[ 1379.326413][T13631] hierarchical_memory_limit 314572800
[ 1379.326423][T13631] hierarchical_memsw_limit 9223372036854771712
[ 1379.326432][T13631] total_cache 310460416
[ 1379.326440][T13631] total_rss 229376
[ 1379.326449][T13631] total_shmem 310460416
[ 1379.326458][T13631] total_mapped_file 557056
[ 1379.326467][T13631] total_dirty 0
[ 1379.326474][T13631] total_writeback 0
[ 1379.326482][T13631] total_workingset_refault_anon 5
[ 1379.326491][T13631] total_workingset_refault_file 1996
[ 1379.326500][T13631] total_swap 127995904
[ 1379.326508][T13631] total_swapcached 0
[ 1379.326516][T13631] total_pgpgin 948603
[ 1379.326524][T13631] total_pgpgout 872751
[ 1379.326533][T13631] total_pgfault 589944
[ 1379.326541][T13631] total_pgmajfault 28
[ 1379.326562][T13631] total_inactive_anon 303169536
[ 1379.326570][T13631] total_active_anon 7385088
[ 1379.326578][T13631] total_inactive_file 0
[ 1379.326587][T13631] total_active_file 0
[ 1379.326595][T13631] total_unevictable 0
[ 1379.326603][T13631] anon_cost 13106
[ 1379.326611][T13631] file_cost 3390
[ 1379.326638][T13631] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1740,pid=13630,uid=0
[ 1379.326781][T13631] Memory cgroup out of memory: Killed process 13630 (syz.2.1740) total-vm:104244kB, anon-rss:1296kB, file-rss:22156kB, shmem-rss:512kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1381.108002][ T1123] team0 (unregistering): Port device team_slave_1 removed
[ 1381.615071][ T1123] team0 (unregistering): Port device team_slave_0 removed
[ 1386.524422][T13354] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1386.524553][T13354] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1386.524845][T13354] bridge_slave_0: entered allmulticast mode
[ 1386.527551][T13354] bridge_slave_0: entered promiscuous mode
[ 1387.066520][T13394] chnl_net:caif_netlink_parms(): no params data found
[ 1387.682725][T13394] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1387.682812][T13394] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1387.683010][T13394] bridge_slave_0: entered allmulticast mode
[ 1387.684902][T13394] bridge_slave_0: entered promiscuous mode
[ 1387.696305][T13394] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1387.696653][T13394] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1387.697396][T13394] bridge_slave_1: entered allmulticast mode
[ 1387.734848][T13394] bridge_slave_1: entered promiscuous mode
[ 1388.004511][T13394] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1388.051724][T13394] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1388.178033][T13660] syz.2.1746 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1388.178067][T13660] CPU: 0 UID: 0 PID: 13660 Comm: syz.2.1746 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1388.178091][T13660] Tainted: [L]=SOFTLOCKUP
[ 1388.178098][T13660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1388.178108][T13660] Call Trace:
[ 1388.178116][T13660]  <TASK>
[ 1388.178124][T13660]  dump_stack_lvl+0xe8/0x150
[ 1388.178153][T13660]  dump_header+0xd3/0x4c0
[ 1388.178176][T13660]  oom_kill_process+0x3ab/0x970
[ 1388.178204][T13660]  out_of_memory+0x106c/0x1410
[ 1388.178237][T13660]  ? __pfx_out_of_memory+0x10/0x10
[ 1388.178259][T13660]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1388.178282][T13660]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1388.178305][T13660]  ? _mutex_lock_killable+0x152/0x1d0
[ 1388.178323][T13660]  ? try_charge_memcg+0xbca/0x1630
[ 1388.178356][T13660]  try_charge_memcg+0xc92/0x1630
[ 1388.178395][T13660]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1388.178423][T13660]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1388.178446][T13660]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1388.178464][T13660]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1388.178483][T13660]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1388.178503][T13660]  __mem_cgroup_charge+0xab/0x1e0
[ 1388.178529][T13660]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1388.178572][T13660]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1388.178594][T13660]  ? __lock_acquire+0x6b5/0x2cf0
[ 1388.178621][T13660]  shmem_fault+0x170/0x380
[ 1388.178650][T13660]  ? do_pte_missing+0x1404/0x2e60
[ 1388.178666][T13660]  __do_fault+0x138/0x390
[ 1388.178681][T13660]  ? do_pte_missing+0x1404/0x2e60
[ 1388.178697][T13660]  do_pte_missing+0x18d3/0x2e60
[ 1388.178720][T13660]  ? handle_mm_fault+0xe7/0x13c0
[ 1388.178746][T13660]  handle_mm_fault+0xd0a/0x13c0
[ 1388.178774][T13660]  ? handle_mm_fault+0xe7/0x13c0
[ 1388.178800][T13660]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1388.178824][T13660]  ? follow_page_pte+0xc25/0x13c0
[ 1388.178855][T13660]  ? __pfx_follow_page_pte+0x10/0x10
[ 1388.178886][T13660]  __get_user_pages+0x1679/0x2800
[ 1388.178932][T13660]  populate_vma_page_range+0x2be/0x3c0
[ 1388.178957][T13660]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1388.178977][T13660]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1388.179003][T13660]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1388.179026][T13660]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1388.179055][T13660]  __mm_populate+0x25f/0x390
[ 1388.179078][T13660]  ? __pfx___mm_populate+0x10/0x10
[ 1388.179099][T13660]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1388.179122][T13660]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1388.179143][T13660]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1388.179168][T13660]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1388.179189][T13660]  ? __se_sys_futex+0x3a8/0x450
[ 1388.179211][T13660]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1388.179235][T13660]  ? rcu_is_watching+0x15/0xb0
[ 1388.179262][T13660]  ? __x64_sys_mmap+0x7f/0x140
[ 1388.179283][T13660]  do_syscall_64+0xe2/0xf80
[ 1388.179305][T13660]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1388.179321][T13660]  ? trace_irq_disable+0x37/0x100
[ 1388.179348][T13660]  ? clear_bhb_loop+0x60/0xb0
[ 1388.179368][T13660]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1388.179385][T13660] RIP: 0033:0x7fa6bed3aeb9
[ 1388.179401][T13660] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1388.179415][T13660] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1388.179433][T13660] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1388.179446][T13660] RDX: b635773f06ebbeef RSI: 0000000000b36000 RDI: 0000200000000000
[ 1388.179458][T13660] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 0000000000000000
[ 1388.179469][T13660] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1388.179480][T13660] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1388.179506][T13660]  </TASK>
[ 1388.179513][T13660] memory: usage 307200kB, limit 307200kB, failcnt 47441
[ 1388.179524][T13660] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1388.179535][T13660] kmem: usage 3780kB, limit 9007199254740988kB, failcnt 0
[ 1388.179546][T13660] Memory cgroup stats for /syz2:
[ 1388.179641][T13660] cache 310386688
[ 1388.179649][T13660] rss 229376
[ 1388.179655][T13660] shmem 310386688
[ 1388.179661][T13660] mapped_file 483328
[ 1388.179667][T13660] dirty 0
[ 1388.179673][T13660] writeback 0
[ 1388.179678][T13660] workingset_refault_anon 5
[ 1388.179685][T13660] workingset_refault_file 1996
[ 1388.179692][T13660] swap 127995904
[ 1388.179697][T13660] swapcached 0
[ 1388.179704][T13660] pgpgin 948802
[ 1388.179709][T13660] pgpgout 872968
[ 1388.179715][T13660] pgfault 590288
[ 1388.179721][T13660] pgmajfault 28
[ 1388.179727][T13660] inactive_anon 303173632
[ 1388.179733][T13660] active_anon 7385088
[ 1388.179739][T13660] inactive_file 0
[ 1388.179745][T13660] active_file 0
[ 1388.179751][T13660] unevictable 0
[ 1388.179757][T13660] hierarchical_memory_limit 314572800
[ 1388.179764][T13660] hierarchical_memsw_limit 9223372036854771712
[ 1388.179771][T13660] total_cache 310386688
[ 1388.179777][T13660] total_rss 229376
[ 1388.179784][T13660] total_shmem 310386688
[ 1388.179790][T13660] total_mapped_file 483328
[ 1388.179796][T13660] total_dirty 0
[ 1388.179802][T13660] total_writeback 0
[ 1388.179808][T13660] total_workingset_refault_anon 5
[ 1388.179815][T13660] total_workingset_refault_file 1996
[ 1388.179822][T13660] total_swap 127995904
[ 1388.179828][T13660] total_swapcached 0
[ 1388.179834][T13660] total_pgpgin 948802
[ 1388.179840][T13660] total_pgpgout 872968
[ 1388.179846][T13660] total_pgfault 590288
[ 1388.179852][T13660] total_pgmajfault 28
[ 1388.179858][T13660] total_inactive_anon 303173632
[ 1388.179869][T13660] total_active_anon 7385088
[ 1388.179876][T13660] total_inactive_file 0
[ 1388.179882][T13660] total_active_file 0
[ 1388.179888][T13660] total_unevictable 0
[ 1388.179894][T13660] anon_cost 13106
[ 1388.179900][T13660] file_cost 3390
[ 1388.179906][T13660] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1746,pid=13659,uid=0
[ 1388.235884][T13660] Memory cgroup out of memory: Killed process 13659 (syz.2.1746) total-vm:102196kB, anon-rss:1216kB, file-rss:22668kB, shmem-rss:512kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1388.998919][T13663] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1747'.
[ 1389.220021][ T9302] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1389.281902][ T9302] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1389.302970][ T9302] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1389.341933][ T9302] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1389.352902][ T9302] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1389.501814][T13676] syz.2.1752 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1389.501847][T13676] CPU: 0 UID: 0 PID: 13676 Comm: syz.2.1752 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1389.501870][T13676] Tainted: [L]=SOFTLOCKUP
[ 1389.501876][T13676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1389.501886][T13676] Call Trace:
[ 1389.501893][T13676]  <TASK>
[ 1389.501902][T13676]  dump_stack_lvl+0xe8/0x150
[ 1389.501930][T13676]  dump_header+0xd3/0x4c0
[ 1389.501952][T13676]  oom_kill_process+0x3ab/0x970
[ 1389.501979][T13676]  out_of_memory+0x106c/0x1410
[ 1389.502012][T13676]  ? __pfx_out_of_memory+0x10/0x10
[ 1389.502032][T13676]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1389.502054][T13676]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1389.502077][T13676]  ? _mutex_lock_killable+0x152/0x1d0
[ 1389.502094][T13676]  ? try_charge_memcg+0xbca/0x1630
[ 1389.502120][T13676]  try_charge_memcg+0xc92/0x1630
[ 1389.502158][T13676]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1389.502185][T13676]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1389.502208][T13676]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1389.502225][T13676]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1389.502243][T13676]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1389.502263][T13676]  __mem_cgroup_charge+0xab/0x1e0
[ 1389.502288][T13676]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1389.502330][T13676]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1389.502352][T13676]  ? __lock_acquire+0x6b5/0x2cf0
[ 1389.502378][T13676]  shmem_fault+0x170/0x380
[ 1389.502406][T13676]  ? do_pte_missing+0x1404/0x2e60
[ 1389.502427][T13676]  __do_fault+0x138/0x390
[ 1389.502441][T13676]  ? do_pte_missing+0x1404/0x2e60
[ 1389.502463][T13676]  do_pte_missing+0x18d3/0x2e60
[ 1389.502485][T13676]  ? handle_mm_fault+0xe7/0x13c0
[ 1389.502542][T13676]  handle_mm_fault+0xd0a/0x13c0
[ 1389.502579][T13676]  ? handle_mm_fault+0xe7/0x13c0
[ 1389.502611][T13676]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1389.502643][T13676]  ? follow_page_pte+0xc25/0x13c0
[ 1389.502684][T13676]  ? __pfx_follow_page_pte+0x10/0x10
[ 1389.502724][T13676]  __get_user_pages+0x1679/0x2800
[ 1389.502808][T13676]  populate_vma_page_range+0x2be/0x3c0
[ 1389.502841][T13676]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1389.502871][T13676]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1389.502906][T13676]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1389.502933][T13676]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1389.502965][T13676]  __mm_populate+0x25f/0x390
[ 1389.502992][T13676]  ? __pfx___mm_populate+0x10/0x10
[ 1389.503016][T13676]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1389.503042][T13676]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1389.503066][T13676]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1389.503095][T13676]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1389.503121][T13676]  ? __se_sys_futex+0x3a8/0x450
[ 1389.503145][T13676]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1389.503170][T13676]  ? __pfx___se_sys_futex+0x10/0x10
[ 1389.503193][T13676]  ? rcu_is_watching+0x15/0xb0
[ 1389.503223][T13676]  ? __x64_sys_mmap+0x7f/0x140
[ 1389.503247][T13676]  do_syscall_64+0xe2/0xf80
[ 1389.503271][T13676]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1389.503290][T13676]  ? trace_irq_disable+0x37/0x100
[ 1389.503316][T13676]  ? clear_bhb_loop+0x60/0xb0
[ 1389.503338][T13676]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1389.503357][T13676] RIP: 0033:0x7fa6bed3aeb9
[ 1389.503376][T13676] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1389.503393][T13676] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1389.503413][T13676] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1389.503434][T13676] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000
[ 1389.503448][T13676] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 0000000000000000
[ 1389.503461][T13676] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1389.503473][T13676] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1389.503504][T13676]  </TASK>
[ 1389.503559][T13676] memory: usage 307200kB, limit 307200kB, failcnt 47515
[ 1389.503576][T13676] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1389.503593][T13676] kmem: usage 3836kB, limit 9007199254740988kB, failcnt 0
[ 1389.503610][T13676] Memory cgroup stats for /syz2:
[ 1389.503741][T13676] cache 310398976
[ 1389.503752][T13676] rss 229376
[ 1389.503760][T13676] shmem 310398976
[ 1389.503768][T13676] mapped_file 495616
[ 1389.503776][T13676] dirty 0
[ 1389.503784][T13676] writeback 0
[ 1389.503792][T13676] workingset_refault_anon 5
[ 1389.503801][T13676] workingset_refault_file 1996
[ 1389.503810][T13676] swap 127995904
[ 1389.503818][T13676] swapcached 0
[ 1389.503827][T13676] pgpgin 949038
[ 1389.503835][T13676] pgpgout 873201
[ 1389.503844][T13676] pgfault 590681
[ 1389.503853][T13676] pgmajfault 28
[ 1389.503861][T13676] inactive_anon 303198208
[ 1389.503870][T13676] active_anon 7385088
[ 1389.503879][T13676] inactive_file 0
[ 1389.503887][T13676] active_file 0
[ 1389.503896][T13676] unevictable 0
[ 1389.503904][T13676] hierarchical_memory_limit 314572800
[ 1389.503914][T13676] hierarchical_memsw_limit 9223372036854771712
[ 1389.503924][T13676] total_cache 310398976
[ 1389.503933][T13676] total_rss 229376
[ 1389.503942][T13676] total_shmem 310398976
[ 1389.503950][T13676] total_mapped_file 495616
[ 1389.503964][T13676] total_dirty 0
[ 1389.503973][T13676] total_writeback 0
[ 1389.503981][T13676] total_workingset_refault_anon 5
[ 1389.503991][T13676] total_workingset_refault_file 1996
[ 1389.504000][T13676] total_swap 127995904
[ 1389.504009][T13676] total_swapcached 0
[ 1389.504018][T13676] total_pgpgin 949038
[ 1389.504027][T13676] total_pgpgout 873201
[ 1389.504036][T13676] total_pgfault 590681
[ 1389.504048][T13676] total_pgmajfault 28
[ 1389.504058][T13676] total_inactive_anon 303198208
[ 1389.504067][T13676] total_active_anon 7385088
[ 1389.504076][T13676] total_inactive_file 0
[ 1389.504085][T13676] total_active_file 0
[ 1389.504094][T13676] total_unevictable 0
[ 1389.504103][T13676] anon_cost 13106
[ 1389.504111][T13676] file_cost 3390
[ 1389.504120][T13676] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1752,pid=13674,uid=0
[ 1389.504277][T13676] Memory cgroup out of memory: Killed process 13674 (syz.2.1752) total-vm:104244kB, anon-rss:1316kB, file-rss:22540kB, shmem-rss:384kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1389.623462][T13679] syz.2.1753 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1389.623506][T13679] CPU: 0 UID: 0 PID: 13679 Comm: syz.2.1753 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1389.623537][T13679] Tainted: [L]=SOFTLOCKUP
[ 1389.623545][T13679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1389.623558][T13679] Call Trace:
[ 1389.623567][T13679]  <TASK>
[ 1389.623576][T13679]  dump_stack_lvl+0xe8/0x150
[ 1389.623614][T13679]  dump_header+0xd3/0x4c0
[ 1389.623645][T13679]  oom_kill_process+0x3ab/0x970
[ 1389.623672][T13679]  out_of_memory+0x106c/0x1410
[ 1389.623704][T13679]  ? __pfx_out_of_memory+0x10/0x10
[ 1389.623724][T13679]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1389.623746][T13679]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1389.623769][T13679]  ? _mutex_lock_killable+0x152/0x1d0
[ 1389.623785][T13679]  ? try_charge_memcg+0xbca/0x1630
[ 1389.623811][T13679]  try_charge_memcg+0xc92/0x1630
[ 1389.623848][T13679]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1389.623875][T13679]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1389.623898][T13679]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1389.623915][T13679]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1389.623933][T13679]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1389.623953][T13679]  __mem_cgroup_charge+0xab/0x1e0
[ 1389.623977][T13679]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1389.624019][T13679]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1389.624041][T13679]  ? __lock_acquire+0x6b5/0x2cf0
[ 1389.624066][T13679]  shmem_fault+0x170/0x380
[ 1389.624094][T13679]  ? do_pte_missing+0x1404/0x2e60
[ 1389.624110][T13679]  __do_fault+0x138/0x390
[ 1389.624124][T13679]  ? do_pte_missing+0x1404/0x2e60
[ 1389.624140][T13679]  do_pte_missing+0x18d3/0x2e60
[ 1389.624162][T13679]  ? handle_mm_fault+0xe7/0x13c0
[ 1389.624188][T13679]  handle_mm_fault+0xd0a/0x13c0
[ 1389.624215][T13679]  ? handle_mm_fault+0xe7/0x13c0
[ 1389.624240][T13679]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1389.624264][T13679]  ? follow_page_pte+0xc25/0x13c0
[ 1389.624293][T13679]  ? __pfx_follow_page_pte+0x10/0x10
[ 1389.624323][T13679]  __get_user_pages+0x1679/0x2800
[ 1389.624368][T13679]  populate_vma_page_range+0x2be/0x3c0
[ 1389.624392][T13679]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1389.624418][T13679]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1389.624444][T13679]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1389.624467][T13679]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1389.624494][T13679]  __mm_populate+0x25f/0x390
[ 1389.624517][T13679]  ? __pfx___mm_populate+0x10/0x10
[ 1389.624555][T13679]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1389.624579][T13679]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1389.624601][T13679]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1389.624626][T13679]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1389.624647][T13679]  ? __se_sys_futex+0x3a8/0x450
[ 1389.624669][T13679]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1389.624693][T13679]  ? rcu_is_watching+0x15/0xb0
[ 1389.624719][T13679]  ? __x64_sys_mmap+0x7f/0x140
[ 1389.624740][T13679]  do_syscall_64+0xe2/0xf80
[ 1389.624762][T13679]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1389.624779][T13679]  ? trace_irq_disable+0x37/0x100
[ 1389.624801][T13679]  ? clear_bhb_loop+0x60/0xb0
[ 1389.624820][T13679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1389.624837][T13679] RIP: 0033:0x7fa6bed3aeb9
[ 1389.624853][T13679] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1389.624868][T13679] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1389.624885][T13679] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1389.624898][T13679] RDX: b635773f06ebbeef RSI: 0000000000b36000 RDI: 0000200000000000
[ 1389.624910][T13679] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 0000000000000000
[ 1389.624921][T13679] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1389.624932][T13679] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1389.624959][T13679]  </TASK>
[ 1389.624966][T13679] memory: usage 307200kB, limit 307200kB, failcnt 47582
[ 1389.624977][T13679] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1389.624989][T13679] kmem: usage 4016kB, limit 9007199254740988kB, failcnt 0
[ 1389.624999][T13679] Memory cgroup stats for /syz2:
[ 1389.625097][T13679] cache 310198272
[ 1389.625104][T13679] rss 229376
[ 1389.625111][T13679] shmem 310198272
[ 1389.625117][T13679] mapped_file 294912
[ 1389.625123][T13679] dirty 0
[ 1389.625129][T13679] writeback 0
[ 1389.625134][T13679] workingset_refault_anon 5
[ 1389.625141][T13679] workingset_refault_file 1996
[ 1389.625148][T13679] swap 127995904
[ 1389.625154][T13679] swapcached 0
[ 1389.625160][T13679] pgpgin 949148
[ 1389.625166][T13679] pgpgout 873360
[ 1389.625172][T13679] pgfault 590856
[ 1389.625178][T13679] pgmajfault 28
[ 1389.625184][T13679] inactive_anon 302989312
[ 1389.625191][T13679] active_anon 7385088
[ 1389.625197][T13679] inactive_file 0
[ 1389.625203][T13679] active_file 0
[ 1389.625209][T13679] unevictable 0
[ 1389.625215][T13679] hierarchical_memory_limit 314572800
[ 1389.625222][T13679] hierarchical_memsw_limit 9223372036854771712
[ 1389.625229][T13679] total_cache 310198272
[ 1389.625236][T13679] total_rss 229376
[ 1389.625242][T13679] total_shmem 310198272
[ 1389.625249][T13679] total_mapped_file 294912
[ 1389.625255][T13679] total_dirty 0
[ 1389.625261][T13679] total_writeback 0
[ 1389.625267][T13679] total_workingset_refault_anon 5
[ 1389.625274][T13679] total_workingset_refault_file 1996
[ 1389.625281][T13679] total_swap 127995904
[ 1389.625288][T13679] total_swapcached 0
[ 1389.625294][T13679] total_pgpgin 949148
[ 1389.625300][T13679] total_pgpgout 873360
[ 1389.625306][T13679] total_pgfault 590856
[ 1389.625312][T13679] total_pgmajfault 28
[ 1389.625319][T13679] total_inactive_anon 302989312
[ 1389.625326][T13679] total_active_anon 7385088
[ 1389.625332][T13679] total_inactive_file 0
[ 1389.625339][T13679] total_active_file 0
[ 1389.625345][T13679] total_unevictable 0
[ 1389.625351][T13679] anon_cost 13106
[ 1389.625357][T13679] file_cost 3390
[ 1389.625363][T13679] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1753,pid=13678,uid=0
[ 1389.625504][T13679] Memory cgroup out of memory: Killed process 13678 (syz.2.1753) total-vm:104244kB, anon-rss:1344kB, file-rss:22668kB, shmem-rss:256kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1389.825567][T13673] netlink: 'syz.6.1750': attribute type 1 has an invalid length.
[ 1390.182865][ T6533] usb 1-1: new high-speed USB device number 80 using dummy_hcd
[ 1390.514879][ T6533] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1390.514960][ T6533] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1390.515012][ T6533] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1390.515157][ T6533] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1391.021482][ T6533] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1391.021516][ T6533] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1391.021538][ T6533] usb 1-1: Product: syz
[ 1391.021554][ T6533] usb 1-1: Manufacturer: syz
[ 1391.062657][T13394] team0: Port device team_slave_0 added
[ 1391.067407][T13394] team0: Port device team_slave_1 added
[ 1391.096003][ T6533] cdc_wdm 1-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1391.140851][T13683] syz.2.1754 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1391.140884][T13683] CPU: 1 UID: 0 PID: 13683 Comm: syz.2.1754 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1391.140907][T13683] Tainted: [L]=SOFTLOCKUP
[ 1391.140914][T13683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1391.140925][T13683] Call Trace:
[ 1391.140932][T13683]  <TASK>
[ 1391.140941][T13683]  dump_stack_lvl+0xe8/0x150
[ 1391.140969][T13683]  dump_header+0xd3/0x4c0
[ 1391.140991][T13683]  oom_kill_process+0x3ab/0x970
[ 1391.141020][T13683]  out_of_memory+0x106c/0x1410
[ 1391.141058][T13683]  ? __pfx_out_of_memory+0x10/0x10
[ 1391.141080][T13683]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1391.141103][T13683]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1391.141126][T13683]  ? _mutex_lock_killable+0x152/0x1d0
[ 1391.141144][T13683]  ? try_charge_memcg+0xbca/0x1630
[ 1391.141171][T13683]  try_charge_memcg+0xc92/0x1630
[ 1391.141210][T13683]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1391.141238][T13683]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1391.141261][T13683]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1391.141279][T13683]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1391.141300][T13683]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1391.141321][T13683]  __mem_cgroup_charge+0xab/0x1e0
[ 1391.141347][T13683]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1391.141390][T13683]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1391.141412][T13683]  ? __lock_acquire+0x6b5/0x2cf0
[ 1391.141439][T13683]  shmem_fault+0x170/0x380
[ 1391.141467][T13683]  ? do_pte_missing+0x1404/0x2e60
[ 1391.141485][T13683]  __do_fault+0x138/0x390
[ 1391.141499][T13683]  ? do_pte_missing+0x1404/0x2e60
[ 1391.141516][T13683]  do_pte_missing+0x18d3/0x2e60
[ 1391.141538][T13683]  ? handle_mm_fault+0xe7/0x13c0
[ 1391.141565][T13683]  handle_mm_fault+0xd0a/0x13c0
[ 1391.141594][T13683]  ? handle_mm_fault+0xe7/0x13c0
[ 1391.141620][T13683]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1391.141644][T13683]  ? follow_page_pte+0xc25/0x13c0
[ 1391.141675][T13683]  ? __pfx_follow_page_pte+0x10/0x10
[ 1391.141706][T13683]  __get_user_pages+0x1679/0x2800
[ 1391.141753][T13683]  populate_vma_page_range+0x2be/0x3c0
[ 1391.141777][T13683]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1391.141798][T13683]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1391.141824][T13683]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1391.141848][T13683]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1391.141875][T13683]  __mm_populate+0x25f/0x390
[ 1391.141899][T13683]  ? __pfx___mm_populate+0x10/0x10
[ 1391.141920][T13683]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1391.141943][T13683]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1391.141964][T13683]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1391.141989][T13683]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1391.142010][T13683]  ? __se_sys_futex+0x3a8/0x450
[ 1391.142032][T13683]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1391.142061][T13683]  ? rcu_is_watching+0x15/0xb0
[ 1391.142087][T13683]  ? __x64_sys_mmap+0x7f/0x140
[ 1391.142109][T13683]  do_syscall_64+0xe2/0xf80
[ 1391.142131][T13683]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1391.142147][T13683]  ? trace_irq_disable+0x37/0x100
[ 1391.142169][T13683]  ? clear_bhb_loop+0x60/0xb0
[ 1391.142189][T13683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1391.142205][T13683] RIP: 0033:0x7fa6bed3aeb9
[ 1391.142221][T13683] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1391.142236][T13683] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1391.142253][T13683] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1391.142266][T13683] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000
[ 1391.142278][T13683] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 0000000000000000
[ 1391.142290][T13683] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1391.142300][T13683] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1391.142327][T13683]  </TASK>
[ 1391.142334][T13683] memory: usage 307200kB, limit 307200kB, failcnt 47677
[ 1391.142344][T13683] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1391.142355][T13683] kmem: usage 3836kB, limit 9007199254740988kB, failcnt 0
[ 1391.142366][T13683] Memory cgroup stats for /syz2:
[ 1391.142563][T13683] cache 310407168
[ 1391.142574][T13683] rss 229376
[ 1391.142582][T13683] shmem 310407168
[ 1391.142591][T13683] mapped_file 503808
[ 1391.142598][T13683] dirty 0
[ 1391.142607][T13683] writeback 0
[ 1391.142615][T13683] workingset_refault_anon 5
[ 1391.142624][T13683] workingset_refault_file 1996
[ 1391.142633][T13683] swap 127995904
[ 1391.142640][T13683] swapcached 0
[ 1391.142649][T13683] pgpgin 949305
[ 1391.142656][T13683] pgpgout 873466
[ 1391.142664][T13683] pgfault 591075
[ 1391.142673][T13683] pgmajfault 28
[ 1391.142681][T13683] inactive_anon 303132672
[ 1391.142690][T13683] active_anon 7385088
[ 1391.142698][T13683] inactive_file 0
[ 1391.142706][T13683] active_file 0
[ 1391.142715][T13683] unevictable 0
[ 1391.142723][T13683] hierarchical_memory_limit 314572800
[ 1391.142731][T13683] hierarchical_memsw_limit 9223372036854771712
[ 1391.142742][T13683] total_cache 310407168
[ 1391.142751][T13683] total_rss 229376
[ 1391.142759][T13683] total_shmem 310407168
[ 1391.142773][T13683] total_mapped_file 503808
[ 1391.142780][T13683] total_dirty 0
[ 1391.142786][T13683] total_writeback 0
[ 1391.142792][T13683] total_workingset_refault_anon 5
[ 1391.142799][T13683] total_workingset_refault_file 1996
[ 1391.142805][T13683] total_swap 127995904
[ 1391.142812][T13683] total_swapcached 0
[ 1391.142818][T13683] total_pgpgin 949305
[ 1391.142823][T13683] total_pgpgout 873466
[ 1391.142830][T13683] total_pgfault 591075
[ 1391.142836][T13683] total_pgmajfault 28
[ 1391.142842][T13683] total_inactive_anon 303132672
[ 1391.142849][T13683] total_active_anon 7385088
[ 1391.142855][T13683] total_inactive_file 0
[ 1391.142861][T13683] total_active_file 0
[ 1391.142867][T13683] total_unevictable 0
[ 1391.142873][T13683] anon_cost 13106
[ 1391.142879][T13683] file_cost 3390
[ 1391.142885][T13683] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1754,pid=13682,uid=0
[ 1391.143012][T13683] Memory cgroup out of memory: Killed process 13682 (syz.2.1754) total-vm:102196kB, anon-rss:1344kB, file-rss:22540kB, shmem-rss:384kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1391.432733][ T5809] Bluetooth: hci1: command tx timeout
[ 1391.949304][T13666] lo speed is unknown, defaulting to 1000
[ 1391.951215][T13666] lo speed is unknown, defaulting to 1000
[ 1392.384780][ T5905] usb 1-1: USB disconnect, device number 80
[ 1392.924112][ T1123] bridge_slave_0: left allmulticast mode
[ 1392.924139][ T1123] bridge_slave_0: left promiscuous mode
[ 1392.924366][ T1123] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1393.068824][ T1123] bridge_slave_1: left allmulticast mode
[ 1393.068849][ T1123] bridge_slave_1: left promiscuous mode
[ 1393.092668][ T1123] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1393.213667][ T1123] bridge_slave_0: left allmulticast mode
[ 1393.213693][ T1123] bridge_slave_0: left promiscuous mode
[ 1393.213887][ T1123] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1393.324588][ T1123] bridge_slave_1: left allmulticast mode
[ 1393.324613][ T1123] bridge_slave_1: left promiscuous mode
[ 1393.324781][ T1123] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1393.404422][ T1123] bridge_slave_0: left allmulticast mode
[ 1393.404456][ T1123] bridge_slave_0: left promiscuous mode
[ 1393.404733][ T1123] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1393.526892][ T5809] Bluetooth: hci1: command tx timeout
[ 1393.630125][ T9302] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1393.642448][ T9302] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1393.643969][ T9302] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1393.645530][ T9302] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1393.646358][ T9302] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1393.752188][T13691] syz.2.1756 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1393.752223][T13691] CPU: 0 UID: 0 PID: 13691 Comm: syz.2.1756 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1393.752246][T13691] Tainted: [L]=SOFTLOCKUP
[ 1393.752253][T13691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1393.752264][T13691] Call Trace:
[ 1393.752271][T13691]  <TASK>
[ 1393.752279][T13691]  dump_stack_lvl+0xe8/0x150
[ 1393.752308][T13691]  dump_header+0xd3/0x4c0
[ 1393.752331][T13691]  oom_kill_process+0x3ab/0x970
[ 1393.752358][T13691]  out_of_memory+0x106c/0x1410
[ 1393.752391][T13691]  ? __pfx_out_of_memory+0x10/0x10
[ 1393.752412][T13691]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1393.752435][T13691]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1393.752489][T13691]  ? _mutex_lock_killable+0x152/0x1d0
[ 1393.752513][T13691]  ? try_charge_memcg+0xbca/0x1630
[ 1393.752551][T13691]  try_charge_memcg+0xc92/0x1630
[ 1393.752604][T13691]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1393.752642][T13691]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1393.752673][T13691]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1393.752696][T13691]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1393.752723][T13691]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1393.752757][T13691]  __mem_cgroup_charge+0xab/0x1e0
[ 1393.752783][T13691]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1393.752830][T13691]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1393.752853][T13691]  ? __lock_acquire+0x6b5/0x2cf0
[ 1393.752880][T13691]  shmem_fault+0x170/0x380
[ 1393.752909][T13691]  ? do_pte_missing+0x1404/0x2e60
[ 1393.752926][T13691]  __do_fault+0x138/0x390
[ 1393.752941][T13691]  ? do_pte_missing+0x1404/0x2e60
[ 1393.752958][T13691]  do_pte_missing+0x18d3/0x2e60
[ 1393.752981][T13691]  ? handle_mm_fault+0xe7/0x13c0
[ 1393.753008][T13691]  handle_mm_fault+0xd0a/0x13c0
[ 1393.753036][T13691]  ? handle_mm_fault+0xe7/0x13c0
[ 1393.753069][T13691]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1393.753093][T13691]  ? follow_page_pte+0xc25/0x13c0
[ 1393.753124][T13691]  ? __pfx_follow_page_pte+0x10/0x10
[ 1393.753156][T13691]  __get_user_pages+0x1679/0x2800
[ 1393.753203][T13691]  populate_vma_page_range+0x2be/0x3c0
[ 1393.753228][T13691]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1393.753249][T13691]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1393.753275][T13691]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1393.753299][T13691]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1393.753326][T13691]  __mm_populate+0x25f/0x390
[ 1393.753350][T13691]  ? __pfx___mm_populate+0x10/0x10
[ 1393.753371][T13691]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1393.753394][T13691]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1393.753415][T13691]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1393.753440][T13691]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1393.753461][T13691]  ? __se_sys_futex+0x3a8/0x450
[ 1393.753484][T13691]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1393.753508][T13691]  ? rcu_is_watching+0x15/0xb0
[ 1393.753535][T13691]  ? __x64_sys_mmap+0x7f/0x140
[ 1393.753556][T13691]  do_syscall_64+0xe2/0xf80
[ 1393.753578][T13691]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1393.753595][T13691]  ? trace_irq_disable+0x37/0x100
[ 1393.753617][T13691]  ? clear_bhb_loop+0x60/0xb0
[ 1393.753636][T13691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1393.753653][T13691] RIP: 0033:0x7fa6bed3aeb9
[ 1393.753669][T13691] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1393.753684][T13691] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1393.753702][T13691] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1393.753715][T13691] RDX: b635773f06ebbeef RSI: 0000000000b36000 RDI: 0000200000000000
[ 1393.753727][T13691] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 0000000000000000
[ 1393.753738][T13691] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1393.753749][T13691] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1393.753776][T13691]  </TASK>
[ 1393.799806][T13691] memory: usage 307200kB, limit 307200kB, failcnt 47786
[ 1393.799827][T13691] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1393.799843][T13691] kmem: usage 3792kB, limit 9007199254740988kB, failcnt 0
[ 1393.799890][T13691] Memory cgroup stats for /syz2:
[ 1393.800038][T13691] cache 310345728
[ 1393.800080][T13691] rss 229376
[ 1393.800103][T13691] shmem 310345728
[ 1393.800125][T13691] mapped_file 442368
[ 1393.800153][T13691] dirty 0
[ 1393.800175][T13691] writeback 0
[ 1393.800198][T13691] workingset_refault_anon 5
[ 1393.800229][T13691] workingset_refault_file 1996
[ 1393.800251][T13691] swap 127995904
[ 1393.800274][T13691] swapcached 0
[ 1393.800303][T13691] pgpgin 949452
[ 1393.800325][T13691] pgpgout 873627
[ 1393.800347][T13691] pgfault 591288
[ 1393.800370][T13691] pgmajfault 28
[ 1393.800392][T13691] inactive_anon 303124480
[ 1393.800422][T13691] active_anon 7385088
[ 1393.800446][T13691] inactive_file 0
[ 1393.800476][T13691] active_file 0
[ 1393.800497][T13691] unevictable 0
[ 1393.800525][T13691] hierarchical_memory_limit 314572800
[ 1393.800549][T13691] hierarchical_memsw_limit 9223372036854771712
[ 1393.800572][T13691] total_cache 310345728
[ 1393.800601][T13691] total_rss 229376
[ 1393.800623][T13691] total_shmem 310345728
[ 1393.800646][T13691] total_mapped_file 442368
[ 1393.800668][T13691] total_dirty 0
[ 1393.800696][T13691] total_writeback 0
[ 1393.800718][T13691] total_workingset_refault_anon 5
[ 1393.800742][T13691] total_workingset_refault_file 1996
[ 1393.800772][T13691] total_swap 127995904
[ 1393.800799][T13691] total_swapcached 0
[ 1393.800819][T13691] total_pgpgin 949452
[ 1393.800829][T13691] total_pgpgout 873627
[ 1393.800838][T13691] total_pgfault 591288
[ 1393.800854][T13691] total_pgmajfault 28
[ 1393.800886][T13691] total_inactive_anon 303124480
[ 1393.800923][T13691] total_active_anon 7385088
[ 1393.800952][T13691] total_inactive_file 0
[ 1393.800988][T13691] total_active_file 0
[ 1393.801024][T13691] total_unevictable 0
[ 1393.801055][T13691] anon_cost 13106
[ 1393.801077][T13691] file_cost 3390
[ 1393.801120][T13691] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1756,pid=13689,uid=0
[ 1393.814989][T13691] Memory cgroup out of memory: Killed process 13689 (syz.2.1756) total-vm:102196kB, anon-rss:1344kB, file-rss:22796kB, shmem-rss:512kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1393.866319][T13696] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1758'.
[ 1394.804747][T13706] FAULT_INJECTION: forcing a failure.
[ 1394.804747][T13706] name failslab, interval 1, probability 0, space 0, times 0
[ 1394.804817][T13706] CPU: 1 UID: 0 PID: 13706 Comm: syz.0.1762 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1394.804847][T13706] Tainted: [L]=SOFTLOCKUP
[ 1394.804856][T13706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1394.804869][T13706] Call Trace:
[ 1394.804879][T13706]  <TASK>
[ 1394.804890][T13706]  dump_stack_lvl+0xe8/0x150
[ 1394.804928][T13706]  should_fail_ex+0x46b/0x600
[ 1394.804956][T13706]  ? sock_alloc_inode+0x28/0xc0
[ 1394.804985][T13706]  should_failslab+0xa8/0x100
[ 1394.805021][T13706]  ? sock_alloc_inode+0x28/0xc0
[ 1394.805048][T13706]  kmem_cache_alloc_lru_noprof+0x87/0x6a0
[ 1394.805088][T13706]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1394.805116][T13706]  sock_alloc_inode+0x28/0xc0
[ 1394.805144][T13706]  alloc_inode+0x6a/0x1b0
[ 1394.805179][T13706]  __sock_create+0x12d/0x9d0
[ 1394.805219][T13706]  __sys_socket+0xd6/0x1b0
[ 1394.805259][T13706]  __x64_sys_socket+0x7a/0x90
[ 1394.805291][T13706]  do_syscall_64+0xe2/0xf80
[ 1394.805322][T13706]  ? rcu_is_watching+0x15/0xb0
[ 1394.805351][T13706]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1394.805374][T13706]  ? clear_bhb_loop+0x60/0xb0
[ 1394.805401][T13706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1394.805423][T13706] RIP: 0033:0x7f6243d3aeb9
[ 1394.805443][T13706] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1394.805464][T13706] RSP: 002b:00007f6241f54028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1394.805489][T13706] RAX: ffffffffffffffda RBX: 00007f6243fb6180 RCX: 00007f6243d3aeb9
[ 1394.805506][T13706] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000002a
[ 1394.805520][T13706] RBP: 00007f6241f54090 R08: 0000000000000000 R09: 0000000000000000
[ 1394.805536][T13706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1394.805550][T13706] R13: 00007f6243fb6218 R14: 00007f6243fb6180 R15: 00007ffc6a73ed28
[ 1394.805586][T13706]  </TASK>
[ 1394.805635][T13706] net_ratelimit: 3319 callbacks suppressed
[ 1394.805675][T13706] socket: no more sockets
[ 1395.702656][ T9302] Bluetooth: hci2: command tx timeout
[ 1395.852787][ T9302] Bluetooth: hci1: command tx timeout
[ 1395.920310][ T1123] bond0 (unregistering): Released all slaves
[ 1397.754091][ T9302] Bluetooth: hci2: command tx timeout
[ 1398.129494][ T9302] Bluetooth: hci1: command tx timeout
[ 1398.793543][ T1123] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1398.983377][ T1123] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1399.075532][ T1123] bond0 (unregistering): Released all slaves
[ 1400.927644][ T9302] Bluetooth: hci2: command tx timeout
[ 1401.593934][ T1123] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1401.733524][ T1123] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1401.775720][ T1123] bond0 (unregistering): Released all slaves
[ 1401.903583][T13737] FAULT_INJECTION: forcing a failure.
[ 1401.903583][T13737] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1401.903621][T13737] CPU: 0 UID: 0 PID: 13737 Comm: syz.2.1771 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1401.903648][T13737] Tainted: [L]=SOFTLOCKUP
[ 1401.903655][T13737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1401.903667][T13737] Call Trace:
[ 1401.903674][T13737]  <TASK>
[ 1401.903683][T13737]  dump_stack_lvl+0xe8/0x150
[ 1401.903715][T13737]  should_fail_ex+0x46b/0x600
[ 1401.903739][T13737]  _copy_from_user+0x2d/0xb0
[ 1401.903765][T13737]  ___sys_sendmsg+0x1c6/0x360
[ 1401.903784][T13737]  ? __lock_acquire+0x6b5/0x2cf0
[ 1401.903809][T13737]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1401.903859][T13737]  ? __fget_files+0x2a/0x420
[ 1401.903875][T13737]  ? __fget_files+0x3a6/0x420
[ 1401.903900][T13737]  __x64_sys_sendmsg+0x1c3/0x2a0
[ 1401.903922][T13737]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1401.903950][T13737]  ? __pfx_ksys_write+0x10/0x10
[ 1401.903984][T13737]  do_syscall_64+0xe2/0xf80
[ 1401.904010][T13737]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1401.904028][T13737]  ? trace_irq_disable+0x37/0x100
[ 1401.904052][T13737]  ? clear_bhb_loop+0x60/0xb0
[ 1401.904075][T13737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1401.904094][T13737] RIP: 0033:0x7fa6bed3aeb9
[ 1401.904119][T13737] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1401.904136][T13737] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1401.904157][T13737] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1401.904171][T13737] RDX: 0000000024000840 RSI: 0000200000009b40 RDI: 0000000000000003
[ 1401.904184][T13737] RBP: 00007fa6bcf96090 R08: 0000000000000000 R09: 0000000000000000
[ 1401.904196][T13737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1401.904207][T13737] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1401.904236][T13737]  </TASK>
[ 1402.365794][T13694] lo speed is unknown, defaulting to 1000
[ 1402.390300][T13694] lo speed is unknown, defaulting to 1000
[ 1402.563295][T13741] syz.2.1774 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1402.563329][T13741] CPU: 0 UID: 0 PID: 13741 Comm: syz.2.1774 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1402.563352][T13741] Tainted: [L]=SOFTLOCKUP
[ 1402.563358][T13741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1402.563369][T13741] Call Trace:
[ 1402.563376][T13741]  <TASK>
[ 1402.563383][T13741]  dump_stack_lvl+0xe8/0x150
[ 1402.563411][T13741]  dump_header+0xd3/0x4c0
[ 1402.563433][T13741]  oom_kill_process+0x3ab/0x970
[ 1402.563460][T13741]  out_of_memory+0x106c/0x1410
[ 1402.563492][T13741]  ? __pfx_out_of_memory+0x10/0x10
[ 1402.563513][T13741]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1402.563543][T13741]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1402.563566][T13741]  ? _mutex_lock_killable+0x152/0x1d0
[ 1402.563583][T13741]  ? try_charge_memcg+0xbca/0x1630
[ 1402.563609][T13741]  try_charge_memcg+0xc92/0x1630
[ 1402.563647][T13741]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1402.563674][T13741]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1402.563696][T13741]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1402.563714][T13741]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1402.563733][T13741]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1402.563752][T13741]  __mem_cgroup_charge+0xab/0x1e0
[ 1402.563777][T13741]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1402.563819][T13741]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1402.563841][T13741]  ? __lock_acquire+0x6b5/0x2cf0
[ 1402.563868][T13741]  shmem_fault+0x170/0x380
[ 1402.563895][T13741]  ? do_pte_missing+0x1404/0x2e60
[ 1402.563912][T13741]  __do_fault+0x138/0x390
[ 1402.563926][T13741]  ? do_pte_missing+0x1404/0x2e60
[ 1402.563942][T13741]  do_pte_missing+0x18d3/0x2e60
[ 1402.563964][T13741]  ? handle_mm_fault+0xe7/0x13c0
[ 1402.564009][T13741]  handle_mm_fault+0xd0a/0x13c0
[ 1402.564048][T13741]  ? handle_mm_fault+0xe7/0x13c0
[ 1402.564074][T13741]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1402.564099][T13741]  ? follow_page_pte+0xc25/0x13c0
[ 1402.564130][T13741]  ? __pfx_follow_page_pte+0x10/0x10
[ 1402.564162][T13741]  __get_user_pages+0x1679/0x2800
[ 1402.564209][T13741]  populate_vma_page_range+0x2be/0x3c0
[ 1402.564234][T13741]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1402.564255][T13741]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1402.564282][T13741]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1402.564305][T13741]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1402.564334][T13741]  __mm_populate+0x25f/0x390
[ 1402.564357][T13741]  ? __pfx___mm_populate+0x10/0x10
[ 1402.564379][T13741]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1402.564403][T13741]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1402.564424][T13741]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1402.564450][T13741]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1402.564471][T13741]  ? __se_sys_futex+0x3a8/0x450
[ 1402.564494][T13741]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1402.564518][T13741]  ? rcu_is_watching+0x15/0xb0
[ 1402.564545][T13741]  ? __x64_sys_mmap+0x7f/0x140
[ 1402.564566][T13741]  do_syscall_64+0xe2/0xf80
[ 1402.564589][T13741]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1402.564605][T13741]  ? trace_irq_disable+0x37/0x100
[ 1402.564628][T13741]  ? clear_bhb_loop+0x60/0xb0
[ 1402.564648][T13741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1402.564664][T13741] RIP: 0033:0x7fa6bed3aeb9
[ 1402.564685][T13741] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1402.564701][T13741] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1402.564719][T13741] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1402.564733][T13741] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000
[ 1402.564745][T13741] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 0000000000000000
[ 1402.564757][T13741] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1402.564768][T13741] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1402.564795][T13741]  </TASK>
[ 1402.564802][T13741] memory: usage 307200kB, limit 307200kB, failcnt 47920
[ 1402.564813][T13741] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1402.564825][T13741] kmem: usage 3804kB, limit 9007199254740988kB, failcnt 0
[ 1402.564835][T13741] Memory cgroup stats for /syz2:
[ 1402.564932][T13741] cache 310423552
[ 1402.564939][T13741] rss 229376
[ 1402.564945][T13741] shmem 310423552
[ 1402.564951][T13741] mapped_file 520192
[ 1402.564957][T13741] dirty 0
[ 1402.564963][T13741] writeback 0
[ 1402.564969][T13741] workingset_refault_anon 5
[ 1402.564976][T13741] workingset_refault_file 1996
[ 1402.564982][T13741] swap 127995904
[ 1402.564988][T13741] swapcached 0
[ 1402.564994][T13741] pgpgin 949701
[ 1402.565000][T13741] pgpgout 873857
[ 1402.565006][T13741] pgfault 591697
[ 1402.565012][T13741] pgmajfault 28
[ 1402.565018][T13741] inactive_anon 303222784
[ 1402.565031][T13741] active_anon 7385088
[ 1402.565037][T13741] inactive_file 0
[ 1402.565043][T13741] active_file 0
[ 1402.565049][T13741] unevictable 0
[ 1402.565055][T13741] hierarchical_memory_limit 314572800
[ 1402.565062][T13741] hierarchical_memsw_limit 9223372036854771712
[ 1402.565069][T13741] total_cache 310423552
[ 1402.565076][T13741] total_rss 229376
[ 1402.565082][T13741] total_shmem 310423552
[ 1402.565088][T13741] total_mapped_file 520192
[ 1402.565094][T13741] total_dirty 0
[ 1402.565100][T13741] total_writeback 0
[ 1402.565106][T13741] total_workingset_refault_anon 5
[ 1402.565113][T13741] total_workingset_refault_file 1996
[ 1402.565120][T13741] total_swap 127995904
[ 1402.565126][T13741] total_swapcached 0
[ 1402.565133][T13741] total_pgpgin 949701
[ 1402.565139][T13741] total_pgpgout 873857
[ 1402.565145][T13741] total_pgfault 591697
[ 1402.565151][T13741] total_pgmajfault 28
[ 1402.565158][T13741] total_inactive_anon 303222784
[ 1402.565164][T13741] total_active_anon 7385088
[ 1402.565171][T13741] total_inactive_file 0
[ 1402.565177][T13741] total_active_file 0
[ 1402.565183][T13741] total_unevictable 0
[ 1402.565189][T13741] anon_cost 13106
[ 1402.565195][T13741] file_cost 3390
[ 1402.565201][T13741] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1774,pid=13740,uid=0
[ 1402.565451][T13741] Memory cgroup out of memory: Killed process 13740 (syz.2.1774) total-vm:102196kB, anon-rss:1344kB, file-rss:22600kB, shmem-rss:512kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1402.692711][ T5905] usb 7-1: new full-speed USB device number 31 using dummy_hcd
[ 1402.950619][ T5905] usb 7-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[ 1402.950654][ T5905] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1402.950677][ T5905] usb 7-1: Product: syz
[ 1402.950692][ T5905] usb 7-1: Manufacturer: syz
[ 1402.950708][ T5905] usb 7-1: SerialNumber: syz
[ 1402.959884][ T5905] usb 7-1: config 0 descriptor??
[ 1402.960160][ T9302] Bluetooth: hci2: command tx timeout
[ 1403.312001][ T5905] gspca_main: stk1135-2.14.0 probing 174f:6a31
[ 1403.524859][T13666] chnl_net:caif_netlink_parms(): no params data found
[ 1403.606731][T13756] syz.2.1778 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1403.606765][T13756] CPU: 0 UID: 0 PID: 13756 Comm: syz.2.1778 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1403.606789][T13756] Tainted: [L]=SOFTLOCKUP
[ 1403.606796][T13756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1403.606807][T13756] Call Trace:
[ 1403.606815][T13756]  <TASK>
[ 1403.606824][T13756]  dump_stack_lvl+0xe8/0x150
[ 1403.606854][T13756]  dump_header+0xd3/0x4c0
[ 1403.606877][T13756]  oom_kill_process+0x3ab/0x970
[ 1403.606905][T13756]  out_of_memory+0x106c/0x1410
[ 1403.606937][T13756]  ? __pfx_out_of_memory+0x10/0x10
[ 1403.606959][T13756]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1403.606982][T13756]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1403.607005][T13756]  ? _mutex_lock_killable+0x152/0x1d0
[ 1403.607023][T13756]  ? try_charge_memcg+0xbca/0x1630
[ 1403.607050][T13756]  try_charge_memcg+0xc92/0x1630
[ 1403.607088][T13756]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1403.607116][T13756]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1403.607139][T13756]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1403.607157][T13756]  ? get_mem_cgroup_from_mm+0x38/0x2d0
[ 1403.607176][T13756]  ? get_mem_cgroup_from_mm+0x1b2/0x2d0
[ 1403.607196][T13756]  __mem_cgroup_charge+0xab/0x1e0
[ 1403.607222][T13756]  shmem_get_folio_gfp+0x75f/0x1a80
[ 1403.607272][T13756]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1403.607295][T13756]  ? __lock_acquire+0x6b5/0x2cf0
[ 1403.607321][T13756]  shmem_fault+0x170/0x380
[ 1403.607350][T13756]  ? do_pte_missing+0x1404/0x2e60
[ 1403.607367][T13756]  __do_fault+0x138/0x390
[ 1403.607381][T13756]  ? do_pte_missing+0x1404/0x2e60
[ 1403.607398][T13756]  do_pte_missing+0x18d3/0x2e60
[ 1403.607420][T13756]  ? handle_mm_fault+0xe7/0x13c0
[ 1403.607447][T13756]  handle_mm_fault+0xd0a/0x13c0
[ 1403.607476][T13756]  ? handle_mm_fault+0xe7/0x13c0
[ 1403.607502][T13756]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1403.607526][T13756]  ? follow_page_pte+0xc25/0x13c0
[ 1403.607557][T13756]  ? __pfx_follow_page_pte+0x10/0x10
[ 1403.607588][T13756]  __get_user_pages+0x1679/0x2800
[ 1403.607634][T13756]  populate_vma_page_range+0x2be/0x3c0
[ 1403.607660][T13756]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1403.607683][T13756]  ? userfaultfd_unmap_complete+0x29e/0x320
[ 1403.607710][T13756]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1403.607734][T13756]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1403.607763][T13756]  __mm_populate+0x25f/0x390
[ 1403.607788][T13756]  ? __pfx___mm_populate+0x10/0x10
[ 1403.607810][T13756]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1403.607834][T13756]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1403.607856][T13756]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1403.607883][T13756]  vm_mmap_pgoff+0x3ad/0x4f0
[ 1403.607917][T13756]  ? __se_sys_futex+0x3a8/0x450
[ 1403.607940][T13756]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1403.607980][T13756]  ? __pfx___se_sys_futex+0x10/0x10
[ 1403.607999][T13756]  ? rcu_is_watching+0x15/0xb0
[ 1403.608026][T13756]  ? __x64_sys_mmap+0x7f/0x140
[ 1403.608046][T13756]  do_syscall_64+0xe2/0xf80
[ 1403.608069][T13756]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1403.608085][T13756]  ? trace_irq_disable+0x37/0x100
[ 1403.608107][T13756]  ? clear_bhb_loop+0x60/0xb0
[ 1403.608127][T13756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1403.608143][T13756] RIP: 0033:0x7fa6bed3aeb9
[ 1403.608159][T13756] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1403.608175][T13756] RSP: 002b:00007fa6bcf96028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1403.608193][T13756] RAX: ffffffffffffffda RBX: 00007fa6befb5fa0 RCX: 00007fa6bed3aeb9
[ 1403.608206][T13756] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000
[ 1403.608219][T13756] RBP: 00007fa6beda8c1f R08: ffffffffffffffff R09: 0000000000000000
[ 1403.608231][T13756] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[ 1403.608241][T13756] R13: 00007fa6befb6038 R14: 00007fa6befb5fa0 R15: 00007ffdb819cba8
[ 1403.608274][T13756]  </TASK>
[ 1403.608281][T13756] memory: usage 307200kB, limit 307200kB, failcnt 48014
[ 1403.608292][T13756] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1403.608303][T13756] kmem: usage 3840kB, limit 9007199254740988kB, failcnt 0
[ 1403.608313][T13756] Memory cgroup stats for /syz2:
[ 1403.608409][T13756] cache 310411264
[ 1403.608416][T13756] rss 229376
[ 1403.608422][T13756] shmem 310411264
[ 1403.608428][T13756] mapped_file 507904
[ 1403.608434][T13756] dirty 0
[ 1403.608439][T13756] writeback 0
[ 1403.608445][T13756] workingset_refault_anon 5
[ 1403.608451][T13756] workingset_refault_file 1996
[ 1403.608458][T13756] swap 127995904
[ 1403.608463][T13756] swapcached 0
[ 1403.608469][T13756] pgpgin 949900
[ 1403.608475][T13756] pgpgout 874060
[ 1403.608481][T13756] pgfault 592014
[ 1403.608486][T13756] pgmajfault 28
[ 1403.608492][T13756] inactive_anon 303243264
[ 1403.608498][T13756] active_anon 7385088
[ 1403.608504][T13756] inactive_file 0
[ 1403.608510][T13756] active_file 0
[ 1403.608516][T13756] unevictable 0
[ 1403.608522][T13756] hierarchical_memory_limit 314572800
[ 1403.608529][T13756] hierarchical_memsw_limit 9223372036854771712
[ 1403.608538][T13756] total_cache 310411264
[ 1403.608576][T13756] total_rss 229376
[ 1403.608585][T13756] total_shmem 310411264
[ 1403.608593][T13756] total_mapped_file 507904
[ 1403.608602][T13756] total_dirty 0
[ 1403.608610][T13756] total_writeback 0
[ 1403.608618][T13756] total_workingset_refault_anon 5
[ 1403.608629][T13756] total_workingset_refault_file 1996
[ 1403.608638][T13756] total_swap 127995904
[ 1403.608646][T13756] total_swapcached 0
[ 1403.608656][T13756] total_pgpgin 949900
[ 1403.608673][T13756] total_pgpgout 874060
[ 1403.608681][T13756] total_pgfault 592014
[ 1403.608690][T13756] total_pgmajfault 28
[ 1403.608698][T13756] total_inactive_anon 303243264
[ 1403.608707][T13756] total_active_anon 7385088
[ 1403.608715][T13756] total_inactive_file 0
[ 1403.608725][T13756] total_active_file 0
[ 1403.608734][T13756] total_unevictable 0
[ 1403.608744][T13756] anon_cost 13106
[ 1403.608756][T13756] file_cost 3390
[ 1403.608763][T13756] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1778,pid=13755,uid=0
[ 1403.608892][T13756] Memory cgroup out of memory: Killed process 13755 (syz.2.1778) total-vm:104244kB, anon-rss:1216kB, file-rss:22540kB, shmem-rss:384kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1403.813975][ T5905] gspca_stk1135: reg_w 0x2 err -110
[ 1403.815030][ T5905] gspca_stk1135: serial bus timeout: status=0x00
[ 1403.815046][ T5905] gspca_stk1135: Sensor write failed
[ 1403.815085][ T5905] gspca_stk1135: serial bus timeout: status=0x00
[ 1403.815098][ T5905] gspca_stk1135: Sensor write failed
[ 1403.815134][ T5905] gspca_stk1135: serial bus timeout: status=0x00
[ 1403.815145][ T5905] gspca_stk1135: Sensor read failed
[ 1403.815178][ T5905] gspca_stk1135: serial bus timeout: status=0x00
[ 1403.815189][ T5905] gspca_stk1135: Sensor read failed
[ 1403.815197][ T5905] gspca_stk1135: Detected sensor type unknown (0x0)
[ 1403.815245][ T5905] gspca_stk1135: serial bus timeout: status=0x00
[ 1403.815258][ T5905] gspca_stk1135: Sensor read failed
[ 1403.815294][ T5905] gspca_stk1135: serial bus timeout: status=0x00
[ 1403.815305][ T5905] gspca_stk1135: Sensor read failed
[ 1403.815341][ T5905] gspca_stk1135: serial bus timeout: status=0x00
[ 1403.815351][ T5905] gspca_stk1135: Sensor write failed
[ 1403.815384][ T5905] gspca_stk1135: serial bus timeout: status=0x00
[ 1403.815395][ T5905] gspca_stk1135: Sensor write failed
[ 1403.815488][ T5905] stk1135 7-1:0.0: probe with driver stk1135 failed with error -110
[ 1404.591206][ T1123] hsr_slave_0: left promiscuous mode
[ 1404.637633][ T1123] hsr_slave_1: left promiscuous mode
[ 1404.638663][ T1123] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1404.703290][ T1123] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1404.936324][T13773] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[ 1404.986142][ T1123] hsr_slave_0: left promiscuous mode
[ 1405.022779][ T1123] hsr_slave_1: left promiscuous mode
[ 1405.023675][ T1123] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1405.046071][ T1123] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1405.060825][T13770] syz.2.1782 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 1405.060868][T13770] CPU: 1 UID: 0 PID: 13770 Comm: syz.2.1782 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1405.060892][T13770] Tainted: [L]=SOFTLOCKUP
[ 1405.060898][T13770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1405.060909][T13770] Call Trace:
[ 1405.060916][T13770]  <TASK>
[ 1405.060923][T13770]  dump_stack_lvl+0xe8/0x150
[ 1405.060952][T13770]  dump_header+0xd3/0x4c0
[ 1405.060975][T13770]  oom_kill_process+0x3ab/0x970
[ 1405.061003][T13770]  out_of_memory+0x106c/0x1410
[ 1405.061035][T13770]  ? __pfx_out_of_memory+0x10/0x10
[ 1405.061056][T13770]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1405.061080][T13770]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1405.061106][T13770]  ? _mutex_lock_killable+0x152/0x1d0
[ 1405.061123][T13770]  ? try_charge_memcg+0xbca/0x1630
[ 1405.061150][T13770]  try_charge_memcg+0xc92/0x1630
[ 1405.061189][T13770]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1405.061225][T13770]  ? rcu_read_unlock+0x4a/0x60
[ 1405.061246][T13770]  obj_cgroup_charge_pages+0x1e/0xa0
[ 1405.061267][T13770]  obj_cgroup_charge_account+0x421/0x780
[ 1405.061294][T13770]  __memcg_slab_post_alloc_hook+0x5a4/0x930
[ 1405.061334][T13770]  __kmalloc_cache_noprof+0x436/0x6b0
[ 1405.061359][T13770]  ? kvm_check_memslot_overlap+0x343/0x3c0
[ 1405.061380][T13770]  ? kvm_set_memory_region+0x6ec/0xb90
[ 1405.061407][T13770]  kvm_set_memory_region+0x6ec/0xb90
[ 1405.061433][T13770]  ? mutex_lock_nested+0x152/0x1d0
[ 1405.061454][T13770]  kvm_vm_ioctl_set_memory_region+0x72/0xe0
[ 1405.061478][T13770]  kvm_vm_ioctl+0xa5b/0xd50
[ 1405.061501][T13770]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[ 1405.061546][T13770]  ? tomoyo_path_number_perm+0x219/0x630
[ 1405.061570][T13770]  ? tomoyo_path_number_perm+0x219/0x630
[ 1405.061596][T13770]  ? do_vfs_ioctl+0x117b/0x1540
[ 1405.061618][T13770]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1405.061641][T13770]  ? handle_mm_fault+0x12ef/0x13c0
[ 1405.061670][T13770]  ? handle_mm_fault+0xe7/0x13c0
[ 1405.061697][T13770]  ? __asan_memset+0x22/0x50
[ 1405.061716][T13770]  ? smack_file_ioctl+0x331/0x360
[ 1405.061739][T13770]  ? __pfx_smack_file_ioctl+0x10/0x10
[ 1405.061768][T13770]  ? __fget_files+0x2a/0x420
[ 1405.061782][T13770]  ? __fget_files+0x3a6/0x420
[ 1405.061795][T13770]  ? __fget_files+0x2a/0x420
[ 1405.061812][T13770]  ? bpf_lsm_file_ioctl+0x9/0x20
[ 1405.061828][T13770]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[ 1405.061855][T13770]  __se_sys_ioctl+0xff/0x170
[ 1405.061877][T13770]  do_syscall_64+0xe2/0xf80
[ 1405.061899][T13770]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1405.061916][T13770]  ? trace_irq_disable+0x37/0x100
[ 1405.061938][T13770]  ? clear_bhb_loop+0x60/0xb0
[ 1405.061958][T13770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1405.061974][T13770] RIP: 0033:0x7fa6bed3ab4b
[ 1405.061989][T13770] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[ 1405.062003][T13770] RSP: 002b:00007fa6bcf73450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1405.062026][T13770] RAX: ffffffffffffffda RBX: 0000200000453000 RCX: 00007fa6bed3ab4b
[ 1405.062039][T13770] RDX: 00007fa6bcf73bd0 RSI: 000000004020ae46 RDI: 0000000000000008
[ 1405.062050][T13770] RBP: 0000000000000008 R08: 0000000000000001 R09: 000000000000001a
[ 1405.062060][T13770] R10: 0000000000000008 R11: 0000000000000246 R12: 00000000fec00000
[ 1405.062070][T13770] R13: 00007fa6bcf73bd0 R14: 0000200000455000 R15: 0000000000000002
[ 1405.062100][T13770]  </TASK>
[ 1405.089207][T13770] memory: usage 307200kB, limit 307200kB, failcnt 48088
[ 1405.089273][T13770] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 1405.089317][T13770] kmem: usage 4300kB, limit 9007199254740988kB, failcnt 0
[ 1405.089353][T13770] Memory cgroup stats for /syz2:
[ 1405.090062][T13770] cache 309907456
[ 1405.090087][T13770] rss 262144
[ 1405.090113][T13770] shmem 309907456
[ 1405.094181][T13770] mapped_file 4096
[ 1405.094225][T13770] dirty 0
[ 1405.094247][T13770] writeback 0
[ 1405.094268][T13770] workingset_refault_anon 5
[ 1405.094298][T13770] workingset_refault_file 1996
[ 1405.094321][T13770] swap 127995904
[ 1405.094343][T13770] swapcached 0
[ 1405.094365][T13770] pgpgin 949977
[ 1405.094393][T13770] pgpgout 874252
[ 1405.094415][T13770] pgfault 592243
[ 1405.094436][T13770] pgmajfault 28
[ 1405.094459][T13770] inactive_anon 302776320
[ 1405.094481][T13770] active_anon 7389184
[ 1405.094503][T13770] inactive_file 0
[ 1405.094533][T13770] active_file 0
[ 1405.094570][T13770] unevictable 0
[ 1405.094600][T13770] hierarchical_memory_limit 314572800
[ 1405.094647][T13770] hierarchical_memsw_limit 9223372036854771712
[ 1405.094700][T13770] total_cache 309907456
[ 1405.094731][T13770] total_rss 262144
[ 1405.094753][T13770] total_shmem 309907456
[ 1405.094776][T13770] total_mapped_file 4096
[ 1405.094805][T13770] total_dirty 0
[ 1405.094834][T13770] total_writeback 0
[ 1405.094865][T13770] total_workingset_refault_anon 5
[ 1405.094889][T13770] total_workingset_refault_file 1996
[ 1405.094911][T13770] total_swap 127995904
[ 1405.094942][T13770] total_swapcached 0
[ 1405.094967][T13770] total_pgpgin 949977
[ 1405.094989][T13770] total_pgpgout 874252
[ 1405.095011][T13770] total_pgfault 592243
[ 1405.095033][T13770] total_pgmajfault 28
[ 1405.095065][T13770] total_inactive_anon 302776320
[ 1405.100342][T13770] total_active_anon 7389184
[ 1405.100383][T13770] total_inactive_file 0
[ 1405.100407][T13770] total_active_file 0
[ 1405.100437][T13770] total_unevictable 0
[ 1405.100459][T13770] anon_cost 13106
[ 1405.100482][T13770] file_cost 3390
[ 1405.100512][T13770] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1782,pid=13768,uid=0
[ 1405.423267][T13770] Memory cgroup out of memory: Killed process 13768 (syz.2.1782) total-vm:106700kB, anon-rss:1216kB, file-rss:27404kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
[ 1406.852621][ T5883] usb 7-1: USB disconnect, device number 31
[ 1407.880115][ T5905] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[ 1408.052684][ T5905] usb 7-1: Using ep0 maxpacket: 16
[ 1408.060653][ T5905] usb 7-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[ 1408.060687][ T5905] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1408.060708][ T5905] usb 7-1: Product: syz
[ 1408.060724][ T5905] usb 7-1: Manufacturer: syz
[ 1408.060738][ T5905] usb 7-1: SerialNumber: syz
[ 1408.122645][ T5905] r8152-cfgselector 7-1: Unknown version 0x0000
[ 1408.122672][ T5905] r8152-cfgselector 7-1: config 0 descriptor??
[ 1408.313965][ T1123] team0 (unregistering): Port device team_slave_1 removed
[ 1408.550438][ T1123] team0 (unregistering): Port device team_slave_0 removed
[ 1408.726645][ T5883] r8152-cfgselector 7-1: USB disconnect, device number 32
[ 1410.092580][   T39] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:48
[ 1410.092606][   T39] in_atomic(): 0, irqs_disabled(): 0, non_block: 1, pid: 39, name: oom_reaper
[ 1410.092625][   T39] preempt_count: 0, expected: 0
[ 1410.092645][   T39] RCU nest depth: 0, expected: 0
[ 1410.092662][   T39] 4 locks held by oom_reaper/39:
[ 1410.092671][   T39]  #0: ffff88802a245cf0 (&mm->mmap_lock){++++}-{4:4}, at: oom_reaper+0x2a8/0xa90
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1410.092724][   T39]  #1: ffffffff8dcfc700 (mmu_notifier_invalidate_range_start){+.+.}-{0:0}, at: __oom_reap_task_mm+0x2c7/0x570
[ 1410.092770][   T39]  #2: ffffffff8dcfc758 (srcu){.+.+}-{0:0}, at: __mmu_notifier_invalidate_range_start+0x30b/0x840
[ 1410.092814][   T39]  #3: ffff88805f604af8 (&kvm->mn_invalidate_lock){+.+.}-{3:3}, at: kvm_mmu_notifier_invalidate_range_start+0x1b7/0xbd0
[ 1410.092868][   T39] CPU: 0 UID: 0 PID: 39 Comm: oom_reaper Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1410.092890][   T39] Tainted: [L]=SOFTLOCKUP
[ 1410.092896][   T39] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1410.092907][   T39] Call Trace:
[ 1410.092914][   T39]  <TASK>
[ 1410.092929][   T39]  dump_stack_lvl+0xe8/0x150
[ 1410.092954][   T39]  __might_resched+0x329/0x480
[ 1410.092984][   T39]  rt_spin_lock+0xc2/0x400
[ 1410.093002][   T39]  ? __perf_event_task_sched_in+0xf2/0x1800
[ 1410.093018][   T39]  ? lock_acquire+0x106/0x330
[ 1410.093037][   T39]  ? __pfx_rt_spin_lock+0x10/0x10
[ 1410.093054][   T39]  ? __lock_acquire+0x6b5/0x2cf0
[ 1410.093078][   T39]  kvm_mmu_notifier_invalidate_range_start+0x1b7/0xbd0
[ 1410.093116][   T39]  ? __pfx_kvm_mmu_notifier_invalidate_range_start+0x10/0x10
[ 1410.093142][   T39]  ? __mmu_notifier_invalidate_range_start+0x30b/0x840
[ 1410.093170][   T39]  ? __oom_reap_task_mm+0x2c7/0x570
[ 1410.093198][   T39]  __mmu_notifier_invalidate_range_start+0x43f/0x840
[ 1410.093225][   T39]  ? __mmu_notifier_invalidate_range_start+0x30b/0x840
[ 1410.093247][   T39]  ? __oom_reap_task_mm+0x2c7/0x570
[ 1410.093272][   T39]  __oom_reap_task_mm+0x32a/0x570
[ 1410.093298][   T39]  ? __pfx___oom_reap_task_mm+0x10/0x10
[ 1410.093321][   T39]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1410.093353][   T39]  ? oom_reaper+0x2a8/0xa90
[ 1410.093381][   T39]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1410.093415][   T39]  ? __pfx_down_read_trylock+0x10/0x10
[ 1410.093438][   T39]  ? rt_spin_unlock+0x14f/0x200
[ 1410.093463][   T39]  oom_reaper+0x3d3/0xa90
[ 1410.093496][   T39]  ? __pfx_oom_reaper+0x10/0x10
[ 1410.093518][   T39]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1410.093537][   T39]  ? __kthread_parkme+0x7a/0x1f0
[ 1410.093555][   T39]  ? __kthread_parkme+0x19c/0x1f0
[ 1410.093615][   T39]  kthread+0x726/0x8b0
[ 1410.093654][   T39]  ? __pfx_oom_reaper+0x10/0x10
[ 1410.093683][   T39]  ? __pfx_kthread+0x10/0x10
[ 1410.093707][   T39]  ? rt_spin_unlock+0x14f/0x200
[ 1410.093741][   T39]  ? rt_spin_unlock+0x160/0x200
[ 1410.093757][   T39]  ? __pfx_kthread+0x10/0x10
[ 1410.093778][   T39]  ret_from_fork+0x51b/0xa40
[ 1410.093798][   T39]  ? __pfx_ret_from_fork+0x10/0x10
[ 1410.093814][   T39]  ? __switch_to+0xc82/0x1410
[ 1410.093842][   T39]  ? __pfx_kthread+0x10/0x10
[ 1410.093863][   T39]  ret_from_fork_asm+0x1a/0x30
[ 1410.093900][   T39]  </TASK>
[ 1410.096182][   T39] oom_reaper: reaped process 13768 (syz.2.1782), now anon-rss:0kB, file-rss:26312kB, shmem-rss:0kB
[ 1412.503456][ T1123] team0 (unregistering): Port device team_slave_1 removed
[ 1412.703270][ T1123] team0 (unregistering): Port device team_slave_0 removed
[ 1413.713663][T10057] bond2: (slave syz_tun): Releasing backup interface
[ 1413.883143][T13769] netlink: 'syz.2.1782': attribute type 1 has an invalid length.
[ 1418.406422][ T1123] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1418.728550][ T1123] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1418.945090][ T1123] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1419.188002][ T1123] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1419.657234][ T1123] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1419.949476][ T1123] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0