last executing test programs:

8.076039778s ago: executing program 3 (id=529):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x890)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x20000820}, 0x40000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x0, 0xffffeffe, 0x2)
fanotify_init$auto(0x602, 0x1)
pipe$auto(0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x5, 0x7}, 0x8}, 0xffffffff, 0xb00)
syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)

6.615532599s ago: executing program 3 (id=532):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x14)
socket(0x11, 0x80003, 0x300)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec2\x00', 0x40, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x2, 0x2, 0x0)
socket(0x10, 0x2, 0x0)
socket(0xa, 0x2, 0x73)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
memfd_create$auto(0x0, 0x6)
r0 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4010}, 0x51)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x2}, 0x3, 0x0)

6.151960073s ago: executing program 3 (id=535):
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
set_mempolicy$auto(0x2, 0x0, 0x4)
mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000)
timer_create$auto(0x2, 0x0, 0x0)
timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r1, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0)
open(0x0, 0x22240, 0x154)

5.695642415s ago: executing program 0 (id=537):
r0 = socket(0x1d, 0x2, 0x6)
socket(0x2, 0x1, 0x0)
bind$auto(r0, &(0x7f0000000040)=@can={0x1d, 0x0, 0xfd}, 0x6a)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media1\x00', 0x22001, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x68102, 0x0)
socket(0x11, 0xa, 0x300)
socket(0x2b, 0x1, 0x0)
pread64$auto(r1, 0x0, 0x3, 0xe9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x9, 0x2, 0x1, 0x5, 0x4, 0x15f4da0e, 0x8, 0x9, 0x100000000000000c, 0x8, 0x1, 0xfca, 0x9, 0x8, 0x4000000000000d]}, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
select$auto(0xa, 0x0, 0x0, 0x0, 0x0)

4.811717982s ago: executing program 1 (id=542):
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/members\x00', 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r0 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, 0x0, 0x42000, 0x0)
read$auto_proc_pid_smaps_operations_internal(r0, 0x0, 0x0)
open(0x0, 0x260242, 0x12)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x80000, 0x0)
ioctl$auto_VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000480))
prctl$auto_PR_SET_THP_DISABLE(0x29, 0x9, 0x2, 0x0, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000100)={0x0, 0x7}, 0x5, 0x8, 0x1000)

4.592529374s ago: executing program 2 (id=543):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/sched_rt_period_us\x00', 0x101202, 0x0)
sendfile$auto(r0, r0, 0x0, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x309801, 0x0)
getpid()
statmount$auto(0x0, 0x0, 0x6, 0x1000000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/net/rose12/operstate\x00', 0x80000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000002140)=""/64, 0x40)
faccessat2$auto(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x2, 0x7ff)

4.584161668s ago: executing program 0 (id=544):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/memory15/online\x00', 0xa001, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nlctrl(0x0, r0)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x40004)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400006, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
socketpair$auto(0xfffffffe, 0x1, 0x8000000000000000, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
write$auto(0xffffffffffffffff, 0x0, 0x98c7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0)
ioctl$auto_TIOCSTI2(r1, 0x5412, 0x0)

4.114977146s ago: executing program 1 (id=545):
r0 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/mountinfo\x00', 0x40002, 0x0)
sendfile$auto(r0, r0, &(0x7f0000000040)=0x8010, 0x788b)
write$auto(r0, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0x5)
unshare$auto(0x40000080)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, 0x0, 0xc800)
mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
write$auto(r1, 0x0, 0x800000006)
ioctl$auto_SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000180)="dd06d1574c0a1719baadf81f683297e8af14b4dad2728892c747c5e01a1b7165a54b36471475e5b56eef9a6bd918ceb4aef4e8bcdd0f2bd3802806ade24a889ac8e25bd16ed461f77747f93e2c4e9d6014a2c6208ecf3c9961f5be")
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
openat$auto_dma_buf_debug_fops_(0xffffffffffffff9c, 0x0, 0x181000, 0x0)
mmap$auto(0x0, 0x10001, 0x3f8d, 0xeb1, 0x401, 0x8000)
capset$auto(0x0, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
write$auto(r2, 0x0, 0xfffffdef)

3.263307911s ago: executing program 2 (id=546):
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408)
r1 = socket(0x10, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(r2, &(0x7f00000030c0)={0x0, 0x0, &(0x7f0000003080)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYBLOB="0456ed"], 0x14}, 0x1, 0x0, 0x0, 0x4854}, 0x40)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), r2)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r2)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
write$auto(r0, 0x0, 0xfffffdf1)
utimes$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x3})
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x169000, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mprotect$auto(0x0, 0x8000000000000001, 0x8)

2.603331119s ago: executing program 3 (id=547):
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/media11\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x2, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, 0x0, 0xfd}, 0x6a)
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffa, 0x8000000008011, r0, 0x8000)
madvise$auto(0x0, 0x400053, 0x9)
r1 = epoll_create$auto(0x8800001)
write$auto(0xffffffffffffffff, &(0x7f0000000280)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
epoll_ctl$auto(r1, 0x1, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
close_range$auto(0x2, 0x8, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

2.417774267s ago: executing program 0 (id=548):
process_vm_readv$auto(0x0, 0x0, 0x800000001, &(0x7f0000000280)={&(0x7f0000000180)="3bb52db856f2ba82c1461bc3adb87f16f1af6bc87fe3d0661749cbfd96367a9d17814b162df12acbf18ca85216b13a5aa9e1", 0x1ffffffff}, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, &(0x7f0000000440)=0x77b)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/nbd7/power/autosuspend_delay_ms\x00', 0x22902, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x80, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = socketcall$auto(0xa, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
open(&(0x7f00000001c0)='./file0\x00', 0x54d0c2, 0x1fd)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000002c0)={{0x0, 0x9, 0x0, 0xfffffffffffffff7, 0x0, 0x5, 0x24f}, 0x800}, 0x8, 0xff)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4400ae8f, &(0x7f00000000c0)={0xdd})
ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0)

2.248871576s ago: executing program 2 (id=549):
socket(0x2, 0x2, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x68102, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x400000000000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x14, 0x401, 0x300000000000)
sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, 0x0, 0x48880)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x10001)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x2d41, 0x0)
writev$auto(r1, &(0x7f0000000240)={0x0, 0x7}, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
execveat$auto(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
mkdir$auto(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd)
sysfs$auto(0x2, 0x24, 0x0)

2.137678174s ago: executing program 1 (id=550):
socket(0xa, 0x1, 0x84)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC1\x00', 0x42000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x11, 0xa, 0x9)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/controlC0\x00', 0x880, 0x0)
r1 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x8800, 0x0)
socket(0xa, 0x2, 0x0)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001280)='/dev/sequencer2\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=r1, @ANYRES8=r0, @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x2000c082)
write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef)

1.731599442s ago: executing program 0 (id=551):
mmap$auto(0x0, 0x4, 0xde, 0x9b72, 0xffffffffffffffff, 0xa000)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8a241, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
pread64$auto(0xffffffffffffffff, 0x0, 0x200000000006, 0x7)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x3, 0x6)
r1 = socket(0x2, 0x1, 0x0)
bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x4e24, @loopback}, 0x6a)
write$auto(r0, 0x0, 0xcb)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800008}, 0x5, 0x20000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
write$auto(0x3, 0x0, 0x100085)

1.626582216s ago: executing program 2 (id=552):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
unshare$auto(0x40000080)
setregid$auto(0x81, 0x0)
clock_nanosleep$auto(0x2, 0x6, &(0x7f0000000840)={0x0, 0xc025}, 0x0)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x81, 0x8000000000001, 0xa}, 0xb, 0x0)
landlock_restrict_self$auto(r0, 0x8)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, 0x0, 0x6, 0x0)
capset$auto(0x0, &(0x7f0000000840)={0xb, 0x0, 0xffffffff})
waitid$auto(0x9, 0xffffffffffffffff, 0x0, 0x7, &(0x7f00000022c0)={{0xd126, 0x8}, {0x6, 0x8}, 0x848e, 0x3, 0x10, 0x9, 0x4, 0x8000, 0xdcba, 0x7, 0x2, 0x7, 0x88, 0xfffffffffffffff8, 0xe5, 0x3})
ioctl$auto_TUNSETVNETBE2(0xffffffffffffffff, 0x400454de, 0x0)
write$auto(0x1, 0x0, 0x80000000)

1.55917161s ago: executing program 1 (id=553):
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x109100, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0)
fallocate$auto(0xffffffffffffffff, 0x0, 0x10, 0xccbd5d)
fallocate$auto(0x8000000000000003, 0x3, 0xf, 0x200000004)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0xb, 0x40000d, 0x10400, 0x6, 0x4, 0x3, 0xffffffffffffffff, [], {0x7, 0x200004, 0x7, 0x2a3, 0x100, 0x3, 0x40100101, 0x16}, {0xf8, 0x4, 0x9, 0x1, 0x48003, 0x40, 0xcc, 0x8, 0x100000000}})
pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x5, 0x0, 0x5, 0x8001, 0xa, 0xac, 0x4, 0x86e2, 0x100000003, 0x7fffffffffffffff, 0x4, 0x1000, 0x2, 0x8, 0x3ff]}, 0x0, 0x0, 0x0, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz7\x00', 0x48f41, 0x0)
ioctl$auto(0x3, 0x402c542d, r0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x0)
close_range$auto(0x2, 0xa, 0x0)
sendmsg$auto_OVS_VPORT_CMD_GET(0xffffffffffffffff, 0x0, 0x20000c50)
ioctl$auto_CEC_TRANSMIT(0xffffffffffffffff, 0xc0386105, &(0x7f0000000000)={0x5, 0x6, 0x7, 0x1, 0x2, 0x7fffffff, 'f\x00\b\x00', 0xb, 0x5, 0x9, 0x5, 0x2, 0x4, 0x2})

1.257846018s ago: executing program 1 (id=554):
unlink$auto(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00')
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xd2, 0x0, 0x567)
fanotify_init$auto(0x65, 0x2)
pipe$auto(0x0)
dup2$auto(0x5, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9)
write$auto(0x6, 0x0, 0x100000001)
setsockopt$auto(0x3, 0x1, 0x2a, 0x0, 0x9)
readv$auto(0x3, 0x0, 0x1)
unshare$auto(0xfff)

1.133734892s ago: executing program 0 (id=555):
unshare$auto(0x8000000)
semget$auto(0x2000, 0x2e4a, 0x40)
semtimedop$auto(0xfffffffe, &(0x7f00000001c0)={0x8, 0x6, 0x36ec}, 0x1f4, 0x0)
mkdir$auto(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd)
bpf$auto_BPF_OBJ_GET_INFO_BY_FD(0xf, &(0x7f0000000200)=@enable_stats, 0xfffffffe)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cec8\x00', 0x0, 0x0)
ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, 0x0)
ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtdblock0\x00', 0x14fe02, 0x0)
mmap$auto(0x0, 0x9, 0x7, 0x8000000008011, 0x3, 0x8000)
mprotect$auto(0x200000000000, 0x806122, 0xc)
sched_setscheduler$auto(0x0, 0x5, &(0x7f0000000040)={0x2})
ioprio_set$auto(0x2, 0x800000000, 0x8)
unshare$auto(0x40000080)
settimeofday$auto(0x0, &(0x7f0000000100)={0x82, 0x4})

1.0200809s ago: executing program 3 (id=556):
mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8041, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
rt_sigsuspend$auto(0x0, 0x8)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000980), 0xffffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x2, 0x80002, 0x73)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @local}, 0x54)
sendmmsg$auto(r0, 0x0, 0x9a6, 0xe000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
fstat$auto(0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)

523.809206ms ago: executing program 2 (id=557):
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
r0 = socket(0xa, 0x2, 0x0)
socket(0xa, 0x801, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x420009, 0xe2, 0xeb1, 0x401, 0x8000)
socket(0x2b, 0x1, 0x1)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x18, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x240202, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r0)
ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0)

251.999056ms ago: executing program 2 (id=558):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r1=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1}, 0x6a)
sendto$auto(r0, 0x0, 0x6fffff9, 0xfffffff8, &(0x7f0000000440)=@can, 0x36)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
r2 = socket(0x1d, 0x2, 0x7)
r3 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r4=>0x0})
bind$auto(r2, &(0x7f0000000000)=@can={0x1d, <r5=>r4}, 0x6a)
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r5}, 0x18)
write$auto(0x3, 0x0, 0xffd8)

238.125946ms ago: executing program 1 (id=559):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r0 = socket(0xa, 0x3, 0x3a)
close$auto(r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x400000000000004}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x9}]}, 0x30}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(r0, 0x8, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
r3 = open(0x0, 0x0, 0x408)
getdents$auto(r3, 0x0, 0x400018)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
preadv2$auto(r1, &(0x7f0000000080)={0x0, 0x7ff}, 0x6, 0xffffffffffffffff, 0xfffffffffffffffd, 0x5)

103.35281ms ago: executing program 0 (id=560):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x11, 0xa, 0x300)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/memory.force_empty\x00', 0xa001, 0x0)
write$auto(r0, &(0x7f0000000000)='3\xc7\xff\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00'/101, 0x9)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/thread-self/net/stat/rt_cache\x00', 0x0, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/250, 0xfa)
mmap$auto(0x5, 0x2020009, 0xb, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)

0s ago: executing program 3 (id=561):
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91\vI\x1eRN8\x99\x88\xca\xd9\xec\x1epJ\"ds\x1cJr\xde:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\v\xea\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd3\x81Y\xa3Fp\v\xdc\xe2\xc3\xc3\xdbS\xdc', 0xfdef, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x840, 0x0)
r0 = socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(r0, 0x0, 0x9a6, 0x7000000)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x109100, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.15' (ED25519) to the list of known hosts.
[   84.315945][ T5609] cgroup: Unknown subsys name 'net'
[   84.411342][ T5609] cgroup: Unknown subsys name 'cpuset'
[   84.420515][ T5609] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   86.223853][ T5609] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   88.430931][ T5621] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   88.442573][ T5621] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   88.452196][ T5621] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   88.461310][ T5621] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   88.489021][ T5621] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   88.575089][ T4941] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   88.585183][ T5630] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   88.594235][ T5630] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   88.604404][ T5630] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   88.617999][ T5630] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   88.630568][ T5630] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   88.640479][ T5630] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   88.654889][ T5630] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   88.664597][ T5634] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   88.674456][ T5621] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   88.685373][ T5621] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   88.693793][ T5634] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   88.708272][ T5634] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   88.718311][ T5621] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   88.727758][ T5621] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   90.326901][ T5620] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.334360][ T5620] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.342313][ T5620] bridge_slave_0: entered allmulticast mode
[   90.349716][ T5620] bridge_slave_0: entered promiscuous mode
[   90.366454][ T5625] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.374611][ T5625] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.382983][ T5625] bridge_slave_0: entered allmulticast mode
[   90.390455][ T5625] bridge_slave_0: entered promiscuous mode
[   90.409258][ T5620] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.416485][ T5620] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.424006][ T5620] bridge_slave_1: entered allmulticast mode
[   90.431586][ T5620] bridge_slave_1: entered promiscuous mode
[   90.449831][ T5625] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.457277][ T5625] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.465188][ T5625] bridge_slave_1: entered allmulticast mode
[   90.473608][ T5625] bridge_slave_1: entered promiscuous mode
[   90.564323][ T5620] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.584935][ T5625] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.598592][   T51] Bluetooth: hci0: command tx timeout
[   90.608626][ T5620] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.626226][ T5625] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.667292][   T51] Bluetooth: hci1: command tx timeout
[   90.722681][ T5620] team0: Port device team_slave_0 added
[   90.741682][ T5625] team0: Port device team_slave_0 added
[   90.747534][   T51] Bluetooth: hci2: command tx timeout
[   90.749105][ T5627] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.760595][ T5627] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.768938][ T5627] bridge_slave_0: entered allmulticast mode
[   90.776120][ T5627] bridge_slave_0: entered promiscuous mode
[   90.785789][ T5620] team0: Port device team_slave_1 added
[   90.791751][ T5632] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.799840][ T5632] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.807388][ T5632] bridge_slave_0: entered allmulticast mode
[   90.814710][ T5632] bridge_slave_0: entered promiscuous mode
[   90.825048][ T5625] team0: Port device team_slave_1 added
[   90.827021][   T51] Bluetooth: hci3: command tx timeout
[   90.854785][ T5627] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.862377][ T5627] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.871086][ T5627] bridge_slave_1: entered allmulticast mode
[   90.880394][ T5627] bridge_slave_1: entered promiscuous mode
[   90.898366][ T5632] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.905605][ T5632] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.913601][ T5632] bridge_slave_1: entered allmulticast mode
[   90.921215][ T5632] bridge_slave_1: entered promiscuous mode
[   90.933599][ T5625] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.940886][ T5625] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   90.967579][ T5625] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.012656][ T5625] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.019857][ T5625] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.046354][ T5625] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.068631][ T5620] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.075751][ T5620] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.102098][ T5620] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.136028][ T5627] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.146377][ T5620] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.153658][ T5620] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.179928][ T5620] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.194060][ T5632] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.207989][ T5632] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.235825][ T5627] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.304529][ T5632] team0: Port device team_slave_0 added
[   91.313398][ T5632] team0: Port device team_slave_1 added
[   91.321308][ T5627] team0: Port device team_slave_0 added
[   91.362154][ T5627] team0: Port device team_slave_1 added
[   91.374647][ T5625] hsr_slave_0: entered promiscuous mode
[   91.381909][ T5625] hsr_slave_1: entered promiscuous mode
[   91.441441][ T5620] hsr_slave_0: entered promiscuous mode
[   91.448128][ T5620] hsr_slave_1: entered promiscuous mode
[   91.454265][ T5620] debugfs: 'hsr0' already exists in 'hsr'
[   91.460331][ T5620] Cannot create hsr debugfs directory
[   91.466694][ T5632] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.475942][ T5632] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.502516][ T5632] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.528714][ T5627] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.535811][ T5627] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.561905][ T5627] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.574723][ T5627] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.581976][ T5627] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.608211][ T5627] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.620054][ T5632] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.628188][ T5632] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.655442][ T5632] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.836747][ T5627] hsr_slave_0: entered promiscuous mode
[   91.844296][ T5627] hsr_slave_1: entered promiscuous mode
[   91.851191][ T5627] debugfs: 'hsr0' already exists in 'hsr'
[   91.857141][ T5627] Cannot create hsr debugfs directory
[   91.877259][ T5632] hsr_slave_0: entered promiscuous mode
[   91.883754][ T5632] hsr_slave_1: entered promiscuous mode
[   91.890561][ T5632] debugfs: 'hsr0' already exists in 'hsr'
[   91.896400][ T5632] Cannot create hsr debugfs directory
[   92.275518][ T5625] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   92.290394][ T5625] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   92.298814][ T5625] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   92.309717][ T5625] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   92.332421][ T5625] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   92.342246][ T5625] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   92.352622][ T5625] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   92.360866][  T808] cfg80211: failed to load regulatory.db
[   92.371923][ T5625] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   92.474412][ T5620] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   92.484950][ T5620] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   92.494681][ T5620] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   92.505773][ T5620] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   92.514093][ T5620] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   92.525557][ T5620] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   92.541733][ T5620] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   92.553554][ T5620] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   92.649696][ T5627] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   92.661560][ T5627] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   92.669747][   T51] Bluetooth: hci0: command tx timeout
[   92.680897][ T5627] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   92.699076][ T5627] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   92.724327][ T5627] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   92.734232][ T5627] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   92.748966][   T51] Bluetooth: hci1: command tx timeout
[   92.761125][ T5627] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   92.772413][ T5627] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   92.830103][ T5625] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.837632][   T51] Bluetooth: hci2: command tx timeout
[   92.895757][ T5632] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   92.907043][   T51] Bluetooth: hci3: command tx timeout
[   92.908890][ T5632] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[   92.926164][ T5632] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   92.936378][ T5632] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[   92.945009][ T5632] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   92.955477][ T5632] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[   92.974102][ T5632] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   92.984620][ T5632] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[   92.998732][ T5625] 8021q: adding VLAN 0 to HW filter on device team0
[   93.055364][ T1057] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.063129][ T1057] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.092877][ T1057] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.100058][ T1057] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.256574][ T5620] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.272654][ T5627] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.353067][ T5620] 8021q: adding VLAN 0 to HW filter on device team0
[   93.383675][ T5627] 8021q: adding VLAN 0 to HW filter on device team0
[   93.414407][   T34] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.421774][   T34] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.446613][   T34] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.454320][   T34] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.465975][   T34] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.473242][   T34] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.501367][ T5632] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.514152][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.521499][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.622349][ T5632] 8021q: adding VLAN 0 to HW filter on device team0
[   93.676475][ T1177] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.683701][ T1177] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.731672][ T1177] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.738945][ T1177] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.435302][ T5625] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.595986][ T5625] veth0_vlan: entered promiscuous mode
[   94.652514][ T5625] veth1_vlan: entered promiscuous mode
[   94.749989][   T51] Bluetooth: hci0: command tx timeout
[   94.813448][ T5625] veth0_macvtap: entered promiscuous mode
[   94.829120][   T51] Bluetooth: hci1: command tx timeout
[   94.855964][ T5625] veth1_macvtap: entered promiscuous mode
[   94.883873][ T5625] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.908874][   T51] Bluetooth: hci2: command tx timeout
[   94.929322][ T5625] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.971877][   T55] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.981949][   T55] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.991418][   T51] Bluetooth: hci3: command tx timeout
[   95.002780][   T55] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.016742][   T55] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.057916][ T5627] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.163028][ T5632] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.189227][ T5620] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.316184][ T1057] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.326080][ T5627] veth0_vlan: entered promiscuous mode
[   95.337826][ T1057] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.411562][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.416071][ T5632] veth0_vlan: entered promiscuous mode
[   95.425479][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.445568][ T5627] veth1_vlan: entered promiscuous mode
[   95.485691][ T5620] veth0_vlan: entered promiscuous mode
[   95.513785][ T5632] veth1_vlan: entered promiscuous mode
[   95.561631][ T5625] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   95.578006][ T5620] veth1_vlan: entered promiscuous mode
[   95.591824][ T5627] veth0_macvtap: entered promiscuous mode
[   95.620840][ T5627] veth1_macvtap: entered promiscuous mode
[   95.699763][ T5632] veth0_macvtap: entered promiscuous mode
[   95.734821][ T5632] veth1_macvtap: entered promiscuous mode
[   95.745263][ T5620] veth0_macvtap: entered promiscuous mode
[   95.760277][ T5627] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.782074][ T5620] veth1_macvtap: entered promiscuous mode
[   95.797759][ T5627] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.845144][  T266] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.857903][  T266] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.870741][  T266] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.888298][  T266] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.908107][ T5620] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.929766][ T5632] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.945582][ T5632] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.955075][ T5620] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.988270][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.997934][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.032685][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.041999][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.066374][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.077971][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.103961][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.119882][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.300437][   T55] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.311058][   T55] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.403792][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.412903][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.474754][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.492740][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.541053][  T266] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.562924][  T266] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.621613][   T55] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.629964][   T55] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.755976][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.793549][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.828301][   T51] Bluetooth: hci0: command tx timeout
[   96.910395][   T51] Bluetooth: hci1: command tx timeout
[   96.987420][   T51] Bluetooth: hci2: command tx timeout
[   97.067584][   T51] Bluetooth: hci3: command tx timeout
[   97.173566][ T5782] binder: 5781:5782 ioctl c00c620f 0 returned -22
[   99.529126][ T5812] netlink: 286 bytes leftover after parsing attributes in process `syz.3.12'.
[  100.059090][ T5814] FAULT_INJECTION: forcing a failure.
[  100.059090][ T5814] name failslab, interval 1, probability 0, space 0, times 1
[  100.087314][ T5821] binder: 5820:5821 ioctl c0046209 ffffffffffffffff returned -22
[  100.103890][ T5814] CPU: 1 UID: 0 PID: 5814 Comm: syz.2.13 Not tainted syzkaller #0 PREEMPT(full) 
[  100.103933][ T5814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  100.103950][ T5814] Call Trace:
[  100.103959][ T5814]  <TASK>
[  100.103970][ T5814]  dump_stack_lvl+0x100/0x190
[  100.104009][ T5814]  should_fail_ex.cold+0x5/0xa
[  100.104047][ T5814]  should_failslab+0xc2/0x120
[  100.104080][ T5814]  __kmalloc_cache_noprof+0x7a/0x6f0
[  100.104123][ T5814]  ? __debugfs_file_get+0x2ac/0x860
[  100.104165][ T5814]  __debugfs_file_get+0x2ac/0x860
[  100.104198][ T5814]  ? __pfx___debugfs_file_get+0x10/0x10
[  100.104234][ T5814]  ? __pfx_apparmor_file_open+0x10/0x10
[  100.104287][ T5814]  full_proxy_open_regular+0x4f/0x370
[  100.104329][ T5814]  do_dentry_open+0x6d8/0x1660
[  100.104364][ T5814]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  100.104410][ T5814]  vfs_open+0x82/0x3f0
[  100.104468][ T5814]  path_openat+0x208c/0x31a0
[  100.104520][ T5814]  ? __pfx_path_openat+0x10/0x10
[  100.104567][ T5814]  do_file_open+0x20e/0x430
[  100.104602][ T5814]  ? __pfx_do_file_open+0x10/0x10
[  100.104660][ T5814]  ? alloc_fd+0x476/0x790
[  100.104697][ T5814]  ? do_getname+0x191/0x390
[  100.104749][ T5814]  do_sys_openat2+0x10d/0x1e0
[  100.104794][ T5814]  ? __pfx_do_sys_openat2+0x10/0x10
[  100.104841][ T5814]  ? __fget_files+0x21f/0x3d0
[  100.104883][ T5814]  __x64_sys_openat+0x12d/0x210
[  100.104928][ T5814]  ? __pfx___x64_sys_openat+0x10/0x10
[  100.104978][ T5814]  ? rcu_is_watching+0x12/0xc0
[  100.105020][ T5814]  do_syscall_64+0x10b/0xf80
[  100.105055][ T5814]  ? clear_bhb_loop+0x40/0x90
[  100.105093][ T5814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.105123][ T5814] RIP: 0033:0x7f1d8c79cdd9
[  100.105149][ T5814] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  100.105176][ T5814] RSP: 002b:00007f1d8d5d3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  100.105203][ T5814] RAX: ffffffffffffffda RBX: 00007f1d8ca15fa0 RCX: 00007f1d8c79cdd9
[  100.105223][ T5814] RDX: 0000000000008742 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  100.105241][ T5814] RBP: 00007f1d8c832d69 R08: 0000000000000000 R09: 0000000000000000
[  100.105259][ T5814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  100.105276][ T5814] R13: 00007f1d8ca16038 R14: 00007f1d8ca15fa0 R15: 00007ffd359da148
[  100.105312][ T5814]  </TASK>
[  100.442041][ T5821] netlink: 326 bytes leftover after parsing attributes in process `syz.0.15'.
[  100.452589][ T5821] Zero length message leads to an empty skb
[  101.024444][ T5830] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  102.224703][ T5849] mmap: syz.0.23 (5849) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  102.862915][ T5864] netlink: 28 bytes leftover after parsing attributes in process `syz.1.28'.
[  103.031963][ T5867] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  103.752674][ T5878] FAULT_INJECTION: forcing a failure.
[  103.752674][ T5878] name failslab, interval 1, probability 0, space 0, times 0
[  103.783552][ T5878] CPU: 1 UID: 0 PID: 5878 Comm: syz.1.32 Not tainted syzkaller #0 PREEMPT(full) 
[  103.783581][ T5878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  103.783591][ T5878] Call Trace:
[  103.783604][ T5878]  <TASK>
[  103.783611][ T5878]  dump_stack_lvl+0x100/0x190
[  103.783637][ T5878]  should_fail_ex.cold+0x5/0xa
[  103.783661][ T5878]  should_failslab+0xc2/0x120
[  103.783683][ T5878]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  103.783714][ T5878]  ? __alloc_skb+0x140/0x710
[  103.783750][ T5878]  __alloc_skb+0x140/0x710
[  103.783779][ T5878]  ? __pfx___alloc_skb+0x10/0x10
[  103.783808][ T5878]  ? skb_page_frag_refill+0x309/0x4b0
[  103.783838][ T5878]  tcp_stream_alloc_skb+0x34/0x660
[  103.783867][ T5878]  tcp_sendmsg_locked+0x13cd/0x4500
[  103.783908][ T5878]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  103.783937][ T5878]  ? do_raw_spin_lock+0x128/0x260
[  103.783958][ T5878]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  103.783984][ T5878]  ? __local_bh_enable_ip+0x9e/0x120
[  103.784011][ T5878]  tcp_sendmsg+0x2e/0x50
[  103.784035][ T5878]  ? __pfx_tcp_sendmsg+0x10/0x10
[  103.784061][ T5878]  inet_sendmsg+0xb9/0x140
[  103.784090][ T5878]  sock_write_iter+0x4ea/0x5a0
[  103.784124][ T5878]  ? __pfx_inet_sendmsg+0x10/0x10
[  103.784157][ T5878]  ? __pfx_sock_write_iter+0x10/0x10
[  103.784187][ T5878]  ? bpf_lsm_file_permission+0x9/0x10
[  103.784204][ T5878]  ? security_file_permission+0x76/0x210
[  103.784225][ T5878]  ? rw_verify_area+0xce/0x6d0
[  103.784245][ T5878]  vfs_write+0x6ac/0x1070
[  103.784266][ T5878]  ? __pfx_sock_write_iter+0x10/0x10
[  103.784290][ T5878]  ? __pfx_vfs_write+0x10/0x10
[  103.784308][ T5878]  ? find_held_lock+0x2b/0x80
[  103.784346][ T5878]  ksys_write+0x1f8/0x250
[  103.784366][ T5878]  ? __pfx_ksys_write+0x10/0x10
[  103.784394][ T5878]  ? rcu_is_watching+0x12/0xc0
[  103.784434][ T5878]  do_syscall_64+0x10b/0xf80
[  103.784469][ T5878]  ? clear_bhb_loop+0x40/0x90
[  103.784515][ T5878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.784545][ T5878] RIP: 0033:0x7fc404f9cdd9
[  103.784571][ T5878] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  103.784599][ T5878] RSP: 002b:00007fc405e9d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  103.784628][ T5878] RAX: ffffffffffffffda RBX: 00007fc405215fa0 RCX: 00007fc404f9cdd9
[  103.784648][ T5878] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003
[  103.784666][ T5878] RBP: 00007fc405032d69 R08: 0000000000000000 R09: 0000000000000000
[  103.784683][ T5878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  103.784701][ T5878] R13: 00007fc405216038 R14: 00007fc405215fa0 R15: 00007ffdc46160c8
[  103.784742][ T5878]  </TASK>
[  105.305975][ T5891] netlink: 25 bytes leftover after parsing attributes in process `syz.1.36'.
[  106.187239][   T55] netdevsim netdevsim1335 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.615414][ T5915] netlink: 330 bytes leftover after parsing attributes in process `syz.2.43'.
[  106.812569][ T5913] netlink: 4 bytes leftover after parsing attributes in process `syz.3.42'.
[  107.671213][ T5938] netlink: 'syz.2.50': attribute type 2 has an invalid length.
[  107.721550][ T5938] netlink: 5 bytes leftover after parsing attributes in process `syz.2.50'.
[  107.847488][ T5942] zswap: compressor  not available
[  109.553676][   T51] Bluetooth: hci0: unexpected event 0x0b length: 446 > 11
[  113.302868][ T5999] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  114.731521][ T6028] netlink: 28 bytes leftover after parsing attributes in process `syz.2.70'.
[  114.769696][ T6028] ipvlan0: entered promiscuous mode
[  114.785428][ T6028] ipvlan0: entered allmulticast mode
[  114.798402][ T6028] veth0_vlan: entered allmulticast mode
[  123.561249][ T6098] netlink: 'syz.3.84': attribute type 4 has an invalid length.
[  123.606836][ T6098] netlink: 'syz.3.84': attribute type 5 has an invalid length.
[  123.646948][ T6098] netlink: 10 bytes leftover after parsing attributes in process `syz.3.84'.
[  124.262804][ T6106] syz.3.86 uses obsolete (PF_INET,SOCK_PACKET)
[  125.041099][ T6119] FAULT_INJECTION: forcing a failure.
[  125.041099][ T6119] name failslab, interval 1, probability 0, space 0, times 0
[  125.092912][ T6119] CPU: 0 UID: 0 PID: 6119 Comm: syz.0.89 Not tainted syzkaller #0 PREEMPT(full) 
[  125.092955][ T6119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  125.092972][ T6119] Call Trace:
[  125.092982][ T6119]  <TASK>
[  125.092994][ T6119]  dump_stack_lvl+0x100/0x190
[  125.093036][ T6119]  should_fail_ex.cold+0x5/0xa
[  125.093072][ T6119]  should_failslab+0xc2/0x120
[  125.093105][ T6119]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  125.093148][ T6119]  ? ptlock_alloc+0x1f/0x70
[  125.093193][ T6119]  ? __lock_acquire+0x4a5/0x2630
[  125.093227][ T6119]  ptlock_alloc+0x1f/0x70
[  125.093271][ T6119]  pte_alloc_one+0x82/0x3d0
[  125.093314][ T6119]  __pte_alloc+0x6d/0x3e0
[  125.093347][ T6119]  ? __pfx___pte_alloc+0x10/0x10
[  125.093382][ T6119]  ? do_raw_spin_lock+0x128/0x260
[  125.093416][ T6119]  ? find_held_lock+0x2b/0x80
[  125.093470][ T6119]  do_anonymous_page+0x13c6/0x2050
[  125.093522][ T6119]  ? __pmd_alloc+0x3fb/0x950
[  125.093560][ T6119]  __handle_mm_fault+0x1d2c/0x2a00
[  125.093612][ T6119]  ? mt_find+0x45e/0x8e0
[  125.093655][ T6119]  ? __pfx___handle_mm_fault+0x10/0x10
[  125.093696][ T6119]  ? __pfx_mt_find+0x10/0x10
[  125.093759][ T6119]  ? find_vma+0xbf/0x140
[  125.093790][ T6119]  ? __pfx_find_vma+0x10/0x10
[  125.093827][ T6119]  handle_mm_fault+0x36d/0xa20
[  125.093880][ T6119]  do_user_addr_fault+0x74c/0x12f0
[  125.093923][ T6119]  ? trace_page_fault_kernel+0x7a/0x200
[  125.093964][ T6119]  exc_page_fault+0x6f/0xd0
[  125.094002][ T6119]  asm_exc_page_fault+0x26/0x30
[  125.094033][ T6119] RIP: 0010:rep_movs_alternative+0xf/0x90
[  125.094081][ T6119] Code: c4 10 e9 84 9b 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 4d 9b 04 00 66 66
[  125.094109][ T6119] RSP: 0018:ffffc90003947bf8 EFLAGS: 00050202
[  125.094134][ T6119] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000001
[  125.094151][ T6119] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90003947d90
[  125.094169][ T6119] RBP: 0000000000000001 R08: 0000000000000001 R09: fffff52000728fb2
[  125.094186][ T6119] R10: ffffc90003947d90 R11: 0000000000000000 R12: 0000000000000000
[  125.094204][ T6119] R13: ffffc90003947d90 R14: 0000000000000001 R15: ffffc90003947d90
[  125.094244][ T6119]  _copy_from_user+0x98/0xd0
[  125.094293][ T6119]  __sys_bpf+0x243/0x4b90
[  125.094330][ T6119]  ? __pfx___sys_bpf+0x10/0x10
[  125.094361][ T6119]  ? __pfx_futex_wait+0x10/0x10
[  125.094427][ T6119]  ? ksys_write+0x190/0x250
[  125.094460][ T6119]  ? ksys_write+0x190/0x250
[  125.094504][ T6119]  ? do_futex+0x192/0x350
[  125.094560][ T6119]  ? xfd_validate_state+0x129/0x190
[  125.094590][ T6119]  ? ksys_write+0x1ac/0x250
[  125.094626][ T6119]  __x64_sys_bpf+0x7b/0xc0
[  125.094652][ T6119]  ? lockdep_hardirqs_on+0x78/0x100
[  125.094683][ T6119]  do_syscall_64+0x10b/0xf80
[  125.094714][ T6119]  ? clear_bhb_loop+0x40/0x90
[  125.094749][ T6119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.094776][ T6119] RIP: 0033:0x7ff4b059cdd9
[  125.094801][ T6119] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  125.094827][ T6119] RSP: 002b:00007ff4b1468028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  125.094851][ T6119] RAX: ffffffffffffffda RBX: 00007ff4b0815fa0 RCX: 00007ff4b059cdd9
[  125.094869][ T6119] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 000000000000001b
[  125.094885][ T6119] RBP: 00007ff4b0632d69 R08: 0000000000000000 R09: 0000000000000000
[  125.094901][ T6119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  125.094917][ T6119] R13: 00007ff4b0816038 R14: 00007ff4b0815fa0 R15: 00007fff21b8d448
[  125.094955][ T6119]  </TASK>
[  127.295553][ T6154] random: crng reseeded on system resumption
[  127.497686][ T6155] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  127.851382][ T6160] netlink: 8 bytes leftover after parsing attributes in process `syz.2.97'.
[  128.398265][ T6172] netlink: zone id is out of range
[  128.428546][ T6172] netlink: zone id is out of range
[  128.455038][ T6172] netlink: zone id is out of range
[  128.478756][ T6172] netlink: set zone limit has 8 unknown bytes
[  129.126177][ T6189] netlink: 354 bytes leftover after parsing attributes in process `syz.0.102'.
[  129.366153][   T30] audit: type=1800 audit(1777340052.328:2): pid=6197 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.104" name="file0" dev="tmpfs" ino=174 res=0 errno=0
[  129.635822][ T6207] FAULT_INJECTION: forcing a failure.
[  129.635822][ T6207] name failslab, interval 1, probability 0, space 0, times 0
[  129.825172][ T6207] CPU: 0 UID: 0 PID: 6207 Comm: syz.3.106 Not tainted syzkaller #0 PREEMPT(full) 
[  129.825216][ T6207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  129.825234][ T6207] Call Trace:
[  129.825244][ T6207]  <TASK>
[  129.825255][ T6207]  dump_stack_lvl+0x100/0x190
[  129.825296][ T6207]  should_fail_ex.cold+0x5/0xa
[  129.825336][ T6207]  should_failslab+0xc2/0x120
[  129.825370][ T6207]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  129.825415][ T6207]  ? setup_ipc_sysctls+0x5e/0x300
[  129.825456][ T6207]  ? mq_init_ns+0x420/0x820
[  129.825508][ T6207]  kmemdup_noprof+0x29/0x60
[  129.825541][ T6207]  setup_ipc_sysctls+0x5e/0x300
[  129.825586][ T6207]  copy_ipcs+0x57a/0x7e0
[  129.825636][ T6207]  create_new_namespaces+0x20a/0xac0
[  129.825675][ T6207]  ? security_capable+0x80/0x260
[  129.825724][ T6207]  copy_namespaces+0x468/0x5e0
[  129.825764][ T6207]  copy_process+0x3531/0x7fa0
[  129.825807][ T6207]  ? futex_unqueue+0x133/0x2c0
[  129.825858][ T6207]  ? __pfx_copy_process+0x10/0x10
[  129.825910][ T6207]  ? _copy_from_user+0x59/0xd0
[  129.825959][ T6207]  kernel_clone+0x12e/0x9c0
[  129.826005][ T6207]  ? __pfx_kernel_clone+0x10/0x10
[  129.826055][ T6207]  ? __pfx_futex_wait+0x10/0x10
[  129.826106][ T6207]  __do_sys_clone3+0x214/0x290
[  129.826149][ T6207]  ? __pfx___do_sys_clone3+0x10/0x10
[  129.826242][ T6207]  ? rcu_is_watching+0x12/0xc0
[  129.826285][ T6207]  do_syscall_64+0x10b/0xf80
[  129.826322][ T6207]  ? clear_bhb_loop+0x40/0x90
[  129.826361][ T6207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.826393][ T6207] RIP: 0033:0x7f1df059cdd9
[  129.826429][ T6207] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  129.826457][ T6207] RSP: 002b:00007f1df13c4ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  129.826487][ T6207] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f1df059cdd9
[  129.826506][ T6207] RDX: 00007f1df13c4f10 RSI: 0000000000000058 RDI: 00007f1df13c4f10
[  129.826525][ T6207] RBP: 00007f1df0632d69 R08: 0000000000000000 R09: 0000000000000058
[  129.826543][ T6207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  129.826561][ T6207] R13: 00007f1df0816128 R14: 00007f1df0816090 R15: 00007ffeb8fe45d8
[  129.826601][ T6207]  </TASK>
[  132.374234][   T30] audit: type=1800 audit(1777340055.338:3): pid=6257 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.110" name="file0" dev="tmpfs" ino=150 res=0 errno=0
[  133.310221][ T1315] ieee802154 phy0 wpan0: encryption failed: -22
[  133.310359][ T1315] ieee802154 phy1 wpan1: encryption failed: -22
[  133.809846][ T6286] netlink: 4 bytes leftover after parsing attributes in process `syz.1.115'.
[  133.843843][ T6286] netlink: 54041 bytes leftover after parsing attributes in process `syz.1.115'.
[  134.183307][ T6295] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  134.206430][ T6293] netlink: 4 bytes leftover after parsing attributes in process `syz.1.117'.
[  134.240452][ T6293] netlink: 13 bytes leftover after parsing attributes in process `syz.1.117'.
[  134.747758][ T6306] FAULT_INJECTION: forcing a failure.
[  134.747758][ T6306] name fail_futex, interval 1, probability 0, space 0, times 1
[  134.815749][ T6306] CPU: 1 UID: 0 PID: 6306 Comm: syz.2.119 Not tainted syzkaller #0 PREEMPT(full) 
[  134.815798][ T6306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  134.815816][ T6306] Call Trace:
[  134.815827][ T6306]  <TASK>
[  134.815839][ T6306]  dump_stack_lvl+0x100/0x190
[  134.815881][ T6306]  should_fail_ex.cold+0x5/0xa
[  134.815915][ T6306]  ? __kernel_text_address+0xd/0x30
[  134.815953][ T6306]  get_futex_key+0x1d2/0x1510
[  134.815989][ T6306]  ? __pfx_get_futex_key+0x10/0x10
[  134.816021][ T6306]  ? putname+0xb1/0x110
[  134.816060][ T6306]  ? stack_trace_save+0x8e/0xc0
[  134.816101][ T6306]  ? __pfx_stack_trace_save+0x10/0x10
[  134.816148][ T6306]  futex_wait_setup+0x83/0x510
[  134.816219][ T6306]  __futex_wait+0x19f/0x300
[  134.816264][ T6306]  ? __pfx___futex_wait+0x10/0x10
[  134.816304][ T6306]  ? __pfx_futex_wake_mark+0x10/0x10
[  134.816343][ T6306]  ? futex_hash+0x2ad/0x370
[  134.816372][ T6306]  ? futex_hash+0x141/0x370
[  134.816404][ T6306]  futex_wait+0xe6/0x370
[  134.816440][ T6306]  ? __pfx_futex_wait+0x10/0x10
[  134.816633][ T6306]  ? putname+0xb1/0x110
[  134.816674][ T6306]  ? kmem_cache_free+0x127/0x6c0
[  134.816725][ T6306]  do_futex+0x1ef/0x350
[  134.816763][ T6306]  ? __pfx_do_futex+0x10/0x10
[  134.816787][ T6306]  ? __pfx_do_sys_openat2+0x10/0x10
[  134.816829][ T6306]  ? __sys_sendmsg+0x18f/0x220
[  134.816859][ T6306]  __x64_sys_futex+0x34f/0x4d0
[  134.816891][ T6306]  ? __x64_sys_openat+0x12d/0x210
[  134.816932][ T6306]  ? __pfx___x64_sys_futex+0x10/0x10
[  134.816965][ T6306]  ? rcu_is_watching+0x12/0xc0
[  134.817004][ T6306]  do_syscall_64+0x10b/0xf80
[  134.817040][ T6306]  ? clear_bhb_loop+0x40/0x90
[  134.817074][ T6306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.817106][ T6306] RIP: 0033:0x7f1d8c79cdd9
[  134.817133][ T6306] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  134.817162][ T6306] RSP: 002b:00007f1d8d5d30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  134.817193][ T6306] RAX: ffffffffffffffda RBX: 00007f1d8ca15fa8 RCX: 00007f1d8c79cdd9
[  134.817213][ T6306] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1d8ca15fa8
[  134.817231][ T6306] RBP: 00007f1d8ca15fa0 R08: 0000000000000000 R09: 0000000000000000
[  134.817249][ T6306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  134.817266][ T6306] R13: 00007f1d8ca16038 R14: 00007ffd359da060 R15: 00007ffd359da148
[  134.817307][ T6306]  </TASK>
[  135.989745][ T6326] ima: policy update failed
[  136.020725][   T30] audit: type=1802 audit(1843104522.100:4): pid=6326 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.122" res=0 errno=0
[  136.389362][ T6334] netlink: 4 bytes leftover after parsing attributes in process `syz.3.124'.
[  136.450705][ T6338] netlink: 13 bytes leftover after parsing attributes in process `syz.3.124'.
[  136.487302][   T30] audit: type=1800 audit(1843104522.570:5): pid=6330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.123" name="file0" dev="tmpfs" ino=197 res=0 errno=0
[  138.401414][ T6360] FAULT_INJECTION: forcing a failure.
[  138.401414][ T6360] name failslab, interval 1, probability 0, space 0, times 0
[  138.431211][ T6360] CPU: 0 UID: 0 PID: 6360 Comm: syz.1.132 Not tainted syzkaller #0 PREEMPT(full) 
[  138.431255][ T6360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  138.431272][ T6360] Call Trace:
[  138.431282][ T6360]  <TASK>
[  138.431294][ T6360]  dump_stack_lvl+0x100/0x190
[  138.431341][ T6360]  should_fail_ex.cold+0x5/0xa
[  138.431378][ T6360]  should_failslab+0xc2/0x120
[  138.431406][ T6360]  __kvmalloc_node_noprof+0xfa/0xa00
[  138.431430][ T6360]  ? sbitmap_init_node+0x1cc/0x720
[  138.431484][ T6360]  sbitmap_init_node+0x1cc/0x720
[  138.431533][ T6360]  sbitmap_queue_init_node+0x40/0x4a0
[  138.431583][ T6360]  blk_mq_init_tags+0x184/0x300
[  138.431639][ T6360]  blk_mq_alloc_map_and_rqs+0x218/0xeb0
[  138.431684][ T6360]  ? blk_mq_update_queue_map+0x227/0x3a0
[  138.431732][ T6360]  blk_mq_alloc_tag_set+0x848/0x1330
[  138.431785][ T6360]  loop_add+0x3b7/0xb60
[  138.431830][ T6360]  ? __pfx_loop_add+0x10/0x10
[  138.431899][ T6360]  ? find_held_lock+0x2b/0x80
[  138.431938][ T6360]  ? __fget_files+0x215/0x3d0
[  138.431977][ T6360]  loop_control_ioctl+0xae/0x620
[  138.432025][ T6360]  ? __pfx_loop_control_ioctl+0x10/0x10
[  138.432076][ T6360]  ? __pfx_loop_control_ioctl+0x10/0x10
[  138.432124][ T6360]  __x64_sys_ioctl+0x18e/0x210
[  138.432158][ T6360]  do_syscall_64+0x10b/0xf80
[  138.432193][ T6360]  ? clear_bhb_loop+0x40/0x90
[  138.432229][ T6360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.432260][ T6360] RIP: 0033:0x7fc404f9cdd9
[  138.432285][ T6360] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  138.432313][ T6360] RSP: 002b:00007fc405e9d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  138.432342][ T6360] RAX: ffffffffffffffda RBX: 00007fc405215fa0 RCX: 00007fc404f9cdd9
[  138.432361][ T6360] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008
[  138.432378][ T6360] RBP: 00007fc405032d69 R08: 0000000000000000 R09: 0000000000000000
[  138.432395][ T6360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  138.432411][ T6360] R13: 00007fc405216038 R14: 00007fc405215fa0 R15: 00007ffdc46160c8
[  138.432452][ T6360]  </TASK>
[  138.434168][ T6360] blk-mq: reduced tag depth (128 -> 64)
[  139.319960][ T6373] bridge0: port 3(dummy0) entered blocking state
[  139.340118][ T6373] bridge0: port 3(dummy0) entered disabled state
[  139.389601][ T6373] dummy0: entered allmulticast mode
[  139.420139][ T6373] dummy0: entered promiscuous mode
[  139.441157][ T6373] bridge0: port 3(dummy0) entered blocking state
[  139.448795][ T6373] bridge0: port 3(dummy0) entered forwarding state
[  140.251988][ T6391] process 'syz.1.138' launched './file0' with NULL argv: empty string added
[  141.314253][ T6391] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  141.525740][ T6400] netlink: 25 bytes leftover after parsing attributes in process `syz.0.140'.
[  142.225643][ T6411] random: crng reseeded on system resumption
[  145.379821][ T6461] FAULT_INJECTION: forcing a failure.
[  145.379821][ T6461] name failslab, interval 1, probability 0, space 0, times 0
[  145.393700][ T6461] CPU: 1 UID: 0 PID: 6461 Comm: syz.0.156 Not tainted syzkaller #0 PREEMPT(full) 
[  145.393741][ T6461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  145.393758][ T6461] Call Trace:
[  145.393767][ T6461]  <TASK>
[  145.393778][ T6461]  dump_stack_lvl+0x100/0x190
[  145.393819][ T6461]  should_fail_ex.cold+0x5/0xa
[  145.393858][ T6461]  should_failslab+0xc2/0x120
[  145.393890][ T6461]  __kmalloc_cache_noprof+0x7a/0x6f0
[  145.393927][ T6461]  ? trace_pid_list_alloc+0x232/0x480
[  145.393963][ T6461]  ? lockdep_init_map_type+0x5c/0x250
[  145.393999][ T6461]  trace_pid_list_alloc+0x232/0x480
[  145.394045][ T6461]  trace_pid_write+0x110/0x460
[  145.394089][ T6461]  ? __pfx_trace_pid_write+0x10/0x10
[  145.394158][ T6461]  event_pid_write.isra.0+0x1e4/0x7d0
[  145.394208][ T6461]  ? __pfx_event_pid_write.isra.0+0x10/0x10
[  145.394267][ T6461]  vfs_write+0x2aa/0x1070
[  145.394304][ T6461]  ? __pfx_ftrace_event_npid_write+0x10/0x10
[  145.394369][ T6461]  ? __pfx_vfs_write+0x10/0x10
[  145.394404][ T6461]  ? __fget_files+0x215/0x3d0
[  145.394451][ T6461]  ? __fget_files+0x21f/0x3d0
[  145.394499][ T6461]  ksys_write+0x12a/0x250
[  145.394534][ T6461]  ? __pfx_ksys_write+0x10/0x10
[  145.394573][ T6461]  ? rcu_is_watching+0x12/0xc0
[  145.394616][ T6461]  do_syscall_64+0x10b/0xf80
[  145.394653][ T6461]  ? clear_bhb_loop+0x40/0x90
[  145.394691][ T6461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.394720][ T6461] RIP: 0033:0x7ff4b059cdd9
[  145.394744][ T6461] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  145.394768][ T6461] RSP: 002b:00007ff4b1447028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  145.394797][ T6461] RAX: ffffffffffffffda RBX: 00007ff4b0816090 RCX: 00007ff4b059cdd9
[  145.394816][ T6461] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  145.394832][ T6461] RBP: 00007ff4b0632d69 R08: 0000000000000000 R09: 0000000000000000
[  145.394850][ T6461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  145.394874][ T6461] R13: 00007ff4b0816128 R14: 00007ff4b0816090 R15: 00007fff21b8d448
[  145.394917][ T6461]  </TASK>
[  145.968748][ T6467] netlink: 4 bytes leftover after parsing attributes in process `syz.3.159'.
[  145.986319][ T6467] netlink: 54041 bytes leftover after parsing attributes in process `syz.3.159'.
[  149.409023][ T6521] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  149.673926][ T6521] FAULT_INJECTION: forcing a failure.
[  149.673926][ T6521] name failslab, interval 1, probability 0, space 0, times 0
[  149.722646][ T6521] CPU: 0 UID: 0 PID: 6521 Comm: syz.3.170 Not tainted syzkaller #0 PREEMPT(full) 
[  149.722689][ T6521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  149.722706][ T6521] Call Trace:
[  149.722716][ T6521]  <TASK>
[  149.722726][ T6521]  dump_stack_lvl+0x100/0x190
[  149.722765][ T6521]  should_fail_ex.cold+0x5/0xa
[  149.722801][ T6521]  should_failslab+0xc2/0x120
[  149.722832][ T6521]  __kmalloc_cache_noprof+0x7a/0x6f0
[  149.722874][ T6521]  ? trace_pid_list_alloc+0x232/0x480
[  149.722911][ T6521]  ? lockdep_init_map_type+0x5c/0x250
[  149.722949][ T6521]  trace_pid_list_alloc+0x232/0x480
[  149.722996][ T6521]  trace_pid_write+0x110/0x460
[  149.723040][ T6521]  ? __pfx_trace_pid_write+0x10/0x10
[  149.723109][ T6521]  event_pid_write.isra.0+0x1e4/0x7d0
[  149.723154][ T6521]  ? __pfx_event_pid_write.isra.0+0x10/0x10
[  149.723209][ T6521]  vfs_write+0x2aa/0x1070
[  149.723245][ T6521]  ? __pfx_ftrace_event_npid_write+0x10/0x10
[  149.723294][ T6521]  ? __pfx_vfs_write+0x10/0x10
[  149.723326][ T6521]  ? __fget_files+0x215/0x3d0
[  149.723369][ T6521]  ? __fget_files+0x21f/0x3d0
[  149.723415][ T6521]  ksys_write+0x12a/0x250
[  149.723448][ T6521]  ? __pfx_ksys_write+0x10/0x10
[  149.723486][ T6521]  ? rcu_is_watching+0x12/0xc0
[  149.723528][ T6521]  do_syscall_64+0x10b/0xf80
[  149.723562][ T6521]  ? clear_bhb_loop+0x40/0x90
[  149.723606][ T6521]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.723640][ T6521] RIP: 0033:0x7f1df059cdd9
[  149.723665][ T6521] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  149.723690][ T6521] RSP: 002b:00007f1df13c5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  149.723720][ T6521] RAX: ffffffffffffffda RBX: 00007f1df0816090 RCX: 00007f1df059cdd9
[  149.723739][ T6521] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  149.723757][ T6521] RBP: 00007f1df0632d69 R08: 0000000000000000 R09: 0000000000000000
[  149.723774][ T6521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  149.723789][ T6521] R13: 00007f1df0816128 R14: 00007f1df0816090 R15: 00007ffeb8fe45d8
[  149.723829][ T6521]  </TASK>
[  150.593553][ T6533] netlink: zone id is out of range
[  150.616347][ T6533] netlink: zone id is out of range
[  150.631484][ T6533] netlink: zone id is out of range
[  150.654923][ T6533] netlink: set zone limit has 8 unknown bytes
[  151.555283][ T6558] netlink: 330 bytes leftover after parsing attributes in process `syz.0.177'.
[  151.584310][ T6558] mac80211_hwsim hwsim7 �: renamed from wlan0 (while UP)
[  153.447631][ T6582] netlink: zone id is out of range
[  153.453421][ T6582] netlink: zone id is out of range
[  153.463714][ T6582] netlink: zone id is out of range
[  153.540454][ T6582] netlink: set zone limit has 8 unknown bytes
[  154.649590][ T6608] capability: warning: `syz.2.191' uses 32-bit capabilities (legacy support in use)
[  155.450018][ T6617] FAULT_INJECTION: forcing a failure.
[  155.450018][ T6617] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  155.517072][ T6617] CPU: 0 UID: 0 PID: 6617 Comm: syz.1.193 Not tainted syzkaller #0 PREEMPT(full) 
[  155.517110][ T6617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  155.517127][ T6617] Call Trace:
[  155.517136][ T6617]  <TASK>
[  155.517146][ T6617]  dump_stack_lvl+0x100/0x190
[  155.517183][ T6617]  should_fail_ex.cold+0x5/0xa
[  155.517214][ T6617]  ? prepare_alloc_pages+0x16d/0x5f0
[  155.517254][ T6617]  should_fail_alloc_page+0xeb/0x140
[  155.517290][ T6617]  prepare_alloc_pages+0x1f0/0x5f0
[  155.517325][ T6617]  ? __pfx_css_rstat_updated+0x10/0x10
[  155.517375][ T6617]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  155.517429][ T6617]  ? rcu_is_watching+0x12/0xc0
[  155.517463][ T6617]  ? __mod_memcg_lruvec_state+0x18c/0x5b0
[  155.517510][ T6617]  ? find_held_lock+0x2b/0x80
[  155.517547][ T6617]  ? rcu_read_unlock+0x17/0x60
[  155.517590][ T6617]  ? rcu_read_unlock+0x17/0x60
[  155.517626][ T6617]  ? __mod_zone_page_state+0xe2/0x190
[  155.517668][ T6617]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  155.517714][ T6617]  ? lru_gen_add_folio+0x20f/0x13d0
[  155.517750][ T6617]  ? folios_put_refs+0x716/0xa90
[  155.517782][ T6617]  ? __pfx_folios_put_refs+0x10/0x10
[  155.517830][ T6617]  ? find_held_lock+0x2b/0x80
[  155.517866][ T6617]  ? folio_batch_move_lru+0x32b/0x7d0
[  155.517892][ T6617]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  155.517937][ T6617]  ? policy_nodemask+0xed/0x4f0
[  155.517973][ T6617]  alloc_pages_mpol+0x1fb/0x540
[  155.518008][ T6617]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  155.518041][ T6617]  ? __folio_batch_add_and_move+0x5e5/0xc60
[  155.518078][ T6617]  folio_alloc_mpol_noprof+0x36/0x260
[  155.518118][ T6617]  shmem_alloc_folio+0x135/0x160
[  155.518159][ T6617]  shmem_alloc_and_add_folio+0x371/0xd40
[  155.518213][ T6617]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  155.518263][ T6617]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  155.518321][ T6617]  shmem_get_folio_gfp+0x6ab/0x1900
[  155.518375][ T6617]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  155.518430][ T6617]  ? ktime_get_coarse_real_ts64_mg+0x235/0x300
[  155.518461][ T6617]  ? lockdep_hardirqs_on+0x78/0x100
[  155.518503][ T6617]  shmem_fault+0x1f9/0xa20
[  155.518529][ T6617]  ? __lock_acquire+0x4a5/0x2630
[  155.518558][ T6617]  ? __pfx_shmem_fault+0x10/0x10
[  155.518615][ T6617]  ? __up_read+0x2c1/0x6e0
[  155.518663][ T6617]  ? __pfx_filemap_map_pages+0x10/0x10
[  155.518706][ T6617]  __do_fault+0x10b/0x440
[  155.518736][ T6617]  ? find_held_lock+0x2b/0x80
[  155.518776][ T6617]  do_fault+0x2db/0x1750
[  155.518821][ T6617]  __handle_mm_fault+0x187d/0x2a00
[  155.518889][ T6617]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  155.518928][ T6617]  ? __pfx___handle_mm_fault+0x10/0x10
[  155.518971][ T6617]  ? pte_offset_map_lock+0x174/0x320
[  155.519006][ T6617]  ? find_held_lock+0x2b/0x80
[  155.519057][ T6617]  ? follow_page_pte+0x4d0/0x13f0
[  155.519097][ T6617]  handle_mm_fault+0x36d/0xa20
[  155.519147][ T6617]  __get_user_pages+0x1178/0x32a0
[  155.519191][ T6617]  ? down_read_killable+0x307/0x4b0
[  155.519234][ T6617]  ? __pfx___get_user_pages+0x10/0x10
[  155.519268][ T6617]  ? gup_signal_pending+0x6e/0x1a0
[  155.519303][ T6617]  ? __sanitizer_cov_trace_pc+0xb/0x70
[  155.519351][ T6617]  faultin_page_range+0x1f1/0x9e0
[  155.519399][ T6617]  madvise_do_behavior+0x354/0x510
[  155.519444][ T6617]  ? __pfx_madvise_do_behavior+0x10/0x10
[  155.519496][ T6617]  ? __call_rcu_common.constprop.0+0x3f0/0x9b0
[  155.519537][ T6617]  do_madvise+0x195/0x240
[  155.519583][ T6617]  ? __pfx_do_madvise+0x10/0x10
[  155.519618][ T6617]  ? do_futex+0x192/0x350
[  155.519657][ T6617]  ? blkcg_maybe_throttle_current+0x5e7/0xeb0
[  155.519718][ T6617]  __x64_sys_madvise+0xa9/0x110
[  155.519754][ T6617]  ? lockdep_hardirqs_on+0x78/0x100
[  155.519786][ T6617]  do_syscall_64+0x10b/0xf80
[  155.519816][ T6617]  ? clear_bhb_loop+0x40/0x90
[  155.519850][ T6617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.519880][ T6617] RIP: 0033:0x7fc404f9cdd9
[  155.519907][ T6617] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  155.519935][ T6617] RSP: 002b:00007fc405e9d028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  155.519964][ T6617] RAX: ffffffffffffffda RBX: 00007fc405215fa0 RCX: 00007fc404f9cdd9
[  155.519984][ T6617] RDX: 0000000000000017 RSI: ffffffffffff0005 RDI: 0000000000000000
[  155.520002][ T6617] RBP: 00007fc405032d69 R08: 0000000000000000 R09: 0000000000000000
[  155.520019][ T6617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  155.520036][ T6617] R13: 00007fc405216038 R14: 00007fc405215fa0 R15: 00007ffdc46160c8
[  155.520078][ T6617]  </TASK>
[  157.051510][ T6632] FAULT_INJECTION: forcing a failure.
[  157.051510][ T6632] name failslab, interval 1, probability 0, space 0, times 0
[  157.088719][ T6632] CPU: 0 UID: 0 PID: 6632 Comm: syz.0.195 Not tainted syzkaller #0 PREEMPT(full) 
[  157.088764][ T6632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  157.088782][ T6632] Call Trace:
[  157.088793][ T6632]  <TASK>
[  157.088805][ T6632]  dump_stack_lvl+0x100/0x190
[  157.088847][ T6632]  should_fail_ex.cold+0x5/0xa
[  157.088886][ T6632]  ? tomoyo_realpath_from_path+0xb6/0x690
[  157.088924][ T6632]  should_failslab+0xc2/0x120
[  157.088960][ T6632]  __kmalloc_noprof+0xe0/0x850
[  157.089007][ T6632]  ? kfree+0x1dd/0x6c0
[  157.089055][ T6632]  tomoyo_realpath_from_path+0xb6/0x690
[  157.089104][ T6632]  tomoyo_path_number_perm+0x23c/0x580
[  157.089134][ T6632]  ? tomoyo_path_number_perm+0x22e/0x580
[  157.089166][ T6632]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  157.089194][ T6632]  ? futex_wake+0x1ad/0x530
[  157.089271][ T6632]  ? find_held_lock+0x2b/0x80
[  157.089307][ T6632]  ? __fget_files+0x215/0x3d0
[  157.089340][ T6632]  ? hook_file_ioctl_common+0x149/0x410
[  157.089370][ T6632]  ? __fget_files+0x215/0x3d0
[  157.089411][ T6632]  ? __fget_files+0x21f/0x3d0
[  157.089453][ T6632]  security_file_ioctl+0xd3/0x230
[  157.089486][ T6632]  __x64_sys_ioctl+0xb7/0x210
[  157.089518][ T6632]  do_syscall_64+0x10b/0xf80
[  157.089563][ T6632]  ? clear_bhb_loop+0x40/0x90
[  157.089603][ T6632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.089634][ T6632] RIP: 0033:0x7ff4b059cdd9
[  157.089661][ T6632] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  157.089690][ T6632] RSP: 002b:00007ff4b1468028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  157.089721][ T6632] RAX: ffffffffffffffda RBX: 00007ff4b0815fa0 RCX: 00007ff4b059cdd9
[  157.089741][ T6632] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000009
[  157.089760][ T6632] RBP: 00007ff4b0632d69 R08: 0000000000000000 R09: 0000000000000000
[  157.089777][ T6632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  157.089794][ T6632] R13: 00007ff4b0816038 R14: 00007ff4b0815fa0 R15: 00007fff21b8d448
[  157.089836][ T6632]  </TASK>
[  157.089849][ T6632] ERROR: Out of memory at tomoyo_realpath_from_path.
[  157.741035][ T6636] netlink: 12 bytes leftover after parsing attributes in process `syz.1.204'.
[  157.791691][ T6637] bridge0: port 3(dummy0) entered blocking state
[  157.800102][ T6637] bridge0: port 3(dummy0) entered disabled state
[  157.817240][ T6637] dummy0: entered allmulticast mode
[  157.827335][ T6637] dummy0: entered promiscuous mode
[  157.833342][ T6637] bridge0: port 3(dummy0) entered blocking state
[  157.840044][ T6637] bridge0: port 3(dummy0) entered forwarding state
[  157.879150][ T6636] i: entered promiscuous mode
[  157.936472][ T6641] HfR: entered promiscuous mode
[  158.417459][ T6652] FAULT_INJECTION: forcing a failure.
[  158.417459][ T6652] name failslab, interval 1, probability 0, space 0, times 0
[  158.466004][ T6652] CPU: 0 UID: 0 PID: 6652 Comm: syz.2.201 Not tainted syzkaller #0 PREEMPT(full) 
[  158.466034][ T6652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  158.466044][ T6652] Call Trace:
[  158.466051][ T6652]  <TASK>
[  158.466058][ T6652]  dump_stack_lvl+0x100/0x190
[  158.466083][ T6652]  should_fail_ex.cold+0x5/0xa
[  158.466106][ T6652]  should_failslab+0xc2/0x120
[  158.466128][ T6652]  __kmalloc_cache_noprof+0x7a/0x6f0
[  158.466154][ T6652]  ? kvm_uevent_notify_change.part.0+0x2a6/0x450
[  158.466189][ T6652]  kvm_uevent_notify_change.part.0+0x2a6/0x450
[  158.466219][ T6652]  ? __pfx_kvm_vm_release+0x10/0x10
[  158.466244][ T6652]  kvm_put_kvm+0xe4/0xb10
[  158.466268][ T6652]  ? lockdep_hardirqs_on+0x78/0x100
[  158.466297][ T6652]  ? _raw_spin_unlock_irq+0x2e/0x50
[  158.466318][ T6652]  ? __pfx_kvm_vm_release+0x10/0x10
[  158.466344][ T6652]  kvm_vm_release+0x3c/0x50
[  158.466368][ T6652]  __fput+0x3ff/0xb50
[  158.466399][ T6652]  task_work_run+0x150/0x240
[  158.466419][ T6652]  ? __pfx_task_work_run+0x10/0x10
[  158.466439][ T6652]  ? rcu_is_watching+0x12/0xc0
[  158.466464][ T6652]  exit_to_user_mode_loop+0x100/0x4a0
[  158.466481][ T6652]  ? do_syscall_64+0x519/0xf80
[  158.466504][ T6652]  do_syscall_64+0x6f2/0xf80
[  158.466525][ T6652]  ? clear_bhb_loop+0x40/0x90
[  158.466546][ T6652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.466565][ T6652] RIP: 0033:0x7f1d8c79cdd9
[  158.466581][ T6652] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  158.466602][ T6652] RSP: 002b:00007f1d8d5d3028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  158.466636][ T6652] RAX: 0000000000000000 RBX: 00007f1d8ca15fa0 RCX: 00007f1d8c79cdd9
[  158.466647][ T6652] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  158.466657][ T6652] RBP: 00007f1d8c832d69 R08: 0000000000000000 R09: 0000000000000000
[  158.466667][ T6652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  158.466677][ T6652] R13: 00007f1d8ca16038 R14: 00007f1d8ca15fa0 R15: 00007ffd359da148
[  158.466700][ T6652]  </TASK>
[  159.354765][ T6668] netlink: 4 bytes leftover after parsing attributes in process `syz.3.203'.
[  159.401376][ T6668] netlink: 354 bytes leftover after parsing attributes in process `syz.3.203'.
[  161.739302][ T6704] bridge0: port 3(dummy0) entered blocking state
[  161.787997][ T6704] bridge0: port 3(dummy0) entered disabled state
[  161.847190][ T6704] dummy0: entered allmulticast mode
[  161.857822][ T6704] dummy0: entered promiscuous mode
[  161.874570][ T6704] bridge0: port 3(dummy0) entered blocking state
[  161.881232][ T6704] bridge0: port 3(dummy0) entered forwarding state
[  162.148508][ T6712] =======================================================
[  162.148508][ T6712] WARNING: The mand mount option has been deprecated and
[  162.148508][ T6712]          and is ignored by this kernel. Remove the mand
[  162.148508][ T6712]          option from the mount to silence this warning.
[  162.148508][ T6712] =======================================================
[  162.611533][ T6719] netlink: 4 bytes leftover after parsing attributes in process `syz.2.214'.
[  162.639130][ T6719] netlink: 354 bytes leftover after parsing attributes in process `syz.2.214'.
[  163.829389][ T6742] netlink: 12 bytes leftover after parsing attributes in process `syz.2.219'.
[  163.983529][ T6742] i: entered promiscuous mode
[  164.070923][ T6744] HfR: entered promiscuous mode
[  164.467156][ T6750] FAULT_INJECTION: forcing a failure.
[  164.467156][ T6750] name fail_futex, interval 1, probability 0, space 0, times 0
[  164.512416][ T6750] CPU: 0 UID: 0 PID: 6750 Comm: syz.3.223 Not tainted syzkaller #0 PREEMPT(full) 
[  164.512459][ T6750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  164.512476][ T6750] Call Trace:
[  164.512486][ T6750]  <TASK>
[  164.512497][ T6750]  dump_stack_lvl+0x100/0x190
[  164.512535][ T6750]  should_fail_ex.cold+0x5/0xa
[  164.512575][ T6750]  get_futex_key+0x1d2/0x1510
[  164.512616][ T6750]  ? __pfx_get_futex_key+0x10/0x10
[  164.512662][ T6750]  futex_wake+0xea/0x530
[  164.512701][ T6750]  ? rcu_is_watching+0x12/0xc0
[  164.512739][ T6750]  ? __pfx_futex_wake+0x10/0x10
[  164.512780][ T6750]  ? putname+0xb1/0x110
[  164.512814][ T6750]  ? kmem_cache_free+0x127/0x6c0
[  164.512859][ T6750]  do_futex+0x32b/0x350
[  164.512890][ T6750]  ? __pfx_do_futex+0x10/0x10
[  164.512917][ T6750]  ? __pfx_do_sys_openat2+0x10/0x10
[  164.512961][ T6750]  ? __sys_sendmsg+0x18f/0x220
[  164.512993][ T6750]  __x64_sys_futex+0x34f/0x4d0
[  164.513027][ T6750]  ? __x64_sys_openat+0x12d/0x210
[  164.513071][ T6750]  ? __pfx___x64_sys_futex+0x10/0x10
[  164.513110][ T6750]  ? rcu_is_watching+0x12/0xc0
[  164.513151][ T6750]  do_syscall_64+0x10b/0xf80
[  164.513186][ T6750]  ? clear_bhb_loop+0x40/0x90
[  164.513224][ T6750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.513256][ T6750] RIP: 0033:0x7f1df059cdd9
[  164.513291][ T6750] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  164.513320][ T6750] RSP: 002b:00007f1df13e60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  164.513350][ T6750] RAX: ffffffffffffffda RBX: 00007f1df0815fa8 RCX: 00007f1df059cdd9
[  164.513368][ T6750] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1df0815fac
[  164.513386][ T6750] RBP: 00007f1df0815fa0 R08: 0000000000000001 R09: 0000000000000000
[  164.513404][ T6750] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000000
[  164.513420][ T6750] R13: 00007f1df0816038 R14: 00007ffeb8fe44f0 R15: 00007ffeb8fe45d8
[  164.513460][ T6750]  </TASK>
[  168.128998][ T6808] netlink: 12 bytes leftover after parsing attributes in process `syz.3.232'.
[  168.169741][ T6808] i: entered promiscuous mode
[  168.260185][ T6808] HfR: entered promiscuous mode
[  168.831859][ T6830] FAULT_INJECTION: forcing a failure.
[  168.831859][ T6830] name failslab, interval 1, probability 0, space 0, times 0
[  168.847062][ T6830] CPU: 1 UID: 0 PID: 6830 Comm: syz.1.235 Not tainted syzkaller #0 PREEMPT(full) 
[  168.847105][ T6830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  168.847120][ T6830] Call Trace:
[  168.847130][ T6830]  <TASK>
[  168.847140][ T6830]  dump_stack_lvl+0x100/0x190
[  168.847180][ T6830]  should_fail_ex.cold+0x5/0xa
[  168.847215][ T6830]  ? tomoyo_realpath_from_path+0xb6/0x690
[  168.847260][ T6830]  should_failslab+0xc2/0x120
[  168.847295][ T6830]  __kmalloc_noprof+0xe0/0x850
[  168.847337][ T6830]  ? kfree+0x1dd/0x6c0
[  168.847385][ T6830]  tomoyo_realpath_from_path+0xb6/0x690
[  168.847428][ T6830]  tomoyo_path_number_perm+0x23c/0x580
[  168.847455][ T6830]  ? tomoyo_path_number_perm+0x22e/0x580
[  168.847488][ T6830]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  168.847515][ T6830]  ? futex_wait+0x11e/0x370
[  168.847591][ T6830]  ? find_held_lock+0x2b/0x80
[  168.847629][ T6830]  ? __fget_files+0x215/0x3d0
[  168.847656][ T6830]  ? hook_file_ioctl_common+0x149/0x410
[  168.847684][ T6830]  ? __fget_files+0x215/0x3d0
[  168.847722][ T6830]  ? __fget_files+0x21f/0x3d0
[  168.847759][ T6830]  security_file_ioctl+0xd3/0x230
[  168.847788][ T6830]  __x64_sys_ioctl+0xb7/0x210
[  168.847820][ T6830]  do_syscall_64+0x10b/0xf80
[  168.847852][ T6830]  ? clear_bhb_loop+0x40/0x90
[  168.847887][ T6830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.847916][ T6830] RIP: 0033:0x7fc404f9cdd9
[  168.847941][ T6830] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  168.847966][ T6830] RSP: 002b:00007fc405e9d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  168.847995][ T6830] RAX: ffffffffffffffda RBX: 00007fc405215fa0 RCX: 00007fc404f9cdd9
[  168.848013][ T6830] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000009
[  168.848031][ T6830] RBP: 00007fc405032d69 R08: 0000000000000000 R09: 0000000000000000
[  168.848048][ T6830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  168.848065][ T6830] R13: 00007fc405216038 R14: 00007fc405215fa0 R15: 00007ffdc46160c8
[  168.848105][ T6830]  </TASK>
[  168.848117][ T6830] ERROR: Out of memory at tomoyo_realpath_from_path.
[  169.272489][ T6833] hub 1-0:1.0: USB hub found
[  169.279826][ T6833] hub 1-0:1.0: 1 port detected
[  169.804194][ T6850] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  169.830921][ T6850] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  169.883028][ T6849] bridge0: port 3(dummy0) entered blocking state
[  169.924997][ T6849] bridge0: port 3(dummy0) entered disabled state
[  170.005773][ T6849] dummy0: entered allmulticast mode
[  170.049224][ T6850] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  170.061258][ T6849] dummy0: entered promiscuous mode
[  170.100698][ T6849] bridge0: port 3(dummy0) entered blocking state
[  170.107258][ T6849] bridge0: port 3(dummy0) entered forwarding state
[  170.120179][ T6850] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  170.144317][ T6850] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  170.267045][ T6850] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  170.288453][ T6850] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  170.297071][ T6850] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  170.329366][ T6850] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  170.351797][ T6850] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  170.376331][ T6850] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  170.444455][ T6850] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  171.787876][   T51] Bluetooth: hci0: command 0x0c1a tx timeout
[  172.049851][ T6902] netlink: 318 bytes leftover after parsing attributes in process `syz.2.257'.
[  172.187878][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  172.277733][ T6905] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  172.299401][ T6905] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  172.322909][ T6905] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  172.356209][ T6905] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  174.267013][   T51] Bluetooth: hci0: command 0x0c1a tx timeout
[  174.346917][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  174.356321][ T5621] Bluetooth: hci2: command 0x0c1a tx timeout
[  174.356360][ T5634] Bluetooth: hci1: command 0x0c1a tx timeout
[  174.705392][ T6935] FAULT_INJECTION: forcing a failure.
[  174.705392][ T6935] name failslab, interval 1, probability 0, space 0, times 0
[  174.723154][ T6937] netlink: 4 bytes leftover after parsing attributes in process `syz.2.265'.
[  174.735699][ T6937] netlink: 'syz.2.265': attribute type 3 has an invalid length.
[  174.745766][ T6937] netlink: 17 bytes leftover after parsing attributes in process `syz.2.265'.
[  174.767841][ T6935] CPU: 1 UID: 0 PID: 6935 Comm: syz.1.272 Not tainted syzkaller #0 PREEMPT(full) 
[  174.767886][ T6935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  174.767902][ T6935] Call Trace:
[  174.767913][ T6935]  <TASK>
[  174.767923][ T6935]  dump_stack_lvl+0x100/0x190
[  174.767962][ T6935]  should_fail_ex.cold+0x5/0xa
[  174.768002][ T6935]  should_failslab+0xc2/0x120
[  174.768040][ T6935]  __kmalloc_cache_noprof+0x7a/0x6f0
[  174.768077][ T6935]  ? kvm_uevent_notify_change.part.0+0x2a6/0x450
[  174.768130][ T6935]  kvm_uevent_notify_change.part.0+0x2a6/0x450
[  174.768178][ T6935]  ? __pfx_kvm_vm_release+0x10/0x10
[  174.768229][ T6935]  kvm_put_kvm+0xe4/0xb10
[  174.768268][ T6935]  ? lockdep_hardirqs_on+0x78/0x100
[  174.768307][ T6935]  ? _raw_spin_unlock_irq+0x2e/0x50
[  174.768343][ T6935]  ? __pfx_kvm_vm_release+0x10/0x10
[  174.768384][ T6935]  kvm_vm_release+0x3c/0x50
[  174.768424][ T6935]  __fput+0x3ff/0xb50
[  174.768477][ T6935]  task_work_run+0x150/0x240
[  174.768512][ T6935]  ? __pfx_task_work_run+0x10/0x10
[  174.768545][ T6935]  ? rcu_is_watching+0x12/0xc0
[  174.768588][ T6935]  exit_to_user_mode_loop+0x100/0x4a0
[  174.768617][ T6935]  ? do_syscall_64+0x519/0xf80
[  174.768656][ T6935]  do_syscall_64+0x6f2/0xf80
[  174.768690][ T6935]  ? clear_bhb_loop+0x40/0x90
[  174.768727][ T6935]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.768764][ T6935] RIP: 0033:0x7fc404f9cdd9
[  174.768790][ T6935] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  174.768816][ T6935] RSP: 002b:00007fc405e9d028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  174.768844][ T6935] RAX: 0000000000000000 RBX: 00007fc405215fa0 RCX: 00007fc404f9cdd9
[  174.768861][ T6935] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  174.768877][ T6935] RBP: 00007fc405032d69 R08: 0000000000000000 R09: 0000000000000000
[  174.768895][ T6935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  174.768911][ T6935] R13: 00007fc405216038 R14: 00007fc405215fa0 R15: 00007ffdc46160c8
[  174.768951][ T6935]  </TASK>
[  176.348306][ T5634] Bluetooth: hci0: command 0x0c1a tx timeout
[  176.426914][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  176.426987][ T5621] Bluetooth: hci3: command 0x0c1a tx timeout
[  176.433114][ T5634] Bluetooth: hci1: command 0x0c1a tx timeout
[  178.508886][ T5634] Bluetooth: hci3: command 0x0c1a tx timeout
[  178.508898][ T5621] Bluetooth: hci2: command 0x0c1a tx timeout
[  179.240770][ T7001] FAULT_INJECTION: forcing a failure.
[  179.240770][ T7001] name failslab, interval 1, probability 0, space 0, times 0
[  179.263684][ T7001] CPU: 1 UID: 0 PID: 7001 Comm: syz.3.278 Not tainted syzkaller #0 PREEMPT(full) 
[  179.263726][ T7001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  179.263743][ T7001] Call Trace:
[  179.263754][ T7001]  <TASK>
[  179.263764][ T7001]  dump_stack_lvl+0x100/0x190
[  179.263803][ T7001]  should_fail_ex.cold+0x5/0xa
[  179.263843][ T7001]  should_failslab+0xc2/0x120
[  179.263879][ T7001]  __kmalloc_cache_noprof+0x7a/0x6f0
[  179.263923][ T7001]  ? kvm_uevent_notify_change.part.0+0x2a6/0x450
[  179.263981][ T7001]  kvm_uevent_notify_change.part.0+0x2a6/0x450
[  179.264032][ T7001]  ? __pfx_kvm_vm_release+0x10/0x10
[  179.264073][ T7001]  kvm_put_kvm+0xe4/0xb10
[  179.264114][ T7001]  ? lockdep_hardirqs_on+0x78/0x100
[  179.264151][ T7001]  ? _raw_spin_unlock_irq+0x2e/0x50
[  179.264185][ T7001]  ? __pfx_kvm_vm_release+0x10/0x10
[  179.264237][ T7001]  kvm_vm_release+0x3c/0x50
[  179.264279][ T7001]  __fput+0x3ff/0xb50
[  179.264330][ T7001]  task_work_run+0x150/0x240
[  179.264364][ T7001]  ? __pfx_task_work_run+0x10/0x10
[  179.264398][ T7001]  ? rcu_is_watching+0x12/0xc0
[  179.264440][ T7001]  exit_to_user_mode_loop+0x100/0x4a0
[  179.264471][ T7001]  ? do_syscall_64+0x519/0xf80
[  179.264509][ T7001]  do_syscall_64+0x6f2/0xf80
[  179.264543][ T7001]  ? clear_bhb_loop+0x40/0x90
[  179.264581][ T7001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.264612][ T7001] RIP: 0033:0x7f1df059cdd9
[  179.264637][ T7001] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  179.264668][ T7001] RSP: 002b:00007f1df13e6028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  179.264695][ T7001] RAX: 0000000000000000 RBX: 00007f1df0815fa0 RCX: 00007f1df059cdd9
[  179.264712][ T7001] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  179.264728][ T7001] RBP: 00007f1df0632d69 R08: 0000000000000000 R09: 0000000000000000
[  179.264745][ T7001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  179.264762][ T7001] R13: 00007f1df0816038 R14: 00007f1df0815fa0 R15: 00007ffeb8fe45d8
[  179.264799][ T7001]  </TASK>
[  179.972232][ T7013] FAULT_INJECTION: forcing a failure.
[  179.972232][ T7013] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  179.998376][ T7013] CPU: 1 UID: 0 PID: 7013 Comm: syz.0.280 Not tainted syzkaller #0 PREEMPT(full) 
[  179.998424][ T7013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  179.998441][ T7013] Call Trace:
[  179.998451][ T7013]  <TASK>
[  179.998461][ T7013]  dump_stack_lvl+0x100/0x190
[  179.998504][ T7013]  should_fail_ex.cold+0x5/0xa
[  179.998542][ T7013]  _copy_from_user+0x2e/0xd0
[  179.998587][ T7013]  kimage_load_segment+0x64d/0xde0
[  179.998641][ T7013]  do_kexec_load+0x58d/0x810
[  179.998692][ T7013]  ? __pfx_do_kexec_load+0x10/0x10
[  179.998743][ T7013]  ? _copy_from_user+0x59/0xd0
[  179.998795][ T7013]  __x64_sys_kexec_load+0x1bf/0x230
[  179.998847][ T7013]  do_syscall_64+0x10b/0xf80
[  179.998884][ T7013]  ? clear_bhb_loop+0x40/0x90
[  179.998924][ T7013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.998956][ T7013] RIP: 0033:0x7ff4b059cdd9
[  179.998982][ T7013] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  179.999010][ T7013] RSP: 002b:00007ff4b1468028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[  179.999040][ T7013] RAX: ffffffffffffffda RBX: 00007ff4b0815fa0 RCX: 00007ff4b059cdd9
[  179.999061][ T7013] RDX: 0000200000000040 RSI: 0000000000000002 RDI: 0000000000000005
[  179.999078][ T7013] RBP: 00007ff4b0632d69 R08: 0000000000000000 R09: 0000000000000000
[  179.999094][ T7013] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[  179.999109][ T7013] R13: 00007ff4b0816038 R14: 00007ff4b0815fa0 R15: 00007fff21b8d448
[  179.999145][ T7013]  </TASK>
[  181.981830][   T12] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  182.078527][ T7045] hub 1-0:1.0: USB hub found
[  182.087330][ T7045] hub 1-0:1.0: 1 port detected
[  182.154578][ T7048] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input5
[  182.827003][ T7064] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  182.843323][ T7064] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  182.860094][ T7064] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  182.875374][ T7064] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  184.070993][ T7084] FAULT_INJECTION: forcing a failure.
[  184.070993][ T7084] name failslab, interval 1, probability 0, space 0, times 0
[  184.105670][ T7084] CPU: 0 UID: 0 PID: 7084 Comm: syz.1.309 Not tainted syzkaller #0 PREEMPT(full) 
[  184.105710][ T7084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  184.105727][ T7084] Call Trace:
[  184.105736][ T7084]  <TASK>
[  184.105747][ T7084]  dump_stack_lvl+0x100/0x190
[  184.105788][ T7084]  should_fail_ex.cold+0x5/0xa
[  184.105826][ T7084]  should_failslab+0xc2/0x120
[  184.105862][ T7084]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  184.105907][ T7084]  ? sk_prot_alloc+0x60/0x2a0
[  184.105949][ T7084]  sk_prot_alloc+0x60/0x2a0
[  184.105986][ T7084]  sk_alloc+0x36/0xe80
[  184.106030][ T7084]  pn_socket_create+0x22d/0x560
[  184.106074][ T7084]  __sock_create+0x339/0x860
[  184.106118][ T7084]  __sys_socket+0x14d/0x260
[  184.106155][ T7084]  ? __pfx___sys_socket+0x10/0x10
[  184.106204][ T7084]  __x64_sys_socket+0x72/0xb0
[  184.106246][ T7084]  ? lockdep_hardirqs_on+0x78/0x100
[  184.106280][ T7084]  do_syscall_64+0x10b/0xf80
[  184.106314][ T7084]  ? clear_bhb_loop+0x40/0x90
[  184.106351][ T7084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.106380][ T7084] RIP: 0033:0x7fc404f9cdd9
[  184.106404][ T7084] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  184.106430][ T7084] RSP: 002b:00007fc405e9d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  184.106458][ T7084] RAX: ffffffffffffffda RBX: 00007fc405215fa0 RCX: 00007fc404f9cdd9
[  184.106486][ T7084] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000023
[  184.106502][ T7084] RBP: 00007fc405032d69 R08: 0000000000000000 R09: 0000000000000000
[  184.106517][ T7084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  184.106534][ T7084] R13: 00007fc405216038 R14: 00007fc405215fa0 R15: 00007ffdc46160c8
[  184.106573][ T7084]  </TASK>
[  184.461980][ T7084] sd 0:0:1:0: PR command failed: 1026
[  184.480412][ T7084] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  184.495342][ T7084] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  184.678204][ T7095] FAULT_INJECTION: forcing a failure.
[  184.678204][ T7095] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  184.692119][ T7095] CPU: 0 UID: 0 PID: 7095 Comm: syz.3.300 Not tainted syzkaller #0 PREEMPT(full) 
[  184.692159][ T7095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  184.692175][ T7095] Call Trace:
[  184.692185][ T7095]  <TASK>
[  184.692251][ T7095]  dump_stack_lvl+0x100/0x190
[  184.692291][ T7095]  should_fail_ex.cold+0x5/0xa
[  184.692322][ T7095]  ? prepare_alloc_pages+0x16d/0x5f0
[  184.692365][ T7095]  should_fail_alloc_page+0xeb/0x140
[  184.692403][ T7095]  prepare_alloc_pages+0x1f0/0x5f0
[  184.692447][ T7095]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  184.692502][ T7095]  ? rcu_is_watching+0x12/0xc0
[  184.692541][ T7095]  ? trace_mm_page_alloc+0x163/0x1d0
[  184.692581][ T7095]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  184.692635][ T7095]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  184.692683][ T7095]  ? do_raw_spin_lock+0x128/0x260
[  184.692727][ T7095]  ? mark_held_locks+0x40/0x70
[  184.692760][ T7095]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  184.692809][ T7095]  ? stack_depot_save_flags+0x479/0x9d0
[  184.692852][ T7095]  ? kasan_save_stack+0x3f/0x50
[  184.692880][ T7095]  ? kasan_save_stack+0x30/0x50
[  184.692918][ T7095]  alloc_pages_bulk_noprof+0x657/0x1390
[  184.692977][ T7095]  ? policy_nodemask+0xed/0x4f0
[  184.693017][ T7095]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  184.693090][ T7095]  __kasan_populate_vmalloc+0xf0/0x210
[  184.693148][ T7095]  pcpu_get_vm_areas+0x2df1/0x55d0
[  184.693225][ T7095]  ? __pfx_pcpu_get_vm_areas+0x10/0x10
[  184.693273][ T7095]  pcpu_create_chunk+0x254/0x730
[  184.693326][ T7095]  pcpu_alloc_noprof+0x182c/0x1cc0
[  184.693388][ T7095]  bpf_map_alloc_percpu+0x9a/0xf0
[  184.693434][ T7095]  ? __pfx_bpf_map_alloc_percpu+0x10/0x10
[  184.693477][ T7095]  ? __pfx___might_resched+0x10/0x10
[  184.693510][ T7095]  ? bpf_map_memcg_exit+0x99/0x390
[  184.693554][ T7095]  htab_map_alloc+0x1054/0x14e0
[  184.693603][ T7095]  ? ns_capable+0xd2/0xf0
[  184.693639][ T7095]  ? __pfx_htab_map_mem_usage+0x10/0x10
[  184.693679][ T7095]  map_create+0x84e/0x2bc0
[  184.693718][ T7095]  ? futex_unqueue+0x13d/0x2c0
[  184.693749][ T7095]  ? __futex_wait+0x256/0x300
[  184.693793][ T7095]  ? __pfx_map_create+0x10/0x10
[  184.693834][ T7095]  ? __might_fault+0xc5/0x140
[  184.693875][ T7095]  ? __might_fault+0xc5/0x140
[  184.693924][ T7095]  __sys_bpf+0x2091/0x4b90
[  184.693945][ T7095]  ? __pfx___sys_bpf+0x10/0x10
[  184.693962][ T7095]  ? __pfx_futex_wait+0x10/0x10
[  184.693990][ T7095]  ? do_writev+0x214/0x340
[  184.694014][ T7095]  ? do_futex+0x192/0x350
[  184.694046][ T7095]  ? xfd_validate_state+0x129/0x190
[  184.694072][ T7095]  __x64_sys_bpf+0x7b/0xc0
[  184.694089][ T7095]  ? lockdep_hardirqs_on+0x78/0x100
[  184.694112][ T7095]  do_syscall_64+0x10b/0xf80
[  184.694132][ T7095]  ? clear_bhb_loop+0x40/0x90
[  184.694155][ T7095]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.694174][ T7095] RIP: 0033:0x7f1df059cdd9
[  184.694200][ T7095] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  184.694217][ T7095] RSP: 002b:00007f1df13a4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  184.694235][ T7095] RAX: ffffffffffffffda RBX: 00007f1df0816180 RCX: 00007f1df059cdd9
[  184.694247][ T7095] RDX: 00000000000000a3 RSI: 0000200000000780 RDI: 0000000000000000
[  184.694258][ T7095] RBP: 00007f1df0632d69 R08: 0000000000000000 R09: 0000000000000000
[  184.694268][ T7095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  184.694279][ T7095] R13: 00007f1df0816218 R14: 00007f1df0816180 R15: 00007ffeb8fe45d8
[  184.694303][ T7095]  </TASK>
[  184.852410][ T5634] Bluetooth: hci0: command 0x0c1a tx timeout
[  185.062704][ T5621] Bluetooth: hci3: command 0x0c1a tx timeout
[  185.064075][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  185.071260][ T5621] Bluetooth: hci1: command 0x0c1a tx timeout
[  186.377935][ T7118] hub 1-0:1.0: USB hub found
[  186.399479][ T7118] hub 1-0:1.0: 1 port detected
[  186.544500][ T7126] FAULT_INJECTION: forcing a failure.
[  186.544500][ T7126] name failslab, interval 1, probability 0, space 0, times 0
[  186.544565][ T7126] CPU: 0 UID: 0 PID: 7126 Comm: syz.0.310 Not tainted syzkaller #0 PREEMPT(full) 
[  186.544599][ T7126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  186.544616][ T7126] Call Trace:
[  186.544625][ T7126]  <TASK>
[  186.544636][ T7126]  dump_stack_lvl+0x100/0x190
[  186.544674][ T7126]  should_fail_ex.cold+0x5/0xa
[  186.544714][ T7126]  should_failslab+0xc2/0x120
[  186.544748][ T7126]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  186.544778][ T7126]  ? kvasprintf_const+0x66/0x1a0
[  186.544818][ T7126]  kvasprintf+0xbc/0x150
[  186.544848][ T7126]  ? __pfx_kvasprintf+0x10/0x10
[  186.544882][ T7126]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  186.544925][ T7126]  ? lockdep_init_map_type+0x5c/0x250
[  186.544967][ T7126]  kvasprintf_const+0x66/0x1a0
[  186.545000][ T7126]  kobject_set_name_vargs+0x5a/0x140
[  186.545050][ T7126]  device_create_groups_vargs+0x1b1/0x270
[  186.545097][ T7126]  device_create+0xed/0x130
[  186.545136][ T7126]  ? __pfx_device_create+0x10/0x10
[  186.545180][ T7126]  ? do_raw_spin_lock+0x128/0x260
[  186.545215][ T7126]  ? is_console_locked+0x9/0x20
[  186.545257][ T7126]  ? con_is_visible+0x65/0x150
[  186.545293][ T7126]  ? csi_J+0x57e/0xad0
[  186.545344][ T7126]  vcs_make_sysfs+0x32/0x80
[  186.545381][ T7126]  vc_allocate+0x539/0x880
[  186.545423][ T7126]  ? __pfx_vc_allocate+0x10/0x10
[  186.545479][ T7126]  con_install+0xa1/0x620
[  186.545531][ T7126]  ? __pfx_con_install+0x10/0x10
[  186.545582][ T7126]  ? __pfx_con_install+0x10/0x10
[  186.545626][ T7126]  tty_init_dev.part.0+0x9e/0x470
[  186.545678][ T7126]  tty_open+0xa63/0xfa0
[  186.545731][ T7126]  ? __pfx_tty_open+0x10/0x10
[  186.545774][ T7126]  ? chrdev_open+0x589/0x6a0
[  186.545810][ T7126]  ? chrdev_open+0x589/0x6a0
[  186.545854][ T7126]  ? __pfx_tty_open+0x10/0x10
[  186.545899][ T7126]  chrdev_open+0x234/0x6a0
[  186.545939][ T7126]  ? __pfx_chrdev_open+0x10/0x10
[  186.545980][ T7126]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  186.546029][ T7126]  do_dentry_open+0x6d8/0x1660
[  186.546066][ T7126]  ? __pfx_chrdev_open+0x10/0x10
[  186.546114][ T7126]  vfs_open+0x82/0x3f0
[  186.546166][ T7126]  path_openat+0x208c/0x31a0
[  186.546216][ T7126]  ? __pfx_path_openat+0x10/0x10
[  186.546266][ T7126]  do_file_open+0x20e/0x430
[  186.546304][ T7126]  ? __pfx_do_file_open+0x10/0x10
[  186.546372][ T7126]  ? alloc_fd+0x476/0x790
[  186.546412][ T7126]  ? do_getname+0x191/0x390
[  186.546461][ T7126]  do_sys_openat2+0x10d/0x1e0
[  186.546508][ T7126]  ? __pfx_do_sys_openat2+0x10/0x10
[  186.546557][ T7126]  ? __pfx_idempotent_init_module+0x10/0x10
[  186.546619][ T7126]  __x64_sys_openat+0x12d/0x210
[  186.546667][ T7126]  ? __pfx___x64_sys_openat+0x10/0x10
[  186.546721][ T7126]  ? rcu_is_watching+0x12/0xc0
[  186.546761][ T7126]  do_syscall_64+0x10b/0xf80
[  186.546798][ T7126]  ? clear_bhb_loop+0x40/0x90
[  186.546837][ T7126]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.546870][ T7126] RIP: 0033:0x7ff4b059cdd9
[  186.546894][ T7126] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  186.546922][ T7126] RSP: 002b:00007ff4b1447028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  186.546949][ T7126] RAX: ffffffffffffffda RBX: 00007ff4b0816090 RCX: 00007ff4b059cdd9
[  186.546967][ T7126] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  186.546986][ T7126] RBP: 00007ff4b0632d69 R08: 0000000000000000 R09: 0000000000000000
[  186.547004][ T7126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  186.547023][ T7126] R13: 00007ff4b0816128 R14: 00007ff4b0816090 R15: 00007fff21b8d448
[  186.547067][ T7126]  </TASK>
[  187.985768][ T7140] FAULT_INJECTION: forcing a failure.
[  187.985768][ T7140] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  188.024592][ T7140] CPU: 1 UID: 0 PID: 7140 Comm: syz.2.316 Not tainted syzkaller #0 PREEMPT(full) 
[  188.024635][ T7140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  188.024653][ T7140] Call Trace:
[  188.024663][ T7140]  <TASK>
[  188.024675][ T7140]  dump_stack_lvl+0x100/0x190
[  188.024714][ T7140]  should_fail_ex.cold+0x5/0xa
[  188.024745][ T7140]  ? prepare_alloc_pages+0x16d/0x5f0
[  188.024782][ T7140]  should_fail_alloc_page+0xeb/0x140
[  188.024807][ T7140]  prepare_alloc_pages+0x1f0/0x5f0
[  188.024833][ T7140]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  188.024866][ T7140]  ? __handle_mm_fault+0x4ef/0x2a00
[  188.024897][ T7140]  ? __lock_acquire+0x4a5/0x2630
[  188.024913][ T7140]  ? css_rstat_updated+0x1ce/0x5a0
[  188.024942][ T7140]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  188.024971][ T7140]  ? __pfx_css_rstat_updated+0x10/0x10
[  188.025007][ T7140]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  188.025027][ T7140]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  188.025049][ T7140]  ? __up_read+0x2c1/0x6e0
[  188.025069][ T7140]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  188.025097][ T7140]  ? policy_nodemask+0xed/0x4f0
[  188.025119][ T7140]  alloc_pages_mpol+0x1fb/0x540
[  188.025140][ T7140]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  188.025162][ T7140]  ? rcu_is_watching+0x12/0xc0
[  188.025183][ T7140]  ? irqentry_exit+0x246/0x790
[  188.025205][ T7140]  ? lockdep_hardirqs_on+0x78/0x100
[  188.025230][ T7140]  alloc_pages_noprof+0x1a/0x160
[  188.025254][ T7140]  kimage_alloc_pages+0x72/0x380
[  188.025282][ T7140]  kimage_alloc_page+0x232/0x910
[  188.025313][ T7140]  kimage_load_segment+0x507/0xde0
[  188.025345][ T7140]  do_kexec_load+0x58d/0x810
[  188.025375][ T7140]  ? __pfx_do_kexec_load+0x10/0x10
[  188.025415][ T7140]  ? _copy_from_user+0x59/0xd0
[  188.025463][ T7140]  __x64_sys_kexec_load+0x1bf/0x230
[  188.025507][ T7140]  do_syscall_64+0x10b/0xf80
[  188.025541][ T7140]  ? clear_bhb_loop+0x40/0x90
[  188.025574][ T7140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.025602][ T7140] RIP: 0033:0x7f1d8c79cdd9
[  188.025626][ T7140] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  188.025653][ T7140] RSP: 002b:00007f1d8d5d3028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[  188.025680][ T7140] RAX: ffffffffffffffda RBX: 00007f1d8ca15fa0 RCX: 00007f1d8c79cdd9
[  188.025691][ T7140] RDX: 0000200000000040 RSI: 0000000000000002 RDI: 0000000000000005
[  188.025702][ T7140] RBP: 00007f1d8c832d69 R08: 0000000000000000 R09: 0000000000000000
[  188.025712][ T7140] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[  188.025723][ T7140] R13: 00007f1d8ca16038 R14: 00007f1d8ca15fa0 R15: 00007ffd359da148
[  188.025746][ T7140]  </TASK>
[  190.858229][ T7191] FAULT_INJECTION: forcing a failure.
[  190.858229][ T7191] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  190.895106][ T7191] CPU: 1 UID: 0 PID: 7191 Comm: syz.1.327 Not tainted syzkaller #0 PREEMPT(full) 
[  190.895146][ T7191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  190.895159][ T7191] Call Trace:
[  190.895166][ T7191]  <TASK>
[  190.895173][ T7191]  dump_stack_lvl+0x100/0x190
[  190.895206][ T7191]  should_fail_ex.cold+0x5/0xa
[  190.895226][ T7191]  ? prepare_alloc_pages+0x16d/0x5f0
[  190.895251][ T7191]  should_fail_alloc_page+0xeb/0x140
[  190.895274][ T7191]  prepare_alloc_pages+0x1f0/0x5f0
[  190.895300][ T7191]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  190.895333][ T7191]  ? __handle_mm_fault+0x4ef/0x2a00
[  190.895364][ T7191]  ? __lock_acquire+0x4a5/0x2630
[  190.895380][ T7191]  ? css_rstat_updated+0x1ce/0x5a0
[  190.895409][ T7191]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  190.895439][ T7191]  ? __pfx_css_rstat_updated+0x10/0x10
[  190.895475][ T7191]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  190.895495][ T7191]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  190.895517][ T7191]  ? __up_read+0x2c1/0x6e0
[  190.895539][ T7191]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  190.895579][ T7191]  ? policy_nodemask+0xed/0x4f0
[  190.895608][ T7191]  alloc_pages_mpol+0x1fb/0x540
[  190.895629][ T7191]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  190.895648][ T7191]  ? rcu_is_watching+0x12/0xc0
[  190.895670][ T7191]  ? irqentry_exit+0x246/0x790
[  190.895692][ T7191]  ? lockdep_hardirqs_on+0x78/0x100
[  190.895716][ T7191]  alloc_pages_noprof+0x1a/0x160
[  190.895740][ T7191]  kimage_alloc_pages+0x72/0x380
[  190.895768][ T7191]  kimage_alloc_page+0x232/0x910
[  190.895799][ T7191]  kimage_load_segment+0x507/0xde0
[  190.895832][ T7191]  do_kexec_load+0x58d/0x810
[  190.895861][ T7191]  ? __pfx_do_kexec_load+0x10/0x10
[  190.895892][ T7191]  ? _copy_from_user+0x59/0xd0
[  190.895922][ T7191]  __x64_sys_kexec_load+0x1bf/0x230
[  190.895952][ T7191]  do_syscall_64+0x10b/0xf80
[  190.895998][ T7191]  ? clear_bhb_loop+0x40/0x90
[  190.896020][ T7191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.896039][ T7191] RIP: 0033:0x7fc404f9cdd9
[  190.896054][ T7191] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  190.896071][ T7191] RSP: 002b:00007fc405e9d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[  190.896089][ T7191] RAX: ffffffffffffffda RBX: 00007fc405215fa0 RCX: 00007fc404f9cdd9
[  190.896101][ T7191] RDX: 0000200000000040 RSI: 0000000000000002 RDI: 0000000000000005
[  190.896111][ T7191] RBP: 00007fc405032d69 R08: 0000000000000000 R09: 0000000000000000
[  190.896121][ T7191] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[  190.896137][ T7191] R13: 00007fc405216038 R14: 00007fc405215fa0 R15: 00007ffdc46160c8
[  190.896159][ T7191]  </TASK>
[  191.402065][   T30] audit: type=1800 audit(1843104559.290:6): pid=7189 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.326" name="file0" dev="tmpfs" ino=442 res=0 errno=0
[  193.947945][ T7228] FAULT_INJECTION: forcing a failure.
[  193.947945][ T7228] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  194.026116][ T7228] CPU: 0 UID: 0 PID: 7228 Comm: syz.3.337 Not tainted syzkaller #0 PREEMPT(full) 
[  194.026988][ T7228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  194.027008][ T7228] Call Trace:
[  194.027019][ T7228]  <TASK>
[  194.027030][ T7228]  dump_stack_lvl+0x100/0x190
[  194.027068][ T7228]  should_fail_ex.cold+0x5/0xa
[  194.027100][ T7228]  ? prepare_alloc_pages+0x16d/0x5f0
[  194.027143][ T7228]  should_fail_alloc_page+0xeb/0x140
[  194.027212][ T7228]  prepare_alloc_pages+0x1f0/0x5f0
[  194.027256][ T7228]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  194.027305][ T7228]  ? io_schedule_timeout+0xc1/0x110
[  194.027345][ T7228]  ? __lock_acquire+0x4a5/0x2630
[  194.027382][ T7228]  ? __lock_acquire+0x4a5/0x2630
[  194.027407][ T7228]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  194.027469][ T7228]  ? find_held_lock+0x2b/0x80
[  194.027505][ T7228]  ? is_bpf_text_address+0x8a/0x1a0
[  194.027546][ T7228]  ? is_bpf_text_address+0x8a/0x1a0
[  194.027586][ T7228]  ? bpf_ksym_find+0x124/0x1c0
[  194.027618][ T7228]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  194.027666][ T7228]  ? policy_nodemask+0xed/0x4f0
[  194.027702][ T7228]  alloc_pages_mpol+0x1fb/0x540
[  194.027739][ T7228]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  194.027787][ T7228]  folio_alloc_mpol_noprof+0x36/0x260
[  194.027831][ T7228]  shmem_alloc_folio+0x135/0x160
[  194.027876][ T7228]  shmem_alloc_and_add_folio+0x371/0xd40
[  194.027935][ T7228]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  194.027982][ T7228]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  194.028039][ T7228]  shmem_get_folio_gfp+0x6ab/0x1900
[  194.028095][ T7228]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  194.028145][ T7228]  ? filemap_map_pages+0x9c1/0x2140
[  194.028209][ T7228]  shmem_fault+0x1f9/0xa20
[  194.028242][ T7228]  ? __pfx_shmem_fault+0x10/0x10
[  194.028298][ T7228]  ? __pfx_filemap_map_pages+0x10/0x10
[  194.028351][ T7228]  ? find_held_lock+0x2b/0x80
[  194.028395][ T7228]  __do_fault+0x10b/0x440
[  194.028429][ T7228]  do_fault+0xa99/0x1750
[  194.028474][ T7228]  __handle_mm_fault+0x187d/0x2a00
[  194.028526][ T7228]  ? mt_find+0x45e/0x8e0
[  194.028564][ T7228]  ? __pfx___handle_mm_fault+0x10/0x10
[  194.028606][ T7228]  ? __pfx_mt_find+0x10/0x10
[  194.028668][ T7228]  ? find_vma+0xbf/0x140
[  194.028701][ T7228]  ? __pfx_find_vma+0x10/0x10
[  194.028739][ T7228]  handle_mm_fault+0x36d/0xa20
[  194.028793][ T7228]  do_user_addr_fault+0x74c/0x12f0
[  194.028836][ T7228]  ? trace_page_fault_kernel+0x7a/0x200
[  194.028876][ T7228]  exc_page_fault+0x6f/0xd0
[  194.028913][ T7228]  asm_exc_page_fault+0x26/0x30
[  194.028944][ T7228] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  194.028992][ T7228] Code: 9b 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  194.029021][ T7228] RSP: 0018:ffffc90002e87d78 EFLAGS: 00050206
[  194.029047][ T7228] RAX: 0000000000000001 RBX: 000000000000c000 RCX: 0000000000001000
[  194.029066][ T7228] RDX: 0000000000000001 RSI: 000000000000c000 RDI: ffff88802a9c1000
[  194.029084][ T7228] RBP: 0000000000001000 R08: 0000000000000001 R09: ffffed10055383ff
[  194.029102][ T7228] R10: ffff88802a9c1fff R11: 0000000000000000 R12: 0000000000000000
[  194.029120][ T7228] R13: ffff88802a9c1000 R14: 0000000048018000 R15: ffff88802968c000
[  194.029169][ T7228]  _copy_from_user+0x98/0xd0
[  194.029218][ T7228]  kimage_load_segment+0x64d/0xde0
[  194.029276][ T7228]  do_kexec_load+0x58d/0x810
[  194.029327][ T7228]  ? __pfx_do_kexec_load+0x10/0x10
[  194.029377][ T7228]  ? _copy_from_user+0x59/0xd0
[  194.029427][ T7228]  __x64_sys_kexec_load+0x1bf/0x230
[  194.029479][ T7228]  do_syscall_64+0x10b/0xf80
[  194.029513][ T7228]  ? clear_bhb_loop+0x40/0x90
[  194.029548][ T7228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.029578][ T7228] RIP: 0033:0x7f1df059cdd9
[  194.029603][ T7228] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  194.029630][ T7228] RSP: 002b:00007f1df13e6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[  194.029656][ T7228] RAX: ffffffffffffffda RBX: 00007f1df0815fa0 RCX: 00007f1df059cdd9
[  194.029674][ T7228] RDX: 0000200000000040 RSI: 0000000000000002 RDI: 0000000000000005
[  194.029691][ T7228] RBP: 00007f1df0632d69 R08: 0000000000000000 R09: 0000000000000000
[  194.029708][ T7228] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[  194.029725][ T7228] R13: 00007f1df0816038 R14: 00007f1df0815fa0 R15: 00007ffeb8fe45d8
[  194.029766][ T7228]  </TASK>
[  194.936692][ T1315] ieee802154 phy0 wpan0: encryption failed: -22
[  194.960062][ T1315] ieee802154 phy1 wpan1: encryption failed: -22
[  196.210184][ T7260] netlink: 28 bytes leftover after parsing attributes in process `syz.3.344'.
[  200.027518][ T7315] random: crng reseeded on system resumption
[  205.057183][ T7364] FAULT_INJECTION: forcing a failure.
[  205.057183][ T7364] name failslab, interval 1, probability 0, space 0, times 0
[  205.079115][ T7364] CPU: 0 UID: 0 PID: 7364 Comm: syz.3.369 Not tainted syzkaller #0 PREEMPT(full) 
[  205.079164][ T7364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  205.079180][ T7364] Call Trace:
[  205.079190][ T7364]  <TASK>
[  205.079200][ T7364]  dump_stack_lvl+0x100/0x190
[  205.079240][ T7364]  should_fail_ex.cold+0x5/0xa
[  205.079279][ T7364]  should_failslab+0xc2/0x120
[  205.079314][ T7364]  __kmalloc_cache_noprof+0x7a/0x6f0
[  205.079353][ T7364]  ? sctp_datamsg_from_user+0x8e/0x1360
[  205.079400][ T7364]  sctp_datamsg_from_user+0x8e/0x1360
[  205.079440][ T7364]  ? __sk_mem_raise_allocated+0x789/0x1580
[  205.079482][ T7364]  ? sctp_primitive_ASSOCIATE+0x9c/0xd0
[  205.079525][ T7364]  sctp_sendmsg_to_asoc+0xb1c/0x1c50
[  205.079554][ T7364]  ? __asan_memset+0x50/0x50
[  205.079600][ T7364]  ? sctp_assoc_set_primary+0x276/0x310
[  205.079630][ T7364]  ? sctp_assoc_add_peer+0x252/0x14f0
[  205.079670][ T7364]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[  205.079716][ T7364]  ? sctp_connect_new_asoc+0x41e/0x770
[  205.079751][ T7364]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  205.079793][ T7364]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  205.079839][ T7364]  sctp_sendmsg+0x1185/0x22b0
[  205.079877][ T7364]  ? __pfx_sctp_sendmsg+0x10/0x10
[  205.079901][ T7364]  ? __lock_acquire+0x4a5/0x2630
[  205.079929][ T7364]  ? aa_sk_perm+0x309/0xaa0
[  205.079959][ T7364]  ? __pfx_aa_sk_perm+0x10/0x10
[  205.079994][ T7364]  ? __pfx_sctp_sendmsg+0x10/0x10
[  205.080021][ T7364]  inet_sendmsg+0x11c/0x140
[  205.080061][ T7364]  ____sys_sendmsg+0x98d/0xb70
[  205.080094][ T7364]  ? __pfx_inet_sendmsg+0x10/0x10
[  205.080203][ T7364]  ? __pfx_____sys_sendmsg+0x10/0x10
[  205.080245][ T7364]  ? futex_unqueue+0x133/0x2c0
[  205.080289][ T7364]  ___sys_sendmsg+0x190/0x1e0
[  205.080332][ T7364]  ? __pfx____sys_sendmsg+0x10/0x10
[  205.080369][ T7364]  ? __pfx___futex_wait+0x10/0x10
[  205.080420][ T7364]  ? find_held_lock+0x2b/0x80
[  205.080481][ T7364]  __sys_sendmmsg+0x205/0x430
[  205.080514][ T7364]  ? __pfx___sys_sendmmsg+0x10/0x10
[  205.080554][ T7364]  ? __pfx_do_futex+0x10/0x10
[  205.080601][ T7364]  ? xfd_validate_state+0x129/0x190
[  205.080644][ T7364]  __x64_sys_sendmmsg+0x9c/0x100
[  205.080673][ T7364]  ? lockdep_hardirqs_on+0x78/0x100
[  205.080709][ T7364]  do_syscall_64+0x10b/0xf80
[  205.080739][ T7364]  ? clear_bhb_loop+0x40/0x90
[  205.080773][ T7364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.080802][ T7364] RIP: 0033:0x7f1df059cdd9
[  205.080827][ T7364] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  205.080854][ T7364] RSP: 002b:00007f1df13e6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  205.080882][ T7364] RAX: ffffffffffffffda RBX: 00007f1df0815fa0 RCX: 00007f1df059cdd9
[  205.080901][ T7364] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000003
[  205.080917][ T7364] RBP: 00007f1df0632d69 R08: 0000000000000000 R09: 0000000000000000
[  205.080933][ T7364] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000000
[  205.080951][ T7364] R13: 00007f1df0816038 R14: 00007f1df0815fa0 R15: 00007ffeb8fe45d8
[  205.080991][ T7364]  </TASK>
[  206.240985][ T7383] kvm: vcpu 4: requested lapic timer restore with starting count register 0x390=2320206334 (148493205376 ns) > initial count (4948343488 ns). Using initial count to start timer.
[  219.155901][ T7514] FAULT_INJECTION: forcing a failure.
[  219.155901][ T7514] name failslab, interval 1, probability 0, space 0, times 0
[  219.178685][ T7514] CPU: 1 UID: 0 PID: 7514 Comm: syz.0.409 Not tainted syzkaller #0 PREEMPT(full) 
[  219.178729][ T7514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  219.178746][ T7514] Call Trace:
[  219.178756][ T7514]  <TASK>
[  219.178768][ T7514]  dump_stack_lvl+0x100/0x190
[  219.178808][ T7514]  should_fail_ex.cold+0x5/0xa
[  219.178846][ T7514]  ? lsm_blob_alloc+0x68/0x90
[  219.178884][ T7514]  should_failslab+0xc2/0x120
[  219.178920][ T7514]  __kmalloc_noprof+0xe0/0x850
[  219.178968][ T7514]  ? trace_kmem_cache_alloc+0xd5/0x100
[  219.179010][ T7514]  lsm_blob_alloc+0x68/0x90
[  219.179057][ T7514]  security_prepare_creds+0x2d/0x290
[  219.179104][ T7514]  prepare_creds+0x5d6/0x950
[  219.179140][ T7514]  __sys_setregid+0x109/0x910
[  219.179180][ T7514]  do_syscall_64+0x10b/0xf80
[  219.179216][ T7514]  ? clear_bhb_loop+0x40/0x90
[  219.179253][ T7514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.179285][ T7514] RIP: 0033:0x7ff4b059cdd9
[  219.179310][ T7514] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  219.179337][ T7514] RSP: 002b:00007ff4b1468028 EFLAGS: 00000246 ORIG_RAX: 0000000000000072
[  219.179367][ T7514] RAX: ffffffffffffffda RBX: 00007ff4b0815fa0 RCX: 00007ff4b059cdd9
[  219.179386][ T7514] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000000
[  219.179403][ T7514] RBP: 00007ff4b0632d69 R08: 0000000000000000 R09: 0000000000000000
[  219.179420][ T7514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  219.179437][ T7514] R13: 00007ff4b0816038 R14: 00007ff4b0815fa0 R15: 00007fff21b8d448
[  219.179477][ T7514]  </TASK>
[  219.779005][   T30] audit: type=1800 audit(1843104587.680:7): pid=7528 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.403" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  221.152656][ T7550] netlink: 28 bytes leftover after parsing attributes in process `syz.0.408'.
[  221.178703][ T7550] dummy0: left allmulticast mode
[  221.184954][ T7550] dummy0: left promiscuous mode
[  221.203695][ T7550] bridge0: port 3(dummy0) entered disabled state
[  221.237133][ T7550] bridge_slave_1: left allmulticast mode
[  221.255014][ T7550] bridge_slave_1: left promiscuous mode
[  221.273661][ T7550] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.316578][ T7550] bridge_slave_0: left allmulticast mode
[  221.334431][ T7550] bridge_slave_0: left promiscuous mode
[  221.353714][ T7550] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.384861][ T7552] netlink: 354 bytes leftover after parsing attributes in process `syz.2.410'.
[  221.424408][ T7558] FAULT_INJECTION: forcing a failure.
[  221.424408][ T7558] name failslab, interval 1, probability 0, space 0, times 0
[  221.459553][ T7558] CPU: 0 UID: 0 PID: 7558 Comm: syz.1.412 Not tainted syzkaller #0 PREEMPT(full) 
[  221.459596][ T7558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  221.459614][ T7558] Call Trace:
[  221.459625][ T7558]  <TASK>
[  221.459637][ T7558]  dump_stack_lvl+0x100/0x190
[  221.459676][ T7558]  should_fail_ex.cold+0x5/0xa
[  221.459716][ T7558]  should_failslab+0xc2/0x120
[  221.459751][ T7558]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  221.459784][ T7558]  ? snd_pcm_hw_rule_add+0x3b3/0x510
[  221.459831][ T7558]  krealloc_node_align_noprof+0x321/0x3e0
[  221.459868][ T7558]  snd_pcm_hw_rule_add+0x3b3/0x510
[  221.459908][ T7558]  ? __pfx_snd_pcm_hw_rule_format+0x10/0x10
[  221.459955][ T7558]  ? __pfx_snd_pcm_hw_rule_add+0x10/0x10
[  221.459995][ T7558]  ? mutex_init_lockdep+0xf1/0x120
[  221.460041][ T7558]  ? snd_pcm_attach_substream+0x287/0xd20
[  221.460096][ T7558]  snd_pcm_open_substream+0x54a/0x1850
[  221.460147][ T7558]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[  221.460197][ T7558]  ? rcu_is_watching+0x12/0xc0
[  221.460242][ T7558]  snd_pcm_open+0x2a3/0x710
[  221.460289][ T7558]  ? __pfx_snd_pcm_open+0x10/0x10
[  221.460338][ T7558]  ? __pfx_default_wake_function+0x10/0x10
[  221.460391][ T7558]  ? __pfx_snd_pcm_playback_open+0x10/0x10
[  221.460439][ T7558]  snd_pcm_playback_open+0x86/0xe0
[  221.460486][ T7558]  snd_open+0x201/0x450
[  221.460526][ T7558]  ? __pfx_snd_open+0x10/0x10
[  221.460562][ T7558]  chrdev_open+0x234/0x6a0
[  221.460602][ T7558]  ? __pfx_chrdev_open+0x10/0x10
[  221.460641][ T7558]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  221.460687][ T7558]  do_dentry_open+0x6d8/0x1660
[  221.460720][ T7558]  ? __pfx_chrdev_open+0x10/0x10
[  221.460766][ T7558]  vfs_open+0x82/0x3f0
[  221.460816][ T7558]  path_openat+0x208c/0x31a0
[  221.460868][ T7558]  ? __pfx_path_openat+0x10/0x10
[  221.460929][ T7558]  do_file_open+0x20e/0x430
[  221.460971][ T7558]  ? __pfx_do_file_open+0x10/0x10
[  221.461049][ T7558]  ? alloc_fd+0x476/0x790
[  221.461091][ T7558]  ? do_getname+0x191/0x390
[  221.461138][ T7558]  do_sys_openat2+0x10d/0x1e0
[  221.461185][ T7558]  ? __pfx_do_sys_openat2+0x10/0x10
[  221.461243][ T7558]  __x64_sys_openat+0x12d/0x210
[  221.461289][ T7558]  ? __pfx___x64_sys_openat+0x10/0x10
[  221.461334][ T7558]  ? ksys_write+0x1ac/0x250
[  221.461368][ T7558]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  221.461416][ T7558]  ? syscall_user_dispatch+0x76/0x130
[  221.461454][ T7558]  do_syscall_64+0x10b/0xf80
[  221.461490][ T7558]  ? clear_bhb_loop+0x40/0x90
[  221.461528][ T7558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.461559][ T7558] RIP: 0033:0x7fc404f9cdd9
[  221.461588][ T7558] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  221.461616][ T7558] RSP: 002b:00007fc405e9d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  221.461647][ T7558] RAX: ffffffffffffffda RBX: 00007fc405215fa0 RCX: 00007fc404f9cdd9
[  221.461667][ T7558] RDX: 0000000000040000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  221.461686][ T7558] RBP: 00007fc405032d69 R08: 0000000000000000 R09: 0000000000000000
[  221.461704][ T7558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  221.461721][ T7558] R13: 00007fc405216038 R14: 00007fc405215fa0 R15: 00007ffdc46160c8
[  221.461763][ T7558]  </TASK>
[  223.592488][ T7588] random: crng reseeded on system resumption
[  226.426169][ T7611] FAULT_INJECTION: forcing a failure.
[  226.426169][ T7611] name failslab, interval 1, probability 0, space 0, times 0
[  226.468095][ T7611] CPU: 0 UID: 0 PID: 7611 Comm: syz.3.423 Not tainted syzkaller #0 PREEMPT(full) 
[  226.468140][ T7611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  226.468158][ T7611] Call Trace:
[  226.468169][ T7611]  <TASK>
[  226.468181][ T7611]  dump_stack_lvl+0x100/0x190
[  226.468231][ T7611]  should_fail_ex.cold+0x5/0xa
[  226.468272][ T7611]  should_failslab+0xc2/0x120
[  226.468309][ T7611]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  226.468344][ T7611]  ? snd_pcm_hw_rule_add+0x3b3/0x510
[  226.468397][ T7611]  krealloc_node_align_noprof+0x321/0x3e0
[  226.468437][ T7611]  snd_pcm_hw_rule_add+0x3b3/0x510
[  226.468475][ T7611]  ? __pfx_snd_pcm_hw_rule_format+0x10/0x10
[  226.468523][ T7611]  ? __pfx_snd_pcm_hw_rule_add+0x10/0x10
[  226.468566][ T7611]  ? mutex_init_lockdep+0xf1/0x120
[  226.468601][ T7611]  ? snd_pcm_attach_substream+0x287/0xd20
[  226.468642][ T7611]  snd_pcm_open_substream+0x54a/0x1850
[  226.468697][ T7611]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[  226.468748][ T7611]  ? rcu_is_watching+0x12/0xc0
[  226.468793][ T7611]  snd_pcm_open+0x2a3/0x710
[  226.468848][ T7611]  ? __pfx_snd_pcm_open+0x10/0x10
[  226.468903][ T7611]  ? __pfx_default_wake_function+0x10/0x10
[  226.468959][ T7611]  ? __pfx_snd_pcm_playback_open+0x10/0x10
[  226.469007][ T7611]  snd_pcm_playback_open+0x86/0xe0
[  226.469058][ T7611]  snd_open+0x201/0x450
[  226.469099][ T7611]  ? __pfx_snd_open+0x10/0x10
[  226.469136][ T7611]  chrdev_open+0x234/0x6a0
[  226.469173][ T7611]  ? __pfx_apparmor_file_open+0x10/0x10
[  226.469230][ T7611]  ? __pfx_chrdev_open+0x10/0x10
[  226.469271][ T7611]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  226.469321][ T7611]  do_dentry_open+0x6d8/0x1660
[  226.469357][ T7611]  ? __pfx_chrdev_open+0x10/0x10
[  226.469406][ T7611]  vfs_open+0x82/0x3f0
[  226.469458][ T7611]  path_openat+0x208c/0x31a0
[  226.469512][ T7611]  ? __pfx_path_openat+0x10/0x10
[  226.469566][ T7611]  do_file_open+0x20e/0x430
[  226.469609][ T7611]  ? __pfx_do_file_open+0x10/0x10
[  226.469677][ T7611]  ? alloc_fd+0x476/0x790
[  226.469719][ T7611]  ? do_getname+0x191/0x390
[  226.469768][ T7611]  do_sys_openat2+0x10d/0x1e0
[  226.469814][ T7611]  ? __pfx_do_sys_openat2+0x10/0x10
[  226.469877][ T7611]  __x64_sys_openat+0x12d/0x210
[  226.469926][ T7611]  ? __pfx___x64_sys_openat+0x10/0x10
[  226.469970][ T7611]  ? ksys_write+0x1ac/0x250
[  226.470005][ T7611]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  226.470055][ T7611]  ? syscall_user_dispatch+0x76/0x130
[  226.470096][ T7611]  do_syscall_64+0x10b/0xf80
[  226.470134][ T7611]  ? clear_bhb_loop+0x40/0x90
[  226.470173][ T7611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.470206][ T7611] RIP: 0033:0x7f1df059cdd9
[  226.470244][ T7611] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  226.470272][ T7611] RSP: 002b:00007f1df13e6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  226.470303][ T7611] RAX: ffffffffffffffda RBX: 00007f1df0815fa0 RCX: 00007f1df059cdd9
[  226.470325][ T7611] RDX: 0000000000040000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  226.470344][ T7611] RBP: 00007f1df0632d69 R08: 0000000000000000 R09: 0000000000000000
[  226.470364][ T7611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  226.470382][ T7611] R13: 00007f1df0816038 R14: 00007f1df0815fa0 R15: 00007ffeb8fe45d8
[  226.470425][ T7611]  </TASK>
[  229.487166][ T7658] netlink: 28 bytes leftover after parsing attributes in process `syz.3.435'.
[  229.845785][ T7665] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input6
[  235.061448][ T7751] cifs: Unknown parameter '�����)�	Up��̢{��V]7�62']�Ψ��!�g�ʮ�7�9��fM�<*y�sE�h�
�'
[  237.612991][ T7796] netlink: 342 bytes leftover after parsing attributes in process `syz.1.472'.
[  242.713200][ T7880] random: crng reseeded on system resumption
[  246.858899][ T7938] netlink: 25 bytes leftover after parsing attributes in process `syz.2.496'.
[  247.925784][ T7954] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input7
[  248.230969][ T7961] netlink: 13 bytes leftover after parsing attributes in process `syz.2.502'.
[  248.799172][ T7964] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  252.705524][   T30] audit: type=1804 audit(1843104620.600:8): pid=8030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.519" name="/newroot/128/file0" dev="tmpfs" ino=685 res=1 errno=0
[  252.746810][   T30] audit: type=1804 audit(1843104620.630:9): pid=8031 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.519" name="/newroot/128/file0" dev="tmpfs" ino=685 res=1 errno=0
[  253.531799][ T8040] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=538976288 (1077952576 ns) > initial count (3830 ns). Using initial count to start timer.
[  254.288852][ T8044] zswap: compressor  not available
[  256.189176][ T1315] ieee802154 phy0 wpan0: encryption failed: -22
[  256.195664][ T1315] ieee802154 phy1 wpan1: encryption failed: -22
[  256.360046][ T8101] netlink: 4 bytes leftover after parsing attributes in process `syz.3.532'.
[  256.454648][ T8102] netlink: 354 bytes leftover after parsing attributes in process `syz.3.532'.
[  258.140437][   T30] audit: type=1800 audit(1843104626.040:10): pid=8138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.542" name="members" dev="configfs" ino=20174 res=0 errno=0
[  260.743878][ T8168] FAULT_INJECTION: forcing a failure.
[  260.743878][ T8168] name fail_futex, interval 1, probability 0, space 0, times 0
[  260.773377][ T8168] CPU: 0 UID: 0 PID: 8168 Comm: syz.2.549 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  260.773426][ T8168] Tainted: [L]=SOFTLOCKUP
[  260.773436][ T8168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  260.773453][ T8168] Call Trace:
[  260.773463][ T8168]  <TASK>
[  260.773475][ T8168]  dump_stack_lvl+0x100/0x190
[  260.773522][ T8168]  should_fail_ex.cold+0x5/0xa
[  260.773555][ T8168]  ? rcu_is_watching+0x12/0xc0
[  260.773595][ T8168]  get_futex_key+0x1d2/0x1510
[  260.773630][ T8168]  ? __pfx_get_futex_key+0x10/0x10
[  260.773675][ T8168]  futex_wait_setup+0x83/0x510
[  260.773726][ T8168]  __futex_wait+0x19f/0x300
[  260.773768][ T8168]  ? __pfx___futex_wait+0x10/0x10
[  260.773815][ T8168]  ? __pfx_futex_wake_mark+0x10/0x10
[  260.773859][ T8168]  ? find_held_lock+0x2b/0x80
[  260.773895][ T8168]  ? futex_wake+0x456/0x530
[  260.773939][ T8168]  futex_wait+0xe6/0x370
[  260.773976][ T8168]  ? __pfx_futex_wait+0x10/0x10
[  260.774028][ T8168]  do_futex+0x1ef/0x350
[  260.774054][ T8168]  ? __pfx_do_futex+0x10/0x10
[  260.774078][ T8168]  ? __pfx___might_resched+0x10/0x10
[  260.774103][ T8168]  ? blkcg_maybe_throttle_current+0x5e7/0xeb0
[  260.774135][ T8168]  __x64_sys_futex+0x34f/0x4d0
[  260.774171][ T8168]  ? __pfx___x64_sys_futex+0x10/0x10
[  260.774202][ T8168]  ? rcu_is_watching+0x12/0xc0
[  260.774232][ T8168]  do_syscall_64+0x10b/0xf80
[  260.774260][ T8168]  ? clear_bhb_loop+0x40/0x90
[  260.774288][ T8168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.774313][ T8168] RIP: 0033:0x7f1d8c79cdd9
[  260.774333][ T8168] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  260.774357][ T8168] RSP: 002b:00007f1d8d5d30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  260.774382][ T8168] RAX: ffffffffffffffda RBX: 00007f1d8ca15fa8 RCX: 00007f1d8c79cdd9
[  260.774397][ T8168] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1d8ca15fa8
[  260.774410][ T8168] RBP: 00007f1d8ca15fa0 R08: 0000000000000000 R09: 0000000000000000
[  260.774423][ T8168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  260.774436][ T8168] R13: 00007f1d8ca16038 R14: 00007ffd359da060 R15: 00007ffd359da148
[  260.774467][ T8168]  </TASK>
[  261.101264][ T8171] netlink: 25 bytes leftover after parsing attributes in process `syz.1.550'.
[  317.687530][ T1315] ieee802154 phy0 wpan0: encryption failed: -22
[  317.693942][ T1315] ieee802154 phy1 wpan1: encryption failed: -22
[  368.536674][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  368.543686][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P8205/1:b..l
[  368.552030][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=45621, q=504 ncpus=2)
[  368.559777][    C0] task:syz.1.559       state:R  running task     stack:25208 pid:8205  tgid:8204  ppid:5627   task_flags:0x400140 flags:0x00080000
[  368.573894][    C0] Call Trace:
[  368.577206][    C0]  <TASK>
[  368.580177][    C0]  __schedule+0x10e9/0x6820
[  368.584773][    C0]  ? __pfx___schedule+0x10/0x10
[  368.589676][    C0]  ? rcu_is_watching+0x12/0xc0
[  368.594492][    C0]  preempt_schedule_irq+0x50/0x90
[  368.599563][    C0]  irqentry_exit+0x1fe/0x790
[  368.604202][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  368.610228][    C0] RIP: 0010:lock_release+0x19e/0x310
[  368.615549][    C0] Code: ff 65 0f c1 05 9b 65 26 12 83 f8 01 0f 85 28 01 00 00 9c 58 f6 c4 02 0f 85 13 01 00 00 41 f7 c6 00 02 00 00 0f 85 c0 00 00 00 <48> 8b 44 24 10 65 48 2b 05 ed 1d 26 12 0f 85 4e 01 00 00 48 83 c4
[  368.635188][    C0] RSP: 0018:ffffc9000755f518 EFLAGS: 00000206
[  368.641293][    C0] RAX: 0000000000000046 RBX: ffffffff8e7e52e0 RCX: ffffc9000755f524
[  368.649303][    C0] RDX: 0000000000000000 RSI: ffffffff8def466d RDI: ffffffff8c1c2380
[  368.657316][    C0] RBP: ffffffff81b761ae R08: 0000000000000001 R09: 0000000000000007
[  368.665320][    C0] R10: 0000000000000200 R11: 0000000000018769 R12: ffff88802f6d8000
[  368.673317][    C0] R13: ffffc9000755f5d0 R14: 0000000000000202 R15: 0000000000000001
[  368.681327][    C0]  ? unwind_next_frame+0x3be/0x2090
[  368.686599][    C0]  unwind_next_frame+0x3c3/0x2090
[  368.691664][    C0]  ? __x64_sys_sendfile64+0x1d8/0x220
[  368.697085][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  368.703290][    C0]  arch_stack_walk+0x94/0xf0
[  368.707928][    C0]  ? do_syscall_64+0x10b/0xf80
[  368.712736][    C0]  ? copy_splice_read+0x1a3/0xb90
[  368.717798][    C0]  stack_trace_save+0x8e/0xc0
[  368.722515][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  368.727932][    C0]  ? splice_direct_to_actor+0x345/0xa30
[  368.733606][    C0]  ? do_syscall_64+0x10b/0xf80
[  368.738407][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.744525][    C0]  kasan_save_stack+0x30/0x50
[  368.749234][    C0]  ? kasan_save_stack+0x30/0x50
[  368.754116][    C0]  ? kasan_save_track+0x14/0x30
[  368.759001][    C0]  ? __kasan_kmalloc+0xaa/0xb0
[  368.763800][    C0]  ? __kmalloc_noprof+0x301/0x850
[  368.768873][    C0]  ? copy_splice_read+0x1a3/0xb90
[  368.774023][    C0]  ? do_splice_read+0x2bd/0x370
[  368.778911][    C0]  ? splice_direct_to_actor+0x2a1/0xa30
[  368.784500][    C0]  ? do_splice_direct+0x174/0x240
[  368.789593][    C0]  ? do_sendfile+0xadc/0xe20
[  368.794221][    C0]  ? __x64_sys_sendfile64+0x1d8/0x220
[  368.799687][    C0]  kasan_save_track+0x14/0x30
[  368.804500][    C0]  __kasan_kmalloc+0xaa/0xb0
[  368.809149][    C0]  __kmalloc_noprof+0x301/0x850
[  368.814080][    C0]  copy_splice_read+0x1a3/0xb90
[  368.818982][    C0]  ? __pfx_iter_file_splice_write+0x10/0x10
[  368.824934][    C0]  ? __pfx_copy_splice_read+0x10/0x10
[  368.830382][    C0]  ? look_up_lock_class+0x55/0x120
[  368.835579][    C0]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  368.840996][    C0]  ? __pfx_filemap_splice_read+0x10/0x10
[  368.846666][    C0]  do_splice_read+0x2bd/0x370
[  368.851441][    C0]  splice_direct_to_actor+0x2a1/0xa30
[  368.856862][    C0]  ? __pfx_direct_splice_actor+0x10/0x10
[  368.862639][    C0]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  368.868586][    C0]  do_splice_direct+0x174/0x240
[  368.873480][    C0]  ? __pfx_do_splice_direct+0x10/0x10
[  368.878891][    C0]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  368.884832][    C0]  ? bpf_lsm_file_permission+0x9/0x10
[  368.890237][    C0]  ? security_file_permission+0x76/0x210
[  368.895915][    C0]  ? rw_verify_area+0xce/0x6d0
[  368.900725][    C0]  do_sendfile+0xadc/0xe20
[  368.905198][    C0]  ? __pfx_do_sendfile+0x10/0x10
[  368.910188][    C0]  ? __x64_sys_futex+0x34f/0x4d0
[  368.915166][    C0]  ? __x64_sys_futex+0x358/0x4d0
[  368.920149][    C0]  __x64_sys_sendfile64+0x1d8/0x220
[  368.925394][    C0]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  368.931165][    C0]  ? rcu_is_watching+0x12/0xc0
[  368.935978][    C0]  do_syscall_64+0x10b/0xf80
[  368.940613][    C0]  ? clear_bhb_loop+0x40/0x90
[  368.945343][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.951277][    C0] RIP: 0033:0x7fc404f9cdd9
[  368.955728][    C0] RSP: 002b:00007fc405e9d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  368.964193][    C0] RAX: ffffffffffffffda RBX: 00007fc405215fa0 RCX: 00007fc404f9cdd9
[  368.972283][    C0] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  368.980289][    C0] RBP: 00007fc405032d69 R08: 0000000000000000 R09: 0000000000000000
[  368.988462][    C0] R10: 0000400000000006 R11: 0000000000000246 R12: 0000000000000000
[  368.996459][    C0] R13: 00007fc405216038 R14: 00007fc405215fa0 R15: 00007ffdc46160c8
[  369.004509][    C0]  </TASK>
[  369.007558][    C0] rcu: rcu_preempt kthread starved for 10400 jiffies! g45621 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  369.018786][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  369.028784][    C0] rcu: RCU grace-period kthread stack dump:
[  369.034688][    C0] task:rcu_preempt     state:R  running task     stack:27752 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
[  369.048251][    C0] Call Trace:
[  369.051551][    C0]  <TASK>
[  369.054508][    C0]  __schedule+0x10e9/0x6820
[  369.059073][    C0]  ? __pfx___schedule+0x10/0x10
[  369.063962][    C0]  ? find_held_lock+0x2b/0x80
[  369.068687][    C0]  ? schedule+0x2bf/0x390
[  369.073154][    C0]  schedule+0xdd/0x390
[  369.077264][    C0]  schedule_timeout+0x127/0x280
[  369.082174][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  369.087683][    C0]  ? __pfx_process_timeout+0x10/0x10
[  369.093030][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  369.098871][    C0]  ? prepare_to_swait_event+0xdf/0x4a0
[  369.104386][    C0]  rcu_gp_fqs_loop+0x1a9/0x900
[  369.109196][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  369.114528][    C0]  ? prepare_to_swait_event+0xae/0x4a0
[  369.120034][    C0]  ? __pfx_rcu_gp_init+0x10/0x10
[  369.125029][    C0]  ? __pfx_rcu_gp_cleanup+0x10/0x10
[  369.130273][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  369.136117][    C0]  rcu_gp_kthread+0x179/0x230
[  369.140846][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  369.146088][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  369.151943][    C0]  ? __kthread_parkme+0x18c/0x230
[  369.157029][    C0]  ? kthread+0x13a/0x450
[  369.161300][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  369.166540][    C0]  kthread+0x370/0x450
[  369.170657][    C0]  ? __pfx_kthread+0x10/0x10
[  369.175288][    C0]  ret_from_fork+0x72b/0xd50
[  369.179930][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  369.185168][    C0]  ? __switch_to+0x800/0x1100
[  369.189909][    C0]  ? __switch_to_asm+0x39/0x70
[  369.194716][    C0]  ? __pfx_kthread+0x10/0x10
[  369.199345][    C0]  ret_from_fork_asm+0x1a/0x30
[  369.204176][    C0]  </TASK>
[  369.207222][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  369.213604][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  369.224177][    C0] Tainted: [L]=SOFTLOCKUP
[  369.228535][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  369.238710][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  369.244401][    C0] Code: b6 95 02 e9 c3 42 03 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 43 8f 24 00 fb f4 <c3> cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  369.264040][    C0] RSP: 0018:ffffffff8e407e00 EFLAGS: 00000242
[  369.270149][    C0] RAX: 00000000001a793d RBX: ffffffff8e4955c0 RCX: ffffffff8b870045
[  369.278149][    C0] RDX: 0000000000000000 RSI: ffffffff8df19b62 RDI: ffffffff8c1c2380
[  369.286154][    C0] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed10170867b5
[  369.294157][    C0] R10: ffff8880b8433dab R11: 0000000000000000 R12: 0000000000000000
[  369.302255][    C0] R13: fffffbfff1c92ab8 R14: 0000000000000000 R15: ffffffff90d7b350
[  369.310278][    C0] FS:  0000000000000000(0000) GS:ffff888124380000(0000) knlGS:0000000000000000
[  369.319260][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  369.325878][    C0] CR2: 0000562e2df5d760 CR3: 0000000073734000 CR4: 00000000003526f0
[  369.333885][    C0] Call Trace:
[  369.337190][    C0]  <TASK>
[  369.340148][    C0]  default_idle+0x9/0x10
[  369.344438][    C0]  default_idle_call+0x6c/0xb0
[  369.349250][    C0]  do_idle+0x464/0x590
[  369.353428][    C0]  ? __pfx_do_idle+0x10/0x10
[  369.358063][    C0]  ? finish_task_switch.isra.0+0x152/0x1010
[  369.364017][    C0]  cpu_startup_entry+0x4f/0x60
[  369.368824][    C0]  rest_init+0x251/0x260
[  369.373118][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  369.378704][    C0]  start_kernel+0x484/0x490
[  369.383256][    C0]  x86_64_start_reservations+0x24/0x30
[  369.388925][    C0]  x86_64_start_kernel+0x12b/0x130
[  369.394071][    C0]  common_startup_64+0x13e/0x148
[  369.399074][    C0]  </TASK>