last executing test programs:

14m19.50251836s ago: executing program 1 (id=2650):
mmap$auto(0x0, 0x40009, 0xfff, 0x9b72, 0xffffffffffffffff, 0x28000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x1, 0x40000000df, 0x200000009b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x23, &(0x7f0000000080), 0x0)

14m19.127448455s ago: executing program 1 (id=2655):
mmap$auto(0x0, 0x20009, 0xb17a, 0xeb1, 0x3fd, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)

14m18.940452758s ago: executing program 1 (id=2659):
syz_clone3(0x0, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
io_uring_setup$auto(0xa, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), r0)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x20, r1, 0x301, 0x4070bd25, 0x25dfdbff, {}, [@CTRL_ATTR_FAMILY_NAME={0xc, 0x2, 'nl80211\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810)
read$auto(0x4, 0x0, 0xfdef)

14m18.670241859s ago: executing program 1 (id=2664):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x3, 0x6)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0)
mkdir$auto(0x0, 0x353)

14m18.300311531s ago: executing program 1 (id=2669):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
setuid$auto(0x800000000008)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone3$auto(&(0x7f0000000000)={0x200, 0x5, 0x7, 0x2, 0x1, 0x87, 0x8, 0xb, 0x4, 0x2, 0xcb6}, 0xaa)
socket$nl_generic(0x10, 0x3, 0x10)
mq_open$auto(&(0x7f00000000c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0xa7e, 0x6, &(0x7f0000000100)={0x2, 0x200, 0x9, 0xd})

14m17.786966471s ago: executing program 1 (id=2674):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(0x8000000000000001, 0x26, 0x8)
fcntl$auto(r0, 0x5, 0x4)

14m17.470795328s ago: executing program 32 (id=2674):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(0x8000000000000001, 0x26, 0x8)
fcntl$auto(r0, 0x5, 0x4)

13m31.318477582s ago: executing program 4 (id=3032):
mmap$auto(0x0, 0x5, 0x3, 0xeb2, 0xffffffffffffffff, 0x8000)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101c40, 0x0)
openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000001040)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0xc05, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x2040, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video57\x00', 0x100, 0x0)
ioctl$auto(r1, 0x4020565a, r0)

13m31.115672187s ago: executing program 4 (id=3035):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
io_uring_setup$auto(0x2, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
io_uring_setup$auto(0x1, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0)
setreuid$auto(0x3, 0x7)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)

13m30.884939041s ago: executing program 4 (id=3038):
mmap$auto(0x0, 0x2, 0xffffffffffffffff, 0x44eb1, 0x602, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, 0x38)
ioctl$auto(0x3, 0x4020aea5, 0x38)

13m30.553144152s ago: executing program 4 (id=3040):
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x3b)
mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x189401, 0x0)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r0, 0x92106405, r0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video67\x00', 0x169000, 0x0)
ioctl$auto(r1, 0xc0285628, r1)

13m29.477935715s ago: executing program 4 (id=3044):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x3, 0x6)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x40400, 0x48)

13m29.057773929s ago: executing program 4 (id=3047):
mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="f21e8858", @ANYBLOB="1e00df45"], 0x1ac}}, 0x4010)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000)
recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='\t\x00\x00\x00', @ANYBLOB="1e00df"], 0x1ac}, 0x1, 0x0, 0x0, 0x5}, 0x40000d0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='f'], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00)

13m13.947314717s ago: executing program 33 (id=3047):
mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="f21e8858", @ANYBLOB="1e00df45"], 0x1ac}}, 0x4010)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000)
recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='\t\x00\x00\x00', @ANYBLOB="1e00df"], 0x1ac}, 0x1, 0x0, 0x0, 0x5}, 0x40000d0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='f'], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00)

2m39.877743124s ago: executing program 3 (id=6684):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/nbd7/power/autosuspend_delay_ms\x00', 0x22902, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = socketcall$auto(0xa, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae93, 0x0)

2m38.875405146s ago: executing program 3 (id=6688):
r0 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
setsockopt$auto(r0, 0x1, 0x12, &(0x7f0000000400)='\'\ak\xb6\xc8\vFx\xed\xd6\xf8\x00\x10\xa4#\x92`\xdb\xafL\x0f\xfbUV\xa6KH]Cv\xbf\xf2a\v', 0xeb66)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, 0x0)
unshare$auto(0x40000080)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2b, 0x1, 0x0)
ioctl$auto_BTRFS_IOC_ENCODED_WRITE_32(0xffffffffffffffff, 0x40789440, &(0x7f00000000c0)={0x3, 0xffffffff, 0xaf7, 0x8, 0x2, 0x4, 0x5800000000000000, 0xeea, 0x8, "57ef0f1414cd3c1c67b49c20aa95bbbfd2b68fae19263df84167c68a423e889e2cbcb6b41dc07aa2dfffe24c19d2b2c3a50f4133f72a36f28bbcf4c8ec369de0"})
bind$auto(0x3, 0x0, 0x6a)
accept$auto(0xffffffffffffffff, &(0x7f00000002c0)=@xdp={0x2c, 0x0, 0x0, 0x4}, 0x0)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)

2m37.836477626s ago: executing program 3 (id=6689):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/bond0/bonding/arp_validate\x00', 0x2002, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
read$auto_proc_timers_operations_base(0xffffffffffffffff, &(0x7f0000000200)=""/8, 0x8)
io_uring_setup$auto(0xf00, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80402, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0xa, 0x801, 0x84)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_pipe\x00', 0x20c01, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000002)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0x200, 0xd7e, 0x1, 0x948b, 0x3, 0x95b45a07, 0x8000000000000003, 0xe05, 0x8000000000008001, 0x80000001, 0x7, 0x6d3f, 0x9, 0x800, 0x4]}, 0x0)

2m34.463936037s ago: executing program 3 (id=6708):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
write$auto(r0, 0x0, 0x10007c)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40, 0x0)
pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x5, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0x3, 0xffffffff, 0x7fffffffffffffff, 0x0, 0xfffffffffffffff9, 0x2, 0x9, 0x3ff]}, 0x0, 0x0, 0x0, 0x0)
timer_settime$auto(0x0, 0x801, &(0x7f0000000000)={{0xa6, 0x7}, {0x0, 0x3}}, 0x0)
clone$auto(0x20003b4b, 0xa, 0x0, 0x0, 0x10)
process_vm_writev$auto(0x0, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/oom_score_adj\x00', 0x102, 0x0)
read$auto(r1, 0x0, 0x7fff)
write$auto(0x3, 0x0, 0xfffffdef)

2m33.738678577s ago: executing program 3 (id=6710):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
write$auto(r0, 0x0, 0x10007c)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40, 0x0)
pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x5, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0x3, 0xffffffff, 0x7fffffffffffffff, 0x0, 0xfffffffffffffff9, 0x2, 0x9, 0x3ff]}, 0x0, 0x0, 0x0, 0x0)
timer_settime$auto(0x0, 0x801, &(0x7f0000000000)={{0xa6, 0x7}, {0x0, 0x3}}, 0x0)
clone$auto(0x20003b4b, 0xa, 0x0, 0x0, 0x10)
process_vm_writev$auto(0x0, &(0x7f0000002980)={0x0, 0x7ff}, 0x3, &(0x7f0000002a40)={0x0, 0x100000004007}, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/oom_score_adj\x00', 0x102, 0x0)
read$auto(r1, 0x0, 0x7fff)
write$auto(0x3, 0x0, 0xfffffdef)

2m33.140210503s ago: executing program 3 (id=6701):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r0, 0x0)
epoll_ctl$auto(0x5, 0x3, r0, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000002340), 0xffffffffffffffff)
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x201, 0x0)
ioctl$auto_PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0xffffffffffffaee1, 0xfffffffffffffffe, 0x2, 0x7, 0xbfb, 0x79, 0x30, 0x3, 0x2})
clone$auto(0x4, 0x72d2, 0x0, 0x0, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x20, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x14, 0x1, "5e1f970f497f9f23d63e72850177cde9"}, @NFSD_A_SOCK_TRANSPORT_NAME={0x6, 0x2, '-\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0)
umount2$auto(&(0x7f0000000000)='.\x00', 0x3)

2m17.920587423s ago: executing program 34 (id=6701):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r0, 0x0)
epoll_ctl$auto(0x5, 0x3, r0, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000002340), 0xffffffffffffffff)
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x201, 0x0)
ioctl$auto_PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0xffffffffffffaee1, 0xfffffffffffffffe, 0x2, 0x7, 0xbfb, 0x79, 0x30, 0x3, 0x2})
clone$auto(0x4, 0x72d2, 0x0, 0x0, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000001c0)={0x34, r3, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x20, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x14, 0x1, "5e1f970f497f9f23d63e72850177cde9"}, @NFSD_A_SOCK_TRANSPORT_NAME={0x6, 0x2, '-\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0)
umount2$auto(&(0x7f0000000000)='.\x00', 0x3)

1m59.630224386s ago: executing program 2 (id=6796):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0xa, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
epoll_create$auto(0x3e)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0xa200, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp1\x00', 0x20000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/erspan0/queues/tx-0/xps_cpus\x00', 0x0, 0x0)
openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim1/ports/1/pp_hold\x00', 0x100, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0xb, 0xd, 0x2007d49, 0x9487, 0x4, 0x0, 0xffffffff, 0x3, 0x0, 0x3, 0x7, 0xfffffffffffffff7, 0x5, 0x2, 0x3]}, 0x0)

1m59.333341147s ago: executing program 2 (id=6797):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0xa)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
r0 = socket(0x10, 0x2, 0x0)
madvise$auto(0x4, 0x4, 0x81)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004812}, 0x4000800)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x8)

1m59.162857326s ago: executing program 2 (id=6798):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6)
syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/mnt\x00')
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x880)
ioctl$auto(0xffffffffffffffff, 0x4040ae79, 0xffffffffffffffff)
unshare$auto(0x40000080)
semctl$auto_SETALL(0x9, 0xd, 0x11, 0x8)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)

1m57.439841259s ago: executing program 2 (id=6804):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(r0, 0x0, 0x6a)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.pressure\x00', 0x42802, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r1, 0x0, 0x81)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0)
read$auto(r2, 0x0, 0x1ff)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)

1m57.21011136s ago: executing program 2 (id=6805):
socket(0x2, 0x2, 0x0)
io_uring_setup$auto(0x7, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose3/queues/tx-0/tx_maxrate\x00', 0x8402, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
unlink$auto(&(0x7f00000002c0)='}[,&*}\x00')
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0)
write$auto(0x3, 0x0, 0x6)
write$auto(0x3, 0x0, 0x6)

1m56.94303776s ago: executing program 2 (id=6806):
mmap$auto(0x40, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7ffe)
socket(0x10, 0x80002, 0x0)
openat$auto_tracing_readme_fops_trace(0xffffffffffffff9c, 0x0, 0x80, 0x0)
epoll_create$auto(0x20009)
socket(0x10, 0x2, 0x0)
r0 = openat$auto_ptdump_curusr_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x480, 0x0)
pread64$auto(r0, 0x0, 0xa, 0x10003)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0x3, 0x4020aea5, 0x38)

1m41.866611934s ago: executing program 35 (id=6806):
mmap$auto(0x40, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7ffe)
socket(0x10, 0x80002, 0x0)
openat$auto_tracing_readme_fops_trace(0xffffffffffffff9c, 0x0, 0x80, 0x0)
epoll_create$auto(0x20009)
socket(0x10, 0x2, 0x0)
r0 = openat$auto_ptdump_curusr_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x480, 0x0)
pread64$auto(r0, 0x0, 0xa, 0x10003)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0x3, 0x4020aea5, 0x38)

7.804648339s ago: executing program 5 (id=7178):
r0 = socket(0xa, 0x801, 0x84)
setreuid$auto(0x7, 0x0)
r1 = getpgid(0x0)
prlimit64$auto(r1, 0x4, 0x0, 0x0)
setsockopt$auto(r0, 0x29, 0x23, &(0x7f00000002c0)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\xff\x1b\x01\x1e\xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\xf2Vw\xbe\x1c$\xddm\x8a\x9d\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5h\xae\x9c\x97\xcb\x97\x19V-\x1f\x98\'\xb0\t~~\xb4\x98\xbb3=A\x9c\x17\xaa\xce\fh-M\xdb-\x15VX\xfe\xca+\xb5\x95\xb3JL\x0fl\xe84\xbd\xa3nO\x9f\xfa\xb1\x06$\b$i3\x83\xd7\x06\xd6\x1e\xdbB\x9bb\x1cXC\x8c\x8b\xd9\xff\xf2Bf\x99!Z\x13\xff\xca\xf3e\x015\x9b\x86\xd6$\x1a\r3\x91\xb7\x942\xeb\xadVA\xfc\x1f\xbf1\xb7T\xc1\xbf\xc0\xc2\xfc\xe8w\xd33\xb2,\xb0\x9fA3\xc2\xa2\x1cM\x825\x94U\xbbNeb\xd2\xa9\x0f\xed\x8b\xea\xfa\x8a\x04.\xffMIw\x0f\xd6\xae^\xd2\xf1j\xcb\r\xa4\x1d0d\xca\x81\x9c\x80GL\x0e\xe6\x19\x8au\x1a7\x85|\xf6\x1e\xe00\xc6\"\x83\x1c\xa2\x9e\a\x1c\xea\xa3\x9c\xe1BF\x05b\xf6\xdcf\x04\xd9B\xb9\x98\x9cq\xbd\xfb\xb5~\xf2\x8d\x9f`\xec\xd0\xafY\xcf\x84\xda\xceKj_\f\x19\x9b\xd3\xe3\xee\x1e \'\xddTx\x15\x8fdq\a\x86\xb0\xe3[>P\xf1\f\xf5\xba|\xd1\xa5\x15 \xb2\x9b`\xf9\x9e\xd9Q\xd2\xe3\xe9\xf7\xcf\xbd\xba\x8a\xbb\x8b\xe3\xdaj\xfe\x85\x8a*FS\xdfi\x0eD\x10\xcdBz\xa8\x06\xe0\x14\xcc*\xad{\xb2\xf8\xb6\xbb>\x1fO\x96k5\xd1M9\xf0\x9a\xda\xa1\xaa~X\xd7&\xde\xa3\rI\xad\xc4A\x12\xeae*/\x8f}\xb6\xe7\v\xaa\xe5c\x88\x03\xf9\xe8S\xd4\xe2<\x88\xc4+\xf4w\x0e\xfe\x13|\x05\xf0\xfc\xa4\xb4\xf5\xf8\xb1\xf2\x8dyE\xf4\xfc\xf4\x99\x00\xfb\xc9\x7f\x142d\x99U$^\xbc\xf6`\x9b=bC\xb4uME#\xc4\x99\x87\xb9~\x8cv\x84\xd6M/j>j\xd5j\xb2\xb1\xf7\xcbL\xfe\xd6\xce\xf1\x81\xea\xfc@\xd4\xbb\xd6\xf4\xad\xc4\xf0\xfd\x8f\xbc?\xf1\x80\xb5J\nn|*\x81\x96\xe1M\xebS\'\x85\xcd\xc1\x95\n\x8a>\xd6\xf8\xf3\x11\xc6{\xba\x1f\xd7qK\x92\x95\x109\x80\x8c\x8f\x86j\xac\xdc\xb6\xe0\x88\xab}\xb3\xd6\xa3\x0f\xb4\xcd\x1f\xb1\x98\f=', 0x3ff)
getcpu$auto(&(0x7f0000001140), 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x5, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0)
ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000080)="1c")
close_range$auto(0x2, 0x8, 0x0)

6.907463427s ago: executing program 7 (id=7186):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x1cb602, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x3, 0x5)
lseek$auto(0x3, 0x0, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
epoll_ctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2ac842, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000080df, 0xeb1, 0x6, 0x8000)
move_pages$auto(0x0, 0x4, 0x0, 0x0, 0x0, 0x400000)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
msgctl$auto(0x4, 0x10000, 0x0)
write$auto(0x3, 0x0, 0xfdef)
munmap$auto(0x8000, 0xffffffff)

6.473241992s ago: executing program 6 (id=7188):
r0 = socket(0x2, 0x801, 0x84)
mmap$auto(0x0, 0x8, 0x80004000000000df, 0x10004000eb1, r0, 0x8000008000)
r1 = socket(0x1d, 0x3, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@can, 0x6a)
setsockopt$auto(r1, 0x65, 0x1, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sysfs$auto(0x2, 0x100000000000027, 0x0)
fsopen$auto(0x0, 0x1)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xa, 0x1, 0x8, 0xd, 0xe13, 0x81, 0xe, 0x2000000000000002, 0x0, 0x9, 0x1, 0x2, 0x80000001, 0x8627, 0x9, 0x20000800001, 0x3, 0x5, 0x3, 0x6, 0x6, 0x0, 0x4, 0x2a17, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, [0x18, 0xfffffffffffffffc, 0x0, 0x0, 0x33e, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x80000000, 0x0, 0x0, 0x3, 0x0, 0x27, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x2]}, 0x9, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x43, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0xc090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4044810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4000010}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x2, &(0x7f0000000100)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x6302}, 0x5}, 0x3, 0x0)

5.641103391s ago: executing program 6 (id=7190):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0x8030ae7c, r0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
r2 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x7, 0x38, 0x3ff, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x2, 0x6, 0x4, 0xb2, 0x9, 0x0, 0xfffd, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x200, 0x0, 0x81, 0x0, 0x7, 0x0, 0x0, 0x0, [0x1, 0x6, 0x4, 0x0, 0x0, 0x0, 0x2, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5]}, 0x202, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x5}, 0x7, 0x0)

5.624124338s ago: executing program 5 (id=7197):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x3a)
ustat$auto(0x801, 0x0)
open(0x0, 0x163b40, 0x175)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1)
r0 = socket(0x11, 0x3, 0x9)
socket(0x11, 0x80003, 0x300)
sendmmsg$auto(r0, &(0x7f0000000400)={{&(0x7f0000000000), 0x205aa, &(0x7f0000000100)={0x0, 0x5b0}, 0x1, 0x0, 0x5, 0x1060}, 0x5}, 0x2, 0x100)

5.38413564s ago: executing program 7 (id=7192):
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
r0 = socket(0xa, 0x3, 0x87)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r1)
mq_notify$auto(0x5cf5, &(0x7f00000006c0)={@sival_ptr=0x0, @inferred=r0, 0x2, @_sigev_thread={0x0, 0x0}})

5.109543461s ago: executing program 5 (id=7193):
openat$auto_zero_fops_mem(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x24040070}, 0x800)
fsopen$auto(0x0, 0x1)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14be02, 0x0)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x200000000eb1, 0x401, 0x8000)
read$auto_debugfs_devm_entry_ops_file(0xffffffffffffffff, &(0x7f00000001c0)=""/27, 0x1b)
statmount$auto(0x0, &(0x7f0000000180)={0x7d4, 0x1, 0x401c2, 0x2081, 0x3f, 0x8001, 0x1ffde, 0x8001, 0x2, 0x4, 0x9, 0x3, 0x5, 0x8, 0x200000003004, 0x9, 0x6, 0x10002, 0x80, 0x400, 0xa9, 0x7, 0x1ffc, 0x8203, 0x400, 0x2, 0x1, 0x0, 0x40, 0x5, 0x2, [0x7249, 0xa9d, 0x0, 0x1000000000000000, 0x0, 0x20000000000180, 0x6, 0x0, 0x0, 0x200000000000000, 0xfc6a, 0x1000000, 0x10000, 0x40000000010, 0x0, 0x500000000000, 0x80000000000000, 0x0, 0xffffffffff7ffffc, 0x5, 0x0, 0x2, 0xfff, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x7, 0xfffffffffffffffc, 0x3, 0x1, 0x5, 0xfffffffffffffffc, 0x10000000004]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x1f, &(0x7f0000000100)={0x0, 0x5}, 0x2, 0x0, 0x7, 0xa505}, 0x2}, 0x7, 0x4008)

4.749822025s ago: executing program 5 (id=7195):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
io_uring_setup$auto(0x2, &(0x7f0000000080)={0x80000003, 0x9, 0x4002, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x4000006, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x104, 0x8, 0x100000000}})
write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
bind$auto(0x3, 0x0, 0x6a)
io_uring_setup$auto(0x1d, 0x0)
accept$auto(0xffffffffffffffff, 0x0, 0x0)
landlock_create_ruleset$auto(0x0, 0x9, 0x0)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$auto(r0, 0x0, 0x81)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x2000000006, 0x2)
syz_clone(0x1002000, 0x0, 0x0, 0x0, 0x0, 0x0)

4.74974931s ago: executing program 6 (id=7196):
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
prctl$auto(0x4, 0x1, 0x4, 0x54d7, 0x7)
mmap$auto(0xa, 0x400008, 0x6, 0x9b72, 0xffffffffffffffff, 0x408000)
mmap$auto(0x0, 0x2020049, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
timerfd_gettime$auto(0xffffffffffffffff, 0x0)
r0 = epoll_create$auto(0x1)
capset$auto(0x0, 0x0)
epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0)

4.748376811s ago: executing program 0 (id=7198):
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
listen$auto(0x3, 0x83)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
ioctl$auto(0x3, 0x5418, 0xfffffffffffff4e0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0xdf)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x8002, 0x2)
close_range$auto(0x2, 0x8, 0x0)
read$auto_snd_timer_f_ops_timer(0xffffffffffffffff, 0x0, 0x0)

2.866167904s ago: executing program 6 (id=7199):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x890)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x20000820}, 0x40000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x0, 0xffffeffe, 0x2)
fanotify_init$auto(0x602, 0x1)
pipe$auto(0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x5, 0x7}, 0x8}, 0xffffffff, 0xb00)

2.864866524s ago: executing program 0 (id=7207):
epoll_create$auto(0x3e)
socket(0x2, 0x2, 0x0)
socket(0x11, 0x3, 0x2)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x82, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2440, 0x0)
r0 = socket(0x10, 0x2, 0x0)
r1 = open(&(0x7f0000000000)='./cgroup\x00', 0x400, 0x64)
fchdir$auto(r1)
syz_genetlink_get_family_id$auto_l2tp(0x0, r0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
chdir$auto(0x0)
getcwd$auto(0x0, 0xffffffffffffffff)
unlinkat$auto(0xffffffffffffffff, 0x0, 0x200)

2.864524582s ago: executing program 5 (id=7200):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x5, 0x7}, 0x8}, 0xffffffff, 0xb00)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x10000000eb1, 0x401, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)

2.864423112s ago: executing program 7 (id=7201):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r2=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
pidfd_getfd$auto(0x3, 0x1, 0x100000000)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r2, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0xc)

2.663900202s ago: executing program 0 (id=7202):
r0 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
r1 = io_uring_setup$auto(0x1, 0x0)
write$auto_fops_init_pkru_pkeys(r1, 0x0, 0x0)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x18dd01, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x4ff, 0x0)
syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NLBL_MGMT_C_PROTOCOLS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYBLOB], 0x34}}, 0x50810)
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)

2.663783294s ago: executing program 7 (id=7203):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x5, 0x0)
r0 = socket(0x2b, 0x1, 0x1)
socketpair$auto(0xfffffffe, 0x1, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x8982, 0x4)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_map_fd=r2}, 0xa3)
bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)

1.922213378s ago: executing program 6 (id=7204):
mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
read$auto(0x3, 0x0, 0x8080)
socket(0xa, 0x1, 0x100)
unshare$auto(0x40000080)
write$auto(0x3, 0x0, 0x100082)
socket(0x1e, 0x1, 0x106)
read$auto(0x3, 0x0, 0x7fffffff)
read$auto_proc_loginuid_operations_base(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f00000012c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)

1.616847266s ago: executing program 0 (id=7205):
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
socket(0x23, 0x2, 0x0)
sysfs$auto(0x2, 0x100000000000036, 0x0)
r0 = fsopen$auto(0x0, 0x1)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
sysfs$auto(0x2, 0x48, 0x0)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r1, 0x6, 0x0, 0x0, 0x0)
fsmount$auto(0x4, 0x0, 0x200003)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)

1.520647681s ago: executing program 7 (id=7206):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004000)='/dev/audio\x00', 0x102, 0x0)
ioctl$auto_SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f00000000c0)="7c182e9b3c7ce9d4cb0d3db413a9096e2a9eba66ce35c2335f7c748dd5fa3083bc738951a51dda131549ca747d8896c942048caae598d9dc61b932a6184247c9c11e9c51c20c7c66d51b05d4eb3b5a49718e99141bdd3772dc98cb48e2a80f97157a468fb1a0046226a44257")
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0)
ioctl$auto(r2, 0x5646, r2)
read$auto_v4l2_fops_v4l2_dev(r2, 0x0, 0x0)
ioctl$auto(r2, 0x2400000, 0xffffffffffffffff)
quotactl_fd$auto(0x0, 0x2, 0x0, 0xfffffffffffffffd)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000080)={0xce})

1.311668237s ago: executing program 0 (id=7208):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ff)
sendto$auto(0x3, 0x0, 0x7, 0x101, 0x0, 0x6)
io_uring_setup$auto(0x59, 0x0)
bpf$auto(0x0, &(0x7f0000000380)=@task_fd_query={0x12, 0x3, 0x4, 0xae30, 0x8, 0xfff, 0xffffffffffffffff, 0x2e, 0x7ff}, 0x6f4)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mdstat\x00', 0x0, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x948b, 0x9, 0x15f4da07, 0x6, 0xc, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0)

1.058941145s ago: executing program 0 (id=7209):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r0, 0x0)
epoll_ctl$auto(0x5, 0x3, r0, 0x0)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(r0, &(0x7f00000009c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000980)={&(0x7f00000000c0)={0x8a0, r1, 0x2, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_RECEIVE_MULTICAST={0x4}, @NL80211_ATTR_WIPHY_RETRY_LONG={0x5, 0x3e, 0x1}, @NL80211_ATTR_BSS_DUMP_INCLUDE_USE_DATA={0x4}, @NL80211_ATTR_DISABLE_HE={0x4}, @NL80211_ATTR_IE_PROBE_RESP={0x86a, 0x7f, "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"}, @NL80211_ATTR_VHT_CAPABILITY={0xa, 0x9d, "cfb7c8073365"}]}, 0x8a0}, 0x1, 0x0, 0x0, 0x14044801}, 0x85)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
umount2$auto(&(0x7f0000000000)='.\x00', 0x4)
r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x201, 0x0)
ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0xffffffffffffaee1, 0xfffffffffffffffe, 0x2, 0x7, 0xbfb, 0x79, 0x30, 0x3, 0x2})
clone$auto(0x4, 0x72d2, 0x0, 0x0, 0x4)
set_tid_address$auto(0x0)
r3 = pidfd_open$auto(0x1, 0x0)
setns(r3, 0x60020000)
umount2$auto(&(0x7f0000000000)='.\x00', 0x3)

807.050743ms ago: executing program 5 (id=7210):
openat$auto_generic(0xffffffffffffff9c, 0x0, 0x301483, 0x0)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
fsopen$auto(0x0, 0x1)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
io_cancel$auto(0x3, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$auto_NL802154_CMD_NEW_INTERFACE(0xffffffffffffffff, 0x0, 0x4000800)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r2, r2, 0x0, 0x3)

195.460282ms ago: executing program 7 (id=7211):
madvise$auto(0x0, 0x4081, 0xe)
r0 = fcntl$getown(0xffffffffffffffff, 0x9)
prctl$auto(0x7, 0x1000, r0, 0x1, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0xeb1, 0xffffffffffffffff, 0x8000)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa)
execve$auto(&(0x7f0000000040)=':,\x00', 0x0, 0x0)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
read$auto(r1, 0x0, 0x80000000)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f00000000c0)={0x0, 0xa}, 0x1)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
remap_file_pages$auto(0x0, 0xf3a4, 0x0, 0x5, 0x15)
removexattrat$auto(0xffffffffffffffff, &(0x7f0000000000)=':,\x00', 0x8, 0x0)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)

0s ago: executing program 6 (id=7212):
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
socket(0x2b, 0x5, 0xfffffffd)
mmap$auto(0x0, 0x400008, 0x9, 0x9b72, 0x2, 0x8000)
fcntl$auto_F_NOTIFY(0xffffffffffffffff, 0x402, 0x9000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
mremap$auto(0xfffffffffffffe01, 0x40000000100005, 0x843, 0x3, 0x2)
fsopen$auto(0x0, 0x1)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
shutdown$auto(0x200000003, 0x2)
madvise$auto(0x0, 0x2003f2, 0x15)

kernel console output (not intermixed with test programs):

5 Comm: syz.5.6289 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  996.101928][T24985] Tainted: [L]=SOFTLOCKUP
[  996.101934][T24985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  996.101946][T24985] Call Trace:
[  996.101953][T24985]  <TASK>
[  996.101960][T24985]  dump_stack_lvl+0x100/0x190
[  996.101985][T24985]  should_fail_ex.cold+0x5/0xa
[  996.102006][T24985]  ? prepare_alloc_pages+0x16d/0x5f0
[  996.102031][T24985]  should_fail_alloc_page+0xeb/0x140
[  996.102053][T24985]  prepare_alloc_pages+0x1f0/0x5f0
[  996.102072][T24985]  ? rcu_is_watching+0x12/0xc0
[  996.102094][T24985]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  996.102119][T24985]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  996.102150][T24985]  ? find_held_lock+0x2b/0x80
[  996.102171][T24985]  ? rcu_read_unlock+0x17/0x60
[  996.102192][T24985]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  996.102216][T24985]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  996.102243][T24985]  ? rcu_is_watching+0x12/0xc0
[  996.102260][T24985]  ? trace_mm_page_alloc+0x163/0x1d0
[  996.102281][T24985]  ? __lock_acquire+0x4a5/0x2630
[  996.102295][T24985]  ? css_rstat_updated+0x1ce/0x5a0
[  996.102321][T24985]  ? __lock_acquire+0x4a5/0x2630
[  996.102334][T24985]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  996.102358][T24985]  ? policy_nodemask+0xed/0x4f0
[  996.102377][T24985]  alloc_pages_mpol+0x1fb/0x540
[  996.102397][T24985]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  996.102414][T24985]  ? find_held_lock+0x2b/0x80
[  996.102433][T24985]  ? __pud_alloc+0x4f6/0x690
[  996.102451][T24985]  ? __pud_alloc+0x4f6/0x690
[  996.102471][T24985]  alloc_pages_noprof+0x1a/0x160
[  996.102492][T24985]  __pmd_alloc+0x3b/0x950
[  996.102509][T24985]  ? __pud_alloc+0x4fb/0x690
[  996.102533][T24985]  walk_to_pmd+0x3a3/0x4c0
[  996.102555][T24985]  get_locked_pte+0x25/0xc0
[  996.102575][T24985]  map_ldt_struct+0x3c1/0xa70
[  996.102601][T24985]  ? __pfx_map_ldt_struct+0x10/0x10
[  996.102622][T24985]  ? alloc_pages_noprof+0xf9/0x160
[  996.102644][T24985]  write_ldt+0x6d3/0xd40
[  996.102666][T24985]  ? __pfx_write_ldt+0x10/0x10
[  996.102686][T24985]  ? xfd_validate_state+0x129/0x190
[  996.102701][T24985]  ? ksys_write+0x1ac/0x250
[  996.102724][T24985]  __x64_sys_modify_ldt+0xb1/0x170
[  996.102744][T24985]  do_syscall_64+0x10b/0xf80
[  996.102766][T24985]  ? clear_bhb_loop+0x40/0x90
[  996.102787][T24985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  996.102804][T24985] RIP: 0033:0x7f2bbd39cdd9
[  996.102827][T24985] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  996.102844][T24985] RSP: 002b:00007f2bbe1a2028 EFLAGS: 00000246 ORIG_RAX: 000000000000009a
[  996.102862][T24985] RAX: ffffffffffffffda RBX: 00007f2bbd615fa0 RCX: 00007f2bbd39cdd9
[  996.102873][T24985] RDX: 0000000000000010 RSI: 0000200000000140 RDI: 0000000000000001
[  996.102884][T24985] RBP: 00007f2bbd432d69 R08: 0000000000000000 R09: 0000000000000000
[  996.102895][T24985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  996.102906][T24985] R13: 00007f2bbd616038 R14: 00007f2bbd615fa0 R15: 00007fffa9465298
[  996.102927][T24985]  </TASK>
[  998.449514][T25007] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6295'.
[  998.491092][T25007] netlink: 25 bytes leftover after parsing attributes in process `syz.5.6295'.
[  998.788393][   T30] audit: type=1400 audit(4294967498.168:21): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=25002 comm="syz.3.6294"
[  999.586565][T25031] netlink: 'syz.5.6304': attribute type 1 has an invalid length.
[  999.621547][T25031] netlink: 13 bytes leftover after parsing attributes in process `syz.5.6304'.
[ 1001.213521][T25064] ubi0: attaching mtd0
[ 1001.236275][T25064] ubi0: scanning is finished
[ 1001.262153][T25064] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1001.464807][T25064] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1001.662030][T25075] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6318'.
[ 1001.706732][T25075] netlink: 13 bytes leftover after parsing attributes in process `syz.0.6318'.
[ 1003.161702][T25091] zswap: compressor  not available
[ 1007.198093][T25115] netlink: 'syz.3.6327': attribute type 5 has an invalid length.
[ 1007.251887][T25119] netlink: 'syz.3.6327': attribute type 5 has an invalid length.
[ 1007.292998][T25115] netlink: 'syz.3.6327': attribute type 1 has an invalid length.
[ 1007.339962][T25119] netlink: 'syz.3.6327': attribute type 1 has an invalid length.
[ 1007.390250][T25115] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6327'.
[ 1007.404984][T25120] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6334'.
[ 1007.439931][T25119] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6327'.
[ 1007.492581][T25121] netlink: 'syz.5.6334': attribute type 1 has an invalid length.
[ 1007.648712][T25121] netlink: 13 bytes leftover after parsing attributes in process `syz.5.6334'.
[ 1011.768417][T25178] netlink: 186 bytes leftover after parsing attributes in process `syz.3.6343'.
[ 1011.894808][T25174] can: request_module (can-proto-5) failed.
[ 1012.711379][T25191] sctp: [Deprecated]: syz.0.6347 (pid 25191) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1012.711379][T25191] Use struct sctp_sack_info instead
[ 1015.603525][T25247] FAULT_INJECTION: forcing a failure.
[ 1015.603525][T25247] name failslab, interval 1, probability 0, space 0, times 0
[ 1015.676436][T25247] CPU: 0 UID: 0 PID: 25247 Comm: syz.5.6364 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1015.676464][T25247] Tainted: [L]=SOFTLOCKUP
[ 1015.676470][T25247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1015.676480][T25247] Call Trace:
[ 1015.676485][T25247]  <TASK>
[ 1015.676492][T25247]  dump_stack_lvl+0x100/0x190
[ 1015.676515][T25247]  should_fail_ex.cold+0x5/0xa
[ 1015.676536][T25247]  should_failslab+0xc2/0x120
[ 1015.676554][T25247]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1015.676579][T25247]  ? __kernfs_new_node+0xd2/0x9f0
[ 1015.676600][T25247]  __kernfs_new_node+0xd2/0x9f0
[ 1015.676619][T25247]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1015.676640][T25247]  ? find_held_lock+0x2b/0x80
[ 1015.676659][T25247]  ? kernfs_root+0xee/0x2a0
[ 1015.676674][T25247]  ? kernfs_root+0xee/0x2a0
[ 1015.676695][T25247]  kernfs_new_node+0x11b/0x1a0
[ 1015.676717][T25247]  __kernfs_create_file+0x53/0x350
[ 1015.676742][T25247]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1015.676762][T25247]  sysfs_merge_group+0x194/0x340
[ 1015.676780][T25247]  ? __pfx_sysfs_merge_group+0x10/0x10
[ 1015.676797][T25247]  ? bus_add_device+0x368/0x6b0
[ 1015.676812][T25247]  ? __pfx_bus_add_device+0x10/0x10
[ 1015.676826][T25247]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1015.676853][T25247]  dpm_sysfs_add+0x237/0x280
[ 1015.676874][T25247]  device_add+0x9ef/0x1950
[ 1015.676895][T25247]  ? __pfx_device_add+0x10/0x10
[ 1015.676914][T25247]  ? lockdep_init_map_type+0x5c/0x250
[ 1015.676930][T25247]  ? __init_waitqueue_head+0xca/0x150
[ 1015.676953][T25247]  rfkill_register+0x1ad/0xb30
[ 1015.676975][T25247]  nfc_register_device+0x11f/0x3e0
[ 1015.676999][T25247]  nci_register_device+0x7f1/0xb80
[ 1015.677018][T25247]  ? __pfx_nci_register_device+0x10/0x10
[ 1015.677038][T25247]  ? lockdep_init_map_type+0x5c/0x250
[ 1015.677057][T25247]  virtual_ncidev_open+0x141/0x220
[ 1015.677080][T25247]  ? __pfx_virtual_ncidev_open+0x10/0x10
[ 1015.677103][T25247]  misc_open+0x26d/0x450
[ 1015.677121][T25247]  ? __pfx_misc_open+0x10/0x10
[ 1015.677147][T25247]  chrdev_open+0x234/0x6a0
[ 1015.677167][T25247]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1015.677192][T25247]  ? __pfx_chrdev_open+0x10/0x10
[ 1015.677212][T25247]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1015.677236][T25247]  do_dentry_open+0x6d8/0x1660
[ 1015.677256][T25247]  ? __pfx_chrdev_open+0x10/0x10
[ 1015.677280][T25247]  vfs_open+0x82/0x3f0
[ 1015.677303][T25247]  path_openat+0x208c/0x31a0
[ 1015.677330][T25247]  ? __pfx_path_openat+0x10/0x10
[ 1015.677355][T25247]  do_file_open+0x20e/0x430
[ 1015.677376][T25247]  ? __pfx_do_file_open+0x10/0x10
[ 1015.677408][T25247]  ? alloc_fd+0x476/0x790
[ 1015.677429][T25247]  ? do_getname+0x191/0x390
[ 1015.677453][T25247]  do_sys_openat2+0x10d/0x1e0
[ 1015.677475][T25247]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1015.677499][T25247]  ? __fget_files+0x21f/0x3d0
[ 1015.677520][T25247]  __x64_sys_openat+0x12d/0x210
[ 1015.677543][T25247]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1015.677570][T25247]  ? rcu_is_watching+0x12/0xc0
[ 1015.677590][T25247]  do_syscall_64+0x10b/0xf80
[ 1015.677611][T25247]  ? clear_bhb_loop+0x40/0x90
[ 1015.677630][T25247]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1015.677645][T25247] RIP: 0033:0x7f2bbd39cdd9
[ 1015.677659][T25247] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1015.677675][T25247] RSP: 002b:00007f2bbe1a2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1015.677690][T25247] RAX: ffffffffffffffda RBX: 00007f2bbd615fa0 RCX: 00007f2bbd39cdd9
[ 1015.677701][T25247] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1015.677710][T25247] RBP: 00007f2bbd432d69 R08: 0000000000000000 R09: 0000000000000000
[ 1015.677720][T25247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1015.677729][T25247] R13: 00007f2bbd616038 R14: 00007f2bbd615fa0 R15: 00007fffa9465298
[ 1015.677750][T25247]  </TASK>
[ 1016.486609][T25253] netlink: 330 bytes leftover after parsing attributes in process `syz.0.6365'.
[ 1017.126270][ T5640] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[ 1018.746455][T25292] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6377'.
[ 1019.050063][T25302] FAULT_INJECTION: forcing a failure.
[ 1019.050063][T25302] name failslab, interval 1, probability 0, space 0, times 0
[ 1019.115249][T25302] CPU: 0 UID: 0 PID: 25302 Comm: syz.5.6380 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1019.115282][T25302] Tainted: [L]=SOFTLOCKUP
[ 1019.115288][T25302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1019.115299][T25302] Call Trace:
[ 1019.115305][T25302]  <TASK>
[ 1019.115313][T25302]  dump_stack_lvl+0x100/0x190
[ 1019.115339][T25302]  should_fail_ex.cold+0x5/0xa
[ 1019.115364][T25302]  ? x509_get_sig_params+0x39e/0x6c0
[ 1019.115383][T25302]  should_failslab+0xc2/0x120
[ 1019.115402][T25302]  __kmalloc_noprof+0xe0/0x850
[ 1019.115423][T25302]  x509_get_sig_params+0x39e/0x6c0
[ 1019.115446][T25302]  x509_cert_parse+0x4e9/0x910
[ 1019.115460][T25302]  ? kasan_save_stack+0x3f/0x50
[ 1019.115475][T25302]  ? kasan_save_stack+0x30/0x50
[ 1019.115489][T25302]  ? kasan_save_track+0x14/0x30
[ 1019.115505][T25302]  pkcs7_extract_cert+0xa4/0x380
[ 1019.115525][T25302]  asn1_ber_decoder+0x12b3/0x2170
[ 1019.115554][T25302]  ? __pfx_asn1_ber_decoder+0x10/0x10
[ 1019.115586][T25302]  pkcs7_parse_message+0x289/0x870
[ 1019.115608][T25302]  verify_pkcs7_signature+0x30/0xa0
[ 1019.115627][T25302]  valid_regdb+0x211/0x590
[ 1019.115648][T25302]  ? __pfx_valid_regdb+0x10/0x10
[ 1019.115670][T25302]  reg_reload_regdb+0x11a/0x460
[ 1019.115691][T25302]  ? __pfx_reg_reload_regdb+0x10/0x10
[ 1019.115714][T25302]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1019.115729][T25302]  ? nl80211_pre_doit+0x19a/0xae0
[ 1019.115746][T25302]  genl_family_rcv_msg_doit+0x214/0x300
[ 1019.115773][T25302]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1019.115796][T25302]  ? genl_get_cmd+0x3e7/0x760
[ 1019.115825][T25302]  ? bpf_lsm_capable+0x9/0x10
[ 1019.115844][T25302]  ? security_capable+0x80/0x260
[ 1019.115870][T25302]  genl_rcv_msg+0x560/0x800
[ 1019.115896][T25302]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1019.115919][T25302]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1019.115933][T25302]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[ 1019.115951][T25302]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1019.115982][T25302]  netlink_rcv_skb+0x159/0x420
[ 1019.116005][T25302]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1019.116030][T25302]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1019.116062][T25302]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1019.116086][T25302]  genl_rcv+0x28/0x40
[ 1019.116107][T25302]  netlink_unicast+0x585/0x850
[ 1019.116131][T25302]  ? __pfx_netlink_unicast+0x10/0x10
[ 1019.116157][T25302]  netlink_sendmsg+0x8b0/0xda0
[ 1019.116181][T25302]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1019.116200][T25302]  ? __import_iovec+0x1d2/0x640
[ 1019.116219][T25302]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1019.116245][T25302]  ____sys_sendmsg+0x9e1/0xb70
[ 1019.116266][T25302]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1019.116288][T25302]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1019.116308][T25302]  ? preempt_schedule_thunk+0x16/0x30
[ 1019.116335][T25302]  ? try_to_wake_up+0x5f6/0x1900
[ 1019.116360][T25302]  ___sys_sendmsg+0x190/0x1e0
[ 1019.116383][T25302]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1019.116405][T25302]  ? futex_private_hash_put+0x107/0x1c0
[ 1019.116442][T25302]  __sys_sendmsg+0x170/0x220
[ 1019.116460][T25302]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1019.116477][T25302]  ? __x64_sys_futex+0x34f/0x4d0
[ 1019.116500][T25302]  ? rcu_is_watching+0x12/0xc0
[ 1019.116522][T25302]  do_syscall_64+0x10b/0xf80
[ 1019.116544][T25302]  ? clear_bhb_loop+0x40/0x90
[ 1019.116563][T25302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1019.116579][T25302] RIP: 0033:0x7f2bbd39cdd9
[ 1019.116595][T25302] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1019.116610][T25302] RSP: 002b:00007f2bbe1a2028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1019.116628][T25302] RAX: ffffffffffffffda RBX: 00007f2bbd615fa0 RCX: 00007f2bbd39cdd9
[ 1019.116640][T25302] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006
[ 1019.116650][T25302] RBP: 00007f2bbd432d69 R08: 0000000000000000 R09: 0000000000000000
[ 1019.116661][T25302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1019.116670][T25302] R13: 00007f2bbd616038 R14: 00007f2bbd615fa0 R15: 00007fffa9465298
[ 1019.116693][T25302]  </TASK>
[ 1019.617528][T16630] Bluetooth: hci3: command 0x0406 tx timeout
[ 1020.825594][T25323] capability: warning: `syz.3.6387' uses deprecated v2 capabilities in a way that may be insecure
[ 1021.717805][ T5640] Bluetooth: hci3: command 0x0406 tx timeout
[ 1022.450102][T25346] FAULT_INJECTION: forcing a failure.
[ 1022.450102][T25346] name failslab, interval 1, probability 0, space 0, times 0
[ 1022.582118][T25346] CPU: 0 UID: 0 PID: 25346 Comm: syz.5.6393 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1022.582148][T25346] Tainted: [L]=SOFTLOCKUP
[ 1022.582155][T25346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1022.582167][T25346] Call Trace:
[ 1022.582173][T25346]  <TASK>
[ 1022.582181][T25346]  dump_stack_lvl+0x100/0x190
[ 1022.582206][T25346]  should_fail_ex.cold+0x5/0xa
[ 1022.582229][T25346]  should_failslab+0xc2/0x120
[ 1022.582248][T25346]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1022.582271][T25346]  ? __kernfs_new_node+0xd2/0x9f0
[ 1022.582292][T25346]  __kernfs_new_node+0xd2/0x9f0
[ 1022.582312][T25346]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1022.582333][T25346]  ? find_held_lock+0x2b/0x80
[ 1022.582353][T25346]  ? kernfs_root+0xee/0x2a0
[ 1022.582368][T25346]  ? kernfs_root+0xee/0x2a0
[ 1022.582389][T25346]  kernfs_new_node+0x11b/0x1a0
[ 1022.582411][T25346]  __kernfs_create_file+0x53/0x350
[ 1022.582436][T25346]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1022.582456][T25346]  sysfs_merge_group+0x194/0x340
[ 1022.582475][T25346]  ? __pfx_sysfs_merge_group+0x10/0x10
[ 1022.582492][T25346]  ? bus_add_device+0x368/0x6b0
[ 1022.582510][T25346]  ? __pfx_bus_add_device+0x10/0x10
[ 1022.582523][T25346]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1022.582547][T25346]  dpm_sysfs_add+0x237/0x280
[ 1022.582567][T25346]  device_add+0x9ef/0x1950
[ 1022.582590][T25346]  ? __pfx_device_add+0x10/0x10
[ 1022.582615][T25346]  nfc_register_device+0x41/0x3e0
[ 1022.582639][T25346]  nci_register_device+0x7f1/0xb80
[ 1022.582658][T25346]  ? __pfx_nci_register_device+0x10/0x10
[ 1022.582678][T25346]  ? lockdep_init_map_type+0x5c/0x250
[ 1022.582697][T25346]  virtual_ncidev_open+0x141/0x220
[ 1022.582721][T25346]  ? __pfx_virtual_ncidev_open+0x10/0x10
[ 1022.582742][T25346]  misc_open+0x26d/0x450
[ 1022.582761][T25346]  ? __pfx_misc_open+0x10/0x10
[ 1022.582779][T25346]  chrdev_open+0x234/0x6a0
[ 1022.582798][T25346]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1022.582823][T25346]  ? __pfx_chrdev_open+0x10/0x10
[ 1022.582850][T25346]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1022.582875][T25346]  do_dentry_open+0x6d8/0x1660
[ 1022.582895][T25346]  ? __pfx_chrdev_open+0x10/0x10
[ 1022.582918][T25346]  vfs_open+0x82/0x3f0
[ 1022.582942][T25346]  path_openat+0x208c/0x31a0
[ 1022.582967][T25346]  ? __pfx_path_openat+0x10/0x10
[ 1022.582993][T25346]  do_file_open+0x20e/0x430
[ 1022.583013][T25346]  ? __pfx_do_file_open+0x10/0x10
[ 1022.583046][T25346]  ? alloc_fd+0x476/0x790
[ 1022.583066][T25346]  ? do_getname+0x191/0x390
[ 1022.583089][T25346]  do_sys_openat2+0x10d/0x1e0
[ 1022.583112][T25346]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1022.583141][T25346]  __x64_sys_openat+0x12d/0x210
[ 1022.583165][T25346]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1022.583191][T25346]  ? rcu_is_watching+0x12/0xc0
[ 1022.583212][T25346]  do_syscall_64+0x10b/0xf80
[ 1022.583233][T25346]  ? clear_bhb_loop+0x40/0x90
[ 1022.583252][T25346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1022.583268][T25346] RIP: 0033:0x7f2bbd39cdd9
[ 1022.583283][T25346] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1022.583298][T25346] RSP: 002b:00007f2bbe1a2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1022.583315][T25346] RAX: ffffffffffffffda RBX: 00007f2bbd615fa0 RCX: 00007f2bbd39cdd9
[ 1022.583328][T25346] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1022.583351][T25346] RBP: 00007f2bbd432d69 R08: 0000000000000000 R09: 0000000000000000
[ 1022.583362][T25346] R10: 000000000000003e R11: 0000000000000246 R12: 0000000000000000
[ 1022.583371][T25346] R13: 00007f2bbd616038 R14: 00007f2bbd615fa0 R15: 00007fffa9465298
[ 1022.583392][T25346]  </TASK>
[ 1025.017334][T25375] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1025.023580][T25375] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1025.037129][T25375] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1026.591775][T25413] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6412'.
[ 1026.655689][T25410] netlink: 13 bytes leftover after parsing attributes in process `syz.5.6412'.
[ 1026.938860][T25422] netlink: 350 bytes leftover after parsing attributes in process `syz.5.6414'.
[ 1026.972567][T25416] FAULT_INJECTION: forcing a failure.
[ 1026.972567][T25416] name failslab, interval 1, probability 0, space 0, times 0
[ 1026.998281][ T5640] Bluetooth: hci0: command 0x0406 tx timeout
[ 1027.061666][T25416] CPU: 0 UID: 0 PID: 25416 Comm: syz.3.6413 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1027.061698][T25416] Tainted: [L]=SOFTLOCKUP
[ 1027.061705][T25416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1027.061719][T25416] Call Trace:
[ 1027.061725][T25416]  <TASK>
[ 1027.061733][T25416]  dump_stack_lvl+0x100/0x190
[ 1027.061760][T25416]  should_fail_ex.cold+0x5/0xa
[ 1027.061786][T25416]  should_failslab+0xc2/0x120
[ 1027.061808][T25416]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[ 1027.061827][T25416]  ? landlock_restrict_sibling_threads+0x4f5/0x1490
[ 1027.061855][T25416]  krealloc_node_align_noprof+0x321/0x3e0
[ 1027.061874][T25416]  landlock_restrict_sibling_threads+0x4f5/0x1490
[ 1027.061899][T25416]  ? __pfx_landlock_restrict_sibling_threads+0x10/0x10
[ 1027.061921][T25416]  ? rcu_is_watching+0x12/0xc0
[ 1027.061958][T25416]  ? __pfx___might_resched+0x10/0x10
[ 1027.061986][T25416]  ? landlock_merge_ruleset+0x213/0x830
[ 1027.062008][T25416]  __do_sys_landlock_restrict_self+0x5d2/0x9e0
[ 1027.062039][T25416]  do_syscall_64+0x10b/0xf80
[ 1027.062061][T25416]  ? clear_bhb_loop+0x40/0x90
[ 1027.062080][T25416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1027.062096][T25416] RIP: 0033:0x7f40b979cdd9
[ 1027.062111][T25416] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1027.062127][T25416] RSP: 002b:00007f40ba678028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[ 1027.062143][T25416] RAX: ffffffffffffffda RBX: 00007f40b9a16090 RCX: 00007f40b979cdd9
[ 1027.062153][T25416] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000005
[ 1027.062163][T25416] RBP: 00007f40b9832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1027.062172][T25416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1027.062181][T25416] R13: 00007f40b9a16128 R14: 00007f40b9a16090 R15: 00007ffd3d4e60f8
[ 1027.062203][T25416]  </TASK>
[ 1027.305699][ T5640] Bluetooth: hci4: command 0x2016 tx timeout
[ 1027.312018][ T5640] Bluetooth: hci3: command 0x0406 tx timeout
[ 1029.179541][T16630] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[ 1029.211925][T25467] futex_wake_op: syz.3.6427 tries to shift op by -2048; fix this program
[ 1029.252323][T25467] futex_wake_op: syz.3.6427 tries to shift op by -2048; fix this program
[ 1029.308796][T25469] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6428'.
[ 1029.360663][T25469] netlink: 'syz.0.6428': attribute type 1 has an invalid length.
[ 1029.384838][T25469] netlink: 13 bytes leftover after parsing attributes in process `syz.0.6428'.
[ 1031.463177][T25504] vivid-008: =================  START STATUS  =================
[ 1031.485134][T25504] vivid-008: ==================  END STATUS  ==================
[ 1033.029719][T25531] __vm_enough_memory: pid: 25531, comm: syz.5.6443, bytes: 4398046457856 not enough memory for the allocation
[ 1033.123515][T25524] FAULT_INJECTION: forcing a failure.
[ 1033.123515][T25524] name failslab, interval 1, probability 0, space 0, times 0
[ 1033.194770][T25524] CPU: 0 UID: 0 PID: 25524 Comm: syz.2.6441 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1033.194798][T25524] Tainted: [L]=SOFTLOCKUP
[ 1033.194805][T25524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1033.194815][T25524] Call Trace:
[ 1033.194821][T25524]  <TASK>
[ 1033.194828][T25524]  dump_stack_lvl+0x100/0x190
[ 1033.194852][T25524]  should_fail_ex.cold+0x5/0xa
[ 1033.194875][T25524]  should_failslab+0xc2/0x120
[ 1033.194894][T25524]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1033.194917][T25524]  ? alloc_fs_context+0x57/0xf40
[ 1033.194938][T25524]  ? kasan_quarantine_put+0x104/0x240
[ 1033.194952][T25524]  ? lockdep_hardirqs_on+0x78/0x100
[ 1033.194977][T25524]  alloc_fs_context+0x57/0xf40
[ 1033.195005][T25524]  __x64_sys_fsopen+0xed/0x220
[ 1033.195019][T25524]  do_syscall_64+0x10b/0xf80
[ 1033.195040][T25524]  ? clear_bhb_loop+0x40/0x90
[ 1033.195059][T25524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1033.195075][T25524] RIP: 0033:0x7efe2979cdd9
[ 1033.195089][T25524] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1033.195104][T25524] RSP: 002b:00007efe2a6ef028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[ 1033.195119][T25524] RAX: ffffffffffffffda RBX: 00007efe29a15fa0 RCX: 00007efe2979cdd9
[ 1033.195129][T25524] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1033.195138][T25524] RBP: 00007efe29832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1033.195147][T25524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1033.195156][T25524] R13: 00007efe29a16038 R14: 00007efe29a15fa0 R15: 00007ffc36834ee8
[ 1033.195175][T25524]  </TASK>
[ 1033.999288][T25547] vivid-008: =================  START STATUS  =================
[ 1034.065422][T25547] vivid-008: ==================  END STATUS  ==================
[ 1034.480994][T16630] Bluetooth: hci3: unexpected subevent 0x03 length: 253 > 9
[ 1034.757919][T25568] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6452'.
[ 1034.829289][T25568] netlink: 25 bytes leftover after parsing attributes in process `syz.0.6452'.
[ 1035.883706][T25585] futex_wake_op: syz.0.6466 tries to shift op by -2048; fix this program
[ 1035.928973][T25585] futex_wake_op: syz.0.6466 tries to shift op by -2048; fix this program
[ 1036.416403][T25593] netlink: 62 bytes leftover after parsing attributes in process `syz.2.6460'.
[ 1036.459698][T25593] netlink: 62 bytes leftover after parsing attributes in process `syz.2.6460'.
[ 1036.484420][T25593] netlink: 62 bytes leftover after parsing attributes in process `syz.2.6460'.
[ 1036.523070][T25593] netlink: 62 bytes leftover after parsing attributes in process `syz.2.6460'.
[ 1036.548299][T25593] netlink: 62 bytes leftover after parsing attributes in process `syz.2.6460'.
[ 1036.562062][T25593] netlink: 62 bytes leftover after parsing attributes in process `syz.2.6460'.
[ 1036.574976][T25593] netlink: 62 bytes leftover after parsing attributes in process `syz.2.6460'.
[ 1036.591096][T25593] netlink: 62 bytes leftover after parsing attributes in process `syz.2.6460'.
[ 1037.727694][T16630] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1037.857302][T16630] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[ 1037.883463][T25625] futex_wake_op: syz.2.6469 tries to shift op by -2048; fix this program
[ 1037.936136][T25625] futex_wake_op: syz.2.6469 tries to shift op by -2048; fix this program
[ 1038.716443][T16630] Bluetooth: hci4: unexpected event 0x1c length: 725 > 5
[ 1039.905851][T25668] loop6: detected capacity change from 0 to 524288000
[ 1044.005264][T25729] vivid-008: =================  START STATUS  =================
[ 1044.133814][T25729] vivid-008: ==================  END STATUS  ==================
[ 1047.790200][T16630] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5
[ 1050.203160][T25763] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input11
[ 1052.539883][T25792] __nla_validate_parse: 9 callbacks suppressed
[ 1052.539903][T25792] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6514'.
[ 1052.659540][T25792] macvlan0: entered promiscuous mode
[ 1052.692623][T25792] macvlan0: entered allmulticast mode
[ 1052.728875][T25792] veth1_vlan: entered allmulticast mode
[ 1054.518864][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.531472][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[ 1056.566843][T25837] FAULT_INJECTION: forcing a failure.
[ 1056.566843][T25837] name failslab, interval 1, probability 0, space 0, times 0
[ 1056.648700][T25837] CPU: 0 UID: 0 PID: 25837 Comm: syz.3.6523 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1056.648731][T25837] Tainted: [L]=SOFTLOCKUP
[ 1056.648737][T25837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1056.648748][T25837] Call Trace:
[ 1056.648755][T25837]  <TASK>
[ 1056.648763][T25837]  dump_stack_lvl+0x100/0x190
[ 1056.648787][T25837]  should_fail_ex.cold+0x5/0xa
[ 1056.648810][T25837]  should_failslab+0xc2/0x120
[ 1056.648831][T25837]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1056.648863][T25837]  ? security_file_alloc+0x34/0x2c0
[ 1056.648886][T25837]  ? trace_kmem_cache_alloc+0xd5/0x100
[ 1056.648912][T25837]  security_file_alloc+0x34/0x2c0
[ 1056.648933][T25837]  init_file+0x95/0x480
[ 1056.648958][T25837]  alloc_empty_file+0x79/0x1c0
[ 1056.648981][T25837]  path_openat+0xe8/0x31a0
[ 1056.649000][T25837]  ? kasan_save_stack+0x3f/0x50
[ 1056.649015][T25837]  ? kasan_save_stack+0x30/0x50
[ 1056.649029][T25837]  ? kasan_save_track+0x14/0x30
[ 1056.649043][T25837]  ? __kasan_slab_alloc+0x89/0x90
[ 1056.649058][T25837]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1056.649080][T25837]  ? do_getname+0x35/0x390
[ 1056.649101][T25837]  ? do_syscall_64+0x10b/0xf80
[ 1056.649122][T25837]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1056.649140][T25837]  ? __pfx_path_openat+0x10/0x10
[ 1056.649169][T25837]  do_file_open+0x20e/0x430
[ 1056.649189][T25837]  ? __pfx_do_file_open+0x10/0x10
[ 1056.649221][T25837]  ? _raw_spin_unlock+0x28/0x50
[ 1056.649240][T25837]  ? alloc_fd+0x476/0x790
[ 1056.649263][T25837]  do_sys_openat2+0x10d/0x1e0
[ 1056.649286][T25837]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1056.649316][T25837]  __x64_sys_open+0xfe/0x1d0
[ 1056.649339][T25837]  ? __pfx___x64_sys_open+0x10/0x10
[ 1056.649365][T25837]  ? rcu_is_watching+0x12/0xc0
[ 1056.649386][T25837]  do_syscall_64+0x10b/0xf80
[ 1056.649406][T25837]  ? clear_bhb_loop+0x40/0x90
[ 1056.649425][T25837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1056.649440][T25837] RIP: 0033:0x7f40b979cdd9
[ 1056.649455][T25837] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1056.649470][T25837] RSP: 002b:00007f40ba699028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1056.649486][T25837] RAX: ffffffffffffffda RBX: 00007f40b9a15fa0 RCX: 00007f40b979cdd9
[ 1056.649498][T25837] RDX: e1d2b27bdc14aa98 RSI: 00000000001652c2 RDI: 0000200000000000
[ 1056.649509][T25837] RBP: 00007f40b9832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1056.649522][T25837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1056.649532][T25837] R13: 00007f40b9a16038 R14: 00007f40b9a15fa0 R15: 00007ffd3d4e60f8
[ 1056.649553][T25837]  </TASK>
[ 1058.975314][T16630] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[ 1058.983114][T16630] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff
[ 1059.092086][ T5770] Process accounting resumed
[ 1059.579376][T25864] Process accounting resumed
[ 1060.272403][T25883] FAULT_INJECTION: forcing a failure.
[ 1060.272403][T25883] name failslab, interval 1, probability 0, space 0, times 0
[ 1060.438937][T25883] CPU: 0 UID: 0 PID: 25883 Comm: syz.2.6535 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1060.438966][T25883] Tainted: [L]=SOFTLOCKUP
[ 1060.438973][T25883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1060.438983][T25883] Call Trace:
[ 1060.438989][T25883]  <TASK>
[ 1060.438997][T25883]  dump_stack_lvl+0x100/0x190
[ 1060.439122][T25883]  should_fail_ex.cold+0x5/0xa
[ 1060.439145][T25883]  should_failslab+0xc2/0x120
[ 1060.439167][T25883]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[ 1060.439195][T25883]  ? landlock_restrict_sibling_threads+0x4f5/0x1490
[ 1060.439223][T25883]  krealloc_node_align_noprof+0x321/0x3e0
[ 1060.439244][T25883]  landlock_restrict_sibling_threads+0x4f5/0x1490
[ 1060.439270][T25883]  ? __pfx_landlock_restrict_sibling_threads+0x10/0x10
[ 1060.439292][T25883]  ? rcu_is_watching+0x12/0xc0
[ 1060.439330][T25883]  ? __pfx___might_resched+0x10/0x10
[ 1060.439349][T25883]  ? landlock_merge_ruleset+0x213/0x830
[ 1060.439368][T25883]  __do_sys_landlock_restrict_self+0x5d2/0x9e0
[ 1060.439397][T25883]  do_syscall_64+0x10b/0xf80
[ 1060.439419][T25883]  ? clear_bhb_loop+0x40/0x90
[ 1060.439437][T25883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1060.439455][T25883] RIP: 0033:0x7efe2979cdd9
[ 1060.439471][T25883] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1060.439487][T25883] RSP: 002b:00007efe2a6ce028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[ 1060.439503][T25883] RAX: ffffffffffffffda RBX: 00007efe29a16090 RCX: 00007efe2979cdd9
[ 1060.439515][T25883] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000005
[ 1060.439525][T25883] RBP: 00007efe29832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1060.439536][T25883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1060.439546][T25883] R13: 00007efe29a16128 R14: 00007efe29a16090 R15: 00007ffc36834ee8
[ 1060.439567][T25883]  </TASK>
[ 1061.093732][T16630] Bluetooth: hci4: unexpected event 0x10 length: 124 > 1
[ 1061.102772][T16630] Bluetooth: hci4: hardware error 0x00
[ 1061.744767][T25907] FAULT_INJECTION: forcing a failure.
[ 1061.744767][T25907] name failslab, interval 1, probability 0, space 0, times 0
[ 1061.818614][T25907] CPU: 0 UID: 0 PID: 25907 Comm: syz.3.6540 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1061.818643][T25907] Tainted: [L]=SOFTLOCKUP
[ 1061.818649][T25907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1061.818660][T25907] Call Trace:
[ 1061.818667][T25907]  <TASK>
[ 1061.818674][T25907]  dump_stack_lvl+0x100/0x190
[ 1061.818699][T25907]  should_fail_ex.cold+0x5/0xa
[ 1061.818723][T25907]  should_failslab+0xc2/0x120
[ 1061.818742][T25907]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1061.818768][T25907]  ? __kernfs_new_node+0xd2/0x9f0
[ 1061.818790][T25907]  __kernfs_new_node+0xd2/0x9f0
[ 1061.818809][T25907]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1061.818831][T25907]  ? find_held_lock+0x2b/0x80
[ 1061.818852][T25907]  ? kernfs_root+0xee/0x2a0
[ 1061.818867][T25907]  ? kernfs_root+0xee/0x2a0
[ 1061.818888][T25907]  kernfs_new_node+0x11b/0x1a0
[ 1061.818910][T25907]  kernfs_create_dir_ns+0x4c/0x1a0
[ 1061.818932][T25907]  internal_create_group+0x36f/0xf40
[ 1061.818954][T25907]  ? kernfs_add_one+0x214/0x850
[ 1061.818971][T25907]  ? bus_to_subsys+0x114/0x150
[ 1061.818994][T25907]  ? __pfx_internal_create_group+0x10/0x10
[ 1061.819011][T25907]  ? bus_add_device+0x368/0x6b0
[ 1061.819026][T25907]  ? __pfx_bus_add_device+0x10/0x10
[ 1061.819039][T25907]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1061.819065][T25907]  dpm_sysfs_add+0x80/0x280
[ 1061.819087][T25907]  device_add+0x9ef/0x1950
[ 1061.819109][T25907]  ? __pfx_device_add+0x10/0x10
[ 1061.819135][T25907]  nfc_register_device+0x41/0x3e0
[ 1061.819159][T25907]  nci_register_device+0x7f1/0xb80
[ 1061.819178][T25907]  ? __pfx_nci_register_device+0x10/0x10
[ 1061.819199][T25907]  ? lockdep_init_map_type+0x5c/0x250
[ 1061.819218][T25907]  virtual_ncidev_open+0x141/0x220
[ 1061.819242][T25907]  ? __pfx_virtual_ncidev_open+0x10/0x10
[ 1061.819265][T25907]  misc_open+0x26d/0x450
[ 1061.819284][T25907]  ? __pfx_misc_open+0x10/0x10
[ 1061.819302][T25907]  chrdev_open+0x234/0x6a0
[ 1061.819321][T25907]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1061.819356][T25907]  ? __pfx_chrdev_open+0x10/0x10
[ 1061.819378][T25907]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1061.819403][T25907]  do_dentry_open+0x6d8/0x1660
[ 1061.819423][T25907]  ? __pfx_chrdev_open+0x10/0x10
[ 1061.819447][T25907]  vfs_open+0x82/0x3f0
[ 1061.819472][T25907]  path_openat+0x208c/0x31a0
[ 1061.819498][T25907]  ? __pfx_path_openat+0x10/0x10
[ 1061.819524][T25907]  do_file_open+0x20e/0x430
[ 1061.819545][T25907]  ? __pfx_do_file_open+0x10/0x10
[ 1061.819577][T25907]  ? alloc_fd+0x476/0x790
[ 1061.819598][T25907]  ? do_getname+0x191/0x390
[ 1061.819640][T25907]  do_sys_openat2+0x10d/0x1e0
[ 1061.819667][T25907]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1061.819697][T25907]  __x64_sys_openat+0x12d/0x210
[ 1061.819721][T25907]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1061.819748][T25907]  ? rcu_is_watching+0x12/0xc0
[ 1061.819770][T25907]  do_syscall_64+0x10b/0xf80
[ 1061.819792][T25907]  ? clear_bhb_loop+0x40/0x90
[ 1061.819811][T25907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1061.819827][T25907] RIP: 0033:0x7f40b979cdd9
[ 1061.819842][T25907] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1061.819857][T25907] RSP: 002b:00007f40ba699028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1061.819873][T25907] RAX: ffffffffffffffda RBX: 00007f40b9a15fa0 RCX: 00007f40b979cdd9
[ 1061.819885][T25907] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1061.819895][T25907] RBP: 00007f40b9832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1061.819905][T25907] R10: 000000000000003e R11: 0000000000000246 R12: 0000000000000000
[ 1061.819928][T25907] R13: 00007f40b9a16038 R14: 00007f40b9a15fa0 R15: 00007ffd3d4e60f8
[ 1061.819948][T25907]  </TASK>
[ 1063.214357][T16630] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1063.386681][T25928] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6546'.
[ 1065.188507][T16630] Bluetooth: hci0: unexpected event 0x10 length: 124 > 1
[ 1065.190988][ T5640] Bluetooth: hci0: hardware error 0x00
[ 1066.132097][T25983] FAULT_INJECTION: forcing a failure.
[ 1066.132097][T25983] name failslab, interval 1, probability 0, space 0, times 0
[ 1066.233244][T25983] CPU: 0 UID: 0 PID: 25983 Comm: syz.3.6555 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1066.233276][T25983] Tainted: [L]=SOFTLOCKUP
[ 1066.233283][T25983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1066.233295][T25983] Call Trace:
[ 1066.233302][T25983]  <TASK>
[ 1066.233310][T25983]  dump_stack_lvl+0x100/0x190
[ 1066.233338][T25983]  should_fail_ex.cold+0x5/0xa
[ 1066.233363][T25983]  ? lsm_blob_alloc+0x68/0x90
[ 1066.233387][T25983]  should_failslab+0xc2/0x120
[ 1066.233406][T25983]  __kmalloc_noprof+0xe0/0x850
[ 1066.233423][T25983]  ? trace_kmem_cache_alloc+0xd5/0x100
[ 1066.233445][T25983]  lsm_blob_alloc+0x68/0x90
[ 1066.233466][T25983]  security_sk_alloc+0x2d/0x290
[ 1066.233499][T25983]  sk_prot_alloc+0x1d1/0x2a0
[ 1066.233538][T25983]  sk_alloc+0x36/0xe80
[ 1066.233557][T25983]  inet_create+0x3a0/0x1060
[ 1066.233580][T25983]  ? inet_create+0x94/0x1060
[ 1066.233598][T25983]  __sock_create+0x339/0x860
[ 1066.233625][T25983]  udp_sock_create4+0xa6/0x450
[ 1066.233650][T25983]  ? __pfx_udp_sock_create4+0x10/0x10
[ 1066.233673][T25983]  ? lockdep_hardirqs_on+0x78/0x100
[ 1066.233696][T25983]  ? crng_make_state+0x2b0/0x6c0
[ 1066.233716][T25983]  rxrpc_open_socket+0x4ef/0x6b0
[ 1066.233739][T25983]  ? __pfx_rxrpc_open_socket+0x10/0x10
[ 1066.233766][T25983]  ? rcu_is_watching+0x12/0xc0
[ 1066.233785][T25983]  ? trace_rxrpc_local+0x80/0x250
[ 1066.233804][T25983]  rxrpc_lookup_local+0xac7/0x1220
[ 1066.233826][T25983]  ? __pfx_rxrpc_lookup_local+0x10/0x10
[ 1066.233846][T25983]  ? __local_bh_enable_ip+0x9e/0x120
[ 1066.233869][T25983]  rxrpc_sendmsg+0x34a/0x680
[ 1066.233893][T25983]  sock_write_iter+0x524/0x5a0
[ 1066.233913][T25983]  ? __pfx_rxrpc_sendmsg+0x10/0x10
[ 1066.233933][T25983]  ? __pfx_sock_write_iter+0x10/0x10
[ 1066.233952][T25983]  ? futex_hash+0x141/0x370
[ 1066.233974][T25983]  ? bpf_lsm_file_permission+0x9/0x10
[ 1066.233990][T25983]  ? security_file_permission+0x76/0x210
[ 1066.234009][T25983]  ? rw_verify_area+0xce/0x6d0
[ 1066.234027][T25983]  vfs_write+0x6ac/0x1070
[ 1066.234045][T25983]  ? __pfx_sock_write_iter+0x10/0x10
[ 1066.234068][T25983]  ? __pfx_vfs_write+0x10/0x10
[ 1066.234083][T25983]  ? find_held_lock+0x2b/0x80
[ 1066.234115][T25983]  ksys_write+0x1f8/0x250
[ 1066.234133][T25983]  ? __pfx_ksys_write+0x10/0x10
[ 1066.234152][T25983]  ? rcu_is_watching+0x12/0xc0
[ 1066.234172][T25983]  do_syscall_64+0x10b/0xf80
[ 1066.234193][T25983]  ? clear_bhb_loop+0x40/0x90
[ 1066.234212][T25983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1066.234228][T25983] RIP: 0033:0x7f40b979cdd9
[ 1066.234243][T25983] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1066.234259][T25983] RSP: 002b:00007f40ba678028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1066.234275][T25983] RAX: ffffffffffffffda RBX: 00007f40b9a16090 RCX: 00007f40b979cdd9
[ 1066.234286][T25983] RDX: 0000000000100085 RSI: 0000000000000000 RDI: 0000000000000003
[ 1066.234296][T25983] RBP: 00007f40b9832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1066.234308][T25983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1066.234318][T25983] R13: 00007f40b9a16128 R14: 00007f40b9a16090 R15: 00007ffd3d4e60f8
[ 1066.234340][T25983]  </TASK>
[ 1066.657901][T25987] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6558'.
[ 1067.335563][ T5640] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1067.630333][T26005] futex_wake_op: syz.5.6561 tries to shift op by -2048; fix this program
[ 1067.747913][T26005] futex_wake_op: syz.5.6561 tries to shift op by -2048; fix this program
[ 1067.821750][ T5640] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[ 1067.829384][ T5640] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff
[ 1067.871925][ T5770] Process accounting resumed
[ 1068.182846][T26011] Process accounting resumed
[ 1069.717157][ T5640] Bluetooth: hci3: unexpected event 0x10 length: 124 > 1
[ 1069.719630][T16630] Bluetooth: hci3: hardware error 0x00
[ 1071.798887][T16630] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1073.310610][T26089] Process accounting resumed
[ 1076.213431][T26139] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6604'.
[ 1076.263172][T26139] netlink: 13 bytes leftover after parsing attributes in process `syz.0.6604'.
[ 1078.649449][T26186] FAULT_INJECTION: forcing a failure.
[ 1078.649449][T26186] name failslab, interval 1, probability 0, space 0, times 0
[ 1078.694353][T26186] CPU: 0 UID: 0 PID: 26186 Comm: syz.2.6605 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1078.694383][T26186] Tainted: [L]=SOFTLOCKUP
[ 1078.694390][T26186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1078.694401][T26186] Call Trace:
[ 1078.694407][T26186]  <TASK>
[ 1078.694415][T26186]  dump_stack_lvl+0x100/0x190
[ 1078.694442][T26186]  should_fail_ex.cold+0x5/0xa
[ 1078.694468][T26186]  should_failslab+0xc2/0x120
[ 1078.694490][T26186]  __kvmalloc_node_noprof+0xfa/0xa00
[ 1078.694508][T26186]  ? proc_sys_call_handler+0x2c7/0x5a0
[ 1078.694533][T26186]  proc_sys_call_handler+0x2c7/0x5a0
[ 1078.694554][T26186]  ? __pfx_proc_sys_call_handler+0x10/0x10
[ 1078.694576][T26186]  ? rw_verify_area+0xce/0x6d0
[ 1078.694591][T26186]  ? __pfx_proc_sys_read+0x10/0x10
[ 1078.694611][T26186]  vfs_read+0x825/0xb30
[ 1078.694631][T26186]  ? __pfx_vfs_read+0x10/0x10
[ 1078.694659][T26186]  ksys_read+0x12a/0x250
[ 1078.694676][T26186]  ? __pfx_ksys_read+0x10/0x10
[ 1078.694693][T26186]  ? rcu_is_watching+0x12/0xc0
[ 1078.694711][T26186]  ? exit_to_user_mode_loop+0xdd/0x4a0
[ 1078.694727][T26186]  ? rcu_is_watching+0x12/0xc0
[ 1078.694748][T26186]  do_syscall_64+0x10b/0xf80
[ 1078.694770][T26186]  ? clear_bhb_loop+0x40/0x90
[ 1078.694789][T26186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1078.694807][T26186] RIP: 0033:0x7efe2979cdd9
[ 1078.694822][T26186] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1078.694847][T26186] RSP: 002b:00007efe2a6ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1078.694864][T26186] RAX: ffffffffffffffda RBX: 00007efe29a15fa0 RCX: 00007efe2979cdd9
[ 1078.694876][T26186] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[ 1078.694887][T26186] RBP: 00007efe29832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1078.694898][T26186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1078.694908][T26186] R13: 00007efe29a16038 R14: 00007efe29a15fa0 R15: 00007ffc36834ee8
[ 1078.694931][T26186]  </TASK>
[ 1079.264181][T26192] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6606'.
[ 1079.288049][T26192] netlink: 'syz.2.6606': attribute type 1 has an invalid length.
[ 1079.321179][T26192] netlink: 13 bytes leftover after parsing attributes in process `syz.2.6606'.
[ 1079.654571][T26199] FAULT_INJECTION: forcing a failure.
[ 1079.654571][T26199] name failslab, interval 1, probability 0, space 0, times 0
[ 1079.687285][T26199] CPU: 0 UID: 0 PID: 26199 Comm: syz.2.6618 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1079.687315][T26199] Tainted: [L]=SOFTLOCKUP
[ 1079.687321][T26199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1079.687332][T26199] Call Trace:
[ 1079.687338][T26199]  <TASK>
[ 1079.687345][T26199]  dump_stack_lvl+0x100/0x190
[ 1079.687370][T26199]  should_fail_ex.cold+0x5/0xa
[ 1079.687391][T26199]  ? fib_default_rule_add+0x4f/0x420
[ 1079.687413][T26199]  should_failslab+0xc2/0x120
[ 1079.687431][T26199]  __kmalloc_noprof+0xe0/0x850
[ 1079.687455][T26199]  fib_default_rule_add+0x4f/0x420
[ 1079.687477][T26199]  fib4_rules_init+0xa6/0x1c0
[ 1079.687495][T26199]  fib_net_init+0x1dc/0x3f0
[ 1079.687516][T26199]  ? is_module_address+0x69/0xf0
[ 1079.687534][T26199]  ? __pfx_fib_net_init+0x10/0x10
[ 1079.687554][T26199]  ? timer_init_key+0x155/0x330
[ 1079.687588][T26199]  ? devinet_init_net+0x56c/0x8d0
[ 1079.687618][T26199]  ? __pfx_fib_net_init+0x10/0x10
[ 1079.687637][T26199]  ops_init+0x1e2/0x5f0
[ 1079.687658][T26199]  setup_net+0x118/0x3a0
[ 1079.687676][T26199]  ? __pfx_setup_net+0x10/0x10
[ 1079.687694][T26199]  ? mutex_init_lockdep+0xf1/0x120
[ 1079.687715][T26199]  copy_net_ns+0x46f/0x7c0
[ 1079.687736][T26199]  create_new_namespaces+0x3ea/0xac0
[ 1079.687762][T26199]  unshare_nsproxy_namespaces+0xf2/0x220
[ 1079.687784][T26199]  ksys_unshare+0x438/0xab0
[ 1079.687809][T26199]  ? __pfx_ksys_unshare+0x10/0x10
[ 1079.687830][T26199]  ? xfd_validate_state+0x129/0x190
[ 1079.687852][T26199]  __x64_sys_unshare+0x31/0x40
[ 1079.687874][T26199]  do_syscall_64+0x10b/0xf80
[ 1079.687896][T26199]  ? clear_bhb_loop+0x40/0x90
[ 1079.687915][T26199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1079.687931][T26199] RIP: 0033:0x7efe2979cdd9
[ 1079.687946][T26199] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1079.687961][T26199] RSP: 002b:00007efe2a6ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1079.687978][T26199] RAX: ffffffffffffffda RBX: 00007efe29a15fa0 RCX: 00007efe2979cdd9
[ 1079.687990][T26199] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1079.688001][T26199] RBP: 00007efe29832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1079.688011][T26199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1079.688022][T26199] R13: 00007efe29a16038 R14: 00007efe29a15fa0 R15: 00007ffc36834ee8
[ 1079.688045][T26199]  </TASK>
[ 1081.117920][T26223] netlink: 21 bytes leftover after parsing attributes in process `syz.5.6613'.
[ 1085.913128][T26277] FAULT_INJECTION: forcing a failure.
[ 1085.913128][T26277] name failslab, interval 1, probability 0, space 0, times 0
[ 1085.981544][T26277] CPU: 0 UID: 0 PID: 26277 Comm: syz.5.6622 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1085.981577][T26277] Tainted: [L]=SOFTLOCKUP
[ 1085.981583][T26277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1085.981594][T26277] Call Trace:
[ 1085.981601][T26277]  <TASK>
[ 1085.981608][T26277]  dump_stack_lvl+0x100/0x190
[ 1085.981635][T26277]  should_fail_ex.cold+0x5/0xa
[ 1085.981660][T26277]  should_failslab+0xc2/0x120
[ 1085.981681][T26277]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[ 1085.981709][T26277]  ? sock_alloc_inode+0x26/0x290
[ 1085.981733][T26277]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1085.981753][T26277]  sock_alloc_inode+0x26/0x290
[ 1085.981773][T26277]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1085.981794][T26277]  alloc_inode+0x68/0x250
[ 1085.981827][T26277]  sock_alloc+0x44/0x280
[ 1085.981845][T26277]  ? security_socket_create+0x7f/0x250
[ 1085.981871][T26277]  sock_create_lite+0x82/0x120
[ 1085.981892][T26277]  __netlink_kernel_create+0xbd/0x750
[ 1085.981918][T26277]  ? __pfx___netlink_kernel_create+0x10/0x10
[ 1085.981945][T26277]  fib_net_init+0x26d/0x3f0
[ 1085.981966][T26277]  ? is_module_address+0x69/0xf0
[ 1085.981983][T26277]  ? __pfx_fib_net_init+0x10/0x10
[ 1085.982003][T26277]  ? timer_init_key+0x155/0x330
[ 1085.982025][T26277]  ? __pfx_nl_fib_input+0x10/0x10
[ 1085.982051][T26277]  ? devinet_init_net+0x56c/0x8d0
[ 1085.982076][T26277]  ? __pfx_fib_net_init+0x10/0x10
[ 1085.982095][T26277]  ops_init+0x1e2/0x5f0
[ 1085.982115][T26277]  setup_net+0x118/0x3a0
[ 1085.982133][T26277]  ? __pfx_setup_net+0x10/0x10
[ 1085.982151][T26277]  ? mutex_init_lockdep+0xf1/0x120
[ 1085.982171][T26277]  copy_net_ns+0x46f/0x7c0
[ 1085.982193][T26277]  create_new_namespaces+0x3ea/0xac0
[ 1085.982219][T26277]  unshare_nsproxy_namespaces+0xf2/0x220
[ 1085.982240][T26277]  ksys_unshare+0x438/0xab0
[ 1085.982264][T26277]  ? __pfx_ksys_unshare+0x10/0x10
[ 1085.982285][T26277]  ? xfd_validate_state+0x129/0x190
[ 1085.982307][T26277]  __x64_sys_unshare+0x31/0x40
[ 1085.982329][T26277]  do_syscall_64+0x10b/0xf80
[ 1085.982351][T26277]  ? clear_bhb_loop+0x40/0x90
[ 1085.982371][T26277]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1085.982388][T26277] RIP: 0033:0x7f2bbd39cdd9
[ 1085.982403][T26277] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1085.982418][T26277] RSP: 002b:00007f2bbe1a2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1085.982435][T26277] RAX: ffffffffffffffda RBX: 00007f2bbd615fa0 RCX: 00007f2bbd39cdd9
[ 1085.982445][T26277] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1085.982456][T26277] RBP: 00007f2bbd432d69 R08: 0000000000000000 R09: 0000000000000000
[ 1085.982466][T26277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1085.982476][T26277] R13: 00007f2bbd616038 R14: 00007f2bbd615fa0 R15: 00007fffa9465298
[ 1085.982498][T26277]  </TASK>
[ 1087.376984][T26305] FAULT_INJECTION: forcing a failure.
[ 1087.376984][T26305] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1087.424222][T26305] CPU: 0 UID: 0 PID: 26305 Comm: syz.2.6630 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1087.424256][T26305] Tainted: [L]=SOFTLOCKUP
[ 1087.424263][T26305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1087.424274][T26305] Call Trace:
[ 1087.424281][T26305]  <TASK>
[ 1087.424288][T26305]  dump_stack_lvl+0x100/0x190
[ 1087.424316][T26305]  should_fail_ex.cold+0x5/0xa
[ 1087.424338][T26305]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1087.424360][T26305]  should_fail_alloc_page+0xeb/0x140
[ 1087.424380][T26305]  prepare_alloc_pages+0x1f0/0x5f0
[ 1087.424399][T26305]  ? rcu_is_watching+0x12/0xc0
[ 1087.424421][T26305]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[ 1087.424446][T26305]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[ 1087.424480][T26305]  ? find_held_lock+0x2b/0x80
[ 1087.424501][T26305]  ? rcu_read_unlock+0x17/0x60
[ 1087.424521][T26305]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1087.424550][T26305]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1087.424576][T26305]  ? rcu_is_watching+0x12/0xc0
[ 1087.424594][T26305]  ? trace_mm_page_alloc+0x163/0x1d0
[ 1087.424615][T26305]  ? __lock_acquire+0x4a5/0x2630
[ 1087.424630][T26305]  ? css_rstat_updated+0x1ce/0x5a0
[ 1087.424658][T26305]  ? __lock_acquire+0x4a5/0x2630
[ 1087.424671][T26305]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1087.424717][T26305]  ? policy_nodemask+0xed/0x4f0
[ 1087.424740][T26305]  alloc_pages_mpol+0x1fb/0x540
[ 1087.424762][T26305]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1087.424782][T26305]  ? find_held_lock+0x2b/0x80
[ 1087.424802][T26305]  ? __pud_alloc+0x4f6/0x690
[ 1087.424821][T26305]  ? __pud_alloc+0x4f6/0x690
[ 1087.424841][T26305]  alloc_pages_noprof+0x1a/0x160
[ 1087.424862][T26305]  __pmd_alloc+0x3b/0x950
[ 1087.424880][T26305]  ? __pud_alloc+0x4fb/0x690
[ 1087.424900][T26305]  walk_to_pmd+0x3a3/0x4c0
[ 1087.424921][T26305]  get_locked_pte+0x25/0xc0
[ 1087.424942][T26305]  map_ldt_struct+0x3c1/0xa70
[ 1087.424967][T26305]  ? __pfx_map_ldt_struct+0x10/0x10
[ 1087.424987][T26305]  ? alloc_pages_noprof+0xf9/0x160
[ 1087.425009][T26305]  write_ldt+0x6d3/0xd40
[ 1087.425032][T26305]  ? __pfx_write_ldt+0x10/0x10
[ 1087.425051][T26305]  ? xfd_validate_state+0x129/0x190
[ 1087.425066][T26305]  ? ksys_write+0x1ac/0x250
[ 1087.425089][T26305]  __x64_sys_modify_ldt+0xb1/0x170
[ 1087.425110][T26305]  do_syscall_64+0x10b/0xf80
[ 1087.425132][T26305]  ? clear_bhb_loop+0x40/0x90
[ 1087.425150][T26305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.425166][T26305] RIP: 0033:0x7efe2979cdd9
[ 1087.425182][T26305] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1087.425197][T26305] RSP: 002b:00007efe2a6ad028 EFLAGS: 00000246 ORIG_RAX: 000000000000009a
[ 1087.425214][T26305] RAX: ffffffffffffffda RBX: 00007efe29a16180 RCX: 00007efe2979cdd9
[ 1087.425225][T26305] RDX: 0000000000000010 RSI: 0000200000000140 RDI: 0000000000000001
[ 1087.425235][T26305] RBP: 00007efe29832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1087.425245][T26305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1087.425265][T26305] R13: 00007efe29a16218 R14: 00007efe29a16180 R15: 00007ffc36834ee8
[ 1087.425287][T26305]  </TASK>
[ 1088.259163][   T30] audit: type=1400 audit(4294967587.648:22): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=26300 comm="syz.5.6633"
[ 1089.151089][T26329] FAULT_INJECTION: forcing a failure.
[ 1089.151089][T26329] name failslab, interval 1, probability 0, space 0, times 0
[ 1089.222604][T26329] CPU: 0 UID: 0 PID: 26329 Comm: syz.3.6637 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1089.222632][T26329] Tainted: [L]=SOFTLOCKUP
[ 1089.222638][T26329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1089.222649][T26329] Call Trace:
[ 1089.222655][T26329]  <TASK>
[ 1089.222662][T26329]  dump_stack_lvl+0x100/0x190
[ 1089.222696][T26329]  should_fail_ex.cold+0x5/0xa
[ 1089.222720][T26329]  ? lsm_blob_alloc+0x68/0x90
[ 1089.222743][T26329]  should_failslab+0xc2/0x120
[ 1089.222763][T26329]  __kmalloc_noprof+0xe0/0x850
[ 1089.222779][T26329]  ? trace_kmalloc+0xe3/0x110
[ 1089.222800][T26329]  lsm_blob_alloc+0x68/0x90
[ 1089.222821][T26329]  security_sk_alloc+0x2d/0x290
[ 1089.222846][T26329]  sk_prot_alloc+0x12a/0x2a0
[ 1089.222871][T26329]  sk_alloc+0x36/0xe80
[ 1089.222887][T26329]  __netlink_create+0x5e/0x2c0
[ 1089.222910][T26329]  __netlink_kernel_create+0xed/0x750
[ 1089.222933][T26329]  ? __pfx___netlink_kernel_create+0x10/0x10
[ 1089.222961][T26329]  fib_net_init+0x26d/0x3f0
[ 1089.222983][T26329]  ? is_module_address+0x69/0xf0
[ 1089.223000][T26329]  ? __pfx_fib_net_init+0x10/0x10
[ 1089.223020][T26329]  ? timer_init_key+0x155/0x330
[ 1089.223043][T26329]  ? __pfx_nl_fib_input+0x10/0x10
[ 1089.223067][T26329]  ? devinet_init_net+0x56c/0x8d0
[ 1089.223096][T26329]  ? __pfx_fib_net_init+0x10/0x10
[ 1089.223116][T26329]  ops_init+0x1e2/0x5f0
[ 1089.223136][T26329]  setup_net+0x118/0x3a0
[ 1089.223154][T26329]  ? __pfx_setup_net+0x10/0x10
[ 1089.223172][T26329]  ? mutex_init_lockdep+0xf1/0x120
[ 1089.223193][T26329]  copy_net_ns+0x46f/0x7c0
[ 1089.223215][T26329]  create_new_namespaces+0x3ea/0xac0
[ 1089.223240][T26329]  unshare_nsproxy_namespaces+0xf2/0x220
[ 1089.223262][T26329]  ksys_unshare+0x438/0xab0
[ 1089.223286][T26329]  ? __pfx_ksys_unshare+0x10/0x10
[ 1089.223307][T26329]  ? xfd_validate_state+0x129/0x190
[ 1089.223330][T26329]  __x64_sys_unshare+0x31/0x40
[ 1089.223352][T26329]  do_syscall_64+0x10b/0xf80
[ 1089.223375][T26329]  ? clear_bhb_loop+0x40/0x90
[ 1089.223394][T26329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1089.223409][T26329] RIP: 0033:0x7f40b979cdd9
[ 1089.223425][T26329] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1089.223441][T26329] RSP: 002b:00007f40ba699028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1089.223457][T26329] RAX: ffffffffffffffda RBX: 00007f40b9a15fa0 RCX: 00007f40b979cdd9
[ 1089.223467][T26329] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1089.223476][T26329] RBP: 00007f40b9832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1089.223486][T26329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1089.223496][T26329] R13: 00007f40b9a16038 R14: 00007f40b9a15fa0 R15: 00007ffd3d4e60f8
[ 1089.223519][T26329]  </TASK>
[ 1089.920995][T26324] Process accounting paused
[ 1091.414614][   T30] audit: type=1400 audit(4294967590.788:23): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=26359 comm="syz.2.6648"
[ 1092.872542][T26392] [U] 
[ 1098.249051][T26449] Process accounting paused
[ 1102.925213][T26546] netlink: 'syz.2.6692': attribute type 5 has an invalid length.
[ 1102.965333][T26546] netlink: 'syz.2.6692': attribute type 1 has an invalid length.
[ 1103.006185][T26546] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6692'.
[ 1103.053570][T26547] netlink: 'syz.2.6692': attribute type 5 has an invalid length.
[ 1103.097083][T26547] netlink: 'syz.2.6692': attribute type 1 has an invalid length.
[ 1103.145774][T26547] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6692'.
[ 1103.547662][T26550] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6703'.
[ 1107.453847][T26597] futex_wake_op: syz.0.6704 tries to shift op by -2048; fix this program
[ 1107.554082][T26597] futex_wake_op: syz.0.6704 tries to shift op by -2048; fix this program
[ 1113.395754][T26664] netlink: 330 bytes leftover after parsing attributes in process `syz.5.6724'.
[ 1115.958820][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.968738][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[ 1122.076238][T26675] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137
[ 1122.130117][T26675] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138
[ 1122.171275][T26675] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum
[ 1122.308907][T26680] usb usb2: usbfs: process 26680 (syz.2.6737) did not claim interface 4 before use
[ 1122.327265][T26676] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 1: bad block bitmap checksum
[ 1122.423293][T26678] Process accounting resumed
[ 1122.498490][T26686] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 2: bad block bitmap checksum
[ 1122.704630][ T5640] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1122.723397][ T5640] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1122.738423][ T5640] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1122.746253][ T5640] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1122.754637][ T5640] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1123.284263][T26690] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1123.292769][T26690] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1123.301402][T26690] bridge_slave_0: entered allmulticast mode
[ 1123.308809][T26690] bridge_slave_0: entered promiscuous mode
[ 1123.317467][T26690] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1123.324758][T26690] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1123.332962][T26690] bridge_slave_1: entered allmulticast mode
[ 1123.341987][T26690] bridge_slave_1: entered promiscuous mode
[ 1123.379231][T26690] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1123.391196][T26690] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1123.423400][T26690] team0: Port device team_slave_0 added
[ 1123.431265][T26690] team0: Port device team_slave_1 added
[ 1123.457769][T26690] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1123.464795][T26690] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1123.496269][T26690] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1123.509404][T26690] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1123.516395][T26690] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1123.543377][T26690] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1123.584848][T26690] hsr_slave_0: entered promiscuous mode
[ 1123.591280][T26690] hsr_slave_1: entered promiscuous mode
[ 1123.601962][T26690] debugfs: 'hsr0' already exists in 'hsr'
[ 1123.608537][T26690] Cannot create hsr debugfs directory
[ 1123.797588][T26690] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1123.808624][T26690] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1123.816739][T26690] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1123.831012][T26690] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1123.839545][T26690] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1123.849099][T26690] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1123.858714][T26690] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1123.872306][T26690] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1123.902272][T26690] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1123.909493][T26690] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1123.918889][T26690] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1123.926083][T26690] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1123.994610][T26690] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1124.010962][  T138] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1124.021268][  T138] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1124.034765][T26690] 8021q: adding VLAN 0 to HW filter on device team0
[ 1124.054220][  T138] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1124.061453][  T138] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1124.094850][  T138] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1124.102045][  T138] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1124.442119][T26690] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1124.654479][T26690] veth0_vlan: entered promiscuous mode
[ 1124.666642][T26690] veth1_vlan: entered promiscuous mode
[ 1124.701526][T26690] veth0_macvtap: entered promiscuous mode
[ 1124.720927][T26690] veth1_macvtap: entered promiscuous mode
[ 1124.738638][T26690] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1124.754752][T26690] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1124.770336][  T138] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.796202][  T138] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.837455][T16630] Bluetooth: hci2: command tx timeout
[ 1124.906832][   T12] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.939029][   T12] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.966418][  T138] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1124.994651][  T138] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1125.024481][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1125.035281][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1126.453429][T26757] program syz.2.6749 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1126.919207][T16630] Bluetooth: hci2: command tx timeout
[ 1127.927916][T26777] netlink: 354 bytes leftover after parsing attributes in process `syz.0.6744'.
[ 1128.998287][T16630] Bluetooth: hci2: command tx timeout
[ 1129.634161][T26808] [U] 
[ 1130.392484][T26828] netlink: 25 bytes leftover after parsing attributes in process `syz.5.6763'.
[ 1130.531894][T26831] device-mapper: ioctl: Unable to rename non-existent device,  to uuid „
[ 1131.076995][T16630] Bluetooth: hci2: command tx timeout
[ 1132.876543][T26879] FAULT_INJECTION: forcing a failure.
[ 1132.876543][T26879] name failslab, interval 1, probability 0, space 0, times 0
[ 1132.939748][T26879] CPU: 0 UID: 0 PID: 26879 Comm: syz.6.6778 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1132.939780][T26879] Tainted: [L]=SOFTLOCKUP
[ 1132.939786][T26879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1132.939802][T26879] Call Trace:
[ 1132.939809][T26879]  <TASK>
[ 1132.939816][T26879]  dump_stack_lvl+0x100/0x190
[ 1132.939843][T26879]  should_fail_ex.cold+0x5/0xa
[ 1132.939868][T26879]  ? drm_atomic_state_init+0xf4/0x490
[ 1132.939891][T26879]  should_failslab+0xc2/0x120
[ 1132.939912][T26879]  __kmalloc_noprof+0xe0/0x850
[ 1132.939932][T26879]  drm_atomic_state_init+0xf4/0x490
[ 1132.939958][T26879]  ? kasan_save_track+0x14/0x30
[ 1132.939978][T26879]  drm_atomic_state_alloc+0xd3/0x120
[ 1132.940003][T26879]  drm_client_modeset_commit_atomic+0xcc/0x7e0
[ 1132.940022][T26879]  ? rcu_is_watching+0x12/0xc0
[ 1132.940042][T26879]  ? trace_contention_end+0x122/0x170
[ 1132.940060][T26879]  ? __mutex_lock+0x26d/0x1b10
[ 1132.940087][T26879]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[ 1132.940104][T26879]  ? drm_master_internal_acquire+0x21/0x80
[ 1132.940146][T26879]  drm_client_modeset_commit_locked+0x14d/0x580
[ 1132.940166][T26879]  drm_client_modeset_commit+0x4f/0x80
[ 1132.940184][T26879]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[ 1132.940212][T26879]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[ 1132.940238][T26879]  drm_fbdev_client_restore+0x1b/0x30
[ 1132.940258][T26879]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[ 1132.940278][T26879]  drm_client_dev_restore+0x205/0x2a0
[ 1132.940306][T26879]  drm_release+0x2c6/0x360
[ 1132.940332][T26879]  ? __pfx_drm_release+0x10/0x10
[ 1132.940355][T26879]  __fput+0x3ff/0xb50
[ 1132.940382][T26879]  task_work_run+0x150/0x240
[ 1132.940400][T26879]  ? __pfx_task_work_run+0x10/0x10
[ 1132.940417][T26879]  ? rcu_is_watching+0x12/0xc0
[ 1132.940438][T26879]  exit_to_user_mode_loop+0x100/0x4a0
[ 1132.940454][T26879]  ? do_syscall_64+0x519/0xf80
[ 1132.940478][T26879]  do_syscall_64+0x6f2/0xf80
[ 1132.940498][T26879]  ? clear_bhb_loop+0x40/0x90
[ 1132.940517][T26879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1132.940533][T26879] RIP: 0033:0x7f351d79cdd9
[ 1132.940549][T26879] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1132.940564][T26879] RSP: 002b:00007f351e6c3028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1132.940581][T26879] RAX: 0000000000000000 RBX: 00007f351da15fa0 RCX: 00007f351d79cdd9
[ 1132.940593][T26879] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[ 1132.940603][T26879] RBP: 00007f351d832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1132.940614][T26879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1132.940625][T26879] R13: 00007f351da16038 R14: 00007f351da15fa0 R15: 00007ffd9e3e03f8
[ 1132.940647][T26879]  </TASK>
[ 1133.598365][T26869] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1133.675925][T26869] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0
[ 1133.782634][T26875] kexec: Could not allocate control_code_buffer
[ 1134.366427][T26891] FAULT_INJECTION: forcing a failure.
[ 1134.366427][T26891] name failslab, interval 1, probability 0, space 0, times 0
[ 1134.409480][T26891] CPU: 0 UID: 0 PID: 26891 Comm: syz.2.6781 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1134.409509][T26891] Tainted: [L]=SOFTLOCKUP
[ 1134.409516][T26891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1134.409527][T26891] Call Trace:
[ 1134.409533][T26891]  <TASK>
[ 1134.409540][T26891]  dump_stack_lvl+0x100/0x190
[ 1134.409565][T26891]  should_fail_ex.cold+0x5/0xa
[ 1134.409589][T26891]  ? __register_sysctl_table+0xac/0x1650
[ 1134.409612][T26891]  should_failslab+0xc2/0x120
[ 1134.409631][T26891]  __kmalloc_noprof+0xe0/0x850
[ 1134.409651][T26891]  __register_sysctl_table+0xac/0x1650
[ 1134.409673][T26891]  ? is_module_address+0x5f/0xf0
[ 1134.409692][T26891]  ? __pfx___register_sysctl_table+0x10/0x10
[ 1134.409711][T26891]  ? is_module_address+0x69/0xf0
[ 1134.409738][T26891]  ? register_net_sysctl_sz+0x222/0x430
[ 1134.409770][T26891]  __devinet_sysctl_register+0x1b9/0x360
[ 1134.409797][T26891]  ? trace_kmalloc+0xe3/0x110
[ 1134.409817][T26891]  ? __pfx___devinet_sysctl_register+0x10/0x10
[ 1134.409845][T26891]  ? __asan_memcpy+0x3c/0x60
[ 1134.409870][T26891]  devinet_init_net+0x303/0x8d0
[ 1134.409894][T26891]  ? __pfx_devinet_init_net+0x10/0x10
[ 1134.409915][T26891]  ops_init+0x1e2/0x5f0
[ 1134.409936][T26891]  setup_net+0x118/0x3a0
[ 1134.409954][T26891]  ? __pfx_setup_net+0x10/0x10
[ 1134.409972][T26891]  ? mutex_init_lockdep+0xf1/0x120
[ 1134.409995][T26891]  copy_net_ns+0x46f/0x7c0
[ 1134.410016][T26891]  create_new_namespaces+0x3ea/0xac0
[ 1134.410041][T26891]  unshare_nsproxy_namespaces+0xf2/0x220
[ 1134.410065][T26891]  ksys_unshare+0x438/0xab0
[ 1134.410089][T26891]  ? __pfx_ksys_unshare+0x10/0x10
[ 1134.410109][T26891]  ? xfd_validate_state+0x129/0x190
[ 1134.410132][T26891]  __x64_sys_unshare+0x31/0x40
[ 1134.410154][T26891]  do_syscall_64+0x10b/0xf80
[ 1134.410176][T26891]  ? clear_bhb_loop+0x40/0x90
[ 1134.410195][T26891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1134.410211][T26891] RIP: 0033:0x7efe2979cdd9
[ 1134.410225][T26891] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1134.410240][T26891] RSP: 002b:00007efe2a6ce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1134.410257][T26891] RAX: ffffffffffffffda RBX: 00007efe29a16090 RCX: 00007efe2979cdd9
[ 1134.410267][T26891] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1134.410277][T26891] RBP: 00007efe29832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1134.410288][T26891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1134.410298][T26891] R13: 00007efe29a16128 R14: 00007efe29a16090 R15: 00007ffc36834ee8
[ 1134.410318][T26891]  </TASK>
[ 1135.471945][T26899] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[ 1135.551968][T26899] File: /dev/nullb0 PID: 26899 Comm: syz.6.6782
[ 1137.660765][   T30] audit: type=1800 audit(4294967637.048:24): pid=26921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.6788" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[ 1140.873549][T26962] FAULT_INJECTION: forcing a failure.
[ 1140.873549][T26962] name failslab, interval 1, probability 0, space 0, times 0
[ 1140.935264][T26962] CPU: 0 UID: 0 PID: 26962 Comm: syz.2.6798 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1140.935294][T26962] Tainted: [L]=SOFTLOCKUP
[ 1140.935301][T26962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1140.935312][T26962] Call Trace:
[ 1140.935328][T26962]  <TASK>
[ 1140.935336][T26962]  dump_stack_lvl+0x100/0x190
[ 1140.935364][T26962]  should_fail_ex.cold+0x5/0xa
[ 1140.935388][T26962]  should_failslab+0xc2/0x120
[ 1140.935407][T26962]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1140.935431][T26962]  ? security_inode_alloc+0x3b/0x2c0
[ 1140.935447][T26962]  ? lockdep_init_map_type+0x5c/0x250
[ 1140.935466][T26962]  security_inode_alloc+0x3b/0x2c0
[ 1140.935482][T26962]  inode_init_always_gfp+0xcc0/0x1000
[ 1140.935508][T26962]  alloc_inode+0x8e/0x250
[ 1140.935531][T26962]  path_from_stashed+0x25b/0x750
[ 1140.935552][T26962]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1140.935573][T26962]  ns_get_path+0x60/0x80
[ 1140.935594][T26962]  proc_ns_get_link+0x121/0x230
[ 1140.935612][T26962]  ? __pfx_proc_ns_get_link+0x10/0x10
[ 1140.935631][T26962]  ? atime_needs_update+0x8b/0x6b0
[ 1140.935648][T26962]  pick_link+0xd17/0x13c0
[ 1140.935664][T26962]  ? __pfx_proc_ns_get_link+0x10/0x10
[ 1140.935683][T26962]  step_into_slowpath+0x9ba/0xf90
[ 1140.935703][T26962]  ? __pfx_step_into_slowpath+0x10/0x10
[ 1140.935719][T26962]  ? find_held_lock+0x2b/0x80
[ 1140.935744][T26962]  path_openat+0xf95/0x31a0
[ 1140.935770][T26962]  ? __pfx_path_openat+0x10/0x10
[ 1140.935795][T26962]  do_file_open+0x20e/0x430
[ 1140.935816][T26962]  ? __pfx_do_file_open+0x10/0x10
[ 1140.935848][T26962]  ? alloc_fd+0x476/0x790
[ 1140.935868][T26962]  ? do_getname+0x191/0x390
[ 1140.935892][T26962]  do_sys_openat2+0x10d/0x1e0
[ 1140.935916][T26962]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1140.935940][T26962]  ? __fget_files+0x21f/0x3d0
[ 1140.935961][T26962]  __x64_sys_openat+0x12d/0x210
[ 1140.935985][T26962]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1140.936011][T26962]  ? rcu_is_watching+0x12/0xc0
[ 1140.936032][T26962]  do_syscall_64+0x10b/0xf80
[ 1140.936054][T26962]  ? clear_bhb_loop+0x40/0x90
[ 1140.936072][T26962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1140.936088][T26962] RIP: 0033:0x7efe2975d60e
[ 1140.936104][T26962] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1140.936120][T26962] RSP: 002b:00007efe2a6eeec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1140.936137][T26962] RAX: ffffffffffffffda RBX: 00007efe2a6ef6c0 RCX: 00007efe2975d60e
[ 1140.936148][T26962] RDX: 0000000000000002 RSI: 00007efe2a6eef90 RDI: ffffffffffffff9c
[ 1140.936159][T26962] RBP: 00007efe29832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1140.936168][T26962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1140.936178][T26962] R13: 00007efe29a16038 R14: 00007efe29a15fa0 R15: 00007ffc36834ee8
[ 1140.936199][T26962]  </TASK>
[ 1141.988554][T26966] netlink: 186 bytes leftover after parsing attributes in process `syz.5.6799'.
[ 1142.033480][T26966] netlink: 186 bytes leftover after parsing attributes in process `syz.5.6799'.
[ 1143.278539][T16630] block nbd3: Receive control failed (result -32)
[ 1145.533345][T27011] netlink: 'syz.6.6815': attribute type 1 has an invalid length.
[ 1145.833521][T27019] netlink: 25 bytes leftover after parsing attributes in process `syz.0.6817'.
[ 1147.295660][T27034] zswap: compressor  not available
[ 1149.773354][T27060] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1153.272113][T27101] FAULT_INJECTION: forcing a failure.
[ 1153.272113][T27101] name failslab, interval 1, probability 0, space 0, times 0
[ 1153.315270][T27101] CPU: 0 UID: 0 PID: 27101 Comm: syz.5.6836 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1153.315305][T27101] Tainted: [L]=SOFTLOCKUP
[ 1153.315311][T27101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1153.315322][T27101] Call Trace:
[ 1153.315329][T27101]  <TASK>
[ 1153.315336][T27101]  dump_stack_lvl+0x100/0x190
[ 1153.315365][T27101]  should_fail_ex.cold+0x5/0xa
[ 1153.315389][T27101]  should_failslab+0xc2/0x120
[ 1153.315409][T27101]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1153.315431][T27101]  ? snd_seq_timer_new+0x42/0x190
[ 1153.315453][T27101]  snd_seq_timer_new+0x42/0x190
[ 1153.315471][T27101]  snd_seq_queue_alloc+0x177/0x540
[ 1153.315499][T27101]  snd_seq_ioctl_create_queue+0xa9/0x370
[ 1153.315519][T27101]  call_seq_client_ctl+0xa3/0x130
[ 1153.315541][T27101]  snd_seq_kernel_client_ctl+0x77/0xd0
[ 1153.315562][T27101]  alloc_seq_queue+0xdb/0x180
[ 1153.315583][T27101]  ? __pfx_alloc_seq_queue+0x10/0x10
[ 1153.315614][T27101]  ? mark_held_locks+0x40/0x70
[ 1153.315633][T27101]  snd_seq_oss_open+0x2b2/0xa10
[ 1153.315656][T27101]  odev_open+0x6f/0x90
[ 1153.315674][T27101]  ? __pfx_odev_open+0x10/0x10
[ 1153.315692][T27101]  soundcore_open+0x2e3/0x5a0
[ 1153.315715][T27101]  ? __pfx_soundcore_open+0x10/0x10
[ 1153.315735][T27101]  chrdev_open+0x234/0x6a0
[ 1153.315754][T27101]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1153.315779][T27101]  ? __pfx_chrdev_open+0x10/0x10
[ 1153.315799][T27101]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1153.315825][T27101]  do_dentry_open+0x6d8/0x1660
[ 1153.315847][T27101]  ? __pfx_chrdev_open+0x10/0x10
[ 1153.315870][T27101]  vfs_open+0x82/0x3f0
[ 1153.315895][T27101]  path_openat+0x208c/0x31a0
[ 1153.315921][T27101]  ? __pfx_path_openat+0x10/0x10
[ 1153.315946][T27101]  do_file_open+0x20e/0x430
[ 1153.315967][T27101]  ? __pfx_do_file_open+0x10/0x10
[ 1153.316008][T27101]  ? alloc_fd+0x476/0x790
[ 1153.316033][T27101]  ? do_getname+0x191/0x390
[ 1153.316059][T27101]  do_sys_openat2+0x10d/0x1e0
[ 1153.316085][T27101]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1153.316119][T27101]  __x64_sys_openat+0x12d/0x210
[ 1153.316143][T27101]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1153.316170][T27101]  ? rcu_is_watching+0x12/0xc0
[ 1153.316191][T27101]  do_syscall_64+0x10b/0xf80
[ 1153.316213][T27101]  ? clear_bhb_loop+0x40/0x90
[ 1153.316232][T27101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1153.316248][T27101] RIP: 0033:0x7f2bbd39cdd9
[ 1153.316263][T27101] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1153.316279][T27101] RSP: 002b:00007f2bbe181028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1153.316295][T27101] RAX: ffffffffffffffda RBX: 00007f2bbd616090 RCX: 00007f2bbd39cdd9
[ 1153.316305][T27101] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1153.316314][T27101] RBP: 00007f2bbd432d69 R08: 0000000000000000 R09: 0000000000000000
[ 1153.316324][T27101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1153.316334][T27101] R13: 00007f2bbd616128 R14: 00007f2bbd616090 R15: 00007fffa9465298
[ 1153.316356][T27101]  </TASK>
[ 1153.825775][T27103] ubi0: attaching mtd0
[ 1153.831246][T27103] ubi0: scanning is finished
[ 1153.835896][T27103] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1154.299421][T27103] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1158.177340][T27116] FAULT_INJECTION: forcing a failure.
[ 1158.177340][T27116] name failslab, interval 1, probability 0, space 0, times 0
[ 1158.244947][T27116] CPU: 0 UID: 0 PID: 27116 Comm: syz.6.6839 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1158.244984][T27116] Tainted: [L]=SOFTLOCKUP
[ 1158.244991][T27116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1158.245002][T27116] Call Trace:
[ 1158.245009][T27116]  <TASK>
[ 1158.245017][T27116]  dump_stack_lvl+0x100/0x190
[ 1158.245043][T27116]  should_fail_ex.cold+0x5/0xa
[ 1158.245068][T27116]  should_failslab+0xc2/0x120
[ 1158.245087][T27116]  __kmalloc_cache_node_noprof+0x7d/0x770
[ 1158.245106][T27116]  ? mem_cgroup_css_alloc+0xafb/0x1e00
[ 1158.245130][T27116]  mem_cgroup_css_alloc+0xafb/0x1e00
[ 1158.245154][T27116]  cgroup_apply_control_enable+0x602/0xdd0
[ 1158.245185][T27116]  cgroup_mkdir+0x59c/0x1310
[ 1158.245210][T27116]  ? __pfx_cgroup_mkdir+0x10/0x10
[ 1158.245233][T27116]  kernfs_iop_mkdir+0x111/0x190
[ 1158.245253][T27116]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 1158.245277][T27116]  vfs_mkdir+0x361/0x850
[ 1158.245295][T27116]  filename_mkdirat+0x48b/0x5e0
[ 1158.245318][T27116]  ? __pfx_filename_mkdirat+0x10/0x10
[ 1158.245338][T27116]  ? strncpy_from_user+0x19d/0x2d0
[ 1158.245357][T27116]  ? do_getname+0x191/0x390
[ 1158.245382][T27116]  __x64_sys_mkdir+0x6b/0x90
[ 1158.245402][T27116]  do_syscall_64+0x10b/0xf80
[ 1158.245424][T27116]  ? clear_bhb_loop+0x40/0x90
[ 1158.245443][T27116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1158.245459][T27116] RIP: 0033:0x7f351d79cdd9
[ 1158.245474][T27116] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1158.245489][T27116] RSP: 002b:00007f351e6c3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1158.245506][T27116] RAX: ffffffffffffffda RBX: 00007f351da15fa0 RCX: 00007f351d79cdd9
[ 1158.245515][T27116] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[ 1158.245525][T27116] RBP: 00007f351d832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1158.245534][T27116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1158.245544][T27116] R13: 00007f351da16038 R14: 00007f351da15fa0 R15: 00007ffd9e3e03f8
[ 1158.245571][T27116]  </TASK>
[ 1158.801392][ T5640] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1158.838014][ T5640] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1158.859834][ T5640] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1159.063414][T17008] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1159.116045][T17008] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1160.938126][T27171] netlink: 226 bytes leftover after parsing attributes in process `syz.0.6851'.
[ 1160.999837][T27171] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6851'.
[ 1161.032368][T27171] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check.
[ 1161.109974][T27123] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1161.148018][T27123] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1161.187728][T27123] bridge_slave_0: entered allmulticast mode
[ 1161.223457][T27123] bridge_slave_0: entered promiscuous mode
[ 1161.317855][ T5640] Bluetooth: hci5: command tx timeout
[ 1161.389134][T27123] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1161.451086][T27123] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1161.482764][T27123] bridge_slave_1: entered allmulticast mode
[ 1161.524273][T27123] bridge_slave_1: entered promiscuous mode
[ 1161.645542][T27123] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1161.713263][T27123] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1161.874325][T27123] team0: Port device team_slave_0 added
[ 1161.915159][T27123] team0: Port device team_slave_1 added
[ 1162.279125][T27123] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1162.299581][T27123] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1162.330266][T27123] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1162.396642][T27123] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1162.427374][T27123] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1162.506577][T27123] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1162.722645][T27123] hsr_slave_0: entered promiscuous mode
[ 1162.743043][T27123] hsr_slave_1: entered promiscuous mode
[ 1162.782720][T27123] debugfs: 'hsr0' already exists in 'hsr'
[ 1162.828373][T27123] Cannot create hsr debugfs directory
[ 1163.397481][ T5640] Bluetooth: hci5: command tx timeout
[ 1163.825175][T27204] netlink: 25 bytes leftover after parsing attributes in process `syz.6.6859'.
[ 1164.035147][T27123] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1164.071657][T27123] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1164.084941][T27123] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1164.099707][T27123] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1164.110630][T27123] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1164.123936][T27123] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1164.132764][T27123] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1164.150954][T27123] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1164.266104][T27123] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1164.285484][T27123] 8021q: adding VLAN 0 to HW filter on device team0
[ 1164.298725][ T3394] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1164.305895][ T3394] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1164.334630][ T3394] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1164.341803][ T3394] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1164.701307][T27123] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1164.911299][T27123] veth0_vlan: entered promiscuous mode
[ 1164.934531][T27123] veth1_vlan: entered promiscuous mode
[ 1164.964308][T27123] veth0_macvtap: entered promiscuous mode
[ 1164.979961][T27123] veth1_macvtap: entered promiscuous mode
[ 1165.000427][T27123] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1165.019689][T27123] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1165.035343][ T3394] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1165.061536][ T3394] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1165.103311][ T3394] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1165.133622][ T3394] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1165.224449][ T3394] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1165.252289][ T3394] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1165.292262][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1165.302327][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1165.477298][ T5640] Bluetooth: hci5: command tx timeout
[ 1167.557289][ T5640] Bluetooth: hci5: command tx timeout
[ 1168.736828][   T30] audit: type=1800 audit(4294967668.118:25): pid=27279 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.6869" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[ 1169.662957][T27287] futex_wake_op: syz.5.6875 tries to shift op by -2048; fix this program
[ 1169.686343][T27287] 0x000000000001-0x000000020000 : ""
[ 1169.786138][T27287] ftl_cs: FTL header corrupt!
[ 1173.973265][T27341] zswap: compressor  not available
[ 1174.572228][T27364] zram: Removed device: zram0
[ 1177.410453][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.431504][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[ 1179.623163][T27428] ima: policy update failed
[ 1179.650266][   T30] audit: type=1802 audit(4294967679.028:26): pid=27428 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.7.6902" res=0 errno=0
[ 1181.598471][T27464] FAULT_INJECTION: forcing a failure.
[ 1181.598471][T27464] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1181.689282][T27464] CPU: 0 UID: 0 PID: 27464 Comm: syz.6.6911 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1181.689315][T27464] Tainted: [L]=SOFTLOCKUP
[ 1181.689322][T27464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1181.689333][T27464] Call Trace:
[ 1181.689339][T27464]  <TASK>
[ 1181.689347][T27464]  dump_stack_lvl+0x100/0x190
[ 1181.689376][T27464]  should_fail_ex.cold+0x5/0xa
[ 1181.689405][T27464]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1181.689442][T27464]  should_fail_alloc_page+0xeb/0x140
[ 1181.689464][T27464]  prepare_alloc_pages+0x1f0/0x5f0
[ 1181.689485][T27464]  ? arch_stack_walk+0xa6/0xf0
[ 1181.689508][T27464]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[ 1181.689543][T27464]  ? stack_trace_save+0x8e/0xc0
[ 1181.689567][T27464]  ? __pfx_stack_trace_save+0x10/0x10
[ 1181.689591][T27464]  ? stack_depot_save_flags+0x27/0x9d0
[ 1181.689615][T27464]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1181.689639][T27464]  ? kasan_save_stack+0x3f/0x50
[ 1181.689654][T27464]  ? kasan_save_stack+0x30/0x50
[ 1181.689667][T27464]  ? kasan_save_track+0x14/0x30
[ 1181.689681][T27464]  ? alloc_ldt_struct+0x5d/0x1b0
[ 1181.689701][T27464]  ? __x64_sys_modify_ldt+0xb1/0x170
[ 1181.689722][T27464]  ? do_syscall_64+0x10b/0xf80
[ 1181.689744][T27464]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1181.689770][T27464]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1181.689795][T27464]  ? policy_nodemask+0xed/0x4f0
[ 1181.689817][T27464]  alloc_pages_mpol+0x1fb/0x540
[ 1181.689835][T27464]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1181.689858][T27464]  alloc_pages_noprof+0x1a/0x160
[ 1181.689879][T27464]  get_zeroed_page_noprof+0x18/0xb0
[ 1181.689898][T27464]  alloc_ldt_struct+0x9f/0x1b0
[ 1181.689917][T27464]  write_ldt+0x62b/0xd40
[ 1181.689939][T27464]  ? __pfx_write_ldt+0x10/0x10
[ 1181.689959][T27464]  ? xfd_validate_state+0x129/0x190
[ 1181.689974][T27464]  ? ksys_write+0x1ac/0x250
[ 1181.689997][T27464]  __x64_sys_modify_ldt+0xb1/0x170
[ 1181.690017][T27464]  do_syscall_64+0x10b/0xf80
[ 1181.690037][T27464]  ? clear_bhb_loop+0x40/0x90
[ 1181.690055][T27464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1181.690071][T27464] RIP: 0033:0x7f351d79cdd9
[ 1181.690087][T27464] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1181.690103][T27464] RSP: 002b:00007f351e6a2028 EFLAGS: 00000246 ORIG_RAX: 000000000000009a
[ 1181.690120][T27464] RAX: ffffffffffffffda RBX: 00007f351da16090 RCX: 00007f351d79cdd9
[ 1181.690131][T27464] RDX: 0000000000000010 RSI: 0000200000000140 RDI: 0000000000000001
[ 1181.690142][T27464] RBP: 00007f351d832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1181.690153][T27464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1181.690163][T27464] R13: 00007f351da16128 R14: 00007f351da16090 R15: 00007ffd9e3e03f8
[ 1181.690185][T27464]  </TASK>
[ 1182.441666][T27468] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6912'.
[ 1182.473036][T27468] netlink: 'syz.7.6912': attribute type 1 has an invalid length.
[ 1182.499617][T27471] FAULT_INJECTION: forcing a failure.
[ 1182.499617][T27471] name failslab, interval 1, probability 0, space 0, times 0
[ 1182.513100][T27468] netlink: 'syz.7.6912': attribute type 6 has an invalid length.
[ 1182.525589][T27471] CPU: 0 UID: 0 PID: 27471 Comm: syz.6.6913 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1182.525618][T27471] Tainted: [L]=SOFTLOCKUP
[ 1182.525625][T27471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1182.525637][T27471] Call Trace:
[ 1182.525643][T27471]  <TASK>
[ 1182.525650][T27471]  dump_stack_lvl+0x100/0x190
[ 1182.525679][T27471]  should_fail_ex.cold+0x5/0xa
[ 1182.525704][T27471]  should_failslab+0xc2/0x120
[ 1182.525723][T27471]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1182.525747][T27471]  ? security_inode_alloc+0x3b/0x2c0
[ 1182.525764][T27471]  ? lockdep_init_map_type+0x5c/0x250
[ 1182.525784][T27471]  security_inode_alloc+0x3b/0x2c0
[ 1182.525799][T27471]  inode_init_always_gfp+0xcc0/0x1000
[ 1182.525825][T27471]  alloc_inode+0x8e/0x250
[ 1182.525848][T27471]  new_inode+0x22/0x1c0
[ 1182.525872][T27471]  rpc_new_dir+0x96/0x420
[ 1182.525894][T27471]  rpc_fill_super+0x30c/0x4f0
[ 1182.525915][T27471]  ? __pfx_rpc_fill_super+0x10/0x10
[ 1182.525934][T27471]  get_tree_keyed+0x10e/0x1d0
[ 1182.525956][T27471]  vfs_get_tree+0x92/0x320
[ 1182.525973][T27471]  vfs_cmd_create+0xd7/0x2a0
[ 1182.525998][T27471]  __do_sys_fsconfig+0x55a/0xcb0
[ 1182.526023][T27471]  ? __pfx___do_sys_fsconfig+0x10/0x10
[ 1182.526047][T27471]  ? xfd_validate_state+0x129/0x190
[ 1182.526067][T27471]  ? rcu_is_watching+0x12/0xc0
[ 1182.526089][T27471]  do_syscall_64+0x10b/0xf80
[ 1182.526111][T27471]  ? clear_bhb_loop+0x40/0x90
[ 1182.526129][T27471]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1182.526146][T27471] RIP: 0033:0x7f351d79cdd9
[ 1182.526161][T27471] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1182.526176][T27471] RSP: 002b:00007f351e6c3028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[ 1182.526192][T27471] RAX: ffffffffffffffda RBX: 00007f351da15fa0 RCX: 00007f351d79cdd9
[ 1182.526203][T27471] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000006
[ 1182.526212][T27471] RBP: 00007f351d832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1182.526221][T27471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1182.526230][T27471] R13: 00007f351da16038 R14: 00007f351da15fa0 R15: 00007ffd9e3e03f8
[ 1182.526252][T27471]  </TASK>
[ 1185.524508][T27516] FAULT_INJECTION: forcing a failure.
[ 1185.524508][T27516] name failslab, interval 1, probability 0, space 0, times 0
[ 1185.618117][T27516] CPU: 0 UID: 0 PID: 27516 Comm: syz.6.6931 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1185.618149][T27516] Tainted: [L]=SOFTLOCKUP
[ 1185.618159][T27516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1185.618169][T27516] Call Trace:
[ 1185.618176][T27516]  <TASK>
[ 1185.618183][T27516]  dump_stack_lvl+0x100/0x190
[ 1185.618211][T27516]  should_fail_ex.cold+0x5/0xa
[ 1185.618234][T27516]  should_failslab+0xc2/0x120
[ 1185.618254][T27516]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1185.618279][T27516]  ? key_alloc+0x3c5/0x1310
[ 1185.618301][T27516]  key_alloc+0x3c5/0x1310
[ 1185.618325][T27516]  ? __pfx_key_alloc+0x10/0x10
[ 1185.618347][T27516]  keyring_alloc+0x44/0xc0
[ 1185.618370][T27516]  lookup_user_key+0x9b8/0x1300
[ 1185.618391][T27516]  ? __pfx_lookup_user_key+0x10/0x10
[ 1185.618417][T27516]  ? __pfx_futex_wait+0x10/0x10
[ 1185.618443][T27516]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[ 1185.618469][T27516]  keyctl_get_persistent+0x197/0x8b0
[ 1185.618494][T27516]  ? __pfx_keyctl_get_persistent+0x10/0x10
[ 1185.618517][T27516]  ? __x64_sys_futex+0x34f/0x4d0
[ 1185.618536][T27516]  ? __x64_sys_futex+0x358/0x4d0
[ 1185.618559][T27516]  ? xfd_validate_state+0x129/0x190
[ 1185.618575][T27516]  ? ksys_write+0x1ac/0x250
[ 1185.618597][T27516]  __do_sys_keyctl+0x3b2/0x5a0
[ 1185.618614][T27516]  do_syscall_64+0x10b/0xf80
[ 1185.618636][T27516]  ? clear_bhb_loop+0x40/0x90
[ 1185.618655][T27516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1185.618673][T27516] RIP: 0033:0x7f351d79cdd9
[ 1185.618688][T27516] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1185.618704][T27516] RSP: 002b:00007f351e6c3028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 1185.618720][T27516] RAX: ffffffffffffffda RBX: 00007f351da15fa0 RCX: 00007f351d79cdd9
[ 1185.618731][T27516] RDX: 7fffffffffffffff RSI: 0000000000000000 RDI: 0000000000000016
[ 1185.618741][T27516] RBP: 00007f351d832d69 R08: 0000000000000002 R09: 0000000000000000
[ 1185.618751][T27516] R10: ffffffffffffe6d6 R11: 0000000000000246 R12: 0000000000000000
[ 1185.618761][T27516] R13: 00007f351da16038 R14: 00007f351da15fa0 R15: 00007ffd9e3e03f8
[ 1185.618782][T27516]  </TASK>
[ 1188.751523][T27555] netlink: 25 bytes leftover after parsing attributes in process `syz.7.6940'.
[ 1192.187326][T27603] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6952'.
[ 1193.628983][T27630] FAULT_INJECTION: forcing a failure.
[ 1193.628983][T27630] name failslab, interval 1, probability 0, space 0, times 0
[ 1193.731518][T27630] CPU: 0 UID: 0 PID: 27630 Comm: syz.7.6960 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1193.731550][T27630] Tainted: [L]=SOFTLOCKUP
[ 1193.731557][T27630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1193.731568][T27630] Call Trace:
[ 1193.731574][T27630]  <TASK>
[ 1193.731581][T27630]  dump_stack_lvl+0x100/0x190
[ 1193.731609][T27630]  should_fail_ex.cold+0x5/0xa
[ 1193.731634][T27630]  should_failslab+0xc2/0x120
[ 1193.731653][T27630]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1193.731680][T27630]  ? key_alloc+0x3c5/0x1310
[ 1193.731705][T27630]  key_alloc+0x3c5/0x1310
[ 1193.731729][T27630]  ? __pfx_key_alloc+0x10/0x10
[ 1193.731752][T27630]  keyring_alloc+0x44/0xc0
[ 1193.731780][T27630]  lookup_user_key+0x9b8/0x1300
[ 1193.731800][T27630]  ? __pfx_lookup_user_key+0x10/0x10
[ 1193.731817][T27630]  ? __pfx_futex_wait+0x10/0x10
[ 1193.731840][T27630]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[ 1193.731868][T27630]  keyctl_get_persistent+0x197/0x8b0
[ 1193.731891][T27630]  ? __pfx_keyctl_get_persistent+0x10/0x10
[ 1193.731913][T27630]  ? __x64_sys_futex+0x34f/0x4d0
[ 1193.731929][T27630]  ? __x64_sys_futex+0x358/0x4d0
[ 1193.731947][T27630]  ? xfd_validate_state+0x129/0x190
[ 1193.731963][T27630]  ? ksys_write+0x1ac/0x250
[ 1193.731985][T27630]  __do_sys_keyctl+0x3b2/0x5a0
[ 1193.732001][T27630]  do_syscall_64+0x10b/0xf80
[ 1193.732022][T27630]  ? clear_bhb_loop+0x40/0x90
[ 1193.732041][T27630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1193.732057][T27630] RIP: 0033:0x7f60abb9cdd9
[ 1193.732072][T27630] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1193.732088][T27630] RSP: 002b:00007f60aca70028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 1193.732105][T27630] RAX: ffffffffffffffda RBX: 00007f60abe15fa0 RCX: 00007f60abb9cdd9
[ 1193.732115][T27630] RDX: 7fffffffffffffff RSI: 0000000000000000 RDI: 0000000000000016
[ 1193.732125][T27630] RBP: 00007f60abc32d69 R08: 0000000000000002 R09: 0000000000000000
[ 1193.732135][T27630] R10: ffffffffffffe6d6 R11: 0000000000000246 R12: 0000000000000000
[ 1193.732144][T27630] R13: 00007f60abe16038 R14: 00007f60abe15fa0 R15: 00007ffec91fc7e8
[ 1193.732164][T27630]  </TASK>
[ 1194.643173][T27637] FAULT_INJECTION: forcing a failure.
[ 1194.643173][T27637] name failslab, interval 1, probability 0, space 0, times 0
[ 1194.711768][T27637] CPU: 0 UID: 0 PID: 27637 Comm: syz.5.6961 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1194.711805][T27637] Tainted: [L]=SOFTLOCKUP
[ 1194.711812][T27637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1194.711823][T27637] Call Trace:
[ 1194.711830][T27637]  <TASK>
[ 1194.711838][T27637]  dump_stack_lvl+0x100/0x190
[ 1194.711866][T27637]  should_fail_ex.cold+0x5/0xa
[ 1194.711889][T27637]  should_failslab+0xc2/0x120
[ 1194.711909][T27637]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[ 1194.711936][T27637]  ? alloc_inode+0x68/0x250
[ 1194.711959][T27637]  ? start_dirop+0x79/0xb0
[ 1194.711978][T27637]  ? __pfx_rpc_alloc_inode+0x10/0x10
[ 1194.712000][T27637]  alloc_inode+0x68/0x250
[ 1194.712025][T27637]  new_inode+0x22/0x1c0
[ 1194.712050][T27637]  rpc_new_dir+0x96/0x420
[ 1194.712071][T27637]  rpc_fill_super+0x344/0x4f0
[ 1194.712093][T27637]  ? __pfx_rpc_fill_super+0x10/0x10
[ 1194.712113][T27637]  get_tree_keyed+0x10e/0x1d0
[ 1194.712131][T27637]  vfs_get_tree+0x92/0x320
[ 1194.712146][T27637]  vfs_cmd_create+0xd7/0x2a0
[ 1194.712172][T27637]  __do_sys_fsconfig+0x55a/0xcb0
[ 1194.712200][T27637]  ? __pfx___do_sys_fsconfig+0x10/0x10
[ 1194.712224][T27637]  ? xfd_validate_state+0x129/0x190
[ 1194.712244][T27637]  ? rcu_is_watching+0x12/0xc0
[ 1194.712266][T27637]  do_syscall_64+0x10b/0xf80
[ 1194.712288][T27637]  ? clear_bhb_loop+0x40/0x90
[ 1194.712307][T27637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1194.712323][T27637] RIP: 0033:0x7f2bbd39cdd9
[ 1194.712338][T27637] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1194.712354][T27637] RSP: 002b:00007f2bbe1a2028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[ 1194.712372][T27637] RAX: ffffffffffffffda RBX: 00007f2bbd615fa0 RCX: 00007f2bbd39cdd9
[ 1194.712382][T27637] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000006
[ 1194.712392][T27637] RBP: 00007f2bbd432d69 R08: 0000000000000000 R09: 0000000000000000
[ 1194.712409][T27637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1194.712419][T27637] R13: 00007f2bbd616038 R14: 00007f2bbd615fa0 R15: 00007fffa9465298
[ 1194.712441][T27637]  </TASK>
[ 1196.418943][T27656] FAULT_INJECTION: forcing a failure.
[ 1196.418943][T27656] name failslab, interval 1, probability 0, space 0, times 0
[ 1196.501687][T27656] CPU: 0 UID: 0 PID: 27656 Comm: syz.6.6971 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1196.501719][T27656] Tainted: [L]=SOFTLOCKUP
[ 1196.501726][T27656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1196.501737][T27656] Call Trace:
[ 1196.501743][T27656]  <TASK>
[ 1196.501751][T27656]  dump_stack_lvl+0x100/0x190
[ 1196.501783][T27656]  should_fail_ex.cold+0x5/0xa
[ 1196.501806][T27656]  should_failslab+0xc2/0x120
[ 1196.501827][T27656]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[ 1196.501851][T27656]  ? __d_alloc+0x34/0xa40
[ 1196.501879][T27656]  __d_alloc+0x34/0xa40
[ 1196.501901][T27656]  d_alloc+0x4a/0x1e0
[ 1196.501923][T27656]  lookup_one_qstr_excl+0x171/0x250
[ 1196.501948][T27656]  start_dirop+0x59/0xb0
[ 1196.501966][T27656]  simple_start_creating+0xf9/0x110
[ 1196.501986][T27656]  ? __pfx_simple_start_creating+0x10/0x10
[ 1196.502005][T27656]  ? do_raw_spin_lock+0x128/0x260
[ 1196.502023][T27656]  ? find_held_lock+0x2b/0x80
[ 1196.502044][T27656]  rpc_new_dir+0x27/0x420
[ 1196.502067][T27656]  rpc_populate.constprop.0+0x125/0x1c0
[ 1196.502088][T27656]  ? d_instantiate+0x8f/0xb0
[ 1196.502109][T27656]  ? __pfx_rpc_fill_super+0x10/0x10
[ 1196.502129][T27656]  rpc_fill_super+0x2b9/0x4f0
[ 1196.502150][T27656]  ? __pfx_rpc_fill_super+0x10/0x10
[ 1196.502169][T27656]  get_tree_keyed+0x10e/0x1d0
[ 1196.502191][T27656]  vfs_get_tree+0x92/0x320
[ 1196.502206][T27656]  vfs_cmd_create+0xd7/0x2a0
[ 1196.502230][T27656]  __do_sys_fsconfig+0x55a/0xcb0
[ 1196.502255][T27656]  ? __pfx___do_sys_fsconfig+0x10/0x10
[ 1196.502279][T27656]  ? xfd_validate_state+0x129/0x190
[ 1196.502299][T27656]  ? rcu_is_watching+0x12/0xc0
[ 1196.502321][T27656]  do_syscall_64+0x10b/0xf80
[ 1196.502343][T27656]  ? clear_bhb_loop+0x40/0x90
[ 1196.502362][T27656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1196.502378][T27656] RIP: 0033:0x7f351d79cdd9
[ 1196.502392][T27656] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1196.502408][T27656] RSP: 002b:00007f351e6c3028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[ 1196.502431][T27656] RAX: ffffffffffffffda RBX: 00007f351da15fa0 RCX: 00007f351d79cdd9
[ 1196.502443][T27656] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000006
[ 1196.502454][T27656] RBP: 00007f351d832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1196.502464][T27656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1196.502474][T27656] R13: 00007f351da16038 R14: 00007f351da15fa0 R15: 00007ffd9e3e03f8
[ 1196.502496][T27656]  </TASK>
[ 1196.502518][T27656] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[ 1196.844036][T27662] FAULT_INJECTION: forcing a failure.
[ 1196.844036][T27662] name failslab, interval 1, probability 0, space 0, times 0
[ 1196.844069][T27662] CPU: 0 UID: 0 PID: 27662 Comm: syz.5.6972 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1196.844094][T27662] Tainted: [L]=SOFTLOCKUP
[ 1196.844100][T27662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1196.844112][T27662] Call Trace:
[ 1196.844118][T27662]  <TASK>
[ 1196.844125][T27662]  dump_stack_lvl+0x100/0x190
[ 1196.844150][T27662]  should_fail_ex.cold+0x5/0xa
[ 1196.844174][T27662]  should_failslab+0xc2/0x120
[ 1196.844197][T27662]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[ 1196.844216][T27662]  ? kvasprintf_const+0x66/0x1a0
[ 1196.844238][T27662]  kvasprintf+0xbc/0x150
[ 1196.844253][T27662]  ? __pfx_kvasprintf+0x10/0x10
[ 1196.844274][T27662]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1196.844300][T27662]  ? lockdep_init_map_type+0x5c/0x250
[ 1196.844321][T27662]  kvasprintf_const+0x66/0x1a0
[ 1196.844338][T27662]  kobject_set_name_vargs+0x5a/0x140
[ 1196.844357][T27662]  device_create_groups_vargs+0x1b1/0x270
[ 1196.844385][T27662]  device_create+0xed/0x130
[ 1196.844408][T27662]  ? __pfx_device_create+0x10/0x10
[ 1196.844428][T27662]  ? do_raw_spin_lock+0x128/0x260
[ 1196.844447][T27662]  ? is_console_locked+0x9/0x20
[ 1196.844471][T27662]  ? con_is_visible+0x65/0x150
[ 1196.844490][T27662]  ? csi_J+0x57e/0xad0
[ 1196.844514][T27662]  vcs_make_sysfs+0x32/0x80
[ 1196.844532][T27662]  vc_allocate+0x539/0x880
[ 1196.844554][T27662]  ? __pfx_vc_allocate+0x10/0x10
[ 1196.844588][T27662]  con_install+0xa1/0x620
[ 1196.844614][T27662]  ? __pfx_con_install+0x10/0x10
[ 1196.844644][T27662]  ? __pfx_con_install+0x10/0x10
[ 1196.844669][T27662]  tty_init_dev.part.0+0x9e/0x470
[ 1196.844688][T27662]  tty_open+0xa63/0xfa0
[ 1196.844707][T27662]  ? __pfx_tty_open+0x10/0x10
[ 1196.844722][T27662]  ? chrdev_open+0x10b/0x6a0
[ 1196.844741][T27662]  ? chrdev_open+0x10b/0x6a0
[ 1196.844762][T27662]  ? __pfx_tty_open+0x10/0x10
[ 1196.844776][T27662]  chrdev_open+0x234/0x6a0
[ 1196.844794][T27662]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1196.844819][T27662]  ? __pfx_chrdev_open+0x10/0x10
[ 1196.844838][T27662]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[ 1196.844863][T27662]  do_dentry_open+0x6d8/0x1660
[ 1196.844882][T27662]  ? __pfx_chrdev_open+0x10/0x10
[ 1196.844905][T27662]  vfs_open+0x82/0x3f0
[ 1196.844930][T27662]  path_openat+0x208c/0x31a0
[ 1196.844956][T27662]  ? __pfx_path_openat+0x10/0x10
[ 1196.844982][T27662]  do_file_open+0x20e/0x430
[ 1196.845003][T27662]  ? __pfx_do_file_open+0x10/0x10
[ 1196.845036][T27662]  ? alloc_fd+0x476/0x790
[ 1196.845057][T27662]  ? do_getname+0x191/0x390
[ 1196.845081][T27662]  do_sys_openat2+0x10d/0x1e0
[ 1196.845103][T27662]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1196.845127][T27662]  ? __x64_sys_close_range+0x2d9/0x5d0
[ 1196.845151][T27662]  __x64_sys_openat+0x12d/0x210
[ 1196.845174][T27662]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1196.845201][T27662]  ? rcu_is_watching+0x12/0xc0
[ 1196.845222][T27662]  do_syscall_64+0x10b/0xf80
[ 1196.845243][T27662]  ? clear_bhb_loop+0x40/0x90
[ 1196.845262][T27662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1196.845278][T27662] RIP: 0033:0x7f2bbd39cdd9
[ 1196.845292][T27662] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1196.845311][T27662] RSP: 002b:00007f2bbe1a2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1196.845326][T27662] RAX: ffffffffffffffda RBX: 00007f2bbd615fa0 RCX: 00007f2bbd39cdd9
[ 1196.845337][T27662] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1196.845347][T27662] RBP: 00007f2bbd432d69 R08: 0000000000000000 R09: 0000000000000000
[ 1196.845357][T27662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1196.845367][T27662] R13: 00007f2bbd616038 R14: 00007f2bbd615fa0 R15: 00007fffa9465298
[ 1196.845388][T27662]  </TASK>
[ 1199.123882][T27687] FAULT_INJECTION: forcing a failure.
[ 1199.123882][T27687] name failslab, interval 1, probability 0, space 0, times 0
[ 1199.189476][T27687] CPU: 0 UID: 0 PID: 27687 Comm: syz.5.6976 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1199.189507][T27687] Tainted: [L]=SOFTLOCKUP
[ 1199.189513][T27687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1199.189524][T27687] Call Trace:
[ 1199.189531][T27687]  <TASK>
[ 1199.189539][T27687]  dump_stack_lvl+0x100/0x190
[ 1199.189566][T27687]  should_fail_ex.cold+0x5/0xa
[ 1199.189591][T27687]  should_failslab+0xc2/0x120
[ 1199.189612][T27687]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1199.189638][T27687]  ? anon_vma_clone+0x2ba/0xcd0
[ 1199.189663][T27687]  anon_vma_clone+0x2ba/0xcd0
[ 1199.189689][T27687]  anon_vma_fork+0x1bb/0x6b0
[ 1199.189714][T27687]  dup_mmap+0x141f/0x2180
[ 1199.189742][T27687]  ? __pfx_dup_mmap+0x10/0x10
[ 1199.189761][T27687]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1199.189790][T27687]  ? __lock_acquire+0x4a5/0x2630
[ 1199.189806][T27687]  ? find_held_lock+0x2b/0x80
[ 1199.189825][T27687]  ? __percpu_counter_init_many+0x2bc/0x3b0
[ 1199.189862][T27687]  copy_process+0x6c63/0x7e00
[ 1199.189896][T27687]  ? __pfx_copy_process+0x10/0x10
[ 1199.189919][T27687]  ? find_held_lock+0x2b/0x80
[ 1199.189955][T27687]  kernel_clone+0x12e/0x9c0
[ 1199.189977][T27687]  ? __pfx_futex_wait+0x10/0x10
[ 1199.190003][T27687]  ? __pfx_kernel_clone+0x10/0x10
[ 1199.190038][T27687]  __do_sys_clone+0xd9/0x120
[ 1199.190061][T27687]  ? __pfx___do_sys_clone+0x10/0x10
[ 1199.190094][T27687]  ? rcu_is_watching+0x12/0xc0
[ 1199.190115][T27687]  do_syscall_64+0x10b/0xf80
[ 1199.190137][T27687]  ? clear_bhb_loop+0x40/0x90
[ 1199.190155][T27687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1199.190171][T27687] RIP: 0033:0x7f2bbd39cdd9
[ 1199.190186][T27687] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1199.190203][T27687] RSP: 002b:00007f2bbe1a1fd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1199.190219][T27687] RAX: ffffffffffffffda RBX: 00007f2bbd615fa0 RCX: 00007f2bbd39cdd9
[ 1199.190229][T27687] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1199.190239][T27687] RBP: 00007f2bbd432d69 R08: 0000000000000000 R09: 0000000000000000
[ 1199.190249][T27687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1199.190259][T27687] R13: 00007f2bbd616038 R14: 00007f2bbd615fa0 R15: 00007fffa9465298
[ 1199.190282][T27687]  </TASK>
[ 1200.022563][T27695] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6979'.
[ 1200.084756][T27695] netlink: 354 bytes leftover after parsing attributes in process `syz.6.6979'.
[ 1201.312377][T27706] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6981'.
[ 1202.560655][T27722] FAULT_INJECTION: forcing a failure.
[ 1202.560655][T27722] name failslab, interval 1, probability 0, space 0, times 0
[ 1202.637287][T27722] CPU: 0 UID: 0 PID: 27722 Comm: syz.6.6985 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1202.637319][T27722] Tainted: [L]=SOFTLOCKUP
[ 1202.637329][T27722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1202.637341][T27722] Call Trace:
[ 1202.637348][T27722]  <TASK>
[ 1202.637355][T27722]  dump_stack_lvl+0x100/0x190
[ 1202.637383][T27722]  should_fail_ex.cold+0x5/0xa
[ 1202.637406][T27722]  should_failslab+0xc2/0x120
[ 1202.637425][T27722]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1202.637450][T27722]  ? mem_cgroup_css_online+0x155/0xbf0
[ 1202.637479][T27722]  mem_cgroup_css_online+0x155/0xbf0
[ 1202.637505][T27722]  ? __pfx_mem_cgroup_css_online+0x10/0x10
[ 1202.637537][T27722]  online_css+0xb2/0x350
[ 1202.637558][T27722]  cgroup_apply_control_enable+0xa8d/0xdd0
[ 1202.637590][T27722]  cgroup_mkdir+0x59c/0x1310
[ 1202.637625][T27722]  ? __pfx_cgroup_mkdir+0x10/0x10
[ 1202.637650][T27722]  kernfs_iop_mkdir+0x111/0x190
[ 1202.637673][T27722]  ? bpf_lsm_inode_mkdir+0x9/0x10
[ 1202.637701][T27722]  vfs_mkdir+0x361/0x850
[ 1202.637720][T27722]  filename_mkdirat+0x48b/0x5e0
[ 1202.637743][T27722]  ? __pfx_filename_mkdirat+0x10/0x10
[ 1202.637763][T27722]  ? strncpy_from_user+0x19d/0x2d0
[ 1202.637783][T27722]  ? do_getname+0x191/0x390
[ 1202.637807][T27722]  __x64_sys_mkdir+0x6b/0x90
[ 1202.637827][T27722]  do_syscall_64+0x10b/0xf80
[ 1202.637852][T27722]  ? clear_bhb_loop+0x40/0x90
[ 1202.637873][T27722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1202.637891][T27722] RIP: 0033:0x7f351d79cdd9
[ 1202.637906][T27722] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1202.637924][T27722] RSP: 002b:00007f351e6c3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[ 1202.637940][T27722] RAX: ffffffffffffffda RBX: 00007f351da15fa0 RCX: 00007f351d79cdd9
[ 1202.637950][T27722] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000
[ 1202.637960][T27722] RBP: 00007f351d832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1202.637971][T27722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1202.637980][T27722] R13: 00007f351da16038 R14: 00007f351da15fa0 R15: 00007ffd9e3e03f8
[ 1202.638003][T27722]  </TASK>
[ 1203.716695][T27740] netlink: 16 bytes leftover after parsing attributes in process `syz.7.6990'.
[ 1204.515869][T27749] netlink: 252 bytes leftover after parsing attributes in process `syz.6.6993'.
[ 1204.581990][T27750] netlink: 252 bytes leftover after parsing attributes in process `syz.6.6993'.
[ 1204.674911][T27754] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6994'.
[ 1204.758868][T27755] netlink: 354 bytes leftover after parsing attributes in process `syz.7.6994'.
[ 1205.112437][T27757] zswap: compressor  not available
[ 1205.738868][T27775] netlink: 146 bytes leftover after parsing attributes in process `syz.6.7001'.
[ 1206.877632][T27795] cougar: G6 mapped to space
[ 1207.725205][T27810] netlink: 'syz.6.7009': attribute type 10 has an invalid length.
[ 1207.815887][T27810] netlink: 330 bytes leftover after parsing attributes in process `syz.6.7009'.
[ 1208.759928][T27827] netlink: 94 bytes leftover after parsing attributes in process `syz.7.7015'.
[ 1208.999258][T27831] netlink: 28 bytes leftover after parsing attributes in process `syz.7.7016'.
[ 1209.036668][T27831] macvlan0: entered promiscuous mode
[ 1209.068467][T27831] macvlan0: entered allmulticast mode
[ 1209.102321][T27831] veth1_vlan: entered allmulticast mode
[ 1209.707171][T27843] cougar: G6 mapped to space
[ 1210.158288][T27852] ima: policy update failed
[ 1210.246635][   T30] audit: type=1802 audit(4294967709.618:27): pid=27852 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.7020" res=0 errno=0
[ 1210.583226][T27853] bridge0: port 3(dummy0) entered blocking state
[ 1210.670625][T27853] bridge0: port 3(dummy0) entered disabled state
[ 1210.772602][T27853] dummy0: entered allmulticast mode
[ 1210.844601][T27853] dummy0: entered promiscuous mode
[ 1210.940791][T27853] bridge0: port 3(dummy0) entered blocking state
[ 1210.947360][T27853] bridge0: port 3(dummy0) entered forwarding state
[ 1211.858051][T27878] [U] 
[ 1213.175425][T27903] netlink: 25 bytes leftover after parsing attributes in process `syz.7.7034'.
[ 1214.133006][T27914] netlink: 25 bytes leftover after parsing attributes in process `syz.5.7038'.
[ 1214.861264][T27925] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[ 1215.055648][T27925] File: /dev/nullb0 PID: 27925 Comm: syz.5.7039
[ 1223.543953][T28039] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7058'.
[ 1225.230863][T28078] netlink: 25 bytes leftover after parsing attributes in process `syz.0.7066'.
[ 1228.747421][T28137] binder: 28136:28137 ioctl c00c620f 0 returned -22
[ 1229.916551][T28154] Invalid ELF header magic: != ELF
[ 1230.405866][T28172] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7085'.
[ 1230.626783][T28171] HfR: entered promiscuous mode
[ 1230.742673][T28172] HfR: left promiscuous mode
[ 1234.354763][T28236] netlink: 25 bytes leftover after parsing attributes in process `syz.0.7100'.
[ 1234.537069][T28234] cougar: G6 mapped to space
[ 1235.233439][T28250] netlink: 13 bytes leftover after parsing attributes in process `syz.0.7103'.
[ 1235.444886][T28252] FAULT_INJECTION: forcing a failure.
[ 1235.444886][T28252] name failslab, interval 1, probability 0, space 0, times 0
[ 1235.492701][T28252] CPU: 0 UID: 0 PID: 28252 Comm: syz.7.7104 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1235.492729][T28252] Tainted: [L]=SOFTLOCKUP
[ 1235.492735][T28252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1235.492746][T28252] Call Trace:
[ 1235.492753][T28252]  <TASK>
[ 1235.492759][T28252]  dump_stack_lvl+0x100/0x190
[ 1235.492793][T28252]  should_fail_ex.cold+0x5/0xa
[ 1235.492817][T28252]  should_failslab+0xc2/0x120
[ 1235.492837][T28252]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1235.492859][T28252]  ? ring_buffer_read_start+0x149/0x450
[ 1235.492884][T28252]  ring_buffer_read_start+0x149/0x450
[ 1235.492904][T28252]  ? __pfx_ring_buffer_read_start+0x10/0x10
[ 1235.492923][T28252]  ? lockdep_init_map_type+0x5c/0x250
[ 1235.492941][T28252]  ? ring_buffer_overruns+0x14e/0x1a0
[ 1235.492960][T28252]  __tracing_open+0x74e/0xa80
[ 1235.492979][T28252]  tracing_open+0x26b/0x4d0
[ 1235.492997][T28252]  do_dentry_open+0x6d8/0x1660
[ 1235.493015][T28252]  ? __pfx_tracing_open+0x10/0x10
[ 1235.493036][T28252]  vfs_open+0x82/0x3f0
[ 1235.493061][T28252]  path_openat+0x208c/0x31a0
[ 1235.493087][T28252]  ? __pfx_path_openat+0x10/0x10
[ 1235.493113][T28252]  do_file_open+0x20e/0x430
[ 1235.493133][T28252]  ? __pfx_do_file_open+0x10/0x10
[ 1235.493165][T28252]  ? alloc_fd+0x476/0x790
[ 1235.493191][T28252]  ? do_getname+0x191/0x390
[ 1235.493216][T28252]  do_sys_openat2+0x10d/0x1e0
[ 1235.493240][T28252]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1235.493266][T28252]  ? __fget_files+0x21f/0x3d0
[ 1235.493288][T28252]  __x64_sys_openat+0x12d/0x210
[ 1235.493311][T28252]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1235.493338][T28252]  ? rcu_is_watching+0x12/0xc0
[ 1235.493359][T28252]  do_syscall_64+0x10b/0xf80
[ 1235.493381][T28252]  ? clear_bhb_loop+0x40/0x90
[ 1235.493401][T28252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1235.493417][T28252] RIP: 0033:0x7f60abb9cdd9
[ 1235.493435][T28252] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1235.493455][T28252] RSP: 002b:00007f60aca70028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1235.493471][T28252] RAX: ffffffffffffffda RBX: 00007f60abe15fa0 RCX: 00007f60abb9cdd9
[ 1235.493483][T28252] RDX: 1a6b75d638828712 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[ 1235.493493][T28252] RBP: 00007f60abc32d69 R08: 0000000000000000 R09: 0000000000000000
[ 1235.493503][T28252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1235.493512][T28252] R13: 00007f60abe16038 R14: 00007f60abe15fa0 R15: 00007ffec91fc7e8
[ 1235.493533][T28252]  </TASK>
[ 1236.535491][T28268] vcan0: tx drop: invalid da for name 0x000000000000003f
[ 1237.869161][T28289] vmstat_refresh: nr_hugetlb -10752
[ 1237.965499][T28290] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7112'.
[ 1238.186081][T28293] vmstat_refresh: nr_hugetlb -10752
[ 1238.634044][T28306] netlink: 338 bytes leftover after parsing attributes in process `syz.7.7115'.
[ 1238.721612][T28306] netlink: 338 bytes leftover after parsing attributes in process `syz.7.7115'.
[ 1238.840464][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.852268][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.775211][T28318] netlink: 338 bytes leftover after parsing attributes in process `syz.0.7127'.
[ 1239.825520][T28323] netlink: 338 bytes leftover after parsing attributes in process `syz.0.7127'.
[ 1240.962401][T28333] FAULT_INJECTION: forcing a failure.
[ 1240.962401][T28333] name failslab, interval 1, probability 0, space 0, times 0
[ 1241.062573][T28333] CPU: 0 UID: 0 PID: 28333 Comm: syz.5.7121 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1241.062602][T28333] Tainted: [L]=SOFTLOCKUP
[ 1241.062609][T28333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1241.062619][T28333] Call Trace:
[ 1241.062625][T28333]  <TASK>
[ 1241.062631][T28333]  dump_stack_lvl+0x100/0x190
[ 1241.062654][T28333]  should_fail_ex.cold+0x5/0xa
[ 1241.062677][T28333]  should_failslab+0xc2/0x120
[ 1241.062698][T28333]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1241.062720][T28333]  ? blk_alloc_queue_stats+0x3f/0x110
[ 1241.062743][T28333]  ? kmem_cache_alloc_node_noprof+0x2a9/0x6f0
[ 1241.062759][T28333]  ? blk_alloc_queue+0x31/0x790
[ 1241.062777][T28333]  blk_alloc_queue_stats+0x3f/0x110
[ 1241.062801][T28333]  blk_alloc_queue+0xda/0x790
[ 1241.062818][T28333]  blk_mq_alloc_queue+0x174/0x290
[ 1241.062837][T28333]  ? __pfx_blk_mq_alloc_queue+0x10/0x10
[ 1241.062867][T28333]  ? blk_mq_alloc_tag_set+0xe2c/0x1330
[ 1241.062891][T28333]  __blk_mq_alloc_disk+0x29/0x120
[ 1241.062911][T28333]  loop_add+0x498/0xb60
[ 1241.062934][T28333]  ? __pfx_loop_add+0x10/0x10
[ 1241.062967][T28333]  ? find_held_lock+0x2b/0x80
[ 1241.062987][T28333]  ? __fget_files+0x215/0x3d0
[ 1241.063006][T28333]  loop_control_ioctl+0xae/0x620
[ 1241.063030][T28333]  ? __pfx_loop_control_ioctl+0x10/0x10
[ 1241.063055][T28333]  ? __pfx_loop_control_ioctl+0x10/0x10
[ 1241.063079][T28333]  __x64_sys_ioctl+0x18e/0x210
[ 1241.063096][T28333]  do_syscall_64+0x10b/0xf80
[ 1241.063118][T28333]  ? clear_bhb_loop+0x40/0x90
[ 1241.063136][T28333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1241.063152][T28333] RIP: 0033:0x7f2bbd39cdd9
[ 1241.063166][T28333] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1241.063186][T28333] RSP: 002b:00007f2bbe1a2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1241.063203][T28333] RAX: ffffffffffffffda RBX: 00007f2bbd615fa0 RCX: 00007f2bbd39cdd9
[ 1241.063215][T28333] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008
[ 1241.063225][T28333] RBP: 00007f2bbd432d69 R08: 0000000000000000 R09: 0000000000000000
[ 1241.063236][T28333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1241.063245][T28333] R13: 00007f2bbd616038 R14: 00007f2bbd615fa0 R15: 00007fffa9465298
[ 1241.063265][T28333]  </TASK>
[ 1241.742106][T28344] vmstat_refresh: nr_hugetlb -10752
[ 1241.859058][T28348] vmstat_refresh: nr_hugetlb -10752
[ 1243.269373][T28377] netlink: 12 bytes leftover after parsing attributes in process `syz.7.7133'.
[ 1243.342579][T28376] HfR: entered promiscuous mode
[ 1243.409291][T28377] HfR: left promiscuous mode
[ 1245.467347][T28419] netlink: 'syz.0.7143': attribute type 10 has an invalid length.
[ 1245.513285][T28419] netlink: 330 bytes leftover after parsing attributes in process `syz.0.7143'.
[ 1245.572111][T28421] ovs_: entered promiscuous mode
[ 1245.870320][T28428] FAULT_INJECTION: forcing a failure.
[ 1245.870320][T28428] name failslab, interval 1, probability 0, space 0, times 0
[ 1245.893106][T28430] ovs_: entered promiscuous mode
[ 1245.933615][T28428] CPU: 0 UID: 0 PID: 28428 Comm: syz.6.7146 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1245.933649][T28428] Tainted: [L]=SOFTLOCKUP
[ 1245.933656][T28428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1245.933667][T28428] Call Trace:
[ 1245.933674][T28428]  <TASK>
[ 1245.933682][T28428]  dump_stack_lvl+0x100/0x190
[ 1245.933709][T28428]  should_fail_ex.cold+0x5/0xa
[ 1245.933732][T28428]  should_failslab+0xc2/0x120
[ 1245.933753][T28428]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[ 1245.933771][T28428]  ? blk_alloc_queue+0x31/0x790
[ 1245.933793][T28428]  blk_alloc_queue+0x31/0x790
[ 1245.933811][T28428]  blk_mq_alloc_queue+0x174/0x290
[ 1245.933831][T28428]  ? __pfx_blk_mq_alloc_queue+0x10/0x10
[ 1245.933861][T28428]  ? blk_mq_alloc_tag_set+0xe2c/0x1330
[ 1245.933885][T28428]  __blk_mq_alloc_disk+0x29/0x120
[ 1245.933906][T28428]  loop_add+0x498/0xb60
[ 1245.933930][T28428]  ? __pfx_loop_add+0x10/0x10
[ 1245.933967][T28428]  ? find_held_lock+0x2b/0x80
[ 1245.933989][T28428]  ? __fget_files+0x215/0x3d0
[ 1245.934013][T28428]  loop_control_ioctl+0xae/0x620
[ 1245.934039][T28428]  ? __pfx_loop_control_ioctl+0x10/0x10
[ 1245.934066][T28428]  ? __pfx_loop_control_ioctl+0x10/0x10
[ 1245.934090][T28428]  __x64_sys_ioctl+0x18e/0x210
[ 1245.934107][T28428]  do_syscall_64+0x10b/0xf80
[ 1245.934130][T28428]  ? clear_bhb_loop+0x40/0x90
[ 1245.934155][T28428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1245.934173][T28428] RIP: 0033:0x7f351d79cdd9
[ 1245.934189][T28428] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1245.934206][T28428] RSP: 002b:00007f351e6c3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1245.934223][T28428] RAX: ffffffffffffffda RBX: 00007f351da15fa0 RCX: 00007f351d79cdd9
[ 1245.934234][T28428] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008
[ 1245.934243][T28428] RBP: 00007f351d832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1245.934253][T28428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1245.934262][T28428] R13: 00007f351da16038 R14: 00007f351da15fa0 R15: 00007ffd9e3e03f8
[ 1245.934281][T28428]  </TASK>
[ 1246.321404][T16630] Bluetooth: hci2: command 0x0406 tx timeout
[ 1247.011292][T28447] netlink: 28 bytes leftover after parsing attributes in process `syz.7.7151'.
[ 1247.483524][T28454] netlink: 28 bytes leftover after parsing attributes in process `syz.7.7153'.
[ 1247.535543][T28454] bridge_slave_1: left allmulticast mode
[ 1247.564859][T28454] bridge_slave_1: left promiscuous mode
[ 1247.594791][T28454] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1247.718711][T28454] bridge_slave_0: left allmulticast mode
[ 1247.724548][T28454] bridge_slave_0: left promiscuous mode
[ 1247.740172][T28454] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1248.113625][T28465] netlink: 326 bytes leftover after parsing attributes in process `syz.7.7159'.
[ 1248.196508][T28465] usb usb15: usbfs: interface 0 claimed by hub while 'syz.7.7159' sets config #0
[ 1248.800905][T28471] netlink: 354 bytes leftover after parsing attributes in process `syz.7.7161'.
[ 1249.376439][T28485] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7163'.
[ 1250.436950][T28498] ovs_: entered promiscuous mode
[ 1251.920049][T28529] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7175'.
[ 1253.128112][T28546] [U] ^\
[ 1253.645363][T28563] netlink: 28 bytes leftover after parsing attributes in process `syz.6.7188'.
[ 1253.702050][T28563] dummy0: left allmulticast mode
[ 1253.727267][T28563] dummy0: left promiscuous mode
[ 1253.764919][T28563] bridge0: port 3(dummy0) entered disabled state
[ 1253.812541][T28563] bridge_slave_1: left allmulticast mode
[ 1253.845256][T28563] bridge_slave_1: left promiscuous mode
[ 1253.874841][T28563] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1253.919407][T28563] bridge_slave_0: left allmulticast mode
[ 1253.942379][T28563] bridge_slave_0: left promiscuous mode
[ 1253.962368][T28563] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1254.566621][T28572] netlink: 28 bytes leftover after parsing attributes in process `syz.6.7190'.
[ 1254.680642][T28572] macvlan0: entered promiscuous mode
[ 1254.748162][T28572] macvlan0: entered allmulticast mode
[ 1254.803386][T28572] veth1_vlan: entered allmulticast mode
[ 1255.100841][T28580] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7193'.
[ 1258.728704][T28628] vivid-007: =================  START STATUS  =================
[ 1258.806972][T28628] vivid-007: Generate PTS: true
[ 1258.875290][T28628] vivid-007: Generate SCR: true
[ 1258.962315][T28628] tpg source WxH: 320x240 (Y'CbCr)
[ 1259.033021][T28628] tpg field: 1
[ 1259.115337][T28628] tpg crop: (0,0)/320x240
[ 1259.178440][T28628] tpg compose: (0,0)/320x240
[ 1259.233938][T28628] tpg colorspace: 8
[ 1259.278637][T28628] tpg transfer function: 0/0
[ 1259.329863][T28628] tpg Y'CbCr encoding: 0/0
[ 1259.371502][T28628] tpg quantization: 0/0
[ 1259.422883][T28628] tpg RGB range: 0/2
[ 1259.455843][T28628] vivid-007: ==================  END STATUS  ==================
[ 1259.957213][   T31] INFO: task syz.3.6701:26593 blocked for more than 143 seconds.
[ 1259.983663][   T31]       Tainted: G             L      syzkaller #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1260.030881][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1260.092843][   T31] task:syz.3.6701      state:D stack:29016 pid:26593 tgid:26589 ppid:9296   task_flags:0x400140 flags:0x00080002
[ 1260.153822][T28648] FAULT_INJECTION: forcing a failure.
[ 1260.153822][T28648] name failslab, interval 1, probability 0, space 0, times 0
[ 1260.184563][   T31] Call Trace:
[ 1260.203334][   T31]  <TASK>
[ 1260.219410][   T31]  __schedule+0x10e9/0x6820
[ 1260.247201][   T31]  ? __pfx___schedule+0x10/0x10
[ 1260.288478][   T31]  ? find_held_lock+0x2b/0x80
[ 1260.312322][T28648] CPU: 0 UID: 0 PID: 28648 Comm: syz.7.7211 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1260.312349][T28648] Tainted: [L]=SOFTLOCKUP
[ 1260.312355][T28648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1260.312365][T28648] Call Trace:
[ 1260.312371][T28648]  <TASK>
[ 1260.312377][T28648]  dump_stack_lvl+0x100/0x190
[ 1260.312403][T28648]  should_fail_ex.cold+0x5/0xa
[ 1260.312425][T28648]  should_failslab+0xc2/0x120
[ 1260.312444][T28648]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1260.312466][T28648]  ? tomoyo_init_log+0x1a0/0x20c0
[ 1260.312490][T28648]  tomoyo_init_log+0x1a0/0x20c0
[ 1260.312508][T28648]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1260.312534][T28648]  ? vsnprintf+0x4ee/0x1240
[ 1260.312560][T28648]  ? __pfx_tomoyo_init_log+0x10/0x10
[ 1260.312578][T28648]  ? tomoyo_profile+0x47/0x60
[ 1260.312598][T28648]  ? tomoyo_domain_quota_is_ok+0x367/0x580
[ 1260.312617][T28648]  tomoyo_supervisor+0x506/0x1340
[ 1260.312643][T28648]  ? __pfx_tomoyo_supervisor+0x10/0x10
[ 1260.312683][T28648]  ? tomoyo_check_path_acl+0x141/0x210
[ 1260.312701][T28648]  ? tomoyo_check_acl+0x1f7/0x410
[ 1260.312729][T28648]  tomoyo_path_permission+0x270/0x3b0
[ 1260.312757][T28648]  tomoyo_check_open_permission+0x34d/0x3c0
[ 1260.312776][T28648]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1260.312801][T28648]  ? hook_file_open+0x24e/0x7a0
[ 1260.312834][T28648]  ? path_get+0x61/0x80
[ 1260.312857][T28648]  tomoyo_file_open+0x6b/0x90
[ 1260.312880][T28648]  security_file_open+0xb5/0x1e0
[ 1260.312900][T28648]  do_dentry_open+0x5aa/0x1660
[ 1260.312919][T28648]  ? security_inode_permission+0xbf/0x250
[ 1260.312939][T28648]  vfs_open+0x82/0x3f0
[ 1260.312963][T28648]  path_openat+0x208c/0x31a0
[ 1260.312989][T28648]  ? __pfx_path_openat+0x10/0x10
[ 1260.313015][T28648]  do_file_open+0x20e/0x430
[ 1260.313036][T28648]  ? __pfx_do_file_open+0x10/0x10
[ 1260.313068][T28648]  ? alloc_fd+0x476/0x790
[ 1260.313089][T28648]  ? do_getname+0x191/0x390
[ 1260.313112][T28648]  do_sys_openat2+0x10d/0x1e0
[ 1260.313135][T28648]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1260.313165][T28648]  __x64_sys_openat+0x12d/0x210
[ 1260.313188][T28648]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1260.313215][T28648]  ? rcu_is_watching+0x12/0xc0
[ 1260.313236][T28648]  do_syscall_64+0x10b/0xf80
[ 1260.313257][T28648]  ? clear_bhb_loop+0x40/0x90
[ 1260.313277][T28648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1260.313293][T28648] RIP: 0033:0x7f60abb9cdd9
[ 1260.313307][T28648] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1260.313323][T28648] RSP: 002b:00007f60aca70028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1260.313339][T28648] RAX: ffffffffffffffda RBX: 00007f60abe15fa0 RCX: 00007f60abb9cdd9
[ 1260.313350][T28648] RDX: 0000000000000001 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1260.313361][T28648] RBP: 00007f60abc32d69 R08: 0000000000000000 R09: 0000000000000000
[ 1260.313372][T28648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1260.313382][T28648] R13: 00007f60abe16038 R14: 00007f60abe15fa0 R15: 00007ffec91fc7e8
[ 1260.313405][T28648]  </TASK>
[ 1260.946983][   T31]  ? schedule+0x2bf/0x390
[ 1260.961641][   T31]  schedule+0xdd/0x390
[ 1260.979744][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1261.003511][   T31]  __mutex_lock+0xced/0x1b10
[ 1261.021604][   T31]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1261.038490][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1261.063966][   T31]  ? net_generic+0xea/0x2a0
[ 1261.070901][   T31]  ? net_generic+0xea/0x2a0
[ 1261.096975][   T31]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1261.115093][   T31]  nfsd_shutdown_threads+0x5b/0xf0
[ 1261.151108][   T31]  nfsd_umount+0x3b/0x60
[ 1261.190459][   T31]  deactivate_locked_super+0xc1/0x1b0
[ 1261.223351][   T31]  deactivate_super+0xe7/0x110
[ 1261.248667][   T31]  cleanup_mnt+0x21f/0x450
[ 1261.274804][   T31]  task_work_run+0x150/0x240
[ 1261.293646][   T31]  ? __pfx_task_work_run+0x10/0x10
[ 1261.312704][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1261.332612][   T31]  exit_to_user_mode_loop+0x100/0x4a0
[ 1261.355465][   T31]  ? do_syscall_64+0x519/0xf80
[ 1261.371838][   T31]  do_syscall_64+0x6f2/0xf80
[ 1261.395964][   T31]  ? clear_bhb_loop+0x40/0x90
[ 1261.412281][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1261.432112][   T31] RIP: 0033:0x7f40b979cdd9
[ 1261.448963][   T31] RSP: 002b:00007f40ba678028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1261.494226][   T31] RAX: 0000000000000000 RBX: 00007f40b9a16090 RCX: 00007f40b979cdd9
[ 1261.505986][   T31] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000200000000000
[ 1261.524541][   T31] RBP: 00007f40b9832d69 R08: 0000000000000000 R09: 0000000000000000
[ 1261.542506][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1261.561455][   T31] R13: 00007f40b9a16128 R14: 00007f40b9a16090 R15: 00007ffd3d4e60f8
[ 1261.577170][   T31]  </TASK>
[ 1261.586711][   T31] 
[ 1261.586711][   T31] Showing all locks held in the system:
[ 1261.609941][   T31] 1 lock held by khungtaskd/31:
[ 1261.618947][   T31]  #0: ffffffff8e7e52e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[ 1261.689883][   T31] 5 locks held by kworker/u8:10/3394:
[ 1261.703750][   T31]  #0: ffff88801c6ae140 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[ 1261.746843][   T31]  #1: ffffc9000e2c7d08 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[ 1261.786981][   T31]  #2: ffffffff905f6028 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xb8/0x920
[ 1261.816974][   T31]  #3: ffffffff8e7f0cf8 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x6d0
[ 1261.857203][   T31]  #4: ffff8880b843b3e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2c/0x140
[ 1261.876844][   T31] 2 locks held by syz-executor/5625:
[ 1261.897507][   T31]  #0: ffff88806a8980d8 (&type->s_umount_key#51){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1261.913100][   T31]  #1: ffffffff8ec61b60 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1261.937018][   T31] 2 locks held by getty/22957:
[ 1261.945236][   T31]  #0: ffff8880376f90a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1261.967191][   T31]  #1: ffffc900046332e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x14f0
[ 1261.990080][   T31] 2 locks held by syz.3.6701/26591:
[ 1262.007170][   T31]  #0: ffffffff906bd148 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1262.028853][   T31]  #1: ffffffff8ec61b60 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1a80
[ 1262.063572][   T31] 2 locks held by syz.3.6701/26593:
[ 1262.081489][   T31]  #0: ffff8880322820d8 (&type->s_umount_key#51){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1262.116862][   T31]  #1: ffffffff8ec61b60 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1262.152048][   T31] 2 locks held by syz.7.7201/28604:
[ 1262.179902][   T31] 2 locks held by syz.0.7209/28637:
[ 1262.204341][   T31]  #0: ffff88807b3a80d8 (&type->s_umount_key#51){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1262.244721][   T31]  #1: ffffffff8ec61b60 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1262.267109][   T31] 1 lock held by syz.5.7210/28643:
[ 1262.297466][   T31]  #0: ffffffff8e7f0cf8 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x6d0
[ 1262.314550][   T31] 2 locks held by syz.5.7210/28644:
[ 1262.326943][   T31]  #0: ffffffff905f6028 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[ 1262.343857][   T31]  #1: ffffffff8e7f0e28 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0
[ 1262.354806][   T31] 4 locks held by syz.7.7211/28648:
[ 1262.360760][   T31]  #0: ffff888058064ea0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_dev_do_close+0x26/0xb0
[ 1262.371536][   T31]  #1: ffff8880580640b8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x35c/0x1240
[ 1262.381539][   T31]  #2: ffffffff908953e0 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xbb/0x280
[ 1262.393614][   T31]  #3: ffff8880299622f8 (&conn->lock#2){+.+.}-{4:4}, at: l2cap_conn_del+0x95/0x710
[ 1262.404194][   T31] 2 locks held by syz.6.7212/28650:
[ 1262.410541][   T31]  #0: ffffffff905f6028 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[ 1262.423096][   T31]  #1: ffffffff8e7f0e28 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0
[ 1262.555195][   T31] 
[ 1262.564171][   T31] =============================================
[ 1262.564171][   T31] 
[ 1262.592769][   T31] NMI backtrace for cpu 0
[ 1262.592787][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1262.592808][   T31] Tainted: [L]=SOFTLOCKUP
[ 1262.592813][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1262.592823][   T31] Call Trace:
[ 1262.592828][   T31]  <TASK>
[ 1262.592834][   T31]  dump_stack_lvl+0x100/0x190
[ 1262.592856][   T31]  nmi_cpu_backtrace.cold+0x12d/0x151
[ 1262.592875][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1262.592891][   T31]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[ 1262.592911][   T31]  sys_info+0x141/0x190
[ 1262.592925][   T31]  watchdog+0xcb1/0x1030
[ 1262.592950][   T31]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1262.592971][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1262.592992][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1262.593014][   T31]  ? kthread+0x13a/0x450
[ 1262.593026][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1262.593045][   T31]  kthread+0x370/0x450
[ 1262.593057][   T31]  ? __pfx_kthread+0x10/0x10
[ 1262.593071][   T31]  ret_from_fork+0x72b/0xd50
[ 1262.593088][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1262.593105][   T31]  ? __switch_to+0x800/0x1100
[ 1262.593125][   T31]  ? __switch_to_asm+0x39/0x70
[ 1262.593144][   T31]  ? __pfx_kthread+0x10/0x10
[ 1262.593159][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1262.593186][   T31]  </TASK>
[ 1263.015052][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1263.021955][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1263.032621][   T31] Tainted: [L]=SOFTLOCKUP
[ 1263.036939][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1263.046998][   T31] Call Trace:
[ 1263.050284][   T31]  <TASK>
[ 1263.053204][   T31]  dump_stack_lvl+0x100/0x190
[ 1263.057896][   T31]  vpanic+0x552/0x970
[ 1263.061894][   T31]  ? __pfx_vpanic+0x10/0x10
[ 1263.066394][   T31]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[ 1263.072543][   T31]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[ 1263.078704][   T31]  panic+0xd1/0xe0
[ 1263.082423][   T31]  ? __pfx_panic+0x10/0x10
[ 1263.086830][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[ 1263.092973][   T31]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[ 1263.099116][   T31]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[ 1263.105266][   T31]  ? watchdog.cold+0x1ec/0x234
[ 1263.110040][   T31]  ? watchdog+0xcc1/0x1030
[ 1263.114525][   T31]  watchdog.cold+0x1fd/0x234
[ 1263.119130][   T31]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1263.124936][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1263.129614][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1263.134774][   T31]  ? kthread+0x13a/0x450
[ 1263.139044][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1263.143746][   T31]  kthread+0x370/0x450
[ 1263.147832][   T31]  ? __pfx_kthread+0x10/0x10
[ 1263.152433][   T31]  ret_from_fork+0x72b/0xd50
[ 1263.157803][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1263.162926][   T31]  ? __switch_to+0x800/0x1100
[ 1263.167624][   T31]  ? __switch_to_asm+0x39/0x70
[ 1263.172409][   T31]  ? __pfx_kthread+0x10/0x10
[ 1263.177001][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1263.181794][   T31]  </TASK>
[ 1263.184894][   T31] Kernel Offset: disabled
[ 1263.189217][   T31] Rebooting in 86400 seconds..